Siemens 5890 User Manual
  1. Manuals
  2. Brands
  3. Siemens Manuals
  4. Network Router
  5. 5890
  6. User manual

Siemens 5890 User Manual

Siemens dsl router user's guide
Hide thumbs
Table of Contents

Quick Links

SIEMENS Business Class
5890
DSL Router
User's Guide
Part No. 107-5890-001
Table of Contents
loading

Related Manuals for Siemens 5890

Summary of Contents for Siemens 5890

  • Page 1 SIEMENS Business Class 5890 DSL Router User’s Guide Part No. 107-5890-001...
  • Page 2 (5) business days from the date received by Siemens Subscriber Networks. Expedited service is available at additional cost to the end user. E.Upon request from Siemens Subscriber Networks, the end user must prove the date of the original purchase of the product by a dated bill of sale or dated itemized receipt.
  • Page 3 FOR A PARTICULAR PURPOSE. 6. Out of Warranty Repair. Out of warranty repair is available for a fixed fee. Please contact Siemens Subscriber Networks at the numbers provided above to determine out of warranty repair rate. End users seeking out of warranty repair should contact Siemens Subscriber Networks as described above to obtain an RMA and to arrange for payment of the repair charge.

  • Page 4: Table Of Contents

    SIEMENS 5890 DSL Router User’s Guide Chapter 1 Product Specifications Front Panel ... 1 Back Panel ... 1 Hardware Specifications... 2 Physical Specifications... 2 Operational Environment ... 2 Power Requirements... 2 Processor ... 2 LAN Interface ... 2 WAN Interface... 2 Serial Interface ...
  • Page 5 SIEMENS 5890 DSL Router User’s Guide Point-to-Point Protocol over ATM (VC Multiplexing) ... 18 Point-to-Point Protocol over ATM (LLC Encapsulation) ... 20 RFC 1483 (Multiprotocol Encapsulation LLC/SNAP) ... 22 RFC 1483 (VC Multiplexing Routed)... 23 Point-to-Point Protocol over Ethernet over RFC1483 ... 24 RFC 1483 MAC Encapsulated Routing (MER) ...
  • Page 6 SIEMENS 5890 DSL Router User’s Guide Secure Shell ... 68 Configure SSH ... 69 Load Keys ... 70 Key Generator... 71 Firewall Scripts ... 72 Stateful Firewall ... 73 Configure Stateful Firewall ... 74 View Dropped Packets... 75 Configure Firewall Rules ... 76 Delete Firewall Rules ...

  • Page 7: Chapter 1 Product Specifications

    Product Specifications Chapter 1 Front Panel Back Panel SIEMENS The following table explains the LEDs that appear on the front panel of the Siemens 5890 router. Light Color Power Green Test Yellow: Green: (2 sec blink) Off: Link Yellow: Green:...

  • Page 8: Hardware Specifications

    SIEMENS 5890 DSL Router User’s Guide Hardware Specifications Physical Specifications • Dimensions:8.25" W x 7.0" D x 1.7" H • Weight: – TBD Power Requirements • US/NA = 120VAC 60Hz 20W, ROW = 100- 240VAC 50-60Hz 1A LAN Interface •...

  • Page 9: Software Specifications

    SIEMENS 5890 DSL Router User’s Guide Software Specifications Configuration Management • Easy Setup Web Management Interface • Configuration and management using HTTP, serial console, SNMP, SSH, or Telnet • TFTP download/upload of new software and configuration files • Dynamic event and history logging •...

  • Page 10: Atm

    SIEMENS 5890 DSL Router User’s Guide • Encapsulation (IP, Bridging, and Bridge Encapsulated Routing) (RFC 2684/1483) • PPP over ATM (LLC and VC multiplexing) (RFC 2364) • Classical IP over ATM (RFC 2225) • Classical IP (RFC 1577) • AAL5 •...

  • Page 11: Chapter 2 Installation

    Installation Chapter 2 This chapter describes the steps you must take to install and configure the various components in your network to utilize the Siemens DSL broadband internet router. This includes connections to the Internet router, up the Internet router configuration. Before beginning installation, make sure you meet all requirements.

  • Page 12: Network Service Provider Requirements

    SIEMENS 5890 DSL Router User’s Guide Network Service Provider Requirements Your Network Service Provider will provide you with information to configure your router’s WAN connection. Depending upon the type of service that you ordered, you will need some of the items from the following list.

  • Page 13: Hardware Installation

    Hardware Installation You may position the Siemens broadband router at any convenient location where it will be well ventilated. Do not stack it with other devices or place it on the carpet. You can connect the router to an existing Ethernet port on your computer.

  • Page 14: Pc Configuration

    SIEMENS 5890 DSL Router User’s Guide PC Configuration Your PC must be configured to use the TCP/IP protocol suite over the Internet, and to accept Dynamic Host Configuration Protocol address assignments from the router. Although this is the default settings for the PC, it is a good idea to verify that they have not been changed.

  • Page 15: Windows Nt 4

    SIEMENS 5890 DSL Router User’s Guide Windows NT 4 1. On your desktop, right click on the Network Neighborhood icon. This displays the Network window. 2. Click the Protocols tab. Select TCP/IP Protocol from the Network Protocols list. Click Properties. This displays the Microsoft TCP/IP Properties window.

  • Page 16: Windows 2000

    SIEMENS 5890 DSL Router User’s Guide Windows 2000 1. Select Start >Settings >Control Panel. This displays the Control Panel window. 2. Double-click the Network and Dial-up Connection icon. This displays the Network and Dialup Connection window. 3. Right-click Local Area Connections and select Properties.

  • Page 17: Windows Xp

    SIEMENS 5890 DSL Router User’s Guide Windows XP 1. Click Start >Control Panel. This displays the Control Panel window. 2. Double-click the Network Connections icon. This displays the Network Connection window. 3. Right-click Local Area Connection, then click Properties. This displays the Local Area Connection Properties window.

  • Page 18: Mac Os 9.X

    SIEMENS 5890 DSL Router User’s Guide Mac OS 9.x 1. Click Apple -> Control Panels -> TCP/IP. This displays the TCP/IP Control Panel window. 2. Select Ethernet from the Connect via drop-down menu. 3. Select Using DHCP Server from the Configure drop-down menu.

  • Page 19: Mac Osx

    SIEMENS 5890 DSL Router User’s Guide Mac OSX 1. Click Apple -> System Preferences. This displays the System Preferences window. 2. Double-click the Network icon under the Internet & Network section. This displays the Network window. 3. Select Ethernet from the Connect via drop-down menu.

  • Page 20: Linux

    SIEMENS 5890 DSL Router User’s Guide Linux 1. From a terminal window, run linuxconfig. This displays the Config window. 2. Click the Adaptor tab. 3. Enter any information specified by your service provider in the fields under the appropriate Adapter tab.

  • Page 21: Configuring The Router

    User’s Guide Configuring the Router The Siemens Business Class Router family of products provides two user interfaces: a Web Management Interface and a console-based Command Line Interface (CLI). The Web Management Interface uses an HTTP server housed in the router. Using this server, you can connect to and manage the router using your Web browser.

  • Page 22: Router Information Page

    SIEMENS 5890 DSL Router User’s Guide Router Information Page The Router Information Page is the first page you encounter after logging into the router. The Router Information page displays basic router information and configuration settings. On the Router Information page, the following information is presented: •...

  • Page 23: Chapter 3 Easy Setup

    Point-to-Point Protocol over ATM (LLC Encapsulation) • Point-to-Point Protocol over Ethernet over PPPoA • Point-to-Point Protocol over Ethernet over RFC1483 • RFC 1483 (Multiprotocol Encapsulation LLC/SNAP) • RFC 1483 (VC Multiplexing Routed) • RFC 1483 MAC Encapsulated Routing (MER) • RAWIP SIEMENS...

  • Page 24: Point-To-Point Protocol Over Atm (Vc Multiplexing)

    SIEMENS 5890 DSL Router User’s Guide Point-to-Point Protocol over ATM (VC Multiplexing) If you selected Point-to-Point Protocol over ATM (VC Multiplexing) from the Wan Interface page, the Point- to-Point Protocol page is displayed when you click Next. To configure Point-to-Point Protocol: 1.
  • Page 25 SIEMENS 5890 DSL Router User’s Guide 5. If you enabled IP routing, optionally select one or more of the following: • NAT Enabled: Network Address Translation (NAT) allows multiple workstations on your LAN to share a single, public IP address. All outgoing traffic appears to originate from the router’s IP address.

  • Page 26: Point-To-Point Protocol Over Atm (Llc Encapsulation)

    SIEMENS 5890 DSL Router User’s Guide Point-to-Point Protocol over ATM (LLC Encapsulation) If you selected Point-to-Point Protocol over ATM (LLC Encapsulation) from the Wan Interface page, the Point-to-Point Protocol page is displayed when you click Next. To configure Point-to-Point Protocol: 1.
  • Page 27 SIEMENS 5890 DSL Router User’s Guide 5. If you enabled IP routing, optionally select one or more of the following: • NAT Enabled: Network Address Translation (NAT) allows multiple workstations on your LAN to share a single, public IP address. All outgoing traffic appears to originate from the router’s IP address.

  • Page 28: Rfc 1483 (Multiprotocol Encapsulation Llc/Snap)

    SIEMENS 5890 DSL Router User’s Guide RFC 1483 (Multiprotocol Encapsulation LLC/SNAP) If you selected RFC 1483 (Multiprotocol Encapsulation LLC/SNAP) from the Wan Interface page, the RFC 1483 Networking page is displayed when you click Next. To configure RFC 1483: 1. Select one or more of the following RFC 1483 networking options: •...

  • Page 29: Rfc 1483 (Vc Multiplexing Routed)

    SIEMENS 5890 DSL Router User’s Guide RFC 1483 (VC Multiplexing Routed) If you selected RFC 1483 (VC Multiplexing Routed) from the Wan Interface page, the RFC 1483 Networking page is displayed when you click Next. To configure RFC 1483: 1. Select one or more of the following RFC 1483 networking options: •...

  • Page 30: Point-To-Point Protocol Over Ethernet Over Rfc1483

    SIEMENS 5890 DSL Router User’s Guide Point-to-Point Protocol over Ethernet over RFC1483 If you selected Point-to-Point Protocol over Ethernet over RFC 1483 from the Wan Interface page, the Point-to-Point Protocol over Ethernet over RFC 1483 page is displayed when you click Next.

  • Page 31: Rfc 1483 Mac Encapsulated Routing (Mer)

    SIEMENS 5890 DSL Router User’s Guide RFC 1483 MAC Encapsulated Routing (MER) If you selected RFC 1483 MAC Encapsulated Routing from the Wan Interface page, the RFC 1483 MER Networking page is displayed when you click Next. To configure RFC 1483 MER Networking: 1.

  • Page 32: Raw Ip

    SIEMENS 5890 DSL Router User’s Guide RAW IP If you selected RAWIP from the Wan Interface page, the RAWIP Networking page is displayed when you click Next. To configure RAWIP Networking: 1. Select one or more of the following RAWIP Networking options: •...

  • Page 33: Dynamic Host Configuration Protocol

    SIEMENS 5890 DSL Router User’s Guide Dynamic Host Configuration Protocol Dynamic Host Configuration Protocol (DHCP) provides a dynamic, “upon request,” IP address to computers and other networked devices. The router can act as a DHCP server for devices on your local network.

  • Page 34: Local Area Network Configuration

    SIEMENS 5890 DSL Router User’s Guide Local Area Network Configuration Local Area Network configuration information is configured on the LAN IP Configuration page. To configure the Local Area Network: 1. In IP Address, enter the network address of the router. This address must be globally unique unless NAT has been enabled.

  • Page 35: Chapter 4 User Setup

    Specify database for identifying users when logging into the router. Configure Secure Mode Configure the Radius Server Configure the Tacplus Server SIEMENS Manage user accounts. Change user password. Configure remote access to the router configuration settings. Refer to: Add or Modify A User Account...

  • Page 36: Adding/Modifying A User Account

    SIEMENS 5890 DSL Router User’s Guide Adding/Modifying A User Account User accounts are used to control access to the router and the Internet. To add a user account: 1. Click New User on the User Management page. This displays the Add/Modify User page.

  • Page 37: Deleting A User Account

    SIEMENS 5890 DSL Router User’s Guide Deleting A User Account To delete a user account: 1. Select the name of the account you want to delete in the Select User list on the User Management page, then click Delete User.

  • Page 38: User Lookup

    SIEMENS 5890 DSL Router User’s Guide User Lookup User authentication verification is performed when an access request is made to the system. The router checks the user database to verify the user account by username and password, supplied by the user when making the access request.

  • Page 39: Secure Mode Configuration

    SIEMENS 5890 DSL Router User’s Guide Secure Mode Configuration You can enable secure mode to control whether an interface is trusted or untrusted. To configure Secure Mode: 1. Click Secure Mode Configuration on the left navigation pane of the User Management page. This displays the Secure Mode Configuration page.

  • Page 40: Configure The Radius Server

    SIEMENS 5890 DSL Router User’s Guide Configure the Radius Server Remote Authentication Dial In User Service (RADIUS) is client-server based access control and authentication feature. The RADIUS client resides locally on the router and works in conjunction with a variety of RADIUS Server applications.

  • Page 41: Configure The Tacplus Server

    SIEMENS 5890 DSL Router User’s Guide Configure the TacPlus Server Tacplus allows access control and user authentication to be managed from a remote server.To configure the Tacplus Server: 1. Click Configure Tacplus Server on the left navigation pane of the User Management page. This displays the Tacplus Server Configuration page.

  • Page 42: Management Classes

    SIEMENS 5890 DSL Router User’s Guide Management Classes All system operations, are partitioned into functional groups called management classes. Management classes group functions into the following categories. Class Functional Areas Voice Voice operations and shared network functions. Network File system, System Interfaces, SNMP, DHCP, NAT, remote commands.

  • Page 43: Change Password

    SIEMENS 5890 DSL Router User’s Guide Change Password User passwords are changed from the Change Password page. To change a user password: 1. Click Change Password from the left navigation pane on the Router Information page. This displays the Change Password page.

  • Page 44: Access Control

    SIEMENS 5890 DSL Router User’s Guide Access Control Restrict administrative control of the router to a specific set of IP addresses. Each remote access method (Telnet, Web, and SNMP) can be configured separately. To set Access Control parameters: 1. Click Access Control from the left navigation pane of the Router Information page. This displays the Access Control page.

  • Page 45: Chapter 5 Advanced Setup

    Routing Table Configuration Dial Backup Switch Management Command Line Interface File Editor SIEMENS Select WAN physical layer mode. Add, delete, and modify remote routers to which the target router can connect Configure unrestricted two-way communication with servers or individual users on the internet.

  • Page 46: Wan Selection

    SIEMENS 5890 DSL Router User’s Guide WAN Selection The router can be connected to the internet using IDSL, SDSL, or SHDSL. The connection mode is usually dictated by your service provider. Only one selection is compatible with your ISP’s central office equipment.

  • Page 47: Remote File Configuration

    SIEMENS 5890 DSL Router User’s Guide Remote File Configuration Using the Remote File Configuration option to add, modify, or delete a remote file. Each remote file represents a connection to a remote router. It is possible that multiple remote files are used in conjunction for a single connection.

  • Page 48: Dmz

    SIEMENS 5890 DSL Router User’s Guide One computer on your local network can be configured to allow unrestricted two-way communication with servers or individual users on the Internet. This provides the ability to run programs that are incompatible with firewalls.This feature is primarily used for gaming. This function is recommended for use only when you require this special level of unrestricted access as it leaves your router and network exposed to the Internet with no firewall protection.
  • Page 49 SIEMENS 5890 DSL Router User’s Guide 6. To change the server status, select enable or disable from DMZ DHCP Server Status. Disabled, the router will not act as a DHCP server. 7. To define the start and ending address range of the IP address pool, enter the starting address in First IP Address and the ending address in Last IP Address.

  • Page 50: Router Clock

    SIEMENS 5890 DSL Router User’s Guide Router Clock Use the Router Clock option to set the date and time on the router. To set the current date and time on the router: 1. Click Router Clock on the left navigation pane of the Router Information page. This displays the Current Date and Time page.

  • Page 51: Dhcp

    SIEMENS 5890 DSL Router User’s Guide DHCP Dynamic Host Configuration Protocol (DHCP) is a communication protocol that allocates IP address automatically to any DHCP client requesting an IP address. A DHCP client can be any device attached to your network, for example, a PC. (Note that DHCP is effective only if the TCP/IP is installed on the DHCP client.) The router can act as a DHCP server, automatically providing a suitable IP address and related information to each computer when the computer boots up.
  • Page 52 SIEMENS 5890 DSL Router User’s Guide 3. Click Apply. 4. When a PC boots and asks for an IP address, the DHCP server assigns it an address from a pool of addresses assigned to the subnetwork where the client request originated. To specify the start and ending address range of the IP address pool, enter the starting address in First IP Address and the ending address in Last IP Address.

  • Page 53: Qos

    SIEMENS 5890 DSL Router User’s Guide Quality of Service actively manages network resources to sustain service levels for priority applications. Mission-critical and real-time Internet applications demand a network that provides high bandwidth and low latency. Such applications cannot tolerate unpredictable degradations of network services. Therefore, network services must contain features that provide adequate assurance of sustained service levels.
  • Page 54 SIEMENS 5890 DSL Router User’s Guide • Priority. Priority determines the order in which packets will be processed by the router. • Weight. Weight determines the amount of bandwidth to be allocated to a given application. The router supports four priority levels; High, Medium, Normal and Low. A weight value can be assigned to each of these priority levels from a minimum of 1 to a maximum of 255.

  • Page 55: Configure Qos Policy

    SIEMENS 5890 DSL Router User’s Guide Configure QoS Policy QoS policies control how QoS manages network resources. To configure a QoS policy: 1. Click QoS Policy Page from the left navigation pane of the QoS Configuration page. This displays the QoS Policy Setting page.
  • Page 56 SIEMENS 5890 DSL Router User’s Guide 5. In Source IP, select one of the following: • From/To: Enables source address checking. Specify the source IP address or range of IP addresses that must match for this policy to be used.

  • Page 57: Reorder Qos Policies

    SIEMENS 5890 DSL Router User’s Guide Reorder QoS Policies To move a QoS policy: 1. On the QoS Policy Setting page, select the policy you want to move in the IP Policy List drop-down menu and click Move. This expands the QoS Policy Setting page.

  • Page 58: Routing Table Configuration

    SIEMENS 5890 DSL Router User’s Guide Routing Table Configuration Every host has a default routing table that it uses to determine which physical interface address to use for outgoing IP traffic. The router supports virtual routing, which allows you to define multiple routing tables for a single host.

  • Page 59: Dial Backup

    SIEMENS 5890 DSL Router User’s Guide Dial Backup Dial Backup provides a backup to the Internet through an asynchronous modem connection when the default WAN link service experiences interruption. The modem connection can be provided through either an internal V.90 modem or an external V.90 or ISDN modem connected to the MGMT Console port.

  • Page 60: Atm Traffic Shaping

    SIEMENS 5890 DSL Router User’s Guide ATM Traffic Shaping An ATM network provides Virtual Path (VP) or Virtual Circuit (VC) connections with distinct levels of service. ATM Traffic Shaping defines the level of service to use for each configured interface.
  • Page 61 SIEMENS 5890 DSL Router User’s Guide 4. Select one of the following Service Types. • Constant Bit Rate: Requests a static amount of bandwidth that is continuously available for the lifetime of the connection.This bandwidth amount is characterized by a Peak Cell Rate value.

  • Page 62: Switch Management

    SIEMENS 5890 DSL Router User’s Guide Switch Management Each router provides four or eight Ethernet 10/100 switching ports for connection to the local area network (LAN). These RJ-45 ports are located on the rear panel and have individual Link Status LEDs to provide port status and link activity.

  • Page 63: Switch Mirror Configuration

    SIEMENS 5890 DSL Router User’s Guide Switch Mirror Configuration The router supports traffic mirroring on the Ethernet switch. Port mirroring “mirrors” the traffic on one (or more) Ethernet ports to a target (or capture) port where the traffic can be studied. This is useful for unobtrusive monitoring of network traffic for the purposes of detecting intrusions, diagnosing problems, or monitoring switch performance.

  • Page 64: Switch Age Time

    SIEMENS 5890 DSL Router User’s Guide Switch Age Time When a switch receives a message, the originating MAC address and the originating port is saved in the switch’s MAC address table. The switch uses the message’s destination MAC address and previous entries in the MAC address table to select a specific port to use to transmit the message to its destination.

  • Page 65: Command Line Interface

    SIEMENS 5890 DSL Router User’s Guide Command Line Interface Use the Command Line Interface option to use the web interface to enter CLI commands. (Refer to the Command Line Interface Guide for available commands.) To execute a CLI command from the web interface: 1.

  • Page 66: File Editor

    SIEMENS 5890 DSL Router User’s Guide File Editor Use the File Editor to create and edit files stored on the router. These files contain configuration and other data used by the router. For advanced users who understand the file formats and syntax, this method may be more efficient than configuring the router with commands or the web interface, particularly when the amount of data is large or complex.

  • Page 67: Chapter 6 Security Setup

    Firewall Scripts Stateful Firewall IKE/IPSec Configuration VPN Log On SIEMENS Network Address Translation provides a level of security by hiding the private IP addresses of your LAN behind a single public IP address of your router. Simple Network Management Protocol controls message exchanges between a management client and a management agent.

  • Page 68: Nat

    SIEMENS 5890 DSL Router User’s Guide Network Address Translation (NAT) provides a level of security by hiding the private IP addresses of your LAN behind the single public IP address of your router. All connections pass through the router and are translated by NAT.

  • Page 69: Nat Server Configuration

    SIEMENS 5890 DSL Router User’s Guide NAT Server Configuration For incoming messages, NAT converts the global address to the local IP address. 1. To configure the Wan side for NAT functionality, click NAT Server from the left navigation pane. This displays the NAT Server Settings page.

  • Page 70: Nat Host Mapping

    SIEMENS 5890 DSL Router User’s Guide NAT Host Mapping Typically, a local network address (internal) is translated to one or more global (external) addresses for outgoing messages. 1. To configure a one to one mapping of LAN IP addresses to WAN IP addresses, click NAT Host Mapping from the left navigation pane.

  • Page 71: Snmp

    SIEMENS 5890 DSL Router User’s Guide SNMP The Simple Network Management Protocol (SNMP) is a standard protocol that communicates management information between network management stations and their managed objects or agents (for example, routers and switches). By using this protocol, network equipment produced by different manufacturers can be managed by a single program.

  • Page 72: Snmp Ip Filter

    SIEMENS 5890 DSL Router User’s Guide 5. In Trap Enable, select Enable or Disable. SNMP agents also have the ability to send (unrequested) messages to SNMP managers; these messages are called traps and notify the SNMP managers that an event has happened on the system.

  • Page 73: Snmp Password

    SIEMENS 5890 DSL Router User’s Guide SNMP Password An SNMP password is used to authenticate an SNMP Manager. Once authenticated, SNMP set requests will be performed. To set the SNMP Password: 1. Click SNMP Password from the SNMP Configuration page. This displays the SNMP Password page.

  • Page 74: Secure Shell

    SIEMENS 5890 DSL Router User’s Guide Secure Shell Secure Shell (SSH) secures network services (such as remote terminal sessions, remote command execution, secure FTP type file transfers, and secure tunneling of TCP traffic between two networks) over an insecure network, such as the public Internet. SSH creates an encrypted and authenticated channel between hosts for all communication.

  • Page 75: Configure Ssh

    SIEMENS 5890 DSL Router User’s Guide Configure SSH To configure Secure Shell settings: 1. Click Configure SSH from the Secure Shell (SSH) Configuration List page. This displays the Configure Secure Shell (SSH) page. 2. For Status, select Enable or Disable to enable or disable the SSH feature. Before enabling SSH, a private/public key pair should be loaded on the router using either the 3.

  • Page 76: Load Keys

    SIEMENS 5890 DSL Router User’s Guide Load Keys Diffie-Hellman is the key exchange system used for authentication in the establishment and maintenance of SSH connections. The key exchange requires a Public Key and a Private Key. This key pair can either be loaded from a source file or generated by the router.

  • Page 77: Key Generator

    SIEMENS 5890 DSL Router User’s Guide Key Generator Diffie-Hellman is the key exchange system used for authentication in the establishment and maintenance of SSH connections. The Key exchange requires a Public key and a Private key. This key pair can either be loaded from a source file or generated by the router.

  • Page 78: Firewall Scripts

    All network security efforts, including firewall configurations, should be performed by an experienced and qualified network security technician who is familiar with the unique architecture and requirements of their network. Siemens Subscriber Networks cannot be liable for security violations due to inadequate or incorrect firewall configurations.

  • Page 79: Stateful Firewall

    SIEMENS 5890 DSL Router User’s Guide Stateful Firewall A firewall is a program or hardware device that filters the information coming through the Internet connection into your private network or computer system designed to prevent unauthorized access to or from a private network.

  • Page 80: Configure Stateful Firewall

    SIEMENS 5890 DSL Router User’s Guide Configure Stateful Firewall To configure the Stateful Firewall: 1. Click Stateful Firewall from the left navigation pane of the Router Information page. This displays the Stateful Firewall Configuration page. 2. For Firewall Status, select On or Off to turn Stateful Firewall on or off.

  • Page 81: View Dropped Packets

    SIEMENS 5890 DSL Router User’s Guide View Dropped Packets To view the most recent dropped packets: 1. Click Dropped Packets from the left navigation pane of the Stateful Firewall Configuration page. This displays the Firewall Dropped Packet List page. 2. Do one of the following: •...

  • Page 82: Configure Firewall Rules

    SIEMENS 5890 DSL Router User’s Guide Configure Firewall Rules To configure firewall rules: 1. Click Firewall Rules from the left navigation pane of the Stateful Firewall Configuration page. This displays the Firewall Rule Configuration page. When firewall rules are created, they are specified as Allow or Deny rules. When a packet is evaluated, the Deny rules are applied first, then the Allow rules.
  • Page 83 SIEMENS 5890 DSL Router User’s Guide 5. For Target, select one of the following to specify the characteristics a packet must have in order to match the firewall rule: • Protocol/Port Specifies the protocol or port that applies to the rule. This can be one of the following: tcp to specify TCP protocol for this rule.

  • Page 84: Delete Firewall Rules

    SIEMENS 5890 DSL Router User’s Guide Delete Firewall Rules To delete firewall rules: 1. Click Firewall Rules from the left navigation pane of the Stateful Firewall Configuration page. This displays the Firewall Rule Configuration page. 2. Click Delete. This expands the Firewall Rule Configuration page.

  • Page 85: Ike/Ipsec Configuration

    SIEMENS 5890 DSL Router User’s Guide IKE/IPSec Configuration IPSec (Internet Protocol Security) is an open standard that defines optional authentication and encryption methods at the IP packet level. IPSec can only handle IP packets. IPsec is especially useful for implementing Virtual Private Networks and for remote user access through dial- up connections to private networks.

  • Page 86: Easy Ike/Ipsec Setup

    SIEMENS 5890 DSL Router User’s Guide Easy IKE/IPSec Setup Internet Key Exchange (IKE) is a means of dynamically creating secure IP (IPSec) connections, which uses encryption and authentication to virtual private networks over an insecure network. The Easy IKE/IPSec Setup form is used to create a default IKE configuration. To perform Easy IKE/IPSec setup: 1.

  • Page 87: Advanced Ike/Ipsec Setup

    SIEMENS 5890 DSL Router User’s Guide Advanced IKE/IPSec Setup The Advanced IKE/IPSec Setup page presents information about current IKE and IPSec peers, policies and proposals. To perform Advanced IKE/IPSec setup, click Advanced IKE/IPSec Setup from the left navigation pane of the IKE/IPSec Information page. This displays the Advanced IKE/IPSec Configuration page. This page shows the current configuration and includes a Create button for each category to create new IKE and IPSec definitions.
  • Page 88 SIEMENS 5890 DSL Router User’s Guide IKE Peers Definition IKE peers are those devices known to your internal modem as capable of participating in IKE connections. To define a new IKE Peer: 1. Click Create next to IKE Peers from the Advanced IKE/IPSec Setup page. This displays the IKE Peer Definition page.
  • Page 89 SIEMENS 5890 DSL Router User’s Guide IKE Proposals Definition IKE I proposals specify how packets will be encrypted/authenticated for Phase I. To define a new IKE proposal: 1. Click Create next to IKE Proposals from the Advanced IKE/IPSec Setup page. This displays the IKE Proposal Definition page.
  • Page 90 SIEMENS 5890 DSL Router User’s Guide IKE IPSec Proposals Definition IKE IPSec Proposals specify how packets will be encrypted/authenticated for the final SA. IPSec uses SAs (Security Associations) for making connections between two devices. An SA is an instance of a security policy and keying material applied to a data flow.
  • Page 91 SIEMENS 5890 DSL Router User’s Guide 3. Select one of the following security protocols: • AH (Authentication Header ) method, a security protocol that authenticates the sender of each data packet. If the AH protocol is selected, only packet authentication can be performed, not encryption. To...
  • Page 92 SIEMENS 5890 DSL Router User’s Guide IKE IPSec Policies Definition IPSec policies are criteria for packets that IPSec will recognize, and actions that IPSec will take upon recognition. To define a new IKE IPSec policy: 1. Click Create next to IKE IPSec Policies from the Advanced IKE/IPSec Setup page. This displays the IKE IPSec Policy Definition page.
  • Page 93 SIEMENS 5890 DSL Router User’s Guide 9. In Destination IP Address, enter the IP address of the remote private network to which your router will connect using this policy. 10. In Destination Subnet Mask, enter the subnet mask of the remote private network to which your router will connect using this policy.

  • Page 94: Vpn Log On

    SIEMENS 5890 DSL Router User’s Guide VPN Log On VPN Log On starts an IPSec session. IPSec sessions are initiated through Security Associations (SAs), which allow peers to negotiate a common set of security attributes that assures source authenticity, data integrity and confidentiality of IP packets, providing the level of security required by Virtual Private Networks (VPNs).

  • Page 95: Chapter 7 Monitoring Router

    Information page. This displays the System Summary page. From the System Summary page, you can view information for the following: • Ethernet interface • Remote connections • IP Routing • System SIEMENS View status and statistical information. Run diagnostic programs to determine potential problems.

  • Page 96: Ethernet Interface Information

    SIEMENS 5890 DSL Router User’s Guide Ethernet Interface Information Click Ethernet Info on the left navigation pane of the System Summary page to display information about the Ethernet interface. Remote Connection Information Click Remote Info on the left navigation pane of the System Summary page to display information about remote connections for all entries in the Remote Router database.

  • Page 97: Ip Routing Information

    SIEMENS 5890 DSL Router User’s Guide IP Routing Information Click IP Routing Info on the left navigation pane of the System Summary page to display information about the active interfaces in the IP routing table. System Information Click System Info on the left navigation pane of the System Summary page to display general information for select system settings.

  • Page 98: Diagnostics

    SIEMENS 5890 DSL Router User’s Guide Diagnostics The Diagnostic feature provides information about various components of your system that might help in diagnosing a problem. To run diagnostics, click Diagnostics on the left navigation pane of the Router Information page. This displays the Run Diagnostics page.

  • Page 99: Interface Information

    SIEMENS 5890 DSL Router User’s Guide Interface Information Select Interface information from the drop down menu and click Execute to display interface information. ATM Statistics Select ATM Statistics from the drop down menu and click Execute to display ATM statistics.

  • Page 100: Routing Table Information

    SIEMENS 5890 DSL Router User’s Guide Routing Table Information Select Routing Table information from the drop down menu and click Execute to display information about the configured routing tables. Files Information Select Files information from the drop down menu and click Execute to display files store on the router.

  • Page 101: Memory Usage

    SIEMENS 5890 DSL Router User’s Guide Memory Usage Select Memory usage from the drop down menu and click Execute to display memory usage information. List All Configuration Data Select List all configuration data from the drop down menu and click Execute to display configuration information.

  • Page 102: Tcp/Ip Statistics

    Chapter 7 Monitoring Router SIEMENS 5890 DSL Router Diagnostics User’s Guide TCP/IP Statistics Select TCP/IP statistics from the drop down menu and click Execute to display TCP/IP information. SIEMENS...

Table of Contents