Home Network: advanced functions of home Routers

Details: Home Network: advanced functions of home routers. From the following article, we can see details about the specific running environment and its size. If you are interested, try it. After successfully logging on to the vro Management page, there are several menus on the left-side menu bar: running status, setting wizard, network parameters, DHCP server, forwarding rules, security settings, routing functions, and system tools. You can set a project.

I. Status of advanced home router Functions

Select the running status to view the current status of the router, including the LAN port status, WAN port status, and WAN port traffic statistics.

2. Home Router advanced function setting wizard

This option can guide you through some basic settings to ensure that you can connect to the broadband normally. For example, enter the bandwidth account and password. This option is suitable for users who do not manually modify parameters. We will not explain it too much.

3. Network Parameters of advanced functions of home Routers

1. LAN port settings

The LAN port setting option is used to modify the IP address of the router. When a user logs on to a vro, the entered address is a number in the "ip address" field. The "subnet mask" item does not need to be modified in general. If the local IP address is changed, you must use a new IP address to log on to the WEB management interface of the router. The default gateway of all computers in the LAN must be set to this IP address to access the Internet normally.

2. WAN port settings

ISP service providers generally provide broadband services in the PPPoE type. Common users only need to select PPPoE In the WAN port connection type, and then enter the Internet account and password provided by the ISP service provider, click Connect to access the Internet. You can select the connection mode as needed. If you choose to manually connect, You need to log on to the vro every time after the vro restarts. Click the connection button to access the Internet.

3. Clone the MAC address

You can clone the MAC address of the current management PC to the "MAC address" column. If your ISP requires MAC address cloning when providing services, you can perform this operation. Otherwise, do not clone the MAC address.

Iv. Advanced functions of home routers DHCP servers

1. DHCP server

It is not easy for users to Configure TCP/IP protocol parameters for all computers in the LAN. The DHCP server can automatically assign IP addresses to computers in the LAN. After this function is enabled, select "automatically obtain IP Address" in the configuration item of the Computer Nic, And the DHCP server will automatically assign an IP address to the computer. After the computer restarts, it will obtain a new IP address, which may be the same or different from the previous one.

Address pool: the start address and end address when the DHCP server automatically assigns an IP address. After these two parameters are set, the IP address of the Intranet host is located between the two addresses. Gateway: Enter the IP address of the LAN port of the router. The default value is 192.168.1.1. DNS server: These two items are optional. You can enter a public address or get them from the ISP service provider. This function takes effect only after the vro is restarted.

2. List of clients with advanced functions of home Routers

You can view information about all hosts that obtain IP addresses through the DHCP server, and click the refresh button to update the table information.

3. Static Address Allocation

The static address allocation function allows you to reserve static IP addresses for computers with specified MAC addresses. When the computer requests an IP address from the DHCP server, the DHCP server assigns it an IP address reserved in the table.

5. Home Router advanced function forwarding rules

1. Virtual Server

This option allows Internet users to directly log on to a server inside and outside. By default, all computers in the LAN cannot be seen by the outside world. If you want computers in the LAN to be visible on the wide area network, you can use a virtual server to define a service port. All Internet service requests for this port will be sent to the server in the LAN specified by the router, in this way, Internet users can successfully access the servers in the LAN, regardless of whether the servers are on the Internet or intranet.

Example 1: If you want a WAN user to access your FTP server through port 21, the IP address of the FTP server in the LAN is 192.168.1.100, and the protocol is set to TCP, you can follow the steps below:
◆ Step 1: click the "frequently used service port" drop-down menu on the interface to find the FTP service and its port.
◆ Step 2: Select "FTP (21)", set the entry ID serial number "1", and then click the button.
◆ Step 3: on the right of the entry table, set the IP address to "192.168.1.100", select the protocol type "TCP", and enable the entry.
◆ Step 4: Click Save.

Example 2: If you want a WAN user to access your Web server through port 80, the IP address of the Web server in the LAN is 192.168.1.101, and the protocol is set to ALL, you can follow the steps below:
◆ Step 1: Set the service port.
◆ Step 2: Enter the IP address "192.168.1.101 ".
◆ Step 3: select the Protocol "ALL" and enable this entry.
◆ Step 4: Click Save.
◆ If a virtual server with a service port of 80 is set, set security settings → WEB Management port of remote WEB management to a value other than 80. Otherwise, a conflict may occur.

2. Special Applications with advanced functions of home Routers

Advanced functions of home routers. Some applications require multiple connections, such as Internet games, video conferences, and network phones. Because of the existence of firewalls, these programs cannot work under simple NAT routers. However, special applications allow some such applications to work under the NAT router. When an application initiates a connection to the trigger port, all corresponding open ports will be opened for later connection and service provision.

The trigger port is the port on which the application initiates a connection. Only when a connection is initiated on this port can all ports in the open port be opened. Otherwise, the open port will not be opened. Open Port: when a connection is successfully initiated to the trigger port, the corresponding open port is opened, and the application can initiate a subsequent connection to the open port. You can enter one or more ports or port segments. Select ALL for the departure protocol and open protocol.

3. DMZ host

After a DMZ host is set in the LAN, the host will be completely exposed to the Wan, and two-way unrestricted communication can be achieved by bypassing the firewall blocking. You only need to enter the IP address of the computer to be specified, select enable and click Save. Because the DMZ host bypasses firewall protection, it is vulnerable to attacks by others on the Internet. Therefore, use it with caution.

4. UPnP settings

This option can help the host request the router to perform specific port conversion, so that the external host can access resources on the internal host as needed. This option does not need to be adjusted by common users.

6. Security Settings

1. Firewall settings

This interface controls the activation of the router firewall's overall functions, as well as the various sub-functions: IP address filtering, domain name filtering, and MAC address filtering. The subsequent security settings take effect only after the firewall's general switch is enabled. When the firewall is enabled, the network speed may be affected. If you do not use this function frequently, we recommend that you disable it.

2. IP address filtering

IP address filtering can deny or allow communication between computers and the Internet in the LAN. You can deny or allow specific port numbers or all port numbers of specific IP addresses. You can add new entries to add new filter rules or modify or delete preset rules.

Example 1: If you want to prohibit computers with the IP address 192.168.1.7 from sending and receiving emails, and computers with the IP address 192.168.1.8 from accessing websites with the IP address 202.96.134.12, do not restrict other computers in the LAN, you can set the parameters as follows:

◆ Step 1: Turn on the firewall's general switch.

◆ Step 2: Enable "ip address filtering" and set "Default filtering rules" to "allow data packets that do not comply with the configured IP address filtering rules to pass through this vro ".

◆ Step 3: click "Add new entry" and add a filter entry as required. In this example, the setting of disabling email sending on the computer 192.168.1.7 is disabled. After the setting is complete, click the Save button.

◆ Step 4: Go back to Step 3 and continue to set Filter Entries: Prohibit computers with the IP address 192.168.1.7 from receiving emails, and prohibit computers with the IP address 192.168.1.8 from accessing websites with the IP address 202.96.134.12. In example 1, a total of three IP address filtering rules need to be set, which correspond to the three filtering entries in the above list in sequence.

3. Domain Name Filtering

Domain Name filtering can prevent all computers in the LAN from accessing a specific domain name on a wide area network (such as the Internet). Example 1: if you want to prohibit computers in the LAN from accessing "www.yahoo.com.cn", "sina.com", and all. net, you can follow the steps below to set the website:

◆ Step 1: Enable the firewall General switch and enable "Domain Name filtering ".

◆ Step 2: click Add new entry and set the entry information. In this example, the website www.yahoo.com.cn is denied access. After the settings are complete, click the Save button.

◆ Step 3: Go back to step 2 and continue to set Filter Entries: Prohibit Access to "sina.com" and all websites ending with ". net. In example 1, a total of three domain name filtering rules need to be set, which correspond to the three filtering entries in the above list in sequence.

4. MAC address filtering

The MAC address filtering function allows or denies computers in the LAN from accessing the WAN through the MAC address, effectively controlling the Internet access permissions of users in the LAN. Example 1: If you do not want computers with the MAC address 00-E0-4C-00-07-BE and 00-E0-4C-00-07-5E in the LAN to access the Internet, but want other computers in the LAN to access the Internet, in this case, you can follow the steps below to set the MAC address filtering table:

◆ Step 1: Turn on the firewall's general switch.

◆ Step 2: Enable "MAC address filtering" on the firewall settings page and set "Default filtering rules" to "Disable enabled MAC addresses in the configured MAC address list from accessing the Internet, allow other MAC addresses to access the Internet ".

◆ Step 3: click Add new entry and set the entry information. In this example, the computer with the MAC address 00-E0-4C-00-07-BE cannot access the Internet. After the settings are complete, click Save.

◆ Step 4: Go back to Step 3 and set Filter Entries: Disable computers with the MAC address 00-E0-4C-00-07-5E from accessing the Internet. In example 1, a total of two domain name filtering rules need to be set, which correspond to two filtering entries in the previous example list in sequence.

5. remote WEB management

The remote WEB management function allows you to configure routers from the WAN through a Web browser. This feature allows you to perform management tasks from a remote host. WEB Management port: The WEB Management port used to access the Broadband Router. Remote WEB management IP Address: the IP address of the computer that can access the vro to perform remote WEB management.

6. WAN port ping

This option can be used to ignore Ping commands from the WAN port. In this way, the computer in the WAN cannot Ping the local router. After the changes are completed, click Save.

VII. routing functions

Static Routing is a special route. debugging of Static Routing requires you to have a certain understanding of the network principle and IP address rules. It is used to specify that data packets arriving at a specific address must be sent from the specified gateway exit. This feature does not have much practical significance for common users. We recommend that you do not modify this feature if you do not have special requirements to avoid improper Internet access.

8. System Tools

System Tools include software upgrades, factory recovery settings, vro restart, logon password modification, and system logs. In many cases, it is recommended that the Administrator modify the logon username and password to prevent unauthorized users from logging on to the vro at will. Restarting a vro can help you manually restart the vro. You also need to restart the vro after modifying some functional items.

Summary: after reading the above explanation, I wonder if you have a deeper understanding of the router. These functions are of great help to applications in complex environments and users with special needs. When you need to use a function module, you can refer to this article for settings.

Some vrouters of different models may have different functional modules on the UI, but the methods and principles are basically the same. I will only list some common functions for explanation, if you encounter a feature that is not described in this article, you can refer to the vro manual or guide. I hope this article will make your vro more flexible and convenient.