Installation Guide of

Wireless Internet Access Server

WRT-2110


Ch 8. Advanced Internet

For situations where the WRT-2110 is being used to provide shared Internet access, the following advanced features are provided.

This chapter contains details of the configuration and use of each of these features.

8.1 Advanced Internet Screen

This screen provides access to the advanced Internet features, and provides a convenient overview and control center. An example screen is shown below.

Figure 25: Advanced Internet Screen

On this screen, you can enable any required feature. By default, all features are disabled.


8.2 Special Internet Applications

This feature is only required if you wish to use Internet applications which require 2-way communication, multiple connections, or combined TCP/UDP connections.

Examples of such applications are Internet Videoconferencing, Telephony, Games Servers, and other special-purpose Servers.

Generally, you will become aware of the need for this feature when an Internet application is unable to function correctly.

At any time, only one (1) PC can use each Special Application.


Special Applications Screen

This screen can be reached by selecting Special Internet Applications. An example screen is shown below.

Figure 26: Special Applications Screen

Using a Special Application

Configuration data must be obtained from the Service/Application provider.
If an application still cannot function correctly, try using the "DMZ" feature.


Some Special Applications have been defined not enabled.

Configuration Data (from Service Provider)

This data must be obtained from the service provider.

Name
Enter a descriptive name to identify this application entry.
Enable
Use this to Enable or Disable support for this application, as required.
Outgoing
Protocol
The protocol (TCP or UDP) used when you connect to the special application service.
Port Range:
Start
The beginning of the range of port numbers used by the application server, for data you send to it. If the application uses a single port number, enter it in both the "Start" and "Finish" fields.
Port Range:
Finish
The end of the range of port numbers used by the application server, for data you send.
Incoming
Protocol
The protocol (TCP or UDP) used when the application or service sends data to you.
Port Range:
Start
The start of the range of port numbers used by the application server when data is sent to you. If using only one port number, enter it in both the "Start" and "Finish" fields.
Port Range:
Finish
The end of the range of port numbers used by the application server, when data is sent to you.


8.3 Virtual Servers

This feature allows you to make Servers on your LAN accessible to Internet users. Normally, Internet users would not be able to access a server on your LAN because:

The "Virtual Server" feature solves these problems and allows Internet users to connect to your servers, as illustrated below.

Figure 27: Virtual Servers

IP Address seen by Internet Users

Note that, in this illustration, both Internet users are connecting to the same IP Address, but using different protocols.

To Internet users, all virtual Servers on your LAN have the same IP Address.
This IP Address is allocated by your ISP, and can be checked on the "WAN Status" screen.

This address should be static, rather than dynamic, to make it easier for Internet users to connect to your Servers. If using a Static IP Address, it is entered on the "WAN" screen.

Virtual Server's LAN IP Address

The LAN IP Address of each Virtual Server (the PC on your LAN running the Server software) is required for configuration. But if using DHCP, the LAN IP Address of a PC may change. To solve this problem, you can use either of these methods:

Types of Virtual Servers

The WRT-2110 supports two (2) types of Virtual Servers:

The TOTAL number of Virtual Servers which can be used at any time is 10.

Virtual Server Configuration

The Virtual Servers screen is reached by the Advanced Internet - Virtual Servers link. An example screen is shown below.

Figure 28: Virtual Server Screen.

Simply select the Server type or types you wish to use, enter the IP Address of the server on your LAN, and click "Save".

For each entry, the PC must be running the appropriate Server software.


User Defined Virtual Servers

If the type of Server you wish to use is not listed on the Virtual Servers screen, you can define it using this feature.

Select Advanced Internet - User Defined Virtual Servers to see a screen like the example below.

Figure 29: User Defined Virtual Servers

This database operates in the same way as the other databases:

Configuration Data

Name
Enter a descriptive name to identify this Server entry.
Enable
Use this to Enable or Disable support for this Server, as required.
IP Address
The IP Address of the PC on your LAN which is running the Server software.
Protocol
Select the protocol (TCP or UDP) used by the Server.
Internal Port Number
Enter the port number used by the Server to connect to clients.
External Port Number
The port number used by clients when connecting to the Server. This is normally the same as the Internal Port Number.
If it is different, this device will perform a "mapping" or "translation" function, allowing the server to use one port address, while clients use a different port address.

From the Internet, ALL Virtual Servers have the IP Address allocated by your ISP, as shown on the WAN Status screen.


Connecting to the Virtual Servers

Once configured, anyone on the Internet can connect to your Virtual Servers. They must use the IP Address allocated to this device by your ISP, as shown on the WAN Status screen.
e.g.

         http://203.70.212.52
         ftp://203.70.212.52

It is more convenient if you are using a Fixed IP Address from your ISP, rather than Dynamic. If using a Fixed IP Address, it is entered on the WAN screen.

Using this Device as a Virtual Web Server

It is possible to configure the WRT-2110 itself as a Virtual Web Server. Once this is done, you can configure this device through the Internet.

For the remote PC, the destination IP Address is the IP Address shown on the External LAN Port screen.
Upon connecting to the WRT-2110, you will be prompted for the device password.

Ensure that a password has been set!


To make the WRT-2110 a Virtual Web Server:


8.4 DMZ

This feature, if enabled, allows one (1) computer on your LAN to be exposed to all users on the Internet, allowing unrestricted 2-way communication between the "DMZ" PC and other Internet users or Servers.

This allows connection to special-purpose servers which require proprietary client software, or 2-way user connections such as Video-conferencing, which requires both users to run special software.

To Internet users, the IP Address of the DMZ computer is the IP Address allocated by your ISP, as shown on the "WAN Status" screen.

To allow unrestricted access, the Firewall in this device is disabled, creating a security risk.


You should use this feature only if the "Special Applications" feature is insufficient to allow an application to function correctly. This feature should be turned ON only when needed, and left OFF the rest of the time.

Configuring the DMZ

Select Advanced Internet from the navigation bar, then DMZ. You will see a screen like the following:

Figure 30: DMZ Screen

Data

Enable

Enable DMZ Feature
Use this to Enable or Disable the DMZ feature. The DMZ feature should be disabled when not required.

LAN IP Address

LAN IP Address
Enter the IP Address of the PC on your LAN which will become the "DMZ" PC.
If using DHCP, the LAN IP Address of a PC may change. To solve this problem, you can use either of these methods:
  • Assign a fixed IP Address to the DMZ PC, ensuring that its IP Address is NOT within the address range allocated by the DHCP Server.
  • Reserve an IP Address for the DMZ PC in the DHCP Server, using the Access Control - PC screen.

WAN (Internet) IP Address


To connect to the DMZ PC, Internet users must use the IP Address of this device, as seen on the WAN port. This IP Address is allocated by your ISP, and can be checked on the "WAN Status" screen.
It is better if you are using a fixed IP Address, so that it never changes. This will make it easier for Internet users to connect to you. If using a Static IP Address, it is entered on the "WAN" screen.

To Internet users, the IP Address of the DMZ computer is the IP Address allocated by your ISP, as shown on the "WAN Status" screen.

 

[ Top of this Chapter ]

Ch 7 Options

Table of content

Ch 9 Access Control

 


Copyright (c) 2001, Planet Technology Corp.