user manual
Contents
1. Router Upgrade fuivanced Wirckose Domain Name Server DNS Address Settings Get Automatically From ISP Wireless Repeating O Use These DNS Servers Function Port Forwarding Primary DNS Port Triggering WAN Setup LAN Setup QoS Setup Secondary DNS Router MAC Address G Use Default Address Figure 1 5 The language is set to English by default The default language is always stored in memory When you select a language other than the default that language as well as English is stored in memory The additional language stored is the most recently selected For example if you select Deutsch German and English will be stored If you next select Chinese Chinese and English will be stored To specify a language to be used on your router manager screens do the following 1 Expand the list and select the language you want 2 Click Apply Configuring Basic Connectivity 1 5 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual The language you select is then downloaded and displayed in the language selection box and your screen display will be in the selected language Note You can select from the entire list of supported languages only when the router is connected to the Internet When the router is not connected to the Internet you can select one of the stored languages only Configuring Your Internet Settings Using the Setup Wizard You ca2. Checking for New Firmware in the Router Upgrade Screen To check for new firmware and allow the router to automatically install it 1 Select Router Upgrade under Maintenance in the main menu The Router Upgrade screen displays Router Upgrade Check for New Version from the Internet V Check for New Version Upon Log in Locate and select the upgrade file from your hard disk Figure 6 6 Using Network Monitoring Tools 6 9 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual 2 Check for new software versions by clicking the Check button e Ifa new version is found information about it appears Firmware Version Check A New Firmware Version is Found Do You Want to Upgrade to the New Current Version V1 1 3 5 New Version V14 3 6 Figure 6 7 e fno new firmware version is available a message displays and the router returns to the Firmware Update screen Firmware Version Check No New Firmware Version Available This page will automafically retum to the previous page in a few seconds Figure 6 8 3 To update your firmware click Yes and follow the prompts Warning When updating firmware to the WNR500 router do not interrupt AN the Web browser by closing the window clicking a link or loading a new page If the browser is interrupted it could corrupt the firmware When the upload is complete your router automatically restarts The update process typical
3. Security Options None WEP 9 WPA PSKITKIP WPA2 PSK AES WPA PSK TKIP WPA2 PSK AES Figure 2 2 The available settings in this screen are Enable SSID Broadcast If checked the SSID will be broadcast in this channel Enable Wireless Isolation If checked the wireless client under SSID can only access the Internet and cannot access other wireless clients including clients under the same SSID Ethernet clients or clients associated with this device Name SSID The SSID is also known as the wireless network name Enter a value of up to 32 alphanumeric characters When more than one wireless network is active different wireless network names provide a way to separate the traffic For a wireless device to participate in a particular wireless network it must be configured with the SSID for that network The WNR500 default SSID is NETGEAR You can disable this broadcast as described in Viewing Advanced Wireless Settings on page 2 12 Safeguarding Your Network 2 7 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual e Region This field identifies the region where the WNR500 router can be used It might not be legal to operate the wireless features of the wireless router in a region other than one of those identified in this field Note The region selection feature might not be available in all countries e Channel This field determines which operating frequency is used It should not be
4. Wireless Repeater Disable Wireless Clients Association Repeater IP Address 192 168 1 Basic Station MAC Address Wireless Basic Station Disable Wireless Clients Association Repeater MAC Address 1 Repeater MAC Address 2 Repeater MAC Address 3 Repeater MAC Address 4 Apply Cancel Figure 4 8 The available settings in this screen are Disable Wireless Clients Association If checked the wireless basic station does not transmit any signals to clients that are directly connected to it Repeater MAC Address 1 2 3 4 Enter the MAC address of the router that works as the repeater for the wireless basic station Note A wireless basic station can be configured with up to four repeaters 4 Click Apply to save your settings Customizing Your Network Settings 4 14 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual Configuring the Repeater To configure a router as the repeater 1 Log in to the router as described in Logging In To Your Wireless Router on page 1 1 2 Select Wireless Settings under Setup in the main menu The Wireless Settings screen displays Set the SSID channel and wireless encryption information Wireless Settings Region Selection Region Europe Wireless Network 7 Enable SSID Broadcast El Enable Wireless Isolation Name SSID NETGEAR Channel Auto v Mode Up to 150Mbps v Security Options None WEP Q9 WPA PSKITKIP
5. e Domain Name Server DNS Address If you know that your ISP does not automatically transmit DNS addresses to the router during login select Use These DNS Servers and enter the IP address of your ISP s primary DNS server If a secondary DNS server address is available enter it also E Note If you enter or change a DNS address restart the computers on your network so that these settings take effect Router MAC Address This section determines the Ethernet MAC address that the router will use on the Internet port Typically you would leave Use Default Address selected However some ISPs especially cable modem providers register the Ethernet MAC address of the network interface card in your computer when your account is first opened They then accept only traffic from the MAC address of that computer This feature allows your router to masquerade as that computer by cloning or spoofing its MAC address To change the MAC address select one of the following methods Select Use Computer MAC Address The router will then capture and use the MAC address of the computer that you are now using You must be using the one computer that is allowed by the ISP Select Use This MAC Address and enter it here Configuring Basic Connectivity 1 8 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual Your Internet Connection Does Require a Login If a login is required by your ISP the following setti
6. Configuring the Wireless Basic Station Note The repeating function cannot be used with Auto Channel Change your channel setting before you enable the wireless repeating function The wireless basic station and repeaters must use the same channel and encryption To configure a router as the wireless basic station 1 Log in to the router as described in Logging In To Your Wireless Router on page 1 1 Customizing Your Network Settings 4 12 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual 2 Select Wireless Settings under Setup in the main menu The Wireless Settings screen displays Set the SSID channel and wireless encryption information Wireless Settings Region Selection Region Europe Wireless Network 7 Enable SSID Broadcast Enable Wireless Isolation Name SSID NETGEAR Channel Auto v Mode Up to 150Mbps v Security Options None D WEP 9 WPA PSKITKIP WPA2 PSK AES F WPA PSK TKIP WPA2 PSK AES Figure 4 7 Customizing Your Network Settings v1 0 November 2011 4 13 N 150 2 Port Wireless Router WNR500 User Manual 3 Select Wireless Repeating Function under Advanced in the main menu The Wireless Repeater screen displays Select the Enable Wireless Repeating Function check box and select the Wireless Basic Station radio button Wireless Repeater Enable Wireless Repeating Function Wireless MAC ofthis router 00 1E E3 EE AE 4B
7. NETGEAR N 150 2 Port Wireless Router WNR500 User Manual a T m ou E A Ne TGEAR 9 7 o 2 E EI WNR500 NETGEAR Inc 350 E Plumeria Drive San Jose CA 95134 USA 202 10962 01 December 2011 v1 0 2011 by NETGEAR Inc All rights reserved Product Registration Support and Documentation Register your product at Attp www netgear com register Registration is required before you can use our telephone support service Product updates and Web support are always available at http Avww netgear com support Setup documentation is available on the support website and on the documentation website When the wireless router is connected to the Internet click the Knowledge Base or the Documentation link under Web Support on the main menu to view support information Trademarks NETGEAR the NETGEAR logo and Connect with Innovation are trademarks or registered trademarks of NETGEAR Inc and or its subsidiaries in the United States and or other countries Information is subject to change without notice Other brand and product names are trademarks or registered trademarks of their respective holders Statement of Conditions In the interest of improving internal design operational function and or reliability NETGEAR reserves the right to make changes to the products described in this document without notice NETGEAR does not assume any liability that may occur due to the use or application of the product
8. WPA2 PSK AES WPA PSK TKIP WPA2 PSK AES Figure 4 9 Customizing Your Network Settings 4 15 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual 3 Select Wireless Repeating Function under Advanced in the main menu The Wireless Repeater screen displays Select the Enable Wireless Repeating Function check box and select the Wireless Basic Station radio button Wireless Repeater F Enable Wireless Repeating Function Wireless MAC ofthis router 00 1E E3 EE AE 4B Wireless Repeater Disable Wireless Clients Association Repeater IP Address 192 168 1 Basic Station MAC Address Wireless Basic Station Disable Wireless Clients Association Repeater MAC Address 1 Repeater MAC Address 2 Repeater MAC Address 3 Repeater MAC Address 4 Apply Cancel Figure 4 10 The available settings in this screen are Disable Wireless Clients Association If checked the wireless basic station does not transmit any signals to clients that are directly connected to it e Repeater IP Address Set the repeater s IP address to an IP address that is different from the Wireless basic station and other repeaters to avoid IP address conflict NETGEAR recommends that you set the Ip addresses of the same network segment for the wireless basic station and repeaters Repeater MAC Address 1 2 3 4 Enter the MAC address of the router that works as the repeater for the wireless basic station Note A
9. 5 12 Optimizing Wireless Performance 222 cn oot toten ado date sot rei nas Pe eque ds 5 14 Changing the MTU SIZ ER 5 15 Quality OF SerVIGB secera AA iaa aa anaiai a 5 16 Using WMM QoS for Wireless Multimedia Applications ssessssse 5 16 Configuring QoS for Internet ACCESS essesenicecrrrecriirrrserrrrisrrrrredettnrenerirrenneereeas 5 17 Overview of Home and Small Office Networking Technologies sssssse 5 22 Assessing Your Speed Requirements ssssssssseeeeeeenene 5 23 Chapter 6 Using Network Monitoring Tools Viewing Wireless Router Status Information eciiesecee icit rnit nk tu 6 2 Viewing a List of Attached Devices oiii deti zeit t EZ teta odo iet ao ovp Eae bue Eas bo nd 6 7 Managing the Configuration FIG 22 reb tr ceo eer Eo Race RC REOR TAE dI 6 7 Backing Up and Restoring the Configuration ccena 6 8 Erasing the d jo Terre Divi o ge 6 8 Updating the Router FIRMWARE sic cete tsacee n toduccos tar Teo tuttug eerie ua certae ceo stditu geo sctt 6 9 Checking for New Firmware in the Router Upgrade Screen ssssssss 6 9 Updating Manually to New Router Firmware sem 6 11 Enabling Remote Management AcCeSS 2 ctatreimc ttis eub ARES CU REA ES AED RARE uad 6 12 HlrcuedyscW e NE 6 13 Contents ix v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual Chapter 7 Troubleshootin
10. 7 If your Dynamic DNS provider allows the use of wildcards in resolving your URL you can select the Use Wildcards check box to activate this feature For example the wildcard feature causes yourhost dyndns org to be aliased to the same IP address as yourhost dyndns org 8 Click Apply to save your configuration Customizing Your Network Settings 4 6 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual Configuring the WAN Setup Options The WAN Setup options let you do the following Disable Port Scan and DoS Protection Configure a DMZ demilitarized zone server Enable the wireless router to respond to a ping on the WAN Internet port Disable IGMP Proxying The IGMP Proxying function lets a LAN PC receive the multicast traffic is interested in from the Internet You can click this check box to disable the function if you do not need it Change the Maximum Transmit Unit MTU size Disable DIP ALG Some SIP applications have their own way to work around the NAT firewall issue and the SIP ALG would conflict with those solutions In most cases you do not have to disable the SIP ALG However if your SIP applications cannot work with the router you can disable the SIP ALG and try the applications again Click the check box to disable SIP ALG Enable IPv6 Pass Through IPv6 pass through is disabled by default If you have IPv6 capable devices in your configuration and would like to use IPv6 instead
11. Restricting Access From Your Network 3 8 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual Send Logs According to this Schedule Specifies how often to send the logs Hourly Daily Weekly or When Log Is Full Day Specifies which day of the week to send the log Relevant when the log is sent weekly or daily Time Specifies the time of day to send the log Relevant when the log is sent daily or weekly If you select the Weekly Daily or Hourly option and the log fills up before the specified period the log is automatically e mailed to the specified e mail address After the log is sent the log is cleared from the router s memory If the router cannot e mail the log file the log buffer might fill up In this case the router overwrites the log and discards its contents 5 Click Apply to save your settings So that the log entries are correctly time stamped and sent at the correct time be sure to set the time as described in the next section Restricting Access From Your Network 3 9 v1 0 November 2011 Chapter 4 Customizing Your Network Settings This chapter describes how to configure advanced networking features of the N 150 2 Port Wireless Router WNR500 including LAN WAN and routing settings It contains the following sections Using the LAN IP Setup Options Using a Dynamic DNS Service on page 4 5 Configuring the WAN Setup Options on page 4 7 Configuring Static Routes on p
12. TxPkts RxPkts Collisions Tx Bis Up Time 190379 710681 0 1104 22 58 51 22 14 55 05 14 55 20601 19681 0 475 6 22 59 10 374501 384019 0 2375 the router statistics Table 6 3 Router Statistics Item Description System Up Time The time elapsed since the router was last restarted Port The statistics for the WAN Internet and LAN Ethernet ports For each port the screen displays the following Status The link status of the port TxPkts The number of packets transmitted on this port since reset or manual clear RxPkts The number of packets received on this port since reset or manual clear Collisions The number of collisions on this port since reset or manual clear Tx B s The current transmission outbound bandwidth used on the WAN and LAN ports Rx B s The current reception inbound bandwidth used on the WAN and LAN ports Up Time The time elapsed since this port acquired the link Poll Interval The intervals at which the statistics are updated in this screen To change the polling frequency enter a time in seconds in the Poll Interval field and click Set Interval To stop the polling entirely click Stop Using Network Monitoring Tools 6 6 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual Viewing a List of Attached Devices The Attached Devices screen contains a table of all IP devices that the router has discovered on the local network Select Attached Devices under Mai
13. UPnP Portmap Table Active Protocol Int Port Ext Port IP Address Yes TCP 9198 11913 192 168 0 2 Yes UDP 5339 7102 192 168 0 2 Figure 5 7 2 The available settings and information displayed in this screen are Turn UPnP On UPnP can be enabled or disabled for automatic device configuration The default setting for UPnP is disabled If this check box is not selected the router does not allow any device to automatically control the resources such as port forwarding mapping of the router Advertisement Period The advertisement period is how often the router broadcasts its UPnP information This value can range from 1 to 1440 minutes The default period is 30 minutes Shorter durations ensure that control points have current device status at the expense of additional network traffic Longer durations might compromise the freshness of the device status but can significantly reduce network traffic Advertisement Time To Live The time to live for the advertisement is measured in hops steps for each UPnP packet sent The time to live hop count is the number of steps a broadcast packet is allowed to propagate for each UPnP advertisement before it disappears The number of hops can range from 1 to 255 The default value for the advertisement time to live is 4 hops which should be fine for most home networks If you notice that some devices are not being updated or reached correctly then it might be necessary to increase this value U
14. throughput of about 1 to 3 megabits per second Mbps Newer technologies such as ADSL2 and Fiber to the Home FTTH will increase the connection speed to tens of Mbps Wireless Your N 150 2 Port Wireless Router WNR500 provides a wireless data throughput of up to 150 Mbps With the introduction of the newer WPA and WPA2 encryption and authentication protocols wireless security is extremely strong To get the best performance use RangeMax NEXT adapters such as the WN511B for your computers Although the WNR500 router is compatible with older 802 11b and 802 11g adapters the use of these older wireless technologies in your network can result in lower throughput overall typically less than 10 Mbps for 802 11b and less than 40 Mbps for 802 11g In addition many older wireless products do not support the latest security protocols WPA and WPA2 Fine Tuning Your Network 5 22 v1 0 November 201 1 N 150 2 Port Wireless Router WNR500 User Manual Powerline For connecting rooms or floors that are blocked by obstructions or are distant vertically consider networking over your building s AC wiring NETGEAR s Powerline HD family of products delivers up to 200 Mbps to any outlet while the older generation XE family of products delivers 14 Mbps or 85 Mbps Data transmissions are encrypted for security and you can configure an individual network password to prevent neighbors from connecting The Powerline HD family of products can coexist
15. v1 0 November 201 1 N 150 2 Port Wireless Router WNR500 User Manual QoS for a MAC Address To create a QoS policy for traffic from a specific MAC address 1 From the main menu under Advanced select QoS Setup The QoS Setup screen displays as shown in Figure 5 8 on page 5 17 Click Add Priority Rule From the Priority Category list select MAC Address The QoS Priority Rules screen changes Qos Priority rules Priority QoS Policy for Priority Category MAC Address M I MAC Device List m I QosPolicy Priority Device Name MACAddress c Pr_mac_soF408 Normal DELL 00 00 56 59 F4 08 REE MAC Address 4 EEHEEHE Device Name SSeS S Priority Normal Add Edit Delete Refresh Apply Cancel I Figure 5 13 If the device to be prioritized appears in the MAC Device List select it The information from the MAC Device List is used to populate the policy name MAC Address and Device Name fields If the device does not appear in the MAC Device List click Refresh If it still does not appear you must complete these fields manually From the Priority drop down list select the priority that this device s traffic should receive relative to other applications and traffic when accessing the Internet The options are Low Normal High and Highest Click Apply to save this rule to the QoS Policy list and return to the QoS Setup screen In the QoS Setu
16. 168 1 100 e Your company s network address is 134 177 0 0 When you first configured your router two implicit static routes were created A default route was created with your ISP as the gateway and a second static route was created to your local network for all 192 168 1 x addresses With this configuration if you attempt to access a device on the 134 177 0 0 network your router forwards your request to the ISP The ISP forwards your request to the company where you are employed and the request is likely to be denied by the company s firewall In this case you must define a static route telling your router that 134 177 0 0 should be accessed through the ISDN router at 192 168 1 100 In this example e The Destination IP Address and IP Subnet Mask fields specify that this static route applies to all 134 177 x x addresses The Gateway IP Address field specifies that all traffic for these addresses should be forwarded to the ISDN router at 192 168 1 100 e A Metric value of 1 will work since the ISDN router is on the LAN Private is selected only as a precautionary security measure in case RIP is activated To add or edit a static route Customizing Your Network Settings 4 10 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual 1 Select Static Routes under Advanced in the main menu The Static Routes screen displays Static Routes Active Name Destination Gateway Figure 4 5 2 Click Ad
17. Address Q9 Get Dynamically From ISP Use Static IP Address IP Address 172 24 1 200 IP Subnet Mask 255 255 240 0 Gateway IP Address 172 24 0 13 Domain Name Server DNS Address Get Automatically From ISP Use These DNS Servers Primary DNS 172 24 0 7 Secondary DNS 172 24 0 6 Router MAC Address 9 Use Default Address Use Computer MAC Address Use This MAC Address 00 1E E3 EE AE 4C Apply Cancel Figure 1 6 e Account Name might also be called Host Name The account name is provided to the ISP during a DHCP request from your router In most cases this setting is not required but some ISPs require it for access to ISP services such as mail or news servers e Domain Name The domain name is provided by your router to computers on your LAN when the computers request DHCP settings from your router In most cases this setting is not required Internet IP Address Determines how your router obtains an IP address for Internet access If your ISP assigns an IP address dynamically by DHCP select Get Dynamically From ISP Configuring Basic Connectivity 1 7 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual f your ISP has assigned you a permanent fixed static IP address for your computer select Use Static IP Address Enter the IP address that your ISP assigned Also enter the subnet mask and the gateway IP address The gateway is the ISP s router to which your router will connect
18. Direktyvos nuostatas v1 0 December 2011 Nederlands Dutch Malti Maltese Hierbij verklaart NETGEAR Inc dat het toestel Radiolan in overeenstemming is met de essenti le eisen en de andere relevante bepalingen van richtlijn 1999 5 EG Hawnhekk NETGEAR Inc jiddikjara li dan Radiolan jikkonforma mal htigijiet essenzjali u ma provvedimenti ohrajn relevanti li hemm fid Dirrettiva 1999 5 EC Magyar Hungarian Polski Polish Alul rott NETGEAR Inc nyilatkozom hogy a Radiolan megfelel a vonatkoz alapvet k vetelm nyeknek s az 1999 5 EC ir nyelv egy b el r sainak Niniejszym NETGEAR Inc o wiadcza ze Radiolan jest zgodny z zasadniczymi wymogami oraz pozostalymi stosownymi postanowieniami Dyrektywy 1999 5 EC Portugu s Portuguese Slovensko Slovenian Slovensky Slovak NETGEAR Inc declara que este Radiolan est conforme com os requisitos essenciais e outras disposi es da Directiva 1999 5 CE NETGEAR Inc izjavlja da je ta Radiolan v skladu z bistvenimi zahtevami in ostalimi relevantnimi dolo ili direktive 1999 5 ES NETGEAR Inc t mto vyhlasuje Ze Radiolan sp a z kladn po iadavky a v etky pr slu n ustanovenia Smernice 1999 5 ES Suomi Finnish Svenska Swedish NETGEAR Inc vakuuttaa t ten ett Radiolan tyyppinen laite on direktiivin 1999 5 EY oleellisten vaatimusten ja sit koskevien direktiivin muiden ehtojen mukainen H rmed intygar NE
19. Name list select the service or game that you will host on your network If the service does not appear in the list see the following section Adding a Custom Service 3 In the corresponding Server IP Address fields enter the last digit of the IP address of your local computer that will provide this service 4 To the right of Server IP Address click Add The service appears in the list in the screen Adding a Custom Service To define a service game or application that does not appear in the Service Name list you must first determine which port number or range of numbers is used by the application You can usually determine this information by contacting the publisher of the application or user groups or newsgroups When you have the port number information follow these steps 1 Select Port Forwarding Port Triggering under Advanced in the main menu Fine Tuning Your Network 5 7 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual 2 Click Add Service see Figure 5 1 on page 5 7 The Ports Custom Services screen displays 7 Ports Custom Services Service Name Service Type TCP UDP v Starting Port L 1465534 Ending Port 1465534 Server IP Address 192 168 i 5 m Figure 5 2 In the Service Name field enter a descriptive name In the Service Type field select the protocol If you are unsure select TCP UDP In the Starting Port field enter the beginning port number If
20. November 201 1 N 150 2 Port Wireless Router WNR500 User Manual e Keep Existing Wireless Settings This check box is automatically selected after WPS is enabled to prevent unwanted settings changes and is also selected if you have already specified wireless security settings or your SSID without using WPS When this check box is not selected adding a new wireless client using the Add WPS Client screen see Configuring WPS Security Wi Fi Protected Setup on page 2 13 changes the router s SSID and security passphrase You might need to clear it if you are using certain registrars such as for a Windows Vista PC to configure the router through WPS Connecting Additional Wireless Client Devices after WPS Setup You can add WPS enabled and non WPS enabled client devices Adding Additional WPS Enabled Clients To add an additional wireless client device that is WPS enabled Note Your wireless settings do not change when you add an additional WPS enabled client unless you have cleared the Keep Existing Wireless Settings check box in the Wireless Settings screen If you do clear the check box a new SSID and a passphrase are generated and all existing connected wireless clients are disassociated and disconnected from the router 1 Follow the procedures in Configuring WPS Security Wi Fi Protected Setup on page 2 13 or Security PIN Entry on page 2 15 2 For information about how to view a list of all devices connected
21. Online Gaming To create a QoS policy for traffic for specific applications or online games 1 From the main menu of the browser interface under Advanced select QoS Setup The QoS Setup screen displays as shown in Figure 5 8 Fine Tuning Your Network 5 17 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual 2 Click Setup QoS rule The QoS Priority Rules screen displays Qos Priority Rule list QoS Policy Priority Description MSN_messenger High MSN_messenger application Skype Highest Skype application Yahoo_Messanger High Yahoo_messanger application IP Phone Highest IP Phone application T Vonage_IP_Phone Highest Vonage_IP_Phone application NetMeeting High Netmeeting application AIM High AIM application Google_Talk Highest Google_Talk application Counter Strike High On line Gaming Counter Strike Age of Empires High On line Gaming Age of Empires Diablo II High On line Gaming Diablo II Everquest High On line Gaming Everquest Half Life High On line Gaming Half Life Quake 2 High On line Gaming Quake 2 Quake 3 High On line Gaming Quake 3 Unreal Tourment High On line Gaming Unreal Tourment Warcraft High On line Gaming Warcraft Return to Castle Wolfenstein High On line Gaming Return to Castle Wolfenstein Edit Delete Delete All Add Priority Rule Figure 5 9 For convenience the QoS Policy table lists m
22. Safeguarding Your Network 2 24 v1 0 November 2011 Chapter 3 Restricting Access From Your Network This chapter describes how to use the content filtering and reporting features of the N 150 2 Port Wireless Router WNR500 to protect your network This chapter includes the following sections e Content Filtering Overview e Blocking Access to Internet Sites e Blocking Access to Internet Services on page 3 3 Scheduling Blocking on page 3 5 e Viewing Logs of Web Access or Attempted Web Access on page 3 6 e Configuring E mail Alert and Web Access Log Notifications on page 3 7 Content Filtering Overview The N 150 2 Port Wireless Router WNR500 provides you with Web content filtering options plus browser activity reporting and instant alerts through e mail Parents and network administrators can establish restricted access policies based on time of day Web addresses and Web address keywords You can also block Internet access by applications and services such as chat rooms or games Blocking Access to Internet Sites The WNR500 router allows you to restrict access based on Web addresses and Web address keywords Up to 255 entries are supported in the Keyword list Keyword application examples e Ifthe keyword XXX is specified the URL www zzzyyqq com xxx html is blocked e Ifthe keyword com is specified only websites with other domain suffixes such as edu org or gov can be viewed To block acce
23. and Las WPA2 PSK WEP security is not supported by WPS To connect to a wireless client that supports WPS do the following 1 Log in to the router as described in Logging In To Your Wireless Router on page 1 1 2 Select Add WPS Client in the main menu and click Next Safeguarding Your Network 2 13 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual 3 Select the Push Button setup method Add WPS Client Push Button recommended You can either press the Push Button physically on the router or press the Button below soft Push Button Omura wr loco Figure 2 6 4 Click the button in the Add WPS Client screen The Connecting to New Wireless Client screen displays Connecting to New Wireless Client Please click the software or hardware button on the client to start the WPS process e AUAAEAAEAARLELULUHIHEITU TIU Figure 2 7 The green light on the WNR500 router begins to blink in a regular pattern While the button light is blinking you have 2 minutes to enable WPS on the device you are trying to connect to the router 5 Inthe wireless client follow its specific networking instructions to enable WPS to allow it to connect to the router The WNR500 router s green light ceases blinking and remains on when one of these conditions occurs The router and the client establish a wireless connection e The 2 minute window period expires for establishing a WPS connection
24. box is not selected 11 Configure and test your wireless computer for wireless connectivity Program the wireless adapter of your computer to have the same SSID and channel that you specified in the router and disable encryption Check that your computer has a wireless link and can obtain an IP address by DHCP from the router Once your computer has Wireless N 150 connectivity to the router you can configure the advanced wireless security functions of the computer and router for more information about security and these settings see Chapter 2 Safeguarding Your Network Configuring Basic Connectivity 1 13 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual Configuring Basic Connectivity v1 0 November 2011 Chapter 2 Safeguarding Your Network The N 150 2 Port Wireless Router WNR500 provides highly effective security features which are covered in detail in this chapter This chapter includes the following sections e Choosing Appropriate Wireless Security e Recording Wireless N 150 Settings Setup Information on page 2 5 e Changing Wireless Security Settings on page 2 6 e Viewing Advanced Wireless Settings on page 2 12 e Configuring WPS Security Wi Fi Protected Setup on page 2 13 e Restricting Wireless Access by MAC Address on page 2 18 e Changing the Administrator Password on page 2 20 e Adding Guest Networks on page 2 21 e Backing Up Your Configuration
25. necessary to change the wireless channel unless you notice interference problems with another nearby wireless network The wireless router uses channel bonding technology to extend the bandwidth for data transmission For more information about the wireless channel frequencies see the online document that you can access from Wireless Networking Basics in Appendix B e Mode The default mode is Up to 150Mbps Note The maximum wireless signal rate is derived from the IEEE Standard 802 11 specifications Actual data throughput will vary Network conditions and environmental factors including volume of network traffic building materials and construction and network overhead lower actual data throughput rate The Mode options are Up to 54 Mbps Legacy Mode with maximum speed of up to 54 Mbps for b g networks Upto 65 Mbps Neighbor Friendly Mode Will not interfere with neighboring wireless networks Upto 150 Mbps Performance Mode Maximum Nx speeds up to 150 Mbps Using channel expansion to achieve the 150 Mbps data rate the WNR500 will use the channel you selected as the primary channel and expand to the secondary channel primary channel 4 or 4 to achieve a 40 MHz frame by frame bandwidth The WNR500 will detect channel usage and will disable frame by frame expansion if the expansion would result in interference with the data transmission of other access points or clients e Security Options The selection
26. on the same network with older generation XE family products or HomePlug 1 0 products but they are not interoperable with these older products Wired Ethernet As gigabit speed Ethernet ports 10 100 1000 Mbps become common on newer computers wired Ethernet remains a good choice for speed economy and security Gigabit Ethernet can extend up to 100 meters with twisted pair wiring of Cat 5e or better A wired connection is not susceptible to interference and eavesdropping would require a physical connection to your network Note Actual data throughput will vary Network conditions and environmental factors including volume of network traffic building materials and construction and network overhead can lower actual data throughput rate Assessing Your Speed Requirements Because your Internet connection is likely to operate at a much lower speed than your local network faster local networking technologies might not improve your Internet experience However many emerging home applications require high data rates For example Streaming HD video requires 10 to 30 Mbps per stream Because latency and packet loss can disrupt your video plan to provide at least twice the capacity you need Streaming MP3 audio requires less than 1 Mbps per stream and does not strain most modern networks Like video however streaming audio is also sensitive to latency and packet loss so a congested network or a noisy link can cause problems Fi
27. port number for a Web server process e The destination address is the public IP address of your router e The destination port number is 33333 The Web server then sends this reply message to your router 5 Upon receiving the incoming message your router checks its session table to determine whether there is an active session for port number 33333 Finding an active session the router then modifies the message restoring the original address information replaced by NAT The message now contains the following address and port information e The source address is the IP address of www example com e The source port number is 80 the standard port number for a Web server process e The destination address is your computer s IP address e The destination port number is 5678 the browser session that made the initial request Your router then sends this reply message to your computer which displays the Web page from www example com 6 When you finish your browser session your router eventually senses a period of inactivity in the communications Your router then removes the session information from its session table and incoming traffic is no longer accepted on port number 33333 How Port Triggering Changes the Communication Process In the preceding example requests are sent to a remote computer by your router from a particular service port number and replies from the remote computer to your router are directed to that port number I
28. port triggering is disabled However any port triggering configuration information you added to the router is retained even though it is not used Fine Tuning Your Network 5 10 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual 4 Inthe Port Triggering Timeout field enter a value up to 9999 minutes This value controls the inactivity timer for the designated inbound ports The inbound ports close when the inactivity time expires This is required because the router cannot be sure when the application has terminated 5 Click Add the Port Triggering Services screen displays Port Triggering Services Service Service Name Service User Any hc Service Type TCP Triggering Port 1 65535 Required Inbound Connection Connection Type TCP UDP v Starting Port 1 65535 Ending Port 1 65535 Figure 5 5 6 Inthe Service Name field enter a descriptive service name In the Service User field select Any the default to allow this service to be used by any computer on the Internet Otherwise select Single address and enter the IP address of one computer to restrict the service to a particular computer Select the service type either TCP or UDP In the Triggering Port field enter the number of the outbound traffic port that will cause the inbound ports to be opened 10 Enter the inbound connection port information in the Connection Type Starting Port and Ending Port fields F
29. provided by DynDNS org You must first visit their website at www dyndns org and obtain an account and host name which you specify in the router Then whenever your ISP assigned IP address changes your router automatically contacts the Dynamic DNS service provider logs in to your account and registers your new IP address If your host name is hostname for example you can reach your router at hostname dyndns org Customizing Your Network Settings 4 5 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual Select Dynamic DNS under Advanced in the main menu The Dynamic DNS screen displays Dynamic DNS Use a Dynamic DNS Service Service Provider www DynDNS org Host Name User Name Password Use Wildcards Apply Jl Cancel Jl Show Status Figure 4 3 To configure for a Dynamic DNS service 1 Register for an account with one of the Dynamic DNS service providers whose names appear in the Service Provider list For example for DynDNS org select www dynDNS org 2 Select the Use a Dynamic DNS Service check box 3 Select the name of your Dynamic DNS service provider 4 Enter the host name or domain name that your Dynamic DNS service provider gave you 5 Enter the user name for your Dynamic DNS account This is the name that you use to log in to your account not your host name 6 Enter the password or key for your Dynamic DNS account
30. reserved for wireless testing and advanced configuration only Do not change these settings Safeguarding Your Network 2 12 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual e Transmit Power Control There are four different settings for transmit power control 100 the default 75 50 and 25 e WPS Settings For information about these settings see the section Configuring WPS Security Wi Fi Protected Setup on page 2 13 Wireless Card Access List For information about this list see Restricting Wireless Access by MAC Address on page 2 18 Configuring WPS Security Wi Fi Protected Setup If your wireless clients support Wi Fi Protected Setup WPS you can use this feature to configure the router s network name SSID and security settings and at the same time connect a wireless client securely and easily to the router Look for the symbol on your client device WPS automatically configures the network name SSID and wireless security settings for the router if the router is in its default state and broadcasts these settings to the wireless client When you add wireless clients whether or not they are WPS enabled the added devices must share the same network name SSID and security passphrase For more information see Connecting Additional Wireless Client Devices after WPS Setup on page 2 17 Note If you choose to use WPS the only security methods supported are WPA PSK
31. s or circuit layout s described herein Certificate of the Manufacturer Importer It is hereby certified that the N 150 2 Port Wireless Router WNR500 has been suppressed in accordance with the conditions set out in the BMPT AmtsbIVfg 243 1991 and Vfg 46 1992 The operation of some equipment for example test transmitters in accordance with the regulations may however be subject to certain restrictions Please refer to the notes in the operating instructions Federal Office for Telecommunications Approvals has been notified of the placing of this equipment on the market and has been granted the right to test the series for compliance with the regulations Best tigung des Herstellers Importeurs Es wird hiermit best tigt dab das N 150 2 Port Wireless Router WNR500 gem der im BMPT AmtsbIVfg 243 1991 und Vfg 46 1992 aufgef hrten Bestimmungen entst rt ist Das vorschriftsmaBige Betreiben einiger Ger te z B Testsender kann jedoch gewissen Beschr nkungen unterliegen Lesen Sie dazu bitte die Anmerkungen in der Betriebsanleitung Das Bundesamt f r Zulassungen in der Telekommunikation wurde davon unterrichtet da dieses Ger t auf den Markt gebracht wurde und es ist berechtigt die Serie auf die Erf llung der Vorschriften hin zu berpr fen Regulatory Compliance Information This section includes user requirements for operating this product in accordance with National laws for usage of radio spectrum and operation of radio devi
32. shown or is 0 0 0 0 the router cannot connect to the Internet If set to None the router is configured to use a fixed IP address on the WAN If set to DHCP Client the router is configured to obtain an IP address dynamically from the ISP IP Subnet Mask Domain Name Server MAC Address The IP subnet mask being used by the Internet WAN port of the router For an explanation of subnet masks and subnet addressing click the link to the online document TCP IP Networking Basics in Appendix B The Domain Name Server addresses being used by the router A Domain Name Server translates human language URLs such as www netgear com into IP addresses LAN Port The following settings apply to the Ethernet LAN port of the router The Media Access Control address This is the unique physical address being used by the LAN port of the router IP Address DHCP The IP address being used by the Ethernet LAN port of the router The default is 192 168 1 1 Identifies whether the router s built in DHCP server is active for the LAN attached devices IP Subnet Mask The IP subnet mask being used by the Ethernet LAN port of the router The default is 255 255 255 0 Using Network Monitoring Tools 6 3 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual Table 6 1 Wireless Router Status Fields continued Field Name SSID Description Wireless Port The following setting
33. the application uses only a single port enter the same port number in the Ending Port field e If the application uses a range of ports enter the ending port number of the range in the Ending Port field In the Server IP Address field enter the IP address of your local computer that will provide this service Click Apply The service appears in the list in the Port Forwarding Port Triggering screen Editing or Deleting a Port Forwarding Entry To edit or delete a port forwarding entry 1 In the table select the button next to the service name Server Name Start Port End Port Server IP Address 1 FTP 20 21 192 168 1 2 Figure 5 3 Fine Tuning Your Network 5 8 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual 2 Click Edit Service or Delete Service to make changes 3 Click Apply Application Example Making a Local Web Server Public If you host a Web server on your local network you can use port forwarding to allow Web requests from anyone on the Internet to reach your Web server To make a local Web server public 1 Assign your Web server either a fixed IP address or a dynamic IP address using DHCP address reservation as explained in Using Address Reservation on page 4 4 In this example your router will always give your Web server an IP address of 192 168 1 33 2 In the Port Forwarding screen configure the router to forward the HTTP service to the local address of yo
34. this equipment does cause harmful interference to radio or television reception which can be determined by turning the equipment off and on the user is encouraged to try to correct the interference by one or more of the following methods e Reorient or relocate the receiving antenna Increase the separation between the equipment and the receiver Connect the equipment into an electrical outlet on a circuit different from that which the radio receiver is connected e Consult the dealer or an experienced radio TV technician for help FCC Caution e Any changes or modifications not expressly approved by the party responsible for compliance could void the user s authority to operate this equipment e This device complies with Part 15 of the FCC Rules Operation is subject to the following two conditions 1 This device may not cause harmful interference and 2 this device must accept any interference received including interference that may cause undesired operation e For product available in the USA market only channel 1 11 can be operated Selection of other channels is not possible This device and its antenna s must not be co located or operation in conjunction with any other antenna or transmitter vi v1 0 December 2011 Canadian Department of Communications Radio Interference Regulations This digital apparatus TBD does not exceed the Class B limits for radio noise emissions from digital apparatus as set out in th
35. to your router including wireless and Ethernet connected see Viewing a List of Attached Devices on page 6 7 Adding Additional Non WPS Enabled Clients If you are connecting a combination of WPS enabled clients and clients that are not WPS enabled you cannot use the WPS setup procedures to add clients that are not WPS enabled To connect both non WPS enabled and WPS enabled clients to the WNRS500 router 1 Configure the settings of the WNR500 router shown in the Wireless Settings screen for WPA PSK or WPA2 PSK security and record that information See Configuring WPA PSK and WPA2 PSK Wireless Security on page 2 10 When you change security settings all existing connected wireless clients that do not share those settings are disassociated and disconnected from the router Safeguarding Your Network 2 17 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual 2 For the non WPS enabled devices that you wish to connect open the networking utility and follow the utility s instructions to enter security settings 3 For the WPS enabled devices that you wish to connect follow the procedures in Configuring WPS Security Wi Fi Protected Setup on page 2 13 The WNR500 router automatically preserves the settings you configured in step 1 so all clients share the same security settings for more information see Configuring the WPS Settings on page 2 16 4 For information about how to view a li
36. traffic However you can modify the firewall s rules to achieve the following behavior Blocking sites Block access from your network to certain Web locations based on Web addresses and Web address keywords This feature is described in Blocking Access to Internet Sites on page 3 1 e Blocking services Block the use of certain Internet services by specific computers on your network This feature is described in Blocking Access to Internet Services on page 3 3 e Scheduled blocking Block sites and services according to a daily schedule This feature is described in Scheduling Blocking on page 3 5 Safeguarding Your Network 2 23 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual Allow inbound access to your server To allow inbound access to resources on your local network for example a Web server or remote desktop program you can open the needed services by configuring port forwarding as described in Allowing Inbound Connections to Your Network on page 5 1 Allow certain games and applications to function correctly Some games and applications need to allow additional inbound traffic in order to function Port triggering can dynamically allow additional service connections as described in Configuring Port Triggering on page 5 9 Another feature to solve application conflicts with the firewall is Universal Plug and Play UPnP described in Using Universal Plug and Play on page 5 12
37. wireless basic station can be configured with up to four repeaters 4 Click Apply to save your settings Customizing Your Network Settings 4 16 v1 0 November 2011 Chapter 5 Fine Tuning Your Network This chapter describes how to modify the configuration of the N 150 2 Port Wireless Router WNR500 to allow specific applications to access the Internet or to be accessed from the Internet and how to make adjustments to enhance your network s performance This chapter includes the following sections e Allowing Inbound Connections to Your Network e Configuring Port Forwarding to Local Servers on page 5 6 e Configuring Port Triggering on page 5 9 e Using Universal Plug and Play on page 5 12 e Optimizing Wireless Performance on page 5 14 e Changing the MTU Size on page 5 15 e Quality of Service on page 5 16 e Overview of Home and Small Office Networking Technologies on page 5 22 Allowing Inbound Connections to Your Network By default the WNR500 router blocks any inbound traffic from the Internet to your computers except for replies to your outbound traffic However you might need to create exceptions to this rule for the following purposes e To allow remote computers on the Internet to access a server on your local network e To allow certain applications and games to work correctly when their replies are not recognized by your router Your router provides two features for creating these ex
38. your network in the correct sequence see the N 50 2 Port Wireless Router WNR500 Installation Guide for instructions Troubleshooting PPPoE If you are using PPPoE try troubleshooting your Internet connection To troubleshoot a PPPoE connection Troubleshooting 7 5 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual Log in to the wireless router Select Router Status under Maintenance on the main menu Click Connection Status If all of the steps indicate OK then your PPPoE connection is up and working If any of the steps indicate Failed you can attempt to reconnect by clicking Connect The wireless router will continue to attempt to connect indefinitely If you cannot connect after several minutes you might be using an incorrect service name user name or password There also might be a provisioning problem with your ISP Note Unless you connect manually the wireless router will not authenticate using PPPoE until data is transmitted to the network Troubleshooting Internet Browsing If your wireless router can obtain an IP address but your computer is unable to load any web pages from the Internet check the following Your computer might not recognize any DNS server addresses A DNS server is a host on the Internet that translates Internet names such as www addresses to numeric IP addresses Typically your ISP will provide the addresses of one or two DNS servers for your us
39. 00 1 1 days 0 hrs 0 minutes 0 days 14 hrs 28 minutes Table 6 2 describes the connection status settings Table 6 2 Connection Status Settings Item IP Address Description The IP address that is assigned to the router Subnet Mask Default Gateway The subnet mask that is assigned to the router The IP address for the default gateway that the router communicates with Lease Obtained DHCP Server The IP address for the Dynamic Host Configuration Protocol server that provides the TCP IP configuration for all the computers that are connected to the router DNS Server The IP address of the Domain Name Service server that provides translation of network names to IP addresses The date and time that the lease was obtained Lease Expires The date and time that the lease will expire a Click the Release button to release the connection status items that 1s all items return to 0 b Click the Renew button to renew to the connection status items that is all items are refreshed c Click the Close Window button to close the Connection Status screen Using Network Monitoring Tools 6 5 v1 0 November 201 1 3 Click Show Statisti System Up Time 22 59 14 Port Status WAN 100M Full LAN 1 Link down LAN 2 100M Full WLAN 150M Poll Interval 5 secs Figure 6 3 Table 6 3 describes N 150 2 Port Wireless Router WNR500 User Manual cs to display router usage statistics
40. 1 0 November 201 1 N 150 2 Port Wireless Router WNR500 User Manual Enabling Remote Management Access Using the Remote Management feature you can allow a user on the Internet to configure upgrade and check the status of your WNR500 router Select Remote Management under Advanced in the main menu The Remote Management screen displays Remote Management C Turn Remote Management On Remote Management Address 10 1 32 90 8080 Allow Remote Access By Only This Computer IP Address Range From Tol 9 Everyone Port Number Figure 6 10 Note Be sure to change the router s default configuration password to a very secure password The ideal password should contain no dictionary words from any language and should be a mixture of letters both uppercase and lowercase numbers and symbols Your password can be up to 30 characters To configure your router for remote management 1 Select the Turn Remote Management On check box 2 Under Allow Remote Access By specify what external IP addresses will be allowed to access the router s remote management E Note For enhanced security restrict access to as few external IP addresses as practical Using Network Monitoring Tools 6 12 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual Traffic Meter Traffic Metering allows you to monitor the volume of Internet traffic passing through your router s Inter
41. 2 9 Wi Fi Protected Access with Pre Shared Key WPA PSK and WPA2 PSK data encryption provides extremely strong data security very effectively blocking eavesdropping Because WPA and WPA2 are relatively new standards older wireless adapters and devices might not support them For more information see Configuring WPA PSK and WPA2 PSK Wireless Security on page 2 10 Safeguarding Your Network 2 3 v1 0 November 201 1 N 150 2 Port Wireless Router WNR500 User Manual Table 2 2 Other Features That Enhance Security Security Type Disable the wireless router radio Description If you disable the wireless router radio wireless devices cannot communicate with the router at all You might disable this when you are away or when other users of your network all use wired connections For more information see Viewing Advanced Wireless Settings on page 2 12 Turn off the broadcast of the wireless network name SSID If you disable the broadcast of the SSID only devices that know the correct SSID can connect This nullifies the wireless network discovery feature of some products such as Windows XP but your data is still fully exposed to an intruder using available wireless eavesdropping tools For more information see Viewing Advanced Wireless Settings on page 2 12 Restrict access based on MAC address You can restrict access to only trusted computers so that unknown computers cannot wirel
42. 3 6 9 fixed IP addresses 1 8 Fragmentation Threshold 2 2 fragmented data packets 5 5 frequency channel 2 8 G games QoS for 5 8 generating encryption keys 2 0 Gigabit Ethernet 5 23 guest networks adding 2 27 H hardware version 6 3 host name 1 7 6 7 idle time out 7 77 inbound traffic allowing or blocking 5 interface specifications A 3 interference reducing 5 4 Internet connection default settings A Internet port status 6 3 Internet Relay Chat IRC 5 3 Internet services blocking access 3 3 interval poll 6 6 Index 2 v1 0 November 201 1 IP addresses blocking access by 3 5 current 6 3 dynamic or static 1 7 LAN 4 3 registering domain name 4 5 reserved 4 4 IP subnet mask 4 3 6 3 ISP settings basic 1 6 K keys encryption 2 0 keywords blocking by 3 knowledge base 4 L LAN IP setup 4 LAN path troubleshooting 7 7 LAN port QoS for 5 20 LAN port settings 6 3 language screen display 4 lease DHCP 6 5 Legacy mode 2 8 local network default settings A local servers port forwarding to 5 6 logging in login required 9 login settings A logout automatic 4 logs sending 3 7 time stamping entries 3 6 viewing 3 6 MAC addresses attached devices 6 7 current 6 3 entering 8 N 150 2 Port Wireless Router WNR500 User Manual QoS for 5 17 5 21 restricting access by 2 8 spoofing 7 5 mail server outgoing 3 8 managing router remotel
43. Click Add to add this wireless device to the Wireless Card Access List The screen changes back to the list screen Repeat step 3 through step 5 for each additional device you want to add to the list 7 Select the Turn Access Control On check box Note When configuring the router from a wireless computer whose MAC address is not in the Trusted PC list if you select Turn Access Control On you lose your wireless connection when you click Apply You must then access the wireless router from a wired computer or from a wireless computer that is on the access control list to make any further changes 8 Click Apply to save your Wireless Card Access List settings Now only devices on this list can wirelessly connect to the WNR500 router Warning MAC address filtering adds an obstacle against unwanted access to your network by the general public However because your trusted MAC addresses appear in your wireless transmissions an intruder can read them and impersonate them Do not rely on MAC address filtering alone to secure your network Changing the Administrator Password The default password for the router s Web Configuration Manager is password NETGEAR recommends that you change this password to a more secure password default password of password If you save the settings with a new password and then you later forget the new password you will have to reset the router back to the factory defaults and log in
44. If the connection is not established no WPS security settings will be specified in the WNR500 router Safeguarding Your Network 2 14 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual Security PIN Entry There are two ways to enable a wireless client to join a network using a PIN using the router s security PIN or using the wireless client s security PIN Using the Router s Security PIN 1 Obtain your router s security PIN from the rear panel of the router or from the Advanced Wireless Settings screen On the wireless client follow its specific networking instructions to enter the router s security PIN and to establish a wireless connection with the router Using the Wireless Client s Security PIN 1 2 3 Log in to the router as described in Logging In To Your Wireless Router on page 1 1 Select Add WPS Client in the main menu and click Next Select the PIN Number setup method Add WPS Client Select a setup method Push Button recommended 9 PIN Number If your Adapter supports WPS please click on Generate a client Security Pin to input on the AP Router Gateway and put the generated client PIN number here Enter Clients PIN Figure 2 8 On the wireless client obtain its security PIN or follow its specific networking instructions to generate a client security PIN In the Add WPS Client screen of the WNR500 router enter the client security PIN in the Enter Clien
45. Network 2 11 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual Viewing Advanced Wireless Settings This section describes the wireless settings that you can view and specify in the Advanced Wireless Settings screen which you access under Advanced in the main menu To configure the advanced wireless security settings of your router 1 Log in to the router as described in Logging In To Your Wireless Router on page 1 1 2 Select Wireless Settings under Advanced in the main menu The advanced Wireless Settings screen displays Advanced Wireless Settings Wireless Advanced Setting Enable Wireless Router Radio Fragmentation Length 256 2346 2346 CTS RTS Threshold 1 2347 2346 Preamble Mode Short Preamble Transmit Power Control 10096 w WPS Settings Router s PIN 51937751 Y Enable WPS Disable Router s PIN Keep Existing Wireless Settings Wireless Card Access List Setup Access List Apply Cancel Figure 2 5 The available settings in this screen are Enable Wireless Router Radio If you disable the wireless router radio wireless devices cannot connect to the WNR500 router If you will not be using your wireless network for a period of time you can clear this check box and disable all wireless connectivity e Fragmentation Length CTS RTS Threshold and Preamble Mode The Fragmentation Length CTS RTS Threshold and Preamble Mode options are
46. PnP Portmap Table The UPnP Portmap Table displays the IP address of each UPnP device that is currently accessing the router and which ports Internal and External that device has opened The UPnP Portmap Table also displays what type of port is open and whether that port is still active for each IP address 3 Click Apply to save your settings Fine Tuning Your Network 5 13 v1 0 November 201 1 N 150 2 Port Wireless Router WNR500 User Manual Optimizing Wireless Performance The speed and operating distance or range of your wireless connection can vary significantly based on the physical placement of the wireless router You should choose a location for your router that will maximize the network speed Note Failure to follow these guidelines can result in significant performance degradation or inability to wirelessly connect to the router For complete range and performance specifications click the link to the online document Wireless Networking Basics in Appendix B The following list describes how to optimize wireless router performance Identify critical wireless links If your network has several wireless devices decide which wireless devices need the highest data rate and locate the router near them Many wireless products have automatic data rate fallback which allows increased distances without loss of connectivity This also means that devices that are farther away might be slower Therefore the most cri
47. TGEAR Inc att denna Radiolan st r verensst mmelse med de v sentliga egenskapskrav och vriga relevanta best mmelser som framg r av direktiv 1999 5 EG slenska Icelandic Norsk Norwegian H r me l sir NETGEAR Inc yfir v a Radiolan er samr mi vid grunnkr fur og a rar kr fur sem ger ar eru tilskipun 1999 5 EC NETGEAR Inc erkl rer herved at utstyret Radiolan er i samsvar med de grunnleggende krav og vrige relevante krav i direktiv 1999 5 EF This device is a 2 4 GHz wideband transmission system transceiver intended for use in all EU member states and EFTA countries except in France and Italy where restrictive use applies In Italy the end user should apply for a license at the national spectrum authorities in order to obtain authorization to use the device for setting up outdoor radio links and or for supplying public access to telecommunications and or network services This device may not be used for setting up outdoor radio links in France and in some areas the RF output power may be limited to 10 mW EIRP in the frequency range of 2454 2483 5 MHz For detailed information the end user should contact the national spectrum authority in France v1 0 December 2011 FCC Requirements for Operation in the United States FCC Information to User This product does not contain any user serviceable components and is to be used with approved antennas only Any product changes or mo
48. WAN Setup Use Computer MAC Address LAN Setup Use This MAC Address 00 1E E3 EE AE 4C QoS Setup Dynamic DNS Static Routes Remote Management qi Figure 1 4 If the wireless router is connected to the Internet you can select Knowledge Base or Documentation under Web Support in the main menu to view support information or the documentation for the wireless router If you do not click Logout the wireless router will wait for 5 minutes after no activity before it automatically logs you out Selecting a Language for Your Screen Display Using the Select Language drop down menu located in the upper right corner of the Router Manager screen you can display the router manager screens in any of languages shown in Figure 1 5 Configuring Basic Connectivity 1 4 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual NETGEAR SMARTWIZARD router manager Basic Wireless Router mode WNRSOO Setup Wizard Basic Settings Add WPS Client Does Your Internet Connection Require A Login Oves G No Basic Settings Wireless Settings Guest Network Logs Account Name If Required WNRS500 Block Sites Block Services Schedule E mail Domain Name If Required Internet IP Address Get Dynamically From ISP Router Status O Use Static IP Address Attached Devices IP Address Backup Settings IP Subnet Mask Set Password Gateway IP Address
49. acking up 6 8 erasing 6 8 managing 6 7 configuring advanced security 2 2 basic security 2 6 DMZ server 4 6 Dynamic DNS 4 6 LAN IP settings 4 2 NAT 4 9 port forwarding 5 6 port triggering 5 9 WPA security 2 0 WPS 2 16 See also adding connection mode 0 connection status settings 6 5 connection types 5 22 content filtering 3 CTS RTS Threshold 2 2 custom service port forwarding 5 7 customer support ii Index 1 v1 0 November 2011 D data packets fragmented 5 5 date and time troubleshooting 7 9 daylight savings time 3 6 7 9 default DMZ server 4 8 default factory settings listed A restoring 7 10 default gateway 6 5 default LAN IP configuration 4 3 deleting configuration 6 8 device name 4 2 DHCP server 4 3 6 5 DHCP setting 6 3 disabling router PIN 2 6 DMZ server 4 8 DNS servers 5 2 Documentation Web page 4 documents reference B domain name 7 Domain Name Server DNS addresses current 6 3 entering 8 1 11 Dynamic DNS 4 5 dynamic IP addresses 7 DynDNS org 4 5 E electromagnetic emissions A 3 e mailing logs 3 7 encryption 2 encryption keys 2 0 environmental specifications A 3 erasing configuration 6 8 Ethernet MAC address 6 7 N 150 2 Port Wireless Router WNR500 User Manual F factory default settings listed A 7 restoring 7 0 filtering content 3 firewalls default settings A 2 overview 2 23 firmware restoring 7 3 updating 3 6
50. age 4 10 Wireless Repeating Function on page 4 12 Using the LAN IP Setup Options The LAN Setup screen allows configuration of LAN IP services such as Dynamic Host Configuration Protocol DHCP and Routing Information Protocol RIP 4 1 v1 0 November 201 1 N 150 2 Port Wireless Router WNR500 User Manual To configure LAN IP settings select LAN Setup under Advanced in the main menu The LAN Setup screen displays LAN Setup Device Name WNR612v2 LAN TCP IP Setup IP Address 192 168 1 1 IP Subnet Mask 255 255 255 0 RIP Direction Both v RIP Version Disabled v v Use Router as DHCP Server Starting IP Address 2 Ending IP Address 254 Address Reservation ad IP Address Device Name MAC Address Delete Figure 4 1 Configuring a Device Name The device name is a user friendly name for the router This name is shown in the Network on Windows Vista and the Network Explorer on all Windows systems The Device Name field cannot be blank The default name is WNR500 Configuring LAN TCP IP Setup Parameters These are advanced settings that you might configure if you are a network administrator and your network contains multiple routers The router is shipped preconfigured to use private IP addresses on the LAN side and to act as a DHCP server see Using the Router as a DHCP Server on page 4 3 Note If you change the LAN IP address of the router while connected through the browser you
51. aintenance in the main menu to check that an IP address is shown for the Internet Port If 0 0 0 0 is shown your wireless router has not obtained an IP address from your service provider If your router is unable to obtain an IP address from the your service provider the problem might be one of the following e You might need to force your cable or DSL modem to recognize your new router by restarting your network in the sequence described in the N 50 2 Port Wireless Router WNR500 Installation Guide e Your service provider might require a login Ask your service provider whether they require a PPP over Ethernet PPPoE login see Troubleshooting PPPoE on page 7 5 e You might have incorrectly set the service name user name or password Review your router s Basic Settings screen e Your service provider might check for your computer s host name Assign the computer Host Name of your ISP account to the wireless router on the Basic Settings screen e Your service provider might only allow one Ethernet MAC address to connect to the Internet and check for your computer s MAC address If this is the case nform your service provider that you have bought a new network device and ask them to use the wireless router s MAC address or Configure your router to spoof your computer s MAC address On the Basic Settings screen in the Router MAC Address section select Use this Computer s MAC Address and click Apply Then restart
52. any common applications and online games that can benefit from QoS handling Fine Tuning Your Network 5 18 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual Click Add Priority Rule The QoS Priority Rules screen displays QoS Priority rules Priority QoS Policy for MSN Messenger Priority Category Applications m Applications MSN Messenger Priority Normal Apply Cancel Figure 5 10 In the Priority Category list select either Applications or Online Gaming In either case a list of predefined applications or games displays in the Applications drop down list From the Applications list you can select an existing item or you can scroll to the bottom of the list and select Add a New Application or Add a New Game a If you chose to add a new entry the screen expands as shown QoS Priority rules Priority QoS Policy for Priority Category Applications gt Applications Add a new Application Priority Normal J Specified port range Connection Type TCP UDP gt Starting Port 1 65535 Ending Port 1 65535 Apply Cancel Figure 5 11 b Inthe QoS Policy for field enter a descriptive name for the new application or game Select the packet type either TCP UDP or both TCP UDP and specify the port number or range of port numbers used by the application or game Fine Tuning Your Network 5 19 v1 0 November 2011 N 150 2 Port Wi
53. arding Your Network 2 5 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual Passphrase These characters are case sensitive Enter a word or group of printable characters When you use WPA PSK the other devices in the network will not connect unless they are also set to WPA PSK and are configured with the correct passphrase Similarly when you use WPA2 PSK the other devices in the network will not connect unless they are also set to WPA2 PSK and are configured with the correct passphrase Use the procedures described in the following sections to specify the WNR500 router Store this information in a safe place Changing Wireless Security Settings This section describes the wireless settings that you can view and configure in the Wireless Settings screen which you access under Setup in the main menu Viewing Wireless N 150 Settings To specify the wireless security settings of your router 1 Login to the router as described in Logging In To Your Wireless Router on page 1 1 Safeguarding Your Network 2 6 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual 2 Select Wireless Settings under Setup in the main menu The Wireless Settings screen displays Wireless Settings Region Selection Region Europe Zi Wireless Network 4 Enable SSID Broadcast L Enable Wireless Isolation Name SSID NETGEAR Channel Auto Mode Up to 150Mbps
54. ation To view router status and usage information 1 Select Router Status under Maintenance in the main menu The Router Status screen displays Router Status Hardware Version WNR612 Firmware Version V1002 GUI Language Version V1020 30 Internet Port MAC Address 00037F 020 3F IP Address 0000 Internet DHCP IP Subnet Mask 0000 Domain Name Server 0000 LAN Port MAC Address 00037F 0003E IP Address 192 168 1 1 DHCP ON IP Subnet Mask 2552552550 Wireless Port Name SSID NETGEAR Region Europe Channel Auto T P 3 S Mode Up to 150Mbps Wireless AP ON Broadcast Name ON Wi Fi Protected Setup Not Configured Show Statistics Connection Status Figure 6 1 Using Network Monitoring Tools 6 2 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual Table 6 1 describes the router status fields Table 6 1 Wireless Router Status Fields Field Description Hardware Version The hardware version of the router Firmware Version The version of the current software installed in the router This will change if you update your router Internet Port The following settings apply to the Internet WAN port of the router MAC Address IP Address DHCP The Media Access Control address This is the unique physical address being used by the Internet WAN port of the router The IP address being used by the Internet WAN port of the router If no address is
55. ault DMZ server Warning DMZ servers pose a security risk A computer designated as the default DMZ AN server loses much of the protection of the firewall and is exposed to exploits from the Internet If compromised the DMZ server computer can be used to attack other computers on your network Incoming traffic from the Internet is usually discarded by the router unless the traffic is a response to one of your local computers or a service that you have configured in the Port Forwarding Port Triggering screen Instead of discarding this traffic you can have it forwarded to one computer on your network This computer is called the default DMZ server The WAN Setup screen lets you configure a default DMZ server To assign a computer or server to be a default DMZ server 1 Select the Default DMZ Server check box 2 Inthe Default DMZ Server fields enter the IP address for that computer or server 3 Click Apply Responding to a Ping on the Internet WAN Port If you want the router to respond to a ping from the Internet select the Respond to Ping on Internet Port check box This should be used only as a diagnostic tool since it allows your router to be discovered by Internet scanners Do not select this check box unless you have a specific reason to do so such as when troubleshooting your connection Customizing Your Network Settings 4 8 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual Setting
56. b The LAN port lights are lit for any local ports that are connected If a port s light is lit a link has been established to the connected device If a LAN port is connected to a 10 or 100 Mbps device verify that the port s light is green c The Internet port is connected and its light is lit If the correct behavior does not occur see the appropriate following section The Power Test light is not on If the Power Test and other lights are off when your router is turned on e Make sure that the power cord is properly connected to your router and that the power adapter is properly connected to a functioning power outlet e Check that you are using the power adapter supplied by NETGEAR for this product If the error persists you have a hardware problem and should contact Technical Support The Power Test light blinks green slowly and continuously The router firmware is corrupted For help restoring your firmware contact Technical Support The Internet or LAN port lights are not on If either the LAN or Internet lights do not light when the Ethernet connection is made check the following 1 Make sure that the Ethernet cable connections are secure at the router and at the computer 2 Make sure that power is turned on to the connected computer 3 Be sure you are using Ethernet cables like the cable that was supplied with the wireless router Login Problems If you are unable to log in to the wireless router che
57. both fields Ifyou know that the application uses either TCP or UDP select the appropriate protocol If you are not sure select Both 5 Select the radio button for the IP address configuration you want to block and then enter the IP addresses in the appropriate fields 6 Click Add to enable your Block Services Setup selections Restricting Access From Your Network 3 4 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual Blocking Services by IP Address Range In the Filter Services For area you can block the specified service for a single computer a range of computers having consecutive IP addresses or all computers on your network Scheduling Blocking The WNR500 router allows you to specify when blocking is enforced To schedule blocking 1 Select Schedule under Content Filtering in the main menu The Schedule screen displays Schedule Days to Block v Every Day Sunday Monday Tuesday Wednesday Thursday Friday Saturday Time of day to Block use 24 hour clock v All Day Start Blocking Hour Minute End Blocking Hour Minute Time Zone GMT Greenwich Mean Time Dublin Edinburgh Lisbon London v o Automatically Adjust for Daylight Savings Time Current time Thursday Mar 18 2010 06 17 12 Figure 3 4 2 Configure the schedule for blocking keywords and services a Days to Block Select days on which you want to apply blocking by selecting the appropriate c
58. br o U hebes d heb au a pe t NOH ATORE ERO NOR POETS 4 9 Enabling IP V6 PASS TbEOUDE 25 3 4 02 UO punto CO Peuksio UU iN 4 9 Contiguring NAT come M 4 9 Configuring Static OULOS zc to Eo Cette cur ner ku aaa e se adque Maa Forte L AAT ed 4 10 Wireless Repeating FUNCION aisi peni tite e vecta oed tu pea due ax ED NU Ee EARS EAA 4 12 Configuring the Wireless Basic Station ciere ean tna 4 12 Configuring te Repeater 2 iot euet otl oi Dp diet ate ute anea 4 15 Contents viii v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual Chapter 5 Fine Tuning Your Network Allowing Inbound Connections to Your Network seem 5 1 How Your Computer Accesses a Remote Computer through Your Router 5 2 How Port Triggering Changes the Communication Process sssessss 5 3 How Port Forwarding Changes the Communication Process ssusss 5 5 How Port Forwarding Differs from Port Triggering se 5 6 Configuring Port Forwarding to Local Servers ssssssee emen 5 6 Adding a Custom Service zm secretes cater fur septi opocbe aede usd eee ires E as lake 5 7 Editing or Deleting a Port Forwarding Entry 221i eter tasse 5 8 Comiguning Port TNG ricca cs prose besos z etd Yeven A lO espere se er exi b eeepc id 5 9 Using Universal Plug and Play i3 3 titan ruban iau e mu Ru a iM x Rune bx ERE Ene ERA RARADU Din UR Aa URS U
59. ceptions port forwarding and port triggering This section explains how a normal outbound connection works followed by two examples explaining how port forwarding and port triggering operate and how they differ 5 1 v1 0 November 201 1 N 150 2 Port Wireless Router WNR500 User Manual How Your Computer Accesses a Remote Computer through Your Router When a computer on your network needs to access a computer on the Internet your computer sends your router a message containing source and destination address and process information Before forwarding your message to the remote computer your router must modify the source information and must create and track the communication session so that replies can be routed back to your computer Here is an example of normal outbound traffic and the resulting inbound responses 1 You open Internet Explorer beginning a browser session on your computer Invisible to you your operating system assigns a service number port number to every communication process running on your computer In this example let s say Windows assigns port number 5678 to this browser session You ask your browser to get a Web page from the Web server at www example com Your computer composes a Web page request message with the following address and port information e The source address is your computer s IP address e The source port number is 5678 the browser session e The destination address is the IP addre
60. ces Failure of the end user to comply with the applicable requirements may result in unlawful operation and adverse action against the end user by the applicable National regulatory authority NOTE This product s firmware limits operation to only the channels allowed in a particular Region or Country Therefore all options described in this user s guide may not be available in your version of the product v1 0 December 2011 Europe EU Declaration of Conformity C Marking by the above symbol indicates compliance with the Essential Requirements of the R amp TTE Directive of the European Union 1999 5 EC This equipment meets the following conformance standards EN300 328 2 4Ghz EN301 489 17 EN301 893 5Ghz EN60950 1 For complete DoC please visit the NETGEAR EU Declarations of Conformity website at http kb netgear com app answers detail a_id 1 162 1 v1 0 December 2011 EDOC in Languages of the European Community Cesky Czech Dansk Danish NETGEAR Inc timto prohlaSuje Ze tento Radiolan je ve shode se zakladnimi po adavky a dal mi pr slu n mi ustanoven mi smernice 1999 5 ES Undertegnede NETGEAR Inc erkl rer herved at f lgende udstyr Radiolan overholder de v sentlige krav og vrige relevante krav i direktiv 1999 5 EF Deutsch German Eesti Estonian Hiermit erkl rt NETGEAR Inc dass sich das Ger t Radiolan in bereinstimmung mit den grundlegenden Anforderungen und den bri
61. ck the following e Ifyou are using an Ethernet connected computer check the Ethernet connection between the computer and the router as described in the NETGEAR Wireless Router Installation Guide Troubleshooting 7 3 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual Make sure you are using the correct login information The factory default login name is admin and the password is password Make sure that the Caps Lock is off when entering this information e Make sure your computer s IP address is on the same subnet as the router If your are using the recommended addressing scheme your computer s address should be in the range of 192 168 1 2 to 192 168 1 254 Refer to your computer s documentation or see Preparing Your Network in Appendix B for help with configuring your computer Note If your computer cannot reach a DHCP server some operating systems will assign an IP address in the range 169 254 x x If your IP address is in this range verify that you have a good connection from the computer to the router then restart reboot your computer e f your router s IP address has been changed and you don t know the current IP address reset the router s configuration to the factory defaults This procedure will reset the router s IP address to 192 168 1 1 see Default Configuration Settings in Appendix A e Make sure your browser has Java JavaScript or ActiveX enabled If you are using Inter
62. d to expand the Static Routes screen Static Routes Route Name Private Active Destination IP Address IP Subnet Mask Gateway IP Address Metric Figure 4 6 3 Inthe Route Name field enter a name for this static route This is for identification purposes only 4 Selectthe Private check box if you want to limit access to the LAN only If Private is selected the static route is not reported in RIP 5 Select the Active check box to make this route effective 6 Inthe Destination IP Address field enter the IP address of the final destination In the IP Subnet Mask field enter the IP subnet mask for this destination If the destination is a single host enter 255 255 255 255 8 Inthe Gateway IP Address field enter the gateway IP address which must be a router on the same LAN segment as the WNR500 router Customizing Your Network Settings 4 11 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual 9 Inthe Metric field enter a number between 1 and 15 as the metric value This represents the number of routers between your network and the destination Usually a setting of 2 or 3 works but if this is a direct connection set it to 1 10 Click Apply to have the static route entered into the table Wireless Repeating Function The wireless repeating function extends the wireless network through several APs without connection of the wired backbone network
63. difications will invalidate all applicable regulatory certifications and approvals FCC Guidelines for Human Exposure This equipment complies with FCC radiation exposure limits set forth for an uncontrolled environment This equipment should be installed and operated with minimum distance of 20 cm between the radiator and your body This transmitter must not be co located or operating in conjunction with any other antenna or transmitter FCC Declaration of Conformity We NETGEAR Inc 350 East Plumeria Drive Santa Clara CA 95134 declare under our sole responsibility that the model MS2110 TBD complies with Part 15 Subpart B of FCC CFR47 Rules Operation is subject to the following two conditions This device may not cause harmful interference and This device must accept any interference received including interference that may cause undesired operation FCC Radio Frequency Interference Warnings amp Instructions This equipment has been tested and found to comply with the limits for a Class B digital device pursuant to Part 15 of the FCC Rules These limits are designed to provide reasonable protection against harmful interference in a residential installation This equipment uses and can radiate radio frequency energy and if not installed and used in accordance with the instructions may cause harmful interference to radio communications However there is no guarantee that interference will not occur in a particular installation If
64. e If you entered a DNS address during the wireless router s configuration restart your computer Alternatively you can configure your computer manually with a DNS address as explained in the documentation for your computer Your computer might not have the wireless router configured as its default gateway Reboot the computer and verify that the wireless router address www routerlogin net is listed by your computer as the default gateway address You might be running login software that is no longer needed If your ISP provided a program to log you in to the Internet such as WinPoET you no longer need to run that software after installing your router You might need to go to Internet Explorer and select Tools Internet Options click the Connections tab and select Never dial a connection If the wireless router does not save changes you have made in the browser interface check the following When entering configuration settings be sure to click Apply before moving to another screen or tab or your changes could be lost Troubleshooting 7 6 v1 0 November 201 1 N 150 2 Port Wireless Router WNR500 User Manual e Click Refresh or Reload in the Web browser The changes might have occurred but the Web browser might be caching the old configuration Troubleshooting Your Network Using the Ping Utility Most network devices and routers contain a ping utility that sends an echo request packet to the designated device The de
65. e Radio Interference Regulations of the Canadian Department of Communications Voluntary Control Council for Interference VCCI Statement This equipment is in the Class B category information equipment to be used in a residential area or an adjacent area thereto and conforms to the standards set by the Voluntary Control Council for Interference by Data Processing Equipment and Electronic Office Machines aimed at preventing radio interference in such residential areas When used near a radio or TV receiver it may become the cause of radio interference Read instructions for correct handling vii v1 0 December 2011 Contents Chapter 1 Configuring Basic Connectivity Logging In To Your Wireless Router 52 idet or Ett tee oet Hir db e Poe ch eaae asp ode bdo 1 1 Selecting a Language for Your Screen Display ccccccecceeeeeeeeeeeeneeeeeeeeeeeeeeeeeeeees 1 4 Configuring Your Internet Settings Using the Setup Wizard ssssssssssss 1 6 Viewing and Configuring Basic Internet Settings sescenti 1 6 Your Internet Connection Does Not Require a Login occae tacet 1 7 Your Internet Connection Does Require a Login sss 1 9 Setting Up and Testing Wireless N 150 Connectivity eessssssssssssss 1 11 Chapter 2 Safeguarding Your Network Choosing Appropriate Wireless Security ssssssssssssseseeeenenn 2 1 Recording Wireless N 150 Settings Se
66. e router delivers the following parameters to any LAN device that requests DHCP e An IP address from the range you have defined e Subnet mask e Gateway IP address the router s LAN IP address Primary DNS server if you entered a primary DNS address in the Basic Settings screen otherwise the router s LAN IP address Secondary DNS server if you entered a secondary DNS address in the Basic Settings screen To use another device on your network as the DHCP server or to manually specify the network settings of all of your computers clear the Use Router as DHCP Server check box Otherwise leave it selected If this service is not selected and no other DHCP server is available on your network you need to set your computers IP addresses manually or they will not be able to access the router Using Address Reservation When you specify a reserved IP address for a computer on the LAN that computer always receives the same IP address each time it accesses the router s DHCP server Reserved IP addresses should be assigned to computers or servers that require permanent IP settings Address Reservation IP Address Device Name MAC Address Figure 4 2 To reserve an IP address 1 Click Add 2 Inthe IP Address field enter the IP address to assign to the computer or server Choose an IP address from the router s LAN subnet such as 192 168 1 x Customizing Your Network Settings 4 4 v1 0 November 2011 N 150 2 Po
67. ed the wireless router to restrict wireless access by MAC address you must add the wireless computer s MAC address to the router s wireless card access list Make sure that the network settings of the computer are correct LAN connected computers must be configured to obtain an IP address automatically using DHCP For more information see the links in Appendix B Related Documents Some cable modem services require you to use the MAC address of the computer registered on the account If so in the Router MAC Address section of the Basic Settings menu select Use this Computer s MAC Address Click Apply to save your settings Restart the network in the correct sequence Check the Test light to verify correct router operation If the Test light does not turn off within 2 minutes after you turn the router on reset the router according to the instructions in Restoring the Default Configuration and Password on page 7 10 Troubleshooting Basic Functions After you turn on power to the router the following sequence of events should occur 1 When power is first applied verify that the Power Testlight is on 2 Verify that the Power Test light turns green and blinks slowly indicating that the self test procedure is running Troubleshooting 7 2 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual 3 After approximately 20 seconds verify that The color of the Power Test light changes to solid green
68. en displays E mail Turn E mail Notification On Send Alerts and Logs Via E mail Your Outgoing Mail Server Send To This E mail Address My Mail Server requires authentication User Name Password Send Alert Immediately When Someone Attempts To Visit A Blocked Site Send Logs According to this Schedule Figure 3 6 2 Toreceive e mail logs and alerts from the router select the Turn E mail Notification On check box a Enter the name of your ISP s outgoing SMTP mail server such as mail myISP com in the Your Outgoing Mail Server field You might be able to find this information in the configuration screen of your e mail program If you leave this field blank log and alert messages will not be sent by e mail b Enter the e mail address to which logs and alerts are sent in the Send To This E mail Address field This e mail address will also be used as the From address If you leave this field blank log and alert messages will not be sent by e mail 3 If your e mail server requires authentication select the Your Mail Server requires authentication check box a Enter your user name for the e mail server in the User Name field b Enter your password for the e mail server in the Password field 4 You can specify that logs are automatically sent by e mail with these options Send alert immediately Select this check box for immediate notification of attempted access to a blocked site or service
69. er 2011 N 150 2 Port Wireless Router WNR500 User Manual 2 Inthe Advanced Wireless Settings screen click Setup Access List to display the Wireless Card Access List Wireless Card Access List Setup Access List Wireless Card Access List o Turn Access Control On Device Name Mac Address Figure 2 11 3 Click Add to add a wireless device to the wireless access control list The Wireless Card Access Setup screen opens and displays a list of currently active wireless cards and their Ethernet MAC addresses Wireless Card Access Setup Available Wireless Cards Device Name MAC Address 9300UNIT2 00 0f b5 0d ab 19 Wireless Card Entry Device Name 9300UNIT2 MAC Address 00 0f b5 0d ab 19 Figure 2 12 4 Ifthe computer you want appears in the Available Wireless Cards list you can select the radio button of that computer to capture its MAC address otherwise you can manually enter a name and the MAC address of the authorized computer You can usually find the MAC address on the bottom of the wireless device v Tip You can copy and paste the MAC addresses from the router s Attached Devices z e screen into the MAC Address field of this screen To do this configure each wireless computer to obtain a wireless link to the router The computer should then appear in the Attached Devices screen Safeguarding Your Network 2 19 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual 5
70. erver visible and available to the Internet Use the Port Forwarding screen to configure the router to forward specific incoming protocols to computers on your local network In addition to servers for specific applications you can also specify a default DMZ server to which all other incoming protocols are forwarded The DMZ server is configured in the WAN Setup screen as discussed in Setting Up a Default DMZ Server on page 4 8 Before starting you need to determine which type of service application or game you will provide and the local IP address of the computer that will provide the service Be sure the computer s IP address never changes Tip To ensure that your server computer always has the same IP address use the reserved IP address feature of your WNR500 router See Using Address Reservation on page 4 4 for instructions on how to use reserved IP addresses Fine Tuning Your Network 5 6 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual To configure port forwarding to a local server 1 Select Port Forwarding Port Triggering under Advanced in the main menu The Port Forwarding Port Triggering screen displays Port Forwarding Port Triggering Please select the service type Port Forwarding Port Triggering Service Name Server IP Address FTP 192 hes hi Server Name Start Port End Port Server IP Address EditService I Delete Service Figure 5 1 2 From the Service
71. essly connect to the WNR500 router MAC address filtering adds an obstacle against unwanted access to your network by the general public but the data broadcast over the wireless link is fully exposed This data includes your trusted MAC addresses which can be read and impersonated by a hacker For more information see Restricting Wireless Access by MAC Address on page 2 18 Modify your firewall s rules By default the firewall allows any outbound traffic and prohibits any inbound traffic except for responses to your outbound traffic However you can modify the firewall s rules For more information see Understanding Your Firewall on page 2 23 Use the Push N Connect feature Wi Fi Protected Setup Wi Fi Protected Setup provides easy setup by means of a push button Older wireless adapters and devices might not support this Check whether devices are WPS enabled For more information see Configuring WPS Security Wi Fi Protected Setup on page 2 13 Safeguarding Your Network v1 0 November 201 1 N 150 2 Port Wireless Router WNR500 User Manual Recording Wireless N 150 Settings Setup Information Before and after customizing your wireless settings print this section and record the following information If you are working with an existing wireless network the person who set up or is responsible for the network can provide this information Otherwise you must choose the settings for your wi
72. etwork Virtual Private Networking Basics http documentation netgear com reference enu tcpip index htm http documentation netgear com reference enu wireless index htm http documentation netgear com reference enu wsdhcp index htm http documentation netgear com reference enu vpn index htm Glossary http documentation netgear com reference enu glossary index htm Related Documents B 1 v1 0 November 2011 A access blocking 3 remote 6 2 restricting by MAC address 2 8 to aremote computer 5 2 to the router viewing logs 3 6 access control turning off 3 turning on 2 20 account name 7 adding custom service 5 7 priority rules 5 8 reserved IP addresses 4 4 static routes 4 0 wireless clients 2 13 2 17 6 4 See also configuring administrator password changing 2 20 advanced wireless settings 2 2 advertisement period 5 3 AES Advanced Encryption Standard encryption 2 0 applications QoS for 5 8 attached devices 6 7 authentication required by mail server 3 8 automatic logout 4 backing up configuration file 6 8 backing up transfer time 5 24 basic settings 2 6 blocking access 3 Index inbound traffic 5 broadband Internet 5 22 broadcast status 6 4 C cables checking 7 2 channel frequency 2 8 channel wireless port 6 4 clients adding 2 13 2 17 6 4 communication mode 2 6 6 4 compatibility protocol and standards A 3 configuration file b
73. f the remote server sends a reply back to a different port number your router will not recognize it and will discard it However some application servers such as FTP and IRC servers send replies back to multiple port numbers Using the port triggering function of your router you can tell the router to open additional incoming ports when a particular outgoing port originates a session An example is Internet Relay Chat IRC Your computer connects to an IRC server at destination port 6667 The IRC server not only responds to your originating source port but also sends an identify message to your computer on port 113 Using port triggering you can tell the router Fine Tuning Your Network 5 3 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual When you initiate a session with destination port 6667 you must also allow incoming traffic on port 113 to reach the originating computer Using steps similar to the preceding example the following sequence shows the effects of the port triggering rule you have defined 1 You open an IRC client program beginning a chat session on your computer 2 Your IRC client composes a request message to an IRC server using a destination port number of 6667 the standard port number for an IRC server process Your computer then sends this request message to your router 3 Your router creates an entry in its internal session table describing this communication session between yo
74. g QUICK TPS RIED SU US LE 7 1 Troubleshooting Basic FUNCHOMS acce cioe EXER UxR HER ENSE ERA ERU DRNN SERE EUR ANS UARa UUNX IER UE UN Ie T ARD 7 2 Iererndisle eT cents 7 3 Checking the Internet Service Connection 3s 1o cci tme scit erat dirt Ta earned anaes 7 4 Obtaining an Internet IP Address reine irri eeu de EAER 7 5 Troubleshnoothg PP POE 55 2 23 pe Doe o pP Ode I a etur ER REQUE 7 5 Troubleshooting Internet Browsing 2 pre pi ded ise pa oet oce id 7 6 Troubleshooting Your Network Using the Ping Utility ssne 7 7 Testing the LAN Path to Your FROUEGE seis cisdecccsianacecuanssnanncesssandceceslasans ERE ber texaaneeatedy 7 7 Testing the Path from Your Computer to a Remote Device sssssse 7 8 Problems with Date and TIME x53 5 e ee IRI PER TE EE IEEE REN EFE Ho oU UE REI AN 7 9 Problems with Wireless Adapter Connections cccccccceeeeeeeeeeeecceeeeeeeeeeeeeeeeeeeeneaaeees 7 9 Restoring the Default Configuration and Password sssseeee 7 10 Appendix A Technical Specifications Default Configuration Settings 22 2 m 2act peior b ier Teac con es acea dace ieri ip Fea abbr A 1 General SDecIfIGIlbDS zo etcetera die Ide opt AH UietuR tue a aae A 3 Appendix B Related Documents Index Contents x v1 0 November 2011 Chapter 1 Configuring Basic Connectivity This chapter describes the settings f
75. g network 7 7 restoring configuration 6 8 default factory settings 7 0 restoring firmware 7 3 restricting access by MAC address 2 8 N 150 2 Port Wireless Router WNR500 User Manual RIP Router Information Protocol direction 4 3 route name 4 router PIN 2 5 2 16 router status viewing 6 2 S scheduling blocking 3 5 screen display language 4 selecting 4 secondary DNS server 1 8 1 11 security options compared 2 2 setting up 2 security PIN 2 5 2 16 service name 1 10 service numbers 3 4 services blocking 3 3 settings default See default factory settings setup information gathering 2 5 Setup Wizard 1 6 Shared Key authentication 2 5 2 9 SMTP server 3 6 specifications technical A speed requirements 5 23 spoofing MAC addresses 1 8 7 5 SSID 1 12 2 7 6 4 SSID broadcast 3 standards compatibility A 3 static IP addresses 7 8 static routes 4 70 statistics usage 6 6 status viewing 6 2 streaming video and audio 5 23 subnet mask 4 3 6 3 system up time 6 6 Index 4 v1 0 November 201 1 N 150 2 Port Wireless Router WNR500 User Manual T TCP IP network troubleshooting 7 7 technical specifications A time of day troubleshooting 7 9 time to live advertisement 5 5 time out idle 7 port triggering 5 11 TKIP Temporal Key Integrity Protocol encryption 2 0 trademarks ii traffic metering 6 13 traffic prioritizing 5 16 transfer time backing up 5 24 troublesh
76. ge 7 10 Using Network Monitoring Tools 6 8 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual Updating the Router Firmware The firmware of the WNR500 router is stored in flash memory and can be updated as NETGEAR releases new firmware You can update your firmware by logging into the router and using one of these procedures Enable the Check for Updated Firmware Upon Log in check box Each time you log in to the router it will automatically detect a new version of the firmware and then install it This check box is enabled in the router s default state See Logging In To Your Wireless Router on page 1 1 e Use the Check button in the Router Upgrade screen Instead of having the router check for new firmware every time you log in you can use Router Upgrade under Maintenance in the main menu See Checking for New Firmware in the Router Upgrade Screen e Check for and update your firmware manually You can compare versions obtain new firmware from NETGEAR s website and then upload it See Updating Manually to New Router Firmware on page 6 11 Note Before updating the router software NETGEAR recommends that you save your Eur d configuration settings see Backing Up and Restoring the Configuration on page 6 8 A firmware update might cause the router settings to revert to the factory defaults If this happens after completing the update you can restore your settings from the backup
77. gen einschl gigen Bestimmungen der Richtlinie 1999 5 EG befindet K esolevaga kinnitab NETGEAR Inc seadme Radiolan vastavust direktiivi 1999 5 EU p hin uetele ja nimetatud direktiivist tulenevatele teistele asjakohastele s tetele English Espa ol Spanish Hereby NETGEAR Inc declares that this Radiolan is in compliance with the essential requirements and other relevant provisions of Directive 1999 5 EC Por medio de la presente NETGEAR Inc declara que el Radiolan cumple con los requisitos esenciales y cualesquiera otras disposiciones aplicables o exigibles de la Directiva 1999 5 CE EAAnvikri Greek Fran ais French ME THN NAPOY2ZA NETGEAR Inc AHAONEI OTI Radiolan ZYMMOPQQNETAI IPO2 TIX OYZIOAEIZ ANAITHZEIZ KAI TIZ AOITTE ZXETIKEZ AIATAZEIZ TH OAHMIAZ 1999 5 EK Par la pr sente NETGEAR Inc d clare que l appareil Radiolan est conforme aux exigences essentielles et aux autres dispositions pertinentes de la directive 1999 5 CE Italiano Italian Latviski Latvian Lietuvi Lithuanian Con la presente NETGEAR Inc dichiara che questo Radiolan conforme ai requisiti essenziali ed alle altre disposizioni pertinenti stabilite dalla direttiva 1999 5 CE Ar o NETGEAR Inc deklar ka Radiolan atbilst Direkt vas 1999 5 EK b tiskaj m pras b m un citiem ar to saist tajiem noteikumiem iuo NETGEAR Inc deklaruoja kad Sis Radiolan atitinka esminius reikalavimus ir kitas 1999 5 EB
78. he traffic limit is reached Download only The restriction is applied to incoming traffic only e Both Directions The restriction is applied to both incoming and outgoing traffic You can limit the amount of data traffic allowed per month e By specifying how many Mbytes per month are allowed e By specifying how many hours of traffic are allowed Set the Traffic Counter to begin at a specific time and date Set up Traffic Control to issue a warning message before the month limit of Mbytes or Hours is reached You can select one of the following to occur when the limit is attained The Internet LED flashes green or amber e The Internet connection is disconnected and disabled Set up Internet Traffic Statistics to monitor the data traffic Click the Traffic Status button if you want a live update on Internet traffic status on your router Click Apply to save your settings Using Network Monitoring Tools 6 14 v1 0 November 201 1 Chapter 7 Troubleshooting This chapter provides information about troubleshooting your N 150 2 Port Wireless Router WNRSOO After each problem description instructions are provided to help you diagnose and solve the problem As a first step please review the Quick Tips gt Tip NETGEAR provides helpful articles documentation and the latest software updates at hitp www netgear com support This chapter includes the following sections e Quick Tips e Troubleshoot
79. heck boxes Select Every Day to select the check boxes for all days Click Apply Restricting Access From Your Network 3 5 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual b Time of Day to Block Select a start and end time in 24 hour format Select All Day for 24 hour blocking Click Apply c Time Zone To verify and set the time zone Time Zone To select your local time zone use the drop down list This setting is used for the blocking schedule and for time stamping log entries Automatically Adjust for Daylight Savings Time If your region supports daylight savings time select this check box The router will automatically adjust the time at the start and end of the daylight savings time period 3 Click Apply to save your settings Viewing Logs of Web Access or Attempted Web Access The log is a detailed record of the websites you have accessed or attempted to access Up to 128 entries are stored in the log Log entries appear only when keyword blocking is enabled and no log entries are made for the trusted user Select Logs under Content Filtering in the main menu The Logs screen displays Logs Enable Log L Current time Friday Dec 09 2011 18 59 03 2011 12 09 18 55 46 5 syslog AUTH 192 168 1 2 login success Fri Dec 9 18 55 45 2011 5 syslog sntp SNTP sync success 5 miniupnpd 820 upnp Add filter rule to 192 168 1 2 at port 7503 with the TCP pro
80. ine Tuning Your Network 5 11 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual 11 Click Apply The service appears in the Port Triggering Portmap table Port Forwarding Port Triggering Please select the service type Port Forwarding Port Triggering Disable Port Triggering Port Triggering Timeout in minutes Port Triggering Portmap Table Enable Server Name Service Type Required Inbound Connection Service User oO M dialpad 1 TCP 51200 TCPIUDP 51200 51200 any Q o amp dialpad 2 TCP 51201 TCP UDP 51201 51201 any obi E quicktime TCP 554 TCP UDP 6970 6990 any Figure 5 6 Using Universal Plug and Play Universal Plug and Play UPnP helps devices such as Internet appliances and computers to access the network and connect to other devices as needed UPnP devices can automatically discover the services from other registered UPnP devices on the network Note If you use applications such as multiplayer gaming peer to peer connections real time communications such as instant messaging or remote assistance a feature in Windows XP you should enable UPnP To turn on Universal Plug and Play Fine Tuning Your Network v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual 1 Select UPnP under Advanced the main menu The UPnP screen displays UPnP Turn UPnP On Advertisement Period in minutes 30 Advertisement Time To Live in hops lo
81. ing Basic Functions on page 7 2 e Login Problems on page 7 3 e Checking the Internet Service Connection on page 7 4 e Troubleshooting Your Network Using the Ping Utility on page 7 7 e Problems with Date and Time on page 7 9 e Problems with Wireless Adapter Connections on page 7 9 e Restoring the Default Configuration and Password on page 7 10 Quick Tips This section describes tips for troubleshooting some common problems Be sure to restart your network in this sequence 1 Turn off and unplug the modem 2 Turn off the wireless router and computers 3 Plugin the modem and turn it on Wait 2 minutes 7 1 v1 0 November 201 1 N 150 2 Port Wireless Router WNR500 User Manual 4 Turn on the wireless router and wait 1 minute 5 Turn on the computers Make sure that the Ethernet cables are securely plugged in The Internet status light on the wireless router is on if the Ethernet cable connecting the wireless router and the modem is plugged in securely and the modem and wireless router are turned on e For each powered on computer connected to the wireless router by an Ethernet cable the corresponding numbered router LAN port light is on Make sure that the wireless settings in the computer and router match exactly e Fora wirelessly connected computer the wireless network name SSID and WEP or WPA security settings of the router and wireless computer must match exactly e Ifyou have enabl
82. ings Profile 2 E Enable Guest Network Z Enable SSID Broadcast E Allow Guestto access My Local Network E Enable Wireless Isolation Guest Wireless Network Name SSID NetGear 003 Security Options Profile 2 9 None WEP WPA PSK TKIP WPA2 PSK AES WPA PSK TKIP WPA2 PSK AES Apply Cancel Figure 2 14 2 Select any of the following Wireless settings Enable Guest Network When this check box is selected the guest network is enabled and guests can connect to your network using the SSID of this profile Enable SSID Broadcast If selected the Wireless Access Point broadcasts its name SSID to all Wireless Stations Stations can adopt the correct SSID for connections to this Access Point Allow Guest to access MY Local Network If selected any user who connects to this SSID can access local networks associated with the router like users in the primary SSID 3 Give the wireless network a name The name is case sensitive and can be up to 32 characters The same name must be assigned to all wireless devices in your network NETGEAR recommends that you change the name to a different value 4 Select a Security option from the list 5 Click Apply to save your selections Safeguarding Your Network 2 22 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual Backing Up Your Configuration The configuration settings of the WNR500 router are stored within the router in a c
83. ion information from its session table and incoming traffic is no longer accepted on port numbers 33333 or 113 To configure port triggering you need to know which inbound ports the application needs Also you need to know the number of the outbound port that will trigger the opening of the inbound ports You can usually determine this information by contacting the publisher of the application or user groups or newsgroups Note Only one computer at a time can use the triggered application Fine Tuning Your Network 5 4 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual How Port Forwarding Changes the Communication Process In both of the preceding examples your computer initiates an application session with a server computer on the Internet However you might need to allow a client computer on the Internet to initiate a connection to a server computer on your network Normally your router ignores any inbound traffic that is not a response to your own outbound traffic You can configure exceptions to this default rule by using the port forwarding feature A typical application of port forwarding can be shown by reversing the client server relationship from our previous Web server example In this case a remote computer s browser needs to access a Web server running on a computer in your local network Using port forwarding you can tell the router When you receive incoming traffic on port 80 the standard
84. is check box is selected by default Clear this check box to disable broadcast of the SSID so that only devices that know the correct SSID can connect Disabling SSID broadcast nullifies the wireless network discovery feature of some products such as Windows XP Enable Wireless Isolation If checked the wireless client under SSID can only access the Internet and cannot access other wireless clients including clients under the same SSID Ethernet clients or clients associated with this device The wireless client cannot be accessed by any other clients either 4 For the wireless network name SSID use the default name or choose a suitable descriptive name In the Name SSID field you can enter a value of up to 32 alphanumeric characters The default SSID is NETGEAR Note The SSID is case sensitive NETGEAR is not the same as nETgear Also the SSID of any wireless access adapters must match the SSID you specify in the WNR500 router If they do not match you will not get a wireless connection to the WNR500 router 5 Forthe remaining settings accept the defaults The default channel is Auto It should not be necessary to change the wireless channel unless you notice interference problems with another nearby wireless router or access point Select a channel that is not being used by any other wireless networks within several hundred feet of your router For more information about the wireless channel frequencies clic
85. k the link to the online document Wireless Networking Basics in Appendix B e The default mode of Up to 150Mbps The options are Upto54 Mbps Legacy Mode Maximum speed of up to 54 Mbps for b g networks Up to 65 Mbps Neighbor Friendly Mode Will not interfere with neighboring wireless networks Upto 150 Mbps Performance Mode Maximum Wireless N speed up to 150 Mbps Configuring Basic Connectivity 1 12 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual e The default Security Options is None 6 Click Apply to save your changes Note If you are configuring the router from a wireless computer and you change the router s SSID channel or security settings you will lose your wireless connection when you click Apply You must then change the wireless settings of your computer to match the router s new settings 7 Select Wireless Settings under Advanced in the main menu of the WNR500 router Wireless Settings Region Selection Region Europe nA Wireless Network Y Enable SSID Broadcast Enable Wireless Isolation Name SSID NETGEAR Channel Auto v Mode Up to 150Mbps Security Options None WEP 9 WPA PSK TKIP WPA2 PSK AES WPA PSK TKIP WPA2 PSK AES Figure 1 11 Make sure that the Enable Wireless Router Radio check box is selected Click Setup Access List 10 Make sure that the Turn Access Control On check
86. lation NAT determines how the router processes inbound traffic Secured NAT provides a secured firewall to protect the computers on the LAN from attacks from the Internet but might prevent some Internet games point to point applications or multimedia applications from functioning Open NAT provides a much less secured firewall but allows almost all Internet applications to function For more information about NAT see How Your Computer Accesses a Remote Computer through Your Router on page 5 2 Customizing Your Network Settings 4 9 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual To change the NAT option 1 Inthe NAT Filtering area select either the Secured or the Open radio button 2 Click Apply to save the new configuration Configuring Static Routes Static routes provide additional routing information to your router Under usual circumstances the router has adequate routing information after it has been configured for Internet access and you do not need to configure additional static routes You must configure static routes only for unusual cases such as multiple routers or multiple IP subnets located on your network As an example of when a static route is needed consider the following case e Your primary Internet access is through a cable modem to an ISP e You have an ISDN router on your home network for connecting to the company where you are employed This router s address on your LAN is 192
87. ling see Scheduling Blocking on page 3 5 Restricting Access From Your Network 3 3 v1 0 November 201 1 N 150 2 Port Wireless Router WNR500 User Manual 3 Specify a service for blocking by clicking Add The Block Services Setup screen displays Block Services Setup Service Type User Defined hl Protocol TCP J Starting Port a 65534 Ending Port 1 65534 Service Type User Defined Filter Services For Only This IP Address O IP Address Range AIl IP Addresses Figure 3 3 4 From the Service Type list select the application or service to be allowed or blocked The list already displays several common services but you are not limited to these choices To add any additional services or applications that do not already appear select User Defined To define a service first you must determine which port number or range of numbers is used by the application The service port numbers for many common protocols are defined by the Internet Engineering Task Force IETF and published in RFC1700 Assigned Numbers Service numbers for other applications are typically chosen from the range 1024 to 65535 by the authors of the application You can often determine port number information by contacting the publisher of the application by asking user groups or newsgroups or by searching Enter the starting port and ending port numbers If the application uses a single port number enter that number in
88. ludes Dial on Demand 5 Figure 1 8 PPTP Point to Point Tunneling Protocol used primarily in Austrian DSL services PPPoE Point to Point Protocol over Ethernet the protocol used by most DSL services worldwide L2TP Layer 2 Tunneling Protocol used in Russian DSL services Login and Password This is the user name and password provided by your ISP This name and password are used to log in to the ISP server Service Name If your connection is capable of connecting to multiple Internet services this setting specifies which service to use Connection Mode This drop down list selects when the router will connect to and disconnect from the Internet The list includes Connection Mode Dial on Demand v Always On Idle Timeout In minutes Biahcniamancd ala emand Manually Connect Figure 1 9 e Always On The router logs in to the Internet immediately after booting and never disconnects e Dial on Demand The router logs in only when outgoing traffic is present and logs out after the idle time out Configuring Basic Connectivity 1 10 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual e Manually Connect The router logs in or logs out only when the user clicks Connect or Disconnect in the Router Status screen Idle Timeout Your Internet connection is logged out if there is no data transfer during the specified time interval e Domain Name Serve
89. ly takes about 1 minute Using Network Monitoring Tools 6 10 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual Updating Manually to New Router Firmware To manually select download and install new software to your router 1 Log in to your router select Router Status under Maintenance on the main menu and make note of the firmware version of your router Router Status Hardware Version WNR612v2 Firmware Version V0 0 0 1_0 0 11 GUI Language Version 1 0 0 1 Figure 6 9 2 Gotothe WNR500 support page on the NETGEAR website at http www netgear com support 3 Compare the version number of the most recent firmware offered to the firmware version of your router If the version on the NETGEAR website is more recent download the file from the WNR500 support page to your computer 4 Login to your router and select Router Upgrade under Maintenance on the main menu Click Browse and locate the firmware image that you downloaded to your computer the file ends in img or chk 6 Click Upload to send the firmware to the router Warning When updating firmware to the WNR500 router do not interrupt the Web browser by closing the window clicking a link or loading a new page If the browser is interrupted it could corrupt the firmware When the upload is complete your router automatically restarts The upgrade process typically takes about 1 minute Using Network Monitoring Tools 6 11 v
90. n Time is off by one hour Cause The router does not adjust for daylight savings time In the E mail screen select the Automatically Adjust for Daylight Savings Time check box Problems with Wireless Adapter Connections If your wireless adapter is unable to connect check its connection settings To check the adapter s connection settings 1 Open the adapter setup utility to check connections e NETGEAR Smart Wizard utility If you installed a NETGEAR wireless adapter in your computer a Smart Wizard utility program is installed that can provide helpful information about your wireless network You can find this program in your Windows Program menu or as an icon in your system tray Other wireless card manufacturers might include a similar program Windows basic setup utility If you have no specific wireless card setup program installed you can use the basic setup utility in Windows Open the Windows Control Panel and double click Network Connections Inthe LAN section double click Wireless Network Connection Use the adapter s setup program to scan for available wireless networks looking for the network name SSID of NETGEAR or your custom SSID if you have changed it If your wireless network appears and has good signal strength configure and test with the simplest wireless connection possible Troubleshooting 7 9 v1 0 November 201 1 N 150 2 Port Wireless Router WNR500 User Manual If your wi
91. n Name case sensitive printed on admin product label Login Password case sensitive printed on password product label Internet Connection WAN MAC Address Default hardware address on label MTU Size 1500 Local Network Router LAN IP address printed on product label 192 168 1 1 also known as Gateway IP address Router Subnet 255 255 255 0 DHCP Server Enabled DHCP range 192 168 1 2 to 192 168 1 254 Time Zone GMT Time Zone Adjusted for Daylight Saving Time Disabled Allow a Registrar to configure this router Enabled Technical Specifications A 1 v1 0 November 201 1 N 150 2 Port Wireless Router WNR500 User Manual Table A 1 WNR500 Router Default Configuration Settings continued Wireless Wireless Communication Enabled SSID Name NETGEAR Security Disabled Wireless Access List MAC Filtering Broadcast SSID Transmission Speed All wireless stations allowed Enabled Auto Firewall Country Region United States North America only otherwise varies by country and region RF Channel Auto Operating Mode Up to 150 Mbps Data Rate Best Output Power Full Inbound communications coming in from the Internet Outbound communications going out to the Internet Disabled bars all unsolicited requests except for traffic on port 80 the http port Enabled all Maximum Wireless signal rate derived from IEEE Standard 802 11 specifications Actual throughput will vary Network conditio
92. n manually configure your Internet connection using the Basic Settings screen or you can allow the Setup Wizard to determine your Internet Service Provider ISP configuration The Setup Wizard searches your Internet connection for servers and protocols to determine your ISP configuration To use the Setup Wizard to assist with configuration or to verify the Internet connection settings 1 Select Setup Wizard from the top of the main menu 2 Click Next to proceed Enter your ISP settings as needed 3 At the end of the Setup Wizard click Test to verify your Internet connection If you have trouble connecting to the Internet see Chapter 7 Troubleshooting Viewing and Configuring Basic Internet Settings Settings related to your Internet service are specified in the Basic Settings screen Select Basic Settings under Setup in the main menu The content you see in the Basic Settings screen depends on whether your ISP requires that you log in with a user name and password for Internet access Configuring Basic Connectivity 1 6 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual Your Internet Connection Does Not Require a Login If no login is required by your ISP the following settings appear in the Basic Settings screen Basic Settings Does your Internet Connection Required A Login Yes or a AA No login required Account Name If Required WNRS500 Domain Name If Required Internet IP
93. n on your computer to store the file You can give the file a meaningful name at this time such as comcast cfg Tip Before saving your configuration file change the administrator password to the T default password Then change it again after you have saved the configuration file If you forget the password you will need to reset the configuration to factory defaults Tease To restore your settings from a saved configuration file enter the full path to the file on your computer or click Browse to browse to the file When you have located it click Restore to send the file to the router The router then reboots automatically AN Warning Do not interrupt the reboot process Erasing the Configuration Under some circumstances for example if you move the router to a different network or if you have forgotten the password you might want to erase the configuration and restore the factory default settings After an erase the router s username is admin the password is password the LAN IP address is 192 168 1 1 or www routerlogin net and the router s DHCP server is enabled To erase the configuration click the Erase button in the Settings Backup screen To restore the factory default configuration settings when you do not know the login password or IP address you must use the restore factory settings button on the rear panel of the router see Restoring the Default Configuration and Password on pa
94. n uploading firmware to the WNR500 router do not interrupt the Web browser by closing the window clicking a link or loading a new page If the browser is interrupted it could corrupt the firmware The update process typically takes about 1 minute When the upload is complete your router automatically restarts 3 Ifthere is no new firmware the login will take you to the Basic Settings screen displayed here Configuring Basic Connectivity 1 3 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual N E T G E A R Select Language SMART WIZARD router manager Ep E Basic Wireless Router mode WNR500 Basic Settings Setup Wizard Add WPS Client Does your Internet Connection Required A Login Eyes Basic Settings No Wireless Settings Guest Network Account Name If Required WNR500 Logs Domain Name If Required Block Sites G Block Services oe M Sane Knit IP Address 9 Get Dynamically From ISP Eman Use Static IP Address IP Address 172 24 1 20 Router Status 1 Attached Devices a ee 2 E Backup Settings Gateway IP Address 172 24 lo 13 Set Password Router Upgrade Domain Name Server DNS Address Get Automatically From ISP Advanced Wireless Use These DNS Servers Settings Primary DNS 172 24 lo 7 Wireless Repeating Secondary DNS 472 24 lo 6 Function Port Forwarding Router MAC Address Port Triggering Use Default Address
95. ne Tuning Your Network 5 23 v1 0 November 201 1 N 150 2 Port Wireless Router WNR500 User Manual e Backing up computers over the network has become popular due to the availability of inexpensive mass storage Table 5 2 shows the time to transfer 1 gigabyte 1 GB of data using various networking technologies Table 5 2 Theoretical Transfer Time for 1 Gigabyte Network Connection Theoretical Raw Transfer Time Gigabit wired Ethernet 8 seconds RangeMax NEXT Wireless N 26 seconds Powerline HD 40 seconds 100 Mbps wired Ethernet 80 seconds 802 11n wireless 45 seconds 802 11g wireless 150 seconds 802 11b wireless 700 seconds 10 Mbps wired Ethernet 800 seconds Cable modem 3 Mbps 2700 seconds Analog modem 56 kbps 144 000 seconds 40 hours Fine Tuning Your Network 5 24 v1 0 November 201 1 Chapter 6 Using Network Monitoring Tools This chapter describes how to use the maintenance features of your N 150 2 Port Wireless Router WNRSOO This chapter includes the following sections Viewing Wireless Router Status Information on page 6 2 Viewing a List of Attached Devices on page 6 7 Managing the Configuration File in Chapter 6 Updating the Router Firmware on page 6 9 Enabling Remote Management Access on page 6 12 Traffic Meter on page 6 13 6 1 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual Viewing Wireless Router Status Inform
96. net Explorer click Refresh to be sure the Java applet is loaded Try closing the browser and reopening it again e Ifyou are attempting to set up your NETGEAR router as an additional router behind an existing router in your network consider replacing the existing router instead NETGEAR does not support such a configuration If you are attempting to set up your NETGEAR router as a replacement for an ADSL gateway in your network the router cannot perform many gateway services for example converting ADSL or Cable data into Ethernet networking information NETGEAR does not support such a configuration Checking the Internet Service Connection If you can access your router but your router is unable to access the Internet review the topics in this section e Obtaining an Internet IP Address e Troubleshooting PPPoE e Troubleshooting Internet Browsing Troubleshooting 7 4 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual Obtaining an Internet IP Address If your wireless router is unable to access the Internet and your Internet light is amber check the wireless router to see if it is able to get an Internet IP address from your service provider Unless you have a static IP address your wireless router automatically requests an IP address from your service provider To check your wireless router s Internet IP address 1 Log in to the wireless router 2 Select Router Status under M
97. net port With the Traffic Meter utility you can set limits for traffic volume set a monthly limit and get a live update of traffic usage To monitor traffic on your router do the following 1 Onthe Advanced menu click Traffic Meter gt Traffic Meter Internet Traffic Meter E Enable Traffic Meter Traffic volume control by Monthly limit MBytes Round up data volume for each connection by MBytes Connection time control Monthly limit bo Hus Traffic Counter Restart traffic counterat On the day of each month Traffic Control Pop up a warning message IMBytes Minutes before the monthly limit is reached When the monthly limit is reached Disconnect and disable the Internet connection Internet Traffic Statistics Start Date Time Saturday Jan 1 00 00 00 2000 Current Date Time Saturday Jan 1 00 00 20 2000 Traffic Volume Left 0 Connection Time Traffic Volume MBytes hh mm Upload Avg Download Avg Total Avg Todav mn non nnn nan v Counting Period Figure 6 11 2 To enable the Traffic Meter click the Enable Traffic Meter check box Using Network Monitoring Tools 6 13 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual If you would like to record and restrict the volume of Internet traffic click the Traffic volume control by radio button You can select one of the following options for controlling the traffic volume e No Limit No restriction is applied when t
98. ngs appear in the Basic Settings screen Basic Settings Does your Internet Connection Required A Login Login required Oves lt No Internet Service Provider Login Password Service Name If Required Connection Mode Idle Timeout In minutes Internet IP Address Get Dynamically From ISP Use Static IP Address IP Address 0 Domain Name Server DNS Address Get Automatically From ISP Use These DNS Servers Primary DNS Secondary DNS Router MAC Address Use Default Address Use Computer MAC Address Use This MAC Address Apply Cancel 4 PPPoE Dial On Demand 5 00 1E E3 EE AE 4C Figure 1 7 Does Your Internet Connection Require A Login If you usually use a login program such as WinPOET to access the Internet your Internet connection requires a login After you select Yes the Basic Settings screen displays Note After you finish setting up your router you will no longer need to launch the ISP s login program on your computer to access the Internet When you start an Internet application your router will automatically log you in Configuring Basic Connectivity v1 0 November 201 1 N 150 2 Port Wireless Router WNR500 User Manual Internet Service Provider This drop down list contains a few ISPs that need special protocols for connection Not all ISPs are listed here The ones on this list have special requirements The list inc
99. nnttataswaniutadaeahataaanshodiaaamandutaiaednatss 3 1 Blocking Access to Intemmet SerVvIGBS 3 5 d ta des tates eere duva sa cosas eeu A 3 3 Blocking Services by IP Address Range sci scien hassel tu Tu eoi edente duds 3 5 Scheduling BIOCKING eR c T 3 5 Viewing Logs of Web Access or Attempted Web Access sss 3 6 Configuring E mail Alert and Web Access Log Notifications 3 7 Chapter 4 Customizing Your Network Settings Using the LAN IP Setup PUN sda iiiaect iiu xx REASS CERA RERA a E ecu S Be T OTRA 4 1 Configuring a Device Name 55 5 rao ger ERES ERRRDGE RR ERR DAN Geese eenas 4 2 Configuring LAN TCP IP Setup Parameters sss 4 2 Using the Router as a DHCP SERVER os ecicraei eara Ett narse 4 3 Using Address Reservation cismini toilet deer a Heer TO ese nfi aa po rud 4 4 Using a Dynamic DNS SERVICE 1 5 tette e eee poe tenet pes iesu abac itt Cheb pde tens d god bea supe i beraak d 4 5 Configuring the WAN Setup Options i ern ooo a Lieder tacet dert send dee a 4 7 Disabling Port Scan and DOS Protection 2 cccccesseeccceseseseneeeteeeececeseesteceeeseeneenade 4 8 Setting Upa Default DMZ SENET eguei testet pu tesi etes eh eoe Secun ra Ru aede kv eun dE 4 8 Responding to a Ping on the Internet WAN Port sss 4 8 Seng Me NT EESTI 4 9 Disabling IGMP ProxyinG 22 7 52 0 06 Sade aro ace abore adea duck oa I ari oaa neato eas 4 9 Disabling SIP ALG 3 55 55 9 9 0 9 Debond Te cov
100. ns and environmental factors including volume of network traffic building materials and construction and network overhead lower actual data throughput rate Technical Specifications v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual General Specifications Table A 2 WNR500 Router General Specifications Feature General Data and Routing Protocols Network Protocol and Standards Compatibility TCP IP RIP 1 RIP 2 DHCP PPPoE PPTP Dynamic DNS and UPnP Power Adapter AC plug is localized 110V 240V 50 60 Hz input All regions output 5V DC 1 0A output Physical Dimensions Weight 126 x 105x 30 mm 4 96 x 3 7 x 1 2 in 0 123 kg 0 27 Ib Environmental Operating temperature Operating humidity 5 to 45 C 23 to 113 F 95 maximum relative humidity noncondensing Ele ctromagnetic Emissions Designed to conform to the following standards China CCC amp SRRC Interface Specifications LAN WAN 10BASE T or 100BASE Tx RJ 45 10BASE T or 100BASE Tx RJ 45 Technical Specifications v1 0 November 2011 Appendix B Related Documents This appendix provides links to reference documents you can use to gain a more complete understanding of the technologies used in your NETGEAR product Table B 1 Reference Documents Document Link TCP IP Networking Basics Wireless Networking Basics Preparing Your N
101. ntenance in the main menu to view the table Attached Devices IP Address Device Name MAC Address 1 192 168 0 2 emachine 00 48 54 8d d7 d3 Refresh Figure 6 4 For each device the table shows the IP address NetBIOS host name or device name if available and the Ethernet MAC address To force the router to look for attached devices click Refresh Note If the router is rebooted the table data is lost until the router rediscovers the devices Managing the Configuration File The configuration settings of the WNR500 router are stored within the router in a configuration file You can back up this file to your computer restore it or reset it to the factory default settings Select Backup Settings under Maintenance in the main menu to display the Backup Settings Backup Settings Save a Copy of Current Settings Restore Saved Setting from a File Browse Revert to Factory Default Settings Figure 6 5 The following sections describe the three available options Using Network Monitoring Tools 6 7 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual Backing Up and Restoring the Configuration The Restore and Backup options in the Settings Backup screen let you save and retrieve a file containing your router s configuration settings To save your settings click Backup Your browser extracts the configuration file from the router and prompts you for a locatio
102. o connect to your network several times a second which can cause significant performance reduction e Use WMM to improve the performance of voice and video traffic over the wireless link Changing the MTU Size The Maximum Transmission Unit MTU is the largest data packet a network device transmits When one network device communicates across the Internet with another the data packets travel through many devices along the way If any device in the data path has a lower MTU setting than the other devices the data packets must be split or fragmented to accommodate the one with the smallest MTU The best MTU setting for NETGEAR equipment is often just the default value and changing the value might fix one problem but cause another Leave MTU unchanged unless one of these situations occurs e You have problems connecting to your ISP or other Internet service and either the technical support of the ISP or of NETGEAR recommends changing the MTU size These might require an MTU change A secure Web site that will not open or displays only part of a Web page Yahoo e mail MSN America Online s DSL service e You use VPN and have severe performance problems e You used a program to optimize MTU for performance reasons and now you have connectivity or performance problems Note An incorrect MTU setting can cause Internet communication problems such as the inability to access certain Web sites frames within Web sites secu
103. of IPv4 you can click this check box to enable IPv6 Pass Through Select WAN Setup under Advanced in the main menu The WAN Setup screen displays O Disable Port Scan and DoS Protection C Default DMZ Server D Respond to Ping on Internet Port O Disable IGMP Proxying MTU Sizetin otes 1500 NAT Filtering O disable SIP ALG E Enable IPv6 Pass Through IE Cancel Figure 4 4 Customizing Your Network Settings 4 7 v1 0 November 201 1 N 150 2 Port Wireless Router WNR500 User Manual Disabling Port Scan and DOS Protection The Port Scan and DOS Protection feature protects your network and computers against attacks and intrusions A stateful packet firewall carefully inspects incoming traffic packets looking for known exploits such as malformed oversized or out of sequence packets The Port Scan and Dos Protection feature should be disabled only in special circumstances such as when you are troubleshooting application issues Setting Up a Default DMZ Server The default DMZ server feature is helpful when you are using some online games and videoconferencing applications that are incompatible with Network Address Translation NAT The router is programmed to recognize some of these applications and to work correctly with them but there are other applications that might not function well In some cases one local computer can run the application correctly if that computer s IP address is entered as the def
104. of wireless security options can significantly affect your network performance The time it takes to establish a wireless connection can vary depending on both your security settings and router placement Safeguarding Your Network 2 8 v1 0 November 2011 3 N 150 2 Port Wireless Router WNR500 User Manual WEP connections can take slightly longer to establish Also WEP WPA PSK and WPA2 PSK encryption can consume more battery power on a notebook computer and can cause significant performance degradation with a slow computer Instructions for configuring the security options can be found in Choosing Appropriate Wireless Security on page 2 1 A full explanation of wireless security standards is available in the online document that you can access from Wireless Networking Basics in Appendix B Click Apply to save your settings Configuring WEP Wireless Security WEP Shared Key authentication and WEP data encryption can be defeated by a determined eavesdropper using publicly available tools WEP offers the following options Automatic With the Automatic option the router will try both Open System and Shared Key authentication Normally this setting is suitable If it fails select Open System or Shared Key You can also refer to your wireless adapter s documentation to see what method to use Open System With Open System authentication and 64 or 128 bit WEP data encryption the WNRS00 router does perform data encrypti
105. on but does not perform any authentication Anyone can join the network This setting provides very little practical wireless security Shared Key With Shared Key authentication a wireless device must know the WEP key to join the network Select the encryption strength 64 or 128 bit data encryption Manually enter the key values or enter a word or group of printable characters in the Passphrase field Manually entered keys are not case sensitive but passphrase characters are case sensitive To configure WEP data encryption Note If you use a wireless computer to configure WEP settings you will be disconnected when you click Apply You must then either configure your wireless adapter to match the wireless router WEP settings or access the wireless router from a wired computer to make any further changes Not all wireless adapter configuration utilities support passphrase key generation 1 2 Select Wireless Settings under Setup in the main menu In the Security Options section select WEP The WEP options display Safeguarding Your Network 2 9 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual Security Encryption WEP Authentication Type Automatic v Encryption Strength 64ba Security Encryption WEP Key Key 1 Key 2 O Key 3 O Key 4 O Figure 2 3 Select the authentication type and encryption strength You can manually or automatically program the four da
106. on page 2 23 e Understanding Your Firewall on page 2 23 Choosing Appropriate Wireless Security Unlike wired networks wireless networks allow anyone with a compatible adapter to receive your wireless data transmissions well beyond your walls Operating an unsecured wireless network creates an opportunity for outsiders to eavesdrop on your network traffic or to enter your network to access your computers and files Indoors computers can connect over wireless networks at ranges of up to 300 feet Such distances can allow for others outside your immediate area to access your network Use the security features of your wireless equipment that are appropriate to your needs The time it takes to establish a wireless connection can vary depending on both your security settings and router placement 2 1 v1 0 November 201 1 N 150 2 Port Wireless Router WNR500 User Manual Stronger security methods can entail a cost in terms of throughput latency battery consumption and equipment compatibility In choosing an appropriate security level you can also consider the effort compared to the reward for a hacker to break into your network As a minimum however NETGEAR recommends using WEP with Shared Key authentication Do not run an unsecured wireless network unless it is your intention to provide free Internet access for the public WEP connections can take slightly longer to establish Also WEP WPA PSK and WPA2 PSK encryption can consume mo
107. onfiguration file You can back up save this file and retrieve it later NETGEAR recommends that you save your configuration file after you complete the configuration If the router fails or becomes corrupted or an administrator password is lost you can easily re create your configuration by restoring the configuration file For instructions on saving and restoring your configuration file see Managing the Configuration File on page 6 7 y Tip Before saving your configuration file change the administrator password to the default password Then change it again after you have saved the configuration file If you save the file with a new password and then you later forget the new password you will have to reset the router back to the factory defaults and log in using the default password of password This means you will have to re enter all the router configuration settings Understanding Your Firewall Your N 150 2 Port Wireless Router WNR500 contains a true firewall to protect your network from attacks and intrusions A firewall is a device that protects one network from another while allowing communication between the two Using a process called Stateful Packet Inspection the firewall analyzes all inbound and outbound traffic to determine whether or not it will be allowed to pass through By default the firewall allows any outbound traffic and prohibits any inbound traffic except for responses to your outbound
108. ooting 7 trusted user 3 2 U Universal Plug and Play UPnP 5 2 up time system 6 6 updating firmware 3 6 3 6 9 usage statistics 6 6 V version firmware 6 3 6 9 RIP Router Information Protocol 4 3 viewing advanced wireless settings 2 2 attached devices 6 7 basic security settings 2 6 logs 3 6 status 6 2 W WAN setup 4 7 WEP encryption 2 3 2 9 Wi Fi Protected Setup WPS 2 13 6 4 wildcards DNS and 4 6 Wireless Card Access List 2 78 2 19 wireless client PIN 2 5 wireless clients adding 2 13 2 17 6 4 wireless connection type 5 22 wireless network name 2 2 7 6 4 wireless port settings 6 4 wireless radio 3 2 12 6 4 wireless security setting up 2 wireless settings advanced 2 2 basic 2 6 default listed A 2 gathering information 2 5 WMM Wi Fi Multimedia 5 6 WPA2 PSK encryption 2 3 2 10 WPA PSK WPA2 PSK encryption 2 3 2 10 WPA PSK encryption 2 3 2 10 Index 5 v1 0 November 2011
109. open ports to any computer that needs them and can close the ports when they are no longer needed Note If you use applications such as multiplayer gaming peer to peer connections real time communications such as instant messaging or remote assistance a feature in Windows XP you should also enable Universal Plug and Play UPnP according to the instructions in Using Universal Plug and Play on page 5 12 To configure port triggering you need to know which inbound ports the application needs Also you need to know the number of the outbound port that will trigger the opening of the inbound ports You can usually determine this information by contacting the publisher of the application or user groups or newsgroups To set up port triggering 1 Select Port Forwarding Port Triggering under Advanced in the main menu The Forwarding Port Triggering screen displays see Figure 5 1 on page 5 7 Select the Port Triggering radio button The port triggering information displays Port Forwarding Port Triggering Please select the service type O Port Forwarding Port Triggering Disable Port Triggering Port Triggering Timeout n minutes 20 Port Triggering Portmap Table Enable Server Name Service Type Required Inbound Connection Service User Figure 5 4 Clear the Disable Port Triggering check box Note If the Disable Port Triggering check box is selected after you configure port triggering
110. or your Internet connection and your wireless local area network LAN connection When you perform the initial configuration of your wireless router these settings are specified automatically for you This chapter provides further details about these connectivity settings as well as instructions on how to log in to the router for further configuration This chapter includes the following sections e Logging In To Your Wireless Router on page 1 1 e Configuring Your Internet Settings Using the Setup Wizard on page 1 6 e Viewing and Configuring Basic Internet Settings on page 1 6 Setting Up and Testing Wireless N 150 Connectivity on page 1 11 Logging In To Your Wireless Router When the wireless router is connected to your network you can access and configure the router using your browser The Default Access login information is printed on the bottom label of your router To access the router 1 1 v1 0 November 201 1 N 150 2 Port Wireless Router WNR500 User Manual 1 Connect to the wireless router by typing http www routerlogin net in the address field of your browser and then press Enter A login window displays NETGEAR User name i admin Password eeccccce Figure 1 1 vx Tip You can connect to the wireless router by typing either of these URLs in the 20 address field of your browser and then pressing Enter http www routerlogin net e http www routerlogin com If the
111. p screen select the Turn Internet Access QoS On check box Click Apply Fine Tuning Your Network 5 21 v1 0 November 201 1 N 150 2 Port Wireless Router WNR500 User Manual Editing or Deleting an Existing QoS Policy To edit or delete an existing QoS policy 1 From the main menu under Advanced select QoS Setup The QoS Setup screen displays as shown in Figure 5 8 on page 5 17 Select the radio button next to the QoS policy to be edited or deleted and do one of the following e Click Delete to remove the QoS policy Click Edit to edit the QoS policy Follow the instructions in the preceding sections to change the policy settings Click Apply in the QoS Setup screen to save your changes Overview of Home and Small Office Networking Technologies Common connection types and their speed and security considerations are Broadband Internet Your Internet connection speed is determined by your modem type such as ADSL or cable modem as well as the connection speed of the sites to which you connect and general Internet traffic ADSL and cable modem connections are asymmetrical meaning they have a lower data rate to the Internet upstream than from the Internet downstream Keep in mind that when you connect to another site that also has an asymmetrical connection the data rate between your sites is limited by each side s upstream data rate A typical residential ADSL or cable modem connection provides a downstream
112. port number for a Web server process forward it to the local computer at 192 168 1 123 The following sequence shows the effects of the port forwarding rule you have defined 1 The user of a remote computer opens Internet Explorer and requests a Web page from www example com which resolves to the public IP address of your router The remote computer composes a Web page request message with the following destination information e The destination address is the IP address of www example com which is the address of your router The destination port number is 80 the standard port number for a Web server process The remote computer then sends this request message through the Internet to your router 2 Your router receives the request message and looks in its rules table for any rules covering the disposition of incoming port 80 traffic Your port forwarding rule specifies that incoming port 80 traffic should be forwarded to local IP address 192 168 1 123 Therefore your router modifies the destination information in the request message The destination address is replaced with 192 168 1 123 Your router then sends this request message to your local network 3 Your Web server at 192 168 1 123 receives the request and composes a return message with the requested Web page data Your Web server then sends this reply message to your router 4 Yourrouter performs Network Address Translation NAT on the source IP address and sends this
113. r DNS Address If you know that your ISP does not automatically transmit DNS addresses to the router during login select Use These DNS Servers and enter the IP address of your ISP s primary DNS server If a secondary DNS server address is available enter it also p Note If you enter or change a DNS address restart the computers on your network so that these settings take effect Setting Up and Testing Wireless N 150 Connectivity Follow these instructions to set up and test Wireless N 150 connectivity Once you have established Wireless N 150 connectivity you can enable security settings appropriate to your needs 1 Select Wireless Settings under Setup in the main menu of the WNR500 router Wireless Settings Region Selection Region Europe be Wireless Network v Enable SSID Broadcast Cl Enable Wireless Isolation Name SSID NETGEAR Channel Auto v Mode Up to 150Mbps Security Options O None O wEP O WPA PSK TKIP WPA2 PSK AES O WPA PSK TKIP WPA2 PSK AES Figure 1 10 Configuring Basic Connectivity 1 11 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual 2 As appropriate select the region in which the wireless interface will operate Note In North America you will not be able to change the region setting 3 For Wireless Network check either of the following Enable SSID Broadcast If checked the SSID will be broadcast in this channel Th
114. r with a fixed IP address 5 Click Apply to save all your settings in the Block Sites screen Restricting Access From Your Network 3 2 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual Blocking Access to Internet Services The WNR500 router allows you to block the use of certain Internet services by computers on your network This is called service blocking or port filtering Services are functions performed by server computers at the request of client computers For example Web servers serve Web pages time servers serve time and date information and game hosts serve data about other players moves When a computer on your network sends a request for service to a server computer on the Internet the requested service is identified by a service or port number This number appears as the destination port number in the transmitted IP packets For example a packet that is sent with destination port number 80 is an HTTP Web server request To block access to Internet services 1 Select Block Services under Content Filtering in the main menu The Block Services screen 2 displays Block Services Services Blocking 9 Never O Per Schedule O Always Service Table Service Type Port IP Figure 3 2 Enable service blocking by selecting either Per Schedule or Always and then click Apply To block by schedule be sure to specify a time period in the Schedule screen For information about schedu
115. re battery power on a notebook computer and can cause significant performance degradation with a slow computer Note NETGEAR recommends that you change the administration password of your router Default passwords are well known and an intruder can use your administrator access to read or disable your security settings For information about how to change the administrator password see Changing the Administrator Password on page 2 20 Wireless data security options Range up to 300 foot radius i L 4 eP 1 Open system easy but no security 2 MAC access list no data security WNR500 3 WEP security but some performance impact 4 WPA PSK strong security 5 WPA2 PSK very strong security Note Use these with other features that enhance security Table 2 2 on page 2 4 Figure 2 1 To configure the wireless network you can e Manually specify your SSID and your wireless security settings The WNR500 router provides two screens for configuring the wireless settings Wireless Settings You access these under Setup in the main menu see Viewing Wireless N 150 Settings on page 2 6 Safeguarding Your Network 2 2 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual Advanced Wireless Settings You access these under Advanced in the main menu see Viewing Advanced Wireless Settings on page 2 12 e Use Wi Fi Protected Setup WPS to automatically set the SSID and implemen
116. re login pages or FTP or POP servers Fine Tuning Your Network 5 15 v1 0 November 201 1 N 150 2 Port Wireless Router WNR500 User Manual If you suspect an MTU problem a common solution is to change the MTU size to 1400 If you are willing to experiment you can gradually reduce the MTU size from the maximum value of 1500 until the problem goes away Table 5 1 describes common MTU sizes and applications Table 5 1 Common MTU Sizes MTU Application 1500 The largest Ethernet packet size and the default value This is the typical setting for non PPPoE non VPN connections and is the default value for NETGEAR routers adapters and switches 1492 Used in PPPoE environments 1472 Maximum size to use for pinging Larger packets are fragmented 1468 Used in some DHCP environments 1460 Usable by AOL if you do not have large e mail attachments for example 1436 Used in PPTP environments or with VPN 1400 Maximum size for AOL DSL 576 Typical value to connect to dial up ISPs To change the MTU size 1 Inthe main menu under Advanced select WAN Setup 2 Inthe MTU Size field enter a new size between 64 and 1500 3 Click Apply to save the new configuration Quality of Service Quality of Service QoS is an advanced feature that can be used to prioritize some types of traffic ahead of others The WNR500 router can provide QoS prioritization over the wireless link and on the Internet connection U
117. reless Router WNR500 User Manual From the Priority drop down list select the priority that this traffic should receive relative to other applications and traffic when accessing the Internet The options are Low Normal High and Highest Click Apply to save this rule to the QoS Policy list and return to the QoS Setup screen In the QoS Setup screen select the Turn Internet Access QoS On check box Click Apply QoS for a Router LAN Port To create a QoS policy for a device connected to one of the router s LAN ports 1 From the main menu under Advanced select QoS Setup The QoS Setup screen displays as shown in Figure 5 8 on page 5 17 Click Add Priority Rule 3 From the Priority Category list select Ethernet LAN Port The QoS Priority Rules screen changes QoS Priority rules Priority QoS Policy for LAN Port 1 Priority Category Ethernet LAN Port LAN port EE Priority Normal J Apply Cancel Figure 5 12 4 From the LAN port list select the LAN port that will have a QoS policy 5 From the Priority drop down list select the priority that this port s traffic should receive relative to other applications and traffic when accessing the Internet The options are Low Normal High and Highest Click Apply to save this rule to the QoS Policy list and return to the QoS Setup screen 7 Inthe QoS Setup screen select the Turn Internet Access QoS On check box Click Apply Fine Tuning Your Network 5 20
118. reless network Either way record the settings for your wireless network in the spaces provided e Wireless Network Name SSID The SSID identifies the wireless network You can use up to 32 alphanumeric characters The SSID is case sensitive The SSID in the wireless adapter card must match the SSID of the wireless router In some configuration utilities such as in Windows XP the term wireless network name is used instead of SSID If WEP Authentication is used circle one Shared Key or Auto E Note If you select Shared Key the other devices in the network will not connect unless they are also set to Shared Key and are configured with the correct key WEP Encryption Key Size Choose one 64 bit or 128 bit Again the encryption key size must be the same for the wireless adapters and the wireless router Data Encryption WEP Keys There are two methods for creating WEP data encryption keys Whichever method you use record the key values in the spaces provided e Passphrase Method These characters are case sensitive Enter a word or group of printable characters and click Generate Not all wireless devices support the passphrase method Manual Method These values are not case sensitive For 64 bit WEP enter 10 hexadecimal digits any combination of 0 9 a f or A F For 128 bit WEP enter 26 hexadecimal digits Key 1 Key 2 Key 3 Key 4 e If WPA PSK or WPA2 PSK authentication is used Safegu
119. reless network does not appear check these conditions e Is your router s wireless radio enabled See Viewing Advanced Wireless Settings on page 2 12 e Is your router s SSID broadcast enabled See Viewing Advanced Wireless Settings on page 2 12 e Is your router set to a wireless standard that is not supported by your wireless adapter Check the Mode setting as described in Viewing and Configuring Basic Internet Settings on page 1 6 If your wireless network appears but the signal strength is weak check these conditions e Is your router too far from your adapter or too close Place the computer that has the adapter near the router but at least 6 feet away and see whether the signal strength improves e Is your wireless signal obstructed by objects between the router and your adapter See Optimizing Wireless Performance on page 5 14 Restoring the Default Configuration and Password This section explains how to restore the factory default configuration settings that reset the router s user name to admin the password to password and the IP address to 192 168 1 1 AN Warning These procedures erase all current configuration settings You can erase the current configuration and restore factory defaults in two ways e Use the Erase function of the router To use the Erase function see Erasing the Configuration on page 6 8 e Use the restore factory settings button on the rear panel of the router U
120. request message through the Internet to the remote computer which displays the Web page from www example com To configure port forwarding you need to know which inbound ports the application needs You usually can determine this information by contacting the publisher of the application or user groups or newsgroups Fine Tuning Your Network 5 5 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual How Port Forwarding Differs from Port Triggering The following points summarize the differences between port forwarding and port triggering Port triggering can be used by any computer on your network although only one computer can use it at a time e Port forwarding is configured for a single computer on your network Port triggering does not need to know the computer s IP address in advance The IP address is captured automatically e Port forwarding requires that you specify the computer s IP address during configuration and the IP address must never change Port triggering requires specific outbound traffic to open the inbound ports and the triggered ports are closed after a period of no activity e Port forwarding is always active and does not need to be triggered Configuring Port Forwarding to Local Servers Using the port forwarding feature you can allow certain types of incoming traffic to reach servers on your local network For example you might make a local Web server FTP server or game s
121. rt Wireless Router WNR500 User Manual 3 Enter the MAC address of the computer or server X Tip If the computer is already present on your network you can copy its MAC address from the Attached Devices screen and paste it here Note The reserved address is not assigned until the next time the computer contacts the router s DHCP server Reboot the computer or access its IP configuration and force a DHCP release and renew To edit or delete a reserved address entry 1 Click the button next to the reserved address you want to edit or delete 2 Click Edit or Delete Using a Dynamic DNS Service If your Internet Service Provider ISP gave you a permanently assigned IP address you can register a domain name and have that name linked with your IP address by public Domain Name Servers DNS However if your Internet account uses a dynamically assigned IP address you do not know in advance what your IP address will be and the address can change frequently In this case you can use a commercial Dynamic DNS service which allows you to register your domain to their IP address and forwards traffic directed at your domain to your frequently changing IP address Note If your ISP assigns a private WAN IP address such as 192 168 x x or 10 x x x the Dynamic DNS service will not work because private addresses are not routed on the Internet Your router contains a client that can connect to the Dynamic DNS service
122. s apply to the wireless port of the router The wireless network name SSID being used by the wireless port of the router The default is NETGEAR Region The geographic region where the router is being used It might be illegal to use the wireless features of the router in some parts of the world Channel Mode Wireless AP Identifies the channel of the wireless port being used Click the link to the online document Wireless Networking Basics in Appendix B for the frequencies used on each channel Indicates the wireless communication mode Up to 54 Mbps Up to 65 Mbps Up to 150 Mbps Indicates whether the radio feature of the router is enabled If not enabled the Wireless LED on the front panel is off Broadcast Name Indicates whether the router is broadcasting its SSID Wi Fi Protected Setup Indicates whether the router s PIN is enabled and whether the router is configured for WPS Wi Fi Protected Setup For more information see Configuring WPS Security Wi Fi Protected Setup on page 2 13 Using Network Monitoring Tools v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual 2 Click Connection Status to display the connection status Connection Status IP Address Subnet Mask Default Gateway DHCP Server DNS Server Lease Obtained Lease Expires Figure 6 2 192 168 100 102 255 255 255 0 192 168 100 1 192 168 100 1 192 168 1
123. s different from the network address of the remote device e Check that your cable or DSL modem is connected and functioning e f your ISP assigned a host name to your computer enter that host name as the account name in the Basic Settings screen e Your ISP could be rejecting the Ethernet MAC addresses of all but one of your computers Many broadband ISPs restrict access by allowing traffic only from the MAC address of your broadband modem but some ISPs additionally restrict access to the MAC address of a single computer connected to that modem If this is the case you must configure your router to clone or spoof the MAC address from the authorized computer Troubleshooting 7 8 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual Problems with Date and Time Select E mail under Content Filtering in the main menu to display a screen that shows the current date and time of day The WNR500 router uses the Network Time Protocol NTP to obtain the current time from one of several network time servers on the Internet Each entry in the log is stamped with the date and time of day Problems with the date and time function can include the following Date shown is January 1 2000 Cause The router has not yet successfully reached a network time server Check that your Internet access settings are correct If you have just completed configuring the router wait at least 5 minutes and check the date and time agai
124. se URLs do not work you must type the IP address of the router for example Attp www 192 166 1 1 2 Enter admin for the router user name and your password or the default password For information about how to change the password see Changing the Administrator Password on page 2 15 Note The router user name and password are not the same as any other user name or password you might use to log in to your Internet connection Configuring Basic Connectivity 1 2 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual The Checking for Firmware Updates screen appears unless you previously cleared the Check for Updated Firmware Upon Log in check box Checking for Firmware Updates The router is checking the NETGEAR serverto see if updated firmware available for your router This could take up to 30 seconds please wait K3 Check for Updated Firmware Upon Log in Cancel Figure 1 2 This message displays if the router discovers that new firmware is available If no new firmware is available the router will proceed to the router status screen Firmware Upgrade Assistant A New Firmware Version is Found Do You Want to Upgrade to the New Current Version V1 1 3 5 New Version V1 1 3 6 Figure 1 3 To automatically update to the new firmware click Yes to allow the router to download and install the new firmware file from NETGEAR Warning Whe
125. se this method for cases when the administration password or IP address is not known To use the restore settings button 1 Locate the restore factory settings button on the rear panel of the router 2 Usea sharp object such as a pen or a paper clip to press and hold the restore factory settings button for about 5 seconds until the Power light begins to blink Troubleshooting 7 10 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual 3 Release the restore factory settings button and wait for the router to restart and for the Power light to stop blinking and become solid green The factory default settings will be restored so that you can access the router from your Web browser using the factory defaults If the wireless router fails to restart or the Power light continues to blink or turns solid amber the unit might be defective If the error persists you might have a hardware problem and should contact Technical Support at http www netgear com support Troubleshooting 7 11 v1 0 November 2011 Appendix A Technical Specifications Default Configuration Settings This appendix provides factory default settings and technical specifications for the N 150 2 Port Wireless Router WNR500 Table A 1 WNR500 Router Default Configuration Settings Feature Default Setting Router Login Router Login URL http www routerlogin net or http www routerlogin com Logi
126. sing WMM QoS for Wireless Multimedia Applications The WNRS00 router supports Wi Fi Multimedia Quality of Service WMM QoS to prioritize wireless voice and video traffic over the wireless link WMM QoS provides prioritization of wireless data packets from different applications based on four access categories voice video best effort and background For an application to receive the benefits of WMM QoS both it and Fine Tuning Your Network 5 16 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual the client running that application must be WMM enabled Legacy applications that do not support WMM and applications that do not require QoS are assigned to the best effort category which receives a lower priority than voice and video Configuring QoS for Internet Access To specify prioritization of traffic you must create a policy for the type of traffic and add the policy to the QoS Policy table in the QoS Setup screen To create a QoS policy From the main menu of the browser interface under Advanced select QoS Setup The QoS Setup screen displays E Turn Internet Access QoS On C Turn Bandwidth Controi On Uplink bandwidth maximum 12300 Kbps Qos Priority Rule list Setup QoS rule C Enable Trusted IP Adcress Trusted IP Address 192 168 Figure 5 8 WMM QoS is enabled by default You can disable it by clearing the Enable WMM check box and clicking Apply QoS for Applications and
127. ss of www example com which your computer finds by asking a DNS server e The destination port number is 80 the standard port number for a Web server process Your computer then sends this request message to your router Your router creates an entry in its internal session table describing this communication session between your computer and the Web server at www example com Before sending the Web page request message to www example com your router stores the original information and then modifies the source information in the request message performing Network Address Translation NAT e The source address is replaced with your router s public IP address This is necessary because your computer uses a private IP address that is not globally unique and cannot be used on the Internet e The source port number is changed to a number chosen by the router such as 33333 This is necessary because two computers could independently be using the same session number Your router then sends this request message through the Internet to the Web server at www example com Fine Tuning Your Network 5 2 v1 0 November 201 1 N 150 2 Port Wireless Router WNR500 User Manual 4 The Web server at www example com composes a return message with the requested Web page data The return message contains the following address and port information e The source address is the IP address of www example com e The source port number is 80 the standard
128. ss to Internet sites 3 1 v1 0 November 201 1 N 150 2 Port Wireless Router WNR500 User Manual 1 Select Block Sites under Content Filtering in the main menu The Block Sites screen displays Block Sites Keyword Blocking 9 Never O Per Schedule O Always Type keyword or domain name here Add Keyword Block sites containing these keywords or domain names discodanny Delete Keyword I Clear List Allow Trusted IP Address To Visit Blocked Sites Trusted IP Address Figure 3 1 2 Enable keyword blocking by selecting either Per Schedule or Always To block by schedule be sure to specify a time period in the Schedule screen For information about scheduling see Scheduling Blocking on page 3 5 Block all access to Internet browsing during a scheduled period by entering a dot as the keyword and then set a schedule in the Schedule screen 3 Addakeyword or domain by entering it in the keyword field and clicking Add Keyword The keyword or domain name then appears the Block sites containing these keywords or domain names list Delete a keyword or domain name by selecting it from the list and clicking Delete Keyword 4 You can specify one trusted user which is a computer that is exempt from blocking and logging Specify a trusted user by entering that computer s IP address in the Trusted IP Address fields Since the trusted user is identified by IP address you should configure that compute
129. st of all devices connected to your router including wireless and Ethernet connected see Viewing a List of Attached Devices on page 6 7 Restricting Wireless Access by MAC Address When a Wireless Card Access List is configured and enabled the router checks the MAC address of any wireless device attempting a connection and allows only connections to computers identified on the trusted computers list The Wireless Card Access List displays a list of wireless computers that you allow to connect to the router based on their MAC addresses These wireless computers must also have the correct SSID and wireless security settings to access the wireless router The MAC address is a network device s unique 12 character physical address containing the hexadecimal characters 0 9 a f or A F only and separated by colons for example 00 09 AB CD EF 01 It can usually be found on the bottom of the wireless card or network interface device If you do not have access to the physical label you can display the MAC address using the network configuration utilities of the computer In WindowsXP for example typing the ipconfig all command in an MSDOS command prompt window displays the MAC address as Physical Address You might also find the MAC addresses in the router s Attached Devices screen To restrict access based on MAC addresses 1 Select Wireless Settings under Advanced in the main menu Safeguarding Your Network 2 18 v1 0 Novemb
130. t WPA WPA2 security on both the router and the client device If the clients in your network are WPS capable you can use Wi Fi Protected Setup WPS to automatically set the SSID and implement WPA WPA2 security on both the router and the client device see Configuring WPS Security Wi Fi Protected Setup on page 2 13 Basic security options are listed in order of increasing effectiveness in Table 2 1 Other features that affect security are listed in Table 2 2 on page 2 4 For more details on wireless security methods click the link to the online document Wireless Networking Basics in Appendix B Table 2 1 Wireless Security Options Security Type None WEP Wired Equivalent Privacy WPA PSK TKIP WPA PSK standard encryption with TKIP encryption type WPA2 PSK AES Wi Fi Protected Access version 2 with Pre Shared Key WPA2 PSK standard encryption with the AES encryption type WPA PSK TKIP WPA2 PSK AES Mixed mode Description No wireless security Recommended only for troubleshooting wireless connectivity Do not run an unsecured wireless network unless it is your intention to provide free Internet access for the public Wired Equivalent Privacy WEP data encryption provides moderate data security WEP Shared Key authentication and WEP data encryption can be defeated by a determined eavesdropper using publicly available tools For more information see Configuring WEP Wireless Security on page
131. t s PIN field Safeguarding Your Network 2 15 v1 0 November 201 1 N 150 2 Port Wireless Router WNR500 User Manual 6 Click Next The following screen displays and the Smart Wizard initiates the wireless connection Connecting to New Wireless Client The clients PIN is 25050530 Collecting the clients information Intl Cancel Figure 2 9 Configuring the WPS Settings 1 Log in to the router as described in Logging In To Your Wireless Router on page 1 1 2 Select Advanced Wireless Settings under Advanced in the main menu REPLACE PIC WPS Settings Routers PIN 12345670 E Disable Routers PIN Keep Existing Wireless Settings Wireless Card Access List Setup Access List Figure 2 10 These options are available under WPS Settings Router s PIN The PIN is displayed so that you can use it to configure the router through WPS Wi Fi Protected Setup It is also displayed on the router s label e Enable WPS ADD DESCRIPTION Disable Router s PIN If the router s PIN is disabled you cannot configure the router s wireless settings with WPS However if your settings are already configured you can still add WPS enabled wireless clients The router might disable the PIN if it detects suspicious attempts to break into your wireless settings this can happen if the check box is selected You can enable the PIN by clearing the check box and clicking Apply Safeguarding Your Network 2 16 v1 0
132. ta encryption keys These values must be identical on all computers and access points in your network e Automatic In the Passphrase field enter a word or group of printable characters and click Generate The passphrase is case sensitive For example NETGEAR is not the same as nETgear The four key fields are automatically populated with key values e Manual Enter 10 hexadecimal digits any combination of 0 9 a f or A F These entries are not case sensitive For example AA is the same as aa Select which of the four keys to activate 5 Click Apply to save your settings Configuring WPA PSK and WPA2 PSK Wireless Security Wi Fi Protected Access with Pre Shared Key WPA PSK and WPA2 PSK data encryption provides extremely strong data security very effectively blocking eavesdropping Because WPA and WPA2 are relatively new standards older wireless adapters and devices might not support them Check whether newer drivers are available from the manufacturer Also you might be able to use the Push N Connect feature to configure this type of security if it is supported by your wireless clients See Configuring WPS Security Wi Fi Protected Setup on page 2 13 WPA Pre Shared Key does perform authentication WPA PSK uses TKIP Temporal Key Integrity Protocol data encryption and WPA2 PSK uses AES Advanced Encryption Standard data encryption Both methods dynamically change the encryption keys making them nearly impossible to circum
133. ted RIP 1 is usually adequate unless you have an unusual network setup RIP 2B carries more information than RIP 1 and uses subnet broadcasting RIP 2M carries more information than RIP 1 and uses multicasting Using the Router as a DHCP Server By default the router functions as a DHCP server allowing it to assign IP DNS server and default gateway addresses to all computers connected to the router s LAN The assigned default gateway address is the LAN address of the router The router assigns IP addresses to the attached computers from a pool of addresses specified in this screen Each pool address is tested before it is assigned to avoid duplicate addresses on the LAN Note For most applications the default DHCP and TCP IP settings of the router are satisfactory Click the link to the online document TCP IP Networking Basics in Appendix B for an explanation of DHCP and information about how to assign IP addresses for your network Customizing Your Network Settings 4 3 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual To specify a pool of IP addresses to be assigned set the starting IP address and ending IP address These addresses should be part of the same IP address subnet as the router s LAN IP address Using the default addressing scheme you should define a range between 192 168 1 2 and 192 168 1 254 although you might wish to save part of the range for devices with fixed addresses Th
134. ted to a separate Ethernet switch make sure that the link lights are on for the switch ports that are connected to your computer and router e Wrong network configuration Verify that the Ethernet card driver software and TCP IP software are both installed and configured on your computer Verify that the IP address for your router and your computer are correct and that the addresses are on the same subnet Testing the Path from Your Computer to a Remote Device After verifying that the LAN path works correctly test the path from your computer to a remote device 1 From the Windows toolbar click the Start button and then select Run 2 Inthe Windows Run window type ping n 10 IP address where lt P address gt is the IP address of a remote device such as your ISP s DNS server If the path is functioning correctly replies like those shown in the previous section are displayed If you do not receive replies e Check that your computer has the IP address of your router listed as the default gateway If the IP configuration of your computer is assigned by DHCP this information is not be visible in your computer s Network Control Panel Verify that the IP address of the router is listed as the default gateway as described in the online document you can access from Preparing Your Network in Appendix B e Check to see that the network address of your computer the portion of the IP address specified by the subnet mask i
135. the MTU Size The normal MTU value for most Ethernet networks is 1500 bytes 1492 bytes for PPPoE connections or 1450 for PPTP connections For some ISPs you might need to reduce the MTU size but this is rarely required and should not be done unless you are sure it is necessary for your ISP connection For more information see Changing the MTU Size on page 5 15 To change the MTU size 1 Inthe MTU Size field enter a new size between 64 and 1500 2 Click Apply to save the new configuration Disabling IGMP Proxying The IGMP Proxying function lets a LAN PC receive the multicast traffic it is interested in from the Internet If you do not need this function you can click the Disable IGMP Proxying check box to disable this function Disabling SIP ALG Some SIP applications have their own way to work around the NAT firewall issue and the SIP ALG would conflict with those solutions In most cases you do not have to disable the SIP ALG However if your SIP applications cannot work with the router you can disable the SIP ALG and try the applications again To disable SIP ALG click the Disable SIP ALG check box Enabling IPv6 Pass Through IPv6 pass through is disabled by default If you have IPv6 capable devices in your configuration and would like to use those devices instead of IPv4 you can click the Enable IPv6 Pass Through check box to enable the IPv6 Pass Through function Configuring NAT Filtering Network Address Trans
136. tical links in your network are those where the traffic is high and the distances are great Optimize those first Choose placement carefully For best results place your router Near the center of the area in which your computers will operate Inan elevated location such as a high shelf where the wirelessly connected computers have line of sight access even if through walls Avoid obstacles to wireless signals Keep wireless devices at least 2 feet from large metal fixtures such as file cabinets refrigerators pipes metal ceilings reinforced concrete and metal partitions Keep away from large amounts of water such as fish tanks and water coolers e Reduce interference Avoid windows unless communicating between buildings Place wireless devices away from various electromagnetic noise sources especially those in the 2400 2500 MHz frequency band Common noise creating sources are e Computers and fax machines no closer than 1 foot e Copying machines elevators and cell phones no closer than 6 feet Fine Tuning Your Network 5 14 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual Microwave ovens no closer than 10 feet Choose your settings Usea scanning utility to determine what other wireless networks are operating nearby and choose an unused channel Turn off SSID broadcast and change the default SSID Other nearby devices might automatically try t
137. tocol 5 miniupnpd 820 upnp Add nat rule to 192 168 1 2 at port 7503 with the TCP protocol 5 miniupnpd 820 upnp Add filter rule to 192 168 1 2 at port 7503 with the UDP protocol 5 miniupnpd 820 upnp Add nat rule to 192 168 1 2 at port 7503 with the UDP Apply Refresh Clear Log Send Log n Figure 3 5 Restricting Access From Your Network v1 0 November 201 1 3 6 N 150 2 Port Wireless Router WNR500 User Manual Table 3 1 describes the log entries Table 3 1 Log Entry Descriptions Field Description Date and time The date and time the log entry was recorded Source IP The IP address of the initiating device for this log entry Target address The name or IP address of the website or newsgroup visited or to which access was attempted Action Whether the access was blocked or allowed To refresh the log screen click the Refresh button To clear the log entries click the Clear Log button To e mail the log immediately click the Send Log button Configuring E mail Alert and Web Access Log Notifications To receive logs and alerts by e mail you must provide your e mail account information To configure e mail alert and web access log notifications Restricting Access From Your Network v1 0 November 2011 3 7 N 150 2 Port Wireless Router WNR500 User Manual 1 Select E mail under Content Filtering in the main menu The E mail scre
138. tup Information sss 2 5 Changing Wireless Security Settings x 4 ped te peste enun ula e ERU OPUS UN No UU iini 2 6 Viewing Wireless N 150 Settings i aor torti ead setae o re Dose i setae rc 2 6 Configuring WEP Wireless Security 2 2 2 a 2 peo ro itat eene sso takes a Rer Ta Ra RPI A IRE RRUE 2 9 Configuring WPA PSK and WPA2 PSK Wireless Security ssssssssse 2 10 Viewing Advanced Wireless Settings ceste eniti eaa ia aan End 2 12 Configuring WPS Security Wi Fi Protected Setup sssssssseeese 2 13 eundum 2 15 Configuring the VWPS Setllngs u udis ated cdit ade esi tudiavix e cadera a t Eae enun ada ed d 2 16 Connecting Additional Wireless Client Devices after WPS Setup 2 17 Restricting Wireless Access by MAC Address sss 2 18 Changing the Administrator Password sesssseee eee 2 20 Adding Guest NGIWOIKS ses iics6ccotds edie edens 2 21 Backing Up Your COMmiQuration aoc caseo tees oct ta E 2 23 Understanding Your FIFeWallk cuis eot tumeur tk xiu Saa Rata tonnes e tcu Ra bbs tuna D tu dwan dU ceu 2 23 vii v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual Chapter 3 Restricting Access From Your Network Content Filtering OVerVIGW s 22 99 5 santana ieee aati EA ENEA DARA RAR RSCA 3 1 Blocking Access to Internet SSS 9 idet D gana
139. ur Web server at 192 168 1 33 HTTP port 80 is the standard protocol for Web servers 3 Optional Register a host name with a Dynamic DNS service and configure your router to use the name as described in Using a Dynamic DNS Service on page 4 5 To access your Web server from the Internet a remote user must know the IP address that has been assigned by your ISP However if you use a Dynamic DNS service the remote user can reach your server by a user friendly Internet name such as mynetgear dyndns org Configuring Port Triggering Port triggering is a dynamic extension of port forwarding that is useful in these cases e More than one local computer needs port forwarding for the same application but not simultaneously e An application needs to open incoming ports that are different from the outgoing port When port triggering is enabled the router monitors outbound traffic looking for a specified outbound trigger port When the router detects outbound traffic on that port it remembers the IP address of the local computer that sent the data The router then temporarily opens the specified incoming port or ports and forwards incoming traffic on the triggered ports to the triggering computer Fine Tuning Your Network 5 9 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual While port forwarding creates a static mapping of a port number or range to a single local computer port triggering can dynamically
140. ur computer and the IRC server Your router stores the original information performs Network Address Translation NAT on the source address and port and sends this request message through the Internet to the IRC server 4 Noting your port triggering rule and having observed the destination port number of 6667 your router creates an additional session entry to send any incoming port 113 traffic to your computer 5 The IRC server sends a return message to your router using the NAT assigned source port as in the previous example let s say port 33333 as the destination port The IRC server also sends an identify message to your router with destination port 113 6 Upon receiving the incoming message to destination port 33333 your router checks its session table to determine whether there is an active session for port number 33333 Finding an active session the router restores the original address information replaced by NAT and sends this reply message to your computer 7 Upon receiving the incoming message to destination port 113 your router checks its session table and learns that there is an active session for port 113 associated with your computer The router replaces the message s destination IP address with your computer s IP address and forwards the message to your computer 8 When you finish your chat session your router eventually senses a period of inactivity in the communications The router then removes the sess
141. using the default password of password This means you will have to re enter all the router configuration settings For information about how to back up your settings see Backing Up and Restoring the Configuration on page 6 8 E Tip Before changing the router password back up your configuration settings with the Safeguarding Your Network 2 20 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual To change the administrator password 1 On the main menu under Maintenance select Set Password to display the Set Password screen Set Password Old Password New Password Repeat New Password Figure 2 13 2 To change the password first enter the old password then enter the new password twice Click Apply Adding Guest Networks Adding a guest network allows visitors at your home to use the Internet without having to know your wireless security key To add a guest network do the following Safeguarding Your Network 2 21 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual 1 Select Guest Network from the Setup menu The Guest Network Settings screen appears Guest Network Settings Network Profiles Scheme SSID Security Apply SSID Broadcast 1 NetGear 002 None NO YES 9 2 i NetGear 003_ Mono NO ES 3 NetGear 004 None NO YES 4 NetGear 005 None NO YES Wireless Sett
142. vent Safeguarding Your Network 2 10 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual Mixed mode allows clients using either WPA PSK TKIP or WPA2 PSK AES This provides the most reliable security and is easiest to implement but it might not be compatible with older adapters Note Not all wireless adapters support WPA Furthermore client software is also required Windows XP with Service Pack 2 does include WPA support Nevertheless the wireless adapter hardware and driver must also support WPA For instructions on configuring wireless computers or PDAs personal digital assistants for WPA PSK security consult the documentation for the product you are using To configure WPA PSK WPA2 PSK or WPA PSK WPA2 PSK 1 Select Wireless Settings under Setup in the main menu The Wireless Settings screen displays 2 Select one of the WPA PSK or WPA2 PSK options for the security type The third option WPA PSK TKIP WP2 PSK AES is the most flexible since it allows clients using either WPA PSK or WPA2 PSK 3 In the Passphrase field enter a word or group of 8 63 printable characters The passphrase is case sensitive Security Options O None O WEP O WPA PSK TKIP OwP PSK AES WPA PSK TKIP WPA2 PSK AES Security Options WPA PSK WPA2 PSK Passphrase 8 63 characters or 64 hexdigits Figure 2 4 4 Click Apply to save your settings Safeguarding Your
143. vice then responds with an echo reply Troubleshooting a network is made very easy by using the ping utility in your computer or workstation This section includes e Testing the LAN Path to Your Router e Testing the Path from Your Computer to a Remote Device Testing the LAN Path to Your Router You can ping the router from your computer to verify that the LAN path to your router is set up correctly To ping the router from a running Windows PC 1 From the Windows toolbar click Start and then select Run 2 Inthe field provided type ping followed by the IP address of the router as in this example ping www routerlogin net 3 Click OK You should see a message like this one Pinging IP address with 32 bytes of data If the path is working you see this message Reply from IP address gt bytes 32 time NN ms TTL xxx If the path is not working you see this message Request timed out If the path is not functioning correctly you could have one of the following problems e Wrong physical connections Fora wired connection make sure that the numbered LAN port light is on for the port to which you are connected If the light is off follow the instructions in Troubleshooting Basic Functions on page 7 2 Troubleshooting 7 7 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual Check that the appropriate LEDs are on for your network devices If your router and computer are connec
144. will be disconnected You must then open a new connection to the new IP address and log in again Customizing Your Network Settings 4 2 v1 0 November 2011 N 150 2 Port Wireless Router WNR500 User Manual The router s default LAN IP configuration is e LAN IP address 192 168 1 1 e Subnet mask 255 255 255 0 These addresses are part of the designated private address range for use in private networks and should be suitable for most applications If your network has a requirement to use a different IP addressing scheme you can make those changes in this screen The LAN IP settings are P Address The LAN IP address of the router P Subnet Mask The LAN subnet mask of the router Combined with the IP address the IP subnet mask allows a device to know which other addresses are local to it and which must be reached through a gateway or router RIP Direction RIP allows a router to exchange routing information with other routers The RIP Direction selection controls how the router sends and receives RIP packets Both is the default When set to Both or In Only the router incorporates the RIP information that it receives When set to Both or Out Only the router broadcasts its routing table periodically RIP Version This controls the format and the broadcasting method of the RIP packets sent by the router It recognizes both formats when receiving The default setting is Disabled RIP 1 is universally suppor
145. y 6 2 metric value 4 2 mixed mode encryption 2 3 2 71 mode communication 2 6 6 4 MTU size 4 9 5 15 N NAT Network Address Translation 4 8 4 9 5 2 NetBIOS host name 6 7 Network Time Protocol NTP 7 9 O obstructions connecting through 5 23 online games QoS for 5 18 Open System authentication 2 9 optimizing performance 5 4 outgoing mail server 3 8 P passphrases 2 9 2 10 2 11 password changing 2 20 restoring 7 10 path testing 7 8 performance optimizing 5 4 physical specifications A 3 PIN 2 15 2 16 ping 4 8 7 7 placement router 5 4 poll interval 6 6 port filtering 3 3 port forwarding configuring 5 6 example 5 5 Index 3 v1 0 November 201 1 port numbers 3 3 port status 6 6 port triggering configuring 5 9 example 5 3 portmap table 5 3 power adapter specifications A 3 Power light troubleshooting and 7 2 Powerline HD products 5 23 PPTP Point to Point Tunneling Protocol 0 Preamble mode 2 2 primary DNS server 1 8 1 11 prioritizing traffic 5 16 protocols compatibility A 3 Push N Connect 2 3 Q QoS Quality of Service 5 6 R radio wireless 3 2 12 6 4 range router 5 4 reducing interference 5 4 reference documents B region of operation 2 8 registering product ii releasing connection status 6 5 remote devices testing path 7 8 remote management 6 2 renewing connection status 6 5 requirements speed 5 23 reserved IP adresses 4 4 restartin
Download Pdf Manuals
Related Search