| Version 2 (modified by , 15 years ago) ( diff ) |
|---|
Generic Proxy Functionality Summary
Wed, 2009-09-23 14:03 — thomasuit (from http://www.genericproxy.org)
On this page the GUI's tabs (bold), subtabs (italic) and their functionality are defined.
==System==
General settings:
Hostname: Enter the hostname for this device. (Default: Generic Proxy)
Domain: Enter the Domain name for this device. (Default: local)
DNS (Domain Name System) servers: three textboxes, Enter DNS server IP address; these are also used for the DHCP service and DNS forwarder Default: empty) + a tick box with the opportunity to set: DNS server list to be overridden by DHCP/PPP on WAN.
Username: set username for this device
Password: set password; If you want to change the password for accessing the webGUI, enter it here twice.
webGUI protocol: set device to HTTP or HTTPS (by default on HTTP) HTTPS is more secure but HTTPS is vulnerable when applied to publicly-available static content.
webGUI port: Enter a custom port number for the webGUI above if you want to override the default (80 for HTTP, 443 for HTTPS).
Firmware update:
Menu with an address box to enter (or find) the location of the new firmware.
At the bottom of the screen a confirmation button to override the existing firmware.
Reboot:
Page to restart the device with a confirmation.
Reset:
Page to set factory default settings. With confirmation.
Backup/restore:
Page to backup or restore an existing configuration,
Restore: An address box. Which can be used to find the file with the backup configuration.
Backup: Press this button to make a backup. This file will be saved on your HDD (or other external storage)
==Interfaces==
Assign:
Set Interface Network port with dropdown menu for Internal, WAN and External.
===LAN===
Type: dropdown menu: static or DHCP by default DHCP. Select static if you use another DHCP server in your network.
IP address: Set IP address for device. By default: 192.168.0.1
MTU: Enter a value for MTU, If you enter a value in this field, then MSS clamping for TCP connections to the value entered above minus 40 (TCP/IP header size) will be in effect. If you leave this field blank, an MTU of 1492 bytes for PPPoE and 1500 bytes for all other connection types will be assumed.
===WAN===
Type: dropdown menu: static or DHCP by default DHCP. Select static if you use another DHCP server in your network.
MAC Address: this field can be used to modify ("spoof") the MAC address of the WAN interface (may be required with some cable connections). Enter a MAC address in the following format: xx:xx:xx:xx:xx:xx or leave blank
MTU(maximum transmission unit): Enter a value for MTU. If you enter a value in this field, then MSS clamping for TCP connections to the value entered above minus 40 (TCP/IP header size) will be in effect. If you leave this field blank, an MTU of 1492 bytes for PPPoE and 1500 bytes for all otheronnection types will be assumed.
Static IP configuration: IP address - enter an IP Address for WAN if needed. By default: 192.168.0.1
Gateway: fill in the number for your gateway: e.g. 192.168.0.2
DHCP Client configuration: Hostname. The value in this field is sent as the DHCP client identifier and hostname when requesting a DHCP lease. Some ISPs may require this (for client identification).
===External===
Type: Dropdown menu with: static or DHCP
General settings:
MAC address: This field can be used to modify ("spoof") the MAC address of the WAN interface
(may be required with some cable connections)
Enter a MAC address in the following format: xx:xx:xx:xx:xx:xx or leave blank.
MTU: Enter a MTU value. If you enter a value in this field, then MSS clamping for TCP connections to the value entered above minus 40 (TCP/IP header size) will be in effect. If you leave this field blank, an MTU of 1492 bytes for PPPoE and 1500 bytes for all other connection types will be assumed.
Static settings
IP address: Enter external IP address this field can’t be edit by user or expert.
Gateway: Enter a gateway. This field can’t be edit by user or expert.
DHCP client configuration: Hostname - Enter a Hostname if needed. The value in this field is sent as the DHCP client identifier and hostname when requesting a DHCP lease. Some ISPs may require this (for client identification).
==Firewall==
The firewall is used to block unauthorized access while permitting authorized communications. It can be configured to permit, deny, encrypt, decrypt, or proxy all (in and out) computer traffic between different security domains based upon a set of rules and other criteria.
NAT:
Network Address Translation (NAT) is the process of modifying network address information in datagram packet headers while in transit across a traffic routing device for the purpose of remapping a given address space into another.
Edit or New:
Interface: dropdown menu with: WAN or OPT1 by default: WAN
External address: dropdown menu. If you want this rule to apply to another IP address than the IP address of the interface chosen above, select it here (you need to define IP addresses on the Server NAT page first).
Rules:
Protocol: Choose which IP protocol this rule should match.
External port range: Enter the port Range if needed. Specify the port or port range on the firewall's external address for this mapping. Hint: you can leave the 'to' field empty if you only want to map a single port
NAT IP: Enter the internal IP address of the server on which you want to map the ports. e.g. 192.168.1.12 Local port: Specify the port on the machine with the IP address entered above. In case of a port range, specify the beginning port of the range (the end port will be calculated automatically).
Hint: this is usually identical to the 'from' port above
Description: You may enter a description here for your reference (not parsed).
==Services==
DHCP:
This menu can be used to setup the DHCP settings.
Subnet and subnet mask: Subnetting is used to break the network into smaller more efficient subnets to prevent excessive rates of Ethernet packet collision in a large network.
fill in the subnetmask if needed.
Range: Enter the range of IP addresses.
WINS servers: Windows Internet Name Service (WINS) is Microsoft's implementation of NetBIOS Name Service (NBNS), a name server and service for NetBIOS computer names.
By default it’s empty. Enter the IP addresses of the servers.
Default lease time: This is used for clients that do not ask for a specific expiration time.
The default is 7200 seconds.
Maximum lease time:
This is the maximum lease time for clients that ask for a specific expiration time. The default is 86400 seconds.
Add Mac address:
Mac Address: Enter a MAC address in the following format: xx:xx:xx:xx:xx:xx
IP address: If no IP address is given, one will be dynamically allocated from the pool.
Description: You may enter a description here for your reference (not parsed).
==DNS Forwarding==:
Add DNS:
Host: Name of the host, without domain part, e.g. myhost
Domain: Domain of the host, e.g. blah.com
IP address: IP address of the host, e.g. 192.168.100.100
Description: You may enter a description here for your reference (not parsed).
Dynamic DNS:
Dynamic DNS is a method, protocol, or network service that provides the capability for a networked device, such as a router or computer system using the Internet Protocol Suite.
Service type: Dropdown menu to select the right servicetype. Depending on which service you use. Please refer to the service provider for the correct settings.
Hostname: enter the hostname of your service provider.
Server: Special server to connect to. This can usually be left blank.
Port: Special server port to connect to. This can usually be left blank.
MX: Set this option only if you need a special MX record. Not all services support this.
Wildcards: Enable wildcards when needed.
Username: Enter your username for the service type.
Password: Enter your password for the service type.
==HTTPS==
Certificate: Paste a signed certificate in X.509 PEM format here.
Key: Paste an RSA private key in PEM format here.
IPSec:
Internet Protocol Security (IPsec) is a protocol suite for securing Internet Protocol (IP) communications by authenticating and encrypting each IP packet of a data stream.
==NTP==
Time zone: Select the location closest to you
Time update interval: Minutes between network time sync.; 300 recommended, or 0 to disable
NTP time server: Use a space to separate multiple hosts (only one required). Remember to set up at least one DNS server if you enter a host name here!
==Proxy==
In computer networks, a proxy server is a server (a computer system or an application program) that acts as an intermediary for requests from clients seeking resources from other servers.
To be continued
==SSH==
Secure Shell or SSH is a network protocol that allows data to be exchanged using a secure channel between two networked devices.
Enable SSH, check to enable, uncheck to disable SSH access to the generic proxy appliance
==Scheduling==
To be continued
==Traffic shaping==
Traffic shaping (also known as "packet shaping") is the control of computer network traffic in order to optimize or guarantee performance, lower latency, and/or increase usable bandwidth by delaying packets that meet certain criteria.
Status
DHCP:
This page contains all the current DHCP settings and statuses
With graphs and tables.
Interfaces:
This page contains all the current WAN, LAN and external settings in a list.
IPSec:
This page shows all the current IPsec statuses for an interface
Services:
This page show all the current Service statuses like DNS forwarding and NTP clock sync
Traffic:
This page contains graphs with the current traffic rate on this network.
Opportunity to select the right interface with a dropdown menu.
Diagnostics
Ping:
Use this function to ping the external provider etc
Traceroute:
Determine the packet route across the IP network.
‹ Menu structure up GUI ›
