Chapter
2
Installation
This Chapter covers the physical installation of the Broadband VPN Gateway.
Requirements
- Network cables. Use standard 10/100BaseT network (UTP) cables with RJ45
connectors.
- TCP/IP protocol must be installed on all PCs.
- For Internet Access, an Internet Access account with an ISP, and either of a
DSL or Cable modem (for WAN port usage)
Procedure

Figure 4: Installation Diagram
1. Choose an Installation Site
- Select a suitable place on the network to install the Broadband VPN Gateway.
Ensure the Broadband VPN Gateway and the DSL/Cable modem are powered OFF.
2. Connect LAN Cables
- Use standard LAN cables to connect PCs to the Switching Hub ports on the
Broadband VPN Gateway. Both 10BaseT and 100BaseT connections can be used
simultaneously.
- If required, you can connect any LAN port to another Hub. Any LAN port on
the Broadband VPN Gateway will automatically function as an "Uplink" port when
required. Just connect any LAN port to a normal port on the other hub, using a
standard LAN cable.
- If desired, connect the DMZ port to a standard port on another Hub. PCs
connected this hub will also gain Internet access, but will NOT be able to
access the rest of the LAN.
3. Connect WAN Cable
- Connect the DSL or Cable modem to the WAN port on the Broadband VPN Gateway. Use the cable supplied with your DSL/Cable modem. If no cable was supplied, use a standard cable.
4. Power Up
- Power on the Cable or DSL modem.
- Connect the supplied power adapter to the Broadband VPN Gateway and power
up.
Use only the power adapter provided. Using a different one may cause
hardware damage
5. Check the LEDs
- The Power LED should be ON.
- The Status LED should flash, then turn Off. If it stays on, there is
a hardware error.
- For each LAN (PC) connection, the LAN Link/Act LED should be ON
(provided the PC is also ON.)
- The WAN LED should be ON.
For more information, refer to
Front-mounted LEDs in Chapter 1.
Using
the DMZ Port
Please note the following points regarding the DMZ port.
- The DMZ port is a normal port, not an "uplink" port.
- PCs connected to the DMZ port are on the same LAN segment as PCs connected
to the Hub ports. They must use the same IP address range.
- PCs connected to the DMZ port are NOT visible to PCs on the hub (LAN) ports.
So you cannot use Microsoft networking or other networking protocols to connect
to PCs on the DMZ.
- PCs connected to the DMZ port still share the WAN port IP address for
Internet access.
Advantages of the DMZ Port
If running any Servers on your LAN, you should connect them to the DMZ port,
for the following reasons:
- Traffic passing between the DMZ and LAN passes through the firewall. The
firewall will protect your LAN if your Server is compromised and used to launch
an attack on your LAN.
- When using the Virtual Servers feature, (see
Virtual Servers in Chapter 6) a
firewall rule to allow incoming traffic from the Internet (WAN) to the DMZ is
automatically created. If the Server is connected to the LAN (hub) ports, you
must add the firewall rule manually.