Hng dn cu hnh nhanh Vigor 3300 Series (Load Balance) A/ M hnh tng th Chng ti xy dng m hnh ny mang tnh cht tham kho. Bn c th thay i thit b pha trc Vigor 3300series nu bn c sn thit b (modem) v thit b c h tr tnh nng Bridge . cu hnh Bridge Mode cho router bn c th tham kho bi Hng dn cu hnh Bridge mode.

B/ Cu hnh PPPoE cho Vigor3300series - M trnh duyt Internet Explore nhp a ch http://192.168.1.1 Username: draytek Password : 1234

1

1/ Chn mc - Network => Wan

2/ Chn mc - Edit Wan 1

2

3/ Chn mc - PPPoE trong phn IP Mode . V in Username v Password ca line ADSL Sau click chn OK .

4/ Chn mc - Edit Wan 2

3

5/ Chn mc - PPPoE trong phn IP Mode . V in Username v Password ca line ADSL. Sau click chn OK .

6/ Chn mc - Enable trong phn Load Balance (v nh du mc Auto weight ). Sau cng nh du Active cho c 2 Wan v click chn Apply reboot li router (khong 70 giy).

4

7/ Chn mc - Wan status kim tra tnh trng kt ni. Nu thit b c cp IP Wan l bn cu hnh thnh cng.

* Thng s VPI/VCI ca mt vi ISP trong TP.HCM.

Tn nh cung cp dch v ADSL NETSOFT (VNN) VIETTEL FPT SPT

VPI 8 8 0 0

VCI 35 35 33 33

5

* Bn hon thnh qu trnh ci t v thit lp Router Vigor3300series. Nu gp vn trong vic thit lp, xin bn vui lng lin h li vi b phn H Tr K Thut ca chng ti.

802.1Q VLAN 1. Tng quan VLAN Mng o c xem nh cc workgroup o, hot ng c lp vi nhau trong 1 mng. Cc workgroup ny giao tip vi nhau ging nh ang kt ni vt l n mng. Tuy nhin cc VLAN khng b gii hn bi cc rng buc phn cng nh cc kt ni phn on LAN vt l truyn thng n 1 mng. Nh vy, VLAN cho php ngi qun l mng phn khc cc mng vi cu trc logic, phn cp. VLAN c th nh ngha theo ng dng hoc b phn. V d, trong doanh nghip, 1 cng ty c th to 1 VLAN cho nhiu ngi dng v 1 VLAN khc cho ngi dng email; hoc 1 cng ty c th c 1 VLAN cho b phn k s, 1 VLAN cho b phn marketing v 1 VLAN cho cc khch hng c th truy cp Internet m khng th truy cp vo mng ni b. Ngoi ra VLAN c th xy dng theo cu trc t chc ca cng ty. V d, gim c ca 1 cng ty c th c 1 VLAN ring ca anh ta, cc trng b phn s c 1 VLAN ring khc v cc nhn vin cn li c th c 1 VLAN khc. VLAN cng c th xy dng theo cc cng ty khc nhau trong cng 1 ta nh tit kim tin v gim vic thit lp cc thit b. Hnh bn di m t frame IEEE 802.1Q v cc v tr chn trong frame Ethernet v 802.3. Nhn 802.1Q cha 3 bit u tin v 12 bit VLAN ID. Ba bit u tin dng cho 802.1P. Switch Ethernet v cc thit b khc phi c kh nng phn tch nhn 802.1Q th mi c th s dng nhn, nu khng s hin din ca nhn s gy ra li.

2. VLAN Trunk y l 1 phng php hiu qu nhm kt hp nhiu VLAN trn 1 port cho php kt ni nhiu switch m rng mng. Mt VLAN trunk cng c chc chn lu thng ca nhiu VLAN thng qua 1 port vt l.

6

3. Ti sao cn s dng VLAN Bo mt VLAN l mt truyn thng c kim sot. Mt khi ngi dng c a vo 1 VLAN, ngi ch c th truyn thng vi nhng thnh vin trong nhm VLAN . Qun tr d dng v linh hat Thng thng, cc subnet c nh ngha bi v tr vt l. Ngi dng s c cng subnet trong cng 1 vng. Tuy nhin, VLAN cho php mi port trn router nh ngha 1 subnet khc nhau. Nh vy ngi dng trong cng b phn nhng cc v tr vt l khc nhau vn s nhn cng 1 subnet a ch IP. Kim sot broadcast ci thin vic thc thi

7

Giao thc TCP/IP cng nh hu ht cc giao thc khc broadcast frame nh k qung b hoc tm cc ti nguyn mng. iu ny c th c nh hng ng k n vic thc thi mng vi s ngi dng ln. VLAN c th ngn chn vic lu thng trn mng b trn. Ngy nay, nhiu virus tn cng nh hng n vic lu thng mng. S dng VLAN ngn chn kh nng m rng ca virus. 4. Truyn thng LAN to LAN Vigor3300 cho php ngi dng cu hnh truyn thng LAN to LAN. Th d, 1 cng ty c th to nhiu subnet cho nhn vin v mong mun h c th truyn thng vi nhau. Ngi qun tr c th cho php truyn thng LAN to LAN. Mc khc, 1 cng ty khng cho php truyn thng gia cc b phn khc nhau. Ngi qun tr nn kha truyn thng LAN to LAN. Cu hnh firewall cho php hoc kha truyn thng LAN to LAN. Cu hnh di y l kha truyn thng gia 2 VLAN khc nhau.

IP Filter Table

Edit Filter Rule 5. Qun l port (Port management)

8

Ty chn Port Management c th gip ngi dng lun lun truyn thng vi router thm tr ngay c khi cu hnh sai trong VLAN 802.1Q. Port Management c c nh trn Port 4 ca LAN. Ngi dng nn kch hot port managament, loi tr ngi mun s dng c 4 VLAN v phi m bo cu hnh ng.

NG DNG 1 Mt cng ty mun chia ring b phn k s, b phn kinh doanh, b phn marketing v cc b phn khc gii hn cc b phn truyn thng vi nhau v m bo tnh bo mt. V vy, chng ta s nh ngha 4 VLAN l VLAN5, VLAN6, VLAN7 v VLAN8. Subnet ca VLAN5 l 192.168.1.0, subnet ca VLAN6 l 192.168.2.0, subnet ca VLAN7 l 192.168.3.0 v subnet ca VLAN8 l 192.168.4.0. Tuy nhin cc PC trong cng ty khng h tr 802.1Q.

9

Cu hnh: - Kha truyn thng LAN to LAN. - To nhm VLAN5, VLAN6, VLAN7 v VLAN8. - Trong VLAN5, nhp "5" vo VLAN ID. Trong vng Member chn P1. Sau chn "Untaggged" trong Frame Tag Operation cho P1. Chng ta nn cu hnh PVID (Port VLAN ID) l "5", bi v cc PC khng h tr VLAN 802.1Q. - Trong VLAN6, nhp "6" vo VLAN ID. Trong vng Member chn P2. Sau chn "Untaggged" trong Frame Tag Operation cho P2. Chng ta nn cu hnh PVID l "6", bi v cc PC khng h tr VLAN 802.1Q - Trong VLAN7, nhp "7" vo VLAN ID. Trong vng Member chn P3. Sau chn "Untaggged" trong Frame Tag Operation cho P3. Chng ta nn cu hnh PVID l "7", bi v cc PC khng h tr VLAN 802.1Q. - Trong VLAN8, nhp "8" vo VLAN ID. Trong vng Member chn P4. Sau chn "Untaggged" trong Frame Tag Operation cho P4. Chng ta nn cu hnh PVID l "8", bi v cc PC khng h tr VLAN 802.1Q. - Sau khi nhn "Apply" s m ra trang web yu cu "reboot". Chng ta c th b qua v tip tc cu hnh Network. Sau khi hon tt cu hnh Network, bn c th tin hnh reboot.

10

Ch : Sau khi reboot, port c gn nhn (tagged port) ch c th truyn thng vi cc thit b c h tr 802.1Q.

Trong Network >> LAN1, nhp vo subnet 192.168.1.0. V d, IP ca VLAN5 l 192.168.1.1 v subnet 255.255.255.0. Nh vy, ngi dng trong b phn k thut s c t a ch IP t 192.168.1.2 n 192.168.1.254.

Trong Network >> LAN2, nhp vo subnet 192.168.2.0. V d, IP ca VLAN6 l 192.168.2.1 v subnet 255.255.255.0. Nh vy, ngi dng trong b phn kinh doanh s c t a ch IP t 192.168.2.2 n 192.168.2.254.

11

Trong Network >> LAN3, nhp vo subnet 192.168.3.0. V d, IP ca VLAN7 l 192.168.3.1 v subnet 255.255.255.0. Nh vy, ngi dng trong b phn marketing s c t a ch IP t 192.168.3.2 n 192.168.3.254.

Trong Network >> LAN4, nhp vo subnet 192.168.4.0. V d, IP ca VLAN8 l 192.168.4.1 v subnet 255.255.255.0. Nh vy, ngi dng trong b phn khc s c t a ch IP t 192.168.4.2 n 192.168.4.254.

12

NG DNG 2 Mt cng ty mun chia ring b phn k s v cc b phn khc gii hn cc b phn truyn thng vi nhau v m bo d liu ca cc k s. V vy, chng ta nh ngha 2 VLAN l VLAN5 v VLAN6, subnet VLAN5 l 192.168.1.0 v subnet VLAN6 l 192.168.2.0.

13

Cu hnh: - Kha truyn thng LAN to LAN. - To cc nhm VLAN5 v VLAN6. - Trong VLAN5, nhp "5" vo VLAN ID. Trong vng Member chn P1 v P2. Sau chn "Tagged" trong Frame Tag Operation cho P1 v P2. Chng ta b qua cu hnh PVID (Port VLAN ID), bi v cc PC c h tr VLAN 802.1Q, nhn 802.1Q s c chn vo frame n PC ca b phn k s. - Trong VLAN6, nhp "6" vo VLAN ID. Trong vng Member chn P3 v P4. Sau chn "Tagged" trong Frame Tag Operation cho P3 v P4. Chng ta b qua cu hnh PVID, bi v cc PC c h tr VLAN 802.1Q, nhn 802.1Q s c chn vo frame n PC ca cc b phn khc. - Sau khi "Apply" s m ra trang web "reboot". Chng ta c th b qua v tip tc cu hnh Network. Sau khi hon tt cu hnh Network, bn c th tin hnh reboot. Ch : Sau khi reboot, port c gn nhn (tagged port) ch c th truyn thng vi cc thit b c h tr 802.1Q.

14

Trong Network >> LAN1, nhp vo subnet 192.168.1.0. V d, IP LAN ca VLAN5 l 192.168.1.1 v subnet l 255.255.255.0. Nh vy, ngi dng trong b phn k s s c a ch IP t 192.168.1.2 n 192.168.1.254.

Trong Network >> LAN2, nhp vo subnet 192.168.2.0. V d, IP LAN ca VLAN5 l 192.168.2.1 v subnet l 255.255.255.0. Nh vy, ngi dng trong b phn khc s c a ch IP t 192.168.2.2 n 192.168.2.254.

15

NG DNG 3 C 4 cng ty trong 1 ta nh. H mun chia s bng thng v s dng Vigor3300V s dng cc tnh nng Load Balance, bo mt v VoIP. V vy, chng ta nn cu hnh 4 VLAN l VLAN5, VLAN6, VLAN7 v VLAN8, subnet ca VLAN5 l 192.168.1.0, subnet ca VLAN6 l 192.168.2.0, subnet ca VLAN7 l 192.168.3.0 v subnet ca VLAN8 l 192.168.4.0.

16

Cu hnh: - Kha truyn thng LAN to LAN. - To cc nhm VLAN5, VLAN6, VLAN7, VLAN8. - Trong VLAN5, nhp "5" vo VLAN ID. Trong vng Member chn P1 v P2. Sau chn "Tagged" trong Frame Tag Operation cho P1. Chng ta b qua cu hnh PVID (Port VLAN ID), bi v cc PC c h tr VLAN 802.1Q, nhn 802.1Q s c chn vo frame n PC ca b phn k s. - Trong VLAN6, nhp "6" vo VLAN ID. Trong vng Member chn P2. Sau chn "Tagged" trong Frame Tag Operation cho P2. Chng ta b qua PVID, bi v cc PC c h tr VLAN 802.1Q, nhn 802.1Q s c chn vo frame n PC ca cng ty B. - Trong VLAN7, nhp "7" vo VLAN ID. Trong vng Member chn P3. Sau chn "Tagged" trong Frame Tag Operation cho P3. Chng ta b qua PVID, bi v cc PC c h tr VLAN 802.1Q, nhn 802.1Q s c chn vo frame n PC ca cng ty C. - Trong VLAN6, nhp "8" vo VLAN ID. Trong vng Member chn P4. Sau chn "Tagged" trong Frame Tag Operation cho P4. Chng ta b qua PVID, bi v cc

17

PC c h tr VLAN 802.1Q, nhn 802.1Q s c chn vo frame n PC ca cng ty D. - Sau khi "Apply" s m ra trang web "reboot". Chng ta c th b qua v tip tc cu hnh Network. Sau khi hon tt cu hnh Network, bn c th tin hnh reboot. Ch : Sau khi reboot, port c gn nhn (tagged port) ch c th truyn thng vi cc thit b c h tr 802.1Q.

Cu hnh Network tng t nh ng dng 1. NG DNG 4 Mt cng ty mun chia ring b phn k s, b phn kinh doanh, b phn Marketing v cc b phn khc gii hn cc b phn truyn thng vi nhau v m bo tnh bo mt. V vy, chng ta s nh ngha 4 VLAN l VLAN5, VLAN6, VLAN7 v VLAN8. Subnet ca VLAN5 l 192.168.1.0, subnet ca VLAN6 l 192.168.2.0, subnet ca VLAN7 l 192.168.3.0 v subnet ca VLAN8 l 192.168.4.0. Tuy nhin my notebook ca khch khng h tr 802.1Q.

18

Cu hnh: - Kha truyn thng LAN to LAN. - To nhm VLAN5, VLAN6, VLAN7, VLAN8. - Trong VLAN5, nhp "5" vo VLAN ID. Trong vng Member chn P1.Sau chn "Tagged" trong Frame Tag Operation cho P1. Chng ta b qua PVID (Port VLAN ID), bi v cc PC c h tr VLAN 802.1Q, nhn 802.1Q s c chn vo frame n PC ca b phn k s. - Trong VLAN6, nhp "6" vo VLAN ID. Trong vng Member chn P2. Sau chn "Tagged" trong Frame Tag Operation cho P2. Chng ta b qua PVID, bi v cc PC c h tr VLAN 802.1Q, nhn 802.1Q s c chn vo frame n PC ca b phn kinh doanh. - Trong VLAN7, nhp "7" vo VLAN ID. Trong vng Member chn P3. Sau chn "Tagged" trong Frame Tag Operation cho P3. Chng ta b qua PVID, bi v cc PC c h tr VLAN 802.1Q, nhn 802.1Q s c chn vo frame n PC ca b phn marketing. - Trong VLAN8, nhp "8" vo VLAN ID. Trong vng Member chn P4. Sau chn "Untagged" trong Frame Tag Operation cho P4. Chng ta nn cu hnh PVID l "8", bi v my notebook ca khch khng h tr VLAN 802.1Q. - Sau khi "Apply" s m ra trang web "reboot". Chng ta c th b qua v tip tc cu hnh Network. Sau khi hon tt cu hnh Network, bn c th tin hnh reboot.

19

Ch : Sau khi reboot, port c gn nhn (tagged port) ch c th truyn thng vi cc thit b c h tr 802.1Q.

Cu hnh Network tng t nh ng dng 1. NG DNG 5 Mt cng ty mun chia b k s, b phn kinh doanh, b phn Marketing v cc b phn khc gii hn cc b phn truyn thng ln nhau v m bo tnh bo mt. Nhiu nhn vin ca cng ty s dng switch h tr VLAN 802.1Q trin khai mng. V vy chng ta nh ngha 4 VLAN l VLAN5, VLAN6, VLAN7 v VLAN8, mi LAN port l Trunk port (port h tr nhiu VLAN), subnet VLAN5 l 192.168.1.0, subnet VLAN6 l 192.168.2.0, subnet VLAN7 l 192.168.3.0, subnet VLAN8 l 192.168.4.0.

20

Cu hnh: - Kho truyn thng LAN to LAN. - To cc nhm VLAN5, VLAN6, VLAN7 v VLAN8. - Trong VLAN5, nhp vo VLAN ID l "5". Trong vng Member, chn P1, P2, P3 v P4. Sau chon "Tagged" trong Frame Tag Operation cho P1, P2, P3, P4. Chng ta b qua cu hnh PVI (Port VLAN ID), bi v switch c h tr VLAN 802.1Q. - Trong VLAN6, nhp vo VLAN ID l "6". Trong vng Member, chn P1, P2, P3 v P4. Sau chon "Tagged" trong Frame Tag Operation cho P1, P2, P3, P4. Chng ta b qua cu hnh PVI, bi v switch c h tr VLAN 802.1Q. - Trong VLAN7, nhp vo VLAN ID l "7". Trong vng Member, chn P1, P2, P3 v P4. Sau chon "Tagged" trong Frame Tag Operation cho P1, P2, P3, P4. Chng ta b qua cu hnh PVI, bi v switch c h tr VLAN 802.1Q. - Trong VLAN8, nhp vo VLAN ID l "8". Trong vng Member, chn P1, P2, P3 v P4. Sau chon "Tagged" trong Frame Tag Operation cho P1, P2, P3, P4. Chng ta b qua cu hnh PVI, bi v PC c h tr VLAN 802.1Q. - Sau khi "Apply" s m ra trang web "reboot". Chng ta c th b qua v tip tc cu hnh Network. Sau khi hon tt cu hnh Network, bn c th tin hnh reboot. Ch : Sau khi reboot, port c gn nhn (tagged port) ch c th truyn thng vi cc thit b c h tr 802.1Q.

21

Thit lp Web, Mail, FTP Server, Remote Desktop trn ng truyn ADSL dng thit b DrayTek khng cn IP tnhNgy nay, khi h tng vin thng ni chung v cng ngh thng tin ni ring pht trin nhanh chng, nn hin nay ngi dng gia nh vn c kh nng thu mt ng truyn ADSL tc cao. Ngoi vic truy cp Internet, chng ta cn c th xy dng ring cho mnh mt h thng Web, Mail, FTP Server v.v... hoc Remote Desktop khi i cng tc xa cho nhu cu s dng ca c quan, nhu cu nghin cu hc tp, thc hnh ca sinh vin. thc hin c vic ny chng ta cn mt thit b h trNAT port v DynamicDNS, cc bc thc hin nh sau trn cc dng sn phm Router ADSL DrayTek. 1/ Ci t dch v DynamicDNS - Dch v tn min ng: Ti Server khi s dng ADSL vi IP ng th bn cn s dng dch v Dynamic DNS c th thit lp cho php ngi dng truy cp. C rt nhiu nh cung cp dch v Dynamic DNS min ph v c uy tn trn th gii. Thit b DrayTek h tr cc nh cung cp sau: www.dyndns.org, www.noip.com, www.dtdns.com, www.changeip.com, www.dns4biz.com,www.ddns.com.cn

Khi ng k dch v vi mt trong nhng nh cung cp trn, bn c cung cp mt ti khon s dng dch v (gm username v password). Khi bn ng k xong, ta bt u ci t router: o o Trong trang cu hnh chnh ca router DrayTek Bn vo mc Dynamic DNS Setup nh du check vo Enable Dynamic DNS Setup Sau bn chn s 1 trong mc Account (1 router DrayTek h tr ng thi 3 ti khon DDNS)

nh du check vo Enable Dynamic DNS Account. Trong mc Service Provider, chn nh cung cp m bn ng k.

22

Domain Name: Bn cho mt tn gi nh vi phn m rng l quy nh ca nh cung cp v d: anphat.dyndns.org(anphat: tn gi nh t t; dyndns.org l phn m rng do nh cung cp dch v tn min ng quy nh sn, c th la chn khc i nh dyndns.biz dyndns.info v.v) Login name v password: nhp vo ti khon m bn ng k vi nh cung cp.

Nh vy l bn va cu hnh xong dch v Dynamic DNS. Nhp OK hon tt 2/ Cu hnh NAT Port cho server hot ng: Ti trang cu hnh chnh ca thit b DrayTek, bn vo mc NAT Setup, sau vo Configure Port Redirection Table. Ti trang ny cho php bn ch nh cc dch v no mnh mun m. V d trong h thng chng ti th nghim, c tt c 3 Server v mt my tnh mun Remote Desktop. - Web Server c a ch IP l 192.168.1.10 - Mail Server c a ch IP l 192.168.1.11 - FTP Server c a ch IP 192.168.1.12 - My tnh cn Remote Desktop c a ch IP 192.168.1.13

Chng ti cu hnh nh hnh bn di

23

Nh vy l by gi, t bn ngoi bn ch cn g tn min ng m mnh ng k (anphat.dyndns.org) l c th truy xut Web Server ca mnh, tn min ng m bn ng k by gi phc v cc dch v Web, Mail, FTP v Remote Desktop. 3/Enable Remote Desktop trn my tnh: Click chut phi vo My Computer chn Properties, chn Tab Remote v check vo mc Allow users to connect remotely to this computer

24

4/Thc hin Remote Desktop: Vo All Programs->Accessories->Communications->Remote Desktop Connection. G vo tn min ng ng k v nhn Connect. Lc ny, trn my tnh bn ang thao tc s xut hin mn hnh my tnh c Remote v bn c th iu khin my Remote nh ang ngi trc tip trn my tnh .

25

Vigor 3300V (VoIP) tch hp vi tng i ni b (PBX) 1. S dng port FXS kt ni v tng i ni b (PBX)

Trong hnh minh ho trn, port FXS ca V3300V c kt ni vo trung k tng i (PBX), nh vy tt c ngi s dng trong vn phng u c th thc hin cuc gi Voice-over-IP cng nh gi ra mng in thoi cng cng (PSTN). Khi c cuc gi VoIP n, V3300V s thc hin chc nng nh hng cho cuc gi vo ging nh l nhng cuc gi khc t mng in thoi cng cng n. Trong s kin nu ngi dng trong vn phng mun gi cho ng nghip h xa, trong vi d trn, h c th chn line VoIP thc hin cuc gi n s VoIP ca ngi kia, nh vy s khng b tnh ph v khng nh hng n line in thoi cng cng. Tng t vy ngi ng nghip xa c th gi v vn phng ca mnh bng cch s dng VoIP vn khng c ph v khng cn line in thoi no.

26

Nu nh in thoi vn phng c n tnh hiu v nt nhn cho mi line (xem hnh trn), bn c th nhn thy ng line no ang bn v c th chn line no thc hin cuc gi ( PSTN hay VoIP). Ngoi ra trong hnh trn bn cng thy c kt ni n nh cung cp DrayTEL, cng c kt ni n mng in thoi cng cng, nh vy bn c th la chn line VoIP thc hin cuc gi ra mng in thoi truyn thng qua nh cung cp DrayTEL, ngi trong vn phng c th gi cho Fred thng qua line in thoi truyn thng hay dng line VoIP. iu ny tht tuyt vi khi bn mun nhiu cuc gi ng thi m khng cn thu thm line in thoi truyn thng. 2. S dng port FXO kt ni v tng i ni b (PBX)

Nh hnh bn trn, bn c th thy FXO c kt ni vo card m rng ca tng i ni b. FXO ng vai tr nh mt Extension ca PBX. Khi Fred mun gi cho 8999

27

u tin anh ta s nhn s in thoi truyn thng n cng ty v d 3925.3789, sau khi nghe tng i thng bo a.b.c.... anh ta nhn tip 12(nhnh kt ni FXO), lc ny Fred s nghe c tone in thoi VoIP v thc hin gi tip 8999. Ngc li, khi 8999 mun gi cho Fred. u tin 8999 nhn s VoIP ca FXO (v d 1234), s nghe c tone do tng i cp y nh l ang ngi trong cng ty khi nht in thoi ni b ln, gi ra ngoi PSTN gi s phi nhn 9, nh vy 8999 cn nhn tip 9, lc ny 8999 ch vic gi tip s in thoi ca Fred. Kt lun, nh m hnh c c FXO ln FXS, ta hon ton ch ng trong vic quyt nh hng cuc gi, khng gii hn v tr a l, tit kim rt nhiu chi ph (gi PSTN ch tnh cc ni ht, gi qua VoIP min ph). Chuyn dn sang VoIP ang l xu th tt yu, do vy quyt nh la chn VoIP l mt hnh ng ng n, chuyn nghip v tit kim. Hng dn ci t VoIP trn sn phm Vigor3300V * Phng thc gi: C hai phng thc gi cho bn la chn trong vic cu hnh thit b : * Mt l thc hin cuc gi im-im, gi ln nhau thng qua Tn min ng (Dynamic DNS) hay IP tnh hoc qua VPN (VoIP over VPN). * Hai l thc hin gi thng qua ng k vi mt SIP Server (min ph) no , nh DrayTel, IPTel, MediaRing, Voice777, VietCall, Vinavoiz... Vi phng thc ny, bn khng cn dng tnh nng Dynamic DNS v bn cn c th gi ra ngoi PSTN ca bt k quc gia no nu bn tr ph cho nh cung cp SIP Server (MediaRing, Voice777, VietCall, Vinavoiz...). * Cch bc ci t: 1. u ni thit b: Sau khi bn cu hnh WAN v bo m router cn bng ti Vigor3300V kt ni Internet (tham kho Hng dn cu hnh V3300), bn lp cc in thoi bn vo cc port FXS tng ng trn thit b hoc bn c th kt ni cc port FXS ny vo cc ng vo trung k CO ca tng i, mc ch nhm tt c cc my con u gi c VoIP. Trng hp VoIP loi FXO l port nhn tone (ngc vi FXS l loi portcp tone gi) dng ni vi thu bao PSTN hoc ni vo line extention my nhnh (con) ca tng i ni b, mc ch l chuyn tip cuc gi t mt khu vc (tnh, thnh ph hay quc gia) sang mt khu vc khc (c 2 khu vc ny phi c vn phng ca DN ny) bng cch chuyn d liu thoi thng qua mng VoIP ni b ri sau chuyn tip sang h thng PSTN (xem thm PCWorld B, trang 69 08/2007).

28

2. Thit lp c bn Bn ng nhp vo giao din cu hnh thit b sau vo mc Network >> WAN v chn la WAN thch hp cho VoIP.

3. Cu hnh chi tit VoIP C 2 cch cu hnh Cch 1: Cu hnh theo phng thc dng Tn min ng Dynamic DNS (khng cn thng qua SIP Server) Chng ta c VD sau: Cng ty chng ti gm 2 chi nhnh. Tr s chnh ti TP. HCM v vn phng H Ni u s dng thit b V3300V. Mc ch ca ti l cu hnh cho 2 vn phng c th s dng in thoi lin lc trc tip vi nhau thng qua VoIP (min ph). Trc tin, vic ti cn thc hin l mi vn phng ng k 1 tn min ng DDNS (tham kho bi gii thiu DDNS). Gi s, ti TPHCM chng ti ng k v s dng tn min ng: draytek.mine.nu v ti H Ni chng ti s dng tn: draytekhn.dyndns.org

29

u tin ta ci t cho V3300V H Ni. - Bn vo mc VoIP >> Port Settings v click chn port cn cu hnh.

- in vo cc thng s nh hnh bn di. Username, Display Name, Authentication l tn t t v s thng bo cho chi nhnh TP. HCM bit.

- n y l xem nh ci t xong cho 1 a im. Cu hnh tng t cho chi nhnh ti TP. HCM, gi s ta t username l draytekhcm. - c th gi i, bn vo mc VoIP >> Speed Dial ci quay s nhanh. + Speed Dial Phone Number: s bt k gi i. + Speed Dial Destination: tn min ng ni cn gi n.VD: chi nhnh H Ni ta s khai bo draytekhcm@draytek.mine.nu.

30

Nh vy, bn hon tt vic ci t VoIP phc v gi theo tn min ng v khng cn thng qua SIP Server. By gi, ti H Ni ch cn cm in thoi ln bm s 223 l bn c th gi n TP. HCM (v ngc li), rt n gin, d dng v c bit HON TON MIN PH !!! Cch 2: Cu hnh thng qua vic ng k vi SIP server: Vi phng thc ny bn s khng quan tm n tn min ng Dynamic DNS na. M bn cn ng k vi mt nh cung cp dch v thoi Internet no v d nh: http://www.draytel.org http://www.ring-voiz.com.vn http://www.vinavoiz.com.vn . Khi bn s c cung cp mt ti khon gm Username (cng l s in thoi lin lc ca bn) v password. A/ Cu hnh SIP server DRAYTEL.ORG: - Bn vo mc VoIP >> Protocol thit lp SIP Server.

- Sau vo VoIP >> Port setting ci t ti khon tng ng vi SIP Server

31

- Kim tra vic ng k thnh cng hay cha, bng cch vo mc VoIP >> Status

- Vo mc VoIP >> Speed Dial gn quay s nhanh.

32

B/ Cu hnh SIP Server IPTEL.ORG 1- Truy cp trang cu hnh ca Vigor 3300V, chn tab VoIP > Protocol > SIP Configuration khai bo SIP Server SIP Local Port mc nh l 5060 1 check vo Active kch hot Outbound Proxy trng Proxy Name tn Proxy Proxy Address a ch ca Proxy Server (VD: iptel.org) Proxy Port port ca proxy mc nh l 5060 Registrar Addr iptel.org Registrar Port 5060 Domain i ch ca sip server iptel.org Apply

2- Chn Tab VoIP > Port Setting > Phone Number

3- Trong trng hp ny ch s dng FXS nn chng ta chn port 5 cu hnh. Username s in thoi m mnh ng k trn IPTEL Authentication ID v Password l username password m mnh ng k trn IPTEL Display Name tn hin th

33

Proxy Server mnh chn l 1, v mnh khai bo proxy server trong mc protocol Apply

4- Chn tab VoIP > Status > Refresh, ti mc Register Status nu hin th l OK c ngha l chng ta ng k thnh cng

Vy l chng ta va c th thc hin cuc gi n tt c cc vn phng vi nhau mt cch min ph, va c th gi in thoi quc t vi chi ph rt thp, ng thi khng nh hng g n cc d liu khc trong mng (mail, web, downlodad file..) Chuyn dn sang s dng in thoi VoIP ang l xu th tt yu, bn sn sng cho s chuyn i ny cha ? Tit kim, tin li, bo mt, d s dng, cht lng cc tt l nhng g m cng ngh VoIP mang li cho bn, thit b chng ti cn h tr thut ton QoS (cht lng dch v) nhm mang li cho bn s yn tm hn na v cht lng cuc gi.

34

Hng dn cu hnh VPN trn Vigor 3300 series

Tnh nng c bn ca 1 kt ni VPN LAN-to-LAN l gip cho 2 mng LAN c th "nhn thy" nhau. Khi ch c 1 im c IP tnh, knh VPN phi c thit lp 1 chiu (t im c IP ng n im c IP tnh). Nu bn mun c 2 im lun kt ni t ng, router c IP ng phi lun online. Ngc li, ch c 1 chiu c th hot ng bnh thng. 1. M hnh kt ni: Gi s, cng ty bn c 2 vn phng. Ti vn phng chnh TP. HCM s dng Vigor3300V v chi nhnh H Ni s dng Vigor2900V. Ngi qun tr mun cc nhn vin chi nhnh c th truy cp d liu ti vn phng chnh thng qua m ha ca knh VPN, nhm trnh r r nhng thng tin quan trng.

Bng cu hnh ca V3300V v V2900V V3300V V2900V WAN IP 220.135.240.207 61.31.167.135

35

PPPoE, IP tnh PPPoE, IP ng LAN IP 192.168.33.1 192.168.29.1 Internal Network 192.168.33.x 192.168.29.x Phng thc m ha DES-SHA1 Preshare Key 3300 2. Cu hnh VPN trn Vigor 3300V: - Gi s lp mng ca V3300V l 192.168.33.x (cu hnh chi tit trong phn Network >> LAN). Vo mc VPN >> IPSec >> Policy Table, chn 1 v nhn Edit.

- u tin ta vo trang Default. C 3 vng: * Basic: + Profile Status: chn Enable kch hot profile ny. + Name: t tn cho profile. thun tin ta t tn profile l 2900V. + Preshared Key: nhp vo "3300" ( phi ng key nh trn V2900V). * Local Gateway: + WAN Interface: Vigor 3300Vc 4 WAN, trong v d ny chng ta chn WAN 1 thit lp knh VPN. + Network IP / Subnet Mask: chnh l lp mng bn trong ca Vigor3300V. Nhp vo IP l 192.168.33.0 / 24 (/24 = Mask 255.255.255.0). * Remote Gateway: + Security Gateway: chnh l IP WAN ca V2900V. Trong trng hp ny do V2900V khng c IP tnh nn nhp l 0.0.0.0. + Network IP / Subnet Mask: l lp mng bn trong ca V2900V. Nhp vo IP l 192.168.29.0 / 24 (/24 = Mask 255.255.255.0).

36

- Vo tab Advanced. Khi kt ni c thit lp bi V2900V, phng php m ha s c d t V2900V. Mc nh Vigor3300V cho php des-md5, des-sha1, 3des-md5 v 3des-sha1, cho nn khng cn thay i. Ch cn nhn vo nt Apply hon thnh.

- Sau khi cu hnh xong router s chuyn sang trang Policy Table. Kim tra li cc thng s cu hnh.

37

3. Cu hnh trn Vigor 2900V: - Vo trang cu hnh router, chn mc VPN and Remote Access Setup.

38

- Chn mc LAN-to-LAN Profile Setup.

- Click vo Index 1 cu hnh knh VPN kt ni n Vigor 3300V.

39

- Trang cu hnh gm 4 phn: * Common Settings: check vo mc Enable this profile kch hot. This image has been resized. Click this bar to view the full image. The original image is sized 693x138.

+ Profile Name: t tn cho profile. thun tin trong v d ny ta t l "3300V". + Call Direction: cu hnh chiu quay cho profile ny. Trong v d ny, kt ni c thit lp t V2900V n Vigor3300V, cho nn chn Dial-Out. + Idle Timeout: mc nh l 300 giy. Nu profile ny kt ni vt qua thi gian set, router s t ngt. * Dial-Out Settings: + Chn IPSec Tunnel v nhp vo IP WAN ca Vigor3300V trong mc Server IP/Host Name for VPN 220.135.240.207. + Nhn vo nt IKE Pre-Shared Key, xut hin 1 ca s, nhp vo key "3300" (phi ng key nhp trn V3300V). Nhn Finish hon thnh cu hnh IKE Pre-Shared Key. + Click chn High (ESP) v chn DES with Authentication (mc nh l DES without Authentication).

40

* DialIn Settings: do V2900V cu hnh quay ra ngoi (Dial-Out) nn bn khng cn cu hnh phn ny. * TCP/IP Network Settings: trong mc Remote Network IP v Remote Network Mask nhp vo 192.168.33.0 (lp mng bn trong ca Vigor3300V) v subnet mask 255.255.255.0. Sau nhn OK hon thnh vic cu hnh. This image has been resized. Click this bar to view the full image. The original image is sized 681x187.

- Sau khi cu hnh xong, router s tr v trang LAN-to-LAN Profile. Xc nhn li cu hnh

41

4. Thc hin v kim tra kt ni VPN: - Tr li trang cu hnh chnh ca router v click vo mc VPN Connection Mangement. Trong menu Dial-out Tool, chn (3300V) 220.135.240.207 v click vo nt Dial. V2900V s thit lp kt ni n Vigor3300V.

- i khong 5 giy, bn s thy knh VPN c thit lp.

- Vo DOS nh lnh ping 192.168.33.1 (IP ca V3300V) kim tra kt ni.

42

- Nu cc thng s Tx Pkts & Rx Pkts tng c ngha l cc gi tin lu thng qua knh VPN.

- Trong trang web cu hnh ca Vigor3300V, vo mc VPN >> IPSec >> Status, bn s thy knh VPN c thit lp.

-

Lm tng t, vo DOS g lnh ping 192.168.29.1 kim tra v nu cc thng s Tx Pkts & Rx Pkts tng ngha l cc gi tin lu thng qua knh VPN.

43

Nh vy bn cu hnh xong m hnh VPN LAN-to-LAN trn giao thc bo mt IPSec. By gi t 1 my tnh vn phng ti Tp.HCM bn c th chia s d liu d dng vi cc my khc chi nhnh ti H Ni v ngc li, ging nh ang trong cng mng LAN ng thi cng rt an ton, bo mt.

C 3 ngi cm n thien my (21-06-2011), tinyexpert (05-07-2011), vuanh (21admin cho bi vit ny: 05-2008) 21-05-2008, 06:07 PM concopmap Thnh vin tch cc #2 admin post bi cht lng qu, tui c 30 pht mi hiu c

Tham gia ngy: Apr 2008 Bi gi: 192 S ln cm n: 356 c cm n 212 ln trong 92 bi

11-07-2008, 01:24 AM

#3

44

smnet-vantien Thnh vin mi

DrayTek Vigor 3300V Giai phap VPN - Voip Hoan hao Security BroadBand router Cn bng ti 4 wan Chuyn gia VPN - 200 knh VPN server Cht lng Voip hon ho 4/8 FXS 4/8 FXO Vigor3300V MultiService Load Balancing Security VoIP Router

Tham gia ngy: May 2008 Bi gi: 6 S ln cm n: 0 c cm n 8 ln trong 4 bi

http://www.draytek.vn/productdetails.aspx?prod=10 Vigor 3300V tch hp Voice Over IP cung cp s tu chn 4/8 cng FXO hay FXS dng kt ni n PBX hoc my in thoi gim thiu chi ph cuc gi. Thit b cung cp tin cy, cht lng thoi gn nh ngang bng so vi in thoi truyn thng v tnh bo mt cho ngi dng. Dng Router bo mt cao Vigor 3300 Series nhm n phc v nhu cu cng ty va v nh. Nhng sn phm ny kp hp 200 knh mng ring o (VPN), to c 200 mobile user vi tng la mnh m, cn bng ti, lc ni dung web, QoS, bo m bng thng, s qun tr, qun l bo mt, v kh nng sn sng cao nhm gia tng tin cy, gip cho vic giao dch trn nn bng rng c an ton v bo mt hn Dng router bo mt cao y mnh cung cp IPSec VPN nhm t c mc tiu ca s linh ng cao, thng mi in t b mt, chi nhnh vn phng kt ni vi nhau v cc ng dng truy cp t xa bng vic s dng k thut tng tc m ho DED/3DED/AES/HMAC-SHA-1/HMAC_MD5 trn nn phn cng. Dng sn phm Vigor 3300 minh chng cho s ri ro thp v hiu xut cao trong vic ng dng IPSec VPN cho ng dng thng mi. c trng ca tng la mnh m l vic cung cp nhng dch v bo mt giu tnh nng bao gm kim tra trng thi gi d liu (SPI), iu khin truy nhp, bo m chng li s tn cng/thm d v DoS. Tch hp chc nng lc ni dung Web bng t kho, c th kho nhng trang Web khng thch hp cho trng hc, kim sot truy cp ca nhn vin trong vn phng. Chc nng Cht lng dch v (QoS) cung cp cho ta s quyt nh lc chn no c u tin hn trong v s cc cng ngh,

45

dch v mng khc nhau. Mc tiu chnh ca QoS l cung cp cc mc u tin bao gm l dnh ring bng thng, kim sot mc lc, thi gian d liu truyn v kh nng khi phc cc gi tin b li. Ti cng mt thi im, tnh nng ny cng bo m s u tin cho 1 hay nhiu ngun d liu c i qua m khng lm cho cc d liu khc mt i. Giao tip 4 WAN - Gii php cn bng ti, sao lu m bo s n nh cao cho mng my tnh v ng dng. Tng la mnh m cho s bo mt chng li s xm nhp, s tn cng v t chi dch v (Denial-of-Service : DoS, )...

46

Load Balance trong router Multi WAN ca Vigor hot ng nh th no ? DrayTek Multi WAN Router ngoi tnh nng d phng, cn xy dng sn kh nng t ng cn bng ti, tnh nng ny cho php router truyn cc lu thng i ra theo cc giao tip WAN khc nhau. y l mt thit k thng minh khai thc tn dng bng thng ca cc ng truyn Internet ni vi cc cng WAN trn router. C 2 ch cn bng ti l: Auto Weight (T ng cn bng ti) v According To line speedWAN >> Genaral Setup. (Cn bng theo tc ng truyn). Bn c th la chn trong Menu

Lu : Nu chn According To Line Speed cho giao tip WAN 1, giao tip WAN 2 cng s t ng chuyn sang According To Line Speed. C ngha rng c 2 cng giao tip WAN ch hot ng cng mt ch cn bng ti. C ch load balance hot ng nh th no ?

C ch ny s cp nht lch trnh da trn thi gian thc chuyn i gia cc WAN ph thuc vo bng thng cn d. Bng thng cn d = bng thng ln nht ca ng truyn bng thng ang s dng. Khi 1 session mi c gi, session ny s lu thng trn WAN c lp lch. Router t d bng thng ln nht ca ng truyn nh th no ?

Bng thng ln nht l tc ln nht ca WAN. C 2 cch:

1. According To Line Speed bn phi nhp vo tc thc ca ng 2.truyn bng tay cho WAN1/WAN2. Auto Weight l bn router t nh gi tc thc ca WAN1/WAN2.

47

According To Line Speed. Cch ny yu cu bn nhp tc thc ca ng truyn cho cng giao tip WAN. V d tc thc c cu hnh nh sau:

Lu : tc thc ca ng truyn tnh bng Kbps ( kilo bit per second) ch khng phi KBps ( kilo Byte per second ). Sau router s xy dng lch trnh chuyn i gia cc WAN cho php lu thng i ra, theo cc bc nh sau: 1/ Tc ca WAN 1 l 10.000Kbps Tc ca WAN 2 l 20.000Kbps 2/ Router kim tra bng thng hin hnh ang s dng, gi s trn: WAN1 l 5.000Kbps WAN2 l 5.000Kbps Router s tnh ton bng thng cn d trn c 2 giao tip WAN. Trong trng hp ny, bng thng cn d trn: WAN 1 l: 10.000Kbps 5.000Kbps = 5.000Kbps WAN 2 l: 20.000Kbps 5.000Kbps = 15.000Kbps 3/ Router nhn c t l bng thng cn d l 5.000/15.000 = 1/3 4/ Xy dng lch trnh cho php lu thng i ra, router bit c rng bng thng WAN2 gp 3 ln WAN1 nn lch trnh lu thng i ra ca cc session trn mi cng WAN c xy dng nh sau: WAN1 (1) -> WAN2 (2) -> WAN2 (3) -> WAN2 (4), ri lp li WAN1 (5) -> WAN2 (6) -> WAN2 (7) -> WAN2 (8)

48

5/ Lu thng i ra tip theo s gi i nh lch trnh trn cho mi session. Auto Weight Nu bn chn c ch ny, bn khng cn nhp vo tc ca ng truyn. Router s ghi li tc t c ti a mi cng WAN, v coi nh Line Speed l tc ng truyn ca mi WAN, v tnh ton xy dng thi lch trnh nh cc bc trn. iu ny s c thc thi lp i lp lai sau mt chu k ngn, bt kp vi s thay i ca tc ng truyn Lu : Auto Weight s khng chnh xc khi bng thng cha c s dng ht. V d khi ch c 1 vi ngi truy cp internet hay vo lc ban m lng truy cp rt t, bng thng trn c 2 giao tip WAN u khng s dng ht tc , trong trng hp ny router s xy dng lch trnh vi tc m router nhn c khng chnh xc, iu ny dn n vic cn bng ti khng kh thi, khi tt c lu lng u ch chy trn WAN 1 (hoc WAN 2). Khuyn co: Nu chng ta bit c chnh xc tc ca mi ng truyn nn s dng ch According To Line Speed s hiu qu hn l router t chy Auto Weight.

49

Hng dn cu hnh chc nng Load Balance PolicyChnh sch cn bng ti (Load Balance Policy) l phng php cho php ngi qun tr thit lp cc lu thng mng (vd lu thng ca giao thc HTTPS) u tin i trn mt cng WAN nht nh. Chng hn cng ty bn c thu 2 ng truyn, 1 ng ADSL, 1 ng Leased Line v c s dng chc nng Load Balancing. Ngi qun tr c th thit lp chnh sch cn bng ti cc ng dng quan trng nh Mail, FTP, VoIP... i trn ng Leased Line nhm gip cho tc truyn/nhn d liu c nhanh chng v n nh. Cn i vi cc ng dng gii tr, khng quan trng nh truy cp web, nghe nhc, xem phim trc tuyn... s i trn ng ADSL bnh thng nhm gim thiu chi ph cho cng ty. Chng ta s xem xt thm 1 s v d sau tm hiu cch thit lp Load Balance Policy. Trng hp 1: Mt vi ng dng (nh HTTPS, FTP, VoIP, Terminal Services, Mail...) kim sot a ch IP public rt cht ch. Cc ng dng ny lun gim st IP ca bn v nu IP b thay i chng s lp tc ngt truyn thng. Trong khi bn s dng Load Balancing trn 2 WAN th kh trnh khi vic IP WAN (IP public) b thay i lin tc. V d: bn s gp kh khn khi ng nhp vo nhng trang web s dng giao thc HTTPS (chng hn dch v ngn hng trc tuyn - Online Banking). Khi IP public ca bn thay i th bn s lin tc b log out khi h thng. V vy c th s dng cc ng dng mt cch n nh th bn phi cho n i trn 1 WAN (1 IP public) c nh.

50

1. Trong giao din cu hnh ca router, chn mc WAN >> Load Balance Policy. 2. Chn Index 1.

3. Check vo mc Enable kch hot chnh sch ny. - Protocol: TCP. - Binding WAN interface: WAN 1. - Src IP v Dest IP: trng (c ngha l vi mi IP). - Port Start v Port End: 443 (port ca giao thc HTTPS).

Trng hp 2: Bn c 2 ng truyn v ng truyn trn WAN 2 l ng truyn tc cao. ng thi bn c mt my tnh lm Mail Server, Web Server, FTP Server ngoi Internet vi a ch IP l 202.211.200.130. Bn mun cc my tnh trong mng LAN khi truy cp n Server phi i trn ng truyn tc cao vic truyn nhn mail v file c nhanh chng.

51

1. Trong giao din cu hnh ca router, chn mc WAN >> Load Balance Policy. 2. Chn Index 1.

3. Check vo mc Enable kch hot chnh sch ny. - Protocol: any. - Binding WAN interface: WAN 2.

52

- Src IP Start v Src IP End: trng (c ngha l vi mi IP). - Dest IP Start v Dest IP End: 202.211.200.130 (a ch IP ca server).

Trng hp 3: Bn c th phn chia tng b phn trong cng ty i trn 1 ng ring bit d qun l. V d b phn kinh doanh s i trn ng WAN 1 v b phn nghin cu & pht trin i trn WAN 2.

1. Trong giao din cu hnh ca router, chn mc WAN >> Load Balance Policy.

53

2. Chn Index 1.

3. Check vo mc Enable kch hot chnh sch ny. - Protocol: any. - Binding WAN interface: WAN 1. - Src IP Start v Src IP End: in vo dy a ch ca b phn Sales (192.168.1.10 192.168.1.100) - Dest IP Start v Dest IP End: trng (c ngha l vi mi IP).

4. Chn Index 2.

54

5. Check vo mc Enable kch hot chnh sch ny. - Protocol: any. - Binding WAN interface: WAN 2. - Src IP Start v Src IP End: in vo dy a ch ca b phn R&D (192.168.1.110 192.168.1.200) - Dest IP Start v Dest IP End: trng (c ngha l vi mi IP).

Trng hp 4: Bn thu 2 ng truyn 1 ca FPT v 1 ca VNN. Theo mc nh khi chy Load Balancing, router s phn b cc my tnh trong mng truy cp Internet chy trn c 2 ng truyn. iu ny s dn n rc ri sau: truy cp trang web www.ephim.com bng ng truyn VNN nn khng th xem phim c (ch xem c vi ng FPT)

55

Tnh nng Load Balancing Policy c th gip bn gii quyt vn ny bng cch bn c th thit lp cho cc my tnh trong mng ca bn, khi truy cp cc trang web khc th c th chy trn c 2 ng truyn, nhng khi truy cp trang web www.ephim.com th bt buc phi chy trn ng FPT. Sau y l cch cu hnh khi truy cp trang www.ephim.com th bt buc chy trn ng FPT. 1. Trong giao din cu hnh ca router bn vo mc WAN >> Load Balancing Policy >> Index 1 2. Enable chnh sch ny c hiu lc. - Protocol chn l any. - Binding WAN interface chn l WAN1 (gi s ng FPT kt ni vi WAN1). - Src IP Start v Src IP End l 0.0.0.0 tc l vi mi IP. - Dest IP Start v Dest IP End in IP ca trang www.ephim.com (202.67.154.136). - Dest Port Start v Dest Port End in l 80 - Nhn OK hon tt

Lu : - Nhng g bn khng thit lp trong chnh sch cn bng ti s chy trn c 2 WAN. - Khi bn thit lp chnh sch cho 1 ng dng no chy trn WAN 1, nu WAN 1 b mt kt ni th ng dng s chy trn WAN 2 v ngc li. D cu hnh, d qun l v gip tng bng thng l nhng g m chc nng Load Balancing mang li cho bn.

56

QoS - Quality of Service (Qun l cht lng dch v) QoS (Quality of Service) l kh nng gip cho vic truyn d liu vi thi gian tr ti thiu v cung cp bng thng cho nhng ng dng truyn thng a phng tin thi gian thc. Chc nng QoS trn router Draytek cho php ngi dng iu khin c s lu thng thng qua cng hay my ch. S lu thng xuyn qua router s c phn loi vo trong bn lp truyn thng. Mi lp c u tin ring, t l bng thng cn li v ngi dng c th khai bo lp u tin cho yu cu ca h. V d u tin cao cho mt s ng dng tr thp (nh duyt web, download file) phn bng thng cn li s dng m thanh (VoIP) v c th. Chng ta s tm hiu cc v d di y hiu r hn v chc nng QoS. V d 1: QoS cho HTTP v email. Jacky ang cn gi email c km theo 1 file rt quan trng cho khch hng, trong khi Danny ang download game, iu cho thy vic gi email ca Jacky quan trng hn v Danny c th ch trong thi gian lu m khng nh hng n cng vic. Router DrayTek vi tnh nng QoS mnh m s gip bn gii quyt vn trn bng cch cho php download game ch chim 10% bng thng ca ng truyn v gi email chim 50% bng thng ca ng truyn, u tin cho vic gi nhn email hn vic download game. tin hnh ci t chng ta thc hin cc bc sau: Bc 1: ng nhp vo cu hnh ca router, vo mc Bandwidth Management >> Quality of Service, check vo mc Enable the QoS Control, chn Direction "IN" v in vo Reserved_bandwidth Ratio s phn trm m bn mun u tin cho dch v .

57

Bc 2: Trn Index 1 nhn vo nt Basic v Add giao thc HTTP(TCP:80).

58

Bc 3: Ti Index 1 nhn vo nt Advance sau nhn vo Edit to rule.

59

Bn nhn vo nt Edit, trong phn Local Address bn c th chn 1 IP hoc 1 dy IP (theo v d chng ta s in IP ca Danny), cc thng s khc bn c mc nh. Sau check vo ACT rule c hiu lc v nhn OK.

60

Bc 4: Ti Index 2 vo Basic v nhp nt Add giao thc POP3 (TCP:110) v giao thc SMTP (TCP:25).

61

Bc 5: Ti Index 2 nhp vo nt Advance sau nhp vo Edit to rule.

62

Bn nhn vo nt Edit, trong phn Local Address bn c th chn 1 IP hoc 1 dy IP (theo v d chng ta s in IP ca Jacky), cc thng s khc bn c mc nh. Sau check vo ACT rule c hiu lc.

Bc 6: By gi bn c th kim tra chc nng QoS ti bng QoS Online Statistics.(Nu nh bng thng ca email khng y th n s c ch nh dnh cho bng thng ca Others)

63

V d 2: QoS VoIP SIP Traffic Tnh nng VoIP (tham kho bi VoIP) hin nay c cc cng ty s dng nh 1 phn tt yu v l do n gin s dng, tit kim chi ph, cht lng cuc gi tt. V vy phi m bo VoIP c u tin trn mi dch v nh email, duyt web, download thit lp 1 t l bng thng cao u tin cho VoIP chng ta cn lm cc bc sau Bc 1: ng nhp vo trang cu hnh ca router, vo mc Bandwidth Management >> Quality of Service, check mc Enable the QoS Control, chn Direction "BOTH" v nh vo t l bng thng m bn mun dnh cho VoIP (ly v d l 70%).

64

Bc 2: Nhn vo nt Basic v Add 2 giao thc SIP(UDP:5060) v SIP2 (UDP:5065)

Nhn OK, sau nhn vo nt Advance v vo Edit to rule

65

.

phn Service Type bn chn giao thc SIP (UDP:5060) .

Sau bn to thm 1 rule na v Add giao thc SIP2 (UDP:5065)

66

.

*Lu : nu nh router ca bn khng c sn 2 giao thc SIP(UDP:5060) v SIP2(UDP:5065) th bn phi vo cu hnh thm 2 mc ny. phn Service Type nhn nt Add thm vo.

Bc 3: Thm vo giao thc RTP (real-time transport protocol) l giao thc c dnh cho mng end-to-end chuyn ti nhng ng dng nhy cm vi thi gian nh VoIP, audio, video hoc s m phng d liu. Nu nh bn khng tm thy giao thc ny trong cu hnh QoS Basic, th bn vo cu hnh QoS Advance phn Service Type bn nhn nt Add.

67

Bc 4: in vo Service Name, chn Service Type v in vo thng s port range.

*Lu : UDP port 10050 port 15000 ch l port v d dnh cho thit b Vigor, i vi cc thit b VoIP khc s c tng RTP port tng ng. Bc 5: Bn vo cu hnh QoS Basic Add giao thc RTP vo

68

Bc 6: By gi bn c th quan st trong QoS Online Statistics thy s u tin cho dch v VoIP

69

V d 3: QoS VPN traffic Hin nay tnh nng VPN (tham kho bi vit v VPN) c rt nhiu doanh nghip trin khai, v do tnh bo mt cao, tit kim chi ph, tc truyn d liu tng i, tin li cho cng vic. Chng ti s hng dn bn thit lp u tin cho VPN bng tnh nng QoS trn router DrayTek. Bc 1: Bn phi kt ni thnh cng VPN theo kiu LAN to LAN . Bc 2: Cu hnh QoS - ng nhp vo trang cu hnh ca router. - Vo Bandwidth Management >> Quality of Service, Enable chc nng QoS. - Direction chn l OUT. - Bn c th chn s phn trm cho dch v VPN (chng ti ly v d l 85% bng thng ca mng dnh cho VPN).

70

Bn vo Advance Edit rule, bn nhp Local Address (lp mng LAN ca bn) v Remote Address (lp mng ca mng LAN bn u xa).

Bc 3: By gi bn c th vo QoS Online Statistics kim tra (Nu bng thng dnh cho VPN khng s dng ht th router s ch nh bng thng cho cc dch v khc Mc Others).

71

Sau khi cu hnh chc nng QoS th cc dch v bn cu hnh s c u tin i vi cc dch v khc, tnh nng QoS l 1 tnh nng cn thit ngn cn s chim bng thng mng ca mt s dch v khng cn thit (nh download game, download phim nh), ng thi gip cho bn u tin mt s dch v cn thit (nh VoIP, VPN, Email) h tr cng vic ca bn mt cch ti u nht. Qun l bng thng chuyn nghip, hn ch bng thng mng i vi cc ng dng khng cn thit, u tin cc dch v nhy cm vi thi gian thc (nh VoIP, Email) l nhng g m tnh nng QoS mang li cho bn.

72

Hng dn reset thit b Vigor3300B+ qua cng console 1. S dng cp Console kt ni thit b V3300B+ n my tnh (1 u cm vo cng COM trn my tnh, 1 u cm vo cng Console trn V3300B+). 2. Trn my tnh, vo menu Start >> Programs >> Accessories >> Communications, kch hot chng trnh Hyper Terminal. 3. t 1 tn bt k cho kt ni. Nhn OK.

4. Trong mc Connect using, bn cn chn 1 cng COM thch hp (Vd: my PC c nhiu cng COM: COM1, COM2...)

73

5. Mc Bits per second bn chn 57600. Cc thng s khc mc nh

74

6. Trong giao din dng lnh ca chng trnh, router yu cu nhp username v password. Bn nhp username v password ca router. Trng hp qun password vo router, bn c th ng nhp vo bng user: DRAYTEK v password: vigor3300. Sau nh dng lnh: system reboot default v chn YES(Y). Router s tr v trng thi mc nh. Lu : Khi nh lnh xong bn i khong 5 pht cho router reset. Sau khi reset th cc cu hnh hin ti trn router s b mt, router s tr v cu hnh mc nh ca nh sn xut. Bn c th ng nhp vo router theo a ch ip http://192.168.1.1, username: draytek, password: 1234 cu hnh li router. Nh vy bn reset thnh cng thit b Vigor 3300B+ thng qua cng console.

75

Cu hnh V2910 / V2820 / V2950 / V5500 vi ng truyn cp quang Phn 1: M hnh kt ni thc t gia Vigor v ng truyn cable quang

Hnh 1: Vigor 2820 Series dng 1 ng truyn cp quang v 1 ng ADSL

Hnh 2: Vigor 2910 dng ng WAN1 l ADSL v WAN2 l cp quang

76

Hnh 3: Vigor 2910 Series dng 1 ng cp quang

Phn 2: Cu hnh sn phm kt ni cp quang.

Bc 1: ng nhp vo giao din cu hnh router (mc nh: 192.168.1.1) chn WAN >> General Setup >> Wan 2 >> Enable chn Yes, Display Name: nhp vo tn gi nh sau bm OK lu cu hnh. (Xem hnh minh ho bn di) Bc 2: vo mc WAN >> Internet Access>> Wan2

77

Bc 3: Sau khi vo giao din cu hnh WAN 2, ti trang PPPoE >> Chn Enable, sau ti mc Username v password, nhp vo ti khon do nh cung cp dch v (ISP) cp >> Nhn Ok lu cu hnh.

Bc 4: thit lp IP Public (IP tht do ISP cp) (trng hp ISP cp nhiu IP thc trn 1 ng truyn). Vo LAN >> General Setup >> For IP Routing Usage chn Enable Nhp vo nhm IP m ISP cung cp vo 2nd IP Address. Nhn OK lu cu hnh.

78

Nh vy l hon tt vic cu hnh Router Vigor. Ta s c 2 nhm IP khi dng ng truyn cable quang, 1 Nhm IP Private (IP o) ca mng LAN v d mc nh l 192.168.1.0/24 v mt nhm IP Public (IP Tht) do ISP cung cp. Nhng my bn trong mng LAN dng IP Private s tr gateway v router l 192.168.1.1 Nhng my c gn IP Public tr gateway v 2nd IP Address (trong v d minh ho trn l a ch 116.15 12.17).

79

Hng dn ci t WDS (Wireless Distribution System) trn Router DrayTek1. Bridge mode Cc sn phm c h tr WDS Bridge mode: Vigor2700Ge, Vigor2800G, Vigor2800VG, Vigor2900G, Vigor2900VG

Bc 1: Cu hnh IP m bo cho 2 router nm trn cng subnet

Bridge 1

Bridge 2

Bc 2: Vo Wireless LAN >> General Setup, nh du mc Enable Wireless LAN v chn cng Frequency Channel cho 2 Bridge.

80

Bc 3: Vo Wireless LAN >> WDS, chn chc nng Bridge cho 2 router

81

Bc 4: Ci t chc nng m ha (bn c th ci hoc khng ty thch) Ch : 1. Do khng c chun m ha d liu cho WDS, TKIP mode s khng hot ng vi cc access point t nhng hng khc. (WEP mode s khng hot ng) 2. Cc c ch bo mt ca WDS c lin quan vi c ch dnh cho WLAN. Chng hn, nu chn WPA/PSK cho WLAN th phi dng Pre-Shared Key cho WDS. Nu khng router s khng chp nhn cu hnh bo mt v s xut hin thng bo xung t.

Cc mode tng ng cho WLAN v WDS

82

Cu hnh bo mt WEP: gi tr key c th ging hoc khc key trong mc Security Settings. A. Chn mc Use the same WEP key set in Security, router s s dng chnh xc WEP key trong mc Security Settings.

B. Nu khng chn vo mc ny, bn phi t nhp WEP key. Trong trng hp ny bn khng cn ch ra WEP key trong Security Settings. Pre-Shared Key: nhp t 8-63 k t ASCII hoc s thp lc phn bt u bng "0x", vd: cfgs01a2, 0x655abcd...

83

Bc 5: Vo giao din cu hnh chnh ca 2 router v tm a ch MAC ca WLAN.

Bc 6: Vo Wireless LAN >> WDS, nhp a ch MAC ca router cn li.

84

Bc 7: m chc nng Access Point Function, khi router AP vn lm vic ch brigde khi ang s dng WDS. Bn c th tt n nhng lm vy my tnh s khng kt ni c v chc nng wireless ch dng cho WDS.

Bc 8: Khi ng li router.

Bc 9: ping th WLAN xa, nu reply tc l WDS hot ng Nu AP l 1 router, bn c th chn mc Send Hello message to peers v kim tra trn WDS link trong mc Link Status.2. Repeater mode: VD: chng ti thc hin 1 mng khng dy trong vn phng cng ty do khng mun s dng nhiu dy cp. Vn xy ra l 1 s my tnh khng th nhn tn hiu wireless t AP v nhng chng ngi hoc do khong cch qu xa. V vy chng ti cn 1 thit b gip tng cng tn hiu cho cc my client.

85

Trong m hnh trn, Bridge 2 v Laptop A khng th truy cp n mng WLAN ca Bridge 1. Bc 1: Cu hnh Bridge mode trn 2 router Bridge 1 v Bridge 2 nh phn 1. Bc 2: Cu hnh IP LAN trn Repeater cng subnet vi 2 Bridge. Bc 3: Vo mc Wireless LAN Setup -> General Setup. Chn knh tng ng vi 2 Bridge. Bc 4: Vo mc Wireless LAN Setup -> WDS. Chn ch Repeater.

86

Bc 5: Chn ch bo mt Security Mode ging nh 2 Bridge v nhp vo cc key WEP/PSK ging nh nhp trn Bridge. Bc 6: tm a ch MAC ca WLAN ca cc router Bridge 1, Bridge 2 v Repeater. Bc 7: trn Repeater vo mc Wireless LAN Setup >> WDS Settings, nhp vo c 2 a ch MAC ca Bridge. Trn 2 Bridge, thm vo a ch MAC ca Repeater.

87

88

89