Page 1 Vigor2820 Series User’s Guide...
Page 2 Vigor2820 Series User’s Guide...
Page 3 Vigor2820 Series ADSL2/2+ Security Firewall User’s Guide Version: 3.3 Firmware Version: V3.3.5.2 Date: 22/04/2011 Vigor2820 Series User’s Guide...
Page 4: Copyright Information
Web registration is preferred. You can register your Vigor router via Owner http://www.draytek.com. Firmware & Tools Due to the continuous evolution of DrayTek technology, all routers will be regularly Updates upgraded. Please consult the DrayTek web site for more information on newest firmware, tools and documents.
Page 5: Regulatory Information
Product: Vigor2820 Series Router DrayTek Corp. declares that Vigor2820 Series of routers are in compliance with the following essential requirements and other relevant provisions of R&TTE Directive 1999/5/EEC. The product conforms to the requirements of Electro-Magnetic Compatibility (EMC) Directive 2004/108/EC by complying with the requirements set forth in EN55022/Class B and EN55024/Class B.
Page 6 Vigor2820 Series User’s Guide...
Page 7: Table Of Contents
3.2 LAN ............................65 3.2.1 Basics of LAN ......................... 66 3.2.2 General Setup......................... 68 3.2.3 Static Route ........................71 3.2.4 VLAN..........................74 3.2.5 Bind IP to MAC ....................... 75 3.2.6 LAN Port Mirror....................... 77 3.3 NAT ............................77 Vigor2820 Series User’s Guide...
Page 8 3.10.1 Local Certificate ......................164 3.10.2 Trusted CA Certificate ....................166 3.10.3 Certificate Backup....................... 167 3.11 VoIP ........................... 167 3.11.1 DialPlan ........................169 3.11.2 SIP Accounts ......................179 3.11.3 Phone Settings ......................183 3.11.4 Status.......................... 198 Vigor2820 Series User’s Guide viii...
Page 9 3.17 Product Registration......................256 Application and Examples ................257 4.1 Create a LAN-to-LAN Connection Between Remote Office and Headquarter ....257 4.2 Create a Remote Dial-in User Connection Between the Teleworker and Headquarter..264 4.3 QoS Setting Example......................269 Vigor2820 Series User’s Guide...
Page 10 5.4 Checking If the ISP Settings are OK or Not ................ 305 5.5 Problems for 3G Network Connection ................308 5.6 Backing to Factory Default Setting If Necessary ..............308 5.7 Contacting Your Dealer ....................... 310 Appendix: Hardware Specifications................311 Vigor2820 Series User’s Guide...
Page 11: Preface
Vigor2820 series is an ADSL and broadband router with WAN interface. It provides policy-based load-balance, fail-over and BOD (Bandwidth on Demand), also it integrates IP layer QoS, NAT session/bandwidth management to help users control works well with large bandwidth. By adopting hardware-based VPN platform and hardware encryption of AES/DES/3DS, the router increases the performance of VPN greatly, and offers several protocols (such as IPSec/PPTP/L2TP) with up to 32 VPN tunnels.
Page 12: Led Indicators And Connectors
VoIP>>Phone Setting for detailed information). Warning: When the orange LED lights (means ISDN NT mode), the ISDN port can be used to connect phone only. Wrong ISDN connection might cause severe damage on your device. Vigor2820 Series User’s Guide...
Page 13: For Vigor2820
The port is disconnected with 10Mbps. Left LED The port is connected. WAN 2 (Green) The port is disconnected. Blinking The data is transmitting. Right LED The port is connected with 100Mbps. (Green) The port is disconnected with 10Mbps. Vigor2820 Series User’s Guide...
Page 14 Connecters for local networked devices. Connecter for accessing the Internet through ADSL2/2+. WAN 2 Connecter for remote networked devices. Connecter for a USB device (for 3G USB Modem or printer). Connecter for a power adapter. Power Switch. ON/OFF Vigor2820 Series User’s Guide...
Page 15: For Vigor2820N
The port is disconnected with 10Mbps. Left LED The port is connected. WAN 2 (Green) The port is disconnected. Blinking The data is transmitting. Right LED The port is connected with 100Mbps. (Green) The port is disconnected with 10Mbps. Vigor2820 Series User’s Guide...
Page 16 Connecters for local networked devices. Connecter for accessing the Internet through ADSL2/2+. WAN 2 Connecter for remote networked devices. Connecter for a USB device (for 3G USB Modem or printer). Connecter for a power adapter. Power Switch. ON/OFF Vigor2820 Series User’s Guide...
Page 17: For Vigor2820V
The port is connected with 10Mbps. Left LED The port is connected. WAN 2 (Green) The port is disconnected. Blinking The data is transmitting. Right LED The port is connected with 100Mbps. (Green) The port is connected with 10Mbps. Vigor2820 Series User’s Guide...
Page 18 Connecters for local networked devices. Connecter for accessing the Internet through ADSL2/2+. WAN 2 Connecter for remote networked devices. Connecter for a USB device (for 3G USB Modem or printer). Connecter for a power adapter. Power Switch. ON/OFF Vigor2820 Series User’s Guide...
Page 19: For Vigor2820Vn
The port is disconnected with 10Mbps. Left LED The port is connected. WAN 2 (Green) The port is disconnected. Blinking The data is transmitting. Right LED The port is connected with 100Mbps. (Green) The port is disconnected with 10Mbps. Vigor2820 Series User’s Guide...
Page 20 Connecters for local networked devices. Connecter for accessing the Internet through ADSL2/2+. WAN 2 Connecter for remote networked devices. Connecter for a USB device (for 3G USB Modem or printer). Connecter for a power adapter. Power Switch. ON/OFF Vigor2820 Series User’s Guide...
Page 21: For Vigor2820Vs
It will be off if there is nothing connected. Blinking In ISDN NT (ISDN S0 intern) mode, it means an ISDN phone is off-hook or a phone call comes. In ISDN TE mode, it means data, fax or voice (phone call) is transmitting. Vigor2820 Series User’s Guide...
Page 22 Connecters for local networked devices. Connecter for accessing the Internet through ADSL2/2+. WAN 2 Connecter for remote networked devices. Connecter for a USB device (for 3G USB Modem or printer). Connecter for a power adapter. Power Switch. ON/OFF Vigor2820 Series User’s Guide...
Page 23: For Vigor2820Vsn
It will be off if there is nothing connected. Blinking In ISDN NT (ISDN S0 intern) mode, it means an ISDN phone is off-hook or a phone call comes. In ISDN TE mode, it means data, fax or voice (phone call) is transmitting. Vigor2820 Series User’s Guide...
Page 24 Connecters for local networked devices. Connecter for accessing the Internet through ADSL2/2+. WAN 2 Connecter for remote networked devices. Connecter for a USB device (for 3G USB Modem or printer). Connecter for a power adapter. Power Switch. ON/OFF Vigor2820 Series User’s Guide...
Page 25: Hardware Installation
Power on the device by pressing down the power switch on the rear panel. The system starts to initiate. After completing the system test, the ACT LED will light up and start blinking. (For the hardware connection, we take “Vn” model as an example.) Vigor2820 Series User’s Guide...
Page 26: Isdn Phone Adapter Installation
Yet, if the user configures ISDN / Phone S0 as TE Mode in VoIP>> Phone Settings, the green LED will light on to indicate ISDN-TE is selected. Then, the port is specified for ISDN line only. Refer to the following figure for reference. Vigor2820 Series User’s Guide...
Page 27: Printer Installation
You can install a printer onto the router for sharing printing. All the PCs connected this router can print documents via the router. The example provided here is made based on Windows XP/2000. For Windows 98/SE, please visit www.draytek.com. Before using it, please follow the steps below to configure settings for connected computers (or wireless clients).
Page 28 Open File->Add a New Computer. A welcome dialog will appear. Please click Next. Click Local printer attached to this computer and click Next. In this dialog, choose Create a new port Type of port and use the drop down list to select Standard TCP/IP Port. Click Next. Vigor2820 Series User’s Guide...
Page 29 In the following dialog, type 192.168.1.1 (router’s LAN IP) in the field of Printer Name or IP Address and type IP_192.168.1.1 as the port name. Then, click Next. Click Standard and choose Generic Network Card. Then, in the following dialog, click Finish. Vigor2820 Series User’s Guide...
Page 30 11. Select "LPR" on Protocol, type p1 (number 1) as Queue Name. Then click OK. Next please refer to the red rectangle for choosing the correct protocol and UPR name. The printer can be used for printing now. Most of the printers with different manufacturers are compatible with vigor router. Vigor2820 Series User’s Guide...
Page 31 Note 1: Some printers with the fax/scanning or other additional functions are not supported. If you do not know whether your printer is supported or not, please visit www.draytek.com to find out the printer list. Open Support >FAQ; find out the link of Printer Server and click it; then click the What types of printers are compatible with Vigor router? link.
Page 32 This page is left blank. Vigor2820 Series User’s Guide...
Page 33: Configuring Basic Settings
Open a web browser on your PC and type http://192.168.1.1. A pop-up window will open to ask for username and password. Please type “admin/admin” as the username and the password. Next click OK for next screen. Vigor2820 Series User’s Guide...
Page 34 Enter the login password (the default is blank) on the field of Old Password. Type New Password and Confirm Password. Then click OK to continue. Now, the password has been changed. Next time, use the new password to access the Web Configurator for this router. Vigor2820 Series User’s Guide...
Page 35: Quick Start Wizard
On the next page as shown below, please select the appropriate Internet access type according to the information from your ISP. For example, you should select PPPoE mode if the ISP provides you PPPoE interface. Then click Next for next step. Vigor2820 Series User’s Guide...
Page 36: Pppoe/Pppoa
Ethernet can share a common connection. PPPoE is used for most of DSL modem users. All local users can share one PPPoE connection for accessing the Internet. Your service provider will provide you information about user name, password, and authentication mode. Vigor2820 Series User’s Guide...
Page 37 Assign a valid password provided by the ISP. Confirm Password Retype the password. Click Next for viewing summary of such connection. Click Finish. A page of Quick Start Wizard Setup OK!!! will appear. Then, the system status of this protocol will be shown. Vigor2820 Series User’s Guide...
Page 38: 1483 Bridged Ip
Click 1483 Bridged IP as the protocol. Type in all the information that your ISP provides for this protocol. Click Next for viewing summary of such connection. Click Finish. A page of Quick Start Wizard Setup OK!!! will appear. Then, the system status of this protocol will be shown. Vigor2820 Series User’s Guide...
Page 39: 1483 Routed Ip
After finishing the settings in this page, click Next to see the following page. Click Finish. A page of Quick Start Wizard Setup OK!!! will appear. Then, the system status of this protocol will be shown. Vigor2820 Series User’s Guide...
Page 40: Service Activation Wizard
Service Activation Wizard is a tool which allows you to use trial version or update the license of WCF directly without accessing into the server (MyVigor) located on http://myvigor.draytek.com. For using Web Content Filter Profile, please refer to section 3.6.3 Web Content Filter Profile for detailed information.
Page 41 When you finish the selection, please click Next. Commtouch is the web content filter based on Commtouch operated in the worldwide. There is a 30-day trial period. After trial, you can purchase DrayTek's prepared Commtouch GlobalView WCF package from DrayTek dealer.
Page 42 Note: The service will be activated and applied as the default rule configured in Firewall>>General Setup. Now, the web page will display the service that you have activated according to your selection(s). The valid time for the free trial of these services is one month. Vigor2820 Series User’s Guide...
Page 43 Later, if you need to extend the license valid time, you can also use the Service Activation Wizard again to reach your goal by clicking the radio button of Formal edition with license key and clicking Next. Vigor2820 Series User’s Guide...
Page 44: Online Status
If you select PPPoE/PPPoA as the protocol, you will find out a link of Dial PPPoE or Drop PPPoE in the Online Status web page. Online status for PPPoE (WAN2) Online status for PPTP (for WAN2) Vigor2820 Series User’s Guide...
Page 45 Online status for Static IP (for WAN1) Online status for DHCP (WAN1) Vigor2820 Series User’s Guide...
Page 46 TX Pkts Displays the total transmitted packets at the ISDN interface. TX Rate Displays the speed of transmitted octets at the ISDN interface. RX Pkts Displays the total number of received packets at the ISDN interface. Vigor2820 Series User’s Guide...
Page 47: Saving Configuration
Each time you click OK on the web page for saving the configuration, you can find messages showing the system interaction with you. Ready indicates the system is ready for you to input settings. Settings Saved means your settings are saved once you click Finish or OK button. Vigor2820 Series User’s Guide...
Page 48 This page is left blank. Vigor2820 Series User’s Guide...
Page 49: Advanced Web Configuration
Then a session will be created. Your user ID and password is authenticated via PAP or CHAP with RADIUS authentication system. And your IP address, DNS server, and other related information will usually be assigned by your ISP. Vigor2820 Series User’s Guide...
Page 50: Network Connection By 3G Usb Modem
Besides, 3G USB Modem in WAN2 also can be used as backup device. Therefore, when WAN1 is not available, the router will use 3.5G for supporting automatically. The supported 3G USB Modem will be listed on Draytek web site. Please visit www.draytek.com for more detailed information.
Page 51 WAN2. You can enable PPP as the access mode and complete further configuration. Physical Type This setting is available for WAN2 only. You can change the physical type for WAN2 or choose Auto negotiation for Vigor2820 Series User’s Guide...
Page 52 15 seconds. WAN1 Download speed exceed XX kbps– It means the connection for WAN2 will be activated when WAN1 Download speed exceed certain value that you set in this box for 15 seconds. Vigor2820 Series User’s Guide...
Page 53: Internet Access
WAN1 and WAN2 support different protocols. WAN1 supports PPPoE/PPPoA and MPoA. WAN2 supports PPPoE, Static or Dynamic IP and PPTP. According to physical connection of your router, please choose suitable WAN interface link to set detailed information. Vigor2820 Series User’s Guide...
Page 54 Channel means no selection will be chosen. VPI - Type in the value provided by ISP. VCI - Type in the value provided by ISP. Encapsulating Type - Drop down the list to choose the type Vigor2820 Series User’s Guide...
Page 55 Packet Trigger -The backup line is not on until a packet from a local host triggers the router to establish a connection. Always On - If the broadband connection is no longer available, the backup line will be activated automatically and always on until Vigor2820 Series User’s Guide...
Page 56 WAN IP Alias. You can set up to 8 public IP addresses other than the current one you are using. Notice that this setting is available for WAN1 only. Type the additional WAN IP address and check the Enable box. Then click OK to exit the dialog. Vigor2820 Series User’s Guide...
Page 57 All the schedules can be set previously in Applications – Schedule web page and you can use the number that you have set in that web page. After finishing all the settings here, please click OK to activate them. Vigor2820 Series User’s Guide...
Page 58 Internet Access – Multi PVCs. Select M-PVCs Channel means no selection will be chosen. Encapsulating Type - Drop down the list to choose the type provided by ISP. VPI - Type in the value provided by ISP. Vigor2820 Series User’s Guide...
Page 59 This group allows you to obtain an IP address automatically and Settings allows you type in IP address manually. Obtain an IP address automatically – Click this button to obtain the IP address automatically. Router Name – Type in the router name provided by ISP. Vigor2820 Series User’s Guide...
Page 60 DNS Server IP Type in the primary IP address for the router. If necessary, type in Address secondary IP address for necessity in the future. After finishing all the settings here, please click OK to activate them. Vigor2820 Series User’s Guide...
Page 61 Before utilizing the ISDN dial backup feature, you must create a dial backup profile first. Please click ISDN > Dialing to a Single ISP to create the backup profile. None - Disable the backup function. Vigor2820 Series User’s Guide...
Page 62 IP Alias. You can set up to 8 public IP addresses other than the current one you are using. Notice that this setting is available for WAN1 only. Type the additional WAN IP address and check the Enable box. Then click OK to exit the dialog. Vigor2820 Series User’s Guide...
Page 63 ISDN Dial Backup This setting is available for the routers supporting ISDN function Setup only. Before utilizing the ISDN dial backup feature, you must create a dial backup profile first. Please click ISDN > Dialing to a Vigor2820 Series User’s Guide...
Page 64 IP Alias. You can set up to 8 public IP addresses other than the current one you are using. Notice that this setting is available for WAN1 only. Type the additional WAN IP address and check the Enable box. Then click OK to exit the dialog. Vigor2820 Series User’s Guide...
Page 65 Specify a MAC Address: Some Cable service providers specify a specific MAC address for access authentication. In such cases you need to click the Specify a MAC Address and enter the MAC address in the MAC Address field. Vigor2820 Series User’s Guide...
Page 66 None - Disable the backup function. Packet Trigger -The backup line is not on until a packet from a local host triggers the router to establish a connection. This setting is available for s model only. Vigor2820 Series User’s Guide...
Page 67 Obtain an IP address automatically – Click this button to obtain Settings the IP address automatically. Specify an IP address – Click this radio button to specify some data. IP Address – Type the IP address. Subnet Mask – Type the subnet mask. Vigor2820 Series User’s Guide...
Page 68 Set the PCs on LAN to work at certain time interval only. You Index (1-15) may choose up to 4 schedules out of the 15 schedules pre-defined in Applications >> Schedule setup. The default setting of this filed is blank and the function will always work. Vigor2820 Series User’s Guide...
Page 69: Multi-Pvcs
Internet Access. Type in the value provided by your ISP. Type in the value provided by your ISP. QoS Type Select a proper QoS type for the channel. Protocol Select a proper protocol for this channel. Vigor2820 Series User’s Guide...
Page 70 PVC will be effective for Web configuration/telnet/TR069. VoIP - It can be specified for VoIP only. If you choose VoIP, the configuration for this PVC will be effective for VoIP data transmitting and receiving. Vigor2820 Series User’s Guide...
Page 71 Subnet Mask – Type in the subnet mask. Gateway IP Address – Type in gateway IP address. DNS Server IP Type in the primary IP address for the router. If necessary, type in Address secondary IP address for necessity in the future. Vigor2820 Series User’s Guide...
Page 72 It represents Peak Cell Rate. The default setting is “0”. It represents Sustainable Cell Rate. The value of SCR must be smaller than PCR. It represents Maximum Burst Size. The range of the value is 10 to 50. Vigor2820 Series User’s Guide...
Page 73 Click Clear to remove all the configurations in this page if you do not satisfy it. When you finish the configuration, please click OK to save and exit this page. Or click Cancel to abort the configuration and exit this page. Vigor2820 Series User’s Guide...
Page 74: Load-Balance Policy
Displays the IP address for the start of the destination IP. Dest IP End Displays the IP address for the end of the destination IP. Dest Port Start Displays the IP address for the start of the destination port. Vigor2820 Series User’s Guide...
Page 75 Type the destination IP end for the specified WAN interface. If this field is blank, it means that all the destination IPs will be passed through the WAN interface. Dest Port Start Type the destination port start for the destination IP. Vigor2820 Series User’s Guide...
Page 76: Lan
IP address. As a part of the public subnet, the Vigor router will serve for IP routing to help hosts in the public subnet to communicate with other public hosts or servers outside. Therefore, the router should be set as the gateway for public hosts. Vigor2820 Series User’s Guide...
Page 77 You can group local hosts by physical ports and create up to 4 virtual LANs. To manage the communication between different groups, please set up rules in Virtual LAN (VLAN) function and the rate of each. Vigor2820 Series User’s Guide...
Page 78: General Setup
Subnet Mask - An address code that determines the size of the network. (Default: 255.255.255.0/ 24) DHCP Server - You can configure the router to serve as a DHCP server for the 2nd subnet. Start IP Address: Enter a value of the IP address pool for the Vigor2820 Series User’s Guide...
Page 79 192.168.1.2 or greater, but smaller than 192.168.1.254. IP Pool Counts - Enter the maximum number of PCs that you want the DHCP server to assign IP addresses to. The default is 50 and the maximum is 253. Vigor2820 Series User’s Guide...
Page 80 WAN (e.g. DSL/Cable) connection. There are two common scenarios of LAN settings that stated in Chapter 4. For the configuration examples, please refer to that chapter to get more information for your necessity. Vigor2820 Series User’s Guide...
Page 81: Static Route
192.168.10.0 using an internal Router A (192.168.1.2) create a public subnet 211.100.88.0 via an internal Router B (192.168.1.3). have set Main Router 192.168.1.1 as the default gateway for the Router A 192.168.1.2. Vigor2820 Series User’s Guide...
Page 82 Click the LAN - Static Route and click on the Index Number 1. Check the Enable box. Please add a static route as shown below, which regulates all packets destined to 192.168.10.0 will be forwarded to 192.168.1.2. Click OK. Vigor2820 Series User’s Guide...
Page 83 Return to Static Route Setup page. Click on another Index Number to add another static route as show below, which regulates all packets destined to 211.100.88.0 will be forwarded to 192.168.1.3. Go to Diagnostics and choose Routing Table to verify current routing table. Vigor2820 Series User’s Guide...
Page 84: Vlan
If, VLAN 0 is consisted of hosts linked to P1 and P2 and VLAN 1 is consisted of hosts linked to P3 and P4. After checking the box to enable VLAN function, you will check the table according to the needs as shown below. Vigor2820 Series User’s Guide...
Page 85: Bind Ip To Mac
Click this radio button to invoke this function. However, IP/MAC which is not listed in IP Bind List also can connect to Internet. Disable Click this radio button to disable this function. All the settings on Vigor2820 Series User’s Guide...
Page 86 Note: Before you select Strict Bind, you have to bind one set of IP/MAC address for one PC. If not, no one of the PCs can access into Internet. And the web configurator of the router might not be accessed. Vigor2820 Series User’s Guide...
Page 87: Lan Port Mirror
Enhance security of the internal network by obscuring the IP address. There are many attacks aiming victims based on the IP address. Since the attacker cannot be aware of any private IP addresses, the NAT function can protect the internal network. Vigor2820 Series User’s Guide...
Page 88: Port Redirection
The port redirection can only apply to incoming traffic. To use this function, please go to NAT page and choose Port Redirection web page. The Port Redirection Table provides 20 port-mapping entries for the internal hosts. Vigor2820 Series User’s Guide...
Page 89 Port of the internal host. If you choose Range as the port redirection mode, you will see two boxes on this field. Simply type the required number on the first box. The second one will be Vigor2820 Series User’s Guide...
Page 90 80 to avoid conflict, such as 8080. This can be set in the System Maintenance >>Management Setup. You then will access the admin screen of by suffixing the IP address with 8080, e.g., http://192.168.1.1:8080 instead of port 80. Vigor2820 Series User’s Guide...
Page 91: Dmz Host
Click DMZ Host to open the following page: If you previously have set up WAN Alias for PPPoE/PPPoA or MPoA mode, you will find them in Aux. WAN IP for your selection. Vigor2820 Series User’s Guide...
Page 92 DMZ host. When you have selected one private IP from the above dialog, the IP address will be shown on the following screen. Click OK to save the setting. Vigor2820 Series User’s Guide...
Page 93: Open Ports
Inactive or Active state. To add or edit port settings, click one index number on the page. The index entry setup page will pop up. In each index entry, you can specify 10 port ranges for diverse services. Vigor2820 Series User’s Guide...
Page 94 Specify the transport layer protocol. It could be TCP, UDP, or ----- Protocol (none) for selection. Start Port Specify the starting port number of the service offered by the local host. End Port Specify the ending port number of the service offered by the local host. Vigor2820 Series User’s Guide...
Page 95: Address Mapping
Display the public IP address selected for this entry, e.g., 86.123.123.2. Private IP Display the private IP set for this address mapping, e.g., 192.168.1.10. Display the subnet mask selected fro this address mapping. Mask Status Display the status for the entry, enable or disable. Vigor2820 Series User’s Guide...
Page 96 Apply, a message will appear to inform you. Assign an IP address (e.g., 192.168.1.10) or a subnet to be Private IP compared with the Public IP address for incoming packets. Subnet Mask Select a value of subnet mask for private IP address. Vigor2820 Series User’s Guide...
Page 97: Port Triggering
Display the protocol for the incoming data of such triggering profile. Display the port for the incoming data of such triggering profile. Incoming Port Status Display if the rule is active or de-active. Click the index number link to open the configuration page. Vigor2820 Series User’s Guide...
Page 98: Firewall
The users on the LAN are provided with secured protection by the following firewall facilities: User-configurable IP filter (Call Filter/ Data Filter). Stateful Packet Inspection (SPI): tracks packets and denies unsolicited incoming data Selectable Denial of Service (DoS) /Distributed DoS (DDoS) attacks protection Vigor2820 Series User’s Guide...
Page 99 The stateful firewall of Vigor router not just examine the header information also monitor the state of the connection. Vigor2820 Series User’s Guide...
Page 100: General Setup
So here you assign the Start Filter Set only. Also you can configure the Log Flag settings, and Accept large incoming fragmented UDP or ICMP packets. Click Firewall and click General Setup to open the general setup page. Vigor2820 Series User’s Guide...
Page 101 CSM>> APP Enforcement Profile) for applying with this router. Please set at least one profile for choosing in CSM>> APP Enforcement Profile web page first. For troubleshooting needs, you can specify to record information for APP Enforcement Vigor2820 Series User’s Guide...
Page 102 URL Content Filter. The default value for this setting is ANSI 1252 Latin I. If you do not choose any codepage, no decoding job of URL will be processed. Please use the drop-down list to choose a codepage. Vigor2820 Series User’s Guide...
Page 103 “Accept large incoming fragmented UDP or ICMP Packets”. Enable Strict Security For the sake of security, you might want the router executing Firewall strict security checking for data transmission. Check this box to enable such function. Vigor2820 Series User’s Guide...
Page 104: Filter Setup
Use Up or Down link to move the order of the filter rules. Next Filter Set Set the link to the next filter set to be executed after the current filter run. Do not make a loop with many filter sets. Vigor2820 Series User’s Guide...
Page 105 Set the direction of packet flow. It is for Data Filter only. For the Call Filter, this setting is not available since Call Filter is only applied to outgoing traffic. Source/Destination IP Click Edit to access into the following dialog to choose the source/destination IP or IP ranges. Vigor2820 Series User’s Guide...
Page 106 To set the service type manually, please choose User defined as the Service Type and type them in this dialog. In addition, if you want to use the service type from defined groups or objects, please choose Group and Objects as the Service Type. Vigor2820 Series User’s Guide...
Page 107 15000 which means the maximum session for this model is 15000. Strict –Make the MAC address and IP address settings MAC Bind IP configured in IP Object for Source IP and Destination IP be bound for applying such filter rule. Vigor2820 Series User’s Guide...
Page 108 Log box. It will be sent to Syslog server. Please refer to section Syslog/Mail Alert for more detailed information. Click Edit to open the following window. However, it is strongly Advance Setting recommended to use the default settings here. Vigor2820 Series User’s Guide...
Page 109 TCP protocol only; session timeout is configured for the data flow which matched with the firewall rule. DrayTek Banner – Please uncheck this box and the following screen will not be shown for the unreachable web page. The default setting is Enabled.
Page 110 Vigor router, will be filtered by firewall settings configured by Vigor router. When the resource is inadequate, the packets will be blocked if Strict Security Checking is enabled. If Strict Security Checking is not enabled, then the packets will pass through the router. Vigor2820 Series User’s Guide...
Page 111 Each filter set is composed by 7 filter rules, which can be further defined. After that, in General Setup you may specify one set for call filter and one set for data filter to execute first. Vigor2820 Series User’s Guide...
Page 112: Dos Defense
Similar to the UDP flood defense function, once if the Threshold of ICMP packets from Internet has exceeded the defined value, the router will discard the ICMP echo requests coming from the Internet. The default setting for threshold and Vigor2820 Series User’s Guide...
Page 113 Check the box to activate the Block Ping of Death function. This attack involves the perpetrator sending overlapping packets to the target hosts so that those target hosts will hang once they re-construct the packets. The Vigor routers will Vigor2820 Series User’s Guide...
Page 114 All the warning messages related to DoS Defense will be sent to user and user can review it through Syslog daemon. Look for the keyword DoS in the message, followed by a name to indicate what kind of attacks is detected. Vigor2820 Series User’s Guide...
Page 115: Objects Setting
IPs in the same department can be defined with an IP object (a range of IP address). You can set up to 192 sets of IP Objects with different conditions. Set to Factory Default Clear all profiles. Vigor2820 Series User’s Guide...
Page 116 Select Any Address if this object contains any IP address. Select Mac Address if this object contains Mac address. MAC Address Type the MAC address of the network card which will be controlled. Start IP Address Type the start IP address for Single Address type. Vigor2820 Series User’s Guide...
Page 117: Ip Group
Below is an example of IP objects settings. This page allows you to bind several IP objects into one IP group. Set to Factory Default Clear all profiles. Click the number under Index column for settings in detail. Vigor2820 Series User’s Guide...
Page 118: Service Type Object
Click >> button to add the selected IP objects in this box. Selected IP Objects You can set up to 96 sets of Service Type Objects with different conditions. Set to Factory Default Clear all profiles. Vigor2820 Series User’s Guide...
Page 119 (>) – the port number greater than this value is available. (<) – the port number less than this value is available for this profile. Below is an example of service type objects settings. Vigor2820 Series User’s Guide...
Page 120: Service Type Group
All the available service objects that you have added on Objects Objects Setting>>Service Type Object will be shown in this box. Click >> button to add the selected IP objects in this box. Selected Service Type Objects Vigor2820 Series User’s Guide...
Page 121: Keyword Object
Type the content for such profile. For example, type gambling as Contents. When you browse the webpage, the page with gambling information will be watched out and be passed/blocked based on the configuration on Firewall settings. Vigor2820 Series User’s Guide...
Page 122: Keyword Group
You can gather keyword objects from Keyword Object page Objects within one keyword group. All the available Keyword objects that you have created will be shown in this box. Selected Keyword Click button to add the selected Keyword objects in this Objects Vigor2820 Series User’s Guide...
Page 123: File Extension Object
Profile 1 with name of “default” is the default profile, some files with the file extensions specified in this profile will be ignored and not be scanned by Vigor router. Set to Factory Default Clear all profiles. Click the number under Profile column for configuration in details. Vigor2820 Series User’s Guide...
Page 124: Csm
Vigor router will then decide whether to allow access to this site according to the categories you have selected. Please note that this action will not introduce any delay in your Web surfing because each of multiple load balanced database servers can handle millions of requests for categorization. Vigor2820 Series User’s Guide...
Page 125: App Enforcement Profile
Click the number under Index column for settings in detail. There are four tabs IM, P2P, Protocol and Misc displayed on this page. Each tab will bring out different items that you can choose to disallow people using. Vigor2820 Series User’s Guide...
Page 126 Click it to choose all of the items in this page. Uncheck all the selected boxes. Clear All The profiles configured here can be applied in the Firewall>>General Setup and Firewall>>Filter Setup pages as the standard for the host(s) to follow. Vigor2820 Series User’s Guide...
Page 127 The items categorized under P2P ----- The items categorized under Protocol ----- Vigor2820 Series User’s Guide...
Page 128 The items categorized under Misc ----- Vigor2820 Series User’s Guide...
Page 129: Url Content Filter Profile
Click CSM and click URL Content Filter Profile to open the profile setting page. You can set eight profiles as URL content filter. Simply click the index number under Profile to open the following web page. Vigor2820 Series User’s Guide...
Page 130 URL Access Control and Web Feature below, such function can determine the priority for the actions executed. For this one, the router will process the packages with the conditions set below for web feature first, then URL second. Vigor2820 Series User’s Guide...
Page 131 Vigor router will decline the connection request to the website whose URL string matched to any user-defined keyword. It should be noticed that the more simplified the blocking keyword list is, the more efficiently the Vigor router performs. Vigor2820 Series User’s Guide...
Page 132 File Extension Profile – Choose one of the profiles that you configured in Object Setting>> File Extension Objects previously for passing or blocking the file downloading. Vigor2820 Series User’s Guide...
Page 133: Web Content Filter Profile
(MyVigor) located on http://myvigor.draytek.com. However, if you use the Web Content Filter Profile page to activate WCF feature, it is necessary for you to access into the server (MyVigor) located on http://myvigor.draytek.com. Therefore, you need to register an account on http://myvigor.draytek.com for using corresponding service.
Page 134 Setup Test Server It is recommended for you to use the default setting, auto-selected. Find more Click it to open http://myvigor.draytek.com for searching another qualified and suitable server. Click this link to retrieve the factory settings. Set to Factory Default Cache None –...
Page 135 If the web pages do not match with the specified feature set here, it will be processed with reverse action. None – There is no log file will be recorded for this profile. Vigor2820 Series User’s Guide...
Page 136: Bandwidth Management
To solve the problem, you can use limit session to limit the session procession for specified Hosts. In the Bandwidth Management menu, click Sessions Limit to open the web page. Vigor2820 Series User’s Guide...
Page 137 You can type in four sets of time schedule for your request. All Setup the schedules can be set previously in Application >> Schedule web page and you can use the number that you have set in that web page. Vigor2820 Series User’s Guide...
Page 138: Bandwidth Limit
Limitation List Display a list of specific limitations that you set on this web page. Start IP Define the start IP address for limit bandwidth. Vigor2820 Series User’s Guide...
Page 139: Quality Of Service
One more larger-scale implementation of QoS network is to apply DSCP (Differentiated Service Code Point) and IP Precedence disciplines at Layer 3. Compared with legacy IP Precedence that uses Type of Service (ToS) field in the IP header to define 8 service classes, Vigor2820 Series User’s Guide...
Page 140 WAN (1/2) interface. As to class rule, simply click the Edit link to access into next for configuration. You can configure general setup for the WAN interface, edit the Class Rule, and edit the Service Type for the Class Rule for your request. Vigor2820 Series User’s Guide...
Page 141 IN- apply to incoming traffic only. OUT-apply to outgoing traffic only. BOTH- apply to both incoming and outgoing traffic. Check this box and click OK, then click Setup link again. You will see the Online Statistics link appearing on this page. Vigor2820 Series User’s Guide...
Page 142 Edit link of that one. After you click the Edit link, you will see the following page. Now you can define the name for that Class. In this case, “Test” is used as the name of Class Index #1. Vigor2820 Series User’s Guide...
Page 143 DiffServ CodePoint All the packets of data will be divided with different levels and will be processed according to the level type by the system. Please assign one of the levels of the data for processing with Vigor2820 Series User’s Guide...
Page 144 Edit to open the rule edit page for modification. To add a new service type, edit or delete an existed service type, please click the Edit link under Service Type field. After you click the Edit link, you will see the following page. Vigor2820 Series User’s Guide...
Page 145 Range as the type. By the way, you can set up to 40 service types. If you want to edit/delete an existed service type, please select the radio button of that one and click Edit/Edit for modification. Vigor2820 Series User’s Guide...
Page 146: App Qos
VoIP, Streaming, IM, P2P and so on. Open Bandwidth Management>>APP QoS to display the following page. Enable Click Enable to activate APP QoS function. Click Disable to deactivate APP QoS function. Vigor2820 Series User’s Guide...
Page 147 VoIP packets will be the first to be sent out and P2P packets will be the last to be sent out. Enable (for Application) There are four applications (VoIP, Streaming, IM, Tunneling, Remote Control, Web HD and P2P) which can be specified with different QoS Class. Vigor2820 Series User’s Guide...
Page 148: Applications
Enable Dynamic DNS Check this box to enable DDNS function. Setup Set to Factory Default Clear all profiles and recover to factory settings. Auto-Update interval Set the time for the router to perform auto update for DDNS service. Vigor2820 Series User’s Guide...
Page 149 Login Name Type in the login name that you set for applying domain. Type in the password that you set for applying domain. Password Wildcard and Backup The Wildcard and Backup MX features are not supported for Vigor2820 Series User’s Guide...
Page 150: Schedule
You can set up to 15 schedules. Then you can apply them to your Internet Access or VPN and Remote Access >> LAN-to-LAN settings. To add a schedule, please click any index, say Index No. 1. The detailed settings of the call schedule with index 1 are shown below. Vigor2820 Series User’s Guide...
Page 151 Specify the duration (or period) for the schedule. How often -Specify how often the schedule will be applied Once -The schedule will be applied just once Weekdays -Specify which days in one week should perform the schedule. Vigor2820 Series User’s Guide...
Page 152: Radius
The RADIUS server and client share a secret that is used to authenticate the messages sent between them. Both sides must be configured to use the same shared secret. Confirm Shared Secret Re-type the Shared Secret for confirmation. Vigor2820 Series User’s Guide...
Page 153: Upnp
NAT router. The application will also learn the external IP address and configure port mappings on the router. Subsequently, such a facility forwards packets from the external ports of the router to the internal ports used by the application. Vigor2820 Series User’s Guide...
Page 154 Non-privileged users can control some router functions, including removing and adding port mappings. The UPnP function dynamically adds port mappings on behalf of some UPnP-aware applications. When the applications terminate abnormally, these mappings may not be removed. Vigor2820 Series User’s Guide...
Page 155: Igmp
Click this link to renew the working multicast group status. If you check Enable IGMP Proxy, you will get the following page. All the multicast groups will be listed and all the LAN ports (P1 to P4) are available for use. Vigor2820 Series User’s Guide...
Page 156: Wake On Lan
MAC Address Type any one of the MAC address of the bound PCs. Wake Up Click this button to wake up the selected IP. See the following figure. The result will be shown on the box. Vigor2820 Series User’s Guide...
Page 157: Vpn And Remote Access
LAN, you should disable the VPN service of Vigor Router to allow VPN tunnel pass through, as well as the appropriate NAT settings, such as DMZ or open port. The Vigor router will not accept the ISDN dial-in connection if the box of Enable ISDN Dial-in is not checked. Vigor2820 Series User’s Guide...
Page 158: Ppp General Setup
Cisco routers. So you should enable this function when your peer router requires mutual authentication. You should further specify the User Name and Password of the mutual authentication peer. Vigor2820 Series User’s Guide...
Page 159: Ipsec General Setup
This usually applies to those are remote dial-in user or node Method (LAN-to-LAN) which uses dynamic IP address and IPSec-related VPN connections such as L2TP over IPSec and IPSec tunnel. Pre-Shared Key -Currently only support Pre-Shared Key authentication. Vigor2820 Series User’s Guide...
Page 160: Ipsec Peer Identity
Click each index to edit one peer digital certificate. There are three security levels of digital signature authentication: Fill each necessary field to authenticate the remote peer. The following explanation will guide you to fill all the necessary fields. Vigor2820 Series User’s Guide...
Page 161 Click to check the specific fields of digital signature to accept the Accept Subject Name peer with matching value. The field includes Country (C), State (ST), Location (L), Organization (O), Organization Unit (OU), Common Name (CN), and Email (E). Vigor2820 Series User’s Guide...
Page 162: Remote Dial-In User
Click each index to edit one remote user profile. Each Dial-In Type requires you to fill the different corresponding fields on the right. If the fields gray out, it means you may leave it untouched. The following explanation will guide you to fill all the necessary fields. Vigor2820 Series User’s Guide...
Page 163 Nice to Have - Apply the IPSec policy first, if it is applicable during negotiation. Otherwise, the dial-in VPN connection becomes one pure L2TP connection. Must -Specify the IPSec policy to be definitely applied on the L2TP connection. Vigor2820 Series User’s Guide...
Page 164 Medium, DES, 3DES or AES box as the security method. Medium-Authentication Header (AH) means data will be authenticated, but not be encrypted. By default, this option is invoked. You can uncheck it to disable it. Vigor2820 Series User’s Guide...
Page 165: Lan To Lan
4 subgroups. If the fields gray out, it means you may leave it untouched. The following explanations will guide you to fill all the necessary fields. For the web page is too long, we divide the page into several sections for explanation. Vigor2820 Series User’s Guide...
Page 166 VPN connection. If WAN1 fails, the router will use another WAN interface instead. WAN1 Only - While connecting, the router will use WAN1 as the only channel for VPN connection. WAN2 First - While connecting, the router will use WAN2 as the Vigor2820 Series User’s Guide...
Page 167 Callback (CBCP) function below. This feature is useful for s model only. PPTP Build a PPTP VPN connection to the server through the Internet. You should set the identity like User Name and Password below for the authentication of remote server. Vigor2820 Series User’s Guide...
Page 168 3DES with Authentication-Use triple DES encryption algorithm and apply MD5 or SHA-1 authentication algorithm. AES without Authentication-Use AES encryption algorithm and not apply any authentication scheme. AES with Authentication-Use AES encryption algorithm and apply MD5 or SHA-1 authentication algorithm. Vigor2820 Series User’s Guide...
Page 169 Provide ISDN Number to Remote-In the case that the remote peer requires the Vigor router to callback, the local ISDN number will be provided to the remote peer. Check here to allow the Vigor Vigor2820 Series User’s Guide...
Page 170 Internet. You can select to use L2TP alone or with IPSec. Select from below: None - Do not apply the IPSec policy. Accordingly, the VPN connection employed the L2TP without IPSec policy can be Vigor2820 Series User’s Guide...
Page 171 The callback function provides a callback service only for the ISDN LAN-to-LAN connection (this feature is useful for s model only). The remote user will be charged the connection fee by the telecom. Check to enable Callback function-Enables the callback function. Vigor2820 Series User’s Guide...
Page 172 Be aware that this setting is available only for one WAN interface is enabled. It is not available when both WAN interfaces are enabled. You have to disable one WAN interface (WAN 1 or WAN 2) on WAN >> General Setup for enabling such setting. Vigor2820 Series User’s Guide...
Page 173: Connection Management
Tool and clicking Dial button. Dial Click this button to execute dial out function. Refresh Seconds Choose the time for refresh the dial information among 5, 10, and 30. Refresh Click this button to refresh the whole connection status. Vigor2820 Series User’s Guide...
Page 174: Certificate Management
Remember to adjust the time of Vigor router before using the certificate so that you can get the correct valid period of certificate. Below shows the menu items for Certificate Management. Generate Click this button to open Generate Certificate Request window. Vigor2820 Series User’s Guide...
Page 175 Click this button to refresh the information listed below. Refresh View Click this button to view the detailed settings for certificate request. After clicking Generate, the generated information will be displayed on the window below: Vigor2820 Series User’s Guide...
Page 176: Trusted Ca Certificate
For viewing each trusted CA certificate, click View to open the certificate detail information window. If you want to delete a CA certificate, choose the one and click Delete to remove all the certificate information. Vigor2820 Series User’s Guide...
Page 177: Certificate Backup
Internet bandwidth. Usually there will be two types of calling scenario, as illustrated below: Calling via SIP Servers First, the Vigor V models of yours will have to register to a SIP Registrar by sending Vigor2820 Series User’s Guide...
Page 178 Voice traffic over Internet but you just get your data a little slower and it is tolerable for data traffic. Below shows the menu items under VoIP: Vigor2820 Series User’s Guide...
Page 179: Dialplan
Note: If the incoming or outgoing calls do not match any entry on the phonebook, the router will try to make the call "being protected". But, if the call ends up "unprotected"(e.g. peer side does not support ZRTP+SRTP), the router will not play out a warning message. Vigor2820 Series User’s Guide...
Page 180 The speed-dial number of this index. This can be any number you choose, using digits 0-9 and * . Display Name The Caller-ID that you want to be displayed on your friend’s screen. This let your friend can easily know who’s calling Vigor2820 Series User’s Guide...
Page 181 And when the VoIP phone is switched into the PSTN phone, the telecom co. might charge you for the connection fee. Please type in backup phone number (PSTN number/ISDN number) for this VoIP Vigor2820 Series User’s Guide...
Page 182 Add - When you choose this mode, the OP number will be added with the prefix number for calling out through the specific VoIP interface. Strip - When you choose this mode, the OP number will be Vigor2820 Series User’s Guide...
Page 183 Choose the one that you want to enable the prefix number settings from the saved SIP accounts. Please set up one SIP account first to make this interface available. This item will be changed according to the port settings configured in VoIP>> Phone Settings. Vigor2820 Series User’s Guide...
Page 184 Call Direction Determine the direction for the phone call, IN – incoming call, OUT-outgoing call, IN & OUT – both incoming and outgoing calls. Barring Type Determine the type of the VoIP phone call, URI/URL or number. Vigor2820 Series User’s Guide...
Page 185 For Block Unknown Domain – this function can block incoming calls (through Phone port) from unrecognized domain that is not specified in SIP accounts. Such control also can be done based on preconfigured schedules. Vigor2820 Series User’s Guide...
Page 186 Please dial number typed in this field to call back to that one. Last Call Return [Out] Dial the number typed in this field to call the previous outgoing phone call again. Vigor2820 Series User’s Guide...
Page 187 IP address. Block IP Calls [Deact] Dial the number typed in this field to release this function. Block Last Calls [Act] Dial the number typed in this field to block the last incoming phone call. Vigor2820 Series User’s Guide...
Page 188 PSTN number for dialing without passing through Internet. Please type the number in the field of phone number for PSTN relay. Then, check the Enable box to make the PSTN number available for dial whenever you need. Vigor2820 Series User’s Guide...
Page 189: Sip Accounts
AuthorizationUser@Domain/Realm. After that, your call will be bypassed by SIP Proxy to the destination using AccountName@Domain/Realm as identity. Note: Selection items for Ring Port will differ according to the router you have. For Vigor2820V/Vigor2820Vn models, you will see the following page: Vigor2820 Series User’s Guide...
Page 190 The default value is 150 (sec). It is useful for a Nortel server NAT Traversal Support. Status Show the status for the corresponding SIP account. R means such account is registered on SIP server successfully. – means the account is failed to register on SIP server. Vigor2820 Series User’s Guide...
Page 191 :port number after the domain name to specify that port as the destination of data transmission (e.g., nat.draytel.org:5065) Act as Outbound Proxy Check this box to make the proxy acting as outbound proxy. Vigor2820 Series User’s Guide...
Page 192 Select one of the codecs as the default for your VoIP calls. The codec used for each call will be negotiated with the peer party before each session, and so may not be your default choice. The default codec is G.729A/B; it occupies little bandwidth Vigor2820 Series User’s Guide...
Page 193: Phone Settings
This page allows user to set phone settings for Phone 1 and Phone 2 respectively. However, it changes slightly according to different model you have. For Vigor2820V/Vigor2820Vn models, you will see the following page: Vigor2820 Series User’s Guide...
Page 194 Gain - Display the volume gain settings for Mic/Speaker that configured in the advanced settings page of Phone Index. Default SIP Account – “draytel_1” is the default SIP account. You can click the number below the Index field to change SIP Vigor2820 Series User’s Guide...
Page 195 Dynamic RTP Port End - Specifies the end port for RTP stream. The default value is 15000. RTP TOS – It decides the level of VoIP package. Use the drop down list to choose any one of them. Vigor2820 Series User’s Guide...
Page 196 SIP URL by the time out. SIP URL – Type in the SIP URL (e.g., aaa@draytel.org or abc@iptel.org) as the site for call forwarded. Vigor2820 Series User’s Guide...
Page 197 ID type automatically. Or you can adjust tone settings manually if you choose User Defined. TOn1, TOff1, TOn2 and TOff2 mean the cadence of the tone pattern. TOn1 and TOn2 represent sound-on; TOff1 and TOff2 represent the sound-off. Vigor2820 Series User’s Guide...
Page 198 VoIP communication. Volume Gain Mic Gain (1-10)/Speaker Gain (1-10) - Adjust the volume of microphone and speaker by entering number from 1- 10. The larger of the number, the louder the volume is. Vigor2820 Series User’s Guide...
Page 199 DTMF tone and transfer it into SIP form. Then it will be sent to the remote end with SIP message. Payload Type (rfc2833) - Choose a number from 96 to 127, the default value was 101. This setting is available for the OutBand (RFC2833) mode. Vigor2820 Series User’s Guide...
Page 200 SIP URL by the time out. SIP URL – Type in the SIP URL (e.g., aaa@draytel.org or abc@iptel.org) as the site for call forwarded. Vigor2820 Series User’s Guide...
Page 201 Or you can adjust tone settings manually if you choose User Defined. TOn1, TOff1, TOn2 and TOff2 mean the cadence of the tone pattern. TOn1 and TOn2 represent sound-on; TOff1 and TOff2 represent the sound-off. Vigor2820 Series User’s Guide...
Page 202 Congestion tone will be shown automatically on the page. If you cannot find out a suitable one, please choose User Defined and fill out the corresponding values for dial tone, ringing tone, busy tone, and congestion tone by yourself for VoIP phone. Vigor2820 Series User’s Guide...
Page 203 30 – 39) with any number you desire. For example, type 50 in the box of MSN 30. Later you will find MSN 30 has been replaced with MSN50 in all related pages. See the following figures for examples Vigor2820 Series User’s Guide...
Page 204 Forward Error Correction offered in this field. There are four options for you to choose. Disable is to close call Call Forwarding forwarding function. Always means all the incoming calls will be forwarded into SIP URL without any reason. Busy means the Vigor2820 Series User’s Guide...
Page 205 DTMF mode. Advanced setting is provided for fitting the telecommunication custom for the local area of the router installed. Wrong tone settings might cause inconvenience for users. To set the sound pattern of the phone set, simply choose a proper region to let the system find Vigor2820 Series User’s Guide...
Page 206 Congestion tone will be shown automatically on the page. If you cannot find out a suitable one, please choose User Defined and fill out the corresponding values for dial tone, ringing tone, busy tone, and congestion tone by yourself for VoIP phone. Vigor2820 Series User’s Guide...
Page 207 DTMF tone and transfer it into SIP form. Then it will be sent to the remote end with SIP message. Payload Type (rfc2833) - Choose a number from 96 to 127, the default value was 101. This setting is available for the OutBand (RFC2833) mode. Vigor2820 Series User’s Guide...
Page 208: Status
WAIT_ANS - Indicates that a connection is launched and waiting for remote user’s answer. ALERTING - Indicates that a call is coming. ACTIVE-Indicates that the VoIP connection is launched. Codec Indicates the voice codec employed by present channel. Vigor2820 Series User’s Guide...
Page 209: Isdn
Display logs of VoIP calls. ISDN means integrated services digital network that is an international communications standard for sending voice, video, and data over digital telephone lines or normal telephone wires. Below shows the menu items for ISDN. Vigor2820 Series User’s Guide...
Page 210: General Settings
MSN services. The router provides ten fields for MSN numbers. Note that MSN service must be acquired from your local telecom operators. By default, MSN function is disabled. If you leave the fields blank, all incoming calls will be Vigor2820 Series User’s Guide...
Page 211 "Own Number" to the remote side. However Own number will restrict the router displaying only one number on remote side. Vigor2820 series can connect up to 6 phones at the same time. Therefore, if CLIP is selected, the external MSN numbers that you setup will be displayed to remote side.
Page 212 If you use ISDN1-S0 with MSN 5972729 to dial an outgoing call: remote user will see the number 5972729 because Phone CLIP is checked. If you use ISDN1-S0 without MSN Setup to dial an outgoing call: remote user will see the number 5972720 because Phone CLIP is checked. Vigor2820 Series User’s Guide...
Page 213: Dialing To Single/Dual Isps
Idle Timeout - Idle timeout means the router will be disconnect after being idle for a preset amount of time. The default is 180 seconds. If you set the time to 0, the ISDN connection to the ISP Vigor2820 Series User’s Guide...
Page 214 Idle Timeout - Idle timeout means the router will be disconnect after being idle for a preset amount of time. The default is 180 seconds. If you set the time to 0, the ISDN connection to the ISP Vigor2820 Series User’s Guide...
Page 215 After entering the necessary settings and clicking OK, you will see Goto ISDN Diagnostic link appears on the bottom of the webpage. To have an ISDN connection, please click Goto ISDN Diagnostic. The following page will be displayed on your screen. Vigor2820 Series User’s Guide...
Page 216 Click Dial ISDN. Wait for a moment after clicking the dial link. Then, a successful ISDN connection will be shown as the following. Vigor2820 Series User’s Guide...
Page 217: Call Control
Link Type - Because ISDN has two B channels (64Kbps/per channel), you can specify whether you would like to have single B channel, two B channels or BOD (Bandwidth on Demand). Four options are available: Link Disable, Dialup 64Kbps, Dialup 128Kbps, Dialup BOD. Vigor2820 Series User’s Guide...
Page 218 In terms of the two B channels, if their utilization is under the Low Water Mark and these two channels are being used over the High Water Time, the additional channel will be dropped. As a result, the total link speed will be 64kbps (one B channel). Vigor2820 Series User’s Guide...
Page 219: Wireless Lan
Complete Security Standard Selection: To ensure the security and privacy of your wireless communication, we provide several prevailing standards on market. Vigor2820 Series User’s Guide...
Page 220 MAC addresses to isolate users’ access from wired LAN. Manage Wireless Stations - Station List will display all the station in your wireless network and the status of their connection. Below shows the menu items for Wireless LAN. Vigor2820 Series User’s Guide...
Page 221: General Setup
Enable Wireless LAN Check the box to enable wireless function. At present, the router can connect to Mixed (11b+11g), 11g Mode Only, 11b Only, Mixed (11g+11n), 11n Only and Mixed (11b+11g+11n) stations simultaneously. Simply choose Mix (11b+11g+11n) mode. Vigor2820 Series User’s Guide...
Page 222 SSID Means the identification of the wireless LAN. SSID can be any text numbers or various special characters. The default SSID is "Draytek”. We suggest you to change it. Isolate Member –Check this box to make the wireless clients (stations) with the same SSID not accessing for each other.
Page 223 It controls the data transmission rate through wireless Rate Control connection. Upload – Check Enable and type the transmitting rate for data upload. Default value is 30,000 kbps. Download – Type the transmitting rate for data download. Default value is 30,000 kbps. Vigor2820 Series User’s Guide...
Page 224: Security
WEP/802.1x Only - Accepts only WEP clients and the encryption key is obtained dynamically from RADIUS server with 802.1X protocol. WPA/802.1x Only- Accepts only WPA clients and the encryption key is obtained dynamically from RADIUS server with 802.1X protocol. Vigor2820 Series User’s Guide...
Page 225 Four keys can be entered here, but only one key can be selected at a time. The keys can be entered in ASCII or Hexadecimal. Check the key you wish to use. Vigor2820 Series User’s Guide...
Page 226: Access Control
Add a new MAC address into the list. Delete Delete the selected MAC address in the list. Edit Edit the selected MAC address in the list. Cancel Give up the access control set up. Click it to save the access control list. Vigor2820 Series User’s Guide...
Page 227: Wps
ON/OFF/WPS button for 2 seconds to wait for client device making network connection through WPS o r click Start PBC on web configuration interface. On the side of a station with network card installed, press Start PBC button of network card. Vigor2820 Series User’s Guide...
Page 228 Display related system information for WPS. If the wireless security (encryption) function of the router is properly configured, you can see ‘Configured’ message here. SSID Display the SSID1 of the router. WPS is supported by SSID1 Vigor2820 Series User’s Guide...
Page 229: Wds
To meet the above requirement, two WDS modes are implemented in Vigor router. One is Bridge, the other is Repeater. Below shows the function of WDS-bridge interface: The application for the WDS-Repeater mode is depicted as below: Vigor2820 Series User’s Guide...
Page 230 Bridge 2 through WDS links. However, hosts connected to Bridge 1 CANNOT communicate with hosts connected to Bridge 3 through Bridge 2. Click WDS from Wireless LAN menu. The following page will be shown. Vigor2820 Series User’s Guide...
Page 231 If you did not set any key in Security Settings page, this check box will be dimmed. Pre-shared Key Type – There are three types for you to choose. DrayTek WPA can be used for all DrayTek wireless routers like Vigor2700, Vigor2800, Vigor2820, and etc., except for other brand's wireless routers.
Page 232: Advanced Setting
20- the router will use 20Mhz for data transmission and receiving between the AP and the stations. 20/40 – the router will use 20Mhz or 40Mhz for data transmission and receiving according to the station capability. Such channel can increase the performance for data transit. Vigor2820 Series User’s Guide...
Page 233: Wmm Configuration
WMM accessing categories. For the service of voice or video image, please set small value for AC_VI and AC_VO categories For the service of e-mail or web browsing, please set large value for AC_BE and AC_BK Vigor2820 Series User’s Guide...
Page 234 It can assure that the peer must receive the WMM packets. “Check” the box means the AP router will not answer any response request for the transmitting packets. It will have better performance with lower reliability. Vigor2820 Series User’s Guide...
Page 235: Ap Discovery
AP’s MAC address on the bottom of the page and click Bridge or Repeater. Next, click Add to. Later, the MAC address of the AP will be added to Bridge or Repeater field of WDS settings page. Vigor2820 Series User’s Guide...
Page 236: Station List
There is a code summary below for explanation. For convenient Access Control, you can select a WLAN station and click Add to Access Control below. Refresh Click this button to refresh the status of station list. Click this button to add current typed MAC address into Access Control. Vigor2820 Series User’s Guide...
Page 237: Usb Application
FTP sessions. The router allows up to 6 FTP sessions connecting to USB storage disk at one time. Default Charset - At present, Vigor router supports three types of character sets: default, GB2312 and BIG5. Vigor2820 Series User’s Guide...
Page 238: Usb User Management
Before adding or modifying settings in this page, please insert a USB disk first. Otherwise, an error message will appear to warn you. Click index number to access into configuration page. Vigor2820 Series User’s Guide...
Page 239 Only “/” can be used in such case. You can click to open the following dialog to add any new folder which can be specified as the Home Folder. Vigor2820 Series User’s Guide...
Page 240 Directory –Check the items (List, Create and Remove) for such profile. Before you click OK, you have to insert a USB disk into the USB interface of the Vigor router. Otherwise, you cannot save the configuration. Vigor2820 Series User’s Guide...
Page 241: File Explorer
Create Current Path Display current folder. Upload Click this button to upload the selected file to the USB storage disk. The uploaded file in the USB storage disk can be shared for other user through FTP. Vigor2820 Series User’s Guide...
Page 242: Usb Disk Status
FTP server. It displays the username that user uses to login to the FTP Username server. When you insert USB diskette into the Vigor router, the system will start to find out such device within several seconds. Vigor2820 Series User’s Guide...
Page 243: Syslog Explorer
Always record the new event – only the newest events will be recorded by the system. Time Display the time of the event occurred. Message Display the information for each event. Vigor2820 Series User’s Guide...
Page 244 This page displays the syslog recorded on the USB storage disk. Time Display the time of the event occurred. Log Type Display the type of the record. Message Display the information for each event. Vigor2820 Series User’s Guide...
Page 245: System Maintenance
Display the model name of the router. Firmware Version Display the firmware version of the router. Build Date/Time Display the date and time of the current firmware build. ADSL Firmware Version Display the ADSL firmware version. Vigor2820 Series User’s Guide...
Page 246: Https Encryption Setup
Display the SSID of the router. This page allows you to choose different level of encryption algorithm for HTTPS connection for the sake of security. Please click any one of the key algorithms and click OK. Vigor2820 Series User’s Guide...
Page 247: 237
CPE. Periodic Inform Settings The default setting is Enable. Please set interval time or schedule time for the router to send notification to CPE. Or click Disable to close the mechanism of notification. Vigor2820 Series User’s Guide...
Page 248: Administrator Password
Type in new password in this field. Confirm Password Type in the new password again. When you click OK, the login window will appear. Please use the new password to access into the web configurator again. Vigor2820 Series User’s Guide...
Page 249: Configuration Backup
Click Backup button to get into the following dialog. Click Save button to open another dialog for saving configuration as a file. In Save As dialog, the default filename is config.cfg. You could give it another name by yourself. Vigor2820 Series User’s Guide...
Page 250 Click Browse button to choose the correct configuration file for uploading to the router. Click Restore button and wait for few seconds, the following picture will tell you that the restoration procedure is successful. Vigor2820 Series User’s Guide...
Page 251: Syslog/Mail Alert
Return-Path Assign a path for receiving the mail from outside. Authentication Check this box to activate this function while using e-mail application. User Name Type the user name for authentication. Password Type the password for authentication. Vigor2820 Series User’s Guide...
Page 252 From the Syslog screen, select the router you want to monitor. Be reminded that in Network Information, select the network adapter used to connect to the router. Otherwise, you won’t succeed in retrieving information from the router. Vigor2820 Series User’s Guide...
Page 253: Time And Date
Enable Daylight Saving Check the box to enable the daylight saving. Such feature is available for certain area. Select a time interval for updating from the NTP server. Automatically Update Interval Click OK to save these settings. Vigor2820 Series User’s Guide...
Page 254: Management
Check to use standard port numbers for the Telnet and HTTP Default Ports servers. User Defined Ports Check to specify user-defined port numbers for the Telnet, HTTP and FTP servers. Enable SNMP Agent Check it to enable this function. Vigor2820 Series User’s Guide...
Page 255: Reboot System
Note: When the system pops up Reboot System web page after you configure web settings, please click OK to reboot your router for ensuring normal operation and preventing unexpected errors of the router in the future. Vigor2820 Series User’s Guide...
Page 256: Firmware Upgrade
Note that this example is running over Windows OS (Operating System). Download the newest firmware from DrayTek's web site or FTP site. The DrayTek web site is www.draytek.com (or local DrayTek's web site) and FTP site is ftp.draytek.com.
Page 257: Activation
The Activate link brings you accessing into www.vigorpro.com to finish the activation of the account and the router. Authentication Message As for authentication information of web filter, the process of authenticating will be displayed on this field for your reference. Vigor2820 Series User’s Guide...
Page 258 CT-CF) adopted by such router. Start Date Display the starting date of WCF license activated successfully. Expire Date Display the ending date of WCF license activated successfully. Activate Click this link to access into http://myvigor.draytek.com for activating WCF function. Vigor2820 Series User’s Guide...
Page 259: Diagnostics
(e.g., ISDN, PPPoE, PPPoA, etc) is triggered by a package sending from the source IP address. Decoded Format It shows the source IP address (local), destination IP (remote) address, the protocol and length of the package. Click it to reload the page. Refresh Vigor2820 Series User’s Guide...
Page 260: Routing Table
Resolution Protocol) cache held in the router. The table shows a mapping between an Ethernet hardware address (MAC Address) and an IP address. Refresh Click it to reload the page. Clear Click it to clear the whole table. Vigor2820 Series User’s Guide...
Page 261: Dhcp Table
It displays the leased time of the specified PC. Port It displays the port number used by the specified PC. HOST ID It displays the host ID name of the specified PC. Refresh Click it to reload the page. Vigor2820 Series User’s Guide...
Page 262: Nat Sessions Table
Click Diagnostics and click Ping Diagnosis to pen the web page. Ping through Use the drop down list to choose the WAN interface that you want to ping through or choose Unspecified to be determined by the router automatically. Vigor2820 Series User’s Guide...
Page 263: Data Flow Monitor
Address, TX rate, RX rate or Session link for arranging the data display. Enable Data Flow Check this box to enable this function. Monitor Refresh Seconds Use the drop down list to choose the time interval of refreshing data flow that will be done by the system automatically. Vigor2820 Series User’s Guide...
Page 264 Peak means the highest peak value detected by the router in data transmission. Speed means line speed specified in WAN>>General Setup. If you do not specify any rate at that page, here will display Auto for instead. Vigor2820 Series User’s Guide...
Page 265: Traffic Graph
Bandwidth chart, the numbers displayed on vertical axis represent the numbers of the transmitted and received packets in the past. For Sessions chart, the numbers displayed on vertical axis represent the numbers of the NAT sessions during the past. Vigor2820 Series User’s Guide...
Page 266: Trace Route
Click this button to start route tracing work. Clear Click this link to remove the result on the window. When you click it, you will be guided to visit myvigor.draytek.com and open the corresponding pages directly. Vigor2820 Series User’s Guide...
Page 267: Application And Examples
Then, For using PPP based services, such as PPTP, L2TP, you have to set general settings in PPP General Setup. For using IPSec-based service, such as IPSec or L2TP with IPSec Policy, you have to set Vigor2820 Series User’s Guide...
Page 268 Set Dial-Out Settings as shown below to dial to connect to Router B aggressively with the selected Dial-Out method. If an IPSec-based service is selected, you should further specify the remote peer IP Address, IKE Authentication Method and IPSec Security Method for this Dial-Out connection. Vigor2820 Series User’s Guide...
Page 269 If an IPSec-based service is selected, you may further specify the remote peer IP Address, IKE Authentication Method and IPSec Security Method for this Dial-In connection. Otherwise, it will apply the settings defined in IPSec General Setup above. Vigor2820 Series User’s Guide...
Page 270 Router B via the VPN connection. Settings in Router B in the remote office: Go to VPN and Remote Access and select Remote Access Control to enable the necessary VPN service and click OK. Vigor2820 Series User’s Guide...
Page 271 Set Common Settings as shown below. You should enable both of VPN connections because any one of the parties may start the VPN connection. Set Dial-Out Settings as shown below to dial to connect to Router B aggressively with the selected Dial-Out method. Vigor2820 Series User’s Guide...
Page 272 If an IPSec-based service is selected, you may further specify the remote peer IP Address, IKE Authentication Method and IPSec Security Method for this Dial-In connection. Otherwise, it will apply the settings defined in IPSec General Setup above. Vigor2820 Series User’s Guide...
Page 273 Username, Password, and VJ Compression for this Dial-In connection. At last, set the remote network IP/subnet in TCP/IP Network Settings so that Router B can direct the packets destined to the remote network to Router A via the VPN connection. Vigor2820 Series User’s Guide...
Page 274: Create A Remote Dial-In User Connection Between The Teleworker And Headquarter
PPP General Setup. For using IPSec-based service, such as IPSec or L2TP with IPSec Policy, you have to set general settings in IKE/IPSec General Setup, such as the pre-shared key that both parties have known. Vigor2820 Series User’s Guide...
Page 275 If an IPSec-based service is selected, you may further specify the remote peer IP Address, IKE Authentication Method and IPSec Security Method for this Dial-In connection. Otherwise, it will apply the settings defined in IPSec General Setup above. Vigor2820 Series User’s Guide...
Page 276 For Win2000/XP/Vista, please use "Network and Dial-up connections" or “Smart VPN Client”, complimentary software to help you create PPTP, L2TP, and L2TP over IPSec tunnel. You can find it in CD-ROM in the package or go to www.draytek.com download center. Install as instructed.
Page 277 Username, Password, and encryption method. The User Name and Password should be consistent with the one set up in the VPN router. To use default gateway on remote network means that all the packets of remote host will be directed to VPN server Vigor2820 Series User’s Guide...
Page 278 Internet. This will make the remote host seem to be working in the enterprise network. Click Connect button to build connection. When the connection is successful, you will find a green light on the right down corner. Vigor2820 Series User’s Guide...
Page 279: Qos Setting Example
Return to previous page. Enter the Name of Index Class 1 by clicking Edit link. Type the name “E-mail” for Class 1. For this index, the user will set reserved bandwidth (e.g., 25%) for E-mail using protocol POP3 and SMTP. Vigor2820 Series User’s Guide...
Page 280 Return to previous page. Enter the Name of Index Class 2 by clicking Edit link. In this index, the user will set reserved bandwidth for HTTPS. And click OK. Click Setup link for WAN1. Vigor2820 Series User’s Guide...
Page 281 If the worker has connected to the headquarter using host to host VPN tunnel. (Please refer to Chapter 3 VPN for detail instruction), he may set up an index for it. Enter the Class Name of Index 3. In this index, he will set reserved bandwidth for 1 VPN tunnel. Vigor2820 Series User’s Guide...
Page 282 Click Edit to open the following window. Check the ACT box, first. 10. Then click Edit of Local Address to set a worker’s subnet address. Click Edit of Remote Address to set headquarter’s IP address. Leave other fields and click OK. Vigor2820 Series User’s Guide...
Page 283: Lan - Created By Using Nat
You can just set the settings wrapped inside the red rectangles to fit the request of NAT usage. To use another DHCP server in the network rather than the built-in one of Vigor Router, you have to change the settings as show below. Vigor2820 Series User’s Guide...
Page 284 You can just set the settings wrapped inside the red rectangles to fit the request of NAT usage. Vigor2820 Series User’s Guide...
Page 285: Calling Scenario For Voip Function
Display Name: David Account Name: 4321 Authentication ID: unchecked Password: **** Expiry Time: (use default value) David calls John CODEC/RTP/DTMF --- He picks up the phone and dials 2222# (DialPlan (Use default value) Phone Number for John) Vigor2820 Series User’s Guide...
Page 286 Expiry Time: (use default value) CODEC/RTP/DTMF--- (Use default value) David calls John He picks up the phone and dials 2222# (DialPlan Phone Number for John) Or, He picks up the phone and dials 1234# (John’s Account Name) Vigor2820 Series User’s Guide...
Page 287: Peer-To-Peer Calling
Display Name: Paulin Account Name: 4321 Authentication ID: unchecked Password: (blank) Expiry Time: (use default value) Paulin calls Arnor CODEC/RTP/DTMF--- He picks up the phone and dials 2222# (DialPlan (Use default value) Phone Number for John) Vigor2820 Series User’s Guide...
Page 288: Upgrade Firmware For Your Router
2. Access into Support >> Downloads. Please find out Firmware menu and click it. Search the model you have and click on it to download the newly update firmware for your router. 3. Access into Support >> Downloads. Please find out Utility menu and click it. Vigor2820 Series User’s Guide...
Page 289 You will find out two files with different extension names, xxxx.all (keep the old custom settings) and xxxx.rst (reset all the custom settings to default settings). Choose any one of them that you need. Vigor2820 Series User’s Guide...
Page 290: Request A Certificate From A Ca Server On Windows Ca Server
10. Click Send. 11. Now the firmware update is finished. Go to Certificate Management and choose Local Certificate. Vigor2820 Series User’s Guide...
Page 291 Copy and save the X509 Local Certificate Requet as a text file and save it for later use. Connect to CA server via web browser. Follow the instruction to submit the request. Below we take a Windows 2000 CA server for example. Select Request a Certificate. Vigor2820 Series User’s Guide...
Page 292 IPSec (Offline request) below. Then you have done the request and the server now issues you a certificate. Select Base 64 encoded certificate and Download CA certificate. Now you should get a certificate (.cer file) and save it. Vigor2820 Series User’s Guide...
Page 293 (.cer file) into Vigor router. When finished, click refresh and you will find the below window showing “------BEGINE CERTIFICATE------..” You may review the detail information of the certificate by clicking View button. Vigor2820 Series User’s Guide...
Page 294: Request A Ca Certificate And Set As Trusted On Windows Ca Server
Use web browser connecting to the CA server that you would like to retrieve its CA certificate. Click Retrive the CA certificate or certificate recoring list. Vigor2820 Series User’s Guide...
Page 295 You may review the detail information of the certificate by clicking View button. Note: Before setting certificate configuration, please go to System Maintenance >> Time and Date to reset current time of the router first. Vigor2820 Series User’s Guide...
Page 296: Creating An Account For Myvigor
The website of MyVigor (a server located on http://myvigor.draytek.com) provides several useful services (such as Anti-Spam, Web Content Filter, Anti-Intrusion, and etc.) to filtering the web pages for the sake of protecting your system. To access into MyVigor for getting more information, please create an account for MyVigor.
Page 297 5. Type your personal information in this page and then click Continue. 6. Choose proper selection for your computer and click Continue. Vigor2820 Series User’s Guide...
Page 298 Check to see the confirmation email with the title of Letter from myvigor.draytek.com. 9. Click the Activate my Account link to enable the account that you created. The following screen will be shown to verify the register process is finished. Please click Login. Vigor2820 Series User’s Guide...
Page 299: Creating An Account Via Myvigor Web Site
11. Now, click Login. Your account has been activated. You can access into MyVigor server to activate the service (e.g., WCF) that you want. 1. Access into http://myvigor.draytek.com. Find the line of Not registered yet?. Then, click the link Click here! to access into next page.
Page 300 2. Check to confirm that you accept the Agreement and click Accept. 3. Type your personal information in this page and then click Continue. 4. Choose proper selection for your computer and click Continue. Vigor2820 Series User’s Guide...
Page 301 8. When you see the following page, please type in the account and password (that you just created) in the fields of UserName and Password. Then type the code in the box of Auth Code according to the value displayed on the right side of it. Vigor2820 Series User’s Guide...
Page 302: How To Use Motp Feature Through The Router And Iphone
Now, click Login. Your account has been activated. You can access into MyVigor server to activate the service (e.g., WCF) that you want Draytek provides one-time password support for build-in PPTP and L2TP connection. All Draytek customers can use one-time password to authenticate VPN connections.
Page 303 Open it and press the button Generate Secret to initialize your secret key. Don’t do this if there already is a secret key existed, otherwise it will re-initialize your secret key. Shake your iPhone to generate a random secret key. Vigor2820 Series User’s Guide...
Page 304 Note: Both the PIN Code and Secret will be hidden with ‘*’ after you press the OK button. Make sure the system time on Draytek router is correct. Inform the end user of the Username and PIN code. Vigor2820 Series User’s Guide...
Page 305 Open mOTP. Enter the PIN code. In this example it is 1111. Then press “Generate Password”. Note: Each time you enter the PIN code you will get a different password. Here the password is 3dcecd. Vigor2820 Series User’s Guide...
Page 306 2. Administrator enters this secret key in a teleworker profile. 3. Administrator setups a username and PIN code and provides them to the ender user. 4. End user uses the PIN code to generate a password. Vigor2820 Series User’s Guide...
Page 307: How Can I Get The Files From Usb Storage Device Connecting To Vigor Router
Plug the USB device to the USB port on the router. Make sure Disk Connected appears on the Connection Status as the figure shown below: Then, please open USB Application >> USB General Settings to enable Samba service. Vigor2820 Series User’s Guide...
Page 308 "user1" and assign authorities “Read”, “Write” and “List” to it. Click OK to save the configuration. Make sure the FTP service is running properly. Please open a browser and type ftp://192.168.1.1. Use the account "user1" to login. Vigor2820 Series User’s Guide...
Page 309 Now, users in LAN of Vigor2710 can access into the USB storage device by typing ftp://192.168.1.1 on any browser. They can add or remove files / directories, depending on the Access Rule for FTP account settings in USB Application >>USB User Management. Vigor2820 Series User’s Guide...
Page 310 This page is left blank. Vigor2820 Series User’s Guide...
Page 311: Trouble Shooting
Turn on the router. Make sure the ACT LED blink once per second and the correspondent LAN LED is bright. If not, it means that there is something wrong with the hardware status. Simply back to “1.3 Hardware Installation” to execute the hardware installation again. And then, try again. Vigor2820 Series User’s Guide...
Page 312 Go to Control Panel and then double-click on Network Connections. Right-click on Local Area Connection and click on Properties. Select Internet Protocol (TCP/IP) and then click Properties. Vigor2820 Series User’s Guide...
Page 313 Select Obtain an IP address automatically and Obtain DNS server address automatically. Double click on the current used MacOs on the desktop. Open the Application folder and get into Network. On the Network screen, select Using DHCP from the drop down list of Configure IPv4. Vigor2820 Series User’s Guide...
Page 314: Pinging The Router From Your Computer
Open the Application folder and get into Utilities. Double click Terminal. The Terminal window will appear. Type ping 192.168.1.1 and press [Enter]. If the link is OK, the line of “64 bytes from 192.168.1.1: icmp_seq=0 ttl=255 time=xxxx ms” will appear. Vigor2820 Series User’s Guide...
Page 315: Checking If The Isp Settings Are Ok Or Not
Click WAN1 or WAN2 link to review the settings that you configured previously. Check if the Enable option is selected. Check if Username and Password are entered with correct values that you got from your ISP. Vigor2820 Series User’s Guide...
Page 316 Check if the Enable option is selected. Check if DSL Modem Settings is set appropriately. Check if IP Address, Subnet Mask and Gateway are set correctly (must identify with the values from your ISP) if you choose Specify an IP address. Vigor2820 Series User’s Guide...
Page 317 Check if the Enable option is selected. Check if IP address, Subnet Mask and Gateway are entered with correct values that you got from your ISP. Check if the Enable option for PPTP/L2TP Link is selected. Vigor2820 Series User’s Guide...
Page 318: Problems For 3G Network Connection
PIN code and try again. If it still fails, it might be the compliance problem of system. Please open DrayTek Syslog Tool to capture the connection information (WAN Log) and send the page (similar to the following graphic) to the service center of DrayTek.
Page 319 5 seconds. When you see the ACT LED blinks rapidly, please release the button. Then, the router will restart with the default configuration. After restore the factory default setting, you can configure the settings for the router again to fit your personal request. Vigor2820 Series User’s Guide...
Page 320: Contacting Your Dealer
If the router still cannot work correctly after trying many efforts, please contact your dealer for further help right away. For any questions, please feel free to send e-mail to support@draytek.com. Vigor2820 Series User’s Guide...
Page 321: Appendix: Hardware Specifications
Temperature Operating : 0°C ~ 45°C Storage : -25°C ~ 70°C Humidity 10% ~ 90% ( non-condensing ) Max. Power Consumption 10 Watt Dimension L241 * W165 * H44 Power DC 12V ~ 15V Vigor2820 Series User’s Guide...

This manual is also suitable for:

Vigor2820n Vigor2820v Vigor2820vn Vigor2820vs Vigor2820vsn

Draytek Vigor2820 Series User Manual

Preface

Configuring Basic Settings

Advanced Web Configuration

Application and Examples

Trouble Shooting

Appendix: Hardware Specifications

Quick Links

Related Manuals for Draytek Vigor2820 Series

Summary of Contents for Draytek Vigor2820 Series

This manual is also suitable for:

Table of Contents