The DSE Router comes in a 1-port or a 4-port version in New Zealand for about $100. These instructions are for the 4-port version. Variations for 1-port will be noted as required as the 1-port version is OK for home use and is about $20 cheaper.
Connect your router up as per instructions. You then do some configuration to the router from your computer. The router has its own little webserver which you access from your webbrowser via the IP address http://192.168.1.2 This is the router local address. If someone is looking at your router from the outside, your ISP (Internet Service Provider) for instance, they see another address.
Different brands of router use different local addresses. If you are using these instructions on another brand of router check its installation guide for the address. 192.168.0.1 and 192.168.1.1 are possible alternatives.
Signon as user:admin password:password
Change the password forthwith to protect your firewall settings from being altered without your knowledge.
Other users can signon as user:user password:password
Security on user:user is not so critical.
The menubar on the left of the admin screen gives access to all the required functions. The Automatic setup should be used to establish the connection with the ISP. These settings should set themselves automatically. Encapsulation whould be PPPoA for PPP on ADSL. The other alternative is PPPoE (PPPon Ethernet) which you might have on a large internal LAN setup but not normally on a DSL router. The VIP/VCI should be 0:100. These settings are enough to get you started.
If you have servers running you will want to have a static IP address. You will need to ask your ISP for a static address as ISPs usually provide dynamically allocatted IP addresses (similar to 50k modem). This way they can reuse their limited supply of IP addresses. But if you have a server running most of the time then you are going to be using an IP address all the time anyway, so you may as well have a static one. There should be no problem with the ISP providing a static IP address, if there is change your ISP.
If you have a static ip address it is important that you get the Set PPP Username and password correct or you will only get a dynamic address and not the static one that you expect. The password is your usual account password for your ISP. The username is typically like you email address but with adsl. right after the &. If your email address is myaccount&myisp.co.nz then your DSL username is likely to be email@example.com. If you have any doubts about this give your ISP a call as it will not occur to them to tell your because they will assume you have a dynamic IP address and dont need to know. The Home page lists your external (static) IP address under WAN IP/MAC. The LAN IP/MAC address is the routers own address. Below are the addresses assigned by the DCHP server in the router to your local machines connected to the router. For the 1 port model it is 192.168.1.1. For the 4 port router they are 192.168.1.3 .4 .5 .6. It is important when entering the pinholes later that you use the right address for the right server/machine.
Under ADVANCED Configuration look at the WAN page. This shows your username signon for the connection to the static IP address. It should be something like firstname.lastname@example.org where user is your signon account name with your IP and ip.co.nz is your IP's usual IP address.
The router has some firewall provisions built into it. It protects you from receiving unsolicited transactions from outside by limiting the ports on which data requests can come in. Normally everthing is closed off, so you have to open up pinholes to allow data requests to get to the specific computer which runs the server on its specific port.
Typical ports are:
22 - ssh
80 - http, but private http servers tend to use high numbered ports like 8015 for tclhttpd
?? - https
21 - ftp
?? - telnet
?? - smtp
?? - pop3
There are also ports for many of the games servers, domain name server and so on.
To setup the server pinholes go to the Advanced Features/Virtual Server page. Add in a line for each pinhole. You can specify a range of addresses. Usually the Private Port Start is the same as the Public Port Start unless you have some reason to translate the port to a different number. Port type is TCP and the Host IP address is the local address of the server machine on your LAN, usually 192.168.1.1 for the 1-port router or 192.168.1.3 if you are plugged into slot 1 on the 4-port router.
Typically this is all you need to do to get your server through the router. But DO REMEMBER that SuSE Linux has its own firewall program that you also have to put pinholes in.
But before we leave the DSE Router check the Advanced Features/Misc Configuration Page. This has settings which allow you to access the Router itself from the outside. Typically this is shut off. HTTP access to the Routers webpages, i.e. the router admin pages is only allowed from the LAN side. If you want to be able to check on the Router Configuration from a remote site then you need to check the WAN and specify the IP address you will be using to access the Routers Configuration Pages. If you are on a dynamically assigned address, say on a 56k modem line which starts with say 203.109.??.?? which is the allocation block your ISP uses to give you your address on the remote machine, adjust the subnet mask to allow anything starting with 203.109. to get access by setting subnet mask to 255.255.0.0. This will allow a match to occur. Most everything else should remain disabled except the Connect PPP when the ADSL link is up box which should be enabled.
If you are having problems you can open the gate by enabling your DMZ host IP.
The ADVANCED Configuration/Firewall section relates to the firewall builtin to protect the router software, and not to the firewall between the external net and your LAN machines. You should never need to fiddle with this.
If you are running Windows then you may have a special Firewall program installed such as Norton, but this is not the default Windows installation.. You need to put pinholes in this firewall as well.
If you are running Linux then it is likely to have a firewall program in operation. Under SuSE this is the default. Access the Yast Network configuration to set pinholes here as well.