ZyXEL P-2602HWLNI User manual

www.zyxel.com

P-2602HWLNI Series

802.11g Wireless ADSL2+ 4-Port VoIP IAD

User’s Guide

Version 3.40

9/2007

Edition 2

DEFAULT LOGIN

IP Address http://192.168.1.1

Administrator Name admin

Administrator Password admin

User Name user

User Password 1234

About This User's Guide

P-2602HWLNI User’s Guide

3

About This User's Guide

Intended Audience

This manual is intended for people who want to configure the ZyXEL Device using the web

configurator. You should have at least a basic knowledge of TCP/IP networking concepts and

topology.

Related Documentation

• Quick Start Guide

The Quick Start Guide is designed to help you get up and running right away. It contains

information on setting up your network and configuring for Internet access.

• Web Configurator Online Help

Embedded web help for descriptions of individual screens and supplementary

information.

" It is recommended you use the web configurator to configure the ZyXEL

Device.

• Supporting Disk

Refer to the included CD for support documents.

• ZyXEL Web Site

Please refer to www.zyxel.com

for additional support documentation and product

certifications.

User Guide Feedback

Help us help you. Send all User Guide-related comments, questions or suggestions for

improvement to the following address, or use e-mail instead. Thank you!

The Technical Writing Team,

ZyXEL Communications Corp.,

6 Innovation Road II,

Science-Based Industrial Park,

Hsinchu, 300, Taiwan.

E-mail: [email protected]

Document Conventions

P-2602HWLNI User’s Guide

4

Document Conventions

Warnings and Notes

These are how warnings and notes are shown in this User’s Guide.

1 Warnings tell you about things that could harm you or your device.

" Notes tell you other important information (for example, other things you may

need to configure or helpful tips) or recommendations.

Syntax Conventions

• The P-2602HWLNI may be referred to as the “ZyXEL Device”, the “device”, the

“system” or the “product” in this User’s Guide.

• Product labels, screen names, field labels and field choices are all in bold font.

• A key stroke is denoted by square brackets and uppercase text, for example, [ENTER]

means the “enter” or “return” key on your keyboard.

• “Enter” means for you to type one or more characters and then press the [ENTER] key.

“Select” or “choose” means for you to use one of the predefined choices.

• A right angle bracket ( > ) within a screen name denotes a mouse click. For example,

Maintenance > Log > Log Setting means you first click Maintenance in the navigation

panel, then the Log sub menu and finally the Log Setting tab to get to that screen.

• Units of measurement may denote the “metric” value or the “scientific” value. For

example, “k” for kilo may denote “1000” or “1024”, “M” for mega may denote “1000000”

or “1048576” and so on.

• “e.g.,” is a shorthand for “for instance”, and “i.e.,” means “that is” or “in other words”.

Document Conventions

P-2602HWLNI User’s Guide

5

Icons Used in Figures

Figures in this User’s Guide may use the following generic icons. The ZyXEL Device icon is

not an exact representation of your device.

ZyXEL Device Computer Notebook computer

Server DSLAM Firewall

Telephone Switch Router

Safety Warnings

P-2602HWLNI User’s Guide

6

Safety Warnings

1 For your safety, be sure to read and follow all warning notices and instructions.

• Do NOT use this product near water, for example, in a wet basement or near a swimming

pool.

• Do NOT expose your device to dampness, dust or corrosive liquids.

• Do NOT store things on the device.

• Do NOT install, use, or service this device during a thunderstorm. There is a remote risk

of electric shock from lightning.

• Connect ONLY suitable accessories to the device.

• Do NOT open the device or unit. Opening or removing covers can expose you to

dangerous high voltage points or other risks. ONLY qualified service personnel should

service or disassemble this device. Please contact your vendor for further information.

• Make sure to connect the cables to the correct ports.

• Place connecting cables carefully so that no one will step on them or stumble over them.

• Always disconnect all cables from this device before servicing or disassembling.

• Use ONLY an appropriate power adaptor or cord for your device.

• Connect the power adaptor or cord to the right supply voltage (for example, 110V AC in

North America or 230V AC in Europe).

• Do NOT allow anything to rest on the power adaptor or cord and do NOT place the

product where anyone can walk on the power adaptor or cord.

• Do NOT use the device if the power adaptor or cord is damaged as it might cause

electrocution.

• If the power adaptor or cord is damaged, remove it from the device and the power source.

• Do NOT attempt to repair the power adaptor or cord. Contact your local vendor to order a

new one.

• Do not use the device outside, and make sure all the connections are indoors. There is a

remote risk of electric shock from lightning.

• Do NOT obstruct the device ventilation slots, as insufficient airflow may harm your

device.

• Use only No. 26 AWG (American Wire Gauge) or larger telecommunication line cord.

• Antenna Warning! This device meets ETSI and FCC certification requirements when

using the included antenna(s). Only use the included antenna(s).

This product is recyclable. Dispose of it properly.

Safety Warnings

P-2602HWLNI User’s Guide

7

Safety Warnings

P-2602HWLNI User’s Guide

8

Contents Overview

P-2602HWLNI User’s Guide

9

Contents Overview

Introduction ............................................................................................................................ 39

Introducing the ZyXEL Device ...................................................................................................41

Introducing the Web Configurator .............................................................................................. 49

Wizards and Status ................................................................................................................ 61

Internet and Wireless Setup Wizard .......................................................................................... 63

VoIP Wizard ............................................................................................................................... 77

Bandwidth Management Wizard ................................................................................................ 83

Status Screens .......................................................................................................................... 87

Network ................................................................................................................................... 99

WAN Setup .............................................................................................................................. 101

LAN Setup ................................................................................................................................117

Wireless LAN ........................................................................................................................... 129

Network Address Translation (NAT) Screens .......................................................................... 155

VoIP .......................................................................................................................................167

Voice ........................................................................................................................................ 169

VoIP Trunking ...........................................................................................................................211

Phone Usage ........................................................................................................................... 227

Security ................................................................................................................................. 231

Firewalls .................................................................................................................................. 233

Firewall Configuration .............................................................................................................. 245

Content Filtering ...................................................................................................................... 265

Introduction to IPSec ............................................................................................................... 269

VPN Screens ........................................................................................................................... 275

Certificates ............................................................................................................................... 301

Advanced .............................................................................................................................. 325

Static Route ............................................................................................................................. 327

Bandwidth Management .......................................................................................................... 331

Dynamic DNS Setup ................................................................................................................ 339

Remote Management Configuration ........................................................................................ 343

Universal Plug-and-Play (UPnP) ............................................................................................. 361

Contents Overview

P-2602HWLNI User’s Guide

10

Maintenance and Troubleshooting ..................................................................................... 373

System ..................................................................................................................................... 375

Call History ............................................................................................................................. 381

Logs ........................................................................................................................................ 387

Troubleshooting ....................................................................................................................... 401

Tools ........................................................................................................................................ 407

Diagnostic ............................................................................................................................... 419

Product Specifications ............................................................................................................. 423

Appendices and Index ......................................................................................................... 433

Table of Contents

P-2602HWLNI User’s Guide

11

Table of Contents

About This User's Guide .......................................................................................................... 3

Document Conventions............................................................................................................4

Safety Warnings........................................................................................................................ 6

Contents Overview ................................................................................................................... 9

Table of Contents.................................................................................................................... 11

List of Figures ......................................................................................................................... 25

List of Tables........................................................................................................................... 33

Part I: Introduction................................................................................. 39

Chapter 1

Introducing the ZyXEL Device............................................................................................... 41

1.1 Overview .............................................................................................................................. 41

1.2 Ways to Manage the ZyXEL Device .................................................................................... 42

1.3 Good Habits for Managing the ZyXEL Device ..................................................................... 42

1.4 Applications for the ZyXEL Device ...................................................................................... 43

1.4.1 Internet Access ..........................................................................................................43

1.4.2 Making Calls via Internet Telephony Service Provider ............................................... 43

1.4.3 Make Peer-to-peer Calls ............................................................................................ 44

1.4.4 Firewall for Secure Broadband Internet Access ......................................................... 44

1.4.5 LAN to LAN Application .............................................................................................. 45

1.5 LEDs .................................................................................................................................... 46

1.6 The RESET Button .............................................................................................................. 47

1.6.1 Using The Reset Button ............................................................................................. 47

Chapter 2

Introducing the Web Configurator ........................................................................................ 49

2.1 Web Configurator Overview ................................................................................................. 49

2.1.1 Accessing the Web Configurator ................................................................................ 49

2.2 Login Types ......................................................................................................................... 50

2.2.1 User Access ............................................................................................................... 50

2.2.2 Administrator Access ................................................................................................. 50

2.3 Web Configurator Main Screen ........................................................................................... 52

Table of Contents

P-2602HWLNI User’s Guide

12

2.3.1 Title Bar ...................................................................................................................... 53

2.3.2 Navigation Panel ........................................................................................................ 53

2.3.3 Main Window ..............................................................................................................59

2.3.4 Status Bar ................................................................................................................... 59

Part II: Wizards and Status.................................................................... 61

Chapter 3

Internet and Wireless Setup Wizard...................................................................................... 63

3.1 Introduction .......................................................................................................................... 63

3.2 Internet Access Wizard Setup ............................................................................................. 63

3.2.1 Manual Configuration ................................................................................................. 66

3.3 Wireless Connection Wizard Setup ..................................................................................... 71

3.3.1 Manually Assign a WPA-PSK Key ............................................................................. 74

3.3.2 Manually Assign a WEP Key ...................................................................................... 74

Chapter 4

VoIP Wizard ............................................................................................................................. 77

4.1 Introduction .......................................................................................................................... 77

4.2 VoIP Wizard Setup .............................................................................................................. 77

Chapter 5

Bandwidth Management Wizard ............................................................................................ 83

5.1 Introduction .......................................................................................................................... 83

5.2 Bandwidth Management Wizard Setup ............................................................................... 83

Chapter 6

Status Screens ........................................................................................................................ 87

6.1 Status Screen ..................................................................................................................... 87

6.2 Any IP Table ........................................................................................................................ 91

6.3 WLAN Status ....................................................................................................................... 92

6.4 Packet Statistics .................................................................................................................. 92

6.5 VoIP Statistics ...................................................................................................................... 94

6.6 LED Status ........................................................................................................................... 96

Part III: Network...................................................................................... 99

Chapter 7

WAN Setup............................................................................................................................. 101

7.1 WAN Overview .................................................................................................................. 101

Table of Contents

P-2602HWLNI User’s Guide

13

7.1.1 Encapsulation ........................................................................................................... 101

7.1.2 Multiplexing .............................................................................................................. 102

7.1.3 VPI and VCI ............................................................................................................. 102

7.1.4 IP Address Assignment ............................................................................................ 102

7.1.5 Nailed-Up Connection (PPP) ................................................................................... 103

7.1.6 NAT .......................................................................................................................... 103

7.2 Metric ................................................................................................................................ 103

7.3 Traffic Shaping ................................................................................................................... 104

7.3.1 ATM Traffic Classes ................................................................................................. 105

7.4 Zero Configuration Internet Access ................................................................................... 105

7.5 Internet Access Setup ...................................................................................................... 106

7.5.1 Advanced Internet Access Setup ............................................................................. 108

7.6 WAN More Connections ................................................................................................... 109

7.7 More Connections Edit .......................................................................................................110

7.8 More Connections Edit Advanced .....................................................................................113

7.9 Traffic Redirect ...................................................................................................................114

7.10 WAN Backup Setup .........................................................................................................114

Chapter 8

LAN Setup.............................................................................................................................. 117

8.1 LAN Overview ....................................................................................................................117

8.1.1 LANs, WANs and the ZyXEL Device .........................................................................117

8.1.2 DHCP Setup ..............................................................................................................118

8.2 DNS Server Addresses ......................................................................................................118

8.3 LAN TCP/IP ........................................................................................................................118

8.3.1 IP Address and Subnet Mask ....................................................................................118

8.3.2 RIP Setup ................................................................................................................. 120

8.3.3 Multicast ................................................................................................................... 120

8.3.4 Any IP ....................................................................................................................... 121

8.4 Configuring LAN IP ............................................................................................................ 122

8.4.1 Configuring Advanced LAN Setup ........................................................................... 123

8.5 DHCP Setup ...................................................................................................................... 124

8.6 LAN Client List ................................................................................................................... 125

8.7 LAN IP Alias ...................................................................................................................... 126

Chapter 9

Wireless LAN......................................................................................................................... 129

9.1 Wireless Network Overview ............................................................................................... 129

9.2 Wireless Security Overview ............................................................................................... 130

9.2.1 SSID ......................................................................................................................... 130

9.2.2 MAC Address Filter .................................................................................................. 130

9.2.3 User Authentication .................................................................................................. 130

9.2.4 Encryption ................................................................................................................ 131

Table of Contents

P-2602HWLNI User’s Guide

14

9.2.5 One-Touch Intelligent Security Technology (OTIST) ................................................ 132

9.3 Wireless Performance Overview ....................................................................................... 132

9.3.1 Quality of Service (QoS) .......................................................................................... 132

9.3.2 Wireless Distribution System (WDS) ........................................................................ 132

9.4 Additional Wireless Terms ................................................................................................. 133

9.5 General WLAN Screen ...................................................................................................... 133

9.5.1 No Security ............................................................................................................... 134

9.5.2 WEP Encryption Screen ........................................................................................... 135

9.5.3 WPA(2)-PSK ............................................................................................................ 136

9.5.4 WPA(2) Authentication Screen ................................................................................. 138

9.5.5 Wireless LAN Advanced Setup ............................................................................... 139

9.6 OTIST Screen .................................................................................................................... 140

9.6.1 Notes on OTIST ....................................................................................................... 143

9.7 MAC Filter ..................................................................................................................... 143

9.8 Association List .................................................................................................................. 145

9.9 QoS Screen ....................................................................................................................... 145

9.9.1 Application Priority Configuration ............................................................................. 147

9.10 WDS Screen .................................................................................................................... 148

9.10.1 Static WEP ............................................................................................................. 149

9.10.2 WPA-PSK ............................................................................................................... 150

9.10.3 WPA2-PSK ............................................................................................................. 152

Chapter 10

Network Address Translation (NAT) Screens.....................................................................155

10.1 NAT General Overview ................................................................................................... 155

10.1.1 NAT Definitions ...................................................................................................... 155

10.1.2 What NAT Does ..................................................................................................... 156

10.1.3 How NAT Works ..................................................................................................... 156

10.1.4 NAT Application ...................................................................................................... 156

10.1.5 NAT Mapping Types ............................................................................................... 157

10.2 SUA (Single User Account) Versus NAT ......................................................................... 158

10.3 NAT General Setup .......................................................................................................... 158

10.4 Port Forwarding ............................................................................................................. 159

10.4.1 Default Server IP Address ...................................................................................... 160

10.4.2 Port Forwarding: Services and Port Numbers ........................................................ 160

10.4.3 Configuring Servers Behind Port Forwarding (Example) ....................................... 160

10.5 Configuring Port Forwarding ............................................................................................ 161

10.5.1 Port Forwarding Rule Edit ..................................................................................... 162

10.6 Address Mapping ............................................................................................................ 163

10.6.1 Address Mapping Rule Edit ................................................................................... 164

Part IV: VoIP.......................................................................................... 167

Table of Contents

P-2602HWLNI User’s Guide

15

Chapter 11

Voice....................................................................................................................................... 169

11.1 Introduction to VoIP .......................................................................................................... 169

11.2 SIP .................................................................................................................................. 169

11.2.1 SIP Identities ..........................................................................................................169

11.2.2 SIP Servers ............................................................................................................ 170

11.2.3 RTP ........................................................................................................................ 173

11.2.4 Pulse Code Modulation .......................................................................................... 173

11.2.5 SIP Call Progression .............................................................................................. 173

11.2.6 SIP Call Progression Through Proxies ................................................................... 173

11.2.7 Voice Coding .......................................................................................................... 175

11.2.8 PSTN Call Setup Signaling .................................................................................... 175

11.2.9 MWI (Message Waiting Indication) ......................................................................... 175

11.2.10 Custom Tones (IVR) ............................................................................................. 176

11.3 Quality of Service (QoS) ..................................................................................................176

11.3.1 Type Of Service (ToS) ............................................................................................ 177

11.3.2 DiffServ ................................................................................................................... 177

11.3.3 VLAN ...................................................................................................................... 177

11.4 SIP Settings Screen ......................................................................................................... 178

11.5 Advanced SIP Setup Screen .......................................................................................... 179

11.6 SIP QoS Screen .............................................................................................................. 182

11.7 Phone .............................................................................................................................. 183

11.7.1 PSTN Line .............................................................................................................. 183

11.7.2 ISDN Line ...............................................................................................................184

11.7.3 Voice Activity Detection/Silence Suppression ........................................................ 184

11.7.4 Comfort Noise Generation ...................................................................................... 184

11.7.5 Echo Cancellation .................................................................................................. 184

11.8 Analog Phone ................................................................................................................. 184

11.8.1 PHONE Port Call Types ......................................................................................... 184

11.8.2 Configuring the Analog Phone Screen ................................................................... 185

11.9 Advanced Analog Phone Setup Screen .......................................................................... 187

11.10 ISDN Phone .................................................................................................................. 189

11.10.1 ISDN Phone Port Call Types ................................................................................ 189

11.10.2 Configuring the ISDN Phone Screen .................................................................... 190

11.11 Common Phone Settings Screen .................................................................................. 191

11.12 Ext. Table ....................................................................................................................... 191

11.13 Advanced Ext. Table Setup Screen ............................................................................... 193

11.14 Phone Services Overview .............................................................................................. 194

11.14.1 The Flash Key ...................................................................................................... 195

11.14.2 Europe Type Supplementary Phone Services ...................................................... 195

11.14.3 USA Type Supplementary Services ..................................................................... 196

11.15 Phone Region Screen ................................................................................................... 198

11.16 Speed Dial .................................................................................................................... 198

Table of Contents

P-2602HWLNI User’s Guide

16

11.17 Incoming Call Policy Screen ......................................................................................... 200

11.18 Distinctive Ring Screen ..................................................................................................202

11.19 SIP Prefix Screen ........................................................................................................... 204

11.20 PSTN Line ..................................................................................................................... 206

11.21 PSTN Line Screen .........................................................................................................206

11.22 ISDN Line Screen .......................................................................................................... 207

11.23 Fixed Line Numbers .......................................................................................................208

11.23.1 Multiple Subscriber Numbers ............................................................................... 208

11.23.2 Receiving Analog Calls With Digital Phones ........................................................ 209

11.23.3 Configuring the Fixed Line Numbers Screen ....................................................... 209

Chapter 12

VoIP Trunking ........................................................................................................................ 211

12.1 VoIP Trunking Overview ..................................................................................................211

12.2 VoIP Trunking and Security ..............................................................................................211

12.2.1 Auto Attendant and Authentication ..........................................................................211

12.2.2 Peer Call Authentication ......................................................................................... 212

12.3 Call Rules ........................................................................................................................ 213

12.4 VoIP Trunking Scenarios ................................................................................................. 213

12.4.1 VoIP Phone To PSTN Phone ................................................................................. 213

12.4.2 PSTN Phone To VoIP Phone ................................................................................. 213

12.4.3 PSTN Phone To PSTN Phone via VoIP ................................................................. 214

12.5 Trunking General Screen ................................................................................................. 214

12.6 Trunking Peer Call Screen ............................................................................................... 215

12.7 Trunking Call Rule Screen ............................................................................................... 217

12.8 VoIP Trunking Example: VoIP to PSTN ........................................................................... 219

12.8.1 Background Information ......................................................................................... 219

12.8.2 Configuration Details: Outgoing ............................................................................. 219

12.8.3 Configuration Details: Incoming ............................................................................. 220

12.8.4 Call Progression ..................................................................................................... 221

12.9 VoIP Trunking Example: PSTN to PSTN via VoIP ........................................................... 221

12.9.1 Background Information ......................................................................................... 222

12.9.2 Configuration Details: Outgoing ............................................................................. 222

12.9.3 Configuration Details: Incoming ............................................................................. 224

12.9.4 Call Progression ..................................................................................................... 224

Chapter 13

Phone Usage ......................................................................................................................... 227

13.1 Dialing a Telephone Number ........................................................................................... 227

13.2 Using Speed Dial to Dial a Telephone Number ............................................................... 227

13.3 Internal Calls .................................................................................................................... 227

13.3.1 Phone Book ............................................................................................................ 228

13.3.2 Call Transfer ...........................................................................................................228

Table of Contents

P-2602HWLNI User’s Guide

17

13.3.3 Call Forwarding ...................................................................................................... 228

13.3.4 Follow Me ...............................................................................................................228

13.3.5 Call Pickup .............................................................................................................229

13.4 Checking the Device’s IP Address ................................................................................... 229

13.5 Auto Firmware Upgrade .................................................................................................. 229

Part V: Security .................................................................................... 231

Chapter 14

Firewalls................................................................................................................................. 233

14.1 Firewall Overview ........................................................................................................... 233

14.2 Types of Firewalls ............................................................................................................ 233

14.2.1 Packet Filtering Firewalls ....................................................................................... 233

14.2.2 Application-level Firewalls ...................................................................................... 234

14.2.3 Stateful Inspection Firewalls .................................................................................. 234

14.3 Introduction to ZyXEL’s Firewall ...................................................................................... 234

14.3.1 Denial of Service Attacks ....................................................................................... 235

14.4 Denial of Service ............................................................................................................. 235

14.4.1 Basics ..................................................................................................................... 235

14.4.2 Types of DoS Attacks ............................................................................................. 236

14.5 Stateful Inspection ........................................................................................................... 238

14.5.1 Stateful Inspection Process .................................................................................... 239

14.5.2 Stateful Inspection on Your ZyXEL Device ............................................................. 240

14.5.3 TCP Security .......................................................................................................... 240

14.5.4 UDP/ICMP Security ................................................................................................ 241

14.5.5 Upper Layer Protocols ........................................................................................... 241

14.6 Guidelines for Enhancing Security with Your Firewall ..................................................... 242

14.6.1 Security In General ................................................................................................ 242

14.7 Packet Filtering Vs Firewall ............................................................................................. 243

14.7.1 Packet Filtering: ..................................................................................................... 243

14.7.2 Firewall ................................................................................................................... 243

Chapter 15

Firewall Configuration ..........................................................................................................245

15.1 Access Methods .............................................................................................................. 245

15.2 General Firewall Policy Overview ................................................................................... 245

15.3 Rule Logic Overview ....................................................................................................... 246

15.3.1 Rule Checklist ........................................................................................................ 246

15.3.2 Security Ramifications ............................................................................................ 246

15.3.3 Key Fields For Configuring Rules .......................................................................... 247

15.4 Connection Direction ....................................................................................................... 247

Table of Contents

P-2602HWLNI User’s Guide

18

15.4.1 LAN to WAN Rules ................................................................................................. 248

15.4.2 Alerts ...................................................................................................................... 248

15.5 General Firewall Policy ................................................................................................... 248

15.6 Firewall Rules Summary ................................................................................................. 249

15.6.1 Configuring Firewall Rules ................................................................................... 251

15.6.2 Customized Services ............................................................................................ 254

15.6.3 Configuring a Customized Service ....................................................................... 254

15.7 Example Firewall Rule .....................................................................................................255

15.8 DoS Thresholds .............................................................................................................. 259

15.8.1 Threshold Values ................................................................................................... 259

15.8.2 Half-Open Sessions ............................................................................................... 260

15.8.3 Configuring Firewall Thresholds ............................................................................. 260

15.9 Firewall Commands .........................................................................................................262

Chapter 16

Content Filtering ................................................................................................................... 265

16.1 Content Filtering Overview ............................................................................................. 265

16.2 Configuring Keyword Blocking ........................................................................................ 265

16.3 Configuring the Schedule .............................................................................................. 266

16.4 Configuring Trusted Computers ..................................................................................... 267

Chapter 17

Introduction to IPSec............................................................................................................ 269

17.1 VPN Overview ............................................................................................................... 269

17.1.1 IPSec ...................................................................................................................... 269

17.1.2 Security Association ............................................................................................... 269

17.1.3 Other Terminology .................................................................................................. 269

17.1.4 VPN Applications ................................................................................................... 270

17.2 IPSec Architecture ........................................................................................................... 270

17.2.1 IPSec Algorithms .................................................................................................... 271

17.2.2 Key Management ................................................................................................... 271

17.3 Encapsulation .................................................................................................................. 271

17.3.1 Transport Mode ...................................................................................................... 272

17.3.2 Tunnel Mode ......................................................................................................... 272

17.4 IPSec and NAT ................................................................................................................ 272

Chapter 18

VPN Screens.......................................................................................................................... 275

18.1 VPN/IPSec Overview ....................................................................................................... 275

18.2 IPSec Algorithms ............................................................................................................. 275

18.2.1 AH (Authentication Header) Protocol ..................................................................... 275

18.2.2 ESP (Encapsulating Security Payload) Protocol .................................................... 275

18.3 My IP Address ................................................................................................................. 276

Table of Contents

P-2602HWLNI User’s Guide

19

18.4 Secure Gateway Address ................................................................................................ 276

18.4.1 Dynamic Secure Gateway Address ....................................................................... 277

18.5 VPN Setup Screen ..........................................................................................................277

18.6 Keep Alive ....................................................................................................................... 279

18.7 VPN, NAT, and NAT Traversal ......................................................................................... 279

18.8 Remote DNS Server ........................................................................................................ 280

18.9 ID Type and Content ........................................................................................................ 281

18.9.1 ID Type and Content Examples ............................................................................. 282

18.10 Pre-Shared Key ............................................................................................................. 283

18.11 Editing VPN Policies ..................................................................................................... 283

18.12 IKE Phases ................................................................................................................... 288

18.12.1 Negotiation Mode ................................................................................................. 289

18.12.2 Diffie-Hellman (DH) Key Groups .......................................................................... 289

18.12.3 Perfect Forward Secrecy (PFS) .......................................................................... 289

18.13 Configuring Advanced IKE Settings ............................................................................. 289

18.14 Manual Key Setup .........................................................................................................292

18.14.1 Security Parameter Index (SPI) .......................................................................... 292

18.15 Configuring Manual Key ............................................................................................... 292

18.16 Viewing SA Monitor ......................................................................................................295

18.17 Configuring Global Setting ............................................................................................ 297

18.18 Telecommuter VPN/IPSec Examples ............................................................................ 297

18.18.1 Telecommuters Sharing One VPN Rule Example ................................................ 297

18.18.2 Telecommuters Using Unique VPN Rules Example ............................................. 298

18.19 VPN and Remote Management ..................................................................................... 300

Chapter 19

Certificates ............................................................................................................................ 301

19.1 Certificates Overview ...................................................................................................... 301

19.1.1 Advantages of Certificates ..................................................................................... 302

19.2 Self-signed Certificates .................................................................................................... 302

19.3 Configuration Summary ................................................................................................... 302

19.4 My Certificates ................................................................................................................. 303

19.5 My Certificate Import ...................................................................................................... 304

19.5.1 Certificate File Formats .......................................................................................... 305

19.6 My Certificate Create ...................................................................................................... 306

19.7 My Certificate Details ...................................................................................................... 308

19.8 Trusted CAs ....................................................................................................................311

19.9 Trusted CA Import ......................................................................................................... 313

19.10 Trusted CA Details ......................................................................................................... 314

19.11 Trusted Remote Hosts ................................................................................................. 316

19.12 Verifying a Trusted Remote Host’s Certificate ............................................................... 318

19.12.1 Trusted Remote Host Certificate Fingerprints ...................................................... 318

19.13 Trusted Remote Hosts Import ...................................................................................... 319

Table of Contents

P-2602HWLNI User’s Guide

20

19.14 Trusted Remote Host Certificate Details ..................................................................... 319

19.15 Directory Servers ........................................................................................................... 322

19.16 Directory Server Add and Edit ...................................................................................... 323

Part VI: Advanced ................................................................................ 325

Chapter 20

Static Route ........................................................................................................................... 327

20.1 Static Route .................................................................................................................... 327

20.2 Configuring Static Route ..................................................................................................327

20.2.1 Static Route Edit ................................................................................................... 328

Chapter 21

Bandwidth Management....................................................................................................... 331

21.1 Bandwidth Management Overview ................................................................................. 331

21.2 Application-based Bandwidth Management .................................................................... 331

21.3 Auto Classifier ................................................................................................................. 331

21.4 Subnet-based Bandwidth Management .......................................................................... 332

21.5 Application and Subnet-based Bandwidth Management ................................................. 333

21.5.1 Bandwidth Management Priorities ......................................................................... 333

21.6 Configuring Bandwidth Management (General) .............................................................. 333

21.7 Bandwidth Management Rule Setup ............................................................................. 334

21.7.1 Rule Configuration ................................................................................................. 335

21.8 Bandwidth Monitor ......................................................................................................... 337

Chapter 22

Dynamic DNS Setup ............................................................................................................. 339

22.1 Dynamic DNS Overview ................................................................................................ 339

22.1.1 DYNDNS Wildcard ................................................................................................. 339

22.2 Configuring Dynamic DNS ............................................................................................... 339

Chapter 23

Remote Management Configuration ................................................................................... 343

23.1 Remote Management Overview ..................................................................................... 343

23.1.1 Remote Management Limitations .......................................................................... 344

23.1.2 Remote Management and NAT .............................................................................. 344

23.1.3 System Timeout .................................................................................................... 344

23.2 Introduction to HTTPS .....................................................................................................345

23.3 HTTP ............................................................................................................................... 346

23.4 Telnet ............................................................................................................................... 347

23.5 Configuring Telnet ............................................................................................................ 347

Page is loading ...

ZyXEL P-2602HWLNI User manual

ZyXEL P-2602HWLNI User manual

Related papers

Other documents