ZyXEL Communications P-334W User manual

Prestige 334W

802.11g Wireless Broadband Router with Firewall

User’s Guide

Version 3.60

May 2004

Prestige 334W User’s Guide

ii Copyright

Copyright

The contents of this publication may not be reproduced in any part or as a whole, transcribed, stored in a

retrieval system, translated into any language, or transmitted in any form or by any means, electronic,

mechanical, magnetic, optical, chemical, photocopying, manual, or otherwise, without the prior written

permission of ZyXEL Communications Corporation.

Disclaimer

ZyXEL does not assume any liability arising out of the application or use of any products, or software

described herein. Neither does it convey any license under its patent rights nor the patent rights of others.

ZyXEL further reserves the right to make changes in any products described herein without notice.

This publication is subject to change without notice.

Trademarks

Trademarks mentioned in this publication are used for identification purposes only and may be properties of

their respective owners.

Prestige 334W User’s Guide

FCC iii

Federal Communications Commission (FCC)

Interference Statement

This device complies with Part 15 of FCC rules. Operation is subject to the following two conditions:

This device may not cause harmful interference.

This device must accept any interference received, including interference that may cause undesired

operations.

This equipment has been tested and found to comply with the limits for a CLASS B digital device pursuant to

Part 15 of the FCC Rules. These limits are designed to provide reasonable protection against harmful

interference in a commercial environment. This equipment generates, uses, and can radiate radio frequency

energy, and if not installed and used in accordance with the instructions, may cause harmful interference to

radio communications.

If this equipment does cause harmful interference to radio/television reception, which can be determined by

turning the equipment off and on, the user is encouraged to try to correct the interference by one or more of

the following measures:

Reorient or relocate the receiving antenna.

Increase the separation between the equipment and the receiver.

Connect the equipment into an outlet on a circuit different from that to which the receiver is connected.

Consult the dealer or an experienced radio/TV technician for help.

Notice 1

Changes or modifications not expressly approved by the party responsible for compliance could void the

user's authority to operate the equipment.

This product has been designed for the WLAN 2.4Ghz network throughout the EC region and Switzerland,

with restrictions in France !

Certifications

1. Go to www.zyxel.com.

2. Select your product from the drop-down list box on the ZyXEL home page to go to that product's page.

3. Select the certification you wish to view from this page.

Prestige 334W User’s Guide

iv Information for Canadian Users

Information for Canadian Users

The Industry Canada label identifies certified equipment. This certification means that the equipment meets

certain telecommunications network protective, operation, and safety requirements. The Industry Canada

does not guarantee that the equipment will operate to a user's satisfaction.

Before installing this equipment, users should ensure that it is permissible to be connected to the facilities of

the local telecommunications company. The equipment must also be installed using an acceptable method of

connection. In some cases, the company's inside wiring associated with a single line individual service may

be extended by means of a certified connector assembly. The customer should be aware that the compliance

with the above conditions may not prevent degradation of service in some situations.

Repairs to certified equipment should be made by an authorized Canadian maintenance facility designated by

the supplier. Any repairs or alterations made by the user to this equipment, or equipment malfunctions, may

give the telecommunications company cause to request the user to disconnect the equipment.

For their own protection, users should ensure that the electrical ground connections of the power utility,

telephone lines, and internal metallic water pipe system, if present, are connected together. This precaution

may be particularly important in rural areas.

Caution

Users should not attempt to make such connections themselves, but should contact the appropriate electrical

inspection authority, or electrician, as appropriate.

Note

This digital apparatus does not exceed the class A limits for radio noise emissions from digital apparatus set

out in the radio interference regulations of Industry Canada.

Prestige 334W User’s Guide

Warranty v

ZyXEL Limited Warranty

ZyXEL warrants to the original end user (purchaser) that this product is free from any defects in materials or

workmanship for a period of up to two years from the date of purchase. During the warranty period, and upon

proof of purchase, should the product have indications of failure due to faulty workmanship and/or materials,

ZyXEL will, at its discretion, repair or replace the defective products or components without charge for

either parts or labor, and to whatever extent it shall deem necessary to restore the product or components to

proper operating condition. Any replacement will consist of a new or re-manufactured functionally

equivalent product of equal value, and will be solely at the discretion of ZyXEL. This warranty shall not

apply if the product is modified, misused, tampered with, damaged by an act of God, or subjected to

abnormal working conditions.

NOTE

Repair or replacement, as provided under this warranty, is the exclusive remedy of the purchaser. This

warranty is in lieu of all other warranties, express or implied, including any implied warranty of

merchantability or fitness for a particular use or purpose. ZyXEL shall in no event be held liable for indirect

or consequential damages of any kind of character to the purchaser.

To obtain the services of this warranty, contact ZyXEL's Service Center for your Return Material

Authorization number (RMA). Products must be returned Postage Prepaid. It is recommended that the unit be

insured when shipped. Any returned products without proof of purchase or those with an out-dated warranty

will be repaired or replaced (at the discretion of ZyXEL) and the customer will be billed for parts and labor.

All repaired or replaced products will be shipped by ZyXEL to the corresponding return address, Postage

Paid. This warranty gives you specific legal rights, and you may also have other rights that vary from country

to country.

Online Registration

Register your product online at www.zyxel.com for global products, or at

www.us.zyxel.com for North American products.

Prestige 334W User’s Guide

vi Customer Support

Customer Support

When you contact your customer support representative please have the following information ready:

Please have the following information ready when you contact customer support.

• Product model and serial number.

• Warranty Information.

• Date that you received your device.

• Brief description of the problem and the steps you took to solve it.

SUPPORT E-MAIL TELEPHONE1 WEB SITE METHOD

LOCATION

SALES E-MAIL FAX1 FTP SITE

REGULAR MAIL

[email protected]m.tw +886-3-578-3942 www.zyxel.com

www.europe.zyxel.com

ftp.zyxel.com

WORLDWIDE

sales@zyxel.com.tw +886-3-578-2439 ftp.europe.zyxel.com

ZyXEL Communications Corp.

6 Innovation Road II

Science Park

Hsinchu 300

Taiwan

[email protected]m +1-800-255-4101

+1-714-632-0882

www.us.zyxel.com NORTH

AMERICA

sales@zyxel.com +1-714-632-0858 ftp.us.zyxel.com

ZyXEL Communications Inc.

1130 N. Miller St.

Anaheim

CA 92806-2001

U.S.A.

[email protected] +49-2405-6909-0 www.zyxel.de GERMANY

sales@zyxel.de +49-2405-6909-99

ZyXEL Deutschland GmbH.

Adenauerstr. 20/A2 D-52146

Wuerselen

Germany

+33 (0)4 72 52 97 97 FRANCE [email protected]

+33 (0)4 72 52 19 20

www.zyxel.fr ZyXEL France

1 rue des Vergers

Bat. 1 / C

69760 Limonest

France

[email protected] +34 902 195 420 SPAIN

sales@zyxel.es +34 913 005 345

www.zyxel.es ZyXEL Communications

Alejandro Villegas 33

1º, 28043 Madrid

Spain

[email protected] +45 39 55 07 00 www.zyxel.dk DENMARK

sales@zyxel.dk +45 39 55 07 07

ZyXEL Communications A/S

Columbusvej 5

2860 Soeborg

Denmark

[email protected] +47 22 80 61 80 www.zyxel.no NORWAY

sales@zyxel.no +47 22 80 61 81

ZyXEL Communications A/S

Nils Hansens vei 13

0667 Oslo

Norway

1 “+” is the (prefix) number you enter to make an international telephone call.

Prestige 334W User’s Guide

Customer Support vii

SUPPORT E-MAIL TELEPHONE1 WEB SITE METHOD

LOCATION

SALES E-MAIL FAX1 FTP SITE

REGULAR MAIL

[email protected] +46 31 744 7700 www.zyxel.se SWEDEN

sales@zyxel.se +46 31 744 7701

ZyXEL Communications A/S

Sjöporten 4, 41764 Göteborg

Sweden

[email protected] +358-9-4780-8411 www.zyxel.fi FINLAND

sales@zyxel.fi +358-9-4780 8448

ZyXEL Communications Oy

Malminkaari 10

00700 Helsinki

Finland

Prestige 334W User’s Guide

Table of Contents ix

Table of Contents

Copyright......................................................................................................................................................ii

Federal Communications Commission (FCC) Interference Statement................................................. iii

Information for Canadian Users ...............................................................................................................iv

ZyXEL Limited Warranty ..........................................................................................................................v

Customer Support ......................................................................................................................................vi

List of Figures ...........................................................................................................................................xxi

List of Tables ..........................................................................................................................................xxvii

Preface .....................................................................................................................................................xxxi

Getting Started ................................................................................................................................................. I

Chapter 1 Getting to Know Your Prestige ................................................................................................. 1-1

1.1 Prestige Internet Security Gateway Overview........................................................................... 1-1

1.2 Prestige Features .......................................................................................................................... 1-1

1.2.1 Physical Features.................................................................................................................... 1-1

1.2.2 Non-Physical Features............................................................................................................ 1-2

1.3 Applications for the Prestige ....................................................................................................... 1-5

1.3.1 Secure Broadband Internet Access via Cable or DSL Modem............................................... 1-6

1.3.2 VPN Application.................................................................................................................... 1-6

1.3.3 Internet Access Application ................................................................................................... 1-7

Chapter 2 Introducing the Web Configurator........................................................................................... 2-1

2.1 Web Configurator Overview .......................................................................................................2-1

2.2 Accessing the Prestige Web Configurator.................................................................................. 2-1

2.3 Resetting the Prestige................................................................................................................... 2-2

2.3.1 Procedure To Use The Reset Button ...................................................................................... 2-2

2.3.2 Navigation Panel .................................................................................................................... 2-3

Chapter 3 Wizard Setup .............................................................................................................................. 3-1

3.1 Wizard Setup Overview............................................................................................................... 3-1

3.2 Wizard Setup: General Setup and System Name...................................................................... 3-1

3.2.1 Domain Name ........................................................................................................................ 3-1

3.3 Wizard Setup: Screen 2 ............................................................................................................... 3-2

3.4 Wizard Setup: Screen 3 ............................................................................................................... 3-3

3.5 Wizard Setup: Screen 4 ............................................................................................................... 3-5

3.5.1 Ethernet .................................................................................................................................. 3-5

3.5.2 PPPoE Encapsulation.............................................................................................................3-7

3.5.3 PPTP Encapsulation ............................................................................................................... 3-9

3.6 Wizard Setup: Screen 5 ............................................................................................................. 3-10

3.6.1 WAN IP Address Assignment.............................................................................................. 3-10

3.6.2 IP Address and Subnet Mask ............................................................................................... 3-11

3.6.3 DNS Server Address Assignment ........................................................................................ 3-11

Prestige 334W User’s Guide

x Table of Contents

3.6.4 WAN MAC Address.............................................................................................................3-12

3.7 Basic Setup Complete .................................................................................................................3-14

Chapter 4 Media Bandwidth Management Setup......................................................................................4-1

4.1 Media Bandwidth Management Setup Overview ......................................................................4-1

4.2 Media Bandwidth Management Setup 1.....................................................................................4-1

4.3 Media Bandwidth Management Setup 2.....................................................................................4-2

4.4 Media Bandwidth Management Setup 3: ...................................................................................4-3

4.5 Media Bandwidth Management Setup Complete ......................................................................4-4

System, LAN, WLAN and WAN.................................................................................................................... II

Chapter 5 System Screens ............................................................................................................................5-1

5.1 System Overview...........................................................................................................................5-1

5.2 Configuring General Setup ..........................................................................................................5-1

5.3 Dynamic DNS ................................................................................................................................5-3

5.3.1 DynDNS Wildcard..................................................................................................................5-3

5.4 Configuring Dynamic DNS ..........................................................................................................5-3

5.5 Configuring Password ..................................................................................................................5-5

5.6 Configuring Time Zone ................................................................................................................5-6

Chapter 6 LAN Screens................................................................................................................................6-1

6.1 LAN Overview...............................................................................................................................6-1

6.2 DHCP Setup ..................................................................................................................................6-1

6.2.1 IP Pool Setup ..........................................................................................................................6-1

6.2.2 System DNS Servers...............................................................................................................6-1

6.3 LAN TCP/IP..................................................................................................................................6-1

6.3.1 Factory LAN Defaults.............................................................................................................6-1

6.3.2 IP Address and Subnet Mask ..................................................................................................6-2

6.3.3 RIP Setup ................................................................................................................................6-2

6.3.4 Multicast .................................................................................................................................6-2

6.4 Any IP ............................................................................................................................................6-3

6.4.1 How Any IP Works.................................................................................................................6-4

6.5 Configuring IP...............................................................................................................................6-4

6.6 Configuring Static DHCP.............................................................................................................6-8

6.7 Configuring IP Alias .....................................................................................................................6-9

Chapter 7 Wireless Configuration and Roaming.......................................................................................7-1

7.1 Wireless LAN Overview ...............................................................................................................7-1

7.1.1 IBSS........................................................................................................................................7-1

7.1.2 BSS .........................................................................................................................................7-1

7.1.3 ESS .........................................................................................................................................7-2

7.2 Wireless LAN Basics.....................................................................................................................7-3

7.2.1 RTS/CTS.................................................................................................................................7-3

7.2.2 Fragmentation Threshold........................................................................................................7-4

7.3 Configuring Wireless ....................................................................................................................7-5

Prestige 334W User’s Guide

Table of Contents xi

7.4 Configuring Roaming .................................................................................................................. 7-6

7.4.1 Requirements for Roaming .................................................................................................... 7-8

Chapter 8 Wireless Security........................................................................................................................ 8-1

8.1 Wireless Security Overview......................................................................................................... 8-1

8.2 Security Parameters Summary................................................................................................... 8-3

8.3 WEP Overview ............................................................................................................................. 8-4

8.3.1 Data Encryption ..................................................................................................................... 8-4

8.3.2 Authentication........................................................................................................................ 8-4

8.3.3 Preamble Type ....................................................................................................................... 8-6

8.4 Configuring WEP Encryption..................................................................................................... 8-6

8.5 Introduction to WPA.................................................................................................................... 8-8

8.5.1 User Authentication ............................................................................................................... 8-9

8.5.2 Encryption.............................................................................................................................. 8-9

8.5.3 WPA-PSK Application Example ........................................................................................... 8-9

8.6 Configuring WPA-PSK Authentication.................................................................................... 8-10

8.7 Wireless Client WPA Supplicants ............................................................................................. 8-13

8.7.1 WPA with RADIUS Application Example .......................................................................... 8-13

8.8 Configuring WPA Authentication ............................................................................................. 8-14

8.9 802.1x Overview ......................................................................................................................... 8-16

8.10 Dynamic WEP Key Exchange ............................................................................................... 8-17

8.11 Configuring 802.1x and Dynamic WEP Key Exchange .......................................................... 8-17

8.12 Configuring 802.1x and Static WEP Key Exchange............................................................ 8-19

8.13 Configuring 802.1x................................................................................................................. 8-23

8.14 MAC Filter.............................................................................................................................. 8-25

8.15 Introduction to Local User Database.................................................................................... 8-27

8.16 Configuring Local User Database......................................................................................... 8-28

8.17 Introduction to RADIUS ....................................................................................................... 8-29

8.17.1 EAP Authentication Overview............................................................................................. 8-30

8.18 Configuring RADIUS............................................................................................................. 8-31

Chapter 9 WAN Screens .............................................................................................................................. 9-1

9.1 WAN Overview............................................................................................................................. 9-1

9.2 TCP/IP Priority (Metric) ............................................................................................................. 9-1

9.3 Configuring Route........................................................................................................................ 9-1

9.4 Configuring WAN ISP ................................................................................................................. 9-2

9.4.1 Ethernet Encapsulation........................................................................................................... 9-2

9.4.2 PPPoE Encapsulation.............................................................................................................9-4

9.4.3 PPTP Encapsulation ............................................................................................................... 9-6

9.5 Configuring WAN IP.................................................................................................................... 9-7

9.6 Configuring WAN MAC .............................................................................................................9-11

9.7 Traffic Redirect .......................................................................................................................... 9-12

9.8 Configuring Traffic Redirect..................................................................................................... 9-13

Prestige 334W User’s Guide

xii Table of Contents

SUA/NAT and Static Route .......................................................................................................................... III

Chapter 10 Network Address Translation (NAT) Screens.......................................................................10-1

10.1 NAT Overview.........................................................................................................................10-1

10.1.1 NAT Definitions ...................................................................................................................10-1

10.1.2 What NAT Does ...................................................................................................................10-2

10.1.3 How NAT Works..................................................................................................................10-2

10.1.4 NAT Application ..................................................................................................................10-3

10.1.5 NAT Mapping Types ............................................................................................................10-4

10.2 Using NAT ...............................................................................................................................10-6

10.2.1 SUA (Single User Account) Versus NAT ............................................................................10-6

10.3 SUA Server ..............................................................................................................................10-6

10.3.1 Port Forwarding: Services and Port Numbers.......................................................................10-6

10.3.2 Configuring Servers Behind SUA (Example).......................................................................10-7

10.4 Configuring SUA Server.........................................................................................................10-8

10.5 Configuring Address Mapping.............................................................................................10-10

10.6 Trigger Port Forwarding......................................................................................................10-13

10.6.1 Trigger Port Forwarding Example ......................................................................................10-14

10.6.2 Two Points To Remember About Trigger Ports .................................................................10-14

10.7 Configuring Trigger Port Forwarding ................................................................................10-14

Chapter 11 Static Route Screens................................................................................................................ 11-1

11.1 Static Route Overview ................................................................................................................ 11-1

11.2 Configuring IP Static Route ....................................................................................................... 11-1

11.2.1 Configuring Route Entry.......................................................................................................11-2

UPnP and Firewall.........................................................................................................................................IV

Chapter 12 UPnP ........................................................................................................................................12-1

12.1 Universal Plug and Play Overview ........................................................................................12-1

12.1.1 How Do I Know If I'm Using UPnP? ...................................................................................12-1

12.1.2 NAT Traversal ......................................................................................................................12-1

12.1.3 Cautions with UPnP..............................................................................................................12-2

12.2 UPnP and ZyXEL ...................................................................................................................12-2

12.3 Configuring UPnP...................................................................................................................12-2

12.4 Installing UPnP in Windows Example ..................................................................................12-4

12.4.1 Installing UPnP in Windows Me ..........................................................................................12-4

12.4.2 Installing UPnP in Windows XP...........................................................................................12-4

12.5 Using UPnP in Windows XP Example...................................................................................12-6

12.5.1 Auto-discover Your UPnP-enabled Network Device ...........................................................12-6

12.5.2 Web Configurator Easy Access ............................................................................................12-8

Chapter 13 Firewall ....................................................................................................................................13-1

13.1 Introduction.............................................................................................................................13-1

13.1.1 Guidelines For Enhancing Security With Your Firewall ......................................................13-2

13.2 Firewall Settings Screen .........................................................................................................13-3

Prestige 334W User’s Guide

Table of Contents xiii

13.3 The Firewall, NAT and Remote Management ..................................................................... 13-5

13.3.1 LAN-to-WAN rules ............................................................................................................. 13-5

13.3.2 WAN-to-LAN rules ............................................................................................................. 13-5

13.4 Configuring Content Filtering .............................................................................................. 13-6

13.5 Services.................................................................................................................................... 13-8

Remote Management and VPN/IPSec...........................................................................................................V

Chapter 14 Remote Management Screens ............................................................................................... 14-1

14.1 Remote Management Overview ............................................................................................ 14-1

14.1.1 Remote Management Limitations ........................................................................................ 14-2

14.1.2 Remote Management and NAT............................................................................................ 14-2

14.1.3 System Timeout ................................................................................................................... 14-2

14.2 Configuring WWW ................................................................................................................ 14-2

14.3 Configuring Telnet ................................................................................................................. 14-4

14.4 Configuring TELNET............................................................................................................ 14-4

14.5 Configuring FTP .................................................................................................................... 14-6

14.6 SNMP ...................................................................................................................................... 14-7

14.6.1 Supported MIBs ................................................................................................................... 14-9

14.6.2 SNMP Traps......................................................................................................................... 14-9

14.6.3 Configuring SNMP ............................................................................................................ 14-10

14.7 Configuring DNS...................................................................................................................14-11

14.8 Configuring Security............................................................................................................14-13

Chapter 15 Introduction to IPSec............................................................................................................. 15-1

15.1 VPN Overview ........................................................................................................................ 15-1

15.1.1 IPSec .................................................................................................................................... 15-1

15.1.2 Security Association............................................................................................................. 15-1

15.1.3 Other Terminology...............................................................................................................15-1

15.1.4 VPN Applications ................................................................................................................15-2

15.2 IPSec Architecture.................................................................................................................. 15-3

15.2.1 IPSec Algorithms ................................................................................................................. 15-3

15.2.2 Key Management ................................................................................................................. 15-4

15.3 Encapsulation ......................................................................................................................... 15-4

15.3.1 Transport Mode.................................................................................................................... 15-4

15.3.2 Tunnel Mode ........................................................................................................................ 15-4

15.4 IPSec and NAT ....................................................................................................................... 15-5

Chapter 16 VPN Screens ........................................................................................................................... 16-1

16.1 VPN/IPSec Overview ............................................................................................................. 16-1

16.2 IPSec Algorithms.................................................................................................................... 16-1

16.2.1 AH (Authentication Header) Protocol.................................................................................. 16-1

16.2.2 ESP (Encapsulating Security Payload) Protocol .................................................................. 16-2

16.3 My IP Address ........................................................................................................................ 16-2

16.4 Secure Gateway Address........................................................................................................ 16-2

Prestige 334W User’s Guide

xiv Table of Contents

16.4.1 Dynamic Secure Gateway Address.......................................................................................16-3

16.5 Summary Screen .....................................................................................................................16-3

16.6 Keep Alive................................................................................................................................16-5

16.7 NAT Traversal .........................................................................................................................16-6

16.7.1 NAT Traversal Configuration...............................................................................................16-6

16.7.2 Remote DNS Server..............................................................................................................16-7

16.8 ID Type and Content...............................................................................................................16-8

16.8.1 ID Type and Content Examples ............................................................................................16-9

16.9 Pre-Shared Key .....................................................................................................................16-10

16.10 Editing VPN Rules ................................................................................................................16-10

16.11 IKE Phases.............................................................................................................................16-15

16.11.1 Negotiation Mode ...........................................................................................................16-17

16.11.2 Diffie-Hellman (DH) Key Groups ..................................................................................16-17

16.11.3 Perfect Forward Secrecy (PFS).......................................................................................16-18

16.12 Configuring Advanced IKE Settings...................................................................................16-18

16.13 Manual Key Setup ................................................................................................................16-25

16.13.1 Security Parameter Index (SPI).......................................................................................16-25

16.14 Configuring Manual Key .....................................................................................................16-26

16.15 Viewing SA Monitor..............................................................................................................16-30

16.16 Configuring Global Setting ..................................................................................................16-32

16.17 Telecommuter VPN/IPSec Examples...................................................................................16-33

16.17.1 Telecommuters Sharing One VPN Rule Example ..........................................................16-33

16.17.2 Telecommuters Using Unique VPN Rules Example ......................................................16-34

16.18 VPN and Remote Management ...........................................................................................16-36

Logs, Media Bandwidth Management and Maintenance...........................................................................VI

Chapter 17 Centralized Logs .....................................................................................................................17-1

17.1 View Log ..................................................................................................................................17-1

17.2 Log Settings .............................................................................................................................17-2

Chapter 18 Media Bandwidth Management ............................................................................................18-1

18.1 Bandwidth Management Overview.......................................................................................18-1

18.1.1 Application-based Bandwidth Management Example..........................................................18-1

18.1.2 Subnet-based Bandwidth Management Example..................................................................18-2

18.1.3 Application and Subnet-based Bandwidth Management Example .......................................18-2

18.1.4 Bandwidth Usage Example...................................................................................................18-3

18.1.5 Bandwidth Management Priorities........................................................................................18-4

18.1.6 Bandwidth Management Services.........................................................................................18-5

18.1.7 Services.................................................................................................................................18-6

18.2 Configuration Screen..............................................................................................................18-8

18.3 Editing Bandwidth Management Rules .............................................................................. 18-11

18.3.1 Bandwidth Borrowing.........................................................................................................18-11

18.4 Configuring Bandwidth Management Rules and Services................................................ 18-11

Prestige 334W User’s Guide

Table of Contents xv

18.5 Monitor Screen ..................................................................................................................... 18-13

Chapter 19 Maintenance ........................................................................................................................... 19-1

19.1 Maintenance Overview .......................................................................................................... 19-1

19.2 Status Screen........................................................................................................................... 19-1

19.2.1 System Statistics................................................................................................................... 19-2

19.3 DHCP Table Screen................................................................................................................ 19-4

19.4 Any IP Table ........................................................................................................................... 19-5

19.5 Association List....................................................................................................................... 19-5

19.6 F/W Upload Screen ................................................................................................................ 19-6

19.7 Configuration Screen ............................................................................................................. 19-8

19.7.1 Backup Configuration .......................................................................................................... 19-9

19.7.2 Restore Configuration .......................................................................................................... 19-9

19.7.3 Back to Factory Defaults.................................................................................................... 19-11

19.8 Restart Screen........................................................................................................................19-11

SMT General Configuration .......................................................................................................................VII

Chapter 20 Introducing the SMT ............................................................................................................. 20-1

20.1 SMT Introduction .................................................................................................................. 20-1

20.1.1 Procedure for SMT Configuration via Console Port............................................................ 20-1

20.1.2 Procedure for SMT Configuration via Telnet ...................................................................... 20-1

20.1.3 Entering Password................................................................................................................ 20-1

20.1.4 Prestige SMT Menu Overview............................................................................................. 20-2

20.2 Navigating the SMT Interface............................................................................................... 20-3

20.2.1 System Management Terminal Interface Summary ............................................................. 20-5

20.3 Changing the System Password ............................................................................................ 20-6

Chapter 21 Menu 1 General Setup ........................................................................................................... 21-1

21.1 General Setup ......................................................................................................................... 21-1

21.2 Procedure To Configure Menu 1........................................................................................... 21-1

21.2.1 Procedure to Configure Dynamic DNS................................................................................ 21-3

Chapter 22 Menu 2 WAN Setup................................................................................................................ 22-1

22.1 Introduction to WAN.............................................................................................................. 22-1

22.2 WAN Setup.............................................................................................................................. 22-1

Chapter 23 Menu 3 LAN Setup ................................................................................................................ 23-1

23.1 LAN Setup .............................................................................................................................. 23-1

23.1.1 General Ethernet Setup......................................................................................................... 23-1

23.2 Protocol Dependent Ethernet Setup ..................................................................................... 23-2

23.3 TCP/IP Ethernet Setup and DHCP ...................................................................................... 23-2

23.3.1 IP Alias Setup....................................................................................................................... 23-4

23.4 Wireless LAN Setup ............................................................................................................... 23-6

23.4.1 Configuring MAC Address Filter......................................................................................... 23-9

23.4.2 Configuring Roaming on the Prestige ................................................................................ 23-11

Chapter 24 Internet Access ....................................................................................................................... 24-1

Prestige 334W User’s Guide

xvi Table of Contents

24.1 Introduction to Internet Access Setup...................................................................................24-1

24.2 Ethernet Encapsulation..........................................................................................................24-1

24.3 Configuring the PPTP Client .................................................................................................24-3

24.4 Configuring the PPPoE Client ...............................................................................................24-4

24.5 Basic Setup Complete .............................................................................................................24-5

Chapter 25 Remote Node Configuration ..................................................................................................25-1

25.1 Introduction to Remote Node Setup......................................................................................25-1

25.2 Remote Node Profile Setup ....................................................................................................25-1

25.2.1 Ethernet Encapsulation .........................................................................................................25-1

25.2.2 PPPoE Encapsulation............................................................................................................25-4

25.2.3 PPTP Encapsulation..............................................................................................................25-6

25.3 Edit IP......................................................................................................................................25-7

25.4 Remote Node Filter.................................................................................................................25-9

25.4.1 Traffic Redirect Setup.........................................................................................................25-10

Chapter 26 Static Route Setup...................................................................................................................26-1

26.1 IP Static Route Setup ..............................................................................................................26-1

Chapter 27 Dial-in User Setup...................................................................................................................27-1

27.1 Dial-in User Setup ...................................................................................................................27-1

Chapter 28 Network Address Translation (NAT).....................................................................................28-1

28.1 Using NAT ...............................................................................................................................28-1

28.1.1 SUA (Single User Account) Versus NAT ............................................................................28-1

28.2 Applying NAT..........................................................................................................................28-1

28.3 NAT Setup................................................................................................................................28-3

28.3.1 Address Mapping Sets ..........................................................................................................28-4

28.4 Configuring a Server behind NAT.........................................................................................28-9

28.5 General NAT Examples ........................................................................................................28-10

28.5.1 Example 1: Internet Access Only........................................................................................28-10

28.5.2 Example 2: Internet Access with an Inside Server..............................................................28-11

28.5.3 Example 3: Multiple Public IP Addresses With Inside Servers..........................................28-12

28.5.4 Example 4: NAT Unfriendly Application Programs...........................................................28-16

28.6 Configuring Trigger Port Forwarding ................................................................................28-18

Chapter 29 Enabling the Firewall .............................................................................................................29-1

29.1 Remote Management and the Firewall .................................................................................29-1

29.2 Access Methods .......................................................................................................................29-1

29.3 Enabling the Firewall..............................................................................................................29-1

SMT Advanced Management.....................................................................................................................VIII

Chapter 30 Filter Configuration................................................................................................................30-1

30.1 Introduction to Filters ............................................................................................................30-1

30.1.1 The Filter Structure of the Prestige .......................................................................................30-2

30.2 Configuring a Filter Set..........................................................................................................30-4

30.2.1 Configuring a Filter Rule ......................................................................................................30-6

Prestige 334W User’s Guide

Table of Contents xvii

30.2.2 Configuring a TCP/IP Filter Rule ........................................................................................ 30-6

30.2.3 Configuring a Generic Filter Rule...................................................................................... 30-11

30.3 Example Filter ...................................................................................................................... 30-13

30.4 Filter Types and NAT........................................................................................................... 30-15

30.5 Firewall Versus Filters .........................................................................................................30-16

30.6 Applying a Filter .................................................................................................................. 30-16

30.6.1 Applying LAN Filters ........................................................................................................ 30-17

30.6.2 Applying Remote Node Filters........................................................................................... 30-17

Chapter 31 SNMP Configuration ............................................................................................................. 31-1

31.1 About SNMP........................................................................................................................... 31-1

31.2 Supported MIBs ..................................................................................................................... 31-2

31.3 SNMP Configuration ............................................................................................................. 31-2

31.4 SNMP Traps............................................................................................................................ 31-4

Chapter 32 System Security ...................................................................................................................... 32-1

32.1 System Security ...................................................................................................................... 32-1

32.1.1 System Password.................................................................................................................. 32-1

32.1.2 Configuring External RADIUS Server................................................................................. 32-1

32.1.3 802.1x................................................................................................................................... 32-3

Chapter 33 System Information and Diagnosis....................................................................................... 33-1

33.1 System Status .......................................................................................................................... 33-1

33.2 System Information................................................................................................................ 33-3

33.2.1 System Information..............................................................................................................33-3

33.2.2 Console Port Speed ..............................................................................................................33-4

33.3 Log and Trace......................................................................................................................... 33-5

33.3.1 Syslog Logging .................................................................................................................... 33-5

33.3.2 Call-Triggering Packet ......................................................................................................... 33-8

33.4 Diagnostic................................................................................................................................ 33-9

33.4.1 WAN DHCP....................................................................................................................... 33-10

Chapter 34 Firmware and Configuration File Maintenance.................................................................. 34-1

34.1 Filename Conventions............................................................................................................34-1

34.2 Backup Configuration............................................................................................................34-2

34.2.1 Backup Configuration .......................................................................................................... 34-3

34.2.2 Using the FTP Command from the Command Line............................................................. 34-3

34.2.3 Example of FTP Commands from the Command Line........................................................ 34-4

34.2.4 GUI-based FTP Clients ........................................................................................................ 34-4

34.2.5 TFTP and FTP over WAN Management Limitations .......................................................... 34-4

34.2.6 Backup Configuration Using TFTP ..................................................................................... 34-5

34.2.7 TFTP Command Example.................................................................................................... 34-5

34.2.8 GUI-based TFTP Clients...................................................................................................... 34-6

34.3 Restore Configuration............................................................................................................ 34-6

34.3.1 Restore Using FTP ...............................................................................................................34-7

Prestige 334W User’s Guide

xviii Table of Contents

34.3.2 Restore Using FTP Session Example....................................................................................34-8

34.4 Uploading Firmware and Configuration Files .....................................................................34-8

34.4.1 Firmware File Upload ...........................................................................................................34-8

34.4.2 Configuration File Upload ....................................................................................................34-9

34.4.3 FTP File Upload Command from the DOS Prompt Example.............................................34-10

34.4.4 FTP Session Example of Firmware File Upload.................................................................34-10

34.4.5 TFTP File Upload ...............................................................................................................34-10

34.4.6 TFTP Upload Command Example......................................................................................34-11

Chapter 35 System Maintenance...............................................................................................................35-1

35.1 Command Interpreter Mode..................................................................................................35-1

35.1.1 Command Syntax..................................................................................................................35-1

35.1.2 Command Usage...................................................................................................................35-2

35.2 Call Control Support ..............................................................................................................35-2

35.2.1 Budget Management .............................................................................................................35-3

35.2.2 Call History...........................................................................................................................35-4

35.3 Time and Date Setting ............................................................................................................35-4

35.3.1 Resetting the Time ................................................................................................................35-6

Chapter 36 Remote Management..............................................................................................................36-1

36.1 Remote Management ..............................................................................................................36-1

36.1.1 Remote Management Limitations.........................................................................................36-2

Chapter 37 Call Scheduling .......................................................................................................................37-1

37.1 Introduction to Call Scheduling.............................................................................................37-1

SMT VPN/IPSec.............................................................................................................................................IX

Chapter 38 VPN/IPSec Setup.....................................................................................................................38-1

38.1 VPN/IPSec Overview ..............................................................................................................38-1

38.2 IPSec Summary Screen ..........................................................................................................38-2

38.3 IPSec Setup..............................................................................................................................38-5

38.4 IKE Setup ..............................................................................................................................38-10

38.5 Manual Setup ........................................................................................................................38-13

38.5.1 Active Protocol ...................................................................................................................38-13

38.5.2 Security Parameter Index (SPI)...........................................................................................38-13

Chapter 39 SA Monitor ..............................................................................................................................39-1

39.1 SA Monitor Overview .............................................................................................................39-1

39.2 Using SA Monitor....................................................................................................................39-1

Appendices and Index .................................................................................................................................... X

Appendix A PPPoE ......................................................................................................................................A-1

Appendix B PPTP........................................................................................................................................ B-1

Appendix C NetBIOS Filter Commands ...................................................................................................C-1

Appendix D Log Descriptions.....................................................................................................................D-1

Appendix E Setting up Your Computer’s IP Address............................................................................... E-1

Appendix F Wireless LAN and IEEE 802.11 ............................................................................................. F-1

Prestige 334W User’s Guide

Table of Contents xix

Appendix G Wireless LAN With IEEE 802.1x ......................................................................................... G-1

Appendix H Types of EAP Authentication................................................................................................ H-1

Appendix I Antenna Selection and Positioning Recommendation............................................................I-1

Appendix J Brute-Force Password Guessing Protection.......................................................................... J-1

Appendix K Triangle Route ....................................................................................................................... K-1

Appendix L Index.........................................................................................................................................L-1

Page is loading ...

ZyXEL Communications P-334W, PRESTIGE 334W User manual

Related papers

Other documents