ZyXEL Communications wireless n gigbit router zyxel Bedienungsanleitung

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384

Zur Seite of

Richtige Gebrauchsanleitung

Die Vorschriften verpflichten den Verkäufer zur Übertragung der Gebrauchsanleitung ZyXEL Communications wireless n gigbit router zyxel an den Erwerber, zusammen mit der Ware. Eine fehlende Anleitung oder falsche Informationen, die dem Verbraucher übertragen werden, bilden eine Grundlage für eine Reklamation aufgrund Unstimmigkeit des Geräts mit dem Vertrag. Rechtsmäßig lässt man das Anfügen einer Gebrauchsanleitung in anderer Form als Papierform zu, was letztens sehr oft genutzt wird, indem man eine grafische oder elektronische Anleitung von ZyXEL Communications wireless n gigbit router zyxel, sowie Anleitungsvideos für Nutzer beifügt. Die Bedingung ist, dass ihre Form leserlich und verständlich ist.

Was ist eine Gebrauchsanleitung?

Das Wort kommt vom lateinischen „instructio”, d.h. ordnen. Demnach kann man in der Anleitung ZyXEL Communications wireless n gigbit router zyxel die Beschreibung der Etappen der Vorgehensweisen finden. Das Ziel der Anleitung ist die Belehrung, Vereinfachung des Starts, der Nutzung des Geräts oder auch der Ausführung bestimmter Tätigkeiten. Die Anleitung ist eine Sammlung von Informationen über ein Gegenstand/eine Dienstleistung, ein Hinweis.

Leider widmen nicht viele Nutzer ihre Zeit der Gebrauchsanleitung ZyXEL Communications wireless n gigbit router zyxel. Eine gute Gebrauchsanleitung erlaubt nicht nur eine Reihe zusätzlicher Funktionen des gekauften Geräts kennenzulernen, sondern hilft dabei viele Fehler zu vermeiden.

Was sollte also eine ideale Gebrauchsanleitung beinhalten?

Die Gebrauchsanleitung ZyXEL Communications wireless n gigbit router zyxel sollte vor allem folgendes enthalten:
- Informationen über technische Daten des Geräts ZyXEL Communications wireless n gigbit router zyxel
- Den Namen des Produzenten und das Produktionsjahr des Geräts ZyXEL Communications wireless n gigbit router zyxel
- Grundsätze der Bedienung, Regulierung und Wartung des Geräts ZyXEL Communications wireless n gigbit router zyxel
- Sicherheitszeichen und Zertifikate, die die Übereinstimmung mit entsprechenden Normen bestätigen

Warum lesen wir keine Gebrauchsanleitungen?

Der Grund dafür ist die fehlende Zeit und die Sicherheit, was die bestimmten Funktionen der gekauften Geräte angeht. Leider ist das Anschließen und Starten von ZyXEL Communications wireless n gigbit router zyxel zu wenig. Eine Anleitung beinhaltet eine Reihe von Hinweisen bezüglich bestimmter Funktionen, Sicherheitsgrundsätze, Wartungsarten (sogar das, welche Mittel man benutzen sollte), eventueller Fehler von ZyXEL Communications wireless n gigbit router zyxel und Lösungsarten für Probleme, die während der Nutzung auftreten könnten. Immerhin kann man in der Gebrauchsanleitung die Kontaktnummer zum Service ZyXEL Communications finden, wenn die vorgeschlagenen Lösungen nicht wirksam sind. Aktuell erfreuen sich Anleitungen in Form von interessanten Animationen oder Videoanleitungen an Popularität, die den Nutzer besser ansprechen als eine Broschüre. Diese Art von Anleitung gibt garantiert, dass der Nutzer sich das ganze Video anschaut, ohne die spezifizierten und komplizierten technischen Beschreibungen von ZyXEL Communications wireless n gigbit router zyxel zu überspringen, wie es bei der Papierform passiert.

Warum sollte man Gebrauchsanleitungen lesen?

In der Gebrauchsanleitung finden wir vor allem die Antwort über den Bau sowie die Möglichkeiten des Geräts ZyXEL Communications wireless n gigbit router zyxel, über die Nutzung bestimmter Accessoires und eine Reihe von Informationen, die erlauben, jegliche Funktionen und Bequemlichkeiten zu nutzen.

Nach dem gelungenen Kauf des Geräts, sollte man einige Zeit für das Kennenlernen jedes Teils der Anleitung von ZyXEL Communications wireless n gigbit router zyxel widmen. Aktuell sind sie genau vorbereitet oder übersetzt, damit sie nicht nur verständlich für die Nutzer sind, aber auch ihre grundliegende Hilfs-Informations-Funktion erfüllen.

Inhaltsverzeichnis der Gebrauchsanleitungen

  • Seite 1

    www.zyxel.com www.zyxel.com NBG-460N Wireless N Gigabit Router Copyright © 2009 ZyXEL Communications Corporation Firmware Version 3.60 Edition 3, 9/2009 Default Login Details IP Address http://192.168.1.1 Password 1234[...]

  • Seite 2

    [...]

  • Seite 3

    About This User's Guide NBG-460N User’s Guide 3 About This User's Guide Intended Audience This manual is intended for people who want to configure the NBG-460N using the Web Configurator. You should have at least a basic knowledge of TCP/IP networking concepts and topology. Related Documentation •Q u i c k S t a r t G u i d e The Quic[...]

  • Seite 4

    About This User's Guide NBG-460N User’s Guide 4 • Date that you received your device. Brief description of the pr oblem and the steps you t ook to solve it.[...]

  • Seite 5

    Document Conventions NBG-460N User’s Guide 5 Document Conventions Warnings and Notes These are how warnings and notes ar e shown in this User’s Guide. Warnings tell you a bout things that coul d harm you or your device. Note: Notes tell you o ther important informat ion (for example, other things you may need to configure or helpful tips) or re[...]

  • Seite 6

    Document Conventions NBG-460N User’s Guide 6 Icons Used in Figures Figures in this User’s Guide may use th e fol lowing generic icons. The NBG-460N icon is not an exact represent ation of your device. NBG-460N Computer Notebook computer Server DSLAM Firewall Telephone Switch Router Modem[...]

  • Seite 7

    Safety Warnings NBG-460N User’s Guide 7 Safety Warnings • Do NOT use this product near water, for exam ple, in a wet basement or near a swimming pool. • Do NOT expose your device to dampness, du st or corrosive liquids. • Do NOT store things on the device. • Do NOT install, use, or service this device during a thunderstorm. There is a rem[...]

  • Seite 8

    Safety Warnings NBG-460N User’s Guide 8[...]

  • Seite 9

    Contents Overview NBG-460N User’s Guide 9 Contents Overview Introduction .......................................... .......................................... .............................. .. ........ 21 Getting to Know Your NBG-460N ................ ................. ............. ................ ................ ............. ... 23 The WPS B[...]

  • Seite 10

    Contents Overview NBG-460N User’s Guide 10[...]

  • Seite 11

    Table of Contents NBG-460N User’s Guide 11 Table of Contents About This User's Guide ..................................................... ........................................... ........ .. 3 Document Conventions.................................................................. ......................................... .5 Safety Warning[...]

  • Seite 12

    Table of Contents NBG-460N User’s Guide 12 3.5.1 Navigation Panel .......... ................ ....... ...... ................. ............ ............. ................ ....... 41 3.5.2 Summary: Any I P Table ............... ............. ................. ................ ............. ................ ... 43 3.5.3 Summary: Bandwidth Managem e[...]

  • Seite 13

    Table of Contents NBG-460N User’s Guide 13 5.4 Bandwidth Management for your Netw ork ...... .......... ............. ............. ................ ............. ... 83 5.4.1 Configuring Bandwidth Management by Ap plication ..... ................ ............. ................ 83 5.4.2 Configuring Bandwidth Management by Cu stom Application ....[...]

  • Seite 14

    Table of Contents NBG-460N User’s Guide 14 7.12.2 Quality of Service . ................ ............. ................ ............. ................ ............. ........... 12 3 7.13 WiFi Protected Setup ............... ................ ............. ................ ............. ................ ............ .. 124 7.13.1 iPod Touch Web Conf[...]

  • Seite 15

    Table of Contents NBG-460N User’s Guide 15 10.1 Overview ................. ............. ................ ............. ................. ............ ............. ............ ......... 157 10.2 What You Can Do ....................... ............. ................ ............. ................ ................ ......... .. 157 10.3 What You N[...]

  • Seite 16

    Table of Contents NBG-460N User’s Guide 16 Chapter 14 Content Filtering ............................................. ........................................... ...................... ..... 189 14.1 Overview ................. ............. ................ ............. ................. ............ ............. ............ ......... 189 14.2[...]

  • Seite 17

    Table of Contents NBG-460N User’s Guide 17 16.3 IP Static Route Screen .. ................ ............. ................ ............. ................ ............. .......... .2 3 2 16.3.1 Static Route Setup Screen ........... ... ................ ............. ............. ................ ........... 2 33 Chapter 17 Bandwidth Management....[...]

  • Seite 18

    Table of Contents NBG-460N User’s Guide 18 Part V: Maintenance and Troubl eshooting .............. .......................... 261 Chapter 20 System ............................................................................................. ...................................... 2 63 20.1 Overview ................. ............. ................[...]

  • Seite 19

    Table of Contents NBG-460N User’s Guide 19 24.4 General Screen ... .......... ................ ............. ............. ................ ............. ............. .......... .... 301 Chapter 25 Language .................................... ................................................................................... ........ 303 25.1 L[...]

  • Seite 20

    Table of Contents NBG-460N User’s Guide 20[...]

  • Seite 21

    21 P ART I Introduction Getting to Know Your NBG-460 N (23) The WPS Button (33) Introducing the Web Configurator (35) Connection Wizard (49) AP Mode (87) Tutorials (67)[...]

  • Seite 22

    22[...]

  • Seite 23

    NBG-460N User’s Guide 23 C HAPTER 1 Getting to Know Your NBG-460N 1.1 Overview This chapter introduces the main feat ures and applications of the NBG-460N. The NBG-460N extends the range of yo ur existing wired network without additional wiring, providing easy network access to mobile users. You can set up a wireless network with other IEEE 802.1[...]

  • Seite 24

    Chapter 1 Getting to Know Your NBG-460N NBG-460N User’s Guide 24 • IPTV . Connect a Set-Top Box (STB) to your NBG-460N to watch Live TV and/or Video On Demand (VOD) on your television screen. Figure 1 NBG-460N Network 1.3 Wireless Applications The NBG-460N also uses MIMO (Multipl e-Input, Multiple -Output) antenna technology and Gigabit Etherne[...]

  • Seite 25

    Chapter 1 Getting to Know Your NBG-460N NBG-460N User’s Guide 25 The following figure shows computers in a WLAN connecting to the NBG-460N ( A ), which has a DSL connection to the Internet. The NBG-460N is set t o Router Mode and has router features such as a bui lt-in firewall ( B ). Figure 2 Secure Wireless Internet Access in Router Mode 1.3.2 [...]

  • Seite 26

    Chapter 1 Getting to Know Your NBG-460N NBG-460N User’s Guide 26 Using AP + Bridge mode, your NBG-460N ca n extend the range of the WLAN. In the figure below, A and B act a s AP + B rid ge dev ice s that forward tra ffic between associated wireless workstations and the wired LAN. When the NBG-460N is in AP + Bridge mode, security between APs (the[...]

  • Seite 27

    Chapter 1 Getting to Know Your NBG-460N NBG-460N User’s Guide 27 Once the security settings of peer sides match one another, the connection between devices is made. Figure 5 Bridge Applica tion In the example below, when both NBG- 460Ns are in Bridge mode, they form a WDS (Wireless Distribution System) allowing the comput ers in LAN 1 to connect [...]

  • Seite 28

    Chapter 1 Getting to Know Your NBG-460N NBG-460N User’s Guide 28 • If two or more NBG-460Ns (in bridge mode) are connected to the same hub. Figure 7 Bridge Loo p: Two Bridges Connected to Hub • If your NBG-460N (in bridge mode) is connected to a wired LAN while communicating with another wireless bridge that is also connected to the same wire[...]

  • Seite 29

    Chapter 1 Getting to Know Your NBG-460N NBG-460N User’s Guide 29 1.3.5 Router vs. AP vs. Bridge The following table shows which features are available in Router mode , AP mode or Bridge . 1.4 Ways to Manage the NBG-460N Use any of the following methods to mana ge the NBG-460N. • Web Configurator. This is recommended for everyday management of t[...]

  • Seite 30

    Chapter 1 Getting to Know Your NBG-460N NBG-460N User’s Guide 30 1.5 Good Habits for Managing the NBG-460N Do the following things regularly t o make the NBG-460N more secure and to manage the NBG-460N more effectively. • Change the password. Use a password that’s not easy to guess and that consists of different types of char acters, such as [...]

  • Seite 31

    Chapter 1 Getting to Know Your NBG-460N NBG-460N User’s Guide 31 WAN Green On The NBG-460N has a successful 10/100MB WAN connection. Blinking The NBG-460N is sending/receiving data. Amber On The NBG-460N has a successful 1000MB Ethernet connection. Blinking The NBG-460N is sending/receiving data. Off The WAN connection is not ready, or has failed[...]

  • Seite 32

    Chapter 1 Getting to Know Your NBG-460N NBG-460N User’s Guide 32[...]

  • Seite 33

    NBG-460N User’s Guide 33 C HAPTER 2 The WPS Button 2.1 Overview Your NBG-460N supports WiFi Protected Setu p (WPS), which is an easy way to set up a secure wireless network. WPS is an industry standard specification, defined by the WiFi Alliance. WPS allows y ou to quickly se t up a wireless ne twork with str ong securi ty, without having to conf[...]

  • Seite 34

    Chapter 2 The WPS Button NBG-460N User’s Guide 34[...]

  • Seite 35

    NBG-460N User’s Guide 35 C HAPTER 3 Introducing the Web Configurator 3.1 Web Configurator Overview This chapter describes how to ac cess the NBG-460N Web Configurator and provides an overview of its screens. The Web Confi gurator is an HTML- based management interface that allows easy setup and management of the NBG-460N via Internet browse r. Us[...]

  • Seite 36

    Chapter 3 Introducing the Web Configur ator NBG-460N User’s Guide 36 •I n Router Mode enable the DHCP Server. The NBG-460N assigns your computer an IP address on the same subnet. •I n AP Mode, AP + Bridge mode and Bridge mode the NBG-460N does not assign an IP address to your computer, so you should check it’s in the same subnet. See Sectio[...]

  • Seite 37

    Chapter 3 Introducing the Web Configurator NBG-460N User’s Guide 37 • Select a language to go to the basic Web Configurator in that language. To change to the advanced configurator see Chapter 23 o n page 29 7 . Figure 11 Se lecting the setup mode 3.3 Resetting the NBG-460N If you forget your password or IP address, or you cannot access the Web[...]

  • Seite 38

    Chapter 3 Introducing the Web Configur ator NBG-460N User’s Guide 38 3.5 The Status Screen in Router Mode Click on Status . The screen below shows the status screen in Ro uter Mode . (For information on the status screen in AP Mode see Chapter 6 on page 88 .) Figure 12 Web Configurator Status Screen The following table describes t he icons shown [...]

  • Seite 39

    Chapter 3 Introducing the Web Configurator NBG-460N User’s Guide 39 The following table describes t he labels shown in the Status screen. Select a number of seconds or None from the drop-down list box to refresh all screen statistics automatically at the end of every time interval or t o not refresh the screen statistics. Click this button to ref[...]

  • Seite 40

    Chapter 3 Introducing the Web Configur ator NBG-460N User’s Guide 40 System Resource - CPU Usage This displays what percentage of the NBG-460N’s processing ability is currently used. When this percentage is close to 100%, the NBG-460N is running at full load, and the throughput is not going to improve anymore. If you want some applications to h[...]

  • Seite 41

    Chapter 3 Introducing the Web Configurator NBG-460N User’s Guide 41 3.5.1 Navigation Panel Use the sub-menus on the navigation panel to configure NBG-460N features. The following table describes t h e sub-menus. Table 5 Screens Summary LINK TAB FUNCTION Status This screen shows the NBG-460N’s general device, system and interface status informat[...]

  • Seite 42

    Chapter 3 Introducing the Web Configur ator NBG-460N User’s Guide 42 NAT General Use this screen to enable NAT. Application Use this screen to configure servers behind the NBG- 460N. Advanced Use this screen to change your NBG-460N’s port triggering settings. DDNS General Use this screen to set up dynamic DNS. Security Firewall General Use this[...]

  • Seite 43

    Chapter 3 Introducing the Web Configurator NBG-460N User’s Guide 43 3.5.2 Summary: Any IP Table This screen displays the IP address of ea ch computer that is using the NBG-460N via the any IP featur e. Any IP allows computers to access the Internet through the NBG-460N without changing their networ k settings when NAT is enabled. To access this s[...]

  • Seite 44

    Chapter 3 Introducing the Web Configur ator NBG-460N User’s Guide 44 bar represents the percentage of unused bandwidth and the blue color repres ents the percentage of bandwidth in use. Figure 14 Summary: BW MGMT Monitor 3.5.4 Summary: DHCP Table DHCP (Dynamic Host Configuratio n Protocol, RFC 2131 and R FC 2132) allows individual client s to obt[...]

  • Seite 45

    Chapter 3 Introducing the Web Configurator NBG-460N User’s Guide 45 3.5.5 Summary: Packet Statistics Click the Packet Statistics (Details...) hyperlin k in the Status screen. Re ad- only information here includes port stat us, packet specific stat istics and the "system up time". The Poll Interval(s) field is configurable and is used fo[...]

  • Seite 46

    Chapter 3 Introducing the Web Configur ator NBG-460N User’s Guide 46 3.5.6 Summary: VPN Monitor Click the VPN Monitor (Details...) hyperlin k in the Status screen. This screen displays read-only information about th e ac tive VPN connections. Click the Refresh button to update the screen. A Securi ty Association (SA) is the group of security sett[...]

  • Seite 47

    Chapter 3 Introducing the Web Configurator NBG-460N User’s Guide 47 3.5.7 Summary: Wireless Station Status Click the WLAN Station Status (Details...) hyperlink in the Status screen. View the wireless stations that are currently associated to the NBG-460N in the Association List . Association means that a wirele ss cl ient (for example, your netwo[...]

  • Seite 48

    Chapter 3 Introducing the Web Configur ator NBG-460N User’s Guide 48[...]

  • Seite 49

    NBG-460N User’s Guide 49 C HAPTER 4 Connection Wizard 4.1 Wizard Setup This chapter provides information on the wi zard setup screens in the Web Configurator. The Web Configurator’s wizard setup help s you configure your device t o access the Internet. Refer to your ISP (Internet Service Provider) checklist in the Quick Start Guide to know what[...]

  • Seite 50

    Chapter 4 Conn ection Wizard NBG-460N User’s Guide 50 2 Choose a language by clic king on the language’s button. The screen will update. Click the Next button to proceed to the next screen. Figure 20 Select a Language 3 Read the on-screen in formation and click Next . Figure 21 Welco me to the Connection Wizard 4.2 Connection Wizard: STEP 1: Sy[...]

  • Seite 51

    Chapter 4 Connection Wizar d NBG-460N User’s Guide 51 • In Windows XP, click Start , My Computer , View system information and then clic k the Computer Name tab . Note the entry in the Full computer name field and enter it as the NBG-460N Syste m Name . 4.2.2 Domain Name The D omain Name entry is wh at is propagat ed to the D HCP clients on the[...]

  • Seite 52

    Chapter 4 Conn ection Wizard NBG-460N User’s Guide 52 4.3 Connection Wizard: STEP 2: Wireless LAN Set up your wireless LAN using the following screen. Figure 23 Wizard Step 2: Wireless LAN The following table describes t h e labels in this screen. Table 11 Wizard Step 2: Wireless LAN LABEL DESCRIPTION Name (SSID) Enter a descriptive name (up to 3[...]

  • Seite 53

    Chapter 4 Connection Wizar d NBG-460N User’s Guide 53 Note: The wireless stations and NBG-460N must use the same SSID, channel ID and WEP encryption (if WEP is enabled), WPA-PSK (if WPA-PSK is enabled) or WPA2-PSK (if WPA2-PSK is enabled) keys for wireless communication. 4.3.1 Basic (WEP) Security Note: This option is only avai lable if WPS is no[...]

  • Seite 54

    Chapter 4 Conn ection Wizard NBG-460N User’s Guide 54 The following table describes t h e labels in this screen. 4.3.2 Extend (WPA-PSK or WPA2-PSK) Security Choose Extend (WPA-PSK) or Extend (WPA2-PSK) security in th e Wirele ss LAN setup screen to set up a Pre-Shared Key . Figure 25 Wizard Step 2: Extend (WPA-PSK or WPA2-PSK) Security Table 12 W[...]

  • Seite 55

    Chapter 4 Connection Wizar d NBG-460N User’s Guide 55 The following table describes t h e labels in this screen. 4.4 Connection Wizard: STEP 3: Internet Configuration The NBG-460N offers three Internet connect ion types. They are Ethernet , PPP over Ethernet or PPTP . The wizard attempts to de tect which WAN connection type you are using. If the [...]

  • Seite 56

    Chapter 4 Conn ection Wizard NBG-460N User’s Guide 56 The following table describes t h e labels in this screen, 4.4.1 Ethernet Connection Choose Ethernet when the WAN port is used as a regular Ethernet. Continue to Section 4.4.4 on page 59 . Figure 27 Wizard Step 3: Ethernet Connection 4.4.2 PPPoE Connection Point-to-Point Protocol over Ethernet[...]

  • Seite 57

    Chapter 4 Connection Wizar d NBG-460N User’s Guide 57 By implementing PPPoE di rectly on the NBG-460N (rather than individual computers), the computers on the LAN do not need PPPoE so ftware installe d, since the NBG-460N does that part of the task. Furthermore, with NAT, all of the LAN's compu ters will have In ternet access . Refer to the [...]

  • Seite 58

    Chapter 4 Conn ection Wizard NBG-460N User’s Guide 58 Note: The NBG-460N supports one PPTP server conn ection at any given time. Figure 29 Wizard Step 3: PPTP Connection The following table describes t he fields in this screen Table 16 Wizard Step 3: PPTP Connection LABEL DESCRIPTION ISP Parameters for Internet Access Connection Type Select PPTP [...]

  • Seite 59

    Chapter 4 Connection Wizar d NBG-460N User’s Guide 59 4.4.4 Your IP Address The following wizard screen allows you to assign a fixed IP address or give the NBG-460N an automatically assigned IP address depending on your ISP. Figure 30 Wizard Step 3: Your IP Address The following table descri bes the labels in this screen 4.4.5 WAN IP Address Assi[...]

  • Seite 60

    Chapter 4 Conn ection Wizard NBG-460N User’s Guide 60 Internet Assigned Numbers Authority (I ANA) has reserved the following three blocks of IP addresses specif ically for private networks. Yo u c a n ob t a i n yo u r I P a d d r e s s f r o m th e I A N A , fr o m a n I S P o r h a v e i t a s s i g ne d b y a private network. If you belong to [...]

  • Seite 61

    Chapter 4 Connection Wizar d NBG-460N User’s Guide 61 4.4.7 DNS Server Address Assignment Use DNS (Domain Name System) to map a domain name to its corresponding IP address and vice versa, for i n stance, the IP ad dress of www.zyxel.com is 204.217.0.2. The DNS server is extremely important because without i t, you must know the IP address of a co[...]

  • Seite 62

    Chapter 4 Conn ection Wizard NBG-460N User’s Guide 62 The following table descri bes the labels in this screen 4.4.9 WAN MAC Address Every Ethernet device has a unique MAC (M edia Access Control) address. The MAC address is assigned at the factory and consists of six pairs of hexadecimal characters, for example, 00:A0:C5:00: 00:02. This screen al[...]

  • Seite 63

    Chapter 4 Connection Wizar d NBG-460N User’s Guide 63 advisable to clone the MA C address fro m a computer on your LAN ev en if your ISP does not presently require MAC address authentication. Figure 32 Wizard Step 3: WAN MAC Address The following table describes t he fields in this screen. 4.5 Connection Wizard: STEP 4: Bandwidth management Bandw[...]

  • Seite 64

    Chapter 4 Conn ection Wizard NBG-460N User’s Guide 64 the bandwidth according to the traffic type . This helps keep one service from using all of the available bandwidt h and shutting out other users. Figure 33 Wizard Step 4: Bandwidth Management The following fields describ e the label in this screen. 4.6 Connection Wizard Complete Click Apply t[...]

  • Seite 65

    Chapter 4 Connection Wizar d NBG-460N User’s Guide 65 Follow the on-s creen instru ctions and cl ick Finish to complete the w izard set up. Figure 35 Connection Wizard Complete Well done! You have succes sfully set up your NBG-460N to operate on your network and access the Internet.[...]

  • Seite 66

    Chapter 4 Conn ection Wizard NBG-460N User’s Guide 66[...]

  • Seite 67

    NBG-460N User’s Guide 67 C HAPTER 5 Tutorials 5.1 Overview This chapter provides tutorials for your NBG-460N as follows: • How to Connect to the Internet from an AP • Site-To-Site VPN Tunnel Tutori al • Bandwidth Management for your Network 5.2 How to Connect to the Internet from an AP This section gives you an example of how to set up an a[...]

  • Seite 68

    Chapter 5 Tutorials NBG-460N User’s Guide 68 • Push Button Config uration - create a secure wireless network simply by pressing a button. See Section 5.2.1.1 on page 68 .This is the easier method. • PIN Configuration - create a secure wireless ne twork simply by ent ering a wireless client's PIN (Personal Ident ification Number) in the N[...]

  • Seite 69

    Chapter 5 Tutorials NBG-460N User’s Guide 69 The following figure shows y ou an exam ple to set up wireless network and security by pressing a butt on on both NBG-460N and wireless client (the NWD210N in this exa mple). Figure 37 Example WPS Process: Push Button Configura tion Method 5.2.1.2 PIN Configuration When you use the PIN conf iguration m[...]

  • Seite 70

    Chapter 5 Tutorials NBG-460N User’s Guide 70 The following figure shows you the ex ample to set up wireless network and security on NBG-460N and wireless client (e x. NWD210N in this example) by using PIN method. Figure 38 Example WPS Process: PIN Method Authentication by PIN SECURITY INFO WITHIN 2 MINUTES Wireless Client NBG460N COMMUNICATION[...]

  • Seite 71

    Chapter 5 Tutorials NBG-460N User’s Guide 71 5.2.2 Enable and Configure Wireless Security without WPS on your NBG-460N This example shows you how to configure wireless security settings with the following parameters on your NBG-460N. Follow the steps below to config ure the wireless settings on your NBG-460N. The instructions require that your ha[...]

  • Seite 72

    Chapter 5 Tutorials NBG-460N User’s Guide 72 5 Open the Status s creen. Verify your wireless and wireless security settings under Device Information and check if the WLAN connection is up under Interface Status . Figure 40 Tutorial: Status: AP Mo de 5.2.3 Configure Your Notebook Note: We use the ZyXEL M-302 wirele ss adapter utility screens as an[...]

  • Seite 73

    Chapter 5 Tutorials NBG-460N User’s Guide 73 4 Select SSID_Example3 and click Connect . Figure 41 Connecting a Wireless Client to a Wireless Network 5 Select WPA-PSK and type the security key in the following screen. Click Next . Figure 42 Security Settings 6 The Confirm Sav e window appears. Check your setting s and click Save to continue. Figur[...]

  • Seite 74

    Chapter 5 Tutorials NBG-460N User’s Guide 74 7 Check the status of your wireless connecti on in the screen below. If your wireless connection is weak or you have no conn ection, see the Troubleshooting section of this User’s Guide. Figure 44 Link St atus 8 If your connection is successful, op en your Internet browser and enter http:// www.zyxel[...]

  • Seite 75

    Chapter 5 Tutorials NBG-460N User’s Guide 75 However, you want the communication between Y and Z to be secure. WDS encrypts the data transfer between b ridge d devices. You c an enable this in the Security fields of the WDS screen. Figure 45 AP + Bridge Scenario 5.2.4.1 Configuring Your Bridge Mode Settings You should know the MAC address of the [...]

  • Seite 76

    Chapter 5 Tutorials NBG-460N User’s Guide 76 2 Set both Y and Z in AP + Bridge mode in the Basic Setting field. In the Remote MAC Address field, enter the correct MAC address of the other NBG- 460N with which you want to establish a connection. Figure 47 Tutorial: Wireless LAN > WDS 3 To secure the bridge connec tion, ch oose your desired sett[...]

  • Seite 77

    Chapter 5 Tutorials NBG-460N User’s Guide 77 5.3 Site-To-Site VPN Tunnel Tutorial Bob and Jack want to setup a VPN connecti o n between their offices. Bob and Jack each have a NBG-460N router and a static WAN IP address. This tutorial covers how to configure their NBG-460Ns to create a secure connection. Figure 48 Site-To-Site VPN T unnel The fol[...]

  • Seite 78

    Chapter 5 Tutorials NBG-460N User’s Guide 78 5.3.1 Configuring Bob’s NBG-460N VPN Settings To configure these settings Bob us es the NBG-460N Web Configurator. 1 Log into the NBG-460N Web Configurator and click VPN > Modify icon. This displays the VPN Rule Setup (b asic) screen. 2 Select the Active checkbox to enable the VPN rule after it ha[...]

  • Seite 79

    Chapter 5 Tutorials NBG-460N User’s Guide 79 7 Enter the IP address “2.2.2.2” in the Se cure Gateway Address text box. This is Jack’s WAN IP address. 8 Select IP as the Peer ID Type . This is Jack’ s Local ID Type . Enter “2.2.2.2” in the Peer Conten t text box. This is Jack’s Local Content WAN IP address. Figure 52 Tutorial: Authe [...]

  • Seite 80

    Chapter 5 Tutorials NBG-460N User’s Guide 80 2 Select the Active checkbox to enable the VPN rule after it has been created. Make sure IKE is sele cted as the IPSec Keying Mode . Figure 55 Tutorial: Propert y 3 Enter the IP address “10.0.0.7” in the Local Address text box . This is the IP address of Jack’s c omputer. Enter the IP address “[...]

  • Seite 81

    Chapter 5 Tutorials NBG-460N User’s Guide 81 8 Select IP as the Peer ID Type . This is Bob’s Local ID Type . Enter “1.1.1.1” in the Peer Conten t text box. This is Bob’s Local Content WAN IP address. Figure 58 Tutorial: Authe ntication Method 9 Select Tunnel as the Encapsulation Mode and ESP as the IPSec Protocol . 10 Enter “ThisIsMySec[...]

  • Seite 82

    Chapter 5 Tutorials NBG-460N User’s Guide 82 5.3.3 Checking the VPN Connection Check if the VPN connect ion is workin g by pinging the computer on the other side of the VPN connection. In the example below Bob is pinging Jack’s computer. Figure 61 Pinging Jack’s Local IP Address Pinging is successful which means a VPN tunnel has been establis[...]

  • Seite 83

    Chapter 5 Tutorials NBG-460N User’s Guide 83 5.4 Bandwidth Management for your Network This section shows you how to configur e the bandwidth management feature on the NBG-460N to limit t h e bandwidth for s pec ific kinds of outgoin g traffic . ZyXEL's bandwidth management feature a llows you to specify bandwidth management rules based on a[...]

  • Seite 84

    Chapter 5 Tutorials NBG-460N User’s Guide 84 5.4.2 Configuring Bandwidth Management by Custom Application Aside from the VOIP and e-mail services , you need to set the priority for MSN Messenger. To do this, add the service in the Priority Queue table of the Management > Bandwidth MGMT > Advanced screen. Figure 64 Tutorial: Adding TFTP to P[...]

  • Seite 85

    Chapter 5 Tutorials NBG-460N User’s Guide 85 • Multimedia room’ s LAN IP range: 192.168.1.1 to 19 2.168.1.34 • IP Address of the computer uploading through FTP: 192.168.1.34 • Services you want to conf igure: Click the Edit icon in Manage ment > Band width MGMT > Advanced to open the following screen. The following screen appears. F[...]

  • Seite 86

    Chapter 5 Tutorials NBG-460N User’s Guide 86 After adding these services, go to Management > Bandwidth MGMT > Advanced and check if you have the correct v alues. Figure 66 Tutorial: Bandwidth Allocation Examp l e Note: The Policy column displays either Max (maximum) or Min (minimum). This is directly directed to the value in the Rate column[...]

  • Seite 87

    NBG-460N User’s Guide 87 C HAPTER 6 AP Mode 6.1 Overview This chapter discusses how to configure settings while your NBG-460N is set to AP Mode . Many screens that are available in Router Mode are not available in AP Mode . Note: See Chapter 5 on page 67 for an example of setting up a wireless network in AP mode. Use your NBG-460N as an AP if you[...]

  • Seite 88

    Chapter 6 AP Mode NBG-460N User’s Guide 88 2 To set your NBG-460N to AP Mode , go to Maintenance > Sys OP Mode > General and select Access Point. Figure 68 Maintenance > Sys OP Mode > General 3 A pop-up appears providing i n formation on this mode. Click OK in the pop-up message window. (See Section 24.4 on page 3 01 for more informat[...]

  • Seite 89

    Chapter 6 AP Mode NBG-460N User’s Guide 89 The following table describes t he labels shown in the Status screen. Table 25 Web Configurator Status Scree n LABEL DESCRIPTION Device Information System Name This is the System Name you enter in the Maintenance > Syst em > General screen. It is for identification purposes. Firmware Version This i[...]

  • Seite 90

    Chapter 6 AP Mode NBG-460N User’s Guide 90 6.3.1 Navigation Panel Use the menu in the navigation pane l to configure NBG-460N features in AP Mode . The following screen and tabl e show the features you can conf igure in AP Mode . Figure 70 Menu: AP Mode Interface Status Interface This displays the NBG-460N port types. The port types are: LAN and [...]

  • Seite 91

    Chapter 6 AP Mode NBG-460N User’s Guide 91 The following table describes t h e sub-menus. Table 26 Screens Summary LINK TAB FUNCTION Status This screen shows the NBG-460N’s general device, system and interface status information. Use this screen to access the wizard, and summary statistics tables. Network Wireless LAN General Use this screen to[...]

  • Seite 92

    Chapter 6 AP Mode NBG-460N User’s Guide 92 6.4 Configuring Your Settings Use this section to configure yo ur NBG-460N settings while in AP Mode . 6.4.1 LAN Settings Use this section to configure your LAN settings while in AP Mode . Click Networ k > LAN to see the screen below. Note: If you change the IP addr ess of the NBG-460N in the screen b[...]

  • Seite 93

    Chapter 6 AP Mode NBG-460N User’s Guide 93 The following table describes t h e labels in this screen. The table below describes the labels in the screen. 6.4.2 WLAN and Maintenance Settings The configuration of wireless and maintenance setting s in AP Mode is the same as for Router Mode . • See Chapter 5 on page 69 for information on the config[...]

  • Seite 94

    Chapter 6 AP Mode NBG-460N User’s Guide 94 • See Maintenance and Troubleshooting (261) for information on the configuring your Maintenance settings. 6.5 Logging in to the Web Configurator in AP Mode 1 Connect your computer to the LAN port of the NBG-460N. 2 The default IP address if the NBG-460N is “192.168.1.1”. In this case, your computer[...]

  • Seite 95

    95 P ART II Network Wireless LAN (97) WAN (133) LAN (149) DHCP (157) Network Address Translation (NAT) (163) Dynamic DNS (173)[...]

  • Seite 96

    96[...]

  • Seite 97

    NBG-460N User’s Guide 97 C HAPTER 7 Wireless LAN 7.1 Overview This chapter discusses how to configure th e wi reless network settings in your NBG-460N. See the appendices for more detailed information about wireless networks. The following figure provides an example of a wireless network. Figure 72 Example of a Wireless Network The wireless netwo[...]

  • Seite 98

    Chapter 7 Wireless LAN NBG-460N User’s Guide 98 7.2 What You Can Do •U s e t h e General screen ( Section 7.4 on page 101 ) to enable the Wireles s LAN, enter the SSID and select th e wireless security mode. •U s e t h e MAC Filter screen ( Section 7.5 on page 109 ) to allow or deny wireless stations based on their MAC addresses from connecti[...]

  • Seite 99

    Chapter 7 Wireless LAN NBG-460N User’s Guide 99 7.3.1.1 SSID Normally, the AP acts like a beacon and regularly broadcas ts the SSID in the area. You can hide the SSID instead, in which ca se the AP does not broadcast the SSID. In addition, you should change the defaul t SSID to somet hing that is difficult to guess. This type of security is fairl[...]

  • Seite 100

    Chapter 7 Wireless LAN NBG-460N User’s Guide 100 Unauthorized devices can still see the info rmation that is sent in the wirele ss network, even if they cannot use the wireless network. Furthermore, there are ways for unauthorized wireless users to get a valid user name and password. Then, they can use that user name an d password to use the wire[...]

  • Seite 101

    Chapter 7 Wireless LAN NBG-460N User’s Guide 101 clients support WPA and some su pport WPA2, you should set up WPA2-PSK or WPA2 (depending on the type of wireless network login) and select t he WPA Compatible option in the NBG-460N. Many types of encryption use a key to protect the information in the wireless network. T he longer the key, th e st[...]

  • Seite 102

    Chapter 7 Wireless LAN NBG-460N User’s Guide 102 See the rest of this chapter for informat ion on the other labels in this screen. 7.4.1 No Security Select No Security to allow wireless stations to communicate with the access points without any data encrypt ion. Hide SSID Select this check box to hide the SSID in the outgoing beacon frame so a st[...]

  • Seite 103

    Chapter 7 Wireless LAN NBG-460N User’s Guide 103 Note: If you do not enable an y wireless security on your NBG-460N, your network is accessible to any wireless networ king de vice that is within range. Figure 74 Network > Wireless LAN > General: No Security The following table describes t h e labels in this screen. 7.4.2 WEP Encryption WEP [...]

  • Seite 104

    Chapter 7 Wireless LAN NBG-460N User’s Guide 104 In order to configure and enable WEP encryption, click Network > Wireless LAN to display the General screen. Select Static WEP from the Security Mode list. Figure 75 Network > Wireless LAN > General: Static W E P The following table describes t he wireless LAN security labels in this scree[...]

  • Seite 105

    Chapter 7 Wireless LAN NBG-460N User’s Guide 105 Authenticatio n Method There are two types of WEP authenti cation namely, Open System and Shared Key. Open system is implemented for ease-o f-use and when security is not an issue. The wireless station and the AP or peer computer do not share a secret key. Thus the wireless stations can associate w[...]

  • Seite 106

    Chapter 7 Wireless LAN NBG-460N User’s Guide 106 7.4.3 WPA-PSK/WPA2-PSK Click Network > Wireless LAN to display the General screen. Select WPA-PSK or WPA2-PSK from the Security Mode list. Figure 76 Network > Wireless LAN > General: WPA-PSK/WPA2-PSK The following table describes t h e labels in this screen. Table 32 Network > Wireless [...]

  • Seite 107

    Chapter 7 Wireless LAN NBG-460N User’s Guide 107 7.4.4 WPA/WPA2 Click Netw ork > Wireless LAN to display the General screen. Select WPA or WPA2 from the Security Mode list. Figure 77 Network > Wireless LAN > General: WPA/WPA2 Idle Timeout The NBG-460N automatically disconnects a wireless station from the wired network after a period of i[...]

  • Seite 108

    Chapter 7 Wireless LAN NBG-460N User’s Guide 108 The following table describes t h e labels in this screen. Table 33 Netwo rk > Wireless LAN > General: WPA/WPA2 LABEL DESCRIPTION WPA Compatible This check box is available only when you select WPA2-PSK or WPA2 in the Security Mode field. Select the check box to have both WPA2 and WPA wireles[...]

  • Seite 109

    Chapter 7 Wireless LAN NBG-460N User’s Guide 109 7.5 MAC Filter Screen The MAC filter screen allows you to co nfigure the NBG-460N to give exclusive access to up to 32 devices (Allow) or ex clude up to 32 devices from accessing the NBG-460N (Deny). Every Ethernet devi ce has a unique MAC (Media Access Control) address. The MAC addr ess is assigne[...]

  • Seite 110

    Chapter 7 Wireless LAN NBG-460N User’s Guide 110 To change your NBG-460N’s MAC fi lter settings, click Network > Wireless LAN > MAC Filter . The screen appears as shown. Figure 78 Network > Wireless LAN > MAC Filter The following table describes t h e labels in this menu. Table 34 Networ k > Wireless LAN > MAC Filter LABEL DES[...]

  • Seite 111

    Chapter 7 Wireless LAN NBG-460N User’s Guide 111 7.6 Wireless LAN Advanced Screen Click Netw ork > Wireless LAN > Advanced . The screen appears as shown. Figure 79 Network > Wireless LAN > Advanced The following table describes t h e labels in this screen. 7.7 Quality of Service (QoS) Screen The QoS screen allow s you to autom aticall[...]

  • Seite 112

    Chapter 7 Wireless LAN NBG-460N User’s Guide 112 Click Netw ork > Wireless LAN > QoS . The following screen appears. Figure 80 Network > Wireless LAN > QoS The following table describes t h e labels in this screen. Table 36 Netwo rk > Wireless LAN > QoS LABEL DESCRIPTION Enable WMM QoS Select this to enable WMM QoS on the ZyXEL [...]

  • Seite 113

    Chapter 7 Wireless LAN NBG-460N User’s Guide 113 7.7.1 Application Priority Configuration Use this screen to edit a WMM QoS applic ation entry. Cl ick the e dit icon u nder Modify . The following screen displays. Figure 81 Network > Wireless LAN > QoS: Application Priority Configuration See Appendix E on page 369 for a list of commonly-used[...]

  • Seite 114

    Chapter 7 Wireless LAN NBG-460N User’s Guide 114 Service The following is a description of the applications you can prioritize with WMM QoS. Select a service from the drop-down list box. • E-Mail Electronic mail consists of messages sent through a computer network to specific groups or individuals. Here are some default ports for e-mail: POP3 -[...]

  • Seite 115

    Chapter 7 Wireless LAN NBG-460N User’s Guide 115 7.8 WPS Screen Use this screen to enable/disable WPS, view or generate a new PIN number and check current WPS status. To open thi s screen, click Networ k > Wireless LAN > WPS tab. Figure 82 Network > Wireless LAN > WPS The following table describes t h e labels in this screen. Table 38[...]

  • Seite 116

    Chapter 7 Wireless LAN NBG-460N User’s Guide 116 7.9 WPS Station Screen Use this screen when you want to add a wi reless station using WPS. To open this screen, click Network > Wireless LAN > WPS Station tab. Note: Note: After you click Push Button on this screen, you h ave to press a similar button in the wireless station utility wi thin 2[...]

  • Seite 117

    Chapter 7 Wireless LAN NBG-460N User’s Guide 117 on or off on certain days and at cert ain times. To open this scre en, click Network > Wireless LAN > Scheduling tab. Figure 84 Network > Wireless LAN > Scheduling The following table describes t h e labels in this screen. Table 40 Netwo rk > Wireless LAN > Sched uling LABEL DESCR[...]

  • Seite 118

    Chapter 7 Wireless LAN NBG-460N User’s Guide 118 7.11 WDS Screen A Wireless Distrib ution System is a wir eless conne ction betwe en two or m ore APs. Use this screen to set t he oper ating mode of your NBG-460N to AP + Bridge or Bridge and establish wireless links with othe r APs. You need to know the MAC address of the peer device, which also m[...]

  • Seite 119

    Chapter 7 Wireless LAN NBG-460N User’s Guide 119 7.11.1 Security Mode: Static WEP Use this screen to configure the Static WEP security for your NBG-460N when it is in AP+Bridge or Bridge Only mode. Figure 86 Network > Wireless LAN > WDS (Static WEP) Security Mode Note: WDS security is independent of the security settings between the NBG-460[...]

  • Seite 120

    Chapter 7 Wireless LAN NBG-460N User’s Guide 120 The following table descri bes the labels in this screen. Refer to Table 41 on page 118 for descriptions of other fields in this screen. Table 42 Network > Wirele ss LAN > WDS (Static WEP) LABEL DESCRIPTION Passphrase Enter the passphrase or string of text used for automatic WEP key generatio[...]

  • Seite 121

    Chapter 7 Wireless LAN NBG-460N User’s Guide 121 7.11.2 Security Mode: WPA2-PSK Use this screen to configure the WPA2-PSK security for your NBG-460N when it is in AP+Bridge or Bridge Only mode. Figure 87 Network > Wireless LAN > WDS (WPA2-PSK) The following table descri bes the labels in this screen. Refer to Table 41 on page 118 for descri[...]

  • Seite 122

    Chapter 7 Wireless LAN NBG-460N User’s Guide 122 The roaming feature on the access points allows the acces s points to relay information about the wireles s stations to each other. W hen a wireless station moves from a coverage area to another, it scans and uses th e channel of a new access point, which then i nforms the ot her access points on t[...]

  • Seite 123

    Chapter 7 Wireless LAN NBG-460N User’s Guide 123 7.12.1.1 Requirem ents for Roaming The following requirements must be met in order for wireless stations t o roam between the coverage areas. 1 All the access points must be on the same subnet and configured with the same ESSID. 2 If IEEE 802.1x user authentication is enab led and to be done locall[...]

  • Seite 124

    Chapter 7 Wireless LAN NBG-460N User’s Guide 124 7.12.2.2 WMM QoS Priorities The following table describes t he WMM Qo S priority levels that the NBG-460N uses. 7.13 WiFi Protected Setup WiFi Protected Setup (WPS) is an industry standard specifi cation, defined by the WiFi Alliance. WP S allows you to quickl y set up a wireless ne twork with stro[...]

  • Seite 125

    Chapter 7 Wireless LAN NBG-460N User’s Guide 125 2 On the iPod Touch’s main screen press Settings > Wi-fi and from the list press the NBG-460N’s network name ( SSID) to connect t o it. If you are prompted for any security settings enter them and pre ss connect. If you cannot connect check your security settings in the Web Config urator fro[...]

  • Seite 126

    Chapter 7 Wireless LAN NBG-460N User’s Guide 126 7.13.3 System Status After successfully logging into the iPod Touch Web Configu rator the System Status screen displays. Note: Your changes in the iPo d Touch Web Configurator are saved automatica lly after pressing a button. If you are going to use the WPS (Wi-Fi Prot ected Setup) f unction in the[...]

  • Seite 127

    Chapter 7 Wireless LAN NBG-460N User’s Guide 127 into the Web Configurator from your computer and going to the Wireless LAN screen. Figure 90 System Status screen The following table describes t h e labels in this screen. Table 46 System Status screen LABEL DESCRIPTION Logout Press this to logout of the iPod Touch Web Configurator. LAN IP Address[...]

  • Seite 128

    Chapter 7 Wireless LAN NBG-460N User’s Guide 128 WLAN Name (SSID) This field displays the SSID (Service set identifier) of the NBG-460 N’s Wireless LAN. Security Mode This field displays the security authentication mode of the NBG-460N’s Wireless LAN. This can be No Security , WPA-PSK , WPA2-PSK or WEP . Channel This field displays the channe[...]

  • Seite 129

    Chapter 7 Wireless LAN NBG-460N User’s Guide 129 7.13.4 WPS in Progress After pressing Push Button in the System Status screen t he WPS in Progress screen will display. It can take around two minutes for a successf ul WPS connection to b e made. The System Status screen will display after a connection has been made or if it has failed. For more i[...]

  • Seite 130

    Chapter 7 Wireless LAN NBG-460N User’s Guide 130 Note: To see any changes on the System Status screen you will need to refresh th e page first. Use the browser’s refresh function. See the iPod Touch’s documentation if you cannot find it. Figure 92 Port Forwarding The following table describes t h e labels in this screen. Table 47 Port Forward[...]

  • Seite 131

    Chapter 7 Wireless LAN NBG-460N User’s Guide 131 7.14 Accessing the iPod Touch Web Configurator To access the iPod Touch Web Configurator through your iPod Touch you must first connect it to the NBG-460N’s wireless network. Follow the steps below to do this. Note: If you have not conf igured your wireless settings yet you can do so b y using th[...]

  • Seite 132

    Chapter 7 Wireless LAN NBG-460N User’s Guide 132 3 The login screen should display. Figure 93 Login Screen If the login screen does not display properly, check t hat you are accessing the correct IP address. Also ch eck your iPod Touch web brow ser’s security settings as they may affect how the page displays. 4 If you wish to login automaticall[...]

  • Seite 133

    NBG-460N User’s Guide 133 C HAPTER 8 WAN 8.1 Overview This chapter discusses the NBG-460N’s WAN screens. Use these screens to configure your NBG-460N for Internet access. A WAN (Wide Area Network) connection is an outside connection to another network or the Int ernet. It conne cts your private networks such as a LAN (Local Area Network) and ot[...]

  • Seite 134

    Chapter 8 WAN NBG-460N User’s Guide 134 8.3 What You Need To Know The info rmation in this se ction ca n help you configure the screens for your WAN connection, as well as enable/disable so me advanced features of your NBG-460N. 8.3.1 Configuring Your Internet Connection Encapsulation Method Encapsulation is used to include data from an upper lay[...]

  • Seite 135

    Chapter 8 WAN NBG-460N User’s Guide 135 WAN MAC Address The MAC address screen allo ws users to co nfigure the WAN port's MAC address by either using the factory default or clon ing the MAC address from a computer on your LAN. Choose Factory Default to select the factory assigned default MAC Address. Otherwise, click Clone the computer'[...]

  • Seite 136

    Chapter 8 WAN NBG-460N User’s Guide 136 8.3.3 IPTV STB Port Internet Protocol Television (IPTV) is a service with which you can sub scribe in order to watch video content hosted on serv ers over the Internet in your te levision at home. An IPTV subscription gives you ac cess to streaming medi a, such as Live TV or Video on Demand (VOD). The NBG-4[...]

  • Seite 137

    Chapter 8 WAN NBG-460N User’s Guide 137 You have one STB You have one STB and one television. Yo u can assign one port for your IPTV connection and connect your STB to it.Thi s effectively changes the IP address of the LAN port to the IP addres s of the WAN port. In the following fi gure, you assign port LAN 4 as the IPTV STB port. Video traffic [...]

  • Seite 138

    Chapter 8 WAN NBG-460N User’s Guide 138 Go to Section 8.5 on page 146 to view the screen wher e you can assign the IPTV STB port. Note: Follow the instructions in the User’s Gu ide of your STB for hardwa re connections and setup configura tions. 8.3.4 NetBIOS over TCP/IP NetBIOS (Network Basic Input /Output Sy stem) are TCP or UDP broadcast pac[...]

  • Seite 139

    Chapter 8 WAN NBG-460N User’s Guide 139 • The device must be in Ro uter Mode (see Chapter 24 on page 299 for more information) for auto-bridgi ng to become active. 8.4 Internet Connection Use this screen to change your NBG- 460N’s Internet access settings. Click Network > WAN . The screen differs according to the encaps ulation you choose.[...]

  • Seite 140

    Chapter 8 WAN NBG-460N User’s Guide 140 The following table describes t h e labels in this screen. Table 48 Netwo rk > WAN > Internet Connection: Ethernet Encapsulation LABEL DESCRIPTION Encapsulation Choose the Ethernet option when the WAN port is used as a regular Etherne t. Service Type Choose from Standard , RR-Telstra (RoadRunner Telst[...]

  • Seite 141

    Chapter 8 WAN NBG-460N User’s Guide 141 8.4.2 PPPoE Encapsulation The NBG-460N supports PPPoE (Point-to-Point Protocol over Ethernet). PPPoE is an IETF standard (RFC 2516) specifyi ng how a personal computer (PC) interacts with a broadband modem (DSL, cabl e, wireless, etc.) connection. The P PP over Ethernet option is for a dial-up c onnection u[...]

  • Seite 142

    Chapter 8 WAN NBG-460N User’s Guide 142 This screen displays when you select PPPoE encapsulat ion. Figure 101 Network > WAN > In ternet Connection: PPPoE Encapsulation The following table describes t h e labels in this screen. Table 49 Network > W A N > Internet Connection: PPPoE Encapsulation LABEL DESCRIPTION ISP Parameters for Inte[...]

  • Seite 143

    Chapter 8 WAN NBG-460N User’s Guide 143 Retype to Confirm Type your password again to make sure that you have enter ed is correctly. Nailed-Up Connection Select Nailed-Up Connection if you do not w ant the connection to time out. Idle Timeout This value specifies the time in seconds that elapses before the router automatically disconnects from th[...]

  • Seite 144

    Chapter 8 WAN NBG-460N User’s Guide 144 8.4.3 PPTP Encapsulation Point-to-Point Tunneling Prot ocol (PPTP) is a netwo rk protocol that enables secur e transfer of data from a remote client to a private server, creating a Virtual Private Network (VPN) using TCP/IP-based network s. PPTP supports on-demand, multi-protocol and virtual private network[...]

  • Seite 145

    Chapter 8 WAN NBG-460N User’s Guide 145 The following table describes t h e labels in this screen. Table 50 Networ k > WAN > Internet Connection: PPTP Encapsulation LABEL DESCRIPTION ISP Parameters for Internet Access Encapsulation Point-to-Point Tunneling Protocol (PPTP) is a network protocol that enables secure transfer of data from a rem[...]

  • Seite 146

    Chapter 8 WAN NBG-460N User’s Guide 146 8.5 Advanced WAN Screen Use this screen to enable Multicast , assign an IPTV Port , allow Windows Networking and enable Auto-bridge . Note: The four categorie s shown in this screen are independent of each other. First DNS Server Second DNS Server Third DNS Se rver Select From ISP if your ISP dynamically as[...]

  • Seite 147

    Chapter 8 WAN NBG-460N User’s Guide 147 To change your NBG-460N’s ad vanced WAN settings , click Network > WAN > Advanced . The screen appears as shown. Figure 103 Network > WAN > Advanced The following table describes t h e labels in this screen. Table 51 Networ k > WAN > Advanced LABEL DESCRIPTION Multicast Setup Multicast T[...]

  • Seite 148

    Chapter 8 WAN NBG-460N User’s Guide 148 8.6 Technical Reference The following section contains additional technical information about the NBG- 460N features described in this chapter. 8.6.1 IGMP IGMP version 2 (RFC 2236) is an improvement over version 1 (RFC 1112) but IGMP version 1 is still in wide use. If you would like to read more detailed in[...]

  • Seite 149

    NBG-460N User’s Guide 149 C HAPTER 9 LAN 9.1 Overview This chapter describes how to configure LAN settings. A Local Area Network (LAN) is a shared communicat ion system to which many computers are attached. A LAN is a computer network li mited to the immediate area, usually the same building or floor of a building. Figure 104 LAN Setup The LAN sc[...]

  • Seite 150

    Chapter 9 LAN NBG-460N User’s Guide 150 9.3 What You Need To Know The LAN parameters of the NBG-460N are pr eset in the factory with the following values: • IP address of 192.168.1.1 with subnet mas k of 255.255.255.0 (24 bits) • DHCP server enabled with 32 client IP addresses starting from 192.168.1.33. These parameters should work for the m[...]

  • Seite 151

    Chapter 9 LAN NBG-460N User’s Guide 151 The following table describes t h e labels in this screen. 9.5 LAN IP Alias IP alias allows you to partition a physical network i nto different logical networks over the same Ethernet interface. The NBG-460N supports three logical LAN interfaces via its single physic al Ethernet interface with the NBG-460N [...]

  • Seite 152

    Chapter 9 LAN NBG-460N User’s Guide 152 The following table describes t h e labels in this screen. 9.6 Advanced LAN Screen To change your NBG-460N’s ad vanced IP set tings, click Network > LAN > Advanced . The screen appears as shown. Figure 107 Network > LAN > Advanced The following table describes t h e labels in this screen. Tabl[...]

  • Seite 153

    Chapter 9 LAN NBG-460N User’s Guide 153 9.7 Technical Reference The following section contains additional technical information about the NBG- 460N features described in this chapter. Refer to Section 8.3.2 on page 135 for information on Multic ast. 9.7.1 LANs, WANs and the ZyXEL Device The actual physical connection determin es whether the NBG-4[...]

  • Seite 154

    Chapter 9 LAN NBG-460N User’s Guide 154 9.7.2 Any IP Traditionally, you must set the IP addresses and the subnet masks of a computer and the NBG-460N to be in the same subnet to allow the computer to access t he Internet (through the NBG-460N). In case s where your computer is req uired to use a static IP address in another networ k, you may need[...]

  • Seite 155

    Chapter 9 LAN NBG-460N User’s Guide 155 Address Resolution Protocol (ARP) is a pr otocol for mapping an Internet Protocol address (IP address) to a physical machin e address, also known as a Media Access Control or MAC address, on the local area network. IP routing table is defined on IP Ethernet devices (the NBG-460N) t o decide which hop to use[...]

  • Seite 156

    Chapter 9 LAN NBG-460N User’s Guide 156[...]

  • Seite 157

    NBG-460N User’s Guide 157 C HAPTER 10 DHCP 10.1 Overview DHCP (Dynamic Host Configuratio n Protocol, RFC 2131 and R FC 2132) allows individual client s to obtain TCP/IP config urati on at start-up from a server. You can configure the NBG-460N’s LAN as a DHCP serv er or disable it. When configured as a server, the NBG-460N provides the TCP/IP co[...]

  • Seite 158

    Chapter 10 DHCP NBG-460N User’s Guide 158 10.4 DHCP General Screen Use this screen to enab le the DHCP server. Click Network > DHCP . The following screen displays. Figure 110 Network > DHCP > General The following table describes t h e labels in this screen. 10.5 DHCP Advanced Screen This screen allows you to assign IP addr esses on the[...]

  • Seite 159

    Chapter 10 DHCP NBG-460N User’s Guide 159 To change your NBG-460N’s static DHCP settings, click Network > DHCP > Advanced . The following screen displays. Figure 111 Network > DHCP > Advanced The following table describes t h e labels in this screen. Table 56 Network > DHCP > Advanced LABEL DESCRIPTION Static DHCP Table # This[...]

  • Seite 160

    Chapter 10 DHCP NBG-460N User’s Guide 160 10.6 Client List Screen The DHCP table shows current DHCP client information (including IP Address , Host Name and MAC Address ) of network clients using the NBG-460N’s DHCP servers. Configure this screen to always assign an IP address to a MAC add ress (and host name). Click Network > DHCP Server &g[...]

  • Seite 161

    Chapter 10 DHCP NBG-460N User’s Guide 161 The following screen displays. Figure 112 Network > DHCP > Client List The following table describes t h e labels in this screen. Table 57 Network > DHCP > Client List LABEL DESCRIPTION # This is the index number of the host computer. IP Address This field displays t he IP address relative to [...]

  • Seite 162

    Chapter 10 DHCP NBG-460N User’s Guide 162[...]

  • Seite 163

    NBG-460N User’s Guide 163 C HAPTER 11 Network Address Translation (NAT) 11.1 Overview This chapter discusses how to configure NAT on the NBG-460N. NAT (Network Address Translation - NAT, RFC 1631) is the translati on of the IP address of a host in a packet. For exam ple, the source addr ess of an outgoing packet, used within one netw ork is chang[...]

  • Seite 164

    Chapter 11 Network Addr ess Translation (NAT) NBG-460N User’s Guide 164 Note: You must create a firewall rule in addition to setting up NAT, to allow traffic from the WAN to be forwarded th rough the NBG-460N. 11.2 What You Can Do •U s e t h e General screen ( Section 11.3 on page 164 ) screen to enable NAT and set a default server. •U s e t [...]

  • Seite 165

    Chapter 11 N etwork A ddress Trans lation (NAT) NBG-460N User’s Guide 165 11.4 NAT Application Screen Port forwarding allows you t o define the local servers to which the incoming services will be forwarde d. A port forwarding set is a l ist of insi de (behind NAT on the LAN) servers, for example, web or FTP, that you can make accessible to the o[...]

  • Seite 166

    Chapter 11 Network Addr ess Translation (NAT) NBG-460N User’s Guide 166 To change your NBG-460N’s port forward ing settings, click Network > NAT > Application . The screen appears as shown. Note: If you do not assign a Default Server IP address in the NAT > General screen, the NBG-460N discards all packets received for po rts that are [...]

  • Seite 167

    Chapter 11 N etwork A ddress Trans lation (NAT) NBG-460N User’s Guide 167 Service Name Type a name (of up to 31 printable ch aracters) to identify this rule in the first field next to Service Name . Othe rwise, select a predefined service in the second field next to Service Name . The predefined service name and port number(s) will display in the[...]

  • Seite 168

    Chapter 11 Network Addr ess Translation (NAT) NBG-460N User’s Guide 168 11.4.1 Game List Example Here is an example game li st text fi le. The index number, service name and associated port(s) are speci fied by semi -colons (no spaces). Use the name= xxx (where xxx is the service name) to crea te a new service. Po rt range can be separated with a[...]

  • Seite 169

    Chapter 11 N etwork A ddress Trans lation (NAT) NBG-460N User’s Guide 169 addresses and the ISP assigns the WAN IP address. The NAT net work appears as a single host on the In ternet. Figure 117 Multiple Servers Behind NAT Example 11.5 NAT Advanced Screen Some services use a dedicated range of ports on the client side and a ded icated range of po[...]

  • Seite 170

    Chapter 11 Network Addr ess Translation (NAT) NBG-460N User’s Guide 170 Note: Only one LAN computer can use a trigger port (range) at a time. Figure 118 Network > NAT > Advanced The following table describes t h e labels in this screen. Table 60 Network > NAT > Advanced LABEL DESCRIPTION Max NAT/ Firewall Session Per User Type a numbe[...]

  • Seite 171

    Chapter 11 N etwork A ddress Trans lation (NAT) NBG-460N User’s Guide 171 11.5.1 Trigger Port Forwarding Example The following is an example of t rigger port forwarding. Figure 119 Trigger Port Forwarding Process: Example 1 Jane requests a file from the Real Audio server (port 7070). 2 Port 7070 is a “trigger” port and causes the NBG-460N to [...]

  • Seite 172

    Chapter 11 Network Addr ess Translation (NAT) NBG-460N User’s Guide 172 5 Only Jane can connec t to the Real Audio se rver until the connection is closed or times out. The NBG-460N times out in th ree minutes with UDP (User Datagram Protocol), or two hours with TCP/IP (Tra nsfer Control Protocol/Internet Protocol). 11.5.2 Two Points To Remember A[...]

  • Seite 173

    NBG-460N User’s Guide 173 C HAPTER 12 Dynamic DNS 12.1 Overview Dynamic DNS (DDNS) services let you use a domain name with a dynamic IP address. 12.2 What You Can Do Use the Dynamic DNS screen ( Section 12.4 on page 174 ) to enable DDNS and configure the DDNS settings on the NBG-460N. 12.3 What You Need To Know Dynamic DNS allows you to update yo[...]

  • Seite 174

    Chapter 12 Dynam ic DNS NBG-460N User’s Guide 174 Note: If you have a private WAN IP addr ess, then you cannot use Dynamic DNS. You must have a public WAN IP address. 12.4 Dynamic DNS Screen Use this screen to enable DDNS and c o nfigure the DDNS sett ings on the NBG- 460N. To change your NBG-460N’s DDNS, clic k Network > DDNS . The screen a[...]

  • Seite 175

    Chapter 12 Dynamic D NS NBG-460N User’s Guide 175 Token Enter your client authorization key provided by the server to update DynDNS records. This field is configurable only when you select WWW.REGFISH.COM in the Service Provider field. Enable Wildcard Optio n Select the check box to enable DynDNS Wildcard. Enable off line optio n This option is a[...]

  • Seite 176

    Chapter 12 Dynam ic DNS NBG-460N User’s Guide 176[...]

  • Seite 177

    177 P ART III Security Firewall (179) Content Filtering (189) IPSec VPN (195)[...]

  • Seite 178

    178[...]

  • Seite 179

    NBG-460N User’s Guide 179 C HAPTER 13 Firewall 13.1 Overview Use the screens in this chapter to enable and configure the firewall that protects your NBG-460N and your LAN from unwanted or malicious traffic. Enable the firewall to protec t your LAN co mputers from attacks by hackers on the Internet and control access between the LAN and WAN. By de[...]

  • Seite 180

    Chapter 13 Firewall NBG-460N User’s Guide 180 •U s e t h e Services screen ( Section 13.5 on page 182 ) to enable service blocking, enter/delete/modify the services you want to block and the date/time you want to block them. 13.3 What You Need To Know The NBG-460N’s firewall feature physica lly separates the LAN and the WAN and acts as a secu[...]

  • Seite 181

    Chapter 13 Firewall NBG-460N User’s Guide 181 You can have the NBG-460N permit the use of asymmetrical route topology on the network (not reset the connection). Allowing asymmetrical routes may let traffic from the WAN go directly to the LAN without passing through the NBG-460N. A bette r s olution is to use IP alias t o put the NBG-460N and the [...]

  • Seite 182

    Chapter 13 Firewall NBG-460N User’s Guide 182 13.4 General Firewall Screen Use this screen to enable or disable th e NBG-460N’s firewall, and set up firewall logs. C lick Security > Firewall to open the General screen. Figure 123 Security > Firewall > General The following table describes t h e labels in this screen. 13.5 Services Scre[...]

  • Seite 183

    Chapter 13 Firewall NBG-460N User’s Guide 183 You can also use this screen to enable service blocking, enter/delete/modify the services yo u want to block and th e date/time you want to bloc k them. Click Security > Firewall > Services . The screen appears as shown next. Figure 124 Security > Firewall > Services The following table de[...]

  • Seite 184

    Chapter 13 Firewall NBG-460N User’s Guide 184 Do not respond to requests for unautho rized services Select this option to prevent hackers from finding the NBG-460N by probing for unused ports. If you select this option, the NBG-460N will not respond to port request(s) for unused ports, thus leaving the unused ports and the NBG-460N unseen. By def[...]

  • Seite 185

    Chapter 13 Firewall NBG-460N User’s Guide 185 13.5.1 The Add Firewall Rule Screen If you click Add or the Modify icon on an existing rule, the Add Firewall Rule screen is displayed. Use this screen to add a firew all rule or to modify an ex isting one. Figure 125 Security > Firewall > Se rvices > Adding a Ru le The following table descri[...]

  • Seite 186

    Chapter 13 Firewall NBG-460N User’s Guide 186 End IP Address Enter the ending IP ad dress in a rang e here. This fie ld is only available when IP Range is selected as the Address Type . IP Pool List Add an IP address from the IP Pool List to the Selected IP List by highlighting an IP address and clicking Ad d . To delete an IP address from the Se[...]

  • Seite 187

    Chapter 13 Firewall NBG-460N User’s Guide 187 Max NAT/ Firewall Session Per User Type a number ranging from 1 to 16000 to limit the number of NAT/ firewall sessions that a host can create . Apply Click Apply to save the settings. Reset Click Reset to start configuring this screen a gain. Cancel Click Cancel to return to the Services screen withou[...]

  • Seite 188

    Chapter 13 Firewall NBG-460N User’s Guide 188[...]

  • Seite 189

    NBG-460N User’s Guide 189 C HAPTER 14 Content Filtering 14.1 Overview This chapter provides a brief overview of content fil tering using the embedded web GUI. Internet content filtering allows you to cr eate and enforce Internet access policies tailored to your needs. Cont ent filtering is the ability to block certai n web features or specific UR[...]

  • Seite 190

    Chapter 14 Content Filtering NBG-460N User’s Guide 190 Restrict Web Features The NBG-460N can disabl e web proxies and block web features such as ActiveX controls, Java applets and cookies. Keyword Blocking URL Checking The NBG-460N checks the URL’s domain name (or IP add ress) and file path separately when performing keyword blocking. The URL?[...]

  • Seite 191

    Chapter 14 Con tent Filter ing NBG-460N User’s Guide 191 14.4 Filter Screen Use this screen to restri ct web features, add keywords for bl ocking and designate a trusted com puter. Click Security > Content Filter to open the Filter screen. Figure 126 Security > Con tent Filter > Filter The following table describes t h e labels in this s[...]

  • Seite 192

    Chapter 14 Content Filtering NBG-460N User’s Guide 192 Cookies Used by Web servers to track usage and provide service based on ID. Web Proxy A server that acts as an interm ediary between a user and the Internet to provide security, administrative control, and caching service. When a proxy server is located on the WAN it is possible for LAN users[...]

  • Seite 193

    Chapter 14 Con tent Filter ing NBG-460N User’s Guide 193 14.5 Schedule Screen Use this screen to set the day(s) and ti me you want the NBG-460N to use content filtering. Click Security > Content Filter > Schedule . The following screen displays. Figure 127 Security > Con tent Filter > Schedule The following table describes t h e label[...]

  • Seite 194

    Chapter 14 Content Filtering NBG-460N User’s Guide 194 14.6.1 Customizing Keyword Blocking URL Checking You can use co mmands to set how m uch of a webs ite’s URL t he content filter is to check for keyword blocking. See the append ices for inform ation on how to access and use the command interpreter. Domain Name or IP Address URL Checking By [...]

  • Seite 195

    NBG-460N User’s Guide 195 C HAPTER 15 IPSec VPN 15.1 Overview A virtual private network (VPN) provides secure communications between sites without the expense of leased site-to-site lines. A s ecure VPN is a combination of tunneling, encryption, aut hentication, access control and audi ting. It is used to transport traffic over the Internet or an[...]

  • Seite 196

    Chapter 15 IPSec VPN NBG-460N User’s Guide 196 •U s e t h e SA Monitor screen ( Section 15.5 on page 218 ) to displ ay and manage active VPN connections. 15.3 What You Need To Know A VPN tunnel is usually established in two phases . Each phase establishes a security association (SA), a contract indi cating what security parameters the NBG- 460N[...]

  • Seite 197

    Chapter 15 IPSec VPN NBG-460N User’s Guide 197 Note: Both routers must use the same negotiation mode. These modes are discussed in more detail in Section 15.6.5 on page 222 . Main mode is used in various exampl es in the rest of this section. IP Addresses of the NBG-460N and Remo te IPSec Router In the NBG-460N, you have to specify th e IP addres[...]

  • Seite 198

    Chapter 15 IPSec VPN NBG-460N User’s Guide 198 15.4 The General Screen Click Security > VPN to display the Summary screen. This is a read-only menu of your VPN rules (tunnels). Ed it a VPN rule by clicking the Edit icon. Figure 130 Security > VPN > General The following table describes t he fields in this screen. Table 67 Security > V[...]

  • Seite 199

    Chapter 15 IPSec VPN NBG-460N User’s Guide 199 15.4.1 VPN Rule Setup (Basic) Click the Edit icon in the General screen to disp lay the Rule Setup screen. This figure helps expl ain the main fields. Figure 131 IPSec Fields Summary Windows Networking (NetBIOS over TCP/IP ) NetBIOS (Network Basic Input/Output System) are TCP or UDP packets that enab[...]

  • Seite 200

    Chapter 15 IPSec VPN NBG-460N User’s Guide 200 Use this screen to configure a VPN rule. Figure 132 Security > VPN > General > Rule Setup: IKE (Basic) The following table describes t h e labels in this screen. Table 68 Security > VPN > General > Rule Setup: IKE (Basic) LABEL DESCRIPTION Property Active Select this check box to ac[...]

  • Seite 201

    Chapter 15 IPSec VPN NBG-460N User’s Guide 201 NAT Traversal Select this check box to enable NAT traversal. NAT traversal allows you to set up a VPN connection when there are NAT routers between the two IPSec routers. Note: The remote IPSec rou ter must also have NAT traversal enabled. You can use NAT traversal with ESP protocol using Transport o[...]

  • Seite 202

    Chapter 15 IPSec VPN NBG-460N User’s Guide 202 Remote Policy Remote IP addresses must be static and correspond to the remote IPSec router's configured local IP addresses. The remote fields do not apply when the Secure Gateway IP Address field is configured to 0.0.0.0 . In this case only the remote IPSec router can initiate the VPN. Two activ[...]

  • Seite 203

    Chapter 15 IPSec VPN NBG-460N User’s Guide 203 Local Content When you select IP in the Local ID Type field, type the IP address of your computer in the Local Content field. The NBG-460N automatically uses the IP address in the My IP Address field (refer to the My IP Address field description) if you configure the Local Content field to 0.0.0.0 or[...]

  • Seite 204

    Chapter 15 IPSec VPN NBG-460N User’s Guide 204 Peer Content The configuration of the peer cont ent depends on the peer ID type. For IP , type the IP address of the co mputer with which you will make the VPN connection. If you configu re this field to 0 .0.0.0 or leave it blank, the NBG-460N will use the address in the Secure Gateway Address field[...]

  • Seite 205

    Chapter 15 IPSec VPN NBG-460N User’s Guide 205 15.4.2 VPN Rule Setup (Advanced) Click the Advanced ... button in the Rule Setup screen to open this screen. Encryption Algorithm Select which key size and encryption algorithm to use for data communications. Choices are: DES - a 56-bit key with the DES encryption algorithm 3DES - a 168-bit key with [...]

  • Seite 206

    Chapter 15 IPSec VPN NBG-460N User’s Guide 206 Use this screen to configure a VPN rule. Figure 133 Security > VPN > General > Rule Setup: IKE (Advanced)[...]

  • Seite 207

    Chapter 15 IPSec VPN NBG-460N User’s Guide 207 The following table describes t h e labels in this screen. Table 69 Security > VPN > General > Rule Setup: IKE (Advanced) LABEL DESCRIPTION Property Active Select this check box to activate this VPN policy. Keep Alive Select this check box to have the NBG-460N automatically rein itiate the S[...]

  • Seite 208

    Chapter 15 IPSec VPN NBG-460N User’s Guide 208 Local Policy Local IP addresses must be static and correspond to the remote IPSec router's configured remote IP addresses. Two active SAs can have the same configured local or remote IP address, but not both. You can configure multiple SAs between the same local and remote IP addresses, as long [...]

  • Seite 209

    Chapter 15 IPSec VPN NBG-460N User’s Guide 209 Remote Address For a single IP address, enter a (static) IP address on the network behind the remote IPSec router. For a specific range of IP addresses, enter the beginning (static) IP address, in a range of computers on the network behind the remote IPSec router. To specify IP addresses on a network[...]

  • Seite 210

    Chapter 15 IPSec VPN NBG-460N User’s Guide 210 Local Content When you select IP in the Local ID Type field, type the IP address of your computer in the Local Co ntent field. The NBG-460N automatically uses the IP address in the My IP Address field (refer to the My IP Address field description) if you configure the Local Content field to 0.0.0.0 o[...]

  • Seite 211

    Chapter 15 IPSec VPN NBG-460N User’s Guide 211 Peer Content The configuration of the peer cont ent depends on the peer ID type. For IP , type the IP address of the computer with which you will make the VPN connection. If you configure this field to 0.0.0.0 or leave it blank, the NBG-460N will use the address in the Secure Gateway Address field (r[...]

  • Seite 212

    Chapter 15 IPSec VPN NBG-460N User’s Guide 212 Pre-Shared Key Type your pre-shared key in this fi eld. A pre-shared key identifies a communicating party during a phase 1 IKE negotiation. It is called "pre-shared" because you have to sh are it with another party before you can communicate with them over a secure connection. Type from 8 t[...]

  • Seite 213

    Chapter 15 IPSec VPN NBG-460N User’s Guide 213 15.4.3 VPN Rule Setup (Manual) Use this screen to configure VPN rules (tu nnels) that us e manual keys. Manual key management is useful if you have problems with IKE ke y management. Select Manual in the IPSec Keying Mode field on the Rule Setup screen to open the screen as shown in Figure 134 on pag[...]

  • Seite 214

    Chapter 15 IPSec VPN NBG-460N User’s Guide 214 15.4.3.3 Authentication and th e Security Parameter Index (SPI) For authentication, the NBG-460N and remote IPSec router use the SPI, instead of pre-shared keys, ID type and content. The SPI is an identification number. Note: The NBG-460N and remote IPSec ro uter must use the same SPI. Figure 134 Sec[...]

  • Seite 215

    Chapter 15 IPSec VPN NBG-460N User’s Guide 215 IPSec Keying Mode Select IKE or Manual from the drop-down list box. IKE provide s more protection so it is generally recommended. Manual is a useful option for troubleshooting if you have problems using IKE key management . Protocol Number Enter 1 for ICMP, 6 for TCP, 17 for UDP, etc. 0 is the defaul[...]

  • Seite 216

    Chapter 15 IPSec VPN NBG-460N User’s Guide 216 Remote Policy Remote IP addresses must be static and correspond to the remote IPSec router's configured local IP addresses. The remote fields do not apply when the Secure Gateway IP Address field is configured to 0.0.0.0 . In this case only the remote IPSec router can initiate the VPN. Two activ[...]

  • Seite 217

    Chapter 15 IPSec VPN NBG-460N User’s Guide 217 Secure Gateway Address Type the WAN IP address or the domain name (up to 31 characters) of the IPSec router with which you're making the VPN connection. Set this field to 0.0.0.0 if the remote IPSec router has a dynamic WAN IP address (the IPSec Keying Mode field must be set to IKE ). In order t[...]

  • Seite 218

    Chapter 15 IPSec VPN NBG-460N User’s Guide 218 15.5 The SA Monitor Screen In the Web Configurator, click Security > VPN > SA Monitor . Use this screen to display and manage active VPN co nnections. A Security Association (SA) is the group of security settings related to a specific VPN tunne l. This scre en displays active VPN connections. U[...]

  • Seite 219

    Chapter 15 IPSec VPN NBG-460N User’s Guide 219 15.6 Technical Reference The following section contains additional technical information about the NBG- 460N features described in this chapter. 15.6.1 VPN and Remote Management You can allow someone to use a service (like Telnet or HTTP) through a VPN tunnel to manage the NBG-460N. One of the NBG-46[...]

  • Seite 220

    Chapter 15 IPSec VPN NBG-460N User’s Guide 220 IPSec router use in the IKE SA. In main mode, this is done in steps 1 and 2 , as illustrated below. Figure 137 IKE SA: Main Ne gotiation Mode, Steps 1 - 2: IKE SA Proposal The NBG-460N sends a proposal to the remote IPSec router. Each proposal consists of an encryption al gorithm, au thentication alg[...]

  • Seite 221

    Chapter 15 IPSec VPN NBG-460N User’s Guide 221 15.6.4 Authentication Before the NBG-460N and remote IPSec rout er establish an IKE SA, they have to verify each other’s ident ity. This proces s is based on p re-shared keys and router identities. In main mode, the NBG-460N and remote IP Sec router authenticate each other in steps 5 and 6 , as il [...]

  • Seite 222

    Chapter 15 IPSec VPN NBG-460N User’s Guide 222 In the following example, the ID type and content do not match so the authentication fails and the NBG-460N and the remote IPSec router cannot establish an IKE SA. 15.6.5 Negotiation Mode There are two negotiati on modes: main mode and aggressive mode. Main mode provides better security, while aggres[...]

  • Seite 223

    Chapter 15 IPSec VPN NBG-460N User’s Guide 223 Step 3: The NBG-460N authenticates the remote IPSec router and confi rms that the IKE SA is established. Aggressive mode does not provide as mu ch securit y as main mode because the identity of the NBG-460N and the identity of the remote IPSec router are not encrypted. It is usually used when the add[...]

  • Seite 224

    Chapter 15 IPSec VPN NBG-460N User’s Guide 224 15.6.7 IPSec Protocol The IPSec protocol controls the format of each packet. It also specifies how much of each packet is protected by the encry ption and authentication algorithms. IPSec VPN includes two IPSec protocols, AH (Authenticati on Header, RFC 2402) and ESP (Encapsulating Security Payload, [...]

  • Seite 225

    Chapter 15 IPSec VPN NBG-460N User’s Guide 225 In transport mode, the encapsulation depe nds on the IPSec protocol. With AH, the NBG-460N includes part of the ori ginal IP header when it encapsulates the packet. With ESP, however, the NBG-460N does not include the IP header when it encapsulates the packet, so it is not possible to verify the inte[...]

  • Seite 226

    Chapter 15 IPSec VPN NBG-460N User’s Guide 226 An IPSec SA can be set to keep alive Normal ly, the NBG-460N drops the IPSec SA when the life time expires or after tw o minutes of outbound traffic with no inbound traffic. If you set the IPSec SA to keep alive , the NBG-460N automatically renegotiates the IPSec SA when the SA life time expi res, an[...]

  • Seite 227

    Chapter 15 IPSec VPN NBG-460N User’s Guide 227 computers that use privat e domain names on the HQ network, the NBG-460N at B uses the Intranet DNS server in headquarters. Figure 142 Private DNS Server Example Note: If you do not specif y an Intranet DNS server on the remote network, then the VPN host must use IP addresse s to access the computers[...]

  • Seite 228

    Chapter 15 IPSec VPN NBG-460N User’s Guide 228[...]

  • Seite 229

    229 P ART IV Management Static Route ( 231) Bandwidth Management (235) Remote Management (247) Universal Plug-and-Play (UPnP) (253)[...]

  • Seite 230

    230[...]

  • Seite 231

    NBG-460N User’s Guide 231 C HAPTER 16 Static Route 16.1 Overview This chapter shows you how to config ure static routes for your NBG-460N. The NBG-460N usually uses th e default gateway to route out bound traffic from computers on the LAN to the Internet. To have the NBG-460N send data to devices not reachable through the de fault g ateway, use s[...]

  • Seite 232

    Chapter 16 Static Rou te NBG-460N User’s Guide 232 •U s e t h e Static Route Setup screen ( Section 16.3.1 on page 233 ) to add or edit a static route rule. 16.3 IP Static Route Screen Use this screen to view existi ng stat ic route rules. Click Management > Static Route to open the IP Static Route screen. The following screen displays. Figu[...]

  • Seite 233

    Chapter 16 Static Route NBG-460N User’s Guide 233 16.3.1 Static Route Setup Screen To edit a static route, click the edit icon under Modify . The following screen displays. Fill in the required information for each static rout e. Figure 145 Management > Static Rout e > IP Static Route: Static Route Setup The following table describes t h e [...]

  • Seite 234

    Chapter 16 Static Rou te NBG-460N User’s Guide 234 Apply Click Apply to save your changes back to the NBG-460N. Cancel Click Cancel to return to the previous screen and not save your changes. Table 75 Management > Static Route > IP Static Rout e: Static Route Setup LABEL DESCRIPTION[...]

  • Seite 235

    NBG-460N User’s Guide 235 C HAPTER 17 Bandwidth Management 17.1 Overview This chapter contains information about configuring bandwidth management and editing rules. ZyXEL’s Bandwidth Management allows you to specify bandwidt h management rules based on an application. In the figure below, uplink tra ffic goes from the LAN device ( A ) to the WA[...]

  • Seite 236

    Chapter 17 Bandwid th Manageme nt NBG-460N User’s Guide 236 17.3 What You Need To Know The NBG-460N applies bandwi dth management to traffic that it forwards out through an interface. The NBG-460N does no t control the bandwidth of traffic that comes into an interface. Bandwidth management applies to all traffi c flowing out of the ro uter, rega [...]

  • Seite 237

    Chapter 17 Bandwidth Management NBG-460N User’s Guide 237 Click Management > Bandwidth MGMT to open the bandwidth management General screen. Figure 147 Management > Band width MGMT > General The following table describes t h e labels in this screen. Table 76 Management > Bandwidth MGMT > Genera l LABEL DESCRIPTION Enable Bandwidth [...]

  • Seite 238

    Chapter 17 Bandwid th Manageme nt NBG-460N User’s Guide 238 17.5 Advanced Configuration Use this screen to configure bandwidth management rules for the pre-defined services or applications. You can also use this screen to configure bandwidth management rule for other services or applications t hat are not on the pre-defined list of NBG-460N. Addi[...]

  • Seite 239

    Chapter 17 Bandwidth Management NBG-460N User’s Guide 239 Click Management > Bandwidth MGMT > Advanced to open the bandwidth management Advanced screen. Figure 148 Management > Band width MGMT > Advanced The following table describes t h e labels in this screen. Table 77 Management > Bandwidth MGMT > Advanced LABEL DESCRIPTION A[...]

  • Seite 240

    Chapter 17 Bandwid th Manageme nt NBG-460N User’s Guide 240 17.5.1 Rule Configuration with the Pre-defined Service To edit a bandwidth management rule for the pre-defined service in the NBG- 460N, click the Edit icon in the Application List table of the Advanced screen. The following screen displays. Figure 149 Bandwidth Management Rule Configura[...]

  • Seite 241

    Chapter 17 Bandwidth Management NBG-460N User’s Guide 241 The following table describes t h e labels in this screen. 17.5.2 Rule Configuration: User Defined Service Rule Configuration If you want to edit a bandwidth management rule for other applications or services, click the Edit icon in the User-defined Service table of the Advanced screen. Th[...]

  • Seite 242

    Chapter 17 Bandwid th Manageme nt NBG-460N User’s Guide 242 The following table describes t h e labels in this screen 17.6 Monitor Screen Use this screen to view t he amount of network bandwidth that app lications running in the network are using. The bandwidth is measured in kilob its per second (kbps). The monitor shows what kinds of applicatio[...]

  • Seite 243

    Chapter 17 Bandwidth Management NBG-460N User’s Guide 243 Click Management > Bandwidth MGMT > Monitor to open the bandwidth management Monitor screen. Figure 151 Management > Band width MGMT > Monitor 17.7 Technical References The following section contains additional technical information about the NBG- 460N features described in thi[...]

  • Seite 244

    Chapter 17 Bandwid th Manageme nt NBG-460N User’s Guide 244 17.7.2 Default Bandwidth Management Classes and Priorities If you enable bandwidth management but d o not configure a rule for critical traffic like VoIP, the voice traffic may then ge t delayed due to insuffici ent bandwidth. With the automatic traffi c classifier feat ure activated, th[...]

  • Seite 245

    Chapter 17 Bandwidth Management NBG-460N User’s Guide 245 17.7.3 Bandwidth Management Priorities The following table descri bes the prioriti es that you can apply to traffic that the NBG-460N forwards out through an interface. See Appendix E on page 369 for commonly used services and port numbers. Table 82 Bandwidth Man agement Priorities PRIORIT[...]

  • Seite 246

    Chapter 17 Bandwid th Manageme nt NBG-460N User’s Guide 246[...]

  • Seite 247

    NBG-460N User’s Guide 247 C HAPTER 18 Remote Management 18.1 Overview This chapter provides information on the Remote Management screens. Remote Management allows you to ma nage your NBG-460N from a remote location through the following interfaces: •L A N a n d W A N •L A N o n l y •W A N o n l y Note: When you configu re remote management [...]

  • Seite 248

    Chapter 18 Remo te Management NBG-460N User’s Guide 248 18.3 What You Need To Know You may only have one remote manageme nt session running at a time. The NBG- 460N automatically disconnects a remote management session of lower priority when another remote management session of higher priority starts. The priorities for the different typ es of re[...]

  • Seite 249

    Chapter 18 Remote Manag ement NBG-460N User’s Guide 249 18.4 WWW Screen Use this screen to define the interf ace/s from which the NBG-460N can be managed remotely using the web and specify a secure client that can manage the NBG-460N. To change your NBG-460N’s World Wi de Web settings, click Management > Remote MGMT to display the WWW screen[...]

  • Seite 250

    Chapter 18 Remo te Management NBG-460N User’s Guide 250 18.5 Telnet Screen You can use Telnet to access the NBG-460N ’s command line interfac e. Specify the interface/s from which the NBG-460N can be managed remotely using this service and specify a secure client that c an manage the NBG-460N. To change your NBG-460N’s Telnet set t ings, clic[...]

  • Seite 251

    Chapter 18 Remote Manag ement NBG-460N User’s Guide 251 Use this screen to specify the interface/s from which you can up load the firmware or configuration file to the NBG-460N and specify a secure client that can manage the NBG-460N. To change your NBG-460N’s FTP setti ngs, click Management > Remote MGMT > FTP . Figure 154 Management >[...]

  • Seite 252

    Chapter 18 Remo te Management NBG-460N User’s Guide 252 To change your NBG-460N’s DNS settings, cl ick Management > Remote MGMT > DNS . The screen appears as shown. Figure 155 Management > Remote MGMT > DNS The following table describes t h e labels in this screen. Table 86 Management > Remote MGMT > DNS LABEL DESCRIPTION Serv[...]

  • Seite 253

    NBG-460N User’s Guide 253 C HAPTER 19 Universal Plug-and-Play (UPnP) 19.1 Overview This chapter introduces the UPnP feature in the Web Configurator. Universal Plug and Play (UPnP) is a dist ributed, open networking standard that uses TCP/IP for simple peer-to-peer network connectivi ty between devices. A UPnP device can dynamically join a network[...]

  • Seite 254

    Chapter 19 Universal Plug-and-Play (UPnP) NBG-460N User’s Guide 254 • Learning public IP addresses • Assigning lease times to mappings Windows Messenger is an example of an application that supports NAT traversal and UPnP. See the NAT chapter for more information on NAT. 19.3.2 Cautions with UPnP The automated nature of NAT traversal applic a[...]

  • Seite 255

    Chapter 19 Universal Plug-and-Play (UPnP) NBG-460N User’s Guide 255 The following table describes t h e labels in this screen. 19.5 Technical Reference The sections show examples of using UPnP. 19.5.1 Using UPnP in Windows XP Example This section shows you how to use the UPnP feature in Windows XP. You must already have UPnP installed in Windows [...]

  • Seite 256

    Chapter 19 Universal Plug-and-Play (UPnP) NBG-460N User’s Guide 256 2 Right-click the icon and select Properties . Figure 157 Network Conne ctions 3 In the Internet Connection Properties window , click Settings to see th e port mappings there were automatically created. Figure 158 Internet Co nnection Properties[...]

  • Seite 257

    Chapter 19 Universal Plug-and-Play (UPnP) NBG-460N User’s Guide 257 4 You may edit or delete the port mappings or c lick Add to manually add port mappings. Figure 159 Internet Co nnection Pro perties: Advanced Settings Figure 160 Internet Co nnection Properti es: Advanced Settings: Add Note: When the UPnP-enabled device is di sconnected fro m you[...]

  • Seite 258

    Chapter 19 Universal Plug-and-Play (UPnP) NBG-460N User’s Guide 258 6 Double-click on the icon to display yo ur current Inte rnet connec tion status. Figure 162 Internet Co nnection Status 19.5.2 Web Configurator Easy Access With UPnP, you can access the web-based configurator on the NBG-460N without finding out the IP address of the NBG-460N fir[...]

  • Seite 259

    Chapter 19 Universal Plug-and-Play (UPnP) NBG-460N User’s Guide 259 3 Select My Network Places under Other Places . Figure 163 Network Conne ctions 4 An icon with the description f or each UPnP-enabled device displays under Local Network . 5 Right-click on the icon fo r your NBG-460N and select Invoke . The Web Configurator login screen displ ays[...]

  • Seite 260

    Chapter 19 Universal Plug-and-Play (UPnP) NBG-460N User’s Guide 260 6 Right-click on the icon fo r your NBG-460N and select Properties . A properties window displays with basic information about the NBG- 460N. Figure 165 Networ k Connections: My Networ k Places: Properties: Example Figure 166[...]

  • Seite 261

    261 P ART V Maintenance and Troubleshooting System (263) Logs (269) Tools (289) Configuration Mode (297) Sys Op Mode (299) Language (303) Troubleshooting (305) Product Sp ecificati ons and Wa ll-Mount ing Instructions (313)[...]

  • Seite 262

    262[...]

  • Seite 263

    NBG-460N User’s Guide 263 C HAPTER 20 System 20.1 Overview This chapter provides information on the System screens. Refer to the chapter on Connec tion Wi zard chapter on page 49 for background informat ion. 20.2 What You Can Do •U s e t h e General sc reen ( Section 20.3 on page 263 ) to enter a name to identify the NBG-460N in the network and[...]

  • Seite 264

    Chapter 20 System NBG-460N User’s Guide 264 The following table describes t h e labels in this screen. Table 88 Maintenance > Syste m > General LABEL DESCRIPTION System Name System Name is a unique name to identify the NBG-460N in an Ethernet network. It is recomme nded you enter your computer’s “Computer name” in this field. This nam[...]

  • Seite 265

    Chapter 20 System NBG-460N User’s Guide 265 20.4 Time Setting Screen To change your NBG-460N’s time and date, click Maintenance > System > Time Setting . The screen appears as shown. Use this screen to configure t he NBG-460N’s time based on your loc al time zone. Figure 168 Maintenance > System > Time Setting he following tabl e [...]

  • Seite 266

    Chapter 20 System NBG-460N User’s Guide 266 New Date (yyyy/mm/dd) This field displays the last updated date from the time server or the last date configured manually. When you set Time and Date Setup to Manual , enter the new date in this field and then click Apply . Get from Time Server Select this radio button to have the NBG-460N get the time [...]

  • Seite 267

    Chapter 20 System NBG-460N User’s Guide 267 End Date Configure the day and time when Daylight Saving Time ends if you selected Daylight Savings . The o'clock field uses the 24 hour format. Here are a couple of examples: Daylight Saving Time ends in the Un ited States on the las t Sunday of October. Each time zone in the United States stops u[...]

  • Seite 268

    Chapter 20 System NBG-460N User’s Guide 268[...]

  • Seite 269

    NBG-460N User’s Guide 269 C HAPTER 21 Logs 21.1 Overview This chapter contains information abou t configuring general log settings and viewing the NBG-460N’s logs. Refer to Section 21.6.1 on page 274 for example log messa ge explanati ons. The Web Configurator allows you to look at all of the NBG-460N’s logs in one location. 21.2 What You Can[...]

  • Seite 270

    Chapter 21 Logs NBG-460N User’s Guide 270 21.4 View Log Screen Use the View Log screen to see the logs for the ca tegories that you sel e cted in the Log Settings screen (see Section 21.5 on page 271 ). Options incl ude logs about system maintenance, system errors , access c ontrol, allowed or blocked web sites, blocked web features (such as Acti[...]

  • Seite 271

    Chapter 21 Lo gs NBG-460N User’s Guide 271 21.5 Log Settings You can configure the NBG-460N’s gene ral log settings in one location. Use the Log Settings screen to configure where the NBG-460N sends logs, the schedule for when the NBG-460N sends the logs and which logs and /or immediate alerts the NBG-460N to send. Refresh Click Refresh to rene[...]

  • Seite 272

    Chapter 21 Logs NBG-460N User’s Guide 272 Click Maintenance > Logs > Log Settings to open the Log Settings screen. Figure 170 Maintenance > L ogs > Log Settings The following table describes t h e labels in this screen. Table 91 Maintenance > Logs > Log Se ttings LABEL DESCRIPTION E-mail Log Settings Mail Server Enter the server[...]

  • Seite 273

    Chapter 21 Lo gs NBG-460N User’s Guide 273 Mail Subject Type a title that you want to be in the subject line of the log e-mail message that the NBG-460N sends. Not all NBG-460N models have this field. Send Log To The NBG-460N send s logs to the e-mail address specified in this field. If this field is left blank, the NBG-460N does not send log s v[...]

  • Seite 274

    Chapter 21 Logs NBG-460N User’s Guide 274 21.6 Technical Reference The following section contains additional technical information about the NBG- 460N features described in this chapter. 21.6.1 Log Descriptions This section provides descripti ons of example log messages. Log Select the categories of logs that you want to record. Send Immediate Al[...]

  • Seite 275

    Chapter 21 Lo gs NBG-460N User’s Guide 275 Time initialized by Time server The router got the time and date from the time server. Time initialized by NTP server The router got the time and date from the NTP server. Connect to Daytime server fail The router was not able to connect to the Daytime server. Connect to Time server fail The router was n[...]

  • Seite 276

    Chapter 21 Logs NBG-460N User’s Guide 276 Table 94 Acce ss Control Logs LOG MESSAGE DESCRIPTION Firewall default policy: [TCP | UDP | IGMP | ESP | GRE | OSPF] <Packet Direction> Attempted TCP/UDP/IGMP/ESP/GRE/OSPF access matched the default policy and was blocked or forwarded according to the default policy’s setting. Firewall rule [NOT] [...]

  • Seite 277

    Chapter 21 Lo gs NBG-460N User’s Guide 277 Firewall session time out, sent TCP RST The router sent a TCP rese t packet when a dynamic firewall session timed out. The default timeout values are as follows: ICMP idle timeout: 3 minutes UDP idle timeout: 3 minutes TCP connection (three way handshaking) tim eout: 270 seconds TCP FIN-wait timeout: 2 M[...]

  • Seite 278

    Chapter 21 Logs NBG-460N User’s Guide 278 Triangle route packet forwarded: ICMP The firewall allowed a triangle route session to pass thro ugh. Packet without a NAT table entry blocked: ICMP The router blocked a packet that didn’t have a corresponding NAT table entry. Unsupported/out-of-order ICMP: ICMP The firewall does not support this kind o[...]

  • Seite 279

    Chapter 21 Lo gs NBG-460N User’s Guide 279 Table 100 UPnP Logs LOG MESSAGE DESCRIPTION UPnP pass through Firewall UPn P packets can pass through the fire wall. Table 101 Content Filtering Logs LOG MESSAGE DESCRIPTION %s: Keyword blocking The content of a requested web page matched a user defined keyword. %s: Not in trusted web list The web site i[...]

  • Seite 280

    Chapter 21 Logs NBG-460N User’s Guide 280 Table 102 Attack Logs LOG MESSAGE DESCRIPTION attack [TCP | UDP | IGMP | ESP | GRE | OSPF] The firewall detected a TC P/UDP/IGMP/ESP/GRE/OSPF attack. attack ICMP (type:%d, code:%d) The firewall detected an ICMP attack. For type and code details, see Table 108 on page 286 . land [TCP | UDP | IGMP | ESP | G[...]

  • Seite 281

    Chapter 21 Lo gs NBG-460N User’s Guide 281 Receive IPSec packet, but no corresponding tunnel exists The router dropped an inbound packet for which SPI could not find a corresponding phase 2 SA. Rule <%d> idle time out, disconnect The router dropped a connection that had outbound traffic and no inbound traffic for a certain time period. You [...]

  • Seite 282

    Chapter 21 Logs NBG-460N User’s Guide 282 Peer ID: <peer id> <My remote type> -<My local type> The displayed ID information did not match between the two ends of the connection. vs. My Remote <My remote> - <My remote> The displayed ID information did not match between the two ends of the connection. vs. My Local <[...]

  • Seite 283

    Chapter 21 Lo gs NBG-460N User’s Guide 283 XAUTH fail! Username: <Username> The router was not able to use extended authentication to authenticate the listed username. Rule[%d] Phase 1 negotiation mode mismatch The listed rule’s IKE phase 1 negotiation mode did not match between the router and the peer. Rule [%d] Phase 1 encryption algori[...]

  • Seite 284

    Chapter 21 Logs NBG-460N User’s Guide 284 Rule [%d] phase 1 mismatch The listed rule’ s IKE phase 1 did not match between the router and the peer. Rule [%d] phase 2 mismatch The listed rule’ s IKE phase 2 did not match between the router and the peer. Rule [%d] Phase 2 key length mismatch The listed rule’s IKE phase 2 key lengths (with the [...]

  • Seite 285

    Chapter 21 Lo gs NBG-460N User’s Guide 285 Failed to decode the received CRL The router received a corrupted CRL (Certificate Revocation List) from the LDAP server whose address and port are recorded in the Source field. Failed to decode the received ARL The router received a corrupted ARL (Authority Revocation List) from the LDAP server whose ad[...]

  • Seite 286

    Chapter 21 Logs NBG-460N User’s Guide 286 Local User Database does not support authentication method. A user tried to use an authentication method that the local user database does not support (it only supports EAP-MD5). No response from RADIUS. Pls check RADIUS Server. There is no response message from the RADIUS server, please check the RADIUS [...]

  • Seite 287

    Chapter 21 Lo gs NBG-460N User’s Guide 287 0 A gateway may discard internet datagrams if it does not have the buffer space needed to queue the datagrams for output to the next network on the route to the destination network. 5 Redirect 0 Redirect datagrams for the Network 1 Redirect datagrams for the Host 2 Redirect datagrams for the Type of Serv[...]

  • Seite 288

    Chapter 21 Logs NBG-460N User’s Guide 288 The following table shows RFC-2408 ISAKMP payload types that the log di splays. Please refer to the RFC for detailed information on eac h type. Table 110 RFC-2408 ISAKMP Payload Types LOG DISPLAY PAYLOAD TYPE SA Security Association PROP Proposal TRANS Transform KE Key Excha nge ID Identification CER Cert[...]

  • Seite 289

    NBG-460N User’s Guide 289 C HAPTER 22 Tools 22.1 Overview This chapter shows you how to upload a new firmware, upload or save backup configuration files and restart the NBG-460N. 22.2 What You Can Do •U s e t h e Firmware screen ( Section 22.3 on page 289 ) to upload fi rmware to your NBG-460N. •U s e t h e Configura tion screen ( Section 22.[...]

  • Seite 290

    Chapter 22 Tools NBG-460N User’s Guide 290 Click Maintenance > Too ls . Follow the instructions in this screen to upload firmware to your NBG-460N. Figure 171 Maintenance > Tools > Firmware The following table describes t h e labels in this screen. Note: Do not turn off the NBG-460 N while firmware upload is in progress! After you see th[...]

  • Seite 291

    Chapter 22 Tools NBG-460N User’s Guide 291 The NBG-460N automatically restarts in thi s time causing a temporary network disconnect. In some operating systems , you may see the following icon on your desktop. Figure 173 Network Tempora rily Disconnected After two minutes, log in again and ch eck your new firmware versio n in the Status screen. If[...]

  • Seite 292

    Chapter 22 Tools NBG-460N User’s Guide 292 22.4 Configuration Screen Click Maintenance > Too ls > Configuration . Informa tion rela ted to factory defaults, backup configuration, and restoring configuration appears as shown next. Figure 175 Maintenance > Tools > Configuration 22.4.1 Backup Configuration Backup configuration allows you[...]

  • Seite 293

    Chapter 22 Tools NBG-460N User’s Guide 293 Note: Do not turn off th e NBG-460N while c onfiguration file upload is in progress After you see a “configuration upload su ccessful” sc reen, you must then wait one minute before logging into the NBG-460N again. Figure 176 Configurati on Resto re Succes sful The NBG-460N automatically restarts in t[...]

  • Seite 294

    Chapter 22 Tools NBG-460N User’s Guide 294 If the upload was not successful , the following screen will appear. Click Return to go back to the Configuration screen. Figure 178 Configuratio n Restore Erro r 22.4.3 Back to Factory Defaults Pressing the Reset button in this section c lears all user-entered configuration information and returns the N[...]

  • Seite 295

    Chapter 22 Tools NBG-460N User’s Guide 295 22.6 Wake On LAN Wake On LAN (WOL) allows you to remotely turn on a device on the network. To use this feature the remote hardware (f or example the network adapter on your computer) must support Wake On LAN. You need to know the MAC ad dress of the remote device. It may be on a label on the device or in[...]

  • Seite 296

    Chapter 22 Tools NBG-460N User’s Guide 296 Note: When the NBG-460N reboots from low p ower mode, some processes may not automatically resume. Click Maintenance > Too ls > Green to open the following screen. Figure 181 TMaintenance > Tools > Green The following table describes t h e labels in this screen. Table 114 Maintenance > Too[...]

  • Seite 297

    NBG-460N User’s Guide 297 C HAPTER 23 Configuration Mode 23.1 Overview Your NBG-460N allows you to hide or display the advanced screens of some features or the advanced features, su ch as MAC filter or static route. Advanced is selected by default and you ca nnot see the advanced screens or features as soon as you log on t o the Web Conf igurator[...]

  • Seite 298

    Chapter 23 Config uration Mode NBG-460N User’s Guide 298 The following table describes t h e labels in this screen. Table 115 Maintenance > Config Mode > General The following table i ncludes the screens th at you cannot view and configure if you do not select Advanced mode. Table 116 Advanced Co nfiguration Options Note: In AP Mode many sc[...]

  • Seite 299

    NBG-460N User’s Guide 299 C HAPTER 24 Sys Op Mode 24.1 Overview The Sys Op Mode (System Operation Mode) function l ets you configure whether your NBG-460N is a router or AP. You can choose between Router Mode and AP Mode depending on your network topology and the features you require from your devi ce. See Section 1.1 on page 23 for more informat[...]

  • Seite 300

    Chapter 24 Sys Op Mod e NBG-460N User’s Guide 300 Router A router connects your local network with another network, such as the Internet. The router has two IP addresses, the LAN IP address and the WAN IP address. Figure 183 LAN and WAN IP Addre sses in Router Mode AP An AP extends one network and so has just one IP address. All Ethernet ports on[...]

  • Seite 301

    Chapter 24 Sys Op Mode NBG-460N User’s Guide 301 24.4 General Screen Use this screen to select how you want to use your NBG-460N depending on how you connect to the Internet. Figure 185 Maintenance > Sys OP Mode > General If you select Router Mode, the foll owing pop-up message window appears. Figure 186 Maintenance > Sys Op Mode > Ge[...]

  • Seite 302

    Chapter 24 Sys Op Mod e NBG-460N User’s Guide 302 • Th e D HC P s e rv e r o n y o u r d e v i c e i s d i s ab l e d. I n A P m o d e th e r e mu s t b e a de v i c e with a DHCP server on your netw ork su ch as a router or gateway which can allocate IP addresses. The IP address of the device on the local network is set to 192. 168.1.1. The fo[...]

  • Seite 303

    NBG-460N User’s Guide 303 C HAPTER 25 Language 25.1 Language Screen Use this screen to change the la nguage for the Web Configurator . Click the lang uage you prefer. The Web Configurator l anguage changes aft er a while without restarting the NBG-460N. Figure 188 Language[...]

  • Seite 304

    Chapter 25 La nguage NBG-460N User’s Guide 304[...]

  • Seite 305

    NBG-460N User’s Guide 305 C HAPTER 26 Troubleshooting This chapter offers some suggestions t o solve problems you might encounter. The potential problems are divided into the following categori es. • Power, Hardware Connections, and LED s • NBG-460N Access and Login • Internet Access • Resetting the NBG-460N to Its Fact ory Defaults • W[...]

  • Seite 306

    Chapter 26 Trou bleshooting NBG-460N User’s Guide 306 2 Check the hardware connections. See the Quick Start Guide. 3 Inspect your cables for damage. Contact the vendor to replace any damaged cables. 4 Disconnect and re-connect the power adaptor to the NBG-460N. 5 If the problem continues, contac t the vendor. 26.2 NBG-460N Access and Login I don?[...]

  • Seite 307

    Chapter 26 Trou bleshooting NBG-460N User’s Guide 307 1 The default password is 1234 . 2 If this does not work, you have to rese t the device to its factory defaults. See Section 26.4 on page 310 . I cannot see or access the Login screen in the W eb Configurator. 1 Make sure you are using the correct IP address. • The default IP address is 192.[...]

  • Seite 308

    Chapter 26 Trou bleshooting NBG-460N User’s Guide 308 I can see the Login screen, but I cannot lo g in to the NBG-460N. 1 Make sure you have entered the passw ord correctly. The default p assword is 1234 . This field is cas e-sensitive, so make sure [Caps Lock] is not on. 2 You cannot log in to th e Web Configurator while someone is using Telnet [...]

  • Seite 309

    Chapter 26 Trou bleshooting NBG-460N User’s Guide 309 2 Make sure you entered your ISP account information correctly in the wizard. These fields are case-sensiti ve, so make sure [Caps Lock] i s not on. 3 If you are trying to access the Internet wi relessl y, make sure the wireless settings in the wireless cl ient are the sa m e as the setti ngs [...]

  • Seite 310

    Chapter 26 Trou bleshooting NBG-460N User’s Guide 310 3 Reboot the NBG-460N. 4 If the problem continues, contact the netw or k administrator or vendor, or try one of the advanced suggestions. Advanced Suggestions • Check the settings for bandwidth mana gement. If it is disabl ed, you might consider activating it. If it is enab led, you migh t c[...]

  • Seite 311

    Chapter 26 Trou bleshooting NBG-460N User’s Guide 311 26.5 Wireless Router/AP Troubleshooting I cannot access the NBG-460N or ping an y computer from t he WLAN (wireless AP or router). 1 Make sure the wireless LAN i s enabled on the NBG-460N 2 Make sure the wireless adapter on the wireless statio n is working pro perly. 3 Make sure the wireless a[...]

  • Seite 312

    Chapter 26 Trou bleshooting NBG-460N User’s Guide 312 26.6 Advanced Features I can log in, but I cannot see some of the scree ns or fields in the Web Configurator. • You may be accessing th e Web Configur ator in Basic mode. Some screens and fields are available only in Advanced mode. Use the Maintenance > Config Mode screen to select Advanc[...]

  • Seite 313

    NBG-460N User’s Guide 313 C HAPTER 27 Product Specifications and Wall- Mounting Instructions The following tables summarize the NBG- 460N’s hardware and firmware features. Table 118 Hardware Features Dimensions (W x D x H) 190 x 150 x 33 mm Weight 362g Power Specification Input: 120 ~240 AC, 50~60 Hz Output: 18 V DC 1A Ethernet ports Auto-negot[...]

  • Seite 314

    Chapter 27 Product Specifica tions and Wall-Mo unting Instructions NBG-460N User’s Guide 314 Distance between the centers of the holes on the device’s back. 137 mm Screw size for wall- mounting M4 Tap Screw Table 119 Firmware Features FEATUR E DESCRIPTION Default IP Address 192.168.1.1 Default Subnet Mask 255.255.255.0 (24 bits) Default Passwor[...]

  • Seite 315

    Chapter 27 Product Specificatio ns and Wall-Mounting Instructions NBG-460N User’s Guide 315 Firewall You can configure firewall on the NBG-460N for secure Internet access. When the firewall is on, by default, all incoming traffic from the Internet to your network is blocked unless it is initiated from your network. This means that probes from the[...]

  • Seite 316

    Chapter 27 Product Specifica tions and Wall-Mo unting Instructions NBG-460N User’s Guide 316 The following list, which is not exhaust ive , illustrates the standards supported in the NBG-460N. PPTP Encapsulation P oint-to-Point Tunneling Protocol (PPTP) enables secure transfer of data through a Virtual Private Network (VPN). The NBG-460N supports[...]

  • Seite 317

    Chapter 27 Product Specificatio ns and Wall-Mounting Instructions NBG-460N User’s Guide 317 Wall-mounting Instructions Do the following to hang your NBG-460N on a wall. Note: See the Figure 190 on page 318 for the size of screws to use and how far apart to place them. 1 Locate a high position on a wall that is free of obstructions. Use a sturdy w[...]

  • Seite 318

    Chapter 27 Product Specifica tions and Wall-Mo unting Instructions NBG-460N User’s Guide 318 The following are dimensions of an M4 tap screw and masonry plug used for wall mounting. All measurements are in millimeter s (mm). Figure 190 Masonry Plug an d M4 Tap Screw[...]

  • Seite 319

    319 P ART VI Appendices and Index Pop-up Windows, JavaScripts and Java Permissions (321) IP Addresses and Subnetting (329) Setting up Your Computer’s IP Addres s (339) Wireless LANs (357) Services (369) Legal Information (373) Index (377)[...]

  • Seite 320

    320[...]

  • Seite 321

    NBG-460N User’s Guide 321 A PPENDIX A Pop-up Windows, JavaScripts and Java Permissions In order to use the Web Configurator yo u need to all ow: • Web browser pop-up windows from your devi ce. • JavaScripts (enabled by default). • Java permissions (enabled by default). Note: Internet Explorer 6 screens are used here . Screens for other Inte[...]

  • Seite 322

    Appendix A Po p-up Window s, JavaS cripts and Java Permission s NBG-460N User’s Guide 322 1 In Internet Explorer, select Tools , Internet Options , Privacy . 2 Clear the Block pop-ups check box in the Pop-up Blocker section of the screen. This disables any web pop-up blockers you may have enabled. Figure 192 Internet Options: Privacy 3 Click Appl[...]

  • Seite 323

    Appendix A Pop-u p Windows, JavaScri pts and Java Permissions NBG-460N User’s Guide 323 2 Select Settings… to open the Pop-up Blocker Settings screen. Figure 193 Internet Options: Privacy 3 Type the IP address of your device (the web page that you do not want to have blocked) with the prefix “http ://”. For example, http://192.168.167.1.[...]

  • Seite 324

    Appendix A Po p-up Window s, JavaS cripts and Java Permission s NBG-460N User’s Guide 324 4 Click Add to move the IP address to the list of Allowed si tes . Figure 194 Pop-up Blo cker Settings 5 Click Close to return to the Privacy screen. 6 Click Apply to save this setti ng. JavaScripts If pages of the Web Configurator d o not display properly i[...]

  • Seite 325

    Appendix A Pop-u p Windows, JavaScri pts and Java Permissions NBG-460N User’s Guide 325 1 In Internet Explorer, click Tools , Internet Options and then the Security tab. Figure 195 Internet Options: Secu rity 2 Click the Custom Level... button . 3 Scroll down to Scriptin g . 4 Under Active scripting make sure that Enable is selected (t he default[...]

  • Seite 326

    Appendix A Po p-up Window s, JavaS cripts and Java Permission s NBG-460N User’s Guide 326 6 Click OK to close the window. Figure 196 Security Settings - Java Scripting Java Permissions 1 From Internet Explorer, click Tools , Internet Options and then the Security tab. 2 Click the Custom Level... button . 3 Scroll down to Microsoft VM . 4 Under Ja[...]

  • Seite 327

    Appendix A Pop-u p Windows, JavaScri pts and Java Permissions NBG-460N User’s Guide 327 5 Click OK to close the window. Figure 197 Security Settings - Java JAVA (Sun) 1 From Internet Explorer, click Tools , Internet Options and then the Advanced tab. 2 Make sure that Use Java 2 for <applet> un der Java (Sun) is selected.[...]

  • Seite 328

    Appendix A Po p-up Window s, JavaS cripts and Java Permission s NBG-460N User’s Guide 328 3 Click OK to close the window. Figure 198 Java (Sun)[...]

  • Seite 329

    NBG-460N User’s Guide 329 A PPENDIX B IP Addresses and Subnetting This appendix introduces IP addresses and subnet masks. IP addresses identify individ u al devices on a network. Every networking device (including computers, servers, routers, printers, etc.) needs an IP address to communicate across the netw ork. These networking devices are also[...]

  • Seite 330

    Appendix B IP Addre sses and Subnetting NBG-460N User’s Guide 330 The following figure shows an example IP address in which the first three octets (192.168.1) are the network number, and the fourth octet (16) is the host ID. Figure 199 Network Number and Host ID How much of the IP address is the networ k number and how much is the host ID varies [...]

  • Seite 331

    Appendix B IP Addresses and Subnetting NBG-460N User’s Guide 331 By convention, subnet masks always cons ist of a continuous sequence of ones beginning from the leftmost bit of the mask , followed by a continuou s sequence of zeros, for a total number of 32 bits. Subnet masks can be referred to by the size of the network number part (the bits wit[...]

  • Seite 332

    Appendix B IP Addre sses and Subnetting NBG-460N User’s Guide 332 As these two IP addresses cannot be us ed for individual hosts, calculat e the maximum number of possible host s in a network as follows: Notation Since the mask is always a continuous nu mber of ones beginning from the left, followed by a c ontinuous number of ze ros for the remai[...]

  • Seite 333

    Appendix B IP Addresses and Subnetting NBG-460N User’s Guide 333 Subnetting You can use subnetting to divide one netw ork into multiple sub -networks . In the following example a network administrator creates two sub-networks to isol ate a group of servers from the rest of th e company network for security reasons. In this example, the company ne[...]

  • Seite 334

    Appendix B IP Addre sses and Subnetting NBG-460N User’s Guide 334 The following figure shows the company network afte r subnetting. Th ere are now two sub-n etworks, A and B . Figure 201 Subnetting Example: After Sub netting In a 25-bit subnet the host ID has 7 bits , so each sub-network has a maximum of 2 7 – 2 or 126 possible hosts (a host ID[...]

  • Seite 335

    Appendix B IP Addresses and Subnetting NBG-460N User’s Guide 335 Each subnet contains 6 host ID bit s, giving 2 6 - 2 or 62 hosts for each subnet (a host ID of all zeroes is t he subnet it self , all ones is the subnet’s broadcast address). Table 126 Subnet 1 IP/SUBNET MASK NETWORK NUMBER LAST OCTET BIT VALUE IP Address (Decimal) 192.168.1. 0 I[...]

  • Seite 336

    Appendix B IP Addre sses and Subnetting NBG-460N User’s Guide 336 Example: Eight Subnets Similarly, use a 27-bit mask to create eight subnets (000, 001, 010, 011, 100, 101, 110 and 111). The following table shows IP address last octet values for each subnet. Subnet Planning The following table is a summary for subnet planning on a network with a [...]

  • Seite 337

    Appendix B IP Addresses and Subnetting NBG-460N User’s Guide 337 The following table is a summary for subnet planning on a network with a 16-bit network number. Configuring IP Addresses Where you obtain your networ k number depends on your partic ular situation. If the ISP or your network administrator assigns you a block of registered IP address[...]

  • Seite 338

    Appendix B IP Addre sses and Subnetting NBG-460N User’s Guide 338 that you entered. You don't need to ch ange the subnet mask computed by the NBG-460N unless you are instructed t o do otherwise. Private IP Addresses Every machine on the Internet must have a unique address. If your networks are isolated from the Internet (running onl y betwee[...]

  • Seite 339

    NBG-460N User’s Guide 339 A PPENDIX C Setting up Your Computer’s IP Address All computers must have a 10M or 100M Ethernet adapter card and TCP/IP installed. Windows 95/98/Me/NT/200 0/XP, Macintosh OS 7 and later operati ng systems and all versions of U NIX/LINUX include t he so ftware components you need to install and use TCP/IP on your compu[...]

  • Seite 340

    Appendix C Setting up Your Computer’s IP Address NBG-460N User’s Guide 340 Windows 95/98/Me Click Start , Settings , Control Panel and double-click the Network icon to open the Network window. Figure 202 WIndows 95/98/Me: Network: Configuration Installing Components The Network window Configuration tab displays a list of ins talled components. [...]

  • Seite 341

    Appendix C Setting up Your Computer’s IP Address NBG-460N User’s Guide 341 3 Select Microsoft from the list of manufacturers . 4 Select TCP/IP from the list of network protocols and then click OK . If you need Client for Mic r osoft Networks: 1 Click Add . 2 Select Client and then click Add . 3 Select Microsoft from the list of manuf acturers. [...]

  • Seite 342

    Appendix C Setting up Your Computer’s IP Address NBG-460N User’s Guide 342 3 Click the DNS Configuration tab. • If you do not know your DNS information, select Disabl e DNS . • If you know your DNS i nformation, select Ena ble DNS and type the information in the fields below (you may not need to fill them all in). Figure 204 Windows 95/9 8/[...]

  • Seite 343

    Appendix C Setting up Your Computer’s IP Address NBG-460N User’s Guide 343 3 Select your network adapter. You should see your computer's IP address, subnet mask and default gateway. Windows 2000/NT/XP The following example figures use th e defaul t Window s XP GUI t heme. 1 Click start ( Start in Windows 2000/NT), Settings , Control Panel [...]

  • Seite 344

    Appendix C Setting up Your Computer’s IP Address NBG-460N User’s Guide 344 2 In the Control Panel , double-cli ck Network Connections ( Network and Dial- up Connections in Windows 2000/NT). Figure 206 Windows XP: Control Panel 3 Right-click Local Area Connection and then click Propertie s . Figure 207 Windows XP: Control Panel: Ne twork Connect[...]

  • Seite 345

    Appendix C Setting up Your Computer’s IP Address NBG-460N User’s Guide 345 4 Select Internet Protocol (TCP/IP) (under the General tab in Win XP) and then click Properties . Figure 208 Windows XP: Local Area Connection Properties 5 The Internet Protocol TCP/IP Properties window opens (the General tab in Windows XP). • If you have a dynamic IP [...]

  • Seite 346

    Appendix C Setting up Your Computer’s IP Address NBG-460N User’s Guide 346 •C l i c k Advanced . Figure 209 Windows XP: Internet Protocol (T CP/IP) Properties 6 If you do not know your gateway's IP address, remove any previously installed gateways in th e IP Settings tab and click OK . Do one or more of the following if you wa nt to conf[...]

  • Seite 347

    Appendix C Setting up Your Computer’s IP Address NBG-460N User’s Guide 347 •C l i c k OK when finished. Figure 210 Windows XP: Adva nced TCP/IP Propertie s 7 In the Internet Protocol TCP/IP Properties windo w (the General tab in Windows XP): •C l i c k Obtain DNS server address automatically if you do not know your DNS server IP addres s(es[...]

  • Seite 348

    Appendix C Setting up Your Computer’s IP Address NBG-460N User’s Guide 348 If you have previously configured DNS servers, click Advanced and then th e DNS tab to order them. Figure 211 Windows XP: Internet Protocol (T CP/IP) Properties 8 Click OK to close the Internet Protocol (TCP/IP) Properties window. 9 Click Close ( OK in Windows 2000/NT) t[...]

  • Seite 349

    Appendix C Setting up Your Computer’s IP Address NBG-460N User’s Guide 349 Macintosh OS 8/9 1 Click the Apple menu, Control Panel and do uble-c lick TCP/IP to open the TCP/ IP Control Panel . Figure 212 Macintosh OS 8/9: Apple Menu[...]

  • Seite 350

    Appendix C Setting up Your Computer’s IP Address NBG-460N User’s Guide 350 2 Select Ethernet built-in from the Connect via list. Figure 213 Macintosh OS 8/9: TCP/IP 3 For dynamically assigned settings, select Using DHCP Serv er from the Configure: list. 4 For statically assigned settings, do the following: •F r o m t h e Configure box, select[...]

  • Seite 351

    Appendix C Setting up Your Computer’s IP Address NBG-460N User’s Guide 351 Macintosh OS X 1 Click the Apple menu, and click System Preferences to open the System Preferences window. Figure 214 Macintosh OS X: Apple Menu 2 Click Netw ork in the icon bar. • Select Automatic from the Location list. • Select Built-in Ethernet from the Show list[...]

  • Seite 352

    Appendix C Setting up Your Computer’s IP Address NBG-460N User’s Guide 352 4 For statically assigned settings, do the following: •F r o m t h e Configure box, select Manually . • Type your IP address in the IP Address box. • Type your subnet mask in the Subnet mask box. • Type the IP address of your Prestige in the Router address box. 5[...]

  • Seite 353

    Appendix C Setting up Your Computer’s IP Address NBG-460N User’s Guide 353 2 Double-click on the profile of the network card you wish to configure. The Ethernet Device General screen displays as shown. Figure 217 Red Hat 9.0: KDE: Ethernet Device: General • If you have a dynamic IP address click Automatically obtain IP address settings with a[...]

  • Seite 354

    Appendix C Setting up Your Computer’s IP Address NBG-460N User’s Guide 354 5 Click the Device s tab. 6 Click the Activate button to apply the changes. The following screen displays. Click Yes to save the changes in all screens. Figure 219 Red Hat 9.0: KDE: Network Configuration: Act ivate 7 After the network card restart proc ess is complete, m[...]

  • Seite 355

    Appendix C Setting up Your Computer’s IP Address NBG-460N User’s Guide 355 • If you have a static IP address, enter static in the BOOTPROTO= field. Type IPADDR = followed by the IP address (in dotted decimal notation) and type NETMASK = followed by the subnet mask. The following example shows an example where the static IP address is 192.168.[...]

  • Seite 356

    Appendix C Setting up Your Computer’s IP Address NBG-460N User’s Guide 356 27.0.1 Verifying Settings Enter ifconfig in a terminal screen to ch eck your TCP/IP properties. Figure 224 Red Hat 9.0: Checking TCP/IP Properties [root@localhost]# ifconfig eth0 Link encap:Ethernet HWadd r 00:50:BA:72:5B:44 inet addr:172.23.19.129 B cast:172.23.19.255 M[...]

  • Seite 357

    NBG-460N User’s Guide 357 A PPENDIX D Wireless LANs Wireless LAN Topologies This section discuss es ad-hoc and infr astructure wi reless LAN topologies. Ad-hoc Wireless LAN Configuration The simplest WLAN configurat ion is an in dependent (Ad-hoc) WLAN that connects a set of computers with wireless stations (A , B, C) . Any time two or more wirel[...]

  • Seite 358

    Appendix D Wireless LANs NBG-460N User’s Guide 358 with each other. When Intra-BSS is disabled, wireless stati on A and B can still access the wired network but cannot communicate with eac h other. Figure 226 Basic Service Set ESS An Extended Service Set (ESS) consists of a series of overlapping BSSs, each containing an access point, with each ac[...]

  • Seite 359

    Appendix D Wireless LANs NBG-460N User’s Guide 359 An ESSID (ESS IDentification ) uniquely identifies each ESS. All ac cess points and their associated wireless stations within the same ESS must have the same ESSID in order to comm unicate. Figure 227 Infrastructure WLAN Channel A channel is the radio frequency(ies) us ed by IEEE 802.11a/b/g wi r[...]

  • Seite 360

    Appendix D Wireless LANs NBG-460N User’s Guide 360 wireless gateway, but out-of-range of each other, so t hey cannot "hear" each other, that is they do not know if the channel is currently being used. Therefore, they are consider ed hi dden from each other. Figure 228 RTS/C TS When station A sends data to the AP, it mig h t not know tha[...]

  • Seite 361

    Appendix D Wireless LANs NBG-460N User’s Guide 361 Fragmentation Threshold A Fragmentation Threshold is the maximum data fragment size (between 256 and 2432 bytes) that can be sent in the wireless network before the AP wil l fragment the packet into smaller data frames. A large Fragmentation Threshold is recommended for networks not prone to inte[...]

  • Seite 362

    Appendix D Wireless LANs NBG-460N User’s Guide 362 several intermediate rate steps between the maximum and minimum data rates. The IEEE 802.11g data rate and modulation are as follows: IEEE 802.1x In June 2001, the IEEE 802.1x standard wa s designed to extend the features of IEEE 802.11 to support extended authentica tion as well as providing add[...]

  • Seite 363

    Appendix D Wireless LANs NBG-460N User’s Guide 363 Types of RADIUS Messages The following types of RADIUS messages are exchanged between the access point and the RADIUS server for use r authentica tion: • Access-Request Sent by an access point re questing authentication. • Access-Reject Sent by a RADIUS server rejecti ng access. • Access-Ac[...]

  • Seite 364

    Appendix D Wireless LANs NBG-460N User’s Guide 364 However, MD5 authentication has some weaknesses. Since the authentication server needs to get the plai ntext passwor ds, the passwords must be stored. Thus someone other than the auth entication server may access t he password file. In addition, it is possible to impersonat e an authentication se[...]

  • Seite 365

    Appendix D Wireless LANs NBG-460N User’s Guide 365 If this featu re is enab led, it is not nece ssary to configure a default encryption key in the Wireless screen. You may stil l conf igure and store keys here, but they will not be used while Dynamic WEP is enabled. Note: EAP-MD5 cannot be used with dynamic WEP key exchange For added security, ce[...]

  • Seite 366

    Appendix D Wireless LANs NBG-460N User’s Guide 366 TKIP regularly changes and rotates the encryption keys so that the same encryption key i s never used twice. Th e RADIUS server distributes a Pairwis e Master Key (PMK) key to the AP that then sets up a key hierarchy and management system, using the pair-wise ke y to dynamically generate u nique [...]

  • Seite 367

    Appendix D Wireless LANs NBG-460N User’s Guide 367 27.0.2 WPA(2)-PSK Application Example A WPA(2)-PSK application looks as follows. 1 First enter identical p a sswords into the AP and all wireless clients. The Pre-Shared Key (PSK) must consist of between 8 and 63 ASCII characters (including spaces and symbols). 2 The AP checks each wireless clien[...]

  • Seite 368

    Appendix D Wireless LANs NBG-460N User’s Guide 368 Security Parameters Summary Refer to this table to see what other secu rity parameters you should configure for each Authentication Method/ key manageme nt protocol type. MAC address filters are not dependent on how you co nf igure these security features. Table 135 Wireless Security Relational M[...]

  • Seite 369

    NBG-460N User’s Guide 369 A PPENDIX E Services The following table lists some commonl y- used services and their associated protocol s and port numbers. • Name : This is a short, descript ive name fo r the service. You can use this one or create a different one, if you like. • Protocol : This is the type of IP protocol used by the service. If[...]

  • Seite 370

    Appendix E Services NBG-460N User’s Guide 370 Table 136 Examples of Services NAME PROTOCOL PORT(S) DESCRIPTION AH (IPSEC_TUNNEL) User-Defined 51 The IPSEC AH (Authentication Header) tunneling protocol uses this service. AIM TCP 5190 AOL’s Internet Messenger service. AUTH TCP 113 Authentication protocol used by some servers. BGP TCP 179 Border G[...]

  • Seite 371

    Appendix E Services NBG-460N User’s Guide 371 MSN Messenger TCP 1863 Microsoft Networks’ messenger service uses this protocol. NetBIOS TCP/UDP TCP/UDP TCP/UDP TCP/UDP 137 138 139 445 The Network Basic Input/Output System is used for communication between computers in a LAN. NEW-ICQ TCP 5190 An Internet chat program. NEWS TCP 144 A protocol for [...]

  • Seite 372

    Appendix E Services NBG-460N User’s Guide 372 SFTP TCP 115 The Simple File Transfer Protocol is an old way of transfe rring files between computers. SMTP TCP 25 Simple Mail Transfer Protocol is the message-exchange standard for the Internet. SMTP enables you to move messages from one e-mail server to another. SMTPS TCP 465 This is a more secure v[...]

  • Seite 373

    NBG-460N User’s Guide 373 A PPENDIX F Legal Information Copyright Copyright © 2009 by ZyXEL Communications Corporation. The contents of this publication may not be reproduced in any part or as a whole, transcribed, stored in a retrieval syst em, translated into any language, or transmitted in any form or by any me ans, el ectronic, mechanical, m[...]

  • Seite 374

    Appendix F L egal Informa tion NBG-460N User’s Guide 374 • This device must ac cept any interference received, including interference that may cause undesired operations. This device has been tested and found to comply with the limits for a Class B digital device pursuant to Part 15 of the FCC Rules. These limits are designed to provide reasona[...]

  • Seite 375

    Appendix F Legal Information NBG-460N User’s Guide 375 有干擾現象時,應立即停用,並 改善至無干擾時方得繼續使用。 前項合法通信,指依電信規定作 業之無線電信。低功率射頻電機須忍 受合法通信或工業、科學及醫療 用電波輻射性電機設備之干擾。 本機限在不干擾合法?[...]

  • Seite 376

    Appendix F L egal Informa tion NBG-460N User’s Guide 376 Note Repair or replacement, as provided unde r this warranty, is the exclusive remedy of the purchaser. This warranty is in lieu of all other warrantie s, express or implied, including any implied warrant y of merchantability or fitness for a particular use or purpose. ZyXEL shall in no eve[...]

  • Seite 377

    Index NBG-460N User’s Guide 377 Index A active protocol 224 AH 224 and encapsulation 224 ESP 224 ActiveX 191 Address Assignment 134 address resolution protocol (ARP) 155 AH 224 and transport mode 225 Alert 269 alternative subnet mask notation 332 any IP note 154 AP 23 AP (Access Point) 359 AP + Bridge 25 AP Mode menu 90 overview 87 status screen [...]

  • Seite 378

    Index NBG-460N User’s Guide 378 D Daylight saving 266 DDNS 173 see also Dynamic DNS service providers 174 DHCP 44 , 157 DHCP server see also Dynamic Host Configuration Protocol DHCP client information 160 DHCP client list 160 DHCP server 150 , 15 7 DHCP table 44 , 160 DHCP client information DHCP status Diffie-Hellman key group 220 Perfect Forwar[...]

  • Seite 379

    Index NBG-460N User’s Guide 379 H Hidden Node 359 HTTP 243 Hyper Text Transfer Protocol 243 I IANA 338 IBSS 357 IEEE 802.11g 361 IGMP 135 see also Internet Group Multicast Protocol version IGMP version 135 IKE SA aggressive mode 196 , 222 authentication algorithms 220 , 226 Diffie-Hellman key group 220 encryption algorithms 220 , 226 ID content 2[...]

  • Seite 380

    Index NBG-460N User’s Guide 380 local (user) database 99 and encryption 100 Local Area Network 149 Log 270 M MAC 109 MAC address 99 , 135 cloning 62 , 13 5 MAC address filter 99 MAC address filtering 109 MAC filter 109 managing the device good habits 30 using FTP. See FTP. using Telnet. See command interface. using the command interface. See comm[...]

  • Seite 381

    Index NBG-460N User’s Guide 381 Q QoS 123 QoS priorities 124 Quality of Service (QoS) 111 R RADIUS 362 Shared Secret Key 363 RADIUS Message Types 363 RADIUS Messages 363 RADIUS server 99 registration product 376 related documentation 3 Remote management 247 and NAT 248 and the firewall 247 FTP 250 limitations 248 remote management session 248 sys[...]

  • Seite 382

    Index NBG-460N User’s Guide 382 T TCP/IP configuration 157 Telnet 250 Temperature 313 Time setting 265 trademarks 373 Triangle routes and IP alias 181 see also asymmetrical routes 180 trigger port 169 Trigger port forwarding 169 example 171 process 171 U Universal Plug and Play 253 application 254 UPnP 253 security issues 254 URL Keyword Blocking[...]

  • Seite 383

    Index NBG-460N User’s Guide 383 type 98 wireless security 311 Wireless tutorial 67 , 87 WPS 67 Wizard setup 49 Bandwidt h managemen t 63 complete 65 Internet connection 55 system information 50 wireless LAN 52 WLAN Interference 359 Security Parameters 368 WMM 123 WMM priorities 124 WoL. See Wake On LAN. World Wide Web 243 WPA compatible 100 WPA, [...]

  • Seite 384

    Index NBG-460N User’s Guide 384[...]