ZyXEL Communications 794M manual

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119

Ir a la página of

Buen manual de instrucciones

Las leyes obligan al vendedor a entregarle al comprador, junto con el producto, el manual de instrucciones ZyXEL Communications 794M. La falta del manual o facilitar información incorrecta al consumidor constituyen una base de reclamación por no estar de acuerdo el producto con el contrato. Según la ley, está permitido adjuntar un manual de otra forma que no sea en papel, lo cual últimamente es bastante común y los fabricantes nos facilitan un manual gráfico, su versión electrónica ZyXEL Communications 794M o vídeos de instrucciones para usuarios. La condición es que tenga una forma legible y entendible.

¿Qué es un manual de instrucciones?

El nombre proviene de la palabra latina “instructio”, es decir, ordenar. Por lo tanto, en un manual ZyXEL Communications 794M se puede encontrar la descripción de las etapas de actuación. El propósito de un manual es enseñar, facilitar el encendido o el uso de un dispositivo o la realización de acciones concretas. Un manual de instrucciones también es una fuente de información acerca de un objeto o un servicio, es una pista.

Desafortunadamente pocos usuarios destinan su tiempo a leer manuales ZyXEL Communications 794M, sin embargo, un buen manual nos permite, no solo conocer una cantidad de funcionalidades adicionales del dispositivo comprado, sino también evitar la mayoría de fallos.

Entonces, ¿qué debe contener el manual de instrucciones perfecto?

Sobre todo, un manual de instrucciones ZyXEL Communications 794M debe contener:
- información acerca de las especificaciones técnicas del dispositivo ZyXEL Communications 794M
- nombre de fabricante y año de fabricación del dispositivo ZyXEL Communications 794M
- condiciones de uso, configuración y mantenimiento del dispositivo ZyXEL Communications 794M
- marcas de seguridad y certificados que confirmen su concordancia con determinadas normativas

¿Por qué no leemos los manuales de instrucciones?

Normalmente es por la falta de tiempo y seguridad acerca de las funcionalidades determinadas de los dispositivos comprados. Desafortunadamente la conexión y el encendido de ZyXEL Communications 794M no es suficiente. El manual de instrucciones siempre contiene una serie de indicaciones acerca de determinadas funcionalidades, normas de seguridad, consejos de mantenimiento (incluso qué productos usar), fallos eventuales de ZyXEL Communications 794M y maneras de solucionar los problemas que puedan ocurrir durante su uso. Al final, en un manual se pueden encontrar los detalles de servicio técnico ZyXEL Communications en caso de que las soluciones propuestas no hayan funcionado. Actualmente gozan de éxito manuales de instrucciones en forma de animaciones interesantes o vídeo manuales que llegan al usuario mucho mejor que en forma de un folleto. Este tipo de manual ayuda a que el usuario vea el vídeo entero sin saltarse las especificaciones y las descripciones técnicas complicadas de ZyXEL Communications 794M, como se suele hacer teniendo una versión en papel.

¿Por qué vale la pena leer los manuales de instrucciones?

Sobre todo es en ellos donde encontraremos las respuestas acerca de la construcción, las posibilidades del dispositivo ZyXEL Communications 794M, el uso de determinados accesorios y una serie de informaciones que permiten aprovechar completamente sus funciones y comodidades.

Tras una compra exitosa de un equipo o un dispositivo, vale la pena dedicar un momento para familiarizarse con cada parte del manual ZyXEL Communications 794M. Actualmente se preparan y traducen con dedicación, para que no solo sean comprensibles para los usuarios, sino que también cumplan su función básica de información y ayuda.

Índice de manuales de instrucciones

  • Página 1

    Prestige 794M SHDSL 4-Port Internet Security Gateway User ’ s Guide V ersion 1.00 10/2005 Edition 1[...]

  • Página 2

    Prestige 794M U ser’s Guide Copyright 2 Copyright Copyright © 2005 by ZyXEL Communications Corpo ration. The contents of this publication may not be reprod uced in any part or as a whole, transcribed, stored in a retrieval system, tran slated into any language, or transmitted in any form or by any means, el ectronic, mechanical , magnetic, optic[...]

  • Página 3

    Prestige 794M User’s Guide 3 Federal Communications Commission (F CC) Interference Statement Federal Communications Commission (FCC) Interference S t atement This device complies with Part 15 of FCC rul es. Operation is subject to the following two conditions: • This device may not cause harmful interference. • This device must accept any int[...]

  • Página 4

    Prestige 794M U ser’s Guide Safety Warnings 4 Safety W arnings For your safety , be sure to read and fo llow all warning notices and instructions. • Do NOT open the device or un it. Opening or removi ng covers can expose you to dangerous high vo ltage points or othe r risks. ONL Y qualified service personn el can service the device. Please cont[...]

  • Página 5

    Prestige 794M User’s Guide 5 ZyXEL Limited Warranty ZyXEL Limited W arranty ZyXEL warrants to the original en d user (purchaser) that this product is free from any defects in materials or workmansh ip for a period of up to tw o years from the date of purchase . During the warranty period, and upon proof of purchase, should the product have ind ic[...]

  • Página 6

    Prestige 794M U ser’s Guide Customer Support 6 Customer Support Please have the following information r eady when you contact customer support. • Product model and serial number . • W arranty Information. • Date that you received your de vice. • Brief description of the problem and the steps yo u took to solve i t. METHOD LOCATION SUPPOR [...]

  • Página 7

    Prestige 794M User’s Guide 7 Customer Suppo rt POLAND info@pl.zyxel.com +48-22-5286603 www.pl.zyxel .com ZyXEL Communications ul.Emilli Plater 53 00-1 13 W arszawa Poland +48-22-5206701 RUSSIA http://zyxel.ru/support +7-095-542-89-29 www .zyxel.ru Zy XEL Russia Ostrovityanova 37a S tr . Moscow , 1 17279 Russia sales@zyxel.ru +7-095-542-89-25 SP A[...]

  • Página 8

    Prestige 794M U ser’s Guide Table of Contents 8 T able of Content s Copyright .................................................. ................................................................ 2 Federal Communications Commissi on (FCC) Interference St atement ............... 3 Safety W arnings ....................................................[...]

  • Página 9

    Prestige 794M User’s Guide 9 Table of Contents 2.6.1 How ARP Works ............... ................ ............. ................ ............. ............ 29 2.7 Routing T able .......... ............. ................ ............. ............. ................ ............. ..... 30 2.7.1 PPTP S tatus ........................ ..............[...]

  • Página 10

    Prestige 794M U ser’s Guide Table of Contents 10 4.3 DNS ............. ............. ................ ............. ............. ............. ................ ............. ..... 54 4.4 SHDSL Parameters ......... ................ ............. ................ ............. ................ ......... 55 Chapter 5 System ........................[...]

  • Página 11

    Prestige 794M User’s Guide 11 Table of Contents 7.3.4 Pre-Shared Key ..... ............. ................ ............. ............. ................ ............ 84 7.3.5 IPSec V PN Summary ........ ................ ............. ................ ................ ......... 84 7.3.6 IPSec V PN Configuration ..... ................. ............ .[...]

  • Página 12

    Prestige 794M U ser’s Guide Table of Contents 12 12.1.2 SNMP .... ............. ................ ............. ................ ............. ............. .......... 1 10 12.1.2.1 SNMPv3 .............. ............. ................ ............. ................ ............. 1 1 1 12.1.2.2 SNMP T raps and MIBs .............. ................ .[...]

  • Página 13

    Prestige 794M User’s Guide 13 Table of Contents[...]

  • Página 14

    Prestige 794M U ser’s Guide List of Fi gures 14 List of Figures Figure 1 Application: Internet Access ............. ................ ............. ............. ............. 22 Figure 2 Application: Firewall ............... ................. ................ ................ ............. ... 23 Figure 3 Application: VPN .... ................ ..[...]

  • Página 15

    Prestige 794M User’s Guide 15 List of Figures Figure 39 System: Firmware Upgrade: Prog ress ........ ................ ............. ............. 60 Figure 40 System: Firmware Upgrade: Devi ce Configuration O ption ......... .......... 60 Figure 41 System: Configurat ion Backup/Restore ......... ............. ................ .......... 61 Figure[...]

  • Página 16

    Prestige 794M U ser’s Guide List of Tables 16 List of T ables T able 1 Front Panel: LEDs ............. ................ ............. ................ ................ .......... 24 T able 2 Rear Panel ......... ............. ................ ............. ................ ................ ............. 25 T able 3 S tatus .......... ............[...]

  • Página 17

    Prestige 794M User’s Guide 17 List of Tables T able 39 Firewall: Firewall Logs .................. ................ ................ ................ .......... 76 T able 40 VPN: PPTP ......... ................ ............. ................ ................ ............. .......... 79 T able 41 VPN: PPTP: Remote Access ........ ................ .[...]

  • Página 18

    Prestige 794M U ser’s Guide Preface 18 Preface Congratulations on you r purchase of the Prestige 794M . Note: Register your product online to receive e-mail notice s of firmware upgrades and information at www .zyxel.com for global products, or at www .us.zyxel.com for North American products. Y our Prestige is easy to install and configure. Abou[...]

  • Página 19

    Prestige 794M User’s Guide 19 Preface • For brevity’ s sake, we will use “e.g.,” as a shorthand for “for instance”, and “i.e.,” for “that is” or “in other words” throug hout this manual. • The Prestige 794M may be referred to as “the Prestige” in this user ’ s guide. Graphics Icons Key Prestige Computer Notebook co[...]

  • Página 20

    Prestige 794M U ser’s Guide Chapter 1 Introductio n 20 C HAPTER 1 Introduction 1.1 About Y our Prestige Y our Prestige integrates high-speed 10/100Mb ps auto-negotiating LAN interface(s) and a high-speed SHDSL port into a single package. The Pres tige is ideal for high-speed Internet browsing and making LAN-to -LAN connections to remote networks.[...]

  • Página 21

    Prestige 794M User’s Guide 21 Chapter 1 Introductio n Multiplexing The Prestige supports VC-ba sed and LLC-based multiplexing. Full Network Management The embedded web co nfigurator is an all-platform web-ba sed utility that allows you to easily access the Prestige’ s management settings. Mo st functions of the Prestige are also configurable vi[...]

  • Página 22

    Prestige 794M U ser’s Guide Chapter 1 Introductio n 22 VPN Establish a V irtual Private Network (VPN) to conn ect with business pa rtners and bra nch offices using data encryption an d the Internet to provide secu re communications without the expense of leased site-to-site lines. The Prestig e VPN is based on the IPSec standard and is fully inte[...]

  • Página 23

    Prestige 794M User’s Guide 23 Chapter 1 Introductio n 1.3.2 Firewall for Secure Broadband Internet Access The Prestige provides protection from attacks by Internet hackers. By default, the firewall blocks all incoming traffic from the W AN. Th e firewall supports TCP/UDP inspection and DoS (Denial of Services) detection and prevention, as well as[...]

  • Página 24

    Prestige 794M U ser’s Guide Chapter 1 Introductio n 24 Figure 4 Application: LAN-to-LAN 1.4 Hardware Connection Refer to the Quick S tart Guide for more information on hardware conn ectio n and initial setup using the Quick S tart screen. 1.4.1 Front Panel The following figure shows the front panel LEDs. Figure 5 Front Panel: LEDs The following t[...]

  • Página 25

    Prestige 794M User’s Guide 25 Chapter 1 Introductio n 1.5 Rear Panel The following figure shows the rear panel of the Prestige. Figure 6 Rear Panel The following table describes the ports. LAN 1..4 Orange On The Prestige has a successful 10Mbps Ethernet connectio n. Flashing The 10M LAN is sendin g or receiving p ackets. Green On The Prestige has[...]

  • Página 26

    Prestige 794M U ser’s Guide Chapter 2 The Web Co nfigurator 26 C HAPTER 2 The W eb Configurator This chapter introduces the web configurator and describes the Quick S tart screen. 2.1 Overview The embedded web configurator (eWC) allows you to manage the Prestige from anywhere through a browser such as Microsoft Internet Ex plorer or Netscape Navi[...]

  • Página 27

    Prestige 794M User’s Guide 27 Chapter 2 The W eb Configur ator 2.3 Resetting the Prestige If you forget your password or cannot access the web configurator, you will need to reload the factory-default configuration file or use the RESET button on the Prestige. Uploading this configuration file replaces the current configura tion file with the fac[...]

  • Página 28

    Prestige 794M U ser’s Guide Chapter 2 The Web Co nfigurator 28 • Click the REST AR T button to reboot the Prestige. • Click the LOGOUT button at any time to exit the web configurator . 2.5 System S t atus Display the St a t u s screen (see Figure 8 on page 27 ) to view general syst em information. The following table describes th e labels in [...]

  • Página 29

    Prestige 794M User’s Guide 29 Chapter 2 The W eb Configur ator 2.6 ARP T able Address Resolution Protocol (ARP) is a prot ocol for mapping an Internet Protocol address (IP address) to a physical machine address, al so known as a Media Access Control (MAC) address, on the local area network. An IP (versi on 4) address is 32 bits long. In an Ethern[...]

  • Página 30

    Prestige 794M U ser’s Guide Chapter 2 The Web Co nfigurator 30 The following table describes the labels in this screen. 2.7 Routing T able The routing table contains the route information to the network(s) that the Prestige can reach. The Prestige automatically upda tes the routing table with the RIP information received from other Ethernet devic[...]

  • Página 31

    Prestige 794M User’s Guide 31 Chapter 2 The W eb Configur ator 2.7.1 PPTP St atus Use the PP TP S tatus screen to view PP TP VPN co nnection information. Click St a t u s and PP TP S tatus in the navigation panel to d isplay the screen as shown n ext. Figure 1 1 S tatus: PP TP S tatus The following table describes the labels in this screen. 2.7.2[...]

  • Página 32

    Prestige 794M U ser’s Guide Chapter 2 The Web Co nfigurator 32 The following table describes the labels in this screen. 2.7.3 L2TP S t atus Use the L2TP S tatus screen to view L2TP VPN connection information. Click St a t u s and L2TP S tatus in the navigation panel to display the screen as shown next. Figure 13 S tatus: L2TP S tatus The followin[...]

  • Página 33

    Prestige 794M User’s Guide 33 Chapter 2 The W eb Configur ator 2.7.4 Email St atus The Email S tatus screen shows the current E-mail account information (that you config ured in the Check Email screen). Y ou can also check your Email account status in this screen. Click St a t u s and Email St a t u s in the na vigation pane l. Figure 14 S tatus:[...]

  • Página 34

    Prestige 794M U ser’s Guide Chapter 2 The Web Co nfigurator 34 Figure 15 Event Log Click Refresh to update the event log entries. Click Clear to delete all event log entries from the text box. 2.7.6 Error Log Use the Error Log screen to view errors (such as VPN configuration errors). Note: This screen automatica lly displays when you click Apply [...]

  • Página 35

    Prestige 794M User’s Guide 35 Chapter 2 The W eb Configur ator 2.7.7 NA T Sessions ClicK St a t u s and NA T Sessions in the navigation panel to display current NA T sessions. Figure 17 S tatus: NA T Session The following table describes th e fields in the text box. 2.8 Internet Access Quick S t art Setup This section shows you how to configure t[...]

  • Página 36

    Prestige 794M U ser’s Guide Chapter 2 The Web Co nfigurator 36 Click Quick S tart in the navigation panel to di splay the screen as shown. Figure 18 Quick S tart The following table describes the labels in this screen. Table 12 Quick Start LABEL DESCRIPTION Connection Encapsulation Select the connection type from the drop-down list. Click Auto Sc[...]

  • Página 37

    Prestige 794M User’s Guide 37 Chapter 2 The W eb Configur ator 2.8.1 Auto Scan Use the Auto Scan screen to set the Prestige to automa tically detect the Internet conn ection type. Follow the steps below to allow the Prestige to automatically de tect the Internet connection settings. 1 Click Auto Scan in the Quick S tart screen to display the scre[...]

  • Página 38

    Prestige 794M U ser’s Guide Chapter 3 LAN 38 C HAPTER 3 LAN This chapter describes how to configure LAN settings. 3.1 Overview Local Area Network (LAN) is a shared communic ation system to which many computers are attached. The LAN screens can help you co nfigure a LAN DHCP server and manage IP addresses. 3.2 LAN TCP/IP The Prestige has built-in [...]

  • Página 39

    Prestige 794M User’s Guide 39 Chapter 3 LAN of addresses specifically for private use; ple ase do not use any other number unless you are told otherwise. Let's say you select 192.16 8.1.0 as the netwo rk number; which cover s 254 individual addresses, from 192.16 8.1.1 to 192.168.1.25 4 (zero and 255 are reserved). In other words, the first [...]

  • Página 40

    Prestige 794M U ser’s Guide Chapter 3 LAN 40 Figure 20 LAN: Ethernet The following table describes the labels in this screen. 3.4 Ethernet Client Filter Use the Ethernet Client Filter screen to set the Prestige to a llow or block specifi ed Ethernet devices from accessing the LA N. Click LAN and Ethernet Cl ient Filter in the navigation panel to [...]

  • Página 41

    Prestige 794M User’s Guide 41 Chapter 3 LAN Figure 21 LAN: Ethernet Client Filter The following table describes the labels in this screen. 3.4.1 Ethernet Client Filter Candidates Y ou can display a list of MAC address of the devices that are currently connected to the Prestige. Y ou can use the Active PC in LAN scr een to add the selected MAC add[...]

  • Página 42

    Prestige 794M U ser’s Guide Chapter 3 LAN 42 The following table describes the labels in this screen. 3.5 Port Setting Use the Port Setting screen to configure the LAN port settings on the Prestige. Click Configuration , LAN and Port Setting to display the screen as shown next. Figure 23 LAN: Port Setting The following table describes the labels [...]

  • Página 43

    Prestige 794M User’s Guide 43 Chapter 3 LAN 3.6 DHCP DHCP (Dynamic Host Configuration Protocol , RFC 2131 and RFC 2132) allows indiv idual clients to obtain TCP/IP configuration at star t-up from a server . Y ou can configure the Prestige as a DHCP server or disable it. When configured as a server, the Prestige provides the TCP/IP configuration f[...]

  • Página 44

    Prestige 794M U ser’s Guide Chapter 3 LAN 44 Figure 24 LAN: DHCP Server The following table describes the labels in this screen. 3.6.3.1 Disable DHCP Follow the steps below to disable DHCP server/relay on the LAN. 1 In the DHCP Serv er screen (se e Figure 24 on page 44 ), select Disable and click Next . 2 A screen displays as shown n ext. Click A[...]

  • Página 45

    Prestige 794M User’s Guide 45 Chapter 3 LAN Figure 26 LAN: DHCP Server: DHCP The follow table describes the labels in this screen. Table 18 LAN: DHCP Server: DHCP LABEL DESCRIPTION DHCP Server Allow Bootp Select Enable to allow Boot P (Bootstrap Pr otocol) clien ts. Otherw ise, select Disable . Allow Unknown Clients Select Enable to assign networ[...]

  • Página 46

    Prestige 794M U ser’s Guide Chapter 3 LAN 46 3.6.3.2.1 Fixed Host Y ou can set the Prestige to assign one IP addres s on the LAN to a specif ic computer based on the MAC address. In the DHCP screen (see Figure 26 on page 45 ), click Fixed Host to display the screen as shown next. Figure 27 LAN: DHCP Server: DHCP: Fixed Host The following table de[...]

  • Página 47

    Prestige 794M User’s Guide 47 Chapter 3 LAN In the main DHCP Se rver screen, select DHCP Relay and click Next to display the configuration screen. Figure 28 LAN: DHCP Server: DHCP Relay Agent The following table describes the labels in this screen. Table 20 LAN: DHCP Server: DHCP Relay Agent LABEL DESCRIPTION DHCP Server IP Address Enter the IP a[...]

  • Página 48

    Prestige 794M U ser’s Guide Chapter 4 WAN 48 C HAPTER 4 W AN This chapter describes how to configure W AN settings. 4.1 Overview A W AN (W ide Area Network) is an outside conn ection to another network or the Internet. Use the W AN screens to change your Prestige's W A N settings, click Configuration and WA N in the navigation panel. 4.1.1 E[...]

  • Página 49

    Prestige 794M User’s Guide 49 Chapter 4 WA N Operationally , PPPoE saves significant effort for bo th you and the ISP or carrier, as it requires no specific configuration of the broadband modem at the cu stomer site. By implementing PPPoE directly on the Prestige (rather than in dividua l computers), the computers on the LAN do not need PPPoE sof[...]

  • Página 50

    Prestige 794M U ser’s Guide Chapter 4 WAN 50 4.2.1 Edit Settings Click Edit in the main ISP screen to modify the settings. The configuration screen varies depending on the encapsulation type. Figure 30 W AN: ISP: Edit The following table describes the labels in this screen. Table 22 WAN: ISP: Edit (PPPoE) LABEL DESCRIPTION Description This read-o[...]

  • Página 51

    Prestige 794M User’s Guide 51 Chapter 4 WA N 4.2.1.1 Advanced PPP Options For PPPoA or PPPoE connection type, you ca n configure advanced PPP settings in the Advanced Options screen. In the W AN Connection screen, click Advanced Options to display the screen shown next. S panning Bridge Interface Select Enable to activate spanning tree feature on[...]

  • Página 52

    Prestige 794M U ser’s Guide Chapter 4 WAN 52 Figure 31 W AN: E dit: Advanced PPP Options The following table describes the labels in his screen. Table 23 WAN: Edit: Advanced PPP Options LABEL DESCRIPTION LLC Header S pecify an encapsulation mode in this field. Select true for LLC or false for VC. Create Route S pecify whether the Prestige i s to [...]

  • Página 53

    Prestige 794M User’s Guide 53 Chapter 4 WA N 4.2.2 Change Connection T ype Follow the steps below to change your Internet connection type and settings. 1 Click Change in the main ISP scree n (see Figure 29 on page 49 ). 2 A screen displays as shown. Select the connection type your ISP uses and click Next . Click Quick S tart to configure the line[...]

  • Página 54

    Prestige 794M U ser’s Guide Chapter 4 WAN 54 Figure 33 ISP: Change Connectio n T ype Settings (RFC 1483 Rou ted) 4 Click Apply to save the changes an d return to the main ISP screen. 4.3 DNS Use DNS (Domain Name System) to map a domain name to its corresponding IP address and vice versa, for instance, the IP address of www .zyxel.com is 204.217.0[...]

  • Página 55

    Prestige 794M User’s Guide 55 Chapter 4 WA N Figure 34 DNS The following table describes the labels in this screen. 4.4 SHDSL Parameters Use the SHDSL screen to configure advanced SHDSL settings. Click Configuration , WA N and SHDSL in the navigation panel to di splay the screen as sh own next. Figure 35 SHDSL The following table describes the la[...]

  • Página 56

    Prestige 794M U ser’s Guide Chapter 4 WAN 56 Table 25 SHDSL LABEL DESCRIPTION 4 Wire Connection Select Enable to activate 4-wire connection. The 4-wire mode is described in ITU- T G .991.2. 4-wire mode can increase the r each of a particular data rate without having to regenerate the signal. It can also give increased bandwidth for LAN-to- LAN ap[...]

  • Página 57

    Prestige 794M User’s Guide 57 Chapter 4 WA N[...]

  • Página 58

    Prestige 794M U ser’s Guide Chapter 5 System 58 C HAPTER 5 System This chapter describes the System screens . 5.1 Overview Use the System screens to configure the time serv er and user accoun t settings, upgrade firmware and backup/restore co nfiguration on the Prestige. 5.2 Time Zone T o change your Prestige’ s time and date, click Configurati[...]

  • Página 59

    Prestige 794M User’s Guide 59 Chapter 5 System 5.3 Remote Access Use the Remote Access screen to the session time limit a user is allowed to remotely access the Prestige for management. After the time pe riod is reached, the Prestige automatically disconnects a management sess ion. In this case, you need to log in again with the login username an[...]

  • Página 60

    Prestige 794M U ser’s Guide Chapter 5 System 60 5.4 Firmware Upgrade Find firmware at www .zyxel.com in a file that (usually) uses the system model name with a “.bin” extension, e.g., "prestige.bin". The uploa d pro cess may take up to two minute s. After a successful upload, the system will reboot. 1 Click Configuration , System an[...]

  • Página 61

    Prestige 794M User’s Guide 61 Chapter 5 System Figure 41 System: Configuration Backup/Restore Backup configuration allows you to back up (or s ave) the Prestige’ s current configuration to a file on your computer . Once you r Prestige is co nfigured and functioning prop erly , it is highly recommended tha t you back up your config uration file [...]

  • Página 62

    Prestige 794M U ser’s Guide Chapter 5 System 62 Note: All unsaved configuration settings will be lost. Select Factory Default Settings and click Restart to rebo ot and reset the Prestige to the factory default. Note: All custom setting s will be lost. 5.7 User Management Use the User Management screen to maintain login accounts. Figure 43 System:[...]

  • Página 63

    Prestige 794M User’s Guide 63 Chapter 5 System Figure 44 System: User Management: Edit Account The following table describes the labels in this screen. Table 28 System: User Management: Edit Account LABEL DESCRIPTION Username Enter an a ccount username. Password Enter a password associated to the username above. Confirm Enter the password again f[...]

  • Página 64

    Prestige 794M U ser’s Guide Chapter 6 Firew all 64 C HAPTER 6 Firewall This chapter gives some backgr ound information on firewalls. 6.1 Overview Originally , the term fir ewall referred to a construction techni que designed to prevent the spread of fire from one room to another . The ne tworking term firewall is a system or group of systems that[...]

  • Página 65

    Prestige 794M User’s Guide 65 Chapter 6 Firew all 1 Information hiding prevents the names of internal systems from being made known via DNS to outside systems, since the applicatio n gateway is the only host whose name must be made known to outside systems. 2 Robust authentication and logging pre-authenticates application traffic before it reache[...]

  • Página 66

    Prestige 794M U ser’s Guide Chapter 6 Firew all 66 6.3 General Settings Enable the firewall in the General Settings screen. Click Configuration , Firewall an d General Settings in the navigation panel to disp lay the screen as shown. Figure 45 Firewall: General Settings The following table describes the labels in this screen. Table 29 Firewall: G[...]

  • Página 67

    Prestige 794M User’s Guide 67 Chapter 6 Firew all The following table lists inbound (Internet to LAN) an d ou tbound (LAN to Internet) traffic that is allowed or not allowed for the pre-defined port filters. The Prestige uses the pre-defined port filters when you select a security level in the General Settings screen. 6.4 Packet Filter The packet[...]

  • Página 68

    Prestige 794M U ser’s Guide Chapter 6 Firew all 68 The Prestige comes with pre-conf igured packet filters as shown in the screen. These filters are for the Policy security levels in the Firewall: General Settings screen (refer to Section 6 .3 on page 66 ). Y ou can modify or delete th e pre-configured packet filters. Figure 46 Firewall: Packet Fi[...]

  • Página 69

    Prestige 794M User’s Guide 69 Chapter 6 Firew all 6.4.1 Add a New TC P/UDP Packet Filter T o add a new TCP/UDP packet filter , click Add TCP/UDP Filter in the Packet FIlte r screen. Figure 47 Firewall: Packet Filter s: Add TCP/UDP Filter The following table describes the labels in this screen. Packet Filt er Rules Rule Name This field displays th[...]

  • Página 70

    Prestige 794M U ser’s Guide Chapter 6 Firew all 70 6.4.2 Add a New Raw Packet Filter T o add a new raw packet filter , click Add Raw Filter in the Packet Filters screen. Figure 48 Firewall: Packet Filters: Add Raw Filter The following table describes the labels in this screen. Source IP Address(es) Enter the start source IP address in dotted deci[...]

  • Página 71

    Prestige 794M User’s Guide 71 Chapter 6 Firew all 6.5 Intrusion Detection The Prestige’ s Intrusion Detection System (IDS) is used to detect hacker attacks and intrusion attempts from the Internet. When you enable IDS o n the Prestige, inbound pack ets are filtered and blocked depending on whether they are det ected as possible hack er attacks,[...]

  • Página 72

    Prestige 794M U ser’s Guide Chapter 6 Firew all 72 Click Configuration , Fir ewall and Intrusion Detection in the navi gation panel to display the screen as shown. Note: The Intrusion Detection screen is available when you enable the firewall feature on the Prestige. Figure 49 Firewall: Intrusion Detection SYN/FIN/ RST/ACK Scan TCP , No Existing [...]

  • Página 73

    Prestige 794M User’s Guide 73 Chapter 6 Firew all The following table describes the labels in this screen. Note: For SYN Flood, ICMP Echo S torm and ICMP flood attacks, the Pre stige logs the event in the Event Log screen. The Prestige cannot prevent such attacks from occurring. 6.6 URL Filter URL (Uniform Resource Locator) filtering allows you t[...]

  • Página 74

    Prestige 794M U ser’s Guide Chapter 6 Firew all 74 Figure 50 Firewall: URL Filter The following table describes the labels in this screen. 6.6.1 Keywords Filtering Use the Keywords Filtering screen to specify the keywords in the URL. For example, if you specify the keyw ord "xxx", th e Prestige bloc ks al l sites containing this keyword[...]

  • Página 75

    Prestige 794M User’s Guide 75 Chapter 6 Firew all Figure 51 Firewall: URL Filter: Keywords F iltering The following table describes the labels in this screen. 6.6.2 Domain Filtering Use the Domains Filtering screen to specify the URL domain . For example, if you specify the domain “www .xxx.c om”, the Prestige blocks access to the sites in th[...]

  • Página 76

    Prestige 794M U ser’s Guide Chapter 6 Firew all 76 The following table describes the labels in this screen. 6.7 Firewall Log Use the Firewall Log screen to set the Prestige to log firewall events (such as when an attack is detected). V iew the event logs in the Event Log screen. Click Configuration , Fir ewall and Firewall Log in the navigation p[...]

  • Página 77

    Prestige 794M User’s Guide 77 Chapter 6 Firew all Intrusion Log Select Enable to log intrusion detections. Select Disable not to log intrusion detections. URL Blocking Log Select Enable to log URL blocking events. Select Disable not to log URL blocking eve nts. Table 39 Firewall: Firewall Logs (continued) LABEL DESCRIPTION[...]

  • Página 78

    Prestige 794M U ser’s Guide Chapter 7 VPN 78 C HAPTER 7 VPN This chapter shows you how to config ure the Prest ige for VPN connectio n. 7.1 Overview A VPN (V irtual Private Network) provides sec ure communications between sites without the expense of leased site-to-site lines. A secure VP N is a combination of tunneling, encryption, authenticatio[...]

  • Página 79

    Prestige 794M User’s Guide 79 Chapter 7 VPN The following table describes the labels in this screen. 7.2.2 Creating a PPTP VPN Rule T o configure a PP TP VPN rule, click Create in the summary screen to display the screen as shown. Figure 55 VPN: PPTP In the Connection T ype field, select Remote Access or LAN to LAN and click Next to display the c[...]

  • Página 80

    Prestige 794M U ser’s Guide Chapter 7 VPN 80 The following table describes th e labels in this screen. Table 41 VPN: PPTP: Remote Access LABEL DESCRIPTION Connection Name Enter a descriptive name for identification purposes. Ty p e Select Dial Out if yo u want your Prestige to o perate as a client (connecti ng to a remote VPN device). Select Dial[...]

  • Página 81

    Prestige 794M User’s Guide 81 Chapter 7 VPN 7.2.2.2 LAN to LAN Connection Use the PP TP LAN to LAN screen to configure the Prestige to accept connection requests from a VPN client. Figure 57 VPN: PPTP: LAN to LAN Connection The following table describes the labels in this screen. Idle T ime S pecify the ti me interva l in minutes (whe re there is[...]

  • Página 82

    Prestige 794M U ser’s Guide Chapter 7 VPN 82 Netmask This field is applicable when yo u select Dial In in the Ty p e field. Enter the subnet mask (in dotted decimal) notation to assign to the remote VPN client that initiates this VPN conne ction. For exampl e, 25 5.255.255.0. Peer Network IP Enter the I P address (in dotted de cimal notation) of [...]

  • Página 83

    Prestige 794M User’s Guide 83 Chapter 7 VPN 7.3 IPSec Internet Protocol Security (IPSec ) is a standard s-based VPN tha t of fers flexible solutions for secure data communications acro ss a public network like the Inte rnet. IPSec is built around a number of standardized cryptographic techniques to provide confidentiality , data integrity and aut[...]

  • Página 84

    Prestige 794M U ser’s Guide Chapter 7 VPN 84 7.3.3 Perfect Forward Secrecy (PFS) Enabling PFS means that the key is transient. The key is thrown away an d replaced by a brand new key using a new Diffie-Hellman exchange for each new IPSec SA setup. W ith PFS enabled, if one ke y is comp romised, previous and subseque nt keys are not compromised, b[...]

  • Página 85

    Prestige 794M User’s Guide 85 Chapter 7 VPN 7.3.6 IPSec VPN Configuration T o configure an IPSec VPN co nnection, click Create in the main IPSec screen. Figure 59 IPSec: Create The following table describes the labels in this screen. Table 44 VPN Rules (IKE): Add Policy LABEL DESCRIPTION Connection Name Enter a descriptive name for identification[...]

  • Página 86

    Prestige 794M U ser’s Guide Chapter 7 VPN 86 Single Address Select Single Address to allow one VPN client with the specified IP address to use the VPN connection. Enter a single IP address in the IP Address field. Subnet Select Subnet Address to allow more than one computer i n the specified subnet to use the VPN connection. Enter the IP address [...]

  • Página 87

    Prestige 794M User’s Guide 87 Chapter 7 VPN 7.4 L2TP L2TP (Layer 2 T unn eling Protocol) is another tunneling protocol to support VPN. L2TP allows a PPP session to travel through the Internet and a user to access a corporate network. Click VPN and L2TP to display the summary screen. Figure 60 VPN: L2TP The following table describes the labels in [...]

  • Página 88

    Prestige 794M U ser’s Guide Chapter 7 VPN 88 7.4.1 Creating a New L2TP Rule Click Cr eate to configure a new VPN connection. There are two types of L2TP VPN supported, Remote Ac cess and LAN-to-LAN . Select a co nnectio n type and click Next . Figure 61 VPN: L2TP: Create 7.4.1.1 Remote Access L2TP Connection Use the L2TP Remote Acces s Connection[...]

  • Página 89

    Prestige 794M User’s Guide 89 Chapter 7 VPN The following table describes the labels in this screen. Table 46 VPN: L2TP: Create: Remote Access Connection LABEL DESCRIPTION Connection Name Enter a descri ptive name for identi fication purposes. Ty p e Select Dial Out to set the Prestige to act as a client (conne cting to a remote VPN server). Sele[...]

  • Página 90

    Prestige 794M U ser’s Guide Chapter 7 VPN 90 7.4.1.2 LAN to LA N L2TP Connection Use the L2TP LAN to LAN screen to create an L2TP VPN rule to connect to another VPN device on the LAN. Encryption Select the encryption method from the pull -down menu. There are four options, DES , 3DES , AES and NO NE . NONE means it is a tunnel only with n o encry[...]

  • Página 91

    Prestige 794M User’s Guide 91 Chapter 7 VPN Figure 63 L2TP: LAN to LAN Connection The following table describes the labels in this screen. Table 47 VPN: L2TP: Create : LAN to LAN LABEL DESCRIPTION Connection Name Enter a descri ptive name for identi fication purposes. Ty p e Select Dial Out to set the Prestige to act as a client (conne cting to a[...]

  • Página 92

    Prestige 794M U ser’s Guide Chapter 7 VPN 92 Active as de fault ro ute Select this option to set this VPN connection as a default route. IPSec Select this option to enable IPSec security for your L T2P VPN connecti on. Authentication Specify the method to authenticate dat a packet in this field. Choices are None , MD5 and SHA1 . Select None to di[...]

  • Página 93

    Prestige 794M User’s Guide 93 Chapter 7 VPN 7.5 VPN Example This section shows some VPN configuration examples. 7.5.1 Example: Remote PP TP VPN Dial-in Connection The following network example shows a remote VPN client connecting to the LAN behind the Prestige from the Internet. Figure 64 Remote PPTP VPN Dial-in Network Example Create a PP TP dia[...]

  • Página 94

    Prestige 794M U ser’s Guide Chapter 7 VPN 94 Figure 65 Remote PPTP VPN Dial-In Configuration Example The following table describes the configuration steps. 7.5.2 Example: Remote PP TP VPN Dial-out Connection The following figure depicts a VPN network ex ample where a computer on the LAN behind the Prestige can establish a VPN conn ection to the p[...]

  • Página 95

    Prestige 794M User’s Guide 95 Chapter 7 VPN On the Prestige, create a dial-out PP TP VPN ru le to allow a computer on the LAN to access the public file server securely . Figure 67 PPTP VPN Example: Configuration fo r the Office The following table describes the configuration steps. Note: Both the local and remote networks MUST in different subnet[...]

  • Página 96

    Prestige 794M U ser’s Guide Chapter 8 QoS (Quality of Service) 96 C HAPTER 8 QoS (Quality of Service) This chapter shows you how to configure QoS on the Prestige. 8.1 Overview QoS function helps y ou to control your networ k traffic for each application from LAN to W AN (Internet). It facilitates you to control th e dif ferent quality and speed o[...]

  • Página 97

    Prestige 794M User’s Guide 97 Chapter 8 QoS (Quality of Ser vice) Figure 68 QoS: Prioritization The following table describes the labels in this screen. Table 50 QoS: Prioritization LABEL DESCRIPTION Application Enter a descriptive name for identification purposes. T ime Schedule S pecify when this rule is active. Select Always On to activate the[...]

  • Página 98

    Prestige 794M U ser’s Guide Chapter 8 QoS (Quality of Service) 98 The following is a mapping table between the Prestige DSCP ma rking scheme and the standard DSCP value. 8.2 IP Throttling IP Throttling (or bandwidth mana gement) helps you make sure that the Prestige forwards certain types of traf fic (especially real -time applications) with mini[...]

  • Página 99

    Prestige 794M User’s Guide 99 Chapter 8 QoS (Quality of Ser vice) Figure 69 QoS: Outbound IP Th rottling The following table describes the labels in this screen. Table 52 QoS: Outbound/Inbound IP Throttling LABEL DESCRIPTION Application Enter a descriptive name for identificati on purposes. T ime Schedule S pecify when this rule is active. Select[...]

  • Página 100

    Prestige 794M U ser’s Guide Chapter 8 QoS (Quality of Service) 100 8.3 QoS Example The following figure shows a network example where you want to limit the rates on dif ferent traffic types. The total upstream rate and the downstream rate of the Prestige are 928kbps and 8Mbps respec tively . Figure 70 QoS Network Ex ample 8.3.1 Example Prioritiza[...]

  • Página 101

    Prestige 794M User’s Guide 101 Chapter 8 QoS (Quality of Ser v ice) 8.3.2 Rate Limiting with IP Throttling Example W ith IP throttling you can fine tune bandwid th limits for specific applications. F or the example network, you want to give a guaranteed bandwidth for V oIP applications. The following table lists the bandwidth allocated for the t [...]

  • Página 102

    Prestige 794M U ser’s Guide Chapter 8 QoS (Quality of Service) 102 Figure 73 Configuration: T ime Schedule The following table describes the labels in this screen. 8.4.1 Configuring a T ime Schedule T o configure a time schedule, click Edit for a time schedule policy to display the configuration screen. Figure 74 Configuration: T ime Schedule: Ed[...]

  • Página 103

    Prestige 794M User’s Guide 103 Chapter 8 QoS (Quality of Ser v ice) The following table describes the labels in this screen. Table 55 Configuration: Time Schedule: Edit LABEL DESCRIPTION ID This read-only field displays the index nu mber . Name Enter a descriptive name for identifica tion purposes. Day Select the day of the week this time schedul[...]

  • Página 104

    Prestige 794M U ser’s Guide Chapter 9 Static Route 104 C HAPTER 9 S t atic Route This chapter shows you how to se t advanced system settings. 9.1 Overview Each remote node specifies only the network to which the gateway is di rectly connected, and the Prestige has no knowledge of the networks beyon d. For instance, the Prestige k nows about netwo[...]

  • Página 105

    Prestige 794M User’s Guide 105 Chapter 9 Static Route Table 56 Advanced: Static Route LABEL DESCRIPTION Destination This parameter specifies the IP network a ddress of the final destination. Ro uting is always based on network number . If you need to specify a rou te to a single host, use a subnet mask of 255.255.255.2 55 in the subnet mask field[...]

  • Página 106

    Prestige 794M U ser’s Guide Chapter 10 Dynamic D NS 106 C HAPTER 10 Dynamic DNS 10.1 Overview Dynamic DNS allows you to update your curre nt dynamic IP address with one or many dynamic DNS services so that anyone can c ont act you (in NetMeeting, CU-SeeMe, etc.). Y ou can also access your FTP server or W eb site on your own computer using a domai[...]

  • Página 107

    Prestige 794M User’s Guide 107 Chapter 10 Dynamic D NS The following table describes the labels in this screen. Table 57 Advanced: Dynamic DNS LABEL DESCRIPTION Dynamic DNS Select Enable to activate this feature and configure the fields below . Select Disable to deactivate this featur e. Dynamic DNS Server Select your DDNS service p rovider from [...]

  • Página 108

    Prestige 794M U ser’s Guide Chapter 11 Check Emails 108 C HAPTER 11 Check Emails This chapter shows you h ow to configure the Check Emails screen for POP3 email check ing. 1 1.1 Overview Y ou can configure the Prestige to automatically check the your POP3 mail box for new messages. Y ou can check your mail box status in the Email S tatus screen ([...]

  • Página 109

    Prestige 794M User’s Guide 109 Chapter 11 Check Emails Automati cally dial- out for checking emails Y ou can set the Prestige to automatically set up the SHDSL line to connect to the mail server when the line is down. Select the check box to enable automatic line set up. Note: Enabling this feature may ad d to your Internet access cost if your IS[...]

  • Página 110

    Prestige 794M U ser’s Guide Chapter 12 Device M anagement 110 C HAPTER 12 Device Management This chapter shows you h ow to configure device managemen t security and monitor ing settings. 12.1 Overview Configure general system settings (such as the system name, web server port numbers, etc.), UPnP and SNMP settings in the Device Manage ment screen[...]

  • Página 111

    Prestige 794M User’s Guide 111 Chapter 12 Device Manag ement Figure 79 SNMP Management Model An SNMP managed netwo rk consists of two main components: agen ts and a manager . An agent is a management software module that resi des in a managed device. An agent translates the local management information from the managed de vice into a form compati[...]

  • Página 112

    Prestige 794M U ser’s Guide Chapter 12 Device M anagement 112 12.1.2.2 SNMP T rap s and MIBs T raps supported: Cold Star t, Authentication Failure. The following table lists the MIBs and attributes. 12.2 The Device Management Screen Click Configuration , Advanced and Device Management in the navig ation panel to display the screen as shown. Table[...]

  • Página 113

    Prestige 794M User’s Guide 113 Chapter 12 Device Manag ement Figure 80 Advanced: Device Management The following table describes the labels in this screen. Table 60 Advanced: Device Manag ement LABEL DESCRIPTION Device Host Name Host Name Enter a name for identification purposes. Embedded Web Server HTTP Port S pecify the port number of the em be[...]

  • Página 114

    Prestige 794M U ser’s Guide Chapter 12 Device M anagement 114 Expire to auto-logout Type how many minutes a management web session can be left idle before the session times out. The default is 3 minutes. After it times out you have to log in again. V ery long idle ti meouts may have security risks. A value of "0" mea ns a management ses[...]

  • Página 115

    Prestige 794M User’s Guide 115 Chapter 12 Device Manag ement 12.3 IGMP A Prestige can passively snoop on IGMP Query , Report and Leave (IGMP version 2) packets transferred between IP multicast routers/switc hes and IP multicast hosts to learn the IP multicast group membership. It checks IGMP p ackets passing through it, picks out the group regist[...]

  • Página 116

    Prestige 794M U ser’s Guide Index 116 Index Numerics 11 0 V A C 4 230V AC 4 4-wire connection 56 A About your Prestige 20 AC 4 Accessories 4 Address Resolution Protocol (ARP) 29 Advanced PPP options 51 AH (Authentication Header) 83 Airflow 4 Application-level Firewalls 64 Applications 22 ARP 29 How it works 29 A TM Adaptation Layer 5 (AAL 5) 48 A[...]

  • Página 117

    Prestige 794M User’s Guide 117 Index Europe 4 Event log status 33 Exposure 4 F Factory LAN Defaults 38 FCC 3 Features 20 Finland, Contact Information 6 Firewall 21 , 64 General settings 66 Log 76 Predefined port filters 67 Ty p e s 64 Firmware upgrade 60 Frame Relay 22 France, Contact Information 6 Front panel 24 Front panel LEDs 24 FTP 106 Full [...]

  • Página 118

    Prestige 794M U ser’s Guide Index 118 NA T session status 35 Network Address T ransla tion (NA T) 21 North America 4 North America Contact Information 6 Norway , Contact Information 6 O Opening 4 P Packet filter 67 Raw packet filter 70 TCP/UDP packet filter 69 Packet filtering 21 Packet Filtering Firewalls 64 Perfect Forward Secrecy 84 PFS (Perfe[...]

  • Página 119

    Prestige 794M User’s Guide 119 Index L2TP 32 NA T sessions 35 PPTP 31 Routing table 30 Subnet Mask 38 , 40 Supply V oltage 4 Support E-mail 6 Supporting Disk 18 Sweden, Contact Information 7 Swimming Pool 4 Syntax Conventions 18 System 58 T T elephone 6 Thunderstorm 4 T ime schedule 101 T ime zone 58 U Universal Plug and Pl ay 11 0 Universal Plug[...]