Warning: mysql_fetch_array() expects parameter 1 to be resource, boolean given in /home/newdedyk/domains/bkmanuals.com/public_html/includes/pages/manual_inc.php on line 26
Netopia 4752 manuale d’uso - BKManuals

Netopia 4752 manuale d’uso

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284

Vai alla pagina of

Un buon manuale d’uso

Le regole impongono al rivenditore l'obbligo di fornire all'acquirente, insieme alle merci, il manuale d’uso Netopia 4752. La mancanza del manuale d’uso o le informazioni errate fornite al consumatore sono la base di una denuncia in caso di inosservanza del dispositivo con il contratto. Secondo la legge, l’inclusione del manuale d’uso in una forma diversa da quella cartacea è permessa, che viene spesso utilizzato recentemente, includendo una forma grafica o elettronica Netopia 4752 o video didattici per gli utenti. La condizione è il suo carattere leggibile e comprensibile.

Che cosa è il manuale d’uso?

La parola deriva dal latino "instructio", cioè organizzare. Così, il manuale d’uso Netopia 4752 descrive le fasi del procedimento. Lo scopo del manuale d’uso è istruire, facilitare lo avviamento, l'uso di attrezzature o l’esecuzione di determinate azioni. Il manuale è una raccolta di informazioni sull'oggetto/servizio, un suggerimento.

Purtroppo, pochi utenti prendono il tempo di leggere il manuale d’uso, e un buono manuale non solo permette di conoscere una serie di funzionalità aggiuntive del dispositivo acquistato, ma anche evitare la maggioranza dei guasti.

Quindi cosa dovrebbe contenere il manuale perfetto?

Innanzitutto, il manuale d’uso Netopia 4752 dovrebbe contenere:
- informazioni sui dati tecnici del dispositivo Netopia 4752
- nome del fabbricante e anno di fabbricazione Netopia 4752
- istruzioni per l'uso, la regolazione e la manutenzione delle attrezzature Netopia 4752
- segnaletica di sicurezza e certificati che confermano la conformità con le norme pertinenti

Perché non leggiamo i manuali d’uso?

Generalmente questo è dovuto alla mancanza di tempo e certezza per quanto riguarda la funzionalità specifica delle attrezzature acquistate. Purtroppo, la connessione e l’avvio Netopia 4752 non sono sufficienti. Questo manuale contiene una serie di linee guida per funzionalità specifiche, la sicurezza, metodi di manutenzione (anche i mezzi che dovrebbero essere usati), eventuali difetti Netopia 4752 e modi per risolvere i problemi più comuni durante l'uso. Infine, il manuale contiene le coordinate del servizio Netopia in assenza dell'efficacia delle soluzioni proposte. Attualmente, i manuali d’uso sotto forma di animazioni interessanti e video didattici che sono migliori che la brochure suscitano un interesse considerevole. Questo tipo di manuale permette all'utente di visualizzare tutto il video didattico senza saltare le specifiche e complicate descrizioni tecniche Netopia 4752, come nel caso della versione cartacea.

Perché leggere il manuale d’uso?

Prima di tutto, contiene la risposta sulla struttura, le possibilità del dispositivo Netopia 4752, l'uso di vari accessori ed una serie di informazioni per sfruttare totalmente tutte le caratteristiche e servizi.

Dopo l'acquisto di successo di attrezzature/dispositivo, prendere un momento per familiarizzare con tutte le parti del manuale d'uso Netopia 4752. Attualmente, sono preparati con cura e tradotti per essere comprensibili non solo per gli utenti, ma per svolgere la loro funzione di base di informazioni e di aiuto.

Sommario del manuale d’uso

  • Pagina 1

    Net opia ™ 4752 SDSL Integra ted Access Device Administration Guide[...]

  • Pagina 2

    C o p yright ©2001 Netopia, Inc., v .051601 All rights reser ved. Printed in the U.S.A. This manual and any associated ar twork, software, and product designs are copyrighted with all rights reser ved. Under the copyright laws such materials may not be copied, in whole or par t, without the prior written consent of Netopia, Inc. Under the law , co[...]

  • Pagina 3

    Contents iii G Part I: Getting Started Chapter 1 — Introduction .......................................................... 1-1 Over view ....................................................................... 1-1 Features and Capabilities ............................................... 1-1 How to Use This Guide ...................................[...]

  • Pagina 4

    iv Administration Guide Chapter 6 — Console-Based Management ................................. 6-1 Connecting through a T elnet Session ............................... 6-2 Configuring T elnet software ................................... 6-2 Connecting a Console Cable to Y our Device ..................... 6-3 Navigating through the Console Scr ee[...]

  • Pagina 5

    Contents v G The A TMP/PPTP Default Pr ofile ..................................... 9-17 System Configuration Screens ..................................... 9-17 Navigating through the System Configuration screens............................................................. 9-17 System Configuration Features ..................................... [...]

  • Pagina 6

    vi Administration Guide Ser ver Lists and Dynamic NA T configuration......... 11-6 IP setup ............................................................ 11-7 Modifying map lists .......................................... 11-12 Moving maps ................................................... 11-14 Adding Ser ver Lists ...............................[...]

  • Pagina 7

    Contents vii G About A TMP Tunnels................................................... 12-20 A TMP configuration .......................................... 12-20 Allowing VPNs through a Fir ewall ................................. 12-23 PPTP example .................................................. 12-24 A TMP example ..............................[...]

  • Pagina 8

    viii Administration Guide Chapter 14 — Monitoring T ools ............................................... 14-1 Quick View Status Over view .......................................... 14-1 General status ................................................... 14-2 Cur rent status ................................................... 14-3 Status lights ...[...]

  • Pagina 9

    Contents ix G Downloading configuration files ......................... 15-11 Uploading configuration files ............................. 15-12 Restar ting the System ............................................... 15-12 Part III: Appendixes Appendix A — Troubleshooting .................................................. A-1 Configuration Pro[...]

  • Pagina 10

    x Administration Guide Appendix F — T echnical Specifications and Safety Information ... F-1 Description .................................................................... F-1 Power requir ements ............................................. F-1 Environment ........................................................ F-1 Software and pr otocols ..[...]

  • Pagina 11

    P P P P a a a a r r r r t t t t II I I : : : : G G G G e e e e t t t t t t t t ii i i n n n n g g g g S S S S t t t t a a a a r r r r t t t t e e e e d d d d[...]

  • Pagina 12

    Administration Guide[...]

  • Pagina 13

    Introduction 1-1 C C C C h h h h a a a a p p p p t t t t e e e e r r r r 1 1 1 1 II I I n n n n t t t t r r r r o o o o d d d d u u u u c c c c t t t t ii i i o o o o n n n n O O O O v v v v e e e e r r r r v v v v ii i i e e e e w w w w The Netopia 4752 V oice/Data Integrated Access Devices (IADs) make it possible for small businesses to take adva[...]

  • Pagina 14

    1-2 Administration Guide An IAD combines the voice telephony features of a telephone PBX system with the data r outing features of an IP data router . The device uses a single outside line connection to car r y all voice and data transmissions. If the device uses a DSL inter face, it can car r y all of these ser vices over a single existing copper [...]

  • Pagina 15

    Setting Up Internet Services 2-1 C C C C h h h h a a a a p p p p t t t t e e e e r r r r 2 2 2 2 S S S S e e e e t t t t t t t t ii i i n n n n g g g g U U U U p p p p II I I n n n n t t t t e e e e r r r r n n n n e e e e t t t t S S S S e e e e r r r r v v v v ii i i c c c c e e e e s s s s This chapter describes how to obtain and set up Internet[...]

  • Pagina 16

    2-2 Administration Guide ■ Custom domain name ■ Multiple e-mail addresses ■ Web site hosting P P P P r r r r ii i i c c c c ii i i n n n n g g g g a a a a n n n n d d d d s s s s u u u u p p p p p p p p o o o o r r r r t t t t Compare pricing, ser vice, and technical suppor t ser vice among various ISPs. E E E E n n n n d d d d o o o o r r r [...]

  • Pagina 17

    Setting Up Internet Services 2-3 O O O O b b b b t t t t a a a a ii i i n n n n ii i i n n n n g g g g II I I n n n n f f f f o o o o r r r r m m m m a a a a t t t t ii i i o o o o n n n n f f f f r r r r o o o o m m m m t t t t h h h h e e e e II I I S S S S P P P P After your account is set up, the ISP should send you the IP parameter infor matio[...]

  • Pagina 18

    2-4 Administration Guide[...]

  • Pagina 19

    Making the Physical Connections 3-1 C C C C h h h h a a a a p p p p t t t t e e e e r r r r 3 3 3 3 M M M M a a a a k k k k ii i i n n n n g g g g t t t t h h h h e e e e P P P P h h h h y y y y s s s s ii i i c c c c a a a a ll l l C C C C o o o o n n n n n n n n e e e e c c c c t t t t ii i i o o o o n n n n s s s s This section tells you how to [...]

  • Pagina 20

    3-2 Administration Guide What Y ou Need Locate all items that you need for the installation. Included in your package are: ■ The Netopia 4752 SDSL Integrated Access Device ■ A power adapter and cord with a mini-DIN8 connector ■ One 6 ft. RJ45 10/100 Ethernet cable ■ One 6 ft. RJ45 SDSL W AN (or Line) cable ■ A DB-9 to DB-9 console cable ?[...]

  • Pagina 21

    Making the Physical Connections 3-3 Identify the Connectors and Attach the Cables Identify the connectors on the back panel and attach the necessar y Netopia cables. The figure below displays the back of the Netopia 4752 SDSL Integrated Access Device. Netopia 4752 back panel The following table describes all the Netopia 4752 SDSL Integrated Access[...]

  • Pagina 22

    3-4 Administration Guide Netopia 4752 Status Lights The figure below r epresents the Netopia 4752 status light (LED) panel. Netopia 4752 LED front panel The following table summarizes the meaning of the various LED states and colors: When this happens... the LEDs... The power is of f (button is not pressed in) 1 is dark . The power is on (button p[...]

  • Pagina 23

    Sharing the Connection 4-1 C C C C h h h h a a a a p p p p t t t t e e e e r r r r 4 4 4 4 S S S S h h h h a a a a r r r r ii i i n n n n g g g g t t t t h h h h e e e e C C C C o o o o n n n n n n n n e e e e c c c c t t t t ii i i o o o o n n n n Once you have set up your physical local area network, you will need to configur e the TCP/IP stack [...]

  • Pagina 24

    4-2 Administration Guide Configuring TCP/IP on Windows-based Computers Configuring TCP/IP on a Windows computer requir es the following: ■ An Ethernet car d (also known as a network adapter) ■ The TCP/IP protocol must be “bound” to the adapter or car d Dynamic configuration (r ecommended) T o configure your PC for dynamic addr essing do[...]

  • Pagina 25

    Sharing the Connection 4-3 Static configuration (optional) If you are manually configuring for a fixed or static IP addr ess, per for m the following: 1. Go to Star t Menu/Settings/Control Panels and double click the Network icon. From the Network components list, select the Configuration tab. 2. Select TCP/IP-->Y our Network Card . Then sel[...]

  • Pagina 26

    4-4 Administration Guide 4. Click OK in this window and the next window . When prompted, r eboot the computer . Note: Y ou can also use these instr uctions to configure other computers on your network with manual or static IP addresses. Be sur e each computer on your network has its own IP address. Click on the DNS Configuration tab. Click Enable[...]

  • Pagina 27

    Sharing the Connection 4-5 Configuring TCP/IP on Macintosh Computers The following is a quick guide to configuring TCP/IP for MacOS computers. Configuring TCP/IP in a Macintosh computer requir es the following: ■ Y ou must have either Open T ranspor t or Classic Networking (MacTCP) installed. Note: If you want to use the Dynamic Host Configur[...]

  • Pagina 28

    4-6 Administration Guide Static configuration (optional) 3. In the TCP/IP window or in the MacTCP/More window , select or type infor mation into the fields as shown in the following table. 4. Close the TCP/IP or MacTCP control panel and save the settings. 5. If you are using MacTCP , you must restar t the computer . If you are using Open T ranspo[...]

  • Pagina 29

    Sharing the Connection 4-7 Note: Y ou can also use these instr uctions to configure other computers on your network with manual or static IP addresses. Be sur e each computer on your network has its own IP address. More infor mation about configuring your Macintosh computer for TCP/IP connectivity through a Netopia 4752 can be found in T echnote [...]

  • Pagina 30

    4-8 Administration Guide[...]

  • Pagina 31

    Connecting to Y our Local Network 5-1 C C C C h h h h a a a a p p p p t t t t e e e e r r r r 5 5 5 5 C C C C o o o o n n n n n n n n e e e e c c c c t t t t ii i i n n n n g g g g t t t t o o o o Y Y Y Y o o o o u u u u r r r r L L L L o o o o c c c c a a a a ll l l N N N N e e e e t t t t w w w w o o o o r r r r k k k k This chapter describes how[...]

  • Pagina 32

    5-2 Administration Guide Readying Computers on Y our Local Network PC and Macintosh computers must have cer tain components installed before they can communicate thr ough the Netopia 4752. The following illustration shows the minimal requir ements for a typical PC or Macintosh computer . Application software: This is the softwar e you use to send e[...]

  • Pagina 33

    Connecting to Y our Local Network 5-3 Connecting to an IP and T elephone Network The Netopia 4752 suppor ts Ether net connections through its Ethernet por t. Y ou can connect a standard 10 or 100Base-T Ethernet network to the Netopia 4752 using its Ether net por t. Netopia 4752 back panel Note: The Ringer Equivalence Number (REN) is used to deter m[...]

  • Pagina 34

    5-4 Administration Guide[...]

  • Pagina 35

    Console-Based Management 6-1 C C C C h h h h a a a a p p p p t t t t e e e e r r r r 6 6 6 6 C C C C o o o o n n n n s s s s o o o o ll l l e e e e - - - - B B B B a a a a s s s s e e e e d d d d M M M M a a a a n n n n a a a a g g g g e e e e m m m m e e e e n n n n t t t t Console-based management is a menu-driven inter face for the capabilities [...]

  • Pagina 36

    6-2 Administration Guide may be using the router to connect to mor e than one ser vice provider or remote site. ■ The System Configuration menus display and per mit changing: ■ Internet pr otocol setup. See “IP Setup” on page 10-1 . ■ Filter sets (firewalls). See “Security” on page 13-1 . ■ IP address ser ving. See “IP Addr ess [...]

  • Pagina 37

    Console-Based Management 6-3 from the Star t menu. ■ If you connect a Macintosh computer , you can use the NCSA T elnet pr ogram supplied on the Netopia 4752 CD. Y ou install NCSA T elnet by simply dragging the application fr om the CD to your hard disk. Connecting a Console Cable to Y our Device Y ou can per for m all of the system configuratio[...]

  • Pagina 38

    6-4 Administration Guide Launch your ter minal emulation software and configure the communications softwar e for the values shown in the table below . These are the default communication parameters that the Netopia 4752 uses. Parameter Suggested V alue T er minal type PC : ANSI-BBS Mac : ANSI, VT-100, or VT-200 Data bits 8 Parity None Stop bits 1 [...]

  • Pagina 39

    Console-Based Management 6-5 Navigating thr ough the Console Screens Use your keyboard to navigate the Netopia 4752’s configuration scr eens, enter and edit information, and make choices. The following table lists the keys to use to navigate through the console scr eens. T o... Use These Keys... Move through selectable items in a scr een or pop-[...]

  • Pagina 40

    6-6 Administration Guide[...]

  • Pagina 41

    Easy Setup 7-1 C C C C h h h h a a a a p p p p t t t t e e e e r r r r 7 7 7 7 E E E E a a a a s s s s y y y y S S S S e e e e t t t t u u u u p p p p This chapter describes how to use the Easy Setup console screens on your Netopia 4752 SDSL Integrated Access Device. After completing the Easy Setup console screens, your device will be r eady to con[...]

  • Pagina 42

    7-2 Administration Guide A screen similar to the following Main Menu appears: If you do not see the Main Menu, verify that: ■ If you are using a serial connection, that your serial por t speed is the same as the Netopia 4752’s default 9600 baud, for first use. ■ The computer used to view the console screen has its serial por t connected to t[...]

  • Pagina 43

    Easy Setup 7-3 Quick Easy Setup Connection Path This section may be all you need to do to configure your Netopia 4752 SDSL Integrated Access Device to connect to the Internet. Y our ser vice pr ovider must supply you with several parameter values for you to enter in the device. The ser vice provider will pr ovide values for the parameters shown be[...]

  • Pagina 44

    7-4 Administration Guide (If you want to recor d these values, you can print these pages and use the spaces above.) If your ISP assigns your Router a Static IP address, do the following: 1. Open a T elnet session to 192.168.1.1 to bring up the Main Menu. If you don't know how to do this, see “Connecting through a T elnet Session” on page 6[...]

  • Pagina 45

    Easy Setup 7-5 The Main Menu appears. 2. Select the first item on the Main Menu list, Easy Setup . Press Retur n to bring up the SDSL Line Configuration menu screen. SDSL Line Configuration 1. Select Operation Mode and from the pop-up menu choose the type of DSLAM to which you will be connecting. Netopia 4752 v5.1 Easy Setup... WAN Configuration[...]

  • Pagina 46

    7-6 Administration Guide The Operation Mode selection will reset a number of default values that per tain to that par ticular DSLAM. If the changes are such that the defaults completely change the configuration, you will see an aler t message asking you to confir m the resetting of the defaults. ■ If you are using the HDLC (Copper Mountain) Ope[...]

  • Pagina 47

    Easy Setup 7-7 If you are using an A TM-based Mode, the SDSL Line Configuration screen of fers additional parameters. ■ Select Data Link Encapsulation and from the pop-up menu choose either RFC1483 (the default) or PPP . ■ If you selected RFC1483, the next pop-up menu RFC1483 Mode of fers the choice of Bridged 1483 or Routed 1483. If you selec[...]

  • Pagina 48

    7-8 Administration Guide V oice Easy Setup 1. Select V oice Gateway and press Retur n. The pop-up menu will of fer you the choice of popular voice gateway devices. Y our selection depends on which type your ISP uses: CopperCom, JetStr eam, T ollBridge, TDSoft, or Zhone. 2. For any V oice Gateway other than T ollbridge, the V oice VPI and V oice VCI[...]

  • Pagina 49

    Easy Setup 7-9 Easy Setup Profile The Easy Setup Profile scr een is where you configure the parameters that contr ol the Netopia 4752’s connection to a specific remote destination, usually your ISP or a corporate site. On a Netopia 4752 SDSL Integrated Access Device you can add up to 15 more connection pr ofiles, for a total of 16, although,[...]

  • Pagina 50

    7-10 Administration Guide IP Easy Setup The IP Easy Setup screen is wher e you enter information about your Netopia Router’s: ■ Ethernet IP addr ess ■ Ethernet Subnet mask ■ Domain Name ■ Domain Name Ser ver IP address ■ Default gateway IP address Consult with your network administrator to obtain the infor mation you will need. For more[...]

  • Pagina 51

    Easy Setup 7-11 5. Type the Primar y Domain Name Ser ver addr ess your ISP gave you. Press Return. A new field Secondar y Domain Name Ser ver will appear . If your ISP gave you a secondar y domain name ser ver address, enter it here. Pr ess Return until the next field Default IP Gateway is highlighted. 6. If you do not enter a Default IP Gateway [...]

  • Pagina 52

    7-12 Administration Guide The final step in configuring the Easy Setup console screens is to r estar t the Netopia 4752, so that the configuration settings take ef fect. 1. Select REST ART DEVICE . A prompt asks you to confir m your choice. 2. Select CONTINUE to restar t the Netopia Router and have your selections take ef fect. Note: Y ou can a[...]

  • Pagina 53

    V oice Configuration 8-1 C C C C h h h h a a a a p p p p t t t t e e e e r r r r 8 8 8 8 V V V V o o o o ii i i c c c c e e e e C C C C o o o o n n n n f f f f ii i i g g g g u u u u r r r r a a a a t t t t ii i i o o o o n n n n This chapter describes the telephony ser vices and configuration of the Netopia 4752 SDSL Integrated Access Device. Fo[...]

  • Pagina 54

    8-2 Administration Guide distance or local calls. T oll Restriction Operation - PBX/Local Switching Mode: When you pick up the phone, you receive local PBX dial tone. When a 9 (or outside line code) is pressed, the IAD detects the digit and r eturns busy (locally generated). Incoming calls are allowed. Extension calls (locally switched) ar e allowe[...]

  • Pagina 55

    V oice Configuration 8-3 ■ Select V oice Gateway and from the pop-up menu, choose the type of voice gateway device to which you will be connected. The choices are: CopperCom, JetStr eam, T ollBridge, TDSoft, or Zhone. ■ Select Ring Cadence and press Retur n. A pop-up menu allows you to choose between 20Hz (the default) and 25Hz for compliance [...]

  • Pagina 56

    8-4 Administration Guide Once you have set echo cancellation, press Escape to r eturn to the V oice Configuration scr een. Y ou can enable or disable echo cancellation for each por t on the Netopia 4752. ■ Select V oice Coding and press Retur n. From the pop-up menu choose the voice coding method you will be using. The default is mu-law , which [...]

  • Pagina 57

    P P P P a a a a r r r r t t t t II I I II I I : : : : A A A A d d d d v v v v a a a a n n n n c c c c e e e e d d d d C C C C o o o o n n n n f f f f ii i i g g g g u u u u r r r r a a a a t t t t ii i i o o o o n n n n[...]

  • Pagina 58

    Administration Guide[...]

  • Pagina 59

    W AN and System Configuration 9-1 C C C C h h h h a a a a p p p p t t t t e e e e r r r r 9 9 9 9 W W W W A A A A N N N N a a a a n n n n d d d d S S S S y y y y s s s s t t t t e e e e m m m m C C C C o o o o n n n n f f f f ii i i g g g g u u u u r r r r a a a a t t t t ii i i o o o o n n n n This chapter describes how to use the console-based m[...]

  • Pagina 60

    9-2 Administration Guide W AN Configuration T o configure your Wide Ar ea Network (W AN) connection, navigate to the WAN Configuration screen from the Main Menu and select W AN Configuration , then W AN Setup . The SDSL Line Configuration screen appears. Main Menu WA N Conf iguration WA N Setup WAN Configuration WAN (Wide Area Network) Setup..[...]

  • Pagina 61

    W AN and System Configuration 9-3 ■ Select Operation Mode and from the pop-up menu choose the type of DSLAM to which you will be connecting. Each access concentrator (DSLAM) has a dif ferent set of default data rates and other parameters. Y our ser vice pr ovider should supply you with the appropriate infor mation about the type and capabilities[...]

  • Pagina 62

    9-4 Administration Guide For example, for the A TM-based DSLAM mode Nokia Fixed, the following scr een displays. ■ For all except the (HDLC) Copper Mountain Operation Mode, the Data Rate Mode pop-up menu of fers the choice of Hunt or Locked mode. ■ If you select Hunt (the default) the device will attempt to connect at the data rate you specify [...]

  • Pagina 63

    W AN and System Configuration 9-5 M M M M u u u u ll l l t t t t ii i i p p p p ll l l e e e e A A A A T T T T M M M M P P P P e e e e r r r r m m m m a a a a n n n n e e e e n n n n t t t t V V V V ii i i r r r r t t t t u u u u a a a a ll l l C C C C ii i i r r r r c c c c u u u u ii i i t t t t S S S S u u u u p p p p p p p p o o o o r r r r t [...]

  • Pagina 64

    9-6 Administration Guide M M M M u u u u ll l l t t t t ii i i p p p p ll l l e e e e A A A A T T T T M M M M P P P P V V V V C C C C c c c c o o o o n n n n f f f f ii i i g g g g u u u u r r r r a a a a t t t t ii i i o o o o n n n n Y ou configur e Vir tual Circuits in the Add/Change Cir cuit screen. From the Main Menu, navigate to the SDSL Lin[...]

  • Pagina 65

    W AN and System Configuration 9-7 Choosing Display/Change Circuit (or Delete Cir cuit) displays a pop-up menu that allows you to select the circuit to be modified or deleted. C C C C h h h h a a a a n n n n g g g g ii i i n n n n g g g g a a a a c c c c ii i i r r r r c c c c u u u u ii i i t t t t If you want to make any changes to the circuit y[...]

  • Pagina 66

    9-8 Administration Guide ■ Circuit Enabled allows you to enable or disable the cir cuit, using the T ab key . The default is enabled. ■ Traffic Type allows you to select which type of traf fic will be routed on this circuit, V oice or Data. If you choose V oice, the Connection Pr ofile is field becomes unavailable and does not display . ■[...]

  • Pagina 67

    W AN and System Configuration 9-9 A A A A d d d d d d d d ii i i n n n n g g g g a a a a c c c c ii i i r r r r c c c c u u u u ii i i t t t t Choosing Add Circuit displays the Add Cir cuit screen. The fields in the Add Circuit scr een are the similar to the fields in the Change Circuit scr een described above. Y ou can add up to seven cir cuits[...]

  • Pagina 68

    9-10 Administration Guide M M M M o o o o n n n n ii i i t t t t o o o o r r r r ii i i n n n n g g g g m m m m u u u u ll l l t t t t ii i i p p p p ll l l e e e e v v v v ii i i r r r r t t t t u u u u a a a a ll l l c c c c ii i i r r r r c c c c u u u u ii i i t t t t s s s s The General Statistics screen adds a selection for A TM VC Statistics[...]

  • Pagina 69

    W AN and System Configuration 9-11 The A TM VC Statistics scr een appears. ■ T o display more infor mation about each circuit associated with the selected WAN module, use the up or down ar row key to highlight the circuit you want to view . Press Retur n. A pop-up window appears, displaying detailed infor mation for the selected circuit. ATM VC [...]

  • Pagina 70

    9-12 Administration Guide Cr eating a New Connection Profile For a Netopia 4752, connection profiles ar e useful for configuring the connection and authentication settings for negotiating a PPP connection on the SDSL link. If you are using the PPP data link encapsulation method, you can store your authentication infor mation in the connection pr[...]

  • Pagina 71

    W AN and System Configuration 9-13 3. Select Data Link Encapsulation and press Retur n. The pop-up menu of fers the possible data link encapsulation methods for connection profiles used for a variety of purposes: PPP , HDLC, Frame Relay , RFC1483, A TMP , PPTP , or IPsec. If you select any data link encapsulation method other than HDLC or RFC1483[...]

  • Pagina 72

    9-14 Administration Guide 7. T oggle or enter any IP Parameters you requir e and return to the Add Connection Pr ofile screen by pressing Escape. For more infor mation, see “IP Setup” on page 10-1 . 8. Select COMMIT and press Retur n. Y our new Connection Profile will be added. If you want to view the Connection Profiles in your device, r et[...]

  • Pagina 73

    W AN and System Configuration 9-15 The W AN Default Pr ofile If you are using RFC1483 datalink encapsulation, the WAN Default Profile screen contr ols whether or not the SDSL link will come up without an explicitly configured connection pr ofile. (PPP datalink encapsulation does not suppor t a default profile, and the cor responding menu item[...]

  • Pagina 74

    9-16 Administration Guide IP Parameters (Default Profile) scr een If you are using RFC1483 datalink encapsulation, the IP Parameters (Default Pr ofile) screen allows you to configure various IP parameters for SDSL connections established without an explicitly configur ed connection profile: For most DSL links, Network Address T ranslation (NA [...]

  • Pagina 75

    W AN and System Configuration 9-17 The A TMP/PPTP Default Pr ofile The A TMP/PPTP Default Pr ofile screen controls whether or not your device will answer VPN connection attempts without an explicitly configured connection pr ofile. See “Vir tual Private Networks (VPNs)” on page 12-1 for mor e infor mation. System Configuration Scr eens Y [...]

  • Pagina 76

    9-18 Administration Guide This par ticular path guide shows how to get to the Network Protocols Setup scr eens. The path guide represents these steps: 1. Beginning in the Main Menu, select System Configuration and press Retur n. The System Configuration screen appears. 2. Select Network Protocols and press Retur n. The Network Protocols scr een a[...]

  • Pagina 77

    W AN and System Configuration 9-19 The System Configuration menu screen appears: IP setup These screens allow you to configur e your network’s use of the standard networking protocol: ■ IP: Details are given in “IP Setup” on page 10-2 . Filter sets These screens allow you to configur e security on your network by means of filter sets a[...]

  • Pagina 78

    9-20 Administration Guide Follow these steps to set the system’s date and time: 1. Select Current Date and enter the date in the appr opriate format. Use one- or two-digit numbers for the month and day , and the last two digits of the cur rent year . The date’s numbers must be separated by for ward slashes (/). 2. Select Current Time and enter [...]

  • Pagina 79

    W AN and System Configuration 9-21 T o go to the Console Configuration screen, select Console Configuration in the System Configuration screen. Follow these steps to change a parameter’s value: 1. Select the parameter you want to change. 2. Select a new value for the parameter . Return to step 1 if you want to configure another parameter . 3[...]

  • Pagina 80

    9-22 Administration Guide Logging Y ou can configur e a UNIX-compatible syslog client to repor t a number of subsets of the events entered in the device’s W AN Event Histor y . See “WAN Event Histor y” on page 14-5 . The Syslog client (for the PC only) is supplied as a .ZIP file on the Netopia CD. Select Logging from the System Configurati[...]

  • Pagina 81

    W AN and System Configuration 9-23 The following screen shows a sample syslog dump of WAN events: May 5 10:14:06 tsnext.netopia.com Link 1 down: PPP PAP failure May 5 10:14:06 tsnext.netopia.com >>Issued Speech Setup Request from our DN: 5108645534 May 5 10:14:06 tsnext.netopia.com Requested Disc. from DN: 917143652500 May 5 10:14:06 tsnext.[...]

  • Pagina 82

    9-24 Administration Guide[...]

  • Pagina 83

    IP Setup 10-1 C C C C h h h h a a a a p p p p t t t t e e e e r r r r 1 1 1 1 0 0 0 0 II I I P P P P S S S S e e e e t t t t u u u u p p p p The Netopia 4752 uses Internet Pr otocol (IP) to communicate both locally and with remote networks. This chapter shows you how to configure the r outer to route IP traf fic. Y ou also lear n how to configur[...]

  • Pagina 84

    10-2 Administration Guide IP Setup The IP Setup options screen is wher e you configure the Ethernet side of the Netopia 4752. The infor mation you enter here contr ols how the router routes IP traf fic. Consult your network administrator or ISP to obtain the IP setup infor mation (such as the Ethernet IP address, Ethernet subnet mask, default IP [...]

  • Pagina 85

    IP Setup 10-3 The Netopia 4752 SDSL Integrated Access Device suppor ts multiple IP subnets on the Ether net inter face. Y ou may want to configur e multiple IP subnets to ser vice more hosts than are possible with your primar y subnet. It is not always possible to obtain a lar ger subnet from your ISP . For example, if you alr eady have a full Cla[...]

  • Pagina 86

    10-4 Administration Guide IP subnets The IP Subnets screen allows you to configur e up to eight Ethernet IP subnets on unlimited-user models, one “primar y” subnet and up to seven secondar y subnets, by entering IP addr ess/subnet mask pairs: Note: Y ou need not use this scr een if you have only a single Ethernet IP subnet. In that case, you c[...]

  • Pagina 87

    IP Setup 10-5 For example: ■ T o delete a configured subnet, set both the IP addr ess and subnet mask values to 0.0.0.0, either explicitly or by clearing each field and pressing Retur n to commit the change. When a configured subnet is deleted, the values in subsequent rows adjust up to fill the vacant fields. The subnets configured on this[...]

  • Pagina 88

    10-6 Administration Guide If you have configured multiple Ether net IP subnets, the IP Setup screen changes slightly: The IP address and Subnet mask items ar e hidden, and the Define Additional Subnets... item becomes Subnet Configuration... . If you select Subnet Configuration , you will retur n to the IP Subnets screen that allows you to de?[...]

  • Pagina 89

    IP Setup 10-7 The Static Routes screen will appear . Viewing static r outes T o display a view-only table of static routes, select Display/Change Static Route . The table shown below will appear . The table has the following columns: Dest. Network: The network IP address of the destination network. Static Routes Display/Change Static Route... Add S[...]

  • Pagina 90

    10-8 Administration Guide Subnet Mask: The subnet mask associated with the destination network. Next Gateway: The IP address of the r outer that will be used to reach the destination network. Priority: An indication of whether the Netopia 4752 will use the static route when it conflicts with infor mation received fr om RIP packets. Enabled: An ind[...]

  • Pagina 91

    IP Setup 10-9 infor mation; Low means that the RIP information takes pr ecedence over the static route. ■ If the static route conflicts with a connection pr ofile, the connection profile will always take precedence. ■ T o make sure that the static r oute is known only to the Netopia 4752, select Adver tise Route V ia RIP and toggle it to No [...]

  • Pagina 92

    10-10 Administration Guide IP Addr ess Serving In addition to being a router , the Netopia 4752 is also an IP address ser ver . There ar e three protocols it can use to distribute IP addresses. ■ The first, called Dynamic Host Configuration Protocol (DHCP), is widely suppor ted on PC networks, as well as Apple Macintosh computers using Open T r[...]

  • Pagina 93

    IP Setup 10-11 Follow these steps to configure IP Addr ess Ser ving: ■ If you enabled IP Address Ser ving, then DHCP , BootP clients and Dynamic W AN clients are automatically enabled. ■ The IP Address Ser ving Mode pop-up menu allows you to choose the way in which the Netopia 4752 will ser ve IP addresses. The device can act as either a DHCP [...]

  • Pagina 94

    10-12 Administration Guide If you have configured multiple Ether net IP subnets, the appearance of the IP Address Ser ving scr een is altered slightly: The first three menu items ar e hidden, and Configure Address Pools... appears instead. If you select Configure Address Pools... you will be taken to the IP Addr ess Pools screen that allows you[...]

  • Pagina 95

    IP Setup 10-13 IP Addr ess Pools The IP Address Pools scr een allows you to configure a separate IP address ser ving pool for each of up to eight configured Ether net IP subnets: This screen consists of between two and eight r ows of four columns each. There are exactly as many r ows as there ar e Ethernet IP subnets configured on the IP Subnets[...]

  • Pagina 96

    10-14 Administration Guide Numerous factors influence the choice of ser ved addr ess. It is dif ficult to specify the addr ess that will be ser ved to a par ticular client in all cir cumstances. However , when the addr ess ser ver has been configured, and the clients involved have no prior address ser ving interactions, the Netopia 4752 will gen[...]

  • Pagina 97

    IP Setup 10-15 DHCP NetBIOS Options If your network uses NetBIOS, you can enable the Netopia 4752 to use DHCP to distribute NetBIOS infor mation. NetBIOS stands for Network Basic Input/Output System. It is a layer of software originally developed by IBM and Sytek to link a network operating system with specific hardwar e. NetBIOS has been adopted [...]

  • Pagina 98

    10-16 Administration Guide ■ From the NetBios Type pop-up menu, select the type of NetBIOS used on your network. ■ T o ser ve DHCP clients with the NetBIOS scope, select Ser ve NetBios Scope and toggle it to Ye s . Select NetBios Scope and enter the scope. ■ T o ser ve DHCP clients with the IP address of a NetBIOS name ser ver , select Ser ve[...]

  • Pagina 99

    IP Setup 10-17 Select Release BootP Leases and press Retur n. Mor e Address Serving Options The Netopia 4752 includes a number of enhancements in the built-in DHCP IP address ser ver . These enhancements include: ■ The ability to exclude one or more IP addr esses from the address ser ving pool so the addr esses will not be ser ved to clients. ■[...]

  • Pagina 100

    10-18 Administration Guide Configuring the IP Addr ess Server options T o access the enhanced DHCP ser ver functions, from the Main Menu navigate to Statistics & Logs and then Ser ved IP Addresses . The following example shows the Ser ved IP Addresses scr een after three clients have leased IP addresses. The first client did not provide a Hos[...]

  • Pagina 101

    IP Setup 10-19 Y ou can select the entries in the Ser ved IP Addr esses screen. Use the up and down ar row keys to move the selection to one of the entries in the list of ser ved IP addresses. Once you select an entr y , pr essing Return displays an action pop-up menu that lists operations that can be per for med on that entr y . Possible operation[...]

  • Pagina 102

    10-20 Administration Guide ■ Details… is displayed if the entr y is associated with both a host name and a client identifier . Selecting Details… displays a pop-up menu that provides additional infor mation associated with the IP address. The pop-up menu includes the IP addr ess as well as the host name and client identifier supplied by the[...]

  • Pagina 103

    IP Setup 10-21 ■ Include is displayed if the entr y is either excluded or declined. An IP address is marked declined when a client to whom the DHCP ser ver of fers the address declines the address. A client declines an addr ess if it determines that a leased addr ess is already in use by another device. Selecting Include restor es the selected IP[...]

  • Pagina 104

    10-22 Administration Guide The router’s Ether net IP address(es) will be automatically excluded from the addr ess ser ving pool(s) on star tup. Entries in the ser ved IP address list cor responding to the r outer’s Ethernet IP addr ess(es) that have been automatically excluded on star tup are not selectable. Served IP Addresses -IP Address-----[...]

  • Pagina 105

    IP Setup 10-23 D D D D H H H H C C C C P P P P R R R R e e e e ll l l a a a a y y y y A A A A g g g g e e e e n n n n t t t t The Netopia 4752 of fers DHCP Relay Agent functionality , as defined in RFC1542. A DHCP relay agent is a computer system or a router that is configur ed to for ward DHCP requests fr om clients on the LAN to a remote DHCP s[...]

  • Pagina 106

    10-24 Administration Guide Select IP Address Ser ving and press Retur n. The IP Address Ser ving scr een appears. Select IP Address Ser ving Mode . The pop-up menu of fers the choices of Disabled , DHCP Server (the default), and DHCP Relay Agent . If you select DHCP Relay Agent and press Retur n, the screen changes as shown below . Now you can ente[...]

  • Pagina 107

    IP Setup 10-25 Note: The remote DHCP ser ver(s) to which the Netopia Router is r elaying DHCP requests must be capable of ser vicing relayed r equests. Not all DHCP ser vers suppor t this feature. For example, the DHCP ser ver in the Netopia Router does not . The DHCP ser ver(s) to which the Netopia Router is relaying DHCP r equests must be config[...]

  • Pagina 108

    10-26 Administration Guide 1. Select Profile Name and enter a name for this connection pr ofile. It can be any name you wish. For example: the name of your ISP . 2. T oggle the Profile Enabled value to Ye s or No . The default is Y es. 3. Select IP Profile Parameters and press Retur n. The IP Profile Parameters scr een appears. 4. T oggle or e[...]

  • Pagina 109

    IP Setup 10-27 5. Select ADD PROFILE NOW and press Retur n. Y our new connection profile will be added. If you want to view the connection profiles in your r outer , r eturn to the W AN Configuration screen, and select Display/Change Connection Profile . The list of connection profiles is displayed in a scr olling pop-up screen. WAN Configurat[...]

  • Pagina 110

    10-28 Administration Guide[...]

  • Pagina 111

    Multiple Network Address T ranslation 11-1 C C C C h h h h a a a a p p p p t t t t e e e e r r r r 1 1 1 1 1 1 1 1 M M M M u u u u ll l l t t t t ii i i p p p p ll l l e e e e N N N N e e e e t t t t w w w w o o o o r r r r k k k k A A A A d d d d d d d d r r r r e e e e s s s s s s s s T T T T r r r r a a a a n n n n s s s s ll l l a a a a t t t t[...]

  • Pagina 112

    11-2 Administration Guide The following is a general description of these features: Port Address T ranslation The simplest for m of classic Network Address T ranslation is PAT (Por t Address T ranslation). P A T allows a group of computers on a LAN, such as might be found in a home or small of fice, to share a single Inter net connection using one[...]

  • Pagina 113

    Multiple Network Address T ranslation 11-3 When addresses ar e returned to the gr oup of available addresses, they are r eturned to the head of the gr oup, being the most recently used. If that same host r equests a connection an hour later , and the same public address is still available, then it will be mapped to the same private host. If a new h[...]

  • Pagina 114

    11-4 Administration Guide Exterior addresses ar e allocated to internal hosts on a demand, or as-needed, basis and then made available when traf fic from that host ceases. Once an inter nal host has been allocated an address, it will use that address for all traf fic. Five minutes after all traf fic ceases – no pings, all TCP connections close[...]

  • Pagina 115

    Multiple Network Address T ranslation 11-5 In order to suppor t this type of mapping, you define two addr ess ranges. First, you define a public range which contains the first and last public address to be used and the way in which these addr esses should be used (P A T , static, or dynamic). Y ou then configure an addr ess map which defines t[...]

  • Pagina 116

    11-6 Administration Guide MultiNA T Configuration Y ou configur e the MultiNA T features thr ough the console menu: ■ For a simple 1-to-many NA T configuration (classic NA T or P A T), use the Easy Setup Pr ofile configuration , described below . ■ For the more advanced featur es, such as ser ver lists and dynamic NA T , follow the instr u[...]

  • Pagina 117

    Multiple Network Address T ranslation 11-7 1. Define the public range of addresses that exter nal computers should use to get to the NA T inter nal machines. These are the addr esses that someone on the Internet would see. 2. Create a List name that will act as a r ule or ser ver holder . 3. Create a map or r ule that specifies the internal range[...]

  • Pagina 118

    11-8 Administration Guide The Network Address T ranslation screen appears. Public Range defines an external addr ess range and indicates what type of mapping to apply when using this range. The types of mapping available are dynamic , static and pat . Map Lists define collections of mapping r ules. A r ule maps interior range addresses to exterio[...]

  • Pagina 119

    Multiple Network Address T ranslation 11-9 The Add NA T Public Range scr een appears. ■ Select Range Name and give a descriptive name to this range. ■ Select Type and from the pop-up menu, assign its type. Options are static , dynamic , or pat (the default). ■ If you choose pat as the range type, select Public Address and enter the exterior I[...]

  • Pagina 120

    11-10 Administration Guide ■ Select Map List Name and enter a descriptive name for this map list. A new menu item, Add Map , appears. ■ Select Add Map and press Retur n. The Add NA T Map screen appears. ■ Select First and Last Private Address and enter the first and last interior IP addresses you want to assign to this mapping. ■ Select Us[...]

  • Pagina 121

    Multiple Network Address T ranslation 11-11 ■ From the list of public ranges you defined, select the one that you want to map to the interior range for this mapping and press Retur n. If none of your preconfigur ed ranges are suitable for this mapping, you can select <<NEW RANGE>> and create a new range. If you choose <<NEW RA[...]

  • Pagina 122

    11-12 Administration Guide Modifying map lists Y ou can make changes to an existing map list after you have cr eated it. Since there may be more than one map list you must select which one you are modifying. From the Network Addr ess T ranslation scr een select Show/Change Map List and press Retur n. ■ Select the map list you want to modify from [...]

  • Pagina 123

    Multiple Network Address T ranslation 11-13 ■ Add Map allows you to add a new map to the map list. ■ Show/Change Maps allows you to modify the individual maps within the list. ■ Delete Map allows you to delete a map from the list. ■ Move Map allows you to change the priority order in which the map is evaluated within the list. See Moving ma[...]

  • Pagina 124

    11-14 Administration Guide Make any modifications you need and then select CHANGE NA T MAP and pr ess Return. Y our changes will become ef fective and you will be retur ned to the Show/Change NA T Map List screen. Moving maps The Move Maps screen per mits reor dering the priority of maps in a map list. Since the maps are read fr om top to bottom, [...]

  • Pagina 125

    Multiple Network Address T ranslation 11-15 ■ Y ou can pr ess Escape at any time in the pop-up menu to abor t the move and restore the map list to its original ordering. Note: The pat map is generally left at the bottom of the list. Show/Change NAT Map List +---Private Address Range---------Type----Public Address Range------------+ +-------------[...]

  • Pagina 126

    11-16 Administration Guide Adding Server Lists Ser ver lists, also known as Expor ts, ar e handled similarly to map lists. If you want to make a par ticular ser ver’s por t accessible (and it isn’t accessible through other means, such as a static mapping), you must cr eate a ser ver list. Select Add Ser ver List from the Network Address T ransl[...]

  • Pagina 127

    Multiple Network Address T ranslation 11-17 ■ Select Add Ser ver and press Return. The Add NA T Ser ver screen appears. ■ Select Ser vice and press Return. A pop-up menu appears listing a selection of commonly expor ted ser vices. ■ Choose the ser vice you want to expor t and pr ess Return. Y ou can choose a pr econfigured ser vice from the [...]

  • Pagina 128

    11-18 Administration Guide ■ Enter the First and Last Por t Number between por ts 1 and 65535. Select OK and press Retur n. Y ou will be retur ned to the Add NA T Ser ver scr een. ■ Enter the Ser ver Private IP Address of the ser ver whose ser vice you ar e expor ting. Since MultiNA T per mits the mapping of multiple private IP addresses to mul[...]

  • Pagina 129

    Multiple Network Address T ranslation 11-19 Modifying server lists Once a ser ver list exists, you can select it for modification or deletion. ■ Select Show/Change Ser ver List from the Network Address T ranslation screen. ■ Select the Ser ver List Name you want to modify from the pop-up menu and pr ess Return. The Show/Change NA T Ser ver Lis[...]

  • Pagina 130

    11-20 Administration Guide ■ Selecting Show/Change Ser ver or Delete Server displays the same pop-up menu. Select any ser ver from the list and pr ess Return. The Change NA T Ser ver screen appears. Y ou can make changes to the ser ver’s ser vice and por t or inter nal or external address. Select CHANGE NA T SERVER and press Return. Y our chang[...]

  • Pagina 131

    Multiple Network Address T ranslation 11-21 Deleting a server T o delete a ser ver from the list, select Delete Ser ver from the Show/Change NA T Ser ver List menu and press Return. A pop-up menu lists your configured ser vers. Select the one you want to delete and pr ess Return. A dialog box asks you to confir m your choice. Choose CONTINUE and [...]

  • Pagina 132

    11-22 Administration Guide Binding Map Lists and Server Lists Once you have created your map lists and ser ver lists, for most Netopia Router models you must bind them to a profile, either a Connection Pr ofile or the Default Profile. Y ou do this in one of the following scr eens: ■ the IP profile parameters scr een (see below) of the Connect[...]

  • Pagina 133

    Multiple Network Address T ranslation 11-23 ■ Select NA T Map List and press Return. A pop-up menu displays a list of your defined map lists. ■ Select the map list you want to bind to this Connection Profile and pr ess Return. The map list you selected will now be bound to this Connection Profile. ■ Select NA T Server List and pr ess Retur[...]

  • Pagina 134

    11-24 Administration Guide IP Parameters (W AN Default Pr ofile) The Netopia 4752 in HDLC (Copper Mountain) Operation Mode suppor ts a W AN default profile that per mits several parameters to be configured without an explicitly configur ed Connection Profile. The procedur e is similar to the procedure to bind map lists and ser ver lists to a C[...]

  • Pagina 135

    Multiple Network Address T ranslation 11-25 ■ Select NA T Map List and press Return. A pop-up menu displays a list of your defined map lists. ■ Select the map list you want to bind to the default profile and pr ess Return. The map list you selected will now be bound to the default profile. ■ Select NA T Server List and pr ess Return. A pop[...]

  • Pagina 136

    11-26 Administration Guide NA T Associations Configuration of map and ser ver lists alone is not suf ficient to enable NA T for a WAN connection because map and ser ver lists must be linked to a profile that contr ols the W AN inter face. This can be a Connection Profile, a W AN Ethernet inter face, a default profile, or a default answer pr o?[...]

  • Pagina 137

    Multiple Network Address T ranslation 11-27 keys. Select the item by pressing Retur n to display a pop-up menu of all of your configured lists. ■ Select the list name you want to assign and press Retur n again. Y our selection will then be associated with the cor responding profile or inter face. NAT Associations +NAT Map List Name-+ Profile/In[...]

  • Pagina 138

    11-28 Administration Guide MultiNA T Configuration Example T o help you understand a typical MultiNA T configuration, this section describes an example of the type of configuration you may want to implement on your site. The values shown are for example purposes only . Make your own appropriate substitutions. A typical DSL ser vice from an ISP m[...]

  • Pagina 139

    Multiple Network Address T ranslation 11-29 Enter your ISP-supplied values as shown below . Select NEXT SCREEN and press Retur n. Y our IP values ar e shown here. Then navigate to the Network Address T ranslation (NA T) scr een. Connection Profile 1: Easy Setup Profile Connection Profile Name: Easy Setup Profile Address Translation Enabled: Yes IP [...]

  • Pagina 140

    11-30 Administration Guide Select Show/Change Public Range , then Easy-P A T Range , and pr ess Return. Enter the value your ISP assigned for your public address (206.1.1.6, in this example). T oggle Type to pat. Y our public address is then mapped to the remaining private IP addr esses using P A T . (If you were not using the Easy-P A T Range and [...]

  • Pagina 141

    Multiple Network Address T ranslation 11-31 Select ADD NA T PUBLIC RANGE and press Return. Y ou are retur ned to the Network Address T ranslation screen. Next, select Show/Change Map List and choose Easy-P A T List . Select Add Map . The Add NA T Map scr een appears. (Now the name Easy-P A T List is a misnomer since it has a static map included in [...]

  • Pagina 142

    11-32 Administration Guide T o make these changes, first limit the range of remapped addr esses on the Static Map and then edit the default ser ver list called Easy-Ser vers. ■ First, navigate to the Show/Change Map List screen, select Easy-P A T List and then Show/Change Maps . Choose the Static Map you created and change the First Private Addr[...]

  • Pagina 143

    Virtual Private Networks (VPNs) 12-1 C C C C h h h h a a a a p p p p t t t t e e e e r r r r 1 1 1 1 2 2 2 2 V V V V ii i i r r r r t t t t u u u u a a a a ll l l P P P P r r r r ii i i v v v v a a a a t t t t e e e e N N N N e e e e t t t t w w w w o o o o r r r r k k k k s s s s ( ( ( ( V V V V P P P P N N N N s s s s ) ) ) ) The Netopia 4752 of [...]

  • Pagina 144

    12-2 Administration Guide T unneling is a process of creating a private path between a r emote user or private network and another private network over some inter mediate network, such as the IP-based Internet. A VPN allows remote of fices or employees access to your internal business LAN thr ough means of encr yption allowing the use of the publi[...]

  • Pagina 145

    Virtual Private Networks (VPNs) 12-3 the receiving side, an IPsec-compliant device decr ypts each packet. The Netopia 4752 suppor ts the more secure T unnel mode. DES stands for Data Encr yption Standard, a popular symmetric-key encr yption method. DES uses a 56-bit key . The Netopia 4752 of fers IPsec DES encr yption over the VPN tunnel. When used[...]

  • Pagina 146

    12-4 Administration Guide PPTP configuration T o set up the router as a PPTP Network Ser ver (PNS) capable of answering PPTP tunnel r equests you must also configure the VPN Default Answer Pr ofile. See A TMP/PPTP Default Answer Profile on page 12-13 for mor e infor mation. PPTP is a Datalink Encapsulation option in Connection Profiles. It is [...]

  • Pagina 147

    Virtual Private Networks (VPNs) 12-5 When you define a Connection Profile as using PPTP by selecting PPTP as the datalink encapsulation method, and then select Data Link Options , the PPTP T unnel Options screen appears. Note: Profiles using PPTP do not of fer a T elco Options screen. ■ Enter the PPTP Par tner IP Addr ess . This specifies the[...]

  • Pagina 148

    12-6 Administration Guide itself a compression pr otocol. Note: The Netopia 4752 suppor ts 128-bit (“strong”) encr yption. Unlike MS-CHAP version 1, which suppor ts one-way authentication, MS-CHAP version 2 suppor ts mutual authentication between connected routers and is incompatible with MS-CHAP version 1 (MS-CHAP-V1). When you choose MS-CHAP [...]

  • Pagina 149

    Virtual Private Networks (VPNs) 12-7 The IP Profile Parameters scr een appears. ■ Enter the Remote IP Address and Remote IP Mask for the host to which you want to tunnel. About IPsec T unnels IPsec stands for IP Security , a set of protocols that suppor ts secure exchange of IP packets at the IP layer . IPsec is deployed widely to implement Vir [...]

  • Pagina 150

    12-8 Administration Guide The Add Connection Profile scr een appears. ■ From the Data Link Encapsulation pop-up menu select IPsec . ■ Then select Data Link Options . The IPsec Encr yption & Authentication Options screen appears. ■ Y ou must specify an Encr yption T ransform . The choices ar e DES or NULL . The default is DES . Add Connec[...]

  • Pagina 151

    Virtual Private Networks (VPNs) 12-9 ■ Y ou must enter an Encr yption Key if the Encr yption T ransform is DES. The key for DES must be a hexadecimal string of 16 characters, using Hex characters only: '0'-'9', 'A'-'F' and 'a' - 'f'. No key entr y appears if the encr yption transfor m is[...]

  • Pagina 152

    12-10 Administration Guide IP Pr ofile Parameters The following IP Profile Options scr een is displayed for an IPsec Connection Profile. ■ Y ou must specify an SPI (Security Parameters Index) , which is the ESP receive side SPI and the default SPI for ESP transmit, AH receive, and AH transmit. It must be unique r elative to any other configur[...]

  • Pagina 153

    Virtual Private Networks (VPNs) 12-11 ■ Y ou can r emove a Filter Set . ■ Y ou can choose to configur e Advanced IP Profile Options (see “Advanced IP Profile Options,” in the following section). Note: The SPI title field above changes to SPI (Security Parameters Index) -- Use Advanced IP Profile Options if any of the SPI values dif fer[...]

  • Pagina 154

    12-12 Administration Guide Inter operation with other features ■ Address ser ving is not suppor ted through IPsec T unnels. ■ AH is not suppor ted through an inter face that has NA T applied to it. NA T may be applied to the inner payload. ■ AH is not suppor ted through an inter face which is either Unnumbered or Number ed with a dynamically [...]

  • Pagina 155

    Virtual Private Networks (VPNs) 12-13 A TMP/PPTP Default Answer Pr ofile The W AN Configuration menu of fers a A TMP/PPTP Default Answer Profile option. Use this selection when your router is acting as the ser ver for VPN connections, that is, when you ar e on the answering end of the tunnel establishment. The A TMP/PPTP Default Answer Pr ofile[...]

  • Pagina 156

    12-14 Administration Guide default) if you do not. This applies to both A TMP and PPTP connections. ■ For PPTP tunnel connections only , you must define what type of authentication these connections will use. Select Receive Authentication and press Retur n. A pop-up menu of fers the following options: P AP (the default), CHAP , or MS-CHAP . ■ [...]

  • Pagina 157

    Virtual Private Networks (VPNs) 12-15 Dial-Up Networking for VPN Microsoft Windows Dial-Up Networking softwar e permits a r emote standalone workstation to establish a VPN tunnel to a PPTP ser ver such as a Netopia Router located at a central site. Dial-Up Networking also allows a mobile user who may not be connected to a P AC to dial into an inter[...]

  • Pagina 158

    12-16 Administration Guide The Communications window appears. 5. In the Communications window , select Dial-Up Networking and click the OK button. This retur ns you to the Windows Setup screen. Click the OK button. 6. Respond to the prompts to install Dial-Up Networking fr om the system disks or CDROM. 7. When prompted, r eboot your PC. Cr eating a[...]

  • Pagina 159

    Virtual Private Networks (VPNs) 12-17 Configuring a Dial-Up Networking profile Once you have created your Dial-Up Networking pr ofile, you configure it for TCP/IP networking to allow you to connect to the Internet thr ough your Internet connection device. Do the following: 1. Double-click the My Computer (or whatever you have named it) icon on [...]

  • Pagina 160

    12-18 Administration Guide 4. Click the TCP/IP Settings button. ■ If your ISP uses dynamic IP addressing (DHCP), select the Ser ver assigned IP addr ess radio button. ■ If your ISP uses static IP addressing, select the Specify an IP addr ess radio button and enter your assigned IP address in the fields pr ovided. Also enter the IP address in t[...]

  • Pagina 161

    Virtual Private Networks (VPNs) 12-19 This displays a list of possible selections for the communications option. Active components will have a check in the checkboxes to their left. 6. Check Dial Up Networking at the top of the list and Vir tual Private Networking at the bottom of the list. 7. Click OK at the bottom right on each screen until you r[...]

  • Pagina 162

    12-20 Administration Guide Connecting using Dial-Up Networking A Dial-Up Networking connection will be automatically launched whenever you r un a TCP/IP application, such as a web browser or email client. When you first r un the application a Connect T o dialog box appears in which you enter your User name and Password. If you check the Save passw[...]

  • Pagina 163

    Virtual Private Networks (VPNs) 12-21 When you define a Connection Profile as using A TMP by selecting A TMP as the datalink encapsulation method, and then select Data Link Options , the A TMP T unnel Options screen appears. Note: An A TMP tunnel cannot be assigned a dynamic IP addr ess by the remote ser ver , as in a PPP connection. When you de?[...]

  • Pagina 164

    12-22 Administration Guide gateway can not initiate tunnels (i.e., act as a foreign agent) for this pr ofile; it can only accept tunnel requests as a home agent. ■ When you specify the A TMP Par tner IP Addr ess, and the address is in the same subnet as the Remote IP Address you specified in the IP Pr ofile Parameters, you can specify the rout[...]

  • Pagina 165

    Virtual Private Networks (VPNs) 12-23 ■ Select IP Profile Parameters and press Retur n. The IP Profile Parameters scr een appears. ■ Enter the Remote IP Address and Remote IP Mask for the host to which you want to tunnel. Allowing VPNs through a Fir ewall An administrator interested in securing a network will usually combine the use of VPNs w[...]

  • Pagina 166

    12-24 Administration Guide PPTP example T o enable a firewall to allow PPTP traf fic, you must provision the fir ewall to allow inbound and outbound TCP packets specifically destined for por t 1723. The source por t may be dynamic, so often it is not useful to apply a compare function upon this por tion of the contr ol/negotiation packets. Y ou[...]

  • Pagina 167

    Virtual Private Networks (VPNs) 12-25 For Input Filter 2 set the Protocol Type to allow GRE as shown below . In the Display/Change IP Filter Set screen select Display/Change Output Filter . Display/Change Output Filter screen For Output Filter 1 set the Protocol Type and Destination Por t infor mation as shown below . Change Input Filter 2 Enabled:[...]

  • Pagina 168

    12-26 Administration Guide For Output Filter 2 set the Protocol Type to allow GRE as shown below . Change Output Filter 2 Enabled: Yes Forward: Yes Source IP Address: 0.0.0.0 Source IP Address Mask: 0.0.0.0 Dest. IP Address: 0.0.0.0 Dest. IP Address Mask: 0.0.0.0 Protocol Type: GRE[...]

  • Pagina 169

    Virtual Private Networks (VPNs) 12-27 A TMP example T o enable a firewall to allow A TMP traf fic, you must pr ovision the firewall to allow inbound and outbound UDP packets specifically destined for por t 5150. The source por t may be dynamic, so often it is not useful to apply a compare function on this por tion of the contr ol/negotiation pa[...]

  • Pagina 170

    12-28 Administration Guide For Input Filter 2 set the Protocol Type to allow GRE as shown below . In the Display/Change IP Filter Set screen select Display/Change Output Filter . Display/Change Output Filter screen For Output Filter 1 set the Protocol Type and Destination Por t infor mation as shown below . Change Input Filter 2 Enabled: Yes Forwar[...]

  • Pagina 171

    Virtual Private Networks (VPNs) 12-29 For Output Filter 2 set the Protocol Type to allow GRE as shown below . Change Output Filter 2 Enabled: Yes Forward: Yes Source IP Address: 0.0.0.0 Source IP Address Mask: 0.0.0.0 Dest. IP Address: 0.0.0.0 Dest. IP Address Mask: 0.0.0.0 Protocol Type: GRE[...]

  • Pagina 172

    12-30 Administration Guide[...]

  • Pagina 173

    Security 13-1 C C C C h h h h a a a a p p p p t t t t e e e e r r r r 1 1 1 1 3 3 3 3 S S S S e e e e c c c c u u u u r r r r ii i i t t t t y y y y The Netopia 4752 provides a number of security featur es to help protect its configuration screens and your local network from unauthorized access. Although these featur es are optional, it is strongl[...]

  • Pagina 174

    13-2 Administration Guide CAUTION! Y ou ar e strongly encouraged to add protection to the configuration scr eens. Unprotected screens could allow an unauthorized user to compromise the operation of your entir e network. Once user accounts are cr eated, users who attempt to access protected screens will be challenged. Users who enter an incor rect [...]

  • Pagina 175

    Security 13-3 T o add a new user account, select Add User in the Security Options screen and press Retur n. The Add Name With Write Access screen appears. Follow these steps to configure the new account: 1. Select Enter Name and enter a descriptive name (for example, the user’s first name). 2. Select Enter Password and enter a passwor d. 3. T o[...]

  • Pagina 176

    13-4 Administration Guide it to No . (See “SNMP traps” on page 14-15. ) ■ T o restrict T elnet access to all of the configuration scr eens, select Enable T elnet Console Access and toggle it to No . About Filters and Filter Sets Security should be a high priority for anyone administering a network connected to the Internet. Using packet fil[...]

  • Pagina 177

    Security 13-5 Filter priority Continuing the customs inspectors analogy , imagine the inspectors lined up to examine a package. If the package matches the first inspector’s criteria, the package is either rejected or passed on to its destination, depending on the first inspector’s par ticular orders. In this case, the package is never seen by[...]

  • Pagina 178

    13-6 Administration Guide How individual filters work As described above, a filter applies criteria to an IP packet and then takes one of three actions: ■ For wards the packet to the local or r emote network ■ Blocks (discards) the packet ■ Ignores the packet A filter for wards or blocks a packet only if it finds a match after applying it[...]

  • Pagina 179

    Security 13-7 Port number comparisons A filter can also use a comparison option to evaluate a packet’s source or destination por t number. The comparison options are: No Compare: No comparison of the por t number specified in the filter with the packet’s por t number. Not Equal T o: For the filter to match, the packet’s por t number canno[...]

  • Pagina 180

    13-8 Administration Guide Other filter attributes There ar e three other attributes to each filter: ■ The filter’s order (i.e., priority) in the filter set ■ Whether the filter is cur rently active ■ Whether the filter is set to for ward packets or to block (discar d) packets Putting the parts together When you display a filter set, [...]

  • Pagina 181

    Security 13-9 Src. Por t: The source por t to match. This is the por t on the sending host that originated the packet. D. Por t: The destination por t to match. This is the por t on the r eceiving host for which the packet is intended. On?: Displays Ye s when the filter is in ef fect or No when it is not. Fwd: Shows whether the filter for wards ([...]

  • Pagina 182

    13-10 Administration Guide Filtering example #2 Suppose a filter is configured to block all incoming IP packets with the sour ce IP address of 200.233.14.0, regar dless of the type of connection or its destination. The filter would look like this: This filter blocks any packets coming from a r emote network with the IP network address 200.233.1[...]

  • Pagina 183

    Security 13-11 option in the answer profile, P AP or CHAP in connection pr ofiles, callback, and general awareness of how your network may be vulnerable. An approach to using filters The ultimate goal of network security is to prevent unauthorized access to the network without compr omising authorized access. Using filter sets is par t of reach[...]

  • Pagina 184

    13-12 Administration Guide 1. Add a new filter set. 2. Create the filters for the new filter set. 3. View , change, or delete individual filters and filter sets. The sections below explain how to execute these steps. Adding a filter set Y ou can cr eate up to eight dif fer ent custom filter sets. Each filter set can contain up to 16 output [...]

  • Pagina 185

    Security 13-13 Input and output filters—source and destination There ar e two kinds of filters you can add to a filter set: input and output. Input filters check packets received from the Inter net, destined for your network. Output filters check packets transmitted from your network to the Internet. Packets in the Netopia 4752 pass through [...]

  • Pagina 186

    13-14 Administration Guide 1. T o make the filter active in the filter set, select Enabled and toggle it to Ye s . If Enabled is toggled to No , the filter can still exist in the filter set, but it will have no ef fect. 2. If you want the filter to for ward packets that match its criteria to the destination IP addr ess, select Forwar d and tog[...]

  • Pagina 187

    Security 13-15 10. When you are finished configuring the filter , select ADD THIS FIL TER NOW to save the filter in the filter set. Select CANCEL to discard the filter and r eturn to the Add IP Filter Set screen. Viewing filters T o display a view-only table of input or output filters, select Display/Change Input Filter or Display/Change Ou[...]

  • Pagina 188

    13-16 Administration Guide Modifying filter sets T o modify a filter set, select Display/Change IP Filter Set in the IP Filter Sets screen to display a list of filter sets. Select a filter set from the list and pr ess Return. The Change IP Filter Set screen appears. The items in this screen ar e the same as the ones in the Add Filter screen (se[...]

  • Pagina 189

    Security 13-17 The five input filters and one output filter that make up Basic Firewall ar e shown in the table below . Basic Firewall’s filters play the following r oles. Input filters 1 and 2: These block W AN-originated OpenWindows and X-Windows sessions. Ser vice origination requests for these pr otocols use por ts 2000 and 6000, respect[...]

  • Pagina 190

    13-18 Administration Guide Basic Firewall is suitable for a LAN containing only client hosts that want to access ser vers on the WAN, but not for a LAN containing ser vers providing ser vices to clients on the W AN. Basic Firewall’s general strategy is to explicitly for ward WAN-originated TCP and UDP traf fic to por ts gr eater than 1023. Por t[...]

  • Pagina 191

    Security 13-19 FTP sessions. T o allow W AN-originated FTP sessions to a LAN-based FTP ser ver with the IP address a.b.c.d (cor responding to a numbered IP addr ess such as 163.176.8.243), inser t the following input filter ahead of the cur rent input filter 1: ■ Enabled: Y es ■ For ward: Y es ■ Source IP Addr ess: 0.0.0.0 ■ Source IP Add[...]

  • Pagina 192

    13-20 Administration Guide Basic IP packet components All IP packets contain the same basic header infor mation, as follows: This header infor mation is what the packet filter uses to make filtering decisions. It is impor tant to note that a packet filter does not look into the IP data stream (the User Data fr om above) to make filtering decisi[...]

  • Pagina 193

    Security 13-21 Fir ewall design rules There ar e two basic rules to fir ewall design: ■ “What is not explicitly allowed is denied.” and ■ “What is not explicitly denied is allowed.” The first r ule is far more secure, and is the best appr oach to firewall design. It is far easier (and more secur e) to allow in or out only cer tain se[...]

  • Pagina 194

    13-22 Administration Guide Logical AND function When a packet is compared (in most cases) a logical AND function is per for med. First the IP addresses and subnet masks are conver ted to binar y and then combined with AND. The r ules for the logical use of AND are as follows: 0 AND 0 = 0 0 AND 1 = 0 1 AND 0 = 0 1 AND 1 = 1 For example: Filter r ule[...]

  • Pagina 195

    Security 13-23 Example IP filter set screen This is an example of the Netopia IP filter set screen: Filter basics In the source or destination IP addr ess fields, the IP address that is entered must be the network addr ess of the subnet. A host address can be enter ed, but the applied subnet mask must be 32 bits (255.255.255.255). The Netopia 47[...]

  • Pagina 196

    13-24 Administration Guide Example network Example filters Example 1 Incoming packet has the source addr ess of 200.1.1.28 This incoming IP packet has a source IP addr ess that matches the network address in the Source IP Addr ess field (00000000) in the Netopia 4752. This will not for ward this packet. Filter Rule: 200.1.1.0 (Source IP Network A[...]

  • Pagina 197

    Security 13-25 Example 2 Incoming packet has the source addr ess of 200.1.1.184. This incoming IP packet (10000000) has a source IP addr ess that does not match the network address in the Source IP Addr ess field (00000000) in the Netopia 4752. This r ule will for war d this packet because the packet does not match. Example 3 Incoming packet has t[...]

  • Pagina 198

    13-26 Administration Guide Example 4 Incoming packet has the source addr ess of 200.1.1.104. Since the Source IP Network Addr ess in the Netopia 4752 is 01100000, and the source IP address after the logical AND is 01100000, this r ule does match and this packet will not be for warded. Example 5 Incoming packet has the source addr ess of 200.1.1.96.[...]

  • Pagina 199

    Security 13-27 LAN IP Filtersets The Netopia 4752 of fers LAN-side filtering on the Ethernet hub. This per mits multiple IP addresses or subnets on the Ethernet LAN to be kept separate fr om one another and operate as vir tual independent networks sharing a single Internet connection. Small- to medium-sized of fices can benefit by using a single[...]

  • Pagina 200

    13-28 Administration Guide Any customized filter set you create can be associated with the Ether net hub as shown below: Select LAN (EN Hub) IP Filter Set and from the pop-up menu, select the filter set you want to associate with the LAN inter face. Press Return . The filter set you select will be applied to the Ether net hub inter face. CAUTION[...]

  • Pagina 201

    Security 13-29 T o remove the filter set fr om the Ethernet hub inter face, select Remove Filter Set and press Return . The filter set will be disconnected from the LAN inter face. Note: Removing the filter set from the LAN does not delete the filter set. It is still available to be r eassociated with the same or another inter face, or modifie[...]

  • Pagina 202

    13-30 Administration Guide R R R R A A A A D D D D II I I U U U U S S S S C C C C ll l l ii i i e e e e n n n n t t t t S S S S u u u u p p p p p p p p o o o o r r r r t t t t The Netopia 4752 implements a Remote Authentication Dial-In User Ser vice (RADIUS) client (RFC 2138) and adds the ability to authenticate console configuration access using [...]

  • Pagina 203

    Security 13-31 ■ Y ou select your desir ed mode by using the Security Databases pop-up menu. ■ Choosing Local Only , the default, selects the pre-4.8 authentication mechanism. ■ Choosing RADIUS Only causes the router to ignore the local database and to authenticate users using the configured RADIUS ser ver . ■ Choosing RADIUS then Local ca[...]

  • Pagina 204

    13-32 Administration Guide hostname to be resolved using the Domain Name System (DNS) infor mation configured in the r outer or by using an IP address in dotted-quad notation. The RADIUS Ser ver Addr/Name items ar e limited to 63 characters. ■ In addition to specifying the ser ver’s hostname or IP address, you must also specify a RADIUS Ser ve[...]

  • Pagina 205

    Security 13-33 Attempting to delete the last non-URG username/passwor d pair from the local authentication database when the Security Databases pop-up menu is set to either Local then RADIUS or RADIUS then Local causes the router to pr esent the following warning aler t: Security Options +------------------------------------------------------------[...]

  • Pagina 206

    13-34 Administration Guide[...]

  • Pagina 207

    Monitoring T ools 14-1 C C C C h h h h a a a a p p p p t t t t e e e e r r r r 1 1 1 1 4 4 4 4 M M M M o o o o n n n n ii i i t t t t o o o o r r r r ii i i n n n n g g g g T T T T o o o o o o o o ll l l s s s s This chapter discusses the Netopia 4752’s device and network monitoring tools. These tools can provide statistical infor mation, repor t[...]

  • Pagina 208

    14-2 Administration Guide General status Current Date: The cur rent date; this can be set with the Date and Time utility (see “Date and time” on page 9-19 ). Default IP Gateway: The router’s default gateway , which may be either manually configur ed or learned via DHCP . This is the value you assigned in the Default IP Gateway field on page[...]

  • Pagina 209

    Monitoring T ools 14-3 Curr ent status The cur rent status section is a table showing the cur rent status of the W AN. For example: Profile Name: Lists the name of the connection pr ofile being used, if any . Rate: Shoes the line rate for this connection. %Use: Indicates the average percent utilization of the maximum capacity of the channels in u[...]

  • Pagina 210

    14-4 Administration Guide Statistics & Logs When you are tr oubleshooting your Netopia 4752, the Statistics & Logs screens provide insight into the r ecent event activities of the router . From the Main Menu go to Statistics & Logs and select one of the options described in the sections below . Event Histories The Netopia 4752 recor ds [...]

  • Pagina 211

    Monitoring T ools 14-5 W AN Event History The W AN Event Histor y screen lists a total of 128 events on the WAN. The most recent events appear at the top. Each entr y in the list contains the following infor mation: Date: Date of the event. Time: Time of the event. Event: A brief description of the event. Ch.: The channel involved in the event. Dir[...]

  • Pagina 212

    14-6 Administration Guide Device Event History The Device Event Histor y screen lists a total of 128 por t and system events, giving the time and date for each event, as well as a brief description. The most recent events appear at the top. In the Statistics & Logs screen, select Device Event Histor y . The Device Event Histor y screen appears.[...]

  • Pagina 213

    Monitoring T ools 14-7 V oice Logs V oice Log The V oice Log screen lists a total of 128 voice-r elated events, giving the time and date for each event, as well as a brief description. The most recent events appear at the top. In the Statistics & Logs screen, select V oice Log . The V oice Log screen appears. If the log exceeds the size of the [...]

  • Pagina 214

    14-8 Administration Guide If the log exceeds the size of the screen, you can scr oll through it by using SCROLL UP and SCROLL DOWN. T o scroll up, select SCROLL UP at the top of the list and press Retur n. T o scroll down, select SCROLL DOWN at the bottom of the list and press Retur n. T o obtain more infor mation about any event listed in the V oi[...]

  • Pagina 215

    Monitoring T ools 14-9 IP Routing T able In the Statistics & Logs screen, select IP Routing T able and pr ess Return. The IP routing table displays all of the IP r outes curr ently known to the Netopia 4752. The routing table scr een represents a snapshot of the r outing table information at the time the scr een is first invoked. T o take a ne[...]

  • Pagina 216

    14-10 Administration Guide Served IP Addresses Y ou can view all of the IP addr esses curr ently being ser ved by the Netopia 4752 SDSL Integrated Access Device from the Ser ved IP Addresses scr een. From the Statistics & Logs menu, select Ser ved IP Addresses . The Ser ved IP Addr esses screen appears. T o manage DHCP leases, select Lease Mana[...]

  • Pagina 217

    Monitoring T ools 14-11 This screen has thr ee options: ■ Reset All Leases : Resets all cur rent IP addresses leased thr ough DHCP without waiting for the default one–hour lease period to elapse ■ Release BootP Leases : Releases any BootP leases that may be in place and which may no longer be requir ed. ■ Reclaim Declined Addresses : Reclai[...]

  • Pagina 218

    14-12 Administration Guide Physical Interface The top left side of the screen lists total packets r eceived and total packets transmitted for the following data por ts: ■ Ethernet Hub ■ SDSL 1 Network Interface The bottom left side of the screen lists total packets r eceived and total packets transmitted for the following protocols: ■ IP (IP [...]

  • Pagina 219

    Monitoring T ools 14-13 System Information The System Infor mation screen gives a summar y view of the general system level values in the Netopia 4752 SDSL Integrated Access Device. From the Statistics & Logs menu select System Information . The System Infor mation screen appears. The infor mation display varies by model, firmwar e version, fe[...]

  • Pagina 220

    14-14 Administration Guide The SNMP Setup screen From the Main Menu, select SNMP in the System Configuration screen and pr ess Return. The SNMP Setup screen appears. Follow these steps to configure the first thr ee items in the screen: 1. Select System Name and enter a descriptive name for the Netopia 4752’s SNMP agent. 2. Select System Locati[...]

  • Pagina 221

    Monitoring T ools 14-15 By default, the read-only and r ead/write community strings are set to public and private, respectively . Y ou should change both of the default community strings to values known only to you and tr usted system adminis- trators. T o change a community string, select it and enter a new value. Star ting with the version 4.3 ?[...]

  • Pagina 222

    14-16 Administration Guide Setting the IP trap receivers 1. Select Add IP Trap Receiver . 2. Select Receiver IP Address or Domain Name . Enter the IP address or domain name of the SNMP manager you want to receive the trap. 3. Select Community String if you enabled one in the SNMP Setup screen, and enter the appropriate password. 4. Select Add Trap [...]

  • Pagina 223

    Utilities and Diagnostics 15-1 C C C C h h h h a a a a p p p p t t t t e e e e r r r r 1 1 1 1 5 5 5 5 U U U U t t t t ii i i ll l l ii i i t t t t ii i i e e e e s s s s a a a a n n n n d d d d D D D D ii i i a a a a g g g g n n n n o o o o s s s s t t t t ii i i c c c c s s s s A number of utilities and tests are available for system diagnostic a[...]

  • Pagina 224

    15-2 Administration Guide Ping The Netopia 4752 includes a standard Ping test utility . A Ping test generates IP packets destined for a par ticular (Ping-capable) IP host. Each time the tar get host receives a Ping packet, it retur ns a packet to the original sender . Ping allows you to see whether a par ticular IP destination is reachable fr om th[...]

  • Pagina 225

    Utilities and Diagnostics 15-3 Status: The cur rent status of the Ping test. This item can display the status messages shown in the able below: Packets Out: The number of packets sent by the Ping test. Packets In: The number of retur n packets received from the tar get host. T o be considered on time, r eturn packets are expected back befor e the n[...]

  • Pagina 226

    15-4 Administration Guide Packets Lost: The number of packets unaccounted for , shown in total and as a percentage of total packets sent. This statistic may be updated during the Ping test, and may not be accurate until after the test is over . However , if an escalating one-to-one corr espondence is seen between Packets Out and Packets Lost , and [...]

  • Pagina 227

    Utilities and Diagnostics 15-5 4. Select Use Reverse DNS to learn the names of the r outers between the Netopia Router and the destination router . The default is Y es. 5. Select ST ART TRACE ROUTE and press Retur n. A scrolling screen will appear that lists the destination, number of hops, IP addresses of each hop, and DNS names, if selected. 6. C[...]

  • Pagina 228

    15-6 Administration Guide Disconnect T elnet Console Session If you want to close your T elnet console session, select Disconnect T elnet Console Session and press Return. A dialog box appears asking you to cancel or continue your selection. If you select Continue , you will immediately ter minate your session. Factory Defaults Y ou can r eset the [...]

  • Pagina 229

    Utilities and Diagnostics 15-7 T ransferring Configuration and Firmwar e Files with TFTP T rivial File T ransfer Pr otocol (TFTP) is a method of transfer ring data over an IP network. TFTP is a client-ser ver application, with the router as the client. T o use the Netopia 4752 as a TFTP client, a TFTP ser ver must be available. Netopia, Inc., has [...]

  • Pagina 230

    15-8 Administration Guide ■ Select GET ROUTER FIRMW ARE FROM SERVER and press Retur n. Y ou will see the following dialog box: ■ Select CANCEL to exit without downloading the file, or select CONTINUE to download the file. The system will reset at the end of the file transfer to put the new fir mware into ef fect. While the system resets, th[...]

  • Pagina 231

    Utilities and Diagnostics 15-9 ■ Select GET CONFIG FROM SERVER and press Retur n. Y ou will see the following dialog box: ■ Select CANCEL to exit without downloading the file, or select CONTINUE to download the file. The system will reset at the end of the file transfer to put the new configuration into ef fect. ■ If you choose to downloa[...]

  • Pagina 232

    15-10 Administration Guide T ransferring Configuration and Firmwar e Files with XMODEM Y ou can transfer configuration and fir mware files with XMODEM thr ough the Netopia 4752’s console por t. Be sure your ter minal emulation program suppor ts XMODEM file transfers. T o go to the X-Modem File Transfer screen, select it in the Utilities &[...]

  • Pagina 233

    Utilities and Diagnostics 15-11 3. Select CANCEL to exit without downloading the file, or select CONTINUE to download the file. If you choose CONTINUE, you will have ten seconds to use your ter minal emulation software to initiate an XMODEM transfer of the fir mware file. If you fail to initiate the transfer in that time, the dialog box will di[...]

  • Pagina 234

    15-12 Administration Guide If you choose CONTINUE, you will have ten seconds to use your ter minal emulation software to initiate an XMODEM transfer of the configuration file. If you fail to initiate the transfer in that time, the dialog box will disappear and the ter minal emulation software will infor m you of the transfer’s failure. Y ou can[...]

  • Pagina 235

    P P P P a a a a r r r r t t t t II I I II I I II I I : : : : A A A A p p p p p p p p e e e e n n n n d d d d ii i i x x x x e e e e s s s s[...]

  • Pagina 236

    Administration Guide[...]

  • Pagina 237

    T roubleshooting A-1 A A A A p p p p p p p p e e e e n n n n d d d d ii i i x x x x A A A A T T T T r r r r o o o o u u u u b b b b ll l l e e e e s s s s h h h h o o o o o o o o t t t t ii i i n n n n g g g g This appendix is intended to help you troubleshoot pr oblems you may encounter while setting up and using the Netopia 4752. It also includes[...]

  • Pagina 238

    A-2 Administration Guide Note: If you are attempting to modify the IP addr ess or subnet mask from a previous, successful configuration attempt, you will need to clear the IP address or r eset your Netopia 4752 to the factor y default before reinitiating the configuration pr ocess. For fur ther information on r esetting your Netopia 4752 to facto[...]

  • Pagina 239

    T roubleshooting A-3 How to Reset the Netopia 4752 to Factory Defaults Lose your password? This section shows how to r eset the Netopia 4752 so that you can access the console screens once again. Keep in mind that all of your connection pr ofiles and settings will need to be reconfigured. If you don't have a password, the only way to get bac[...]

  • Pagina 240

    A-4 Administration Guide Technical Support Netopia, Inc. is committed to providing its customers with r eliable products and documentation, backed by excellent technical suppor t. Before contacting Netopia Look in this guide for a solution to your problem. Y ou may find a solution in this troubleshooting appendix or in other sections. Check the in[...]

  • Pagina 241

    T roubleshooting A-5 Online product information Product infor mation can be found in the following: Netopia World Wide W eb ser ver via http://www .netopia.com Internet via anonymous FTP to ftp.netopia.com/pub FAX-Back This ser vice provides technical notes that answer the most commonly asked questions and of fers solutions for many common problems[...]

  • Pagina 242

    A-6 Administration Guide[...]

  • Pagina 243

    About SDSL B-1 A A A A p p p p p p p p e e e e n n n n d d d d ii i i x x x x B B B B A A A A b b b b o o o o u u u u t t t t S S S S D D D D S S S S L L L L The Netopia 4752 SDSL Integrated Access Device (Symmetric Digital Subscriber Line) technology uses standard copper phone lines to send a digital signal between two points. Because the signal s[...]

  • Pagina 244

    B-2 Administration Guide Because over 300,000 lines are alr eady deployed using HDSL, ser vice providers feel comfor table with SDSL since it uses the same technology as its predecessor and ISDN. The line coding employed by both HDSL and ISDN has not caused any inter fer ence with existing ser vices like T1. This means ser vice providers deploy SDS[...]

  • Pagina 245

    Understanding IP Addressing C-1 A A A A p p p p p p p p e e e e n n n n d d d d ii i i x x x x C C C C U U U U n n n n d d d d e e e e r r r r s s s s t t t t a a a a n n n n d d d d ii i i n n n n g g g g II I I P P P P A A A A d d d d d d d d r r r r e e e e s s s s s s s s ii i i n n n n g g g g This appendix is a brief general introduction to I[...]

  • Pagina 246

    C-2 Administration Guide IP addresses ar e maintained and assigned by the InterNIC, a quasi-governmental or ganization now increasingly under the auspices of private industr y . Note: It’s ver y common for an or ganization to obtain an IP address fr om a third par ty , usually an Inter net ser vice provider (ISP). ISPs usually issue an IP addr es[...]

  • Pagina 247

    Understanding IP Addressing C-3 Subnet masks T o create subnets, the network manager must define a subnet mask, a 32-bit number that indicates which bits in an IP address ar e used for network and subnetwork addresses and which are used for host addresses. One subnet mask should apply to all IP networks that are physically connected together and s[...]

  • Pagina 248

    C-4 Administration Guide Network configuration Below is a diagram of a simple network configuration. The ISP is providing a Class C addr ess to the customer site, and both networks A and B want to gain Internet access thr ough this address. Netopia 4752 B connects to Netopia 4752 A and is provided Inter net access through Routers A and B. Router [...]

  • Pagina 249

    Understanding IP Addressing C-5 Background The IP addresses and r outing configurations for the devices shown in the diagram are outlined below . In addition, each individual field and its meaning are described. The IP Address and Subnet Mask fields define the IP addr ess and subnet mask of the device's Ethernet connection to the network w[...]

  • Pagina 250

    C-6 Administration Guide There ar e two schemes for distributing the remaining IP addresses: ■ Manually give each computer an address ■ Let the Netopia 4752 automatically distribute the addresses These two methods are not mutually exclusive; you can manually issue some of the addr esses while the rest are distributed by the Netopia 4752. Using [...]

  • Pagina 251

    Understanding IP Addressing C-7 Configuration This section describes the specific IP address lease, r enew , and release mechanisms for both the Mac and PC, with either DHCP or MacIP address ser ving. DHCP address serving Windows 95 workstation: ■ The Win95 workstation requests and r enews its lease ever y half hour . ■ The Win95 workstation [...]

  • Pagina 252

    C-8 Administration Guide ■ The Netopia 4752 releases the DHCP addr ess back to the available DHCP address pool exactly one hour after the last-heard lease r equest. Some other DHCP implementations may hold on to the lease for an additional time after the lease expired to act as a buf fer for variances in clocks between the client and ser ver . Ma[...]

  • Pagina 253

    Understanding IP Addressing C-9 In any situation where a device is dialing into a Netopia r outer , the r outer may need to be configured to ser ve IP via the W AN inter face. This is only a r equirement if the calling device has not been configured locally to know what its address(es) ar e. So when a client, dialing into a Netopia router's [...]

  • Pagina 254

    C-10 Administration Guide The figure above shows an example of a block of IP addr esses being distributed corr ectly . The example follows these r ules: ■ An IP address must not be used as a static addr ess if it is also in a range of addresses being distributed by DHCP or MacIP . ■ A single IP address range is used by all the addr ess-ser ved[...]

  • Pagina 255

    Understanding IP Addressing C-11 Nested IP Subnets Under cer tain circumstances, you may want to cr eate remote subnets from the limited number of IP addr esses issued by your ISP or other authority . Y ou can do this using connection pr ofiles. These subnets can be nested within the range of IP addresses available to your network. For example, su[...]

  • Pagina 256

    C-12 Administration Guide Routers B and C (which could also be Netopia 4752s) ser ve the two remote networks that ar e subnets of a.b.c.0. The subnetting is accomplished by configuring the Netopia 4752 with connection profiles for Routers B and C (see the following table). The Netopia 4752’s connection profiles for Routers B and C cr eate entr[...]

  • Pagina 257

    Understanding IP Addressing C-13 The following diagram illustrates the IP address space taken up by the two r emote IP subnets. Y ou can see from the diagram why the ter m nested is appropriate for describing these subnets. Br oadcasts As mentioned earlier , binar y IP host or subnet addresses composed entirely of ones or zer os are reser ved for b[...]

  • Pagina 258

    C-14 Administration Guide[...]

  • Pagina 259

    Binary Conversion T able D-1 A A A A p p p p p p p p e e e e n n n n d d d d ii i i x x x x D D D D B B B B ii i i n n n n a a a a r r r r y y y y C C C C o o o o n n n n v v v v e e e e r r r r s s s s ii i i o o o o n n n n T T T T a a a a b b b b ll l l e e e e This table is provided to help you choose subnet numbers and host numbers for IP and [...]

  • Pagina 260

    D-2 Administration Guide Decimal Binar y Decimal Binary Decimal Binar y Decimal Binary 128 10000000 160 10100000 192 11000000 224 11100000 129 10000001 161 10100001 193 11000001 225 11100001 130 10000010 162 10100010 194 11000010 226 11100010 131 10000011 163 10100011 195 11000011 227 11100011 132 10000100 164 10100100 196 11000100 228 11100100 133[...]

  • Pagina 261

    Further Reading E-1 A A A A p p p p p p p p e e e e n n n n d d d d ii i i x x x x E E E E F F F F u u u u r r r r t t t t h h h h e e e e r r r r R R R R e e e e a a a a d d d d ii i i n n n n g g g g Alexander , S. and R. Droms, DHCP Options and BOOTP V endor Extensions , RFC 2131, Silicon Graphics, Inc., Bucknell University , P A, 1997. Black, U[...]

  • Pagina 262

    E-2 Administration Guide LaQuey , T racy , The Inter net Companion: A Beginner's Guide to Global Networking , Addison-W esley Publishing Company , Reading, MA, 1994. Leinwand, A., and K. Fang, Network Management: A Practical Perspective , Addison-W esley Publishing Company , Reading, MA, 1993. Levine, John R., and Carol Bar oudi, The Internet [...]

  • Pagina 263

    Further Reading E-3 Stallings, W . Local Networks , 3rd ed., Macmillan Publishing Company , New Y ork, NY , 1990. Stevens, W .R., TCP/IP Illustrated , V ol 1, Addison-Wesley Publishing Company , Reading, MA, 1994. Sunshine, C.A. (ed.), Computer Network Architectur es and Protocols , 2nd ed., Plenum Press, New Y ork, NY , 1989. T annenbaum, A.S., Co[...]

  • Pagina 264

    E-4 Administration Guide[...]

  • Pagina 265

    T echnical Specifications and Safety Information F-1 A A A A p p p p p p p p e e e e n n n n d d d d ii i i x x x x F F F F T T T T e e e e c c c c h h h h n n n n ii i i c c c c a a a a ll l l S S S S p p p p e e e e c c c c ii i i f f f f ii i i c c c c a a a a t t t t ii i i o o o o n n n n s s s s a a a a n n n n d d d d S S S S a a a a f f f [...]

  • Pagina 266

    F-2 Administration Guide Agency Approvals North America Safety Approvals: ■ United States – UL Standard for Infor mation T echnology Equipment, UL 60950, Third Edition, Dated December 1, 2000 ■ Canada – CSA: CAN/CSA-C22.2 No. 950-95 EMI: ■ FCC Par t 15 Class B International Safety Approvals: ■ Low V oltage (Eur opean directive) 73/23/EE[...]

  • Pagina 267

    T echnical Specifications and Safety Information F-3 Important This product was tested for FCC compliance under conditions that included the use of shielded cables and connectors between system components. Changes or modifications to this product not authorized by the manufacturer could void your authority to operate the equipment. Canada. This d[...]

  • Pagina 268

    F-4 Administration Guide Important Safety instructions CAUTIONS CAUTION: Depending on the power supply provided with the pr oduct, either the direct plug-in power supply blades, power supply cord plug or the appliance coupler ser ves as the mains power disconnect. It is impor tant that the direct plug-in power supply , socket-outlet or appliance co[...]

  • Pagina 269

    T echnical Specifications and Safety Information F-5 Netopia 4752 Specifications Physical interface W AN interface ■ SDSL por t with suppor t for symmetric connections from 160 Kbps to 1.568 Mbps (uses RJ45 connector ■ Interoperable with SDSL equipment fr om Copper Mountain, Lucent, Nokia, Nor tel, Paradyne, and others. LAN interface 10/100Ba[...]

  • Pagina 270

    F-6 Administration Guide Protocols ■ A TM Pr otocols: A TM Multipr otocol Encapsulation over A TM Adaption Layer 5 (RFC 1483): Logical Link Control (LLC) encapsulation r outed modes ■ Suppor t for up to 16 PVCs ■ PPP Over A TM, PPP over Ether net: P AP , CHAP or no authentication (RFC 2364). Compr ession Control Protocol (RFC 1974) ■ Frame [...]

  • Pagina 271

    T echnical Specifications and Safety Information F-7 a syslog ser ver ■ SNMPv1: (RFC 1157) and MIB II (RFC 1213), Ethernet MIB and enterprise MIB for r emote management using console applications Hardware specifications ■ Memor y: 16 MB DRAM memor y ■ Environmental Requir ement: Operating: 0 ∞ to +40 ∞ C. Storage: 0 ∞ to +70 ∞ C (20[...]

  • Pagina 272

    F-8 Administration Guide ■ Speed Dialing by dialing a feature code ■ Three W ay Calling ■ Custom Ringing ■ Distinctive Ringing[...]

  • Pagina 273

    Glossary 1 G G G G ll l l o o o o s s s s s s s s a a a a r r r r y y y y access line: A telephone line r eaching from the telephone company central of fice to a point usually on your premises. Beyond this point the wir e is considered inside wiring. analog: In telecommunications, telephone transmission and/or switching that is not digital. An ana[...]

  • Pagina 274

    2 Administration Guide Class A, B, and C networks: The values assigned to the first few bits in an IP network addr ess determine which class designation the network has. In decimal notation, Class A network addresses range fr om 1.X.X.X to 126.X.X.X, Class B network addresses range fr om 128.1.X.X to 191.254.X.X, and Class C addresses range from 1[...]

  • Pagina 275

    Glossary 3 header: In packets, a header is par t of the envelope infor mation that sur rounds the actual data being transmitted. In e-mail, a header is usually the address and r outing information found at the top of messages. hop: A single traverse fr om one node to another on a LAN. hop count: The number of nodes (r outers or other devices) a pac[...]

  • Pagina 276

    4 Administration Guide NA T (Network Address Translation): A feature that allows communication between the LAN connected to the Netopia ISDN Router and the Internet using a single IP addr ess, instead of having a separate IP address for each computer on the network. NetBIOS: A network communications protocol used on PC LANs. network: A group of com[...]

  • Pagina 277

    Glossary 5 router: A device that suppor ts network communications. A router can connect identical network types, such as LocalT alk-to-LocalT alk, or dissimilar network types, such as LocalT alk-to-Ethernet. However—unless a gateway is available—a common protocol, such as TCP/IP , must be used over both networks. Routers may be equipped to prov[...]

  • Pagina 278

    6 Administration Guide wall jack: A small har dware component used to tap into telephone wall cable. An RJ-11 wall jack usually has four pins; an RJ-45 wall jack usually has eight pins. W AN (wide ar ea network): A network that consists of nodes connected by long-distance transmission media, such as telephone lines. W ANs can span a state, a countr[...]

  • Pagina 279

    Index-1 II I I n n n n d d d d e e e e x x x x Numerics 10Base-T , connecting 5-3 A add static route 10-8 advanced configuration features 9-18 application software 5-2 A TMP 12-12 tunnel options 12-20 B back panel 3-3 por ts 3-3 basic firewall 13-17 BootP 10-10 clients 10-16 broadcasts C-13 C capabilities 1-2 change static route 10-9 community st[...]

  • Pagina 280

    Index-2 E Easy Setup connection profile 7-9 IP setup 7-10 IPX setup 7-10 navigating 6-5 over view 7-1 quick connection path 7-3 encr yption 12-2 , 12-7 , 12-12 Ethernet 5-2 event histor y device 14-6 WA N 14-5 F features 1-2 filter par ts 13-6 par ts of 13-6 filter priority 13-5 filter set adding 13-12 display 13-8 filter sets adding 13-12 de?[...]

  • Pagina 281

    Index-3 M MIBs suppor ted 14-13 MPPE 12-12 MS-CHAPv2 12-12 multiple subnets 10-4 N NA T adding ser ver lists 11-16 defined 10-1 Easy Setup Profile 11-6 IP profile parameters 11-22 IP setup 11-7 map lists 11-8 modifying map lists 11-12 moving maps 11-14 outside ranges 11-8 ser ver lists 11-8 navigating Easy Setup 6-5 navigating through the confi[...]

  • Pagina 282

    Index-4 SNMP community strings 14-14 MIBs suppor ted 14-13 setup screen 14-14 traps 14-15 src. por t 13-9 static IP addresses C-8 static route r ules of installation 10-9 static routes 10-3 , 10-6 statistics, W AN 14-11 strong encr yption 12-12 subnet masks C-3 subnets C-2 – C-5 multiple 10-4 nested C-11 subnets and subnet masks C-2 suppor t tech[...]

  • Pagina 283

    Limited Warranty and Limitation of Remedies 1 L L L L ii i i m m m m ii i i t t t t e e e e d d d d W W W W a a a a r r r r r r r r a a a a n n n n t t t t y y y y a a a a n n n n d d d d L L L L ii i i m m m m ii i i t t t t a a a a t t t t ii i i o o o o n n n n o o o o f f f f R R R R e e e e m m m m e e e e d d d d ii i i e e e e s s s s Netopi[...]

  • Pagina 284

    2 Administration Guide[...]