Go to page of
Similar user manuals
-
Network Card
ZyXEL Communications ZyXEL ZyWALL 5
116 pages 3.41 mb -
Network Card
ZyXEL Communications ZyXEL MI-7248
6 pages 0.92 mb -
Network Router
ZyXEL Communications 2
300 pages 6.4 mb -
Network Router
ZyXEL Communications 662HW Series
563 pages 23.13 mb -
Modem
ZyXEL Communications PRESTIGE 861
2 pages 0.12 mb -
Network Router
ZyXEL Communications 2304R-P1
124 pages 1.32 mb -
Network Card
ZyXEL Communications G-220
83 pages 2.84 mb -
Network Card
ZyXEL Communications Wireless LAN USB Adapter ZyAIR 200
9 pages 0.21 mb
A good user manual
The rules should oblige the seller to give the purchaser an operating instrucion of ZyXEL Communications P-2612HW, along with an item. The lack of an instruction or false information given to customer shall constitute grounds to apply for a complaint because of nonconformity of goods with the contract. In accordance with the law, a customer can receive an instruction in non-paper form; lately graphic and electronic forms of the manuals, as well as instructional videos have been majorly used. A necessary precondition for this is the unmistakable, legible character of an instruction.
What is an instruction?
The term originates from the Latin word „instructio”, which means organizing. Therefore, in an instruction of ZyXEL Communications P-2612HW one could find a process description. An instruction's purpose is to teach, to ease the start-up and an item's use or performance of certain activities. An instruction is a compilation of information about an item/a service, it is a clue.
Unfortunately, only a few customers devote their time to read an instruction of ZyXEL Communications P-2612HW. A good user manual introduces us to a number of additional functionalities of the purchased item, and also helps us to avoid the formation of most of the defects.
What should a perfect user manual contain?
First and foremost, an user manual of ZyXEL Communications P-2612HW should contain:
- informations concerning technical data of ZyXEL Communications P-2612HW
- name of the manufacturer and a year of construction of the ZyXEL Communications P-2612HW item
- rules of operation, control and maintenance of the ZyXEL Communications P-2612HW item
- safety signs and mark certificates which confirm compatibility with appropriate standards
Why don't we read the manuals?
Usually it results from the lack of time and certainty about functionalities of purchased items. Unfortunately, networking and start-up of ZyXEL Communications P-2612HW alone are not enough. An instruction contains a number of clues concerning respective functionalities, safety rules, maintenance methods (what means should be used), eventual defects of ZyXEL Communications P-2612HW, and methods of problem resolution. Eventually, when one still can't find the answer to his problems, he will be directed to the ZyXEL Communications service. Lately animated manuals and instructional videos are quite popular among customers. These kinds of user manuals are effective; they assure that a customer will familiarize himself with the whole material, and won't skip complicated, technical information of ZyXEL Communications P-2612HW.
Why one should read the manuals?
It is mostly in the manuals where we will find the details concerning construction and possibility of the ZyXEL Communications P-2612HW item, and its use of respective accessory, as well as information concerning all the functions and facilities.
After a successful purchase of an item one should find a moment and get to know with every part of an instruction. Currently the manuals are carefully prearranged and translated, so they could be fully understood by its users. The manuals will serve as an informational aid.
Table of contents for the manual
-
Page 1
www .zyxel.com www .zyxel.com P-2612HW Series 802.1 1g Wireless ADSL V oIP IAD Copyright © 2009 ZyXEL Communications Corporation Firmware V ersion 3.70 Edition 2, 5/2009 Default Login Details IP Address http://192.168.1.1 User Login User Name: user Pa s s wo rd : u se r Administrator Login User Name: admin Password: 1234[...]
-
Page 2
[...]
-
Page 3
About This User's Guide P-2612HW Series User’s Guide 3 About This User's Guide Intended Audience This manual is intended for people who w ant to configure the Z yXEL Device using the web configur ator . Y ou should hav e at least a basic knowledge of T CP/IP networking concepts and topology . Related Document ation •Q u i c k S t a r [...]
-
Page 4
About This User's Guide P-2612HW Series User’s Guide 4 • Product model and serial number . •W a r r a n t y I n f o r m a t i o n . • Date that you received yo ur device. • Brief description of the pr oblem an d the steps y ou took to solv e it.[...]
-
Page 5
Document Conventions P-2612HW Series User’s Guide 5 Document Conventions W arnings and Notes These are how warnings and notes are shown in this User’ s Guide. W arnings tell you about things that could harm you or your device. Note: Notes tell you other import ant informat ion (for e xample, other things you may need to configure or help ful ti[...]
-
Page 6
Document Conventions P-2612HW Series User’s Guide 6 Icons Used in Figures Figures in this User’s Guide may use the followi n g g eneric icons. The ZyXEL Device icon is not an exact represent ation of your device. ZyX E L D ev ic e Computer Notebook computer Server DSLAM Firewa ll Te l e p h o n e Swi tch Rou ter[...]
-
Page 7
Safety Warnings P-2612HW Series User’s Guide 7 Safety Warnings • Do NO T use this product near water , for exam ple, in a wet basement or near a swimming pool. • Do NO T expose your device to dampness, dust or corrosive liquids. • Do NO T store things on the device. • Do NOT install, use, or service this device during a thunderstorm. Ther[...]
-
Page 8
Safety Warnings P-2612HW Series User’s Guide 8[...]
-
Page 9
Contents Overview P-2612HW Series User’s Guide 9 Contents Overview Introduction .......................................... ..................................................... ................... .......... 23 Introducing the ZyXEL Device ............... ............................. ............................. ......................... .2 5 I[...]
-
Page 10
Contents Overview P-2612HW Series User’s Guide 10[...]
-
Page 11
Table of Contents P-2612HW Series User’s Guide 11 Table of Contents About This User's Guide ................................ ..................................................... ................... .. 3 Document Conventions.................................................................. ......................................... .5 Safety [...]
-
Page 12
Table of Contents P-2612HW Series User’s Guide 12 3.3 Wireless Connection Wizard Se tup ....... ............. ............. ............. ................ ............. .......... 46 3.3.1 Manually Assign a WP A-PSK key .................... ... ... .... ... ... ... ... .... ... ... ... ............. ... .... ... 49 3.3.2 Manually Assign a WEP Key[...]
-
Page 13
Table of Contents P-2612HW Series User’s Guide 13 6.2 The Internet Access S etup Screen ................. ............. ................ ................ ............. ........ 101 6.2.1 Advanced Internet Access Setup ........... ............. ................ ............. ............. ........... 104 6.3 The More Connections Screen ...........[...]
-
Page 14
Table of Contents P-2612HW Series User’s Guide 14 8.2 AP Screen ............ ............. ............. ................ ............. ............. ............. ................ ... ........ 140 8.2.1 No Security ... ... ............. .... ... ... ............. ... ... ............. .... ... ... ............. ... ... .... ............ ... .. 1[...]
-
Page 15
Table of Contents P-2612HW Series User’s Guide 15 10.1.2 What Y ou Need to Know About V oIP ....................... ............ ............. ............. ........ 186 10.1.3 Before Y ou Begin .... ... .......... ............. ............. ............. ................ ............. ............. . 187 10.2 The SIP Settings Screen . ... .... [...]
-
Page 16
Table of Contents P-2612HW Series User’s Guide 16 12.3.2 Customized Services ....... ............. ............. ............. ............ ................. ............ ..... 240 12.3.3 Configuring a Customized Service ......................... ... ... ... ... .... ... ............. ... ... ........ 241 12.4 The Firewall Threshold Screen ......[...]
-
Page 17
Table of Contents P-2612HW Series User’s Guide 17 14.9.7 Keep Alive .................. ............. ................ ............. ............. ................ ............. ....... .2 8 3 14.9.8 Remote DNS Server ...... ... ... ... ... .... ... ... ... ............. ............. ............. ............. ........... 283 14.9.9 ID T ype and[...]
-
Page 18
Table of Contents P-2612HW Series User’s Guide 18 Chapter 18 Quality of Service (QoS) ............................................................................ ........................... 337 18.1 Overview ........... ............. ............. ................ ............. ............. ................ ............. ..... ......... 337 18.[...]
-
Page 19
Table of Contents P-2612HW Series User’s Guide 19 21.4 Using UPnP in Windows XP Example . ............. ................. ............ ................. ............ ..... 375 Part III: Maintenance, T roubleshooti ng and S pecific ations ............. 383 Chapter 22 System ............................................................. ............[...]
-
Page 20
Table of Contents P-2612HW Series User’s Guide 20 25.4 Restart .... ............. ............. ................ ............. ............. ................ ............. ............. ........... 426 25.5 Using FTP or TFTP to Ba ck U p Configuration ........... ............. ................ ............. ........... 426 25.5.1 Using the FTP Co[...]
-
Page 21
Table of Contents P-2612HW Series User’s Guide 21 Appendix C IP Addresses and Subnetting ..................................... ...................................... 495 Appendix D Wireless LANs ............................................................ ...................................... 507 Appendix E Common Services ......................[...]
-
Page 22
Table of Contents P-2612HW Series User’s Guide 22[...]
-
Page 23
23 P ART I Introduction Introducing the Z yXEL Device (25) Introducing the W eb Configur ator (31) Wizards (39) T utorial (57)[...]
-
Page 24
24[...]
-
Page 25
P-2612HW Series User’s Guide 25 C HAPTER 1 Introducing the ZyXEL Device 1.1 Overview The P-2612HW Series is an Int egrated Access Device (IAD) that combines an ADSL2+ router with V oice ov er IP (V oIP) communication capabilities to allow you to use a tr aditional analog telephone to make Internet calls. By integrating DS L and NA T , you are pro[...]
-
Page 26
Chapter 1 Introducing the ZyXEL Device P-2612HW Series User’s Guide 26 Computers can connect to the Z y XEL Device’s LAN ports (or wirelessly). Figure 1 ZyXEL Device’ s Router Features Y ou can also configure firewall and cont ent filtering on the Z yXEL Device for secure Internet access. When the firewall is on, al l incoming tr affic from t[...]
-
Page 27
Chapter 1 Introducing the ZyXEL Device P-2612HW Series User’s Guide 27 1.1.2 V oIP Features Y ou can register up to 2 SIP (Session Init iation Protocol) accounts and use the Z yXEL Device to make and receive V oIP telephone calls: Figure 2 ZyXEL Device’ s V oIP Features • Peer -to-Peer calls ( A ) - Use the Z yXEL Device to make a call to the[...]
-
Page 28
Chapter 1 Introducing the ZyXEL Device P-2612HW Series User’s Guide 28 1.3 Good Habit s for Ma naging the ZyXEL Device Do the following things regularly t o make the Z yXEL Device mo re secure and to manage the Z yXEL Device mo re effectiv el y . • Change the password. Use a password that’ s not easy to guess and that consists of different ty[...]
-
Page 29
Chapter 1 Introducing the ZyXEL Device P-2612HW Series User’s Guide 29 Refer to the Quick Start Guid e for in formation on hardware connections. 1.5 The RESET Button If you forget your password or cannot acces s the web configurator , you will need to use the RE SET button at the back of the device to reload the factory -default WLAN Green On The[...]
-
Page 30
Chapter 1 Introducing the ZyXEL Device P-2612HW Series User’s Guide 30 configurati on file. This means that you will lose all configurations that you had previously and the passwords wil l be reset to the defaul ts. 1 Make sure the POWER LED is on (not blinking). 2 T o set the device ba ck to the fa ctory de fault settin gs, pres s the RESET butt[...]
-
Page 31
P-2612HW Series User’s Guide 31 C HAPTER 2 Introducing the Web Configurator 2.1 W eb Configurator Overview The web configurator is an HTML -based management interface that allows easy device setup and management via Internet browser . Use Internet Explorer 6.0 and later or Netscape Navigator 7.0 and later versions. The rec ommended screen resolut[...]
-
Page 32
Chapter 2 Introducing the Web Configur ator P-2612HW Series User’s Guide 32 4 A password screen displays. T ype “admin ” (default) as the username and “1234” as the password, and click Login . Cl ick Cancel to revert to the defaul t p a ss w ord in the password field. If yo u have changed the password, enter your p a ssword and click Logi[...]
-
Page 33
Chapter 2 Introducing the Web Configurator P-2612HW Series User’s Guide 33 2.2 W eb Configurator Main Screen Figure 5 Main Screen As illustr ated above, the main screen is divided into these parts: • A - title bar • B - navigati on panel • C - main window • D - status b a r 2.2.1 T itle Bar The title bar allows you to change the la nguage[...]
-
Page 34
Chapter 2 Introducing the Web Configur ator P-2612HW Series User’s Guide 34 The icons provide the following functions. 2.2.2 Navigation Panel Use the menu items on the navigation panel to open screens to configure ZyXEL Device features. The following ta bles describe each menu item. T able 2 Web Configurator Icons in the Title Bar ICON DESCRIPTIO[...]
-
Page 35
Chapter 2 Introducing the Web Configurator P-2612HW Series User’s Guide 35 NA T General Use this screen to use WPS to set up your wireless network. Por t For wa r d in g Use this screen to make your local servers visible to the outside world. Address Mapping Use this screen to configure network address translation mapping rules. ALG Use this scre[...]
-
Page 36
Chapter 2 Introducing the Web Configur ator P-2612HW Series User’s Guide 36 VPN Setup Use this screen to configure each VPN tunnel. Monitor Use this screen to look at the curren t status of each VPN tunnel. VPN Global Setting Use this screen to allow NetBIOS traffic through VPN tunnels. Certificates My Certificates Use this screen to gener ate an[...]
-
Page 37
Chapter 2 Introducing the Web Configurator P-2612HW Series User’s Guide 37 Rem o t e MGMT HT TP Use this screen to configure through which interface(s) and from which IP address(es) users can use HT TP to manage the Z yXEL Device. Te l n e t Use this screen to configure through w hich interface(s) and from which IP address(es) users can use T eln[...]
-
Page 38
Chapter 2 Introducing the Web Configur ator P-2612HW Series User’s Guide 38 2.2.3 Main Window The main window displays information and configurati on fields. It is discussed i n the rest of this d ocument. Right after y ou log in, the Status scre en is displayed. See Chapter 5 on page 89 for more inform ation about the Status screen. 2.2.4 S t at[...]
-
Page 39
P-2612HW Series User’s Guide 39 C HAPTER 3 Wizards 3.1 Overview Use the wizard setup screens to configure your system for Internet access, wireless, and making calls o ver the Intern et with the information given to you by your ISP . Note: See the advanced menu chapters for background information on th ese fields. 3.2 Internet Access Wizard Setup[...]
-
Page 40
Chapter 3 Wizards P-2612HW Series User’s Guide 40 3a The following screen appears if a connection is not detected. Check your hardware connections and click Restart the INTERN ET/WIRELESS SETUP Wizard to return to the wizard welcome screen. If y ou still canno t conn ect, click Manually conf igure your Inte rnet conn ection . Follow the direction[...]
-
Page 41
Chapter 3 Wizards P-2612HW Series User’s Guide 41 3c The following screen appears if the ZyXEL device detects a connection but not the connection type. Click Next and refer to Section 3.2.1 on page 42 on how to manually configure the Z yXE L Device for Internet access. Figure 9 Auto Detection: Failed[...]
-
Page 42
Chapter 3 Wizards P-2612HW Series User’s Guide 42 3.2.1 Manual Configuration 1 If the Z yXEL Device fail s to detect your DSL connection type but the physical line is connected, enter y our Internet access information in the wi zard screen exactly as your service prov ider gave it to you. Leav e the defaults in any fields for which you we re n o [...]
-
Page 43
Chapter 3 Wizards P-2612HW Series User’s Guide 43 The following table describes t he fields in this screen. 2 The next wizard screen varies depending on what mode and encapsulation type you use. All screens shown are with rout ing mode. Configure the fields and click Next to continue. See Section 3.3 on page 46 for wireless connection wizard setu[...]
-
Page 44
Chapter 3 Wizards P-2612HW Series User’s Guide 44 Note: When you use the connect ion wizard to configure the Internet access using PPPoE, the ZyXEL Device is set to get an IP address from the ISP automatically . T o set up a static W AN IP address with PPPoE, use the Network > W AN screen. Figure 1 1 Internet Connection with PPPoE The followin[...]
-
Page 45
Chapter 3 Wizards P-2612HW Series User’s Guide 45 Figure 12 Internet Connect ion with DHCP (ENET ENCAP) The following table describes t he fields in this screen. T able 6 Internet Connection with DHCP (ENET ENCAP) LABEL DESCRIPTION Obtai n an I P Address Automatical ly A static IP address is a fixed IP that your ISP give s you. A dynamic IP addre[...]
-
Page 46
Chapter 3 Wizards P-2612HW Series User’s Guide 46 • If the user name and /or password yo u entered for PPP oE connection are not correct, the screen displays as shown next. Click Back to Username and Password setup to go back to the screen where y ou can modify them. Figure 13 Connection T est Failed-1 • If the followi ng screen displays, c h[...]
-
Page 47
Chapter 3 Wizards P-2612HW Series User’s Guide 47 1 Select Yes and click Next to configure wireless settings. Otherwise, select No and skip to Step 6 . Figure 15 Connection T est Successful 2 Use this screen to activ ate the wirel ess LAN. Click Next to contin ue. Figure 16 Wireless LAN Setup Wizard 1 The following table describes t he labels in [...]
-
Page 48
Chapter 3 Wizards P-2612HW Series User’s Guide 48 3 Configure your wireless sett ings in this screen. Cli ck Next . Figure 17 Wirele ss LAN The following table describes t he labels in this screen. Note: The wireless stations and Z yXEL Device must use the same SSID, channel ID and WEP encryption key (if WEP is enabled), WP A-PSK (if WP A-PSK is [...]
-
Page 49
Chapter 3 Wizards P-2612HW Series User’s Guide 49 3.3.1 Manually Assign a WP A-PSK key Choose Manually assign a WPA-PSK key in the Wireless LAN setup screen to set up a Pre-Shared Key . Figure 18 Manually Assign a WP A-PSK key The following table describes t he labels in this screen. T able 9 Manually Assign a WPA key LABEL DESCRIPTION Pre-Shared[...]
-
Page 50
Chapter 3 Wizards P-2612HW Series User’s Guide 50 3.3.2 Manually Assign a WEP Key Choose Manually assign a WEP key to setup WEP Encryption par ameters. Figure 19 Manually Assign a WEP key The following table describes t he labels in this screen. 5 Click Apply t o save y our wireless LAN settings. Figure 20 Wireless LAN Setup 3 T able 10 Manually [...]
-
Page 51
Chapter 3 Wizards P-2612HW Series User’s Guide 51 6 Use the read-only summary table to check whether what you hav e configured is correct. Click Finish to complete and s ave th e wi zard se tup. Note: No wireless LAN settings display if you chose not to configure wireless LAN settings. Figure 21 Internet Access a nd WLAN Wizard Setup Complete 7 L[...]
-
Page 52
Chapter 3 Wizards P-2612HW Series User’s Guide 52 3.4.1 SIP Settings Figure 22 V oIP Setup Wizard > SIP Se ttings The following table describes t he labels in this screen. T able 1 1 VoIP Setup Wizard > SI P Settings LABEL DESCRIPTION SIP1 (- SIP10) Settings Use this screen to configure SIP settings for up to 10 SIP accounts. SIP Number Ent[...]
-
Page 53
Chapter 3 Wizards P-2612HW Series User’s Guide 53 3.4.2 Registration Complete This screen depends on whether or not th e Z yXEL Device successfully regi stered your SIP accoun t( s). Figure 23 V oIP Setup Wizard > Registration Complete (Success) P assword Enter the user name for registering this SIP account, exactly as it was given to you. Y o[...]
-
Page 54
Chapter 3 Wizards P-2612HW Series User’s Guide 54 The following table describes t he labels in this screen. If the Z yXEL Device cannot register yo ur SIP account(s), see the Quick Start Guide for troubleshooting suggest ions. Figure 24 V oIP Setup Wizard > Registration Comp lete (Fail) The following table describes t he labels in this screen.[...]
-
Page 55
Chapter 3 Wizards P-2612HW Series User’s Guide 55 Reg i s t e r A g a i n Click this if you w ant the Zy XEL Device to try to register your SIP account(s) again. Exit Click this to close this screen and retu rn to the main screen. The Z yXEL Device saves the information y ou provided. T able 13 VoIP Setup Wizard > Registration Complete (Fail) [...]
-
Page 56
Chapter 3 Wizards P-2612HW Series User’s Guide 56[...]
-
Page 57
P-2612HW Series User’s Guide 57 C HAPTER 4 Tutorial 4.1 Overview This chapter describes: • how to set up a wirel es s n etw ork. • how to use NA T with multiple public IP addresses. • how to use NA T with multiple game play ers. • how to make a V oIP call. 4.2 How to Set up a Wireless Network This section giv es you examples of how to set[...]
-
Page 58
Chapter 4 Tutorial P-2612HW Series User’s Guide 58 4.2.2 Configuring the AP Fol low the steps below to configure the wireless set tings on your AP . 1 Open the Network > Wireless LAN > AP screen in the AP’ s web configurator . Figure 25 AP: Wireless LAN > AP 2 Make sure Active Wireless LAN is selected. 3 Enter “SSID_Example3” as th[...]
-
Page 59
Chapter 4 Tutorial P-2612HW Series User’s Guide 59 5 Click the Advanced Se tup button and select Mixed in th e 802.11 Mode field. Click Apply . Figure 26 AP: Wireless LAN > AP > Advanced Setup 6 Open the Status s creen. V erify your wireless and wi reless security setti ngs und er Device Information and check if the WLAN connection is up un[...]
-
Page 60
Chapter 4 Tutorial P-2612HW Series User’s Guide 60 7 Click the WLAN Status hyperlin k in the A P’s Status screen. Y ou can see if any wireless client has connected to the AP . Figure 28 AP: S tatus: WLAN S tation S tatus 4.2.3 Configuring the Wireless Client This section describes how to connect the wireless c lient to a network. 4.2.3.1 Connec[...]
-
Page 61
Chapter 4 Tutorial P-2612HW Series User’s Guide 61 1 Open the ZyXEL ut ility and click the Site Su rvey tab to open the screen shown next. Figure 29 ZyXEL Utility: Site Survey 2 The wireless client automatically searches for av ai lable wireless networks. Click Scan if you want to search again. If no entry displa ys in the Available Network List [...]
-
Page 62
Chapter 4 Tutorial P-2612HW Series User’s Guide 62 4 The Confirm Sav e window appears. Check your settings and click Save to continue. Figure 31 ZyXEL Utility: Co nfirm Save 5 The ZyXEL utility returns to th e Link Info screen while it connects to the wirel ess network using your settings. When the wireless link is established, the Zy XEL utility[...]
-
Page 63
Chapter 4 Tutorial P-2612HW Series User’s Guide 63 4.2.3.2 Creating and Using a Profile A profile lets you easily connect to the same wireless network again later . Y ou can also configure different profiles f or diff erent networks, for example if you connect a notebook computer to wireless networks at home and at work. This example illustr ates[...]
-
Page 64
Chapter 4 Tutorial P-2612HW Series User’s Guide 64 4 Choose the same encryption method as th e AP to which you want to connect (In this example, WP A-PSK). Figure 35 ZyXEL Utility: Pro file Security 5 This screen vari es depending on the en cryption method yo u selected in the previous screen. Enter the pre-shared key and leave th e encryption ty[...]
-
Page 65
Chapter 4 Tutorial P-2612HW Series User’s Guide 65 7 V erify the profile settings in the read-only screen. Click Save to save and go to the next screen. Figure 38 Profile: Confirm Save 8 Click Activate Now to use the new profi le immediately . Otherwise, click the Activate Later button. If you clicked Activate Later , you can select the profile f[...]
-
Page 66
Chapter 4 Tutorial P-2612HW Series User’s Guide 66 4.3 Using NA T with Multiple Public IP Addresses This chapter shows you examples of how to set up y our Z yXEL Device if yo u ha ve more than one fixed (static) IP address from y our ISP . 4.3.1 Example Parameters and Scenario The following table shows the public IP addresse s f rom your ISP and [...]
-
Page 67
Chapter 4 Tutorial P-2612HW Series User’s Guide 67 1 Configure the W AN connection to use th e first publ ic IP address ( 1.2.3.4). 2 Configure NA T address mapping for othe r public IP addresses ( 1.2.3.5 and 1.2.3.6). 3 Configure NA T port forwarding to forw ard FTP traffic from the W AN to a speci fic computer on your local network. 4.3.2 Conf[...]
-
Page 68
Chapter 4 Tutorial P-2612HW Series User’s Guide 68 1 Click Netw ork > WAN . 2 Make sure the DSL/WAN switch (on the back of the Z yXEL Device) is pushed to the DSL side and the WAN mode is ADSL WAN . 3 Select Routing in the Mode field and select PPPoE from the Encapsulation drop-down list box. 4 Enter the info r m atio n (such as the user name,[...]
-
Page 69
Chapter 4 Tutorial P-2612HW Series User’s Guide 69 7 Click Apply t o save y our changes. Figure 42 T utorial Example: WAN Screen[...]
-
Page 70
Chapter 4 Tutorial P-2612HW Series User’s Guide 70 8 Go to the Status screen to check your W AN connection status. Make sure the status is not down. Figure 43 T utorial Example: S tatus 4.3.3 Public IP Address Mapping T o have the local computers and servers use specific W AN IP addresses, you need to map static public IP addresses to them. Note:[...]
-
Page 71
Chapter 4 Tutorial P-2612HW Series User’s Guide 71 computers on the same subnet as the Z yXE L Device’ s LAN IP address to use this IP address to access the Internet. Figure 44 T utorial Example: Mapping Multiple Pu blic IP Addresses to Inside Servers Note: The ZyXEL Device applies the rule s in the order that you specify . Y ou should put any [...]
-
Page 72
Chapter 4 Tutorial P-2612HW Series User’s Guide 72 4 Click the first rule’s Edit icon ( ) in the Modify column to display the Edit Address Mapping Rule screen. Figure 46 T utorial Example: NA T > Address Mapping 5 Map a public IP address to the web server . Select the One-to-One type and enter 192.168.1.12 as the local start IP ad dress and [...]
-
Page 73
Chapter 4 Tutorial P-2612HW Series User’s Guide 73 7 Map a public IP address to the mail server . Select the One-to-One type and enter 192.168.1.13 as the local start IP ad dress and 1.2.3.6 as the global start IP address. Cl ick Apply . Figure 48 T utorial Example: NA T Addres s Mapping Edit: One-to-One (2) 8 Click the third rule’ s Edit icon [...]
-
Page 74
Chapter 4 Tutorial P-2612HW Series User’s Guide 74 10 After the configurations, the Address Mapping screen looks as shown. Y ou still have one IP address (1. 2.3.7) that can be assigned to another internal server when you ex pand your network. Figure 50 T utorial Example: NA T Address Mapping Done Note: T o allow traffic from the W AN to be forwa[...]
-
Page 75
Chapter 4 Tutorial P-2612HW Series User’s Guide 75 1 Click Netw ork > NAT > Address Mapping . 2 Click the forth rule’s Edit icon ( ) to configure a server rule. Figure 52 T utorial Example: NA T Address Mapping Edit: Server 3 Select a number and click the Edit Details link to edit a port forw arding set. 4 Select FTP from the Service Name[...]
-
Page 76
Chapter 4 Tutorial P-2612HW Series User’s Guide 76 • Mail server •F T P s e r v e r Figure 54 T utorial Example: Allow W AN-to-LAN T raf fic 1 Click Security > Firewall . 2 Make sure the firewa ll is enabled and tr affic from the W AN to the LAN is dropped. Figure 55 T utorial Example: Firewall > General 3 Go to the Rules screen. Intern[...]
-
Page 77
Chapter 4 Tutorial P-2612HW Series User’s Guide 77 4 Select the WAN to LAN packet direct ion and click t he Add button to create a new firewall rule. Figure 56 T utorial Example: Firewall Rules: W AN to LAN 5 Configure a firewall rule to allow tr affic from the WAN to the web serv er . Select Any in the Destination Address List box and click Dele[...]
-
Page 78
Chapter 4 Tutorial P-2612HW Series User’s Guide 78 6 Select Any(All) in the Available Services box on the left, and click Add >> to add it to the Selected Services box on the right. Click Apply . Figure 58 T utorial Example: Firewall Rule: W AN to LAN Service Edit for Web Server[...]
-
Page 79
Chapter 4 Tutorial P-2612HW Series User’s Guide 79 7 Click the Add button to configure a firewall rule to allow tr affic from the WAN to the mail se rve r . Select Any in the Destination Address List box and click Delete . Select Single Add ress as the destination address t ype. Enter “192.168.1.13” and click Add . Figure 59 T utorial Example[...]
-
Page 80
Chapter 4 Tutorial P-2612HW Series User’s Guide 80 8 Select Any(All) in the Available Services box on the left, and click Add >> to add it to the Selected Services box on the right. Click Apply . Figure 60 T utorial Example: Firewall Rule: W AN t o LAN Service Edit for Mail Server[...]
-
Page 81
Chapter 4 Tutorial P-2612HW Series User’s Guide 81 9 Click the Add button to configure a firewall rule to allow FTP tr affic from the W AN to the F TP s erver . Select Any in the Destination Address List box and click Delete . Select Single Add ress as the destination address t ype. Enter “192.168.1.39” and click Add . Figure 61 T utorial Exa[...]
-
Page 82
Chapter 4 Tutorial P-2612HW Series User’s Guide 82 10 Select FTP(TCP:20,21) in the Available Services box on the left, and click Add >> to add it to the Selected Services box on the right. Click Apply . Figure 62 T u torial Example: Firewall Rule: W AN to LAN Service Edit for FTP Server 11 When you are done, the Rules screen looks as shown.[...]
-
Page 83
Chapter 4 Tutorial P-2612HW Series User’s Guide 83 4.3.6 T esting the Connections 1 Open the web browser on one of the loca l computers and enter an y web site’ s URL in the address bar . If you can access th e web site, your W AN connection and NA T address mapping are configured successfully . If you cannot access i t, make sure you entered t[...]
-
Page 84
Chapter 4 Tutorial P-2612HW Series User’s Guide 84 When you finish configuratio n, the screen looks as shown. Figure 64 T utorial Example: NA T Addres s Mapping Done: Game Playing Note: T o allow traffic from the W AN to be forwarded through the ZyXEL Device, you must also create a firewall ru le. Refer to Section 4.3.5 on p age 75 for more infor[...]
-
Page 85
Chapter 4 Tutorial P-2612HW Series User’s Guide 85 3 Go to the Status screen to check if your SI P account has been registered successfully . If registration failed, ch eck your Internet connection and click Register to register your SIP account again. Figure 65 T utorial Example: S tatus 4.5.1.2 Analog Phone Configuration 1 Click VoIP > P hon[...]
-
Page 86
Chapter 4 Tutorial P-2612HW Series User’s Guide 86 5 Click Apply to save your changes. Figure 66 T utorial Example: Analog Phone 4.5.1.3 Making a V oIP Call 1 Make sure you co nn ect a tele ph one to th e first phone port on the Z yXEL Device. 2 Make sure the Z yXEL Device is on and connected to the Int ernet. 3 Pick up the phone receiver . 4 Dia[...]
-
Page 87
87 P ART II Advanced Status Screens (89) WAN Setup (99) LAN Setup (121) Wireless LAN (137) Network Address T ranslation (NA T) (169) V oice (185) Phone Usage (221) Firewall (229) Content Filtering (251) VPN (257) Certificates (291) Static R oute (321) 802.1Q/1P (325) Quality of Service (QoS) (337) Dynamic DNS Setup (353) Remote Management Configura[...]
-
Page 88
88[...]
-
Page 89
P-2612HW Series User’s Guide 89 C HAPTER 5 Status Screens Use the Status screens to look at the current status of the device, sys te m resources, interfaces (LAN, WAN and WLAN), and SIP accounts. Y ou can also register and unregister SIP accounts. The Status screen also provides detailed information from Any IP and DHCP an d statistics from V oIP[...]
-
Page 90
Chapter 5 Sta tus Screens P-2612HW Series User’s Guide 90 Figure 68 S tatus Screen (Ethernet W AN mode) Each field is desc ribed in the followi ng table. T able 14 Status Screen LABEL DESCRIPTION R efresh Interval Enter how often you want the Z yXEL Device to update this screen. Apply Click this to update this screen immediately . Device Informat[...]
-
Page 91
Chapter 5 Status Screens P-2612HW Series User’s Guide 91 DSL Mode This field is not available when the WA N mode is Ethernet WAN . This is the DSL standard that your Z yXEL Device is using. IP Address This field displays the current IP address of the Z yXEL Device in the W AN. Click this to go to the screen where you can change it. IP Subnet Mask[...]
-
Page 92
Chapter 5 Sta tus Screens P-2612HW Series User’s Guide 92 Syst e m Uptime This field displays how long the Z yXEL Device has been running since it last started up. The Z yXEL Device starts up when you plug it in, when you r est ar t i t ( Maintenance > Tools > Restart ) , or w he n y ou r es e t i t (see Section 1.5 on page 29 ). Current Da[...]
-
Page 93
Chapter 5 Status Screens P-2612HW Series User’s Guide 93 AnyIP T able Click this link to view a list of IP addresses and MAC addresses of computers, which are not in the same subnet a s the ZyXEL Device. See Section 5.2 on page 94 . WLAN Status Click this link to display the MAC address(es) of the wireless stations that are currently associating [...]
-
Page 94
Chapter 5 Sta tus Screens P-2612HW Series User’s Guide 94 5.2 Any IP T able Click Status > AnyIP Table to access this screen. Use this screen to view the IP address and MAC ad dress of each computer that is using the Z yXEL Device but is in a different subnet than the Z yXEL Device. Figure 69 Any IP T able Each field is desc ribed in the follo[...]
-
Page 95
Chapter 5 Status Screens P-2612HW Series User’s Guide 95 The following table describes t he labels in this screen. 5.4 Packet S t atistics Click Status > Packet Statistics to access this screen. R ead-only inf ormation here includes port status and packet specif ic statistics. Also provided are "system up time" and "poll i nterv[...]
-
Page 96
Chapter 5 Sta tus Screens P-2612HW Series User’s Guide 96 The following table describes t he fields in this screen. T able 17 Packet S tatistics LABEL DESCRIPTION Syst e m M on i t o r Syst e m u p T im e This is the elapsed time the system has been up. Current Date/ Time This field displays your ZyXEL Device’ s present date and time. CPU Usage[...]
-
Page 97
Chapter 5 Status Screens P-2612HW Series User’s Guide 97 5.5 V oIP St atistics Click Status > VoIP Statistics to access this screen. Figure 72 V oIP St atisti cs Each field is desc ribed in the followi ng table. T able 18 VoIP Statistics LABEL DESCRIPTION SIP Status Account This column displa ys each SIP account in the ZyXEL Device. R egistrat[...]
-
Page 98
Chapter 5 Sta tus Screens P-2612HW Series User’s Guide 98 Last Outgoing Number This field displays the last number the SIP accou nt called. It displays N/ A if the SIP account has never dialed a number . Call Statistics Phone This field displays each phone port in the Z yXEL Device. Hook This field indicates wh ether the phone is on the hook or o[...]
-
Page 99
P-2612HW Series User’s Guide 99 C HAPTER 6 WAN Setup 6.1 Overview This chapter discusses the Z yXEL Device’ s WAN screens. Use these screens to configure your Z yXEL Devi ce for Internet access. A WAN (Wide Area Network) connection is an outside connection to another network or the Internet. It connects your private networks (such as a LAN (Loc[...]
-
Page 100
Chapter 6 WAN Setup P-2612HW Series User’s Guide 100 6.1.2 What Y ou Need to Know About W AN Encap sulation Method Encapsulation is used to include data from an upper layer protocol into a lower layer protocol. T o set up a WAN connection to the Int er n et, you need to use t he same encapsulation method used by your ISP (Internet Service Provide[...]
-
Page 101
Chapter 6 WAN Setup P-2612HW Series User’s Guide 101 6.2 The Internet Access Setup Screen Use this screen to change y our Z yXEL Device’ s W AN settings. Click Network > WAN > Internet Access Setup . The screen diff ers by the WAN mode and encapsulation you select. Figure 74 Network > W AN > Internet Access Setup (PPPoE)[...]
-
Page 102
Chapter 6 WAN Setup P-2612HW Series User’s Guide 102 The following table describes t he labels in this screen. T able 19 Network > W AN > Internet Access Setup LABEL DESCRIPTION WAN Mode When you set the DSL/WAN switch (on the back of the ZyXEL Device) to the DSL side, this shows ADSL WAN . The WAN port will be disabled automatically . When[...]
-
Page 103
Chapter 6 WAN Setup P-2612HW Series User’s Guide 103 IP Address This option is av ailable if y ou set the W AN mode to Ethern et WAN or select Routing in the Mode field. A static IP address is a fixed IP that your ISP giv es you. A dynamic IP address is not fi xed; the ISP assigns you a different one each time you connect to the Internet. Select [...]
-
Page 104
Chapter 6 WAN Setup P-2612HW Series User’s Guide 104 6.2.1 Advanced Internet Access Setup Use this screen to edit your Z yXEL De vice's adv anced W AN settings. Click the Advanced Setup button in the Internet Access Setup screen. The screen appears as shown. Figure 75 Network > W AN > Internet Access Setup: Advanced Setup The following[...]
-
Page 105
Chapter 6 WAN Setup P-2612HW Series User’s Guide 105 6.3 The More Connections Screen The Z yXEL Device allows y ou to conf igure more than one Internet access connection. T o configure additional Internet ac cess connections click Network > WAN > More Connections . The screen differs by the encapsulation you select . When you use the WAN &g[...]
-
Page 106
Chapter 6 WAN Setup P-2612HW Series User’s Guide 106 access, you are configuring the first WAN connection. This sc reen is not available if you set the W AN type to Ethernet in the Internet Access Setup screen. Figure 76 Network > W AN > More Connections The following table describes t he labels in this screen. T able 21 Network > W AN &[...]
-
Page 107
Chapter 6 WAN Setup P-2612HW Series User’s Guide 107 6.3.1 More Connections Edit Click the e dit icon in the More Connections screen to configure a connection . Figure 77 Network > W AN > More Connections: Edit The following table descri bes the labels in this screen. T able 22 Network > W AN > More Connections: Edit LABEL DESCRIPTION[...]
-
Page 108
Chapter 6 WAN Setup P-2612HW Series User’s Guide 108 Mode Select Routing from the drop-down list box if your ISP allows multiple computers to share an Internet account. If you select Bridge , the ZyXEL Device will forw ard any packet that it does not route to this remote node; otherwise, the packets are discarded. Encapsulation Select the method [...]
-
Page 109
Chapter 6 WAN Setup P-2612HW Series User’s Guide 109 Connection Nailed-Up Connection Select Nailed-Up Connection when you w ant your connection up all the time. The Z yXEL Device will try to bring up the connection automatically if it is disconnected. Connect on Demand Select Connect on Demand when you don't want the connection up all the ti[...]
-
Page 110
Chapter 6 WAN Setup P-2612HW Series User’s Guide 11 0 6.3.2 Configuring More Connections Advanced Setup T o edit your Z yXEL Device's adv anced W AN settings, click the Advanced Setup button in the More Connections Edit screen. The screen appears as shown. Figure 78 Network > W AN > More Connections: Edit: Advanced Setup The following [...]
-
Page 111
Chapter 6 WAN Setup P-2612HW Series User’s Guide 111 P eak Cell Rate Divide the DSL line rate (bps) by 424 (the siz e of an A TM cell) to find the Peak Cell R ate (PCR). This is the maximum r ate at which the sender can send cells. T y pe the PCR here. Sustain Cell R ate The Sustained Cell Rate (SCR) sets the aver age cell rate (long- term) that [...]
-
Page 112
Chapter 6 WAN Setup P-2612HW Series User’s Guide 11 2 6.4 The W AN Backup Setup Screen Use this screen to conf igure your Z yXEL Device’ s W AN backup . Click Network > WAN > WAN Backup Setup . This screen is not av ailable if you set the WAN type to Ethernet in th e Internet Access Setup screen. Figure 79 Network > W AN > WAN Backu[...]
-
Page 113
Chapter 6 WAN Setup P-2612HW Series User’s Guide 11 3 6.5 W AN T echnical Reference This section provi des some technical background informatio n about the topics covered in th is ch apte r . 6.5.1 Encap sulation Be sure to use the encapsulation method required by your ISP . The Z yXEL Device supports the following methods. Rec o v e r y Interval[...]
-
Page 114
Chapter 6 WAN Setup P-2612HW Series User’s Guide 11 4 6.5.1.1 ENET ENCAP The MAC Encapsulated Routing Link Protoc ol (ENET ENCAP) is only implemented with the IP network protocol . IP packets are routed betw een the Etherne t interface and the WAN i nterface and then formatted so that they can be understood in a bridged environment. F or instance[...]
-
Page 115
Chapter 6 WAN Setup P-2612HW Series User’s Guide 11 5 method assumes that each protocol is ca rried over a separ ate A TM virtual circuit (VC- based multiplexing). Please refer to RFC 1483 for more detailed information. 6.5.2 Multiplexing There are two conventions to identify what protocols the virtual circuit (VC) is carrying. Be sure to use the[...]
-
Page 116
Chapter 6 WAN Setup P-2612HW Series User’s Guide 11 6 IP Assignment with RFC 1483 Encap sulation In this case the IP address assignment must be static. IP Assignment with E NET ENCAP Encapsulation In this case you can have ei ther a static or dynamic IP . For a stat ic IP you must fill in all the IP Address and Gateway IP Address fields as suppli[...]
-
Page 117
Chapter 6 WAN Setup P-2612HW Series User’s Guide 11 7 6.5.8 T raffic Shaping T raffic Shapi n g is an agreement between th e carrier and the subscriber to regulate the aver age rate and fluctuations of data t ransmission o ver an A TM network. This agreement helps eliminate congestion, which is important for tr ansmission of real time data such a[...]
-
Page 118
Chapter 6 WAN Setup P-2612HW Series User’s Guide 11 8 Const ant Bit Rate (CBR) Constant Bit R ate (CBR) provid es fixed bandwidth that is always a vail able even if no data is being sent. CBR traffic i s generally ti me-sensitive (does n't tolerat e delay). CBR is u sed for conn ections that continuou sly require a s pecific am ount of bandw[...]
-
Page 119
Chapter 6 WAN Setup P-2612HW Series User’s Guide 11 9 6.6 T raffic Redirect T raffic redirect forwards tr affic to a backup gateway when the Z yXEL Device cannot connect to the Internet. An ex ample is shown in the figure below . Figure 81 T raffic Redirect Example The following network topology allows you t o avoid triangle route security is sue[...]
-
Page 120
Chapter 6 WAN Setup P-2612HW Series User’s Guide 120[...]
-
Page 121
P-2612HW Series User’s Guide 121 C HAPTER 7 LAN Setup 7.1 Overview A Local Area Network (LAN) is a shared communicat ion system to which many computers are attached. A LAN is usually lo cated in one immediate area such as a building or floor of a building. The LAN screens can help you configure a LAN DHCP server and manage IP addresses. • See S[...]
-
Page 122
Chapter 7 LAN Setup P-2612HW Series User’s Guide 122 7.1.2 What Y ou Need T o Know About LAN IP Address Similar to the way houses on a street share a common street name, so too do computers on a LAN share one common ne twork num be r . This is known as a n Internet Protocol address. Subnet Mask The subnet mask specifies the network number portion[...]
-
Page 123
Chapter 7 LAN Setup P-2612HW Series User’s Guide 123 and subnet mask of your Z yXEL Device and configure the DNS server information that the Z yXEL Device sends to th e DHCP client device s on the LAN. Figure 83 Network > LAN > IP The following table describes t he fields in this screen. T able 25 Network > LAN > IP LABEL DESCRIPTION [...]
-
Page 124
Chapter 7 LAN Setup P-2612HW Series User’s Guide 124 7.2.1 The Advanced LAN Setup Screen RIP RIP (Rout ing Information Protocol) allows a router to exchange routing information with other routers. IP P ool Starting Address This field specifies the first of the contiguous addresses in the IP address pool. P ool Size This field specifies the size, [...]
-
Page 125
Chapter 7 LAN Setup P-2612HW Series User’s Guide 125 Multicast and IGMP T raditionally , IP pa ckets are transmitted in one of either two ways - Unicast (1 sender - 1 recipient) or Broadcast (1 sender - everybody on the network). Multicast d elivers IP packets to a group of hosts on the network - not everybody and not just 1. IGMP (Internet Group[...]
-
Page 126
Chapter 7 LAN Setup P-2612HW Series User’s Guide 126 7.3 The LAN Client List Screen Use this table to assi gn IP addresses on the LAN to specif ic individual computers based on their MAC Addresses. Every Ethernet dev ice has a unique MAC (Media Access Control) address. The MAC address is assigned at the factory and consists of six pairs of hexade[...]
-
Page 127
Chapter 7 LAN Setup P-2612HW Series User’s Guide 127 Click Network > LAN > Client List to open the following screen. Use this screen to change your Z yXEL Device ’ s st atic DHCP settings. Figure 85 Network > LAN > Client List The following table describes t he labels in this screen. T able 27 Network > LAN > Client List LABEL[...]
-
Page 128
Chapter 7 LAN Setup P-2612HW Series User’s Guide 128 7.4 The LAN IP Alias Screen IP alias partitions a phys ical network into different logical networks ov er the same Ethernet interface. The Z yXEL Device support s three logical LAN interfaces via its single phy sical Ethernet interface with the Z yXEL Device itself as the g ateway for each LAN [...]
-
Page 129
Chapter 7 LAN Setup P-2612HW Series User’s Guide 129 The following table describes t he labels in this screen. 7.5 LAN T echnical Reference This section provi des some technical background informatio n about the topics covered in th is ch apte r . T able 28 Network > LAN > IP Alias LABEL DESCRIPTION IP Alias 1, 2 Se lect this to configure a[...]
-
Page 130
Chapter 7 LAN Setup P-2612HW Series User’s Guide 130 7.5.1 LANs, W ANs and the ZyXEL Device The actual physical connec tion determines whether the Z yXEL Device ports are LAN or W AN ports. There are two sepa ra te IP networks, on e inside the LAN network and t he ot her outside th e WAN network as shown next. Figure 88 LAN and W AN IP Addresses [...]
-
Page 131
Chapter 7 LAN Setup P-2612HW Series User’s Guide 131 • The ISP tells you the DNS serv er addresses, usually in the form of an info r mat io n sh eet , when you si g n up. I f your ISP g ives yo u DNS s erve r addresses, enter them in the DNS Server fields in the DHCP Setup screen. • Some ISPs choose to disseminate the DNS serv er addresses us[...]
-
Page 132
Chapter 7 LAN Setup P-2612HW Series User’s Guide 132 Onc e you have d ec ide d on th e ne two rk n um ber , pic k an IP add res s th at is ea sy to remember , for instance, 192.168.1.1, for yo ur ZyXEL Devi ce, but mak e sure that no other device on your network is using that IP address. The subnet mask specifies the network number portion of an [...]
-
Page 133
Chapter 7 LAN Setup P-2612HW Series User’s Guide 133 • None - the Z yXEL Device will not send an y RIP packets and will i gnore any RIP packets receiv ed. The Version field controls the format and th e broadcasting method of the RIP packets that the Z y XEL Device s ends (it re cognizes bot h formats when receiving). RIP-1 is universally suppor[...]
-
Page 134
Chapter 7 LAN Setup P-2612HW Series User’s Guide 134 configure the network settings of the comp uter every time you w ant to access the Internet via the Z yXEL Device. With the Any IP feature and NA T enabled, the ZyXEL Device allows a computer to access the Internet without changing the network settings (such as IP address and subnet mask) of th[...]
-
Page 135
Chapter 7 LAN Setup P-2612HW Series User’s Guide 135 The following lists out the steps t aken, when a computer tries to access the Internet for the first time through the ZyXEL Device. 1 When a computer (which is in a differen t subnet) first attempts to access t he Internet, it sends pack ets to its default gatewa y (whi ch is no t the Z yXEL De[...]
-
Page 136
Chapter 7 LAN Setup P-2612HW Series User’s Guide 136[...]
-
Page 137
P-2612HW Series User’s Guide 137 C HAPTER 8 Wireless LAN 8.1 Overview The blue circle marks a wireless LAN in th e fol lowing figure. Wireless clients (A and B) connect to an access point (AP) to acce ss other devices (such as the printer) or the Internet. Y our ZyXEL Device works as an AP when you install a compatible WLAN card . Figure 90 Examp[...]
-
Page 138
Chapter 8 Wireless LAN P-2612HW Series User’s Guide 138 •U s e t h e AP screen (see Section 8.2 on page 140 ) to turn t he wireless connection on or off , se t up wireless security , configure the MAC filter , set up Quality of Service and make ot her basic configuration changes. •U s e t h e Wireless LAN: Advanced Setup screen ( se e Section[...]
-
Page 139
Chapter 8 Wireless LAN P-2612HW Series User’s Guide 139 • An access point is a r adio with a wired c onnection to a network, which can connect with numerous wireless clients and let them access the network. • A bridge is a r adio that rela ys communications between access point s and wireless clients, extending a network’ s range. T raditio[...]
-
Page 140
Chapter 8 Wireless LAN P-2612HW Series User’s Guide 140 The MAC address filter controls access to the wireless network. Y ou can use th e MAC address of each wireless client to allow or deny access to the wireless network. Finding Out More • See Chapter 4 on page 57 for a tutorial showing how to set up your wireless connection in an example sce[...]
-
Page 141
Chapter 8 Wireless LAN P-2612HW Series User’s Guide 141 Click Network > Wireless LAN to open the AP screen. Figure 91 Network > Wireless LAN > AP The following table describes t he labels in this screen. T able 30 Network > Wireless LAN > AP LABEL DESCRIPTION Active Wireless LAN Click the check box to activate wireless LAN. Network[...]
-
Page 142
Chapter 8 Wireless LAN P-2612HW Series User’s Guide 142 8.2.1 No Security Select No Security to allow wireless devices to communicate with the access points without any data encrypti on. Note: If you do not enable any wireless security on your ZyXEL Device, your network is accessible to any wireless ne tworking device that is within range. Figure[...]
-
Page 143
Chapter 8 Wireless LAN P-2612HW Series User’s Guide 143 8.2.2 WEP Encryption In order to configure and en able WEP enc ryption; click Network > Wireless LAN to display the AP screen. Select Static WEP from the Security Mode list. Figure 93 Network > Wireless LAN > AP: S tatic WEP Encryption The following table describes t he wirele ss LA[...]
-
Page 144
Chapter 8 Wireless LAN P-2612HW Series User’s Guide 144 8.2.3 WP A(2)-PSK In order to configure and enable WP A(2)-PSK authentication; click Network > Wireless LAN to display the AP screen. Select WPA-PSK or WPA2-PSK from the Security Mode list. Figure 94 Network > Wireless LAN > AP: WP A(2)-PSK The following table describes t he wirele [...]
-
Page 145
Chapter 8 Wireless LAN P-2612HW Series User’s Guide 145 R e Authentication Timer (in seconds) Specify how often wireless stations ha ve to resend usernames and passwords in order to stay connected. En ter a time interv al between 10 and 9999 seconds. The default time interval is 1800 seconds (30 minutes). Note: If wireless station au thentication[...]
-
Page 146
Chapter 8 Wireless LAN P-2612HW Series User’s Guide 146 8.2.4 WP A(2) Authentication Screen In order to configure and enable WPA authentication; cli ck the Wireless LAN link under Network to display the AP screen. Select WPA or WPA2 from the Security Mode list. Figure 95 Network > Wireless LAN > AP: WP A(2) The following table describes t h[...]
-
Page 147
Chapter 8 Wireless LAN P-2612HW Series User’s Guide 147 R e Authentication Timer (in seconds) Specify how often wireless stations ha ve to resend usernames and passwords in order to stay connected. Enter a time interval between 10 and 9999 seconds. The default time interval is 1800 seconds (30 minutes). Note: If wireless st ation authentication i[...]
-
Page 148
Chapter 8 Wireless LAN P-2612HW Series User’s Guide 148 8.2.5 Wireless LAN Advanced Setup T o configure advanced wireless settings, click the Advanced Setup button in the AP screen. The screen appears as shown. Figure 96 Network > Wireless LAN > AP > Advanced Setup The following table describes t he labels in this screen. T able 34 Netwo[...]
-
Page 149
Chapter 8 Wireless LAN P-2612HW Series User’s Guide 149 8.3 More AP Screen This screen allows you to enable and configure multiple BS Ss on the Z yXEL Device. Click Network > Wireless LAN > More AP . The following screen displays. Figure 97 Network > Wireless LAN > More AP The following table describes t he labels in this screen. T ab[...]
-
Page 150
Chapter 8 Wireless LAN P-2612HW Series User’s Guide 150 8.3.1 More AP Edit Use this screen to ed it an SSID profile. Click the Edit icon next to an S SID in the More AP screen. The following screen displays. Figure 98 Network > Wireless LAN > More AP > Edit See Appendix E on page 531 f or a list of commonly -used services and desti natio[...]
-
Page 151
Chapter 8 Wireless LAN P-2612HW Series User’s Guide 151 8.4 MAC Filter Use this screen to change your Z yXEL Device’ s MAC filter s ettings. Click Network > Wireless LAN > MAC Filter . The screen appears as show n. Figure 99 Network > Wireless LAN > MAC Filter The following table describes t he labels in this screen. T able 37 Netwo[...]
-
Page 152
Chapter 8 Wireless LAN P-2612HW Series User’s Guide 152 8.5 WPS Use this screen to configure WiFi Prot ected Setup (WPS) on your Z yXEL Device. WPS allows you to q uickly set up a wirele ss network with strong securit y , without having to conf ig ur e security se tt i ng s man ually . Set up each WP S con ne ction between two devices. Both de vi[...]
-
Page 153
Chapter 8 Wireless LAN P-2612HW Series User’s Guide 153 8.6 WPS S t ation Use this screen to set up a WPS wire less network using ei ther Push Butt on Configuration (PBC) or PIN Configuration. Click Network > Wireless LAN >WPS Station . The following screen displays. Figure 101 Netwo rk > Wireless LAN > WPS S t ation Generate Click th[...]
-
Page 154
Chapter 8 Wireless LAN P-2612HW Series User’s Guide 154 The following table describes t he labels in this screen. 8.7 WDS Screen Use this screen to set up y our WDS (Wir eless Distrib ution System) links between the Z yXEL Device and other wireless APs. Y ou need to know the MAC address of the peer device. Once the security settin gs of peer side[...]
-
Page 155
Chapter 8 Wireless LAN P-2612HW Series User’s Guide 155 Click Network > W ireless LAN > WDS . The following screen displays. Figure 102 Networ k > Wireless LAN > WDS The following table describes t he labels in this screen. T able 40 Network > Wireless LAN > WDS LABEL DESCRIPTION Enable WDS Security Select this option and the ty[...]
-
Page 156
Chapter 8 Wireless LAN P-2612HW Series User’s Guide 156 8.8 Scheduling Screen Click Network > Wireless LAN > Scheduling to open the Wireless LAN Scheduling screen. Use this screen to config ure when the Z yXEL Device enables or disables the wireless LAN. Figure 103 Networ k > Wireless LAN > Scheduling The following table describes t h[...]
-
Page 157
Chapter 8 Wireless LAN P-2612HW Series User’s Guide 157 8.9 Wireless LAN T echnical Reference This section discusses wireless LANs in depth. F or more information, see the appendix. 8.9.1 Additional Wireless T erms The following table descri bes some wirele ss net work terms and acronyms used in the Zy XEL Device’s W eb Con figurator . 8.9.2 Wi[...]
-
Page 158
Chapter 8 Wireless LAN P-2612HW Series User’s Guide 158 This type of sec urity is fairly weak, howev er , because there are w ays for unauthorized wirel ess devices to get the SSID. In addition, un autho r ized wir eless devices ca n still se e th e inform a ti on that is s ent in the wirele ss netwo rk. 8.9.2.2 MAC Address Filter Every device th[...]
-
Page 159
Chapter 8 Wireless LAN P-2612HW Series User’s Guide 159 8.9.2.4 Encryption Wireless networks can us e encryption to protect the info rmation that is sent in the wireless network. Encryption is l ike a secret code. If you do not know the secr et code, you cannot unders tand the message. The types of encryption y ou can choose de pend on the type o[...]
-
Page 160
Chapter 8 Wireless LAN P-2612HW Series User’s Guide 160 8.9.3 MBSSID T raditionally , you needed to use differen t APs to configure different Basic Service Sets (BSSs). As well as the cost of buying ext ra APs, there was al so the possibility of channel interference. Th e Z yXEL Device’ s MBS SID (Multi ple Basic Service Set IDentifier) functio[...]
-
Page 161
Chapter 8 Wireless LAN P-2612HW Series User’s Guide 161 8.9.5 WiFi Protected Setup Y our ZyXEL Device supports WiFi Protect ed Setup (WPS), which is an easy way to set up a secure wireless network. WPS is an industry standard specification, defined by the WiFi Alli ance. WPS allows you to q uickly set up a wirele ss network with strong securit y [...]
-
Page 162
Chapter 8 Wireless LAN P-2612HW Series User’s Guide 162 8.9.5.2 PIN Configuration Each WPS-enabled device has its own PIN (P ersonal Identification Number). This may either be static (it cannot be changed) or dynamic (in some devices you can generate a new PIN by clicki ng on a button in the configuration interface). Use the PIN method instead of[...]
-
Page 163
Chapter 8 Wireless LAN P-2612HW Series User’s Guide 163 The following figure shows a WPS-enab led wi reless c lient (i nstalled in a n otebook computer) connecting to the WPS- enabled AP via the PIN method. Figure 105 Example WPS Process: PIN Method 8.9.5.3 How WPS Works When two WPS-enabled devices connect, each device must assume a specific rol[...]
-
Page 164
Chapter 8 Wireless LAN P-2612HW Series User’s Guide 164 The following figure sh ows a WPS -en able d client (install ed in a notebook computer) connecting to a WPS-enabled access point. Figure 106 How WPS works The roles of registrar and enrollee last on ly as long as the WPS setup process is active (two minutes). The next time you use WPS, a dif[...]
-
Page 165
Chapter 8 Wireless LAN P-2612HW Series User’s Guide 165 8.9.5.4 Example WPS Network Setup This section shows how security settings are distri buted in an example WPS setup. The following figure shows an example network. In step 1 , both AP1 and Client 1 are unconfigured. When WPS is activ ated on both, they perform the handshake. In this example,[...]
-
Page 166
Chapter 8 Wireless LAN P-2612HW Series User’s Guide 166 point. However , you know that Client 2 supports the registrar function, so you use it to perform the WPS handshak e instead. Figure 109 WPS: Example Network S tep 3 8.9.5.5 Limit ations of WPS WPS has some limitations of which you should be a ware. • WPS works in Infrastructure networks o[...]
-
Page 167
Chapter 8 Wireless LAN P-2612HW Series User’s Guide 167 • When you use the PBC method, there is a short period (from the moment you press the button on one device to the moment you press the button on the other device) when any WPS-enabled devi ce could join the network. This is because the registrar has no wa y of id entifying the “corre ct?[...]
-
Page 168
Chapter 8 Wireless LAN P-2612HW Series User’s Guide 168[...]
-
Page 169
P-2612HW Series User’s Guide 169 C HAPTER 9 Network Address Translation (NAT) 9.1 Overview NA T (Network Address T ranslation - NA T , RFC 1631) is the translat ion of the IP address of a host in a packet, for exampl e, the source address of an outgoing packet, used wit hin one network to a di fferent IP address known within anot her network. 9.1[...]
-
Page 170
Chapter 9 Net wo rk Addr ess Translation (NAT ) P-2612HW Series User’s Guide 170 NA T In the simplest form, NA T changes the source IP address in a packet received from a subscriber (the inside l ocal address) to another (the inside global address) before forwarding t he packet to the WA N side. When the response comes back, NA T tr anslates the [...]
-
Page 171
Chapter 9 N etwork Address Transla tion (NAT) P-2612HW Series User’s Guide 171 Click Networ k > NAT to open the following screen. Figure 1 10 Network > NA T > General The following table describes t he labels in this screen. T able 44 Network > NA T > General LABEL DESCRIPTION Active Network Address T ranslation (NA T) Select this [...]
-
Page 172
Chapter 9 Net wo rk Addr ess Translation (NAT ) P-2612HW Series User’s Guide 172 9.3 Port Forwarding Note: This screen is avail able only when you select SUA only in the NA T > General screen. Use the Port Forward ing screen to forward incoming service requests to the server(s) on your local ne twork. Y ou may enter a single port number or a r[...]
-
Page 173
Chapter 9 N etwork Address Transla tion (NAT) P-2612HW Series User’s Guide 173 addresses and the ISP assigns the WAN IP address. The NA T network appears as a single host on the In ternet. Figure 1 1 1 Multiple Servers Behind NA T Example 9.3.1 Configuring the Port Forwarding Screen Click Network > NAT > Port Forwarding to open the followin[...]
-
Page 174
Chapter 9 Net wo rk Addr ess Translation (NAT ) P-2612HW Series User’s Guide 174 The following table describes t he fields in this screen. T able 45 Network > NA T > Port Forwarding LABEL DESCRIPTION Default Server Setup Default Server In addition to the servers for specif ied services, NA T supp orts a default server . A default server rec[...]
-
Page 175
Chapter 9 N etwork Address Transla tion (NAT) P-2612HW Series User’s Guide 175 9.3.2 Port Forwarding Rule Edit Use this screen to add or edi t a port forwarding rule. Selec t User define in the Service Name field of the Port Forwarding screen or click an existing rule’ s edit icon in t he Port Forwarding screen to display the screen shown next.[...]
-
Page 176
Chapter 9 Net wo rk Addr ess Translation (NAT ) P-2612HW Series User’s Guide 176 9.4 Address Mapping Note: The Address Mapping screen is available only when you select Full Feature in the NA T > General screen. Ordering your rules is important because the ZyXEL Device applies the rules in the order that you specify . When a rule matc hes the c[...]
-
Page 177
Chapter 9 N etwork Address Transla tion (NAT) P-2612HW Series User’s Guide 177 9.4.1 Address Mapping Rule Edit T o edit an address mapping rul e, click the rule’ s edit icon in the Address Mapping screen to display the screen shown next. Figure 1 15 Network > NA T > Address Mapping > Edit Global End IP This is the ending Inside Global [...]
-
Page 178
Chapter 9 Net wo rk Addr ess Translation (NAT ) P-2612HW Series User’s Guide 178 The following table describes t he fields in this screen. 9.4.2 SIP ALG A SIP Application Layer Gatew ay (ALG) allows SIP calls to pass through NA T by examining and translating IP addresses embedded in the data stream. When the Z yXEL Device registers with the SIP r[...]
-
Page 179
Chapter 9 N etwork Address Transla tion (NAT) P-2612HW Series User’s Guide 179 Use this screen to enable and d isable th e SIP (V oIP) ALG in the Z yXEL Device. T o access this screen, click Network > NAT > ALG . Figure 1 16 Network > NA T > ALG Each field is desc ribed in the followi ng table. 9.5 NA T T echnical Reference This secti[...]
-
Page 180
Chapter 9 Net wo rk Addr ess Translation (NAT ) P-2612HW Series User’s Guide 180 host when the packet is on the W AN si de. The following table summariz es this informat ion. NA T never changes the IP address (either local or global) of an outside host. 9.5.2 What NA T Does In the simplest form, NA T changes the source IP address in a packet rece[...]
-
Page 181
Chapter 9 N etwork Address Transla tion (NAT) P-2612HW Series User’s Guide 181 and port numbers so incoming reply packets can ha ve their original v alues restored. The following figure illustr ates this. Figure 1 17 How NA T Wo rks 192.168.1.13 192.168.1.10 192.168.1.1 1 192.168.1.12 SA 192.168.1.10 SA IGA1 Inside Local IP Address 192.168.1.1 0 [...]
-
Page 182
Chapter 9 Net wo rk Addr ess Translation (NAT ) P-2612HW Series User’s Guide 182 9.5.4 NA T Application The following figure illustr ates a possible NA T application, where three inside LANs ( l o g i c a l L A N s u s i n g I P a l i a s ) b e h i n d t h e Z yXEL Device can communicate with three distinct W AN networks. Figure 1 18 NA T Applica[...]
-
Page 183
Chapter 9 N etwork Address Transla tion (NAT) P-2612HW Series User’s Guide 183 • Many to Many Overload : In Many-to-Many Overload mode, the ZyXEL Device maps the multiple local IP addresse s to shared global IP addresses. • Many-to-Many No Overload : In Many-to- Many No O verloa d mo de, t he ZyXEL Device maps each local IP address to a uniqu[...]
-
Page 184
Chapter 9 Net wo rk Addr ess Translation (NAT ) P-2612HW Series User’s Guide 184[...]
-
Page 185
P-2612HW Series User’s Guide 185 C HAPTER 10 Voice 10.1 Overview Use this chapter to: • Connect an analog phone to the Z yXEL Device. • Make phone calls over the Internet, as well as the regular phone network. • Configure setting s such as speed dial and disti nctive ringing. • Configure network settings to optimize the v oice quality of [...]
-
Page 186
Chapter 10 Voice P-2612HW Series User’s Guide 186 •U s e t h e Incoming Call Policy screen ( Section 10.11 on page 203 ) to configure how the Z yXEL Device deal s with incoming c alls. •U s e t h e SIP Prefix screen ( Section 10.12 on page 205 ) to set up numbers you dial on your phone that specify which SIP account you w ant to use. Y ou don[...]
-
Page 187
Chapter 10 Voice P-2612HW Series User’s Guide 187 See Section 10.13 on page 206 for adv anced technical information on SIP . 10.1.3 Before Y ou Begin • Before you can use these screens, you need to have a V oIP account already set up. If you don’t have one yet, you can sign up with a V oIP service provider over the Internet. • Y ou should h[...]
-
Page 188
Chapter 10 Voice P-2612HW Series User’s Guide 188 Use this screen to mai ntain basic information ab out each SIP account. Y ou can also enable and disable each SIP account. T o access this screen, click VoIP > SIP > SIP Settings . Figure 1 19 V oIP > SIP > SIP Settings Each field is desc ribed in the followi ng table. T able 52 V oIP [...]
-
Page 189
Chapter 10 Voice P-2612HW Series User’s Guide 189 REGISTER Server Address Enter the IP address or domain name of the SIP register server , if your V oIP service provider gave you one. Otherwise, enter the same address you entered in th e SIP Server Address field. Y ou can use up to 95 printable ASCII characters. REGISTER Server P ort Enter the SI[...]
-
Page 190
Chapter 10 Voice P-2612HW Series User’s Guide 190 10.3 The Advanced SIP Setup Screen Click VoIP > SIP > SIP Settings to open the SIP Settings screen. Select a SIP account and click Advanced Setup to open the Ad vanced SIP Setup screen. Use this screen to maintain advanc ed settings for each SIP account. Figure 120 V oIP > SIP Settings &g[...]
-
Page 191
Chapter 10 Voice P-2612HW Series User’s Guide 191 Each field is desc ribed in the followi ng table. T able 53 VoIP > SIP Settings > Advanced LABEL DESCRIPTION SIP Account This field displays the SIP account you see in this screen. SIP Server Settings URL T y pe Select whether or not to include the SIP service domain name when the Z yXEL Dev[...]
-
Page 192
Chapter 10 Voice P-2612HW Series User’s Guide 192 Primary Compression Ty p e Select the Z yXEL Device’s first ch oice for voice coder/decoder . Secondary Compression Ty p e Select the Z yXEL Device’ s second choice for voice coder/decoder . Select None if you only want the Z yXEL Device to accept the first choice. Third Compression Ty p e Sel[...]
-
Page 193
Chapter 10 Voice P-2612HW Series User’s Guide 193 10.4 The SIP QoS Screen Use this screen to maintain T oS and VLAN settings for the Z yXEL Device. T o access this screen, click VoIP > SIP > QoS . Figure 121 V oIP > SIP > QoS Each field is desc ribed in the followi ng table. Apply Click this to save your changes and to apply them to t[...]
-
Page 194
Chapter 10 Voice P-2612HW Series User’s Guide 194 10.5 The Analog Phone Screen Use this scre en to control wh ich SIP acc o unts and PSTN line each phone uses. T o access this screen, click VoIP > Phone > Analog Phone . Figure 122 V oIP > Phone > Analog Phone Each field is desc ribed in the followi ng table. 10.6 The Advanced Analog P[...]
-
Page 195
Chapter 10 Voice P-2612HW Series User’s Guide 195 V oice Activity Detect ion/Silence Suppression V oice Activity De t e c ti o n (VAD) detects whe t her or not speech is present. This lets the Z yXEL Device reduce the bandwidth that a call uses by not transmi tting “silent packets” when you are not speaking. Comfort Noise Generation When usin[...]
-
Page 196
Chapter 10 Voice P-2612HW Series User’s Guide 196 Each field is desc ribed in the followi ng table. T able 56 V oIP > Phone > Analog Ph one > Advanced LABEL DESCRIPTION Analog Phone This field displays the analog phone port you see in this screen. Echo Cancellation Active G.168 Select this if y ou want to eliminate the echo caused by the[...]
-
Page 197
Chapter 10 Voice P-2612HW Series User’s Guide 197 10.7 The Phone Settings Ext. T able Screen Each phone connected to the Z yXEL Device has an extensio n nu mber so that it can be separat ely identified for intercom use. The default settings of extension numbers are shown in the following table. An extension number is composed of a group number an[...]
-
Page 198
Chapter 10 Voice P-2612HW Series User’s Guide 198 10.8 The Common Phone Settings Screen Use this screen to activ ate and deactiv ate immedi ate dialing. T o access this screen, click VoIP > Phone > Common . Figure 125 V oIP > Phone > Common Group Number Enter a group number for this phone. The maximum length of a group number is one d[...]
-
Page 199
Chapter 10 Voice P-2612HW Series User’s Guide 199 Each field is desc ribed in the followi ng table. 10.9 The Phone Region Screen Use this screen to maintain settings that depend on which regi on of the wor ld the Z yXEL Device is in. T o access this screen, cl ick VoIP > Phone > Region . Figure 126 V oIP > Phone > Region T able 59 V o[...]
-
Page 200
Chapter 10 Voice P-2612HW Series User’s Guide 200 Each field is desc ribed in the followi ng table. 10.10 The S peed Dial Screen Use this screen to add, edit, or remove speed-dial numbers for outgoing calls. Speed dial provides shortcuts for dialin g freq uently-used ( V oIP) phone numbers. Y ou also have to create speed- dial entries if you want[...]
-
Page 201
Chapter 10 Voice P-2612HW Series User’s Guide 201 sends SIP INVITE requests to the peer V o IP device when you use the speed dial entry . Figure 127 Phone Book > S peed Dial Each field is desc ribed in the followi ng table. T able 61 Phone Book > Speed Dial LABEL DESCRIPTION Speed Dial Use this section to create or edit speed-dial entries. [...]
-
Page 202
Chapter 10 Voice P-2612HW Series User’s Guide 202 # This field displays the speed-dial number you should dial to use this entry . Number This field displays the SIP number the ZyXEL Device calls when you dial the speed-dial numb er . Name This field displays the name of the part y you call when you dial the speed-dial number . Destination This fi[...]
-
Page 203
Chapter 10 Voice P-2612HW Series User’s Guide 203 10.1 1 Incoming Call Policy Screen Use this scre en to main tain rule s for handl i ng in comin g ca l ls . Y ou can block, redirect, or accept them. T o access this screen, click VoIP > Phone Bo ok > Incoming Call Policy . Figure 128 Phone Book > Incoming Call Policy Y ou can create two [...]
-
Page 204
Chapter 10 Voice P-2612HW Series User’s Guide 204 Busy Forward to Number Select this if you want the Z yXEL Device to forward incoming calls to the specified phone number if the phone port is busy . Specify the phone number in the field on the right. If y ou have call waiting, the incoming call is forwarded to the specified phon e number if you r[...]
-
Page 205
Chapter 10 Voice P-2612HW Series User’s Guide 205 10.12 SIP Prefix Screen The SIP prefix screen allows you to set up nu mbers you dial on y our phone to specify which SIP account you want to use for a call . If you dial only the phone number (no prefix number) the Z yXEL Devi ce uses defaul t SIP settings to make the call. Click VoIP > Phone B[...]
-
Page 206
Chapter 10 Voice P-2612HW Series User’s Guide 206 10.13 SIP T echnical Reference This section contains background mat erial relevant to t he VoIP > SIP screens. 10.13.1 V oIP V oIP is the sending of voice signals ov er Internet Protocol. This allows you to make phone calls and send faxes o ver the Internet at a fr acti on of the cost of using [...]
-
Page 207
Chapter 10 Voice P-2612HW Series User’s Guide 207 signaling. SIP handles t elephone calls an d can interface with tr aditional circuit - switched telephone networks. SIP Identities A SIP account uses an identity (sometim es referred to as a SIP addres s). A complete SIP identit y is called a SIP URI (Uniform R esource Identif ier). A SIP account&[...]
-
Page 208
Chapter 10 Voice P-2612HW Series User’s Guide 208 The Z yXEL Device attempts to register al l enabled subscriber ports when it is switched on. When you enable a subscriber port that was previously dis abled, the Z yXEL Device attempts to register the port immediately . Authorization Requirement s SIP registrations ( and subsequent SIP requests) r[...]
-
Page 209
Chapter 10 Voice P-2612HW Series User’s Guide 209 2 The SIP proxy server forw ards the call invitation to C . Figure 131 SIP Proxy Server SIP Redirect Server A SIP redirect serv er accepts SIP requests , tr anslates the destination address to an IP address and sends the translated IP address back to the device that sent the request. Then the clie[...]
-
Page 210
Chapter 10 Voice P-2612HW Series User’s Guide 210 3 Client device A then sends the call invitation to c lient device C . Figure 132 SIP Redirect Server SIP Register Server A SIP register server maintains a databa se of SIP identity-to- IP address ( or domain name) mapping. The register serv e r c h e c k s y o u r u s e r n a m e a n d p a s s w [...]
-
Page 211
Chapter 10 Voice P-2612HW Series User’s Guide 21 1 1 A sends a SIP INVI TE request to B . This me s sage is an invita tion for B to participate in a SIP telephone call. 2 B sends a response indicating t hat the telephone is ringing. 3 B sends an OK response aft er the call is ans wered. 4 A then sends an ACK mess age to acknowledge that B has ans[...]
-
Page 212
Chapter 10 Voice P-2612HW Series User’s Guide 212 The following figure shows the SIP and session tr affic flow between the user agents ( UA 1 and UA 2 ) and the proxy serv ers (this example shows two pro xy servers, PROXY 1 and PROXY 2 ). Figure 133 SIP Call Through Proxy Servers The following table shows the SIP call progression. 1 User Agent 1 [...]
-
Page 213
Chapter 10 Voice P-2612HW Series User’s Guide 213 2 Proxy 1 sends a SIP INVITE request to Proxy 2 . Proxy 2 sends a respon se indicating that it is trying to complete the request. 3 Proxy 2 sends a SIP INVITE request to User Agent 2 . 4 User Agent 2 sends a response back to Proxy 2 indicati ng that the phone is ringing. The response is relayed ba[...]
-
Page 214
Chapter 10 Voice P-2612HW Series User’s Guide 214 Pulse dialing sends a series of clicks to the local phone office in order to dial numbers. 3 MWI (Message W aiting Indication) Enable Message W aiting Indication (MWI ) enable s yo ur ph one to give yo u a message–waiting (beeping) dial tone when you hav e a voice message(s). Y our V oIP service[...]
-
Page 215
Chapter 10 Voice P-2612HW Series User’s Guide 215 1 Pick up the phone and press “****” on your phone’ s keypad and wait for the message that says you are in the configurati on menu. 2 Press a number from 1201~1208 followed by the “#” key t o listen to the tone. 3 Y ou can continue to add, list en to, or dele te tones, or you can hang up[...]
-
Page 216
Chapter 10 Voice P-2612HW Series User’s Guide 216 DSCP and Per-Hop Behavior DiffServ defines a new DS ( Differentiated Services) field to replace the T ype of Service (TOS) field in th e IP header . The DS field contains a 2-bit unused field and a 6-bit DSCP field whic h can define up to 64 servi ce levels. The followi ng figure illustr a tes the[...]
-
Page 217
Chapter 10 Voice P-2612HW Series User’s Guide 217 • Three- W ay Conference •I n t e r n a l C a l l s • Call P ark and Pickup •D o n o t D i s t u r b Note: T o take full advant age of the supplement ary phone services available through the ZyXEL Device's phone port s, you may need to subscribe to the services from your V oIP service[...]
-
Page 218
Chapter 10 Voice P-2612HW Series User’s Guide 218 European Call Hold Call hold a l lows you to pu t a call ( A ) on h old by pressing the flash key . If you have another call, press the flash ke y and then “2” to switch back and forth between caller A and B by putting either one on hold. Press the flash key and then “0” to disconnect the [...]
-
Page 219
Chapter 10 Voice P-2612HW Series User’s Guide 219 3 After you hear the ring s ignal or the second party answers it, hang up t he phone. European Three-W ay Conference Use the following steps to make three-w a y conference calls. 1 When you are on the phone talking to someone, press the flash key to put the caller on hold and get a di al tone. 2 D[...]
-
Page 220
Chapter 10 Voice P-2612HW Series User’s Guide 220 USA Call W aiting This allows you to pl ace a call on hold while you answer another incoming call on the same te le phone (dire ctory) num b er . If there is a second call to your telephone number , you will hear a call w aiting tone. Press the flash k ey to put the first call on hold and answer t[...]
-
Page 221
P-2612HW Series User’s Guide 221 C HAPTER 11 Phone Usage 1 1.1 Overview This chapter describes how to use a phon e connected to your Z yXEL Device for basic tasks. Note: Not all service providers support all f eatures. 1 1.2 Dialing a T elephone Number The PHONE LED turns green when your SIP a ccount is registered. Dial a SIP number like “12345[...]
-
Page 222
Chapter 11 Pho ne Usag e P-2612HW Series User’s Guide 222 1 During the call, press “*97#” and then an y number (up to 8 digits long). Y ou need to remember this number in order to pick up the call on another pho ne. Hang up the receiver . 2 Pick up another phone’ s receiver . Press “#97#” followed by the same nu mber you entered before [...]
-
Page 223
Chapter 11 Phone Usage P-2612HW Series User’s Guide 223 1 1.7 Phone Services Overview Supplementary services such as call hold, call waiting, and call transfer . are generall y avai labl e from your V oIP serv ice prov ider . The ZyXEL Device supports the following s e rv ic es : • Call Hold • Call W aiting • Making a Second Call • Call T[...]
-
Page 224
Chapter 11 Pho ne Usag e P-2612HW Series User’s Guide 224 After pressing the flash key , if you do not issue the sub-command before the default sub-command timeout (2 second s) expires or issue an inva lid sub- command, the current operation will be aborted. 1 1.7.2.1 European Call Hold Call hold a l lows you to pu t a call ( A ) on h old by pres[...]
-
Page 225
Chapter 11 Phone Usage P-2612HW Series User’s Guide 225 • Disconnect the first call an d answer the second call. Either press the flash k ey and press “1” , or just hang up the phone an d then answer the p hone after it ri ngs. • Put the first call on hold and answer the second call. Press the flash key and then “2” . 1 1.7.2.3 Europe[...]
-
Page 226
Chapter 11 Pho ne Usag e P-2612HW Series User’s Guide 226 After pressing the flash key , if you do not issue the sub-command before the default sub-command timeout (2 second s) expires or issue an inva lid sub- command, the current operation will be aborted. 1 1.7.3.1 USA Call Hold Call hold a l lows you to pu t a call ( A ) on h old by pressing [...]
-
Page 227
Chapter 11 Phone Usage P-2612HW Series User’s Guide 227 1 When you are on the phone talking to so meone (party A), press the flash key to put the caller on hold and get a dial tone. 2 Dial a phone number directly to make another call (to party B). 3 When party B answers the second call, press the flash key to create a three-way conversation. 4 Ha[...]
-
Page 228
Chapter 11 Pho ne Usag e P-2612HW Series User’s Guide 228 *21# Enable call forward Use these to allow you to use the call forwarding tables you set in the Z yXEL Device, or to turn th is function off . See Section 10.11 on page 203 . #21# Disable call forward *22* Uncond ition forward Forward all incoming calls. See Section 10.11 on page 203 . *2[...]
-
Page 229
P-2612HW Series User’s Guide 229 C HAPTER 12 Firewall 12.1 Overview Use the Z yXEL Device firewall scre ens to enable and configure the fire wall that protects your Z yXEL Device and network fr om attacks by hackers on the Internet and control access to it. By default the firewall: • allows tr affic that originates from your LAN computers to go[...]
-
Page 230
Chapter 12 Firewall P-2612HW Series User’s Guide 230 •U s e t h e Threshold screen ( Section 12.4 on page 24 1 ) to set the thresholds that the Z yXEL Device uses to determine when to start dropping sessions that do not become fully established (half -open sessions). 12.1.2 What Y ou Need to Know About Firewall DoS Denials of Service (DoS) atta[...]
-
Page 231
Chapter 12 Firewall P-2612HW Series User’s Guide 231 1 Click Security > Firewall > Rul es . 2 Select WAN to LAN in the Packet Direction field. Figure 136 Firewall Example: Rules 3 In the Rules screen, select t he index number af ter that you want to add the ru le. Fo r example, if y o u sel e ct “6” , your new rul e becomes number 7 and[...]
-
Page 232
Chapter 12 Firewall P-2612HW Series User’s Guide 232 8 Configure the destination ad dre ss screen as follows and click Add . Figure 138 Firewall Example: Edit Rule: Destination Address 9 Use the Add >> and Remove butt ons between Available Services and Selected Services list boxes to configure i t as follows. Click Apply when you are done.[...]
-
Page 233
Chapter 12 Firewall P-2612HW Series User’s Guide 233 Note: Custom services show up with an “*” before their names in the Services list box and the Rules list box. Figure 139 Firewall Example: Edit Rule : Select Customized Services On comple ti ng th e configu ration proc e dure for thi s Int ernet fire wall r ul e, the Rules screen should loo[...]
-
Page 234
Chapter 12 Firewall P-2612HW Series User’s Guide 234 Rule 1 allows a “MyService” connection from the W AN to IP addresses 10.0.0.10 through 10.0.0.15 on the LAN. Figure 140 Firewall Example: Rules: MyService 12.2 The Firewall General Screen Use this screen to configure the firewall settings. Cli ck Security > Firewall to display the follow[...]
-
Page 235
Chapter 12 Firewall P-2612HW Series User’s Guide 235 The following table describes t he labels in this screen. T able 72 Security > Firewall > General LABEL DESCRIPTION Active Firewall Select this check bo x to activate the firewall. The Z yXEL Device performs access control and protects against Denial of Service (DoS) attacks when the fire[...]
-
Page 236
Chapter 12 Firewall P-2612HW Series User’s Guide 236 12.3 The Firewall Rule Screen Note: The ordering of your rules is very impo rtant as rules are applied in turn. Ref e r t o Section 12.5 on page 245 for more information. Click Security > Firewall > Rules to bring up the following s creen. This screen displays a li st of the configured fi[...]
-
Page 237
Chapter 12 Firewall P-2612HW Series User’s Guide 237 12.3.1 Configuring Firewall Rules Ref e r t o Section 12.1.2 on page 230 for more information. Source IP This drop-down list box displays the source addresses or r anges of addresses to which this firewall rule applies. Please note that a blank source or destination address is equiv alent to An[...]
-
Page 238
Chapter 12 Firewall P-2612HW Series User’s Guide 238 Use this screen to configure firewall rules. In the Rules screen, select an index number and click Add or click a ru le’s Edit ic on to display this screen and refer to the following table for information on the labels . Figure 143 Security > Firewall > Rules > Edit[...]
-
Page 239
Chapter 12 Firewall P-2612HW Series User’s Guide 239 The following table describes t he labels in this screen. T able 74 Security > Firewall > Rules: Edit LABEL DESCRIPTION Edit Rule Active Select this option to enable this firewall rule. Action for Matched Pack et Use the drop-down list box to select whether to discard ( Drop ), deny and s[...]
-
Page 240
Chapter 12 Firewall P-2612HW Series User’s Guide 240 12.3.2 Customized Services Configure customized servi ces and port numbers not predefined by the Z yXEL Device. For a comprehensive list of port numbers and services, visi t the IANA (Internet Assigned Number Authority) website. See Appendix E on page 531 for some examples. Click the Edit Custo[...]
-
Page 241
Chapter 12 Firewall P-2612HW Series User’s Guide 241 12.3.3 Configuring a Customized Service Use this screen to add a customized rul e or edit an existing rule. Click a rule number in the Firewall Customized Services screen to displa y the following screen. Figure 145 Security > Firewall > Rules: Edi t: Edit Customize d Services: Config The[...]
-
Page 242
Chapter 12 Firewall P-2612HW Series User’s Guide 242 For T CP , half -open means that the session has not reached the established state- the TC P three-way hands hake has not yet been comple ted. Under normal circumstances, the appl ication that initiates a sessi on sends a SYN (synchronize) packet to the receiving server . The receiv er sends ba[...]
-
Page 243
Chapter 12 Firewall P-2612HW Series User’s Guide 243 • If you often use P2P appl ications such as file sharing with eMule or eD onkey , it ’ s recommended that you increase the threshold va lues since lots of sessions will be established during a small period of time and the Z yXEL Device ma y classify them as DoS attacks. 12.4.2 Configuring [...]
-
Page 244
Chapter 12 Firewall P-2612HW Series User’s Guide 244 One Minute H igh This is the rate of new half -open sessions per minute that causes the firewall to start deleting half -open sessions. When the rate of new connection attempts rises above this n umber , the ZyXEL Device deletes half-open sessions as required to accommodate new connection attem[...]
-
Page 245
Chapter 12 Firewall P-2612HW Series User’s Guide 245 12.5 Firewall T echnical Reference This section provi des some technical background informatio n about the topics covered in th is ch apte r . 12.5.1 Firewall Rules Overview Y our customized rules take preced ence and ov erride the Zy XEL Device’ s default settings. The Z yXEL Device ch ecks [...]
-
Page 246
Chapter 12 Firewall P-2612HW Series User’s Guide 246 •W A N t o W A N / R o u t e r By default the Z yXEL Device stops computers on the WAN from managing the Z yXEL Device or using the Z yXEL Device as a gateway to communicate with other computers on the WAN. Y ou co uld configure one of these rules to allow a WAN computer to manage t he Z yXEL[...]
-
Page 247
Chapter 12 Firewall P-2612HW Series User’s Guide 247 12.5.3 Security Considerations Note: Incorrectly configuring the firewall ma y block valid access or introduce security risks to the ZyXEL Device and your protected net work. Use caution when creating or deleting firewall rules and test your rules after you configure them. Consider these securi[...]
-
Page 248
Chapter 12 Firewall P-2612HW Series User’s Guide 248 route” (also called asymmetrical route) problem ma y occur . The steps below describe the “triangle route” problem. 1 A computer on the LAN initiates a connection by sending out a SYN packet to a receiving server on t he WAN. 2 The Z yXEL Dev ice reroutes th e SYN pack et through Gatew ay[...]
-
Page 249
Chapter 12 Firewall P-2612HW Series User’s Guide 249 2 The Zy XEL Device reroutes the packet to Gateway A, which is in Subnet 2. 3 The reply from the W AN goes to the Z yXEL Device. 4 The Z yXEL Device then sends it to th e computer on the LAN in Subnet 1. Figure 150 IP Alias 1 2 3 LAN A ISP 1 ISP 2 4 WA N Subnet 1 Subnet 2 Internet[...]
-
Page 250
Chapter 12 Firewall P-2612HW Series User’s Guide 250[...]
-
Page 251
P-2612HW Series User’s Guide 251 C HAPTER 13 Content Filtering 13.1 Overview Internet content filtering allows y ou to block web sites based on keywords in the URL. 13.1.1 What Y ou Can Do in the Content Filter Screens •U s e t h e Keyword screen ( Section 13.2 on page 254 ) to block web sites based on a keyword in the URL. •U s e t h e Sched[...]
-
Page 252
Chapter 13 Content Filtering P-2612HW Series User’s Guide 252 13.1.4 Content Filtering Example The following shows the steps required for a parent (Bob) to set up content filtering on a home network in order t o li mit his children’ s access to certain web sites. In the following example, all URLs containing th e word ‘bad’ are block ed. 1 [...]
-
Page 253
Chapter 13 Co n te nt F ilt ering P-2612HW Series User’s Guide 253 4 Click Apply . Figure 152 Security > Con tent Filter > Schedule: Example The childre n ca n access th e fa mily com p ut er in the living room, while only the parents use another comput er in the stud y room. So keyword blocking is only needed on the family comp uter and th[...]
-
Page 254
Chapter 13 Content Filtering P-2612HW Series User’s Guide 254 13.2 The Keyword Screen Use this screen to block si tes containing certain keywords i n the URL. F or example, if y ou enable the k eyword "bad", the Z yXEL Devi ce blocks all sites containing this keyword including th e URL http://www .website.com/bad.html. T o h a v e y o u[...]
-
Page 255
Chapter 13 Co n te nt F ilt ering P-2612HW Series User’s Guide 255 13.3 The Schedule Screen Use this screen to set the days and time s for the Z yXEL Device to perform content filtering. Click Security > Content Filter > Schedule . The screen appears as shown. Figure 155 Security > Con tent Filter > Schedule The following table descri[...]
-
Page 256
Chapter 13 Content Filtering P-2612HW Series User’s Guide 256 13.4 The T rusted Screen Use this screen to exclude a r ange of us ers on the LAN from content filtering on your Z yXEL Device. Click Security > Content Filter > Trusted . The screen appears as shown. Figure 156 Security > Con tent Filter: T rusted The following table describe[...]
-
Page 257
P-2612HW Series User’s Guide 257 C HAPTER 14 VPN 14.1 Overview A virtual priv ate network (VPN) pro vides secure communications between sit es without the expense of leased site-to-site lines. A s ecure VPN is a combination of tunneling, encryption, aut hentication, access control and auditing. It is used to transport tr affic over the Internet o[...]
-
Page 258
Chapter 14 VPN P-2612HW Series User’s Guide 258 14.1.2 What Y ou Need to Know About IPSec VPN A VPN tunnel is usually established in two phases. Each phase establ ishes a security association (SA) , a contr act in dicating what securit y par ameters the Z yXEL Device an d the remo te IPSec rout er will use. The firs t phase establishes an Interne[...]
-
Page 259
Chapter 14 VPN P-2612HW Series User’s Guide 259 If the remote secure gateway has a static W AN IP address, enter it in the Secure Gateway Address field. Y ou may alternat ively enter the remote secure gatewa y’ s domain name (if it has one) i n the Secure Gateway Address field. Y ou can also enter a remote secure gateway’ s domain name in the[...]
-
Page 260
Chapter 14 VPN P-2612HW Series User’s Guide 260 14.2 VPN Setup Screen The following figure helps explain the main fields in the web configur ator . Figure 159 IPSec Summary Fields Local and remote IP addresses must be st atic. Click Security > VPN to op en the VPN Setup screen. This is a menu of your IPSec rules (tunnels). The IPSec summary me[...]
-
Page 261
Chapter 14 VPN P-2612HW Series User’s Guide 261 The following table describes t he fields in this screen. T able 81 Security > VPN > Setup LABEL DESCRIPTION No. This is the VPN policy index number . Click a number to edit VPN policies. Active This field displays whether the VPN policy is active or not. A Yes signifies that this VPN policy i[...]
-
Page 262
Chapter 14 VPN P-2612HW Series User’s Guide 262 14.3 The VPN Edit Screen Click an Edit icon in the VPN Setup screen to edit VPN poli cies. Figure 161 Security > VPN > Setup > Edit The following table describes t he fields in this screen. T able 82 Security > VPN > Setup > Edit LABEL DESCRIPTION IPSec Setup Active Select this che[...]
-
Page 263
Chapter 14 VPN P-2612HW Series User’s Guide 263 K eep Alive Select either Yes or No from the drop-down list box. Select Yes to have the Z yXEL Device automatically reinitiate the S A after the SA lifetime times out, ev en if there is no tr affic. The remote IPSec router must also have keep alive enabled in order for this feature to work. NA T T r[...]
-
Page 264
Chapter 14 VPN P-2612HW Series User’s Guide 264 End / Subnet Mask When the Local Address Type fie ld is configured to Single , this field is N/A. When the Local Address Type field is configured to Range , enter the end (static) IP address, in a range of computers on the LAN behind your ZyXEL Devi c e. When the Local Address Type field is configur[...]
-
Page 265
Chapter 14 VPN P-2612HW Series User’s Guide 265 Content When you select IP in the Lo cal ID Type field, type the IP address of your computer in the local Content field. The Z yXEL Device automatically uses the IP address in the My IP Address field (refer to the My IP Address field description) if you configure the local Content field to 0.0.0.0 o[...]
-
Page 266
Chapter 14 VPN P-2612HW Series User’s Guide 266 Secure Gateway Address T ype the WAN IP address or the URL (up to 31 char acters) of the IPSec router with which you're making the VPN connection. Set this field to 0.0.0.0 if the remote IPSec router has a dynamic WAN IP address (the IPSec Key Mode field must be set to IKE ). In order to have m[...]
-
Page 267
Chapter 14 VPN P-2612HW Series User’s Guide 267 Encryption Algorithm Select DES , 3DES , AES or NULL from the drop-down list box. When you use one of these encryption algorithms for data communications, both the sending device and the receiving device must use the same secret key , which can be used to encrypt and decrypt the message or to gener [...]
-
Page 268
Chapter 14 VPN P-2612HW Series User’s Guide 268 14.4 Configuring Advanced IKE Settings Click Advanc ed Setup in the VPN Setup-Edit screen to open this screen. Figure 162 Security > VPN > Setup > Edit > Advanced Setup The following table describes t he fields in this screen. T able 83 Security > VPN > Setup > Edit > Advance[...]
-
Page 269
Chapter 14 VPN P-2612HW Series User’s Guide 269 R emote Start Po r t 0 is the default and signifies any port. T y pe a port number from 0 to 65535. Some of the most common IP ports are: 21, F TP; 53, DNS; 2 3, T elnet; 80, HTTP; 25, SMTP; 110, POP3. End Enter a port number in this field to define a port r ange. This port number must be greater th[...]
-
Page 270
Chapter 14 VPN P-2612HW Series User’s Guide 270 Phase 2 Active Protocol Use the drop-down list box to choose from ESP or AH . Encryption Algorithm This field is available when you select ESP in the Active Protocol field. Select DES , 3DES , AES or NULL from the drop-down list box. When you use one of these encryption algorithms for data communica[...]
-
Page 271
Chapter 14 VPN P-2612HW Series User’s Guide 271 14.5 Manual Key Setup Manual ke y management is useful if you have prob lems with IKE key management. 14.5.1 Security Parameter Index (SPI) An SPI is used to distinguish different SA s terminating at the same destination and using the same IPSec protocol. This data al lows for the multiplexing of S [...]
-
Page 272
Chapter 14 VPN P-2612HW Series User’s Guide 272 14.6 Configuring Manual Key Y ou only configure VPN man ua l key w he n you s ele ct Manual in the IPSec Key Mode field on the VPN Setup-Edit screen. This is the VPN Setup - Manual Key screen as shown next. Figure 163 Security > VPN > Setup > Manual Key The following table describes t he fi[...]
-
Page 273
Chapter 14 VPN P-2612HW Series User’s Guide 273 IPSec Key Mode Select IKE or Manual from the drop-down list bo x. Manual is a useful option for troubleshooting if you ha ve problems using IKE key management. SPI T ype a numb er (base 10) from 1 to 999999 for the Security Parameter Index. Encapsulation Mode Select Tunnel mode or Tran sport mode fr[...]
-
Page 274
Chapter 14 VPN P-2612HW Series User’s Guide 274 IP Address Start When the Remote Address Type field is configured to Single, enter a (static) IP address on the networ k behind the remote IPSec router . When the Remote Address Type field is configured to Range , enter the beginning (static) IP address, in a r ange of computers on the network behin[...]
-
Page 275
Chapter 14 VPN P-2612HW Series User’s Guide 275 14.7 V iewing SA Monitor Click Security > VPN > Monito r to open the screen as shown. Use this screen to display and manage activ e VPN connections. A Security Association (S A) is the group of security settings related to a specific VPN tunnel. This sc reen displays active VPN connections. Us[...]
-
Page 276
Chapter 14 VPN P-2612HW Series User’s Guide 276 14.9.7 on page 283 on keep aliv e to have the Z yXEL Device renegotiate an IPSec SA when the SA lifetime expires, even if there is no tr affic. Figure 164 Security > VPN > Monitor The following table describes t he fields in this screen. T able 85 Security > VPN > Monitor LABEL DESCRIPTI[...]
-
Page 277
Chapter 14 VPN P-2612HW Series User’s Guide 277 14.8 Configuring VPN Global Setting T o change your Z yXEL Device’ s g lobal settings , click VPN > VPN Global Setting . The screen appears as shown. Figure 165 Security > VPN > Global Setting The following table describes t he fields in this screen. 14.9 IPSec VPN T echnical Reference Th[...]
-
Page 278
Chapter 14 VPN P-2612HW Series User’s Guide 278 14.9.1 IPSec Architecture The over all IPSec architecture i s shown as follows. Figure 166 IPSec Architecture IPSec Algorithms The ESP (Encapsulating Security Payl oad) Protocol (RFC 2406) and AH (Authentication Header) protocol ( RFC 2402) describe the packet formats and the default standards for p[...]
-
Page 279
Chapter 14 VPN P-2612HW Series User’s Guide 279 payload and headers, with a hash v alue appended to the packet. When using AH protocol, pack et contents (the data payload) are not encrypted. A NA T device in between the IPSec endpoi nts will rewrit e either the source or destination address with one of its own c h oosing. The VPN device at the re[...]
-
Page 280
Chapter 14 VPN P-2612HW Series User’s Guide 280 allows you to set up an IKE SA when th ere are NA T routers between the two IPSec routers. Figure 167 NA T Router Between IPSec Routers Normally you cannot set up an IKE SA with a NA T router between the two IPSec routers because the NA T router changes the header of the IPSec packet. NA T tra versa[...]
-
Page 281
Chapter 14 VPN P-2612HW Series User’s Guide 281 14.9.4 Encap sulation The two modes of operation for IPSec VPNs are Transport mode and Tunnel mode. Figure 168 T ranspo rt and T unnel Mode IPSec Encap sulation T ransport Mode Transport mode is used to protect upper layer protocols and only affects the data in the IP packet. In Tr ansport mode, the[...]
-
Page 282
Chapter 14 VPN P-2612HW Series User’s Guide 282 14.9.5 IKE Phases There are two phases to every IKE (Internet K ey Exchange) negotiation – phase 1 (Authentication) and phase 2 (K ey Exc hange). A phase 1 exchange establishes an IKE SA and the second one uses that SA to negotiate SAs for IPSec. Figure 169 T wo Phases to Set Up the IPSec SA In ph[...]
-
Page 283
Chapter 14 VPN P-2612HW Series User’s Guide 283 • Set the IPSec SA lifetime. This field al lows you to determine how long the IPSec SA should stay up before it times out. The Z yXEL Device automat ically renegotiates the IPSec SA if there is tr affic when the IPSec SA lifetime period expires. The Z yXEL Device also automatically renegoti ates t[...]
-
Page 284
Chapter 14 VPN P-2612HW Series User’s Guide 284 cannot use DNS servers on the LAN or from the ISP si nce these DNS server s cannot resolve domain names to p rivat e IP addresses on the remote network The following figure depicts an example where three VPN tunnels are created from Z yXEL Device A; one to br anch office 2, one to br anch office 3 a[...]
-
Page 285
Chapter 14 VPN P-2612HW Series User’s Guide 285 With main mode (see Section 14.9. 6 on page 283 ), the ID t ype and content are encrypted to provide identity protection. In this case the Z yXEL Device can only distinguish betw een up to 12 different in coming SAs that connect from remote IPSec routers that hav e dynamic W AN IP addresses. The Z y[...]
-
Page 286
Chapter 14 VPN P-2612HW Series User’s Guide 286 The two Z yXEL Devices in this example can complete negotiation and establish a VPN tunnel. The two Z yXEL Devices in this example ca nnot complete their negotiation because Z yXEL Device B’ s Local ID type is IP , but Z yXEL Devi ce A ’ s Peer ID type is set to E-mail . An “ID mismatched” m[...]
-
Page 287
Chapter 14 VPN P-2612HW Series User’s Guide 287 14.9.12.1 T elecommuters Sh aring One VPN Rule Example See the following figure and table f or an example configuration that allows multiple telecommuters ( A , B and C in the figure) to use one VPN rule to simultaneously access a Z yXEL Device at headquarters ( HQ in the fi gure). The telecommuters[...]
-
Page 288
Chapter 14 VPN P-2612HW Series User’s Guide 288 at headquarters can ov erlap. The l ocal IP addresses of the rules c onfigured on the telecommuters’ IPSec routers should not ov erlap. See the following table and figure for an example where three telecommut ers each use a different VPN rule for a VPN co nnection with a Z yXEL Device located at h[...]
-
Page 289
Chapter 14 VPN P-2612HW Series User’s Guide 289 T elecommuter B (telecommuterb.dydns.org) Headquarters ZyXEL Device Rule 2: Local ID T ype: DNS Pe e r I D T y p e : DN S Local ID Content: telecommuterb.com Peer ID Content: telecom muterb.com Local IP Address: 192.168.3.2 Secure Gateway Address: telecommuterb.com Remote Address 192.168.3.2 T eleco[...]
-
Page 290
Chapter 14 VPN P-2612HW Series User’s Guide 290[...]
-
Page 291
P-2612HW Series User’s Guide 291 C HAPTER 15 Certificates 15.1 Overview The Z yXEL Device can use certifica tes (als o called digital IDs) to authenticate users. Certificates are based on public-pri v ate key pairs. A certificate contains the certificate owner’ s identity and public k ey . Certificates provide a way to ex change public keys fo [...]
-
Page 292
Chapter 15 Certificates P-2612HW Series User’s Guide 292 Public and Private Keys When using public-k ey cryptology for auth entic ation, each host has two keys. One key is public and can be made openly av ai lable; the other key is priv ate and must be kept secure. Pub lic-key encry ption in gener al works as follows. 1 Tim wants to send a priv a[...]
-
Page 293
Chapter 15 Certificates P-2612HW Series User’s Guide 293 • The Z yXEL Device only has to store the certificates of the certificati on authorities that you decide to trust , no matter how many devi ces you need to authenticate. • K ey distribution is simple and very secu re s ince you can freely d istribute public keys a n d you neve r need to[...]
-
Page 294
Chapter 15 Certificates P-2612HW Series User’s Guide 294 3 Double-click the certificate’ s icon to open the Certificate window . Click the Details tab and scroll down to the Thumbprint Algorithm and Thumbprint fields. Figure 174 Certificate Det ails 4 Use a secure method to verify t hat the certificate owner has the same information in the Thum[...]
-
Page 295
Chapter 15 Certificates P-2612HW Series User’s Guide 295 15.2 My Certificates Click Security > Certificates > My Certificates to open the My Certificates screen. This is the Z yXEL Device’ s summar y list of certi f ic a t es and certi f icatio n requests. Certific a t es d isplay in bl a ck and cert if icatio n req u e sts disp lay in gr[...]
-
Page 296
Chapter 15 Certificates P-2612HW Series User’s Guide 296 Subject This field displays identifying in formation about the certificate’ s owner , such as CN (Common Name), OU (Organizational Unit or department), O (Organization or company) and C (C ountry). It is recommended that each certificate have unique subject information. Issuer This field [...]
-
Page 297
Chapter 15 Certificates P-2612HW Series User’s Guide 297 15.3 My Certificate Det ails Click Security > Certificates > My Certificates to open the My Certificates screen (see Figure 175 on page 295 ). Click the edit icon to open the My Certificate Details screen. Use this screen to view in-depth certificate information and change the certi f[...]
-
Page 298
Chapter 15 Certificates P-2612HW Series User’s Guide 298 The following table describes t he labels in this screen. T able 96 Security > Certificates > My Certificates > Det ails LABEL DESCRIPTION Certificate Name This field displays the identify ing name of this certificate. If you want to change the name, type up to 31 char acters to id[...]
-
Page 299
Chapter 15 Certificates P-2612HW Series User’s Guide 299 Y ou can only import a certificate that matches a corresponding certification request that was gener ated by the ZyXEL Device (the certification req uest contains the private key). The certificate you im p ort replaces the corresponding request in th e My Certificates screen. V alid From Th[...]
-
Page 300
Chapter 15 Certificates P-2612HW Series User’s Guide 300 One exception is that you can i mport a PKCS#12 format certificate without a corresponding certification request since the certificate includes the priv ate ke y . Note: Remove any sp aces from the certificate’ s filename before you import it. Certificate File Format s The certification a[...]
-
Page 301
Chapter 15 Certificates P-2612HW Series User’s Guide 301 15.3.1 Using the My Certificate Import Screen Click Security > Certificates > My Certificates and then Import to open the My Certificate Import screen. Follow the instructions in this screen to sa ve an existing certificate to the Z yXEL Device. Figure 177 Security > Certificates &[...]
-
Page 302
Chapter 15 Certificates P-2612HW Series User’s Guide 302 self -signed certificate, enroll a certificate with a certification au thority or gener ate a certification request. Figure 178 Security > Certificates > My Certificate Create The following table describes t he labels in this screen. T able 98 Security > Certificates > My Certif[...]
-
Page 303
Chapter 15 Certificates P-2612HW Series User’s Guide 303 Organization T ype up to 127 characters to identify the company or group to which the certificate owner belongs. Y ou may use any char acter , including spaces, but the Z yXEL Device drops trailing spaces. Country T ype up to 127 characters to id entify the nation where the certificate owne[...]
-
Page 304
Chapter 15 Certificates P-2612HW Series User’s Guide 304 After you cl ick Apply in the My Certificate Create screen, you see a screen that tells you the Z yXEL Device i s generating the self-si gned certificate or certif ication request. After the Z yXEL Device successfully enrolls a certifi cate or generates a certification request or a self -si[...]
-
Page 305
Chapter 15 Certificates P-2612HW Series User’s Guide 305 trustworthy; thus you do not need to impo rt any certificate that is signed by one of these certification authorities. Figure 179 Security > Certificates > T rusted CAs The following table describes t he labels in this screen. T able 99 Security > Certificates > T rusted CAs LAB[...]
-
Page 306
Chapter 15 Certificates P-2612HW Series User’s Guide 306 15.6 T rusted CA Import Click Security > Certificates > Trusted CAs to open t he Trusted CAs screen and then click Import to open the Trusted CA Import screen. Follow the instructions in t his screen to sav e a trus ted certification authority’ s certificate to the ZyXEL Device. Not[...]
-
Page 307
Chapter 15 Certificates P-2612HW Series User’s Guide 307 The following table describes t he labels in this screen. 15.7 T rusted CA Det ails Click Security > Certificates > Trusted CAs to open t he Trusted CAs screen. Click the deta ils icon to open the Trusted CA Details screen. Use this screen to view in-depth information about the certif[...]
-
Page 308
Chapter 15 Certificates P-2612HW Series User’s Guide 308 certification authority’ s list of revoked c e rtificates before trusting a certificate issued by the certification authorit y . Figure 181 Security > Certificates > T rusted CA > Details[...]
-
Page 309
Chapter 15 Certificates P-2612HW Series User’s Guide 309 The following table describes t he labels in this screen. T able 101 Security > Certificates > T rusted CA > Det ails LABEL DESCRIPTION Certificate Name This field displays the identify ing name of this certificate. If you want to change the name, type up to 31 characters to identi[...]
-
Page 310
Chapter 15 Certificates P-2612HW Series User’s Guide 310 V alid T o This field displays the date that the certificate expires. The text displays in red and includes an Ex piring! or Expired! message if the certificate is about to expire or has already expired. K ey Algorithm This field displays the type of algorithm that was used to gener ate the[...]
-
Page 311
Chapter 15 Certificates P-2612HW Series User’s Guide 31 1 15.8 T rusted Remote Host s Click Security > Certificates > Trusted Remote Hosts to open the Truste d Remote Hosts screen. This screen displa ys a list of the cert ificates of peers that you trust but which are not sig ned by one of the certificat ion authorities on the Trusted CAs s[...]
-
Page 312
Chapter 15 Certificates P-2612HW Series User’s Guide 312 15.9 T rusted Remote Host Certificate Det ails Click Security > Certificates > Trusted Remote Hosts to open the Trusted Remote Hosts screen. Click the details icon to open the Trusted Remote Host Subject This field displays identifying in format ion about the certificate’ s owner , [...]
-
Page 313
Chapter 15 Certificates P-2612HW Series User’s Guide 313 Details screen. Use this screen to view in -depth information about the trusted remote host’ s certificate and/or change t he certificate’ s name. Figure 183 Security > Certificates > T rusted Remote Hosts > Deta ils The following table describes t he labels in this screen. T a[...]
-
Page 314
Chapter 15 Certificates P-2612HW Series User’s Guide 314 Certificate Path These read-only fields display detailed information about the certificate. T ype This field displays general information about the certificate. With trusted remote host certificates, this field always displays CA -signed. The Z yXEL Device is the Certific ation Authority th[...]
-
Page 315
Chapter 15 Certificates P-2612HW Series User’s Guide 315 15.10 T rusted Remote Host s Import Click Security > Certificates > Trusted Remote Hosts to open the Trusted Remote Hosts screen and then click Import to open the Trusted Remote Host Import screen. Follow the inst ru ctions in thi s screen to save a tru s te d host ’s certificate to[...]
-
Page 316
Chapter 15 Certificates P-2612HW Series User’s Guide 316 Note: The trusted remote host cert ificate must be a self-signed certificate; and you must remove any spaces fro m its filename before you can imp ort it. Figure 184 Security > Certificates > T rusted Remote Hosts > Import The following table describes t he labels in this screen. 1[...]
-
Page 317
Chapter 15 Certificates P-2612HW Series User’s Guide 317 incoming cer tificat e. If th e ce rtificat e does not list a server or t he listed server is not avai lable, the Z yXEL Devi ce checks the servers listed here. Figure 185 Security > Certificates > Directory Servers The following table describes t he labels in this screen. T able 105 [...]
-
Page 318
Chapter 15 Certificates P-2612HW Series User’s Guide 318 15.12 Directory Server Add and Edit Click Security > Certificates > Directory Servers to open the Directory Servers screen. Click Add (or the details icon) to open the Directory Server Add screen. Use this screen to configure in formation about a directory server that the Z yXEL Devic[...]
-
Page 319
Chapter 15 Certificates P-2612HW Series User’s Guide 319 P assword T ype the password (up to 31 ASCII characters) from the entity maintaining the directory server (usually a certification authority). Back Click Back to return to the Directo ry Servers screen. Apply Click Apply to sav e your changes back to the Z yXEL Device. Cancel Click Cancel t[...]
-
Page 320
Chapter 15 Certificates P-2612HW Series User’s Guide 320[...]
-
Page 321
P-2612HW Series User’s Guide 321 C HAPTER 16 Static Route 16.1 Overview The Z yXEL Device usually uses the default gatewa y to route outbound tr affic from computers on the LAN to the Internet. T o have the Z yXEL Device send data to devices not reachable through the de fault g ateway , use static routes. For example, the next figure shows a comp[...]
-
Page 322
Chapter 16 Stat ic Route P-2612HW Series User’s Guide 322 16.2 Configuring S t atic Route Click Advanced > Static Route to open the Static Route screen. Figure 188 Advanced > S tatic Route The following table describes t he labels in this screen. T able 107 Advanced > Static Route LABEL DESCRIPTION # This is the number of an individual s[...]
-
Page 323
Chapter 16 Static Route P-2612HW Series User’s Guide 323 16.2.1 S t atic Route Edit Select a static route index number and click Edit . The scr een shown next ap pears. Use this screen to configure the required information for a static route. Figure 189 Advanced > S t atic Route > Edit The following table describes t he labels in this scree[...]
-
Page 324
Chapter 16 Stat ic Route P-2612HW Series User’s Guide 324[...]
-
Page 325
P-2612HW Series User’s Guide 325 C HAPTER 17 802.1Q/1P 17.1 Overview A Virtual Local Area Network (VLAN) allows a physical network to be partit ioned into multiple logi cal networks. A VLAN gr oup can be treated as an individual device. Each group can have it s own rules about where and how to forw ard traff ic. Y ou can assign any ports on the Z[...]
-
Page 326
Chapter 17 802.1Q/1P P-2612HW Series User’s Guide 326 IEEE 802.1Q T agged VLAN T agged VLAN uses an explicit tag (VLAN ID) in the MAC header to identify the VLAN membership of a fr ame across bri dges - they are not confined to the device on which they were c reated. The VLA N ID associates a fr ame with a speci fic VLAN and provides the inf orma[...]
-
Page 327
Chapter 17 802.1Q/1P P-2612HW Series User’s Guide 327 17.1.3 802.1Q/1P Example This example shows how to configur e the 802.1Q/1P settings on the Z yXEL Device. Figure 191 802.1Q/1P Example LAN1 and LAN2 are connected to A T As (A nalog T elephone Adapters) and used for V oIP tr affic. Y ou w ant to set a high priority for this type of tr affic, [...]
-
Page 328
Chapter 17 802.1Q/1P P-2612HW Series User’s Guide 328 6 Click Apply . Figure 192 Advanced > 802.1Q/1P > Group Se tting > Edit: Example T o set a high priority for V oIP tr affic, follow these steps. 1 Click Advanc ed > 802.1Q/1P > Port Setting to display the following sc reen. 2 Ty p e 2 i n t h e 80 2.1 Q PVID column for LAN1, LA [...]
-
Page 329
Chapter 17 802.1Q/1P P-2612HW Series User’s Guide 329 4 Click Apply . Figure 193 Advanced > 8 02.1Q/1P > Port Setting: Example P orts 3 and 4 are connected to desktop computers and are used for Internet traffic . Y ou want to set a lower priorit y for this type of tr affic, so you want to group these ports and PVC2 into one VLAN (VLAN3). PV[...]
-
Page 330
Chapter 17 802.1Q/1P P-2612HW Series User’s Guide 330 Fol low the same steps as in VLAN2 to co nfigure the setting s for VLAN3 and VLAN4. The summary screen should displa y as follows. Figure 194 Advanced > 802.1Q/1P > Group Se tting: Example[...]
-
Page 331
Chapter 17 802.1Q/1P P-2612HW Series User’s Guide 331 The port screen shou ld look like this. Figure 195 Advanced > 8 02.1Q/1P > Port Setting: Example This completes the 802.1Q/1P setup .[...]
-
Page 332
Chapter 17 802.1Q/1P P-2612HW Series User’s Guide 332 17.2 The 802.1Q/1P Group Setting Screen Use this screen to activ ate 802.1Q/1P and d isplay the VLAN groups . Click Advanced > 802.1Q/1P to display the following screen. Figure 196 Advanced > 802.1Q/1P > Group Se tting The following table describes t he labels in this screen. T able 1[...]
-
Page 333
Chapter 17 802.1Q/1P P-2612HW Series User’s Guide 333 17.2.1 Editing 802.1Q/1P Group Setting Use this screen to configure th e setti ngs for each VLAN group . Summary # This field displays the index number of the V LAN group. Name This field displays the name of the VLAN group. VID This field displays the ID nu mber of the VLAN group. Port Number[...]
-
Page 334
Chapter 17 802.1Q/1P P-2612HW Series User’s Guide 334 In the 802.1Q/1P screen, click the Edit button from the Modify filed to displ ay the following screen. Figure 197 Advanced > 802.1Q/1P > Group Se tting > Edit The following table describes t he labels in this screen. T able 1 10 Advanced > 802.1Q/1P > Group Setting > Edit LAB[...]
-
Page 335
Chapter 17 802.1Q/1P P-2612HW Series User’s Guide 335 17.3 The 802.1Q/1P Port Setting Screen Use this screen to configure the PVID and a ssig n traffic priority for each port. Click Advanced > 802.1Q/1P > Port Setting to displa y the foll owing screen. Figure 198 Advanced > 8 02.1Q/1P > Port Setting Control Select Fixed for the port t[...]
-
Page 336
Chapter 17 802.1Q/1P P-2612HW Series User’s Guide 336 The following table describes t he labels in this screen. T able 1 1 1 Advanced > 802.1Q/1P > Port Setting LABEL DESCRIPTION P orts This field dis plays the type s of po rts av ailable to join the VLAN group . 802.1Q PVID Assign a VLAN ID for the port. The valid VID range is between 1 an[...]
-
Page 337
P-2612HW Series User’s Guide 337 C HAPTER 18 Quality of Service (QoS) This chapter contains information about configuring QoS, editing classifiers and viewing the Z yXEL Device’ s QoS packet statist ics . 18.1 Overview This chapter discusses the Z yXEL Device’ s QoS screens. Use these screens to set up your Z yXEL Devi ce to use QoS for traf [...]
-
Page 338
Chapter 18 Quality of Service (QoS) P-2612HW Series User’s Guide 338 •U s e t h e Monitor screen ( Section 18.4 on page 349 ) to view the ZyXEL Device’s QoS-related packet stat istics. 18.1.2 What Y ou Need to Know About QoS QoS versus C os QoS is used to prioritize s o urce-to-destinat i on traffic flows. All packets in the same flow are giv[...]
-
Page 339
Chapter 18 Quality of Service (QoS) P-2612HW Series User’s Guide 339 these two classes are assigned priorit y queue based on the internal QoS mapping table on the ZyXEL Device. Figure 199 QoS Example Figure 200 QoS Class Example: V oIP -1 Internet 50 Mbps DSL V oIP: Queue 6 Boss: Queue 5 IP=192.168.1.23[...]
-
Page 340
Chapter 18 Quality of Service (QoS) P-2612HW Series User’s Guide 340 Figure 201 QoS Class Example: V oIP -2 Figure 202 QoS Class Example: Boss -1[...]
-
Page 341
Chapter 18 Quality of Service (QoS) P-2612HW Series User’s Guide 341 Figure 203 QoS Class Example: Boss -2 18.2 The QoS General Screen Click Advanc ed > QoS to open the screen as shown next. Use this screen to enable or disable QoS, and select to ha v e the Z yXEL Device automatically assign[...]
-
Page 342
Chapter 18 Quality of Service (QoS) P-2612HW Series User’s Guide 342 priority to tr affic according to the IEEE 802. 1p priorit y level, IP prec edence and/or packet length. Figure 204 Advanced > QoS > General The following table describes t he labels in this screen. T able 1 12 Advanced > QoS > General LABEL DESCRIPTION Active QoS Se[...]
-
Page 343
Chapter 18 Quality of Service (QoS) P-2612HW Series User’s Guide 343 18.3 The Class Setup Screen Use this sc reen to add, e dit or delete classi fiers. A classifier groups tr affic into data flows according to specific criteria su ch as the source address, destination address, source port number , destination port number or incoming interface. F [...]
-
Page 344
Chapter 18 Quality of Service (QoS) P-2612HW Series User’s Guide 344 Priority This is the priority assigned to tr affic of this classifier . Filter Content This shows criteria specified in this classifier . Modify Click the Edit icon to go to the scr een where you can edit the classifier . Click the R emove icon to delete an existing classifier .[...]
-
Page 345
Chapter 18 Quality of Service (QoS) P-2612HW Series User’s Guide 345 18.3.1 The Class Configuration Screen Click the Add button or the Edit icon in the Modify field to configure a classifier . Figure 206 Advanced > QoS > Class Setup > Add[...]
-
Page 346
Chapter 18 Quality of Service (QoS) P-2612HW Series User’s Guide 346 See Appendix E on page 531 for a list of commonly-use d services. The following table des c r ib es the labe ls in this sc reen. T able 1 14 Advanced > QoS > Class Se tup > Add LABEL DESCRIPTION Class Configuration Active Select the check box to enable this classifier .[...]
-
Page 347
Chapter 18 Quality of Service (QoS) P-2612HW Series User’s Guide 347 802.1Q T a g Select Same to keep the priority setting and VLAN ID of the frames. Select Auto to map the 802.1 priority level to the DSCP v alue automatically . Select Remove to delete th e priority queue tag and VLAN ID of the frames. Select Mark to replace the 802.1 priority fi[...]
-
Page 348
Chapter 18 Quality of Service (QoS) P-2612HW Series User’s Guide 348 MAC Mask T ype the mask for the specified MAC address to determine which bits a packet’ s MAC address should match. Enter “f ” for each bit of the specified destination MAC address that the traffic’ s MAC address should match. Enter “0” for the bit(s) of the matched [...]
-
Page 349
Chapter 18 Quality of Service (QoS) P-2612HW Series User’s Guide 349 18.4 The QoS Monitor Screen T o view the ZyXEL Device’ s QoS packet statistics, click Advanc ed > QoS > Monitor . The screen appears as shown. Figure 207 Advanced > QoS > Monitor The following table describes t he labels in this screen. 18.5 QoS T echnical Referenc[...]
-
Page 350
Chapter 18 Quality of Service (QoS) P-2612HW Series User’s Guide 350 18.5.1 IEEE 802.1Q T ag The IEEE 802.1Q standard defi nes an exp licit VLAN tag in the MAC header to identify the VLAN membership of a frame across bridges. A VLAN tag includes the 12-bit VLAN ID and 3-bit user priority . The VLAN ID associates a frame with a specific VLAN and p[...]
-
Page 351
Chapter 18 Quality of Service (QoS) P-2612HW Series User’s Guide 351 DiffServ (Differentia ted Services) is a class of service (CoS) model that marks packets so that they receive s pecific per-hop treatment at DiffServ-c ompliant network devices along the route based on the application types and tr affic flow . P ack ets are marked with DiffServ [...]
-
Page 352
Chapter 18 Quality of Service (QoS) P-2612HW Series User’s Guide 352 gets through faster while traffic in lower index queues is dropped if the network is congested. T able 1 17 Internal Layer2 and Layer3 QoS Map ping PRIORITY QUEUE LAYER 2 LAYER 3 IEEE 802.1P USER PRIORITY (ETHERNET PRIORITY) T OS (IP PRECEDENCE) DSCP IP PACKET LENGTH (BYTE) 0 1 [...]
-
Page 353
P-2612HW Series User’s Guide 353 C HAPTER 19 Dynamic DNS Setup This chapter discusses how to configure your Z yXEL Device to use Dynamic DNS. 19.1 Overview Dynamic DNS allows you to update your current dynamic IP a ddress with one or many dynamic DNS services so that anyone can cont act you (in applications such as NetMeeting and CU- SeeMe). Y ou[...]
-
Page 354
Chapter 19 Dy namic DNS Se tup P-2612HW Series User’s Guide 354 19.2 Configuring Dynamic DNS T o change your Z yXEL Device’ s DDNS, click Advanced > D ynamic DNS . The screen appears as shown. See Section 19.1 on page 353 for more information. Figure 208 Advanced > Dynamic DNS The following table describes t he fields in this screen. T ab[...]
-
Page 355
Chapter 19 Dynamic DNS Setup P-2612HW Series User’s Guide 355 Enable Wildcard Optio n Select the check box to enable DynDNS Wildcard. Enable off line optio n This option is available when CustomDNS is selected in the DDNS Type field. Check with your Dynam ic DNS service provider to have tr affic redirected to a URL (that you can specify) while yo[...]
-
Page 356
Chapter 19 Dy namic DNS Se tup P-2612HW Series User’s Guide 356[...]
-
Page 357
P-2612HW Series User’s Guide 357 C HAPTER 20 Remote Management Configuration 20.1 Overview Re mote management allows you to determi ne which services/protocols can acces s which Z yXEL Device interface (if any) fr om which computers.The following figure shows remote management of the Z yXE L Device coming in from the W AN. Figure 209 Remote Mana [...]
-
Page 358
Chapter 20 Remote Management Configuration P-2612HW Series User’s Guide 358 Y ou may onl y have one remote management session running at a time. The Z yXEL Device automatically disconnects a remote management session of lower pri ority when another remote management session of higher priori ty starts. The priori ties for the different types of re[...]
-
Page 359
Chapter 20 Remote Management Configuration P-2612HW Series User’s Guide 359 Remote Management and NA T When NA T is enabled: • Use the Z yXEL Device’ s WAN IP addr ess when co nfiguring fr om the W AN. • Use the Z yXEL Device’ s LAN IP ad dress when configuring from the LAN. System Timeout There is a default system management idle timeout[...]
-
Page 360
Chapter 20 Remote Management Configuration P-2612HW Series User’s Guide 360 20.3 The T elnet Screen Y ou can use T elnet to access the Z yXEL Device’ s command line interface. Specify which interfaces allow T elnet access an d from which IP address the access can come. Click Advanced > Remote MGMT > Telnet tab to disp lay the screen as sh[...]
-
Page 361
Chapter 20 Remote Management Configuration P-2612HW Series User’s Guide 361 20.4 The FTP Screen Y ou can use F TP (File T ransfer Protocol) to upload and download the Z yXEL Device’s firmware and config uration files, please see the User’ s Guid e chapter on firmware and configur ation file maintenance for details. T o use this feature, your [...]
-
Page 362
Chapter 20 Remote Management Configuration P-2612HW Series User’s Guide 362 20.5 The SNMP Screen Simple Network Manageme nt Protocol (SNM P) is a protocol used for exchanging management information between ne twork devices. SNMP is a member of the TCP/IP protocol suite. Y our Z yXEL Devi ce supports SNMP agent functionality , which allows a manag[...]
-
Page 363
Chapter 20 Remote Management Configuration P-2612HW Series User’s Guide 363 An agent is a management software module that resides in a ma naged de vice (th e Z yXEL Device). An agent translates the local management information from the managed device into a form compatible with SNMP . The manager is the console through which network administ rato[...]
-
Page 364
Chapter 20 Remote Management Configuration P-2612HW Series User’s Guide 364 20.5.1 Configuring SNMP T o change your Z yXEL Device’ s SNMP settings, click Advanced > Remote MGMT > SNMP . The screen appears as shown. Figure 214 Advanced > Remote Mana gement > SNMP The following table describes t he labels in this screen. 6a For intent[...]
-
Page 365
Chapter 20 Remote Management Configuration P-2612HW Series User’s Guide 365 20.6 The DNS Screen Use DNS (Domain Name S ystem) to map a domain name to i ts corresponding IP address and vice v ersa. R efer to Chapter 7 on page 121 for background informat ion. Click Advanced > Remote MGMT > DNS to chang e your Z yXEL Device’ s DNS settings. [...]
-
Page 366
Chapter 20 Remote Management Configuration P-2612HW Series User’s Guide 366 settings. This feature is not av ailabl e wh en the Z yXEL Device is set to bridge mode. Figure 215 Remote Manageme nt: DNS The following table describes t he labels in this screen. 20.7 The ICMP Screen T o change your Z yXEL Device’ s security settings, clic k Advanced[...]
-
Page 367
Chapter 20 Remote Management Configuration P-2612HW Series User’s Guide 367 Note: If you want your device to respon d to pings and requests for unauthorized services, you may also need to configure the firewall anti probing settings to match. Figure 216 Advanced > Remote Mana gement > ICMP The following table describes t he labels in this s[...]
-
Page 368
Chapter 20 Remote Management Configuration P-2612HW Series User’s Guide 368 Apply Click Apply to save your customized settings and exit this screen. Cancel Click Cancel to begin configuring this screen afresh. T able 125 Advanced > Remote Management > ICMP LABEL DESCRIPTION[...]
-
Page 369
P-2612HW Series User’s Guide 369 C HAPTER 21 Universal Plug-and-Play (UPnP) 21.1 Overview Universal Plug and Play (UPnP) is a d ist ributed, open networking standard that uses TCP/IP for simple peer -to-peer ne twork connec t iv ity be tween dev ic e s. A UPnP device can dynamically join a network, ob tain an IP address, convey i ts capabilities [...]
-
Page 370
Chapter 21 Universal Plug-and-Play (UPnP) P-2612HW Series User’s Guide 370 Windows Messenger is an example of an application that supports NA T tr aversal and UPnP . See the NA T chapter fo r more infor mation on NA T . Cautions with UPnP The automated nature of NA T trav ersal applications in establishing their own services and opening firewall [...]
-
Page 371
Chapter 21 Univers al Plug-and-Play (UPnP) P-2612HW Series User’s Guide 371 21.2 The UPnP Screen Click Advanc ed > UPnP to displ ay the screen shown next. See Section 21.1 on page 369 for more information. Figure 217 Advanced > UPnP > Gene ral The following table describes t he fields in this screen. 21.3 Inst alling UPnP in Windows Exam[...]
-
Page 372
Chapter 21 Universal Plug-and-Play (UPnP) P-2612HW Series User’s Guide 372 Inst alling UPnP in Windows Me Fol low the steps below to install the UPnP in Windows Me. 1 Click Start and Control Panel . Double-click Add/Remove Programs . 2 Click the Windows Setup tab and select Communication in the Components selection box. Click Details . Figure 218[...]
-
Page 373
Chapter 21 Univers al Plug-and-Play (UPnP) P-2612HW Series User’s Guide 373 3 In the Communications window , select the Universal Plug and Play check box in the Compone nts selection box. Figure 219 Add/Remove Progr ams: Windows Setup: Communication: Components 4 Click OK to go back to the Add/Remove Programs Properties window and click Next . 5 [...]
-
Page 374
Chapter 21 Universal Plug-and-Play (UPnP) P-2612HW Series User’s Guide 374 4 The Windows Optional Networking Components Wizard window displays. Select Networking Service in the Components selection bo x and clic k Details . Figure 221 Windows Optiona l Networking Components Wizard[...]
-
Page 375
Chapter 21 Univers al Plug-and-Play (UPnP) P-2612HW Series User’s Guide 375 5 In the Networking Services window , select the Universal Plug and Play check box. Figure 222 Networking Serv ices 6 Click OK to go back to the Windows Optional Networking Component Wizard window and click Next . 21.4 Using UPnP in Windows XP Example This section shows y[...]
-
Page 376
Chapter 21 Universal Plug-and-Play (UPnP) P-2612HW Series User’s Guide 376 2 Right- click the icon and select Properties . Figure 223 Network Conne ctions[...]
-
Page 377
Chapter 21 Univers al Plug-and-Play (UPnP) P-2612HW Series User’s Guide 377 3 In the Internet Connection Properties window , click Settings to see the por t mappings there were automatically created. Figure 224 Internet Co nnection Properties[...]
-
Page 378
Chapter 21 Universal Plug-and-Play (UPnP) P-2612HW Series User’s Guide 378 4 Y ou may edit or delete the port mappings or cl ick Add to manually add port mappings. Figure 225 Internet Co nnection Pro perties: Advanced Settings Figure 226 Internet Co nnection Properti es: Advanced Settings: Add 5 When the UPnP-enabled device is discon nected from [...]
-
Page 379
Chapter 21 Univers al Plug-and-Play (UPnP) P-2612HW Series User’s Guide 379 6 Select Show icon in notification area when connected option and click OK . An icon displays in the system tr ay . Figure 227 System T ray Icon 7 Double-click on the icon to display y o ur current In te rnet connection status. Figure 228 Internet Co nnection S t atus Web[...]
-
Page 380
Chapter 21 Universal Plug-and-Play (UPnP) P-2612HW Series User’s Guide 380 3 Select My Network Places under Other Places . Figure 229 Network Conne ctions 4 An icon with the description f or each UPnP-enabled device displays under Local Network .[...]
-
Page 381
Chapter 21 Univers al Plug-and-Play (UPnP) P-2612HW Series User’s Guide 381 5 Right- click on the icon for your Z yXEL Device and select Invoke . The web configurator login screen displays. Figure 230 Networ k Connections: My Ne two r k Places 6 Right- click on t he icon for y our Z yXEL Device and select Properties . A properties window displays[...]
-
Page 382
Chapter 21 Universal Plug-and-Play (UPnP) P-2612HW Series User’s Guide 382[...]
-
Page 383
383 P ART III Maintenance, T roubleshooting and S pecifications Sys te m ( 3 85 ) Logs (391) T ools (413) Diagnostic (433) T roubleshooting (437) Product Specifications (445)[...]
-
Page 384
384[...]
-
Page 385
P-2612HW Series User’s Guide 385 C HAPTER 22 System 22.1 Overview This chapter shows you how to configure system related settings, suc h as system time, password, name, the domain name an d the inactivity timeout interv al. 22.1.1 What Y ou Can Do in the System Settings Screens •U s e t h e General screen ( Section 22.2 on page 386 ) to configu[...]
-
Page 386
Chapter 22 Sy stem P-2612HW Series User’s Guide 386 22.2 The General Screen Use the General screen to configure system settings such as t he system and domain name, inactivity timeou t interval and system p assword. The System Name is for identification purposes. Ho wever , because some ISPs check this name you should enter your computer's &[...]
-
Page 387
Chapter 22 System P-2612HW Series User’s Guide 387 Administrator Inactivity Timer T ype how many minutes a manageme nt session (either via the web configurator or telnet) can be left id le before the session times out. The default is 5 minutes. After it times out you ha ve to log in with your password again. V ery long idle timeouts may ha ve sec[...]
-
Page 388
Chapter 22 Sy stem P-2612HW Series User’s Guide 388 22.3 The T ime Setting Screen T o change your Z yXEL Device’ s time and date, click Maintenance > System > Time Setting . The screen appears as shown. Use this screen to configure the Z yXEL Device’ s time based on y our local time zone. Figure 233 Maintenance > System > T ime Se[...]
-
Page 389
Chapter 22 System P-2612HW Series User’s Guide 389 New Time (hh:mm:ss) This field displays the last updated time from the time server or the last time configured manually . When you set Time and Date Setup to Manual , enter the new time in this field and then click Apply . New Date (yyyy/mm/dd) This field displays the last updated date from the t[...]
-
Page 390
Chapter 22 Sy stem P-2612HW Series User’s Guide 390 End Date Configure the day and time when Da ylight Saving Time ends if yo u selected Daylight Savings . T he o'clock field uses the 24 hour format. Here are a couple of examples: Daylight Sa ving Time ends in the United States on the first Sunday of November . Each time zone in the Un ited [...]
-
Page 391
P-2612HW Series User’s Guide 391 C HAPTER 23 Logs 23.1 Overview The web configurator allows y ou to choos e which categories of events and/o r alerts to hav e the Z yXEL Device log and then displa y the logs or have the Z yXEL Device send them to an administr ator (as e-mail) or to a syslog server . 23.1.1 What Y ou Can Do in the Log Screens •U[...]
-
Page 392
Chapter 23 L ogs P-2612HW Series User’s Guide 392 Log entries in red indicate alerts. The l o g wraps around and deletes the old entries after it fills. Click a column heading to sort the entries. A triangle indicates ascending or descending sort order . Figure 234 Maintenance > L ogs > View Lo g The following table describes t he fields in[...]
-
Page 393
Chapter 23 Logs P-2612HW Series User’s Guide 393 and/or immediate alerts the Z yXEL Device is to record. See Section 23.1 on page 391 for more information. T o change your Z yXEL Device’ s log settings, click Main tenance > Logs > Log Settings . The screen appears as shown. Alerts are e-mailed as soon as they happen. L og s m a y b e e- m[...]
-
Page 394
Chapter 23 L ogs P-2612HW Series User’s Guide 394 The following table describes t he fields in this screen. T able 130 Maintenance > Logs > Log Settings LABEL DESCRIPTION E-mail Log Settings Mail Server Enter the server name or the IP address of the mail server for the e-mail addresses specified below. If this field is left blank, logs and [...]
-
Page 395
Chapter 23 Logs P-2612HW Series User’s Guide 395 23.4 SMTP Error Messages If there are difficulties in sending e-ma i l the following error message appears. “SMTP action request failed. ret= ??". The “??"are described in the f ollowing table. 23.4.1 Example E-mail Log An "End of Log" message d isplays for each mail in w hi[...]
-
Page 396
Chapter 23 L ogs P-2612HW Series User’s Guide 396 •" End of Log " message shows that a complete log has been sent. Figure 236 E-mail Log Examp le 23.5 Log Descriptions This section provides descripti ons of example log messages. Subject: Firewall Alert From Date: Fri, 07 Apr 2000 10:05:42 From: user@zyxel.com To: user@zyxel.com 1| Apr[...]
-
Page 397
Chapter 23 Logs P-2612HW Series User’s Guide 397 FTP login failed Someone has failed to log on to the router via ftp. NAT Session Table is Full! The maximum number of NA T session table entries has been exceeded and the table is full. Starting Connectivity Monitor Starting Connectivity Monitor . Time initialized by Daytime Server The router got t[...]
-
Page 398
Chapter 23 L ogs P-2612HW Series User’s Guide 398 T able 134 Access Control Logs LOG MESSAGE DESCRIPTION Firewall default policy: [ TCP | UDP | IGMP | ESP | GRE | OSPF ] <Packet Direction> Attempted T CP/UDP/IGMP/ESP/GRE/OSPF access matched the default policy and was blocked or forwarded according to the default policy’ s setting. Firewal[...]
-
Page 399
Chapter 23 Logs P-2612HW Series User’s Guide 399 For type and code details, see T able 145 on page 402 . Exceed MAX incomplete, sent TCP RST The router sent a TCP reset packet when the number of incomplete connections (TCP and UDP) e xceeded the user-configured threshold. (Incomplete count is for all TCP and UDP connections through the firew all.[...]
-
Page 400
Chapter 23 L ogs P-2612HW Series User’s Guide 400 T able 138 CDR Logs LOG MESSAGE DESCRIPTION board %d line %d channel %d, call %d, %s C01 Outgoing Call dev=%x ch=%x %s The router received the setup requirements for a call. “call” is the reference (count) number of the call. “dev” is the device type (3 is for dial-up, 6 is for PPPoE, 10 i[...]
-
Page 401
Chapter 23 Logs P-2612HW Series User’s Guide 401 For type and code details, see T able 145 on page 402 . T able 142 Attack Logs LOG MESSAGE DESCRIPTION attack [ TCP | UDP | IGMP | ESP | GRE | OSPF ] The firewall detected a TCP/UDP/IGMP/ESP/GRE/OSPF attack. attack ICMP (type:%d, code:%d) The firewall detected an ICMP attack. land [ TCP | UDP | IGM[...]
-
Page 402
Chapter 23 L ogs P-2612HW Series User’s Guide 402 User logout because of user deassociation. The router logg e d out a user who ended the session. User logout because of no authentication response from user. The router logg ed out a user from which th ere was no authentication response. User logout because of idle timeout expired. The router logg[...]
-
Page 403
Chapter 23 Logs P-2612HW Series User’s Guide 403 4 Source Quench 0 A gateway may discard internet datagrams if it does not have the buffer space needed to queue the datagr ams for output to the next network on the route to the destination network. 5 Red i r e c t 0 R edirect datagrams for the Network 1 R edirect datagrams for the Host 2 Re direct[...]
-
Page 404
Chapter 23 L ogs P-2612HW Series User’s Guide 404 T able 147 SIP Logs LOG MESSAGE DESCRIPTION SIP Registration Success by SIP:SIP Phone Number The listed SIP account was successfully registered with a SIP register server . SIP Registration Fail by SIP:SIP Phone Number An attempt to register the listed SIP account with a SIP register server was no[...]
-
Page 405
Chapter 23 Logs P-2612HW Series User’s Guide 405 The following table shows RFC -2408 ISAKMP payload t ypes that the log displays. Please refer to RFC 2408 for detailed information on each type. T able 150 FSM Logs: Callee Side LOG MESSAGE DESCRIPTION VoIP Call Start from SIP[SIP Port Number] A V oIP phone call came to the Z yXEL Device from the l[...]
-
Page 406
Chapter 23 L ogs P-2612HW Series User’s Guide 406[...]
-
Page 407
P-2612HW Series User’s Guide 407 C HAPTER 24 Call History 24.1 Overview The Z yXEL Device keeps tr ack of when y ou use the phone ports for calls. 24.1.1 What Y ou Can Do in the Call History Screens •U s e t h e Summary screen ( Secti on 24.2 on page 407 ) to view a summary of the calls performed via the Z yXEL De vice within a certain per iod.[...]
-
Page 408
Chapter 24 Call History P-2612HW Series User’s Guide 408 The following table describes t he fields in this screen. 24.3 V iewing the Call History Click Maintenance > Call History > Call History to open the Call History screen. Use the Call History screen to see the details of the calls performed on the ZyXEL Device. The call history buffer [...]
-
Page 409
Chapter 24 Call History P-2612HW Series User’s Guide 409 The following table describes t he fields in this screen. 24.4 Configuring Call History Settings Use the Call History Settings screen to configure to where the ZyXEL Device is to send call records and the schedule for when the Z yXEL Device is to send or save the call records. T able 153 Ma[...]
-
Page 410
Chapter 24 Call History P-2612HW Series User’s Guide 410 T o change your Z yXEL Device’ s call history settings, click Maintenance > Call History > Call History Settings . The screen appears as shown. Figure 239 Maintenance > Call History > Call History Settings The following table describes t he fields in this screen. T able 154 Ma[...]
-
Page 411
Chapter 24 Call History P-2612HW Series User’s Guide 41 1 Enable SMTP Authentication SMTP (Simple Mail T ransfer Protocol) is the message-exchange standard for the Internet. SMTP enables you to move messages from one e-mail server to another . Select the check box to activ ate SMTP authentication if y our mail server requests you to log in to rec[...]
-
Page 412
Chapter 24 Call History P-2612HW Series User’s Guide 412 Ó Summary of Call History Settings Start Date of Every Month Select w hich day of a month (from 1 to 28) on which the “Last Month” summary of call history (displays in the Summary screen) starts. Apply Click Apply to save your customized settings and exit this screen. Cancel Click Canc[...]
-
Page 413
P-2612HW Series User’s Guide 413 C HAPTER 25 Tools Do not interrupt the file tr ansfer process as this may PERMANENTL Y DAMAGE your ZyXEL Device. 25.1 Overview Use the instructions in this chapter to ch ange the device’ s configuration file or upgrade i ts firmware. After you configure y our device, you can backup the configu ration file to a c[...]
-
Page 414
Chapter 25 To ols P-2612HW Series User’s Guide 414 arrives from Z yXEL with a “rom” filename extension . Once you have customized the Z yXEL Device's settings , they can be saved back to your computer under a filename of your choosing. Z yNOS (Z yXEL Network Oper ating S ystem sometimes referred to as the “ras” file) is the system fi[...]
-
Page 415
Chapter 25 Tools P-2612HW Series User’s Guide 415 1 The firewall is active (turn the firewal l off or create a firewall rule t o allow access from the WAN). 2 Y ou have disabled th e F TP service in the Rem ote Manageme nt screen. 3 The IP you entered in the Secured Client IP f ield does not match the client IP . If it does not match, the device [...]
-
Page 416
Chapter 25 To ols P-2612HW Series User’s Guide 416 FTP and TFTP Firmware and C onfiguration File Uploads These examples show you how to upload firmware and configuration files. Do not interrupt the file tr ansfer process as this may PERMANENTL Y DAMAGE your device. FTP is the preferred method for uploading t he firmware and conf iguration. T o us[...]
-
Page 417
Chapter 25 Tools P-2612HW Series User’s Guide 417 More commands (found in GUI-based FTP clients) are listed in this chapter . Ref e r t o Section 25.1.2 on page 413 to read about configurations that disallow TFTP and FT P over WAN. TFTP File Upload The device also supports the uploading of firmware files using TFTP (T rivial File T r a n s f e r [...]
-
Page 418
Chapter 25 To ols P-2612HW Series User’s Guide 418 Using the FTP Commands to Back Up Configuration 1 Launch the F TP client on your computer . 2 Enter “ open ” , followed by a space and the IP address of your Z yXEL Device. 3 Press [ENTER] when prompted for a username. 4 Enter y our password as requ ested (the defaul t is “1234”). 5 Enter[...]
-
Page 419
Chapter 25 Tools P-2612HW Series User’s Guide 419 Configuration Backup Usin g GUI-based FTP Clients The following table describes some of the commands that you may see in GUI - based FTP clients. Backup Configurat ion Using TFTP The Z yXEL Device supports the up/downloading of the firmware and the configu ration fi le using T F TP (T rivial F ile[...]
-
Page 420
Chapter 25 To ols P-2612HW Series User’s Guide 420 Note that the telnet connecti on must be active before and during the TFTP transfer . For details on TFTP commands (see following example), please consult the documentation of your TFTP client pro gram. For UNIX, use “ get ” to tr ansfer from the Z yXEL Device to the computer an d “binary?[...]
-
Page 421
Chapter 25 Tools P-2612HW Series User’s Guide 421 Do NOT turn off the ZyXEL Devi ce while firmware upload is in progress! Figure 243 Maintenance > T ools > Firmware Upgrade The following table describes t he labels in this screen. T able 158 Maintenance > T ools > Firmware Upgrade LABEL DESCRIPTION Current Firmware Ve r s i o n This i[...]
-
Page 422
Chapter 25 To ols P-2612HW Series User’s Guide 422 After you see the Firmware Upload in Progress screen, wait two minutes before logging into the Z yXEL Devi ce again. Figure 244 Firmware Upload In Progre ss The Z yXEL Device automatically restarts in this time causing a temporary network disconnect. In some oper ating systems, y ou may see the f[...]
-
Page 423
Chapter 25 Tools P-2612HW Series User’s Guide 423 25.3 The Configuration Screen See Section 25.5 on page 426 and Section on page 415 for transferring configu ration fi le s using F TP/ TF TP commands. Click Maintenance > Tools > Configurat ion . Information related to factory defaults, backup configuration, and restor ing configuration appe[...]
-
Page 424
Chapter 25 To ols P-2612HW Series User’s Guide 424 Restore Configuration Re store Configur ation allows yo u to upload a new or previously saved configur ation file from your computer to y our Z yXEL Device. Do not turn off the ZyXEL Device wh ile configuration file upload is in progress. After you see a “restore configuration successf ul” sc[...]
-
Page 425
Chapter 25 Tools P-2612HW Series User’s Guide 425 If the upload was not successful, the following screen will appear . Click Return to go back to the Configuration screen. Figure 250 Configuratio n Upload E rror 25.3.1 Reset to Factory Default s Click the Reset button to clear all user-enter ed configur ation information and return the Z yXEL Dev[...]
-
Page 426
Chapter 25 To ols P-2612HW Series User’s Guide 426 25.4 Rest art System restart allows you to reboot th e Z yXEL Device without turning the power off . Click Maintenance > Too ls > Restart . Click Restart to have the ZyXEL Device reboot. This does not affect the ZyXEL Device's configur ation. Figure 253 Maintenance > T ools > Res[...]
-
Page 427
Chapter 25 Tools P-2612HW Series User’s Guide 427 25.5.2 FTP Command Configuration Backup Example This figure giv es an example of usin g FTP commands from the DOS command prompt to sav e your device’ s configuration onto y our computer . Figure 254 FTP Session Example 25.5.3 Configuration Backup Using GUI-based FTP Client s The following table[...]
-
Page 428
Chapter 25 To ols P-2612HW Series User’s Guide 428 T o u se TFTP , your computer must have both telnet and TFTP clie nts. T o backup the configuration file , f o ll ow t he p roc ed ure shown next. 1 Use telnet from your computer to connect to the ZyXEL Device and log in. Bec ause TFTP does not have any security checks, the ZyXEL Device records t[...]
-
Page 429
Chapter 25 Tools P-2612HW Series User’s Guide 429 25.5.6 Configuration Backup Using GUI-based TFTP Client s The following table describes some of th e fields that y o u ma y see in GUI-based TFTP clients. Ref e r t o Section on page 414 to read about configurations that disallow TFTP and FTP ov er W AN . 25.6 Using FTP or TFTP to Restore Configur[...]
-
Page 430
Chapter 25 To ols P-2612HW Series User’s Guide 430 25.6.1 Restore Using FTP Session Example Figure 255 Restore Using FTP Session Example Ref e r t o Section on page 414 to read about configurations that disallow TFTP and FTP ov er W AN . 25.7 FTP and TFTP Firmware and Configuration File Uploads This section shows y ou how to upload firmw are and [...]
-
Page 431
Chapter 25 Tools P-2612HW Series User’s Guide 431 6 Use “put” to transfer files from the comp uter to the device, for example, “put firmware.bin r as” tr ansfers the firmwa re on your computer (fi rmware.bin) to the device and renames it “r as” . Similarly , “put config.rom rom-0” tr ansfers the configur ati on file on your comput[...]
-
Page 432
Chapter 25 To ols P-2612HW Series User’s Guide 432 2 Enter the command “sys stdio 0” to disabl e the management idle timeout, so the TFTP transfer will not be interrupted. En ter “command sys stdio 5” to restore t he five-minute management idl e timeout (defau lt) when the fil e t ransfer is c o m p lete. 3 Launch the TF TP client on your[...]
-
Page 433
P-2612HW Series User’s Guide 433 C HAPTER 26 Diagnostic 26.1 Overview These read-only screens display information to help y ou identify problems with the Zy X E L D e v i c e . 26.1.1 What Y ou Can Do in the Diagnostic Screens •U s e t h e General Diagnostic screen ( Section 26.2 on pa ge 433 ) to ping an IP address. •U s e t h e DSL Line Dia[...]
-
Page 434
Chapter 26 Diagnostic P-2612HW Series User’s Guide 434 The following table describes t he fields in this screen. 26.3 The DSL Line Diagnostic Screen Click Maintenance > Diagnostic > DSL Line to open the screen shown next. This screen is not av ai lable when you set the W AN mode to Ethernet WAN in the WAN > Internet Access Setup screen u[...]
-
Page 435
Chapter 26 Diagnostic P-2612HW Series User’s Guide 435 The following table describes t he fields in this screen. T able 163 Maintenance > Diagnostic > DSL Line LABEL DESCRIPTION AT M S t a t u s Click th is button to view your DSL conn ection’ s Asynchronous T ransfer Mode (A TM) statistics. A TM is a netw orking technology that provides [...]
-
Page 436
Chapter 26 Diagnostic P-2612HW Series User’s Guide 436 DSL Line Status Click this button to view statistics about the DSL connections. noise margin downstream is the signal to noise ratio for the downstream part of the connection (coming into the Z yXEL Device from the ISP). It is measured in decibels. The higher the number the more signal and le[...]
-
Page 437
P-2612HW Series User’s Guide 437 C HAPTER 27 Troubleshooting 27.1 Overview This chapter offers some suggesti ons to solv e problems y ou might encounter . The potential problems are divided into the following categories . • P ower , Hardware Connections, and LEDs • Z yXEL Device Access and Login • Internet Access • Phone Calls and VoIP 27[...]
-
Page 438
Chapter 27 Tro u blesh oo tin g P-2612HW Series User’s Guide 438 1 Make sure you understand the n ormal behavior of the LED. See Section 1.4 on page 28 . 2 Check the hardware connections. See the Quick Start Guide. 3 Inspect your cables for damage. Cont act the vendor to replace any damaged cables. 4 T urn the Zy XEL Device off and on. 5 If the p[...]
-
Page 439
Chapter 27 Troubleshooting P-2612HW Series User’s Guide 439 3 Make s u r e you r I nter net br ows er d o es not block pop-up windows and has Jav aScripts and Jav a enabled. See Appendix B on page 485 . 4 If you disabled Any IP ( Section 7.2.1 on page 124 ), ma ke s ur e you r c omp ut er is in the same subnet as the Z yXEL Device . (If you know [...]
-
Page 440
Chapter 27 Tro u blesh oo tin g P-2612HW Series User’s Guide 440 I cannot T elnet to the ZyXEL Device. See the troubleshooting suggestions for I cannot see or access the Login screen in the web configu rator . Ignore the suggestions about your browser . I cannot use FTP to upload / download the configuration fi le. / I cannot use FTP to upload ne[...]
-
Page 441
Chapter 27 Troubleshooting P-2612HW Series User’s Guide 441 2 T urn the Zy XEL Device off and on. 3 If the problem continues, contac t your ISP . The Internet conn ection is slow or intermittent. 1 There might be a lot of traffic on the network. Look at the LEDs, and check Section 1.4 on page 28 . If the Z y XEL Device is sending or receiving a l[...]
-
Page 442
Chapter 27 Tro u blesh oo tin g P-2612HW Series User’s Guide 442 1 The PHONE light should come on. Make sure th at your telephone is connected to the PHONE port. 2 Y ou can also check the V oIP status in the Status screen. 3 If the V oIP settings are correct, use speed dial to make peer -to-peer calls. If you can make a call usi ng speed dial, th[...]
-
Page 443
Chapter 27 Troubleshooting P-2612HW Series User’s Guide 443 In the next example, phone port 1 is co nf igured to use SIP account 1 and phone port 2 is configured to use SIP account 2. In this case, ev ery time you place a call through phone port 1, you are using y our SIP account 1. Similarly , every time y ou place a call through phone port 2, y[...]
-
Page 444
Chapter 27 Tro u blesh oo tin g P-2612HW Series User’s Guide 444 SIP account 2, the phones co nnected to b o th phone port 1 and phone port 2 ring. In either case you are not sure which SIP account the ca ll is com ing from. Figure 261 Incoming Calls: Default In the next example, phone port 1 is co nf igured to use SIP account 1 and phone port 2 [...]
-
Page 445
P-2612HW Series User’s Guide 445 C HAPTER 28 Product Specifications The following tables summarize the Z yXEL Device’ s hardware and firm ware features. Hardware Specifications T able 164 Hardware Specifications Dimensions (218 W) x (144 D) x (40 H) mm We i g h t 46 0 g P ower Specification 18V 1A DC Built-in S witch Four auto-negotiating, auto[...]
-
Page 446
Chapter 28 Product Specifications P-2612HW Series User’s Guide 446 Firmware S pecifications T able 165 Firmware Specifications Default IP Address 192.168.1.1 Default Subnet Mask 255.255.2 55.0 (24 bits) Default User Name admin DHCP Server IP P ool Starting Ad dress: 19 2.168.1.33 Size: 32 Static DHCP Addresses 10 Content Filtering W e b page bloc[...]
-
Page 447
Chapter 28 Product Specifications P-2612HW Series User’s Guide 447 IP Multicast IP multicast is used to send traffic to a specific group o f computers. The Z yXEL Device supports versions 1 and 2 of IGMP (Internet Group Management Protocol) used to join multicast groups (see RFC 2236). Time and Date Get the current time and date from an external [...]
-
Page 448
Chapter 28 Product Specifications P-2612HW Series User’s Guide 448 Multiple PVC (P ermanent Virtual Circuits) Support Y our device supports one Permanent Virtual Circuits (PVCs). IP Alias IP alias allows you to partition a physical network into logical networks over the same Ethernet interface. Y our device supports three logical LAN interfaces v[...]
-
Page 449
Chapter 28 Product Specifications P-2612HW Series User’s Guide 449 V oice Specifications Note: T o take full advant age of the supplement ary phone services available through the ZyXEL Device's phone port, you may need to subscribe to the se rvices from your V oIP service provider . Note: Not all features are sup ported by al l service provi[...]
-
Page 450
Chapter 28 Product Specifications P-2612HW Series User’s Guide 450 T able 166 Voice Features Call Park and Pickup Call park and pickup lets you put a call on hold (park) and then continue the call (pickup). The caller must still pay while the call is parked. When you park the call, you enter a number of your choice (up to eight digits), which you[...]
-
Page 451
Chapter 28 Product Specifications P-2612HW Series User’s Guide 451 Call forwarding With this feature, you can set the Z yXEL Device to forward calls to a specified number , either unconditio nally (always), when your num ber is busy , or when you do not answer . Y ou can also forward in coming calls from one specified number to another . Caller I[...]
-
Page 452
Chapter 28 Product Specifications P-2612HW Series User’s Guide 452 Wireless Features SIP ALG Y our device is a SIP Application Layer Gateway (AL G). It allows V oIP calls to pass through NA T for devices behind it (such as a SIP-based V oIP software application on a computer). Other Voice Fea t u r e s SIP version 2 (Session Initiatiion Protocol [...]
-
Page 453
Chapter 28 Product Specifications P-2612HW Series User’s Guide 453 The following list, which is not exhaust ive , illust rates the standards supported in the ZyXEL Device. WPS Wi-Fi Protected Setup Other Wireless F eatures IEEE 802.11g Compliance Frequency Range: 2.4 GHz ISM Band Advanced Orthogonal Freque ncy Division Multiplexing (OFDM) Data Ra[...]
-
Page 454
Chapter 28 Product Specifications P-2612HW Series User’s Guide 454 Power Adaptor Specifications RFC 2408 Internet Security Association and K ey Management Protocol (ISAKMP) RFC 2516 A Method for T ransmitting PPP Over Ethernet (PPPoE) RFC 2684 Multiprotocol Encapsulation over A TM Adaptation Layer 5. RFC 2766 Network Address T ranslation - Protoc[...]
-
Page 455
Chapter 28 Product Specifications P-2612HW Series User’s Guide 455 W all-mounting Instructions Do the following to hang y our Z yXEL Device on a wal l. Note: See T able 164 on page 445 for the size of scre ws to use and how far apar t to place them. 1 Locate a high position on a w all that is free of obstructions. Use a sturdy w all. 2 Drill two [...]
-
Page 456
Chapter 28 Product Specifications P-2612HW Series User’s Guide 456 The following are dimensions of an M4 tap screw and masonry plug used for wall mounting. All measurements are in millimeters (mm). Figure 264 Masonry Plug an d M4 T ap Screw[...]
-
Page 457
457 P ART IV Appendices and Index Setting Up Y our Computer ’ s IP Address (459) P op-up Windows, Jav aScripts and Java P ermissions (485) IP Addresses and Subnetting (495) Wireless LANs (507) Common Services (531) Legal Information (535) Index (537)[...]
-
Page 458
458[...]
-
Page 459
P-2612HW Series User’s Guide 459 A PPENDIX A Setting Up Y our Computer ’ s IP Address Note: Y our specific ZyXEL device ma y not support all of the operating systems described in this appendix. See the produc t specifications for mo re information about which operating systems are sup ported. This appendix shows you how to conf igure the IP set[...]
-
Page 460
Appendix A Se tting Up Your Computer’s IP Addres s P-2612HW Series User’s Guide 460 1 Click Start > Control Panel . Figure 265 Windows XP: S tart Menu 2 In the Control Panel , click the Network Connections icon. Figure 266 Windows XP: Control Panel[...]
-
Page 461
Appendix A Setting Up Your Computer’s IP Address P-2612HW Series User’s Guide 461 3 Right- click Local Area Connection and then select Properties . Figure 267 Windows XP: Control Panel > Ne twork Connections > Properties 4 On the General tab, select Internet Protocol (TCP/IP) and then click Properties . Figure 268 Windows XP: Local Area C[...]
-
Page 462
Appendix A Se tting Up Your Computer’s IP Addres s P-2612HW Series User’s Guide 462 5 The Internet Protocol TCP/IP Properties window opens. Figure 269 Windows XP: Internet Protocol (T CP/IP) Properties 6 Select Obtain an IP address automatically if your network admi nistrator or ISP assigns your IP addres s dynamically . Select Use the followin[...]
-
Page 463
Appendix A Setting Up Your Computer’s IP Address P-2612HW Series User’s Guide 463 2 In the Command Prompt window , type "ipconfi g" and then press [ENTER]. Y ou can also go to Start > Control Panel > Network Connections , right-click a network connection , click Sta tus and then click the Support tab to view your IP address and [...]
-
Page 464
Appendix A Se tting Up Your Computer’s IP Addres s P-2612HW Series User’s Guide 464 3 Click the Network and Sharing Center icon. Figure 272 Windows V ista: Network And Internet 4 Click Manage network conne ctions . Figure 273 Windows V ista: Network and Sharing Center 5 Right- click Local Area Connection and then select Properties . Figure 274 [...]
-
Page 465
Appendix A Setting Up Your Computer’s IP Address P-2612HW Series User’s Guide 465 6 Select Internet Protocol Version 4 (TCP/IPv4) and then select Properties . Figure 275 Windows V ista: Local Area Connection Properties[...]
-
Page 466
Appendix A Se tting Up Your Computer’s IP Addres s P-2612HW Series User’s Guide 466 7 The Internet Protocol Versio n 4 (TCP/IPv4) Properties window opens. Figure 276 Windows V ista: Intern et Protocol V ersion 4 (TCP/IPv4) Properties 8 Select Obtain an IP address automatically if your network admi nistrator or ISP assigns your IP addres s dynam[...]
-
Page 467
Appendix A Setting Up Your Computer’s IP Address P-2612HW Series User’s Guide 467 2 In the Command Prompt window , type "ipconfi g" and then press [ENTER]. Y ou can also go to Start > Control Panel > Network Connections , right-click a network connection , click Sta tus and then click the Support tab to view your IP address and [...]
-
Page 468
Appendix A Se tting Up Your Computer’s IP Addres s P-2612HW Series User’s Guide 468 2 In the System Preferences window , click the Network icon. Figure 278 Mac OS X 10.4: System Pr eferences 3 When the Network preferences pane opens, select Built-in Ethernet from the network connection type list, and then click Configure. Figure 279 Mac OS X 10[...]
-
Page 469
Appendix A Setting Up Your Computer’s IP Address P-2612HW Series User’s Guide 469 4 For d ynamically assigned settings, select Using DHCP from the Configure IPv4 list in the TCP/IP tab. Figure 280 Mac OS X 10.4: Network Preferences > TCP/IP T ab. 5 For s tatically assigned settings, do t he following: •F r o m t h e Configure IPv4 list, se[...]
-
Page 470
Appendix A Se tting Up Your Computer’s IP Addres s P-2612HW Series User’s Guide 470 •I n t h e Router field, t ype the IP address of your device. Figure 281 Mac OS X 10.4: Network Preferences > Ethernet 6 Click Apply Now and close the window . V erifying Settings Check your TCP/IP properties by clicking Applications > Utilities > Net[...]
-
Page 471
Appendix A Setting Up Your Computer’s IP Address P-2612HW Series User’s Guide 471 Mac OS X: 10.5 The screens in this section are from Mac OS X 10.5. 1 Click Apple > System Preferences . Figure 283 Mac OS X 10.5: Apple Menu 2 In System Preferences , click the Net work icon. Figure 284 Mac OS X 10.5: Systems Preferences[...]
-
Page 472
Appendix A Se tting Up Your Computer’s IP Addres s P-2612HW Series User’s Guide 472 3 When the Network preferences pane opens, select Ethe rnet from the list of available conn ecti on ty pes. Figure 285 Mac OS X 10.5: Network Preferences > Ethernet 4 From the Configure lis t, sele ct Using DHCP for dynamically assigned settings. 5 For s tati[...]
-
Page 473
Appendix A Setting Up Your Computer’s IP Address P-2612HW Series User’s Guide 473 •I n t h e Router field, enter the IP address of your Z yXEL Device. Figure 286 Mac OS X 10.5: Network Preferences > Ethernet 6 Click Apply and close the wi nd ow .[...]
-
Page 474
Appendix A Se tting Up Your Computer’s IP Addres s P-2612HW Series User’s Guide 474 V erifying Settings Check your TCP/IP properties by clicking Applications > Utilities > Network Utilities , and then selecting the appropriat e Network interface from the Info tab. Figure 287 Mac OS X 10.5: Network Utility Linux: Ubuntu 8 (GNOME) This sect[...]
-
Page 475
Appendix A Setting Up Your Computer’s IP Address P-2612HW Series User’s Guide 475 1 Click System > Administration > Network . Figure 288 Ubuntu 8: System > Administration Menu 2 When the Network Settings wi ndow opens, click Unl ock to open the Authenticate window . (By default, the Unloc k button is greyed out until clicked. ) Y ou ca[...]
-
Page 476
Appendix A Se tting Up Your Computer’s IP Addres s P-2612HW Series User’s Guide 476 3 In the Authenticate window , enter your admin a ccount name and password then click the Authenticate button. Figure 290 Ubuntu 8: Administrator Account Authentication 4 In the Network Settings window , select the connection that you wa nt to configure, then cl[...]
-
Page 477
Appendix A Setting Up Your Computer’s IP Address P-2612HW Series User’s Guide 477 5 The Properties dialog box opens. Figure 292 Ubuntu 8: Network Settings > Properties •I n t h e Configuration list, select Automatic Configuration (DHCP) if you have a dynamic IP address. •I n t h e Configuration li st, select Static IP address if you hav [...]
-
Page 478
Appendix A Se tting Up Your Computer’s IP Addres s P-2612HW Series User’s Guide 478 7 If you know yo ur DNS server IP address(es), click the DNS tab in the Net work Settings window and then enter the DNS se rv er information in the fields provided. Figure 293 Ubuntu 8: Network Settings > DNS 8 Click the Close button to apply the changes. V e[...]
-
Page 479
Appendix A Setting Up Your Computer’s IP Address P-2612HW Series User’s Guide 479 tab. The Interface Statistics column shows data if your connection is working properly . Figure 294 Ubuntu 8: Network T ools Linux: openSUSE 10.3 (KDE) This section shows y ou how to configure y o ur computer’s T CP/IP settings in the K Desktop Environment (KDE)[...]
-
Page 480
Appendix A Se tting Up Your Computer’s IP Addres s P-2612HW Series User’s Guide 480 1 Click K Menu > Computer > Administrator Se ttings (YaST) . Figure 295 openSUSE 10.3: K Menu > Computer Menu 2 When the Run as R oot - KDE su dialog opens, enter the admin password and click OK . Figure 296 openSUSE 10.3: K Menu > Computer Menu[...]
-
Page 481
Appendix A Setting Up Your Computer’s IP Address P-2612HW Series User’s Guide 481 3 When the YaST Contro l Center window opens, select Network Devices and then clic k the Network Card icon. Figure 297 openSUSE 10.3: Y aST Control Center 4 When the Network Settings window opens, click the Overview tab, select the appropriate connection Name from[...]
-
Page 482
Appendix A Se tting Up Your Computer’s IP Addres s P-2612HW Series User’s Guide 482 5 When the Network Card Setup window opens, click the Address tab Figure 299 openSUSE 10.3: Ne twork Card Setup 6 Select Dynamic Address (DHCP) if you ha ve a dynamic IP add ress. Select Statically assigned IP Address if y ou ha ve a static IP address. Fill in t[...]
-
Page 483
Appendix A Setting Up Your Computer’s IP Address P-2612HW Series User’s Guide 483 8 If you know yo ur DNS server IP address(es), click the Hostname/DNS tab in Network Settings and then enter the DNS server informat ion in the fields provided. Figure 300 openSUSE 10.3: Ne twork Settings 9 Click Finish to sa ve your settings and close the window [...]
-
Page 484
Appendix A Se tting Up Your Computer’s IP Addres s P-2612HW Series User’s Guide 484 V erifying Settings Click the KNetwork Manager icon on the Task bar t o check your T CP/IP properties. From the Option s sub-m enu, se lect Show Connection Information . Figure 301 openSUSE 10.3: KNet work Manager When the Connection Statu s - KNetwork Manager w[...]
-
Page 485
P-2612HW Series User’s Guide 485 A PPENDIX B Pop-up Windows, JavaScript s and Java Permissions In order to use the web configurator yo u need to allow: • W eb browser pop-up wind ows from your device. • Jav aScripts (enabled by default). • Jav a permissions (enabled by default). Note: Internet Explorer 6 screens are used here . Screens for [...]
-
Page 486
Appendix B Po p-up Wind ows, JavaS cripts and Ja va Permission s P-2612HW Series User’s Guide 486 1 In Internet Explorer , select Tools , Internet Options , Privacy . 2 Clear the Block pop-ups check box in the Pop-up Blocker sect ion of the screen. This disables an y web pop-up block ers you may have enabled. Figure 304 Internet Options: Privacy [...]
-
Page 487
Appendix B Pop-up Windows, JavaScripts and Java Permissions P-2612HW Series User’s Guide 487 2 Select Settings… to open the Pop-up Blocker Settings screen. Figure 305 Internet Options: Privacy 3 T ype the IP address of y our device (the web page that you do not want to have blocked) wi th the prefix “http://” . For example, http://192.168.1[...]
-
Page 488
Appendix B Po p-up Wind ows, JavaS cripts and Ja va Permission s P-2612HW Series User’s Guide 488 4 Click Add to mo ve the IP address to the list of Allowed sites . Figure 306 Pop-up Blo cker Settings 5 Click Close to return to the Privacy screen. 6 Click Apply to save this setting. JavaScript s If pages of the web configur ator do not display pr[...]
-
Page 489
Appendix B Pop-up Windows, JavaScripts and Java Permissions P-2612HW Series User’s Guide 489 1 In Internet Explorer , click Tools , Internet Options and then the Security tab. Figure 307 Internet Options: Secu rity 2 Click the Custom Level... button . 3 Scroll down to Scriptin g . 4 Under Active scripting make sure that Enable is selected (the de[...]
-
Page 490
Appendix B Po p-up Wind ows, JavaS cripts and Ja va Permission s P-2612HW Series User’s Guide 490 6 Click OK to close the window . Figure 308 Security Settings - Java Scripting Java Permissions 1 From Internet Explorer , click Tools , Internet Options and then the Security tab. 2 Click the Custom Level... button . 3 Scroll down to Microsoft VM . [...]
-
Page 491
Appendix B Pop-up Windows, JavaScripts and Java Permissions P-2612HW Series User’s Guide 491 5 Click OK to close the window . Figure 309 Security Settings - Java JA V A (Sun) 1 From Internet Explorer , click Tools , Internet Options and then the Advanced tab. 2 Make sure that Use Java 2 for <applet> under Java (S un) is selected.[...]
-
Page 492
Appendix B Po p-up Wind ows, JavaS cripts and Ja va Permission s P-2612HW Series User’s Guide 492 3 Click OK to close the window . Figure 310 Java (Sun) Mozilla Firefox Mozilla Firefo x 2.0 screens are used here . Screens for other versions ma y vary . Y ou can enable Java, Java scripts and pop-ups in one screen. Click Tools, then click Options i[...]
-
Page 493
Appendix B Pop-up Windows, JavaScripts and Java Permissions P-2612HW Series User’s Guide 493 Click Content .to show the screen below. Select the chec k boxes as shown in the following screen. Figure 312 Mozilla Firefox Content Security[...]
-
Page 494
Appendix B Po p-up Wind ows, JavaS cripts and Ja va Permission s P-2612HW Series User’s Guide 494[...]
-
Page 495
P-2612HW Series User’s Guide 495 A PPENDIX C IP Addresses and Subnetting This appendix introduces IP addresses and subnet masks. IP addresses identify indi vidual devices on a network. Every networking device (such as computers, serv ers, routers, and printers) needs an IP address to communicate across the netw ork. These networking devices are a[...]
-
Page 496
Appendix C IP Addresses a nd Subnetti ng P-2612HW Series User’s Guide 496 The following figure shows an example IP address in which the first three octets (192.168.1) are the network number , and the fourth octet (16) is the host ID . Figure 313 Network Number and Host ID How much of the IP address is the networ k number and how much is the host [...]
-
Page 497
Appendix C IP Addresses and Subnetting P-2612HW Series User’s Guide 497 By conv ention, subnet masks alw ays cons ist of a continuous sequence of ones beginning from the leftmost bit of the mask, followed by a continuous sequence of zeros, for a total number of 32 bits. Subnet masks can be referred to by the size of the network number part (the b[...]
-
Page 498
Appendix C IP Addresses a nd Subnetti ng P-2612HW Series User’s Guide 498 Not ation Since the mask is alw ays a continuo us number of ones beginning f rom the left, followed by a continuous number of zeros for the remainder of the 32 bit mask, you can simply specif y the number of ones instead of writing the v alue of each octet. Th is is us ua l[...]
-
Page 499
Appendix C IP Addresses and Subnetting P-2612HW Series User’s Guide 499 The following figure shows the company network before subnetting. Figure 314 Subnetting Example: Before Subnetting Y ou can “borrow” one of the host ID bits to divide the net work 192.168.1.0 into two separate sub-networks. The subnet mask is now 25 bits (25 5.255.255.128[...]
-
Page 500
Appendix C IP Addresses a nd Subnetti ng P-2612HW Series User’s Guide 500 The following figure shows the company network after subnet ting. There are now two sub-n etworks, A and B . Figure 315 Subnetting Example: Af ter Subnetting In a 25-bit subnet the host ID has 7 bits , so each sub-net work has a maximum of 2 7 – 2 or 126 possibl e hosts ([...]
-
Page 501
Appendix C IP Addresses and Subnetting P-2612HW Series User’s Guide 501 Each subnet contains 6 host ID bit s, giving 2 6 - 2 or 62 hosts for each subnet (a host ID of all zeroes i s the subnet it self , all ones is the subnet’s broadcast address). T able 174 Subnet 1 IP/SUBNET MASK NETWORK NUMBER LAST OCTET BIT VA L U E IP Address (Decimal) 192[...]
-
Page 502
Appendix C IP Addresses a nd Subnetti ng P-2612HW Series User’s Guide 502 Example: Eight Subnet s Similarly , use a 27-bit mask to create eight subnets (000, 001, 010, 011, 100, 101, 110 and 111). The following table shows IP address last octet values for each sub net. Subnet Planning The following table is a summary for subnet planning on a netw[...]
-
Page 503
Appendix C IP Addresses and Subnetting P-2612HW Series User’s Guide 503 Configuring IP Addresses Where you obtain your network number depends on your particular situation. If the ISP or your network administrat or assigns you a block of registered IP addresses, follow their instructions i n selecting th e IP addresse s and the sub net mask. If th[...]
-
Page 504
Appendix C IP Addresses a nd Subnetti ng P-2612HW Series User’s Guide 504 Private IP Addresses Every machine on the In ternet must ha ve a uni que address. If your ne tworks are isolated from the Internet (running only between two br anch offices, for example) you can assign an y IP addresses to the hosts without problems. However , the Internet [...]
-
Page 505
Appendix C IP Addresses and Subnetting P-2612HW Series User’s Guide 505 address to computer A or setting computer A to obtain an IP address automatically . Figure 316 Conflicting Compute r IP Addres ses Exam ple Conflicting Router IP Addresses Example Since a router connects different networks, it must have inte rface s using diffe rent network n[...]
-
Page 506
Appendix C IP Addresses a nd Subnetti ng P-2612HW Series User’s Guide 506 The computer cannot access the Internet. This prob lem can be solved by assigning a different IP address to t he computer or the router ’ s LAN port. Figure 318 Conflicting Compu ter and Router IP Addresses Example[...]
-
Page 507
P-2612HW Series User’s Guide 507 A PPENDIX D W ireless LANs Wireless LAN T opologies This section discuss es ad-hoc and infr astructure wi reless LAN topologies. Ad-hoc Wireless LAN Configuration The simplest WLAN configur ation is an in depend ent (Ad-hoc) WLAN that connect s a set of computers with wireless adapters (A, B, C). An y time two or [...]
-
Page 508
Appendix D Wireless LANs P-2612HW Series User’s Guide 508 with each other . When Intra-BS S is disabled, wireless cli ent A and B can still access the wired network but cannot communicate with eac h other . Figure 320 Basic Service Set ESS An Extended Service Set (ESS) c onsists of a series of overlapping BS Ss, each containing an access point, w[...]
-
Page 509
Appendix D Wireless LANs P-2612HW Series User’s Guide 509 An ESSID (ES S IDentification) uniquely id entifies each ESS . All access points and their associated wirel ess clients within the same ESS must have the same ESSID in order to comm u nicate. Figure 321 Infrastructure WLAN Channel A channel is the r adio frequency(i es) used by wireless de[...]
-
Page 510
Appendix D Wireless LANs P-2612HW Series User’s Guide 510 wireless gatewa y , but out-of -range of ea ch other , so they canno t "hear" each other , that is they do not know if the channel is currently being used. Therefore, they are consider ed hi dden from each other . Figure 322 RTS / C T S When station A sends data to the AP , it mi[...]
-
Page 511
Appendix D Wireless LANs P-2612HW Series User’s Guide 51 1 Fragment ation Threshold A Fragmentation Threshold is the maximum data fr agment size (between 256 and 2432 bytes) that can be sent in th e wireless network before the AP will fragment the packet into smaller dat a frames. A large Fragmentation Threshold is recommended for networks not pr[...]
-
Page 512
Appendix D Wireless LANs P-2612HW Series User’s Guide 512 sever al intermediate rate steps between the maximum and minimum data r ates. The IEEE 802.11g data rate and modulation are as follows: Wireless Security Overview Wireless security is vital to your ne twork to protect wireless communication between wireless client s, ac ce ss points and t [...]
-
Page 513
Appendix D Wireless LANs P-2612HW Series User’s Guide 513 IEEE 802.1x In June 2001, the IEEE 802.1x standard w a s designed to extend the features of IEEE 802.11 to support extended authentica tion as well as providing addi tional accounting and control features. It is su pported by Windows XP and a number of network devices. Some advantages of I[...]
-
Page 514
Appendix D Wireless LANs P-2612HW Series User’s Guide 514 • Access-Challeng e Sent by a RADIUS server requesting more information in order to allow access. The access point sends a proper response from the user and then sends another Access- Request message . The following types of RADIUS messages are exchanged between the access point and the [...]
-
Page 515
Appendix D Wireless LANs P-2612HW Series User’s Guide 515 However , MD5 authen tication h as some weaknesses. Since the authentication server needs to get the plaintext password s, t he p assword s must be stored. Thus someone other th an the authent ic a ti on serve r may access th e p as sw ord file. In addition, it is possible to impersonate a[...]
-
Page 516
Appendix D Wireless LANs P-2612HW Series User’s Guide 516 Dynamic WEP Key Exchange The AP maps a unique key that is generated with t he RADIUS server . This key expires when the wireless connection ti me s out, disconnec ts or reauthentication times out. A new WEP key is generated ea ch time reauthenticati on is performed. If this feature is enab[...]
-
Page 517
Appendix D Wireless LANs P-2612HW Series User’s Guide 517 If the AP or the wireless clients do no t support WP A2, just use WP A or WP A -PSK depending on whether you hav e an external RADIUS server or not. Select WEP only when the AP and/or wirel ess clients do not support WPA or WP A2. WEP is less secure than WP A or WP A2. Encryption Both WP A[...]
-
Page 518
Appendix D Wireless LANs P-2612HW Series User’s Guide 518 keys. This prev ent all wireless d evices sharing the same encryption ke ys. (a weakness of WEP) User Authentication WP A and WPA2 apply IEEE 802.1x and Extens ible Authentication Protocol ( EAP) to authenticate wireless clients using an ex ternal RADIUS database. WPA2 reduces the number o[...]
-
Page 519
Appendix D Wireless LANs P-2612HW Series User’s Guide 519 4 The RADIUS server distributes the PMK to the AP . The AP th en set s up a key hierarchy and management system, usin g the PMK to dynamica lly generate unique data encryption k eys. The k eys are used to encrypt every data packet that is wirelessly communicated bet ween the AP and the wir[...]
-
Page 520
Appendix D Wireless LANs P-2612HW Series User’s Guide 520 4 The AP and wireless clients use the TKIP or AES encryption process, the PMK and information exchanged in a handshake to create tempor al encryption keys. They use these keys to encrypt data exchanged between them. Figure 324 WP A(2)-PSK Authentication Security Parameters Summary Re fer t[...]
-
Page 521
Appendix D Wireless LANs P-2612HW Series User’s Guide 521 Antenna Overview An antenna couples RF signals onto air . A tr ansmitter within a wireless device sends an RF signal to the antenna, whic h propagates the signal through the air . The antenna also operates in reverse by capturing RF signals from the air . P ositioning the antennas properly[...]
-
Page 522
Appendix D Wireless LANs P-2612HW Series User’s Guide 522 • Omni-directional antennas send the RF sign al out in all directions on a horizontal plane. The cover age area is torus-sh aped (like a donut) which makes these antennas ideal for a room environment. With a wide cove rage area, it is possible to make circular ov erlapping cov erage area[...]
-
Page 523
Appendix D Wireless LANs P-2612HW Series User’s Guide 523 Push Button Configuration WPS Push Bu t ton Conf iguration (PBC) is in itiated by pressin g a b u t ton o n ea c h WPS-enabled device, and allowing them to connect automatically . Y ou do not need to enter any information. Not every WPS-enabled device has a ph ysical WPS button. Some may h[...]
-
Page 524
Appendix D Wireless LANs P-2612HW Series User’s Guide 524 1 Decide which device you want to be the registrar (usually the AP) and which you want to be the enrollee (usually the client). 2 Look for the enrollee’s WPS PIN; it may be displayed on the device. If you don’ t see it, log into the enrollee’ s configur ation interface and locate the[...]
-
Page 525
Appendix D Wireless LANs P-2612HW Series User’s Guide 525 The following figure shows a WPS-enab led wi reless c lient (i nstalled in a n otebook computer) connecting to the WPS- enabled AP via the PIN method. Figure 325 Example WPS Process: PIN Method How WPS Works When two WPS-enabled devices connect, each device must assume a specific role. One[...]
-
Page 526
Appendix D Wireless LANs P-2612HW Series User’s Guide 526 already part of a network, it sends the existing information. If not , it generates the SSID and WP A(2)-PSK r andomly . The following figure sh ows a WPS -en able d client (install ed in a notebook computer) connecting to a WPS-enabled access point. Figure 326 How WPS works The roles of r[...]
-
Page 527
Appendix D Wireless LANs P-2612HW Series User’s Guide 527 subsequent WPS connections in which it is involv ed. If you want a configured AP to act as an enrollee, y ou must reset it to its f actory defaults. Example WPS Network Setup This section shows how security settings are distri buted in an example WPS setup. The following figure shows an ex[...]
-
Page 528
Appendix D Wireless LANs P-2612HW Series User’s Guide 528 In step 3, you add anot her access point ( AP2 ) to your network. AP2 is out of ran g e of AP1 , so you cannot use AP1 for the WPS handshake with the new access point. However , you know that Client 2 supports the registrar function, so you use it to perform the WPS handshak e instead. Fig[...]
-
Page 529
Appendix D Wireless LANs P-2612HW Series User’s Guide 529 • When you use the PBC method, there is a short period (from the moment you press the button on one device to the moment you press the button on the other device) when any WPS-enabled devi ce could join the network. This is because the registrar has no wa y of id entifying the “corre c[...]
-
Page 530
Appendix D Wireless LANs P-2612HW Series User’s Guide 530[...]
-
Page 531
P-2612HW Series User’s Guide 531 A PPENDIX E Common Services The following table lists some commonl y-used services and their associated protocols and port numbers. F or a comprehe nsiv e list of p ort numbers, ICMP type/ code numbers and services , visit the IANA (Internet Assigned Number Authority) web site. • Name : This is a short, descrip [...]
-
Page 532
Appendix E Com mon Servic es P-2612HW Series User’s Guide 532 ESP (IPSEC_TUNNEL) User -Defined 50 The IPSEC ESP (Encapsulation Security Protocol) tunneling protocol uses this service. FINGER TCP 79 Finger is a UNIX or Internet related command that can be used to find out if a user is logged on. FTP TCP TCP 20 21 File T ransfer Program, a progr am[...]
-
Page 533
Appendix E Common Services P-2612HW Series User’s Guide 533 PPTP TCP 1723 Point -to-P oint T unneling Protocol enables secure transfer of data ov er public networks. This is the control channel. PPTP_TUNNEL (GRE) User -Defined 47 PPTP (P oint -to-Point T unne ling Protocol) enables secure transfer of data over public networks. This is the data ch[...]
-
Page 534
Appendix E Com mon Servic es P-2612HW Series User’s Guide 534 TFTP UDP 69 T rivial File T ransfer Protocol is an Internet file transfer protocol similar to FTP , but uses the UDP (User Datagram Protocol) r ather than TCP (T ransmission Control Protocol). VDOLIVE TCP 7000 Another videoconferencing solution. T able 185 Commonly Used Services (conti[...]
-
Page 535
P-2612HW Series User’s Guide 535 A PPENDIX F Legal Information Copyright Copyright © 2009 by Z yXEL Communications Corpor ation. The contents of this publication ma y not be reproduced in any part or as a whole, transcrib ed, stored in a retriev al syst em, tr anslated into an y language , or transmitted in an y form or by any me ans, electronic[...]
-
Page 536
Appendix F Legal Informati on P-2612HW Series User’s Guide 536 Viewing Certifications 1 Go to http://www . zyxel.com . 2 Select your prod uct on the Z yXEL home page to go to that product's page. 3 Select the certification y ou wish to view from this page. ZyXEL Limited W arranty Z yXEL warr ants to the original end user (p urchaser) that th[...]
-
Page 537
Index P-2612HW Series User’s Guide 537 Index Numerics 802.11 mode 148 802.1Q/1P 325 activation 332 example 327 group settings 333 management VLAN 332 port settings 335 priority 325 , 336 PVC 326 PVID 336 tagging frames 326 , 335 A AAL5 448 access point, See AP 137 accounting server WLAN accounting server 147 ACK message 21 1 activation 802.1Q/1P [...]
-
Page 538
Index P-2612HW Series User’s Guide 538 C CA 291 , 515 call forwarding 451 call hold 218 , 219 , 224 , 226 call park and pickup 450 call return 450 call service mode 217 , 219 , 223 , 225 call transfer 218 , 220 , 225 , 22 6 call waiting 218 , 220 , 224 , 226 , 450 caller ID 451 CBR 105 , 11 0 certificate creation 301 details 297 factory default 2[...]
-
Page 539
Index P-2612HW Series User’s Guide 539 Do not Disturb, see DnD domain name system, see DNS DoS 230 three-way handshake 242 thresholds 230 , 241 , 242 , 243 DS (Differentiated Services) 351 DS fiel d 216 , 351 DSCP 215 , 351 DSL firmware ve rsion 90 DSL line, reinitialize 436 DSL mode 91 DSL/WAN switch 102 DTM F 213 detection and generation 452 Du[...]
-
Page 540
Index P-2612HW Series User’s Guide 540 flashi ng 217 , 223 fragmentation thresho ld 148 , 51 1 frequency range 453 FTP 172 , 361 file upload 416 , 430 restrictions 414 FTP restrictions 414 G G.168 195 , 45 1 G.711 452 G.729 452 G.992.1 448 G.992.3 448 G.992.4 448 G.992.5 448 group key update timer 145 , 147 H half-open sessions 244 hidden node 50[...]
-
Page 541
Index P-2612HW Series User’s Guide 541 NA T 278 see also VPN standard 447 IPSec VPN capability 447 ISP 100 ITU- T 195 ITU- T G.992.1 436 J jitter buffer 451 K keep alive 283 key combinations 227 keyp ad 227 L LAN 121 listening port 192 Local Area Network, see LAN logical networks 128 logout 32 automatic 32 logs 391 , 407 firewalls 239 M MAC 90 , [...]
-
Page 542
Index P-2612HW Series User’s Guide 542 Network Basic Input/Output System, see NetBIOS non-proxy calls 200 O OAM 448 OK response 21 1 , 213 operation humidity 445 operation temperature 445 output power 148 outside header 281 P P2P 243 packet direction 235 Pairwise Master K ey (PMK) 517 , 519 park 450 passphrase 143 PCR 105 , 111 , 11 7 Peak Cell R[...]
-
Page 543
Index P-2612HW Series User’s Guide 543 NA T 359 Te l n e t 360 REN 451 Request T o Send, see RTS RESET button 29 restore configuration 415 , 424 , 429 RFC 1483 11 4 , 448 RFC 1631 169 RFC 1889 210 , 452 RFC 1890 452 RFC 2327 452 RFC 2364 448 RFC 2516 447 , 448 RFC 2684 448 RFC 3261 452 Ringer Equivalence Number , see REN RIP 124 , 129 , 132 direc[...]
-
Page 544
Index P-2612HW Series User’s Guide 544 static route 321 status 89 status indicators 28 storage humidity 445 storage temper ature 445 SUA 170 subnet 495 subnet mask 131 , 496 subnetting 498 supplemen tary services 216 , 223 Sustained Cell R ate, see SCR switch 102 syntax conv entions 5 system name 90 , 386 system timeout 359 T tagging frames 326 ,[...]
-
Page 545
Index P-2612HW Series User’s Guide 545 example 327 group 216 group settings 333 ID 216 ID tags 216 management group 332 port settings 335 PVC 326 PVID 336 tagging frames 326 , 335 voice activity detection 195 , 451 voice channels 451 voic e co di ng 213 Vo I P 206 features 27 peer-to-peer calls 200 standards compliance 451 tutorial 84 wizard setu[...]
-
Page 546
Index P-2612HW Series User’s Guide 546 key caching 51 8 pre-authentication 518 user authentication 518 vs WPA -PSK 517 wireless client supplicant 518 with RADIUS application example 518 WPA2 516 user authentication 518 vs WP A2 -P SK 517 wireless client supplicant 518 with RADIUS application example 518 WPA2-Pre- Shared K ey , see WP A2-PSK WPA2-[...]
-
Page 547
Index P-2612HW Series User’s Guide 547[...]