VMG1312-B Series Wireless N VDSL2 4-port Gateway with USB Default Login Details LAN IP Address IMPORTANT! http://192.168.1.1 User Name admin Password 1234 IMPORTANT! READ CAREFULLY BEFORE USE. Version 1.00 Editionwww.zyxel.com 1, 7/2012 www.zyxel.
KEEP THIS GUIDE FOR FUTURE REFERENCE. Note: This guide is a reference for a series of products. Therefore some features or options in this guide may not be available in your product. Graphics in this book may differ slightly from the product due to differences in operating systems, operating system versions, or if you installed updated firmware/software for your device. Every effort has been made to ensure that the information in this manual is accurate.
Contents Overview Contents Overview User’s Guide .......................................................................................................................................15 Introducing the Device ............................................................................................................................17 The Web Configurator .............................................................................................................................23 Quick Start .............
Contents Overview Troubleshooting ....................................................................................................................................
Table of Contents Table of Contents Contents Overview ..............................................................................................................................3 Table of Contents .................................................................................................................................5 Part I: User’s Guide ......................................................................................... 15 Chapter 1 Introducing the Device ................................
Table of Contents 4.3.1 Configuring the Wireless Network Settings .............................................................................36 4.3.2 Using WPS ..............................................................................................................................38 4.3.3 Without WPS ...........................................................................................................................41 4.4 Setting Up Multiple Wireless Groups ....................................
Table of Contents 7.1 Overview .........................................................................................................................................107 7.1.1 What You Can Do in this Chapter ..........................................................................................107 7.1.2 What You Need to Know ........................................................................................................108 7.2 The General Screen ................................................
Table of Contents 8.10.1 LANs, WANs and the Device ...............................................................................................158 8.10.2 DHCP Setup ........................................................................................................................158 8.10.3 DNS Server Addresses .......................................................................................................158 8.10.4 LAN TCP/IP ..................................................................
Table of Contents 11.7.1 Add/Edit Address Mapping Rule ..........................................................................................195 11.8 Technical Reference ......................................................................................................................196 11.8.1 NAT Definitions ....................................................................................................................196 11.8.2 What NAT Does ...................................................
Table of Contents 15.4 The Access Control Screen ..........................................................................................................221 15.4.1 Add/Edit an ACL Rule ........................................................................................................223 15.5 The DoS Screen ............................................................................................................................224 Chapter 16 MAC Filter..............................................
Table of Contents 21.1 Overview .......................................................................................................................................247 21.1.1 What You Can Do in this Chapter ........................................................................................247 21.2 The WAN Status Screen ...............................................................................................................247 21.3 The LAN Status Screen ........................................
Table of Contents 29.2 The TR-064 Screen .......................................................................................................................267 Chapter 30 Time Settings ....................................................................................................................................269 30.1 Overview .......................................................................................................................................269 30.2 The Time Screen ...........
Table of Contents 36.3 Internet Access .............................................................................................................................292 36.4 Wireless Internet Access ...............................................................................................................293 36.5 USB Device Connection ................................................................................................................294 36.6 UPnP .............................................
Table of Contents 14 VMG1312-B Series User’s Guide
P ART I User’s Guide 15
C HAPT ER 1 Introducing the Device 1.1 Overview The VMG1312-B Series is a wireless VDSL router. It has a DSL port for super-fast Internet access over analog (POTS) telephone lines. The Device supports both Packet Transfer Mode (PTM) and Asynchronous Transfer Mode (ATM). It is backward compatible with ADSL, ADSL2 and ADSL2+ in case VDSL is not available. Only use firmware for your Device’s specific model. Refer to the label on the bottom of your Device.
Chapter 1 Introducing the Device 1.4 Applications for the Device Here are some example uses for which the Device is well suited. 1.4.1 Internet Access Your Device provides shared Internet access by connecting the DSL port to the DSL or MODEM jack on a splitter or your telephone jack. You can have multiple WAN services over one ADSL or VDSL. The Device cannot work in ADSL and VDSL mode at the same time. Note: The ADSL and VDSL lines share the same WAN (layer-2) interfaces that you configure in the Device.
Chapter 1 Introducing the Device 1.4.2 Device’s USB Support The USB port of the Device is used for file-sharing. File Sharing Use the built-in USB 2.0 port to share files on a USB memory stick or a USB hard drive (B). You can connect one USB hard drive to the Device at a time. Use FTP to access the files on the USB device. Figure 2 USB File Sharing Application B A Media Server You can also use the Device as a media server.
Chapter 1 Introducing the Device 1.5 LEDs (Lights) The following graphic displays the labels of the LEDs. Figure 4 LEDs on the Device None of the LEDs are on if the Device is not receiving power. Table 1 LED Descriptions LED COLOR STATUS DESCRIPTION POWER Green On The Device is receiving power and ready for use. Blinking The Device is self-testing. Red On The Device detected an error while self-testing, or there is a device malfunction.
Chapter 1 Introducing the Device Table 1 LED Descriptions (continued) LED COLOR STATUS DESCRIPTION INTERNET Green On The Device has an IP connection but no traffic. Your device has a WAN IP address (either static or assigned by a DHCP server), PPP negotiation was successfully completed (if used) and the DSL connection is up. USB Blinking The Device is sending or receiving IP traffic. Off There is no Internet connection or the gateway is in bridged mode.
Chapter 1 Introducing the Device You can configure your wireless network in either the built-in Web Configurator, or using the WPS button. Figure 5 Wireless Access Example 1.7.1 Using the WLAN/WPS Button If the wireless network is turned off, press the WLAN/WPS button at the back of the Device for one second. Once the WLAN/WPS LED turns green, the wireless network is active.
C HAPT ER 2 The Web Configurator 2.1 Overview The web configurator is an HTML-based management interface that allows easy device setup and management via Internet browser. Use Internet Explorer 6.0 and later versions or Mozilla Firefox 3 and later versions or Safari 2.0 and later versions. The recommended screen resolution is 1024 by 768 pixels. In order to use the web configurator you need to allow: • Web browser pop-up windows from your device.
Chapter 2 The Web Configurator 4 The following screen displays if you have not yet changed your password. It is strongly recommended you change the default password. Enter a new password, retype it to confirm and click Apply; alternatively click Skip to proceed to the main menu if you do not want to change the password now. Figure 7 Change Password Screen 5 The Quick Start Wizard screen appears. You can configure the Device’s time zone, basic Internet access, and wireless settings.
Chapter 2 The Web Configurator 2.2 Web Configurator Layout Figure 9 Screen Layout A B C As illustrated above, the main screen is divided into these parts: • A - title bar • B - main window • C - navigation panel 2.2.1 Title Bar The title bar provides some icons in the upper right corner. The icons provide the following functions.
Chapter 2 The Web Configurator 2.2.2 Main Window The main window displays information and configuration fields. It is discussed in the rest of this document. After you click Status on the Connection Status page, the Status screen is displayed. See Chapter 5 on page 80 for more information about the Status screen. If you click Virtual Device on the System Info screen, a visual graphic appears, showing the connection status of the Device’s ports.
Chapter 2 The Web Configurator Table 3 Navigation Panel Summary (continued) LINK Wireless Home Networking Routing QoS NAT DNS Interface Group VMG1312-B Series User’s Guide TAB FUNCTION General Use this screen to configure the wireless LAN settings and WLAN authentication/security settings. More AP Use this screen to configure multiple BSSs on the Device.
Chapter 2 The Web Configurator Table 3 Navigation Panel Summary (continued) LINK USB Device TAB FUNCTION File Sharing Use this screen to enable file sharing via the Device. Media Server Use this screen to use the Device as a media server. Printer Server Use this screen to enable the print server on the Device and get the model name of the associated printer. General Use this screen to configure the security level of your firewall.
Chapter 2 The Web Configurator Table 3 Navigation Panel Summary (continued) LINK TAB FUNCTION Configuration Use this screen to backup and restore your device’s configuration (settings) or reset the factory default settings. Reboot Use this screen to reboot the Device without turning the power off. Diagnostic VMG1312-B Series User’s Guide Ping & Traceroute & Nslookup Use this screen to identify problems with the DSL connection.
Chapter 2 The Web Configurator 30 VMG1312-B Series User’s Guide
C HAPT ER 3 Quick Start 3.1 Overview Use the Quick Start screens to configure the Device’s time zone, basic Internet access, and wireless settings. Note: See the technical reference chapters (starting on page 77) for background information on the features in this chapter. 3.2 Quick Start Setup 1 The Quick Start Wizard appears automatically after login. Or you can click the Click Start icon in the top right corner of the web configurator to open the quick start screens.
Chapter 3 Quick Start 2 Enter your Internet connection information in this screen. The screen and fields to enter may vary depending on your current connection type. Click Next. Click Next. Figure 12 Internet Connection 3 Turn the wireless LAN on or off. If you keep it on, record the security settings so you can configure your wireless clients to connect to the Device. Click Save. Figure 13 Internet Connection 4 32 Your Device saves your settings and attempts to connect to the Internet.
C HAPT ER 4 Tutorials 4.1 Overview This chapter shows you how to use the Device’s various features.
Chapter 4 Tutorials Connection Mode Routing Encapsulation PPPoE IPv6/IPv4 Mode IPv4 ATM PVC Configuration VPI/VCI 36/48 Encapsulation Mode LLC/SNAP-Bridging Service Category UBR without PCR Account Information PPP User Name 1234@DSL-Ex.com PPP Password ABCDEF! PPPoE Service Name MyDSL Static IP Address 192.168.1.32 Others PPPoE Passthrough: Disabled NAT: Enabled IGMP Multicast Proxy: Enabled Apply as Default Gateway: Enabled 3 Select the Active check box.
Chapter 4 Tutorials 7 Click Apply to save your settings.
Chapter 4 Tutorials 8 You should see a summary of your new DSL connection setup in the Broadband screen as follows. Try to connect to a website to see if you have correctly set up your Internet connection. Be sure to contact your service provider for any information you need to configure the WAN screens. 4.3 Setting Up a Secure Wireless Network Thomas wants to set up a wireless network so that he can use his notebook to access the Internet.
Chapter 4 Tutorials 1 Click Network Setting > Wireless to open the General screen. Select More Secure as the security level and WPA-PSK as the security mode. Configure the screen using the provided parameters (see page 36). Click Apply. 2 Go to the Wireless > Others screen and select 802.11b/g/n Mixed in the 802.11 Mode field. Click Apply. Thomas can now use the WPS feature to establish a wireless connection between his notebook and the Device (see Section 4.3.2 on page 38).
Chapter 4 Tutorials 4.3.2 Using WPS This section shows you how to set up a wireless network using WPS. It uses the Device as the AP and ZyXEL NWD210N as the wireless client which connects to the notebook. Note: The wireless client must be a WPS-aware device (for example, a WPS USB adapter or PCMCIA card). There are two WPS methods to set up the wireless client settings: • Push Button Configuration (PBC) - simply press a button. This is the easier of the two methods.
Chapter 4 Tutorials Note: Your Device has a WPS button located on its front panel as well as a WPS button in its configuration utility. Both buttons have exactly the same function: you can use one or the other. Note: It doesn’t matter which button is pressed first. You must press the second button within two minutes of pressing the first one. The Device sends the proper configuration settings to the wireless client. This may take up to two minutes.
Chapter 4 Tutorials PIN Configuration When you use the PIN configuration method, you need to use both the Device’s web configurator and the wireless client’s utility. 1 Launch your wireless client’s configuration utility. Go to the WPS settings and select the PIN method to get a PIN number. 2 Log into Device’s web configurator and go to the Network Setting > Wireless > WPS screen. Enable the WPS function and click Apply. 3 Enter the PIN number of the wireless client and click the Register button.
Chapter 4 Tutorials The following figure shows you how to set up a wireless network and its security on a Device and a wireless client by using PIN method. Example WPS Process: PIN Method Wireless Client ZyXEL Device WITHIN 2 MINUTES Authentication by PIN SECURITY INFO COMMUNICATION 4.3.3 Without WPS Use the wireless adapter’s utility installed on the notebook to search for the “Example” SSID. Then enter the “DoNotStealMyWirelessNetwork” pre-shared key to establish an wireless Internet connection.
Chapter 4 Tutorials 4.4 Setting Up Multiple Wireless Groups Company A wants to create different wireless network groups for different types of users as shown in the following figure. Each group has its own SSID and security mode. Company Guest VIP • Employees in Company A will use a general Company wireless network group. • Higher management level and important visitors will use the VIP group. • Visiting guests will use the Guest group, which has a lower security mode.
Chapter 4 Tutorials 1 Click Network Setting > Wireless to open the General screen. Use this screen to set up the company’s general wireless network group. Configure the screen using the provided parameters and click Apply. 2 Click Network Setting > Wireless > More AP to open the following screen. Click the Edit icon to configure the second wireless network group.
Chapter 4 Tutorials 44 3 Configure the screen using the provided parameters and click Apply. 4 In the More AP screen, click the Edit icon to configure the third wireless network group.
Chapter 4 Tutorials 5 Configure the screen using the provided parameters and click Apply. 6 Check the status of VIP and Guest in the More AP screen. The yellow bulbs signify that the SSIDs are active and ready for wireless access. 4.5 Configuring Static Route for Routing to Another Network In order to extend your Intranet and control traffic flowing directions, you may connect a router to the Device’s LAN. The router may be used to separate two department networks.
Chapter 4 Tutorials network) to computer B (in N2 network), the traffic is sent to the Device’s WAN default gateway by default. In this case, B will never receive the traffic. N1 A R N2 B You need to specify a static routing rule on the Device to specify R as the router in charge of forwarding traffic to N2. In this case, the Device routes traffic from A to R and then R routes the traffic to B.
Chapter 4 Tutorials Table 4 IP Settings in this Tutorial DEVICE / COMPUTER IP ADDRESS R’s N2 192.168.10.2 B 192.168.10.33 To configure a static route to route traffic from N1 to N2: 1 Log into the Device’s Web Configurator in advanced mode. 2 Click Network Setting > Routing. 3 Click Add new static route in the Static Route screen. 4 Configure the Static Route Setup screen using the following settings: 4a Select the Active check box. Enter the Route Name as R. 4b Set IP Type to IPv4.
Chapter 4 Tutorials 4.6 Configuring QoS Queue and Class Setup This section contains tutorials on how you can configure the QoS screen. Let’s say you are a team leader of a small sales branch office. You want to prioritize e-mail traffic because your task includes sending urgent updates to clients at least twice every hour. You also upload data files (such as logs and e-mail archives) to the FTP server throughout the day.
Chapter 4 Tutorials 1 Click Network Setting > QoS > General and select Enable. Set your WAN Managed Upstream Bandwidth to 10,000 kbps (or leave this blank to have the Device automatically determine this figure). Click Apply. Tutorial: Advanced > QoS 2 Click Queue Setup > Add new Queue to create a new queue.
Chapter 4 Tutorials 3 Click Class Setup > Add new Classifier to create a new class. Check Active and follow the settings as shown in the screen below. Tutorial: Advanced > QoS > Class Setup 50 Class Name Give a class name to this traffic, such as E-mail in this example. From Interface This is the interface from which the traffic will be coming from. Select LAN1 for this example. Ether Type Select IP to identify the traffic source by its IP address or MAC address.
Chapter 4 Tutorials This maps e-mail traffic coming from port 25 to the highest priority, which you have created in the previous screen (see the IP Protocol field). This also maps your computer’s IP address and MAC address to the E-mail queue (see the Source fields). 4 Verify that the queue setup works by checking Network Setting > QoS > Monitor. This shows the bandwidth allotted to e-mail traffic compared to other network traffic. 4.
Chapter 4 Tutorials 4.7.2 Configuring DDNS on Your Device Configure the following settings in the Network Setting > DNS > Dynamic DNS screen. • Select Enable Dynamic DNS. • Select www.DynDNS.com as the service provider. • Type zyxelrouter.dyndns.org in the Host Name field. • Enter the user name (UserName1) and password (12345). Click Apply. 4.7.3 Testing the DDNS Setting Now you should be able to access the Device from the Internet.
Chapter 4 Tutorials 4.8 Configuring the MAC Address Filter Thomas noticed that his daughter Josephine spends too much time surfing the web and downloading media files. He decided to prevent Josephine from accessing the Internet so that she can concentrate on preparing for her final exams. Josephine’s computer connects wirelessly to the Internet through the Device. Thomas decides to use the Security > MAC Filter screen to grant wireless network access to his computer but not to Josephine’s computer.
Chapter 4 Tutorials Thomas can also grant access to the computers of other members of his family and friends. However, Josephine and others not listed in this screen will no longer be able to access the Internet through the Device. 4.9 Access Your Shared Files From a Computer Here is how to use an FTP program to access a file storage device connected to the Device’s USB port. Note: This example uses the FileZilla FTP program to browse your shared files.
Chapter 4 Tutorials 4.10 Using the Media Server Feature Use the media server feature to play files on a computer or on your television (using DMA-2500). This section shows you how the media server feature works using the following media clients: • Microsoft (MS) Windows Media Player Media Server works with Windows Vista and Windows 7. Make sure your computer is able to play media files (music, videos and pictures).
Chapter 4 Tutorials Windows Vista 1 Open Windows Media Player and click Library > Media Sharing as follows. Tutorial: Media Sharing using Windows Vista 2 Check Find media that others are sharing in the following screen and click OK.
Chapter 4 Tutorials 3 In the Library screen, check the left panel. The Windows Media Player should detect the Device. Tutorial: Media Sharing using Windows Vista (3) The Device displays as a playlist. Clicking on the category icons in the right panel shows you the media files in the USB storage device attached to your Device. Windows 7 1 Open Windows Media Player. It should automatically detect the Device.
Chapter 4 Tutorials 2 Select a category in the left panel and wait for Windows Media Player to connect to the Device. Tutorial: Media Sharing using Windows 7 (2) 3 In the right panel, you should see a list of files available in the USB storage device. Tutorial: Media Sharing using Windows 7 (2) 4.10.3 Using a Digital Media Adapter This section shows you how you can use the Device with a ZyXEL DMA-2500 to play media files stored in the USB storage device in your TV screen.
Chapter 4 Tutorials 1 Connect the DMA-2500 to an available LAN port in your Device. Tutorial: Media Server Setup (Using DMA) USB Storage Device DMA-2500 ZyXEL Device 2 Turn on the TV and wait for the DMA-2500 Home screen to appear. Using the remote control, go to MyMedia to open the following screen. Select the Device as your media server. Tutorial: Media Sharing using DMA-2500 3 The screen shows you the list of available media files in the USB storage device.
Chapter 4 Tutorials 4.11 Using the Print Server Feature The Device allows you to share a USB printer on your LAN. You can do this by connecting a USB printer to one of the USB ports on the Device and then adding the printer on the computers connected to your network. In this section you can: • Configure a TCP/IP Printer Port • Add a New Printer Using Windows • Add a New Printer Using Macintosh OS X Configure a TCP/IP Printer Port This example shows how you can configure a TCP/IP printer port.
Chapter 4 Tutorials 1 Click Start > Settings, then right click on Printers and select Open. Tutorial: Open Printers Window The Printers folder opens up. First you need to open up the properties windows for the printer you want to configure a TCP/IP port. 2 Locate your printer. 3 Right click on your printer and select Properties.
Chapter 4 Tutorials 4 Select the Ports tab and click Add Port... Tutorial: Printer Properties Window 5 A Printer Ports window appears. Select Standard TCP/IP Port and click New Port... Tutorial: Add a Port Window 6 Add Standard TCP/IP Printer Port Wizard window opens up. Click Next to start configuring the printer port.
Chapter 4 Tutorials 7 Enter the IP address of the Device to which the printer is connected in the Printer Name or IP Address: field. In our example we use the default IP address of the Device, 192.168.1.1. The Port Name field updates automatically to reflect the IP address of the port. Click Next. Note: The computer from which you are configuring the TCP/IP printer port must be on the same LAN in order to use the printer sharing function.
Chapter 4 Tutorials 11 The Port Number is automatically configured as 9100. Click OK. Tutorial: Custom Port Settings 12 Continue through the wizard, apply your settings and close the wizard window. Tutorial: Finish Adding the TCP/IP Port 13 Repeat steps 1 to 12 to add this printer to other computers on your network. Add a New Printer Using Windows This example shows how to connect a printer to your Device using the Windows 7 XP Professional operating system.
Chapter 4 Tutorials 1 Click Start > Control Panel > Printers and FaxesDevices and Printers to open the Printers and FaxesDevices and Printers screen. Click Add a pPrinter. Tutorial: Printers Folder 2 The Add Printer wWizard screen displays. Click NextAdd a network, wireless or Bluetooth printer.
Chapter 4 Tutorials 3 Click The printer that I want isn’t listed.
Chapter 4 Tutorials 4 Select the Select a shared printer by name option. Enter the URL for your printer, http:// 192.168.1.1:631/printers/USB_PRINTER, in this example. This URL can be found in the Device’s Web Configurator on the Network Setting > USB Service > Printer Server screen. Click Next. Tutorial: Add Printer Wizard: Welcome 5 Install the printer driver. Please check the Windows CD if it includes the printer driver.
Chapter 4 Tutorials 7 Select Local printer attached to this computer and click Next. Tutorial: Add Printer Wizard: Local or Network Printer 8 Select Create a new port and Standard TCP/IP Port. Click Next.
Chapter 4 Tutorials 9 Add Standard TCP/IP Printer Port Wizard window opens up. Click Next to start configuring the printer port. Tutorial: Add a Port Wizard 10 Enter the IP address of the Device to which the printer is connected in the Printer Name or IP Address: field. In our example we use the default IP address of the Device, 192.168.1.1. The Port Name field updates automatically to reflect the IP address of the port. Click Next.
Chapter 4 Tutorials 11 Select Custom under Device Type and click Settings. Tutorial: Custom Port Settings 12 Confirm the IP address of the Device in the Printer Name or IP Address field. 13 Select Raw under Protocol. 14 The Port Number is automatically configured as 9100. Click OK to go back to the previous screen and click Next.
Chapter 4 Tutorials 15 Click Finish to close the wizard window. Tutorial: Finish Adding the TCP/IP Port 16 Select the make of the printer that you want to connect to the print server in the Manufacturer list of printers. 17 Select the printer model from the list of Printers. 18 If your printer is not displayed in the list of Printers, you can insert the printer driver installation CD/disk or download the driver file to your computer, click Have Disk… and install the new printer driver.
Chapter 4 Tutorials 20 If the following screen displays, select Keep existing driver radio button and click Next if you already have a printer driver installed on your computer and you do not want to change it. Otherwise, select Replace existing driver to replace it with the new driver you selected in the previous screen and click Next. Tutorial: Add Printer Wizard: Use Existing Driver 21 Type a name to identify the printer and then click Next to continue.
Chapter 4 Tutorials 22 The Device is a print server itself and you do not need to have your computer act as a print server by sharing the printer with other users in the same network; just select Do not share this printer and click Next to proceed to the following screen. Tutorial: Add Printer Wizard: Printer Sharing 23 Select Yes and then click the Next button if you want to print a test page. A pop-up screen displays to ask if the test page printed correctly.
Chapter 4 Tutorials 24 The following screen shows your current printer settings. Select Finish to complete adding a new printer. Tutorial: Add Printer Wizard Complete Add a New Printer Using Macintosh OS X Complete the following steps to set up a print server driver on your Macintosh computer. 1 Click the Print Center icon located in the Macintosh Dock (a place holding a series of icons/ shortcuts at the bottom of the desktop). Proceed to step 6 to continue.
Chapter 4 Tutorials 4 Double-click the Utilities folder. Tutorial: Applications Folder 5 Double-click the Print Center icon. Tutorial: Utilities Folder 6 Click the Add icon at the top of the screen. Tutorial: Printer List Folder 7 Set up your printer in the Printer List configuration screen. Select IP Printing from the dropdown list box. 8 In the Printer’s Address field, type the IP address of your Device. 9 Deselect the Use default queue on server check box.
Chapter 4 Tutorials 11 Select your Printer Model from the drop-down list box. If the printer's model is not listed, select Generic. Tutorial: Printer Configuration 12 Click Add to select a printer model, save and close the Printer List configuration screen. Tutorial: Printer Model 13 The Name LP1 on 192.168.1.1 displays in the Printer List field. The default printer Name displays in bold type. Tutorial: Print Server Your Macintosh print server driver setup is complete.
P ART II Technical Reference 77
C HAPT ER 5 Network Map and Status Screens 5.1 Overview After you log into the Web Configurator, the Network Map screen appears. This shows the network connection status of the Device and clients connected to it. You can use the Status screen to look at the current status of the Device, system resources, and interfaces (LAN, WAN, and WLAN). 5.2 The Network Map Screen Use this screen to view the network connection status of the device and its clients.
Chapter 5 Network Map and Status Screens In Icon Mode, if you want to view information about a client, click the client’s name and Info. Click the IP address if you want to change it. If you want to change the name or icon of the client, click Change icon/name. In List Mode, you can also view the client’s information. 5.3 The Status Screen Use this screen to view the status of the Device. Click Status to open this screen. Figure 16 Status Screen Each field is described in the following table.
Chapter 5 Network Map and Status Screens Table 5 Status Screen (continued) LABEL DESCRIPTION Model Number This shows the model number of your Device. Firmware Version This is the current version of the firmware inside the Device. WAN Information (These fields display when you have a WAN connection.) WAN Type This field displays the current WAN connection type. MAC Address This shows the WAN Ethernet adapter MAC (Media Access Control) Address of your Device.
Chapter 5 Network Map and Status Screens Table 5 Status Screen (continued) LABEL 82 DESCRIPTION CPU Usage This field displays what percentage of the Device’s processing ability is currently used. When this percentage is close to 100%, the Device is running at full load, and the throughput is not going to improve anymore. If you want some applications to have more throughput, you should turn off other applications (for example, using QoS; see Chapter 10 on page 167).
C HAPT ER 6 Broadband 6.1 Overview This chapter discusses the Device’s Broadband screens. Use these screens to configure your Device for Internet access. A WAN (Wide Area Network) connection is an outside connection to another network or the Internet. It connects your private networks, such as a LAN (Local Area Network) and other networks, so that a computer in one location can communicate with computers in other locations.
Chapter 6 Broadband • Use the Advanced screen to enable or disable PTM over ADSL, Annex M/Annex J, and DSL PhyR functions (Section 6.4 on page 98). • Use the 8021x screen to view and configure the IEEE 802.1x settings on the Device (Section 6.5 on page 99).
Chapter 6 Broadband Service) can be guaranteed. ATM uses a connection-oriented model and establishes a virtual circuit (VC) between Finding Out More PTM Packet Transfer Mode (PTM) is packet-oriented and supported by the VDSL2 standard. In PTM, packets are encapsulated directly in the High-level Data Link Control (HDLC) frames. It is designed to provide a low-overhead, transparent way of transporting packets over DSL links, as an alternative to ATM.
Chapter 6 Broadband IPv6 Subnet Masking Both an IPv6 address and IPv6 subnet mask compose of 128-bit binary digits, which are divided into eight 16-bit blocks and written in hexadecimal notation. Hexadecimal uses four bits for each character (1 ~ 10, A ~ F). Each block’s 16 bits are then represented by four hexadecimal characters. For example, FFFF:FFFF:FFFF:FFFF:FC00:0000:0000:0000. 6.1.3 Before You Begin You need to know your Internet access settings such as encapsulation and WAN IP address.
Chapter 6 Broadband Table 7 Network Setting > Broadband (continued) LABEL DESCRIPTION MLD Proxy This shows whether Multicast Listener Discovery (MLD) is activated or not for this connection. MLD is not available when the connection uses the bridging service. Modify Click the Edit icon to configure the WAN connection. Click the Delete icon to remove the WAN connection. 6.2.
Chapter 6 Broadband The following table describes the labels in this screen. Table 8 Routing Mode LABEL DESCRIPTION General Active Select this to activate the WAN configuration settings. Name Specify a descriptive name for this connection. Type Select whether it is an ADSL/VDSL over PTM or ADSL over ATM connection. Mode Select Routing if your ISP give you one IP address only and you want multiple computers to share an Internet account.
Chapter 6 Broadband Table 8 Routing Mode (continued) LABEL DESCRIPTION Service Category Select UBR Without PCR or UBR With PCR for applications that are non-time sensitive, such as e-mail. Select CBR (Continuous Bit Rate) to specify fixed (always-on) bandwidth for voice or data traffic. Select Non Realtime VBR (non real-time Variable Bit Rate) for connections that do not require closely controlled delay and delay variation.
Chapter 6 Broadband Table 8 Routing Mode (continued) LABEL Gateway IP Address DESCRIPTION Enter the gateway IP address provided by your ISP. Routing Feature This is available only when you select IPv4 Only or IPv6/IPv4 DualStack in the IPv6/ IPv4 Mode field. NAT Enable Select this option to activate NAT on this connection. IGMP Proxy Enable Internet Group Multicast Protocol (IGMP) is a network-layer protocol used to establish membership in a Multicast group - it is not used to carry user data.
Chapter 6 Broadband Table 8 Routing Mode (continued) LABEL DESCRIPTION IPv6 DNS Select Dynamic to have the Device get the IPv6 DNS server addresses from the ISP automatically. Select Static to have the Device use the IPv6 DNS server addresses you configure manually. IPv6 DNS Server 1 Enter the first IPv6 DNS server address assigned by the ISP. IPv6 DNS Server 2 Enter the second IPv6 DNS server address assigned by the ISP. VLAN These fields appear when the Type is set to ADSL/VDSL over PTM.
Chapter 6 Broadband If you select ADSL/VDSL over PTM as the interface type, the following screen appears. Figure 21 Bridge Mode (ADSL/VDSL over PTM) The following table describes the fields in this screen. Table 9 Bridge Mode (ADSL/VDSL over PTM) LABEL DESCRIPTION General Active Select this to activate the WAN configuration settings. Name Enter a service name of the connection. Type Select ADSL/VDSL over PTM as the interface that you want to configure.
Chapter 6 Broadband If you select ADSL over ATM as the interface type, the following screen appears. Figure 22 Bridge Mode (ADSL over ATM) The following table describes the fields in this screen. Table 10 Bridge Mode (ADSL over ATM) LABEL DESCRIPTION General Active Select this to activate the WAN configuration settings. Name Enter a service name of the connection. Type Select ADSL over ATM as the interface for which you want to configure here.
Chapter 6 Broadband Table 10 Bridge Mode (ADSL over ATM) (continued) LABEL DESCRIPTION Encapsulation Mode Select the method of multiplexing used by your ISP from the drop-down list box. Choices are: • • • • Service Category LLC/SNAP-BRIDGING: In LCC encapsulation, bridged PDUs are encapsulated by identifying the type of the bridged media in the SNAP header. This is available only when you select IPoE or PPPoE in the Select DSL Link Type field.
Chapter 6 Broadband Note: The actual data rate you obtain varies depending the 3G card you use, the signal strength to the service provider’s base station, and so on. Figure 23 Network Setting > Broadband > 3G Backup The following table describes the labels in this screen. Table 11 Network Setting > Broadband > 3G Backup LABEL DESCRIPTION General 3G Backup Select Enable to have the Device use the 3G connection as your WAN or a backup when the wired WAN connection fails.
Chapter 6 Broadband Table 11 Network Setting > Broadband > 3G Backup (continued) LABEL DESCRIPTION Username Type the user name (of up to 64 ASCII printable characters) given to you by your service provider. Password Type the password (of up to 64 ASCII printable characters) associated with the user name above. PIN A PIN (Personal Identification Number) code is a key to a 3G card. Without the PIN code, you cannot use the 3G card.
Chapter 6 Broadband Table 11 Network Setting > Broadband > 3G Backup (continued) LABEL DESCRIPTION Data Budget (Mbytes) Select this and specify how much downstream and/or upstream data (in Mega bytes) can be transmitted via the 3G connection within one month. Select Download/Upload to set a limit on the total traffic in both directions. Select Download to set a limit on the downstream traffic (from the ISP to the Device). Select Upload to set a limit on the upstream traffic (from the Device to the ISP).
Chapter 6 Broadband Table 11 Network Setting > Broadband > 3G Backup (continued) LABEL DESCRIPTION Apply Click Apply to save your changes back to the Device. Cancel Click Cancel to return to the previous configuration. 6.4 The Advanced Screen Use the Advanced screen to enable or disable PTM over ADSL, Annex M/Annex J, and DSL PhyR functions. The Device supports the PhyR retransmission scheme. PhyR is a retransmission scheme designed to provide protection against noise on the DSL line.
Chapter 6 Broadband Table 12 Network Setting > Network Setting > Broadband (continued) LABEL DESCRIPTION PhyR DS Enable or disable PhyR DS (downstream) for downstream transmission from the WAN. PhyR DS should be enabled if data being transmitted downstream is sensitive to noise. However, enabling PhyR DS can decrease the DS line rate. Enabling or disabling PhyR will require the CPE to retrain. For PhyR to function, the DSLAM must also support PhyR and have it enabled.
Chapter 6 Broadband 6.5.1 Edit 802.1x Settings Use this screen to edit a 802.1x authentication’s settings. Click the Edit icon next to the rule you want to edit. The screen shown next appears. Figure 27 802.1x: Add/Edit The following table describes the labels in this screen. Table 14 802.1x: Add/Edit LABEL DESCRIPTION Active This field allows you to activate/deactivate the authentication. Select this to enable the authentication.
Chapter 6 Broadband Encapsulation Be sure to use the encapsulation method required by your ISP. The Device can work in bridge mode or routing mode. When the Device is in routing mode, it supports the following methods. IP over Ethernet IP over Ethernet (IPoE) is an alternative to PPPoE. IP packets are being delivered across an Ethernet network, without using PPP encapsulation.
Chapter 6 Broadband Multiplexing There are two conventions to identify what protocols the virtual circuit (VC) is carrying. Be sure to use the multiplexing method required by your ISP. VC-based Multiplexing In this case, by prior mutual agreement, each protocol is assigned to a specific virtual circuit; for example, VC1 carries IP, etc. VC-based multiplexing may be dominant in environments where dynamic creation of large numbers of ATM VCs is fast and economical.
Chapter 6 Broadband The following figure illustrates the relationship between PCR, SCR and MBS. Figure 28 Example of Traffic Shaping ATM Traffic Classes These are the basic ATM traffic classes defined by the ATM Forum Traffic Management 4.0 Specification. Constant Bit Rate (CBR) Constant Bit Rate (CBR) provides fixed bandwidth that is always available even if no data is being sent. CBR traffic is generally time-sensitive (doesn't tolerate delay).
Chapter 6 Broadband IP Address Assignment A static IP is a fixed IP that your ISP gives you. A dynamic IP is not fixed; the ISP assigns you a different one each time. The Single User Account feature can be enabled or disabled if you have either a dynamic or static IP. However the encapsulation method assigned influences your choices for IP address and default gateway. Introduction to VLANs A Virtual Local Area Network (VLAN) allows a physical network to be partitioned into multiple logical networks.
Chapter 6 Broadband Multicast IP packets are transmitted in either one of two ways - Unicast (1 sender - 1 recipient) or Broadcast (1 sender - everybody on the network). Multicast delivers IP packets to a group of hosts on the network - not everybody and not just 1. Internet Group Multicast Protocol (IGMP) is a network-layer protocol used to establish membership in a Multicast group - it is not used to carry user data.
Chapter 6 Broadband compose the network address. The prefix length is written as “/x” where x is a number. For example, 2001:db8:1a2b:15::1a2f:0/32 means that the first 32 bits (2001:db8) is the subnet prefix.
C HAPT ER 7 Wireless 7.1 Overview This chapter describes the Device’s Network Setting > Wireless screens. Use these screens to set up your Device’s wireless connection. 7.1.1 What You Can Do in this Chapter This section describes the Device’s Wireless screens. Use these screens to set up your Device’s wireless connection. • Use the General screen to enable the Wireless LAN, enter the SSID and select the wireless security mode (Section 7.2 on page 108).
Chapter 7 Wireless 7.1.2 What You Need to Know Wireless Basics “Wireless” is essentially radio communication. In the same way that walkie-talkie radios send and receive information over the airwaves, wireless networking devices exchange information with one another. A wireless networking device is just like a radio that lets your computer exchange information with radios attached to other computers.
Chapter 7 Wireless Click Network Setting > Wireless to open the General screen. Figure 29 Network Setting > Wireless > General The following table describes the general wireless LAN labels in this screen. Table 15 Network Setting > Wireless > General LABEL DESCRIPTION Wireless Network Setup Wireless You can Enable or Disable the wireless LAN in this field. Band This shows the wireless band which this radio profile is using. 2.4GHz is the frequency used by IEEE 802.11b/g/n wireless clients.
Chapter 7 Wireless Table 15 Network Setting > Wireless > General (continued) LABEL DESCRIPTION Control Sideband This is available for some regions when you select a specific channel and set the Bandwidth field to 40MHz. Set whether the control channel (set in the Channel field) should be in the Lower or Upper range of channel bands.
Chapter 7 Wireless Note: If you do not enable any wireless security on your Device, your network is accessible to any wireless networking device that is within range. Figure 30 Wireless > General: No Security The following table describes the labels in this screen. Table 16 Wireless > General: No Security LABEL DESCRIPTION Security Level Choose No Security to allow all wireless connections without data encryption or authentication. 7.2.
Chapter 7 Wireless In order to configure and enable WEP encryption, click Network Setting > Wireless to display the General screen, then select Basic as the security level. Figure 31 Wireless > General: Basic (WEP) The following table describes the labels in this screen. Table 17 Wireless > General: Basic (WEP) LABEL DESCRIPTION Security Level Select Basic to enable WEP data encryption. Generate password automatically Select this option to have the Device automatically generate a password.
Chapter 7 Wireless 7.2.3 More Secure (WPA(2)-PSK) The WPA-PSK security mode provides both improved data encryption and user authentication over WEP. Using a Pre-Shared Key (PSK), both the Device and the connecting client share a common password in order to validate the connection. This type of encryption, while robust, is not as strong as WPA, WPA2 or even WPA2-PSK. The WPA2-PSK security mode is a newer, more robust version of the WPA encryption standard.
Chapter 7 Wireless Table 18 Wireless > General: More Secure: WPA(2)-PSK (continued) LABEL DESCRIPTION Encryption Select the encryption type (AES or TKIP+AES) for data encryption. Select AES if your wireless clients can all use AES. Select TKIP+AES to allow the wireless clients to use either TKIP or AES. Group Key Update Timer The Group Key Update Timer is the rate at which the RADIUS server sends a new group key out to all clients. 7.2.
Chapter 7 Wireless Table 19 Wireless > General: More Secure: WPA(2) (continued) LABEL DESCRIPTION IP Address Enter the IP address of the external authentication server in dotted decimal notation. Port Number Enter the port number of the external authentication server. The default port number is 1812. You need not change this value unless your network administrator instructs you to do so with additional information.
Chapter 7 Wireless The following table describes the labels in this screen. Table 20 Network Setting > Wireless > More AP LABEL DESCRIPTION # This is the index number of the entry. Status This field indicates whether this SSID is active. A yellow bulb signifies that this SSID is active. A gray bulb signifies that this SSID is not active. SSID An SSID profile is the set of parameters relating to one of the Device’s BSSs.
Chapter 7 Wireless Table 21 More AP: Edit (continued) LABEL DESCRIPTION Passphrase Type If you set security for the wireless LAN and have the Device generate a password, the setting in this field determines how the Device generates the password. Select None to set the Device’s password generation to not be based on a passphrase. Select Fixed to use a 16 character passphrase for generating a password. Select Variable to use a 16 to 63 character passphrase for generating a password.
Chapter 7 Wireless Use this screen to view your Device’s MAC filter settings and add new MAC filter rules. Click Network Setting > Wireless > MAC Authentication. The screen appears as shown. Figure 36 Wireless > MAC Authentication The following table describes the labels in this screen. Table 22 Wireless > MAC Authentication LABEL DESCRIPTION SSID Select the SSID for which you want to configure MAC filter settings.
Chapter 7 Wireless Note: The Device applies the security settings of the SSID1 profile (see Section 7.2 on page 108). If you want to use the WPS feature, make sure you have set the security mode of SSID1 to WPA-PSK, WPA2-PSK or No Security. Click Network Setting > Wireless > WPS. The following screen displays. Select Enable and click Apply to activate the WPS function. Then you can configure the WPS settings in this screen.
Chapter 7 Wireless Table 23 Network Setting > Wireless > WPS (continued) LABEL DESCRIPTION Release Configuratio n The default WPS status is configured. Generate New PIN Number The PIN (Personal Identification Number) of the Device is shown here. Enter this PIN in the configuration utility of the device you want to connect to using WPS. Click this button to remove all configured wireless and wireless security settings for WPS connections on the Device.
Chapter 7 Wireless 7.7 The WDS Screen An AP using the Wireless Distribution System (WDS) can function as a wireless network bridge allowing you to wirelessly connect two wired network segments. The WDS screen allows you to configure the Device to connect to two or more APs wirelessly when WDS is enabled. Use this screen to set up your WDS (Wireless Distribution System) links between the Device and other wireless APs. You need to know the MAC address of the peer device.
Chapter 7 Wireless Table 25 Network Setting > Wireless > WDS (continued) LABEL DESCRIPTION Remote Bridge MAC Address You can enter the MAC address of the peer device by clicking the Edit icon under Modify. # This is the index number of the entry. MAC Address This shows the MAC address of the peer device. You can connect to up to 4 peer devices.
Chapter 7 Wireless 7.8 The Others Screen Use this screen to configure advanced wireless settings. Click Network Setting > Wireless > Others. The screen appears as shown. See Section 7.10.2 on page 127 for detailed definitions of the terms listed in this screen. Figure 41 Network Setting > Wireless > Others The following table describes the labels in this screen.
Chapter 7 Wireless Table 27 Network Setting > Wireless > Others (continued) LABEL DESCRIPTION 802.11 Mode Select 802.11b Only to allow only IEEE 802.11b compliant WLAN devices to associate with the Device. Select 802.11g Only to allow only IEEE 802.11g compliant WLAN devices to associate with the Device. Select 802.11n Only to allow only IEEE 802.11n compliant WLAN devices to associate with the Device. Select 802.11b/g Mixed to allow either IEEE 802.11b or IEEE 802.
Chapter 7 Wireless 7.9 The Channel Status Screen Use the Channel Status screen to scan wireless LAN channel noises and view the results. Click Network Setting > Wireless > Channel Status. The screen appears as shown. Click Scan to scan the wireless LAN channels. You can view the results in the Channel Scan Result section. Figure 42 Network Setting > Wireless > Channel Status 7.10 Technical Reference This section discusses wireless LANs in depth. For more information, see Appendix D on page 337. 7.10.
Chapter 7 Wireless • An “infrastructure” type of network has one or more access points and one or more wireless clients. The wireless clients connect to the access points. • An “ad-hoc” type of network is one in which there is no access point. Wireless clients connect to one another in order to exchange information. The following figure provides an example of a wireless network. Figure 43 Example of a Wireless Network The wireless network is the part in the blue circle.
Chapter 7 Wireless variety of networks to exist in the same place without interfering with one another. When you create a network, you must select a channel to use. Since the available unlicensed spectrum varies from one country to another, the number of available channels also varies. 7.10.2 Additional Wireless Terms The following table describes some wireless network terms and acronyms used in the Device’s Web Configurator.
Chapter 7 Wireless Because of the damage that can be done by a malicious attacker, it’s not just people who have sensitive information on their network who should use security. Everybody who uses any wireless network should ensure that effective security is in place. A good way to come up with effective security keys, passwords and so on is to use obscure information that you personally will easily remember, and to enter it in a way that appears random and does not include real words.
Chapter 7 Wireless wireless users to get a valid user name and password. Then, they can use that user name and password to use the wireless network. 7.10.3.4 Encryption Wireless networks can use encryption to protect the information that is sent in the wireless network. Encryption is like a secret code. If you do not know the secret code, you cannot understand the message. The types of encryption you can choose depend on the type of authentication. (See Section 7.10.3.
Chapter 7 Wireless coincidental emitters such as electric motors or microwaves. Problems with absorption occur when physical objects (such as thick walls) are between the two radios, muffling the signal. 7.10.5 BSS A Basic Service Set (BSS) exists when all communications between wireless stations or between a wireless station and a wired network client go through one access point (AP). Intra-BSS traffic is traffic between wireless stations in the BSS.
Chapter 7 Wireless • You must use different keys for different BSSs. If two wireless devices have different BSSIDs (they are in different BSSs), but have the same keys, they may hear each other’s communications (but not communicate with each other). • MBSSID should not replace but rather be used in conjunction with 802.1x security. 7.10.7 Preamble Type Preamble is used to signal that data is coming to the receiver. Short and long refer to the length of the synchronization field in a packet.
Chapter 7 Wireless WPS allows you to quickly set up a wireless network with strong security, without having to configure security settings manually. Each WPS connection works between two devices. Both devices must support WPS (check each device’s documentation to make sure).
Chapter 7 Wireless 1 Ensure WPS is enabled on both devices. 2 Access the WPS section of the AP’s configuration interface. See the device’s User’s Guide for how to do this. 3 Look for the client’s WPS PIN; it will be displayed either on the device, or in the WPS section of the client’s configuration interface (see the device’s User’s Guide for how to find the WPS PIN - for the Device, see Section 7.5 on page 118). 4 Enter the client’s PIN in the AP’s configuration interface.
Chapter 7 Wireless The following figure shows a WPS-enabled wireless client (installed in a notebook computer) connecting to the WPS-enabled AP via the PIN method. Figure 46 Example WPS Process: PIN Method ENROLLEE REGISTRAR WPS This device’s WPS PIN: 123456 WPS Enter WPS PIN from other device: WPS START WPS START WITHIN 2 MINUTES SECURE EAP TUNNEL SSID WPA(2)-PSK COMMUNICATION 7.10.9.3 How WPS Works When two WPS-enabled devices connect, each device must assume a specific role.
Chapter 7 Wireless The following figure shows a WPS-enabled client (installed in a notebook computer) connecting to a WPS-enabled access point. Figure 47 How WPS works ACTIVATE WPS ACTIVATE WPS WITHIN 2 MINUTES WPS HANDSHAKE ENROLLEE REGISTRAR SECURE TUNNEL SECURITY INFO COMMUNICATION The roles of registrar and enrollee last only as long as the WPS setup process is active (two minutes). The next time you use WPS, a different device can be the registrar if necessary.
Chapter 7 Wireless is the registrar, and Client 1 is the enrollee. The registrar randomly generates the security information to set up the network, since it is unconfigured and has no existing information. Figure 48 WPS: Example Network Step 1 ENROLLEE REGISTRAR SECURITY INFO AP1 CLIENT 1 In step 2, you add another wireless client to the network.
Chapter 7 Wireless In step 3, you add another access point (AP2) to your network. AP2 is out of range of AP1, so you cannot use AP1 for the WPS handshake with the new access point. However, you know that Client 2 supports the registrar function, so you use it to perform the WPS handshake instead. Figure 50 WPS: Example Network Step 3 EXISTING CONNECTION CLIENT 1 IS EX O GC TIN ION CT E NN AP1 REGISTRAR CLIENT 2 SE CU RIT Y ENROLLEE INF O AP2 7.10.9.
Chapter 7 Wireless • When you use the PBC method, there is a short period (from the moment you press the button on one device to the moment you press the button on the other device) when any WPS-enabled device could join the network. This is because the registrar has no way of identifying the “correct” enrollee, and cannot differentiate between your enrollee and a rogue device. This is a possible way for a hacker to gain access to a network. You can easily check to see if this has happened.
C HAPT ER 8 Home Networking 8.1 Overview A Local Area Network (LAN) is a shared communication system to which many networking devices are connected. It is usually located in one immediate area such as a building or floor of a building. Use the LAN screens to help you configure a LAN DHCP server and manage IP addresses. LAN DSL 8.1.1 What You Can Do in this Chapter • Use the LAN Setup screen to set the LAN IP address, subnet mask, and DHCP settings of your Device (Section 8.2 on page 141).
Chapter 8 Home Networking 8.1.2 What You Need To Know 8.1.2.1 About LAN IP Address IP addresses identify individual devices on a network. Every networking device (including computers, servers, routers, printers, etc.) needs an IP address to communicate across the network. These networking devices are also known as hosts. Subnet Mask Subnet masks determine the maximum number of possible hosts on a network. You can also use subnet masks to divide one network into multiple sub-networks.
Chapter 8 Home Networking • Assigning lease times to mappings Windows Messenger is an example of an application that supports NAT traversal and UPnP. See the Chapter 11 on page 185 for more information on NAT. Cautions with UPnP The automated nature of NAT traversal applications in establishing their own services and opening firewall ports may present network security issues. Network information and configuration may also be obtained and modified by users in some network environments.
Chapter 8 Home Networking 3 Click Apply to save your settings. Figure 51 Network Setting > Home Networking > LAN Setup The following table describes the fields in this screen. Table 30 Network Setting > Home Networking > LAN Setup LABEL DESCRIPTION Interface Group Group Name Select the interface group name for which you want to configure LAN settings. See Chapter 13 on page 205 for how to create a new interface group.
Chapter 8 Home Networking Table 30 Network Setting > Home Networking > LAN Setup (continued) LABEL DESCRIPTION DHCP Relay Server Address This field is only available when you select DHCP Relay in the DHCP field. IP Address Enter the IP address of the actual remote DHCP server in this field. IP Addressing Values This field is only available when you select Enable in the DHCP field. Beginning IP Address This field specifies the first of the contiguous addresses in the IP address pool.
Chapter 8 Home Networking Table 30 Network Setting > Home Networking > LAN Setup (continued) LABEL DESCRIPTION LAN IPv6 Address Assign Setup Select how you want to obtain an IPv6 address: • • • • stateless + DNS send by RADVD: The Device uses IPv6 stateless autoconfiguration. RADVD (Router Advertisement Daemon) is enabled to have the Device send IPv6 prefix information in router advertisements periodically and in response to router solicitations. DHCPv6 server is disabled.
Chapter 8 Home Networking Use this screen to change your Device’s static DHCP settings. Click Network Setting > Home Networking > Static DHCP to open the following screen. Figure 52 Network Setting > Home Networking > Static DHCP The following table describes the labels in this screen. Table 31 Network Setting > Home Networking > Static DHCP LABEL DESCRIPTION Add new static lease Click this to add a new static DHCP entry. # This is the index number of the entry.
Chapter 8 Home Networking Table 32 Static DHCP: Add/Edit (continued) LABEL DESCRIPTION Select Device Info If you select Manual Input, you can manually type in the MAC address and IP address of a computer on your LAN. You can also choose the name of a computer from the drop list and have the MAC Address and IP Address auto-detected. MAC Address If you select Manual Input, enter the MAC address of a computer on your LAN.
Chapter 8 Home Networking Table 33 Network Setting > Home Networking > UPnP (continued) LABEL DESCRIPTION Apply Click Apply to save your changes. Cancel Click Cancel to exit this screen without saving. 8.5 Installing UPnP in Windows Example This section shows how to install UPnP in Windows Me and Windows XP. Installing UPnP in Windows Me Follow the steps below to install the UPnP in Windows Me. 1 Click Start and Control Panel. Double-click Add/Remove Programs.
Chapter 8 Home Networking 3 In the Communications window, select the Universal Plug and Play check box in the Components selection box. Add/Remove Programs: Windows Setup: Communication: Components 4 Click OK to go back to the Add/Remove Programs Properties window and click Next. 5 Restart the computer when prompted. Installing UPnP in Windows XP Follow the steps below to install the UPnP in Windows XP. 1 Click Start and Control Panel. 2 Double-click Network Connections.
Chapter 8 Home Networking 4 The Windows Optional Networking Components Wizard window displays. Select Networking Service in the Components selection box and click Details. Windows Optional Networking Components Wizard 5 In the Networking Services window, select the Universal Plug and Play check box. Networking Services 6 Click OK to go back to the Windows Optional Networking Component Wizard window and click Next. 8.
Chapter 8 Home Networking Make sure the computer is connected to a LAN port of the Device. Turn on your computer and the Device. Auto-discover Your UPnP-enabled Network Device 1 Click Start and Control Panel. Double-click Network Connections. An icon displays under Internet Gateway. 2 Right-click the icon and select Properties. Network Connections 3 In the Internet Connection Properties window, click Settings to see the port mappings there were automatically created.
Chapter 8 Home Networking 4 You may edit or delete the port mappings or click Add to manually add port mappings. Internet Connection Properties: Advanced Settings Internet Connection Properties: Advanced Settings: Add 5 When the UPnP-enabled device is disconnected from your computer, all port mappings will be deleted automatically. 6 Select Show icon in notification area when connected option and click OK. An icon displays in the system tray.
Chapter 8 Home Networking 7 Double-click on the icon to display your current Internet connection status. Internet Connection Status Web Configurator Easy Access With UPnP, you can access the web-based configurator on the Device without finding out the IP address of the Device first. This comes helpful if you do not know the IP address of the Device. Follow the steps below to access the web configurator. 152 1 Click Start and then Control Panel. 2 Double-click Network Connections.
Chapter 8 Home Networking 3 Select My Network Places under Other Places. Network Connections 4 An icon with the description for each UPnP-enabled device displays under Local Network. 5 Right-click on the icon for your Device and select Invoke. The web configurator login screen displays.
Chapter 8 Home Networking 6 Right-click on the icon for your Device and select Properties. A properties window displays with basic information about the Device.
Chapter 8 Home Networking 8.7 The Additional Subnet Screen Use the Additional Subnet screen to configure IP alias and public static IP. IP alias allows you to partition a physical network into different logical networks over the same Ethernet interface. The Device supports multiple logical LAN interfaces via its physical Ethernet interface with the Device itself as the gateway for the LAN network.
Chapter 8 Home Networking Table 34 Network Setting > Home Networking > Additional Subnet (continued) LABEL DESCRIPTION Offer Public IP by DHCP Select the checkbox to enable the Device to provide public IP addresses by DHCP server. Enable ARP Proxy Select the checkbox to enable the ARP (Address Resolution Protocol) proxy. Apply Click Apply to save your changes. Cancel Click Cancel to exit this screen without saving. 8.
Chapter 8 Home Networking 8.9 The LAN VLAN Screen Click Network Setting > Home Networking > LAN VLAN to open this screen. Use this screen to control the VLAN ID and IEEE 802.1p priority tags of traffic sent out through individual LAN ports. Figure 57 Network Setting > Home Networking > LAN VLAN The following table describes the labels in this screen. Table 36 Network Setting > Home Networking > LAN VLAN LABEL DESCRIPTION Lan Port These represent the Device’s LAN ports.
Chapter 8 Home Networking 8.10.1 LANs, WANs and the Device The actual physical connection determines whether the Device ports are LAN or WAN ports. There are two separate IP networks, one inside the LAN network and the other outside the WAN network as shown next. Figure 58 LAN and WAN IP Addresses LAN WAN 8.10.2 DHCP Setup DHCP (Dynamic Host Configuration Protocol, RFC 2131 and RFC 2132) allows individual clients to obtain TCP/IP configuration at start-up from a server.
Chapter 8 Home Networking • Some ISPs choose to disseminate the DNS server addresses using the DNS server extensions of IPCP (IP Control Protocol) after the connection is up. If your ISP did not give you explicit DNS servers, chances are the DNS servers are conveyed through IPCP negotiation. The Device supports the IPCP DNS server extensions through the DNS proxy feature. Please note that DNS proxy works only when the ISP uses the IPCP DNS server extensions.
Chapter 8 Home Networking You can obtain your IP address from the IANA, from an ISP or it can be assigned from a private network. If you belong to a small organization and your Internet access is through an ISP, the ISP can provide you with the Internet addresses for your local networks. On the other hand, if you are part of a much larger organization, you should consult your network administrator for the appropriate IP addresses.
C HAPT ER 9 Routing 9.1 Overview The Device usually uses the default gateway to route outbound traffic from computers on the LAN to the Internet. To have the Device send data to devices not reachable through the default gateway, use static routes. For example, the next figure shows a computer (A) connected to the Device’s LAN interface. The Device routes most traffic from A to the Internet through the Device’s default gateway (R1).
Chapter 9 Routing 9.2 The Routing Screen Use this screen to view and configure the static route rules on the Device. Click Network Setting > Routing > Static Route to open the following screen. Figure 60 Network Setting > Routing > Static Route The following table describes the labels in this screen. Table 37 Network Setting > Routing > Static Route LABEL DESCRIPTION Add new static route Click this to configure a new static route. # This is the index number of the entry.
Chapter 9 Routing 9.2.1 Add/Edit Static Route Use this screen to add or edit a static route. Click Add new static route in the Routing screen or the Edit icon next to the static route you want to edit. The screen shown next appears. Figure 61 Routing: Add/Edit The following table describes the labels in this screen. Table 38 Routing: Add/Edit LABEL DESCRIPTION Active This field allows you to activate/deactivate this static route. Select this to enable the static route.
Chapter 9 Routing You can use source-based policy forwarding to direct traffic from different users through different connections or distribute traffic among multiple paths for load sharing. The Policy Forwarding screen let you view and configure routing policies on the Device. Click Network Setting > Routing > Policy Forwarding to open the following screen. Figure 62 Network Setting > Routing > Policy Forwarding The following table describes the labels in this screen.
Chapter 9 Routing 9.3.1 Add/Edit Policy Forwarding Click Add new Policy Forward Rule in the Policy Forwarding screen or click the Edit icon next to a policy. Use this screen to configure the required information for a policy route. Figure 63 Policy Forwarding: Add/Edit The following table describes the labels in this screen. Table 40 Policy Forwarding: Add/Edit LABEL DESCRIPTION Policy Name Enter a descriptive name of up to 8 printable English keyboard characters, not including spaces.
Chapter 9 Routing 166 VMG1312-B Series User’s Guide
C HAPTER 10 Quality of Service (QoS) 10.1 Overview Quality of Service (QoS) refers to both a network’s ability to deliver data with minimum delay, and the networking methods used to control the use of bandwidth. Without QoS, all traffic data is equally likely to be dropped when the network is congested. This can cause a reduction in network performance and make the network inadequate for time-critical application such as video-ondemand.
Chapter 10 Quality of Service (QoS) 10.2 What You Need to Know The following terms and concepts may help as you read through this chapter. QoS versus Cos QoS is used to prioritize source-to-destination traffic flows. All packets in the same flow are given the same priority. CoS (class of service) is a way of managing traffic in a network by grouping similar types of traffic together and treating each type as a class. You can use CoS to give different priorities to different packet types.
Chapter 10 Quality of Service (QoS) Traffic Policing Traffic policing is the limiting of the input or output transmission rate of a class of traffic on the basis of user-defined criteria. Traffic policing methods measure traffic flows against user-defined criteria and identify it as either conforming, exceeding or violating the criteria.
Chapter 10 Quality of Service (QoS) The following table describes the labels in this screen. Table 41 Network Setting > QoS > General LABEL DESCRIPTION QoS Select the Enable check box to turn on QoS to improve your network performance. WAN Managed Upstream Bandwidth Enter the amount of upstream bandwidth for the WAN interfaces that you want to allocate using QoS. The recommendation is to set this speed to match the interfaces’ actual transmission speed.
Chapter 10 Quality of Service (QoS) Use this screen to configure QoS queue assignment. Figure 65 Network Setting > QoS > Queue Setup The following table describes the labels in this screen. Table 42 Network Setting > QoS > Queue Setup LABEL DESCRIPTION Add new Queue Click this button to create a new queue entry. # This is the index number of the entry. Status This field displays whether the queue is active or not. A yellow bulb signifies that this queue is active.
Chapter 10 Quality of Service (QoS) 10.4.1 Adding a QoS Queue Click Add new Queue or the edit icon in the Queue Setup screen to configure a queue. Figure 66 Queue Setup: Add The following table describes the labels in this screen. Table 43 Queue Setup: Add LABEL DESCRIPTION Active Select to enable or disable this queue. Name Enter the descriptive name of this queue. Interface Select the interface to which this queue is applied. This field is read-only if you are editing the queue.
Chapter 10 Quality of Service (QoS) You can give different priorities to traffic that the Device forwards out through the WAN interface. Give high priority to voice and video to make them run more smoothly. Similarly, give low priority to many large file downloads so that they do not reduce the quality of other applications. Click Network Setting > QoS > Class Setup to open the following screen. Figure 67 Network Setting > QoS > Class Setup The following table describes the labels in this screen.
Chapter 10 Quality of Service (QoS) 10.5.1 Add/Edit QoS Class Click Add new Classifier in the Class Setup screen or the Edit icon next to a classifier to open the following screen.
Chapter 10 Quality of Service (QoS) The following table describes the labels in this screen. Table 45 Class Setup: Add/Edit LABEL DESCRIPTION Active Select this to enable this classifier. Class Name Enter a descriptive name of up to 15 printable English keyboard characters, not including spaces. Classification Order Select an existing number for where you want to put this classifier to move the classifier to the number you selected after clicking Apply.
Chapter 10 Quality of Service (QoS) Table 45 Class Setup: Add/Edit (continued) LABEL Service DESCRIPTION This field is available only when you select IP in the Ether Type field. This field simplifies classifier configuration by allowing you to select a predefined application. When you select a predefined application, you do not configure the rest of the filter fields. IP Protocol This field is available only when you select IP in the Ether Type field.
Chapter 10 Quality of Service (QoS) Table 45 Class Setup: Add/Edit (continued) LABEL DESCRIPTION To Queue Index Select a queue that applies to this class. You should have configured a queue in the Queue Setup screen already. Apply Click Apply to save your changes. Cancel Click Cancel to exit this screen without saving. 10.6 The QoS Policer Setup Screen Use this screen to configure QoS policers that allow you to limit the transmission rate of incoming traffic.
Chapter 10 Quality of Service (QoS) 10.6.1 Add/Edit a QoS Policer Click Add new Policer in the Policer Setup screen or the Edit icon next to a policer to show the following screen. Figure 70 Policer Setup: Add/Edit The following table describes the labels in this screen. Table 47 Policer Setup: Add/Edit LABEL DESCRIPTION Active Select the check box to activate this policer. Name Enter the descriptive name of this policer. Meter Type This shows the traffic metering algorithm used in this policer.
Chapter 10 Quality of Service (QoS) Table 47 Policer Setup: Add/Edit LABEL DESCRIPTION Available Class Select a QoS classifier to apply this QoS policer to traffic that matches the QoS classifier. Selected Class Highlight a QoS classifier in the Available Class box and use the > button to move it to the Selected Class box. To remove a QoS classifier from the Selected Class box, select it and use the < button. Apply Click Apply to save your changes.
Chapter 10 Quality of Service (QoS) 10.8 Technical Reference The following section contains additional technical information about the Device features described in this chapter. IEEE 802.1Q Tag The IEEE 802.1Q standard defines an explicit VLAN tag in the MAC header to identify the VLAN membership of a frame across bridges. A VLAN tag includes the 12-bit VLAN ID and 3-bit user priority.
Chapter 10 Quality of Service (QoS) DSCP is backward compatible with the three precedence bits in the ToS octet so that non-DiffServ compliant, ToS-enabled network device will not conflict with the DSCP mapping. DSCP (6 bits) Unused (2 bits) The DSCP value determines the forwarding behavior, the PHB (Per-Hop Behavior), that each packet gets across the DiffServ network. Based on the marking rule, different kinds of traffic can be marked for different kinds of forwarding.
Chapter 10 Quality of Service (QoS) Table 50 Internal Layer2 and Layer3 QoS Mapping LAYER 2 LAYER 3 PRIORITY QUEUE IEEE 802.1P USER PRIORITY (ETHERNET PRIORITY) TOS (IP PRECEDENCE) DSCP 6 6 4 100110 IP PACKET LENGTH (BYTE) 100100 100010 100000 5 101110 101000 7 7 6 110000 7 111000 Token Bucket The token bucket algorithm uses tokens in a bucket to control when traffic can be transmitted. The bucket stores tokens, each of which represents one byte.
Chapter 10 Quality of Service (QoS) The srTCM evaluates incoming packets and marks them with one of three colors which refer to packet loss priority levels. High packet loss priority level is referred to as red, medium is referred to as yellow and low is referred to as green. The srTCM is based on the token bucket filter and has two token buckets (CBS and EBS). Tokens are generated and added into the bucket at a constant rate, called Committed Information Rate (CIR).
Chapter 10 Quality of Service (QoS) 184 VMG1312-B Series User’s Guide
C HAPTER 11 Network Address Translation (NAT) 11.1 Overview This chapter discusses how to configure NAT on the Device. NAT (Network Address Translation NAT, RFC 1631) is the translation of the IP address of a host in a packet, for example, the source address of an outgoing packet, used within one network to a different IP address known within another network. 11.1.
Chapter 11 Network Address Translation (NAT) WAN side. When the response comes back, NAT translates the destination address (the inside global address) back to the inside local address before forwarding it to the original inside host. Port Forwarding A port forwarding set is a list of inside (behind NAT on the LAN) servers, for example, web or FTP, that you can make visible to the outside world even though NAT makes your whole inside network appear as a single computer to the outside world.
Chapter 11 Network Address Translation (NAT) third (C in the example). You assign the LAN IP addresses and the ISP assigns the WAN IP address. The NAT network appears as a single host on the Internet. Figure 72 Multiple Servers Behind NAT Example A=192.168.1.33 LAN WAN B=192.168.1.34 192.168.1.1 IP Address assigned by ISP C=192.168.1.3 D=192.168.1.36 Click Network Setting > NAT > Port Forwarding to open the following screen.
Chapter 11 Network Address Translation (NAT) Table 51 Network Setting > NAT > Port Forwarding (continued) LABEL DESCRIPTION Protocol This shows the IP protocol supported by this virtual server, whether it is TCP, UDP, or TCP/ UDP. Modify Click the Edit icon to edit this rule. Click the Delete icon to delete an existing rule. 11.2.1 Add/Edit Port Forwarding Click Add new rule in the Port Forwarding screen or click the Edit icon next to an existing rule to open the following screen.
Chapter 11 Network Address Translation (NAT) Table 52 Port Forwarding: Add/Edit (continued) LABEL DESCRIPTION End Port Enter the last port of the original destination port range. To forward only one port, enter the port number in the Start Port field above and then enter it again in this field. To forward a series of ports, enter the last port number in a series that begins with the port number in the Start Port field above.
Chapter 11 Network Address Translation (NAT) 11.3.1 Add New Application This screen lets you create new NAT application rules. Click Add new application in the Applications screen to open the following screen. Figure 76 Applications: Add The following table describes the labels in this screen. Table 54 Applications: Add LABEL DESCRIPTION WAN Interface Select the WAN interface that you want to apply this NAT rule to. Server IP Address Enter the inside IP address of the application here.
Chapter 11 Network Address Translation (NAT) For example: Figure 77 Trigger Port Forwarding Process: Example 1 Jane requests a file from the Real Audio server (port 7070). 2 Port 7070 is a “trigger” port and causes the Device to record Jane’s computer IP address. The Device associates Jane's computer IP address with the "open" port range of 6970-7170. 3 The Real Audio server responds using a port number ranging between 6970-7170. 4 The Device forwards the traffic to Jane’s computer IP address.
Chapter 11 Network Address Translation (NAT) Table 55 Network Setting > NAT > Port Triggering (continued) LABEL DESCRIPTION Open Start Port The open port is a port (or a range of ports) that a server on the WAN uses when it sends out a particular service. The Device forwards the traffic with this port (or range of ports) to the client computer on the LAN that requested the service. This is the first port number that identifies a service.
Chapter 11 Network Address Translation (NAT) Table 56 Port Triggering: Configuration Add/Edit (continued) LABEL DESCRIPTION Open Start Port The open port is a port (or a range of ports) that a server on the WAN uses when it sends out a particular service. The Device forwards the traffic with this port (or range of ports) to the client computer on the LAN that requested the service. Type a port number or the starting port number in a range of port numbers.
Chapter 11 Network Address Translation (NAT) 11.6 The ALG Screen Some NAT routers may include a SIP Application Layer Gateway (ALG). A SIP ALG allows SIP calls to pass through NAT by examining and translating IP addresses embedded in the data stream. When the Device registers with the SIP register server, the SIP ALG translates the Device’s private IP address inside the SIP data stream to a public IP address. You do not need to use STUN or an outbound proxy if your Device is behind a SIP ALG.
Chapter 11 Network Address Translation (NAT) The following table describes the fields in this screen. Table 59 Network Setting > NAT > Address Mapping LABEL DESCRIPTION Add new rule Click this to create a new rule. Set This is the index number of the address mapping set. Local Start IP This is the starting Inside Local IP Address (ILA). Local End IP This is the ending Inside Local IP Address (ILA). If the rule is for all local IP addresses, then this field displays 0.0.0.
Chapter 11 Network Address Translation (NAT) The following table describes the fields in this screen. Table 60 Address Mapping: Add/Edit LABEL DESCRIPTION Type Choose the IP/port mapping type from one of the following. One-to-One: This mode maps one local IP address to one global IP address. Note that port numbers do not change for the One-to-one NAT mapping type. Many-to-One: This mode maps multiple local IP addresses to one global IP address. This is equivalent to SUA (i.e.
Chapter 11 Network Address Translation (NAT) Note that inside/outside refers to the location of a host, while global/local refers to the IP address of a host used in a packet. Thus, an inside local address (ILA) is the IP address of an inside host in a packet when the packet is still in the local network, while an inside global address (IGA) is the IP address of the same inside host when the packet is on the WAN side. The following table summarizes this information.
Chapter 11 Network Address Translation (NAT) 11.8.3 How NAT Works Each packet has two addresses – a source address and a destination address. For outgoing packets, the ILA (Inside Local Address) is the source address on the LAN, and the IGA (Inside Global Address) is the source address on the WAN. For incoming packets, the ILA is the destination address on the LAN, and the IGA is the destination address on the WAN.
Chapter 11 Network Address Translation (NAT) 11.8.4 NAT Application The following figure illustrates a possible NAT application, where three inside LANs (logical LANs using IP alias) behind the Device can communicate with three distinct WAN networks. Figure 85 NAT Application With IP Alias Port Forwarding: Services and Port Numbers The most often used port numbers are shown in the following table. Please refer to RFC 1700 for further information about port numbers.
Chapter 11 Network Address Translation (NAT) Port Forwarding Example Let's say you want to assign ports 21-25 to one FTP, Telnet and SMTP server (A in the example), port 80 to another (B in the example) and assign a default server IP address of 192.168.1.35 to a third (C in the example). You assign the LAN IP addresses and the ISP assigns the WAN IP address. The NAT network appears as a single host on the Internet. Figure 86 Multiple Servers Behind NAT Example A=192.168.1.33 192.168.1.1 B=192.168.1.
C HAPTER 12 Dynamic DNS Setup 12.1 Overview DNS DNS (Domain Name System) is for mapping a domain name to its corresponding IP address and vice versa. The DNS server is extremely important because without it, you must know the IP address of a machine before you can access it. In addition to the system DNS server(s), each WAN interface (service) is set to have its own static or dynamic DNS server list.
Chapter 12 Dynamic DNS Setup 12.1.2 What You Need To Know DYNDNS Wildcard Enabling the wildcard feature for your host causes *.yourhost.dyndns.org to be aliased to the same IP address as yourhost.dyndns.org. This feature is useful if you want to be able to use, for example, www.yourhost.dyndns.org and still reach your hostname. If you have a private WAN IP address, then you cannot use Dynamic DNS. 12.2 The DNS Entry Screen Use this screen to view and configure DNS routes on the Device.
Chapter 12 Dynamic DNS Setup 12.2.1 Add/Edit DNS Entry You can manually add or edit the Device’s DNS name and IP address entry. Click Add new DNS entry in the DNS Entry screen or the Edit icon next to the entry you want to edit. The screen shown next appears. Figure 88 DNS Entry: Add/Edit The following table describes the labels in this screen. Table 64 DNS Entry: Add/Edit LABEL DESCRIPTION Host Name Enter the host name of the DNS entry. IP Address Enter the IP address of the DNS entry.
Chapter 12 Dynamic DNS Setup The following table describes the fields in this screen. Table 65 Network Setting > DNS > > Dynamic DNS LABEL DESCRIPTION Dynamic DNS Select Enable to use dynamic DNS. Service Provider Select your Dynamic DNS service provider from the drop-down list box. Hostname Type the domain name assigned to your Device by your Dynamic DNS provider. You can specify up to two host names in the field separated by a comma (","). 204 Username Type your user name.
C HAPTER 13 Interface Group 13.1 Overview By default, all LAN and WAN interfaces on the Device are in the same group and can communicate with each other. Create interface groups to have the Device assign the IP addresses in different domains to different groups. Each group acts as an independent network on the Device. This lets devices connected to an interface group’s LAN interfaces communicate through the interface group’s WAN or LAN interfaces but not other WAN or LAN interfaces. 13.1.
Chapter 13 Interface Group In the following example, the client that sends packets with the DHCP Vendor ID option set to MSFT 5.0 (meaning it is a Windows 2000 DHCP client) is assigned the IP address 192.168.2.2 and uses the WAN VDSL_PoE/ppp0.1 interface. Figure 90 Interface Grouping Application Default: ETH 2~4 192.168.1.x/24 eth10.0 Internet VDSL_PoE/ppp0.1 192.168.2.x/24 DHCP Vendor ID option: MSFT 5.0 Click Network Setting > Interface Group to open the following screen.
Chapter 13 Interface Group Note: An interface can belong to only one group at a time. Figure 92 Interface Group Configuration The following table describes the fields in this screen. Table 67 Interface Group Configuration LABEL DESCRIPTION Group Name Enter a name to identify this group. You can enter up to 30 characters. You can use letters, numbers, hyphens (-) and underscores (_). Spaces are not allowed. WAN Interface used in the grouping Select the WAN interface this group uses.
Chapter 13 Interface Group Table 67 Interface Group Configuration (continued) LABEL DESCRIPTION Remove Click the Remove icon to delete this rule from the Device. Apply Click Apply to save your changes back to the Device. Cancel Click Cancel to exit this screen without saving. 13.2.2 Interface Grouping Criteria Click the Add button in the Interface Grouping Configuration screen to open the following screen.
Chapter 13 Interface Group Table 68 Interface Grouping Criteria (continued) LABEL DUID type DESCRIPTION Select DUID-LLT (DUID Based on Link-layer Address Plus Time) to enter the hardware type, a time value and the MAC address of the device. Select DUID-EN (DUID Assigned by Vendor Based upon Enterprise Number) to enter the vendor’s registered enterprise number. Select DUID-LL (DUID Based on Link-layer Address) to enter the device’s hardware type and hardware address (MAC address) in the following fields.
Chapter 13 Interface Group 210 VMG1312-B Series User’s Guide
C HAPTER 14 USB Service 14.1 Overview The Device has a USB port used to share files via a USB memory stick or a USB hard drive. In the USB Service screens, you can enable file-sharing server, media server, and printer server. 14.1.1 What You Can Do in this Chapter • Use the File Sharing screen to enable file-sharing server (Section 14.2 on page 212). • Use the Media Server screen to enable or disable the sharing of media files (Section 14.3 on page 214).
Chapter 14 USB Service protocol is supported on Microsoft Windows, Linux Samba and other operating systems (refer to your systems specifications for CIFS compatibility). 14.1.2.2 About Printer Server Print Server This is a computer or other device which manages one or more printers, and which sends print jobs to each printer from the computer itself or other devices. Operating System An operating system (OS) is the interface which helps you manage a computer.
Chapter 14 USB Service The following figure is an overview of the Device’s file server feature. Computers A and B can access files on a USB device (C) which is connected to the Device. Figure 94 File Sharing Overview B C A The Device will not be able to join the workgroup if your local area network has restrictions set up that do not allow devices to join a workgroup. In this case, contact your network administrator. 14.2.
Chapter 14 USB Service Each field is described in the following table. Table 69 Network Setting > Home Networking > File Sharing LABEL DESCRIPTION File Sharing Services Select Enable to activate file sharing through the Device. Host Name Enter the host name on the share. Apply Click Apply to save your changes. Cancel Click Cancel to restore your previously saved settings. 14.
Chapter 14 USB Service The following table describes the labels in this menu. Table 70 Network Setting > USB Service > Media Server LABEL DESCRIPTION Media Server Select Enable to have the Device function as a DLNA-compliant media server. Enable the media server to let (DLNA-compliant) media clients on your network play media files located in the shares. Apply Click Apply to save your changes. Cancel Click Cancel to restore your previously saved settings. 14.
Chapter 14 USB Service To access this screen, click Network Setting > USB Service > Printer Server. Figure 98 Network Setting > USB Service > Printer Server The following table describes the labels in this menu. Table 71 Network Setting > USB Service > Print Server 216 LABEL DESCRIPTION Printer Server Select Enable to have the Device share a USB printer. Printer Name Enter the name of the printer. Make and model Enter the manufacturer and model number of the printer.
C HAPTER 15 Firewall 15.1 Overview This chapter shows you how to enable and configure the Device’s security settings. Use the firewall to protect your Device and network from attacks by hackers on the Internet and control access to it. By default the firewall: • allows traffic that originates from your LAN computers to go to all other networks. • blocks traffic that originates on other networks from going to the LAN. The following figure illustrates the default firewall action.
Chapter 15 Firewall 15.1.2 What You Need to Know SYN Attack A SYN attack floods a targeted system with a series of SYN packets. Each packet causes the targeted system to issue a SYN-ACK response. While the targeted system waits for the ACK that follows the SYN-ACK, it queues up all outstanding SYN-ACK responses on a backlog queue. SYNACKs are moved off the queue only when an ACK comes back or when an internal timer terminates the three-way handshake.
Chapter 15 Firewall 15.2 The Firewall Screen Use this screen to set the security level of the firewall on the Device. Firewall rules are grouped based on the direction of travel of packets to which they apply. Click Security > Firewall to display the General screen. Figure 100 Security > Firewall > General The following table describes the labels in this screen. Table 72 Security > Firewall > General LABEL DESCRIPTION Firewall Select Enable to activate the firewall feature on the Device.
Chapter 15 Firewall Click Security > Firewall > Service to display the following screen. Figure 101 Security > Firewall > Service The following table describes the labels in this screen. Table 73 Security > Firewall > Service LABEL DESCRIPTION Add new service entry Click this to add a new service. Name This is the name of your customized service. Description This is the description of your customized service.
Chapter 15 Firewall The following table describes the labels in this screen. Table 74 Service: Add/Edit LABEL DESCRIPTION Protocol Choose the IP protocol (TCP, UDP, ICMP, or Other) that defines your customized port from the drop-down list box. Select Other to be able to enter a protocol number. Source/ These fields are displayed if you select TCP or UDP as the IP port. Destination Port Select Single to specify one port only or Range to specify a span of ports that define your customized service.
Chapter 15 Firewall The following table describes the labels in this screen. Table 75 Security > Firewall > Access Control LABEL DESCRIPTION DoS Protection DoS (Denial of Service) attacks can flood your Internet connection with invalid packets and connection requests, using so much bandwidth and so many resources that Internet access becomes unavailable. Select the Enable check box to enable protection against DoS attacks.
Chapter 15 Firewall 15.4.1 Add/Edit an ACL Rule Click Add new ACL rule or the Edit icon next to an existing ACL rule in the Access Control screen. The following screen displays. Figure 104 Access Control: Add/Edit The following table describes the labels in this screen. Table 76 Access Control: Add/Edit LABEL DESCRIPTION Filter Name Enter a descriptive name of up to 16 alphanumeric characters, not including spaces, underscores, and dashes. You must enter the filter name to add an ACL rule.
Chapter 15 Firewall Table 76 Access Control: Add/Edit (continued) LABEL DESCRIPTION IP Type Select whether your IP type is IPv4 or IPv6. Select Protocol Select the transport layer protocol that defines your customized port from the drop-down list box. The specific protocol rule sets you add in the Security > Firewall > Service > Add screen display in this list. If you want to configure a customized protocol, select Specific Service.
Chapter 15 Firewall The following table describes the labels in this screen. Table 77 Security > Firewall > DoS LABEL DESCRIPTION DoS Protection Blocking Select Enable to enable protection against DoS attacks. Deny Ping Response Select Enable to block ping request packets. Apply Click Apply to save your changes. Cancel Click Cancel to exit this screen without saving.
Chapter 15 Firewall 226 VMG1312-B Series User’s Guide
C HAPTER 16 MAC Filter 16.1 Overview You can configure the Device to permit access to clients based on their MAC addresses in the MAC Filter screen. This applies to wired and wireless connections. Every Ethernet device has a unique MAC (Media Access Control) address. The MAC address is assigned at the factory and consists of six pairs of hexadecimal characters, for example, 00:A0:C5:00:00:02. You need to know the MAC addresses of the devices to configure this screen. 16.
Chapter 16 MAC Filter The following table describes the labels in this screen. Table 78 Security > MAC Filter LABEL DESCRIPTION MAC Address Filter Select Enable to activate the MAC filter function. Set This is the index number of the MAC address. Allow Select Allow to permit access to the Device. MAC addresses not listed will be denied access to the Device. If you clear this, the MAC Address field for this set clears.
C HAPTER 17 Parental Control 17.1 Overview Parental control allows you to block web sites with the specific URL. You can also define time periods and days during which the Device performs parental control on a specific user. 17.2 The Parental Control Screen Use this screen to enable parental control, view the parental control rules and schedules. Click Security > Parental Control to open the following screen. Figure 107 Security > Parental Control The following table describes the fields in this screen.
Chapter 17 Parental Control Table 79 Security > Parental Control (continued) LABEL DESCRIPTION Internet Access Schedule This shows the day(s) and time on which parental control is enabled. Network Service This shows whether the network service is configured. If not, None will be shown. Website Block This shows whether the website block is configured. If not, None will be shown. Modify Click the Edit icon to go to the screen where you can edit the rule.
Chapter 17 Parental Control The following table describes the fields in this screen. Table 80 Parental Control Rule: Add/Edit LABEL DESCRIPTION General Active Select the checkbox to activate this parental control rule. Parental Control Profile Name Enter a descriptive name for the rule. Home Network User Select the LAN user that you want to apply this rule to from the drop-down list box. If you select Custom, enter the LAN user’s MAC address. If you select All, the rule applies to all LAN users.
Chapter 17 Parental Control 232 VMG1312-B Series User’s Guide
C HAPTER 18 Scheduler Rules 18.1 Overview You can define time periods and days during which the Device performs scheduled rules of certain features (such as Firewall Access Control, Parental Control) on a specific user in the Scheduler Rules screen. 18.2 The Scheduler Rules Screen Use this screen to view, add, or edit time schedule rules. Click Security > Scheduler Rules to open the following screen. Figure 109 Security > Scheduler Rules The following table describes the fields in this screen.
Chapter 18 Scheduler Rules 18.2.1 Add/Edit a Schedule Click the Add button in the Scheduler Rules screen or click the Edit icon next to a schedule rule to open the following screen. Use this screen to configure a restricted access schedule for a specific user on your network. Figure 110 Scheduler Rules: Add/Edit The following table describes the fields in this screen.
C HAPTER 19 Certificates 19.1 Overview The Device can use certificates (also called digital IDs) to authenticate users. Certificates are based on public-private key pairs. A certificate contains the certificate owner’s identity and public key. Certificates provide a way to exchange public keys for use in authentication. 19.1.1 What You Can Do in this Chapter • The Local Certificates screen lets you generate certification requests and import the Device's CA-signed certificates (Section 19.4 on page 239).
Chapter 19 Certificates 19.3 The Local Certificates Screen Click Security > Certificates to open the Local Certificates screen. This is the Device’s summary list of certificates and certification requests. Figure 111 Security > Certificates > Local Certificates The following table describes the labels in this screen.
Chapter 19 Certificates 19.3.1 Create Certificate Request Click Security > Certificates > Local Certificates and then Create Certificate Request to open the following screen. Use this screen to have the Device generate a certification request. Figure 112 Create Certificate Request The following table describes the labels in this screen. Table 84 Create Certificate Request LABEL DESCRIPTION Certificate Name Type up to 63 ASCII characters (not including spaces) to identify this certificate.
Chapter 19 Certificates Figure 113 Certificate Request Created 19.3.2 Load Signed Certificate After you create a certificate request and have it signed by a Certificate Authority, in the Local Certificates screen click the certificate request’s Load Signed icon to import the signed certificate into the Device. Note: You must remove any spaces from the certificate’s filename before you can import it.
Chapter 19 Certificates The following table describes the labels in this screen. Table 85 Load Signed Certificate LABEL DESCRIPTION Certificate Name This is the name of the signed certificate. Certificate Copy and paste the signed certificate into the text box to store it on the Device. Apply Click Apply to save your changes. Cancel Click Cancel to exit this screen without saving. 19.4 The Trusted CA Screen Click Security > Certificates > Trusted CA to open the following screen.
Chapter 19 Certificates 19.4.1 View Trusted CA Certificate Click the View icon in the Trusted CA screen to open the following screen. Use this screen to view in-depth information about the certification authority’s certificate. Figure 116 Trusted CA: View The following table describes the fields in this screen. Table 87 Trusted CA: View LABEL DESCRIPTION Name This field displays the identifying name of this certificate. Type This field displays general information about the certificate.
Chapter 19 Certificates 19.4.2 Import Trusted CA Certificate Click the Import Certificate button in the Trusted CA screen to open the following screen. The Device trusts any valid certificate signed by any of the imported trusted CA certificates. Figure 117 Trusted CA: Import Certificate The following table describes the fields in this screen.
Chapter 19 Certificates 242 VMG1312-B Series User’s Guide
C HAPTER 20 Log 20.1 Overview The web configurator allows you to choose which categories of events and/or alerts to have the Device log and then display the logs or have the Device send them to an administrator (as e-mail) or to a syslog server. 20.1.1 What You Can Do in this Chapter • Use the System Log screen to see the system logs (Section 20.2 on page 244). • Use the Security Log screen to see the security-related logs for the categories that you select (Section 20.3 on page 245). 20.1.
Chapter 20 Log Table 89 Syslog Severity Levels CODE SEVERITY 5 Notice: There is a normal but significant condition on the system. 6 Informational: The syslog contains an informational message. 7 Debug: The message is intended for debug-level purposes. 20.2 The System Log Screen Use the System Log screen to see the system logs. Click System Monitor > Log to open the System Log screen. Figure 118 System Monitor > Log > System Log The following table describes the fields in this screen.
Chapter 20 Log 20.3 The Security Log Screen Use the Security Log screen to see the security-related logs for the categories that you select. Click System Monitor > Log > Security Log to open the following screen. Figure 119 System Monitor > Log > Security Log The following table describes the fields in this screen. Table 91 System Monitor > Log > Security Log LABEL DESCRIPTION Level Select a severity level from the drop-down list box.
Chapter 20 Log 246 VMG1312-B Series User’s Guide
C HAPTER 21 Traffic Status 21.1 Overview Use the Traffic Status screens to look at network traffic status and statistics of the WAN and LAN interfaces. 21.1.1 What You Can Do in this Chapter • Use the WAN screen to view the WAN traffic statistics (Section 21.2 on page 247). • Use the LAN screen to view the LAN traffic statistics (Section 21.3 on page 249). 21.2 The WAN Status Screen Click System Monitor > Traffic Status to open the WAN screen.
Chapter 21 Traffic Status The following table describes the fields in this screen. Table 92 System Monitor > Traffic Status > WAN LABEL DESCRIPTION Connected Interface This shows the name of the WAN interface that is currently connected. Packets Sent Data This indicates the number of transmitted packets on this interface. Error This indicates the number of frames with errors transmitted on this interface. Drop This indicates the number of outgoing packets dropped on this interface.
Chapter 21 Traffic Status 21.3 The LAN Status Screen Click System Monitor > Traffic Status > LAN to open the following screen. The figure in this screen shows the interface that is currently connected on the Device. Figure 121 System Monitor > Traffic Status > LAN The following table describes the fields in this screen. Table 93 System Monitor > Traffic Status > LAN LABEL DESCRIPTION Refresh Interval Select how often you want the Device to update this screen.
Chapter 21 Traffic Status 250 VMG1312-B Series User’s Guide
C HAPTER 22 ARP Table 22.1 Overview Address Resolution Protocol (ARP) is a protocol for mapping an Internet Protocol address (IP address) to a physical machine address, also known as a Media Access Control or MAC address, on the local area network. An IP (version 4) address is 32 bits long. In an Ethernet LAN, MAC addresses are 48 bits long. The ARP Table maintains an association between each MAC address and its corresponding IP address. 22.1.
Chapter 22 ARP Table Table 94 System Monitor > ARP Table (continued) LABEL 252 DESCRIPTION MAC Address This is the MAC address of the device with the listed IP address. Device This is the type of interface used by the device. You can click on the device type to go to its configuration screen.
C HAPTER 23 Routing Table 23.1 Overview Routing is based on the destination address only and the Device takes the shortest path to forward a packet. 23.2 The Routing Table Screen Click System Monitor > Routing Table to open the following screen. Figure 123 System Monitor > Routing Table The following table describes the labels in this screen. Table 95 System Monitor > Routing Table LABEL DESCRIPTION Destination This indicates the destination IP address of this route.
Chapter 23 Routing Table Table 95 System Monitor > Routing Table (continued) LABEL DESCRIPTION Service This indicates the name of the service used to forward the route. Interface This indicates the name of the interface through which the route is forwarded. br0 indicates the LAN interface. ptm0 indicates the WAN interface using IPoE or in bridge mode. ppp0 indicates the WAN interface using PPPoE.
C HAPTER 24 IGMP Status 24.1 Overview Use the IGMP Status screens to look at IGMP group status and traffic statistics. 24.2 The IGMP Group Status Screen Use this screen to look at the current list of multicast groups the Device has joined and which ports have joined it. To open this screen, click System Monitor > IGMP Group Status. Figure 124 System Monitor > IGMP Group Status The following table describes the labels in this screen.
Chapter 24 IGMP Status 256 VMG1312-B Series User’s Guide
C HAPTER 25 xDSL Statistics 25.1 The xDSL Statistics Screen Use this screen to view detailed DSL statistics. Click System Monitor > xDSL Statistics to open the following screen.
Chapter 25 xDSL Statistics The following table describes the labels in this screen. Table 97 Status > xDSL Statistics LABEL DESCRIPTION Refresh Interval Select the time interval for refreshing statistics. Line Select which DSL line’s statistics you want to display. xDSL Training Status This displays the current state of setting up the DSL connection. Mode This displays the ITU standard used for this connection. Traffic Type This displays the type of traffic the DSL port is sending and receiving.
Chapter 25 xDSL Statistics Table 97 Status > xDSL Statistics (continued) LABEL DESCRIPTION Downstream These are the statistics for the traffic direction coming into the port from the service provider. Upstream These are the statistics for the traffic direction going out from the port to the service provider. FEC This is the number of Far End Corrected blocks. CRC This is the number of Cyclic Redundancy Checks.
Chapter 25 xDSL Statistics 260 VMG1312-B Series User’s Guide
C HAPTER 26 User Account 26.1 Overview In the Users Account screen, you can change the password of the user account that you used to log in the Device. 26.2 The User Account Screen Click Maintenance > User Account to open the following screen. Figure 126 Maintenance > User Account The following table describes the labels in this screen. Table 98 Maintenance > User Account LABEL DESCRIPTION User Name This field displays the name of the account that you used to log in the system.
Chapter 26 User Account 262 VMG1312-B Series User’s Guide
C HAPTER 27 Remote Management 27.1 Overview Remote Management allows you to manage your Device from a remote location through the following interfaces: • LAN • WAN • Trust Domain Note: The Device is managed using the Web Configurator. 27.2 The Remote MGMT Screen Use this screen to configure through which interface(s) users can use which service(s) to manage the Device. Click Maintenance > Remote MGMT to open the following screen.
Chapter 27 Remote Management The following table describes the fields in this screen. Table 99 Maintenance > Remote MGMT LABEL DESCRIPTION Trust Domain Status This field displays whether the Trust Domain is active or not. IP Address Enter the Trust Domain IP address. Services This is the service you may use to access the Device. LAN/WLAN Select the Enable check box for the corresponding services that you want to allow access to the Device from the LAN/WLAN.
C HAPTER 28 TR-069 Client 28.1 Overview This chapter explains how to configure the Device’s TR-069 auto-configuration settings. 28.2 The TR-069 Client Screen TR-069 defines how Customer Premise Equipment (CPE), for example your Device, can be managed over the WAN by an Auto Configuration Server (ACS). TR-069 is based on sending Remote Procedure Calls (RPCs) between an ACS and a client device. RPCs are sent in Extensible Markup Language (XML) format over HTTP or HTTPS.
Chapter 28 TR-069 Client The following table describes the fields in this screen. Table 100 Maintenance > TR-069 Client 266 LABEL DESCRIPTION Inform Select Enable for the Device to send periodic inform via TR-069 on the WAN. Otherwise, select Disable. Inform Interval Enter the time interval (in seconds) at which the Device sends information to the autoconfiguration server. ACS URL Enter the URL or IP address of the auto-configuration server.
C HAPTER 29 TR-064 29.1 Overview This chapter explains how to configure the Device’s TR-064 auto-configuration settings. 29.2 The TR-064 Screen TR-064 is a LAN-Side DSL CPE Configuration protocol defined by the DSL Forum. TR-064 is built on top of UPnP. It allows the users to use a TR-064 compliant CPE management application on their computers from the LAN to discover the CPE and configure user-specific parameters, such as the username and password.
Chapter 29 TR-064 268 VMG1312-B Series User’s Guide
C HAPTER 30 Time Settings 30.1 Overview This chapter shows you how to configure system related settings, such as system time, password, name, the domain name and the inactivity timeout interval. 30.2 The Time Screen To change your Device’s time and date, click Maintenance > Time. The screen appears as shown. Use this screen to configure the Device’s time based on your local time zone.
Chapter 30 Time Settings The following table describes the fields in this screen. Table 102 Maintenance > Time Setting LABEL DESCRIPTION Current Date/Time Current Time This field displays the time of your Device. Each time you reload this page, the Device synchronizes the time with the time server. Current Date This field displays the date of your Device. Each time you reload this page, the Device synchronizes the date with the time server.
Chapter 30 Time Settings Table 102 Maintenance > Time Setting (continued) LABEL DESCRIPTION Apply Click Apply to save your changes. Cancel Click Cancel to exit this screen without saving.
Chapter 30 Time Settings 272 VMG1312-B Series User’s Guide
C HAPTER 31 E-mail Notification 31.1 Overview A mail server is an application or a computer that runs such an application to receive, forward and deliver e-mail messages. To have the Device send reports, logs or notifications via e-mail, you must specify an e-mail server and the e-mail addresses of the sender and receiver. 31.2 The Email Notification Screen Click Maintenance > Email Notification to open the Email Notification screen.
Chapter 31 E-mail Notification 31.2.1 Email Notification Edit Click the Add button in the Email Notification screen. Use this screen to configure the required information for sending e-mail via a mail server. Figure 132 Email Notification > Add The following table describes the labels in this screen. Table 104 Email Notification > Add LABEL DESCRIPTION Mail Server Address Enter the server name or the IP address of the mail server for the e-mail address specified in the Account Email Address field.
C HAPTER 32 Logs Setting 32.1 Overview You can configure where the Device sends logs and which logs and/or immediate alerts the Device records in the Logs Setting screen. 32.2 The Log Settings Screen To change your Device’s log settings, click Maintenance > Logs Setting. The screen appears as shown.
Chapter 32 Logs Setting The following table describes the fields in this screen. Table 105 Maintenance > Logs Setting LABEL DESCRIPTION Syslog Setting Syslog Logging The Device sends a log to an external syslog server. Select Enable to enable syslog logging. Mode Select the syslog destination from the drop-down list box. If you select Remote, the log(s) will be sent to a remote syslog server. If you select Local File, the log(s) will be saved in a local file.
Chapter 32 Logs Setting • "End of Log" message shows that a complete log has been sent. Figure 134 E-mail Log Example Subject: Firewall Alert From Date: Fri, 07 Apr 2000 10:05:42 From: user@zyxel.com To: user@zyxel.com 1|Apr 7 00 |From:192.168.1.1 To:192.168.1.255 |default policy |forward | 09:54:03 |UDP src port:00520 dest port:00520 |<1,00> | 2|Apr 7 00 |From:192.168.1.131 To:192.168.1.255 |default policy |forward | 09:54:17 |UDP src port:00520 dest port:00520 |<1,00> | 3|Apr 7 00 |From:192.168.1.
Chapter 32 Logs Setting 278 VMG1312-B Series User’s Guide
C HAPTER 33 Firmware Upgrade 33.1 Overview This chapter explains how to upload new firmware to your Device. You can download new firmware releases from your nearest ZyXEL FTP site (or www.zyxel.com) to use to upgrade your device’s performance. Only use firmware for your device’s specific model. Refer to the label on the bottom of your Device. 33.2 The Firmware Screen Click Maintenance > Firmware Upgrade to open the following screen.
Chapter 33 Firmware Upgrade After you see the firmware updating screen, wait two minutes before logging into the Device again. Figure 136 Firmware Uploading The Device automatically restarts in this time causing a temporary network disconnect. In some operating systems, you may see the following icon on your desktop. Figure 137 Network Temporarily Disconnected After two minutes, log in again and check your new firmware version in the Status screen.
C HAPTER 34 Configuration 34.1 Overview The Configuration screen allows you to backup and restore device configurations. You can also reset your device settings back to the factory default. 34.2 The Configuration Screen Click Maintenance > Configuration. Information related to factory defaults, backup configuration, and restoring configuration appears in this screen, as shown next.
Chapter 34 Configuration Restore Configuration Restore Configuration allows you to upload a new or previously saved configuration file from your computer to your Device. Table 107 Restore Configuration LABEL DESCRIPTION File Path Type in the location of the file you want to upload in this field or click Browse ... to find it. Browse... Click this to find the file you want to upload. Remember that you must decompress compressed (.ZIP) files before you can upload them.
Chapter 34 Configuration Reset to Factory Defaults Click the Reset button to clear all user-entered configuration information and return the Device to its factory defaults. The following warning screen appears. Figure 142 Reset Warning Message Figure 143 Reset In Process Message You can also press the RESET button on the rear panel to reset the factory defaults of your Device. Refer to Section 1.6 on page 21 for more information on the RESET button. 34.
C HAPTER 35 Diagnostic 35.1 Overview The Diagnostic screens display information to help you identify problems with the Device. The route between a CO VDSL switch and one of its CPE may go through switches owned by independent organizations. A connectivity fault point generally takes time to discover and impacts subscriber’s network access. In order to eliminate the management and maintenance efforts, IEEE 802.
Chapter 35 Diagnostic 35.3 Ping & TraceRoute & NsLookup Use this screen to ping, traceroute, or nslookup an IP address. Click Maintenance > Diagnostic > Ping & TraceRoute & NsLookup to open the screen shown next. Figure 145 Maintenance > Diagnostic > Ping & TraceRoute & NsLookup The following table describes the fields in this screen.
Chapter 35 Diagnostic 35.4 802.1ag Click Maintenance > Diagnostic > 8.2.1ag to open the following screen. Use this screen to perform CFM actions. Figure 146 Maintenance > Diagnostic > 802.1ag The following table describes the fields in this screen. Table 109 Maintenance > Diagnostic > 802.1ag LABEL DESCRIPTION 802.1ag Connectivity Fault Management 286 Maintenance Domain (MD) Level Select a level (0-7) under which you want to create an MA.
Chapter 35 Diagnostic 35.5 OAM Ping Test Click Maintenance > Diagnostic > OAM Ping Test to open the screen shown next. Use this screen to perform an OAM (Operation, Administration and Maintenance) F4 or F5 loopback test on a PVC. The Device sends an OAM F4 or F5 packet to the DSLAM or ATM switch and then returns it to the Device. The test result then displays in the text box. ATM sets up virtual circuits over which end systems communicate.
Chapter 35 Diagnostic Note: This screen is available only when you configure an ATM layer-2 interface. Figure 148 Maintenance > Diagnostic > OAM Ping Test The following table describes the fields in this screen. Table 110 Maintenance > Diagnostic > OAM Ping Test LABEL DESCRIPTION Select a PVC on which you want to perform the loopback test. 288 F4 segment Press this to perform an OAM F4 segment loopback test. F4 end-end Press this to perform an OAM F4 end-to-end loopback test.
C HAPTER 36 Troubleshooting This chapter offers some suggestions to solve problems you might encounter. The potential problems are divided into the following categories. • Power, Hardware Connections, and LEDs • Device Access and Login • Internet Access • Wireless Internet Access • USB Device Connection • UPnP 36.1 Power, Hardware Connections, and LEDs The Device does not turn on. None of the LEDs turn on. 1 Make sure the Device is turned on.
Chapter 36 Troubleshooting 5 If the problem continues, contact the vendor. 36.2 Device Access and Login I forgot the IP address for the Device. 1 The default LAN IP address is 192.168.1.1. 2 If you changed the IP address and have forgotten it, you might get the IP address of the Device by looking up the IP address of the default gateway for your computer. To do this in most Windows computers, click Start > Run, enter cmd, and then enter ipconfig.
Chapter 36 Troubleshooting 5 Reset the device to its factory defaults, and try to access the Device with the default IP address. See Section 1.6 on page 21. 6 If the problem continues, contact the network administrator or vendor, or try one of the advanced suggestions. Advanced Suggestions • Make sure you have logged out of any earlier management sessions using the same user account even if they were through a different interface or using a different browser.
Chapter 36 Troubleshooting 36.3 Internet Access I cannot access the Internet. 1 Check the hardware connections, and make sure the LEDs are behaving as expected. See the Quick Start Guide and Section 1.5 on page 20. 2 Make sure you entered your ISP account information correctly in the Network Setting > Broadband screen. These fields are case-sensitive, so make sure [Caps Lock] is not on.
Chapter 36 Troubleshooting 2 Check the hardware connections, and make sure the LEDs are behaving as expected. See the Quick Start Guide and Section 1.5 on page 20. 3 Turn the Device off and on. 4 If the problem continues, contact your ISP. 36.4 Wireless Internet Access What factors may cause intermittent or unstabled wireless connection? How can I solve this problem? The following factors may cause interference: • Obstacles: walls, ceilings, furniture, and so on.
Chapter 36 Troubleshooting The available security modes in your Device are as follows: • WPA2-PSK: (recommended) This uses a pre-shared key with the WPA2 standard. • WPA-PSK: This has the device use either WPA-PSK or WPA2-PSK depending on which security mode the wireless client uses. • WPA2: WPA2 (IEEE 802.11i) is a wireless security standard that defines stronger encryption, authentication and key management than WPA. It requires the use of a RADIUS server and is mostly used in business networks.
Chapter 36 Troubleshooting I cannot open special applications such as white board, file transfer and video when I use the MSN messenger. 1 Wait more than three minutes. 2 Restart the applications.
Chapter 36 Troubleshooting 296 VMG1312-B Series User’s Guide
A PPENDIX A Setting up Your Computer’s IP Address All computers must have a 10M or 100M Ethernet adapter card and TCP/IP installed. Windows 95/98/Me/NT/2000/XP/Vista, Macintosh OS 7 and later operating systems and all versions of UNIX/LINUX include the software components you need to install and use TCP/IP on your computer. Windows 3.1 requires the purchase of a third-party TCP/IP application package.
Appendix A Setting up Your Computer’s IP Address Installing Components The Network window Configuration tab displays a list of installed components. You need a network adapter, the TCP/IP protocol and Client for Microsoft Networks. If you need the adapter: 1 In the Network window, click Add. 2 Select Adapter and then click Add. 3 Select the manufacturer and model of your network adapter and then click OK. If you need TCP/IP: 1 In the Network window, click Add. 2 Select Protocol and then click Add.
Appendix A Setting up Your Computer’s IP Address • If you have a static IP address, select Specify an IP address and type your information into the IP Address and Subnet Mask fields. Figure 150 Windows 95/98/Me: TCP/IP Properties: IP Address 3 Click the DNS Configuration tab. • If you do not know your DNS information, select Disable DNS. • If you know your DNS information, select Enable DNS and type the information in the fields below (you may not need to fill them all in).
Appendix A Setting up Your Computer’s IP Address 4 Click the Gateway tab. • If you do not know your gateway’s IP address, remove previously installed gateways. • If you have a gateway IP address, type it in the New gateway field and click Add. 5 Click OK to save and close the TCP/IP Properties window. 6 Click OK to close the Network window. Insert the Windows CD if prompted. 7 Turn on your Device and restart your computer when prompted. Verifying Settings 1 Click Start and then Run.
Appendix A Setting up Your Computer’s IP Address 2 In the Control Panel, double-click Network Connections (Network and Dial-up Connections in Windows 2000/NT). Figure 153 Windows XP: Control Panel 3 Right-click Local Area Connection and then click Properties.
Appendix A Setting up Your Computer’s IP Address 4 Select Internet Protocol (TCP/IP) (under the General tab in Win XP) and then click Properties. Figure 155 Windows XP: Local Area Connection Properties 5 The Internet Protocol TCP/IP Properties window opens (the General tab in Windows XP). • If you have a dynamic IP address click Obtain an IP address automatically. • If you have a static IP address click Use the following IP Address and fill in the IP address, Subnet mask, and Default gateway fields.
Appendix A Setting up Your Computer’s IP Address • Click Advanced. Figure 156 Windows XP: Internet Protocol (TCP/IP) Properties 6 If you do not know your gateway's IP address, remove any previously installed gateways in the IP Settings tab and click OK. Do one or more of the following if you want to configure additional IP addresses: • In the IP Settings tab, in IP addresses, click Add. • In TCP/IP Address, type an IP address in IP address and a subnet mask in Subnet mask, and then click Add.
Appendix A Setting up Your Computer’s IP Address • Click OK when finished. Figure 157 Windows XP: Advanced TCP/IP Properties 7 In the Internet Protocol TCP/IP Properties window (the General tab in Windows XP): • Click Obtain DNS server address automatically if you do not know your DNS server IP address(es). • If you know your DNS server IP address(es), click Use the following DNS server addresses, and type them in the Preferred DNS server and Alternate DNS server fields.
Appendix A Setting up Your Computer’s IP Address If you have previously configured DNS servers, click Advanced and then the DNS tab to order them. Figure 158 Windows XP: Internet Protocol (TCP/IP) Properties 8 Click OK to close the Internet Protocol (TCP/IP) Properties window. 9 Click Close (OK in Windows 2000/NT) to close the Local Area Connection Properties window. 10 Close the Network Connections window (Network and Dial-up Connections in Windows 2000/NT).
Appendix A Setting up Your Computer’s IP Address 1 Click the Start icon, Control Panel. Figure 159 Windows Vista: Start Menu 2 In the Control Panel, double-click Network and Internet. Figure 160 Windows Vista: Control Panel 3 Click Network and Sharing Center.
Appendix A Setting up Your Computer’s IP Address 4 Click Manage network connections. Figure 162 Windows Vista: Network and Sharing Center 5 Right-click Local Area Connection and then click Properties. Note: During this procedure, click Continue whenever Windows displays a screen saying that it needs your permission to continue.
Appendix A Setting up Your Computer’s IP Address 6 Select Internet Protocol Version 4 (TCP/IPv4) and click Properties. Figure 164 Windows Vista: Local Area Connection Properties 7 The Internet Protocol Version 4 (TCP/IPv4) Properties window opens (the General tab). • If you have a dynamic IP address click Obtain an IP address automatically. • If you have a static IP address click Use the following IP address and fill in the IP address, Subnet mask, and Default gateway fields.
Appendix A Setting up Your Computer’s IP Address • Click Advanced. Figure 165 Windows Vista: Internet Protocol Version 4 (TCP/IPv4) Properties 8 If you do not know your gateway's IP address, remove any previously installed gateways in the IP Settings tab and click OK. Do one or more of the following if you want to configure additional IP addresses: • In the IP Settings tab, in IP addresses, click Add.
Appendix A Setting up Your Computer’s IP Address • Click OK when finished. Figure 166 Windows Vista: Advanced TCP/IP Properties 9 In the Internet Protocol Version 4 (TCP/IPv4) Properties window, (the General tab): • Click Obtain DNS server address automatically if you do not know your DNS server IP address(es). • If you know your DNS server IP address(es), click Use the following DNS server addresses, and type them in the Preferred DNS server and Alternate DNS server fields.
Appendix A Setting up Your Computer’s IP Address If you have previously configured DNS servers, click Advanced and then the DNS tab to order them. Figure 167 Windows Vista: Internet Protocol Version 4 (TCP/IPv4) Properties 10 Click OK to close the Internet Protocol Version 4 (TCP/IPv4) Properties window. 11 Click Close to close the Local Area Connection Properties window. 12 Close the Network Connections window. 13 Turn on your Device and restart your computer (if prompted).
Appendix A Setting up Your Computer’s IP Address Macintosh OS 8/9 1 Click the Apple menu, Control Panel and double-click TCP/IP to open the TCP/IP Control Panel.
Appendix A Setting up Your Computer’s IP Address 2 Select Ethernet built-in from the Connect via list. Figure 169 Macintosh OS 8/9: TCP/IP 3 For dynamically assigned settings, select Using DHCP Server from the Configure: list. 4 For statically assigned settings, do the following: • From the Configure box, select Manually. • Type your IP address in the IP Address box. • Type your subnet mask in the Subnet mask box. • Type the IP address of your Device in the Router address box.
Appendix A Setting up Your Computer’s IP Address • Select Built-in Ethernet from the Show list. • Click the TCP/IP tab. 3 For dynamically assigned settings, select Using DHCP from the Configure list. Figure 171 Macintosh OS X: Network 4 For statically assigned settings, do the following: • From the Configure box, select Manually. • Type your IP address in the IP Address box. • Type your subnet mask in the Subnet mask box. • Type the IP address of your Device in the Router address box.
Appendix A Setting up Your Computer’s IP Address Linux This section shows you how to configure your computer’s TCP/IP settings in Red Hat Linux 9.0. Procedure, screens and file location may vary depending on your Linux distribution and release version. Note: Make sure you are logged in as the root administrator. Using the K Desktop Environment (KDE) Follow the steps below to configure your computer IP address using the KDE.
Appendix A Setting up Your Computer’s IP Address 2 Double-click on the profile of the network card you wish to configure. The Ethernet Device General screen displays as shown. Figure 173 Red Hat 9.0: KDE: Ethernet Device: General • If you have a dynamic IP address, click Automatically obtain IP address settings with and select dhcp from the drop down list. • If you have a static IP address, click Statically set IP Addresses and fill in the Address, Subnet mask, and Default Gateway Address fields.
Appendix A Setting up Your Computer’s IP Address 6 Click the Activate button to apply the changes. The following screen displays. Click Yes to save the changes in all screens. Figure 175 Red Hat 9.0: KDE: Network Configuration: Activate 7 After the network card restart process is complete, make sure the Status is Active in the Network Configuration screen. Using Configuration Files Follow the steps below to edit the network configuration files and set your computer IP address.
Appendix A Setting up Your Computer’s IP Address 2 If you know your DNS server IP address(es), enter the DNS server information in the resolv.conf file in the /etc directory. The following figure shows an example where two DNS server IP addresses are specified. Figure 178 Red Hat 9.0: DNS Settings in resolv.conf nameserver 172.23.5.1 nameserver 172.23.5.2 3 After you edit and save the configuration files, you must restart the network card. Enter ./network restart in the /etc/rc.d/init.d directory.
A PPENDIX B IP Addresses and Subnetting This appendix introduces IP addresses and subnet masks. IP addresses identify individual devices on a network. Every networking device (including computers, servers, routers, printers, etc.) needs an IP address to communicate across the network. These networking devices are also known as hosts. Subnet masks determine the maximum number of possible hosts on a network. You can also use subnet masks to divide one network into multiple sub-networks.
Appendix B IP Addresses and Subnetting The following figure shows an example IP address in which the first three octets (192.168.1) are the network number, and the fourth octet (16) is the host ID. Figure 181 Network Number and Host ID How much of the IP address is the network number and how much is the host ID varies according to the subnet mask.
Appendix B IP Addresses and Subnetting Subnet masks can be referred to by the size of the network number part (the bits with a “1” value). For example, an “8-bit mask” means that the first 8 bits of the mask are ones and the remaining 24 bits are zeroes. Subnet masks are expressed in dotted decimal notation just like IP addresses. The following examples show the binary and decimal notation for 8-bit, 16-bit, 24-bit and 29-bit subnet masks.
Appendix B IP Addresses and Subnetting The following table shows some possible subnet masks using both notations. Table 114 Alternative Subnet Mask Notation SUBNET MASK ALTERNATIVE NOTATION LAST OCTET (BINARY) LAST OCTET (DECIMAL) 255.255.255.0 /24 0000 0000 0 255.255.255.128 /25 1000 0000 128 255.255.255.192 /26 1100 0000 192 255.255.255.224 /27 1110 0000 224 255.255.255.240 /28 1111 0000 240 255.255.255.248 /29 1111 1000 248 255.255.255.
Appendix B IP Addresses and Subnetting The following figure shows the company network after subnetting. There are now two subnetworks, A and B. Figure 183 Subnetting Example: After Subnetting In a 25-bit subnet the host ID has 7 bits, so each sub-network has a maximum of 27 – 2 or 126 possible hosts (a host ID of all zeroes is the subnet’s address itself, all ones is the subnet’s broadcast address). 192.168.1.0 with mask 255.255.255.128 is subnet A itself, and 192.168.1.127 with mask 255.255.255.
Appendix B IP Addresses and Subnetting Table 115 Subnet 1 (continued) IP/SUBNET MASK NETWORK NUMBER Subnet Address: 192.168.1.0 Lowest Host ID: 192.168.1.1 Broadcast Address: 192.168.1.63 Highest Host ID: 192.168.1.62 LAST OCTET BIT VALUE Table 116 Subnet 2 IP/SUBNET MASK NETWORK NUMBER LAST OCTET BIT VALUE IP Address 192.168.1. 64 IP Address (Binary) 11000000.10101000.00000001. 01000000 Subnet Mask (Binary) 11111111.11111111.11111111. 11000000 Subnet Address: 192.168.1.
Appendix B IP Addresses and Subnetting Table 119 Eight Subnets (continued) SUBNET SUBNET ADDRESS FIRST ADDRESS LAST ADDRESS BROADCAST ADDRESS 3 64 65 94 95 4 96 97 126 127 5 128 129 158 159 6 160 161 190 191 7 192 193 222 223 8 224 225 254 255 Subnet Planning The following table is a summary for subnet planning on a network with a 24-bit network number. Table 120 24-bit Network Number Subnet Planning NO. “BORROWED” HOST BITS SUBNET MASK NO. SUBNETS NO.
Appendix B IP Addresses and Subnetting Configuring IP Addresses Where you obtain your network number depends on your particular situation. If the ISP or your network administrator assigns you a block of registered IP addresses, follow their instructions in selecting the IP addresses and the subnet mask. If the ISP did not explicitly give you an IP network number, then most likely you have a single user account and the ISP will assign you a dynamic IP address when the connection is established.
A PPENDIX C Pop-up Windows, JavaScripts and Java Permissions In order to use the web configurator you need to allow: • Web browser pop-up windows from your device. • JavaScripts (enabled by default). • Java permissions (enabled by default). Note: Internet Explorer 6 screens are used here. Screens for other Internet Explorer versions may vary. Internet Explorer Pop-up Blockers You may have to disable pop-up blocking to log into your device.
Appendix C Pop-up Windows, JavaScripts and Java Permissions 2 Clear the Block pop-ups check box in the Pop-up Blocker section of the screen. This disables any web pop-up blockers you may have enabled. Figure 185 Internet Options: Privacy 3 Click Apply to save this setting. Enable Pop-up Blockers with Exceptions Alternatively, if you only want to allow pop-up windows from your device, see the following steps. 1 328 In Internet Explorer, select Tools, Internet Options and then the Privacy tab.
Appendix C Pop-up Windows, JavaScripts and Java Permissions 2 Select Settings…to open the Pop-up Blocker Settings screen. Figure 186 Internet Options: Privacy 3 Type the IP address of your device (the web page that you do not want to have blocked) with the prefix “http://”. For example, http://192.168.167.1.
Appendix C Pop-up Windows, JavaScripts and Java Permissions 4 Click Add to move the IP address to the list of Allowed sites. Figure 187 Pop-up Blocker Settings 5 Click Close to return to the Privacy screen. 6 Click Apply to save this setting. JavaScripts If pages of the web configurator do not display properly in Internet Explorer, check that JavaScripts are allowed.
Appendix C Pop-up Windows, JavaScripts and Java Permissions 1 In Internet Explorer, click Tools, Internet Options and then the Security tab. Figure 188 Internet Options: Security 2 Click the Custom Level... button. 3 Scroll down to Scripting. 4 Under Active scripting make sure that Enable is selected (the default). 5 Under Scripting of Java applets make sure that Enable is selected (the default).
Appendix C Pop-up Windows, JavaScripts and Java Permissions 6 Click OK to close the window. Figure 189 Security Settings - Java Scripting Java Permissions 332 1 From Internet Explorer, click Tools, Internet Options and then the Security tab. 2 Click the Custom Level... button. 3 Scroll down to Microsoft VM. 4 Under Java permissions make sure that a safety level is selected.
Appendix C Pop-up Windows, JavaScripts and Java Permissions 5 Click OK to close the window. Figure 190 Security Settings - Java JAVA (Sun) 1 From Internet Explorer, click Tools, Internet Options and then the Advanced tab. 2 Make sure that Use Java 2 for
Appendix C Pop-up Windows, JavaScripts and Java Permissions 3 Click OK to close the window. Figure 191 Java (Sun) Mozilla Firefox Mozilla Firefox 2.0 screens are used here. Screens for other versions may vary. You can enable Java, Javascripts and pop-ups in one screen. Click Tools, then click Options in the screen that appears.
Appendix C Pop-up Windows, JavaScripts and Java Permissions Click Content.to show the screen below. Select the check boxes as shown in the following screen.
Appendix C Pop-up Windows, JavaScripts and Java Permissions 336 VMG1312-B Series User’s Guide
A PPENDIX D Wireless LANs Wireless LAN Topologies This section discusses ad-hoc and infrastructure wireless LAN topologies. Ad-hoc Wireless LAN Configuration The simplest WLAN configuration is an independent (Ad-hoc) WLAN that connects a set of computers with wireless adapters (A, B, C). Any time two or more wireless adapters are within range of each other, they can set up an independent network, which is commonly referred to as an ad-hoc network or Independent Basic Service Set (IBSS).
Appendix D Wireless LANs disabled, wireless client A and B can still access the wired network but cannot communicate with each other. Figure 195 Basic Service Set ESS An Extended Service Set (ESS) consists of a series of overlapping BSSs, each containing an access point, with each access point connected together by a wired network. This wired connection between APs is called a Distribution System (DS). This type of wireless LAN topology is called an Infrastructure WLAN.
Appendix D Wireless LANs An ESSID (ESS IDentification) uniquely identifies each ESS. All access points and their associated wireless clients within the same ESS must have the same ESSID in order to communicate. Figure 196 Infrastructure WLAN Channel A channel is the radio frequency(ies) used by wireless devices to transmit and receive data. Channels available depend on your geographical area.
Appendix D Wireless LANs cannot "hear" each other, that is they do not know if the channel is currently being used. Therefore, they are considered hidden from each other. Figure 197 RTS/CTS When station A sends data to the AP, it might not know that the station B is already using the channel. If these two stations send data at the same time, collisions may occur when both sets of data arrive at the AP at the same time, resulting in a loss of messages for both stations.
Appendix D Wireless LANs If the Fragmentation Threshold value is smaller than the RTS/CTS value (see previously) you set then the RTS (Request To Send)/CTS (Clear to Send) handshake will never occur as data frames will be fragmented before they reach RTS/CTS size. IEEE 802.11g Wireless LAN IEEE 802.11g is fully compatible with the IEEE 802.11b standard. This means an IEEE 802.11b adapter can interface directly with an IEEE 802.11g access point (and vice versa) at 11 Mbps or lower depending on range.
Appendix D Wireless LANs IEEE 802.1x In June 2001, the IEEE 802.1x standard was designed to extend the features of IEEE 802.11 to support extended authentication as well as providing additional accounting and control features. It is supported by Windows XP and a number of network devices. Some advantages of IEEE 802.1x are: • User based identification that allows for roaming.
Appendix D Wireless LANs • Accounting-Request Sent by the access point requesting accounting. • Accounting-Response Sent by the RADIUS server to indicate that it has started or stopped accounting. In order to ensure network security, the access point and the RADIUS server use a shared secret key, which is a password, they both know. The key is not sent over the network. In addition to the shared key, password information exchanged is also encrypted to protect the network from unauthorized access.
Appendix D Wireless LANs EAP-TTLS (Tunneled Transport Layer Service) EAP-TTLS is an extension of the EAP-TLS authentication that uses certificates for only the serverside authentications to establish a secure connection. Client authentication is then done by sending username and password through the secure connection, thus client identity is protected. For client authentication, EAP-TTLS supports EAP methods and legacy authentication methods such as PAP, CHAP, MS-CHAP and MS-CHAP v2.
Appendix D Wireless LANs WPA and WPA2 Wi-Fi Protected Access (WPA) is a subset of the IEEE 802.11i standard. WPA2 (IEEE 802.11i) is a wireless security standard that defines stronger encryption, authentication and key management than WPA. Key differences between WPA or WPA2 and WEP are improved data encryption and user authentication. If both an AP and the wireless clients support WPA2 and you have an external RADIUS server, use WPA2 for stronger data encryption.
Appendix D Wireless LANs password-guessing attacks but it’s still an improvement over WEP as it employs a consistent, single, alphanumeric password to derive a PMK which is used to generate unique temporal encryption keys. This prevent all wireless devices sharing the same encryption keys. (a weakness of WEP) User Authentication WPA and WPA2 apply IEEE 802.1x and Extensible Authentication Protocol (EAP) to authenticate wireless clients using an external RADIUS database.
Appendix D Wireless LANs 4 The RADIUS server distributes the PMK to the AP. The AP then sets up a key hierarchy and management system, using the PMK to dynamically generate unique data encryption keys. The keys are used to encrypt every data packet that is wirelessly communicated between the AP and the wireless clients. Figure 198 WPA(2) with RADIUS Application Example WPA(2)-PSK Application Example A WPA(2)-PSK application looks as follows.
Appendix D Wireless LANs Security Parameters Summary Refer to this table to see what other security parameters you should configure for each authentication method or key management protocol type. MAC address filters are not dependent on how you configure these security features. Table 125 Wireless Security Relational Matrix AUTHENTICATION ENCRYPTIO METHOD/ KEY MANAGEMENT PROTOCOL N METHOD ENTER MANUAL KEY IEEE 802.
Appendix D Wireless LANs 2.5%. For an unobstructed outdoor site, each 1dB increase in gain results in a range increase of approximately 5%. Actual results may vary depending on the network environment. Antenna gain is sometimes specified in dBi, which is how much the antenna increases the signal power compared to using an isotropic antenna. An isotropic antenna is a theoretical perfect antenna that sends out radio signals equally well in all directions.
Appendix D Wireless LANs 350 VMG1312-B Series User’s Guide
A PPENDIX E IPv6 Overview IPv6 (Internet Protocol version 6), is designed to enhance IP address size and features. The increase in IPv6 address size to 128 bits (from the 32-bit IPv4 address) allows up to 3.4 x 1038 IP addresses. IPv6 Addressing The 128-bit IPv6 address is written as eight 16-bit hexadecimal blocks separated by colons (:). This is an example IPv6 address 2001:0db8:1a2b:0015:0000:0000:1a2f:0000. IPv6 addresses can be abbreviated in two ways: • Leading zeros in a block can be omitted.
Appendix E IPv6 Global Address A global address uniquely identifies a device on the Internet. It is similar to a “public IP address” in IPv4. A global unicast address starts with a 2 or 3. Unspecified Address An unspecified address (0:0:0:0:0:0:0:0 or ::) is used as the source address when a device does not have its own address. It is similar to “0.0.0.0” in IPv4. Loopback Address A loopback address (0:0:0:0:0:0:0:1 or ::1) allows a host to send packets to itself. It is similar to “127.0.0.1” in IPv4.
Appendix E IPv6 Table 128 Reserved Multicast Address (continued) MULTICAST ADDRESS FF08:0:0:0:0:0:0:0 FF09:0:0:0:0:0:0:0 FF0A:0:0:0:0:0:0:0 FF0B:0:0:0:0:0:0:0 FF0C:0:0:0:0:0:0:0 FF0D:0:0:0:0:0:0:0 FF0E:0:0:0:0:0:0:0 FF0F:0:0:0:0:0:0:0 Subnet Masking Both an IPv6 address and IPv6 subnet mask compose of 128-bit binary digits, which are divided into eight 16-bit blocks and written in hexadecimal notation. Hexadecimal uses four bits for each character (1 ~ 10, A ~ F).
Appendix E IPv6 the time T2 is reached and the server does not respond, the client sends a Rebind message to any available server (S2). For an IA_TA, the client may send a Renew or Rebind message at the client's discretion. T2 T1 Renew Renew to S1 to S1 Renew Renew to S1 to S1 Renew to S1 Renew to S1 Rebind to S2 Rebind to S2 DHCP Relay Agent A DHCP relay agent is on the same network as the DHCP clients and helps forward messages between the DHCP server and clients.
Appendix E IPv6 • Neighbor advertisement: A response from a node to announce its link-layer address. • Router solicitation: A request from a host to locate a router that can act as the default router and forward packets. • Router advertisement: A response to a router solicitation or a periodical multicast advertisement from a router to advertise its presence and other parameters. IPv6 Cache An IPv6 host is required to have a neighbor cache, destination cache, prefix list and default router list.
Appendix E IPv6 Example - Enabling IPv6 on Windows XP/2003/Vista By default, Windows XP and Windows 2003 support IPv6. This example shows you how to use the ipv6 install command on Windows XP/2003 to enable IPv6. This also displays how to use the ipconfig command to see auto-generated IP addresses. C:\>ipv6 install Installing... Succeeded. C:\>ipconfig Windows IP Configuration Ethernet adapter Local Area Connection: Connection-specific IP Address. . . . . Subnet Mask . . . . IP Address. . . . .
Appendix E IPv6 4 Double click Dibbler - a DHCPv6 client. 5 Click Start and then OK. 6 Now your computer can obtain an IPv6 address from a DHCPv6 server. Example - Enabling IPv6 on Windows 7 Windows 7 supports IPv6 by default. DHCPv6 is also enabled when you enable IPv6 on a Windows 7 computer. To enable IPv6 in Windows 7: 1 Select Control Panel > Network and Sharing Center > Local Area Connection. 2 Select the Internet Protocol Version 6 (TCP/IPv6) checkbox to enable it.
Appendix E IPv6 4 Click Close to exit the Local Area Connection Status screen. 5 Select Start > All Programs > Accessories > Command Prompt. 6 Use the ipconfig command to check your dynamic IPv6 address. This example shows a global address (2001:b021:2d::1000) obtained from a DHCP server. C:\>ipconfig Windows IP Configuration Ethernet adapter Local Area Connection: Connection-specific DNS IPv6 Address. . . . . . Link-local IPv6 Address IPv4 Address. . . . . . Subnet Mask . . . . . .
A PPENDIX F Services The following table lists some commonly-used services and their associated protocols and port numbers. • Name: This is a short, descriptive name for the service. You can use this one or create a different one, if you like. • Protocol: This is the type of IP protocol used by the service. If this is TCP/UDP, then the service uses the same port number with TCP and UDP. If this is USER-DEFINED, the Port(s) is the IP protocol number, not the port number.
Appendix F Services Table 129 Examples of Services NAME 360 PROTOCOL PORT(S) DESCRIPTION AH (IPSEC_TUNNEL) User-Defined 51 The IPSEC AH (Authentication Header) tunneling protocol uses this service. AIM TCP 5190 AOL’s Internet Messenger service. AUTH TCP 113 Authentication protocol used by some servers. BGP TCP 179 Border Gateway Protocol. BOOTP_CLIENT UDP 68 DHCP Client. BOOTP_SERVER UDP 67 DHCP Server.
Appendix F Services Table 129 Examples of Services (continued) NAME PROTOCOL PORT(S) DESCRIPTION NEW-ICQ TCP 5190 An Internet chat program. NEWS TCP 144 A protocol for news groups. NFS UDP 2049 Network File System - NFS is a client/ server distributed file service that provides transparent file sharing for network environments. NNTP TCP 119 Network News Transport Protocol is the delivery mechanism for the USENET newsgroup service.
Appendix F Services Table 129 Examples of Services (continued) 362 NAME PROTOCOL PORT(S) DESCRIPTION SQL-NET TCP 1521 Structured Query Language is an interface to access data on many different types of database systems, including mainframes, midrange systems, UNIX systems and network servers. SSDP UDP 1900 The Simple Service Discovery Protocol supports Universal Plug-and-Play (UPnP). SSH TCP/UDP 22 Secure Shell Remote Login Program. STRM WORKS UDP 1558 Stream Works Protocol.
A PPENDIX G Legal Information Copyright Copyright © 2012 by MitraStar Communications Corporation. The contents of this publication may not be reproduced in any part or as a whole, transcribed, stored in a retrieval system, translated into any language, or transmitted in any form or by any means, electronic, mechanical, magnetic, optical, chemical, photocopying, manual, or otherwise, without the prior written permission of ZyXEL Communications Corporation. Published by MitraStar Communications Corporation.
Appendix G Legal Information 3 Connect the equipment into an outlet on a circuit different from that to which the receiver is connected. 4 Consult the dealer or an experienced radio/TV technician for help. FCC Radiation Exposure Statement • This transmitter must not be co-located or operating in conjunction with any other antenna or transmitter. • IEEE 802.11b or 802.11g operation of this product in the U.S.A. is firmware-limited to channels 1 through 11.
Appendix G Legal Information warranty period, and upon proof of purchase, should the product have indications of failure due to faulty workmanship and/or materials, MitraStar will, at its discretion, repair or replace the defective products or components without charge for either parts or labor, and to whatever extent it shall deem necessary to restore the product or components to proper operating condition.
Appendix G Legal Information • Antenna Warning! This device meets ETSI and FCC certification requirements when using the included antenna(s). Only use the included antenna(s). Your product is marked with this symbol, which is known as the WEEE mark. WEEE stands for Waste Electronics and Electrical Equipment. It means that used electrical and electronic products should not be mixed with general waste. Used electrical and electronic equipment should be treated separately.
Index Index example 130 A ACL rule 223 ACS 265 activation firewalls 219 media server 215 SIP ALG 194 SSID 116 adding a printer example 65 Address Resolution Protocol 251 administrator password 24 alternative subnet mask notation 322 antenna directional 349 gain 348 omni-directional 349 AP (access point) 339 applications Internet access 18 media server 214 activation 215 iTunes server 214 C CA 235, 343 Canonical Format Indicator See CFI CCMs 284 certificate factory default 236 Certificate Authority See CA
Index restoring 282 static route 100, 163, 203 E Connectivity Check Messages, see CCMs EAP Authentication 343 copyright 363 ECHO 199 CoS 180 e-mail log example 276 CoS technologies 168 creating certificates 237 CTS (Clear to Send) 340 CTS threshold 123, 127 Encapsulation 101 MER 101 PPP over Ethernet 101 encapsulation 84 RFC 1483 101 D data fragment threshold 123, 127 DDoS 218 encryption 129, 345 ESS 338 Extended Service Set IDentification 110, 117 Extended Service Set, See ESS 338 default serv
Index Neighbor Discovery Protocol 351 ping 351 prefix 85, 105, 351 prefix delegation 86 prefix length 85, 105, 351 unspecified address 352 H hidden node 339 HTTP 199 ISP 84 I iTunes server 214 IANA 326 Internet Assigned Numbers Authority see IANA L IBSS 337 IEEE 802.11g 341 IEEE 802.
Index Mac filter 227 Maintenance Association, see MA P Maintenance Domain, see MD Pairwise Master Key (PMK) 345, 347 Maintenance End Point, see MEP passwords 23, 24 managing the device good habits 17 PBC 132 Maximum Burst Size (MBS) 102 Per-Hop Behavior, see PHB 181 MBSSID 130 PHB 181 MD 284 PIN, WPS 132 example 134 media server 214 activation 215 iTunes server 214 MEP 284 MTU (Multi-Tenant Unit) 104 multicast 105 Multiple BSS, see MBSSID multiplexing 102 LLC-based 102 VC-based 102 multiproto
Index R RADIUS 342 message types 342 messages 342 shared secret key 343 RADIUS server 128 registration product 365 related documentation 2 remote management TR-069 265 Remote Procedure Calls, see RPCs 265 reset 21, 283 restart 283 restoring configuration 282 RFC 1483 101 RFC 3164 243 router features 18 RPPCs 265 RTS (Request To Send) 340 threshold 339, 340 RTS threshold 123, 127 S security wireless LAN 127 Security Log 245 srTCM 182 SSID 128 activation 116 MBSSID 130 static route 161, 273 configuration 1
Index TR-069 265 ACS setup 265 authentication 266 example 131 traffic shaping 102 web configurator 23 login 23 passwords 23, 24 trTCM 183 WEP 129 Two Rate Three Color Marker, see trTCM WEP Encryption 112, 113 WEP encryption 111 WEP key 111 U Wi-Fi Protected Access 345 unicast 105 Wireless Distribution System, see WDS Universal Plug and Play, see UPnP wireless LAN 107, 125 authentication 127, 128 BSS 130 example 130 channel 126 encryption 129 example 126 fragmentation threshold 123, 127 limitat
Index key caching 346 pre-authentication 346 user authentication 346 vs WPA-PSK 345 wireless client supplicant 346 with RADIUS application example 346 WPA2 345 user authentication 346 vs WPA2-PSK 345 wireless client supplicant 346 with RADIUS application example 346 WPA2-Pre-Shared Key 345 WPA2-PSK 345 application example 347 WPA-PSK 129, 345 application example 347 WPS 131, 134 example 135 limitations 137 PIN 132 example 134 push button 22, 132 VMG1312-B Series User’s Guide 373
Index 374 VMG1312-B Series User’s Guide
Index VMG1312-B Series User’s Guide 375
Index 376 VMG1312-B Series User’s Guide