ZyXEL Communications ARMOR G1 NBG6818, User Manual

Share

Page: 124 / 183

ZyXEL Communications ARMOR G1 NBG6818 User Manual Download Page 124

Chapter 12 Security

NBG6818 User’s Guide

124

Ab o ut the NBG 6818 Fire wa ll

The NBG6818’s firewall feature physically separates the LAN and the WAN and acts as a secure
gateway for all data passing between the networks.

It is a stateful inspection firewall and is designed to protect against Denial of Service attacks when
activated (click

the

IPv4 Fire wa ll

or

IPv6 Fire wa ll

tab under

Se c urity

and then click the

Ena b le

Fire wa ll

check box). The NBG6818's purpose is to allow a private Local Area Network (LAN) to be securely
connected to the Internet. The NBG6818 can be used to prevent theft, destruction and modification of
data, as well as log events, which may be important to the security of your network.

The NBG6818 is installed between the LAN and a broadband modem connecting to the Internet. This
allows it to act as a secure gateway for all data passing between the Internet and the LAN.

The NBG6818 has one Ethernet WAN port and four Ethernet LAN ports, which are used to physically
separate the network into two areas.The WAN (Wide Area Network) port attaches to the broadband
(cable or DSL) modem to the Internet.

The LAN (Local Area Network) port attaches to a network of computers, which needs security from the
outside world. These computers will have access to Internet services such as e-mail, FTP and the World
Wide Web. However, "inbound access" is not allowed (by default) unless the remote host is authorized to
use a specific service.

G uide line s Fo r Enha nc ing Se c urity With Yo ur Fire wa ll

1

Change the default password via Web Configurator.

2

Think about access control before you connect to the network in any way, including attaching a
modem to the port.

3

Limit who can access your router.

4

Don't enable any local service (such as NTP) that you don't use. Any enabled service could present a
potential security risk. A determined hacker might be able to find creative ways to misuse the enabled
services to access the firewall or the network.

5

For local services that are enabled, protect against misuse. Protect by configuring the services to
communicate only with specific peers, and protect by configuring rules to block packets for the services
at specific interfaces.

6

Protect against IP spoofing by making sure the firewall is active.

7

Keep the firewall in a secured (locked) room.

12.2 IPv4 Fire wa ll Sc re e n

Use this screen to enable or disable the NBG6818’s IPv4 firewall. Click

Se tting s

>

Fire wa ll

>

IPv4

Fire wa ll

to

show the following screen.

«
...
122
123
124
125
126
...
»

Summary of Contents for ARMOR G1 NBG6818

Page 1: ...ails User s Guide ARMOR G1 AC2600 Multi Gigabit Security WiFi Router Model NBG6818 Copyright 2020 Zyxel Communications Corporation LAN IP Address http zyxelwifi com OR http zyxelwifi net Version 1 00...

Page 2: ...our computer operating system Every effort has been made to ensure that the information in this manual is accurate Re late d Doc ume ntation Quick Start Guide The Quick Start Guide shows how to connec...

Page 3: ...field labels and field choices are all in bold font A right angle bracket within a screen name denotes a mouse click For example Se tting Inte rne t Inte rne t Conne c tion means you first click Se t...

Page 4: ...e w Use r s Guide 10 Introduction 11 Wizard 17 The Web Configurator 27 NBG6818 Modes 34 Standard Mode 36 38 Bridge Mode 39 Tutorials 42 T e c hnic al Re fe re nc e 55 Applications 56 WAN 77 Wireless L...

Page 5: ...ging the NBG6818 12 1 5 Resetting the NBG6818 13 1 5 1 How to Use the RESET Button 13 1 6 The WPS Button 13 1 7 LEDs 14 1 8 Desk Mounting 15 1 9 Wall Mounting 15 Chapte r 2 Wizard 17 2 1 Overview 17 2...

Page 6: ...e NBG6818 s WiFi Networks 43 7 4 Enable or Disable a WiFi Network 45 7 5 Add Clients to a Profile 46 7 6 Set a Profile s WiFi Schedule 47 7 7 Pause or Resume Internet Access on a Profile 49 7 8 Turn o...

Page 7: ...Encapsulation 79 9 4 2 PPPoE Encapsulation 82 9 4 3 PPTP Encapsulation 85 9 5 NAT Port Forwarding Screen 87 9 5 1 Add Port Forwarding Rule Screen 89 9 6 Passthrough Screen 91 9 7 Port Trigger Screen 9...

Page 8: ...127 12 3 1 IPv6 Firewall Add Rule Screen 128 Chapte r 13 Syste m 130 13 1 Overview 130 13 2 What You Can Do 130 13 3 Status Screen 130 13 4 General Setting Screen 133 13 5 Remote Access Screen 135 13...

Page 9: ...Table of Contents NBG6818 User s Guide 9 Appendix D Legal Information 175 Inde x 181...

Page 10: ...10 PART I Use r s Guide...

Page 11: ...ring are also available for secure Internet computing There is an USB port on the side panel of your NBG6818 You can connect an USB memory stick an USB hard drive or an USB device for file sharing The...

Page 12: ...for Managing the NBG6818 Do the following things regularly to make the NBG6818 more secure and to manage the NBG6818 more effectively Change the password Use a password that s not easy to guess and th...

Page 13: ...ettings manually Each WPS connection works between two devices Both devices must support WPS check each device s documentation to make sure Depending on the devices you have you can either press a but...

Page 14: ...Blinking The NBG6818 is booting Dark Blue On Blue tooth is ready Blinking Blue tooth configuration is in process Amber Blinking Slow The NBG6818 is upgrading firmware Blinking Fast The NBG6818 is rese...

Page 15: ...rt for the screws Be c are ful to avoid damaging pipe s or c able s loc ate d inside the wall whe n drilling hole s for the sc re ws 3 If using screw anchors drill two holes for the screw anchors into...

Page 16: ...he screws are fastened well enough to hold the weight of the NBG6818 with the connection cables 5 Remove the rubber feet 6 Align the holes on the back of the NBG6818 with the screws on the wall Hang t...

Page 17: ...myZyxel Cloud account 2 2 Ac c e ssing the Wizard Launch your web browser and type http zyxelwifi com or http zyxelwifi net as the website address Note The wizard appears automatically when the NBG681...

Page 18: ...the next step in the wizard The following screen shows if you are not connected to the Internet Note You may need to turn off your network firewall if access to the Internet from the NBG6818 is blocke...

Page 19: ...er s Guide 19 3 Enter 1 128 single byte printable ASCII characters but not as your 2 4G 5G WiFi Name and WiFi Password Select the check box Ke e p 2 4G 5G name the same if you want to use the same nam...

Page 20: ...Chapter 2 Wizard NBG6818 User s Guide 20 4 Wait a moment for your WiFi settings to be applied to your NBG6818...

Page 21: ...hows if you have set up your WiFi name and password successfully Click Ne xt to go to the next step in the wizard 6 Wait a moment for the NBG6818 to check if your device is updated with the latest fir...

Page 22: ...er s Guide 22 7 You need to create a myZyxel Cloud account to log into the NBG6818 Click Ne xt to go to the next step in the wizard 8 A pop up message shows Click OK to be redirected to the registrati...

Page 23: ...uide 23 9 Enter your Email and Password if you already have a myZyxel Cloud account If not you can create one by clicking Sign Up You can also click the Facbook or Google icon to create an account wit...

Page 24: ...Chapter 2 Wizard NBG6818 User s Guide 24 10 The legal page shows after you log in Select the check box I unde rstand and agre e the Zyxe l Cloud T e rms of Use and then click Confirm...

Page 25: ...wing page asks for your authorization to use your account Click Authorize to finish registering your myZyxel Cloud account You will be directed back to the NBG6818 web configurator 12 Wait a moment fo...

Page 26: ...password to access the NBG6818 directly You can choose to log in with your myZyxel Cloud account or your local password the next time you log in Note You can change your local password in Syste m Ge...

Page 27: ...led by default Java permissions enabled by default 3 2 Ac c e ssing the We b Configurator 1 Make sure your NBG6818 hardware is properly connected refer to the Quick Start Guide 2 Launch your web brows...

Page 28: ...he NBG6818 Ove rvie w screen displays allowing you to monitor your NBG6818 It shows if the NBG6818 is online and how many wireless clients are currently connected to your device as well as their upstr...

Page 29: ...3 3 Navigation Pane l Use the submenus on the navigation panel to configure NBG6818 features Your navigation panel varies depending on the mode of your NBG6818 See Chapter 5 on page 36 for more infor...

Page 30: ...ck the speed of the connection between your NBG6818 and the broadband modem router Speed Test History Use this screen to view a summary of previously run speed tests Parental Control Device Use this s...

Page 31: ...change your NBG6818 s port triggering settings Port Trigger Use this screen to configure ALGs Application Layer Gateway and VPN pass through settings Dynamic DNS Use this screen to configure dynamic D...

Page 32: ...ware reboot the NBG6818 without turning the power off or reset the NBG6818 to factory default Operating Mode Use this screen to select whether your device acts as a router or a bridge Logs Use this sc...

Page 33: ...cheduling Use this screen to schedule the times the Wireless LAN is enabled LAN LAN IP Use this screen to configure the NBG6818 s LAN IP address and subnet mask Use this screen to configure the IPv6 a...

Page 34: ...e of the NBG6818 which can act in Standard Mode This is the default device mode of the NBG6818 Use this mode to connect the local network to another network like the Internet Go to Section 5 3 on page...

Page 35: ...ng the mode of your NBG6818 refer to Section 13 7 on page 137 Note Choose your device mode carefully to avoid having to change it later When changing to another mode the IP address of the NBG6818 chan...

Page 36: ...network to another network for example the Internet In the figure below the NBG6818 connects the local network L AN1 L AN4 to the Internet Figure 14 NBG6818 in Standard Mode 5 2 What You Can Do Use t...

Page 37: ...the firmware version System Operation Mode This is the device mode to which the NBG6818 is set see Section 13 7 on page 137 for more information Enable IPv4 Firewall This shows if the IPv4 firewall is...

Page 38: ...N Information MAC Address This shows the LAN Ethernet adapter MAC Address of your device IP Address This shows the LAN port s IP address IP Subnet Mask This shows the LAN port s subnet mask DHCP Serve...

Page 39: ...n Bridge Mode Many screens that are available in Standard Mode are not available in Bridge Mode such as port forwarding and firewall See Section 3 3 on page 29 for more information 6 2 What You Can Do...

Page 40: ...Configurator in Bridge Mode Log in to the Web Configurator in Bridge mode do the following 1 Connect your computer to the LAN port of the NBG6818 2 The default IP address of the NBG6818 in bridge mod...

Page 41: ...device mode to which the NBG6818 is set see Section 13 7 on page 137 for more information Enable IPv4 Firewall This shows if the IPv4 firewall is enabled on the NBG6818 Enable IPv6 Simple Security Thi...

Page 42: ...Configure a Port Forwarding Rule 7 2 Run a Spe e d T e st With the NBG6818 Web Configurator you can check the speed of the connection between your NBG6818 and the broadband modem router 1 Click the N...

Page 43: ...ollowing table describes the different NBG6818 s profile networks and their privileges Note A user can only configure the WiFi networks security settings if they are connected to the Main WiFi network...

Page 44: ...Fi Network Enter the 2 4G 5G Name and Password clients use to connect to the WiFi network You can configure two different WiFi Names for the Main WiFi 2 4G and 5G networks Select Ke e p 2 4G 5G name t...

Page 45: ...G6818 is set up you can use separate WiFi networks for your clients The WiFi settings will be applied to all clients in the same network Note This is not available if you are using bridge mode 1 Click...

Page 46: ...e guest WiFi and enter the WiFi Name SSID and WiFi Password Click Apply to save your changes 7 5 Add Clie nts to a Profile Profiling clients allows you to easily block allow Internet access or set a s...

Page 47: ...De tail select a predefined profile and click Apply 7 6 Se t a Profile s WiFi Sc he dule When you create or edit a profile you can schedule the NBG6818 to automatically disable or enable WiFi access d...

Page 48: ...6818 User s Guide 48 2 Click Enable to activate this profile s Internet schedule Click the Edit icon to modify a profile s Internet schedule 3 Click the start time cell and drag down to the end time t...

Page 49: ...ock a profile of client devices from accessing the Internet immediately and resume it later Note This is not available if you are using bridge mode 1 Click the Navigation Pane l icon on the top left c...

Page 50: ...ume button to resume network access at once or click the Quic k Bloc k button to pause Internet access for that specific profile 7 8 T urn on or off the NBG6818 s L ED L ight 1 In the Ove rvie w scree...

Page 51: ...work and another network such as the Internet Bridge Use this mode so the NBG6818 bridges traffic between clients on the same network Note Features such as parental Control UPnP Port Forwarding are no...

Page 52: ...packets to a specific or appropriate IP address in the private network using ports set a port forwarding rule Note This is not available if you are using bridge mode 1 Click the Navigation Pane l icon...

Page 53: ...Click Add Rule to create a port forwarding rule Add a service name a port number or a range of ports to define the service to be forwarded specify the transport layer protocol used for the service an...

Page 54: ...Chapter 7 Tutorials NBG6818 User s Guide 54...

Page 55: ...55 PART II T e c hnic al Re fe re nc e...

Page 56: ...igital Living Network Alliance DLNA is a group of personal computer and electronics companies that works to make products compatible in a home network DLNA clients play files stored on DLNA servers Th...

Page 57: ...nd auditing It is used to transport traffic over the Internet or any insecure network that uses TCP IP for communication 8 1 3 Be fore You Be gin Make sure the NBG6818 is connected to your network and...

Page 58: ...ws the index number of the rule Type The shows the type of device to which this rule applies Network This shows the type of network the devices are connected to Name This shows the name of the user to...

Page 59: ...le Click the Ac tion icon then Add Ne w Profile to show the following screen Table 9 Edit Device Detail L ABEL DESCRIPT ION Device Name Enter a name for the device to which this rule applies Type Choo...

Page 60: ...ame Enter a name for this rule Select All Click Se le c t All then deselect the blocks you don t want or click on blocks separately to specify days and times to turn the Wireless LAN on or off Deselec...

Page 61: ...and anonymity for all transmitted data It also provides faster connection speeds than other VPN protocols Note We do not recommended activating OpenVPN Server and OpenVPN Client at the same time on y...

Page 62: ...e 25 OpenVPN Server The following table describes the fields in this screen Table 12 OpenVPN Server L ABEL DESCRIPT ION OpenVPN Server Dynamic DNS This field shows the status of your Dynamic DNS Make...

Page 63: ...PN clients can connect to the NBG6818 OpenVPN server Enter an IPv4 address and subnet mask Advertise DNS to Clients Select Enable if you want the NBG6818 to broadcast its OpenVPN server to OpenVPN cli...

Page 64: ...ce s through which the clients are allowed to connect to an account Actions Click the icons under Ac tions to delete or edit an existing OpenVPN account settings Click to delete an existing OpenVPN ac...

Page 65: ...wing table describes the fields in this screen Apply Click Apply to save your changes back to the NBG6818 Cancel Click Canc e l to exist this screen without saving Table 14 OpenVPN Account List Add Ru...

Page 66: ...OpenVPN Server account Click to edit an existing OpenVPN Server account Table 15 OpenVPN Client L ABEL DESCRIPT ION Table 16 OpenVPN Server List Add Rule L ABEL DESCRIPT ION Description Enter 1 32 sin...

Page 67: ...wing screen Figure 31 USB Application SAMBA The following table describes the labels in this screen Apply Click Apply to save your changes back to the NBG6818 Cancel Click Canc e l to exist this scree...

Page 68: ...ire username and password Select Ye s to need a user account for access to the connected USB stick from any computer Otherwise select No User Accounts Before you can share files you need a user accoun...

Page 69: ...up to 20 characters Only letters and numbers allowed Password Enter the password used to access the shared files You can enter up to 20 characters Only letters and numbers are allowed The password is...

Page 70: ...account No This is the index number of the user account Status This field displays whether a user account is activated or not Select the check box to enable the account Clear the check box to disable...

Page 71: ...20 characters Only letters and numbers are allowed The password is case sensitive USB Specify the user s access rights to the USB storage device which is connected to the NBG6818 s USB port Re ad Writ...

Page 72: ...a group of personal computer and electronics companies that works to make products compatible in a home network The NBG6818 media server enables you to Publish all share folders for everyone to play...

Page 73: ...the IP address of the NBG6818 the default IP address of the NBG6818 is 192 168 123 1 and press ENTER The share folder usb1 is available Table 21 USB Application USB Media Sharing L ABEL DESCRIPT ION U...

Page 74: ...s USB port Note This example uses the FileZilla FTP program to browse your shared files 1 Download FileZilla and install the FTP software to your computer 2 Go to USB Applic ation FT P On the FT P Se...

Page 75: ...ete the rules Figure 39 Add Rule Edit 4 Open FileZilla enter the Host IP address of the NBG6818 the default IP address is 192 168 123 1 the Use rname and Password and the port number 21 and then click...

Page 76: ...Chapter 8 Applications NBG6818 User s Guide 76 5 Once you log in the USB device displays in the usb1 folder...

Page 77: ...ing bridge mode 9 2 What You Can Do Use the Inte rne t Conne c tion screen to enter your ISP information and set how the computer acquires its IP DNS and WAN MAC addresses Section 9 4 on page 79 Use t...

Page 78: ...ress if you use the Ethernet or ENET ENCAP encapsulation method DNS Se rve r Addre ss Assignme nt Use Domain Name System DNS to map a domain name to its corresponding IP address and vice versa for ins...

Page 79: ...use 192 168 123 1 as its LAN IP address Figure 41 Auto IP Change Example Auto IP Change only works under the following conditions The NBG6818 must be in Standard Mode see Section 13 7 on page 137 for...

Page 80: ...L DESCRIPT ION Internet Connection Internet Service Provider Type You must choose the IPoE option when the WAN port is used as a regular Ethernet IPv4 IPv6 Select IPv4 Only if you want the NBG6818 to...

Page 81: ...ion to have the WAN interface use a manually specified MAC address Enter the MAC address in the fields LAN WAN Subnet Conflict Automatically change the LAN IP Select this option to have the NBG6818 ch...

Page 82: ...fort for both you and the ISP or carrier as it requires no specific configuration of the broadband modem at the customer site By implementing PPPoE directly on the NBG6818 rather than individual compu...

Page 83: ...his screen Table 23 Network WAN Internet Connection PPPoE Encapsulation L ABEL DESCRIPT ION Internet Connection Internet Service Provider Type Select PPPoE if you connect to your Internet via dial up...

Page 84: ...he MAC address you want to use IPv6 Address This section is NOT available when you select IPv4 Only in the IPv4 IPv6 field Automatic IP DHCP Select this option if you want to obtain an IPv6 address fr...

Page 85: ...to 10 0 0 1 or 192 168 123 1 accordingly when the NBG6818 gets a dynamic WAN IP address in the same subnet as the LAN IP address See Section 9 3 1 on page 78 for more information The NAT DHCP server a...

Page 86: ...er the gateway IP address in this field DNS Server First DNS Server Second DNS Server Third DNS Server Select Use r De fine d if you have the IP address of a DNS server Enter the DNS server s IP addre...

Page 87: ...er from your location Your ISP may periodically check for servers and may suspend your account if it discovers any active services at your location If you are unsure refer to your ISP Configuring Se r...

Page 88: ...Behind NAT Example Use this screen to enable NAT set a default server and view the summary table of your NBG6818 s port forwarding settings Click Se ttings Inte rne t NAT Port Forwarding to show the...

Page 89: ...he servers for specified services NAT supports a default server A default server receives packets from ports that are not specified in the port forwarding summary table below Select this to use the de...

Page 90: ...UDP If you have chosen a pre defined service in the Se rvic e Name field the protocol will be configured automatically External Port This shows the port number used to connect to this service using th...

Page 91: ...that provides audio data and video conferencing FTP File Transfer Protocol an Internet file transfer service SNMP Simple Network Management Protocol An application layer protocol that can be used to...

Page 92: ...to make sure SIP VoIP works correctly with port forwarding and address mapping rules SNMP Select Enable to allow a manager station to manage and monitor the NBG6818 through the network via SNMP RTSP...

Page 93: ...number ranging between 6970 7170 4 The Zyxel Device forwards the traffic to Jane s computer IP address Only Jane can connect to the Real Audio server until the connection is closed or times out The Zy...

Page 94: ...ger port settings Click to delete the rule Click to edit the rule Table 28 Expert Mode WAN NAT Port Trigger continued L ABEL DESCRIPT ION Table 29 Add Port Trigger Rule L ABEL DESCRIPT ION Name Type a...

Page 95: ...able describes the labels in this screen Apply Click Apply to save your changes Cancel Click Canc e l to exist this screen without saving Table 29 Add Port Trigger Rule L ABEL DESCRIPT ION Table 30 Se...

Page 96: ...back to the NBG6818 Cancel Click Ca nc e l to begin configuring this screen afresh Table 30 Settings Internet Dynamic DNS continued L ABEL DESCRIPT ION Table 31 Settings Internet UPnP L ABEL DESCRIPT...

Page 97: ...sure the computer is connected to a LAN port of the NBG6818 Turn on your computer and the NBG6818 1 Click the start icon Control Pane l and then the Ne twork and Sharing Ce nte r 2 Click Change Advan...

Page 98: ...urn on ne twork disc ove ry and click Save Change s Network discovery allows your computer to find other computers and devices on the network and other computers on the network to find your computer...

Page 99: ...how to use the UPnP feature in Windows 10 UPnP server is installed in Windows 10 Activate UPnP on the NBG6818 in Se ttings Inte rne t UPnP Make sure the computer is connected to the LAN port of the NB...

Page 100: ...Chapter 9 WAN NBG6818 User s Guide 100 2 Click Ne twork and Sharing Ce nte r 3 Click Change advanc e d sharing se ttings...

Page 101: ...elect T urn on ne twork disc ove ry and click Save Change s Network discovery allows your computer to find other computers and devices on the network and other computers on the network to find your co...

Page 102: ...etwork The wireless network in the figure is encircled in blue In this wireless network devices A and B are called wireless clients The wireless clients use the access point AP to interact with other...

Page 103: ...D In addition you should change the default SSID to something that is difficult to guess This type of security is fairly weak however because there are ways for unauthorized devices to get the SSID In...

Page 104: ...n use encryption to protect the information that is sent in the wireless network Encryption is like a secret code If you do not know the secret code you cannot understand the message The WPA PSK WiFi...

Page 105: ...or company network Figure 56 Example Bandwidth for Different Networks WPS WiFi Protected Setup WPS is an industry standard specification defined by the WiFi Alliance WPS allows you to set up a wireles...

Page 106: ...g the NBG6818 from a computer connected to the wireless LAN and you change the NBG6818 s SSID channel or security settings you will lose your wireless connection when you press Apply to confirm You mu...

Page 107: ...apply to the NBG6818 Password The password has two uses Manual Manually enter the same password on the Zyxel Device and the client Enter 8 63 ASCII characters or exactly 64 hexadecimal 0 9 a f charac...

Page 108: ...ate the guest WiFi Select Disable to turn it off Name SSID An SSID profile is the set of parameters relating to one of the NBG6818 s BSSs The SSID Service Set IDentifier identifies the Service Set wit...

Page 109: ...ilter L ABEL DESCRIPT ION MAC Filter Select to turn on Enable or off Disable MAC address filtering Filter Action Define the filter action for the list of MAC addresses in the MAC Filte r Summary table...

Page 110: ...Note With WPS wireless clients can only connect to the wireless network using the first SSID on the NBG6818 Table 35 Settings WiFi MAC Filter Add L ABEL DESCRIPT ION Type This field displays the MAC a...

Page 111: ...d wireless setup or security settings have been changed from default The current wireless setup and security settings also appear in this screen This displays Unc onfigure d if WPS is disabled and the...

Page 112: ...g screen Figure 63 Settings WiFi Scheduling The following table describes the labels in this screen Table 37 Expert Mode Wireless Scheduling L ABEL DESCRIPT ION WiFi Scheduling Select Enable to activa...

Page 113: ...gure a manage IP addresses and partition your physical network into logical networks 11 2 What You Can Do Use the L AN IP screen to configure the IP addresses for your NBG6818 on the LAN Section 11 4...

Page 114: ...address of 192 168 123 1 with subnet mask of 255 255 255 0 24 bits DHCP server enabled with 128 client IPv4 addresses starting from 192 168 123 33 These parameters should work for the majority of inst...

Page 115: ...Chapter 11 LAN NBG6818 User s Guide 115 Figure 66 Settings LAN LAN IP Standard Mode...

Page 116: ...available if you are using bridge mode DHCP Server Select Enable to activate DHCP for LAN Select Disable to stop the NBG6818 from acting as a DHCP server DHCP Dynamic Host Configuration Protocol RFC...

Page 117: ...IP and the field to the right displays the read only default gateway IP address of your computer Select None if you do not want to configure DNS servers If you do not configure a DNS server you must...

Page 118: ...tically detect the MAC address of a computer on your LAN Otherwise select Use r De fine d to enter the MAC address of a computer on your LAN in the MAC Addre ss field MAC Address This field displays t...

Page 119: ...this section to configure your LAN settings while in Bridge Mode Click Se ttings L AN L AN IP to show the following screen Note If you change the IP address of the NBG6818 in the screen below you will...

Page 120: ...notation The default setting is 192 168 1 2 If you change the IP address you will have to log in again with the new IP address Subnet Mask The subnet mask specifies the network number portion of an IP...

Page 121: ...tateless auto configuration on this interface The interface will generate an IPv6 IP address itself from a prefix obtained from an IPv6 router in the network Select SL AAC State le ss DHCPv6 to enable...

Page 122: ...the 48 to 64 address prefix length to specify in an IPv6 address compose the network address Prefix Valid Lifetime Enter the valid lifetime for the prefix Link Local Only Select this option to only us...

Page 123: ...LAN The following figure illustrates the default firewall action User A can initiate an IM Instant Messaging session from the LAN to the WAN 1 Return traffic for this session is also allowed 2 Howeve...

Page 124: ...cal Area Network port attaches to a network of computers which needs security from the outside world These computers will have access to Internet services such as e mail FTP and the World Wide Web How...

Page 125: ...ts Otherwise select L AN WAN to reply to all incoming LAN and WAN Ping requests Firewall Setup Enable Firewall Select Enable to activate the firewall The NBG6818 performs access control and protects a...

Page 126: ...ion or service is initialized Dest Port Range This is the port number range of the destination that define the traffic type for example TCP port 80 defines web traffic Source Port Range This is the po...

Page 127: ...traffic for the application or service is entering The NBG6818 applies the firewall rule to traffic initiating from this computer Source IP Address Enter the IP address of the computer that initializ...

Page 128: ...applied in turn Service Name This is a name that identifies or describes the firewall rule MAC Address This is the MAC address of the computer for which the firewall rule applies Dest IP Address This...

Page 129: ...rule to traffic initiating from this computer Source IP Address Enter the IP address of the computer that initializes traffic for the application or service The NBG6818 applies the firewall rule to tr...

Page 130: ...se the Re mote Ac c e ss screen to configure the interface s from which the NBG6818 can be managed remotely and specify a secure client that can manage the NBG6818 Section 13 5 on page 135 Use the Mai...

Page 131: ...Chapter 13 System NBG6818 User s Guide 131 Figure 77 Settings System Status Standard Mode...

Page 132: ...Enable IPv6 Simple Security This shows if the IPv6 firewall is enabled on the NBG6818 System Uptime This is the total time the NBG6818 has been on WAN Information Note This is not available if you are...

Page 133: ...ste m Ge ne ral Se tting to show the following screen Figure 79 Settings System General Setting Standard Mode DHCP Server This shows whether the NBG6818 acts as a DHCP Server and provides LAN IP addre...

Page 134: ...e to log in with your password again Very long idle timeouts may have security risks A value of 0 means a management session never times out no matter how long it has been left idle not recommended Se...

Page 135: ...uter storage device or media server To use this feature the remote hardware such as the network adapter on a computer must support Wake On LAN using the Magic Packet method You need to know the MAC ad...

Page 136: ...AN Status Select Enable to have the NBG6818 forward a WoL Magic Packet to all devices on the LAN if the packet comes from the WAN or remote network and uses the port number specified in the Port field...

Page 137: ...in this section to clear all user entered configuration information and returns the NBG6818 to its factory defaults You can also press the RESETbutton on the rear panel to reset the factory defaults...

Page 138: ...P addresses the LAN IP address and the WAN IP address Figure 84 LAN and WAN IP Addresses in Standard Mode Bridge A bridge enabled all Ethernet ports to be bridged together and be in the same subnet To...

Page 139: ...tandard Mode Select Standard Mode if your device routes traffic between a local network and another network such as the Internet This mode offers services such as a firewall or bandwidth management Yo...

Page 140: ...apter 13 System NBG6818 User s Guide 140 Click Apply to save your settings Click Canc e l to discard all changes Click Se ttings Syste m L ogs to show the following screen Figure 87 Settings System Lo...

Page 141: ...are using the power adaptor or cord included with the NBG6818 Make sure the power adaptor or cord is connected to the NBG6818 and plugged in to an appropriate power source Make sure the power source i...

Page 142: ...ting your NBG6818 I cannot see or access the L og in screen in the Web Configurator Make sure you are using the correct IP address The default IP address of the NBG6818 in Standard Mode is 192 168 123...

Page 143: ...your System Operation Mode setting If the NBG6818 is in Standard Mode make sure the WAN port is connected to a broadband modem or router with Internet access Your computer and the NBG6818 should be in...

Page 144: ...suggestions Advanc e d Sugge stion Check the settings for QoS If it is disabled you might consider activating it 14 5 Re se tting the NBG6818 to Its Fac tory De faults If you reset the NBG6818 you lo...

Page 145: ...at factors may cause intermittent or unstabled wireless connection How can I solve this problem The following factors may cause interference Obstacles walls ceilings furniture and so on Building Mater...

Page 146: ...e requires a special driver install the driver from the installation disc that came with the device After driver installation reconnect the USB device to the NBG6818 and try to connect to it again wit...

Page 147: ...ion Please have the following information ready when you contact an office Re quire d Information Product model and serial number Warranty Information Date that you received your device Brief descript...

Page 148: ...e s Zyxel Philippines http www zyxel com ph Singapore Zyxel Singapore Pte Ltd http www zyxel com sg T aiwan Zyxel Communications Corporation https www zyxel com tw zh T hailand Zyxel Thailand Co Ltd h...

Page 149: ...xel Communications A S https www zyxel com dk da Estonia Zyxel Estonia https www zyxel com ee et Finland Zyxel Communications https www zyxel com fi fi Franc e Zyxel France https www zyxel fr Ge rmany...

Page 150: ...Zyxel Communications Poland https www zyxel com pl pl Romania Zyxel Romania https www zyxel com ro ro Russia Zyxel Russia https www zyxel com ru ru Slovakia Zyxel Communications Czech s r o organizac...

Page 151: ...a Arge ntina Zyxel Communications Corporation https www zyxel com co es Brazil Zyxel Communications Brasil Ltda https www zyxel com br pt Colombia Zyxel Communications Corporation https www zyxel com...

Page 152: ...ons Corporation https www zyxel com me en North Ame ric a USA Zyxel Communications Inc North America Headquarters https www zyxel com us en Oc e ania Australia Zyxel Communications Corporation https w...

Page 153: ...your network Windows Vista XP 2000 Mac OS 9 OS X and all versions of UNIX LINUX include the software components you need to use TCP IP on your computer If you manually assign IP information instead of...

Page 154: ...ddress NBG6818 User s Guide 154 2 In the Control Pane l click Vie w ne twork status and tasks under the Ne twork and Inte rne t category 3 Click Change adapte r se ttings 4 Double click L oc al Are a...

Page 155: ...Address NBG6818 User s Guide 155 Note During this procedure click Continue whenever Windows displays a screen saying that it needs your permission to continue 5 Select Inte rne t Protoc ol Ve rsion 4...

Page 156: ...ddress that was assigned to you by your network administrator or ISP You may also have to enter a Pre fe rre d DNS se rve rand an Alte rnate DNS se rve r if that information was provided Click Advanc...

Page 157: ...ns in this section are from Mac OS X 10 4 but can also apply to 10 3 1 Click Apple Syste m Pre fe re nc e s 2 In the Syste m Pre fe re nc e s window click the Ne twork icon 3 When the Ne twork prefere...

Page 158: ...elect Using DHCP from the Configure IPv4 list in the T CP IP tab 5 For statically assigned settings do the following From the Configure IPv4 list select Manually In the IP Addre ss field type your IP...

Page 159: ...ck your TCP IP properties by clicking Applic ations Utilitie s Ne twork Utilitie s and then selecting the appropriate Ne twork Inte rfac e from the Info tab Figure 88 Mac OS X 10 4 Network Utility Mac...

Page 160: ...ng Up Your Computer s IP Address NBG6818 User s Guide 160 2 In Syste m Pre fe re nc e s click the Ne twork icon 3 When the Ne twork preferences pane opens select Ethe rne t from the list of available...

Page 161: ...select Using DHCP for dynamically assigned settings 5 For statically assigned settings do the following From the Configure list select Manually In the IP Addre ss field enter your IP address In the S...

Page 162: ...uide 162 6 Click Apply and close the window Ve rifying Se ttings Check your TCP IP properties by clicking Applic ations Utilitie s Ne twork Utilitie s and then selecting the appropriate Ne twork inte...

Page 163: ...on The following screens use the default Ubuntu 8 installation Note Make sure you are logged in as the root administrator Follow the steps below to configure your computer IP address in GNOME 1 Click...

Page 164: ...B Setting Up Your Computer s IP Address NBG6818 User s Guide 164 4 In the Ne twork Se ttings window select the connection that you want to configure then click Prope rtie s 5 The Prope rtie s dialog b...

Page 165: ...and close the Prope rtie s dialog box and return to the Ne twork Se ttings screen 7 If you know your DNS server IP address es click the DNS tab in the Ne twork Se ttings window and then enter the DNS...

Page 166: ...KDE using the openSUSE 10 3 Linux distribution The procedure screens and file locations may vary depending on your specific distribution release version and individual configuration The following scr...

Page 167: ...ter s IP Address NBG6818 User s Guide 167 2 When the Run as Root KDE su dialog opens enter the admin password and click OK 3 When the YaSTControl Ce nte r window opens select Ne twork De vic e s and t...

Page 168: ...NBG6818 User s Guide 168 4 When the Ne twork Se ttings window opens click the Ove rvie w tab select the appropriate connection Name from the list and then click the Configure button 5 When the Ne twor...

Page 169: ...address Select Static ally assigne d IP Addre ss if you have a static IP address Fill in the IP addre ss Subne t mask and Hostname fields 7 Click Ne xt to save the changes and close the Ne twork Card...

Page 170: ...rifying Se ttings Click the KNe twork Manage ricon on the T ask barto check your TCP IP properties From the Options sub menu select Show Conne c tion Information Figure 92 openSUSE 10 3 KNetwork Manag...

Page 171: ...Appendix B Setting Up Your Computer s IP Address NBG6818 User s Guide 171 Figure 93 openSUSE Connection Status KNetwork Manager...

Page 172: ...Table 50 Commonly Used Services NAME PROT OCOL PORT S DESCRIPT ION AH IPSEC_TUNNEL User Defined 51 The IPSEC AH Authentication Header tunneling protocol uses this service AIM New ICQ TCP 5190 AOL s I...

Page 173: ...from a POP3 server through a temporary connection TCP IP or other PPTP TCP 1723 Point to Point Tunneling Protocol enables secure transfer of data over public networks This is the control channel PPTP...

Page 174: ...d terminal emulation protocol common on the Internet and in UNIX environments It operates over TCP IP networks Its primary function is to allow users to log into remote host systems TFTP UDP 69 Trivia...

Page 175: ...ifications not expressly approved by the party responsible for compliance could void the user s authority to operate the device This product has been tested and complies with the specifications for a...

Page 176: ...nice 2014 53 EU Dansk Danish Undertegnede Zyxel erkl rer herved at f lgende udstyr udstyr overholder de v sentlige krav og vrige relevante krav i direktiv 2014 53 EU Nationa l Re stric tions In Denmar...

Page 177: ...ijn 2014 53 EU Polski Polish Niniejszym Zyxel o wiadcza e sprz t jest zgodny z zasadniczymi wymogami oraz pozosta ymi stosownymi postanowieniami Dyrektywy 2014 53 UE Portugu s Portuguese Zyxel declara...

Page 178: ...n 8W and or Off mode power consumption 0 5W and or Standby mode power consumption 0 5W Wireless settings please refer to the chapter about wireless settings for more detail Europe an Union Disposal an...

Page 179: ...ols Various symbols are used in this product to ensure correct usage to prevent danger to the user and others and to prevent property damage The meaning of these symbols are described below It is impo...

Page 180: ...haser This warranty is in lieu of all other warranties express or implied including any implied warranty of merchantability or fitness for a particular use or purpose Zyxel shall in no event be held l...

Page 181: ...ders 127 129 DHCP server 114 Digital Living Network Alliance 56 disclaimer 175 DLNA 56 indexing 73 overview 72 rescan 73 DLNA compliant client 56 DNS Server 78 Domain Name System See DNS DynDNS 127 12...

Page 182: ...using the WPS See WPS MBSSID 11 Media access control 108 media client 72 media file 72 73 type 73 media server overview 72 meida file play 72 mode 11 N NAT and ALG 91 O OpenVPN Client 65 OpenVPN Serve...

Page 183: ...AN Wide Area Network 77 WAN MAC address 78 warranty 180 note 180 Web Configurator how to access 27 web configurator 12 wireless channel 145 wireless LAN 145 wireless LAN scheduling 112 Wireless networ...

Reviews:

No comments

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands