manualshive.com logo in svg

ZyXEL Communications LTE7461-M602, User Manual

Share
Download
ZyXEL Communications LTE7461-M602 User Manual Download Page 56

Chapter 6 Wireless

LTE7461-M602 User’s Guide

55

These security standards vary in effectiveness. Some can be broken, such as the old Wired Equivalent 
Protocol (WEP). Using WEP is better than using no security at all, but it will not keep a determined 
attacker out. Other security standards are secure in themselves but can be broken if a user does not use 
them properly. For example, the WPA-PSK security standard is very secure if you use a long key which is 
difficult for an attacker’s software to guess - for example, a twenty-letter long string of apparently 
random numbers and letters - but it is not very secure if you use a short key which is very easy to guess - 
for example, a three-letter word from the dictionary.

Because of the damage that can be done by a malicious attacker, it’s not just people who have 
sensitive information on their network who should use security. Everybody who uses any WiFi network 
should ensure that effective security is in place.

A good way to come up with effective security keys, passwords and so on is to use obscure information 
that you personally will easily remember, and to enter it in a way that appears random and does not 
include real words. For example, if your mother owns a 1970 Dodge Challenger and her favorite movie is 
Vanishing Point (which you know was made in 1971) you could use “70dodchal71vanpoi” as your 
security key.

The following sections introduce different types of WiFi security you can set up in the WiFi network.

6.7.3.1  SSID

Normally, the Zyxel Device acts like a beacon and regularly broadcasts the SSID in the area. You can 
hide the SSID instead, in which case the Zyxel Device does not broadcast the SSID. In addition, you 
should change the default SSID to something that is difficult to guess.

This type of security is fairly weak, however, because there are ways for unauthorized WiFi devices to get 
the SSID. In addition, unauthorized WiFi devices can still see the information that is sent in the WiFi 
network.

6.7.3.2  MAC Address Filter

Every device that can use a WiFi network has a unique identification number, called a MAC address.

1

 A 

MAC address is usually written using twelve hexadecimal characters

2

; for example, 00A0C5000002 or 

00:A0:C5:00:00:02. To get the MAC address for each device in the WiFi network, see the device’s User’s 
Guide or other documentation.

You can use the MAC address filter to tell the Zyxel Device which devices are allowed or not allowed to 
use the WiFi network. If a device is allowed to use the WiFi network, it still has to have the correct 
information (SSID, channel, and security). If a device is not allowed to use the WiFi network, it does not 
matter if it has the correct information.

This type of security does not protect the information that is sent in the WiFi network. Furthermore, there 
are ways for unauthorized WiFi devices to get the MAC address of an authorized device. Then, they can 
use that MAC address to use the WiFi network.

Some wireless devices, such as scanners, can detect WiFi networks but cannot use WiFi networks. These kinds

1.

of wireless devices might not have MAC addresses.
Hexadecimal characters are 0, 1, 2, 3, 4,

2.

 5, 6, 7, 8, 9, A, B, C, D, E, and F.

Summary of Contents for LTE7461-M602

Page 1: ...gin Details User s Guide LTE7461 M602 LTE Outdoor Router Copyright 2019 Zyxel Communications Corporation LAN IP Address http 192 168 1 1 Login admin Password See the Zyxel Device label Version 2 00 Ed...

Page 2: ...y differ slightly from what you see due to differences in your product firmware or your computer operating system Every effort has been made to ensure that the information in this manual is accurate R...

Page 3: ...to as the Zyxel Device in this guide Product labels screen names field labels and field choices are all in bold font A right angle bracket within a screen name denotes a mouse click For example Networ...

Page 4: ...orking 65 Routing 87 Network Address Translation NAT 95 Dynamic DNS Setup 105 Firewall 109 MAC Filter 119 Certificates 121 Log 130 Traffic Status 133 ARP Table 136 Routing Table 138 Cellular WAN Statu...

Page 5: ...13 1 4 Good Habits for Managing the Zyxel Device 14 1 5 LEDs Lights 14 1 6 The RESET Button 15 Chapter 2 The Web Configurator 16 2 1 Overview 16 2 1 1 Accessing the Web Configurator 16 2 2 Web Configu...

Page 6: ...MN Configuration Screen 38 5 6 IP Passthrough Screen 40 Chapter 6 Wireless 42 6 1 Overview 42 6 1 1 What You Can Do in this Chapter 42 6 1 2 What You Need to Know 42 6 2 The General Screen 43 6 2 1 No...

Page 7: ...ng 87 8 1 Overview 87 8 2 Configuring Static Route 87 8 2 1 Add Edit Static Route 88 8 3 The DNS Route Screen 90 8 3 1 Add Edit DNS Route 90 8 4 The Policy Route Screen 91 8 4 1 Add Edit Policy Route...

Page 8: ...S Screen 115 11 7 Firewall Technical Reference 116 11 7 1 Firewall Rules Overview 116 11 7 2 Guidelines For Enhancing Security With Your Firewall 117 11 7 3 Security Considerations 118 Chapter 12 MAC...

Page 9: ...136 16 2 ARP Table Screen 137 Chapter 17 Routing Table 138 17 1 Routing Table Overview 138 17 2 The Routing Table Screen 138 Chapter 18 Cellular WAN Status 141 18 1 Cellular WAN Status Overview 141 18...

Page 10: ...Overview 161 24 2 The Email Notification Screen 161 24 2 1 Email Notification Edit 162 Chapter 25 Log Setting 164 25 1 Log Setting Overview 164 25 2 The Log Setting Screen 164 Chapter 26 Firmware Upgr...

Page 11: ...e 11 29 2 Power and Hardware Connections 174 29 3 Zyxel Device Access and Login 174 29 4 Internet Access 176 29 5 UPnP 177 Part III Appendices 178 Appendix A Customer Support 179 Appendix B IPv6 185 A...

Page 12: ...12 PART I User s Guide...

Page 13: ...n SPI technology Protects against Denial of Service DoS attacks Filter of LAN MAC address LAN IP address and URLs Local and remote device management Firmware upgrade via TR 069 and Web Configurator Th...

Page 14: ...Use a password that s not easy to guess and that consists of different types of characters such as numbers and letters Write down the password and put it in a safe place Back up the configuration and...

Page 15: ...Zyxel Device is booting Blinking Slow The WiFi network is activated On Amber The WiFi network is not activated Off The Zyxel Device is registered and successfully connected to a mobile network On Bli...

Page 16: ...This means that you will lose all configurations that you had previously saved the password will be reset to 1234 and the IP address will be reset to 192 168 1 1 Figure 3 Reset Button and IO ports 1 M...

Page 17: ...lt 2 1 1 Accessing the Web Configurator 1 Make sure your Zyxel Device hardware is properly connected refer to the Quick Start Guide 2 Launch your web browser If the Zyxel Device does not automatically...

Page 18: ...e Web Configurator LTE7461 M602 User s Guide 17 5 The Connection Status screen appears Use this screen to configure basic Internet access wireless settings and parental control settings Figure 3 Conne...

Page 19: ...Web Configurator Layout Figure 4 Screen Layout As illustrated above the main screen is divided into these parts A Settings Icon Navigation Panel Side Bar B Widget Icon C Main Window 2 2 1 Settings Ico...

Page 20: ...lick this icon to open screens where you can configure the Zyxel Device s time zone and wireless settings See Chapter 3 on page 23 for more information about the Wizard screens Theme Click this icon t...

Page 21: ...ain SSIDs and MAC addresses to the Zyxel Device WPS Use this screen to configure and view your WPS WiFi Protected Setup settings WMM Use this screen to enable or disable WiFi MultiMedia WMM Others Use...

Page 22: ...tional Debugging Categories include Account Attack Firewall MAC Filter Traffic Status WAN Use this screen to view the status of all network traffic going through the WAN port of the Zyxel Device LAN U...

Page 23: ...figure up to two mail servers and sender addresses on the Zyxel Device Log Setting Log Setting Use this screen to change your Zyxel Device s log settings Firmware Upgrade Firmware Upgrade Use this scr...

Page 24: ...can click the Wizard icon in the side bar to open the Wizard screens See Section 2 2 1 1 on page 19 for more information about the side bar After you click the Wizard icon the following screen appears...

Page 25: ...WiFi password click the Eye icon Click Done Figure 7 Wizard Wireless Note You can also enable the wireless service using any of the following methods Click Network Setting Wireless to open the Genera...

Page 26: ...25 PART II Technical Reference...

Page 27: ...e this screen to view the network connection status of the Zyxel Device and its clients Figure 8 Connectivity Click the Arrow icon to view IP addresses and MAC addresses of the wireless and wired devi...

Page 28: ...Figure 10 Connectivity Edit 4 1 2 The System Info Screen Use this screen to view the basic system information of the Zyxel Device Figure 11 System Info Click the Arrow icon to view the more informatio...

Page 29: ...the Zyxel Device has been running since it last started up The System Up Time Zyxel Device starts up when you plug it in when you restart it Maintenance Reboot or when you reset it Interface Status V...

Page 30: ...Zyxel Device is providing to the LAN The possible DHCP values are Server The Zyxel Device is a DHCP server in the LAN It assigns IP addresses to other computers in the LAN Relay The Zyxel Device acts...

Page 31: ...unction is enabled Otherwise it s not WiFi Name The SSID Service Set IDentity identifies the service set with which a wireless device is associated Wireless devices associating to the access point AP...

Page 32: ...t this option to have the Zyxel Device automatically generate a password The Random Password WiFi Password field will not be configurable when you select this option Hide WiFi network name Select this...

Page 33: ...you are instructed to do so IP Addressing Values Beginning IP Address This field specifies the first of the contiguous addresses in the IP address pool Ending IP Address This field specifies the last...

Page 34: ...WAN 5 1 1 What You Can Do in this Chapter Use the Cellular WAN screen to configure an LTE WAN connection Section 5 2 on page 34 Use the Cellular SIM screen to enter the PIN of your SIM card Section 5...

Page 35: ...cates an LTE network An APN is required for LTE stations to enter the LTE network and then the Internet 5 1 3 Before You Begin You may need to know your Internet access settings such as LTE APN WAN IP...

Page 36: ...nsure that your Zyxel Device is kept connected to the Internet when you are traveling outside the geographical coverage area of the network to which you are registered APN Settings APN Manual Mode Dis...

Page 37: ...d in the profile Password Type the password up to 31 printable ASCII characters associated with the user name above Authentication Type Select the type of authentication method peers use to connect to...

Page 38: ...Protection A PIN Personal Identification Number code is a key to a SIM card Without the PIN code you cannot use the SIM card Click to enable if the service provider requires you to enter a PIN to use...

Page 39: ...ce to connect and click Apply to save your settings Otherwise select Auto to have the Zyxel Device connect to an available network using the default settings on the SIM card If the currently registere...

Page 40: ...k Setting Broadband Cellular PLMN Manual Scan Warning When the next screen appears clicking Scan will allow the Zyxel Device to check for available PLMNs in its surroundings and display the network li...

Page 41: ...g of client devices After selecting to enable the following warning appears Click OK to continue Table 11 Network Setting Broadband Cellular PLMN Manual Scan LABEL DESCRIPTION Click the radio button s...

Page 42: ...arded to the LAN computer and will not go through NAT Passthrough Mode Select Dynamic to allow traffic to be forwarded to any LAN computer on the local network of the Zyxel Device Select Fixed to allo...

Page 43: ...to ensure quality of service in WiFi networks for multimedia applications Section 6 5 on page 49 Use the Others screen to configure WiFi advanced features such as the RTS CTS Threshold Section 6 6 on...

Page 44: ...security mode It s recommended that you select More Secure to enable WPA2 PSK data encryption Note If you are configuring the Zyxel Device from a computer connected to the wireless LAN and you change...

Page 45: ...e Bandwidth field to 40MHz Set whether the control channel set in the Channel field should be in the Lower or Upper range of channel bands WiFi Network Settings WiFi Network Name The SSID Service Set...

Page 46: ...on standard It offers slightly better security although the use of PSK makes it less robust than it could be Using a Pre Shared Key PSK both the Zyxel Device and the connecting client share a common p...

Page 47: ...default security mode Generate password automatically Select this option to have the Zyxel Device automatically generate a password The password field will not be configurable when you select this opt...

Page 48: ...el Device MAC addresses not listed will be denied access to the Zyxel Device MAC address List Add new MAC address This field is available when you select Deny or Allow in the MAC Restrict Mode field C...

Page 49: ...t support WPS It is recommended to use the Push Button Configuration PBC method if your WiFi client supports it See Section 6 7 7 3 on page 60 for more information about WPS Note The Zyxel Device uses...

Page 50: ...within two minutes of pressing this button Use this section to set up a WPS Method 2 PIN WiFi network by entering the PIN of the client into the Zyxel Device Click this switch to make it turn blue Cl...

Page 51: ...e IP header of packets it sends WMM QoS WiFi MultiMedia Quality of Service gives high priority to video which makes them run more smoothly If the 802 11 Mode in Network Setting Wireless Others is set...

Page 52: ...utput power to reduce interference with other APs Select one of the following 20 40 60 80 or 100 Beacon Interval When a wirelessly networked device sends a beacon it includes with it a beacon interval...

Page 53: ...to associate with the Zyxel Device The transmission rate of your Zyxel Device might be reduced Select 802 11a n ac Mixed to allow IEEE 802 11a IEEE 802 11n or IEEE802 11ac compliant WLAN devices to a...

Page 54: ...ints and one or more WiFi clients The WiFi clients connect to the access points The following figure provides an example of a WiFi network Figure 33 Example of a WiFi Network The WiFi network is the p...

Page 55: ...WiFi data network or understand the data carried on it These security standards do two things First they authenticate This means that only people presenting the right credentials often a username and...

Page 56: ...SSID Normally the Zyxel Device acts like a beacon and regularly broadcasts the SSID in the area You can hide the SSID instead in which case the Zyxel Device does not broadcast the SSID In addition you...

Page 57: ...information about this For example if the WiFi network has a RADIUS server you can choose WPA or WPA2 If users do not log in to the WiFi network you can choose no encryption WPA PSK or WPA2 PSK Note I...

Page 58: ...ed to signal that data is coming to the receiver Short and long refer to the length of the synchronization field in a packet Short preamble increases performance as less time sending preamble means mo...

Page 59: ...eir configuration utilities instead of or in addition to the physical button Take the following steps to set up WPS using the button 1 Ensure that the two devices you want to set up are within wireles...

Page 60: ...the device or in the WPS section of the client s configuration interface see the device s User s Guide on how to find the WPS PIN for the Zyxel Device see Section 6 4 on page 48 4 Enter the client s P...

Page 61: ...es network and security settings The registrar creates a secure EAP Extensible Authentication Protocol tunnel and sends the network name SSID and the WPA PSK or WPA2 PSK pre shared key to the enrollee...

Page 62: ...f an existing network and can act as either enrollee or registrar if it supports both functions If the registrar is unconfigured the security settings it transmits to the enrollee are randomly generat...

Page 63: ...hake with the new client since you must connect to the access point anyway in order to use the network In this case AP1 must be the registrar since it is configured it already has security information...

Page 64: ...device You can check the configuration interface of the registrar device to discover the key the network is using if the device supports this feature Then you can enter the key into the non WPS devic...

Page 65: ...ot involved in the WPS handshake a rogue device must still associate with the access point to gain access to the network Check the MAC addresses of your WiFi clients usually printed on a label on the...

Page 66: ...to specific individual computers based on their MAC Addresses Section 7 3 on page 70 Use the UPnP screen to enable UPnP Section 7 4 on page 72 7 1 2 What You Need To Know The following terms and conc...

Page 67: ...ir own services and opening firewall ports may present network security issues Network information and configuration may also be obtained and modified by users in some network environments When a UPnP...

Page 68: ...Chapter 7 Home Networking LTE7461 M602 User s Guide 67 Figure 40 Network Setting Home Networking LAN Setup...

Page 69: ...fies the first of the contiguous addresses in the IP address pool This field specifies the last of the contiguous addresses in the IP address pool Ending IP Address Auto reserve IP for the same host E...

Page 70: ...er solicitations DHCPv6 server is disabled Stateful The Zyxel Device uses IPv6 stateful autoconfiguration The DHCPv6 server is enabled to have the Zyxel Device act as a DHCPv6 server and pass IPv6 add...

Page 71: ...mation requests DNS Query Scenario IPv4 IPv6 DNS Server The Zyxel Device forwards the requests to both the IPv4 and IPv6 DNS servers and sends clients the first DNS information it receives IPv6 DNS Se...

Page 72: ...lick the Edit icon to configure the connection Table 24 Static DHCP Configuration LABEL DESCRIPTION Active Enable static DHCP in your Zyxel Device This displays the Group Name Group Name usually Defau...

Page 73: ...ect UPnP Enable to activate UPnP Be aware that anyone could use a UPnP application to open the Web Configurator s login screen without entering the Zyxel Device s IP address although you must still en...

Page 74: ...ign any IP addresses to the hosts without problems However the Internet Assigned Numbers Authority IANA has reserved the following three blocks of IP addresses specifically for private networks 10 0 0...

Page 75: ...ature in Windows 7 UPnP server is installed in Windows 7 Activate UPnP on the Zyxel Device by clicking Network Setting Home Networking UPnP Make sure the computer is connected to the LAN port of the Z...

Page 76: ...re you follow these steps make sure you already have UPnP activated on the Zyxel Device and in your computer Make sure your computer is connected to the LAN port of the Zyxel Device 1 Open Windows Exp...

Page 77: ...e Internet Connection Properties window click Settings to see port mappings Figure 46 Internet Connection Properties 4 You may edit or delete the port mappings or click Add to manually add port mappin...

Page 78: ...see more details about your current Internet connection status right click the network icon in the system tray and click Open Network and Sharing Center Click Local Area Network Figure 50 Internet Con...

Page 79: ...Chapter 7 Home Networking LTE7461 M602 User s Guide 78 1 Click the start icon Settings and then Network Internet 2 Click Network and Sharing Center 3 Click Change advanced sharing settings...

Page 80: ...allows your computer to find other computers and devices on the network and other computers on the network to find your computer This makes it easier to share files and printers 7 7 1 Auto discover Yo...

Page 81: ...en File Explorer and click Network 2 Right click the Zyxel Device icon and select Properties Figure 51 Network Connections 3 In the Internet Connection Properties window click Settings to see port map...

Page 82: ...disconnected from your computer all port mappings will be deleted automatically 5 Click OK Check the network icon on the system tray to see your Internet connection status Figure 55 System Tray Icon 6...

Page 83: ...s in Windows 7 With UPnP you can access the Web based Configurator on the Zyxel Device without needing to find out the IP address of the Zyxel Device first This comes helpful if you do not know the IP...

Page 84: ...s under Network Infrastructure 4 Right click the icon for your Zyxel Device and select View device webpage The Web Configurator login screen displays Figure 58 Network Connections My Network Places 5...

Page 85: ...461 M602 User s Guide 84 Figure 59 Network Connections My Network Places Properties Example 7 9 Web Configurator Easy Access in Windows 10 Follow the steps below to access the Web Configurator 1 Open...

Page 86: ...s under Network Infrastructure 4 Right click the icon for your Zyxel Device and select View device webpage The Web Configurator login screen displays Figure 61 Network Connections Network Infrastructu...

Page 87: ...Chapter 7 Home Networking LTE7461 M602 User s Guide 86 Figure 62 Network Connections Network Infrastructure Properties Example...

Page 88: ...s default gateway R1 You create one static route to connect to services offered by your ISP behind router R2 You create another static route to communicate with a separate network behind a router R3...

Page 89: ...Status This field indicates whether the rule is active yellow bulb or not gray bulb Name This is the name of the static route Destination IP This parameter specifies the IP network address of the fina...

Page 90: ...This parameter specifies the IP network address of the final destination Routing is always based on network number If you need to specify a route to a single host use a subnet mask of 255 255 255 255...

Page 91: ...S route OK Click this to save your changes Click this to exit this screen without saving Cancel Table 27 Routing Add Edit continued LABEL DESCRIPTION Table 28 Network Setting Routing DNS Route LABEL D...

Page 92: ...w and configure routing policies on the Zyxel Device Click Network Setting Routing Policy Route to open the following screen Figure 68 Network Setting Routing Policy Route Table 29 DNS Route Add Edit...

Page 93: ...e DNS route is active or not A yellow bulb signifies that this DNS route is active A gray bulb signifies that this DNS route is not active Name This is the name of the rule Source IP This is the sourc...

Page 94: ...31 Policy Route Add Edit LABEL DESCRIPTION Active Click this to enable turns blue activation of the policy route Otherwise click to disable turns gray Route Name Enter a descriptive name of up to 8 pr...

Page 95: ...formation RIP version 1 is probably adequate for most networks unless you have an unusual network topology Operation Select Passive to have the Zyxel Device update the routing table based on the RIP p...

Page 96: ...he following terms and concepts may help as you read this chapter Inside Outside and Global Local Inside outside denotes where a host is located relative to the Zyxel Device for example the computers...

Page 97: ...some cases such as for unknown services or where one server can support more than one service for example both FTP and web service it might be better to specify a range of port numbers You can alloca...

Page 98: ...rule This is the index number of the entry Status This field indicates whether the rule is active or not A yellow bulb signifies that this rule is active A gray bulb signifies that this rule is not ac...

Page 99: ...ding Add Edit Translation Start Port This is the first internal port number that identifies a service Translation End Port This is the last internal port number that identifies a service Protocol This...

Page 100: ...e port forwarding rule on or off Select a service to forward or select Service Name User Defined and enter a name in the field to the right WAN Interface Select the WAN interface for which to configur...

Page 101: ...a trigger port and causes the Zyxel Device to record Jane s computer IP address The Zyxel Device associates Jane s computer IP address with the open port range of 6970 7170 3 The Real Audio server re...

Page 102: ...he name of the service used by this rule WAN Interface This field shows the WAN interface through which the service is forwarded Trigger Start Port The trigger port is a port or a range of ports that...

Page 103: ...rules Trigger Start Port The trigger port is a port or a range of ports that causes or triggers the Zyxel Device to record the IP address of the LAN computer that sent the traffic to a server on the...

Page 104: ...disable the NAT Application Layer Gateway ALG in the Zyxel Device Application Layer Gateway ALG allows certain applications such as File Transfer Protocol FTP Session Initiation Protocol SIP or file t...

Page 105: ...e SIP VoIP works correctly with port forwarding and address mapping rules Otherwise click this to turn off switch turns gray the SIP ALG PPTP ALG Click this to turn on switch turns blue the PPTP ALG o...

Page 106: ...ontact you in NetMeeting CU SeeMe etc You can also access your FTP server or Web site on your own computer using a domain name for instance myhost dhs org where myhost is a name of your choice that wi...

Page 107: ...s local name and home is the domain name Figure 79 Network Setting DNS DNS Entry The following table describes the fields in this screen 10 2 1 Add Edit DNS Entry You can manually add or edit the Zyxe...

Page 108: ...ess mapping to a hostname Configure a DDNS service provider on your Zyxel Device Click Network Setting DNS Dynamic DNS The screen appears as shown Figure 81 Network Setting DNS Dynamic DNS Table 40 DN...

Page 109: ...rd assigned to you Enable Wildcard Option Select the check box to enable DynDNS Wildcard Enable Off Line Option Only applies to custom DNS Check with your Dynamic DNS service provider to have traffic...

Reviews:

No comments

Brands by name

Popular brands

Load more brands