manualshive.com logo in svg

ZyXEL Communications ZYAIR B-2000, Quick Installation Manual

The ZyXEL Communications ZYAIR B-2000 boasts impressive specifications, making it a top choice for wireless networking. For those eager to explore its potential, a comprehensive manual is available for free download on our website. Discover the full capabilities of this exceptional product at manualshive.com, where you can easily access the user manual.

Share
Download
background image

ZyAIR B-2000 v.

2

 Broadband Wireless Sharing Router 

22 

Table 4 Wireless 802.1x Authentication

 

LABEL DESCRIPTION 

Dynamic WEP 
Key Exchange 

This field is activated only when you select 

Authentication Required 

in the 

Wireless Port Control

 field. Also set the 

Authentication Databases

 field to 

RADIUS Only

. Local user database may not be used. 

Select 

Disable

 to allow wireless stations to communicate with the access points 

without using Dynamic WEP Key Exchange.  

Select 

64-bit WEP

 or 

128-bit WEP 

to enable data encryption.  

Up to 32 stations can access the ZyAIR when you configure Dynamic WEP Key 
Exchange. 

5.5 Local User Database and RADIUS Overview 

EAP is an authentication protocol designed originally to run over PPP (Point-to-Point Protocol) frame in 
order to support multiple types of user authentication. RADIUS is based on a client-sever model that 
supports authentication, authorization and accounting. The access point (ZyAIR) is the client and the server 
is the RADIUS server. RADIUS is a simple package exchange in which your ZyAIR acts as a message 
relay between the wireless station and the network RADIUS server. In order to ensure network security, the 
access point and the RADIUS server use a shared secret key, which is a password, they both know. The key 
is not sent over the network. In addition to the shared key, password information exchanged is also 
encrypted to protect the network from unauthorized access. By using EAP to interact with an EAP-
compatible RADIUS server, the access point helps a wireless station and a RADIUS server to perform 
mutual authentication.  

To authenticate wireless users without interacting with a network RADIUS server, you can store user 
profiles locally. To change your ZyAIR’s local user list, click 

ADVANCED

WIRELESS 

and then the 

Local User Database

 tab.   

If you do enable the EAP authentication, you need to specify the local user database or the external sever 
for remote user authentication. To set up your ZyAIR’s local user database, click 

ADVANCED

WIRELESS

 and then the 

Local User Database

 tab. To set up your ZyAIR’s RADIUS server settings, 

click 

WIRELESS

, then the 

RADIUS

 tab. 

5.6 Enabling Firewall  

The ZyAIR contains a stateful inspection firewall designed to protect against Denial of Service (DoS) 
attacks. Stateful inspection means the ZyAIR records packet information, such as port number and 
source/destination addresses and then allows or denies the response depending on your firewall rules. 

The default rules allow LAN-to-WAN traffic and deny traffic initiated from WAN-to-LAN. You may block 
traffic initiated from the LAN by configuring blocked services in the 

Services 

screen. You may allow 

Summary of Contents for ZYAIR B-2000

Page 1: ...ZyAIR B 2000 v 2 Broadband Wireless Sharing Router Quick Installation Guide Version 3 50 July 2003 ...

Page 2: ......

Page 3: ...he Web Configurator 10 4 2 Common Screen Command Buttons 12 4 3 Configuring the ZyAIR Using the Wizard 12 4 4 Test Your Internet Connection 15 5 Key Features 15 5 1 Wireless LAN Overview 15 5 2 Configuring Wireless LAN 16 5 3 Configuring Roaming 18 5 4 Configuring IEEE 802 1x Authentication 19 5 5 Local User Database and RADIUS Overview 22 5 6 Enabling Firewall 22 5 7 Define Content Filtering 24 5...

Page 4: ...r User s Guide for more details on all ZyAIR features You should have an Internet account already set up and have been given most of the following information INTERNET ACCOUNT CHECKLIST Your device s WAN IP Address if given __________________ Encapsulation Ethernet Service Type _______________________ Login Server IP Address ______________ User Name ____________ Password ____________ PPTP User Nam...

Page 5: ...y this adaptor to this power socket After you ve made the connections connect the power cable to a power supply and look at the front panel LEDs RESET You only need to use this button if you ve forgotten the ZyAIR s password It returns the ZyAIR to the factory defaults password is 1234 LAN IP address 192 168 1 1 etc see your User s Guide for details 2 2 The Front Panel The PWR LED turns steady on ...

Page 6: ...r 6 Table 1 Front Panel LED Description LED COLOR STATUS DESCRIPTION On The ZyAIR is ready but is not sending receiving data through the wireless LAN ZyAIR Blue Blinking Breathing The ZyAIR is sending receiving data through the wireless LAN ZyAIR LED ...

Page 7: ...essful 100Mbps WAN connection Blinking The ZyAIR is sending receiving data WAN Orange Off The ZyAIR does not have a 100Mbps WAN connection On The ZyAIR is functioning properly Green Off The ZyAIR is not ready or has malfunctioned SYS Red Blinking The ZyAIR is rebooting On The ZyAIR is receiving power PWR Green Off The ZyAIR is not receiving power 3 Setting Up Your Computer s IP Address Skip this s...

Page 8: ...ndows 2000 NT click Network and Dial up Connections 3 Right click Local Area Connection and then click Properties 4 Select Internet Protocol TCP IP under the General tab in Win XP and click Properties 5 The Internet Protocol TCP IP Properties screen opens the General tab in Windows XP To have your computer accept a dynamic IP address click Obtain an IP address automatically If you want a static IP...

Page 9: ...ndows and Macintosh computer operating systems 3 2 Checking Updating Your Computer s IP Address 1 In the computer click Start All Programs Accessories and then Command Prompt 2 In the Command Prompt window type ipconfig and then press ENTER to verify that your computer s static IP address is in the correct subnet in the range between 192 168 1 2 and 192 168 1 254 if using the default ZyAIR LAN IP ...

Page 10: ...ures using the SMT System Management Terminal and web configurator 4 1 Accessing the ZyAIR via the Web Configurator 1 Launch your web browser Enter 192 168 1 1 as the web site address C ping 192 168 1 1 Pinging 192 168 1 1 with 32 bytes of data Reply from 192 168 1 1 bytes 32 time 10ms TTL 254 Reply from 192 168 1 1 bytes 32 time 10ms TTL 254 Reply from 192 168 1 1 bytes 32 time 10ms TTL 254 Reply...

Page 11: ...password Click Reset to revert to the default password in the password field 3 It is highly recommended you change the default password Enter a new password retype it to confirm and click Apply alternatively click Ignore to proceed to the MAIN MENU screen if you do not want to change the password now 4 You should now see the web configurator MAIN MENU screen Default password Change default passwor...

Page 12: ...g this screen afresh 4 3 Configuring the ZyAIR Using the Wizard The wizard consists of a series of screens to help you configure your ZyAIR for wireless stations to access your wired LAN and set up Internet access Refer to your User s Guide for more background information 1 Click WIZARD SETUP in the main menu to display the first wizard screen Refer to your User s Guide for more background informa...

Page 13: ...in the wireless LAN Enter a descriptive name The range of radio frequencies used by IEEE 802 11b wireless devices is called a channel Click Scan to have the ZyAIR automatically select a channel The selected channel automatically appears in the Channel ID field WEP Wired Equivalent Privacy encrypts data frames before transmitting over the wireless network Select either 64 bit or 128 bit from the WE...

Page 14: ...WAN port is used as a regular Ethernet Choose from Standard or a RoadRunner version You ll need User Name Password and Login Server IP Address for some Roadrunner versions Point to Point Protocol over Ethernet PPPoE also functions as a dial up connection Therefore you ll also need a username and password and possibly the PPPoE service name Your ISP will give you all needed information Choose PPTP ...

Page 15: ...e factory assigned default MAC address Alternatively select Spoof this Computer s MAC address IP Address and enter the IP address of the computer on the LAN whose MAC address you are cloning 5 In the final screen click Finish and change the wireless parameter settings in the wireless stations to match those of the ZyAIR Refer to the user s guide for your wireless adapter 4 4 Test Your Internet Con...

Page 16: ...with wireless adapters communicating through access points APs which bridge network traffic to the wired LAN 5 2 Configuring Wireless LAN Click ADVANCED and then WIRELESS to open the Wireless screen Figure 1 Wireless LAN The following table describes the fields in this screen ...

Page 17: ...value between 0 and 2432 Fragmentation Threshold The threshold number of bytes for the fragmentation boundary for directed messages It is the maximum data fragment size that can be sent Enter a value between 256 and 2432 WEP Encryption WEP Wired Equivalent Privacy provides data encryption to prevent unauthorized wireless stations from accessing data transmitted over the wireless network Select Dis...

Page 18: ...if for example there is difficulty with channel assignment due to a high density of APs within a coverage area Enter the number from 1 to 32 of wireless stations allowed Output Power Set the output power of the ZyAIR in this field If there is a high density of APs within an area decrease the output power of the ZyAIR to reduce interference from other APs The options are 11dBm 50mW 13dBm 32mW 15dBm...

Page 19: ... information between access points The port number must be the same on all access points The default is 16290 Make sure this port is not used by other services 5 4 Configuring IEEE 802 1x Authentication The IEEE 802 1x standard outlines enhanced security methods for both the authentication of wireless stations and encryption key management Authentication can be done using the local user database i...

Page 20: ...names and passwords This is the default setting Authentication Required means that all wireless stations have to enter usernames and passwords before access to the wired network is allowed No Access Allowed blocks all wireless stations access to the wired network ReAuthentication Timer in seconds Specify how often wireless stations have to reenter usernames and passwords in order to stay connected...

Page 21: ...t to authenticate a wireless station Before you specify the priority make sure you have set up the corresponding database correctly first Select Local User Database Only to have the ZyAIR just check the built in user database on the ZyAIR for a wireless station s username and password Select RADIUS Only to have the ZyAIR just check the user database on the specified RADIUS server for a wireless st...

Page 22: ...hich is a password they both know The key is not sent over the network In addition to the shared key password information exchanged is also encrypted to protect the network from unauthorized access By using EAP to interact with an EAP compatible RADIUS server the access point helps a wireless station and a RADIUS server to perform mutual authentication To authenticate wireless users without intera...

Page 23: ...cally enabled when you configure blocked services When you configure a remote management menu to allow access to the ZyAIR a firewall rule WAN to WAN is automatically created Click ADVANCED and FIREWALL to open the Settings screen Enable or activate the firewall by selecting the Enable Firewall check box as seen in the following screen Figure 4 Firewall Settings The following table describes the f...

Page 24: ...ess Control under Log is selected in the Logs Log Settings screen Packets to Log Choose what WAN to LAN and WAN to WAN Prestige packets to log Choose from No Log Log Forwarded Log All log all WAN to LAN packets Allow one specific computer full access to all blocked resources Trusted Computer IP Address You can allow a specific computer to access all Internet resources without restriction Enter the...

Page 25: ...ll Filter LABEL DESCRIPTION Restrict Web Features Select the categories of web features that you want to restrict ActiveX ActiveX is a tool for building dynamic and active Web pages and distributed object applications When you visit an ActiveX Web site ActiveX controls are downloaded to your browser where they remain in case you visit the site again ...

Page 26: ...u may use any character up to 64 characters Wildcards are not allowed Keyword List This is a list of keywords that will be inaccessible to computers on your LAN once you enable URL keyword blocking Add Type a keyword in the Keyword field and click then Add to add a keyword to the Keyword List Delete Select a keyword from the Keyword List and then click Delete to remove this keyword from the list C...

Page 27: ...nd Wireless Sharing Router 27 Figure 6 Firewall Services The following table describes the fields in this screen Table 7 Firewall Services LABEL DESCRIPTION Enable Services Blocking Select the check box to enable this feature ...

Page 28: ...the service For example suppose you want to define the Gnutella service Select TCP type and enter a port range from 6345 6349 Add Select a service from the Available Services drop down list and then click Add to add a service to the Blocked Service Delete Select a service from the Blocked Services List and then click Delete to remove this service from the list Clear All Click Clear All to empty th...

Page 29: ...earn about other devices on the network In turn a device can leave a network smoothly and automatically when it is no longer in use All UPnP enabled devices may communicate freely with each other without additional configuration Disable UPnP if this is not your intention Windows ME and Windows XP support UPnP See the Microsoft website for information about other Microsoft operating systems 5 11 Co...

Page 30: ...nually configure port forwarding for the UPnP enabled application Allow UPnP to pass through Firewall Select this check box to create a static LAN to LAN ZyAIR rule that allows forwarding of ports 1900 and 80 Selecting this check box also creates a dynamic firewall rule every time a NAT forwarding port is reserved for UPnP This setting remains active until you disable UPnP or clear this check box ...

Page 31: ...overage area For better performance mount the ZyAIR high up free of obstructions Free standing Place your ZyAIR on a flat level surface on a desk or shelf that is strong enough to support the weight of the ZyAIR with connection cables With the Desktop Holder The included desktop holder helps you organize the ZyAIR s connection cables 1 Secure the desktop holder to the back of the ZyAIR with the in...

Page 32: ...r shelf Figure 9 Instructions using the Desktop Holder Wall mounted Follow the steps to attach your ZyAIR to a wall Step 1 Locate a high position on the wall that is free of obstructions 2 You can use the diagram at the end of this guide to help you mark the screw holes correctly Use screws with 6mm 7 5mm 0 24 0 30 wide heads Connect two screws not included in the wall 80mm 3 15 apart Do not screw...

Page 33: ... sure the screws are securely fixed to the wall and strong enough to hold the weight of the ZyAIR with the connection cables 3 Align the holes on the back of the ZyAIR with the screws on the wall Hang the ZyAIR on the screws Figure 10 Wall Mounting your ZyAIR ...

Page 34: ...he IP address of the computer is in the range 192 168 1 2 192 168 1 254 and the subnet mask is 255 255 255 0 Refer to the Setting Up Your Computer s IP Address section If you changed the ZyAIR default IP address then enter the new IP address as the web site address The default password is 1234 If you have changed the password and have now forgotten it you will need to reset the ZyAIR Refer to the ...

Page 35: ...ZyAIR B 2000 v 2 Broadband Wireless Sharing Router 35 Cut out this page to mark the points on the wall for the screws ...

Reviews:

No comments

Related manuals for ZYAIR B-2000

UrsaLeo UltraLite Manual preview
UltraLite
Brand: UrsaLeo Pages: 5
RAKwireless WisLink-LoRa RAK2247 SPI/USB User Manual preview
WisLink-LoRa RAK2247 SPI/USB
Brand: RAKwireless Pages: 19
SVS GW-12 Operating Instructions preview
GW-12
Brand: SVS Pages: 4
YZ Systems YZ Connect User Manual preview
YZ Connect
Brand: YZ Systems Pages: 25
Fife SBPC-21-EN/IP Instruction Manual preview
SBPC-21-EN/IP
Brand: Fife Pages: 48
Gree ME30-24/D1 Owner'S Manual preview
ME30-24/D1
Brand: Gree Pages: 31
Hitachi ATW-MBS-02 Instruction Manual preview
ATW-MBS-02
Brand: Hitachi Pages: 18
Hitachi EM-G21 User Manual preview
EM-G21
Brand: Hitachi Pages: 56
Hitachi HC-A16MB Installation And Operation Manual preview
HC-A16MB
Brand: Hitachi Pages: 50
Wieland GW 100 Installation Instruction preview
GW 100
Brand: Wieland Pages: 2
Televes 769301 Manual preview
769301
Brand: Televes Pages: 46
Kasda KW5862 User Manual preview
KW5862
Brand: Kasda Pages: 43
Wisen Vision Unit User Manual preview
Vision Unit
Brand: Wisen Pages: 12
2Wire 2000 Series Installation Manual preview
2000 Series
Brand: 2Wire Pages: 30
iSysmart SGZ211 User Manual preview
SGZ211
Brand: iSysmart Pages: 11
Fujitsu Siemens Computers AMILO Pro V3525 Edition Easy Manual preview
AMILO Pro V3525 Edition
Brand: Fujitsu Siemens Computers Pages: 29
IBM SAN24B-6 Product Manual preview
SAN24B-6
Brand: IBM Pages: 18
Nexcom NIO200 User Manual preview
NIO200
Brand: Nexcom Pages: 68

Brands by name

Popular brands

Load more brands