Motorola SBG-940 страница 21 Скачать руководство пользователя

Страница: 21 / 141

Overview

Installation

Troubleshooting

Contact

FAQ

Specifications Glossary

License

Configuration:

Basic Gateway TCP/IP Wireless USB

SBG940 User Guide

Security

The SBG940 provides:

•

firewall

to protect the SBG940 LAN from undesired attacks over the Internet

•

For wireless transmissions, data encryption and network access control

Network Address Translation (

NAT

) provides some security because the IP addresses of SBG940 LAN computers

are not visible on the Internet.

This diagram does not necessarily correspond to the network cabling. A full discussion of network security is
beyond the scope of this document.

SBG940 security measures shown in a logical network diagram

Firewall

The SBG940 firewall protects the SBG940 LAN from undesired attacks and other intrusions from the Internet. It
provides an advanced integrated

stateful-inspection

firewall supporting intrusion detection, session tracking, and

denial-of-service attack prevention. The firewall:

•

Maintains state data for every

TCP/IP

session on the

OSI

network and transport layers

•

Monitors all incoming and outgoing

packets

, applies the firewall policy to each one, and screens for improper

packets and intrusion attempts

•

Provides comprehensive logging for all:

—

User authentications

—

Rejected internal and external connection requests

—

Session creation and termination

—

Outside attacks (intrusion detection)

You can configure the firewall filters to set rules for port usage. For information about choosing a predefined
firewall policy template, see “

Setting the Firewall Policy

”.

SBG940

Firewall

Computer

Wired Ethernet LAN

Wireless LAN

Laptop

Computer

PDA

Wireless Security

Encryption, MAC access control,

or closed network operation

Internet

DMZ

computer

Содержание SBG-940

Страница 1: ...User Guide SBG940 Wireless Cable Modem Gateway ...

Страница 2: ... this device basic safety precautions should always be followed to reduce the risk of fire electric shock and injury to persons including the following Read all of the instructions listed here and or in the user manual before you operate this equipment Give particular attention to all safety precautions Retain the instructions for future reference This device must be installed and used in strict a...

Страница 3: ...y cleaners directly on the unit or use forced air to remove dust Avoid damaging the cable modem with static by touching the coaxial cable when it is attached to the earth grounded coaxial cable TV wall outlet Always first touch the coaxial cable connector on the cable modem when disconnecting or re connecting USB or Ethernet cable from the cable modem or the user s PC Operate this product only fro...

Страница 4: ...ference that may cause undesired operation Note This equipment has been tested and found to comply with the limits for a Class B digital device pursuant to part 15 of the FCC Rules These limits are designed to provide reasonable protection against harmful interference in a residential installation This equipment generates uses and can radiate radio frequency energy and if not installed and used in...

Страница 5: ...e case may be THIS PRODUCT IS IN COMPLIANCE WITH ONE OR MORE OF THE STANDARDS LISTED ON THE REGULATORY SAFETY SOFTWARE LICENSE AND WARRANTY INFORMATION CARD NOT ALL STANDARDS APPLY TO ALL MODELS NO WARRANTIES OF ANY KIND ARE PROVIDED BY MOTOROLA WITH RESPECT TO THIS PRODUCT EXCEPT AS STATED ON THE REGULATORY SAFETY SOFTWARE LICENSE AND WARRANTY INFORMATION CARD MOTOROLA S WARRANTIES DO NOT APPLY T...

Страница 6: ...ion 12 Security 13 Firewall 13 DMZ 14 Port Triggering 14 Wireless Security 14 Port Forwarding 15 Virtual Private Networks 15 Related Documentation 15 Installation 16 Before You Begin 16 Precautions 17 Signing Up for Service 17 Computer System Requirements 18 Connecting the SBG940 to the Cable System 19 Cabling the LAN 19 Obtaining an IP Address for Ethernet 20 Obtaining an IP Address in Windows 98...

Страница 7: ...figuring the Gateway 40 Gateway STATUS Page 41 Gateway WAN Page 42 Gateway LAN nat config Page 44 Gateway LAN dhcp server config Page 45 Gateway LAN dhcp leases Page 46 Gateway PORT FORWARDING status Page 47 Gateway PORT FORWARDING config Page 48 Gateway PORT TRIGGERS predefined Page 49 Gateway PORT TRIGGERS custom Page 51 Gateway LOG Page 52 Configuring TCP IP 53 Configuring TCP IP in Windows 98 ...

Страница 8: ...ireless STATUS Page 80 Wireless NETWORK Page 81 Wireless SECURITY basic Page 83 Wireless SECURITY advanced Page 84 Wireless STATISTICS page 85 Troubleshooting 87 Front Panel Lights and Error Conditions 88 Setting Up a USB Driver 89 Setting Up a USB Driver in Windows 98 Second Edition 90 Setting Up a USB Driver in Windows 2000 94 Setting Up a USB Driver in Windows Me 97 Setting Up a USB Driver in W...

Страница 9: ...rnet through the cable TV system The SBG940 is the central connection point between your computers and the Internet It directs routes information between the computers connected to your home network A built in cable modem transmits information between your home network and the Internet An SBG940 Combines four separate products a DOCSIS cable modem IEEE 802 11g wireless access point Ethernet 10 100...

Страница 10: ...tup Program provides a graphical user interface GUI for easy configuration of necessary wireless Ethernet router DHCP and security settings For information about using the Setup Program see Basic Configuration Network Connection Types The SBG940 provides different network connection types for your computers to exchange data The connection between your computers and the SBG940 may be with a wireles...

Страница 11: ...main connected while moving around the home or small office or to connect desktop computers without installing network wiring Depending on distance wireless connection speeds can match that of Ethernet A USB connection for a single PC Four 10 100Base T Ethernet uplink ports supporting half or full duplex connections and Auto MDIX Routing for a wireless LAN WLAN or a wired Ethernet LAN you can conn...

Страница 12: ...s are A PDA on a wireless connection One desktop Apple Macintosh computer on a wireless connection One desktop PC on a wireless connection using a Motorola Wireless PCI Adapter A laptop PC on a wireless connection using a Motorola Wireless Notebook Adapter One PC connected to the USB port Three computers connected to Ethernet port one using a hub or switch One computer connected directly to Ethern...

Страница 13: ...11b compliant client product Motorola supplies a range of accessories for use with the SBG940 Some examples are For up to date information about accessories and home networking options including product documentation visit the Motorola Home Networking page http broadband motorola com consumers home_networking asp Wireless Ethernet Bridge WE800G Ethernet Broadband Router BR700 Wireless Notebook Ada...

Страница 14: ...eam channel is connected 3 US Scanning for a send upstream channel connection The upstream channel is connected 4 ONLINE Scanning for a network connection The startup process is complete and the SBG940 is online 5 Transmitting or receiving data over the Internet Is never lit solid 6 Ethernet activity on the port 1 to 4 There is a connection to the port 1 to 4 Green for 100Base T Yellow for 10Base ...

Страница 15: ...e the USB port for Connecting a PC to the USB Port You cannot connect the SBG940 USB port to a Macintosh or UNIX computer 4 RESET If you experience a problem you can push this recessed button to restart the SBG940 see Troubleshooting To reset all values to their defaults hold down the button for more than five seconds Resetting may take 5 to 30 minutes because the SBG940 must find and lock on the ...

Страница 16: ...ination of Wireless LAN Wired Ethernet LAN USB Connection Each computer needs appropriate network adapter hardware and driver software The clients on the Ethernet wireless or USB interfaces can share Internet access with a single cable provider account subject to cable provider terms and conditions Files printers storage devices multi user software applications games and video conferencing Wireles...

Страница 17: ...on a computer wired to the SBG940 over Ethernet or USB perform the procedures in Setting Up Your Wireless LAN Do not attempt to configure the SBG940 over a wireless connection Your maximum wireless operation distance depends on the type of materials through which the signal must pass and the location of your antennas and clients stations Motorola cannot guarantee wireless operation for all support...

Страница 18: ...twork interface card NIC and driver software installed Because the SBG940 Ethernet port supports auto MDIX you can use straight through or cross over cable to connect a hub switch or computer Use category 5 cabling for all Ethernet connections The physical wiring arrangement has no connection to the logical network allocation of IP addresses Sample Ethernet to computer connection Coaxial cable Cat...

Страница 19: ... or switch to any Ethernet port on the SBG940 Use Ethernet hubs switches or routers to connect up to 253 computers to the SBG940 The following illustration is an example of an Ethernet LAN you can set up using the SBG940 Cable the LAN in an appropriate manner for the site A complete discussion of Ethernet cabling is beyond the scope of this document Sample Ethernet connection to hubs or switches A...

Страница 20: ... Connection You can connect a single PC running Windows 98 Second Edition Windows XP Windows Me or Windows 2000 to the SBG940 USB V1 1 port For cabling instructions see Connecting a PC to the USB Port Sample USB connection Caution Before plugging in the USB cable be sure the SBG940 Installation CD ROM is inserted in the PC CD ROM drive SBG940 To AC power ...

Страница 21: ...r intrusions from the Internet It provides an advanced integrated stateful inspection firewall supporting intrusion detection session tracking and denial of service attack prevention The firewall Maintains state data for every TCP IP session on the OSI network and transport layers Monitors all incoming and outgoing packets applies the firewall policy to each one and screens for improper packets an...

Страница 22: ...Security Because WLAN data is transmitted using radio signals it may be possible for an unauthorized person to access your WLAN unless you prevent them from doing so To prevent unauthorized eavesdropping of data transmitted over your LAN you must enable wireless security The default SBG940 settings neither provide security for transmitted data nor protect network data from unauthorized intrusions ...

Страница 23: ...gure port forwarding you must specify an inbound source port or range of ports The inbound port opens only when data is sent to the inbound port and closes again after a specified time elapses with no data sent to it You can configure up to 32 port forwarding entries using the Gateway PORT FORWARDING config Page Virtual Private Networks The SBG940 supports multiple tunnel VPN pass through operatio...

Страница 24: ...ble outlet you may need a 5 to 900 MHz RF splitter and two additional coaxial cables to use both the TV and the SBG940 Determine the connection types you will make to the SBG940 Check that you have the required cables adapters and adapter software You may need Coaxial cable RF splitters hubs and switches are available at consumer electronic stores Item Description Power cord Connects the SBG940 to...

Страница 25: ...ers directly on the unit or use forced air to remove dust Signing Up for Service You must sign up with a cable provider to access the Internet and other online services To activate your service call your local cable provider You need to provide the MAC address marked HFC MAC ID printed on the Label on the Bottom of the SBG940 You can record it in the SBG940 Quick Installation Guide You should ask ...

Страница 26: ...Explorer or Netscape Navigator with the SBG940 Windows 95 is not supported by the SBG940 Windows 98 Windows NT UNIX Linux or Macintosh computers must use the Ethernet connection You can use the USB connection with any PC running Windows 98 Second Edition Windows 2000 Windows Me or Windows XP that has a USB interface The USB connection requires special USB driver software that is supplied on the SB...

Страница 27: ...k on the appropriate communications channels 7 Check that the lights on the front panel cycle through this sequence Cabling the LAN After connecting to the cable system you can connect your wired Ethernet LAN Some samples are shown in Wired Ethernet LAN On each networked computer you must install proper drivers for the Ethernet adapter Detailed information about network cabling is beyond the scope...

Страница 28: ...e IP Configuration window is displayed 4 Click the Renew button to obtain an IP address for the PC from the DHCP server on the SBG940 Obtaining an IP Address in Windows 2000 or Windows XP You must do the following on each Ethernet client PC running Windows 2000 or Windows XP 1 On the Windows Desktop click Start 2 Select Run The Run window is displayed 3 Type cmd and click OK to display a command p...

Страница 29: ... 2000 to the SBG940 USB port To connect a PC to the USB port 1 Insert the SBG940 Installation CD ROM in the CD ROM drive 2 Install the USB driver following the appropriate procedure for Setting Up a USB Driver 3 Connect the USB cable to the USB port on the SBG940 Rear Panel 4 Connect the other end to the USB port on the computer Caution Before plugging in the USB cable be sure the SBG940 Installat...

Страница 30: ...ting Template on page 24 Go to page 24 and click the Print icon or choose Print from the File menu to display the Print dialog box The following image is from Adobe Acrobat Reader version 4 0 running on Windows 2000 there may be slight differences in your version Be sure you print the template at 100 scale Be sure Fit to page is not selected To print the template only select Current page as the Pr...

Страница 31: ...ng a screwdriver turn each screw until part of it protrudes from the wall as shown There must be 16 inches 4 0 mm between the wall and the underside of the screw head The maximum distance from the wall to the top of the screw head is 7 6 mm 3 in 8 Place the SBG940 so the keyholes on the back of the unit are aligned above the mounting screws Be sure you do not damage the antennas 9 Slide the SBG940...

Страница 32: ...ess USB SBG940 User Guide 24 Wall Mounting Template You can print this page to use as a wall mounting template Be sure you print it at 100 scale In Acrobat Reader be sure that Fit To Page is not selected in the Print dialog box Measure the printed template with a ruler to ensure that it is the correct size 17 24 cm 6 79 in ...

Страница 33: ... Up a USB Driver For normal operation you do not need to change most default settings The following caution statements summarize the issues you must be aware of Caution To prevent unauthorized configuration change the default password immediately when you first configure the SBG940 See Changing the Default Password Firewalls are not foolproof Choose the most secure firewall policy you can See Sett...

Страница 34: ...40 over Ethernet or USB open a web browser Do not attempt to configure the SBG940 over a wireless connection 2 In the Address or Location field type http 192 168 100 1 or http 192 168 0 1 and press ENTER to display the Log In window 3 In the User ID field type the User Name the default is admin this field is case sensitive 4 In the Password field type the Password the default is motorola this fiel...

Страница 35: ...way Configure and monitor the gateway preferences see Configuring the Gateway Wireless Configure and monitor the wireless interface see Setting Up Your Wireless LAN Firewall Configure and monitor the firewall see Setting the Firewall Policy Admin Changing the Default Password Info Display information about the SBG940 Setup Program Reboot Restart the SBG940 It is the same as pressing the reset butt...

Страница 36: ...basic page 2 In the Old Password field type the old password The default password is motorola this field is case sensitive 3 In the New Password field type the new password this field is case sensitive 4 In the Verify Password field type the new password again this field is case sensitive 5 Click Apply to apply your changes Caution To prevent unauthorized configuration change the default password ...

Страница 37: ...client and connecting to the SBG940 web server To enable remote access to the SBG940 1 On the SBG940 Setup Program left panel click Admin to display the ADMIN basic page 2 Click advanced to display the ADMIN advanced page 3 Click the box next to Enable remote access to enable it 4 Click Apply to apply your change Caution Enabling remote access makes it possible for Internet users not on your netwo...

Страница 38: ...SBG940 User Guide 30 Getting Help To get help on any underlined item or field click the text For example if you click a field or the help button on the ADMIN basic page the following help is displayed You can scroll to browse the help or click another item to display help for that item This button also displays help for the window ...

Страница 39: ...e most secure firewall policy you can Caution Firewalls are not foolproof Choose the most secure firewall policy you can To enable easy network setup the default firewall policy is None which provides no security High The safest predefined firewall policy template providing the highest security We recommend this setting Medium A predefined firewall policy template providing a common configuration ...

Страница 40: ...cess for computers on the SBG940 LAN The SBG940 firewall uses stateful inspection to allow inbound responses when there already is an outbound session running corresponding to the data flow For example if you use a web browser outbound HTTP connections are permitted on port 80 Inbound responses from the Internet are allowed because an outbound session is established When required you can configure...

Страница 41: ...ry expertise and the need to do so Instead select one of the predefined policy templates as described in Setting the Firewall Policy To create a custom firewall policy first select Custom and click Apply on the Firewall POLICY basic Page Then use this page to configure a custom firewall policy To base the custom policy on a predefined firewall policy template choose High Medium or Low in the Polic...

Страница 42: ...t s on which inbound packets can pass through the firewall from the Internet to your LAN Allow Outbound Enables you to specify the port s on which outbound packets can pass through the firewall from your LAN to the Internet Stateful inspection ensures appropriate responses for outbound sessions Add Click to add the new filter It is displayed on the FIREWALL POLICY table FIREWALL POLICY Table Lists...

Страница 43: ... You can use this page to set the alert mechanism for firewall intrusion detection events Firewall ALERT basic page fields Field or Button Description Intrusion Detection Select Email to be alerted through SMTP e mail An SMTP server that does not require any authentication such as a user name or password must be present to receive the e mail Apply Click to apply your changes ...

Страница 44: ...ure the e mail alert parameters Firewall ALERT email page fields Field or Button Description E mail Server IP Address Sets the e mail server IP address in dotted decimal format E mail Server Port Sets the e mail server port number E mail Sender Sets the sender e mail address E mail Recipient List Sets the list of e mail addresses that receive alerts from the SBG940 firewall Apply Click to apply yo...

Страница 45: ...Session Log Select this box to log every data session from the private LAN that was authorized by the SBG940 firewall Usually the session log displays a history of normal data traffic It also lists the start of sessions the firewall terminated because The policy was changed They were eventually determined to be an intrusion or attack To display the session log click session Enable Blocking Log Sel...

Страница 46: ...se the SBG940 has pre defined port triggers for games using any of the following applications no user action is required to enable them DirectX 7 and DirectX 8 MSN Games by Zone com Battle net For a list of games supported by Battle net visit http www battle net You may need to create custom port triggers to enable other games to operate properly If you set custom port triggers and enable the fire...

Страница 47: ...red vary from game to game For these games we recommend configuring the gaming computer or device as a gaming DMZ device To configure a gaming DMZ device on the Gateway LAN dhcp leases Page 1 Reserve a private IP address for the computer or game device MAC address 2 Designate the device as a DMZ device You can reserve IP addresses for multiple devices but only one can be designated as the gaming D...

Страница 48: ...US Page Gateway WAN Page Gateway LAN nat config Page Gateway LAN dhcp server config Page Gateway LAN dhcp leases Page Gateway PORT FORWARDING status Page Gateway PORT FORWARDING config Page Gateway PORT TRIGGERS predefined Page Gateway PORT TRIGGERS custom Page Gateway LOG Page After you edit some fields and click Apply you are warned that you must reboot your SBG940 for your change to take effect...

Страница 49: ...ration Basic Gateway TCP IP Wireless USB SBG940 User Guide 41 Gateway STATUS Page This page displays the gateway status information These fields display settings that are set on the other Gateway pages For field descriptions see the following subsections that describe the fields on each tab ...

Страница 50: ...able DHCP Client use static IP address If your cable provider does not automatically assign a public IP address using DHCP Your cable provider must provide you with a Static IP Address Static IP Subnet Mask WAN Default Gateway IP address and one to three DNS IP Addresses You need to select Disable DHCP Client and type the Static IP address Static IP Subnet Mask WAN Default Gateway DNS server s and...

Страница 51: ...er IP address to enter in these fields in dotted decimal format The default is None TCP Session Wait Timeout Sets the maximum time in seconds to wait before assuming a TCP session has timed out The default is 24 hours UDP Session Wait Timeout Sets the maximum time in seconds to wait before assuming a UDP session has timed out The default is 300 seconds 5 minutes ICMP Session Wait Timeout Sets the ...

Страница 52: ...NEW NAT PASSTHROUGH Specifies up to 32 computers as passthrough clients not subject to NAT using their MAC addresses To enable this feature your cable operator may need to provide you with additional public IP addresses MAC Address Type the passthrough client MAC address The format is 16 hexadecimal numerals Bypass Firewall True DMZ Select this box to set the NAT passthrough computer as a DMZ clie...

Страница 53: ...t mask in dotted decimal format The default is 255 255 255 0 Starting IP Address Enter the starting IP address to be assigned by the SBG940 DHCP server to clients in dotted decimal format The default is 192 168 0 2 of DHCP Users Sets the number of clients for the SBG940 DHCP server to assign a private IP address There are 253 possible client addresses The default is 253 DHCP Server Lease Time Sets...

Страница 54: ...ing certain applications typically gaming applications Gaming DMZ Host The gaming DMZ host is a computer with a reserved IP address designated as the default DMZ host Only one gaming DMZ host can be active at once The gaming DMZ host is not protected by the firewall It is open to communication or hacking from any computer on the Internet Consider carefully before configuring a computer to be in th...

Страница 55: ...merals IP Address Sets the host portion of the reserved IP address for the LAN client having the specified MAC address When the LAN client requests an IP address the SBG940 DHCP server assigns the client this IP address Host Name If your ISP requires a hostname to access their network enter the hostname provided to you in the Host Name field Add Click Add to reserve a new IP address CURRENTLY RESE...

Страница 56: ... If you select a predefined template such as HTTP or FTP the Name Port Start Port End values are provided You only need to enter LAN IP Address and change default values only if necessary Name Type a unique identifier for the custom virtual server The typical practice is to use the protocol as a unique identifier for example ftp Port Start Sets the LAN internal interface port or the start of a por...

Страница 57: ...r common applications You can also configure additional port triggers if needed Configuring port triggers for an application requires The application transport protocol TCP or UDP The application port number You can use the default values for the remaining parameters LAN IP Address Sets the private LAN IP address for the port forwarding page An Internet user must know the public IP address to acce...

Страница 58: ...for the port triggers This is typically the protocol name Enable Select this box to activate the port triggers for the predefined application Protocol Displays the transport protocol for the port trigger TCP or UDP Port Range Displays the port range From To for the port trigger Session Chaining Displays the session chaining selection for the port trigger Disable TCP or TCP UDP Session Interval Dis...

Страница 59: ...the left field and the end in the right field Session Chaining Enable session chaining if the application needs to open one or more ports in different ranges to operate properly The options are Disable TCP or TCP UDP Session Interval Sets the session interval for the application If the port triggers detect traffic on the Port Range within the Session Interval it is considered to be related to the ...

Страница 60: ...USB SBG940 User Guide 52 Gateway LOG Page Use this page to view detailed information about the gateway Gateway LOG page fields Field Description Time The date and time in the format yyyy mm dd hh mm ss Priority Indicates the importance of the message Code Displays a code associated with the message Message Describes the event ...

Страница 61: ... IP in Windows 2000 Configuring TCP IP in Windows XP Follow the instructions in your Macintosh or UNIX user manual After configuring TCP IP perform one of the following to verify the IP address Verifying the IP Address in Windows 98 Windows 98 SE or Windows Me Verifying the IP Address in Windows 2000 or Windows XP Follow the instructions in your Macintosh or UNIX user manual Configuring TCP IP in ...

Страница 62: ...onfiguration tab 5 Verify that TCP IP is installed for the adapter used to connect to the SBG940 If TCP IP is installed skip to step 10 If TCP IP is not installed for the adapter continue with step 6 6 Select the adapter to use for the SBG940 connection and click Add The Select Network Component Type window is displayed Although your SBG model number may be different than in the images in this gui...

Страница 63: ...Click TCP IP on the Network window If there is more than one TCP IP entry choose the one for the Ethernet card or USB port connected to the SBG940 11 Click Properties The TCP IP Properties window is displayed 12 Click the IP Address tab 13 Click Obtain an IP address automatically 14 Click OK to accept the TCP IP settings 15 Click OK to close the Network window 16 Click OK when prompted to restart ...

Страница 64: ... 2 Select Settings and then Control Panel from the pop up menus to display the Control Panel window 3 Double click the Network and Dial up Connections icon to display the Network and Dial up Connections window In the steps that follow a connection number such as 1 2 or 3 is a reference displayed on PCs with multiple network interfaces PCs having only one network interface may display only the labe...

Страница 65: ...lue of number varies from system to system The Local Area Connection number Status window is displayed 5 Click Properties Information similar to the following window is displayed 6 If Internet Protocol TCP IP is in the list of components TCP IP is installed You can skip to step 10 If Internet Protocol TCP IP is not in the list click Install The Select Network Component Type window is displayed ...

Страница 66: ...ss USB SBG940 User Guide 58 7 Click Protocol on the Select Network Component Type window and click Add The Select Network Protocol window is displayed 8 Click Internet Protocol TCP IP 9 Click OK The Local Area Connection number Properties window is re displayed 10 Be sure the box next to Internet Protocol TCP IP is selected ...

Страница 67: ...s window is displayed 12 Be sure Obtain IP address automatically and Obtain DNS server address automatically are selected 13 Click OK to accept the TCP IP settings 14 Click Close to close the Local Area Connection number Properties window 15 Click OK when prompted to restart the computer and click OK again When you complete the TCP IP configuration go to Verifying the IP Address in Windows 2000 or...

Страница 68: ...SBG940 User Guide 60 Configuring TCP IP in Windows XP 1 On the Windows desktop click Start to display the Start window 2 Click Control Panel to display the Control Panel window The display varies depending on the Windows XP view options If the display is a Category view as shown below continue with step 3 Otherwise skip to step 5 ...

Страница 69: ...r Guide 61 3 Click Network and Internet Connections to display the Network and Internet Connections window 4 Click Network Connections to display the LAN or High speed Internet connections Skip to step 7 5 If a Classic view similar to below is displayed 6 Double click Network Connections to display the LAN or High speed Internet connections ...

Страница 70: ...ration Basic Gateway TCP IP Wireless USB SBG940 User Guide 62 7 Right click on the network connection If more than one connection is displayed be sure to select the one for your network interface 8 Select Properties from the pop up menu to display the Local Area Connection Properties window ...

Страница 71: ... Protocol TCP IP and click Properties to display the Internet Protocol TCP IP Properties window 10 Verify that the settings are correct as shown above 11 Click OK to close the TCP IP Properties window 12 Click OK to close the Local Area Connection Properties window When you complete the TCP IP configuration go to Verifying the IP Address in Windows 2000 or Windows XP ...

Страница 72: ...s displayed The Ethernet Adapter Information field will vary depending on the system as shown in the following examples The values for Adapter Address IP Address Subnet Mask and Default Gateway on the PC will be different than in the images In Windows 98 if IP Autoconfiguration Address is displayed as in the following image call your service provider 4 Select the adapter name the Ethernet card or ...

Страница 73: ...k OK to display a command prompt window 4 Type ipconfig and press ENTER to display the IP configuration A display similar to the following indicates a normal configuration If an Autoconfiguration IP Address is displayed as in the following window there is an incorrect connection between the PC and the SBG940 or there are cable network problems Check the cable connections and determine if you can v...

Страница 74: ...s USB SBG940 User Guide 66 To renew the IP address 1 Type ipconfig renew and press ENTER If a valid IP address is displayed as shown Internet access should be available 2 Type exit and press ENTER to return to Windows If after performing this procedure the computer cannot access the Internet call your cable provider for help ...

Страница 75: ...f all wireless configuration fields see Configuring a Wireless Client with the Network Name ESSID Another step to improve wireless security is to place wireless components away from windows This decreases the signal strength outside the intended area Caution To prevent unauthorized eavesdropping or access to WLAN data you must enable wireless security The default SBG940 settings provide no wireles...

Страница 76: ... networking standard For new wireless LANs we recommend purchasing client adapters that support WPA such as the Motorola Wireless Notebook Adapter WN825G Wireless PCI Adapter WPCI810G and Wireless USB Adapter WU830G For more information about the benefits of WPA see the Wi Fi Protected Access web page http www wifialliance org OpenSection protected_access asp Configure on the SBG940 Required On Ea...

Страница 77: ...pply 4 Under WPA CONFIGURATION choose one WPA Encryption type Because performance may be slow with TKIP we recommend choosing AES if your clients support AES TKIP Temporal Key Integrity Protocol provides data encryption including a per packet key mixing function message integrity check MIC initialization vector IV and re keying mechanism AES The Advanced Encryption Standard algorithm implements sy...

Страница 78: ...cal WPA PSK If you choose Pre Shared Key PSK local authentication if the passphrase on any client supporting WPA matches the PSK Passphrase set on the SBG940 the client can access the SBG940 WLAN To set the PSK Passphrase go to step 7 A local key is typically used in a home or small office Radius Port The port used for remote authentication through a RADIUS server It can be from 0 to 65535 Radius ...

Страница 79: ...SBG940 Setup Program left panel click Wireless 2 Click the SECURITY tab to display the Wireless SECURITY basic page 3 In the Security Mode field select WEP and click Apply 4 In the WEP Passphrase field type a passphrase containing from 8 to 31 ASCII characters For privacy your passphrase displays as dots Caution If you use WEP encryption you must configure the same WEP key on the SBG940 access poi...

Страница 80: ...s enabled to provide data privacy on the WLAN Open System Any WLAN client can transmit data to any other client without authentication It is the default if the Security Mode is set to WEP Shared Key The SBG940 authenticates and transfers data to and from all clients having shared key authentication enabled We recommend this setting Encryption Use a WEP key length that is compatible with your wirel...

Страница 81: ...ccess to your WLAN to a limited number of computers on the Wireless SECURITY advanced Page You can configure one or both of Configure on the SBG940 Required On Each Wireless Client Perform Configuring the Wireless Network Name on the SBG940 to disable Extended Service Set Identifier ESSID broadcasting to enable closed network operation You must configure the identical ESSID network name to the SBG...

Страница 82: ...t of the IEEE 802 11b and IEEE 802 11g standards If you select Disable ESSID Broadcast you must perform Configuring a Wireless Client with the Network Name ESSID on all WLAN clients stations Never provide your ESSID to anyone who is not authorized to use your WLAN To configure the ESSID on the SBG940 1 Start the SBG940 Setup Program as described in Starting the SBG940 Setup Program 2 On the left p...

Страница 83: ...guration Basic Gateway TCP IP Wireless USB SBG940 User Guide 75 7 Click advanced to display the Wireless SECURITY advanced Page 8 Select Disable ESSID Broadcast to restrict WLAN access to clients configured with the same Network Name ESSID as the SBG940 9 Click Apply to save your changes ...

Страница 84: ...onfigure a MAC access control list 1 On the SBG940 Setup Program left panel click Wireless 2 Click the SECURITY tab 3 Click advanced to display the Wireless SECURITY advanced Page 4 To restrict wireless access to systems in the MAC access control list select Allow Only Listed Stations Access and click Apply 5 To add a wireless client type its MAC address in the format xx xx xx xx xx xx in the New ...

Страница 85: ...y The Motorola wireless adapters are supplied with a client configuration program called Wireless Client Manager which is installed in the Windows Startup group On a PC with Wireless Client Manager installed the icon is displayed on the Windows task bar Double click the icon to launch the utility You may need to do the following to use a wireless client computer to surf the Internet If You Perform...

Страница 86: ...a wireless adapter you can enter the WEP Passphrase you set when you configured the SBG940 For all other wireless adapters you must enter the 64 bit or 128 bit WEP key generated by the SBG940 Configuring a Wireless Client with the Network Name ESSID To distinguish it from other nearby WLANs you can identify your WLAN with a unique network name also known as a network identifier or ESSID When promp...

Страница 87: ...am Use the Wireless pages to control and monitor the wireless interface Wireless STATUS Page Wireless NETWORK Page Wireless SECURITY basic Page Wireless SECURITY advanced Page Wireless STATISTICS page After you edit some fields and click Apply you are warned that you must reboot your SBG940 for your change to take effect Rebooting takes 10 to 15 seconds After rebooting you must log in again ...

Страница 88: ... ESSID to anyone who is not authorized to use your WLAN Channel Displays the radio channel for the access point If you encounter interference you can set a different channel on the Wireless NETWORK Page RTS Threshold Displays the Request to Send Threshold set on the Wireless NETWORK Page Frag Threshold Displays the Fragmentation Threshold set on the Wireless NETWORK Page MAC Address Displays the S...

Страница 89: ...Sets a unique network name for the SBG940 WLAN to distinguish between multiple WLANs in the vicinity If you select Disable ESSID Broadcast on the Wireless SECURITY advanced Page all clients on the WLAN must have the same ESSID network name as the SBG940 It can be any alphanumeric case sensitive string up to 32 characters The default is Motorola We strongly recommend not using the default Never pro...

Страница 90: ...r control is an optional IEEE 802 11 feature RTS Threshold The Request To Send Threshold sets the minimum packet size for which the SBG940 issues an RTS before sending a packet A low RTS Threshold can help when many clients are associated with the SBG940 or the clients are far apart and can detect the SBG940 but not each other It can be 0 to 2347 bytes The default is 2347 Fragmentation Threshold S...

Страница 91: ... Page Use this page to configure how your SBG940 encrypts wireless transmissions For information about using this page see Encrypting Wireless LAN Transmissions After you enable WEP or WPA on the SBG940 you must configure each WLAN client as described in Configuring the Wireless Clients Caution The default Security Mode setting None provides no security for transmitted data ...

Страница 92: ...a SBG940 enhancement to IEEE 802 11b The default is not selected off MAC ACCESS CONTROL LIST You can restrict wireless access to one to 32 wireless clients based on the client MAC address Allow Any Station Access If selected any wireless client can access the SBG940 WLAN Allow Only Listed Stations Access If selected only wireless clients in the MAC access control list can access the SBG940 WLAN Ap...

Страница 93: ...C protocol data units MPDUs with an address in the address 1 field or an MPDU with a multicast address in the address 1 field of type data or management Multicast Transmitted Fragment Count The number of transmitted fragments when the multicast bit is set in the destination MAC address of a successfully transmitted MAC service data unit MSDU When operating as a STA in an ESS where these frames are...

Страница 94: ...received when expected from a data message transmission Received Fragment Count The number of successfully received MPDUs of type Data or Management Multicast Received Fragment Count The number of MSDUs received when the multicast bit was set in the destination MAC address Frame Check Sequence Error Count The number of FCS errors detected in a received MPDU Transmitted Frame Count The number of su...

Страница 95: ...SBG940 Setup Program will not start The web cache is full or close to full In Internet Explorer choose Internet Options from the Tools menu and click the General tab Click Delete Files and Clear History Then try Starting the SBG940 Setup Program again A wireless client s cannot send or receive data Perform the first four checks in Cannot send or receive data Check the Security Mode setting on the ...

Страница 96: ...onditions Light Turns Off During Startup If Turns Off During Normal Operation If DS The downstream receive channel cannot be acquired The downstream channel is lost US The upstream send channel cannot be acquired The upstream channel is lost IP registration is unsuccessful The IP registration is lost The SBG940 is not properly plugged into the power outlet The SBG940 is unplugged ...

Страница 97: ...Up a USB Driver in Windows 2000 Setting Up a USB Driver in Windows Me Setting Up a USB Driver in Windows XP The SBG940 USB driver does not support Macintosh or UNIX computers For those systems you can connect through Ethernet only If you have a problem setting up the USB driver remove it by performing one of Removing the USB Driver from Windows 98 Second Edition or Windows Me Removing the USB Driv...

Страница 98: ...G940 Installation CD ROM in the CD ROM drive This CD contains the USB drivers and must be inserted and read by the PC before you connect the SBG940 to the PC 2 Connect the USB cable as shown in USB Connection A few seconds after you complete the USB connection the Add New Hardware Wizard window is displayed 3 Click Next The following window is displayed 4 Be sure Search for the best driver for you...

Страница 99: ...d 6 Click Next The message Please wait while Windows searches for a new driver for this device is displayed If the computer successfully locates the driver you can skip to step 9 If the computer does not locate the driver t he previous window is displayed again 7 Select Specify a location and type the location of the CD ROM drive To load the driver successfully you may need to click Browse to manu...

Страница 100: ...and perform the procedure for Removing the USB Driver from Windows 98 Second Edition or Windows Me Then repeat this procedure 10 After the window shown under step 9 is displayed click Next If a window with the message Copying Files displays and asks for the CD ROM drive type the CD ROM drive letter for example D and click OK If an Insert Disk window similar to the one below is displayed Windows sy...

Страница 101: ...Settings Change window is displayed 12 Click Yes to restart the computer When you finish setting up the USB driver you can continue with Configuring TCP IP If you have difficulties setting up the USB driver perform Removing the USB Driver from Windows 98 Second Edition or Windows Me and repeat this procedure If that does not correct the problem see the Regulatory Safety Software License and Warran...

Страница 102: ...tains the USB drivers and must be inserted and read by the PC before you connect the SBG940 to the PC 2 Connect the USB cable as shown in USB Connection A few seconds after you complete the USB connection the Found New Hardware window is displayed 3 Click Next The following window is displayed Be sure Search for a suitable driver for my device is selected Although your SBG model number may be diff...

Страница 103: ...BG940 User Guide 95 4 Click Next The following window is displayed Be sure CD ROM drives is the only box selected 5 Click Next The following window is displayed 6 Click Next If the Insert Disk window is displayed be sure the SBG940 Installation CD ROM is in the CD ROM drive and follow steps 7 to 12 Otherwise you can skip to step 13 ...

Страница 104: ... from list 9 Click Browse 10 Locate the NetMotCM sys file in the CD ROM root directory 11 Double click the NetMotCM sys file The Files Needed window is displayed 12 Click OK The Found New Hardware Wizard window is displayed 13 Click Finish to complete the installation When you finish setting up the USB driver you can continue with Configuring TCP IP If you have any difficulties setting up the USB ...

Страница 105: ...SB Connection A few seconds after you complete the USB connection the Add New Hardware Wizard window is displayed 3 Click Next Windows automatically searches for the correct USB drivers and installs them If the installation is successful the following window is displayed 4 If the window above is displayed click Finish Otherwise be sure the SBG940 Installation CD ROM is correctly inserted in the CD...

Страница 106: ... after you complete the USB connection the Found New Hardware Wizard window is displayed 3 Be sure Install the software automatically is selected 4 Click Next Windows automatically searches for the correct USB drivers and installs them If the installation is successful the following window is displayed 5 Click Finish to complete the installation Otherwise be sure the SBG940 Installation CD ROM is ...

Страница 107: ... Removing the USB Driver from Windows 98 Second Edition or Windows Me 1 On the Windows Desktop right click one of In Windows 98 Second Edition the Network Neighborhood icon In Windows ME the My Network Places icon The Network window is displayed Although your SBG model number may be different than in the images in this guide the procedure is the same ...

Страница 108: ... the Motorola SURFboard SBG940 USB Gateway and click Remove The Network window no longer displays Motorola SURFboard SBG940 USB Gateway in the list 3 Click OK The System Settings Change window is displayed 4 Disconnect the USB cable from the PC or SBG940 5 Click Yes to restart the computer 6 Perform Running the Motorola USB Driver Removal Utility on page 107 ...

Страница 109: ... Basic Gateway TCP IP Wireless USB SBG940 User Guide 101 Removing the USB Driver from Windows 2000 1 On the Windows desktop click Start 2 Click Settings 3 Click Control Panel to display the Control Panel window 4 Double click System to display the System Properties window 5 Click the Hardware tab ...

Страница 110: ...k Adapters 8 Click the Motorola SURFboard SBG940 USB Gateway The Uninstall icon displays on the window near the top 9 Click the Uninstall icon The following window is displayed 10 Click OK 11 Close the Device Manager window 12 Close the Control Panel window 13 Perform Running the Motorola USB Driver Removal Utility on page 107 Although your SBG model number may be different than in the images in t...

Страница 111: ...iguration Basic Gateway TCP IP Wireless USB SBG940 User Guide 103 Removing the USB Driver from Windows XP 1 On the Windows desktop click Start to display the Start window 2 Click Control Panel to display the Control Panel window The display varies depending on the Windows XP view options ...

Страница 112: ...sic Gateway TCP IP Wireless USB SBG940 User Guide 104 3 If a Category view similar to the image under step 2 is displayed click Performance and Maintenance to display the Performance and Maintenance window Otherwise skip to step 5 4 Click System to display the System Properties window Skip to step 6 ...

Страница 113: ...ons Glossary License Configuration Basic Gateway TCP IP Wireless USB SBG940 User Guide 105 5 If a Classic view similar to the following is displayed double click System to display the System Properties window 6 Click the Hardware tab to display the Hardware page ...

Страница 114: ...anager window 8 Double click Network adapters 9 Click the Motorola SURFboard SBG940 USB Gateway The Uninstall icon displays on the window near the top 10 Click the Uninstall icon 11 Close the Device Manager and Control Panel windows 12 Perform Running the Motorola USB Driver Removal Utility on page 107 Although your SBG model number may be different than in the images in this guide the procedure i...

Страница 115: ...oval Utility 1 Insert the SBG940 Installation CD ROM in the CD ROM drive After a short time a window with language choices is displayed 2 Press the Esc key on the keyboard to exit the start up screens 3 To start Windows Explorer click Start and select Run On the Run window type explorer and click OK 4 Double click My Computer 5 Double click the Motorola SBG icon D in the image 6 Double click remov...

Страница 116: ...er Removal Utility or You can click Details to display informational messages about the files that were found and deleted similar to the ones shown below If necessary scroll down to view the entire list Click OK to close the details window Re install the USB driver following one of Setting Up a USB Driver in Windows 98 Second Edition on page 90 Setting Up a USB Driver in Windows Me on page 97 Sett...

Страница 117: ...the SBG940 contact your cable provider For more information about customer service technical support or warranty claims see the Regulatory Safety Software License and Warranty Information card provided with the SBG940 For answers to typical questions see Frequently Asked Questions For more information about Motorola consumer cable products education and support visit http broadband motorola com co...

Страница 118: ...dards Q What type of firewall is provided on the SBG940 A The SBG940 provides a stateful inspection firewall For more information see Firewall and Setting the Firewall Policy Q What wireless security measures are provided on the SBG940 A To protect data transmitted over wireless connections the SBG940 supports WPA or WEP encryption and MAC access control lists For information see Wireless Security...

Страница 119: ...be to basic service before you can get Internet access and or offer a discount when you use your own SBG940 Check with your local cable company for specific information Q What type of technical support is available A For questions about your Internet service connection or SBG940 call your cable provider Q What do I do if my SBG940 stops working A Troubleshooting provides tips to diagnose problems ...

Страница 120: ... 17 dBm EIRP Receive sensitivity 65 dBm at 54 Mbps Router Ethernet standards compliance IEEE 802 3 IEEE 802 3u Routing protocol RIP V2 Number of uplink ports 4 Electrical Input voltage range 100 240 VAC 50 60 Hz Power consumption 9 watts nominal Environmental Operating temperature 0 to 40 C 150 to 10000 ft Storage temperature 30 to 80 C Humidity 5 to 95 RH non condensing Antennas One external remo...

Страница 121: ... Symbol rates 160 320 640 1280 and 2560 ksym s Operating level range one channel TDMA 8 to 54 dBmV 32 QAM 64 QAM 8 to 55 dBmV 8 QAM 16 QAM 8 to 58 dBmV QPSK S CDMA 8 to 53 dBmV all modulations Output impedance 75 ohms nominal Frequency range 5 to 42 MHz edge to edge Output return loss 6 dB 5 to 42 MHz General Cable interface F Connector female 75 ohm CPE network interface USB Ethernet 10 100Base T...

Страница 122: ...ponse containing a MAC address corresponding to the host IP address When it is first connected to the network a client sends an ARP message The SBG940 responds with a message containing its MAC address Subsequently data sent by the computer uses the SBG940 MAC address as its destination ASCII The American Standard Code for Information Interchange refers to alphanumeric data for processing and comm...

Страница 123: ... per second in a communications channel It is usually measured in bits per second bps BPKM Baseline Protocol Key Management encrypts data flows between a cable modem or gateway and the CMTS The encryption occurs after the cable modem or gateway registers to ensure data privacy across the RF network bps bits per second bridge An OSI layer 2 networking device that connects two LANs using similar pro...

Страница 124: ...ive is packet switched Class C network An IP network containing up to 253 hosts Class C IP addresses are in the form network network network host client In a client server architecture a client is a computer that requests files or services such as file transfer remote login or printing from the server Also called a CPE On a WLAN a client is any host that can communicate with the access point A wir...

Страница 125: ...rver that assigns private IP addresses to clients distortion An undesired change in signal waveform within a transmission medium A nonlinear reproduction of the input waveform DMZ A de militarized zone is one or more hosts logically located between a private LAN and the Internet A DMZ prevents direct access by outside users to private data The term comes from the geographic buffers located between...

Страница 126: ...P server The opposite of static IP address encapsulate To include data into some other data unit to hide the format of the included data encode To alter an electronic signal so that only an authorized user can unscramble it to view the information encrypt To encode data endpoint A VPN endpoint terminates the VPN at the router so that computers on the SBG940 LAN do not need VPN client software to t...

Страница 127: ... data transmitted between network nodes that contains addressing and protocol control data Some control frames contain no data frequency Number of times an electromagnetic signal repeats an identical cycle in a unit of time usually one second measured in Hz kHz MHz or GHz FTP File Transfer Protocol is a standard Internet protocol for exchanging files between computers FTP is commonly used to downl...

Страница 128: ...ubscriber premises hop The interval between two routers on an IP network The number of hops a packet traverses toward its destination called the hop count is saved in the packet header For example a hop count of six means the packet has traversed six routers The packet hop count increases as the time to live TTL value decreases host In IP a host is any computer supporting end user applications or ...

Страница 129: ...rafts called requests for comments RFCs IGMP Internet Group Membership Protocol is the Internet multicasting standard IGMP establishes and maintains a database of group multicast addresses and interfaces to which a multicast router forwards multicast packets IGMP runs between multicast hosts and their immediately neighboring multicast routers IGMP spoofing A process where a router acts as an IGMP ...

Страница 130: ...mask domain name and DNS server to provide a continuous Internet connection IPSec The Internet Protocol Security protocols are IETF authentication and encryption standards for secure packet exchange over the Internet IPSec works at OSI layer 3 and secures everything on the network IKE Internet Key Exchange ISAKMP Internet Security Association and Key Management Protocol ISDN Integrated Services Di...

Страница 131: ...g or campus Ethernet is the most widely used LAN standard layer In networks layers are software protocol levels Each layer performs functions for the layers above it OSI is a reference model having seven functional layers LCP Link Control Protocol establishes configures and tests data link connections used by PPP latency The time required for a signal to pass through a device It is often expressed...

Страница 132: ...gnals pass for example coaxial unshielded twisted pair UTP or fiber optic cable MIB A management information base is a unique hierarchical structure of software objects used by the SNMP manager and agent to configure monitor or test a device MHz Megahertz one million cycles per second A measure of radio frequency MPDU MAC protocol data unit PDU MSDU MAC service data unit MSO Multiple Systems Opera...

Страница 133: ...ome kind of wiring network driver Software packaged with a NIC that enables the computer to communicate with the NIC network layer Layer 3 in the OSI architecture that provides services to establish a path between open systems The network layer knows the address of the neighboring nodes packages output with the correct network address data selects routes and recognizes and forwards to the transpor...

Страница 134: ...provide features such as Ethernet connectivity PDA personal digital assistant PDU A protocol data unit is a message containing operational instructions used for SNMP The basic SNMP V2 PDU types are get request get next request get bulk request response set request inform request and trap periodic ranging Ranging that is performed on an on going basis after initial ranging has taken place physical ...

Страница 135: ...ent computer types for example PC UNIX or mainframe can communicate if they support common protocols provisioning The process of autodiscovery or manually configuring a cable modem on the CMTS PSTN The public switched telephone network is the traditional circuit switched voice oriented telephone network See also POTS public IP address The IP address assigned to the SBG940 by the cable provider A p...

Страница 136: ... the cable network RFC Request for Comments published on the IETF or other websites Many RFCs become international standards RJ 11 The most common type of connector for household or office phones RJ 45 An 8 pin modular connector the most common connector type for 10Base T or 100Base T Ethernet networks ROM read only memory router On IP networks a device connecting at least two networks which may o...

Страница 137: ... inspection A type of firewall that tracks each connection traversing all firewall interfaces to ensure validity In addition to examining the source and destination in the packet header based on static rules a stateful inspection firewall Examines packet headers on context established by previous packets that traversed the firewall Monitors the connection state and saves it in a table Closes ports...

Страница 138: ...ernet It is the worldwide internetworking standard and the basic communications protocol of the Internet TFTP Trivial File Transfer Protocol is a very simple protocol used to transfer files TKIP Temporal Key Integrity Protocol transparent bridging A method to enable all hosts on the wired Ethernet LAN WLAN and USB connection to communicate as if they were all connected to the same physical network...

Страница 139: ...onnection usually to users working remotely at home or in small branch offices A VPN connection provides security and performance similar to a dedicated link for example a leased line but at much lower cost WAN A wide area network provides a connection over a large geographic area such as a country or the whole world The bandwidth depends on need and cost but is usually much lower than for a LAN W...

Страница 140: ... TRANSFER paragraph above 2 Copy or translate the User Guide included with the Software other than for personal use 3 Copy alter translate decompile disassemble or reverse engineer the Software including but not limited to modifying the Software to make it operate on non compatible hardware 4 Remove alter or cause not to be displayed any copyright notices or startup message contained in the Softwa...

Страница 141: ...521987 001 7 05 MGBI Visit our website at www motorola com ...

Результаты поиска

Содержание SBG-940

Отзывы:

Похожие инструкции для SBG-940

Бренды по названию

Популярные бренды

Motorola SBG-940, Руководство пользователя

Результаты поиска

Содержание SBG-940

Отзывы:

Похожие инструкции для SBG-940

Бренды по названию

Популярные бренды