background image

13-10  User’s Reference Guide

Filtering example #1

Returning to our filtering rule example from above (see 

page 13-7

), look at how a rule is translated into a filter. 

Star t with the rule, then fill in the filter’s attributes:

1.

The rule you want to implement as a filter is:

Block all Telnet attempts that originate from the remote host 199.211.211.17.

2.

The host 199.211.211.17 is the source of the Telnet packets you want to block, while the destination 
address is any IP address. How these IP addresses are masked determines what the final match will be, 
although the mask is not displayed in the table that displays the filter sets (you set it when you create the 
filter). In fact, since the mask for the destination IP address is 0.0.0.0, the address for Dest IP Addr could 
have been anything. The mask for Source IP Addr must be 255.255.255.255 since an exact match is 
desired.

Source IP Addr = 199.211.211.17

Source IP address mask = 255.255.255.255

Dest IP Addr = 0.0.0.0

Destination IP address mask = 0.0.0.0

Note:

To learn about IP addresses and masks, see 

Appendix B, “Understanding IP Addressing.”

3.

Using the tables on 

page 13-8

, find the destination por t and protocol numbers (the 

local

 Telnet por t):

Proto = TCP (or 6)

D. Por t = 23

4.

The filter should be enabled and instructed to block the Telnet packets containing the source address 
shown in step 2:

On? = Yes

Fwd = No

This four-step process is how we produced the following filter from the original rule:

Filtering example #2

Suppose a filter is configured to block all incoming IP packets with the source IP address of 200.233.14.0, 
regardless of the type of connection or its destination. The filter would look like this:

   +-#---Source IP Addr---Dest IP Addr-----Proto-Src.Port-D.Port--On?-Fwd-+
   +----------------------------------------------------------------------+
   | 1   192.211.211.17   0.0.0.0          TCP   0        23      Yes No  |
   |                                                                      |
   +----------------------------------------------------------------------+

Содержание R7100

Страница 1: ...Netopia R7100 SDSL Router User s Reference Guide ...

Страница 2: ...etopia Inc Under the law copying includes translation to another language or format Netopia Inc 2470 Mariner Square Loop Alameda CA 94501 1010 U S A Patents PhoneNET technology contained in Netopia is covered by U S Patent Numbers 4 901 342 and 5 003 579 Other U S and foreign patents are pending Part Number For additional copies of this electronic manual order Netopia part number 6120338 PF 03 Pri...

Страница 3: ...cting to Your Local Area Network 4 1 Overview 4 1 Readying computers on your local network 4 1 Connecting to an Ethernet network 4 3 Welcome to the Netopia R7100 SDSL Router User s Reference Guide This guide is designed to be your single source for information about your Netopia R7100 SDSL Router It is intended to be viewed on line using the powerful features of the Adobe Acrobat Reader The inform...

Страница 4: ... 98 or NT computers 5 6 Configuring TCP IP on Macintosh computers 5 10 Chapter 6 Console Based Management 6 1 Connecting through a Telnet session 6 2 Configuring Telnet software 6 3 Connecting a console cable to your router 6 3 Navigating through the console screens 6 4 Chapter 7 Easy Setup 7 1 Easy Setup console screens 7 1 Accessing the Easy Setup console screens 7 1 Quick Easy Setup connection ...

Страница 5: ... 8 6 System configuration features 8 7 Network protocols setup 8 8 Filter sets firewalls 8 8 IP address serving 8 8 Date and time 8 8 Console configuration 8 9 SNMP Simple Network Management Protocol 8 10 Security 8 10 Upgrade feature set 8 10 Logging 8 10 Installing the Syslog client 8 11 Chapter 9 IP Setup and Network Address Translation 9 1 Network Address Translation features 9 1 Using Network...

Страница 6: ...0 2 Routing Information Protocol RIP 10 2 Service Advertising Protocol SAP 10 2 NetBIOS 10 3 IPX spoofing 10 3 IPX setup screen 10 3 IPX routing tables 10 5 Chapter 11 AppleTalk Setup 11 1 AppleTalk networks 11 1 AppleTalk protocol 11 1 MacIP 11 3 AURP 11 3 Routers and seeding 11 3 Installing AppleTalk 11 4 Configuring AppleTalk 11 6 EtherTalk setup 11 6 LocalTalk setup 11 7 AURP setup 11 8 Chapte...

Страница 7: ...n page 12 18 Event history pages 12 19 Standard HTML web based monitoring pages 12 21 Chapter 13 Security 13 1 Suggested security measures 13 1 User accounts 13 1 Dial in console access 13 3 Enable SmartStart SmartView Web server 13 4 Telnet access 13 4 About filters and filter sets 13 4 What s a filter and what s a filter set 13 4 How filter sets work 13 5 How individual filters work 13 7 Design ...

Страница 8: ...13 30 Filter basics 13 32 Example filters 13 33 Chapter 14 Utilities and Diagnostics 14 1 Ping 14 2 Trace Route 14 4 Telnet client 14 5 Disconnect Telnet console session 14 6 Factory defaults 14 6 Transferring configuration and firmware files with TFTP 14 7 Updating firmware 14 7 Downloading configuration files 14 8 Uploading configuration files 14 9 Transferring configuration and firmware files w...

Страница 9: ... subnet masks B 2 Example Using subnets on a Class C IP internet B 3 Example Working with a Class C subnet B 5 Distributing IP addresses B 5 Technical note on subnet masking B 6 Configuration B 7 Manually distributing IP addresses B 8 Using address serving B 8 Tips and rules for distributing IP addresses B 9 Nested IP subnets B 11 Broadcasts B 13 Packet header types B 13 Understanding Netopia NAT ...

Страница 10: ...y Information F 1 Pinouts for Auxiliary port modem cable F 1 Description F 2 Power requirements F 2 Environment F 2 Software and protocols F 3 Agency approvals F 3 Regulatory notices F 3 Important safety instructions F 4 About SDSL G 1 Glossary GL 1 Index Index 1 Limited Warranty and Limitation of Remedies 1 ...

Страница 11: ...P P P Pa a a ar r r rt t t t I I I I G G G Ge e e et t t tt t t ti i i in n n ng g g g S S S St t t ta a a ar r r rt t t te e e ed d d d ...

Страница 12: ...User s Reference Guide ...

Страница 13: ...pool of available addresses Multi speed symmetrical transmission from 128 Kbps to 1 568 Mbps to provide scalability without additional equipment investment All digital continuous availability networking eliminates dialing and provides lower more predictable transmission costs Inter operates with Copper Mountain Networks Copper Edge access concentrator Connectivity to Ethernet LANs via built in 8 p...

Страница 14: ...ce on your screen You can keep this document open while you perform any of the procedures described and find useful information about the procedure you are performing If you prefer to work from hard copy rather than on line documentation you can also print out all of the manual or individual sections The pages are formatted to print on standard 8 1 2 by 11 inch paper We recommend that you print on...

Страница 15: ...mpetitive Local Exchange Carrier CLEC a type of mini phone company The CLEC uses a compatible type of switching equipment known as a Digital Subscriber Line Access Multiplexer DSLAM The DSLAM that you connect to with your Netopia Router must be capable of handling these symmetric connections In determining which Internet Service Provider to establish your account with you must be sure that your IS...

Страница 16: ... Internet service you require Setting up a Netopia R7100 account Check whether your ISP has the Netopia R7100 on its list of supported products that have been tested with a particular configuration If the ISP does not have the Netopia R7100 on such a list describe the Netopia R7100 in as much detail as needed so your ISP account can be optimized As appropriate refer your ISP to Netopia s Web site ...

Страница 17: ...ain name unless you have registered for your own individual domain name Note The default gateway WAN address and mask DNS and domain name are all obtainable via WAN DHCP if your ISP supports it With Network Address Translation If you are using SmartIP NAT you should obtain the following If you are connecting to a remote site using Network Address Translation on your router your provider will not d...

Страница 18: ...2 4 User s Reference Guide ...

Страница 19: ...etopia R7100 SDSL Router status lights on page 3 4 Find a location When choosing a location for the Netopia Router consider Available space and ease of installation Physical layout of the building and how to best use the physical space available for connecting your Netopia Router to the LAN Available wiring and jacks Distance from the point of installation to the next device length of cable or wal...

Страница 20: ...et or an add on card with TCP IP installed and configured See Before running SmartStart on page 5 2 An SDSL wall outlet wired for a connection to a Competitive Local Exchange Carrier CLEC who supports Symmetric Digital Subscriber Line connections Identify the connectors and attach the cables Identify the connectors and switches on the back panel and attach the necessary Netopia Router cables The f...

Страница 21: ... console screens You can use this if you are an experienced user See Connecting a console cable to your router on page 6 3 Auxiliary port An HD 15 auxiliary port for attaching an external modem or the optional AppleTalk kit Crossover switch A crossover switch with Normal and Uplink positions If you use Ethernet Port 1 for a direct Ethernet connection between a computer and the router set the switc...

Страница 22: ...w Carrier is asserted 6 and 7 are green Data is transmitted or received 6 and 7 flash yellow Data is transmitted or received by the ethernet controller 12 flashes yellow The Ethernet interface detects a collision 13 flashes red Link is detected 14 though 21 are solid green Data are received on their respective ports 14 though 21 flash green Note 5 and 8 through 11 are unused since the DSL link is ...

Страница 23: ...onnecting to an Ethernet network on page 4 3 Adding an external modem on page 4 5 Connecting to a LocalTalk network on page 4 6 Overview You can connect the Netopia R7100 to an IP or IPX network that uses Ethernet If you have purchased the AppleTalk feature expansion kit you can also connect the router to a LocalTalk network that uses PhoneNET cabling Additionally you can connect an external modem...

Страница 24: ...or PC computers Windows 95 includes a built in TCP IP stack See Configuring TCP IP on Windows 95 98 or NT computers on page 5 6 Macintosh computers use either MacTCP or Open Transport See Configuring TCP IP on Macintosh computers on page 5 10 Ethernet Ethernet hardware and software drivers enable your PC or Macintosh computer to communicate on the LAN EtherTalk and LocalTalk These are AppleTalk pr...

Страница 25: ...either 10Base T or EtherWave Ethernet networks to the Netopia R7100 The following table displays some important attributes of these types of Ethernet Attribute EtherWave 10Base T Max length of backbone branch or end to end cable length 330 feet 100 meters 330 feet 100 meters Cable type Twisted pair 10Base T Twisted pair 10Base T Netopia R7100 port used Ethernet Ethernet Other restrictions Maximum ...

Страница 26: ...topia R7100 in a 10Base T network To connect your 10Base T network to the Netopia R7100 through an Ethernet port use a 10Base T cable with RJ 45 connectors If you have more than eight devices to connect you can attach additional devices using either a 10Base T hub or an EtherWave daisy chain or some combination of both Ethernet Normal Auxiliary Console Power Line 8 1 1 Uplink Ethernet Nor 8 1 ...

Страница 27: ...iary port for connecting an external modem By default the Auxiliary port on your Netopia R7100 is enabled for remote console configuration via an external asynchronous modem This means that all you have to do is connect your modem to the Auxiliary port and configure its settings in the Line Configuration screens under the WAN Configuration menu For pinout information on the HD 15 to DB 25 modem ca...

Страница 28: ...ork You can use only one connection on the Auxiliary port You cannot use both the PhoneNET connector and an external modem If your LocalTalk network is not based on standard PhoneNET cabling use a PhoneNET to LocalTalk adaptor cable available from Farallon division of Netopia Connect the adaptor cable s RJ 11 connector to the AppleTalk cable s PhoneNET connector Connect the cable s mini DIN 3 conn...

Страница 29: ... Setup on page 11 1 Topology 22 gauge 642 mm 24 gauge 510 mm 26 gauge 403 mm Daisy chain n a n a 1800 ft 549 m Backbone 4500 ft 1372 m 3000 ft 229 m 1800 ft 549 m 4 branch passive star 1125 ft 343 m 750 ft 229 m 450 ft 137 m LocalTalk StarController 12 branch active star 3000 ft 914 m 2000 ft 610 m 1200 ft 366 m Distance is per branch ...

Страница 30: ...4 8 User s Reference Guide ...

Страница 31: ...ard will help you set up the router and share the connection The SmartStart Wizard walks you through a series of questions and based on your responses automatically configures the router for connecting your LAN to the Internet or to your remote corporate network The SmartStart Wizard will automatically check your Windows 95 98 or NT PC s TCP IP configuration to be sure you can accept a dynamically...

Страница 32: ...ase T Either a built in or third party Ethernet card 10Base T Browser software Netscape Communicator or Microsoft Internet Explorer included on the Netopia CD Required for web based registration and web based monitoring Notes The computer running SmartStart must be on the same Ethernet cable segment as the Netopia R7100 Repeaters such as 10Base T hubs between your computer and the Netopia R7100 ar...

Страница 33: ...se files If you have received a CD or diskette that has been customized by your reseller or ISP you can run the SmartStart Wizard directly from the CD or diskette and follow the instructions your reseller or ISP provides This makes your Netopia R7100 configuration even easier If you have received only the ini files from your reseller or ISP perform the following Copy the entire directory folder co...

Страница 34: ... the 192 168 1 x network and want to continue using it use the Advanced option to assign the router an IP address in your target IP range See Advanced option on page 5 5 If all of the above steps fail to resolve the problem reset the router to its factory default settings and rerun SmartStart See Factory defaults on page 14 6 for instructions Easy or Advanced options screen You can choose either E...

Страница 35: ...plication Advanced configuration options available via Telnet are explained in Console Based Management on page 6 1 However if you need no further configuration options click Quit Congratulations You re done Router IP Address screen If you selected the Advanced option in the Easy or Advanced options screen on page 5 4 SmartStart asks you to choose between entering the router s current IP address a...

Страница 36: ...turns you to an Additional Configuration screen on page 5 5 New IP Address screen If you want to change the router s IP address you enter the new IP address the subnet mask and the router s serial number in this screen Remember the serial number is on the bottom of the router It is also found in your documentation folio Note Forcing a new IP address may turn off the Netopia R7100 s IP address serv...

Страница 37: ...ssing in advance SmartStart need only be launched once To configure your PC for dynamic addressing do the following Note You can also use these instructions to configure other computers on your network to accept IP addresses served by the Netopia R7100 1 Go to the Start Menu Settings Control Panels and double click the Network icon From the Network components list select the Configuration tab 2 Se...

Страница 38: ... tab 2 Select TCP IP Your Network Card Then select Properties In the TCP IP Properties screen shown below select the IP Address tab Click Specify an IP Address Enter the following IP Address 192 168 1 2 Subnet Mask 255 255 255 0 or for 12 user models 255 255 255 240 This address is an example of one that can be used to configure the router with the Easy option in the SmartStart Wizard Your ISP or ...

Страница 39: ...ick Enable DNS Enter the following information Host Type the name you want to give to this computer Domain Type your domain name If you don t have a domain name type your ISP s domain name for example netopia com DNS Server Search Order Type the primary DNS IP address given to you by your ISP Click Add Repeat this process for the secondary DNS Domain Suffix Search Order Enter the same domain name ...

Страница 40: ...can only be done after the router is configured You must have built in Ethernet or a third party Ethernet card and its associated drivers installed in your Macintosh Dynamic configuration recommended If you configure your Netopia R7100 using SmartStart you can accept the dynamic IP address assigned by your router The Dynamic Host Configuration Protocol DHCP which enables dynamic addressing is enab...

Страница 41: ... computer on your network has its own IP address Option Select Type Connect via Ethernet Configure Manually IP Address 192 168 1 2 Subnet mask 255 255 255 0 or for 12 user models 255 255 255 240 Router or Gateway address 192 168 1 1 Name server address Enter the primary and secondary name server addresses given to you by your ISP Implicit Search Path Starting domain name Enter your domain name if ...

Страница 42: ... Transport TCP IP 1 Go to the Apple menu Select Control Panels and then TCP IP 2 With the TCP IP window open go to the Edit menu and select User Mode Choose Advanced and click OK 3 In the TCP IP window select or type information into the fields as shown in the following table 4 Close the TCP IP control panel and save the settings These are the only fields you need to modify in these screens TCP IP...

Страница 43: ...EtherTalk select an available zone then click the More button In the MacTCP More window select the Server radio button If necessary fill in the Domain Name Server Information given to you by your administrator 5 Restart the computer These are the only fields you need to modify in these screens Note More information about configuring your Macintosh computer for TCP IP connectivity through a Netopia...

Страница 44: ...5 14 User s Reference Guide ...

Страница 45: ...ns contain seven entry points to the Netopia Router configuration and monitoring features The entry points are displayed in the Main Menu shown below The Easy Setup menus display and permit changing the values contained in the default connection profile Experienced users can use Easy Setup to initially configure the router directly through a console session Easy Setup menus contain up to five desc...

Страница 46: ...tatistics Logs menus display nine sets of tables and device logs that show information about your router your network and their history See Statistics Logs on page 12 4 for detailed information The Quick Menus screen is a shortcut entry point to 22 of the most commonly used configuration menus that are accessed through the other menu entry points The Quick View menu displays at a glance current re...

Страница 47: ...pia R7100 back panel has a connector labeled Console for attaching the Router to either a PC or Macintosh computer via the serial port on the computer On a Macintosh computer the serial port is called the Modem port or Printer port This connection lets you use the computer to configure and monitor the Netopia R7100 via the console screens To connect the Netopia R7100 to your computer for serial co...

Страница 48: ... contains an autobaud detection feature If you are at any screen on the serial console you can change your baud rate and press Return HyperTerminal for the PC requires a disconnect The new baud rate is displayed at the bottom of the screen To Use These Keys Move through selectable items in a screen or pop up menu Up Down Left and Right Arrow To set a change to a selected item or open a pop up menu...

Страница 49: ... SDSL Router Accessing the Easy Setup console screens To access the console screens Telnet to the Netopia Router over your Ethernet network or physically connect with a serial console cable and access the Netopia Router with a terminal emulation program See Connecting through a Telnet session on page 6 2 or Connecting a console cable to your router on page 6 3 Note Before continuing make sure you ...

Страница 50: ...nsole port your computer s serial port is not being used by another device such as an internal modem or an application Turn off all other programs other than your terminal emulation program that may be interfering with your access to the port You have entered the correct password if necessary Your Netopia R7100 s console access may be password protected from a previous configuration See your syste...

Страница 51: ... DHCP server or may be using the Frame Relay Data Link Encapsulation method In this case they may simply assign your router a Static IP Address and will supply you with several values for you to enter in the Router The ISP will provide the values shown below Data Link Encapsulation _______________________________ Local WAN IP Address _________________________________ Local WAN IP Mask ____________...

Страница 52: ...e of Frame Relay or ATM FUNI If you select Frame Relay see Configuring Frame Relay on page 7 10 Select the one your ISP uses and press Return 4 Press the Down arrow key until you reach NEXT SCREEN Press Return to bring up the next screen Netopia R7100 C v4 3 Easy Setup WAN Configuration System Configuration Utilities Diagnostics Statistics Logs Quick Menus Quick View SDSL Line Configuration Data L...

Страница 53: ...highlighted Connection Profile 1 Easy Setup Profile Connection Profile Name Easy Setup Profile Address Translation Enabled Yes IP Addressing Numbered Local WAN IP Address 0 0 0 0 Local WAN IP Mask 0 0 0 0 PREVIOUS SCREEN NEXT SCREEN Return accepts ESC cancels Left Right moves insertion point Del deletes Enter basic information about your WAN connection with this screen IP Easy Setup Ethernet IP Ad...

Страница 54: ...select CONTINUE and press Return The Router will restart and your configuration settings will be activated You can then Exit or Quit your Telnet application Note For more Easy Setup options see the next section For more Frame Relay configuration options see Configuring Frame Relay on page 7 10 More Easy Setup options You always access Easy Setup by selecting Easy Setup in the Main Menu then pressi...

Страница 55: ...ich allows for dynamic addressing when your ISP assigns an address each time you connect However you may enter another specific address if you want to use static addressing In that case enter the local WAN address your ISP gave you When using numbered interfaces the Netopia Router will use its local WAN IP address and subnet mask to send packets to the remote router Both routers have WAN IP addres...

Страница 56: ...in private networks 192 168 1 1 Because this is a private network address it should never be directly connected to the Internet Using NAT for all your connection profiles will ensure this restriction See IP Setup and Network Address Translation on page 9 1 of this guide for more information 2 Select Ethernet Subnet Mask and enter the subnet mask your ISP has given you The Ethernet Subnet Mask defa...

Страница 57: ...mpted to enter the name and password you have specified every time you log in to the console screens Do not forget your name and password If you do you will be unable to access any of the configuration screens Additional security features are available See Security on page 13 1 The final step in configuring the Easy Setup console screens is to restart the Netopia R7100 so that the configuration se...

Страница 58: ... Frame relay as your Datalink Encapsulation method in either of two ways the Easy Setup Frame Relay screens on page 7 10 or the WAN Configuration Frame Relay screens on page 7 11 Easy Setup Frame Relay screens Main Menu Easy Setup SDSL Line Configuration SDSL Line Configuration Data Link Encapsulation Frame Relay ATM FUNI TO MAIN MENU NEXT SCREEN Return Enter brings you to next screen Enter Inform...

Страница 59: ...ion menu also offers the options of either PPP HDLC or Frame Relay as your datalink encapsulation method Main Menu SDSL Line Configuration WAN Configuration WAN Setup SDSL Line Configuration Clock Source Network Data Link Encapsulation Frame Relay ATM FUNI Aux Serial Port Unused ...

Страница 60: ...e Add Connection Profile Delete Connection Profile Default Profile Frame Relay Configuration Frame Relay DLCI Configuration Return Enter for WAN line configuration From here you will configure yours and the remote sites WAN information Frame Relay Configuration LMI Type ANSI Annex D T391 Polling Interval in secs 10 N391 Polls Full Status Cycles 6 N392 Error Threshold 3 N393 Monitored Event Window ...

Страница 61: ...ing N392 monitored event window The default setting is 4 2 Select Tx Injection Management and press Return From the pop up menu highlight Standard if you want the frames on your line that exceed the configured service parameters to be dropped at the router Buffered if you want the frames on your line that exceed the link capacity to be delayed until the link is less busy or None if you want all of...

Страница 62: ... is selected as the option from the Tx Injection Management field 4 Select Maximum Tx Frame Size and press Return The default is automatically set to a value suitable for encapsulating a full ethernet packet s transmission load however you may change the Maximum Frame Size to suit your networks transmission load Press Return You are now done configuring the Frame Relay Configuration screen Press t...

Страница 63: ...ge DLCIs in the Frame Relay DLCI Configuration screen and press Return The Frame Relay DLCI Configuration table is a handy way to quickly view the DLCI names and DLCI numbers that you attribute to your Frame Relay profiles Frame Relay DLCI Configuration Display Change DLCIs Add DLCI Delete DLCI Add delete and modify DLCIs from here Frame Relay DLCI Configuration DLCI Name DLCI Number DLCI 16 16 Up...

Страница 64: ...Configuration screen Select a DLCI Name from the table and press Return to go to the Change DLCI screen The parameters in this screen are the same as the parameters in the Add DLCI screen To find out how to set them see Adding a Frame Relay DLCI configuration on page 7 17 Change DLCI DLCI Name DLCI 33 DLCI Enabled Yes DLCI Number 16 991 32 Remote IP Address 2 0 0 2 ...

Страница 65: ...ress your ISP or network administrator gave you that represents the remote sites IP address for their router Press Return If you select Standard or Buffered as the Tx Injection Management type in the Frame Relay Configuration screen go to the next bulleted item below If you selected None in the Frame Relay Configuration screen go to step 6 Below the Remote IP Address field the following Data Flow ...

Страница 66: ...DLCI NOW to save the current static Frame Relay DLCI profile that you have just entered and press Return to go back to the Frame Relay DLCI Configuration screen Alternately you can cancel the Frame Relay DLCI profile you have just created by selecting CANCEL to exit the Add DLCI screen Deleting a Frame Relay DLCI configuration To delete a Frame Relay DLCI configuration select Delete DLCI in the Fr...

Страница 67: ...P P P Pa a a ar r r rt t t t I I I II I I I A A A Ad d d dv v v va a a an n n nc c c ce e e ed d d d C C C Co o o on n n nf f f fi i i ig g g gu u u ur r r ra a a at t t ti i i io o o on n n n ...

Страница 68: ...User s Reference Guide ...

Страница 69: ...tup These menus provide a powerful method for experienced users to set up their router s connection profiles and system configuration This section covers the following topics WAN configuration on page 8 1 The default profile on page 8 3 System configuration screens on page 8 5 Navigating through the system configuration screens on page 8 6 System configuration features on page 8 7 WAN configuratio...

Страница 70: ...ither ATM FUNI the default which is a variant of MultiProtocol over ATM Adaptation Layer 5 AAL5 RFC1483 or Frame Relay RFC1490 You may specify how to use the Auxiliary Serial Port By default the port is Unused You can enable it for an asynchronous modem If the AppleTalk feature set is installed then LocalTalk becomes the default option For modem applications a Data Rate pop up offers a limited set...

Страница 71: ...not IP will be supported on the DSL link If IP Enabled is set to Yes an IP Parameters item becomes visible If you select IP Parameters the IP Parameters screen appears see IP parameters default profile screen on page 8 4 This screen allows you to configure various IP parameters for DSL connections established without an explicitly configured connection profile If Must Match a Defined Profile is se...

Страница 72: ...HCP client on the DSL link when using a Default Profile The DHCP server will supply a local IP address and subnet mask For a DSL link Network Address Translation NAT is enabled by default in the Default Profile For details on setting up IP Parameters see IP Setup and Network Address Translation on page 9 1 IP Parameters Default Profile Address Translation Enabled No Filter Set Firewall Remove Filt...

Страница 73: ...s in either of two ways By using Telnet with the Router s Ethernet port IP address Through the console port using a local terminal see Connecting a console cable to your router on page 6 3 You can also retrieve the Netopia R7100 s configuration information and remotely set its parameters using the Simple Network Management Protocol see SNMP on page 12 12 Open a Telnet connection to the router s IP...

Страница 74: ...hese steps 1 Beginning in the Main Menu select System Configuration and press Return The System Configuration screen appears 2 Select Network Protocols and press Return The Network Protocols screen appears 3 Select IP Setup and press Return The IP Setup screen appears To go back in this sequence of screens use the Escape key Netopia R7100 v4 3 Easy Setup WAN Configuration System Configuration Util...

Страница 75: ... address distribution through DHCP MacIP or BootP Greater network security through the use of filters System configuration of AppleTalk LAN settings System configuration of connections to AppleTalk networks through the Internet or any IP network using AURP AppleTalk tunneling System configuration of connection profiles To access the system configuration screens select System Configuration in the M...

Страница 76: ...by means of filter sets and a basic firewall Details are given in Security on page 13 1 IP address serving These screens allow you to configure IP address serving on your network by means of DHCP WANIP BootP and with the optional AppleTalk kit MacIP Details are given in IP address serving on page 9 21 Date and time You can set the system s date and time in the Set Date and Time screen Select Date ...

Страница 77: ...onsole configuration You can change the default terminal communications parameters to suit your requirements To go to the Console Configuration screen select Console Configuration in the System Configuration screen Follow these steps to change a parameter s value 1 Select the parameter you want to change 2 Select a new value for the parameter Return to step 1 if you want to configure another param...

Страница 78: ...isit the Netopia Web site at www netopia com for information on new feature sets how to obtain them and how to install them on your Netopia R7100 Logging You can configure a UNIX compatible syslog client to report a number of subsets of the events entered in the router s WAN Event History See WAN Event History on page 12 6 The Syslog client for the PC only is supplied as a ZIP file on the Netopia ...

Страница 79: ...uest from our DN 5108645534 Nov 5 10 14 06 tsnext farallon com Requested Disc from DN 917143652500 Nov 5 10 14 06 tsnext farallon com Received Clear Confirm for our DN 5108645534 Nov 5 10 14 06 tsnext farallon com Link 1 down No answer Nov 5 10 14 06 tsnext farallon com Device restarted Nov 5 10 14 06 tsnext farallon com Received Speech Setup Ind from DN not supplied Nov 5 10 14 06 tsnext farallon...

Страница 80: ...8 12 User s Reference Guide ...

Страница 81: ... using a single IP address instead of a routed account with separate IP addresses for each computer on the network Network Address Translation also provides increased security by hiding the local IP addresses of the LAN connected to the Netopia R7100 from the outside world With SmartIP the setup is simpler so Internet service providers typically offer internet accounts supporting Network Address T...

Страница 82: ...ore flexibility it does have an important limitation the router requires a static IP address to support Web FTP or other services available to the WAN To support these services with NAT enabled a service can be associated with only one machine on the LAN When connected to the Internet or some other large network using Network Address Translation the individual machines on your LAN are not directly...

Страница 83: ...r 10 0 0 4 to a Windows NT PC 10 0 0 5 to a Windows 95 PC Note See Associating port numbers with nodes on page 9 6 3 In the connection profile toggle Address Translation Enabled to Yes or No Yes to enable NAT and press Return The Easy Setup connection profile is accessible by using either of the following two approaches From the Easy Setup menu in the Main Menu screen select the next screen Connec...

Страница 84: ...mbered or Unnumbered For more information see Appendix B Understanding IP Addressing and Appendix C Understanding Netopia NAT Behavior IP Profile Parameters Address Translation Enabled Yes IP Addressing Unnumbered Local WAN IP Address 0 0 0 0 Remote IP Address 0 0 0 0 Remote IP Mask 0 0 0 0 Filter Set Remove Filter Set Receive RIP Both Transmit RIP v2 multicast Configure IP requirements for a remo...

Страница 85: ...d or NAT profiles The Local WAN IP Mask is displayed for numbered profiles The Remote IP Address and Remote IP Mask are displayed for unnumbered profiles IP Profile Parameters Address Translation Enabled Yes IP Addressing Numbered Local WAN IP Address 0 0 0 0 Local WAN IP Mask 0 0 0 0 Filter Set Remove Filter Set Receive RIP Off Enter an IP address in decimal and dot form xxx xxx xxx xxx Configure...

Страница 86: ...168 100 6 is assigned to the Netopia R7100 NAT indicates that the address was assigned dynamically by Network Address Translation Internal users can access the Internet as they always do the external Internet however views all traffic from the internal network as originating from 192 168 100 6 and all traffic your network receives is addressed to 192 168 100 6 Associating port numbers with nodes W...

Страница 87: ... Network Address Translation NAT will attempt to autoconfigure itself without an explicitly configured connection profile if permitted to do so by the setting of the Must Match a Defined Profile item in the Default Profile screen See The default profile on page 8 3 The link up procedure at the interface between the SDSL data link encapsulation module and the IP router functions as follows When the...

Страница 88: ...er dialing in to the router For example to create a new Connection Profile you navigate to the WAN Configuration screen from the Main Menu and select Add Connection Profile The Add Connection Profile screen appears On a Netopia R7100 SDSL Router you can add up to 15 more connection profiles for a total of 16 although only one can be used at a time 1 Select Profile Name and enter a name for this co...

Страница 89: ... item becomes available Select IPX Profile Parameters and press Return The IPX Profile Parameters screen appears 6 Toggle or enter any IPX Parameters you require and return to the Add Connection Profile screen by pressing Escape For more information see IPX Setup on page 10 1 IP Profile Parameters Address Translation Enabled Yes IP Addressing Unnumbered Local WAN IP Address 0 0 0 0 Local WAN IP Ma...

Страница 90: ...port on both the server and client With two different UDP TCP ports exported you can have Web servers on two different IP hosts If you will be using multiple connection profiles define the remote IP address of the most accessible profile such as that for your ISP to the default IP gateway in the TCP IP settings on users workstations That way IP traffic not intended specifically for any of the remo...

Страница 91: ...configure IP Setup for your Netopia R7100 Select Ethernet IP Address and enter the IP address for the Netopia R7100 s Ethernet port Select Ethernet Subnet Mask and enter the subnet mask for the Ethernet IP address that you entered in the last step For unlimited user models if you desire multiple subnets select Define Additional Subnets 12 user models do not offer this option If you select this ite...

Страница 92: ...nter a domain name Routing Information Protocol RIP is needed if there are IP routers on other segments of your Ethernet network that the Netopia R7100 needs to recognize If this is the case select Receive RIP and select v1 v2 or Both from the popup menu With Receive RIP set to v1 the Netopia R7100 s Ethernet port will accept routing information provided by RIP packets from other routers that use ...

Страница 93: ... Export The Add Exported Service screen appears Exported Services Local Port to IP Address Remapping Show Change Exports Add Export Delete Export Return Enter to configure UDP TCP Port to IP Address redirection Add Exported Service Service Local Server s IP Address 0 0 0 0 ADD EXPORT NOW CANCEL ...

Страница 94: ... 10 0 0 2 Some services such as Timbuktu require the export of multiple TCP ports When you associate Timbuktu with a local server or Timbuktu host all of the major Timbuktu services are exported i e Observe Control Send and Exchange Note If the TCP port of a service you want to use is not listed you can add it by selecting Other on the pop up menu Add Exported Service Type Port Service ftp 21 teln...

Страница 95: ...e up to eight Ethernet IP subnets on unlimited user models one primary subnet and up to seven secondary subnets by entering IP address subnet mask pairs IP Setup Ethernet IP Address 192 128 117 162 Ethernet Subnet Mask 255 255 255 0 Define Additional Subnets Default IP Gateway 192 128 117 163 Primary Domain Name Server 0 0 0 0 Secondary Domain Name Server 0 0 0 0 Domain Name Receive RIP Both Trans...

Страница 96: ... To add an IP subnet enter the Netopia R7100 s IP address on the subnet in the IP Address field in a particular row and the subnet mask for the subnet in the Subnet Mask field in that row For example To delete a configured subnet set both the IP address and subnet mask values to 0 0 0 0 either explicitly or by clearing each field and pressing Return or Enter to commit the change When a configured ...

Страница 97: ... R7100 how to reach a particular network However static routes are used only if they appear in the IP routing table which contains all of the routes used by the Netopia R7100 see IP routing table on page 12 8 Static routes are helpful in situations where a route to a network must be used and other means of finding the route are unavailable For example static routes are useful when you cannot rely ...

Страница 98: ...low will appear The table has the following columns Dest Network The network IP address of the destination network Static Routes Display Change Static Route Add Static Route Delete Static Route Configure View Delete Static Routes from this and the following Screens Dest Network Subnet Mask Next Gateway Priority Enabled 0 0 0 0 0 0 0 0 163 176 8 1 Low Yes Select a Static Route to modify ...

Страница 99: ...d toggle it to No Be sure to read the rules on the installation of static routes in the IP routing table See Rules of static route installation on page 9 20 Select Destination Network IP Address and enter the network IP address of the destination network Select Destination Network Subnet Mask and enter the subnet mask used by the destination network Select Next Gateway IP Address and enter the IP ...

Страница 100: ...es in the Add Static Route screen see Adding a static route on page 9 19 Deleting a static route To delete a static route in the Static Routes screen select Delete Static Route to display a table of static routes Select a static route from the table and press Return to delete it To exit the table without deleting the selected static route press Escape Rules of static route installation The Netopia...

Страница 101: ...ontrast BootP address assignments are permanent since there is no lease renewal mechanism in BootP The third protocol called Dynamic WAN is part of the PPP MP suite of wide area protocols used for WAN connections It allows remote terminal adapters and NAT enabled routers to be assigned a temporary IP address for the duration of their connection The fourth protocol called MacIP is used only for com...

Страница 102: ...rst figure out what machines are going to be allocated specific static IP addresses so that you can determine the pool of IP addresses that you will be serving addresses from via DHCP BootP Dynamic WAN and or MacIP Example Your ISP has given your Netopia R7100 the IP address 192 168 6 137 with a subnet mask of 255 255 255 248 The subnet mask allocated will give you six IP addresses to use when con...

Страница 103: ...pears instead If you select Configure Address Pools you will be taken to the IP Address Pools screen that allows you to configure an address serving pool for each of the configured Ethernet IP subnets See IP Address Pools in the next section IP Address Serving Configure Address Pools Serve DHCP Clients Yes DHCP NetBios Options Serve BOOTP Clients Yes Serve Dynamic WAN Clients Yes Serve MacIP KIP C...

Страница 104: ...fy the base and extent of the address serving pool for a particular subnet Entering 0 0 0 0 for the first client address or 0 for the number of clients indicates that no addresses will be served from the corresponding Ethernet IP subnet The Client Gateway column allows you to specify the default gateway address that will be provided to clients served an address from the corresponding pool The valu...

Страница 105: ...quest if the address is available The client stores this address in non volatile storage for example on disk and the specific storage method location differs depending on the client operating system When requesting an address a client may provide a client identifier or if it does not the Netopia R7100 may construct a pseudo client identifier for the client When the client subsequently requests an ...

Страница 106: ...NetBIOS a non IBM network operating system or network interface card must offer a NetBIOS emulator Many vendors either provide a version of NetBIOS to interface with their hardware or emulate its transport layer communications services in their network products A NetBIOS emulator is a program provided by NetWare clients that allow workstations to run applications that support IBM s NetBIOS calls S...

Страница 107: ...are now finished setting up DHCP NetBIOS Options To return to the IP Address Serving screen press Escape To enable BootP s address serving capability select Serve BOOTP Clients and toggle to Yes Note Addresses assigned through BootP are permanently allocated from the IP Address Serving pool until you release them To release these addresses navigate back to the Main Menu then Statistics Logs Served...

Страница 108: ...communicate with the Internet or any other IP network Users should point their MacTCP or TCP IP control panel to look in the LocalTalk zone for the MacIP server Macintosh computers that have Ethernet selected in the MacTCP or TCP IP control panel can do their own AppleTalk IP conversions Setting up MacIP involves choosing MacIP dynamic address serving and then configuring that type KIP forwarding ...

Страница 109: ...erve Note that the address pool IP range is listed for your referral in this screen You have finished your IP setup MacIP KIP Forwarding Setup This screen tells the Netopia how many static addresses to allocate for MacIP KIP clients The addresses must fall within one of the address pools from the previous screen Number of Static Addresses 0 First Static Client Address 0 0 0 0 Enter the number of s...

Страница 110: ...9 30 User s Reference Guide ...

Страница 111: ... features IPX RIP and SAP NetBIOS broadcast packet forwarding IPX type 20 IPX packet filtering definable by source and destination IPX address and socket number for added security IPX SAP filtering to aid in optimizing WAN bandwidth Dial on demand features Spoofing of IPX keep alive SPX and server serialization packets Configurable RIP SAP timers on connection profiles IPX definitions This section...

Страница 112: ... and provides timing information ticks so that the fastest route to a destination can be determined IPX routers use RIP to create and dynamically maintain databases of internetwork routing information See IPX routing tables on page 10 5 for more information Service Advertising Protocol SAP SAP is a protocol that provides servers and routers with a method for exchanging service information Using SA...

Страница 113: ...ithout bringing up the dial up link SPX keep alive packets are also treated in this manner IPX RIP and SAP messages will not be sent if the link is down Together these features enable the user to remain connected to a Novell server or SPX peer without bringing up the dial up link except to send and receive actual user data IPX setup screen You will use the IPX Setup screen to configure the Etherne...

Страница 114: ...tBios Forwarding and toggle it to Yes This parameter will determine whether IPX Packet type 20 packets are forwarded on the Ethernet interface These packets are used by NetBIOS and some other applications 6 Select Ethernet Inbound SAP Filter Set to filter incoming IPX SAP advertisements on the Ethernet By attaching an incoming SAP filter on the Ethernet you can restrict the number of SAP entries l...

Страница 115: ...IPX internet IPX routing tables IPX routing tables provide information on current IPX routes and services To go to the IPX Routing Table screen select IPX Routing Table in the Statistics Logs screen This table shows detailed information about current IPX network routes To go to the IPX SAP Bindery Table screen select IPX SAP Bindery Table in the Statistics Logs screen This table shows detailed inf...

Страница 116: ...10 6 User s Reference Guide ...

Страница 117: ...isted pair or coaxial over which information travels from one device to another AppleTalk protocol AppleTalk is a protocol set for local area networks developed by Apple Computer While initially applied to the LocalTalk cabling system for connecting Macintosh computers and LaserWriter printers it has been expanded to use other cabling systems such as Ethernet as well as dial up telephone networks ...

Страница 118: ...g a zone from which the service can be selected Like network numbers zone names are assigned by routers A routing table is maintained by each AppleTalk router The table serves as a map of the internet specifying the path and distance in hops between its router and other networks The routing table is used to determine whether a router will forward a data packet and if so to which network You can us...

Страница 119: ...rs on a network a seed router is configured with the correct information and other routers obtain their information from that router when they are turned on or reset Routers commonly use one of three types of seeding procedures hard seeding soft seeding and non seeding Hard seeding When a router that uses hard seeding is turned on or reset it requests network number and zone name information from ...

Страница 120: ...ters must be soft seeding or non seeding and the Netopia R7100 must already be active when those other routers are rebooted If you want the Netopia R7100 and all other routers on your network to use only their own configurations set the Netopia R7100 and all other routers to hard seeding In this case any router including the Netopia R7100 that is rebooted will not begin routing if it detects a rou...

Страница 121: ...pgrade Feature Set Netopia Feature Set Upgrade You may be able to extend the features of your Netopia by purchasing a Software Upgrade For a list of available upgrades please see the release notes that came with your Netopia or visit the Netopia Communications web site at www netopia com To purchase an upgrade you must provide your Serial Number which is xx xx xx You will receive an Upgrade Key wh...

Страница 122: ...e EtherTalk network that you will be connecting to the Netopia R7100 use the zone names and network numbers used by that router for that EtherTalk network Otherwise your EtherTalk network may experience routing conflicts The Netopia R7100 supports creating up to 32 zone names As an alternative you can set EtherTalk seeding to soft seeding and let the Netopia R7100 receive the zone name and network...

Страница 123: ...If you are using LocalTalk with the Netopia R7100 select LocalTalk Enabled and make sure LocalTalk is set to On which is the default Note Since the LocalTalk connector attaches to the Auxiliary port on the router that port will no longer be available for a third external modem Select LocalTalk Zone Name and enter a new or existing zone name Note Your LocalTalk network may already have a zone and n...

Страница 124: ...creen appears To activate AURP and enable connections to and from AURP partners select AURP Enable and toggle it to On Viewing AURP partners To see a table of existing AURP partners select Display Change Partner and press Return Note The Netopia R7100 can define a total of 32 AURP partners AURP Free Trade Zone The Free Trade Zone is an AURP security feature It allows the Netopia administrator to s...

Страница 125: ...ople for example chagall arts edu Domain names are matched to the IP addresses actually used by IP routers for example 163 7 8 202 To initiate a connection with an AURP partner select Initiate Connection and toggle it to Yes This will open a connection to the remote AppleTalk network after rebooting You can choose to restrict this partner to the Free Trade Zone by toggling Restrict to Free Trade Z...

Страница 126: ...AURP tunnels select Accept Connections From and choose Anyone or Configured Partners Only from the pop up menu If you choose Anyone all incoming AURP connections will be accepted The more secure option is Configured Partners Only which accepts connections only from recognized AURP partners the ones you have set up Configuring AURP Options In the AURP Setup screen select Advanced Options and go to ...

Страница 127: ...g a remote AppleShare volume In many AppleTalk internets individual AppleTalk networks come and go Routers are designed to notify each other at the end of their Update Interval every time there s such a change in the network topology This will cause the Netopia s WAN link to be brought up To minimize what may be unnecessary calls change the Update Interval value to some larger value At the end of ...

Страница 128: ... range select Cluster Remote Networks and toggle it to Yes This setting takes any number of remote networks being remapped and causes them to be remapped into a continuous range To override the AppleTalk maximum limit of 15 hops select Enable Hop Count Reduction and toggle it to Yes Hosts on a local AppleTalk network will then see AppleTalk destinations across the IP tunnel as being only one hop a...

Страница 129: ...e following topics Quick View status overview on page 12 1 Statistics Logs on page 12 4 Event histories on page 12 5 Routing tables on page 12 7 Served IP Addresses on page 12 10 System Information on page 12 12 SNMP on page 12 12 SmartView on page 12 16 Quick View status overview You can get a useful overall status report from the Netopia R7100 in the Quick View screen To go to the Quick View scr...

Страница 130: ...Address The Netopia R7100 s hardware address for those interfaces that support DHCP IP Address The Netopia R7100 s IP address entered in the IP Setup screen IPX Address The Netopia R7100 s IPX address entered in the IPX Setup screen EtherTalk Address The Netopia R7100 s AppleTalk address on its EtherTalk Phase II interface entered in the EtherTalk Phase II Setup screen only if the optional AppleTa...

Страница 131: ...on the IPX address in use if IP is also in use or the ISDN caller identification if available Status lights This section shows the current real time status of the Netopia R7100 s status lights LEDs It is useful for remotely monitoring the router s status The Quick View screen s arrangement of LEDs corresponds to the physical arrangement of LEDs on the router Each LED representation can report one ...

Страница 132: ...ffic on the Netopia R7100 s data ports This information is useful for monitoring and troubleshooting your LAN Note that the counters roll over at their maximum field width that is they restart again at 0 General Statistics Statistics Logs Main Menu General Statistics Phys I F Rx Bytes Tx Bytes Rx Pkts Tx Pkts Rx Err Tx Err Ethernet Hub 123456789 123456789 12345678 12345678 12345678 12345678 LocalT...

Страница 133: ...umber of packets received Tx Pkts The number of packets transmitted Rx Err The number of bad Ethernet packets received Tx Err An error occurring when Ethernet packets are transmitted simultaneously by nodes on the LAN Event histories The Netopia R7100 records certain relevant occurrences in event histories Event histories are useful for diagnosing problems because they list what happened before du...

Страница 134: ...story select the event and then press Return A dialog box containing more information about the selected event will appear Press Return or Escape to dismiss the dialog box To clear the event history select Clear History at the bottom of the history screen and press Return WAN Event History Current Date 12 3 98 03 02 23 PM Date Time Event SCROLL UP 07 03 98 13 59 06 DSL IP up channel 1 gateway 173 ...

Страница 135: ...ables respectively To go to a routing table screen select the routing table you are interested in from the Statistics Logs screen Each of the routing table screens represents a snapshot of the routing table information at the time the screen is first invoked To take a new snapshot select Update at the bottom of the screen and press Return Device Event History Current Date 12 3 98 02 03 27 AM Date ...

Страница 136: ...Event History Device Event History IP Routing Table IPX Routing Table IPX SAP Bindery Table AppleTalk Routing Table Served IP Addresses General Statistics System Information IP Routing Table Network Address Subnet Mask via Router Port Type SCROLL UP 0 0 0 0 255 0 0 0 0 0 0 0 Other 127 0 0 1 255 255 255 255 127 0 0 1 Loopback Local 192 168 1 0 255 255 255 240 192 168 1 1 Ethernet Local 192 168 1 1 ...

Страница 137: ...lied by the AppleTalk router in the Next Rtr Addr column If a network number is preceded by an asterisk it has multiple zones To display the zones select the network entry and press Return Range Displays the ending network number for the extended network Def Zone Name Displays the zone or zones associated with the specified network or network range The zone name shown is either the only zone or th...

Страница 138: ... using AURP IP address means a connection transports over AURP AppleTalk encapsulated IP Pkts Fwded The number of packets sent to the router shown Served IP Addresses You can view all of the IP addresses currently being served by the Netopia R7100 SDSL Router from the Served IP Addresses screen From the Statistics Logs menu select Served IP Addresses The Served IP Addresses screen appears To manag...

Страница 139: ... lease period to elapse Release BootP Leases Releases any BootP leases that may be in place and which may no longer be required Reclaim Declined Addresses Reclaims served leases that have been declined for example by devices that may no longer be on the network IP Address Lease Management Reset All Leases Release BootP Leases Reclaim Declined Addresses Hit RETURN ENTER you will return to the previ...

Страница 140: ...Netopia R7100 supports the following management information base MIB documents MIB II RFC 1213 Interface MIB RFC 1229 Ethernet MIB RFC 1643 AppleTalk MIB I RFC 1243 Netopia MIB These MIBs are on the Netopia R7100 CD included with the Netopia R7100 Load these MIBs into your SNMP management software in the order they are listed here Follow the instructions included with your SNMP manager on how to l...

Страница 141: ...in the MIB II system group Although optional the information you enter in these items can help a system administrator manage the network more efficiently Community strings The Read Only Community String and the Read Write Community String are like passwords that must be used by an SNMP manager querying or configuring the Netopia R7100 An SNMP manager using the Read Only Community String can examin...

Страница 142: ...operations and Set Requests are still allowed using the non empty Read Write community string Even if you decide not to use SNMP you should change the community strings This prevents unauthorized access to the Netopia R7100 through SNMP For more information on security issues see Suggested security measures on page 13 1 SNMP traps An SNMP trap is an informational message sent from an SNMP agent in...

Страница 143: ...eivers screen Modifying IP trap receivers 1 To edit an IP trap receiver select Display Change IP Trap Receiver in the IP Trap Receivers screen 2 Select an IP trap receiver from the table and press Return 3 In the Change IP Trap Receiver screen edit the information as needed and press Return Deleting IP trap receivers 1 To delete an IP trap receiver select Delete IP Trap Receiver in the IP Trap Rec...

Страница 144: ...ow It intermittently polls the router for information to monitor the router s state and event histories SmartView should run under any Java Virtual Machine JVM enabled browser and is therefore platform independent Note The SmartView applet will only run under Java enabled browsers Be sure that the browser you are using is at least Microsoft Internet Explorer Version 3 0 or higher or Netscape Navig...

Страница 145: ...w monitor by launching your web browser and entering the URL http router_IP_Address smartview html where router_IP_address is the address of your router Once you have invoked the SmartView pages bookmark SmartView in your browser for easy access Machine Information History Logs Model Device Firmware version WAN Ethernet IP address Update Date Time LED status ...

Страница 146: ... once Click on the tabs to display the different informational categories In addition to the static machine information about your router such as model and firmware version SmartView displays a real time visual representation of the Netopia R7100 s status lights LEDs This is particularly useful if the router is located out of visual range such as in a wiring closet ...

Страница 147: ...r the WAN The Netopia R7100 s built in battery backup prevents loss of event history from a shutdown or reset The router s event histories are structured to display the most recent events first and to make it easy to distinguish error messages from informational messages Error messages are prefixed with an asterisk Both the WAN Event History and Device Event History pages retain records of up to 1...

Страница 148: ...12 20 User s Reference Guide WAN Event History page ...

Страница 149: ...Java enabled browsers Unlike the SmartView pages they are not dynamically updated You access the web based monitoring pages by launching your web browser and entering the URL http router_IP_address where router_IP_address is the address of your router The default address is 198 162 1 1 To view event histories click the Statistics icon To go to SmartView if your browser is Java enabled click the Sm...

Страница 150: ...12 22 User s Reference Guide ...

Страница 151: ...s and filters all of which are covered later in this chapter there are other actions you can take to make the Netopia R7100 and your network more secure Change the SNMP community strings or passwords The default community strings are universal and could easily be known to a potential intruder Set the answer profile so it must match incoming calls to a connection profile Leave the Enable Dial in Co...

Страница 152: ...s access to the configuration screens Access to the Security Options screen can be protected with a password Select Password for This Screen in the Security Options screen and enter a password Make sure this password is secure and is different from any of the user account passwords Protecting the configuration screens You can protect the configuration screens with user accounts You can administer ...

Страница 153: ...t of accounts Select an account from the list and press Return to delete it To exit the list without deleting the selected account press Escape Dial in console access Remote modem terminal emulator setups can dial in to the modem line and establish a remote console session even though they are not using PPP This allows Netopia Inc s Up and Running Guaranteed department or other administrator with ...

Страница 154: ... No See SNMP traps on page 12 14 To restrict Telnet access to all of the configuration screens select Enable Telnet Console Access and toggle it to No About filters and filter sets Security should be a high priority for anyone administering a network connected to the Internet Using packet filters to control network communications can greatly improve your network s security The Netopia R7100 s pack...

Страница 155: ...uld be as specific as a street address or as broad as an entire country and checks each package s destination address to see if it matches that destination A filter inspects data packets like a customs inspector scrutinizing packages Filter priority Continuing the customs inspectors analogy imagine the inspectors lined up to examine a package If the package matches the first inspector s criteria t...

Страница 156: ...rejected by the second inspector and never seen by the others A package from London is ignored by the first two inspectors so it s seen by the third inspector In the same way filter sets apply their filters in a particular order The first filter applied can pass or discard a packet before that packet ever reaches any of the other filters If the first filter can neither pass nor discard the packet ...

Страница 157: ... packet is blocked Here is what this rule looks like when implemented as a filter on the Netopia R7100 To understand this particular filter look at the parts of a filter Parts of a filter A filter consists of criteria based on packet attributes A typical filter can match a packet on any one of the following attributes The source IP address where the packet was sent from The destination IP address ...

Страница 158: ... s port number must be less than the port number specified in the filter Less Than or Equal For the filter to match the packet s port number must be less than or equal to the port number specified in the filter Equal For the filter to match the packet s port number must equal the port number specified in the filter Greater Than For the filter to match the packet s port number must be greater than ...

Страница 159: ...h This is the port on the sending host that originated the packet D Port The destination port to match This is the port on the receiving host for which the packet is intended On Displays Yes when the filter is in effect or No when it is not Fwd Shows whether the filter forwards Yes a packet or discards No it when there s a match Protocol Number to use Full name N A 0 Ignores protocol type ICMP 1 I...

Страница 160: ...been anything The mask for Source IP Addr must be 255 255 255 255 since an exact match is desired Source IP Addr 199 211 211 17 Source IP address mask 255 255 255 255 Dest IP Addr 0 0 0 0 Destination IP address mask 0 0 0 0 Note To learn about IP addresses and masks see Appendix B Understanding IP Addressing 3 Using the tables on page 13 8 find the destination port and protocol numbers the local T...

Страница 161: ...et on paper by determining how the filters would respond to a number of different hypothetical packets Consider the combined effect of the filters If every filter in a set fails to match on a particular packet the packet is Passed if all the filters are configured to discard not forward Discarded if all the filters are configured to pass forward Discarded if the set contains a combination of pass ...

Страница 162: ...ter sets This section covers IP filters and filter sets For working with IPX filters and filter sets see IPX filters on page 13 21 To work with filters and filter sets begin by accessing the filter set screens Note Make sure you understand how filters work before attempting to use them Read the section About filters and filter sets beginning on page 13 4 The procedure for creating and maintaining ...

Страница 163: ...filter set you add will be called Filter Set 1 the next filter will be Filter Set 2 and so on To give a new filter set a different name select Filter Set Name and enter a new name for the filter set To save the filter set select ADD FILTER SET The saved filter set is empty contains no filters but you can return to it later to add filters see Modifying filter sets on page 13 17 Or you can add filte...

Страница 164: ...ilter your local network is the destination of the packets it checks and the remote network is their source From the perspective of an output filter your local network is the source of the packets and the remote network is their destination Adding filters to a filter set In this section you ll learn how to add an input filter to a filter set Adding an output filter works exactly the same way provi...

Страница 165: ...s allows you to further modify the way the filter will match on the destination address Enter 0 0 0 0 to force the filter to match on all destination IP addresses 7 Select Protocol Type and enter ICMP TCP UDP Any or the number of another IP transport protocol see the table on page 13 9 Note If Protocol Type is set to TCP or UDP the settings for port comparison that you configure in steps 8 and 9 w...

Страница 166: ... parameters in this screen are set in the same way as the ones in the Add Filter screen see Adding filters to a filter set on page 13 14 Deleting filters To delete a filter select Delete Input Filter or Delete Output Filter in the Add IP Filter Set screen to display a table of filters Select the filter from the table and press Return to delete it Press Escape to exit the table without deleting the...

Страница 167: ... in the IP Filter Sets screen to display a list of filter sets Select a filter set from the list and press Return to delete it Press Escape to exit the list without deleting the filter set A sample IP filter set This section contains the settings for a filter set called Basic Firewall which is part of the Netopia R7100 s factory configuration Basic Firewall blocks undesirable traffic originating f...

Страница 168: ...s pass all TCP and UDP traffic respectively when the destination port is greater than 1023 This type of traffic generally does not allow a remote host to connect to the LAN using one of the potentially intrusive Internet services such as Telnet FTP and WWW Output filter 1 This filter passes all outgoing traffic to make sure that no outgoing connections from the LAN are blocked Setting Input filter...

Страница 169: ...the only one used with Basic Firewall The results of combining filter set modifications can be difficult to predict It is recommended that you take special care if you are making more than one modification to the sample filter set Trusted host To allow unlimited access by a trusted remote host with the IP address a b c d corresponding to a numbered IP address such as 163 176 8 243 insert the follo...

Страница 170: ...omparison Equal Dest Port ID 21 Note A similar filter could be used to permit Telnet or WWW access Set the Dest Port ID to 23 for Telnet or to 80 for WWW AURP tunnel To allow an AURP tunnel between a remote AURP router with the IP address a b c d corresponding to a numbered IP address such as 163 176 8 243 and a local AURP router including the Netopia R7100 itself insert the following input filter...

Страница 171: ...nst that server being accessed IPX packet filtering must be used for that purpose Setting up and using IPX filter sets is a four step process 1 Create the filters to use 2 Create the filter sets to use 3 Add filters to the filter sets 4 Attach the filter sets to the answer profile or to connection profiles You can configure IPX filters and set up IPX filter sets from the IPX Filters and Filter Set...

Страница 172: ...sired filter and press Return to go to the Change Packet Filter screen The parameters in this screen are the same as the ones in the Add Packet Filter screen see the next section Adding a packet filter To add a new IPX packet filter select Add IPX Packet Filter in the IPX Filters and Filter Sets screen and press Return The Add Packet Filter screen appears By default the filter s socket numbers and...

Страница 173: ...en without saving the new filter Deleting a packet filter To delete a packet filter select Delete IPX Packet Filter in the IPX Filters and Filter Sets screen to display a table of filters Select a filter from the table and press Return to delete it Press the Escape key to exit the table without deleting the filter IPX packet filter sets Before the individual filters can be used IPX packet filters ...

Страница 174: ...tch screen appears Select a filter and toggle the packet forwarding action to Yes pass or No discard Add Packet Filter Set Filter Set Name Show Filters Change Action on Match Append Filter Remove Filter ADD FILTER SET NOW CANCEL Return accepts ESC cancels Left Right moves insertion point Del deletes Configure an IPX Filter Set here You must ADD FILTER SET NOW to save Show Filters Change Actions on...

Страница 175: ...lter set Note Deleting a filter set does not delete the filters in that set However the filters in the deleted set are no longer in effect unless they are part of another set The deleted set will no longer appear in the answer profile or any connection profiles to which it was added IPX SAP filters For each IPX SAP filter you can configure a set of parameters to match on certain attributes of IPX ...

Страница 176: ...server name NETOPIA with NETO NETO IA and NETOPIA 3 To specify a socket for the filter to match on select Socket and enter an IPX socket number 4 To specify a type number for the filter to match on select Type and enter an IPX type number 5 To specify an IPX network address for the filter to match on select IPX Network and enter an IPX network address 6 To specify an IPX node address for the filte...

Страница 177: ... in the Add SAP Filter Set screen see the previous section Adding a SAP filter set To add a new IPX SAP filter set select Add IPX SAP Filter Set in the IPX Filters and Filter Sets screen The Add SAP Filter Set screen appears Follow these steps to configure the new SAP filter set 1 Select Filter Set Name and enter a descriptive name for the filter set 2 To change the forwarding action of filters in...

Страница 178: ... the filter press Escape 5 To save the current filter set select ADD FILTER SET NOW in the Add SAP Filter Set screen Select CANCEL to exit the Add SAP Filter Set screen without saving the new filter set Deleting a SAP filter set To delete a SAP filter set select Delete IPX SAP Filter Set in the IPX Filters and Filter Sets screen to display a list of filter sets Select a filter set from the list an...

Страница 179: ...er information is what the packet filter uses to make filtering decisions It is important to note that a packet filter does not look into the IP data stream the User Data from above to make filtering decisions Basic protocol types TCP Transmission Control Protocol TCP provides reliable packet delivery and has a retransmission mechanism so packets are not lost RFC 793 is the specification for TCP U...

Страница 180: ...d filter rule ordering is critical If a packet is passed through a series of filter rules and then the packet matches a rule the appropriate action is taken The packet will not pass through the remainder of the filter rules For example if you had the following filter set Allow WWW access Allow FTP access Allow SMTP access Deny all other packets and a packet goes through these rules destined for FT...

Страница 181: ... are as follows 0 AND 0 0 0 AND 1 0 1 AND 0 0 1 AND 1 1 For example Filter rule Deny IP 163 176 1 15BINARY 10100011 10110000 00000001 00001111 Mask 255 255 255 255BINARY 11111111 11111111 11111111 11111111 Incoming Packet IP 163 176 1 15BINARY 10100011 10110000 00000001 00001111 If you put the incoming packet and subnet mask together with AND the result is 10100011 10110000 00000001 00001111 which...

Страница 182: ...t screen This is an example of the Netopia IP filter set screen Filter basics In the source or destination IP address fields the IP address that is entered must be the network address of the subnet A host address can be entered but the applied subnet mask must be 32 bits 255 255 255 255 The Netopia R7100 has the ability to compare source and destination TCP or UDP ports These options are as follow...

Страница 183: ... Matches the port or any port greater Greater Than Matches anything greater than the port defined Filter Rule 200 1 1 0 Source IP Network Address 255 255 255 128 Source IP Mask Forward No What happens on match IP Address Binary Representation 200 1 1 28 00011100 Source address in incoming IP packet AND 255 255 255 128 10000000 Perform the logical AND 00000000 Logical AND result Netopia Internet IP...

Страница 184: ...ecause the packet does not match Example 3 Incoming packet has the source address of 200 1 1 184 Filter Rule 200 1 1 0 Source IP Network Address 255 255 255 128 Source IP Mask Forward No What happens on match IP Address Binary Representation 200 1 1 184 10111000 Source address in incoming IP packet AND 255 255 255 128 10000000 Perform the logical AND 10000000 Logical AND result Filter Rule 200 1 1...

Страница 185: ...e passed Example 5 Incoming packet has the source address of 200 1 1 96 Filter Rule 200 1 1 96 Source IP Network Address 255 255 255 240 Source IP Mask Forward No What happens on match IP Address Binary Representation 200 1 1 104 01101000 Source address in incoming IP packet AND 255 255 255 240 11110000 Perform the logical AND 01100000 Logical AND result Filter Rule 200 1 1 96 Source IP Network Ad...

Страница 186: ...de Since the Source IP Network Address in the Netopia R7100 is 01100000 and the source IP address after the logical AND is 01100000 this rule does match and this packet will NOT be passed This rule masks off a single IP address ...

Страница 187: ...console session on page 14 6 Factory defaults on page 14 6 Transferring configuration and firmware files with TFTP on page 14 7 Transferring configuration and firmware files with XMODEM on page 14 9 Restarting the system on page 14 12 Note These utilities and tests are accessible only through the console based management screens See Chapter 6 Console Based Management for information on accessing t...

Страница 188: ...295 3 Select Data Size to change the default setting This is the size in bytes of each Ping packet sent The default setting is adequate in most cases but you can change it to any value from 0 only header data to 1664 4 Select Delay seconds to change the default setting The delay in seconds determines the time between Ping packets sent The default setting is adequate in most cases but you can chang...

Страница 189: ...ime Message Description Resolving host name Finding the IP address for the domain name style address Can t resolve host name IP address can t be found for the domain name style name Pinging Ping test is in progress Complete Ping test was completed Cancelled by user Ping test was cancelled manually Destination unreachable from w x y z Ping test was able to reach the router with IP address w x y z w...

Страница 190: ...re dropped and a destination unreachable notification is returned to the sender see the table on the previous page This ensures that no infinite routing loops occur The TTL value can be set and retrieved using the SNMP MIB II ip group s ipDefaultTTL object Trace Route You can count the number of routers between your Netopia Router and a given destination with the Trace Route utility In the Statist...

Страница 191: ... select Telnet from the Utilities Diagnostics menu The Telnet client screen appears Enter the host name or the IP address in dotted decimal format of the machine you want to telnet into and press Return Either accept the default control character Q used to suspend the Telnet session or type a different one START A TELNET SESSION becomes highlighted Press Return and the Telnet session will be initi...

Страница 192: ... press Return The Netopia R7100 will reboot and its settings will return to the factory defaults deleting your configurations In an emergency you can also use the Reset switch to return the router to its factory default settings Call Netopia Tech Support for instructions on using the Reset switch Note Reset to factory defaults with caution You will need to reconfigure all of your settings in the r...

Страница 193: ...rmware The router firmware governs how the router communicates with your network and the WAN module the WAN module firmware governs how the WAN module communicates with the remote site WAN module firmware is included on your Netopia CD for XMODEM transfer and later updates will be available on the Netopia website Router firmware updates are also periodically posted on the Netopia website To update...

Страница 194: ... TFTP Transfer State item will change from Idle to Reading Firmware The TFTP Current Transfer Bytes item will reflect the number of bytes transferred Downloading configuration files The Netopia R7100 can be configured by downloading a configuration file using TFTP Once downloaded the file reconfigures all of the router s parameters as if someone had manually done so through the console port To dow...

Страница 195: ...r your network administrator To upload a configuration file follow these steps 1 Select TFTP Server Name and enter the server name or IP address of the TFTP server you will use The server name or IP address is available from the site where the server is located 2 Select Config File Name and enter a name for the file you will upload The file will appear with the name you choose on the TFTP server Y...

Страница 196: ...hout downloading the file or select CONTINUE to download the file If you choose CONTINUE you will have ten seconds to use your terminal emulation software to initiate an XMODEM transfer of the firmware file If you fail to initiate the transfer in that time the dialog box will disappear and the terminal emulation software will inform you of the transfer s failure You can then try again X Modem File...

Страница 197: ...ransfer of the configuration file If you fail to initiate the transfer in that time the dialog box will disappear and the terminal emulation software will inform you of the transfer s failure You can then try again The system will reset at the end of a successful file transfer to put the new configuration into effect Uploading configuration files A file containing a snapshot of the Netopia R7100 s...

Страница 198: ... transfer s failure You can then try again Restarting the system You can restart the system by selecting the Restart System item in the Utilities Diagnostics screen You must restart the system whenever you reconfigure the Netopia R7100 and want the new parameter values to take effect Under certain circumstances restarting the system may also clear up system or network malfunctions Some configurati...

Страница 199: ...P P P Pa a a ar r r rt t t t I I I II I I II I I I A A A Ap p p pp p p pe e e en n n nd d d di i i ix x x xe e e es s s s ...

Страница 200: ...User s Reference Guide ...

Страница 201: ...on process review the following suggestions before calling for technical support There are four zones to consider when troubleshooting initial configuration 1 The computer s connection to the router 2 The router s connection to the telecommunication line s 3 The telecommunication line s connection to your ISP 4 The ISP s connection to the Internet If the connection from the computer to the router ...

Страница 202: ... Characters are missing from some of the configuration screens Try changing the Netopia R7100 s default speed of 9600 bps and setting your terminal emulation software to match the new speed Network problems This section contains tips for troubleshooting a networking problem Problems communicating with remote IP hosts Verify the accuracy of the default gateway s IP address entered in the IP Setup o...

Страница 203: ...ip size Reset Switch slot 3 Carefully insert the larger end of a standard size paper clip until you contact the internal Reset Switch No need to unwind the paper clip 4 Press this switch 5 This will reset the unit to factory defaults and you will now be able to reprogram the router Power outages If you suspect that power was restored after a power outage and the Netopia R7100 is connected to a rem...

Страница 204: ...on appears in the Netopia R7100 s Main Menu screen Model number Serial number Firmware version What kind of local network s do you have with how many devices Ethernet LocalTalk EtherTalk TCP IP IPX Other How to reach us We can help you with your problem more effectively if you have completed the environment profile in the previous section If you contact us by telephone please be ready to supply Ne...

Страница 205: ...ound in the following Netopia World Wide Web server via http www netopia com Internet via anonymous FTP to ftp netopia com pub FAX Back This service provides technical notes that answer the most commonly asked questions and offers solutions for many common problems encountered with Netopia products FAX Back 1 510 814 5040 ...

Страница 206: ...A 6 User s Reference Guide ...

Страница 207: ...network protocol is the Internet Protocol also known as IP Like many other protocols IP uses packets or formatted chunks of data to communicate Note This guide uses the term IP in a very general and inclusive way to identify all of the following Networks that use the Internet Protocol along with accompanying protocols such as TCP UDP and ICMP Packets that include an IP header within their structur...

Страница 208: ...ly Class C networks have a small number of possible host numbers but a large number of possible network numbers Thus the InterNIC assigns Class A addresses to large organizations that have very large numbers of IP hosts while smaller organizations with fewer hosts get Class B or Class C addresses You can tell the various classes apart by the value of the first or high order byte Class A networks u...

Страница 209: ...determine this information simply from an IP address Subnet mask information is configured as part of the process of setting up IP routers and gateways such as the Netopia R7100 Note If you receive a routed account from an ISP there must be a mask associated with your network IP address By using the IP address with the mask you can discover exactly how many IP host addresses you actually have To c...

Страница 210: ... 255 128 mask 192 168 1 2 via router Usable IP Addresses available to Customer Site A 192 168 1 1 192 168 1 126 Netopia R7100 A IP Address 192 168 1 2 Subnet Mask 255 255 255 128 Remote IP 192 168 1 129 Remote Sub 255 255 255 128 Gateway 192 168 1 1 Usable IP Addresses avail able to Customer Site A 192 168 1 1 192 168 1 126 PC 1 IP Address 192 168 1 3 Subnet Mask 255 255 255 128 Gateway 192 168 1 ...

Страница 211: ...ess Customer Site A but not the Internet If it is not possible to define a static route on Router B RIP could be enabled to serve the same purpose To use RIP instead of a static route enable Transmit RIP on Netopia R7100 A and Transmit and Receive RIP on Router B This will allow the route from Customer Site B to propagate on Router B and Customer Site A Example Working with a Class C subnet Suppos...

Страница 212: ...n is helpful in determining dynamic address allocation for a network The term lease describes the action of a workstation requesting and using an IP address The address is dynamic and can be returned to the address pool at a later time The term renew refers to what the workstations do to keep their leased IP address At certain intervals the workstation talks to the DHCP or MacIP server and renews ...

Страница 213: ... requests and renews its lease every half hour The Mac workstation relinquishes its address upon shutdown in all but one case If the TCP IP control panel is set to initialize at startup and no IP services are used or the TCP IP control panel is not opened the DHCP address will NOT be relinquished upon shutdown However if the TCP IP control panel is opened or if an IP application is used the Mac WI...

Страница 214: ...t s why manually distributed addresses are sometimes called static addresses Static addresses are useful in cases when you want to make sure that a host on your network cannot have its address taken away by the address server Appropriate candidates for a static address include a network administrator s computer a computer dedicated to communicating with the Internet and routers Using address servi...

Страница 215: ...e s IP Setup screen This method requires a static value to be used Thus any user dialing in can obtain the same IP address for every connection to the profile If you want to serve addresses statically define the address in the Connection Profile Notes The addresses that are to be served cannot be used elsewhere For example you wouldn t want to define a static address in a Connection Profile to be ...

Страница 216: ...ss 199 1 1 32 is reserved as the network address Address 199 1 1 47 is reserved as the broadcast address This leaves 14 addresses to allocate from 199 1 1 33 through 199 1 1 46 If you want to allocate a sub block of 10 addresses using DHCP enter 10 in the DHCP Setup screen s Number of Addresses to Allocate item Then in the same screen s First Address item enter the first address in the sub block t...

Страница 217: ...k address can be used on your main network while portions of it can be subnetted to the two remaining networks Note The IP address a b c 0 has letters in place of the first three numbers to generalize it for this example The figure at left shows a possible network configuration following this scheme The main network is set up with the Class C address a b c 0 and contains Router A which could be a ...

Страница 218: ...ss The Netopia R7100 compares the packet s destination IP address with the routes in its IP routing table It begins with the route at the bottom of the list and works up until there s a match or the route to the default gateway is reached When a b c 249 is masked by the first route s subnet mask it yields a b c 248 which matches the network address in the route The Netopia R7100 uses the connectio...

Страница 219: ...ckets as well as to packets addressed to their specific individual host addresses Depending on the age and type of IP equipment you use broadcasts will be addressed using either all zeros or all ones but not both If your network requires zeros broadcasting you must configure this through SNMP Packet header types As previously mentioned IP works with other protocols to allow communication over IP n...

Страница 220: ...B 14 User s Reference Guide ...

Страница 221: ...pendix Background NAT is a mechanism employed within the Netopia R7100 to acquire a statically or dynamically assigned IP address on its WAN interface and proxy against locally assigned IP addresses on its LAN interface The Netopia R7100 uses a one to many IP address mapping scheme that is against a single IP address the Netopia R7100 acquires on its WAN interface the Netopia R7100 can proxy 14 30...

Страница 222: ...ified 192 168 X X Class C address range which is used for networks not attached to the Internet This address range is described in RFC 1597 The dynamic IP address acquisition on the WAN interface of the Netopia R7100 is one of several features of NAT Another is the mapping of locally assigned IP addresses to the single globally unique IP address acquired by the Netopia R7100 on its WAN interface N...

Страница 223: ...e IP address is substituted with 200 1 1 40 and the source port is substituted with 5001 then the IP packet checksum is recalculated When this modified packet reaches the WWW server on the Internet the WWW server responds and sends the IP packet back to destination IP address 200 1 1 40 and destination port 5001 When the Netopia R7100 receives this IP packet from the WWW server the Netopia R7100 r...

Страница 224: ... the single globally unique IP address that was acquired on the WAN interface which is 200 1 1 40 Netopia Router WWW Server 163 176 4 32 ISP Router 200 1 1 1 Netopia Router LAN 192 168 5 1 WAN 200 1 1 40 Workstations A B ISP Router to WWW Src IP 200 1 1 40 Dst IP 163 176 4 32 Src Port 5001 Dst Port 80 ISP Router to WWW Src IP 200 1 1 40 Dst IP 163 176 4 32 Src Port 5002 Dst Port 80 WWW to ISP Rout...

Страница 225: ...xported services are essentially user defined pointers for a particular type of incoming TCP or UDP service from the WAN interface to a host on the local LAN interface This is necessary since the Netopia R7100 and thus the attached local LAN has only one IP presence on the WAN interface and Internet Exported services allows the user to redirect one type of service for example Port 21 FTP to a sing...

Страница 226: ...W and FTP servers or AURP partners on the Netopia R7100 s local LAN interface In this case if a dynamic IP address is assigned to the WAN interface of the Netopia R7100 each time the administrator of the Netopia R7100 will have to notify clients who want to access services on the Netopia R7100 s LAN interface of the new IP address after each connection With NAT enabled there cannot be two or more ...

Страница 227: ...for profile matching purposes and because the IP address of the router the Netopia R7100 is dialing is not always known As mentioned earlier in this appendix NAT works well for IP sessions originated on the Netopia R7100 s LAN interface destined for the Internet without any additional configuration For incoming IP connections from the Internet to a host on the Netopia R7100 s LAN interface exporte...

Страница 228: ...s of services can be redirected to a single or multiple hosts For example port 80 WWW server could be redirected to 192 168 5 3 on the Netopia R7100 s LAN interface and port 23 Telnet can be redirected to that same host Summary NAT is a powerful feature of the Netopia R7100 and when used and set up properly can yield a secure network while only using one IP address on the WAN interface Note that t...

Страница 229: ...0 104 1101000 9 1001 41 101001 73 1001001 105 1101001 10 1010 42 101010 74 1001010 106 1101010 11 1011 43 101011 75 1001011 107 1101011 12 1100 44 101100 76 1001100 108 1101100 13 1101 45 101101 77 1001101 109 1101101 14 1110 46 101110 78 1001110 110 1101110 15 1111 47 101111 79 1001111 111 1101111 16 10000 48 110000 80 1010000 112 1110000 17 10001 49 110001 81 1010001 113 1110001 18 10010 50 1100...

Страница 230: ...1 173 10101101 205 11001101 237 11101101 142 10001110 174 10101110 206 11001110 238 11101110 143 10001111 175 10101111 207 11001111 239 11101111 144 10010000 176 10110000 208 11010000 240 11110000 145 10010001 177 10110001 209 11010001 241 11110001 146 10010010 178 10110010 210 11010010 242 11110010 147 10010011 179 10110011 211 11010011 243 11110011 148 10010100 180 10110100 212 11010100 244 1111...

Страница 231: ... T C Brown A Malis Multiprotocol Interconnect over Frame Relay Network Working Group Internet Engineering Task Force RFC 1490 July 1993 Case J D J R Davins M S Fedor and M L Schoffstall Introduction to the Simple Gateway Monitoring Protocol IEEE Network March 1988 Case J D J R Davins M S Fedor and M L Schoffstall Network Management and the Design of SNMP ConneXions The Interoperability Report Vol ...

Страница 232: ... 20 No 14 October 1991 McNamara J E Local Area Networks Digital Press Educational Services Digital Equipment Corporation 12 Crosby Drive Bedford MA 01730 Malamud C Analyzing Novell Networks New York NY Van Nostrand Reinhold 1991 Malamud C Analyzing Sun Networks New York NY Van Nostrand Reinhold 1991 Martin J SNA IBM s Networking Solution Englewood Cliffs NJ Prentice Hall 1987 Martin J with K K Cha...

Страница 233: ...blishing Company 1991 Stallings W Handbook of Computer Communications Standards Vols 1 3 Carmel IN Howard W Sams 1990 Stallings W Local Networks 3rd ed New York NY Macmillan Publishing Company 1990 Stevens W R TCP IP Illustrated Vol 1 Reading MA Addison Wesley Publishing Company 1994 Sunshine C A ed Computer Network Architectures and Protocols 2nd ed New York NY Plenum Press 1989 Tannenbaum A S Co...

Страница 234: ...E 4 User s Reference Guide ...

Страница 235: ... nd d d d S S S Sa a a af f f fe e e et t t ty y y y I I I In n n nf f f fo o o or r r rm m m ma a a at t t ti i i io o o on n n n Pinouts for Auxiliary port modem cable HD 15 DB 25 Pin 1 Ground Pin 1 not used Pin 2 TDA Pin 2 TD Pin 3 TDB Pin 3 RD Pin 4 RDA Pin 4 RTS Pin 5 RDB Pin 5 CTS Pin 6 not used Pin 6 DCE Ready Pin 7 DTR Pin 7 Ground Pin 8 CTS Pin 8 RLSD 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 S...

Страница 236: ...0 to 40 C Storage temperature 0 to 70 C Relative storage humidity 20 to 80 noncondensing Pin 9 DSR Pin 9 RSET EIA 530 Pin 10 DCD Pin 10 not used Pin 11 not used Pin 11 TSET EIA 530 Pin 12 TCA Pin 12 not used Pin 13 TCB Pin 13 not used Pin 14 RCA Pin 14 TD EIA 530 STD EIA 232 Pin 15 RCB Pin 15 not used Pin 16 RD EIA 530 SRD EIA 232 Pin 17 RSET Pin 18 not used Pin 19 RTS EIA 530 SRTS EIA 232 Pin 20 ...

Страница 237: ...stance between this product and other electrical devices United States This equipment has been tested and found to comply with the limits for a Class A digital device pursuant to Part 15 of the FCC Rules These limits are designed to provide reasonable protection against harmful interference when the equipment is operated in a commercial environment This equipment generates uses and can radiate rad...

Страница 238: ...by means of a certified connector assembly telephone extension cord The customer should be aware that compliance with the above conditions may not prevent degradation of service in some situations Repairs to the certified equipment should be made by an authorized Canadian maintenance facility designated by the supplier Any repairs or alterations made by the user to this equipment or equipment malf...

Страница 239: ... using a telephone other than a cordless type during an electrical storm There may be a remote risk of electric shock from lightning Do not use the telephone to report a gas leak in the vicinity of the leak Battery The Netopia R7100 s lithium battery is designed to last for the life of the product The battery is not user ser viceable Caution Danger of explosion if battery is incorrectly replaced R...

Страница 240: ...F 6 User s Reference Guide ...

Страница 241: ...irections Asymmetric DSL Service is better suited for individual consumers who generally require more speed in the download stream web surfing with little data going in the other direction Netopia s SDSL router has fewer implementation issues than ADSL routers It uses 2B1Q line encoding same as T1 or ISDN and this doesn t produce the same noise and interference as ADSL which uses DMT or CAP encodi...

Страница 242: ...ortable with SDSL since it uses the same technology as its predecessor and ISDN The line coding employed by both HDSL and ISDN has not caused any interference with existing services like T1 This means service providers deploy SDSL solutions without worry about impact on other services in neighboring binder groups ...

Страница 243: ...ection points bandwidth The range of frequencies expressed in Kilobits per second that can pass over a given data transmission channel within a network The bandwidth determines the rate at which information can be sent through a channel the greater the bandwidth the more information that can be sent in a given amount of time BAP Bandwidth Allocation Protocol Protocol that manages the dynamic bandw...

Страница 244: ...acters that serve much like passwords for devices using SNMP Different community strings may be used to allow an SNMP user to gather device information or change device configurations CRC Cyclic Redundancy Check A computational means to ensure the integrity of a block of data The mathematical function is computed before the data is transmitted at the originating device Its numerical value is compu...

Страница 245: ...ateways provide address translation services but do not translate data Gateways must be used in conjunction with special software packages that allow computers to use networking protocols not originally designed for them hard seeding A router setting In hard seeding if a router that has just been reset detects a network number or zone name conflict between its configured information and the inform...

Страница 246: ...s Internet related services Most importantly an ISP provides Internet access services and products to other companies and consumers ITU International Telecommunication Union United Nations specialized agency for telecommunications Successor to CCITT LAN local area network A privately owned network that offers high speed communications channels to connect information processing equipment in a limit...

Страница 247: ... pathway but are arranged in proper sequence at the destination side before forwarding the complete message to an addressee packet switching network A telecommunications network based on packet switching technology wherein a transmission channel is occupied only for the duration of the transmission of the packet PAP PPP authentication protocol A method for ensuring secure network access parameter ...

Страница 248: ...eding non seeding seed router and soft seeding seed router A router that provides network number and zone information to any router that starts up on the same network See also hard seeding non seeding seeding and soft seeding serial port A connector on the back of the workstation through which data flows to and from a serial device server A device or system that has been specifically configured to...

Страница 249: ...media such as telephone lines WANs can span a state a country or even the world WAN IP In addition to being a router the Netopia ISDN Router is also an IP address server There are four protocols it can use to distribute IP addresses over the WAN which include DHCP BootP IPCP and MacIP WAN IP is a feature for both the Small Office and Corporate Netopia ISDN Router models wiring closet A central loc...

Страница 250: ...8 User s Reference Guide ...

Страница 251: ...3 2 ports 3 3 basic firewall 13 18 BootP 9 21 clients 9 27 broadcasts B 13 C capabilities 1 1 change static route 9 20 community strings 12 13 configuration troubleshooting PC A 1 configuration files downloading with TFTP 14 8 downloading with XMODEM 14 11 uploading with TFTP 14 9 uploading with XMODEM 14 11 configuration screens protecting 13 2 configuring with console based management 6 1 7 1 8 ...

Страница 252: ... 4 overview 7 1 quick connection path 7 3 Ethernet 4 2 EtherTalk 4 2 event history device 12 7 WAN 12 6 exported services 9 12 F features 1 1 filter parts 13 7 parts of 13 7 filter priority 13 5 filter set adding 13 13 display 13 9 filter sets adding 13 13 defined 13 4 deleting 13 17 disadvantages 13 11 modifying 13 17 sample Basic Firewall 13 17 using 13 12 viewing 13 16 filtering example 1 13 10...

Страница 253: ...us 12 3 LEDs 3 4 12 3 LocalTalk 11 7 connecting 4 6 setup 11 7 M MacIP 9 21 defined B 8 MacIP KIP Forwarding options 9 28 MacIP setup 11 3 MacIP KIP clients 9 28 MacIP KIP static options 9 28 MIBs supported 12 12 multiple subnets 9 15 N NAT defined 9 1 features 9 2 guidelines 9 10 using 9 3 navigating Easy Setup 6 4 navigating through the configuration screens 8 6 NCSA Telnet 6 3 nested IP subnets...

Страница 254: ...3 28 SAP server types 10 3 screens connecting to 8 5 SDSL defined G 1 security filters 13 4 13 20 measures to increase 13 1 telnet 13 4 user accounts passwords 13 1 security options screen 13 2 protecting 13 2 seeding 11 3 Service Advertising Protocol SAP 10 2 Simple Network Management Protocol see SNMP SmartIP 9 1 SmartStart before launching 5 2 requirements Macintosh 5 2 PC 5 2 Windows 95 5 3 Sm...

Страница 255: ...le based management 7 2 event histories 12 5 12 19 WAN statistics 12 4 trusted host 13 19 trusted subnet 13 19 tunneling 11 3 U unproxied addresses 9 1 updating firmware with TFTP 14 7 with XMODEM 14 10 updating Netopia s firmware 14 7 uploading configuration files 14 9 with TFTP 14 9 with XMODEM 14 11 user accounts 13 1 utilities and diagnostics 14 1 W WAN configuration 9 3 event history 12 6 sta...

Страница 256: ...Index 6 ...

Страница 257: ...TNESS FOR A PARTICULAR PURPOSE REGARDING THE ENCLOSED PRODUCT EXCEPT AS OTHERWISE EXPRESSLY PROVIDED ABOVE NETOPIA AND ITS LICENSOR S DO NOT WARRANT GUARANTEE OR MAKE ANY REPRESENTATION REGARDING THE USE OR THE RESULTS OF THE USE OF THE PRODUCT IN TERMS OF ITS CORRECTNESS ACCURACY RELIABILITY CURRENTNESS OR OTHERWISE THE ENTIRE RISK AS TO THE RESULTS AND PERFORMANCE OF THE PRODUCT IS ASSUMED BY YO...

Страница 258: ...2 User s Reference Guide ...

Отзывы: