ZyXEL Communications P650HW Скачать руководство пользователя страница 86 | Manualshive

Страница: 86 / 211

ZyXEL Communications P650HW Скачать руководство пользователя страница 86

Prestige 650HW ADSL Router

5-6

Remote Node TCP/IP Configuration

Each remote node specifies only the network to which the gateway is directly connected and the Prestige
has no knowledge of the networks beyond. For instance, the Prestige knows about network N2 in the
following figure through remote node Router 1. However, the Prestige is unable to route a packet to
network N3 because it does not know that there is a route through remote node Router 1 (via Router 2). The
static routes allow you to tell the Prestige about the networks beyond the remote nodes.

Figure 5-5 Sample Static Routing Topology

Configuration

Step 1.

To configure an IP static route, use

Menu 12

–

Static Route Setup

(shown next).

Figure 5-6 Menu 12 — Static Route Setup

Step 2.

From menu 12, select 1 to open

Menu 12.1

—

IP Static Route Setup

(shown next).

Menu 12 - Static Route Setup

1. IP Static Route

3. Bridge Static Route

Please enter selection:

«
...
84
85
86
87
88
...
»

Содержание P650HW

Страница 1: ...Prestige 650HW ADSL Router User s Guide Version 3 40 June 2002...

Страница 2: ...yXEL Communications Corporation All rights reserved Disclaimer ZyXEL does not assume any liability arising out of the application or use of any products or software described herein Neither does it co...

Страница 3: ...ency energy and if not installed and used in accordance with the instructions may cause harmful interference to radio communications If this equipment does cause harmful interference to radio televisi...

Страница 4: ...purchaser This warranty is in lieu of all other warranties express or implied including any implied warranty of merchantability or fitness for a particular use or purpose ZyXEL shall in no event be he...

Страница 5: ...ions Corp 6 Innovation Road II Science Based Industrial Park Hsinchu 300 Taiwan support zyxel com 1 714 632 0882 800 255 4101 www zyxel com NORTH AMERICA sales zyxel com 1 714 632 0858 ftp zyxel com Z...

Страница 6: ...ons of the Prestige P650HW 2 2 2 2 1 DSL Port 2 3 2 2 2 Four LAN 10 100M Ports 2 4 2 2 3 PCMCIA Wireless Card Slot 2 4 2 2 4 Power Port 2 4 2 2 5 Restore Factory Defaults Reboot Button 2 4 2 3 Additio...

Страница 7: ...ion 3 4 3 4 IP Multicast 3 5 3 5 IP Policies 3 5 3 6 IP Alias 3 5 3 6 1 IP Alias Setup 3 6 3 7 Route IP Setup 3 8 3 8 TCP IP Ethernet Setup and DHCP 3 8 3 9 Wireless LAN 3 11 3 9 1 Wireless LAN Parame...

Страница 8: ...Bridge Static Route Setup 6 2 Chapter 7 Network Address Translation NAT 7 1 7 1 Introduction 7 1 7 1 1 NAT Definitions 7 1 7 1 2 What NAT Does 7 2 7 1 3 How NAT Works 7 2 7 1 4 NAT Application 7 3 7 1...

Страница 9: ...ewing Error Log 10 5 10 3 2 Syslog and Accounting 10 6 10 4 Diagnostic 10 8 Chapter 11 Firmware and Configuration File Maintenance 11 1 11 1 Filename Conventions 11 1 11 2 Backup Configuration 11 2 11...

Страница 10: ...Web 15 1 15 4 Remote Management 15 1 15 4 1 Remote Management Setup 15 2 15 4 2 Remote Management Limitations 15 3 15 5 Remote Management and NAT 15 3 15 6 System Timeout 15 4 ADDITIONAL INFORMATION...

Страница 11: ...p 3 6 Figure 3 5 Menu 3 2 1 IP Alias Setup 3 7 Figure 3 6 Menu 1 General Setup 3 8 Figure 3 7 Menu 3 2 TCP IP and DHCP Ethernet Setup 3 9 Figure 3 8 RTS Threshold 3 12 Figure 3 9 Menu 3 5 Wireless LAN...

Страница 12: ...15 NAT Example 2 7 19 Figure 7 16 Menu 15 2 1 Specifying an Inside Server 7 20 Figure 7 17 NAT Example 3 7 21 Figure 7 18 Example 3 Menu 11 3 7 22 Figure 7 19 Example 3 Menu 15 1 1 1 7 22 Figure 7 20...

Страница 13: ...System Maintenance Upload Firmware 11 7 Figure 11 6 Menu 24 7 1 Upload System Firmware 11 7 Figure 11 7 Menu 24 7 2 System Maintenance 11 8 Figure 11 8 FTP Session Example 11 9 Figure 12 1 Command Mo...

Страница 14: ...IP Static Route Menu Fields 5 7 Table 6 1 Remote Node Bridge Options 6 2 Table 6 2 Edit Bridge Static Route Menu Fields 6 3 Table 7 1 NAT Definitions 7 1 Table 7 2 NAT Mapping Types 7 5 Table 7 3 App...

Страница 15: ...1 IP Routing Policy Setup 13 3 Table 13 2 IP Routing Policy 13 4 Table 14 1 Schedule Set Setup Fields 14 2 Table 15 1 Menu 24 11 Remote Management Control 15 2 Table 16 1 Troubleshooting the Start Up...

Страница 16: ...ission rates of up to 832Kbps and maximum downstream transmission rates of 8Mbps The actual rate depends on the copper category of your telephone wire distance from the central office and the type of...

Страница 17: ...e characters and press the carriage return Select or Choose means for you to select one predefined choices The SMT menu titles and labels are in Bold Times New Roman font Predefined field choices are...

Страница 18: ...am capacity Asymmetrical services ADSL are suitable for Internet users because more information is usually downloaded than uploaded For example a simple button click in a web browser can start an exte...

Страница 19: ...s structured as a step by step guide to help you connect install and set up your Prestige to operate on your network and to access the Internet Described are Key Features and Applications Hardware Ins...

Страница 20: ......

Страница 21: ...ess What s more with the wireless LAN connectivity users can enjoy the convenience and mobility working anywhere within the coverage area 1 2 Features of the Prestige P650HW Your Prestige is packed wi...

Страница 22: ...ch as MS traceroute CuSeeMe IRC RealPlayer VDOLive Quake and PPTP No configuration is needed to support these applications 10 100M Auto negotiation Ethernet Fast Ethernet Interface This auto negotiati...

Страница 23: ...centralized DHCP server The Prestige has built in DHCP server capability enabled by default It can assign IP addresses an IP default gateway and DNS servers to DHCP clients The Prestige can now also...

Страница 24: ...the major ADSL DSLAM Digital Subscriber Line Access Multiplexer providers making configuration as simple as possible for you Multiplexing The Prestige Series supports VC based and LLC based multiplex...

Страница 25: ...upported Supports OAM F4 F5 loop back AIS and RDI OAM cells Other PPPoE Features PPPoE idle time out PPPoE Dial on Demand Diagnostics Capabilities The Prestige can perform self diagnostic tests These...

Страница 26: ...protocol which the Internet uses exclusively It is compatible with all major ADSL DSLAM Digital Subscriber Line Access Multiplexer providers A DSLAM is a rack of ADSL line cards with data multiplexed...

Страница 27: ...Account SUA feature that allows multiple users on the LAN Local Area Network to access the Internet concurrently for the cost of a single IP address 1 3 2 LAN to LAN Application You can use the Presti...

Страница 28: ......

Страница 29: ...Prestige P650HW Front Panel Table 2 1 Front Panel LED Description LED COLOR STATUS DESCRIPTION On The Prestige is receiving power Blinking The Prestige is performing a self test PWR Green Off The Pre...

Страница 30: ...oes not have 100Mb Ethernet connection On The Prestige has successful connection to a WLAN Off WLAN link is not ready or has failed WLAN Green Blinking The Prestige is sending receiving data through t...

Страница 31: ...Panel and Connections 2 2 1 DSL Port Connect the Prestige directly to the wall jack using the included DSL cable Connect a microfilter s between the wall jack and your telephone s A microfilter acts a...

Страница 32: ...d slot and its label side facing upwards slide the PCMCIA wireless LANcard into the slot Never force bend or twist the wireless LAN card into the slot 2 2 4 Power Port Connect the power adapter to the...

Страница 33: ...The purchase of a POTS splitter is optional Noise generated from a telephone in the same frequency range as the ADSL signal can be disruptive to the ADSL signal In addition the impedance of a telepho...

Страница 34: ...microfilter is optional Step 1 Connect a phone cable from the wall jack to the single jack end of the Y Connector Step 2 Connect a cable from the double jack end of the Y Connector to the wall side of...

Страница 35: ...ing Your Prestige For Internet Access Configure your Prestige for Internet access using Web configurator refer to the Read Me First SMT System Management Terminal Access the SMT via LAN or WAN using T...

Страница 36: ...s after you press ENTER prompting you to enter the password as shown next For your first login enter the default password 1234 As you type the password the screen displays an X for each character you...

Страница 37: ...for more information on this 2 Use the Restore Factory Defaults Reboot button on the rear panel of the Prestige to upload the default configuration file hold this button in for more than 3 seconds Us...

Страница 38: ...Prestige 650HW ADSL Router 2 10 Hardware Installation and Initial Setup Figure 2 7 Prestige P650HW SMT Menu Overview...

Страница 39: ...ER or UP DOWN arrow keys Within a menu press ENTER to move to the next field You can also use the UP DOWN arrow keys to move to the previous and the next field respectively Entering information Type i...

Страница 40: ...menu to specify inside servers when NAT is enabled 21 Filter Set Configuration Use this menu to set up filters to provide security etc 22 SNMP Configuration Use this menu to set up SNMP related parame...

Страница 41: ...l Setup contains administrative and system related information shown next The System Name field is for identification purposes However because some ISPs check this name you should enter your computer...

Страница 42: ...address First of all you need to have registered a dynamic DNS account with www dyndns org This is for people with a dynamic IP from their ISP or DHCP server that would still like to have a DNS name...

Страница 43: ...and type sys domainname to see the current domain name used by your gateway If you want to clear this field just press the SPACE BAR The domain name entered by you is given priority over the ISP assig...

Страница 44: ...ter your user name Password Enter the password assigned to you Enable Wildcard Your Prestige supports DYNDNS Wildcard Press SPACE BAR and then ENTER to select Yes or No This field is N A when you choo...

Страница 45: ...ead the Filter Set Configuration chapter first then return to this menu to define the filter sets 2 13 Protocol Dependent Ethernet Setup Depending on the protocols for your applications you need to co...

Страница 46: ......

Страница 47: ...re satisfactory you can skip to TCP IP Ethernet Setup and DHCP to enter the DNS server address es if your ISP gives you explicit DNS server address es If you wish to change the factory defaults or to...

Страница 48: ...d that you select a network number from 192 168 0 0 to 192 168 255 0 ignoring the trailing zero and you must enable the Single User Account feature of the Prestige The Internet Assigned Number Authori...

Страница 49: ...For more information on address assignment please refer to RFC 1597 Address Allocation for Private Internets and RFC 1466 Guidelines for Management of IP Address Space 3 3 3 RIP Setup RIP Routing Info...

Страница 50: ...client machines along with the assigned IP address and subnet mask There are two ways that an ISP disseminates the DNS server addresses The first is for an ISP to tell a customer the DNS server addres...

Страница 51: ...address 224 0 0 2 is assigned to the multicast routers group The Prestige supports both IGMP version 1 IGMP v1 and version 2 IGMP v2 At start up the Prestige queries all directly connected networks to...

Страница 52: ...second and third network Figure 3 4 Menu 3 2 TCP IP and DHCP Setup Pressing ENTER displays Menu 3 2 1 IP Alias Setup as shown next Menu 3 2 TCP IP and DHCP Setup DHCP Setup DHCP Server Client IP Pool...

Страница 53: ...n Only or Out Only None Version Press SPACE BAR to select the RIP version Choices are RIP 1 RIP 2B or RIP 2M RIP 1 Incoming Protocol Filters Enter the filter set s you wish to apply to the incoming tr...

Страница 54: ...General Setup 3 8 TCP IP Ethernet Setup and DHCP Use menu 3 2 to configure your Prestige for TCP IP To edit menu 3 2 enter 3 from the main menu to display Menu 3 Ethernet Setup When menu 3 appears pre...

Страница 55: ...ollowing items need to be set Server default Client IP Pool Starting Address This field specifies the first of the contiguous addresses in the IP address pool 192 168 1 33 Size of Client IP Pool This...

Страница 56: ...g use the subnet mask computed by the Prestige 255 255 255 0 RIP Direction Press SPACE BAR to select the RIP direction Choices are Both In Only Out Only or None Both default Version Press SPACE BAR to...

Страница 57: ...P650HW as an AP in a peer to peer network Extended Service Set ESS is defined as one or more APs that connect to a specific wired Ethernet LAN and their associated wireless clients The ESS ID is a un...

Страница 58: ...will also confirm with the requesting station that the AP has reserved it for the time frame of the requested transmission The RTS function will be activated if the packet size exceeds the value you s...

Страница 59: ...Set IDentification identifies the service set the wireless client is to connect to Wireless clients associating to the Access Point must have the same ESSID Enter a descriptive name up to 32 character...

Страница 60: ...on to prevent unauthorized wireless stations from accessing data transmitted over the wireless network Select Disable allows wireless clients to communicate with the access points without any data enc...

Страница 61: ...llowed Association permits association with the Prestige MAC addresses not listed will be denied access to the router MAC Address Filter Address 1 12 Enter the MAC addresses in XX XX XX XX XX XX forma...

Страница 62: ...3 12 2 LLC based Multiplexing In this case one VC carries multiple protocols with protocol identifying information being contained in each packet header Despite the extra bandwidth and processing over...

Страница 63: ...separate ATM virtual circuit VC based multiplexing Please refer to the RFC for more detailed information 3 14 IP Address Assignment A static IP is a fixed IP that your ISP gives you A dynamic IP is n...

Страница 64: ...know the Ethernet Encapsulation Gateway IP address if you are using ENET ENCAP encapsulation Table 3 6 Internet Account Information FIELD DESCRIPTION YOUR INFO System Name Name of the Prestige option...

Страница 65: ...can send cells This parameter may be lower but not higher than the maximum line speed 1 ATM cell is 53 bytes 424 bits so a maximum speed of 832 Kbps gives a maximum PCR of 1962 cells sec This rate is...

Страница 66: ...our Prestige for Internet access Menu 4 Internet Access Setup ISP s Name MyISP Encapsulation RFC 1483 Multiplexing VC based VPI 8 VCI 35 ATM QoS Type CBR Peak Cell Rate PCR 0 Sustain Cell Rate SCR 0 M...

Страница 67: ...eak Cell Rate PCR This is the maximum rate at which the sender can send cells Type the PCR 0 Sustain Cell Rate SCR 0 Sustained Cell Rate is the mean cell rate of a bursty on off traffic source that ca...

Страница 68: ...re Please see the NAT Chapter for more details on the SUA Single User Account feature SUA Only Address Mapping Set Type the numbers of mapping sets 1 8 to use with NAT See the NAT chapter for details...

Страница 69: ...Advanced Applications II P Pa ar rt t I II I ADVANCED APPLICATIONS This part shows how to configure Remote Node Remote Node TCP IP and NAT...

Страница 70: ......

Страница 71: ...nts both the remote gateway and the network behind it across a WAN connection When you use menu 4 to set up Internet access you are configuring one of the remote nodes 4 1 Remote Node Setup This secti...

Страница 72: ...ombinations in such an application Scenario 1 One VC Multiple Protocols PPP RFC 2364 encapsulation with VC based multiplexing is the best combination because no extra protocol identifying headers are...

Страница 73: ...you specify a nailed up connection The first is that idle timeout is disabled The second is that the Prestige will try to bring up the connection when turned on and whenever the connection is down A...

Страница 74: ...TM Adaptation Layer 5 of ENET ENCAP are selected then the Rem Login Rem Password My Login My Password Edit PPP Options and Authen fields are not applicable N A PPP Multiplexing Press SPACE BAR and the...

Страница 75: ...ode CHAP accept CHAP Challenge Handshake Authentication Protocol only Authen PAP accept PAP Password Authentication Protocol only PAP Route This field determines the protocol used in routing Options a...

Страница 76: ...ion for more details No default Idle Timeout sec Type the number of seconds 0 9999 that can elapse when the Prestige is idle there is no traffic going to the remote node before the Prestige automatica...

Страница 77: ...ss Assignment Press SPACE BAR and then ENTER to select Dynamic if the remote node is using a dynamically assigned IP address or Static if it is using a static fixed IP address You will only be able to...

Страница 78: ...SMT uses NAT server set 1 in menu 15 2 see the NAT chapter for details 2 Metric The metric represents the cost of transmission for routing purposes IP routing uses hop count as the cost measurement wi...

Страница 79: ...ply to the incoming and outgoing traffic between this remote node and the Prestige and also to prevent certain packets from triggering calls You can specify up to 4 filter sets separated by comma for...

Страница 80: ...ing the Internet Security in the Web Configurator all your custom incoming protocol filters will be replaced by rule 11 and 12 Menu 11 5 Remote Node Filter Input Filter Sets protocol filters 11 12 dev...

Страница 81: ...edit Menu 11 6 Remote Node ATM Layer Options In menu 11 1 move the cursor to the Edit ATM Options field and then press SPACE BAR to select Yes Press ENTER to display Menu 11 6 Remote Node ATM Layer O...

Страница 82: ...Wan Addr in menu 11 3 Refer to the previous figure LAN and WAN IPs for a brief review of what a WAN IP is My WAN Addr indicates the local Prestige WAN IP while Rem IP Addr indicates the peer WAN IP M...

Страница 83: ...ds in Menu 11 1 Remote Node Profile as shown in the following table For more details on the IP Option fields refer to Internet Access Table 5 1 TCP IP Related Fields in Menu 11 1 Remote Node Profile F...

Страница 84: ...then type 192 168 1 1 its LAN IP address here 0 0 0 0 default Rem Subnet Mask Type the subnet mask assigned to the remote node 0 0 0 0 default My WAN Addr Some implementations especially UNIX derivat...

Страница 85: ...2 Private This determines if the Prestige will include the route to this remote node in its RIP broadcasts If set to Yes this route is kept private and not included in RIP broadcast If No the route to...

Страница 86: ...a packet to network N3 because it does not know that there is a route through remote node Router 1 via Router 2 The static routes allow you to tell the Prestige about the networks beyond the remote n...

Страница 87: ...e that you chose in menu 12 1 Route Name Type a descriptive name for this route This is for identification purpose only Active This field allows you to activate deactivate this static route Menu 12 1...

Страница 88: ...e a router on the same segment as your Prestige over WAN the gateway must be the IP address of one of the remote nodes Metric Metric represents the cost of transmission for routing purposes IP routing...

Страница 89: ...on bridging unless you need to support protocols other than IP on your network For IP enable the routing if you need it do not bridge what the Prestige can route 6 2 Bridge Ethernet Setup Basically a...

Страница 90: ...nu press ENTER at the prompt Press ENTER to confirm or ESC to cancel to save your configuration or press ESC to cancel and go back to the previous screen 6 2 2 Bridge Static Route Setup Similar to net...

Страница 91: ...Type the MAC address of the destination computer that you want to bridge the packets to IP Address If available type the IP address of the destination computer that you want to bridge the packets to G...

Страница 92: ......

Страница 93: ...ress refers to the IP address of a host when the packet is in the local network while the global address refers to the IP address of the host when the same packet is traveling in the WAN side Note tha...

Страница 94: ...you do not define any servers for Many to One and Many to Many Overload mapping see Table 7 2 NAT offers the additional benefit of firewall protection With no servers defined your Prestige filters out...

Страница 95: ...orks 7 1 4 NAT Application The following figure illustrates a possible NAT application where three inside LANs logical LANs using IP Alias behind the Prestige can communicate with three distinct WAN n...

Страница 96: ...al IP address 2 Many to One In Many to One mode the Prestige maps multiple local IP addresses to one global IP address This is equivalent to SUA for instance PAT port address translation ZyXEL s Singl...

Страница 97: ...ommended that you use the DMZ port for these servers instead Port numbers do not change for One to One and Many to Many No Overload NAT mapping types The following table summarizes these types Table 7...

Страница 98: ...e 2 Choose Full Feature if you have multiple public WAN IP addresses for your Prestige 7 2 2 Applying NAT You apply NAT via menus 4 or 11 3 as displayed next The next figure shows you how to apply NAT...

Страница 99: ...s mapping set that you configure and enter in the Address Mapping Set field menu 15 1 see section 7 3 1 Full Feature Select None to disable NAT None NAT When you select SUA Only the SMT uses Address M...

Страница 100: ...in Table 7 2 When you select SUA Only the SMT will use the pre configured Set 255 read only The Server Set is a list of LAN side servers mapped to external ports To use this set one set for the Presti...

Страница 101: ...s Mapping Sets SUA Address Mapping Set Enter 255 to display the next screen see also section 7 2 1 The fields in this menu cannot be changed Menu 15 1 Address Mapping Sets 1 2 3 4 5 6 7 8 255 SUA read...

Страница 102: ...ss ILA If the rule is for all local IPs then the Start IP is 0 0 0 0 and the End IP is 255 255 255 255 0 0 0 0 255 255 255 255 Global Start IP This is the starting global IP address IGA If you have a...

Страница 103: ...l just look at the differences from the previous menu Note the extra Action and Select Rule fields mean you can configure rules in this screen Note also that the in the Set Name field means that this...

Страница 104: ...ame Enter a name for this set of rules This is a required field If this field is left blank the entire set will be deleted NAT_SET Action The default is Edit Edit means you want to edit a selected rul...

Страница 105: ...e Local IP Only local IP fields are N A for server Global IP fields MUST be set for Server Start This is the starting local IP address ILA 0 0 0 0 End This is the ending local IP address ILA If the ru...

Страница 106: ...range of port numbers to be forwarded and the local IP address of the desired server The port number identifies a service for example web service is on port 80 and FTP on port 21 In some cases such a...

Страница 107: ...xt Transfer protocol or WWW Web 80 POP3 Post Office Protocol 110 NNTP Network News Transport Protocol 119 SNMP Simple Network Management Protocol 161 SNMP trap 162 PPTP Point to Point Tunneling Protoc...

Страница 108: ...forwarded in the End Port No field Menu 15 2 1 NAT Server Setup Rule Start Port No End Port No IP Address 1 Default Default 0 0 0 0 2 21 25 192 168 1 33 3 0 0 0 0 0 0 4 0 0 0 0 0 0 5 0 0 0 0 0 0 6 0...

Страница 109: ...he following figure you have a computer acting as an FTP Telnet and SMTP server ports 21 23 and 25 at 192 168 1 33 Step 6 Press ENTER at the Press ENTER to confirm prompt to save your configuration af...

Страница 110: ...assigned by your ISP Figure 7 13 NAT Example 1 Figure 7 14 Menu 4 Internet Access NAT Example Menu 4 Internet Access Setup ISP s Name ChangeMe Encapsulation RFC 1483 Multiplexing LLC based VPI 1 VCI 1...

Страница 111: ...ad only option from the Network Address Translation field in menus 4 and 11 3 is specifically pre configured to handle this case 7 5 2 Example 2 Internet Access with an Inside Server Figure 7 15 NAT E...

Страница 112: ...st inside FTP server for FTP traffic in both directions 1 1 mapping giving both local and global IP addresses Rule 2 Map the second IGA to our second inside FTP server for FTP traffic in both directio...

Страница 113: ...he main menu Step 3 Enter 1 to configure the Address Mapping Sets Step 4 Enter 1 to begin configuring this new set Enter a Set Name choose the Edit Action and then enter 1 for the Select Rule field Pr...

Страница 114: ...t 10 132 50 1 End N A Server Mapping Set N A Press ENTER to Confirm or ESC to Cancel Press Space Bar to Toggle Menu 11 3 Remote Node Network Layer Options IP Options Bridge Options IP Address Assignme...

Страница 115: ...tup Step 10 Enter 1 in Menu 15 2 NAT Server Sets to see the following menu Configure it as shown Menu 15 1 1 Address Mapping Rules Set Name Example3 Idx Local Start IP Local End IP Global Start IP Glo...

Страница 116: ...as port numbers do not change for Many to Many No Overload and One to One NAT mapping types The following figure illustrates this Figure 7 21 NAT Example 4 Menu 15 2 1 NAT Server Setup Rule Start Port...

Страница 117: ...ing types Follow the steps outlined in example 3 to configure these two menus as follows Figure 7 22 Example 4 Menu 15 1 1 1 Address Mapping Rule After you ve configured your rule you should be able t...

Страница 118: ...Mapping Rules Menu 15 1 1 Address Mapping Rules Set Name Example4 Idx Local Start IP Local End IP Global Start IP Global End IP Type 1 192 168 1 10 192 168 1 12 10 132 50 1 10 132 50 3 M M NO OV 2 3 4...

Страница 119: ...t I II II I ADVANCED MANAGEMENT This part discusses Filtering SNMP System Information and Diagnosis Firmware and Configuration File Maintenance System Maintenance and Information IP Policy Routing Cal...

Страница 120: ......

Страница 121: ...ided into incoming and outgoing filters depending on the direction of the packet relative to a port Data filtering can be applied on either the WAN side or the Ethernet side Call filtering is used to...

Страница 122: ...that follow The following figure illustrates the logic flow when executing a filter rule Data Outgoing Packet Drop packet Built in default Call Filters User defined Call Filters if applicable Initiat...

Страница 123: ...ch Next Filter Set Next Filter Set Available Accept Packet Drop Packet Yes No Yes No Yes Packet intoFilter Filter Set Forward Drop No Check Next Rule Figure 8 2 Filter Rule Process You can apply up to...

Страница 124: ...Set To configure a filter set follow the steps shown next Step 1 Enter 21 in the main menu to display Menu 21 Filter Set Configuration Figure 8 3 Menu 21 Filter Set Configuration Step 2 Type the filt...

Страница 125: ...Filter Rules M m n 1 Y IP Pr 6 SA 0 0 0 0 DA 0 0 0 0 DP 137 N D N 2 Y IP Pr 6 SA 0 0 0 0 DA 0 0 0 0 DP 138 N D N 3 Y IP Pr 6 SA 0 0 0 0 DA 0 0 0 0 DP 139 N D N 4 Y IP Pr 17 SA 0 0 0 0 DA 0 0 0 0 DP 1...

Страница 126: ...s Summary A Type Filter Rules M m n 1 Y IP Pr 6 SA 0 0 0 0 DA 0 0 0 0 DP 23 N D F 2 N 3 N 4 N 5 N 6 N Enter Filter Rule Number 1 6 to Configure Menu 21 4 Filter Rules Summary A Type Filter Rules M m n...

Страница 127: ...viations used in menus 21 1 and 21 2 Menu 21 5 Filter Rules Summary A Type Filter Rules M m n 1 Y IP PR 6 SA 0 0 0 0 DA 0 0 0 0 DP 21 N D F 2 N 3 N 4 N 5 N 6 N Enter Filter Rule Number 1 6 to Configur...

Страница 128: ...fy an action to be taken for instance forward the packet drop the packet or check the next rule For the latter the next rule is independent of the rule just checked m Action Matched F means to forward...

Страница 129: ...same class for instance protocol filters or generic filters The class of a filter set is determined by the first rule that you create When applying the filter sets to a port separate menu fields are p...

Страница 130: ...lt IP Protocol This is the upper layer protocol for example TCP is 6 UDP is 17 and ICMP is 1 The value must be between 0 and 255 A value of O matches ANY protocol 0 to 255 IP Source Route IP Source Ro...

Страница 131: ...d IP mask Port Type the source port of the packets you want to filter The range of this field is 0 to 65535 A 0 field is ignored 0 to 65535 Port Comp Select the comparison to apply to the source port...

Страница 132: ...op Check Next Rule default Action Not Matched Select the action for a packet not matching the rule Choices are Check Next Rule Forward or Drop Check Next Rule default When you have completed this menu...

Страница 133: ...ive Check IP Protocol Drop Drop Packet Accept Packet Drop Forward Check Next Rule Check Next Rule Check Next Rule Forward Not Matched Yes No Check Src IP Addr Apply SrcAddrMask to Src Addr Matched Che...

Страница 134: ...and Value fields are specified in hexadecimal numbers Note that it takes two hexadecimal digits to represent a byte so if the length is 4 the value in either field will take 8 digits for example FFFF...

Страница 135: ...e data portion before comparison Value Type the value in Hexadecimal to compare with the data portion More If Yes a matching packet is passed to the next filter rule before an action is taken or else...

Страница 136: ...on the wire Therefore the Prestige applies the protocol filters to the native IP address and port number before NAT for outgoing packets and after NAT for incoming packets On the other hand the gener...

Страница 137: ...t Filter Step 1 Enter 21 from the main menu to open Menu 21 Filter Set Configuration Step 2 Enter the index number of the filter set you want to configure in this case 3 Step 3 Type a descriptive name...

Страница 138: ...0 0 Port Port Comp None TCP Estab No More No Log None Action Matched Drop Action Not Matched Forward Press ENTER to Confirm or ESC to Cancel Press SPACE BAR to choose this filter rule type The first...

Страница 139: ...ws you where to apply the filter s after you design it them Sets of factory default filter rules have been configured in menu 21 but have not been applied to filter traffic Menu 21 1 Filter Rules Summ...

Страница 140: ...want to apply as appropriate You can choose up to four filter sets from twelve by typing their numbers separated by commas for example 3 4 6 11 The factory default filter set NetBIOS_LAN is inserted i...

Страница 141: ...r PPPoE encapsulation Menu 11 5 Remote Node Filter Input Filter Sets protocol filters 3 device filters Output Filter Sets protocol filters 1 device filters Call Filter Sets Protocol filters Device fil...

Страница 142: ......

Страница 143: ...ocol used for exchanging management information between network devices SNMP is a member of the TCP IP protocol suite Your Prestige supports SNMP agent functionality which allows a manager station to...

Страница 144: ...ing these objects SNMP itself is a simple request response protocol based on the manager agent model The manager issues a request and the agent returns responses using the following protocol operation...

Страница 145: ...estige will only respond to SNMP messages from this address A blank default field means your Prestige will respond to all SNMP messages it receives regardless of source 0 0 0 0 Trap Community Type the...

Страница 146: ...oftware reboot 3 linkUp defined in RFC 1215 A trap is sent with the port number 4 authenticationFailure defined in RFC 1215 A trap is sent to the manager when receiving any SNMP get or set requirement...

Страница 147: ...as shown next System Status is a tool that can be used to monitor your Prestige Specifically it gives you information on your ADSL telephone line status number of packets sent and received To get to...

Страница 148: ...ransmission rate in bytes per second Rx B s Shows the receiving rate in bytes per second Up Time Time this channel has been connected to the current remote node My WAN IP from ISP The IP address of th...

Страница 149: ...line which can be Up or Down Upstream Speed Shows the upstream transfer rate in kbps Downstream Speed Shows the downstream transfer rate in kbps CPU Load Specifies the percentage of CPU utilization 10...

Страница 150: ...yNOS is a registered trademark of ZyXEL Communications Corporation ADSL Chipset Vendor Displays the vendor of the ADSL chipset and DSL version Standard This refers to the operational protocol the Pres...

Страница 151: ...24 type 3 to display Menu 24 3 System Maintenance Log and Trace Figure 10 5 Menu 24 3 System Maintenance Log and Trace Step 3 Enter 1 from Menu 24 3 System Maintenance Log and Trace to display the err...

Страница 152: ...IP Address Type the IP address of your syslog server Log Facility Use SPACE BAR and then ENTER to select one of seven different local options The log facility lets you log the message in different ser...

Страница 153: ...rminated 2 Packet Triggered SdcmdSyslogSend SYSLOG_PKTTRI SYSLOG_NOTICE String String Packet trigger Protocol xx Data xxxxxxxxxx x Protocol 1 IP 2 IPX 3 IPXHC 4 BPDU 5 ATALK 6 IPNG Data We will send f...

Страница 154: ...gnostic Follow the procedure next to get to Diagnostic Step 1 From the main menu type 24 to open Menu 24 System Maintenance Step 2 From this menu type 4 Diagnostic to open Menu 24 4 System Maintenance...

Страница 155: ...s the filenames are similar to those seen next ftp put firmware bin ras This is a sample ftp session showing the transfer of the computer file firmware bin to the Prestige ftp get rom 0 config cfg Thi...

Страница 156: ...bin This is the generic name for the ZyNOS firmware on the Prestige 11 2 Backup Configuration Option 5 from Menu 24 System Maintenance allows you to backup the current Prestige configuration to your...

Страница 157: ...ns Step 7 Enter quit to exit the ftp prompt Figure 11 2 FTP Session Example Menu 24 5 Backup Configuration To transfer the configuration file to your workstation follow the procedure below 1 Launch th...

Страница 158: ...the default remote directory path Initial Local Directory Specify the default local directory path FTP over WAN will not work if you have applied a filter in menu 11 5 WAN to block Telnet service 11...

Страница 159: ...nary transfer mode 11 2 4 Example TFTP Command The following is an example tftp command TFTP i host get rom 0 config rom where i specifies binary image transfer mode use this mode when transferring bi...

Страница 160: ...d Configuration Files Menu 24 7 System Maintenance Upload Firmware allows you to upgrade the firmware and the configuration file WARNING PLEASE WAIT A FEW MINUTES FOR THE PRESTIGE TO RESTART AFTER FIR...

Страница 161: ...lowing screen when you telnet into menu 24 7 2 Menu 24 7 System Maintenance Upload Firmware 1 Upload System Firmware 2 Upload System Configuration File Enter Menu Selection Number Menu 24 7 1 System M...

Страница 162: ...t rom 0 config rom transfers the configuration file on the Prestige to your computer and renames it config rom See earlier in this chapter for more information on filename conventions Step 7 Enter qui...

Страница 163: ...address Step 2 Put the SMT in command interpreter CI mode by entering 8 in Menu 24 System Maintenance Step 3 Enter the command sys stdio 0 to disable the SMT timeout so the TFTP transfer will not be...

Страница 164: ...firmware bin ras where i specifies binary image transfer mode use this mode when transferring binary files host is the Prestige s IP address put transfers the file source on the computer firmware bin...

Страница 165: ...SMT by selecting menu 24 8 See the included disk or the zyxel com web site for more detailed information on CI commands Enter 8 from Menu 24 System Maintenance A list of valid commands can be found by...

Страница 166: ...e dropped and any future outgoing calls will be blocked To access the call control menu select option 9 in menu 24 to go to Menu 24 9 System Maintenance Call Control as shown in the next table Figure...

Страница 167: ...n is selected Table 12 1 Budget Management FIELD DESCRIPTION EXAMPLE Remote Node Enter the index number of the remote node you want to reset just one in this case 1 Connection Time Total Budget This i...

Страница 168: ...nance Time and Date Setting to update the time and date settings of your Prestige as shown in the following screen Figure 12 6 Menu 24 10 System Maintenance Time and Date Setting Menu 24 10 System Mai...

Страница 169: ...f this information Current Time This field displays an updated time only when you reenter this menu New Time Enter the new time in hour minute and second format Current Date This field displays an upd...

Страница 170: ......

Страница 171: ...nable the backbone to prioritize traffic Cost Savings IPPR allows organizations to distribute interactive traffic on high bandwidth high cost paths while using low cost paths for batch traffic Load Sh...

Страница 172: ...x of the policy set you want to configure to open Menu 25 1 IP Routing Policy Setup Menu 25 1 shows the summary of a policy set including the criteria and the action of a single policy and whether a p...

Страница 173: ...6 T NM PR 0 GW 192 168 1 1 T MT PR 0 2 N __________________________________________________________________________ __________________________________________________________________________ 3 N ____...

Страница 174: ...rom Don t Care Normal Min Delay Max Thruput Min Cost or Max Reliable Precedence Precedence value of the incoming packet Press SPACE BAR and then ENTER to select a value from 0 to 7 or Don t Care Packe...

Страница 175: ...he Prestige if it is on the LAN otherwise the gateway must be the IP address of a remote node The default gateway is specified as 0 0 0 0 Type of Service Set the new TOS value of the outgoing packet P...

Страница 176: ...Prestige 650HW ADSL Router 13 6 IP Policy Routing You can choose up to four IP policy sets from 12 by typing their numbers separated by commas for example 2 4 7 9...

Страница 177: ...P Addr 0 0 0 0 Rem Subnet Mask 0 0 0 0 My WAN Addr 0 0 0 0 NAT Full Feature Address Mapping Set 2 Metric 2 Private No RIP Direction Both Version RIP 2B Multicast IGMP v2 IP Policies 2 4 7 9 Press ENTE...

Страница 178: ...Web packets to the Internet using one policy and route FTP packets to a remote network using another policy See the next figure Figure 13 6 Example of IP Policy Routing To force Web packets coming fr...

Страница 179: ...et to route packets from any host IP 0 0 0 0 means any host with protocol TCP and port FTP access through another gateway 192 168 1 100 Menu 25 1 1 IP Routing Policy Policy Set Name set1 Active Yes Cr...

Страница 180: ...ver N A TCP IP Setup IP Address 192 168 1 1 IP Subnet Mask 255 255 255 0 RIP Direction Both Version RIP 1 Multicast None IP Policies 1 2 Edit IP Alias No Press ENTER to Confirm or ESC to Cancel Press...

Страница 181: ...t Figure 14 1 Menu 26 Schedule Setup Lower numbered sets take precedence over higher numbered sets thereby avoiding scheduling conflicts For example if sets 1 2 3 and 4 in are applied in the remote no...

Страница 182: ...IPTION EXAMPLE Active Press SPACE BAR to select Yes or No Choose Yes and press ENTER to activate the schedule set Yes Start Date Enter the start date when you wish the set to take effect in year month...

Страница 183: ...chedule set to take effect in hour minute format 09 00 Duration Enter the maximum length of time this connection is allowed in hour minute format 08 00 Action Forced On means that the connection is ma...

Страница 184: ...Rem Node Name ChangeMe Route IP Active Yes Bridge No Encapsulation PPPoE Edit IP Bridge No Multiplexing VC based Edit ATM Options No Service Name Telco Option Incoming Allocated Budget min 0 Rem Logi...

Страница 185: ...5 2 FTP You can upload and download Prestige firmware and configuration files using FTP To use this feature your computer must have an FTP client 15 3 Web You can use the Prestige s embedded web confi...

Страница 186: ...igure 15 2 Menu 24 11 Remote Management Control Table 15 1 Menu 24 11 Remote Management Control FIELD DESCRIPTION EXAMPLE Telnet Server FTP Server Web Server Each of these read only labels denotes a s...

Страница 187: ...AN will not work when 1 A filter in menu 3 1 LAN or in menu 11 5 WAN is applied to block a Telnet FTP or Web service 2 You have disabled that service in menu 24 11 3 The IP address in the Secured Clie...

Страница 188: ...system timeout of five minutes 300 seconds for Telnet web FTP connections Your Prestige will automatically log you out if you do nothing in this timeout period except when it is continuously updating...

Страница 189: ...Additional Information IV P Pa ar rt t I IV V ADDITIONAL INFORMATION This part contains Troubleshooting Appendices and the Index...

Страница 190: ......

Страница 191: ...ower source are both turned on If the error persists you may have a hardware problem In this case you should contact your vendor 16 2 Problems with the LAN Interface Table 16 2 Troubleshooting the LAN...

Страница 192: ...ield and password in the My Password field in Menu 4 Internet Access Setup I cannot connect to a remote node or ISP Check menu 4 or menu 11 1 to verify the Encapsulation for the remote node 16 4 Probl...

Страница 193: ...rd Refer to the Resetting the Prestige section in the User s Guide for details 16 6 Problems with Telnet Table 16 6 Troubleshooting Telnet PROBLEM CORRECTIVE ACTION Refer to the Remote Management Limi...

Страница 194: ......

Страница 195: ...facilitates the ability to communicate decisions on the fly 5 It provides campus wide networking coverage allowing enterprises the roaming capability to set up easy to use wireless networks that trans...

Страница 196: ...f each other they can set up an independent network which is commonly referred to as an Ad hoc network or Independent Basic Service Set IBSS See the following diagram of an example of an Ad hoc wirele...

Страница 197: ...h the access point The Extended Service Set ESS shown in the next figure consists of a series of overlapping BSSs each containing an access point connected together by means of a Distribution System D...

Страница 198: ...p services using PPP Benefits of PPPoE PPPoE offers the following benefits 1 It provides you with a familiar dial up networking DUN user interface 2 It lessens the burden on the carriers of provisioni...

Страница 199: ...nels the PPP frames to the ISP The L2TP tunnel is capable of carrying multiple PPP sessions With PPPoE the VC Virtual Circuit is equivalent to the dial up connection and is between the modem and the A...

Страница 200: ...en circuit end points Diagram 5 Virtual Circuit Topology Think of a virtual path as a cable that contains a bundle of wires The cable connects two points and wires within the cable provide individual...

Страница 201: ...n 12 W Safety Standards UL CUL CSA UL 1310 CSA C22 2 No 223 NORTH AMERICAN PLUG STANDARDS AC Power Adapter Model DV 121A25 Input Power AC230Volts 60Hz 19W Output Power AC12Volts 1 25A Power Consumptio...

Страница 202: ...indows NT 2000 XP Macintosh OS 7 and later operating systems After the appropriate TCP IP components are installed configure the TCP IP settings in order to communicate with your network Setting up Yo...

Страница 203: ...not know your DNS information select Disable DNS If you know your DNS information select Enable DNS and type the information in the fields below you may not need to fill them all in 4 Click the Gatew...

Страница 204: ...m 5 Click Advanced If you do not know your gateway s IP address remove any previously installed gateways in the IP Settings tab and click OK 6 Click OK to save and close the Internet Protocol TCP IP P...

Страница 205: ...ay you want to add Click OK when finished 5 In the Internet Protocol TCP IP Properties window s General tab Click Obtain DNS server address automatically if you do not know your DNS server IP address...

Страница 206: ...Manually Type your IP address in the IP Address box Type your subnet mask in the Subnet mask box Type the IP address of your Prestige in the Router address box 5 Close the TCP IP Control Panel 6 Click...

Страница 207: ...Command Interpreter Mode 12 1 Community 9 2 Computer Name 2 13 Connecting the Prestige 2 3 Connections Additional Requirements 2 4 ADSL Line 2 3 Power Adapter 2 4 Rear Panel 2 2 Copyright ii Cost Of T...

Страница 208: ...s Summary Sample 8 19 Filter Set Class 8 9 Filter Set Configuration 8 4 Filtering 8 1 8 9 Filtering Process Outgoing Packets 8 2 Fragment Threshold 3 14 Fragmentation Threshold 3 12 Frame Relay 1 6 Fr...

Страница 209: ...Filter 3 15 MAC Address Filter Action 3 15 Main Menu 2 11 Management Information Base MIB 9 2 MBS See Maximum Burst Size Media Access Control 6 1 Message Logging 10 5 Metric 4 8 5 5 5 8 Multicast 4 8...

Страница 210: ...5 5 See Routing Information Protocol Routing Information Protocol 3 3 Direction 3 3 Version 3 3 Routing Policy 13 1 RTS See Request to Send RTS Threshold 3 11 3 14 S Sample IP Addresses 5 2 Schedule S...

Страница 211: ...TFTP And FTP Over WAN 15 3 Restrictions 15 3 TFTP File Transfer 11 9 Time and Date Setting 12 4 12 5 Time Zone 12 5 To avoid damage to the Prestige 2 4 TOS Type of Service 13 1 Trace Records 10 5 Tran...

Отзывы:

Нет отзывов