ZyXEL Communications VSG-1200 Скачать руководство пользователя страница 66 | Manualshive

Страница: 66 / 280

ZyXEL Communications VSG-1200 Скачать руководство пользователя страница 66

VSG-1200 User’s Guide

66

Chapter 5 NAT Pool

5.1.2 What NAT Does

In the simplest form, NAT changes the source IP address in a packet received from a
subscriber (the inside local address) to another (the inside global address) before forwarding
the packet to the WAN side. When the response comes back, NAT translates the destination
address (the inside global address) back to the inside local address before forwarding it to the
original inside host. Note that the IP address (either local or global) of an outside host is never
changed.

The global IP addresses for the inside hosts can be either static or dynamically assigned by the
ISP. In addition, you can designate servers, for example, a web server and a telnet server, on
your local network and make them accessible to the outside world. If you do not define any
servers, NAT offers the additional benefit of firewall protection. With no servers defined,
your VSG filters out all incoming inquiries, thus preventing intruders from probing your
network. For more information on IP address translation, refer to

RFC 1631

,

The IP Network

Address Translator (NAT)

.

5.1.3 How NAT Works

Each packet has two addresses – a source address and a destination address. For outgoing
packets, the ILA (Inside Local Address) is the source address on the LAN, and the IGA (Inside
Global Address) is the source address on the WAN. For incoming packets, the ILA is the
destination address on the LAN, and the IGA is the destination address on the WAN. NAT
maps private (local) IP addresses to globally unique ones required for communication with
hosts on other networks. It replaces the original IP source address in each packet and then
forwards it to the Internet. The VSG keeps track of the original addresses and port numbers so
incoming reply packets can have their original values restored.

5.2 VPN and NAT

A VPN (Virtual Private Network) provides secure communications between sites without the
expense of leased site-to-site lines. A secure VPN is a combination of tunneling, encryption,
authentication, access control and auditing technologies/services used to transport traffic over
the Internet or any insecure network that uses the TCP/IP protocol suite for communication.

The VSG allows subscribers to create a VPN tunnel to a remote site.

By default, the VSG performs NAT on the LAN; mapping multiple private LAN addresses to
a single public address on the WAN. This prevents subscribers from creating multiple VPN
connections to a remote VPN device that allows only one VPN connection per source IP
address.

Note:

For IPSec, the VSG does not support AH protocol.

«
...
64
65
66
67
68
...
»

Содержание VSG-1200

Страница 1: ...VSG 1200 Vantage Service Gateway User s Guide Version 1 08 1 2006 ...

Страница 2: ...EL Communications Corporation All rights reserved Disclaimer ZyXEL does not assume any liability arising out of the application or use of any products or software described herein Neither does it convey any license under its patent rights nor the patent rights of others ZyXEL further reserves the right to make changes in any products described herein without notice This publication is subject to c...

Страница 3: ... accordance with the instructions may cause harmful interference to radio communications If this equipment does cause harmful interference to radio television reception which can be determined by turning the equipment off and on the user is encouraged to try to correct the interference by one or more of the following measures Reorient or relocate the receiving antenna Increase the separation betwe...

Страница 4: ...ent as provided under this warranty is the exclusive remedy of the purchaser This warranty is in lieu of all other warranties express or implied including any implied warranty of merchantability or fitness for a particular use or purpose ZyXEL shall in no event be held liable for indirect or consequential damages of any kind to the purchaser To obtain the services of this warranty contact ZyXEL s ...

Страница 5: ...e the risk of fire use only No 26 AWG or larger telephone wire 2 Do not use this product near water for example in a wet basement or near a swimming pool 3 Avoid using this product during an electrical storm There may be a remote risk of electric shock from lightening ...

Страница 6: ...rk sales zyxel dk 45 39 55 07 07 FINLAND support zyxel fi 358 9 4780 8411 www zyxel fi ZyXEL Communications Oy Malminkaari 10 00700 Helsinki Finland sales zyxel fi 358 9 4780 8448 FRANCE info zyxel fr 33 4 72 52 97 97 www zyxel fr ZyXEL France 1 rue des Vergers Bat 1 C 69760 Limonest France 33 4 72 52 19 20 GERMANY support zyxel de 49 2405 6909 0 www zyxel de ZyXEL Deutschland GmbH Adenauerstr 20 ...

Страница 7: ...rt zyxel se 46 31 744 7700 www zyxel se ZyXEL Communications A S Sjöporten 4 41764 Göteborg Sweden sales zyxel se 46 31 744 7701 UKRAINE support ua zyxel com 380 44 247 69 78 www ua zyxel com ZyXEL Ukraine 13 Pimonenko Str Kiev 04050 Ukraine sales ua zyxel com 380 44 494 49 32 UNITED KINGDOM support zyxel co uk 44 1344 303044 08707 555779 UK only www zyxel co uk ZyXEL Communications UK Ltd 11 The ...

Страница 8: ...VSG 1200 User s Guide 8 Customer Support ...

Страница 9: ...ures 29 1 3 Applications 33 1 3 1 Internet Access for LAN Networks 33 1 3 2 Internet Access in Public Areas 33 1 3 3 Hotel Application with PMS 34 Chapter 2 Hardware Installation and Connection 35 2 1 Installation Options 35 2 1 1 Desktop Installation 35 2 1 2 Rack Mount Installation 35 2 2 Hardware Connections 36 2 2 1 Front Panel 36 2 2 1 1 Four LAN 10 100M Ports 37 2 2 1 2 The WAN Port 37 2 2 1...

Страница 10: ... 3 8 Restarting the VSG 50 3 9 Logging Out of the Web Configurator 51 Chapter 4 LAN WAN and Server Setup 53 4 1 Factory Ethernet Defaults 53 4 2 LANs and WANs 53 4 3 IP Address Assignment 53 4 4 DHCP Configuration 53 4 4 1 IP Address and Subnet Mask 54 4 4 2 Private IP Addresses 54 4 5 DNS Server Address 55 4 6 LAN Configuration 55 4 7 WAN Configuration 56 4 7 1 Configuring WAN MAC Address 56 4 7 ...

Страница 11: ...79 7 1 About Billing Profiles 79 7 1 1 Creating a Billing Profile 79 7 1 2 Editing a Billing Profile 80 7 2 PMS Property Management System 82 7 2 1 Port Location Mapping Charge Modes 82 7 2 2 PMS Configuration 83 7 3 Types of Subscriber Accounts 84 Chapter 8 Static Subscriber Accounts 85 8 1 About Static Subscriber Accounts 85 8 2 Global Static Account Settings 85 8 3 Creating a Static Account 86 ...

Страница 12: ...ling Overview 107 11 1 1 How Credit Card Billing Works 107 11 1 2 Configuration Steps 107 11 2 Setting up Credit Card Billing Service 108 11 3 Customizing Subscriber Credit Card Information Screen 109 11 3 1 Subscriber Standard Login Page Message 109 11 3 2 Service Selection Page 110 11 3 3 Successful Screen 113 11 3 4 Fail Page 115 Chapter 12 Subscriber Login Screen 117 12 1 About the Subscriber ...

Страница 13: ...idth Management 143 Chapter 17 Portal Page Advertisement Link and Walled Garden 145 17 1 Introduction 145 17 2 Portal Page 145 17 3 Advertisement Links 146 17 4 Walled Garden 147 Chapter 18 Passthrough 149 18 1 About the Passthrough 149 18 2 Configuring Passthrough 149 18 2 1 Subscriber Computer Passthrough 149 18 2 2 Destination URL and IP Address Passthrough 151 Chapter 19 LAN Devices 153 19 1 L...

Страница 14: ...5 23 2 Configuring the MAC Filter 175 Chapter 24 System Status 177 24 1 About System Status 177 24 2 View System Information 177 24 3 Current User List 180 24 4 DHCP Clients 181 24 5 Session List 181 24 6 NAT Pool Table 182 24 7 LAN Device Status 183 24 7 1 Accessing the LAN Device 184 24 8 Billing Logs 184 24 8 1 Billing Logs Backup 185 24 9 PMS Transaction 187 24 10 Static Route Table 187 Chapte...

Страница 15: ...PPoE Support 208 27 2 3 PPTP Support 209 27 3 LAN Configuration 211 27 4 View Current Configuration 212 Chapter 28 Configuration and Firmware Maintenance 215 28 1 Filename Convention 215 28 2 Firmware Upgrade 215 28 2 1 Firmware Upgrade Using the Web Configurator 215 28 2 1 1 Manual Firmware Upgrade 216 28 2 1 2 Manual Firmware Upgrade via a TFTP Server 216 28 2 1 3 Scheduled Firmware Upgrade 217 ...

Страница 16: ...nt Printer 230 Appendix A Product Specifications 231 Appendix B IP Address Assignment Conflicts 233 Appendix C Subscriber Login 237 Appendix D Vendor Specific Attributes 239 Appendix E Report Printing Using the SP 200 243 Appendix F Cable Types and Cable Pin Assignments 249 Appendix G Setting up Your Computer s IP Address 253 Appendix H IP Subnetting 265 Index 273 ...

Страница 17: ... 51 Figure 18 System Setting WAN LAN LAN Configuration 55 Figure 19 System Setting WAN LAN WAN MAC Address 56 Figure 20 System Setting WAN LAN WAN IP 57 Figure 21 System Setting WAN LAN PPPoE 59 Figure 22 System Setting WAN LAN PPTP 60 Figure 23 System Setting Server 62 Figure 24 NAT Example One to One 67 Figure 25 NAT Example Many to One 68 Figure 26 NAT Example One to One and Many to One 68 Figu...

Страница 18: ...it Card Customization Standard Login Screen Message 110 Figure 60 Credit Card Customization Standard Login Screen Message Preview 110 Figure 61 Credit Card Customization Service Selection Page 111 Figure 62 Credit Card Customization Service Selection Page Preview 113 Figure 63 Credit Card Customization Successful Page 114 Figure 64 Credit Card Customization Successful Page Preview 115 Figure 65 Cr...

Страница 19: ...gement Example 1 155 Figure 99 LAN Devices Example 1 156 Figure 100 LAN Device Remote Management Example 2 156 Figure 101 LAN Devices Example 2 156 Figure 102 Sample Static Routing Topology 159 Figure 103 Advanced Static Route 160 Figure 104 Logs Syslog 163 Figure 105 Logs Log Settings 165 Figure 106 Advanced Session Trace 168 Figure 107 Session Trace Information Example 169 Figure 108 SNMP Manage...

Страница 20: ...gure 143 SMT WAN Configuration Static or Dynamic IP Address 207 Figure 144 SMT WAN Configuration PPPoE 208 Figure 145 SMT WAN Configuration PPTP 210 Figure 146 SMT LAN Configuration 211 Figure 147 SMT System Status 212 Figure 148 Firmware Upgrade Links 216 Figure 149 Firmware Upgrade Manual 216 Figure 150 Web Configurator Firmware Upgrade Successful 216 Figure 151 Firmware Upgrade Manual Using a T...

Страница 21: ... Connector 251 Figure 178 WIndows 95 98 Me Network Configuration 254 Figure 179 Windows 95 98 Me TCP IP Properties IP Address 255 Figure 180 Windows 95 98 Me TCP IP Properties DNS Configuration 256 Figure 181 Windows XP Start Menu 257 Figure 182 Windows XP Control Panel 257 Figure 183 Windows XP Control Panel Network Connections Properties 258 Figure 184 Windows XP Local Area Connection Properties...

Страница 22: ...VSG 1200 User s Guide 22 List of Figures ...

Страница 23: ... 19 System Setting Billing Billing Profile 80 Table 20 System Setting Billing Billing Profile Setting 81 Table 21 System Setting Billing PMS Configuration 84 Table 22 Static Account Settings Global Settings 86 Table 23 Create Static Subscriber Account Generate Automatically 88 Table 24 Create Static Subscriber Account Manual 89 Table 25 Static Account Operator 92 Table 26 Static Account List 94 Ta...

Страница 24: ... 180 Table 59 DHCP Clients 181 Table 60 Session List 182 Table 61 NAT Pool Table 183 Table 62 System Status LAN Device Status 183 Table 63 System Status Billing Log 185 Table 64 System Status Static Route Table 188 Table 65 SSL Certificate Download 190 Table 66 SMT Main Menu 201 Table 67 SMT Control Key Descriptions 202 Table 68 SMT System Configuration 202 Table 69 SMT WAN Configuration Static or...

Страница 25: ...248 Table 91 Network Cable Types 249 Table 92 WAN Port Cable Ping Assignments 249 Table 93 LAN Port Cable Pin Assignments 250 Table 94 Console Port Pin Assignment 251 Table 95 DB25 Male to DB9 Male Connector Ping Assignment 251 Table 96 Classes of IP Addresses 265 Table 97 Allowed IP Address Range By Class 266 Table 98 Natural Masks 266 Table 99 Alternative Subnet Mask Notation 267 Table 100 Two S...

Страница 26: ...VSG 1200 User s Guide 26 List of Tables ...

Страница 27: ... for improvement to techwriters zyxel com tw or send regular mail to The Technical Writing Team ZyXEL Communications Corp 6 Innovation Road II Science Based Industrial Park Hsinchu 300 Taiwan Thank you Syntax Conventions Enter means for you to type one or more characters Select or Choose means for you to use one of the predefined choices Command and arrow keys are enclosed in square brackets ENTER...

Страница 28: ...VSG 1200 User s Guide 28 Preface Graphics Icons Key Vantage Service Gateway Computer Notebook computer Server DSLAM Firewall Telephone Switch Router Statement Printer SP 200 Access Point ...

Страница 29: ...illing with Property Management System PMS Many hotels use a PMS to perform in room billing of services the guests use such as room service mini bar pay per view TV or telephone usage The VSG supports PMS from Micros Fidelios CAS Central Authentication Service The Hilton Group Corporation developed the High Speed Internet Access HSIA service to provide Internet access service across its entire Hil...

Страница 30: ... Network VPN using a TCP IP based network PPTP supports on demand multi protocol and virtual private networking over public networks such as the Internet Subscribers can use PPTP to connect to a broadband modem to achieve access to high speed data networks via a familiar dialup networking user interface 4 Port Switch A combination of switch and Internet gateway makes your VSG a cost effective and ...

Страница 31: ... page per subscriber Built in Authentication and Local Subscriber Database The VSG allows you to maintain a subscriber database on the VSG without setting up an external RADIUS server Subscriber accounting and authentication can be done using the local subscriber database Accounting Accounting can be done using an external RADIUS server or the built in accounting feature Local Content and Advertis...

Страница 32: ...stomize the subscriber login page according to your business needs The advanced settings allow you to include welcome messages a company logo and basic formatting Dual function Console Port The VSG provides a console port for local management You can also set this console port to act as the printer port when connected to an external statement printer Web Configurator Management The VSG comes with ...

Страница 33: ...gure 1 Application Internet Access for LAN Networks 1 3 2 Internet Access in Public Areas In public areas such as a hotel the VSG provides high speed Internet access to subscribers Account billing and authentication can be done either using an external RADIUS server or the built in billing function and local subscriber database Connect an access point AP to bridge the wired and the wireless networ...

Страница 34: ...our VSG 1 3 3 Hotel Application with PMS The following figure depicts an example where the VSG is used in a hotel to provide Internet service as one of their in room services Billing is done through an existing PMS in the hotel Figure 3 Application Hotel ...

Страница 35: ...n and the attachment of cables and the power cord 3 Attach the rubber feet to each corner on the bottom of the VSG These rubber feet help protect the VSG from shock or vibration and ensure space between devices when stacking 2 1 2 Rack Mount Installation The VSG can be mounted on an EIA standard size 19 inch rack or in a wiring closet with other equipment Follow the steps below to mount your VSG o...

Страница 36: ...rack by lining up the holes in the brackets with the appropriate holes on the rack Secure the VSG to the rack with rack mounting screws Figure 5 Rack Mount Securing to the Rack 2 2 Hardware Connections The following sections describe the hardware connections of the VSG 2 2 1 Front Panel The console LAN and WAN ports the reset button and the LEDs are located on the front panel ...

Страница 37: ...aight through Ethernet cable to connect your VSG to a router 2 2 1 3 The Console Port You can perform local management of the VSG through the port labeled CONSOLE It requires a direct connection between the VSG and a computer via a console cable Refer to chapters on SMT configurations for more information You can also connect the CONSOLE port to a statement printer the SP 200 sold separately with ...

Страница 38: ...names and passwords will be erased This will NOT delete the subscriber database or the port location mappings Table 1 Front Panel LEDs LED STATUS DESCRIPTION PWR On The VSG is receiving power Off The VSG is not receiving power ALARM On Red There is a hardware failure Blink Once Red The system is starting up Off The system is functioning normally LAN or WAN LK ACT On The port is connected to an Eth...

Страница 39: ... panel turns on 2 2 5 Methods of Restoring Factory Defaults You can erase the current configuration and restore factory defaults in two ways Use the RESET button on the front panel of the VSG press this button once Use this method for cases when the username password and IP addresses of the VSG is not known Use the web configurator to restore defaults refer to Section 26 8 Reset the VSG to Factory...

Страница 40: ...VSG 1200 User s Guide 40 Chapter 2 Hardware Installation and Connection ...

Страница 41: ... Connection on page 35 2 Launch your web browser and type the WAN or LAN IP address of the VSG as the web site address 192 168 1 1 is the default IP address for the WAN port and 10 59 1 1 is the default IP address for the LAN port 3 If you are using a different port number between 8000 and 8099 for the web server you must also append the port number to the WAN IP address separated with a colon for...

Страница 42: ...ain Menu Note The user name and password are case sensitive Note Please note that if there is no activity for longer than five minutes after you log in the VSG will automatically log you out If this happens simply log back in again You can change the timeout period in the web configurator refer to Section 4 8 Server Configuration on page 61 Firmware version ...

Страница 43: ... The Configuration Menu panel on the left of all web pages provides a consistent way to access the configuration screens Click each heading to expand the menu Figure 11 Navigation Panel 3 3 2 Screen Specific Link Panel In some screens a link panel displays on the top of the screen that allows you to navigate to advanced configuration screens An example is shown in the figure below Figure 12 Naviga...

Страница 44: ...u access the web configurator The Domain Name entry is what is propagated to the DHCP clients on the LAN If you leave this blank the domain name obtained by a DHCP server is used While you must enter the host name System Name on each individual computer the domain name can be assigned from the VSG via DHCP Table 2 Web Configurator Screen Overview SYSTEM SETTING ADVANCED SETTINGS SYSTEM STATUS SYST...

Страница 45: ...VSG 1200 User s Guide Chapter 3 The Web Configurator 45 Figure 13 System Setting System ...

Страница 46: ...updates Daylight Savings Select this option if you use daylight savings time Daylight saving is a period from late spring to early fall when many countries set their clocks ahead of normal local time by one hour to give more daytime light in the evening Start Date Specify the month and day that your daylight savings time starts on if you select Daylight Savings End Date Specify the month and day t...

Страница 47: ...rop down list box Choices are 1200 2400 4800 9600 14400 19200 38400 57600 and 115200 The default selection is 9600 Data bits Select a data bit from the drop down list box Parity Select the parity from the drop down list box Stop bits Select the stop bit from the drop down list box Administrator Authorized Access IP Address Select Any to use any computer to access the web configurator on the VSG Se...

Страница 48: ...nt password You can also edit the Advanced Setting Portal Page Advertisement and Walled Garden screens The default user name and password are supervisor The super subscriber account is used for testing the Internet connection between the VSG and the ISP There is no time limitation or billing imposed on this account Thus anyone who logs in with this account is able to gain Internet access for free ...

Страница 49: ...t is account Password Enter a new account manager password Confirm Enter the new account manager password again for confirmation Supervisor Account This account allows you to view system status only Username Enter the user name for the supervisor account The default is supervisor Password Enter a new supervisor password Confirm Enter the new supervisor password again for confirmation Super Subscri...

Страница 50: ...ber account information select Keep subscriber profile and or Keep port location mapping profile 4 Click Apply 5 Wait for the VSG to finish restarting before accessing the VSG again 3 8 Restarting the VSG In the Main Menu screen click System Tools Restart and click Apply Figure 16 System Tools Restart Note You must restart the VSG every time you change the system IP address or upload a firmware or...

Страница 51: ...s Guide Chapter 3 The Web Configurator 51 3 9 Logging Out of the Web Configurator In the Main Menu screen click System Tools Logout and click Apply to exit from the web configurator Figure 17 System Tools Logging Out ...

Страница 52: ...VSG 1200 User s Guide 52 Chapter 3 The Web Configurator ...

Страница 53: ...loor of a building A WAN Wide Area Network on the other hand is an outside connection to another network or the Internet 4 3 IP Address Assignment A static IP is a fixed IP that you configure on the VSG A dynamic IP is not fixed the DHCP server provides an IP address to the VSG each time it connects to the network When an Ethernet device is configured to obtain a dynamic IP address from a DHCP ser...

Страница 54: ...twork number portion of an IP address 4 4 2 Private IP Addresses Every machine on the Internet must have a unique address If your networks are isolated from the Internet for example only between your two branch offices you can assign any IP addresses to the hosts without problems However the Internet Assigned Numbers Authority IANA has reserved the following three blocks of IP addresses specifical...

Страница 55: ...S server addresses The first is for an ISP to tell a customer the DNS server addresses usually in the form of an information sheet when s he signs up The second is to obtain the DNS server information automatically when a computer is set as a DHCP client 4 6 LAN Configuration To configure the LAN settings on the VSG click System Setting and WAN LAN to display the screen as shown Figure 18 System S...

Страница 56: ...ddress of a computer on the LAN Figure 19 System Setting WAN LAN WAN MAC Address The following table describes the related field in this screen Note You must restart the VSG if you change the IP address If you set the VSG as a DHCP server on the LAN the VSG will automatically change the LAN DHCP settings based on the new LAN IP address Table 6 System Setting WAN LAN WAN MAC Address FIELD DESCRIPTI...

Страница 57: ...arge a packet Too small an MTU size means relatively more header overhead and more acknowledgements that have to be sent and handled 4 7 3 WAN IP Address Settings Use the WAN LAN screen to change the WAN IP address settings Figure 20 System Setting WAN LAN WAN IP The following table describes the related labels in this screen Table 7 System Setting WAN LAN WAN IP FIELD DESCRIPTION WAN Port Mode Ge...

Страница 58: ... known as dynamic service selection This enables the service provider to easily create and offer new IP services for specific users Operationally PPPoE saves significant effort for both the subscriber and the ISP carrier as it requires no specific configuration of the broadband modem at the subscriber s site By implementing PPPoE directly on the VSG rather than individual computers the computers o...

Страница 59: ...d associated with the user name above PPP MTU Setting Enter the size of a Maximum Transmission Unit MTU TCP MSS Setting Enter the size of the Maximum Segment Size MSS Service Name Enter the name of your PPPoE service Connect on Demand Select this option when you don t want the connection up all the time and specify an idle timeout in the Max Idle Time field maximum 65535 minutes This is the defaul...

Страница 60: ... is a network protocol that enables transfers of data from a remote client to a private server creating a Virtual Private Network VPN using TCP IP based networks PPTP supports on demand multi protocol and virtual private networking over public networks such as the Internet Figure 22 System Setting WAN LAN PPTP ...

Страница 61: ... Enter the user name exactly as your ISP assigned If assigned a name in the form user domain where domain identifies a service name then enter both components exactly as given Password Enter the password associated with the user name above PPP MTU Setting Enter the size of a Maximum Transmission Unit MTU TCP MSS Setting Enter the size of the Maximum Segment Size MSS Connections ID Name Enter your ...

Страница 62: ...configurator For example if you enter 8010 as the web server port number then you must enter http www 192 168 1 1 8010 where 192 168 1 1 is the WAN or LAN port IP address SSL Security Secure Socket Layer SSL security allows you to create a secure connection between the VSG and the client computer s Refer to Chapter 25 Secure Socket Layer on page 189 for more information Select this option to activ...

Страница 63: ... Enter a number not greater than 1024 The default is 253 Lease Time Specify the time in minutes between 1 and 71582788 a DHCP client is allowed to use an assigned IP address When the lease time expires the DHCP client is given a new unused IP address Primary Secondary DNS IP Address Enter the IP address of the DNS server s in the Primary DNS IP Address and or Secondary DNS IP Address fields Note Y...

Страница 64: ...VSG 1200 User s Guide 64 Chapter 4 LAN WAN and Server Setup ...

Страница 65: ...ess of a host when the packet is in the local network while the global address refers to the IP address of the host when the same packet is traveling in the WAN side Note that inside outside refers to the location of a host while global local refers to the IP address of a host used in a packet Thus an inside local address ILA is the IP address of an inside host in a packet when the packet is still...

Страница 66: ...dress For outgoing packets the ILA Inside Local Address is the source address on the LAN and the IGA Inside Global Address is the source address on the WAN For incoming packets the ILA is the destination address on the LAN and the IGA is the destination address on the WAN NAT maps private local IP addresses to globally unique ones required for communication with hosts on other networks It replaces...

Страница 67: ... where the two subscribers S1 and S2 tries to establish secure VPN connections to the same VPN server V1 at the same time For example the VSG is using a public IP address of 211 21 21 12 In this case the VSG performs One to One IP address translation on the WAN Figure 24 NAT Example One to One The following table shows the address mapping Table 12 WAN NAT Mapping Types for VPN TYPE DESCRIPTION One...

Страница 68: ...he address mapping 5 3 3 Example 3 One to One and Many to One The figure below shows an example where subscriber S1 tires to connect to VPN server V1 while subscriber S2 and S3 try to connect to the same VPN server V2 at the same time In this case subscribers S1 and S2 map to the same WAN IP address since the destination is different while subscriber S3 maps to a different WAN IP address Figure 26...

Страница 69: ...ng table describes the labels in this screen Table 15 NAT Example One to One and Many to One SUBSCRIBER ORIGINAL SOURCE IP TRANSLATED SOURCE IP S1 10 59 1 2 211 21 21 2 S2 10 59 1 3 211 21 21 2 S3 10 59 1 4 211 21 21 3 Note You only need to set the NAT address pool if the remote VPN server s allows only one connection per source IP address Note You need to acquire additional public IP address es f...

Страница 70: ...l for VPN connections Start End IP Specify the beginning and ending IP addresses of the address pool in the fields provided and click Add to List The following shows NAT pool examples if the VSG is using a WAN public IP address of 211 21 21 1 Group 1 211 21 21 2 211 21 21 6 five IP addresses Group 2 211 21 21 20 211 21 21 29 ten IP addresses Group 3 211 21 21 60 211 21 21 69 ten IP addresses Group...

Страница 71: ...ion is not required and anyone can access the Internet through the VSG you can set the VSG to require users to accept a service usage agreement before they can access the Internet 6 1 2 CAS Central Authentication Service The Hilton Group Corporation developed the High Speed Internet Access HSIA service to provide Internet access service across its entire Hilton Group hotels In order to use the HSI...

Страница 72: ...s using the Internet for the first 20 minutes and then disconnects Internet access to go to a 20 minute meeting Then he only has 20 minutes left on his account 6 1 4 Built in Authentication The built in authentication method is useful if you do not have a RADIUS server You can use the built in subscriber database to manage the subscribers With the built in authentication the VSG provides three set...

Страница 73: ...imit Download bandwidth per subscriber Limit Upload bandwidth per subscriber Limit Total traffic bandwidth allowed per subscriber Specify advertising web site per subscriber Enable disable SMTP redirect 6 2 Authentication Settings To configure the subscriber authentication method click System Setting and Authentication to display the screen as shown next Note Before you can make use of these funct...

Страница 74: ...VSG 1200 User s Guide 74 Chapter 6 Authentication Figure 29 System Setting Authentication ...

Страница 75: ... using CAS Note The default web site address is already entered for you You don t need to change this unless otherwise instructed by the Hilton HSIA support team Built in Authentication Select this option to authenticate the subscribers using the local subscriber database Then click Select option to choose a per configured setting in the Current Preset option field Note When you select this option...

Страница 76: ...uthority assigned number that identifies the vendor or enterprise Enter 890 for ZyXEL devices Select Send VSA together with Authentication Request to set the VSG to include the VSA information in the authentication requests Idle Timeout The VSG automatically disconnects a computer from the network after a period of inactivity The subscriber may need to enter the username and password again before ...

Страница 77: ...pre configured scenario option by clicking the Select option link to display a screen as shown next Select a scenario option in the Items Check field and click Apply to save the settings Then proceed to configure the billing and accounting settings Figure 30 System Authentication Scenario Guide The following table describes each scenario ...

Страница 78: ...ever subscribers using the dynamic or static accounts are prompted for usernames and passwords Figure 31 Subscriber Login Scenario A Scenario B Select this option if you want to use PMS billing without port location mapping You must then create the subscriber accounts Subscribers are prompted for their usernames and passwords before Internet access is allowed Subscribers can purchase additional ti...

Страница 79: ...tains information such as time unit unit cost and or account expiration time You must associate a subscriber account with a billing profile In addition for PMS billing subscribers may have a choice of purchasing additional time blocks with different billing profiles you set and activate on the VSG 7 1 1 Creating a Billing Profile You can create up to ten billing profiles on the VSG Click System Se...

Страница 80: ...LABEL DESCRIPTION Currency Specify the type of currency and or dollar sign for billing Number of decimal places Specify the number of decimal places for the currency The default is 2 No This field displays the index number of a billing profile Active Select this check box to enable the billing profile Name This field displays the name of a billing profile Description This field displays a descript...

Страница 81: ...lowing table descries the labels in this screen Table 20 System Setting Billing Billing Profile Setting LABEL DESCRIPTION No This read only field displays the index number of the billing profile Name Enter a descriptive name for the billing profile for identification purposes Description Enter a description for this billing profile Price ...

Страница 82: ...he time from the drop down list box es for the accumulate billing method The subscriber accounts will be invalid once the allocated time period is used up This option is only available when you select the Day Week or Month option in the Period Time field Selective Unit Specify the range of time units between 1 and 99 a subscriber is allowed to purchase at any one time The range is presented as a d...

Страница 83: ...rompts for the user name and password again Select Based on Subscriber to allow a subscriber to freely move between different locations without prompting for user name and password 7 2 2 PMS Configuration Click System Setting Billing and click the PMS Configuration link to display the screen as shown next Figure 36 System Setting Billing PMS Configuration The following table describes the labels i...

Страница 84: ... must activate the port location mapping feature Refer to Chapter 10 Port Location Mapping on page 103 Regenerate password of static account with PMS checkout This feature is applicable when you select Scenario B with Built in Authentication in the Authentication screen see Figure 29 on page 74 Select Enable to automatically generate a new password for the static account when a subscriber checks o...

Страница 85: ... account is created it stays permanently in the VSG unless deleted manually You can generate static accounts automatically or manually The following figure shows the links for accessing the static account configuration screens when you click System Setting Accounting and Static Accounts Figure 37 Static Account Links 8 2 Global Static Account Settings To configure global static account settings cl...

Страница 86: ...specify the number of concurrent users from the Max concurrent access drop down list box The default number of concurrent access is 2 users per account Customize Printout Click Customize printout text to set the account printout page Refer to Chapter 14 Account Printout on page 129 Print To Select Statement Printer if you want to print the account information using a statement printer connected to...

Страница 87: ...Account There are two ways to create static subscriber accounts as described in the following sections 8 3 1 Generating Static Accounts Automatically To generate a list of static subscriber accounts automatically set the fields in Generate a batch of static accounts in the Create Static Subscriber Account screen ...

Страница 88: ...3 Create Static Subscriber Account Generate Automatically LABEL DESCRIPTION Generate a batch of static accounts Prefix Specify the starting characters affixed to the beginning of all account user names Postfix Specify the characters to append o the end of all account user names From Enter the first number of the range of static accounts To Enter the ending number of the range of static accounts Bi...

Страница 89: ...tic Subscriber Account Manual LABEL DESCRIPTION No This read only field displays the index number of an entry Username Enter the user name for a static subscriber account Password Enter the password associated with the user name above You may also set the VSG to generate a password automatically refer to Section 8 5 Editing Subscriber Accounts on page 92 Billing Profile From the drop down list box...

Страница 90: ...he Static Accounts backup and restore section 2 Click Backup Figure 42 Static Subscriber Account Backup and Restore 3 A File Download window displays Click Save Figure 43 Static Subscriber Account Backup and Restore File Download 4 A Save As window displays Specify the filename and or location and click Save to save the backup file ...

Страница 91: ... erased the subscriber account information Follow the steps below to restore a previously backed up subscriber account list 1 In the Create Static Subscriber Account screen and scroll down to the Static Accounts backup and restore section Figure 45 Static Subscriber Account Backup and Restore 2 Specify the location and or file name of the account information file in the File Path field or click Br...

Страница 92: ...sword Show Password Click Hide Password to not display the passwords for the accounts on the screen Click Show Password to display the passwords for the accounts on the screen Re Generate Password You may set the VSG to generate a new password for each account Click All to set the VSG to generate new passwords for all accounts Click Re Generate Password to set the VSG to generate a new password fo...

Страница 93: ...out preview of static account information click the Print icon to display a printout preview window showing the account information An example is shown in the following figure Refer to Section 14 1 1 Customizing the Account Printout on page 129 to configure the printout page Figure 47 Static Account Information Printout Example ...

Страница 94: ...sort the entries in ascending or descending order based on this column Password This field displays the account password Billing Profile This field displays the name of the profile associated to the account Concurrent Access This field displays the number of users are currently using this account for Internet access First Login This field displays the time a subscriber logs in using the account Ex...

Страница 95: ...g the dynamic account configuration screens when you click System Setting Accounting and Dynamic Account Figure 49 Dynamic Account Links 9 2 Dynamic Account General Settings There are two ways you can create dynamic accounts on the VSG using a statement printer connected to the VSG using the web configurator Before you create dynamic accounts you must specify the billing profile s the number of pr...

Страница 96: ... Statement Printer Settings Web based Button This read only field displays the button index number Button 1 4 The button numbers correspond to the buttons displayed in the Dynamic Account Operator Panel screen Refer to Section 9 3 1 Dynamic Account Generation Using the Web Configurator on page 97 for more information SP Button This read only field displays the button label on the SP 200 Refer to F...

Страница 97: ...eating a Billing Profile on page 79 for more information on creating billing profiles General Settings Unused Accounts Specify the number of hours to wait before the VSG deletes an inactive dynamic account Printout copy Select the number of copies 1 to 3 to print from the drop down list box Click Customize printout text to configure the printout page Print to Select Statement Printer if you want t...

Страница 98: ...printout preview of the dynamic account generated The following figure shows an example Refer to Chapter 14 Account Printout on page 129 on account printout to configure the printout page Figure 53 Dynamic Account Information Printout Example 9 3 2 Dynamic Account Generation Using a Statement Printer Follow the steps below to create dynamic accounts and print the account information using a statem...

Страница 99: ...nt List The following table describes the labels in this screen Note The settings of the buttons on the statement printer correspond to the three SP 200 buttons you set in the Dynamic Account Operator Panel screen Refer to Section 9 2 Dynamic Account General Settings on page 95 Table 28 Dynamic Account List LABEL DESCRIPTION Refresh Click Refresh to update this screen Backup Click Backup to backup...

Страница 100: ...he time the account is created First Login This field displays the time a subscriber logs in using the account Expiration When an account is currently in use this field displays the time before which a subscriber can still use the account to access the Internet When an account is never used this field displays the time the account becomes invalid Status This field displays In Use when the account ...

Страница 101: ...VSG 1200 User s Guide Chapter 9 Dynamic Subscriber Accounts 101 Figure 56 Dynamic Account List Backup Save As You can view the backed up file using any text editing program ...

Страница 102: ...VSG 1200 User s Guide 102 Chapter 9 Dynamic Subscriber Accounts ...

Страница 103: ... a hotel This is done using IEEE802 1q VLAN tags The port location mapping feature is used together with the PMS billing function so charges can be done automatically 10 2 Configuring Port Location Mapping Click System Setting in the navigation panel and the Port Location Mapping link to display the screen as shown Note Make sure you select Built in Authentication and Scenario A in the Authenticat...

Страница 104: ... Create Set the related fields to create a port location mapping one at a time Location Identifier ID Enter an identity up to 20 characters for a mapping This field must match the VLAN ID of a port Port Identifier ID Enter the an ID number between 1 and 999999 of a port for this mapping This is the location ID number you set in the PMS Description Enter a description up to 32 characters for this m...

Страница 105: ...ackup Restore You can back up or restore the port location mappings Backup Click Backup to Local PC to save the current port location mappings to a computer To back up the current port location mapping to a TFTP server specify the IP address of the TFTP server and the file name in the fields provided and click Apply Restore Make sure you have previously backed up the port location mapping Note All...

Страница 106: ... 1200 User s Guide 106 Chapter 10 Port Location Mapping Next Click Next to go to the next page End Click End to go to the last page Table 29 System Setting Port Location Mapping continued LABEL DESCRIPTION ...

Страница 107: ...omer selects a service type and enters contact and billing information 3 Customer billing information is processed real time via the secure online credit card billing service 4 After the transaction is successful the VSG provides the username and password information so the customer can log in for Internet access 11 1 2 Configuration Steps Do the following to allow credit card service 1 Obtain an ...

Страница 108: ...the Credit Card screen Click Advanced Setting Credit Card to displays the screen as shown below Enter your account information in this screen Figure 58 Advanced Setting Credit Card The following table describes the labels in this screen Table 30 Advanced Setting Credit Card LABEL DESCRIPTION Authorize net Select this option to use the Authorize Net online credit card service for billing subscriber...

Страница 109: ...ansact dll Note You don t need to change this address unless instructed by an Authorize net administrator Email Additional Information Select this check box to have the VSG e mail the subscriber the information that you specify in the following fields Merchant Name Select this check box to have the VSG include the company name in the e mail that it sends to the subscriber Enter the company name up...

Страница 110: ...ave the changes Figure 59 Credit Card Customization Standard Login Screen Message Click Preview of Standard Login Page to display a preview screen Figure 60 Credit Card Customization Standard Login Screen Message Preview 11 3 2 Service Selection Page Specify the service selection and credit card messages to display on the subscriber login screen in the Credit Card Customization screen ...

Страница 111: ...VSG 1200 User s Guide Chapter 11 Credit Card Billing and Customization 111 Figure 61 Credit Card Customization Service Selection Page The following table describes the labels in this screen ...

Страница 112: ...unt information to this e mail address if you enable the feature in the Credit Card screen refer to Section 11 2 Setting up Credit Card Billing Service on page 108 for more information Submit Button Enter the label of the button on which subscribers clicks to send the information in the screen Additional Customer Data If you want to obtain more information from the subscribers select the checkbox ...

Страница 113: ...tion is successful Scroll down the Credit Card Customization screen and configure the Successful Page fields and click Apply to save the changes Phone Select this check box to display this field and specify the label name of a field in whish subscribers enter the phone numbers Fax Select this check box to display this field and specify the label name of the field in which subscribers enter the fax...

Страница 114: ... Information Enter the caption for the account information Username Enter the label name for the username field Password Enter the label name for the password field Usage Time Enter the label name for the usage time field Expiration Date Enter the label name for the expiration date field Email Button Enter the label name for the e mail button the subscribers click to have the VSG e mail this infor...

Страница 115: ...sful Page Preview 11 3 4 Fail Page You can customize the notification screen to display on the subscriber s computer when the credit card is not validated or the transaction is not successful Scroll down the Credit Card Customization screen and configure the Fail Page fields and click Apply to save the changes Figure 65 Credit Card Customization Fail Page ...

Страница 116: ... LABEL DESCRIPTION Notification Message 1 3 Enter additional message s For example why the transaction failed Try Again Button Enter the label name for the button subscribers click to display the screen in which the subscribers can enter the credit card information again Close Button Enter the label name for the button subscribers click to close this screen Preview of Fail Page Click Preview of Fa...

Страница 117: ... screen is the first screen that all subscribers see when trying to access the Internet You can configure walled garden web addresses for web sites which all subscribers are allowed to access without logging in refer to Section 17 4 Walled Garden on page 147 The VSG provides different formats in which you can customize the login screen Standard Redirect Advanced and Frame 12 2 Customizing Subscrib...

Страница 118: ...Screen Figure 67 Customization Login 12 2 1 Standard Subscriber Login Screen The standard subscriber login screen is the VSG s pre configured default simple login screen You can modify the screen color and title and add copyright information and a footnote ...

Страница 119: ... field provided Footnote Select this check box and enter up to 240 characters in the field provided to add the footnote to the login screen Copyright Select this check box and enter the copyright information up to 80 characters in the field provided to add copyright information to the login screen Background Color Specify the color of the registration text For example enter 000000 for black Click ...

Страница 120: ...zation Login Screen Redirect The following table describes the related fields Note For credit card settings refer to Chapter 11 Credit Card Billing and Customization on page 107 Table 35 Customization Login Screen Redirect FIELD DESCRIPTION Redirect Select this option to redirect the subscriber to another login screen Redirect Login Page URL Specify the web site address to which the VSG directs th...

Страница 121: ...r example enter 000000 for black Click View Color Grid to display a list of web friendly colors and corresponding hexadecimal values Article Select this option to use a custom message on the login screen Enter a block of text up to 1024 characters long in the text box This is useful for advertisements or announcements Use User Agreement s Article Select this option to use the article from the user...

Страница 122: ...pt displayed in the bottom frame The frame login screen is useful for you to link to a web site such as the company web site as your welcome screen In addition you can externally design a web page with images and or advanced multimedia features Figure 73 Customization Login Screen Frame Information Enter information such address and telephone or fax numbers in the text box provided Up to 80 charac...

Страница 123: ...ges are available in the subscriber login screen only when you configure the VSG to use PMS billing Table 37 Customization Login Screen Frame FIELD DESCRIPTION Frame Select this option to configure and set the VSG to display the subscriber login screen in two frames Top Frame Enter a web site address in the URL field for example http www zyxel com Bottom Frame The bottom frame of the subscriber lo...

Страница 124: ...ges Table 38 Customization Service Selection Customization LABEL DESCRIPTION Service Selection Customization Service Selection Messages Enter a message to instruct the subscribers to select a billing profile Purchase Unit Message Enter a message to instruct the subscribers to select the number of time units to purchase Notification Message 1 3 Enter additional message s regarding the replenish fea...

Страница 125: ...mount of time used for Internet access when you select Built in Authentication in the Authentication Configuration screen or when you select RADIUS Server and the RADIUS server is configured not to send session timeout messages The information window displays the amount of time a subscriber still has to use for Internet access when you select RADIUS Server in the Authentication Configuration scree...

Страница 126: ...rst text box provided This field displays when the VSG is set to use proprietary or RADIUS server without session timeout messages authentication Enter the label for the field displaying the amount of time used in the second text box provided This field displays when the VSG is set to use RADIUS without session timeout messages authentication Warning Alarm Messages Select this check box to display...

Страница 127: ...VSG 1200 User s Guide Chapter 13 Subscriber Information Window 127 The following figure shows an information window example Figure 78 Subscriber Pop up Information Window Example ...

Страница 128: ...VSG 1200 User s Guide 128 Chapter 13 Subscriber Information Window ...

Страница 129: ...count 14 1 About the Account Printout After you have created the subscriber accounts you can print out the account information The printout page is different for static and dynamic subscriber accounts 14 1 1 Customizing the Account Printout To customize the account printout click Advanced Setting Customization and click the Account Printout link to display the screen as shown ...

Страница 130: ...VSG 1200 User s Guide 130 Chapter 14 Account Printout Figure 79 Customization Account Printout ...

Страница 131: ...Select date and time formats from the drop down list boxes Description Enter text to explain that the user needs to activate the Internet access account before the expiration date and time Date Time Select the formats to use when displaying the expiration dates and times Accumulation This description applies with accumulation billing Enter text to explain that the user needs to finish using the pu...

Страница 132: ...owing figures show the account printout examples Figure 80 Static Account Printout Example Figure 81 Static Account with PMS Billing Printout Example Note The account information printout for a static account varies depending on whether PMS billing is used or not ...

Страница 133: ...VSG 1200 User s Guide Chapter 14 Account Printout 133 Figure 82 Static Account Printout Statement Printer Example ...

Страница 134: ...VSG 1200 User s Guide 134 Chapter 14 Account Printout Figure 83 Static Account with PMS Billing Printout Statement Printer Example Figure 84 Dynamic Account Printout Example ...

Страница 135: ...VSG 1200 User s Guide Chapter 14 Account Printout 135 Figure 85 Dynamic Account Printout Statement Printer Example ...

Страница 136: ...VSG 1200 User s Guide 136 Chapter 14 Account Printout ...

Страница 137: ...e authentication is not required and anyone can access the Internet through the VSG you can set the VSG to require users to accept a service usage agreement before they can access the Internet The VSG has a built in user agreement page that you can customize 15 2 Customizing the User Agreement Page To customize the user agreement page click Advanced Setting Customization and click the User Agreeme...

Страница 138: ...r of the title text For example use 000000 for black Click View Color Grid to display a list of web friendly colors and corresponding hexadecimal values Article Enter a block of text up to 12000 characters long in the text box This is the restrictions or conditions that you want the user to agree to before allowing Internet access Article Text Color Set the color of the article text For example us...

Страница 139: ...white Click View Color Grid to display a list of web friendly colors and corresponding hexadecimal values Agree Button Enter the label name for the button the subscribers click to accept the service usage agreement before they can access the Internet Disagree Button Enter the label name for the button the subscribers click to decline the service usage agreement They will not be able to access the ...

Страница 140: ...VSG 1200 User s Guide 140 Chapter 15 User Agreement Page ...

Страница 141: ...o the WAN port whereas inbound traffic refers to network traffic coming from the WAN port to a LAN port 16 1 1 Bandwidth Allocation The VSG provides two types of bandwidth control based on a subscriber s computer MAC address equal share or class based With equal share bandwidth allocation the VSG allocates an equal amount of outgoing and incoming bandwidth for each subscriber on the LAN With class...

Страница 142: ...qual Share Bandwidth Management To configure the VSG to impose the same bandwidth limits on all subscribers select Equal bandwidth for all subscribers in the Bandwidth Management screen and set the related fields Figure 89 Bandwidth Management Equal Share The following table describes the related labels in this screen ...

Страница 143: ...s and PMS Configuration on page 79 to set the bandwidth limits in a billing profile Figure 90 Bandwidth Management Class of Service Table 42 Bandwidth Management Equal Share LABEL DESCRIPTION Maximum Upstream Bandwidth To use a pre defined option select the first option and choose a bandwidth from the drop down list box To manually set the bandwidth select the second option and specify the bandwid...

Страница 144: ...VSG 1200 User s Guide 144 Chapter 16 Bandwidth Management ...

Страница 145: ...b site display advertisement links or activate the walled garden feature for generating on line advertising revenue 17 2 Portal Page A portal page is the first web site to which a subscriber is redirected after logging in successfully If you do not specify a portal web site the subscriber will be directed to the intended web site specified Click Advanced and Portal Page to display the screen as sh...

Страница 146: ...ent LABEL DESCRIPTION Frequency Select One Time Only to display an advertisement web site in a pop up browser window once after a subscriber logs in successfully Select Every Min s to display an advertisement web site in a pop up browser window once every time period specified between 1 and 60 minutes after a subscriber logs in successfully Sequence Select Randomly to display the advertisement web...

Страница 147: ...th walled garden you can define the web site address es which all users can access without logging in Click Advanced and then Walled Garden to display the screen as shown Figure 93 Walled Garden The following table describes the labels to configure the walled garden feature Note A walled garden web site may not display properly or even be accessible if the domain name contains multiple IP addresse...

Страница 148: ...re 94 Subscriber Login Screen with Walled Garden Links Example Table 45 Walled Garden LABEL DESCRIPTION Link 1 10 In the Name field enter a descriptive name up to 80 characters for the walled garden link to be displayed in the web browser In the URL field enter the web site address up to 200 characters of the web site Apply Click Apply to save the changes Walled garden links ...

Страница 149: ...ddress by IP address or URL that any user can access without logging in This is similar to the walled garden feature but without displaying the web site link s in the subscriber login screen You have to inform the users about which web sites they can access for free 18 2 Configuring Passthrough To configure passthrough on the VSG click Advanced and then Passthrough 18 2 1 Subscriber Computer Passt...

Страница 150: ...TION Subscriber IP MAC Address Passthrough No This read only field displays the index number of an entry IP Address Enter the IP address of a computer in dotted decimal notation whose packets are allowed to pass through the VSG For example 10 59 1 10 MAC Address Enter the MAC address of a computer in 6 hexadecimal pairs separated by a hyphen for example 00 50 BA 8D 22 96 whose packets are allowed ...

Страница 151: ...ation URL and IP Address Passthrough You can specify the IP address or the URL of the web site s that any user can access without entering a user name or password Figure 96 Passthrough Destination URL and IP The following table describes the fields in this screen ...

Страница 152: ... Passthrough No This read only field displays the index number of an entry IP Address Enter the IP address of a web site in dotted decimal notation for example 192 168 1 10 Pass Through Destination URL No This read only field displays the index number of an entry URL Link Page Enter the web site address for example http www zyxel com ...

Страница 153: ...that makes your whole inside network appear as a single computer to the outside world 19 1 1 Port Mapping To make LAN devices behind the VSG visible to the outside world you configure a mapping between a virtual port on the VSG and a server port on a LAN device A virtual port is a port on the VSG that appears as a physical port to the attached devices A server port defines a server to which all sp...

Страница 154: ...RIPTION Polling Interval Specify the time interval in minutes between the VSG s probes for device availability No This read only field displays the index number of an entry Device Name Enter the name of the LAN device for identification purposes Virtual Port Enter a unique port number between 60001 and 60300 to map to the port number in the Server Port field ...

Страница 155: ...ent service for example 80 for HTTP on the LAN device MAC Address Enter the MAC address of the LAN device in hexadecimal notation in 6 hexadecimal pairs for example 0050BA8D2296 Note Make sure you enter the correct MAC address Application Select an application type from the drop down list box Choose from TCP or UDP Only requests for the selected application type are forwarded to the specified serv...

Страница 156: ...ress of the VSG The login screen of the LAN device management interface should display You can also access the LAN devices through the VSG web configurator refer to Section 24 7 1 Accessing the LAN Device on page 184 for more information 19 2 2 Specifying an Inside Server Example Let s say you have a web server behind the VSG as shown in the next figure Figure 100 LAN Device Remote Management Exam...

Страница 157: ...http 192 168 1 1 9602 where 192 168 1 1 is the WAN IP address of the VSG You can also access the server by entering the domain name provided that you specified a DNS server on the VSG Enter the domain name and the virtual port number separated by a colon for example http www domainName 60001 You can also access the LAN devices through the VSG web configurator refer to Section 24 7 1 Accessing the ...

Страница 158: ...VSG 1200 User s Guide 158 Chapter 19 LAN Devices ...

Страница 159: ... only the network to which the gateway is directly connected and the VSG has no knowledge of the networks beyond For instance the VSG knows about network N2 in the following figure through remote node Router 1 However the VSG is unable to route a packet to network N3 because it does not know that there is a route through remote node Router 1 via Router 2 The static routes allow you to tell the VSG...

Страница 160: ...stination Subnet Mask Type the subnet mask for this destination Gateway IP Address Type the IP address of the gateway The gateway is a router or switch on the same network segment as the device s LAN or WAN port The gateway helps forward packets to their destinations Hop Count Hop count represents the cost of transmission for routing purposes IP routing uses hop count as the measurement of cost wi...

Страница 161: ... the subnet mask of the final destination Gateway IP Address This field displays the IP address of the gateway device Hop Count This field displays the cost of this static route Delete Click Delete to remove the selected static route s Table 49 Advanced Static Route continued LABEL DESCRIPTION ...

Страница 162: ...VSG 1200 User s Guide 162 Chapter 20 Static Route ...

Страница 163: ...onfigure the syslog settings click Advanced Logs to display the screen as shown next Figure 104 Logs Syslog The following table describes the labels in this screen Table 50 Logs Syslog LABEL DESCRIPTION Syslog Server Select Enable to activate the syslog function Select Disable to de activate the syslog function Syslog on LAN Select this check box to specify a syslog server on the LAN Server IP Add...

Страница 164: ... to send the logs click Advanced Logs and click the Log Settings link Server 1 IP Address Enter the IP address of the first syslog server on the WAN in dotted decimal notation Server 2 IP Address Enter the IP address of the second syslog server on the WAN in dotted decimal notation Apply Click Apply to save the settings Table 50 Logs Syslog continued LABEL DESCRIPTION ...

Страница 165: ...VSG 1200 User s Guide Chapter 21 Syslog and Session Trace 165 Figure 105 Logs Log Settings The following table describes the labels in this screen ...

Страница 166: ...l specified between 1 and 10080 minutes System Boot Notice Id MAC Address System Up Each time when the device reboots System Account Activity Information Id MAC Address System Account Activity Information Username User IP Status Where Username Administrator Supervisor Accounting Operator User IP IP Address Status Login Logout Idle Time Out Each time when the system account logs in or logs out Acco...

Страница 167: ...nformation index name When a log is created LAN Devices Information Id MAC Address LAN Devices Information Number of devices Start Number End number Device name status additional information Each time interval specified between 1 and 10080 minutes LAN Devices Alarm Id MAC Address LAN Device Alarm Device name FAIL When the VSG cannot connect to an attached LAN device Administrator access Fail Id MA...

Страница 168: ...ure shows an example of the session information file the VSG sends to a TFTP server Table 53 Advanced Session Trace LABEL DESCRIPTION Session Trace Select Enable to set the VSG to record and send subscriber session information Select Disable to de activate this feature TFTP Server IP Address Specify the primary and or secondary TFTP IP address in the Primary TFTP Server IP Address and or Secondary...

Страница 169: ...name of the VSG User Name This is the subscriber account username This field is empty if you disable authentication in the Authentication screen see Chapter 6 Authentication on page 71 for more information Date This is the date and time the VSG creates a session trace record VLANId This is the VID of the VLAN to which a subscriber belongs This field is empty if no VLAN tag is present see Chapter 1...

Страница 170: ...VSG 1200 User s Guide 170 Chapter 21 Syslog and Session Trace ...

Страница 171: ...version 2 The next figure illustrates an SNMP management operation Figure 108 SNMP Management Model An SNMP managed network consists of two main components agents and a manager An agent is a management software module that resides in a managed device An agent translates the local management information from the managed device into a form compatible with SNMP The manager is the console through whic...

Страница 172: ...wing protocol operations Get Allows the manager to retrieve an object variable from the agent GetNext Allows the manager to retrieve the next object variable from a table or list within an agent In SNMPv1 when a manager wants to retrieve all elements of a table from an agent it initiates a Get operation followed by a series of GetNext operations Set Allows the manager to set values for object vari...

Страница 173: ...SG for sending SNMP traps The default is 162 Otherwise enter a port number between 16200 and 16299 Configuration No This read only field displays the index number of the entry Community Name Enter the community string or the password of the management station NMS Address Enter the IP address of the management station Privileges Select a privilege level from the drop down list box Options are Read ...

Страница 174: ...VSG 1200 User s Guide 174 Chapter 22 SNMP ...

Страница 175: ...essing the Internet through the VSG Every Ethernet device has a unique MAC Media Access Control address The MAC address is assigned at the factory and consists of six pairs of hexadecimal characters for example 00A0C5000002 You need to know the MAC addresses of the devices to configure this screen 23 2 Configuring the MAC Filter To configure the MAC filter click Advanced Setting MAC Filter to disp...

Страница 176: ...lowing table describes the labels in this screen Table 56 MAC Filter LABEL DESCRIPTION MAC Address Enter the MAC addresses in XXXXXXXXXXXX format of the devices that are denied access to the VSG in these address fields Apply Click Apply to save the changes ...

Страница 177: ...pter describes the screens under System Status 24 1 About System Status The screens in System Status show the current state of the VSG 24 2 View System Information Click System Status and System to display the screen as shown next The System screen automatically updates every 5 seconds ...

Страница 178: ...e 57 System Status FIELD DESCRIPTION System Status Host Name This field displays the description name of the VSG for identification purposes Domain Name This field displays the domain name of the VSG Bootrom Version This field displays the version of the bootrom Firmware Version This field displays the version of the firmware on the VSG ...

Страница 179: ...the IP address of the DHCP server on the network Start IP Address This field is visible when the DHCP Status is Server or Relay This field displays the first of the continuous addresses in the IP address pool End IP Address This field is visible when the DHCP Status is Server This field displays the end of the continuous addresses in the IP address pool Lease Time This field is visible when the DH...

Страница 180: ...username of a subscriber account Billing Profile This field displays the number of concurrent access allowed and the name of the billing profile that the subscriber uses Login Time This displays when you are using authentication This field displays the time the subscriber logs in Expiration This displays when you are using authentication This field displays the time this account expires This field...

Страница 181: ... First to go to the first page Previous Click Previous to return to the previous page Next Click Next to go to the next page End Click End to go to the last page Table 58 Current User List continued LABEL DESCRIPTION Table 59 DHCP Clients LABEL DESCRIPTION No This field displays the index number of an entry MAC Address This field displays the MAC address of the client computer The MAC Media Access...

Страница 182: ...ld displays the index number of an entry TCP UDP This field displays the type of traffic TCP or UDP IP Client This field displays the IP address of the client computer Port Client This field displays the port number through which the client computer transmits the traffic Port Fake This field displays the virtual port number for a session Port Remote This field displays the port number of a remote ...

Страница 183: ... that is using the VPN TranslatedIP Address This field displays the WAN IP address of the VSG to which the LAN IP address of the subscriber using the VPN was translated VPN Type This field displays the type of VPN connection that is being used IPSec or PPTP Table 62 System Status LAN Device Status LABEL DESCRIPTION No This field displays the index number Device Name This field displays the name of...

Страница 184: ...d display showing the login screen of the LAN device management interface To directly access the LAN device enter the WAN IP address of your VSG and the virtual port number of the LAN device separated by a colon For example enter http 192 168 1 1 60001 where 192 168 1 1 is the WAN IP address of the VSG The login screen of the LAN device management interface should display 24 8 Billing Logs Click S...

Страница 185: ...me Location This field displays the user name or the room number for Dynamic PMS or Static accounts only Billing Profile This field displays the name of the billing profile an account is using Log Time This field displays the time the subscriber logged in using the account Usage Time This field displays the time period allocated for an account Bill This field displays the amount of money charged f...

Страница 186: ...ays Figure 118 Billing Log Backup File Download 2 Select Save this file to disk and click OK A Save As window displays Figure 119 Billing Log Backup Save As 3 Specify the file name and or location and click Save to start the backup process To view the billing logs open the log file using any text editor The following figure shows an example ...

Страница 187: ... Status PMS Transaction Log 24 10 Static Route Table You can view the list of static routes configured in the Static Route Table screen Click System Status and Static Routing Table to display the screen Billing Log Profile NO Username Location BillingProfile Log Time Usage Time Bill Charge from Status 1 Cindy Profile 1 2004 10 22 12 00 28 1 day s 10 00 Static In Use 2 Cindy Profile 1 2004 10 22 13...

Страница 188: ... Static Route Table This table displays the static routes configured No This field displays the index number Destination IP Address This field displays the IP address of the final destination Destination Subnet Mask This field displays the subnet mask of the final destination Gateway IP Address This field displays the IP address of the gateway device Hop Count This field displays the cost of this ...

Страница 189: ...digital certificate also referred to as a certificate contains the key owner s name and public key the name of the issuing certification authority the certification authority s digital signature and a certificate validity time limit and other optional information fields 25 1 2 Certificate Authorities A Certification Authority CA issues digital certificates and guarantees the identity of the certif...

Страница 190: ...igation panel and select the SSL Security check box in the Web Server field Table 65 SSL Certificate Download LABEL DESCRIPTION Password Enter the secret password you used when applying for the certificate Note This password must be the same as the one you entered at the CA s site when creating a certificate Certificate File Specify the certificate sent to you by a CA Private Key File Specify the ...

Страница 191: ...Layer 191 Figure 124 System Setting Server Configuration Enable SSL Security 2 Click Apply to save the changes and restart the VSG when prompted 3 Click Authentication in the Configuration Menu panel and select Enable in the SSL Login Security field ...

Страница 192: ...VSG 1200 User s Guide 192 Chapter 25 Secure Socket Layer Figure 125 System Setting Authentication Activate SSL Login 4 Click Apply to save the changes and restart the VSG when prompted ...

Страница 193: ...nstall the default SSL security certificate on a computer 1 Access the VSG A Security Alert window displays Click OK to continue and close the window Figure 126 Installing the SSL Security Certificate First Security Alert 2 A second Security Alert window displays Figure 127 Installing the SSL Security Certificate Second Security Alert 3 Click View Certificate to display the Certificate window as s...

Страница 194: ...ate View Certificate 4 Click Install Certificate to install the certificate to your computer A Certificate Import Wizard window displays Click Next Figure 129 Installing the SSL Security Certificate Certificate Import Wizard 5 Accept the default or specify the location to store the certificate Click Next ...

Страница 195: ...et Layer 195 Figure 130 Certificate Import Wizard Location 6 Click Finish to import the certificate Figure 131 Certificate Import Wizard Finish 7 A Root Certificate Store window displays as shown Click Yes to store the certificate to the computer ...

Страница 196: ... Store 8 When the certificate is saved successfully a Certificate Import Wizard window displays Click OK Figure 133 Certificate Import Wizard 9 A Certificate window displays the detailed information Notice that the certificate is now trusted Figure 134 Certificate Detailed Information ...

Страница 197: ...Security Alert window as shown Notice that the first item in the list changed to inform you that the certificate is from a trusted host Click Yes to proceed to the login screen in secure mode Figure 135 Security Alert Trusted Note Once you are logged in with SSL security the URL starts with https instead of http ...

Страница 198: ...VSG 1200 User s Guide 198 Chapter 25 Secure Socket Layer ...

Страница 199: ...g chapters on configuration using the web configuration 26 1 1 Establishing a Console Port Connection After the VSG is directly connected to a computer using the console port turn on the computer and run a terminal emulation program for example Hyper Terminal in Windows and configure its communication parameters as follows 9600 bits per second Parity none 8 data bits 1 stop bit flow control none N...

Страница 200: ...n enter the default administrator user name admin and default password 1234 and then press ENTER Figure 137 SMT Login Screen Note The user name and password are case sensitive VSG 1200 c 2003 ZyXEL Communications Corporation All Rights Reserved Version 1 08 Username Password Note The VSG automatically logs you out after five minutes of inactivity Simply log back into the VSG if this happens ...

Страница 201: ... 8 Factory Defaults Enter selection Enter a numeric between 1 and 8 Table 66 SMT Main Menu NUMBER MENU TITLE FUNCTION 1 System Configuration Use this menu to set up general system setup 2 WAN Configuration Use this menu to configure the WAN port 3 LAN Configuration Use this menu to configure the LAN port 4 System Status Use this menu to view the current configuration of the VSG 5 Utilities Use thi...

Страница 202: ...us screen TAB To move to the next configuration field SPACE To toggle between field choices System Configuration System Name Doamin Name Console Port Speed 9600 Web Server Port 80 E Mail Server Redirect Table 68 SMT System Configuration FIELD DESCRIPTION System Name Enter a descriptive name up to 32 characters for identification purposes Domain Name Enter the domain name if you know it here If you...

Страница 203: ...if you enter 8010 as the web server port number then you must enter http www 192 168 1 1 8010 where 192 168 1 1 is the WAN or LAN port IP address E mail Server Redirect Enter the IP address or domain name of the e mail server to which the VSG forwards e mail This field should be configured if the e mail server is behind a firewall or on a NAT enabled network At the S ave and return R eturn without...

Страница 204: ...ults If you forgot your administrator login user name and password you have to use the RESET button to reset the VSG back to the factory defaults Refer to Chapter 2 Hardware Installation and Connection on page 35 Resetting the VSG restores all system configuration back to the factory defaults However you may retain the subscriber account information Follow the steps below to reset the VSG back to ...

Страница 205: ...count information in the local subscriber database Type N and press ENTER to delete all subscriber account information 4 Press ENTER to reset the VSG The VSG automatically restarts Figure 142 SMT Reset to Factory Defaults Change to factory defaults and the system will be restarted Are you sure Y N ...

Страница 206: ...VSG 1200 User s Guide 206 Chapter 26 The SMT ...

Страница 207: ...iguration From the main menu type 1 and press ENTER to display the System Configuration menu The WAN Configuration menu varies depending on the selection in the WAN Type field 27 2 1 Using a Static Dynamic WAN IP Address You can set the VSG to use a static fixed or dynamic IP address Figure 143 SMT WAN Configuration Static or Dynamic IP Address WAN Configuration WAN Type D S P T S IP Address 192 1...

Страница 208: ...when you select D in the WAN Mode field Enter the subnet mask depending on your network needs The default is 255 255 255 0 Refer to Appendix H IP Subnetting on page 265 if you are implementing subnetting Default Gateway Enter the IP address of the default gateway Primary Secondary DNS IP Address Enter the IP address of the DNS server s in the Primary DNS IP Address and or Secondary DNS IP Address ...

Страница 209: ... up the connection automatically if it is disconnected Redial Period Sec The field is only visible when you select K in the Connect Setting field Type the time in seconds that elapses before the VSG automatically attempts to reconnect to the PPPoE server The default is 30 seconds Max Idle Time Min This field is only visible when you select C in the Connect Setting field Type the time in minutes th...

Страница 210: ...rd Enter the password associated with the user name above Connect Setting C K Enter C Connect on demand when you don t want the connection up all the time and specify an idle time out in the Max Idle Timeout Setting field This is the default selection Enter K Keep alive when you want your connection up all the time and specify the redial time in the Redial Period field to set how long the VSG wait...

Страница 211: ...dary DNS IP Address Table 72 SMT LAN Configuration FIELD DESCRIPTION DHCP Service D R S Enter D Disable to deactivate DHCP services on the LAN Ethernet devices connected to the LAN interface must use static IP addresses Enter R Relay to set the VSG to forward network configuration requests to a DHCP server on the LAN network Then configure the Server IP Address and Agent IP Address fields Enter S ...

Страница 212: ...mpt type S and press ENTER to save the changes and return to the previous screen type R and press ENTER to discard all changes and return to the previous screen or type M and press ENTER to continue configuring the fields Restart the device when prompted Press ESC and enter Y to stop any actions in the current screen and return to the previous screen All changes will be discarded Table 72 SMT LAN ...

Страница 213: ...or DHCP Client IP Address This field displays the WAN IP address of the VSG Subnet Mask This field displays the subnet mask on the WAN port Gateway This field displays the IP address of the default gateway Primary DNS Server This field displays the IP address of the primary DNS server Secondary DNS Server This field displays the IP address of the secondary DNS server DHCP Configuration DHCP Servic...

Страница 214: ...VSG 1200 User s Guide 214 Chapter 27 LAN and WAN Setup Using the SMT ...

Страница 215: ...y any name or file extension for the firmware and the configuration files However it is recommended to use the bin file extension for the firmware file and rom for the configuration file for management purposes 28 2 Firmware Upgrade The following sections show you how to upgrade the firmware using the SMT and the web configurator 28 2 1 Firmware Upgrade Using the Web Configurator There are two way...

Страница 216: ...nual 4 Specify the firmware file name in the Local PC File Path field or click Browse to locate it 5 Click Apply to start the file transfer process 6 When the file transfer is completed successfully the following message displays and the VSG automatically restarts to complete the firmware upgrade process Figure 150 Web Configurator Firmware Upgrade Successful 7 After the VSG finishes restarting ac...

Страница 217: ...e field 7 Click Apply to start the file transfer process 8 When the file transfer is completed successfully the following message displays and the VSG automatically restarts to complete the firmware upgrade process 9 After the VSG finishes restarting access the web configurator again Check the firmware version number in the System Status screen 28 2 1 3 Scheduled Firmware Upgrade You can set the V...

Страница 218: ...he firmware and restarts Click System Tools Firmware and click the Scheduled Firmware Upgrade link to display the screen as shown next Figure 154 Firmware Upgrade Scheduled The following table describes the labels in this screen Note During the firmware upgrade process the VSG disconnects all subscriber Internet access Subscribers need to log in again Table 74 Firmware Upgrade Scheduled LABEL DESC...

Страница 219: ...e name of the firmware file in the Download Filename field Synchronization Check File A Synchronization Check file is a file containing the latest firmware filename and version number on the TFTP server Click View Sample File to display an example Enter the name of the check file Frequency Set how often Weekly Daily or Hourly you want to have the VSG check for new firmware and upgrade to new firmw...

Страница 220: ...ration File Maintenance You can only use the web configurator to perform configuration file backup and restore 28 3 1 Backup Configuration Using HTTP Backup is highly recommended once your VSG is functioning properly Firmware Upgrade TFTP Server IP Address 172 21 4 72 Download Filename VSG1200V108 bin E xecute Download R eturn to Main Menu M odify Enter Selection Enter the command key and press en...

Страница 221: ...System Tools and Configuration A screen displays as shown next Figure 158 System Tools Configuration Backup 2 Click Backup A File Download window displays as shown next Figure 159 Configuration Backup File Download 3 Select Save this file to disk and click OK A Save As window displays ...

Страница 222: ...and click Save to start the backup process 28 3 2 Backup Configuration Using TFTP 1 Click System Tools and Configuration A screen displays as shown next 2 In the Backup section enter the IP address of the TFTP server in dotted decimal notation in the TFTP Server IP Address field 3 Specify a file name for the configuration backup in the Text File Name field ...

Страница 223: ...gure 162 Configuration Backup TFTP Successful 28 3 3 Restore Configuration Using HTTP This section shows you how to restore a previously saved configuration 1 Click System Tools and Configuration A screen displays as shown next Note This function erases the current configuration before restoring a previous back up configuration please do not attempt to restore unless you have a backup configuratio...

Страница 224: ...figuration restore process The VSG automatically restarts after the restoration process is complete 28 3 4 Restore Configuration Using TFTP This section shows you how to restore a previously saved configuration 1 Click System Tools and Configuration A screen displays as shown next Note This function erases the current configuration before restoring a previous back up configuration please do not at...

Страница 225: ... the Restore section Enter the IP address of the TFTP server in dotted decimal notation in the TFTP Server IP Address field 3 Specify a file name for the configuration backup in the Text File Name field 4 Click Apply to start the configuration restore process The VSG automatically restarts after the restoration process is complete ...

Страница 226: ...VSG 1200 User s Guide 226 Chapter 28 Configuration and Firmware Maintenance ...

Страница 227: ...eshooting the Power LED STEPS CORRECTIVE ACTION 1 Check the connections from the VSG to the power source Make sure you are using the supplied power cord and proper power supply Refer to the appendix on product specifications 2 Make sure the power source is turned on and that the VSG is receiving sufficient power 3 If these steps fail to correct the problem contact your local distributor for assist...

Страница 228: ...ORRECTIVE ACTION 1 Check to see if the VSG is connected to your computer using a console cable 2 Check to see if the communications program is configured correctly Set the communication parameters as stated here Emulation auto detect Baud Rate 9600 bps No Parity 8 data bits 1 stop bit Flow Control None 3 Make sure you entered the correct username and password The default administrator username is ...

Страница 229: ...t reset the VSG back to the factory defaults using the reset button Use a pointed object to press the reset button on the front panel to reset the VSG All your custom configuration will be lost 3 Ping the VSG from your computer on the WAN or LAN Table 80 Troubleshooting Internet Browser Display STEP CORRECTIVE ACTION 1 Make sure you are using Internet Explorer version 4 0 and later or Netscape ver...

Страница 230: ... ACTION 1 Make sure the statement printer is connected to a power source and is turned on 2 Check that the statement printer is connected to the port labeled Console 3 Make sure there is enough printing paper in the statement printer 4 Check that you select Account Generator Device in the Console Type field in the System screen 5 4 Make sure you configure and associate a billing profile for the fi...

Страница 231: ...CP client PPPoE PPTP NAT for VPN IPSec PPTP Authentication Authorization and Accounting AAA Web based authentication RADIUS AAA Secondary RADIUS server Proprietary CAS Central Authentication Service Global roaming support Built in Authentication and accounting Vendor Specific Attributes Static Dynamic Accounting Security Port based VLAN Layer 2 isolation VPN pass through PPTP L2TP SSL secure user ...

Страница 232: ... Real time status list Remote authorized management Configuration file import export LAN device management Syslog Session trace SNMP v1 v2 MIB II with traps Table 85 Product Specifications Physical and Environmental LED Power ALARM WAN LAN 10 100 LK ACT FDX Dimension 440 W x 116 L x 44 H mm Temperature 0ºC to 50ºC Humidity 10 to 95 non condensing Power Internal universal switching power supply 100...

Страница 233: ...ddress Conflicts Scenario 1 You must set the VSG to use different LAN and WAN IP addresses on different subnets if you enable DHCP server on the VSG For example you set the WAN IP address to 192 59 1 1 and the LAN IP address to 10 59 1 1 Otherwise It is recommended the VSG use a public WAN IP address Scenario 2 The VSG LAN IP address conflicts with the DHCP client IP address In the following figur...

Страница 234: ...WAN IP address to 192 59 1 1 and the LAN IP address to 10 59 1 1 Otherwise It is recommended the VSG use a public WAN IP address Scenario 4 Two or more subscribers have the same IP address By converting all private IP addresses to the WAN IP address the VSG allows subscribers with different network configurations to access the Internet However there are situations where two or more subscribers are...

Страница 235: ...s Guide Appendix B IP Address Assignment Conflicts 235 Figure 168 IP Address Conflicts Scenario 4 This problem can be solved by adding a VLAN enabled switch or setting the computers to obtain IP addresses dynamically ...

Страница 236: ...VSG 1200 User s Guide 236 Appendix B IP Address Assignment Conflicts ...

Страница 237: ...ings a subscriber login screen displays prompting for a user name and password Figure 169 Subscriber Login Screen Framed Example Enter a user name and password and click Enter Depending on the settings in the VSG either the specified web page or an advertisement web page displays After a successful login an information window may display Figure 170 Subscriber Login Information Window Example ...

Страница 238: ...VSG 1200 User s Guide 238 Appendix C Subscriber Login ...

Страница 239: ...rver and the VSG It is necessary you define the VSAs on the RADIUS sever if you want the VSG to perform any of the additional functions listed below Limit Download bandwidth per subscriber Limit Upload bandwidth per subscriber Limit Total traffic bandwidth allowed per subscriber Specify advertising web site per subscriber Enable disable SMTP redirect VSG 1200 Supported VSAs The following table des...

Страница 240: ...ccount expiration time This means that a subscriber is allowed to access the Internet until the total upload bandwidth allocated is reached This attribute is supported when you enable bandwidth management on the VSG with the class of service based on the RADIUS settings Refer to Chapter 16 Bandwidth Management on page 141 for more information Note You must also specify the BW Down attribute Intege...

Страница 241: ...h Management disable Bandwidth management is not activated on the VSG while the VSA response from the external RADIUS server contains upload and download bandwidth limits VSA Error BW up down Equal bandwidth for all subscriber selected Bandwidth management is activated on the VSG with equal bandwidth applied to all subscribers VSA Error BW up down Class of service is selected but no BW up down Ban...

Страница 242: ...VSG 1200 User s Guide 242 Appendix D Vendor Specific Attributes ...

Страница 243: ...s Network statistics Initial Setup Do the following before you start report printing using an SP 200 1 Purchase an SP 200 from your local dealer if you don t have one 2 Set the function of the console port on the VSG for statement printer connection see Section 3 5 General System Setting on page 44 3 Connect the SP 200 to the CONSOLE port on the VSG see Section 2 2 Hardware Connections on page 36 ...

Страница 244: ...xample Figure 171 SP 200 Daily Account Monthly Account Summary This report shows the username and price for the subscriber account s that is created for the current month Key combination A B C B B Table 88 SP 200 Report Printing Key Combination REPORT TYPE KEY COMBINATION Daily Account Summary A B C A A Monthly Account Summary A B C B B System Status A B C C C Network Statistics A B C A B Daily Ac...

Страница 245: ...ly Account System Status This report shows the current system information such as the host name and WAN IP address Key combination A B C C C The following figure shows an example Monthly Account 2004 10 Username Price bwh2y936 10 00 Cindy 10 00 9v269m55 10 00 bwh2y943 20 00 TOTAL ACCOUTNS 4 TOTAL PRICE 50 00 2004 10 28 14 11 26 End ...

Страница 246: ...SYST This field displays the time since the system was last restarted HOST This field displays the description name of the VSG for identification purposes FRMW This field displays the version of the firmware on the VSG BTRM This field displays the version of the bootrom WAMA This field displays the MAC address of the VSG on the WAN LAMA This field displays the MAC address of the VSG on the LAN WAT...

Страница 247: ...uous addresses in the IP address pool If the DHCP field is DHCP Relay this field displays the DHCP server IP address DHEP This field is visible when the DHCP is DHCP Server This field displays the end of the continuous addresses in the IP address pool DHLT This field is visible when the DHCP is DHCP Server This field displays the time in minutes a DHCP client is allowed to use an assigned IP addre...

Страница 248: ...he WAN WARD This field displays the number of packets received on the WAN WATE This field displays the number of error packets transmitted on the WAN WARE This field displays the number of error packets received on the WAN LATD This field displays the number of packets transmitted on the LAN LARD This field displays the number of packets received on the LAN LATE This field displays the number of e...

Страница 249: ... between the VSG and the hub or router conforms to the pin assignments as shown in the following diagram Note Make sure the Ethernet cable length between connections does not exceed 100 meters 328 feet Table 91 Network Cable Types SPEED NETWORK CABLE TYPE 10 Base TX 100 2 pair UTP STP Category 3 4 or 5 100 Base TX 100 2 pair UTP STP Category 5 Table 92 WAN Port Cable Ping Assignments PIN NO RJ 45 ...

Страница 250: ...a computer or switch uplink port conforms to the pin assignments as shown in the figure Figure 176 LAN Port Cable Pin Assignments Serial Console Port The following table describes the console cable pin assignments for the serial console port Table 93 LAN Port Cable Pin Assignments PIN NO RJ 45 SIGNAL ASSIGNMENT DESIGNATION 1 Input Transmit Data RD 2 Input Transmit Data RD 3 Output Transmit Data TD...

Страница 251: ...N 1 DCD Received Line Signal Detector to the VSG 2 TXT Transmitted Data from the VSG 3 RXT Received Data to the VSG 4 DTR Data Terminal Ready from the VSG 5 GND Signal Ground Common 6 DSR Data Set Ready to the VSG 7 RTS Request to Send from the VSG 8 CTS Clear to Send to the VSG 9 RI Ring Indicator to the VSG Table 95 DB25 Male to DB9 Male Connector Ping Assignment P1 P2 1 8 2 2 3 3 4 20 5 7 6 6 7...

Страница 252: ...VSG 1200 User s Guide 252 Appendix F Cable Types and Cable Pin Assignments ...

Страница 253: ...requires the purchase of a third party TCP IP application package TCP IP should already be installed on computers using Windows NT 2000 XP Macintosh OS 7 and later operating systems After the appropriate TCP IP components are installed configure the TCP IP settings in order to communicate with your network If you manually assign IP information instead of using dynamic assignment make sure that you...

Страница 254: ...Microsoft Networks If you need the adapter 1 In the Network window click Add 2 Select Adapter and then click Add 3 Select the manufacturer and model of your network adapter and then click OK If you need TCP IP 1 In the Network window click Add 2 Select Protocol and then click Add 3 Select Microsoft from the list of manufacturers 4 Select TCP IP from the list of network protocols and then click OK ...

Страница 255: ...apter s TCP IP entry and click Properties 2 Click the IP Address tab If your IP address is dynamic select Obtain an IP address automatically If you have a static IP address select Specify an IP address and type your information into the IP Address and Subnet Mask fields Figure 179 Windows 95 98 Me TCP IP Properties IP Address 3 Click the DNS Configuration tab If you do not know your DNS informatio...

Страница 256: ...to save and close the TCP IP Properties window 6 Click OK to close the Network window Insert the Windows CD if prompted 7 Turn on your VSG 1200 and restart your computer when prompted Verifying Settings 1 Click Start and then Run 2 In the Run window type winipcfg and then click OK to open the IP Configuration window 3 Select your network adapter You should see your computer s IP address subnet mas...

Страница 257: ...puter s IP Address 257 Figure 181 Windows XP Start Menu 2 For Windows XP click Network Connections For Windows 2000 NT click Network and Dial up Connections Figure 182 Windows XP Control Panel 3 Right click Local Area Connection and then click Properties ...

Страница 258: ...onnections Properties 4 Select Internet Protocol TCP IP under the General tab in Win XP and click Properties Figure 184 Windows XP Local Area Connection Properties 5 The Internet Protocol TCP IP Properties window opens the General tab in Windows XP If you have a dynamic IP address click Obtain an IP address automatically ...

Страница 259: ...tab in IP addresses click Add In TCP IP Address type an IP address in IP address and a subnet mask in Subnet mask and then click Add Repeat the above two steps for each IP address you want to add Configure additional default gateways in the IP Settings tab by clicking Add in Default gateways In TCP IP Gateway Address type the IP address of the default gateway in Gateway To manually configure a def...

Страница 260: ...m Figure 186 Windows XP Internet Protocol TCP IP Properties 8 Click OK to close the Internet Protocol TCP IP Properties window 9 Click OK to close the Local Area Connection Properties window 10Turn on your VSG 1200 and restart your computer if prompted Verifying Settings 1 Click Start All Programs Accessories and then Command Prompt 2 In the Command Prompt window type ipconfig and then press ENTER...

Страница 261: ...p Your Computer s IP Address 261 Figure 187 Macintosh OS 8 9 Apple Menu 2 Select Ethernet built in from the Connect via list Figure 188 Macintosh OS 8 9 TCP IP 3 For dynamically assigned settings select Using DHCP Server from the Configure list ...

Страница 262: ...k Save if prompted to save changes to your configuration 7 Turn on your VSG 1200 and restart your computer if prompted Verifying Settings Check your TCP IP properties in the TCP IP Control Panel window Macintosh OS X 1 Click the Apple menu and click System Preferences to open the System Preferences window Figure 189 Macintosh OS X Apple Menu 2 Click Network in the icon bar Select Automatic from th...

Страница 263: ... From the Configure box select Manually Type your IP address in the IP Address box Type your subnet mask in the Subnet mask box Type the IP address of your VSG 1200 in the Router address box 5 Click Apply Now and close the window 6 Turn on your VSG 1200 and restart your computer if prompted Verifying Settings Check your TCP IP properties in the Network window ...

Страница 264: ...VSG 1200 User s Guide 264 Appendix G Setting up Your Computer s IP Address ...

Страница 265: ...ss the first two octets make up the network number and the two remaining octets make up the host ID Class C addresses begin starting from the left with 1 1 0 In a class C address the first three octets make up the network number and the last octet is the host ID Class D addresses begin with 1 1 1 0 Class D addresses are used for multicasting There is also a class E address It is reserved for futur...

Страница 266: ...ubnetting the class arrangement of an IP address is ignored For example a class C address no longer has to have 24 bits of network number and 8 bits of host ID With subnetting some of the host ID bits are converted into network number bits By convention subnet masks always consist of a continuous sequence of ones beginning from the left most bit of the mask followed by a continuous sequence of zer...

Страница 267: ...be either 0 or 1 thus giving two subnets 192 168 1 0 with mask 255 255 255 128 and 192 168 1 128 with mask 255 255 255 128 Table 99 Alternative Subnet Mask Notation SUBNET MASK IP ADDRESS SUBNET MASK 1 BITS LAST OCTET BIT VALUE 255 255 255 0 24 0000 0000 255 255 255 128 25 1000 0000 255 255 255 192 26 1100 0000 255 255 255 224 27 1110 0000 255 255 255 240 28 1111 0000 255 255 255 248 29 1111 1000 ...

Страница 268: ...et is 192 168 1 1 and the highest is 192 168 1 126 Similarly the host ID range for the second subnet is 192 168 1 129 to 192 168 1 254 Table 101 Subnet 1 NETWORK NUMBER LAST OCTET BIT VALUE IP Address 192 168 1 0 IP Address Binary 11000000 10101000 00000001 00000000 Subnet Mask 255 255 255 128 Subnet Mask Binary 11111111 11111111 11111111 10000000 Subnet Address 192 168 1 0 Lowest Host ID 192 168 ...

Страница 269: ... IP Address Binary 11000000 10101000 00000001 00000000 Subnet Mask Binary 11111111 11111111 11111111 11000000 Subnet Address 192 168 1 0 Lowest Host ID 192 168 1 1 Broadcast Address 192 168 1 63 Highest Host ID 192 168 1 62 Table 104 Subnet 2 NETWORK NUMBER LAST OCTET BIT VALUE IP Address 192 168 1 64 IP Address Binary 11000000 10101000 00000001 01000000 Subnet Mask Binary 11111111 11111111 111111...

Страница 270: ...11111111 11111111 11000000 Subnet Address 192 168 1 192 Lowest Host ID 192 168 1 193 Broadcast Address 192 168 1 255 Highest Host ID 192 168 1 254 Table 107 Eight Subnets SUBNET SUBNET ADDRESS FIRST ADDRESS LAST ADDRESS BROADCAST ADDRESS 1 0 1 30 31 2 32 33 62 63 3 64 65 94 95 4 96 97 126 127 5 128 129 158 159 6 160 161 190 191 7 192 193 222 223 8 224 225 254 255 Table 108 Class C Subnet Planning ...

Страница 271: ...ing The following table is a summary for class B subnet planning Table 109 Class B Subnet Planning NO BORROWED HOST BITS SUBNET MASK NO SUBNETS NO HOSTS PER SUBNET 1 255 255 128 0 17 2 32766 2 255 255 192 0 18 4 16382 3 255 255 224 0 19 8 8190 4 255 255 240 0 20 16 4094 5 255 255 248 0 21 32 2046 6 255 255 252 0 22 64 1022 7 255 255 254 0 23 128 510 8 255 255 255 0 24 256 254 9 255 255 255 128 25 ...

Страница 272: ...VSG 1200 User s Guide 272 Appendix H IP Subnetting ...

Страница 273: ...areas 33 assign IP address to a computer 253 authentication 31 71 Built in Authentication 72 CAS 71 RADIUS 72 types 71 User Agreement 71 authentication port 76 authentication setup 73 Authroize net 107 auto crossover 37 automate firmware upgrade 217 automatic firmware upgrade process 218 B back up configuration file 220 backing up billing logs 185 bandwidth control 141 bandwidth limit downlink 82 ...

Страница 274: ...te static subscriber account 86 create static subscriber accounts manually 88 credit card billing 29 107 authentication scenario option 78 configuration steps 107 credit card icons 109 how it works 107 service selection message 110 setup 108 subscriber information screen 109 subscriber login message 109 successful notification 113 transaction failed message 115 current user list 180 Customer Suppo...

Страница 275: ... methods 215 schedule frequency 219 scheduled 217 using SMT 219 using Web Configurator 215 Firmware version 42 firmware version 178 246 France Contact Information 6 FTP server 32 Functionally Equivalent 4 G Gateway 160 generate static subscriber accounts automatically 87 Germany Contact Information 6 God act of 4 H hardware installation 35 hardwired address 181 High Speed Internet Access HSIA 29 7...

Страница 276: ...on Identifier 104 log schedule 164 logs 163 164 formats 166 name 166 time interval 166 M MAC Media Access Control 181 MAC Media Access Control Filter 32 MAC filter 175 Management Information Base MIB 172 manual firmware upgrade 216 mapping profiles to buttons on the statement printer 95 mask 266 Materials 4 Maximum Segment Size MSS 211 Maximum Transmission Unit MTU 210 merchant password 109 MIB 17...

Страница 277: ... 30 209 connect on demand 210 connection ID 210 idle timeout 210 keep alive 210 Redial Period 210 print dynamic subscriber account 99 print reports 243 printout preview 97 problems 227 product certifications 232 product specifications 231 environmental 232 general 231 management 232 performance 232 physical 232 Products 4 Proof of Purchase 4 Proper Operating Condition 4 Property Management System ...

Страница 278: ...ts 171 Get 172 GetNext 172 management model 171 object variables 172 overview 171 privilege 173 protocol operations 172 Set 172 setup 172 Trap 172 versions supported 171 SNMP agent 171 SNMP manager 171 SNMP port 173 SP 200 37 47 243 button labels 97 connecting 37 creating dynamic accounts 98 mapping profiles to buttons 95 report printing 243 Spain Contact Information 7 specifications 231 SSL 76 18...

Страница 279: ...P components 253 TCP IP protocol 254 TCP IP settings 253 Telephone 6 TFTP server 218 throughput 232 Time to Finish 72 75 transaction key 109 trap port 173 traps 172 troubleshooting 227 console port 228 Internet access 229 LAN port LEDs 227 Power LED 227 statement printer 230 WAN port LEDs 228 Web Configurator 229 Web Configurator display 229 U Ukraine Contact Information 7 United Kingdom Contact I...

Страница 280: ...WAN port the 36 37 249 Warranty 4 Warranty Period 4 Web Configurator 32 recommended web browser 32 Web configurator Administrator login 42 web server port 203 Web Site 6 web based configurator 32 winipcfg 256 Workmanship 4 Worldwide Contact Information 6 Z ZyXEL Limited Warranty Note 4 ...

Отзывы:

Нет отзывов

Бренды по названию

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Популярные бренды

Загрузить еще бренды