ZyXEL Communications XMG3512-B10A Скачать руководство пользователя страница 263 | Manualshive

Страница: 263 / 293

background image

Appendix B Wireless LANs

XMG3512-B10A User’s Guide

263

and EAP-GTC (EAP-Generic Token Card), for client authentication. EAP-GTC is implemented only by
Cisco.

LEAP

LEAP (Lightweight Extensible Authentication Protocol) is a Cisco implementation of IEEE 802.1x.

Dynamic WEP Key Exchange

The AP maps a unique key that is generated with the RADIUS server. This key expires when the wireless
connection times out, disconnects or reauthentication times out. A new WEP key is generated each
time reauthentication is performed.

If this feature is enabled, it is not necessary to configure a default encryption key in the wireless security
configuration screen. You may still configure and store keys, but they will not be used while dynamic
WEP is enabled.

Note: EAP-MD5 cannot be used with Dynamic WEP Key Exchange

For added security, certificate-based authentications (EAP-TLS, EAP-TTLS and PEAP) use dynamic keys for
data encryption. They are often deployed in corporate environments, but for public deployment, a
simple user name and password pair is more practical. The following table is a comparison of the
features of authentication types.

WPA and WPA2

Wi-Fi Protected Access (WPA) is a subset of the IEEE 802.11i standard. WPA2 (IEEE 802.11i) is a wireless
security standard that defines stronger encryption, authentication and key management than WPA.

Key differences between WPA or WPA2 and WEP are improved data encryption and user
authentication.

If both an AP and the wireless clients support WPA2 and you have an external RADIUS server, use WPA2
for stronger data encryption. If you don't have an external RADIUS server, you should use WPA2-PSK
(WPA2-Pre-Shared Key) that only requires a single (identical) password entered into each access point,
wireless gateway and wireless client. As long as the passwords match, a wireless client will be granted
access to a WLAN.

If the AP or the wireless clients do not support WPA2, just use WPA or WPA-PSK depending on whether
you have an external RADIUS server or not.

Table 127 Comparison of EAP Authentication Types

EAP-MD5

EAP-TLS

EAP-TTLS

PEAP

LEAP

Mutual Authentication

No

Yes

Yes

Yes

Yes

Certificate – Client

No

Yes

Optional

Optional

No

Certificate – Server

No

Yes

Yes

Yes

No

Dynamic Key Exchange

No

Yes

Yes

Yes

Yes

Credential Integrity

None

Strong

Strong

Strong

Moderate

Deployment Difficulty

Easy

Hard

Moderate

Moderate

Moderate

Client Identity Protection

No

No

Yes

Yes

No

«
...
261
262
263
264
265
...
»

Содержание XMG3512-B10A

Страница 1: ...Login Details XMG3512 B10A Dual Band Wireless AC N VDSL2 Bonding Gateway with USB Copyright 2016 Zyxel Communications Corporation LAN IP Address http 192 168 1 1 Login admin user Password 1234 Version 1 10 Edition 1 11 2016 ...

Страница 2: ...nushots and graphics in this book may differ slightly from what you see due to differences in release versions or your computer operating system Every effort has been made to ensure that the information in this manual is accurate Related Documentation Quick Start Guide The Quick Start Guide shows how to connect the managed device More Information Go to support zyxel com to find other information o...

Страница 3: ...5 Quality of Service QoS 132 Network Address Translation NAT 150 DNS 166 VLAN Group 170 Interface Grouping 172 USB Service 177 Firewall 182 MAC Filter 189 Parental Control 191 Scheduler Rule 196 Certificates 198 Log 204 Traffic Status 207 ARP Table 210 Routing Table 212 Multicast Status 214 xDSL Statistics 216 System 218 User Account 219 Remote Management 221 SNMP 224 Time Settings 226 E mail Noti...

Страница 4: ...Contents Overview XMG3512 B10A User s Guide 4 Diagnostic 238 Troubleshooting 243 Appendices 249 Index 282 ...

Страница 5: ...6 1 4 2 XMG s USB Support 17 1 5 LEDs Lights 18 1 6 The RESET Button 21 1 7 Wireless Access 21 1 7 1 Using the WPS Button 21 1 8 Wall Mounting 22 Chapter 2 The Web Configurator 24 2 1 Overview 24 2 1 1 Accessing the Web Configurator 24 2 2 Web Configurator Layout 26 2 2 1 Title Bar 26 2 2 2 Navigation Panel 27 Chapter 3 Quick Start 31 3 1 Overview 31 3 2 Quick Start Setup 31 Chapter 4 Tutorials 34...

Страница 6: ...lter 53 4 9 Access Your Shared Files From a Computer 54 Part II Technical Reference 56 Chapter 5 Network Map and Status Screens 57 5 1 Overview 57 5 2 The Network Map Screen 57 5 3 The Status Screen 59 Chapter 6 Broadband 62 6 1 Overview 62 6 1 1 What You Can Do in this Chapter 62 6 1 2 What You Need to Know 63 6 1 3 Before You Begin 65 6 2 The Broadband Screen 66 6 2 1 Add Edit Internet Connectio...

Страница 7: ...9 5 BSS 103 7 9 6 MBSSID 103 7 9 7 Preamble Type 104 7 9 8 WiFi Protected Setup WPS 104 Chapter 8 Home Networking 111 8 1 Overview 111 8 1 1 What You Can Do in this Chapter 111 8 1 2 What You Need To Know 112 8 1 3 Before You Begin 113 8 2 The LAN Setup Screen 113 8 3 The Static DHCP Screen 117 8 4 The UPnP Screen 118 8 4 1 Turning On UPnP in Windows 7 Example 119 8 5 The Additional Subnet Screen ...

Страница 8: ... 6 The QoS Shaper Setup Screen 142 10 6 1 Add Edit a QoS Shaper 143 10 7 The QoS Policer Setup Screen 143 10 7 1 Add Edit a QoS Policer 144 10 8 Technical Reference 145 Chapter 11 Network Address Translation NAT 150 11 1 Overview 150 11 1 1 What You Can Do in this Chapter 150 11 1 2 What You Need To Know 150 11 2 The Port Forwarding Screen 151 11 2 1 Add Edit Port Forwarding 153 11 3 The Applicati...

Страница 9: ... Edit a VLAN Group 171 Chapter 14 Interface Grouping 172 14 1 Overview 172 14 1 1 What You Can Do in this Chapter 172 14 2 The Interface Grouping Screen 172 14 2 1 Interface Group Configuration 173 14 2 2 Interface Grouping Criteria 175 Chapter 15 USB Service 177 15 1 Overview 177 15 1 1 What You Can Do in this Chapter 177 15 1 2 What You Need To Know 177 15 1 3 Before You Begin 178 15 2 The File ...

Страница 10: ...heduler Rule 196 19 1 Overview 196 19 2 The Scheduler Rule Screen 196 19 2 1 Add Edit a Schedule 196 Chapter 20 Certificates 198 20 1 Overview 198 20 1 1 What You Can Do in this Chapter 198 20 2 What You Need to Know 198 20 3 The Local Certificates Screen 198 20 3 1 Create Certificate Request 199 20 3 2 Load Signed Certificate 200 20 4 The Trusted CA Screen 201 20 4 1 View Trusted CA Certificate 2...

Страница 11: ...e Screen 210 Chapter 24 Routing Table 212 24 1 Overview 212 24 2 The Routing Table Screen 212 Chapter 25 Multicast Status 214 25 1 Overview 214 25 2 The IGMP Status Screen 214 25 3 The MLD Status Screen 214 Chapter 26 xDSL Statistics 216 26 1 The xDSL Statistics Screen 216 Chapter 27 System 218 27 1 Overview 218 27 2 The System Screen 218 Chapter 28 User Account 219 28 1 Overview 219 28 2 The User...

Страница 12: ...view 228 32 2 The E mail Notification Screen 228 32 2 1 E mail Notification Edit 228 Chapter 33 Log Setting 230 33 1 Overview 230 33 2 The Log Settings Screen 230 33 2 1 Example E mail Log 231 Chapter 34 Firmware Upgrade 233 34 1 Overview 233 34 2 The Firmware Screen 233 Chapter 35 Backup Restore 235 35 1 Overview 235 35 2 The Backup Restore Screen 235 35 3 The Reboot Screen 237 Chapter 36 Diagnos...

Страница 13: ...er Hardware Connections and LEDs 243 37 2 XMG Access and Login 244 37 3 Internet Access 245 37 4 Wireless Internet Access 247 37 5 USB Device Connection 248 37 6 UPnP 248 Part III Appendices 249 Appendix A Customer Support 250 Appendix B Wireless LANs 256 Appendix C Services 269 Appendix D Legal Information 273 Index 282 ...

Страница 14: ...14 PART I User s Guide ...

Страница 15: ... the following methods to manage the XMG Web Configurator This is recommended for everyday management of the XMG using a supported web browser 1 3 Good Habits for Managing the XMG Do the following things regularly to make the XMG more secure and to manage the XMG more effectively Change the password Use a password that s not easy to guess and that consists of different types of characters such as ...

Страница 16: ...ultiple WAN services over one ADSL or VDSL The XMG cannot work in ADSL and VDSL mode at the same time Note The ADSL and VDSL lines share the same WAN layer 2 interfaces that you configure in the XMG Refer to Section 6 2 on page 66 for the Network Setting Broadband screen Figure 1 XMG s Internet Access Application 1 4 1 2 Ethernet WAN If you prefer not to use a DSL line and you have another broadba...

Страница 17: ...Fiber Optic Module also known as a mini GBIC transceiver to a Switch or Router Figure 3 XMG s Internet Access Application Ethernet WAN Note You can only have Internet access through one of the ports DSL Ethernet or SFP at a time Your XMG has WAN priority and if you connect all ports simultaneously to a successful internet access only one WAN port interface will be active The XMG will prioritize SF...

Страница 18: ...can also use the XMG as a media server This lets anyone on your network play video music and photos from a USB device B connected to the XMG s USB port without having to copy them to another computer Figure 5 USB Media Server Application 1 5 LEDs Lights The following graphic displays the labels of the LEDs B A B A ...

Страница 19: ...ected an error while self testing or there is a device malfunction Blinking The XMG is upgrading its firmware Off The XMG is not receiving power DSL1 DSL2 Green On The ADSL line is up Blinking The XMG is initializing the ADSL line Amber On The VDSL line is up Blinking The XMG is initializing the VDSL line Off The DSL line is down SFP Green On The XMG has a successful connection on the WAN Blinking...

Страница 20: ... receiving data to from the USB device connected to it Off The XMG does not detect a USB connection through the USB slot WiFi 2 4G Green On The 2 4 GHz wireless network is activated Blinking The XMG is communicating with 2 4 GHz wireless clients Amber On The XMG is setting up a WPS connection with a 2 4GHz wireless client using the WPS Method 3 To learn more about each WPS method see Section 7 5 o...

Страница 21: ...or PDAs and iPads It allows them to connect to the Internet without having to rely on inconvenient Ethernet cables You can configure your wireless network in either the built in Web Configurator or using the WPS button Figure 7 Wireless Access Example 1 7 1 Using the WPS Button Once the WiFi LED turns green the wireless network is active If the wireless network is turned off see Section 7 2 on pag...

Страница 22: ...sing screw anchors drill two holes for the screw anchors into the wall Push the anchors into the full depth of the holes then insert the screws into the anchors Do not insert the screws all the way in leave a small gap of about 0 5 cm If not using screw anchors use a screwdriver to insert the screws into the wall Do not insert the screws all the way in leave a gap of about 0 5 cm 8 Make sure the s...

Страница 23: ...Chapter 1 Introducing the XMG XMG3512 B10A User s Guide 23 Figure 8 Wall Mounting Example ...

Страница 24: ...P SP Service Pack 2 JavaScript enabled by default Java permissions enabled by default 2 1 1 Accessing the Web Configurator 1 Make sure your XMG hardware is properly connected refer to the Quick Start Guide 2 Launch your web browser If the XMG does not automatically re direct you to the login screen go to http 192 168 1 1 3 A password screen displays To access the administrative web configurator an...

Страница 25: ...ou can configure basic Internet access and wireless settings See Chapter 3 on page 31 for more information 6 After you finished or closed the Quick Start Wizard screen the Network Map page appears Figure 11 7 Click Status to display the Status screen where you can view the XMG s interface and system information ...

Страница 26: ...e the main screen is divided into these parts A title bar B main window C navigation panel 2 2 1 Title Bar The title bar provides some icons in the upper right corner The icons provide the following functions A B C Table 3 Web Configurator Icons in the Title Bar ICON DESCRIPTION Language Select the language you prefer ...

Страница 27: ...s screen to configure the wireless LAN settings and WLAN authentication security settings Guest More AP Use this screen to configure multiple BSSs on the XMG MAC Authentication Use this screen to block or allow wireless traffic from wireless devices of certain SSIDs and MAC addresses to the XMG WPS Use this screen to configure and view your WPS Wi Fi Protected Setup settings WMM Use this screen to...

Страница 28: ...figure the maximum number of NAT sessions each client host is allowed to have through the XMG DNS DNS Entry Use this screen to view and configure DNS routes Dynamic DNS Use this screen to allow a static hostname alias for a dynamic IP address Vlan Group Vlan Group Use this screen to group and tag VLAN IDs to outgoing traffic from the specified interface Interface Grouping Interface Grouping Use th...

Страница 29: ...Status IGMP Status Use this screen to view the status of all IGMP settings on the XMG MLD Status Use this screen to view the status of all MLD settings on the XMG xDSL Statistics xDSL Statistics Use this screen to view the XMG s xDSL traffic statistics Maintenance System System Use this screen to set Device name and Domain name User Account User Account Use this screen to change user password on t...

Страница 30: ... Ping Traceroute Nslookup Use this screen to identify problems with the DSL connection You can use Ping TraceRoute or Nslookup to help you identify problems 802 1ag Use this screen to configure CFM Connectivity Fault Management MD maintenance domain and MA maintenance association perform connectivity tests and view test reports OAM Ping Use this screen to view information to help you identify prob...

Страница 31: ...tion on the features in this chapter 3 2 Quick Start Setup 1 The Quick Start Wizard appears automatically after login Or you can click the Quick Start icon in the top right corner of the web configurator to open the quick start screens Select the time zone of your location Click Next Figure 13 Quick Start Welcome 2 Enter your Internet connection information in this screen The screen and fields to ...

Страница 32: ...urn the wireless LAN on or off If you keep it on record the security settings so you can configure your wireless clients to connect to the XMG Click Save Figure 15 Quick Start Wireless Setting 4 Your XMG saves your settings and attempts to connect to the Internet Click Close to complete the setup ...

Страница 33: ...Chapter 3 Quick Start XMG3512 B10A User s Guide 33 Figure 16 Quick Start Result Summary ...

Страница 34: ...ess Your Shared Files From a Computer see page 54 4 2 Setting Up an ADSL PPPoE Connection This tutorial shows you how to set up an ADSL Internet connection using the Web Configurator If you connect to the Internet through an ADSL connection use the information from your Internet Service Provider ISP to configure the XMG Be sure to contact your service provider for any information you need to confi...

Страница 35: ...re this rule as your default Internet connection by selecting the Apply as Default Gateway check box Then select DNS as Static and enter the DNS server addresses provided to you such as 192 168 5 2 DNS server1 192 168 5 1 DNS server2 6 Leave the rest of the fields to the default settings 7 Click Apply to save your settings IPv6 IPv4 Mode IPv4 ATM PVC Configuration VPI VCI 36 48 Encapsulation Mode ...

Страница 36: ... a summary of your new DSL connection setup in the Broadband screen as follows Try to connect to a website to see if you have correctly set up your Internet connection Be sure to contact your service provider for any information you need to configure the WAN screens ...

Страница 37: ...etwork settings on the XMG Then he can set up a wireless network using WPS Section 4 3 2 on page 39 or manual configuration Section 4 3 3 on page 42 4 3 1 Configuring the Wireless Network Settings This example uses the following parameters to set up a wireless network 1 Click Network Setting Wireless to open the General screen Select More Secure as the security level and WPA2 PSK as the security m...

Страница 38: ...elect 802 11b g n Mixed in the 802 11 Mode field Click Apply Thomas can now use the WPS feature to establish a wireless connection between his notebook and the XMG see Section 4 3 2 on page 39 He can also use the notebook s wireless client to search for the XMG see Section 4 3 3 on page 42 ...

Страница 39: ...your XMG is turned on and your notebook is within the cover range of the wireless signal 2 Make sure that you have installed the wireless client driver and utility in your notebook 3 In the wireless client utility go to the WPS setting page Enable WPS and press the WPS button for more than five seconds Start or WPS button 4 Push and hold the WPS button located on the XMG s front panel for more tha...

Страница 40: ...G and wireless client Example WPS Process PBC MethodZyxel PIN Configuration When you use the PIN configuration method you need to use both the XMG s web configurator and the wireless client s utility 1 Launch your wireless client s configuration utility Go to the WPS settings and select the PIN method to get a PIN number 2 Log into XMG s web configurator and go to the Network Setting Wireless WPS ...

Страница 41: ...ty screen within two minutes The XMG authenticates the wireless client and sends the proper configuration settings to the wireless client This may take up to two minutes The wireless client is then able to communicate with the XMG securely The following figure shows you how to set up a wireless network and its security on a XMG and a wireless client by using PIN method 1 2 3 ...

Страница 42: ...for the Example SSID Then enter the DoNotStealMyWirelessNetwork pre shared key to establish an wireless Internet connection Note The XMG supports IEEE 802 11b and IEEE 802 11g wireless clients Make sure that your notebook or computer s wireless adapter supports one of these standards Authentication by PIN SECURITY INFO WITHIN 2 MINUTES Wireless Client VMG COMMUNICATION ...

Страница 43: ...ll use the VIP group Visiting guests will use the Guest group which has a different SSID and password Company A will use the following parameters to set up the wireless network groups 1 Click Network Setting Wireless to open the General screen Use this screen to set up the company s general wireless network group Configure the screen using the provided parameters and click Apply COMPANY VIP GUEST ...

Страница 44: ...B10A User s Guide 44 2 Click Network Setting Wireless Guest More AP to open the following screen Click the Edit icon to configure the second wireless network group 3 Configure the screen using the provided parameters and click OK ...

Страница 45: ...er 4 Tutorials XMG3512 B10A User s Guide 45 4 In the Guest More AP screen click the Edit icon to configure the third wireless network group Configure the screen using the provided parameters and click Apply ...

Страница 46: ...re active and ready for wireless access 4 5 Configuring Static Route for Routing to Another Network In order to extend your Intranet and control traffic flowing directions you may connect a router to the XMG s LAN The router may be used to separate two department networks This tutorial shows how to configure a static routing rule for two network routings ...

Страница 47: ... default In this case B will never receive the traffic You need to specify a static routing rule on the XMG to specify R as the router in charge of forwarding traffic to N2 In this case the XMG routes traffic from A to R and then R routes the traffic to B This tutorial uses the following example IP settings Table 5 IP Settings in this Tutorial DEVICE COMPUTER IP ADDRESS The XMG s WAN 172 16 1 1 Th...

Страница 48: ...ype 192 168 10 0 and subnet mask 255 255 255 0 for the destination N2 4d Select Enable in the Use Gateway IP Address field Type 192 168 1 253 R s N1 address in the Gateway IP Address field 4e Select VDSL ppp1 1 as the Use Interface 4a Click OK Now B should be able to receive traffic from A You may need to additionally configure B s firewall settings to allow specific traffic to pass through 4 6 Co...

Страница 49: ...affic going to the WAN interface so that e mail traffic would not get delayed when there is network congestion Note the IP address 192 168 1 23 for example and or MAC address AA FF AA FF AA FF for example of your computer and map it to queue 7 Note QoS is applied to traffic flowing out of the XMG Traffic that does not match this class is assigned a priority queue based on the internal QoS mapping ...

Страница 50: ...ser s Guide 50 Priority 1 High Weight 8 Rate Limit 5 000 kbps Tutorial Advanced QoS Queue Setup 3 Click Classification Setup Add new Classification to create a new class Check Active and follow the settings as shown in the screen below ...

Страница 51: ...raffic such as E mail in this example From Interface This is the interface from which the traffic will be coming from Select LAN1 for this example Ether Type Select IP to identify the traffic source by its IP address or MAC address IP Address Type the IP address of your computer 192 168 1 23 Type the IP Subnet Mask if you know it MAC Address Type the MAC address of your computer AA FF AA FF AA FF ...

Страница 52: ...XMG Testing the DDNS Setting Note If you have a private WAN IP address then you cannot use DDNS 4 7 1 Registering a DDNS Account on www dyndns org 1 Open a browser and type http www dyndns org 2 Apply for a user account This tutorial uses UserName1 and 12345 as the username and password 3 Log into www dyndns org using your account 4 Add a new DDNS host name This tutorial uses the following setting...

Страница 53: ...to the Internet 2 Type http zyxelrouter dyndns org and press Enter 3 The XMG s login page should appear You can then log into the XMG and manage it 4 8 Configuring the MAC Address Filter Thomas noticed that his daughter Josephine spends too much time surfing the web and downloading media files He decided to prevent Josephine from accessing the Internet so that she can concentrate on preparing for ...

Страница 54: ...ddress of Thomas computer in this screen Click Apply Thomas can also grant access to the computers of other members of his family and friends However Josephine and others not listed in this screen will no longer be able to access the Internet through the XMG 4 9 Access Your Shared Files From a Computer Here is how to use an FTP program to access a file storage device connected to the XMG s USB por...

Страница 55: ...your shared files 1 In FileZilla enter the IP address of the XMG the default is 192 168 1 1 your account s user name and password and port 21 and click Quickconnect A screen asking for password authentication appears File Sharing via Windows Explorer 2 Once you log in the USB device displays in the mnt folder ...

Страница 56: ...56 PART II Technical Reference ...

Страница 57: ...ows the network connection status of the XMG and clients connected to it You can use the Status screen to look at the current status of the XMG system resources and interfaces LAN WAN and WLAN 5 2 The Network Map Screen Use this screen to view the network connection status of the device and its clients A warning message appears if there is a connection problem ...

Страница 58: ...e client s name and Info Click the IP address if you want to change it If you want to change the name or icon of the client click Change name icon If you prefer to view the status in a list click List View in the Viewing mode selection box You can configure how often you want the XMG to update this screen in Refresh interval Figure 18 ...

Страница 59: ...Number This shows the model number of your XMG Serial Number This field displays the serial number of the XMG Firmware Version This is the current version of the firmware inside the XMG WAN Information These fields display when you have a WAN connection Encapsulation This field displays the current encapsulation method IP Address This field displays the current IP address of the XMG in the WAN IP ...

Страница 60: ...sed to identify the XMG in a wireless LAN Channel This is the channel number used by the wireless interface now Security This displays the type of security mode the wireless interface is using in the wireless LAN 802 11 Mode This displays the type of 802 11 mode the wireless interface is using in the wireless LAN WPS This displays whether WPS is activated on the wireless interface Security Firewal...

Страница 61: ...s field displays Up when using the interface and NoLink when not using the interface For a WLAN interface this field displays the enabled Up or disabled Disable state of the interface For the DSL interface this field displays Down line down Up line up or connected Drop dropping a call if you re using PPPoE encapsulation and NoLink when not using the interface Rate For the Ethernet WAN and LAN inte...

Страница 62: ...You can also configure the WAN settings on the XMG for Internet access Section 6 2 on page 66 Use the Advanced screen to enable or disable PTM over ADSL Annex M Annex J and DSL PhyR functions Section 6 3 on page 73 Use the Ethernet WAN screen to enable the fourth Ethernet LAN port to be an Ethernet WAN port Section 6 4 on page 76 Use the 802 1x screen to view and configure the IEEE 802 1X settings...

Страница 63: ...VDSL2 standard In PTM packets are encapsulated directly in the High level Data Link Control HDLC frames It is designed to provide a low overhead transparent way of transporting packets over DSL links as an alternative to ATM IPv6 Introduction IPv6 Internet Protocol version 6 is designed to enhance IP address size and features The increase in IPv6 address size to 128 bits from the 32 bit IPv4 addre...

Страница 64: ...ose the network address The prefix length is written as x where x is a number For example 2001 db8 1a2b 15 1a2f 0 32 means that the first 32 bits 2001 db8 is the subnet prefix IPv6 Subnet Masking Both an IPv6 address and IPv6 subnet mask compose of 128 bit binary digits which are divided into eight 16 bit blocks and written in hexadecimal notation Hexadecimal uses four bits for each character 1 10...

Страница 65: ...ISP s Address Family Transition Router AFTR in the graphic to connect to the IPv4 Internet The local network can also use IPv6 services The XMG uses it s configured IPv6 WAN IP to route IPv6 traffic to the IPv6 Internet Figure 22 Dual Stack Lite 6 1 3 Before You Begin You need to know your Internet access settings such as encapsulation and WAN IP address Get this information from your ISP ISP IPv4...

Страница 66: ...s whether the connection is in routing or bridge mode Encapsulation This is the method of encapsulation used by this connection 802 1p This indicates the 802 1p priority level assigned to traffic sent through this connection This displays N A when there is no priority level assigned 802 1q This indicates the VLAN ID number assigned to traffic sent through this connection This displays N A when the...

Страница 67: ...he ADSL VDSL over ATM connection type Routing mode and IPoE encapsulation The screen varies when you select other interface type encapsulation and IPv4 IPv6 mode Figure 24 Network Setting Broadband Add New WAN Interface Edit Routing Mode The following table describes the labels in this screen Table 9 Network Setting Broadband Add New WAN Interface Edit Routing Mode LABEL DESCRIPTION General Name S...

Страница 68: ...formation in each Protocol Data Unit PDU payload LLC ENCAPSULATION More than one protocol can be carried over the same VC This is available only when you select PPPoA in the Encapsulation field LLC SNAP ROUTING In LCC encapsulation an IEEE 802 2 Logical Link Control LLC header is prefixed to each routed PDU to identify the PDUs The LCC header can be followed by an IEEE 802 1a SubNetwork Attachment...

Страница 69: ...ngle IP address and port on the external network The XMG also maps packets coming to that external IP address and port to the internal IP address and port IGMP Proxy Enable Internet Group Multicast Protocol IGMP is a network layer protocol used to establish membership in a Multicast group it is not used to carry user data Select this option to have the XMG act as an IGMP proxy on this connection T...

Страница 70: ... of the device for example the WAN connection index number DUID Enter the hardware type a time value and the MAC address of the device option 125 Select this to have the XMG automatically generate and add vendor specific parameters in the DHCP discovery packets that go to the DHCP server IPv6 Address This is available only when you select IPv4 IPv6 DualStack or IPv6 Only in the IPv4 IPv6 Mode fiel...

Страница 71: ...Pv6 Only in the IPv4 IPv6 Mode field Configure the IPv6 DNS server in the following section Obtain IPv6 DNS Info Automatically Select Obtain IPv6 DNS Info Automatically to have the XMG get the IPv6 DNS server addresses from the ISP automatically Use Following Static IPv6 DNS Address Select Use Following Static IPv6 DNS Address to have the XMG use the IPv6 DNS server addresses you configure manuall...

Страница 72: ...to get individual IP address from ISP s DHCP server directly If you select Bridge you cannot use routing functions such as QoS Firewall DHCP server and NAT on traffic from the selected LAN port s VLAN This section is available only when you select ADSL VDSL over PTM in the Type field Active Select Enable to enable VLAN on this WAN interface 802 1p IEEE 802 1p defines up to 8 separate traffic types...

Страница 73: ...lable only when you select IPoE or PPPoE in the Encapsulation field VC MUX In VC multiplexing each protocol is carried on a single ATM virtual circuit VC To transport multiple protocols the XMG needs separate VCs There is a binding between a VC and the type of the network protocol carried on the VC This reduces payload overhead since there is no need to carry protocol information in each Protocol ...

Страница 74: ... display the following screen Figure 27 Network Setting Broadband Advanced Table 12 VDSL Profiles PROFILE BANDWIDTH MHZ NUMBER OF DOWNSTREAM CARRIERS CARRIER BANDWIDTH KHZ POWER DBM MAX DOWNSTREAM THROUGHPUT MBIT S 8a 8 832 2048 4 3125 17 5 50 8b 8 832 2048 4 3125 20 5 50 8c 8 5 1972 4 3125 11 5 50 8d 8 832 2048 4 3125 14 5 50 12a 12 2783 4 3125 14 5 68 12b 12 2783 4 3125 14 5 68 17a 17 664 4096 4...

Страница 75: ...th splitters T1 413 ANSI T1 413 is a technical standard that defines the requirements for the single asymmetric digital subscriber line ADSL for the interface between the telecommunications network and the customer installation in terms of their interaction and electrical characteristics ADSL2 It optionally extends the capability of basic ADSL in data rates to 12 Mbit s downstream and depending on...

Страница 76: ...DSL deployment settings such as in a central office a street cabinet or a building The XMG must comply with at least one profile specified in G 993 2 but compliance with more than one profile is allowed Apply Click Apply to save your changes back to the XMG Cancel Click Cancel to return to the previous configuration Table 13 Network Setting Broadband Advanced continued LABEL DESCRIPTION Table 14 N...

Страница 77: ...ifies that this authentication is not active Interface This is the interface that uses the authentication This displays N A when there is no interface assigned EAP Identity This shows the EAP identity of the authentication This displays N A when there is no EAP identity assigned EAP method This shows the EAP method used in the authentication This displays N A when there is no EAP method assigned B...

Страница 78: ...x Edit LABEL DESCRIPTION Active This field allows you to activate deactivate the authentication Select this to enable the authentication Clear this to disable this authentication without having to delete the entry Interface Select an interface to which the authentication applies EAP Identity Enter the EAP identity of the authentication EAP method This is the EAP method used for this authentication...

Страница 79: ...stems for example RADIUS One of the benefits of PPPoE is the ability to let you access one of multiple network services a function known as dynamic service selection This enables the service provider to easily create and offer new IP services for individuals Operationally PPPoE saves significant effort for both you and the ISP or carrier as it requires no specific configuration of the broadband mo...

Страница 80: ...s gives a maximum PCR of 1962 cells sec This rate is not guaranteed because it is dependent on the line speed Sustained Cell Rate SCR is the mean cell rate of each bursty traffic source It specifies the maximum average rate at which cells can be sent over the virtual connection SCR may not be greater than the PCR Maximum Burst Size MBS is the maximum number of cells that can be sent at the PCR Aft...

Страница 81: ...Bit Rate UBR ATM traffic class is for bursty data transfers However UBR doesn t guarantee any bandwidth and only delivers traffic when the network has spare bandwidth An example application is background file transfer IP Address Assignment A static IP is a fixed IP that your ISP gives you A dynamic IP is not fixed the ISP assigns you a different one each time The Single User Account feature can be...

Страница 82: ...cipient or Broadcast 1 sender everybody on the network Multicast delivers IP packets to a group of hosts on the network not everybody and not just 1 Internet Group Multicast Protocol IGMP is a network layer protocol used to establish membership in a Multicast group it is not used to carry user data IGMP version 2 RFC 2236 is an improvement over version 1 RFC 1112 but IGMP version 1 is still in wid...

Страница 83: ...ritten as 2001 db8 1a2b 15 0 0 1a2f 0 Any number of consecutive blocks of zeros can be replaced by a double colon A double colon can only appear once in an IPv6 address So 2001 0db8 0000 0000 1a2f 0000 0000 0015 can be written as 2001 0db8 1a2f 0000 0000 0015 2001 0db8 0000 0000 1a2f 0015 2001 db8 1a2f 0 0 15 or 2001 db8 0 0 1a2f 15 IPv6 Prefix and Prefix Length Similar to an IPv4 subnet mask IPv6...

Страница 84: ...ireless networks for multimedia applications Section 7 6 on page 95 Use the Others screen to configure wireless advanced features such as the RTS CTS Threshold Section 7 7 on page 96 Use the Channel Status screen to scan wireless LAN channel noises and view the results Section 7 8 on page 97 7 1 2 What You Need to Know Wireless Basics Wireless is essentially radio communication In the same way tha...

Страница 85: ...nfiguring the XMG from a computer connected to the wireless LAN and you change the XMG s SSID channel or security settings you will lose your wireless connection when you press Apply to confirm You must then change the wireless settings of your computer to match the XMG s new settings Click Network Setting Wireless to open the General screen Figure 32 Network Setting Wireless General ...

Страница 86: ...e Lower or Upper range of channel bands Wireless Network Settings Wireless Network Name SSID The SSID Service Set IDentity identifies the service set with which a wireless device is associated Wireless devices associating to the access point AP must have the same SSID Enter a descriptive name up to 32 English keyboard characters for the wireless LAN Max Clients Specify the maximum number of client...

Страница 87: ...g widely available software It is strongly recommended that you use a more effective security mechanism Use the strongest security mechanism that all the wireless devices in your network support For example use WPA PSK or WPA2 PSK if all your wireless devices support it or use WPA or WPA2 if your wireless devices support it and you have a RADIUS server If your wireless devices support nothing stro...

Страница 88: ...nable WEP data encryption Security Mode This shows WEP when you set Security Level to Basic Generate password automatically Select this option to have the XMG automatically generate a password The password field will not be configurable when you select this option Password 1 4 The password WEP keys are used to encrypt data Both the XMG and the wireless stations must use the same password WEP key f...

Страница 89: ...ssword The password field will not be configurable when you select this option Password The encryption mechanisms used for WPA 2 and WPA 2 PSK are the same The only difference between the two is that WPA 2 PSK uses a simple common password instead of user specific credentials If you did not select Generate password automatically you can manually type a pre shared key from 8 to 64 case sensitive ke...

Страница 90: ... is the set of parameters relating to one of the XMG s BSSs The SSID Service Set IDentifier identifies the Service Set with which a wireless device is associated This field displays the name of the wireless profile on the network When a wireless client scans for an AP to associate with this is the name that is broadcast and seen in the wireless client utility Security This field indicates the secu...

Страница 91: ...is associated Wireless devices associating to the access point AP must have the same SSID Enter a descriptive name up to 32 English keyboard characters for the wireless LAN Hide SSID Select this check box to hide the SSID in the outgoing beacon frame so a station cannot obtain the SSID through scanning using a site survey tool Guest WLAN Select this to create Guest WLANs for home and external clie...

Страница 92: ...e to assign DHCP IP addresses to the associated wireless clients DHCP Start Address Specify the first of the contiguous addresses in the DHCP IP address pool The XMG assigns IP addresses from this DHCP pool to wireless clients connecting to the SSID DHCP End Address Specify the last of the contiguous addresses in the DHCP IP address pool SSID Subnet Mask Specify the subnet mask of the XMG for the ...

Страница 93: ...sses in the MAC Address table Select Disable to turn off MAC filtering Select Deny to block access to the XMG MAC addresses not listed will be allowed to access the XMG Select Allow to permit access to the XMG MAC addresses not listed will be denied access to the XMG Add new MAC address Click this if you want to add a new MAC address entry to the MAC filter list below Enter the MAC addresses of th...

Страница 94: ...tton to add another WPS enabled wireless device within wireless range of the XMG to your wireless network This button may either be a physical button on the outside of device or a menu button similar to the WPS button on this screen Note You must press the other wireless device s WPS button within two minutes of pressing this button Method 2 Use this section to set up a WPS wireless network by ent...

Страница 95: ...nges Cancel Click Cancel to restore your previously saved settings Table 24 Network Setting Wireless WPS continued LABEL DESCRIPTION Table 25 Network Setting Wireless WMM LABEL DESCRIPTION 2 4GHz WMM Setup 5GHz WMM Setup WMM of SSID1 4 Select On to have the XMG automatically give the wireless network SSIDx a priority level according to the ToS value in the IP header of packets it sends WMM QoS Wif...

Страница 96: ... and 2346 Output Power Set the output power of the XMG If there is a high density of APs in an area decrease the output power to reduce interference with other APs Select one of the following 20 40 60 80 or 100 Beacon Interval When a wirelessly networked device sends a beacon it includes with it a beacon interval This specifies the time period before the device sends the beacon again The interval ...

Страница 97: ...ight be reduced Select 802 11b g n Mixed to allow IEEE 802 11b IEEE 802 11g or IEEE802 11n compliant WLAN devices to associate with the XMG The transmission rate of your XMG might be reduced 802 11 Protection Enabling this feature can help prevent collisions in mixed mode networks networks with both IEEE 802 11b and IEEE 802 11g traffic Select Auto to have the wireless devices transmit data after ...

Страница 98: ...t is a radio with a wired connection to a network which can connect with numerous wireless clients and let them access the network A bridge is a radio that relays communications between access points and wireless clients extending a network s range Traditionally a wireless network operates in one of two ways An infrastructure type of network has one or more access points and one or more wireless c...

Страница 99: ...nel Like radio stations or television channels each wireless network uses a specific channel or frequency to send and receive information Every device in the same wireless network must use security compatible with the AP Security stops unauthorized devices from using the wireless network It can also protect the information that is sent in the wireless network Radio Channels In the radio spectrum t...

Страница 100: ...long string of apparently random numbers and letters but it is not very secure if you use a short key which is very easy to guess for example a three letter word from the dictionary Because of the damage that can be done by a malicious attacker it s not just people who have sensitive information on their network who should use security Everybody who uses any wireless network should ensure that eff...

Страница 101: ...ve the correct information SSID channel and security If a device is not allowed to use the wireless network it does not matter if it has the correct information This type of security does not protect the information that is sent in the wireless network Furthermore there are ways for unauthorized wireless devices to get the MAC address of an authorized device Then they can use that MAC address to u...

Страница 102: ...le for unauthorized wireless devices to figure out the original information pretty quickly When you select WPA2 or WPA2 PSK in your XMG you can also select an option WPA compatible to support WPA as well In this case if some of the devices support WPA and some support WPA2 you should set up WPA2 PSK or WPA2 depending on the type of wireless network login and select the WPA compatible option in the...

Страница 103: ...fferent APs to configure different Basic Service Sets BSSs As well as the cost of buying extra APs there is also the possibility of channel interference The XMG s MBSSID Multiple Basic Service Set IDentifier function allows you to use one access point to provide several BSSs simultaneously You can then assign varying QoS priorities and or security modes to different SSIDs Wireless devices can use ...

Страница 104: ...urity settings manually Each WPS connection works between two devices Both devices must support WPS check each device s documentation to make sure Depending on the devices you have you can either press a button on the device itself or in its configuration utility or enter a PIN a unique Personal Identification Number that allows one device to authenticate the other in each of the two devices When ...

Страница 105: ...nds the network and security information to the other allowing it to join the network Take the following steps to set up a WPS connection between an access point or wireless router referred to here as the AP and a client device using the PIN method 1 Ensure WPS is enabled on both devices 2 Access the WPS section of the AP s configuration interface See the device s User s Guide for how to do this 3...

Страница 106: ...tication Protocol tunnel and sends the network name SSID and the WPA PSK or WPA2 PSK pre shared key to the enrollee Whether WPA PSK or WPA2 PSK is used depends on the standards supported by the devices If the registrar is already part of a network it sends the existing information If not it generates the SSID and WPA 2 PSK randomly The following figure shows a WPS enabled client installed in a not...

Страница 107: ...security settings it transmits to the enrollee are randomly generated Once a WPS enabled device has connected to another device using WPS it becomes configured A configured wireless client can still act as enrollee or registrar in subsequent WPS connections but a configured access point can no longer act as enrollee It will be the registrar in all subsequent WPS connections in which it is involved...

Страница 108: ...egistrar since it is configured it already has security information for the network AP1 supplies the existing security information to Client 2 Figure 48 WPS Example Network Step 2 In step 3 you add another access point AP2 to your network AP2 is out of range of AP1 so you cannot use AP1 for the WPS handshake with the new access point However you know that Client 2 supports the registrar function s...

Страница 109: ...or WPA2 PSK depends on the device You can check the configuration interface of the registrar device to discover the key the network is using if the device supports this feature Then you can enter the key into the non WPS device and join the network as normal the non WPS device must also support WPA PSK or WPA2 PSK When you use the PBC method there is a short period from the moment you press the bu...

Страница 110: ...s not involved in the WPS handshake a rogue device must still associate with the access point to gain access to the network Check the MAC addresses of your wireless clients usually printed on a label on the bottom of the device If there is an unknown MAC address you can remove it or reset the AP ...

Страница 111: ... LAN to specific individual computers based on their MAC Addresses Section 8 3 on page 117 Use the UPnP screen to enable UPnP and UPnP NAT traversal on the XMG Section 8 4 on page 118 Use the Additional Subnet screen to configure IP alias and public static IP Section 8 5 on page 121 Use the STB Vendor ID screen to configure the Vendor IDs of the connected Set Top Box STB devices which have the XMG...

Страница 112: ...u can access it RADVD Router Advertisement Daemon When an IPv6 host sends a Router Solicitation RS request to discover the available routers RADVD with Router Advertisement RA messages in response to the request It specifies the minimum and maximum intervals of RA broadcasts RA messages containing the address prefix IPv6 hosts can be generated with the IPv6 prefix an IPv6 address 8 1 2 2 About UPn...

Страница 113: ...UPnP certification from the Universal Plug and Play Forum UPnP Implementers Corp UIC Zyxel s UPnP implementation supports Internet Gateway Device IGD 1 0 See Section 8 4 1 on page 119 for examples of installing and using UPnP Finding Out More See Section 8 9 on page 123 for technical background information on LANs 8 1 3 Before You Begin Find out the MAC addresses of your network devices if you int...

Страница 114: ...Chapter 8 Home Networking XMG3512 B10A User s Guide 114 3 Click Apply to save your settings Figure 50 Network Setting Home Networking LAN Setup ...

Страница 115: ...is field IP Addressing Values This field is only available when you select Enable in the DHCP field Beginning IP Address This field specifies the first of the contiguous addresses in the IP address pool Ending IP Address This field specifies the last of the contiguous addresses in the IP address pool Auto reserve IP for the same host Select Enable to have the XMG record DHCP IP addresses with the ...

Страница 116: ...6 Address Assign Setup Select how you want to obtain an IPv6 address Stateless The XMG uses IPv6 stateless autoconfiguration RADVD Router Advertisement Daemon is enabled to have the XMG send IPv6 prefix information in router advertisements periodically and in response to router solicitations DHCPv6 server is disabled Stateful The XMG uses IPv6 stateful autoconfiguration The DHCPv6 server is enable...

Страница 117: ...s to the IPv6 DNS server first and then the IPv4 DNS server Then it sends clients the first DNS information it receives IPv4 DNS Server First The XMG forwards the requests to the IPv4 DNS server first and then the IPv6 DNS server Then it sends clients the first DNS information it receives Apply Click Apply to save your changes Cancel Click Cancel to restore your previously saved settings Table 29 ...

Страница 118: ...le 31 Static DHCP Static DHCP Configuration Edit LABEL DESCRIPTION Active Select Enable to activate the connection between the client and the XMG Group Name Select the interface group name for which you want to configure static DHCP settings See Chapter 14 on page 172 for how to create a new interface group IP Type This field displays IPv4 for the type of the DHCP IP address At the time of writing...

Страница 119: ...ddress although you must still enter the password to access the web configurator UPnP NAT T State UPnP NAT T Select Enable to allow UPnP enabled applications to automatically configure the XMG so that they can communicate through the XMG by using NAT traversal UPnP applications automatically reserve a NAT forwarding port in order to communicate with another UPnP enabled device this eliminates the ...

Страница 120: ...anced Sharing Settings 3 Select Turn on network discovery and click Save Changes Network discovery allows your computer to find other computers and devices on the network and other computers on the network to find your computer This makes it easier to share files and printers ...

Страница 121: ...bnet The following table describes the labels in this screen Table 33 Network Setting Home Networking Additional Subnet LABEL DESCRIPTION IP Alias Setup Group Name Select the interface group name for which you want to configure the IP alias settings See Chapter 14 on page 172 for how to create a new interface group Active Select Enable to configure a LAN network for the XMG IPv4 Address Enter the ...

Страница 122: ...N Screen Use this screen to turn on a device on the LAN network To use this feature the remote device must also support Wake On LAN You need to know the MAC address of the LAN device It may be on a label on the device or in its documentation Click Network Setting Home Networking Wake on LAN to open this screen Figure 56 Network Setting Home Networking Wake on LAN Apply Click Apply to save your cha...

Страница 123: ...Ns and the XMG The actual physical connection determines whether the XMG ports are LAN or WAN ports There are two separate IP networks one inside the LAN network and the other outside the WAN network as shown next Table 35 Network Setting Home Networking Wake on LAN LABEL DESCRIPTION Wake by Address Select Manual and enter the IP address or MAC address of the device to turn it on remotely The drop...

Страница 124: ...u must know the IP address of a computer before you can access it The DNS server addresses you enter when you set up DHCP are passed to the client machines along with the assigned IP address and subnet mask There are two ways that an ISP disseminates the DNS server addresses The ISP tells you the DNS server addresses usually in the form of an information sheet when you sign up If your ISP gives yo...

Страница 125: ...e XMG routes most traffic from A to the Internet through the XMG s default gateway R1 You create one static route to connect to services offered by your ISP behind router R2 You create another static route to communicate with a separate network behind a router R3 connected to the LAN Figure 59 Example of Routing Topology 9 2 The Routing Screen Use this screen to view and configure the static route...

Страница 126: ...this route is active A gray bulb signifies that this route is not active Name This is the name that describes or identifies this route Destination IP This parameter specifies the IP network address of the final destination Routing is always based on network number Subnet Mask This parameter specifies the IP network subnet mask of the final destination Gateway This is the IP address of the gateway ...

Страница 127: ...sk of 255 255 255 255 in the subnet mask field to force the network number to be identical to the host ID Enter the IP subnet mask here Use Gateway IP Address The gateway is a router or switch on the same network segment as the device s LAN or WAN port The gateway helps forward packets to their destinations If you want to use the gateway IP address select Enable Gateway IP Address Enter the IP add...

Страница 128: ...tgoing packets prior to the normal routing You can use source based policy forwarding to direct traffic from different users through different connections or distribute traffic among multiple paths for load sharing Subnet Mask This is the subnet mask of the DNS route entry Modify Click the Edit icon to modify the DNS route Click the Delete icon to delete the DNS route Table 39 Network Setting Rout...

Страница 129: ...ute is active or not A yellow bulb signifies that this DNS route is active A gray bulb signifies that this DNS route is not active Name This is the name of the rule Source IP This is the source IP address Source Subnet Mask his is the source subnet mask address Protocol This is the transport layer protocol Source Port This is the source port number Source MAC This is the source MAC address Source ...

Страница 130: ...e Select to enable or disable this policy route Route Name Enter a descriptive name of up to 8 printable English keyboard characters not including spaces Source IP Address Enter the source IP address Source Subnet Mask Enter the source subnet mask address Protocol Select the transport layer protocol TCP or UDP Source Port Enter the source port number Source MAC Enter the source MAC address Source ...

Страница 131: ...ly supported but RIP version 2 carries more information RIP version 1 is probably adequate for most networks unless you have an unusual network topology Operation Select Passive to have the XMG update the routing table based on the RIP packets received from neighbors but not advertise its route information to other routers in this interface Select Active to have the XMG advertise its route informa...

Страница 132: ...rity are processed more quickly than those with low priority if there is congestion allowing time sensitive applications to flow more smoothly Time sensitive applications include both those that require a low level of latency delay and a low level of jitter variations in delay such as Voice over IP VoIP or Internet gaming and those for which jitter alone is a problem such as Internet radio or stre...

Страница 133: ...le DiffServ is a new protocol and defines a new DS field which replaces the eight bit ToS Type of Service field in the IP header Tagging and Marking In a QoS class you can configure whether to add or change the DSCP DiffServ Code Point value IEEE 802 1p priority level and VLAN ID number in a matched packet When the packet passes through a compatible network the networking device such as a backbone...

Страница 134: ...lgorithms Token Bucket Filter TBF Single Rate Two Color Maker srTCM and Two Rate Two Color Marker trTCM You can specify actions which are performed on the colored packets See Section 10 8 on page 145 for more information on each metering algorithm 10 3 The Quality of Service General Screen Click Network Setting QoS General to open the screen as shown next Use this screen to enable or disable QoS a...

Страница 135: ... the amount of downstream bandwidth for the LAN interfaces including WLAN that you want to allocate using QoS The recommendation is to set this speed to match the WAN interfaces actual transmission speed For example set the LAN managed downstream bandwidth to 100000 kbps if you use a 100 Mbps wired Ethernet WAN connection You can also set this number lower than the WAN interfaces actual transmissi...

Страница 136: ... Name This shows the descriptive name of this queue Interface This shows the name of the XMG s interface through which traffic in this queue passes Priority This shows the priority of this queue Weight This shows the weight of this queue Buffer Management This shows the queue management algorithm used for this queue Queue management algorithms determine how the XMG should handle packets when it re...

Страница 137: ...ity queues gets through faster while traffic in lower priority queues is dropped if the network is congested Weight Select the weight from 1 to 8 of this queue If two queues have the same priority level the XMG divides the bandwidth across the queues according to their weights Queues with larger weights get more bandwidth than queues with smaller weights Buffer Management This field displays Drop ...

Страница 138: ... the Edit icon next to a classifier to open the following screen Table 47 Network Setting QoS Classification Setup LABEL DESCRIPTION Add New Classification Click this to create a new classifier Order This is the index number of the entry The classifiers are applied in order of their numbering Status This field displays whether the classifier is active or not A yellow bulb signifies that this class...

Страница 139: ...Chapter 10 Quality of Service QoS XMG3512 B10A User s Guide 139 Figure 71 Classification Setup Add Edit ...

Страница 140: ... of the packet MAC Mask Type the mask for the specified MAC address to determine which bits a packet s MAC address should match Enter f for each bit of the specified source MAC address that the traffic s MAC address should match Enter 0 for the bit s of the matched traffic s MAC address which can be of any hexadecimal character s For example if you set the MAC address to 00 13 49 00 00 00 and the ...

Страница 141: ... fields provided DSCP This field is available only when you select IP in the Ether Type field Select this option and specify a DSCP DiffServ Code Point number between 0 and 63 in the field provided 802 1P This field is available only when you select 802 1Q in the Ether Type field Select this option and select a priority level between 0 and 7 from the drop down list box 0 is the lowest priority lev...

Страница 142: ...ue that applies to this class You should have configured a queue in the Queue Setup screen already OK Click OK to save your changes Cancel Click Cancel to exit this screen without saving Table 48 Classification Setup Add Edit continued LABEL DESCRIPTION Table 49 Network Setting QoS Shaper Setup LABEL DESCRIPTION Add New Shaper Click this to create a new entry This is the index number of the entry ...

Страница 143: ...P value for matched traffic Click Network Setting QoS Policer Setup The screen appears as shown Figure 74 Network Setting QoS Policer Setup The following table describes the labels in this screen Table 50 Shaper Setup Add Edit LABEL DESCRIPTION Active Select to enable or disable this shaper Interface Select the XMG s interface through which traffic in this shaper applies Rate Limit Enter the avera...

Страница 144: ...ield displays the name of a QoS classifier Meter Type This field displays the type of QoS metering algorithm used in this policer Rule These are the rates and burst sizes against which the policer checks the traffic of the member QoS classes Action This shows the how the policer has the XMG treat different types of traffic belonging to the policer s member QoS classes Modify Click the Edit icon to...

Страница 145: ...d rate When the incoming traffic rate of the member QoS classes is less than the committed rate the device applies the conforming action to the traffic Committed Burst Size Specify the committed burst size for packet bursts This must be equal to or less than the peak burst size two rate three color or excess burst size single rate three color if it is also configured This is the maximum size of th...

Страница 146: ...field and a 6 bit DSCP field which can define up to 64 service levels The following figure illustrates the DS field DSCP is backward compatible with the three precedence bits in the ToS octet so that non DiffServ compliant ToS enabled network device will not conflict with the DSCP mapping The DSCP value determines the forwarding behavior the PHB Per Hop Behavior that each packet gets across the Di...

Страница 147: ... 1p priority level IP precedence and or packet length to assign priority to traffic which does not match a class The following table shows you the internal layer 2 and layer 3 QoS mapping on the XMG On the XMG traffic assigned to higher priority queues gets through faster while traffic in lower index queues is dropped if the network is congested Table 54 Internal Layer2 and Layer3 QoS Mapping PRIO...

Страница 148: ...that may cause outgoing packets to be dropped A larger transmission rate requires a big bucket size For example use a bucket size of 10 kbytes to get the transmission rate up to 10 Mbps Single Rate Three Color Marker The Single Rate Three Color Marker srTCM defined in RFC 2697 is a type of traffic policing that identifies packets by comparing them to one user defined rate the Committed Information...

Страница 149: ... priority levels High packet loss priority level is referred to as red medium is referred to as yellow and low is referred to as green The trTCM is based on the token bucket filter and has two token buckets Committed Burst Size CBS and Peak Burst Size PBS Tokens are generated and added into the two buckets at the CIR and PIR respectively All packets are evaluated against the PIR If a packet exceed...

Страница 150: ...gs Section 11 4 on page 155 Use the DMZ screen to configure a default server Section 11 5 on page 158 Use the ALG screen to enable and disable the NAT and SIP VoIP ALG in the XMG Section 11 6 on page 159 Use the Address Mapping screen to configure the XMG s address mapping settings Section 11 7 on page 159 Use the Sessions screen to configure the XMG s maximum number of NAT sessions Section 11 8 o...

Страница 151: ...ddress of the desired server The port number identifies a service for example web service is on port 80 and FTP on port 21 In some cases such as for unknown services or where one server can support more than one service for example both FTP and web service it might be better to specify a range of port numbers You can allocate a server IP address that corresponds to a port or a range of ports The m...

Страница 152: ...ulb signifies that this rule is not active Service Name This shows the service s name WAN Interface This shows the WAN interface through which the service is forwarded Server IP Address This is the server s IP address Start Port This is the first external port number that identifies a service End Port This is the last external port number that identifies a service Translation Start Port This is th...

Страница 153: ...Edit LABEL DESCRIPTION Active Select to enable or disable the rule Service Name Enter a name to identify this rule using keyboard characters A Z a z 1 2 and so on WAN Interface Select the WAN interface through which the service is forwarded You must have already configured a WAN connection with NAT enabled Start Port Enter the original destination port for the packets To forward only one port ente...

Страница 154: ...ter the first number of the range to which you want the incoming ports translated Translation End Port This shows the last port of the translated port range Server IP Address Enter the inside IP address of the virtual server here Protocol Select the protocol supported by this virtual server Choices are TCP UDP or TCP UDP Wake up this target by Wake On Lan WOL Select this to allow the XMG s network...

Страница 155: ...tination IP address for the service Modify Click the Delete icon to delete the rule Table 57 Network Setting NAT Applications continued LABEL DESCRIPTION Table 58 Network Setting NAT Applications Add LABEL DESCRIPTION WAN Interface Select the WAN interface that you want to apply this NAT rule to Server IP Address Enter the inside IP address of the application here Application Category Select the c...

Страница 156: ...st After that computer s connection for that service closes another computer on the LAN can use the service in the same manner This way you do not need to configure a new IP address each time you want a different LAN computer to use the application For example Figure 81 Trigger Port Forwarding Process Example 1 Jane requests a file from the Real Audio server port 7070 2 Port 7070 is a trigger port...

Страница 157: ... This field shows the WAN interface through which the service is forwarded Trigger Start Port The trigger port is a port or a range of ports that causes or triggers the XMG to record the IP address of the LAN computer that sent the traffic to a server on the WAN This is the first port number that identifies a service Trigger End Port This is the last port number that identifies a service Trigger P...

Страница 158: ...igger End Port Type a port number or the ending port number in a range of port numbers Trigger Protocol Select the transport layer protocol from TCP UDP or TCP UDP Open Start Port The open port is a port or a range of ports that a server on the WAN uses when it sends out a particular service The XMG forwards the traffic with this port or range of ports to the client computer on the LAN that reques...

Страница 159: ... the XMG takes the corresponding action and the remaining rules are ignored Click Network Setting NAT Address Mapping to display the following screen Figure 86 Network Setting NAT Address Mapping Table 62 Network Setting NAT ALG LABEL DESCRIPTION NAT ALG Enable this to make sure applications such as FTP and file transfer in IM applications work correctly with port forwarding and address mapping ru...

Страница 160: ...e Global IP Address IGA Enter 0 0 0 0 here if you have a dynamic IP address from your ISP You can only do this for the Many to One mapping type Global End IP This is the ending Inside Global IP Address IGA This field is blank for One to One and Many to One mapping types Type This is the address mapping type One to One This mode maps one local IP address to one global IP address Note that port numb...

Страница 161: ...e Local IP Address ILA Local End IP Enter the ending Inside Local IP Address ILA If the rule is for all local IP addresses then this field displays 0 0 0 0 as the Local Start IP address and 255 255 255 255 as the Local End IP address This field is blank for One to One mapping types Global Start IP Enter the starting Inside Global IP Address IGA Enter 0 0 0 0 here if you have a dynamic IP address f...

Страница 162: ...the simplest form NAT changes the source IP address in a packet received from a subscriber the inside local address to another the inside global address before forwarding the packet to the WAN side When the response comes back NAT translates the destination address the inside global address back to the inside local address before forwarding it to the original inside host Note that the IP address e...

Страница 163: ... TCP or UDP source port numbers for Many to One and Many to Many Overload NAT mapping in each packet and then forwards it to the Internet The XMG keeps track of the original addresses and port numbers so incoming reply packets can have their original values restored The following figure illustrates this Figure 89 How NAT Works 11 9 4 NAT Application The following figure illustrates a possible NAT ...

Страница 164: ...g Example Let s say you want to assign ports 21 25 to one FTP Telnet and SMTP server A in the example port 80 to another B in the example and assign a default server IP address of 192 168 1 35 to a third C in the Table 67 Services and Port Numbers SERVICES PORT NUMBER ECHO 7 FTP File Transfer Protocol 21 SMTP Simple Mail Transfer Protocol 25 DNS Domain Name System 53 Finger 79 HTTP Hyper Text Tran...

Страница 165: ...mple You assign the LAN IP addresses and the ISP assigns the WAN IP address The NAT network appears as a single host on the Internet Figure 91 Multiple Servers Behind NAT Example D 192 168 1 36 192 168 1 1 IP address assigned by ISP A 192 168 1 33 B 192 168 1 34 C 192 168 1 35 ...

Страница 166: ...u in NetMeeting CU SeeMe etc You can also access your FTP server or Web site on your own computer using a domain name for instance myhost dhs org where myhost is a name of your choice that will never change instead of using an IP address that changes each time you reconnect Your friends or relatives will always be able to call you even if they don t know your IP address First of all you need to ha...

Страница 167: ...n manually add or edit the XMG s DNS name and IP address entry Click Add New DNS Entry in the DNS Entry screen or the Edit icon next to the entry you want to edit The screen shown next appears Figure 93 DNS Entry Add Edit Table 68 Network Setting DNS DNS Entry LABEL DESCRIPTION Add New DNS Entry Click this to create a new DNS entry This is the index number of the entry Hostname This indicates the ...

Страница 168: ...ting DNS Dynamic DNS LABEL DESCRIPTION Dynamic DNS Setup Dynamic DNS Select Enable to use dynamic DNS Service Provider Select your Dynamic DNS service provider from the drop down list box Host Name Type the domain name assigned to your XMG by your Dynamic DNS provider You can specify up to two host names in the field separated by a comma Username Type your user name Password Type the password assi...

Страница 169: ...pter 12 DNS XMG3512 B10A User s Guide 169 Apply Click Apply to save your changes Cancel Click Cancel to exit this screen without saving Table 70 Network Setting DNS Dynamic DNS continued LABEL DESCRIPTION ...

Страница 170: ...ag outgoing requests to these servers with these VLAN IDs Figure 95 VLAN Group Example 13 1 1 What You Can Do in this Chapter Use these screens to group separate VLAN groups together to be treated as one VLAN group 13 2 The VLAN Group Screen Click Network Setting Vlan Group to open the following screen Figure 96 Network Setting Vlan Group The following table describes the fields in this screen Tab...

Страница 171: ...nge an existing VLAN group setting or click the Delete icon to remove the VLAN group Table 71 Network Setting Vlan Group continued LABEL DESCRIPTION Table 72 Add Edit VLAN Group LABEL DESCRIPTION VLAN Group Name Enter a name to identify this group You can enter up to 30 characters You can use letters numbers hyphens and underscores _ Spaces are not allowed VLAN ID Enter a unique ID number from 1 t...

Страница 172: ...G automatically add the incoming traffic and the LAN interface on which traffic is received to an interface group when its DHCP Vendor ID option information matches one listed for the interface group Use the LAN screen to configure the private IP addresses the DHCP server on the XMG assigns to the clients in the default and or user defined groups If you set the XMG to assign IP addresses based on ...

Страница 173: ...o open the following screen Use this screen to create a new interface group Note An interface can belong to only one group at a time Table 73 Network Setting Interface Grouping LABEL DESCRIPTION Add New Interface Group Click this button to create a new interface group Group Name This shows the descriptive name of the group WAN Interface This shows the WAN interfaces in the group LAN Interfaces Thi...

Страница 174: ... the grouping Select the WAN interface this group uses The group can have up to one PTM interface up to one ATM interface up to one ETH interface and and up to one WWAN interface Select None to not add a WAN interface to this group Grouped LAN Interfaces Available LAN Interfaces Select one or more LAN interfaces Ethernet LAN HPNA or wireless LAN on the Available LAN Interfaces list and use the lef...

Страница 175: ... automatically WildCard Support This shows if wildcard on DHCP option 60 is enabled Modify Click the Modify icon to edit this rule on the XMG OK Click OK to save your changes back to the XMG Cancel Click Cancel to exit this screen without saving Table 74 Interface Group Configuration continued LABEL DESCRIPTION Table 75 Interface Grouping Criteria LABEL DESCRIPTION Source MAC Address Select this o...

Страница 176: ... Unique Identifier It is usually the first three bytes of the MAC address Serial Number Enter the serial number of the device Product Class Enter the product class of the device VLAN Group Select this and the VLAN group of the matched traffic from the drop down list box OK Click OK to save your changes back to the XMG Cancel Click Cancel to exit this screen without saving Table 75 Interface Groupi...

Страница 177: ...le Sharing Overview The XMG will not be able to join the workgroup if your local area network has restrictions set up that do not allow devices to join a workgroup In this case contact your network administrator 15 1 1 What You Can Do in this Chapter Use the File Sharing screen to enable file sharing server Section 15 1 3 on page 178 Use the Media Server screen to enable or disable the sharing of ...

Страница 178: ...ile System The XMG uses Common Internet File System CIFS protocol for its file sharing functions CIFS compatible computers can access the USB file storage devices connected to the XMG CIFS protocol is supported on Microsoft Windows Linux Samba and other operating systems refer to your systems specifications for CIFS compatibility 15 1 3 Before You Begin Make sure the XMG is connected to your netwo...

Страница 179: ...ice Used Space This is the memory size in megabytes already used on the USB device Server Configuration File Sharing Services Select Enable to activate file sharing through the XMG Account Management Add New User Click this button to create a user account to access the secured shares Active Select this to allow the user to access the secured shares Status This field shows the status of the user Th...

Страница 180: ... device connected to the XMG Use hardware based media clients like the DMA 2500 to play the files Note Anyone on your network can play the media files in the published shares No user name and password or other form of security is used The media server is enabled by default with the video photo and music shares published To change your XMG s media server settings click Network Setting USB Service M...

Страница 181: ...he XMG function as a DLNA compliant media server Enable the media server to let DLNA compliant media clients on your network play media files located in the shares Interface Select an interface on which you want to enable the media server function Media Library Path Enter the path clients use to access the media files on a USB storage device connected to the XMG Apply Click Apply to save your chan...

Страница 182: ...ate an IM Instant Messaging session from the LAN to the WAN 1 Return traffic for this session is also allowed 2 However other traffic initiated from the WAN is blocked 3 and 4 Figure 106 Default Firewall Action 16 1 1 What You Can Do in this Chapter Use the General screen to configure the security level of the firewall on the XMG Section 16 2 on page 183 Use the Protocol screen to add or remove pr...

Страница 183: ...one in which multiple compromised systems attack a single target thereby causing denial of service for users of the targeted system LAND Attack In a LAND attack hackers flood SYN packets into the network with a spoofed source IP address of the target system This makes it appear as if the host computer sent the packets to itself making the system unavailable while the target system tries to respond...

Страница 184: ... C on page 269 for some examples Click Security Firewall Protocol to display the following screen Figure 108 Security Firewall Protocol Table 79 Security Firewall General LABEL DESCRIPTION Firewall Select Enable to activate the firewall feature on the XMG Low Select Low to allow LAN to WAN and WAN to LAN packet directions Medium Select Medium to allow LAN to WAN but deny WAN to LAN packet directio...

Страница 185: ...r and the protocol number displays if the service uses another IP protocol Modify Click the Edit icon to edit the entry Click the Delete icon to remove this entry Table 81 Security Firewall Protocol Add Edit LABEL DESCRIPTION Service Name Enter a unique name up to 32 printable English keyboard characters including spaces for your customized port Description Enter a description for your customized ...

Страница 186: ...ACL Rule Click this to go to add a filter rule for incoming or outgoing IP traffic This is the index number of the entry Name This displays the name of the rule Src IP This displays the source IP addresses to which this rule applies Please note that a blank source address is equivalent to Any Dst IP This displays the destination IP addresses to which this rule applies Please note that a blank dest...

Страница 187: ...rce IP Address Enter the source IP address Select Destination Device Select the destination device to which the ACL rule applies If you select Specific IP Address enter the destiniation IP address in the field below Destination IP Address Enter the destination IP address IP Type Select whether your IP type is IPv4 or IPv6 Select Service Select the transport layer protocol that defines your customi...

Страница 188: ...wn list box to select whether to discard DROP deny and send an ICMP destination unreachable message to the sender of REJECT or allow the passage of ACCEPT packets that match this rule Direction Use the drop down list box to select the direction of traffic to which this rule applies Enable Rate Limit Select Enable to set a limit on the upstream downstream transmission rate for the specified protoco...

Страница 189: ...et device has a unique MAC Media Access Control address The MAC address is assigned at the factory and consists of six pairs of hexadecimal characters for example 00 A0 C5 00 00 02 You need to know the MAC addresses of the devices to configure this screen 17 2 The MAC Filter Screen Use this screen to allow wireless and LAN clients access to the XMG Click Security MAC Filter The screen appears as s...

Страница 190: ... This is the index number of the MAC address Active Select Active to enable the MAC filter rule The rule will not be applied if Active is not selected Host Name Enter the host name of the wireless or LAN clients that are allowed access to the XMG MAC Address Enter the MAC addresses of the wireless or LAN clients that are allowed access to the XMG in these address fields Enter the MAC addresses in ...

Страница 191: ...Parental Control Select Enable to activate parental control Parental Control Profile PCP Add New PCP Click this if you want to configure a new Parental Control Profile This shows the index number of the rule Status This indicates whether the rule is active or not A yellow bulb signifies that this rule is active A gray bulb signifies that this rule is not active PCP Name This shows the name of the ...

Страница 192: ...restricted access schedule and or URL filtering settings to block the users on your network from accessing certain web sites Figure 115 Parental Control Rule Add Edit Rule Modify Click the Edit icon to go to the screen where you can edit the rule Click the Delete icon to delete an existing rule Apply Click Apply to save your changes Cancel Click Cancel to restore your previously saved settings Tab...

Страница 193: ...e Network Service Setting If you select Block the XMG prohibits the users from viewing the Web sites with the URLs listed below If you select Allow the XMG blocks access to all URLs except ones listed below Add New Service Click this to show a screen in which you can add a new service rule You can configure the Service Name Protocol and Name of the new rule This shows the index number of the rule ...

Страница 194: ...to save your changes Cancel Click Cancel to to exit this screen without saving Table 88 Parental Control Rule Add Edit Rule Add New Service LABEL DESCRIPTION Service Name Select the name of the service Otherwise select User Define and manualy specify the protocol and the port of the service If you have chosen a pre defined service in the Service Name field this field will not be configurable Proto...

Страница 195: ...reen OK Click OK to save your changes Cancel Click Cancel to exit this screen without saving Table 89 Parental Control Rule Add Edit Rule Add Keyword LABEL DESCRIPTION Site URL Keyword Enter a keyword and click OK to have the XMG to block access to the website URLs that contain the keyword OK Click OK to save your changes Cancel Click Cancel to exit this screen without saving Table 88 Parental Con...

Страница 196: ... Add New Rule button in the Scheduler Rule screen or click the Edit icon next to a schedule rule to open the following screen Use this screen to configure a restricted access schedule Table 90 Security Scheduler Rule LABEL DESCRIPTION Add New Rule Click this to create a new rule This is the index number of the entry Rule Name This shows the name of the rule Day This shows the day s on which this r...

Страница 197: ... to 31 printable English keyboard characters not including spaces for this schedule Day Select check boxes for the days that you want the XMG to perform this scheduler rule Time of Day Range Enter the time period of each day in 24 hour format during which the rule will be enforced Description Enter a description for this scheduler rule OK Click OK to save your changes Cancel Click Cancel to exit t...

Страница 198: ...erms and concepts may help as you read through this chapter Certification Authority A Certification Authority CA issues certificates and guarantees the identity of each certificate owner There are commercial certification authorities like CyberTrust or VeriSign and government certification authorities The certification authority uses its private key to sign certificates Anyone can then use the cer...

Страница 199: ...commended that you give each certificate a unique name Subject This field displays identifying information about the certificate s owner such as CN Common Name OU Organizational Unit or department O Organization or company and C Country It is recommended that each certificate have unique subject information Issuer This field displays identifying information about the certificate s issuing certific...

Страница 200: ...luding spaces to identify this certificate Common Name Select Auto to have the XMG configure this field automatically Or select Customize to enter it manually Type the IP address in dotted decimal notation domain name or e mail address in the field provided The domain name or e mail address can be up to 63 ASCII characters The domain name or e mail address is for identification purposes only and c...

Страница 201: ...horities that you have set the XMG to accept as trusted The XMG accepts any valid certificate signed by a certification authority on this list as being trustworthy thus you do not need to import any certificate that is signed by one of these certification authorities Figure 125 Security Certificates Trusted CA Table 94 Load Signed Certificate LABEL DESCRIPTION Certificate Name This is the name of ...

Страница 202: ...icate such as Common Name CN OU Organizational Unit or department Organization O State ST and Country C It is recommended that each certificate have unique subject information Type This field displays general information about the certificate ca means that a Certification Authority signed the certificate Modify Click the View icon to open a screen with an in depth list of information about the cer...

Страница 203: ... 64 to convert the binary certificate into a printable form You can copy and paste the certificate into an e mail to send to friends or colleagues or you can copy and paste the certificate into a text editor and save the file on a management computer for later distribution via floppy disk for example Back Click Back to return to the previous screen Table 96 Trusted CA View continued LABEL DESCRIPT...

Страница 204: ...ist of both logs and alerts You may differentiate them by their color in the View Log screen Alerts display in red and logs display in black Syslog Overview The syslog protocol allows devices to send event notification messages across an IP network to syslog servers that collect the event messages A syslog enabled device can generate a syslog message and send it to a syslog server Syslog is define...

Страница 205: ...om the drop down list box This filters search results according to the severity level you have selected When you select a severity the XMG searches through all logs of that severity or higher Category Select the type of logs to display Clear Log Click this to delete all the logs Refresh Click this to renew the log screen Export Log Click this to export the selected log s Email Log Now Click this t...

Страница 206: ...logs Refresh Click this to renew the log screen Export Log Click this to export the selected log s E mail Log Now Click this to send the log file s to the E mail address you specify in the Maintenance Logs Setting screen This field is a sequential value and is not associated with a specific entry Time This field displays the time the log was recorded Facility The log facility allows you to send lo...

Страница 207: ...he NAT screen to view the NAT status of the XMG s client s Section 22 4 on page 209 22 2 The WAN Status Screen Click System Monitor Traffic Status to open the WAN screen The figure in this screen shows the number of bytes received and sent on the XMG Figure 130 System Monitor Traffic Status WAN The following table describes the fields in this screen Table 101 System Monitor Traffic Status WAN LABE...

Страница 208: ...ed on this interface Click more to show more information Click hide more to hide them Disabled Interface This shows the name of the WAN interface that is currently disconnected Packets Sent Data This indicates the number of transmitted packets on this interface Error This indicates the number of frames with errors transmitted on this interface Drop This indicates the number of outgoing packets dro...

Страница 209: ...a This indicates the number of received packets on this interface Error This indicates the number of frames with errors received on this interface Drop This indicates the number of received packets dropped on this interface Table 102 System Monitor Traffic Status LAN continued LABEL DESCRIPTION Table 103 System Monitor Traffic Status NAT LABEL DESCRIPTION Refresh Interval Select how often you want...

Страница 210: ... is found for the IP address ARP broadcasts the request to all the devices on the LAN The device fills in its own MAC and IP address in the sender address fields and puts the known IP address of the target in the target IP address field In addition the device puts all ones in the target MAC field FF FF FF FF FF FF is the Ethernet broadcast address The replying device which is either the IP address...

Страница 211: ...able 104 System Monitor ARP Table LABEL DESCRIPTION This is the ARP table entry number IPv4 IPv6 Address This is the learned IPv4 or IPv6 address of a device connected to a port MAC Address This is the MAC address of the device with the listed IP address Device This is the type of interface used by the device ...

Страница 212: ...creen Figure 134 System Monitor Routing Table The following table describes the labels in this screen Table 105 System Monitor Routing Table LABEL DESCRIPTION IPv4 IPv6 Routing Table Destination This indicates the destination IPv4 address or IPv6 address and prefix of this route Gateway This indicates the IPv4 address or IPv6 address of the gateway that helps forward this route s traffic Subnet Ma...

Страница 213: ...d from a routing daemon or redirect Metric The metric represents the cost of transmission A router determines the best route for transmission by choosing a path with the lowest cost The smaller the number the lower the cost Interface This indicates the name of the interface through which the route is forwarded brx indicates a LAN interface where x can be 0 3 to represent LAN1 to LAN4 respectively ...

Страница 214: ...us MLD Status Figure 136 System Monitor Multicast Status MLD Status Table 106 System Monitor Multicast Status IGMP Status LABEL DESCRIPTION Refresh Click this button to update the information on this screen Interface This field displays the name of an interface on the XMG that belongs to an IGMP multicast group Multicast Group This field displays the name of the IGMP multicast group to which the i...

Страница 215: ...cast Group This field displays the name of the MLD multicast group to which the interface belongs Filter Mode INCLUDE means that only the IP addresses in the Source List get to receive the multicast group s traffic EXCLUDE means that the IP addresses in the Source List are not allowed to receive the multicast group s traffic but other IP addresses can Source List This is the list of IP addresses t...

Страница 216: ...ON Refresh Interval Select the time interval for refreshing statistics Line Select which DSL line s statistics you want to display xDSL Training Status This displays the current state of setting up the DSL connection Mode This displays the ITU standard used for this connection Traffic Type This displays the type of traffic the DSL port is sending and receiving Inactive displays if the DSL port is ...

Страница 217: ...wnstream is how much power the port is receiving from the service provider Actual INP Sudden spikes in the line s level of external noise impulse noise can cause errors and result in lost packets This could especially impact the quality of multimedia traffic such as voice or video Impulse noise protection INP provides a buffer to allow for correction of errors caused by error correction to deal wi...

Страница 218: ...ollowing screen Figure 138 Maintenance System The following table describes the labels in this screen Table 109 Maintenance System LABEL DESCRIPTION Host Name Type a hostname for your XMG Enter a descriptive name of up to 16 alphanumeric characters not including spaces underscores and dashes Domain Name Type a Domain name for your host XMG Apply Click Apply to save your changes Cancel Click Cancel...

Страница 219: ...lick this button to add a new user account This is the index number User Name This field displays the name of the account used to log into the XMG web configurator Retry Times This field displays the number of times consecutive wrong passwords can be entered for this account 0 means there is no limit Idle Timeout This field displays the the length of inactive time before the XMG will automatically...

Страница 220: ...character you type After you change the password use the new password to access the XMG Verify Password Verify New Password Type the new password again for confirmation Retry Times Enter the number of times consecutive wrong passwords can be entered for this account 0 means there is no limit Idle Timeout Enter the length of inactive time before the XMG will automatically log the user out of the we...

Страница 221: ...s The following table describes the fields in this screen Table 112 Maintenance Remote Management MGMT Services LABEL DESCRIPTION WAN Interface used for services Select Any_WAN to have the XMG automatically activate the remote management service when any WAN connection is up Select Multi_WAN and then select one or more WAN connections to have the XMG activate the remote management service when the...

Страница 222: ...t Domain Select the Enable check box for the corresponding services that you want to allow access to the XMG from the trusted hosts configured in the Maintenance Remote MGMT Trust Domain screen If you only want certain WAN connections to have access to the XMG using the corresponding services then clear WAN select Trust Domain and configure the allowed IP address es in the Trust Domain screen Port...

Страница 223: ... table describes the fields in this screen Table 114 Maintenance Remote Management Trust Domain Add Trust Domain LABEL DESCRIPTION IP Address Enter a public IPv4 IP address which is allowed to access the service on the XMG from the WAN Apply Click Apply to save your changes back to the XMG Cancel Click Cancel to exit this screen without saving ...

Страница 224: ...wo main types of component agents and a manager An agent is a management software module that resides in a managed device the XMG An agent translates the local management information from the managed device into a form compatible with SNMP The manager is the console through which network administrators perform network management functions It executes applications that control and monitor managed d...

Страница 225: ...nance SNMP The following table describes the fields in this screen Table 115 Maintenance SNMP LABEL DESCRIPTION SNMP Agent Select Enable to let the XMG act as an SNMP agent which allows a manager station to manage and monitor the XMG through the network Select Disable to turn this feature off Get Community Enter the Get Community which is the password for the incoming Get and GetNext requests from...

Страница 226: ...To change your XMG s time and date click Maintenance Time The screen appears as shown Use this screen to configure the XMG s time based on your local time zone Figure 146 Maintenance Time The following table describes the fields in this screen Table 116 Maintenance Time LABEL DESCRIPTION Current Date Time Current Time This field displays the time of your XMG Each time you reload this page the XMG ...

Страница 227: ...e month to March and the time to 2 in the Hour field Daylight Saving Time starts in the European Union on the last Sunday of March All of the time zones in the European Union start using Daylight Saving Time at the same moment 1 A M GMT or UTC So in the European Union you would set the day to Last Sunday and the month to March The time you select depends on your time zone In Germany for instance y...

Страница 228: ...cribes the labels in this screen 32 2 1 E mail Notification Edit Click the Add button in the E mail Notification screen Use this screen to configure the required information for sending e mail via a mail server Table 117 Maintenance E mail Notification LABEL DESCRIPTION Add New E mail Click this button to create a new entry Mail Server Address This field displays the server name or the IP address ...

Страница 229: ...er name of a mail account you specified in the Account Email Address field Authentication Password Enter the password associated with the user name above Account E mail Address Enter the e mail address that you want to be in the from sender line of the e mail notification that the XMG sends If you activate SSL TLS authentication the e mail address must be able to be authenticated by the mail serve...

Страница 230: ... configure where the XMG sends logs and which logs and or immediate alerts the XMG records in the Logs Setting screen 33 2 The Log Settings Screen To change your XMG s log settings click Maintenance Logs Setting The screen appears as shown Figure 149 Maintenance Logs Setting ...

Страница 231: ...e XMG send logs and alarm messages to the configured e mail addresses Mail Account This section is available only when you select Enable in the E mail Log Settings field Select a mail account from which you want to send logs You can configure mail accounts in the Maintenance E mail Notification screen System Log Mail Subject Type a title that you want to be in the subject line of the system log e ...

Страница 232: ...55 default policy forward 09 54 17 UDP src port 00520 dest port 00520 1 00 3 Apr 7 00 From 192 168 1 6 To 10 10 10 10 match forward 09 54 19 UDP src port 03516 dest port 00053 1 01 snip snip 126 Apr 7 00 From 192 168 1 1 To 192 168 1 255 match forward 10 05 00 UDP src port 00520 dest port 00520 1 02 127 Apr 7 00 From 192 168 1 131 To 192 168 1 255 match forward 10 05 17 UDP src port 00520 dest por...

Страница 233: ...to two minutes After a successful upload the system will reboot Do NOT turn off the XMG while firmware upload is in progress Figure 151 Maintenance Firmware Upgrade The following table describes the labels in this screen After you see the firmware updating screen wait two minutes before logging into the XMG again Table 120 Maintenance Firmware Upgrade LABEL DESCRIPTION Upgrade Firmware Restore Def...

Страница 234: ...your desktop Figure 153 Network Temporarily Disconnected After two minutes log in again and check your new firmware version in the Status screen Choose File Click this to find the bin file you want to upload Remember that you must decompress compressed zip files before you can upload them Upload Click this to begin the upload process This process may take up to two minutes Table 120 Maintenance Fi...

Страница 235: ...restoring configuration appears in this screen as shown next Figure 154 Maintenance Backup Restore Backup Configuration Backup Configuration allows you to back up save the XMG s current configuration to a file on your computer Once your XMG is configured and functioning properly it is highly recommended that you back up your configuration file before making configuration changes The backup configu...

Страница 236: ...ation file you may need to change the IP address of your computer to be in the same subnet as that of the default device IP address 192 168 1 1 If the upload was not successful the following screen will appear Click OK to go back to the Configuration screen Figure 156 Configuration Upload Error Reset to Factory Defaults Click the Reset button to clear all user entered configuration information and...

Страница 237: ...actory defaults of your XMG Refer to Section 1 6 on page 21 for more information on the RESET button 35 3 The Reboot Screen System restart allows you to reboot the XMG remotely without turning the power off You may need to do this if the XMG hangs for example Click Maintenance Reboot Click Reboot to have the XMG reboot This does not affect the XMG s configuration Figure 159 Maintenance Reboot ...

Страница 238: ...M Ping screen lets you send an ATM OAM Operation Administration and Maintenance packet to verify the connectivity of a specific PVC Section 36 5 on page 240 36 2 What You Need to Know The following terms and concepts may help as you read through this chapter How CFM Works A Maintenance Association MA defines a VLAN and associated Maintenance End Point MEP ports on the device under a Maintenance Do...

Страница 239: ...iagnostic 802 1ag to open the following screen Use this screen to perform CFM actions Table 122 Maintenance Diagnostic Ping TraceRoute NsLookup LABEL DESCRIPTION URL or IP Address Type the IP address of a computer that you want to perform ping traceroute or nslookup in order to test a connection Ping Click this to ping the IP address that you entered TraceRoute Click this button to perform the tra...

Страница 240: ... which you want to create an MA Destination MAC Address Enter the target device s MAC address to which the XMG performs a CFM loopback test 802 1Q VLAN ID Type a VLAN ID 0 4095 for this MA VDSL Traffic Type This shows whether the VDSL traffic is activated Loopback Message LBM This shows how many Loop Back Messages LBMs are sent and if there is any inorder or outorder Loop Back Response LBR receive...

Страница 241: ...om data cells by a predefinded Payload Type Identifier PTI in the cell header Both F4 flows and F5 flows are bidirectional and have two types segment F4 flows VCI 3 end to end F4 flows VCI 4 segment F5 flows PTI 100 end to end F5 flows PTI 101 OAM F4 or F5 tests are used to check virtual path or virtual channel availability between two DSL devices Segment flows are terminated at the connecting poi...

Страница 242: ...ing LABEL DESCRIPTION Select a PVC on which you want to perform the loopback test F4 segment Press this to perform an OAM F4 segment loopback test F4 end end Press this to perform an OAM F4 end to end loopback test F5 segment Press this to perform an OAM F5 segment loopback test F5 end end Press this to perform an OAM F5 end to end loopback test ...

Страница 243: ... turn on 1 Make sure the XMG is turned on 2 Make sure you are using the power adaptor or cord included with the XMG 3 Make sure the power adaptor or cord is connected to the XMG and plugged in to an appropriate power source Make sure the power source is turned on 4 Turn the XMG off and on 5 If the problem continues contact the vendor One of the LEDs does not behave as expected 1 Make sure you unde...

Страница 244: ...efault login names and associated passwords 2 If those do not work you have to reset the device to its factory defaults See Section 1 6 on page 21 I cannot see or access the Login screen in the web configurator 1 Make sure you are using the correct IP address The default IP address is 192 168 1 1 If you changed the IP address Section 8 2 on page 113 use the new IP address If you changed the IP add...

Страница 245: ...nsitive so make sure Caps Lock is not on 2 You cannot log in to the web configurator while someone is using Telnet to access the XMG Log out of the XMG in the other session or ask the person who is logged in to log out 3 Turn the XMG off and on 4 If this does not work you have to reset the device to its factory defaults See Section 37 1 on page 243 I cannot Telnet to the XMG See the troubleshootin...

Страница 246: ...nection Network Setting Interface Grouping 4 If you set up a WAN connection using bridging service make sure you turn off the DHCP feature in the LAN screen to have the clients get WAN IP addresses directly from your ISP s DHCP server I cannot connect to the Internet using a second DSL connection ADSL and VDSL connections cannot work at the same time You can only use one type of DSL connection eit...

Страница 247: ...s electric motors cordless phones and other wireless devices To optimize the speed and quality of your wireless connection you can Move your wireless device closer to the AP if the signal strength is low Reduce wireless interference that may be caused by other wireless networks or surrounding wireless electronics such as cordless phones Place the AP where there are minimum obstacles such as walls ...

Страница 248: ...power supply make sure it is connected to an appropriate power source that is on 4 Re connect your USB device to the XMG 37 6 UPnP When using UPnP and the XMG reboots my computer cannot detect UPnP and refresh My Network Places Local Network 1 Disconnect the Ethernet cable from the XMG s LAN port or from your computer 2 Re connect the Ethernet cable The Local Area Connection icon for UPnP disappea...

Страница 249: ...249 PART III Appendices Appendices contain general information Some information may not apply to your device ...

Страница 250: ...nformation Please have the following information ready when you contact an office Required Information Product model and serial number Warranty Information Date that you received your device Brief description of the problem and the steps you took to solve it Corporate Headquarters Worldwide Taiwan Zyxel Communications Corporation http www zyxel com Asia China Zyxel Communications Shanghai Corp Zyx...

Страница 251: ...om pk Philippines Zyxel Philippines http www zyxel com ph Singapore Zyxel Singapore Pte Ltd http www zyxel com sg Taiwan Zyxel Communications Corporation http www zyxel com tw zh Thailand Zyxel Thailand Co Ltd http www zyxel co th Vietnam Zyxel Communications Corporation Vietnam Office http www zyxel com vn vi Europe Austria Zyxel Deutschland GmbH http www zyxel de Belarus Zyxel BY http www zyxel ...

Страница 252: ...Czech Republic Zyxel Communications Czech s r o http www zyxel cz Denmark Zyxel Communications A S http www zyxel dk Estonia Zyxel Estonia http www zyxel com ee et Finland Zyxel Communications http www zyxel fi France Zyxel France http www zyxel fr Germany Zyxel Deutschland GmbH http www zyxel de Hungary Zyxel Hungary SEE http www zyxel hu Italy Zyxel Communications Italy http www zyxel it ...

Страница 253: ...elux http www zyxel nl Norway Zyxel Communications http www zyxel no Poland Zyxel Communications Poland http www zyxel pl Romania Zyxel Romania http www zyxel com ro ro Russia Zyxel Russia http www zyxel ru Slovakia Zyxel Communications Czech s r o organizacna zlozka http www zyxel sk Spain Zyxel Communications ES Ltd http www zyxel es Sweden Zyxel Communications http www zyxel se Switzerland Stud...

Страница 254: ...raine http www ua zyxel com Latin America Argentina Zyxel Communication Corporation http www zyxel com ec es Brazil Zyxel Communications Brasil Ltda https www zyxel com br pt Ecuador Zyxel Communication Corporation http www zyxel com ec es Middle East Israel Zyxel Communication Corporation http il zyxel com homepage shtml Middle East Zyxel Communication Corporation http www zyxel com me en ...

Страница 255: ...User s Guide 255 North America USA Zyxel Communications Inc North America Headquarters http www zyxel com us en Oceania Australia Zyxel Communications Corporation http www zyxel com au en Africa South Africa Nology Pty Ltd http www zyxel co za ...

Страница 256: ...ependent Basic Service Set IBSS The following diagram shows an example of notebook computers using wireless adapters to form an ad hoc wireless LAN Figure 164 Peer to Peer Communication in an Ad hoc Network BSS A Basic Service Set BSS exists when all communications between wireless clients or between a wireless client and a wired network client go through one access point AP Intra BSS traffic is t...

Страница 257: ...wired connection between APs is called a Distribution System DS This type of wireless LAN topology is called an Infrastructure WLAN The Access Points not only provide communication with the wired network but also mediate wireless network traffic in the immediate neighborhood An ESSID ESS IDentification uniquely identifies each ESS All access points and their associated wireless clients within the ...

Страница 258: ...rtially overlap however To avoid interference due to overlap your AP should be on a channel at least five channels away from a channel that an adjacent AP is using For example if your region has 11 channels and an adjacent AP is using channel 1 then you need to select a channel between 6 or 11 RTS CTS A hidden node occurs when two stations are within range of the same access point but are not with...

Страница 259: ...Request To Send CTS Clear to Send handshake You should only configure RTS CTS if the possibility of hidden nodes exists on your network and the cost of resending large frames is more than the extra network overhead involved in the RTS Request To Send CTS Clear to Send handshake If the RTS CTS value is greater than the Fragmentation Threshold value see next then the RTS Request To Send CTS Clear to...

Страница 260: ...eless security settings on the XMG and on all wireless clients that you want to associate with it IEEE 802 1x In June 2001 the IEEE 802 1x standard was designed to extend the features of IEEE 802 11 to support extended authentication as well as providing additional accounting and control features It is supported by Windows XP and a number of network devices Some advantages of IEEE 802 1x are User ...

Страница 261: ...es of RADIUS messages are exchanged between the access point and the RADIUS server for user authentication Access Request Sent by an access point requesting authentication Access Reject Sent by a RADIUS server rejecting access Access Accept Sent by a RADIUS server allowing access Access Challenge Sent by a RADIUS server requesting more information in order to allow access The access point sends a ...

Страница 262: ...cess the password file In addition it is possible to impersonate an authentication server as MD5 authentication method does not perform mutual authentication Finally MD5 authentication method does not support data encryption with dynamic session key You must configure WEP encryption keys for data encryption EAP TLS Transport Layer Security With EAP TLS digital certifications are needed by both the...

Страница 263: ...of authentication types WPA and WPA2 Wi Fi Protected Access WPA is a subset of the IEEE 802 11i standard WPA2 IEEE 802 11i is a wireless security standard that defines stronger encryption authentication and key management than WPA Key differences between WPA or WPA2 and WEP are improved data encryption and user authentication If both an AP and the wireless clients support WPA2 and you have an exte...

Страница 264: ...re the MIC If they do not match it is assumed that the data has been tampered with and the packet is dropped By generating unique data encryption keys for every data packet and by creating an integrity checking mechanism MIC with TKIP and AES it is more difficult to decrypt data on a Wi Fi network than WEP and difficult for an intruder to break into the network The encryption mechanisms used for W...

Страница 265: ...is the distribution system 1 The AP passes the wireless client s authentication request to the RADIUS server 2 The RADIUS server then checks the user s identification against its database and grants or denies network access accordingly 3 A 256 bit Pairwise Master Key PMK is derived from the authentication process by the RADIUS server and the client 4 The RADIUS server distributes the PMK to the AP...

Страница 266: ...PA 2 PSK Authentication Security Parameters Summary Refer to this table to see what other security parameters you should configure for each authentication method or key management protocol type MAC address filters are not dependent on how you configure these security features Table 128 Wireless Security Relational Matrix AUTHENTICATION METHOD KEY MANAGEMENT PROTOCOL ENCRYPTION METHOD ENTER MANUAL ...

Страница 267: ... environment Antenna gain is sometimes specified in dBi which is how much the antenna increases the signal power compared to using an isotropic antenna An isotropic antenna is a theoretical perfect antenna that sends out radio signals equally well in all directions dBi represents the true gain that the antenna provides Types of Antennas for WLAN There are two types of antennas used for wireless LA...

Страница 268: ... so on point the antenna up For omni directional antennas mounted on a wall or ceiling point the antenna down For a single AP application place omni directional antennas as close to the center of the coverage area as possible For directional antennas point the antenna in the direction of the desired coverage area ...

Страница 269: ...pe of IP protocol used by the service If this is TCP UDP then the service uses the same port number with TCP and UDP If this is USER DEFINED the Port s is the IP protocol number not the port number Port s This value depends on the Protocol If the Protocol is TCP UDP or TCP UDP this is the IP port number If the Protocol is USER this is the IP protocol number Description This is a brief explanation ...

Страница 270: ...les including large files that may not be possible by e mail H 323 TCP 1720 NetMeeting uses this protocol HTTP TCP 80 Hyper Text Transfer Protocol a client server protocol for the world wide web HTTPS TCP 443 HTTPS is a secured http session often used in e commerce ICMP User Defined 1 Internet Control Message Protocol is often used for diagnostic purposes ICQ UDP 4000 This is a popular Internet ch...

Страница 271: ...REXEC TCP 514 Remote Execution Daemon RLOGIN TCP 513 Remote Login ROADRUNNER TCP UDP 1026 This is an ISP that provides services mainly for cable modems RTELNET TCP 107 Remote Telnet RTSP TCP UDP 554 The Real Time Streaming media control Protocol RTSP is a remote control for multimedia on the Internet SFTP TCP 115 The Simple File Transfer Protocol is an old way of transferring files between compute...

Страница 272: ...in and terminal emulation protocol common on the Internet and in UNIX environments It operates over TCP IP networks Its primary function is to allow users to log into remote host systems VDOLIVE TCP UDP 7000 user defined A videoconferencing solution The UDP port number is specified in the application Table 129 Examples of Services continued NAME PROTOCOL PORT S DESCRIPTION ...

Страница 273: ...allation This device generates uses and can radiate radio frequency energy and if not installed and used according to the instructions may cause harmful interference to radio communications However there is no guarantee that interference will not occur in a particular installation If this device does cause harmful interference to radio or television reception which is found by turning the device o...

Страница 274: ...t to the following two conditions 1 this device may not cause interference and 2 this device must accept any interference including interference that may cause undesired operation of the device This radio transmitter 2468C XMG3512B10A has been approved by Industry Canada to operate with the antenna types listed below with the maximum permissible gain and required antenna impedance for each antenna...

Страница 275: ...es applicables d Innovation Sciences et Développement économique Canada L indice d équivalence de la sonnerie IES sert à indiquer le nombre maximal de dispositifs qui peuvent être raccordés à une interface téléphonique La terminaison d une interface peut consister en une combinaison quelconque de dispositifs à la seule condition que la somme des IES de tous les dispositifs n excède pas cinq EUROPE...

Страница 276: ...petta il Piano Nazionale di ripartizione delle frequenze in Italia Se non viene installato all interno del proprio fondo l utilizzo di prodotti Wireless LAN richiede una Autorizzazione Generale Consultare http www sviluppoeconomico gov it per maggiori dettagli Latvia The outdoor usage of the 2 4 GHz band requires an authorization from the Electronic Communications Office Please check http www esd ...

Страница 277: ...ower source repairing the power adapter or cord is prohibited Contact your local vendor to order a new one Do not use the device outside and make sure all the connections are indoors There is a remote risk of electric shock from lightning CAUTION Risk of explosion if battery is replaced by an incorrect type dispose of used batteries according to the instruction Dispose them at the applicable colle...

Страница 278: ...ukt und oder seiner Batterie dazu beitragen natürliche Ressourcen zu sparen und die Umwelt und die menschliche Gesundheit zu schützen El símbolo de abajo indica que según las regulaciones locales su producto y o su batería deberán depositarse como basura separada de la doméstica Cuando este producto alcance el final de su vida útil llévelo a un punto limpio Cuando llegue el momento de desechar el ...

Страница 279: ...Appendix D Legal Information XMG3512 B10A User s Guide 279 Environmental Product Declaration ...

Страница 280: ...塵及污物切勿接觸灰塵污物沙土食物或其他不合適的材料雷雨天氣時不要安裝使用或維修此設備有遭受電擊的風險切勿重摔或撞擊設備並勿使用不正確的電源變壓器若接上不正確的電源變壓器會有爆炸的風險請勿隨意更換產品內的電池如果更換不正確之電池型式會有爆炸的風險請依製造商說明書處理使用過之電池請將廢電池丟棄在適當的電器或電子設備回收處請勿將設備解體請勿阻礙設備的散熱孔空氣對流不足將會造成設備損害請插在正確的電壓供給插座如北美台灣電壓 110V AC 歐洲是 230V AC 假若電源變壓器或電源變壓器的纜線損壞請從插座拔除若您還繼續插電使用會有觸電死亡的風險請勿試圖修理電源變壓器或電源變壓器的纜線若有毀損請直接聯絡您購買的店家購買一個新的電源變壓器請勿將此設備安裝於室外此設備僅適合放置於室內請勿隨一般垃圾丟棄請參閱產品背貼上的設備額定功率請...

Страница 281: ...y is the exclusive remedy of the purchaser This warranty is in lieu of all other warranties express or implied including any implied warranty of merchantability or fitness for a particular use or purpose ZyXEL shall in no event be held liable for indirect or consequential damages of any kind to the purchaser To obtain the services of this warranty contact your vendor You may also refer to the warr...

Страница 282: ...enna directional 267 gain 267 omni directional 267 AP access point 258 applications Internet access 16 media server 180 activation 181 iTunes server 180 applications NAT 163 ARP Table 210 212 authentication 100 101 RADIUS server 101 B backup configuration 235 Basic Service Set See BSS 256 Basic Service Set see BSS blinking LEDs 19 Broadband 62 broadcast 82 BSS 103 256 example 103 ...

Страница 283: ...rity 198 Certification Authority see CA certifications 277 viewing 281 CFI 82 CFM 238 CCMs 238 link trace test 238 loopback test 238 MA 238 MD 238 MEP 238 MIP 238 channel 258 interference 258 channel wireless LAN 99 client list 117 configuration backup 235 firewalls 183 reset 236 restoring 236 static route 78 126 128 167 Connectivity Check Messages see CCMs contact information 250 copyright 273 Co...

Страница 284: ...fferentiated Services see DiffServ 146 DiffServ 146 marking rule 146 digital IDs 198 disclaimer 273 DLNA 180 DMZ 158 DNS 112 124 DNS server address assignment 82 Domain Name 164 Domain Name System see DNS Domain Name System See DNS DoS 183 DS field 146 DS dee differentiated services DSCP 146 dynamic DNS 166 wildcard 166 Dynamic Host Configuration Protocol see DHCP dynamic WEP key exchange 263 DYND...

Страница 285: ...entification 86 91 Extended Service Set See ESS 257 F file sharing 17 filters MAC address 92 101 Finger 164 firewalls 182 add protocols 184 configuration 183 DDoS 183 DoS 183 LAND attack 183 Ping of Death 183 SYN attack 183 firmware 233 version 59 forwarding ports 151 fragmentation threshold 96 100 259 FTP 151 164 G General wireless LAN screen 85 H hidden node 258 HTTP 164 ...

Страница 286: ... Local Address see ILA interface group 172 Internet wizard setup 31 Internet access 16 wizard setup 31 Internet Protocol version 6 63 IP address 112 ping 239 WAN 63 IP Address Assignment 81 IP alias NAT applications 164 IPv6 63 addressing 64 83 prefix 64 83 prefix delegation 65 prefix length 64 83 iTunes server 180 L LAN 111 client list 117 DHCP 112 124 DNS 112 124 IP address 112 113 MAC address 1...

Страница 287: ...AC address 93 117 filter 92 101 MAC authentication 92 Mac filter 189 Maintenance Association see MA Maintenance Domain see MD Maintenance End Point see MEP Management Information Base MIB 224 managing the device good habits 15 Maximum Burst Size MBS 80 MBSSID 103 MD 238 media server 180 activation 181 iTunes server 180 MEP 238 MTU Multi Tenant Unit 81 multicast 82 Multiple BSS see MBSSID multiplex...

Страница 288: ...tivation 159 NAT example 165 Network Address Translation see NAT Network Map 57 network map 27 NNTP 164 P Pairwise Master Key PMK 264 266 passwords 24 PBC 104 Peak Cell Rate PCR 80 Per Hop Behavior see PHB 146 PHB 146 PIN WPS 105 example 106 Ping of Death 183 Point to Point Tunneling Protocol see PPTP POP3 164 port forwarding 151 ports 19 PPPoE 79 Benefits 79 PPTP 164 preamble 97 100 preamble mode...

Страница 289: ...types 261 messages 261 shared secret key 261 RADIUS server 101 reset 21 236 restart 237 restoring configuration 236 RFC 1058 See RIP RFC 1389 See RIP RFC 1483 79 RFC 3164 204 RIP 130 router features 16 Routing Information Protocol See RIP RTS Request To Send 259 threshold 258 259 RTS threshold 96 100 S security wireless LAN 100 Security Log 205 Security Parameter Index see SPI service access contr...

Страница 290: ... 225 GetNext 225 Manager 224 managers 224 MIB 224 network components 224 Set 225 Trap 225 versions 224 SNMP trap 164 SPI 183 srTCM 148 SSID 101 activation 90 MBSSID 103 static route 125 130 228 configuration 78 126 128 167 example 125 static VLAN status 57 firmware version 59 LAN 60 WAN 59 wireless LAN 60 status indicators 19 subnet mask 112 Sustained Cell Rate SCR 80 SYN attack 183 syslog protoco...

Страница 291: ...data fragment 96 100 RTS CTS 96 100 time 226 TPID 82 traffic shaping 80 trTCM 149 Two Rate Three Color Marker see trTCM U unicast 82 Universal Plug and Play see UPnP upgrading firmware 233 UPnP 118 cautions 113 NAT traversal 112 USB features 17 V Vendor ID 122 VID Virtual Circuit VC 79 Virtual Local Area Network See VLAN VLAN 81 Introduction 81 number of possible VIDs priority frame ...

Страница 292: ...EP encryption 87 WEP key 87 Wi Fi Protected Access 263 wireless client WPA supplicants 265 wireless LAN 84 98 authentication 100 101 BSS 103 example 103 channel 99 encryption 102 example 99 fragmentation threshold 96 100 limitations 102 MAC address filter 92 101 MBSSID 103 preamble 97 100 RADIUS server 101 RTS CTS threshold 96 100 security 100 SSID 101 activation 90 status 60 WEP 102 WPA 102 WPA P...

Страница 293: ...authentication 264 vs WPA PSK 264 wireless client supplicant 265 with RADIUS application example 265 WPA2 263 user authentication 264 vs WPA2 PSK 264 wireless client supplicant 265 with RADIUS application example 265 WPA2 Pre Shared Key 263 WPA2 PSK 263 264 application example 265 WPA PSK 102 263 264 application example 265 WPS 104 106 example 107 limitations 109 PIN 105 example 106 push button 10...

Отзывы:

Нет отзывов

Похожие инструкции для XMG3512-B10A

Бренд: B&B Electronics Страницы: 83

Бренд: ZyXEL Communications Страницы: 18

Touchstone TG862G

Бренд: Arris Страницы: 48

V-NET PLNWKB000

Бренд: LG Страницы: 19

Бренд: LG Страницы: 23

V-NET PLNWKB000

Бренд: LG Страницы: 183

Бренд: LG Страницы: 11

Бренд: Banner Страницы: 110

Бренд: Watts Страницы: 108

Wireless Media Gateway WMG120

Бренд: ViewSonic Страницы: 105

Бренд: Zoom Страницы: 48

Бренд: Zoom Страницы: 72

Superlink SC-WBGW256

Бренд: Mitsubishi Heavy Industries Страницы: 44

Бренд: Mitsubishi Heavy Industries Страницы: 54

Бренд: IAI Страницы: 132

Бренд: Siterwell Страницы: 8

infinias eIDC32

Бренд: 3xLogic Страницы: 16

Бренд: TAIKO Страницы: 20

Бренды по названию

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Популярные бренды

Загрузить еще бренды