Page 1 AMG1302-T10A Wireless N ADSL2+ 4-port Gateway Default Login Details IMPORTANT! LAN IP https://192.168.1.1 READ CAREFULLY Address BEFORE USE. Password 1234 KEEP THIS GUIDE FOR FUTURE Version 1.00 REFERENCE. Edition 1, 2/2012 www.zyxel.com www.zyxel.com Copyright © 2012 ZyXEL Communications Corporation...
Page 2 • Quick S t art Guide The Quick Start Guide shows how to connect the Device and access the Web Configurator wizards. (See the wizard real time help for information on configuring each screen.) It also contains a connection diagram. AMG1302-T10A User’s Guide...
Page 3: Table Of Contents
Static Route ............................159 Port Binding ............................163 PVID Setting ............................167 Quality of Service (QoS) ........................169 Dynamic DNS Setup ..........................177 Remote Management ..........................179 Universal Plug-and-Play (UPnP) ......................187 CWMP ..............................199 System Settings ............................203 Logs ..............................207 Tools ..............................217 Diagnostic .............................223 Troubleshooting ............................227 AMG1302-T10A User’s Guide...
Page 4 Contents Overview AMG1302-T10A User’s Guide...
Page 5: Table Of Contents
2.2.2 Navigation Panel ........................24 2.2.3 Main Window ...........................25 2.2.4 Status Bar ..........................26 Chapter 3 Status Screens ............................27 3.1 Overview ............................27 3.2 The Status Screen ..........................28 Chapter 4 Tutorials ...............................31 4.1 Overview ............................31 4.2 Setting Up a Secure Wireless Network .....................31 AMG1302-T10A User’s Guide...
Page 6 6.3 The More Connections Screen ......................75 6.3.1 More Connections Edit ......................77 6.3.2 Configuring More Connections Advanced Setup ..............79 6.4 WAN Technical Reference ........................80 6.4.1 Encapsulation ..........................80 6.4.2 Multiplexing ..........................81 6.4.3 VPI and VCI ..........................81 6.4.4 IP Address Assignment ......................81 AMG1302-T10A User’s Guide...
Page 7 8.2.3 WPA(2)-PSK ..........................102 8.2.4 WPA(2) Authentication ......................103 8.2.5 Wireless LAN Advanced Setup .....................104 8.2.6 MAC Filter ..........................106 8.3 The More AP Screen ........................106 8.3.1 More AP Edit .........................107 8.4 The WPS Screen ..........................108 8.5 The WPS Station Screen ........................109 AMG1302-T10A User’s Guide...
Page 8 10.2 The Firewall General Screen ......................142 10.3 The Firewall Rule Screen ......................143 10.3.1 Configuring Firewall Rules ....................146 10.3.2 Customized Services ......................147 10.3.3 Configuring a Customized Service ..................148 10.4 Firewall Technical Reference ......................149 10.4.1 Firewall Rules Overview ......................149 AMG1302-T10A User’s Guide...
Page 9 15.1.1 What You Can Do in the QoS Screens ................169 15.1.2 What You Need to Know About QoS ...................170 15.2 The QoS Screen ..........................170 15.2.1 The QoS Settings Summary Screen ...................173 15.3 QoS Technical Reference ......................174 15.3.1 IEEE 802.1p ........................174 AMG1302-T10A User’s Guide...
Page 10 18.4 Using UPnP in Windows XP Example ..................192 Chapter 19 CWMP ..............................199 19.1 Overview ............................199 19.2 The CWMP Setup Screen ......................200 Chapter 20 System Settings..........................203 20.1 Overview ............................203 20.1.1 What You Can Do in the System Settings Screens .............203 20.2 The General Screen ........................203 AMG1302-T10A User’s Guide...
Page 11 Appendix A Setting up Your Computer’s IP Address ...............231 Appendix B IP Addresses and Subnetting..................251 Appendix C Pop-up Windows, JavaScripts and Java Permissions ..........259 Appendix D Wireless LANs......................267 Appendix E IPv6 ..........................281 Appendix F Services........................291 Appendix G Legal Information ......................295 Safety Warnings..........................321 Index ..............................323 AMG1302-T10A User’s Guide...
Page 12 Table of Contents AMG1302-T10A User’s Guide...
Page 13: User's Guide
User’s Guide...
Page 15: Introduction
Device to its factory default settings. If you backed up an earlier configuration file, you would have to totally re-configure the Device. You could simply restore your last configuration. AMG1302-T10A User’s Guide...
Page 16: Applications For The Device
1.5 Wireless Access The Device is a wireless Access Point (AP) for wireless clients, such as notebooks, computers or PDAs and iPads. It allows them to connect to the Internet without having to rely on inconvenient Ethernet cables. AMG1302-T10A User’s Guide...
Page 17: Using The Wps/Wlan Button
Press the WPS button on another WPS-enabled device within range of the Device. The WPS/WLAN LED should flash while the Device sets up a WPS connection with the other wireless device. Once the connection is successfully made, the WPS/WLAN LED shines green. AMG1302-T10A User’s Guide...
Page 18: Leds (Lights)
The Device attempted to make an IP connection but failed. Possible causes are no response from a DHCP server, no PPPoE response, PPPoE authentication failed. The Device does have an IP connection. Refer to the Quick Start Guide for information on hardware connections. AMG1302-T10A User’s Guide...
Page 19: The Reset Button
To set the device back to the factory default settings, press the RESET button for ten seconds or until the POWER LED begins to blink and then release it. When the POWER LED begins to blink, the defaults have been restored and the device restarts. AMG1302-T10A User’s Guide...
Page 20 Chapter 1 Introduction AMG1302-T10A User’s Guide...
Page 21: The Web Configurator
(1234 by default) in the password screen and click Login. Click Cancel to revert to the default user password in the password field. If you have changed the password, enter your password and click Login. Figure 4 Password Screen AMG1302-T10A User’s Guide...
Page 22 Go to Advanced setup and click Apply to display the Status screen. Figure 6 Replace Factory Default Certificate Screen Note: For security reasons, the Device automatically logs you out if you do not use the web configurator for five minutes (default). If this happens, log in again. AMG1302-T10A User’s Guide...
Page 23: The Main Screen
As illustrated above, the main screen is divided into these parts: • A - title bar • B - navigation panel • C - main window • D - status bar 2.2.1 Title Bar The title bar provides some icons in the upper right corner. AMG1302-T10A User’s Guide...
Page 24: Navigation Panel
General Use this screen to set the default action that the firewall takes on packets depending on packet direction. Rules Use this screen to view the configured firewall rules and add, edit or remove a firewall rule. AMG1302-T10A User’s Guide...
Page 25: Main Window
Use this screen to test the connections to other devices. DSL Line This screen displays information to help you identify problems with the DSL connection. 2.2.3 Main Window The main window displays information and configuration fields. It is discussed in the rest of this document. AMG1302-T10A User’s Guide...
Page 26: Status Bar
Right after you log in, the Status screen is displayed. See Chapter 3 on page 27 for more information about the Status screen. 2.2.4 Status Bar Check the status bar when you click Apply or OK to verify that the configuration has been updated. AMG1302-T10A User’s Guide...
Page 27: Status Screens
3.1 Overview Use the Status screens to look at the current status of the device, system resources, and interfaces (LAN and WAN). The Status screen also provides detailed information from DHCP and statistics from bandwidth management, and traffic. AMG1302-T10A User’s Guide...
Page 28: The Status Screen
This is the current version of the firmware inside the device. Click this to go to the Firmware screen where you can change it. Version DSL Firmware This is the current version of the device’s DSL modem code. Version AMG1302-T10A User’s Guide...
Page 29 This displays whether WPS is activated. Click this to go to the screen where you can configure the settings. Status This displays whether WLAN is activated. Security Firewall This displays whether or not the Device’s firewall is activated. Click this to go to the screen where you can change it. System Status AMG1302-T10A User’s Guide...
Page 30 For the LAN interface, this displays the port speed and duplex setting. For the DSL interface, it displays the downstream and upstream transmission rate. For the WLAN interface, it displays the maximum transmission rate when WLAN is enabled or N/A when WLAN is disabled. AMG1302-T10A User’s Guide...
Page 31: Tutorials
(Section 4.2.3 on page 36). 4.2.1 Configuring the Wireless Network Settings This example uses the following parameters to set up a wireless network. Example SSID Security Mode WPA2-PSK with WPA Compatible DoNotStealMyWirelessNetwork Pre-Shared Key 802.11b+g+n 802.11 Mode AMG1302-T10A User’s Guide...
Page 32 Thomas can now use the WPS feature to establish a wireless connection between his notebook and the Device (see Section 4.2.2 on page 33). He can also use the notebook’s wireless client to search for the Device (see Section 4.2.3 on page 36). AMG1302-T10A User’s Guide...
Page 33: Using Wps
The Device sends the proper configuration settings to the wireless client. This may take up to two minutes. The wireless client is then able to communicate with the Device securely. AMG1302-T10A User’s Guide...
Page 34 When you use the PIN configuration method, you need to use both the Device’s web configurator and the wireless client’s utility. Launch your wireless client’s configuration utility. Go to the WPS settings and select the PIN method to get a PIN number. AMG1302-T10A User’s Guide...
Page 35 Device’s WPS Station screen within two minutes. The Device authenticates the wireless client and sends the proper configuration settings to the wireless client. This may take up to two minutes. The wireless client is then able to communicate with the Device securely. AMG1302-T10A User’s Guide...
Page 36: Without Wps
WITHIN 2 MINUTES Authentication by PIN SECURITY INFO COMMUNICATION 4.2.3 Without WPS Use the wireless adapter’s utility installed on the notebook to search for the “Example” SSID. Then enter the “DoNotStealMyWirelessNetwork” pre-shared key to establish an wireless Internet connection. AMG1302-T10A User’s Guide...
Page 37: Setting Up Wireless Network Scheduling
Thomas mostly uses his notebook to access the Internet on weekends; occasionally he uses it at night on weekdays. Here is how Thomas can set up a schedule to turn on the wireless network at specific time and days. Click Network > Wireless Network > Scheduling to open the following screen. AMG1302-T10A User’s Guide...
Page 38: Configuring The Mac Address Filter
He decided to prevent Josephine from accessing the Internet so that she can concentrate on preparing for her final exams. Josephine’s computer connects wirelessly to the Internet through the Device. Thomas can deny access to the wireless network using the MAC address of Josephine’s computer. Thomas Josephine AMG1302-T10A User’s Guide...
Page 39 Click Network > LAN > Client List to open the following screen. Look for the MAC address of Josephine’s computer. Click Network > Wireless LAN to open the AP screen. Click the Edit button in the MAC Filter field. AMG1302-T10A User’s Guide...
Page 40: Configuring Static Route For Routing To Another Network
(192.168.1.x/24) and N2 (192.168.10.x/24). If you want to send traffic from computer A (in N1 network) to computer B (in N2 network), the traffic is sent to the Device’s WAN default gateway by default. In this case, B will never receive the traffic. AMG1302-T10A User’s Guide...
Page 41 The Device’s LAN 192.168.1.1 192.168.1.34 R’s N1 192.168.1.253 R’s N2 192.168.10.2 192.168.10.33 To configure a static route to route traffic from N1 to N2: Log into the Device’s Web Configurator in advanced mode. Click Advanced > Static Route. AMG1302-T10A User’s Guide...
Page 42: Multiple Public And Private Ip Address Mappings
If your ISP gives you more than one static IP address for your Internet access, you can map each IP address for a specific service. This tutorial assumes you are given two static public IP addresses. You want to map them to two servers A and B. IP-1 IP-2 AMG1302-T10A User’s Guide...
Page 43: Full Feature Nat + Many-To-Many No Overload Mapping
Intranet computers (A and B). For example, VoIP application. See Section 4.5.2 on page 44 if it is not. IP-1 To configure this: Click Network > NAT. Select Active Network Address Translation(NAT) and Full Feature in the General screen. Click Apply. AMG1302-T10A User’s Guide...
Page 44: Full Feature Nat + One-To-One Mapping
Use this setting if your applications must use fixed public IP addresses and the applications can be initiated either from the Intranet computers (A and B) or the Internet computer (C). For example, gaming application. IP-1 To configure this setting: Click Network > NAT. AMG1302-T10A User’s Guide...
Page 45 Global Start IP: 172.16.1.253 • Rule 2 (This maps the public IP address 172.16.1.254 to the private IP address 192.168.1.3) Type: One-to-One Local Start IP: 192.168.1.3 Global Start IP: 172.16.1.254 Click Apply on each of the screens. AMG1302-T10A User’s Guide...
Page 46: Firewall Rule To Allow A Specified Service
In the Rules screen, select the index number after which you want to add the rule. For example, if you select “6”, your new rule becomes number 7 and the previous rule 7 (if there is one) becomes rule 8. Click Add to display the firewall rule configuration screen. AMG1302-T10A User’s Guide...
Page 47 Destination Addresses as follows and click Add >> for each. In the Available Services menu, select SSH(TCP/UDP:22) and click Add >>. Click Apply. Figure 10 Firewall Example: Edit Rule On completing the configuration procedure for this Internet firewall rule, the Rules screen should look like the following. AMG1302-T10A User’s Guide...
Page 48: Port BindingConfiguration
• The connection with VPI/VCI, 0/33, is dedicated for general data transmission. • The connection with VPI/VCI, 0/34, is dedicated for VoIP service. To configure bandwidth for the WAN connections, access the WAN configuration Advanced Setup screen by clicking Network > WAN. Click Advanced Setup. AMG1302-T10A User’s Guide...
Page 49 Chapter 4 Tutorials To configure bandwidth for the data connection, select UBR in the ATM QoS Type field. Click Apply to save the settings. AMG1302-T10A User’s Guide...
Page 50 Configured WAN connections can be viewed by clicking the More Connections tab under Network > WAN. See the WAN Setup chapter (Chapter 6 on page 89) for more information on configuring WAN connections and ATM QoS settings. AMG1302-T10A User’s Guide...
Page 51: Configuring Port Binding
Click Apply to save the settings. The configured groups can be viewed by clicking the Port Binding Summary button. See the Port Binding chapter (Chapter 14 on page 195) for more details on configuring port binding. AMG1302-T10A User’s Guide...
Page 52 Chapter 4 Tutorials AMG1302-T10A User’s Guide...
Page 53: Technical Reference
Technical Reference...
Page 55: Internet Setup Wizard
After you enter the password to access the web configurator, select Go to Wizard setup and click Apply. Otherwise, click the wizard icon ( ) in the top right corner of the web configurator to go to the wizards. Figure 12 Select a Mode AMG1302-T10A User’s Guide...
Page 56 ISP. See Section 5.2.1 on page 58 for more details. If you would like to skip your Internet setup and configure the wireless LAN settings, leave Yes selected and click Next. Figure 14 Auto Detection: No DSL Connection AMG1302-T10A User’s Guide...
Page 57 The following screen appears if the Device detects a connection but not the connection type. Click Next and refer to Section 5.2.1 on page 58 on how to manually configure the Device for Internet access. Figure 16 Auto Detection: Failed AMG1302-T10A User’s Guide...
Page 58: Manual Configuration
VPI (Virtual Path Identifier) and VCI (Virtual Channel Identifier) define a virtual circuit. Refer to the appendix for more information. Enter the VPI assigned to you. This field may already be configured. Enter the VCI assigned to you. This field may already be configured. AMG1302-T10A User’s Guide...
Page 59 The next wizard screen varies depending on what mode and encapsulation type you use. All screens shown are with routing mode. Configure the fields and click Next to continue. See Section 5.3 on page 63 for wireless connection wizard setup Figure 18 Internet Connection with PPPoE AMG1302-T10A User’s Guide...
Page 60 Type the name of your PPPoE service here. Back Click this to return to the previous screen without saving. Apply Click this to save your changes. Exit Click this to close the wizard screen without saving. Internet Connection with RFC 1483 Figure 19 AMG1302-T10A User’s Guide...
Page 61 Click this to return to the previous screen without saving. Next Click this to continue to the next wizard screen. Exit Click this to close the wizard screen without saving. Figure 20 Internet Connection with ENET ENCAP AMG1302-T10A User’s Guide...
Page 62 Table 12 Internet Connection with PPPoA LABEL DESCRIPTION User Name Enter the login name that your ISP gives you. Password Enter the password associated with the user name above. Back Click this to return to the previous screen without saving. AMG1302-T10A User’s Guide...
Page 63: Wireless Connection Wizard Setup
• If the following screen displays, check if your account is activated or click Restart the Internet/ Wireless Setup Wizard to verify your Internet access settings. Figure 23 Connection Test Failed-2. 5.3 Wireless Connection Wizard Setup After you configure the Internet access information, use the following screens to set up your wireless LAN. AMG1302-T10A User’s Guide...
Page 64 Select the check box to turn on the wireless LAN. Back Click this to return to the previous screen without saving. Next Click this to continue to the next wizard screen. Exit Click this to close the wizard screen without saving. AMG1302-T10A User’s Guide...
Page 65 (if WEP is enabled), WPA-PSK (if WPA-PSK is enabled) for wireless communication. This screen varies depending on the security mode you selected in the previous screen. Fill in the field (if available) and click Next. AMG1302-T10A User’s Guide...
Page 66: Manually Assign A Wpa-Psk Key
Click this to continue to the next wizard screen. Exit Click this to close the wizard screen without saving. 5.3.2 Manually Assign a WEP Key Choose Manually assign a WEP key to setup WEP Encryption parameters. Figure 28 Manually Assign a WEP key AMG1302-T10A User’s Guide...
Page 67 Click Apply to save your wireless LAN settings. Figure 29 Wireless LAN Setup 3 Use the read-only summary table to check whether what you have configured is correct. Click Finish to complete and save the wizard setup. AMG1302-T10A User’s Guide...
Page 68 Refer to the rest of this guide for more detailed information on the complete range of Device features. If you cannot access the Internet, open the web configurator again to confirm that the Internet settings you configured in the wizard setup are correct. AMG1302-T10A User’s Guide...
Page 69: Wan Setup
WAN connection to the Internet, y ou need to use the sam e encapsulation method used by y our ISP (Internet Service Provider). If your ISP offers a dial-up Internet connection using PPPoE (PPP over Ethernet) or PPPoA, they should also provide a username and password (and service name) for user authentication. AMG1302-T10A User’s Guide...
Page 70: Before You Begin
Section 6.4 on page 80 for technical background information on WAN. 6.1.3 Before You Begin You need to know your Internet access settings such as encapsulation and W AN IP address. Get this information from your ISP. AMG1302-T10A User’s Guide...
Page 71: The Internet Access Setup Screen
Use this screen to change your Device’s WAN settings. Click Network > WAN > Internet Access Setup. The screen differs by the WAN type and encapsulation you select. Figure 32 Network > WAN >Internet Access Setup (PPPoE) AMG1302-T10A User’s Guide...
Page 72 Static IP Address and type your ISP assigned IP address in the IP Address field below. Enter a subnet mask in dotted decimal notation. Subnet Mask Gateway Specify a gateway IP address (supplied by your ISP). IPv6 address AMG1302-T10A User’s Guide...
Page 73 Connect button on the Status screen. Apply Click this to save your changes. Reset Click this to restore your previously saved settings. Advanced Setup Click this to display the Advanced WAN Setup screen and edit more details of your WAN setup. AMG1302-T10A User’s Guide...
Page 74: Advanced Internet Access Setup
(packets sent to one computer) and broadcast packets (packets sent to every computer). Internet Group Multicast Protocol (IGMP) is a network-layer protocol used to establish membership in a multicast group. The Device supports IGMP-v1 and IGMP-v2. Select None to disable it. ATM QoS AMG1302-T10A User’s Guide...
Page 75: The More Connections Screen
Internet access connections click Network > WAN > More Connections. The screen differs by the encapsulation you select. When you use the WAN > Internet Access Setup screen to set up Internet access, you are configuring the first WAN connection. Figure 34 Network > WAN > More Connections AMG1302-T10A User’s Guide...
Page 76 Click the Edit icon to edit the Internet connection settings. Click this icon on an empty configuration to add a new Internet access setup. Click the Remove icon to delete the Internet access setup from your connection list. AMG1302-T10A User’s Guide...
Page 77: More Connections Edit
Select Route from the drop-down list box if your ISP allows multiple computers to share an Internet account. If you select Bridge, the Device will forward any packet that it does not route to this remote node; otherwise, the packets are discarded. AMG1302-T10A User’s Guide...
Page 78 Select SUA Only if you have one public IP address and want to use NAT. Click Edit Detail to go to the Port Forwarding screen to edit a server mapping set. Otherwise, select None to disable NAT. Back Click this to return to the previous screen without saving. AMG1302-T10A User’s Guide...
Page 79: Configuring More Connections Advanced Setup
Divide the DSL line rate (bps) by 424 (the size of an ATM cell) to find the Peak Cell Rate (PCR). This is the maximum rate at which the sender can send cells. Type the PCR here. AMG1302-T10A User’s Guide...
Page 80: Wan Technical Reference
One of the benefits of PPPoE is the ability to let you access one of multiple network services, a function known as dynamic service selection. This enables the service provider to easily create and offer new IP services for individuals. AMG1302-T10A User’s Guide...
Page 81: Multiplexing
A static IP is a fixed IP that your ISP gives you. A dynamic IP is not fixed; the ISP assigns you a different one each time. The Single User Account feature can be enabled or disabled if you have AMG1302-T10A User’s Guide...
Page 82: Nailed-Up Connection (Ppp)
(but not higher) than the maximum line speed. 1 ATM cell is 53 bytes (424 bits), so a maximum speed of 832Kbps gives a maximum PCR of 1962 cells/sec. This rate is not guaranteed because it is dependent on the line speed. AMG1302-T10A User’s Guide...
Page 83: Atm Traffic Classes
An example of an VBR-RT connection would be video conferencing. Video conferencing requires real-time data transfers and the bandwidth requirement varies in proportion to the video image's changing dynamics. AMG1302-T10A User’s Guide...
Page 84 Unspecified Bit Rate (UBR) The Unspecified Bit Rate (UBR) ATM traffic class is for bursty data transfers. However, UBR doesn't guarantee any bandwidth and only delivers traffic when the network has spare bandwidth. An example application is background file transfer. AMG1302-T10A User’s Guide...
Page 85: Lan Setup
7.1.2 What You Need To Know About LAN IP Address IP addresses identify individual devices on a network. Every networking device (including computers, servers, routers, printers, etc.) needs an IP address to communicate across the network. These networking devices are also known as hosts. AMG1302-T10A User’s Guide...
Page 86: Before You Begin
7.2 The LAN IP Screen Use this screen to set the Local Area Network IP address and subnet mask of your Device. Click Network > LAN to open the IP screen. Follow these steps to configure your LAN settings. AMG1302-T10A User’s Guide...
Page 87: The Advanced Lan Ip Setup Screen
Use this screen to edit your Device's RIP, multicast and Windows Networking settings. Click the Advanced Setup button in the LAN IP screen. The screen appears as shown. Figure 39 Network > LAN > IP: Advanced Setup AMG1302-T10A User’s Guide...
Page 88: The Dhcp Server Screen
Use this screen to configure the DNS server information that the Device sends to the DHCP client devices on the LAN. Click Network > DHCP Server to open this screen. Figure 40 Network > LAN > DHCP Server AMG1302-T10A User’s Guide...
Page 89: The Client List Screen
This table allows you to assign IP addresses on the LAN to specific individual computers based on their MAC Addresses. Every Ethernet device has a unique MAC (Media Access Control) address. The MAC address is assigned at the factory and consists of six pairs of hexadecimal characters, for example, 00:A0:C5:00:00:02. AMG1302-T10A User’s Guide...
Page 90: The Ip Alias Screen
IP alias allows you to partition a physical network into different logical networks over the same Ethernet interface. The Device supports logical LAN interfaces via its single physical Ethernet interface with the Device itself as the gateway for each LAN network. AMG1302-T10A User’s Guide...
Page 91: Configuring The Lan Ip Alias Screen
Your Device will automatically calculate the subnet mask based on the IP address that you assign. Unless you are implementing subnetting, use the subnet mask computed by the Device. Apply Click this to save your changes. Cancel Click this to restore your previously saved settings. AMG1302-T10A User’s Guide...
Page 92: The Ipv6 Screen
Prefix / Length If manual router advertisement mode is selected, specify the IPv6 prefix and prefix length to pass to hosts. Preferred Lifetime Enter the preferred lifetime for the prefix. Valid Lifetime Enter the valid lifetime for the prefix. AMG1302-T10A User’s Guide...
Page 93: Lan Technical Reference
When configured as a server, the Device provides the TCP/IP configuration for the clients. If you turn DHCP service off, you must have another DHCP server on your LAN, or else the computer must be manually configured. AMG1302-T10A User’s Guide...
Page 94: Dns Server Addresses
192.168.1.0 as the network number; which covers 254 individual addresses, from 192.168.1.1 to 192.168.1.254 (zero and 255 are reserved). In other words, the first three numbers specify the network number while the last number identifies an individual computer on that network. AMG1302-T10A User’s Guide...
Page 95: Rip Setup
2 carries more information. RIP-1 is probably adequate for most networks, unless you have an unusual network topology. Both RIP-2B and RIP-2M sends the routing data in RIP-2 format; the difference being that RIP-2B uses subnet broadcasting while RIP-2M uses multicasting. AMG1302-T10A User’s Guide...
Page 96: Multicast
Device queries all directly connected networks to gather group membership. After that, the Device periodically updates this information. IP multicasting can be enabled/disabled on the Device LAN and/or WAN interfaces in the web configurator (LAN; WAN). Select None to disable IP multicasting on these interfaces. AMG1302-T10A User’s Guide...
Page 97: Wireless Lan
AP screen. Note: Only 2.412GHz~2.462GHz is allowed to be used in USA, which means only channel 1~11 is available for American users to choose. AMG1302-T10A User’s Guide...
Page 98: What You Need To Know About Wireless
• What advanced options do you want to configure, if any? If you want to configure advanced options such as Quality of Service, ensure that you know precisely what you want to do. If you do not want to configure advanced options, leave them as they are. AMG1302-T10A User’s Guide...
Page 99: The Ap Screen
Click this to go to the MAC Filter screen to configure MAC filter settings. See Section 8.2.6 on page 106 for more details. Select this check box to activate Quality of Service (QoS). Apply Click this to save your changes. AMG1302-T10A User’s Guide...
Page 100: No Security
Choose No Security from the drop-down list box. 8.2.2 WEP Encryption Use this screen to configure and enable WEP encryption. Click Network > Wireless LAN to display the AP screen. Select Static WEP from the Security Mode list. AMG1302-T10A User’s Guide...
Page 101 WEP key for data transmission. If you want to manually set the WEP key, enter any 5 or 13 characters (ASCII string) or 10 or 26 hexadecimal characters ("0-9", "A-F") for a 64-bit or 128-bit WEP key respectively. AMG1302-T10A User’s Guide...
Page 102: Wpa(2)-Psk
RADIUS server (if using WPA(2) key management) sends a new group key out to all clients. The re-keying process is the WPA(2) equivalent of automatically changing the WEP key for an AP and all stations in a WLAN on a periodic basis. AMG1302-T10A User’s Guide...
Page 103: Wpa(2) Authentication
RADIUS server (if using WPA(2) key management) sends a new group key out to all clients. The re-keying process is the WPA(2) equivalent of automatically changing the WEP key for an AP and all stations in a WLAN on a periodic basis. AMG1302-T10A User’s Guide...
Page 104: Wireless Lan Advanced Setup
Set the output power of the Device. If there is a high density of APs in an area, decrease the output power to reduce interference with other APs. Select one of the following: 100%, 75%, 50% or 25%. AMG1302-T10A User’s Guide...
Page 105 Back Click this to return to the previous screen without saving. Apply Click this to save your changes. Cancel Click this to restore your previously saved settings. AMG1302-T10A User’s Guide...
Page 106: Mac Filter
Apply Click this to save your changes. Reset Click this to restore your previously saved settings. 8.3 The More AP Screen This screen allows you to enable and configure multiple Basic Service Sets (BSSs) on the Device. AMG1302-T10A User’s Guide...
Page 107: More Ap Edit
8.3.1 More AP Edit Use this screen to edit an SSID profile. Click the Edit icon next to an SSID in the More AP screen. The following screen displays. Figure 54 Network > Wireless LAN > More AP: Edit AMG1302-T10A User’s Guide...
Page 108: The Wps Screen
Use this screen to configure WiFi Protected Setup (WPS) on your Device. WPS allows you to quickly set up a wireless network with strong security, without having to configure security settings manually. Set up each WPS connection between two devices. Both devices must support WPS. AMG1302-T10A User’s Guide...
Page 109: The Wps Station Screen
Click this to save your changes. Refresh Click this to restore your previously saved settings. 8.5 The WPS Station Screen Use this screen to set up a WPS wireless network using either Push Button Configuration (PBC) or PIN Configuration. AMG1302-T10A User’s Guide...
Page 110: The Wds Screen
Note: WDS security is independent of the security settings between the Device and any wireless clients. Note: At the time of writing, WDS is compatible with other ZyXEL APs only. Not all models support WDS links. Check your other AP’s documentation. AMG1302-T10A User’s Guide...
Page 111 12:34:56:78:9a:bc). Enter a Pre-Shared Key (PSK) from 8 to 63 case-sensitive ASCII characters (including spaces and symbols). Apply Click this to save your changes. Cancel Click this to restore your previously saved settings. AMG1302-T10A User’s Guide...
Page 112: The Scheduling Screen
Apply Click this to save your changes. Reset Click this to restore your previously saved settings. 8.8 Wireless LAN Technical Reference This section discusses wireless LANs in depth. For more information, see the appendix. AMG1302-T10A User’s Guide...
Page 113: Wireless Network Overview
Device is the AP. Every wireless network must follow these basic guidelines. • Every device in the same wireless network must use the same SSID. The SSID is the name of the wireless network. It stands for Service Set IDentifier. AMG1302-T10A User’s Guide...
Page 114: Additional Wireless Terms
(malicious software) intended to compromise the network. For these reasons, a variety of security systems have been developed to ensure that only authorized people can use a wireless data network, or understand the data carried on it. AMG1302-T10A User’s Guide...
Page 115 Some wireless devices, such as scanners, cannot detect wireless networks but can use wireless networks. These kinds of wireless devices might not have MAC addresses. Hexadecimal characters are 0, 1, 2, 3, 4, 5, 6, 7, 8, 9, A, B, C, D, E, and F. AMG1302-T10A User’s Guide...
Page 116 When you select WPA2 or WPA2-PSK in your Device, you can also select an option (WPA compatible) to support WPA as well. In this case, if some of the devices support WPA and some AMG1302-T10A User’s Guide...
Page 117: Signal Problems
A and B can access the wired network and communicate with each other. When Intra-BSS traffic blocking is enabled, wireless station A and B can still access the wired network but cannot communicate with each other. Figure 60 Basic Service set AMG1302-T10A User’s Guide...
Page 118: Mbssid
Depending on the devices you have, you can either press a button (on the device itself, or in its configuration utility) or enter a PIN (a unique Personal Identification Number that allows one device to authenticate the other) in each of the two devices. When WPS is activated on a device, it has two AMG1302-T10A User’s Guide...
Page 119 (referred to here as the AP) and a client device using the PIN method. Ensure WPS is enabled on both devices. Access the WPS section of the AP’s configuration interface. See the device’s User’s Guide for how to do this. AMG1302-T10A User’s Guide...
Page 120 On a computer connected to the wireless client, try to connect to the Internet. If you can connect, WPS was successful. If you cannot connect, check the list of associated wireless clients in the AP’s configuration utility. If you see the wireless client in the list, WPS was successful. AMG1302-T10A User’s Guide...
Page 121 WPA-PSK or WPA2-PSK pre-shared key to the enrollee. Whether WPA-PSK or WPA2-PSK is used depends on the standards supported by the devices. If the registrar is already part of a network, it sends the existing information. If not, it generates the SSID and WPA(2)-PSK randomly. AMG1302-T10A User’s Guide...
Page 122 This section shows how security settings are distributed in an example WPS setup. The following figure shows an example network. In step 1, both AP1 and Client 1 are unconfigured. When WPS is activated on both, they perform the handshake. In this example, AP1 AMG1302-T10A User’s Guide...
Page 123 (it already has security information for the network). AP1 supplies the existing security information to Client 2. Figure 65 WPS: Example Network Step 2 REGISTRAR EXISTING CONNECTION CLIENT 1 ENROLLEE CLIENT 2 AMG1302-T10A User’s Guide...
Page 124 (if the device supports this feature). Then, you can enter the key into the non-WPS device and join the network as normal (the non-WPS device must also support WPA-PSK or WPA2-PSK). AMG1302-T10A User’s Guide...
Page 125 Check the MAC addresses of your wireless clients (usually printed on a label on the bottom of the device). If there is an unknown MAC address you can remove it or reset the AP. AMG1302-T10A User’s Guide...
Page 126 Chapter 8 Wireless LAN AMG1302-T10A User’s Guide...
Page 127: Network Address Translation (Nat)
(the inside local address) to another (the inside global addre ss) before forwarding the packet to the WAN side. When the response comes back, NAT translates the destination address (the inside global address) back to the inside local address before forwarding it to the original inside host. AMG1302-T10A User’s Guide...
Page 128: The Nat General Setup Screen
Address Translation SUA Only Select this radio button if you have just one public WAN IP address for your Device. Full Feature Select this radio button if you have multiple public WAN IP addresses for your Device. AMG1302-T10A User’s Guide...
Page 129: The Port Forwarding Screen
Note: If you do not assign a Default Server IP address, the Device discards all packets received for ports that are not specified here or in the remote management setup. AMG1302-T10A User’s Guide...
Page 130: Configuring The Port Forwarding Screen
9.3.1 Configuring the Port Forwarding Screen Click Network > NAT > Port Forwarding to open the following screen. Appendix F on page 291 for port numbers commonly used for particular services. Figure 69 Network > NAT > Port Forwarding AMG1302-T10A User’s Guide...
Page 131 Back Click this to return to the previous screen without saving. Apply Click this to save your changes. Cancel Click this to restore your previously saved settings. AMG1302-T10A User’s Guide...
Page 132: The Port Forwarding Rule Edit Screen
Back Click this to return to the previous screen without saving. Apply Click this to save your changes. Cancel Click this to restore your previously saved settings. AMG1302-T10A User’s Guide...
Page 133: The Address Mapping Screen
IP address from your ISP. You can only do this for Many-to-One and Server mapping types. Global End IP This is the ending Inside Global IP Address (IGA). This field is N/A for One-to-one, Many-to-One and Server mapping types. AMG1302-T10A User’s Guide...
Page 134: The Address Mapping Rule Edit Screen
9.4.1 The Address Mapping Rule Edit Screen Use this screen to edit an address mapping rule. Click the rule’s edit icon in the Address Mapping screen to display the screen shown next. Figure 72 Network > NAT > Address Mapping: Edit AMG1302-T10A User’s Guide...
Page 135: The Alg Screen
When the Device registers with the SIP register server, the SIP ALG translates the Device’s private IP address inside the SIP data stream to a public IP address. You do not need to use STUN or an outbound proxy if your Device is behind a SIP ALG. AMG1302-T10A User’s Guide...
Page 136: Nat Technical Reference
WAN side. The following table summarizes this information. Table 49 NAT Definitions ITEM DESCRIPTION Inside This refers to the host on the LAN. Outside This refers to the host on the WAN. AMG1302-T10A User’s Guide...
Page 137: What Nat Does
Figure 74 How NAT Works NAT Table Inside Local Inside Global IP Address IP Address 192.168.1.10 IGA 1 192.168.1.13 192.168.1.11 IGA 2 192.168.1.12 IGA 3 192.168.1.13 IGA 4 192.168.1.12 192.168.1.10 IGA1 Inside Local Inside Global Address (ILA) Address (IGA) 192.168.1.11 192.168.1.10 AMG1302-T10A User’s Guide...
Page 138: Nat Application
• Server: This type allows you to specify inside servers of different services behind the NAT to be accessible to the outside world. Port numbers do not change for One-to-One and Many-to-Many No Overload NAT mapping types. AMG1302-T10A User’s Guide...
Page 139 ILA2 IGA1 … Many-to-Many Overload ILA1 IGA1 ILA2 IGA2 ILA3 IGA1 ILA4 IGA2 … Many-to-Many No Overload ILA1 IGA1 ILA2 IGA2 ILA3 IGA3 … Server Server 1 IP IGA1 Server 2 IP IGA1 Server 3 IP IGA1 AMG1302-T10A User’s Guide...
Page 140 Chapter 9 Network Address Translation (NAT) AMG1302-T10A User’s Guide...
Page 141: Firewalls
Internet. Their goal is not to steal information, but to disable a device or network so users no longer have access to network resources. The Device is pre-configured to automatically detect and thwart all known DoS attacks. AMG1302-T10A User’s Guide...
Page 142: The Firewall General Screen
TCP/IP software and directly apparent to the application user. 10.2 The Firewall General Screen Use this screen to configure the firewall settings. Click Security > Firewall to display the following screen. Figure 77 Security > Firewall > General AMG1302-T10A User’s Guide...
Page 143: The Firewall Rule Screen
Click this to display less information. Apply Click this to save your changes. Cancel Click this to restore your previously saved settings. 10.3 The Firewall Rule Screen Note: The ordering of your rules is very important as rules are applied in turn. AMG1302-T10A User’s Guide...
Page 144 Clear the check box to disable the rule. Source IP This drop-down list box displays the source addresses or ranges of addresses to which this firewall rule applies. Please note that a blank source or destination address is equivalent to Any. AMG1302-T10A User’s Guide...
Page 145 Move button to move the rule to the number that you typed. The ordering of your rules is important as they are applied in order of their numbering. Apply Click this to save your changes. Cancel Click this to restore your previously saved settings. AMG1302-T10A User’s Guide...
Page 146: Configuring Firewall Rules
Do you want your rule to apply to packets with a particular (single) IP, a range of IP addresses (for instance, 192.168.1.10 to 192.169.1.50), a subnet or any IP address? Select an option from the drop-down list box that includes: Single Address, Range Address, Subnet Address and Any Address. AMG1302-T10A User’s Guide...
Page 147: Customized Services
IANA (Internet Assigned Number Authority) website. Click the Edit Customized Services link while editing a firewall rule to configure a custom service port. This displays the following screen. Figure 80 Security > Firewall > Rules: Edit: Edit Customized Services AMG1302-T10A User’s Guide...
Page 148: Configuring A Customized Service
Type a single port number or the range of port numbers that define your customized service. Back Click this to return to the previous screen without saving. Apply Click this to save your changes. Cancel Click this to restore your previously saved settings. Delete Click this to delete the current rule. AMG1302-T10A User’s Guide...
Page 149: Firewall Technical Reference
Note: You also need to configure the remote management settings to allow a WAN computer to manage the Device. You may define additional rules and sets or modify existing ones but please exercise extreme caution in doing so. AMG1302-T10A User’s Guide...
Page 150: Guidelines For Enhancing Security With Your Firewall
For example, if FTP ports (TCP 20, 21) are allowed from the Internet to the LAN, Internet users may be able to connect to computers with running FTP servers. Does this rule conflict with any existing rules? AMG1302-T10A User’s Guide...
Page 151: Triangle Route
The reply from the WAN goes directly to the computer on the LAN without going through the Device. As a result, the Device resets the connection, as the connection has not been acknowledged. Figure 83 “Triangle Route” Problem ISP 1 ISP 2 AMG1302-T10A User’s Guide...
Page 152 The Device reroutes the packet to Gateway A, which is in Subnet 2. The reply from the WAN goes to the Device. The Device then sends it to the computer on the LAN in Subnet 1. Figure 84 IP Alias Subnet 1 ISP 1 ISP 2 Subnet 2 AMG1302-T10A User’s Guide...
Page 153: Filters
Internet the URL is the web address that you type in the address bar of your Internet browser, for example “http://www.zyxel.com”. IP/MAC Filter Structure An IP/MAC filter set consists of one or more filter rules. The Device allows you to configure each type of filter with its own set of filter rules. AMG1302-T10A User’s Guide...
Page 154: The Url Filter Screen
Click this to restore your previously saved settings. 11.3 The Application Filter Screen Use this screen to allow or deny traffic for certain types of applications. The application filter provides a convenient way to manage the use of various applications on the network. AMG1302-T10A User’s Guide...
Page 155 Use this field to allow or deny Yahoo Messenger traffic Real Audio/Video Use this field to allow or deny transferring RealPlayer format files. Save Click this to save your changes. Cancel Click this to restore your previously saved settings. AMG1302-T10A User’s Guide...
Page 156: The Ip/Mac Filter Screen
Enter the source port of the packets that you wish to filter. The range of this field is 0 to 65535. This field is ignored if it is 0. Destination IP Address Enter the destination IP address of the packets you wish to filter. This field is ignored if it is 0.0.0.0. AMG1302-T10A User’s Guide...
Page 157 This is the destination port number. Protocol This is the upper layer protocol. Save Click this to save your changes. Delete Click this to remove the filter rule. Cancel Click this to restore your previously saved settings. AMG1302-T10A User’s Guide...
Page 158 Chapter 11 Filters AMG1302-T10A User’s Guide...
Page 159: Static Route
ISP behind router R2. You create another static route to communicate with a separate network behind a router R3 connected to the LAN. Figure 88 Example of Static Routing Topology AMG1302-T10A User’s Guide...
Page 160: What You Can Do In The Static Route Screens
Click the Edit icon to go to the screen where you can set up a static route on the Device. Click the Remove icon to remove a static route from the Device. A window displays asking you to confirm that you want to delete the route. AMG1302-T10A User’s Guide...
Page 161: Static Route Edit
LAN or WAN port. The gateway helps forward packets to their destinations. Back Click this to return to the previous screen without saving. Apply Click this to save your changes. Cancel Click this to restore your previously saved settings. AMG1302-T10A User’s Guide...
Page 162 Chapter 12 Static Route AMG1302-T10A User’s Guide...
Page 163: Port Binding
PVC connections. The first PVC (PVC0) is for non time-sensitive data traffic. The second and third PVCs (PVC1 and PVC2) are for time sensitive Media-On-Demand (MOD) video traffic and VoIP traffic, respectively. Figure 91 Port Binding Groups Data PVC0 PVC1 VoIP PVC2 AMG1302-T10A User’s Guide...
Page 164: What You Can Do In The Port Binding Screens
Select the Ethernet (Eth) ports to include in the port binding group. Each Ethernet port can only be binded to one group. WLAN Select the WLAN (AP) connections to include in the port binding group. Additional APs can be enabled on the More AP screen (Section 8.3 on page 106). AMG1302-T10A User’s Guide...
Page 165: Port Binding Summary Screen
The following table describes the labels in this screen. Table 62 Advanced > Port Binding > PortBinding Summary LABEL DESCRIPTION Group ID This field displays the group index number. Group port This field displays the ports included in the group. AMG1302-T10A User’s Guide...
Page 166 Chapter 13 Port Binding AMG1302-T10A User’s Guide...
Page 167: Pvid Setting
Whether to tag an outgoing frame depends on the setting of the egress port on a per-VLAN, per- port basis (recall that a port can belong to multiple VLANs). If the tagging on the egress port is AMG1302-T10A User’s Guide...
Page 168: The Pvid Setting Screen
Select TAG if you want the port to tag all outgoing traffic trasmitted through this VLAN. You select this if you want to create VLANs across different devices and just the Device. Apply Click this to save your changes. Cancel Click this to restore your previously saved settings. AMG1302-T10A User’s Guide...
Page 169: Quality Of Service (Qos)
Figure 96 QoS Example VoIP: Queue 6 50 Mbps Boss: Queue 5 IP=192.168.1.23 15.1.1 What You Can Do in the QoS Screens • Use t he QoS screen (Section 15.2 on page 170) to configure QoS settings on the Device. AMG1302-T10A User’s Guide...
Page 170: What You Need To Know About Qos
QoS. 15.2 The QoS Screen Use this screen to enable or disable QoS and have the Device assign priority levels to traffic according to the port range, IEEE 802.1p priority level and/or IP precedence. AMG1302-T10A User’s Guide...
Page 171 Discipline Select weighted round-robin (WRR) scheduling to allow packets of all priorities to transmit depending on their assigned relative weight. Select Strict Priority to require traffic transmit in order of priority. AMG1302-T10A User’s Guide...
Page 172 Select DSCP to specify a DiffServ Code Point (DSCP) range. IP Precedence Enter a range from 0 to 7 to re-assign IP precedence to matched traffic. Zero is the Remarking lowest priority and seven is the highest. AMG1302-T10A User’s Guide...
Page 173: The Qos Settings Summary Screen
This is the port range for source MAC address and IP address. Mask Port Ranges Protocol ID This is the protocol ID associated with the rule. VLAN ID This is the VLAN ID associated with the rule. AMG1302-T10A User’s Guide...
Page 174: Qos Technical Reference
IP precedence uses three bits of the eight-bit ToS (Type of Service) field in the IP header. There are eight classes of services (ranging from zero to seven) in IP precedence. Zero is the lowest priority level and seven is the highest. AMG1302-T10A User’s Guide...
Page 175: Automatic Priority Queue Assignment
QUEUE PRIORITY TOS (IP IP PACKET DSCP (ETHERNET PRECEDENCE) LENGTH (BYTE) PRIORITY) 000000 000000 >1100 001110 250~1100 001100 001010 001000 010110 010100 010010 010000 011110 <250 011100 011010 011000 100110 100100 100010 100000 101110 101000 110000 111000 AMG1302-T10A User’s Guide...
Page 176 Chapter 15 Quality of Service (QoS) AMG1302-T10A User’s Guide...
Page 177: Dynamic Dns Setup
IP address as yourhost.dyndns.org. This feature is useful if you want to be able to use, for example, www.yourhost.dyndns.org and still reach your hostname. If you have a private WAN IP address, then you cannot use Dynamic DNS. AMG1302-T10A User’s Guide...
Page 178: The Dynamic Dns Screen
Type your user name. Password Type the password assigned to you. Enable Wildcard Select the check box to enable DynDNS Wildcard. Option Apply Click this to save your changes. Cancel Click this to restore your previously saved settings. AMG1302-T10A User’s Guide...
Page 179: Remote Management
You may only have one remote management session running at a time. The Device automatically disconnects a remote management session of lower priority when another remote management session of higher priority starts. The priorities for the different types of remote management sessions are as follows. Telnet HTTP AMG1302-T10A User’s Guide...
Page 180: What You Can Do In The Remote Management Screens
There is a default system management idle timeout of five minutes (three hundred seconds). The Device automatically logs you out if the management session remains idle for longer than this timeout period. The management session does not time out when a statistics screen is polling. AMG1302-T10A User’s Guide...
Page 181: The Www Screen
Click this to restore your previously saved settings. 17.3 The Telnet Screen You can use Telnet to access the Device’s command line interface. Specify which interfaces allow Telnet access and from which IP address the access can come. AMG1302-T10A User’s Guide...
Page 182: The Ftp Screen
Use this screen to specify which interfaces allow FTP access and from which IP address the access can come. To change your Device’s FTP settings, click Advanced > Remote MGMT > FTP. The screen appears as shown. Figure 103 Advanced > Remote MGMT > FTP AMG1302-T10A User’s Guide...
Page 183: The Snmp Screen
An agent is a management software module that resides in a managed device (the Device). An agent translates the local management information from the managed device into a form compatible with SNMP. The manager is the console through which network administrators perform AMG1302-T10A User’s Guide...
Page 184: Configuring Snmp
Enter the Set community, which is the password for incoming Set requests from the management station. The default is public and allows all requests. Apply Click Apply to save your changes back to the Device. Reset Click Cancel to begin configuring this screen afresh. AMG1302-T10A User’s Guide...
Page 185: The Dns Screen
This allows the outside user to know the Device exists. Your Device supports anti-probing, which prevents the ICMP response packet from being sent. This keeps outsiders from discovering your Device when unsupported ports are probed. AMG1302-T10A User’s Guide...
Page 186 Select LAN to reply to incoming LAN Ping requests. Select WAN to reply to incoming WAN Ping requests. Otherwise select LAN & WAN to reply to both incoming LAN and WAN Ping requests. Apply Click this to save your changes. Reset Click this to restore your previously saved settings. AMG1302-T10A User’s Guide...
Page 187: Universal Plug-And-Play (Upnp)
The automated nature of NAT traversal applications in establishing their own services and opening firewall ports may present network security issues. Network information and configuration may also be obtained and modified by users in some network environments. AMG1302-T10A User’s Guide...
Page 188: The Upnp Screen
UPnP example by using NAT traversal, UPnP applications automatically reserve a NAT forwarding port in order to communicate with another UPnP enabled device; this eliminates the need to manually configure port forwarding for the UPnP enabled application. AMG1302-T10A User’s Guide...
Page 189: Installing Upnp In Windows Example
Follow the steps below to install the UPnP in Windows Me. Click Start and Control Panel. Double-click Add/Remove Programs. Click on the Windows Setup tab and select Communication in the Components selection box. Click Details. Add/Remove Programs: Windows Setup: Communication AMG1302-T10A User’s Guide...
Page 190 Click OK to go back to the Add/Remove Programs Properties window and click Next. Restart the computer when prompted. Installing UPnP in Windows XP Follow the steps below to install the UPnP in Windows XP. Click Start and Control Panel. Double-click Network Connections. AMG1302-T10A User’s Guide...
Page 191 In the Network Connections window, click Advanced in the main menu and select Optional Networking Components …. Network Connections The Windows Optional Networking Components Wizard window displays. Select Networking Service in the Components selection box and click Details. Windows Optional Networking Components Wizard AMG1302-T10A User’s Guide...
Page 192: Using Upnp In Windows Xp Example
Make sure the computer is connected to a LAN port of the Device. Turn on your computer and the Device. Auto-discover Your UPnP-enabled Network Device Click Start and Control Panel. Double-click Network Connections. An icon displays under Internet Gateway. AMG1302-T10A User’s Guide...
Page 193 Chapter 18 Universal Plug-and-Play (UPnP) Right-click the icon and select Properties. Network Connections In the Internet Connection Properties window, click Settings to see the port mappings there were automatically created. Internet Connection Properties AMG1302-T10A User’s Guide...
Page 194 You may edit or delete the port mappings or click Add to manually add port mappings. Internet Connection Properties: Advanced Settings Internet Connection Properties: Advanced Settings: Add When the UPnP-enabled device is disconnected from your computer, all port mappings will be deleted automatically. AMG1302-T10A User’s Guide...
Page 195 Device first. This comes helpful if you do not know the IP address of the Device. Follow the steps below to access the web configurator. Click Start and then Control Panel. Double-click Network Connections. AMG1302-T10A User’s Guide...
Page 196 Chapter 18 Universal Plug-and-Play (UPnP) Select My Network Places under Other Places. Network Connections An icon with the description for each UPnP-enabled device displays under Local Network. AMG1302-T10A User’s Guide...
Page 197 Right-click on the icon for your Device and select Invoke. The web configurator login screen displays. Network Connections: My Network Places Right-click on the icon for your Device and select Properties. A properties window displays with basic information about the Device. Network Connections: My Network Places: Properties: Example AMG1302-T10A User’s Guide...
Page 198 Chapter 18 Universal Plug-and-Play (UPnP) AMG1302-T10A User’s Guide...
Page 199: Cwmp
Device. In order to use CWMP, you need to configure the following steps: Activate CWMP Specify the URL, username and password. Activate periodic inform and specify an interval value. AMG1302-T10A User’s Guide...
Page 200: The Cwmp Setup Screen
This user name on the management server and the Device must be the same. Type a user name of up to 255 printable characters found on an English-language keyboard. Spaces and characters such as @#$%^&*()_+ are allowed. AMG1302-T10A User’s Guide...
Page 201 The interval is the duration in seconds for which the Device must attempt to connect with the management server to send information and check for configuration updates. Enter a value between 1 and 86400 seconds. Apply Click this to save your changes. Cancel Click this to restore your previously saved settings. AMG1302-T10A User’s Guide...
Page 202 Chapter 19 CWMP AMG1302-T10A User’s Guide...
Page 203: System Settings
Type your new system password (up to 30 characters). Note that as you type a password, the screen displays a (*) for each character you type. After you change the password, use the new password to access the Device. AMG1302-T10A User’s Guide...
Page 204: The Time And Date Screen
Each time you reload this page, the Device synchronizes the time with the time server. Current Date This field displays the date of your Device. Each time you reload this page, the Device synchronizes the date with the time server. Time and Date Setup AMG1302-T10A User’s Guide...
Page 205 In Germany for instance, you would type 2 because Germany's time zone is one hour ahead of GMT or UTC (GMT+1). Apply Click this to save your changes. Cancel Click this to restore your previously saved settings. AMG1302-T10A User’s Guide...
Page 206 Chapter 20 System Settings AMG1302-T10A User’s Guide...
Page 207: Logs
21.2 The System Log Screen Use the System Log screen to configure and view the logs you wish to display. To change your Device’s log settings, click Maintenance > Logs > Log Settings. The screen appears as shown. AMG1302-T10A User’s Guide...
Page 208 Click this to save the logs in a text file. Remote System Log Active Select to enable or disable remote system logging. Remote Host Specify the address of the remote host to send logs to. Save Click this to save your changes. AMG1302-T10A User’s Guide...
Page 209: Log Descriptions
SSH login failed Someone has logged on to the router's web configurator interface Successful HTTPS login using HTTPS protocol. Someone has failed to log on to the router's web configurator HTTPS login failed interface using HTTPS protocol. AMG1302-T10A User’s Guide...
Page 210 The router sent a TCP reset packet when a dynamic firewall session Firewall session time out, timed out.Default timeout values:ICMP idle timeout (s): 60UDP idle sent TCP RST timeout (s): 60TCP connection (three way handshaking) timeout (s): 30TCP FIN-wait timeout (s): 60TCP idle (established) timeout (s): 3600 AMG1302-T10A User’s Guide...
Page 211 6 is for PPPoE, 10 is for PPTP) "channel" or “ch” is the dev=%x ch=%x %s call channel ID. For example,"board 0 line 0 channel 0, call 3, C01 Outgoing Call dev=6 ch=0 "Means the router has dialed to the PPPoE server 3 times. AMG1302-T10A User’s Guide...
Page 212 The firewall detected an ICMP land attack. land ICMP (type:%d, code:%d) The firewall detected an IP spoofing attack on the WAN port. ip spoofing - WAN [ TCP | UDP | IGMP | ESP | GRE | OSPF ] AMG1302-T10A User’s Guide...
Page 213 No response from RADIUS. Pls check please check the RADIUS server. RADIUS Server. The RADIUS server is operating as the authentication server. Use RADIUS to authenticate user. There is no authentication server to authenticate a user. No Server to authenticate user. AMG1302-T10A User’s Guide...
Page 214 Redirect datagrams for the Type of Service and Host Echo Echo message Time Exceeded Time to live exceeded in transit Fragment reassembly time exceeded Parameter Problem Pointer indicates the error Timestamp Timestamp request message Timestamp Reply Timestamp reply message AMG1302-T10A User’s Guide...
Page 215 RFC 2408 for detailed information on each type. Table 95 RFC-2408 ISAKMP Payload Types LOG DISPLAY PAYLOAD TYPE Security Association Proposal PROP Transform TRANS Key Exchange Identification Certificate Certificate Request CER_REQ Hash HASH Signature Nonce NONCE notification Delete Vendor ID AMG1302-T10A User’s Guide...
Page 216 Chapter 21 Logs AMG1302-T10A User’s Guide...
Page 217: Tools
Click Maintenance > Tools to open the Firmware screen. Follow the instructions in this screen to upload firmware to your Device. The upload process uses HTTP (Hypertext Transfer Protocol) and may take up to two minutes. After a successful upload, the system will reboot. AMG1302-T10A User’s Guide...
Page 218 Click this to begin the upload process. This process may take up to two minutes. After you see the Firmware Upload in Progress screen, wait two minutes before logging into the Device again. Figure 115 Firmware Upload In Progress AMG1302-T10A User’s Guide...
Page 219: The Configuration Screen
Figure 117 Error Message 22.3 The Configuration Screen Click Maintenance > Tools > Configuration. Information related to factory defaults, backup configuration, and restoring configuration appears in this screen, as shown next. Figure 118 Maintenance > Tools > Configuration AMG1302-T10A User’s Guide...
Page 220 Device again. Figure 119 Configuration Upload Successful The Device automatically restarts in this time causing a temporary network disconnect. In some operating systems, you may see the following icon on your desktop. Figure 120 Network Temporarily Disconnected AMG1302-T10A User’s Guide...
Page 221: The Restart Screen
RESET button. 22.4 The Restart Screen System restart allows you to reboot the Device remotely without turning the power off. You may need to do this if the Device hangs, for example. AMG1302-T10A User’s Guide...
Page 222 Chapter 22 Tools Click Maintenance > Tools > Restart. Click Restart to have the Device reboot. This does not affect the Device's configuration. Figure 124 Maintenance > Tools >Restart AMG1302-T10A User’s Guide...
Page 223: Diagnostic
224) to view the DSL line statistics and reset the ADSL line. 23.2 The General Screen Use this screen to ping an IP address. Click Maintenance > Diagnostic to open the screen shown next. Figure 125 Maintenance > Diagnostic > General AMG1302-T10A User’s Guide...
Page 224: The Dsl Line Screen
23.3 The DSL Line Screen Use this screen to view the DSL line statistics and reset the ADSL line. Click Maintenance > Diagnostic > DSL Line to open the screen shown next. Figure 126 Maintenance > Diagnostic > DSL Line AMG1302-T10A User’s Guide...
Page 225 PVC with proper VPIs/VCIs before you begin this test. The Device sends an OAM F5 packet to the DSLAM/ATM switch and then returns it (loops it back) to the Device. The ATM loopback test is useful for troubleshooting problems with the DSLAM and ATM network. AMG1302-T10A User’s Guide...
Page 226 Loading ADSL modem F/W... Reset ADSL Line Successfully!" Capture All Logs Click this to display information and statistics about your Device’s ATM statistics, DSL connection statistics, DHCP settings, firmware version, WAN and gateway IP address, VPI/VCI and LAN IP address. AMG1302-T10A User’s Guide...
Page 227: Troubleshooting
Make sure you understand the normal behavior of the LED. See Section 1.6 on page Check the hardware connections. Inspect your cables for damage. Contact the vendor to replace any damaged cables. Turn the Device off and on. If the problem continues, contact the vendor. AMG1302-T10A User’s Guide...
Page 228: Device Access And Login
Reset the device to its factory defaults, and try to access the Device with the default IP address. Section 1.7 on page If the problem continues, contact the network administrator or vendor, or try one of the advanced suggestions. Advanced Suggestions AMG1302-T10A User’s Guide...
Page 229: Internet Access
Check the hardware connections, and make sure the LEDs are behaving as expected. See the Quick Start Guide and Section 1.6 on page Make sure you entered your ISP account information correctly in the wizard. These fields are case- sensitive, so make sure [Caps Lock] is not on. AMG1302-T10A User’s Guide...
Page 230 Advanced Suggestions • Check the settings for QoS. If it is disabled, you might consider activating it. If it is enabled, you might consider raising or lowering the priority for some applications. AMG1302-T10A User’s Guide...
Page 231: Appendix A Setting Up Your Computer's Ip Address
IP addresses that place them in the same subnet as the Device’s LAN port. Windows 95/98/Me Click Start, Settings, Control Panel and double-click the Network icon to open the Network window. Figure 127 WIndows 95/98/Me: Network: Configuration AMG1302-T10A User’s Guide...
Page 232 • If your IP address is dynamic, select Obtain an IP address automatically. • If you have a static IP address, select Specify an IP address and type your information into the IP Address and Subnet Mask fields. AMG1302-T10A User’s Guide...
Page 233 • If you know your DNS information, select Enable DNS and type the information in the fields below (you may not need to fill them all in). Figure 129 Windows 95/98/Me: TCP/IP Properties: DNS Configuration Click the Gateway tab. AMG1302-T10A User’s Guide...
Page 234 The following example figures use the default Windows XP GUI theme. Click start (Start in Windows 2000/NT), Settings, Control Panel. Figure 130 Windows XP: Start Menu In the Control Panel, double-click Network Connections (Network and Dial-up Connections in Windows 2000/NT). AMG1302-T10A User’s Guide...
Page 235 Figure 131 Windows XP: Control Panel Right-click Local Area Connection and then click Properties. Figure 132 Windows XP: Control Panel: Network Connections: Properties Select Internet Protocol (TCP/IP) (under the General tab in Win XP) and then click Properties. AMG1302-T10A User’s Guide...
Page 236 • If you have a static IP address click Use the following IP Address and fill in the IP address, Subnet mask, and Default gateway fields. • Click Advanced. Figure 134 Windows XP: Internet Protocol (TCP/IP) Properties AMG1302-T10A User’s Guide...
Page 237 • If you know your DNS server IP address(es), click Use the following DNS server addresses, and type them in the Preferred DNS server and Alternate DNS server fields. If you have previously configured DNS servers, click Advanced and then the DNS tab to order them. AMG1302-T10A User’s Guide...
Page 238 In the Command Prompt window, type "ipconfig" and then press [ENTER]. You can also open Network Connections, right-click a network connection, click Status and then click the Support tab. Windows Vista This section shows screens from Windows Vista Enterprise Version 6.0. Click the Start icon, Control Panel. AMG1302-T10A User’s Guide...
Page 239 In the Control Panel, double-click Network and Internet. Figure 138 Windows Vista: Control Panel Click Network and Sharing Center. Figure 139 Windows Vista: Network And Internet Click Manage network connections. Figure 140 Windows Vista: Network and Sharing Center AMG1302-T10A User’s Guide...
Page 240 Select Internet Protocol Version 4 (TCP/IPv4) and click Properties. Figure 142 Windows Vista: Local Area Connection Properties The Internet Protocol Version 4 (TCP/IPv4) Properties window opens (the General tab). • If you have a dynamic IP address click Obtain an IP address automatically. AMG1302-T10A User’s Guide...
Page 241 (the number of transmission hops), clear the Automatic metric check box and type a metric in Metric. • Click Add. • Repeat the previous three steps for each default gateway you want to add. • Click OK when finished. AMG1302-T10A User’s Guide...
Page 242 • If you know your DNS server IP address(es), click Use the following DNS server addresses, and type them in the Preferred DNS server and Alternate DNS server fields. If you have previously configured DNS servers, click Advanced and then the DNS tab to order them. AMG1302-T10A User’s Guide...
Page 243 In the Command Prompt window, type "ipconfig" and then press [ENTER]. You can also open Network Connections, right-click a network connection, click Status and then click the Support tab. Macintosh OS 8/9 Click the Apple menu, Control Panel and double-click TCP/IP to open the TCP/IP Control Panel. AMG1302-T10A User’s Guide...
Page 244 Figure 146 Macintosh OS 8/9: Apple Menu Select Ethernet built-in from the Connect via list. Figure 147 Macintosh OS 8/9: TCP/IP For dynamically assigned settings, select Using DHCP Server from the Configure: list. For statically assigned settings, do the following: AMG1302-T10A User’s Guide...
Page 245 Click Network in the icon bar. • Select Automatic from the Location list. • Select Built-in Ethernet from the Show list. • Click the TCP/IP tab. For dynamically assigned settings, select Using DHCP from the Configure list. AMG1302-T10A User’s Guide...
Page 246 This section shows you how to configure your computer’s TCP/IP settings in Red Hat Linux 9.0. Procedure, screens and file location may vary depending on your Linux distribution and release version. Note: Make sure you are logged in as the root administrator. AMG1302-T10A User’s Guide...
Page 247 • If you have a static IP address, click Statically set IP Addresses and fill in the Address, Subnet mask, and Default Gateway Address fields. Click OK to save the changes and close the Ethernet Device General screen. AMG1302-T10A User’s Guide...
Page 248 (where eth0 is the name of the Ethernet card). Open the configuration file with any plain text editor. • If you have a dynamic IP address, enter in the BOOTPROTO= field. The following figure dhcp shows an example. AMG1302-T10A User’s Guide...
Page 249 Shutting down interface eth0: [OK] Shutting down loopback interface: [OK] Setting network parameters: [OK] Bringing up loopback interface: [OK] Bringing up interface eth0: [OK] Verifying Settings Enter ifconfig in a terminal screen to check your TCP/IP properties. AMG1302-T10A User’s Guide...
Page 250 HWaddr 00:50:BA:72:5B:44 inet addr:172.23.19.129 Bcast:172.23.19.255 Mask:255.255.255.0 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:717 errors:0 dropped:0 overruns:0 frame:0 TX packets:13 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:100 RX bytes:730412 (713.2 Kb) TX bytes:1570 (1.5 Kb) Interrupt:10 Base address:0x1000 [root@localhost]# AMG1302-T10A User’s Guide...
Page 251: Appendix B Ip Addresses And Subnetting
Therefore, each octet has a possible range of 00000000 to 11111111 in binary, or 0 to 255 in decimal. The following figure shows an example IP address in which the first three octets (192.168.1) are the network number, and the fourth octet (16) is the host ID. AMG1302-T10A User’s Guide...
Page 252 Subnet masks can be referred to by the size of the network number part (the bits with a “1” value). For example, an “8-bit mask” means that the first 8 bits of the mask are ones and the remaining 24 bits are zeroes. AMG1302-T10A User’s Guide...
Page 253 For example, 192.1.1.0 /25 is equivalent to saying 192.1.1.0 with subnet mask 255.255.255.128. The following table shows some possible subnet masks using both notations. Table 103 Alternative Subnet Mask Notation ALTERNATIVE LAST OCTET LAST OCTET SUBNET MASK NOTATION (BINARY) (DECIMAL) 255.255.255.0 0000 0000 255.255.255.128 1000 0000 255.255.255.192 1100 0000 AMG1302-T10A User’s Guide...
Page 254 The “borrowed” host ID bit can have a value of either 0 or 1, allowing two subnets; 192.168.1.0 /25 and 192.168.1.128 /25. The following figure shows the company network after subnetting. There are now two sub- networks, A and B. AMG1302-T10A User’s Guide...
Page 255 Table 104 Subnet 1 LAST OCTET BIT IP/SUBNET MASK NETWORK NUMBER VALUE IP Address (Decimal) 192.168.1. IP Address (Binary) 11000000.10101000.00000001. 00000000 Subnet Mask (Binary) 11111111.11111111.11111111. 11000000 Subnet Address: Lowest Host ID: 192.168.1.1 192.168.1.0 Broadcast Address: Highest Host ID: 192.168.1.62 192.168.1.63 AMG1302-T10A User’s Guide...
Page 256 Similarly, use a 27-bit mask to create eight subnets (000, 001, 010, 011, 100, 101, 110 and 111). The following table shows IP address last octet values for each subnet. Table 108 Eight Subnets SUBNET LAST BROADCAST SUBNET FIRST ADDRESS ADDRESS ADDRESS ADDRESS AMG1302-T10A User’s Guide...
Page 257 192.168.255.0. The Internet Assigned Number Authority (IANA) reserved this block of addresses specifically for private use; please do not use any other number unless you are told otherwise. You must also enable Network Address Translation (NAT) on the Device. AMG1302-T10A User’s Guide...
Page 258 Regardless of your particular situation, do not create an arbitrary IP address; always follow the guidelines above. For more information on address assignment, please refer to RFC 1597, Address Allocation for Private Internets and RFC 1466, Guidelines for Management of IP Address Space. AMG1302-T10A User’s Guide...
Page 259: Appendix C Pop-Up Windows, Javascripts And Java Permissions
You can also check if pop-up blocking is disabled in the Pop-up Blocker section in the Privacy tab. In Internet Explorer, select Tools, Internet Options, Privacy. Clear the Block pop-ups check box in the Pop-up Blocker section of the screen. This disables any web pop-up blockers you may have enabled. AMG1302-T10A User’s Guide...
Page 260 Enable Pop-up Blockers with Exceptions Alternatively, if you only want to allow pop-up windows from your device, see the following steps. In Internet Explorer, select Tools, Internet Options and then the Privacy tab. Select Settings…to open the Pop-up Blocker Settings screen. AMG1302-T10A User’s Guide...
Page 261 Type the IP address of your device (the web page that you do not want to have blocked) with the prefix “http://”. For example, http://192.168.167.1. Click Add to move the IP address to the list of Allowed sites. Figure 165 Pop-up Blocker Settings AMG1302-T10A User’s Guide...
Page 262 Click the Custom Level... button. Scroll down to Scripting. Under Active scripting make sure that Enable is selected (the default). Under Scripting of Java applets make sure that Enable is selected (the default). Click OK to close the window. AMG1302-T10A User’s Guide...
Page 263 From Internet Explorer, click Tools, Internet Options and then the Security tab. Click the Custom Level... button. Scroll down to Microsoft VM. Under Java permissions make sure that a safety level is selected. Click OK to close the window. AMG1302-T10A User’s Guide...
Page 264 JAVA (Sun) From Internet Explorer, click Tools, Internet Options and then the Advanced tab. Make sure that Use Java 2 for <applet> under Java (Sun) is selected. Click OK to close the window. Figure 169 Java (Sun) AMG1302-T10A User’s Guide...
Page 265 You can enable Java, Javascripts and pop-ups in one screen. Click Tools, then click Options in the screen that appears. Figure 170 Mozilla Firefox: Tools > Options Click Content to show the screen below. Select the check boxes as shown in the following screen. Figure 171 Mozilla Firefox Content Security AMG1302-T10A User’s Guide...
Page 266 Appendix C Pop-up Windows, JavaScripts and Java Permissions AMG1302-T10A User’s Guide...
Page 267: Appendix D Wireless Lans
Intra-BSS traffic is traffic between wireless clients in the BSS. When Intra-BSS is enabled, wireless client A and B can access the wired network and communicate with each other. When Intra-BSS is disabled, wireless client A and B can still access the wired network but cannot communicate with each other. AMG1302-T10A User’s Guide...
Page 268 An ESSID (ESS IDentification) uniquely identifies each ESS. All access points and their associated wireless clients within the same ESS must have the same ESSID in order to communicate. AMG1302-T10A User’s Guide...
Page 269 (AP) or wireless gateway, but out-of-range of each other, so they cannot "hear" each other, that is they do not know if the channel is currently being used. Therefore, they are considered hidden from each other. AMG1302-T10A User’s Guide...
Page 270 If the Fragmentation Threshold value is smaller than the RTS/CTS value (see previously) you set then the RTS (Request To Send)/CTS (Clear to Send) handshake will never occur as data fr ames will be fragmented before they reach RTS/CTS size. AMG1302-T10A User’s Guide...
Page 271 Wireless security is vital to your network to protect wireless communication between wireless clients, access points and the wired network. Wireless security methods available on the Device are data encryption, wireless client authentication, restricting access by device MAC address and hiding the Device identity. AMG1302-T10A User’s Guide...
Page 272 • Authentication Determines the identity of the users. • Authorization Determines the network services available to authenticated users once they are connected to the network. • Accounting Keeps track of the client’s network activity. AMG1302-T10A User’s Guide...
Page 273 For EAP-TLS authentication type, you must first have a wired connection to the network and obtain the certificate(s) from a certificate authority (CA). A certificate (also called digital IDs) can be used to authenticate users and a CA issues certificates and guarantees the identity of each certificate owner. AMG1302-T10A User’s Guide...
Page 274 The AP maps a unique key that is generated with the RADIUS server. This key expires when the wireless connection times out, disconnects or reauthentication times out. A new WEP key is generated each time reauthentication is performed. AMG1302-T10A User’s Guide...
Page 275 Cipher block chaining Message authentication code Protocol (CCMP). TKIP uses 128-bit keys that are dynamically generated and distributed by the authentication server . AES (Advanced Encryption Standard) is a block cipher that uses a 256-bit mathematical algorithm AMG1302-T10A User’s Guide...
Page 276 WPA. At the time of writing, the most widely available supplicant is the WPA patch for Windows XP, Funk Software's Odyssey client. The Windows XP patch is a free download that adds WPA capability to Windows XP's built-in "Zero Configuration" wireless client. However, you must run Windows XP to use it. AMG1302-T10A User’s Guide...
Page 277 The AP checks each wireless client's password and allows it to join the network only if the password matches. The AP and wireless clients generate a common PMK (Pairwise Master Key). The key itself is not sent over the network, but is derived from the PSK and the SSID. AMG1302-T10A User’s Guide...
Page 278 An antenna couples RF signals onto air. A transmitter within a wireless device sends an RF signal to the antenna, which propagates the signal through the air. The antenna also operates in reverse by capturing RF signals from the air. Positioning the antennas properly increases the range and coverage area of a wireless LAN. AMG1302-T10A User’s Guide...
Page 279 For a single AP application, place omni-directional antennas as close to the center of the coverage area as possible. For directional antennas, point the antenna in the direction of the desired coverage area. AMG1302-T10A User’s Guide...
Page 280 Appendix D Wireless LANs AMG1302-T10A User’s Guide...
Page 281: Appendix E Ipv6
“private IP address” in IPv4. You can have the same link-local address on multiple interfaces on a device. A link-local unicast address has a predefined prefix of fe80::/10. The link-local unicast address format is as follows. Table 115 Link-local Unicast Address Format 1111 1110 10 Interface ID 10 bits 54 bits 64 bits AMG1302-T10A User’s Guide...
Page 282 All DHCP severs on a local site. FF05:0:0:0:0:0:1:3 The following table describes the multicast addresses which are reserved and can not be assigned to a multicast group. Table 117 Reserved Multicast Address MULTICAST ADDRESS FF00:0:0:0:0:0:0:0 FF01:0:0:0:0:0:0:0 FF02:0:0:0:0:0:0:0 FF03:0:0:0:0:0:0:0 FF04:0:0:0:0:0:0:0 FF05:0:0:0:0:0:0:0 FF06:0:0:0:0:0:0:0 FF07:0:0:0:0:0:0:0 AMG1302-T10A User’s Guide...
Page 283 (beginning with fe80). When the interface is connected to a network with a router and the Device is set to automatically obtain an IPv6 network prefix from the router for the interface, it generates another address which AMG1302-T10A User’s Guide...
Page 284 The DHCP relay agent can add the remote identification (remote-ID) option and the interface-ID option to the Relay-Forward DHCPv6 messages. The remote-ID option carries a user-defined string, In IPv6, all network interfaces can be associated with several addresses. AMG1302-T10A User’s Guide...
Page 285 Transition Techniques IPv6 Over IPv4 Tunnelling To route traffic between two IPv6 networks over an IPv4 network, an IPv6 over IPv4 tunnel has to be used. AMG1302-T10A User’s Guide...
Page 286 Internet and an IPv6 device (Z) on the IPv6 Internet. To transmit packets, a 6to4 address is used with a special IPv6 prefix of 2002:: to encode a given IPv4 address. A 6to4 address has the following format: 2002:IPv4 address:subnet ID:host ID/64 AMG1302-T10A User’s Guide...
Page 287 Install Dibbler and select the DHCPv6 client option on your computer. After the installation is complete, select Start > All Programs > Dibbler-DHCPv6 > Client Install as service. Select Start > Control Panel > Administrative Tools > Services. Double click Dibbler - a DHCPv6 client. AMG1302-T10A User’s Guide...
Page 288 Windows 7 supports IPv6 by default. DHCPv6 is also enabled when you enable IPv6 on a Windows 7 computer. To enable IPv6 in Windows 7: Select Control Panel > Network and Sharing Center > Local Area Connection. Select the Internet Protocol Version 6 (TCP/IPv6) checkbox to enable it. Click OK to save the change. AMG1302-T10A User’s Guide...
Page 289 IPv4 Address... : 172.16.100.61 Subnet Mask ... : 255.255.255.0 Default Gateway ..: fe80::213:49ff:feaa:7125%11 172.16.100.254 AMG1302-T10A User’s Guide...
Page 290 Appendix E IPv6 AMG1302-T10A User’s Guide...
Page 291: Appendix F Services
• If t he Protocol is TCP, UDP, or TCP/UDP, this is the IP port number. • If t he Protocol is USER, this is the IP protocol number. • Description: This is a brief explanation of the applications that use this service or the situations in which this service is used. AMG1302-T10A User’s Guide...
Page 292 6667 This is another popular Internet chat program. MSN Messenger 1863 Microsoft Networks’ messenger service uses this protocol. NetBIOS TCP/UDP The Network Basic Input/Output System is used for communication between TCP/UDP computers in a LAN. TCP/UDP TCP/UDP AMG1302-T10A User’s Guide...
Page 293 Internet. SMTP enables you to move messages from one e-mail server to another. SMTPS This is a more secure version of SMTP that runs over SSL. SNMP TCP/UDP Simple Network Management Program. SNMP-TRAPS TCP/UDP Traps for use with the SNMP (RFC:1215). AMG1302-T10A User’s Guide...
Page 294 UNIX environments. It operates over TCP/ IP networks. Its primary function is to allow users to log into remote host systems. VDOLIVE 7000 A videoconferencing solution. The UDP port number is specified in the application. user- defined AMG1302-T10A User’s Guide...
Page 295: Appendix G Legal Information
This publication is subject to change without ice. Trademarks ZyNOS (ZyXEL Network Operating System) is a registered trademark of ZyXEL Communications, Inc. Other trademarks mentioned in this publication are used for identification purposes only and may be properties of their respective owners.
Page 296 This device has been designed for the WLAN 2.4 GHz network throughout the EC region and Switzerland, with restrictions in France. This Class B digital apparatus complies with Canadian ICES-003. Cet appareil numérique de la classe B est conforme à la norme NMB-003 du Canada. AMG1302-T10A User’s Guide...
Page 297 North American products. End-User License Agreement for "AMG1302-T10A" WARNING: ZyXEL Communications Corp. IS WILLING TO LICENSE THE SOFTWARE TO YOU ONLY UPON THE CONDITION THAT YOU ACCEPT ALL OF THE TERMS CONTAINED IN THIS LICENSE AGREEMENT.
Page 298 APPLICABLE LICENSE TERMS OF SUCH THIRD PARTY. 1.Grant of License for Personal Use ZyXEL Communications Corp. ("ZyXEL") grants you a non-exclusive, non-sublicense, non- transferable license to use the program with which this license is distributed (the "Software"), including any documentation files accompanying the Software ("Documentation"), for internal business use only, for up to the number of users specified in sales order and invoice.
Page 299 SOFTWARE AND DOCUMENTATION OR OTHERWISE SHALL BE EQUAL TO THE PURCHASE PRICE, BUT SHALL IN NO EVENT EXCEED THE PRODUCT'S PRICE. BECAUSE SOME STATES/COUNTRIES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES, THE ABOVE LIMITATION MAY NOT APPLY TO YOU. 8.Export Restrictions AMG1302-T10A User’s Guide...
Page 300 Programs that we distributed to you if we are in possession of such. AMG1302-T10A User’s Guide...
Page 301 Information herein is subject to change without notice. Companies, names, and data used in examples herein are fictitious unless otherwise noted. No part may be reproduced or transmitted in any form or by any means, electronic or mechanical, for any purpose, except the express written permission of ZyXEL Communications Corporation. AMG1302-T10A User’s Guide...
Page 302 To prevent this, we have made it clear that any patent must be licensed for everyone's free use or not licensed at all. AMG1302-T10A User’s Guide...
Page 303 Program. In addition, mere aggregation of another work not based on the Program with the Program (or with a work based on the Program) AMG1302-T10A User’s Guide...
Page 304 (not limited to patent issues), conditions are imposed on you (whether by court order, agreement or otherwise) that contradict the conditions of this License, they do not excuse you from the conditions of this License. If you cannot distribute so as to satisfy simultaneously your AMG1302-T10A User’s Guide...
Page 305 SPECIAL, INCIDENTAL OR CONSEQUENTIAL DAMAGES ARISING OUT OF THE USE OR INABILITY TO USE THE PROGRAM (INCLUDING BUT NOT LIMITED TO LOSS OF DATA OR DATA BEING RENDERED INACCURATE OR LOSSES SUSTAINED BY YOU OR THIRD PARTIES OR A FAILURE OF THE PROGRAM AMG1302-T10A User’s Guide...
Page 306 To protect your rights, we need to make restrictions that forbid distributors to deny you these rights or to ask you to surrender these rights. These restrictions translate to certain responsibilities for you if you distribute copies of the library or if you modify it. AMG1302-T10A User’s Guide...
Page 307 "work based on the library" and a "work that uses the libr a ry". The former contains code derived from the library, whereas the latter must be combined with the library in order to run. AMG1302-T10A User’s Guide...
Page 308 But when you distribute the same sections as part of a whole which is a work based on the Library, the distribution of the whole must be on the terms of this License, whose permissions for other AMG1302-T10A User’s Guide...
Page 309 License. You must supply a copy of this License. If the work during execution displays copyright notices, you must include the copyright notice for the Library among them, as well as a reference directing the user to the copy of this License. Also, you must do one of AMG1302-T10A User’s Guide...
Page 310 Library subject to these terms and conditions. You may not impose any further restrictions on the recipients' exercise of the rights granted herein. You are not responsible for enforcing compliance by third parties with this License. AMG1302-T10A User’s Guide...
Page 311 YOU. SHOULD THE LIBRARY PROVE DEFECTIVE, YOU ASSUME THE COST OF ALL NECESSARY SERVICING, REPAIR OR CORRECTION. 16. IN NO EVENT UNLESS REQUIRED BY APPLICABLE LAW OR AGREED TO IN WRITING WILL ANY COPYRIGHT HOLDER, OR ANY OTHER PARTY WHO MAY MODIFY AND/OR REDISTRIBUTE THE AMG1302-T10A User’s Guide...
Page 312 DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. AMG1302-T10A User’s Guide...
Page 313 Permission to use, copy, modify and distribute this software and its documentation for any purpose and without fee is hereby granted, provided that the above copyright notice appears in all copies and that both that copyright notice and this permission notice appear in supporting documentation, AMG1302-T10A User’s Guide...
Page 314 THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDERS OR CONTRIBUTORS BE LIABLE FOR AMG1302-T10A User’s Guide...
Page 315 STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY W AY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. ---- Part 4: Sun Microsystems, Inc. copyright notice (BSD) ----- AMG1302-T10A User’s Guide...
Page 316 OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. AMG1302-T10A User’s Guide...
Page 317 NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. ---- Part 6: Cisco/BUPTNIC copyright notice (BSD) ----- Copyright (c) 2004, Cisco, Inc and Information Network Center of Beijing University of Posts and Telecommunications. All rights reserved. AMG1302-T10A User’s Guide...
Page 318 Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met: * Redistributions of source code must retain the above copyright notice, this list of conditions and the following disclaimer. AMG1302-T10A User’s Guide...
Page 319 THIS SOFTWARE IS PROVIDED BY APPLE AND ITS CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT AMG1302-T10A User’s Guide...
Page 320 OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. AMG1302-T10A User’s Guide...
Page 321: Safety Warnings
Your product is marked with this symbol, which is known as the WEEE mark. WEEE stands for Waste Electronics and Electrical Equipment. It means that used electrical and electronic products should not be mixed with general waste. Used electrical and electronic equipment should be treated separately. AMG1302-T10A User’s Guide...
Page 322 Appendix G Legal InformationSafety Warnings AMG1302-T10A User’s Guide...
Page 323: Index
LAN anti-probing AP (access point) client list application filter Command Line Interface, see CLI applications, NAT compatibility, WDS asymmetrical routes configuration Asynchronous Transfer Mode, see ATM backup CWMP AMG1302-T10A User’s Guide...
Page 324 MAC address documentation 106, 115 activation related 153, 154 Domain Name System, see DNS firewalls actions DSCP activation DSL connections, status address types dynamic DNS anti-probing activation asymmetrical routes wildcard configuration 142, 146 activation customized services 147, 148 AMG1302-T10A User’s Guide...
Page 325 IP address ICMP 85, 86, 94 142, 185 IP alias IEEE 802.11g configuration MAC address IGMP 70, 86, 96 multicast 86, 96 86, 88, 95 Independent Basic Service Set status See IBSS subnet mask 86, 87, 94 AMG1302-T10A User’s Guide...
Page 326 73, 78, 82 port binding 78, 127, 136, 137, 257 activation activation address mapping summary screen rules port forwarding 128, 129 types 134, 135, 138 activation applications configuration IP alias example default server IP address 129, 131 AMG1302-T10A User’s Guide...
Page 327 RADIUS server shaping traffic 82, 83 reauthentication, WPA Simple Network Management Protocol, see SNMP registration Single User Account, see SUA product SIP ALG related documentation activation remote management SNMP agents Manager ICMP managers network components AMG1302-T10A User’s Guide...
Page 328 104, 114 RTS/CTS 104, 114 ATM QoS 75, 79, 83 time encapsulation 69, 72, 78 TR-069 IGMP IP address trademarks 70, 72, 78, 81 mode 72, 77 traffic shaping 75, 80 example AMG1302-T10A User’s Guide...
Page 329 RADIUS server WPA2-PSK 275, 276 RTS/CTS threshold 104, 114 application example scheduling WPA-PSK security 102, 116, 275, 276 application example SSID 98, 99, 108, 115 pre-shared key activation status 108, 118, 121 activation 110, 118 compatibility adding stations AMG1302-T10A User’s Guide...
Page 330 Index example limitations 109, 110, 119 example push button 17, 110, 119 status AMG1302-T10A User’s Guide...
Page 331 Index AMG1302-T10A User’s Guide...
Page 332 Index AMG1302-T10A User’s Guide...

ZyXEL Communications AMG1302-T10A User Manual

Contents Overview

Table of Contents

User's Guide

PART I User's Guide

Chapter 1 Introduction

Chapter 2 The Web Configurator

Chapter 3 Status Screens

Chapter 4 Tutorials

Technical Reference

Part II: Technical Reference

Chapter 5 Internet Setup Wizard

Chapter 6 WAN Setup

Chapter 7 LAN Setup

Chapter 8 Wireless LAN

Chapter 9 Network Address Translation (NAT)

Chapter 10 Firewalls

Chapter 11 Filters

Chapter 12 Static Route

Chapter 13 Port Binding

Chapter 14 PVID Setting

Chapter 15 Quality of Service (Qos)

Chapter 16 Dynamic DNS Setup

Chapter 17 Remote Management

Chapter 18 Universal Plug-And-Play (Upnp)

Chapter 19 CWMP

Chapter 20 System Settings

Chapter 21 Logs

Chapter 22 Tools

Chapter 23 Diagnostic

Chapter 24 Troubleshooting

Appendix A Setting up Your Computer's IP Address

Appendix B IP Addresses and Subnetting

Appendix C Pop-Up Windows, Javascripts and Java Permissions

Appendix D Wireless Lans

Appendix E Ipv6

Appendix F Services

Appendix G Legal Information

Safety Warnings

Index

Quick Links

Related Manuals for ZyXEL Communications AMG1302-T10A

Summary of Contents for ZyXEL Communications AMG1302-T10A