Page 1 P-2802H(W)(L)-I Series VDSL VoIP IAD User’s Guide Version 3.70 6/2007 Edition 1 www.zyxel.com...
Page 3: About This User's Guide
Help us help you. Send all User Guide-related comments, questions or suggestions for improvement to the following address, or use e-mail instead. Thank you! The Technical Writing Team, ZyXEL Communications Corp., 6 Innovation Road II, Science-Based Industrial Park, Hsinchu, 300, Taiwan. E-mail: techwriters@zyxel.com.tw P-2802H(W)(L)-I Series User’s Guide About This User's Guide...
Page 4: Document Conventions
“k” for kilo may denote “1000” or “1024”, “M” for mega may denote “1000000” or “1048576” and so on. • “e.g.,” is a shorthand for “for instance”, and “i.e.,” means “that is” or “in other words”. P-2802H(W)(L)-I Series User’s Guide...
Page 5 Icons Used in Figures Figures in this User’s Guide may use the following generic icons. The ZyXEL Device icon is not an exact representation of your device. ZyXEL Device Server Telephone P-2802H(W)(L)-I Series User’s Guide Computer Notebook computer DSLAM Firewall Switch...
Page 6: Safety Warnings
• Use only No. 26 AWG (American Wire Gauge) or larger telecommunication line cord. • Antenna Warning! This device meets ETSI and FCC certification requirements when using the included antenna(s). Only use the included antenna(s). This product is recyclable. Dispose of it properly. Safety Warnings P-2802H(W)(L)-I Series User’s Guide...
Page 7 Safety Warnings P-2802H(W)(L)-I Series User’s Guide...
Page 8 Safety Warnings P-2802H(W)(L)-I Series User’s Guide...
Page 9: Table Of Contents
Universal Plug-and-Play (UPnP) ... 271 Maintenance, Troubleshooting and Specifications ... 283 System ... 285 Logs ... 289 Tools ... 303 Diagnostic ... 315 Troubleshooting ... 317 Product Specifications ... 325 Appendices and Index ... 335 P-2802H(W)(L)-I Series User’s Guide Contents Overview Contents Overview...
Page 10 Contents Overview P-2802H(W)(L)-I Series User’s Guide...
Page 11: Table Of Contents
2.1.1 Accessing the Web Configurator ... 43 2.2 Web Configurator Main Screen ... 46 2.2.1 Title Bar ... 46 2.2.2 Navigation Panel ... 47 2.2.3 Main Window ... 49 2.2.4 Status Bar ... 49 P-2802H(W)(L)-I Series User’s Guide Table of Contents Table of Contents...
Page 12 6.3 WAN Interface Setup ... 87 Chapter 7 LAN Setup... 89 7.1 LAN Overview ... 89 7.1.1 LANs, WANs and the ZyXEL Device ... 89 7.1.2 DHCP Setup ... 90 7.2 DNS Server Addresses ... 90 P-2802H(W)(L)-I Series User’s Guide...
Page 13 9.1.4 NAT Application ...118 9.1.5 NAT Mapping Types ...119 9.2 SUA (Single User Account) Versus NAT ... 120 9.3 NAT General Setup ... 120 9.4 Port Forwarding ... 121 9.4.1 Default Server IP Address ... 122 P-2802H(W)(L)-I Series User’s Guide Table of Contents...
Page 14 10.11.2 Europe Type Supplementary Phone Services ... 145 10.11.3 USA Type Supplementary Services ... 147 10.12 Phone Region Screen ... 148 10.13 Speed Dial ... 148 10.14 Incoming Call Policy Screen ... 150 10.15 PSTN Line (“L” models only) ... 152 P-2802H(W)(L)-I Series User’s Guide...
Page 15 13.1.4 VPN Applications ... 180 13.2 IPSec Architecture ... 180 13.2.1 IPSec Algorithms ... 181 13.2.2 Key Management ... 181 13.3 Encapsulation ... 181 13.3.1 Transport Mode ... 182 13.3.2 Tunnel Mode ... 182 P-2802H(W)(L)-I Series User’s Guide ... 163 Table of Contents...
Page 16 15.1 Certificates Overview ...211 15.1.1 Advantages of Certificates ... 212 15.2 Self-signed Certificates ... 212 15.3 Configuration Summary ... 212 15.4 My Certificates ... 212 15.5 My Certificate Import ... 214 15.5.1 Certificate File Formats ... 215 P-2802H(W)(L)-I Series User’s Guide...
Page 17 18.2 Configuring Dynamic DNS ... 251 Chapter 19 Remote Management Configuration ... 255 19.1 Remote Management Overview ... 255 19.1.1 Remote Management Limitations ... 256 19.1.2 Remote Management and NAT ... 256 P-2802H(W)(L)-I Series User’s Guide Table of Contents ... 229...
Page 18 System ... 285 21.1 General Setup and System Name ... 285 21.1.1 General Setup ... 285 21.2 Time Setting ... 287 Chapter 22 Logs ... 289 22.1 Logs Overview ... 289 22.1.1 Alerts and Logs ... 289 P-2802H(W)(L)-I Series User’s Guide...
Page 19 Troubleshooting... 317 25.1 Power, Hardware Connections, and LEDs ... 317 25.2 ZyXEL Device Access and Login ... 318 25.3 Internet Access ... 320 25.4 Phone Calls and VoIP ... 321 P-2802H(W)(L)-I Series User’s Guide ... 305 ... 312 Table of Contents...
Page 20 Appendix C IP Addresses and Subnetting ... 355 Appendix D Wireless LANs ... 363 Appendix E Services ... 373 Appendix F Internal SPTGEN... 377 Appendix G Legal Information... 401 Appendix H Customer Support... 405 Index... 411 P-2802H(W)(L)-I Series User’s Guide...
Page 21: List Of Figures
Figure 33 Any IP Table ... 76 Figure 34 WLAN Status ... 77 Figure 35 Packet Statistics ... 78 Figure 36 VoIP Statistics ... 79 Figure 37 Internet Access Setup (PPPoE) ... 84 Figure 38 Advanced Internet Access Setup ... 86 P-2802H(W)(L)-I Series User’s Guide...
Page 22 Figure 77 SIP > QoS ... 141 Figure 78 Phone > Analog Phone ... 142 Figure 79 Phone > Analog Phone > Advanced ... 143 Figure 80 Phone > Common ... 144 Figure 81 VoIP > Phone > Region ... 148 P-2802H(W)(L)-I Series User’s Guide...
Page 23 Figure 119 My Certificates ... 213 Figure 120 My Certificate Import ... 215 Figure 121 My Certificate Create ... 216 Figure 122 My Certificate Details ... 219 Figure 123 Trusted CAs ... 222 Figure 124 Trusted CA Import ... 223 P-2802H(W)(L)-I Series User’s Guide...
Page 24 Figure 163 Add/Remove Programs: Windows Setup: Communication ... 273 Figure 164 Add/Remove Programs: Windows Setup: Communication: Components ... 274 Figure 165 Network Connections ... 274 Figure 166 Windows Optional Networking Components Wizard ... 275 Figure 167 Networking Services ... 275 P-2802H(W)(L)-I Series User’s Guide...
Page 25 Figure 207 Windows XP: Control Panel: Network Connections: Properties ... 342 Figure 208 Windows XP: Local Area Connection Properties ... 342 Figure 209 Windows XP: Advanced TCP/IP Settings ... 343 Figure 210 Windows XP: Internet Protocol (TCP/IP) Properties ... 344 P-2802H(W)(L)-I Series User’s Guide...
Page 26 Figure 231 Invalid Parameter Entered: Command Line Example ... 378 Figure 232 Valid Parameter Entered: Command Line Example ... 378 Figure 233 Internal SPTGEN FTP Download Example ... 379 Figure 234 Internal SPTGEN FTP Upload Example ... 379 P-2802H(W)(L)-I Series User’s Guide...
Page 27: List Of Tables
Table 33 Wireless: WPA(2)-PSK ... 108 Table 34 Wireless: WPA(2) ... 109 Table 35 Wireless LAN: Advanced ...111 Table 36 Network > Wireless LAN > OTIST ...112 Table 37 MAC Address Filter ...115 Table 38 NAT Definitions ...117 P-2802H(W)(L)-I Series User’s Guide...
Page 28 Table 77 VPN Setup; Edit ... 194 Table 78 Advanced VPN IKE ... 200 Table 79 VPN Setup: Manual Key ... 203 Table 80 VPN: SA Monitor ... 206 Table 81 VPN: Global Setting ... 207 P-2802H(W)(L)-I Series User’s Guide...
Page 29 Table 119 System Error Logs ... 295 Table 120 Access Control Logs ... 295 Table 121 TCP Reset Logs ... 295 Table 122 Packet Filter Logs ... 296 Table 123 ICMP Logs ... 296 Table 124 CDR Logs ... 296 P-2802H(W)(L)-I Series User’s Guide...
Page 30 Table 163 16-bit Network Number Subnet Planning ... 361 Table 164 IEEE 802.11g ... 367 Table 165 Comparison of EAP Authentication Types ... 370 Table 166 Wireless Security Relational Matrix ... 371 Table 167 Examples of Services ... 373 P-2802H(W)(L)-I Series User’s Guide...
Page 31 Table 174 Menu 21.1 Filter Set #1 ... 391 Table 175 Menu 21.1 Filer Set #2, ... 394 Table 176 Menu 23 System Menus ... 398 Table 177 Menu 24.11 Remote Management Control ... 400 Table 178 Command Examples ... 400 P-2802H(W)(L)-I Series User’s Guide...
Page 32 List of Tables P-2802H(W)(L)-I Series User’s Guide...
Page 33: Introduction
Introduction Introducing the ZyXEL Device (35) Introducing the Web Configurator (43)
Page 35: Introducing The Zyxel Device
Not all models include all features. Please refer to the following description of the product name format. • “H” denotes an integrated 4-port hub (switch). The “H” models also include Virtual Private Network (VPN) capability. P-2802H(W)(L)-I Series User’s Guide MAX. MAX. DATA RATE BANDWIDTH...
Page 36: Ways To Manage The Zyxel Device
• SPTGEN. SPTGEN is a text configuration file that allows you to configure the device by uploading an SPTGEN file. This is especially convenient if you need to configure many devices of the same type. • TR-069. This is an auto-configuration server used to remotely configure your device. P-2802H(W)(L)-I Series User’s Guide...
Page 37: Good Habits For Managing The Zyxel Device
This means that probes from the outside to your network are not allowed, but you can safely browse the Internet and download files for example. P-2802H(W)(L)-I Series User’s Guide Chapter 1 Introducing the ZyXEL Device...
Page 38: Wireless Lan Application
VoIP. Your device then sends your call to the Internet and the ITSP’s SIP server (C). The VoIP call server forwards calls to PSTN phones (E) through a trunking gateway (D) to the PSTN network. The VoIP call server forwards calls to IP phones (F) through the Internet. P-2802H(W)(L)-I Series User’s Guide...
Page 39: Making Peer-To-Peer Calls
You use your analog phone (A in the figure) and your device (B) changes the call into VoIP and sends the call through the Internet to the peer VoIP device (C). Figure 4 Peer-to-peer Calling P-2802H(W)(L)-I Series User’s Guide Chapter 1 Introducing the ZyXEL Device...
Page 40: Leds
Your device is not ready or there is a malfunction. Your device is not turned on. Your device has a successful Ethernet connection. Blinking The ZyXEL Device is sending/receiving data. The Ethernet port is not connected. P-2802H(W)(L)-I Series User’s Guide...
Page 41: The Reset Button
RESET button for three seconds and release it. The WLAN LED should flash while the device uses OTIST to send wireless settings to OTIST clients. (“W” models only) P-2802H(W)(L)-I Series User’s Guide Chapter 1 Introducing the ZyXEL Device STATUS...
Page 42 To set the device back to the factory default settings, press the RESET button for ten seconds or until the POWER LED begins to blink and then release it. When the POWER LED begins to blink, the defaults have been restored and the device restarts. P-2802H(W)(L)-I Series User’s Guide...
Page 43: Introducing The Web Configurator
If you haven’t changed the password yet, you can just click Login. Click Cancel to revert to the default password in the password field. If you have changed the password, enter your password and click Login. P-2802H(W)(L)-I Series User’s Guide Introducing the Web Configurator...
Page 44: Figure 6 Password Screen
Figure 7 Change Password Screen 6 Click Apply in the Replace Certificate screen to create a certificate using your ZyXEL Device’s MAC address that will be specific to this device. P-2802H(W)(L)-I Series User’s Guide...
Page 45: Figure 8 Replace Certificate Screen
For security reasons, the ZyXEL Device automatically logs you out if you do not use the web configurator for five minutes (default). If this happens, log in again. Figure 9 Wizard or Advanced Screen P-2802H(W)(L)-I Series User’s Guide Chapter 2 Introducing the Web Configurator for more information. Section 2.2 on page 46...
Page 46: Web Configurator Main Screen
Help: Click this icon to open up help screens. Wizards: Click this icon to go to the configuration wizards. See Logout: Click this icon to log out of the web configurator. for more information. Chapter 3 on page P-2802H(W)(L)-I Series User’s Guide...
Page 47: Navigation Panel
PSTN Line General (“L” models only) Security P-2802H(W)(L)-I Series User’s Guide Chapter 2 Introducing the Web Configurator FUNCTION This screen contains administrative and system-related information. Use this screen to configure ISP parameters, WAN IP address assignment, DNS servers and other advanced properties.
Page 48 DNS queries to the ZyXEL Device. Use this screen to set whether or not your device will respond to pings and probes for services that you have not made available. Use this screen to turn UPnP on or off. P-2802H(W)(L)-I Series User’s Guide...
Page 49: Main Window
2.2.4 Status Bar Check the status bar when you click Apply or OK to verify that the configuration has been updated. P-2802H(W)(L)-I Series User’s Guide Chapter 2 Introducing the Web Configurator FUNCTION Use this screen to configure your device’s name, domain name, management inactivity timeout and password.
Page 50 Chapter 2 Introducing the Web Configurator P-2802H(W)(L)-I Series User’s Guide...
Page 51: Wizard
Wizard Internet and Wireless Setup Wizard (53) VoIP Wizard And Example (65)
Page 53: Internet And Wireless Setup Wizard
1 After you enter the password to access the web configurator, select Go to Wizard setup and click Apply. Otherwise, click the wizard icon ( web configurator to go to the wizards. P-2802H(W)(L)-I Series User’s Guide Wizard ) in the top right corner of the...
Page 54: Figure 11 Select A Mode
Figure 12 Wizard Welcome 3 Enter your Internet access information in the wizard screen exactly as your service provider gave it to you. Leave the defaults in any fields for which you were not given information. P-2802H(W)(L)-I Series User’s Guide...
Page 55: Figure 13 Internet Access Wizard Setup: Isp Parameters
PPPoE, the ZyXEL Device is set to get an IP address from the ISP automatically. To set up a static WAN IP address with PPPoE, use the Network > WAN screen. P-2802H(W)(L)-I Series User’s Guide Chapter 3 Internet and Wireless Setup Wizard for wireless connection wizard setup...
Page 56: Figure 14 Internet Connection With Pppoe
Type the name of your PPPoE service here. Back Click Back to go back to the previous wizard screen. Apply Click Apply to save your changes back to the ZyXEL Device. Exit Click Exit to close the wizard screen without saving your changes. P-2802H(W)(L)-I Series User’s Guide...
Page 57: Figure 15 Internet Connection With Ethernet
Click Apply to save your changes back to the ZyXEL Device. Exit Click Exit to close the wizard screen without saving your changes. 5 Wait for the ZyXEL Device to finish testing your WAN connection. P-2802H(W)(L)-I Series User’s Guide Chapter 3 Internet and Wireless Setup Wizard...
Page 58: Wireless Connection Wizard Setup
3.3 Wireless Connection Wizard Setup After you configure the Internet access information, use the following screens to set up your wireless LAN. 1 Select Yes and click Next to configure wireless settings. Otherwise, select No and skip to Step 6. P-2802H(W)(L)-I Series User’s Guide...
Page 59: Figure 18 Connection Test Successful
Type an OTIST Setup Key of up to eight ASCII characters in length. Be sure to use the same OTIST Setup Key on the ZyXEL Device and wireless clients. Back Click Back to display the previous screen. P-2802H(W)(L)-I Series User’s Guide Chapter 3 Internet and Wireless Setup Wizard...
Page 60: Figure 20 Wireless Lan
Click Exit to close the wizard screen without saving. DESCRIPTION Click Next to proceed to the next screen. Click Exit to close the wizard screen without saving. for more information. for more information. Section 3.3.1 on Section 3.3.2 on P-2802H(W)(L)-I Series User’s Guide...
Page 61: Manually Assign A Wpa-Psk Key
Click Next to proceed to the next screen. Exit Click Exit to close the wizard screen without saving. 3.3.2 Manually Assign a WEP Key Choose Manually assign a WEP key to setup WEP Encryption parameters. P-2802H(W)(L)-I Series User’s Guide Chapter 3 Internet and Wireless Setup Wizard...
Page 62: Figure 22 Manually Assign A Wep Key
5 Click Apply to save your wireless LAN settings. Figure 23 Wireless LAN Setup 3 6 Use the read-only summary table to check whether what you have configured is correct. Click Finish to complete and save the wizard setup. P-2802H(W)(L)-I Series User’s Guide...
Page 63: Figure 24 Internet Access And Wlan Wizard Setup Complete
ZyXEL Device features. If you cannot access the Internet, open the web configurator again to confirm that the Internet settings you configured in the wizard setup are correct. P-2802H(W)(L)-I Series User’s Guide Chapter 3 Internet and Wireless Setup Wizard...
Page 64 Chapter 3 Internet and Wireless Setup Wizard P-2802H(W)(L)-I Series User’s Guide...
Page 65: Voip Wizard And Example
1 After you enter the password to access the web configurator, select Go to Wizard setup and click Apply. Otherwise, click the wizard icon ( web configurator to display the wizard main screen. P-2802H(W)(L)-I Series User’s Guide ) in the top right corner of the...
Page 66: Figure 26 Select A Mode
11223344 is your SIP number. This is the part that comes before the “@” symbol in your SIP account address. SIPA- Account.com is your SIP server domain. a.b.c.d a.b.c.d is the IP address or domain name of your SIP server. P-2802H(W)(L)-I Series User’s Guide...
Page 67: Figure 28 Voip Wizard Configuration
Table 14 VoIP Wizard Configuration LABEL SIP Number SIP Server Address SIP Service Domain User Name Password P-2802H(W)(L)-I Series User’s Guide Chapter 4 VoIP Wizard And Example EXAMPLE VALUES DESCRIPTION VoIPUser This is the username you use to login to your SIP account.
Page 68: Figure 29 Sip Registration Test
Click Back to return to the previous screen. Click Apply to complete the wizard setup and save your configuration. Click Exit to close the wizard without saving your settings. P-2802H(W)(L)-I Series User’s Guide...
Page 69: Figure 31 Voip Wizard Finish
You dial a prefix number, provided to you by your VoIP service provider, followed by a regular phone number. To find out more information about configuring your VoIP features and making non-VoIP calls see P-2802H(W)(L)-I Series User’s Guide Chapter 4 VoIP Wizard And Example Chapter 10 on page 129.
Page 70 Chapter 4 VoIP Wizard And Example P-2802H(W)(L)-I Series User’s Guide...
Page 71: Advanced
Advanced Status Screens (73) WAN Setup (83) LAN Setup (89) Wireless LAN (101) Network Address Translation (NAT) Screens (117) Voice (129) Firewalls (155) Content Filtering (175) Introduction to IPSec (179) VPN Screens (185) Certificates (211) Static Route (235) Quality of Service (QoS) (239) Dynamic DNS Setup (251) Remote Management Configuration (255) Universal Plug-and-Play (UPnP) (271)
Page 73: Status Screens
(LAN and WAN), and SIP accounts. You can also register and unregister SIP accounts. The Status screen also provides detailed information from Any IP and DHCP and statistics from VoIP, bandwidth management, and traffic. 5.1 Status Screen Click Status to open this screen. Figure 32 Status Screen P-2802H(W)(L)-I Series User’s Guide Status Screens...
Page 74: Table 15 Status Screen
This displays whether or not the ZyXEL Device’s firewall is activated. Click this to go to the screen where you can change it. Content Filter This displays whether or not the ZyXEL Device’s content filtering is activated. Click this to go to the screen where you can change it. P-2802H(W)(L)-I Series User’s Guide...
Page 75 ZyXEL Device. See VPN Status Click this link to view the ZyXEL Device’s current VPN connections. See 14.16 on page P-2802H(W)(L)-I Series User’s Guide Chapter 17 on page Section 23.6 on page 309, or turn off the device Section 5.3 on page...
Page 76: Any Ip Table
The second field displays Registered. Click Register to have the ZyXEL Device attempt to register the SIP account with the SIP server. The second field displays the reason the account is not registered. P-2802H(W)(L)-I Series User’s Guide Section 5.4 on Section 5.5 on page...
Page 77: Wlan Status ("W" Models Only)
Click Status > Packet Statistics to access this screen. Read-only information here includes port status and packet specific statistics. Also provided are "system up time" and "poll interval(s)". The Poll Interval(s) field is configurable. P-2802H(W)(L)-I Series User’s Guide Chapter 5 Status Screens...
Page 78: Figure 35 Packet Statistics
This field displays the number of error packets on this port. This field displays the number of bytes transmitted in the last second. This field displays the number of bytes received in the last second. This field displays the elapsed time this port has been up. P-2802H(W)(L)-I Series User’s Guide...
Page 79: Voip Statistics
Click Status > VoIP Statistics to access this screen. Figure 36 VoIP Statistics Each field is described in the following table. Table 19 VoIP Statistics LABEL DESCRIPTION SIP Status Account This column displays each SIP account in the ZyXEL Device. P-2802H(W)(L)-I Series User’s Guide Chapter 5 Status Screens...
Page 80 The rate is the average number of bytes transmitted per second. Rx B/s This field displays how quickly the ZyXEL Device has received packets in the current call. The rate is the average number of bytes transmitted per second. P-2802H(W)(L)-I Series User’s Guide...
Page 81 Click this to make the ZyXEL Device update the screen based on the amount of time you specified in Poll Interval. Stop Click this to make the ZyXEL Device stop updating the screen. P-2802H(W)(L)-I Series User’s Guide Chapter 5 Status Screens...
Page 82 Chapter 5 Status Screens P-2802H(W)(L)-I Series User’s Guide...
Page 83: Wan Setup
The SUA (Single User Account) feature can be enabled or disabled if you have either a dynamic or static IP. However the encapsulation method assigned influences your choices for IP address and default gateway. P-2802H(W)(L)-I Series User’s Guide WAN Setup...
Page 84: Nailed-Up Connection (Ppp)
Use this screen to change your ZyXEL Device’s WAN settings. Click Network > WAN > Internet Access Setup. The screen differs by the encapsulation you select. Section 6.1 on page 83 Figure 37 Internet Access Setup (PPPoE) for more information. P-2802H(W)(L)-I Series User’s Guide...
Page 85: Table 20 Internet Access Setup
If you do not configure a DNS server, you must know the IP address of a computer in order to access it. P-2802H(W)(L)-I Series User’s Guide ZyXEL Device is always in routing mode and this field will not be configurable.
Page 86: Advanced Internet Access Setup
Demand. The default setting is 0, which means the Internet session will not timeout. Click Apply to save the changes. Click Cancel to begin configuring this screen afresh. Click this button to display the Advanced WAN Setup screen and edit more details of your WAN setup. P-2802H(W)(L)-I Series User’s Guide...
Page 87: Wan Interface Setup
The ZyXEL Device restarts after you select or clear the check box and click Apply. Apply Click Apply to save the changes. Cancel Click Cancel to begin configuring this screen afresh. P-2802H(W)(L)-I Series User’s Guide Chapter 6 WAN Setup...
Page 88 Chapter 6 WAN Setup P-2802H(W)(L)-I Series User’s Guide...
Page 89: Lan Setup
WAN ports. There are two separate IP networks, one inside the LAN network and the other outside the WAN network as shown next. Figure 40 LAN and WAN IP Addresses P-2802H(W)(L)-I Series User’s Guide LAN Setup to configure the LAN screens.
Page 90: Dhcp Setup
If your ISP gives you explicit DNS servers, make sure that you enter their IP addresses in the DHCP Setup screen. 7.3 LAN TCP/IP The ZyXEL Device has built-in DHCP server capability that assigns IP addresses and DNS servers to systems that support DHCP client capability. P-2802H(W)(L)-I Series User’s Guide...
Page 91: Ip Address And Subnet Mask
Regardless of your particular situation, do not create an arbitrary IP address; always follow the guidelines above. For more information on address assignment, please refer to RFC 1597, “Address Allocation for Private Internets” and RFC 1466, “Guidelines for Management of IP Address Space”. P-2802H(W)(L)-I Series User’s Guide Chapter 7 LAN Setup...
Page 92: Rip Setup
After that, the ZyXEL Device periodically updates this information. IP multicasting can be enabled/disabled on the ZyXEL Device LAN and/or WAN interfaces in the web configurator (LAN; WAN). Select None to disable IP multicasting on these interfaces. P-2802H(W)(L)-I Series User’s Guide...
Page 93: Any Ip
IP routing table is defined on IP Ethernet devices (the ZyXEL Device) to decide which hop to use, to help forward data along to its specified destination. P-2802H(W)(L)-I Series User’s Guide Chapter 7 LAN Setup...
Page 94: Configuring Lan Ip
255.255.255.0 (factory default). Your ZyXEL Device automatically computes the subnet mask based on the IP Address you enter, so do not change this field unless you are instructed to do so. Click Apply to save your changes back to the ZyXEL Device. for background P-2802H(W)(L)-I Series User’s Guide...
Page 95: Configuring Advanced Lan Setup
When you disable the Any IP feature, only computers with dynamic IP addresses or static IP addresses in the same subnet as the ZyXEL Device’s LAN IP address can connect to the ZyXEL Device or access the Internet through the ZyXEL Device. P-2802H(W)(L)-I Series User’s Guide ZyXEL Device. Chapter 7 LAN Setup...
Page 96: Dhcp Setup
7.5 DHCP Setup Click Network > DHCP Setup to open this screen. Use this screen to configure the DNS server information that the ZyXEL Device sends to the DHCP client devices on the LAN. Figure 44 DHCP Setup P-2802H(W)(L)-I Series User’s Guide...
Page 97: Lan Client List
Click Cancel to begin configuring this screen afresh. 7.6 LAN Client List This table allows you to assign IP addresses on the LAN to specific individual computers based on their MAC addresses. P-2802H(W)(L)-I Series User’s Guide Chapter 7 LAN Setup...
Page 98: Figure 45 Lan Client List
Click the modify icon to have the IP address field editable and change it. Apply Click Apply to save your changes back to the ZyXEL Device. Cancel Click Cancel to begin configuring this screen afresh. Refresh Click Refresh to reload the DHCP table. P-2802H(W)(L)-I Series User’s Guide...
Page 99: Lan Ip Alias
The following figure shows a LAN divided into subnets A, B, and C. Figure 46 Physical Network & Partitioned Logical Networks Click Network > LAN > IP Alias to open the following screen. Use this screen to change your ZyXEL Device’s IP alias settings. P-2802H(W)(L)-I Series User’s Guide Chapter 7 LAN Setup...
Page 100: Figure 47 Lan Ip Alias
By default, RIP direction is set to Both and the Version set to RIP-1. Click Apply to save your changes back to the ZyXEL Device. Click Cancel to begin configuring this screen afresh. P-2802H(W)(L)-I Series User’s Guide...
Page 101: Wireless Lan
• Every device in the same wireless network must use the same SSID. The SSID is the name of the wireless network. It stands for Service Set IDentity. • If two wireless networks overlap, they should use a different channel. P-2802H(W)(L)-I Series User’s Guide Wireless LAN...
Page 102: Wireless Security Overview
Some wireless devices, such as scanners, can detect wireless networks but cannot use wireless networks. These kinds of wireless devices might not have MAC addresses. Hexadecimal characters are 0, 1, 2, 3, 4, 5, 6, 7, 8, 9, A, B, C, D, E, and F. ; for P-2802H(W)(L)-I Series User’s Guide...
Page 103: Encryption
Many types of encryption use a key to protect the information in the wireless network. The longer the key, the stronger the encryption. Every device in the wireless network must have the same key. P-2802H(W)(L)-I Series User’s Guide Chapter 8 Wireless LAN RADIUS SERVER...
Page 104: One-Touch Intelligent Security Technology (Otist)
The process of verifying whether a wireless device is allowed to use the wireless network. A small fragmentation threshold is recommended for busy networks, while a larger threshold provides faster performance if the network is not very busy. P-2802H(W)(L)-I Series User’s Guide for more details.
Page 105: No Security
Select No Security to allow wireless stations to communicate with the access points without any data encryption. P-2802H(W)(L)-I Series User’s Guide connected to the wireless LAN and you change the ZyXEL Device’s SSID or WEP settings, you will lose your wireless connection when you press Apply to confirm.
Page 106: Wep Encryption Screen
Choose No Security from the drop-down list box. 8.4.2 WEP Encryption Screen In order to configure and enable WEP encryption; click Network > Wireless LAN to display the General screen. Select Static WEP from the Security Mode list. P-2802H(W)(L)-I Series User’s Guide...
Page 107: Wpa(2)-Psk
256-bit WEP key respectively. 8.4.3 WPA(2)-PSK In order to configure and enable WPA(2)-PSK authentication; click Network > Wireless LAN to display the General screen. Select WPA-PSK or WPA2-PSK from the Security Mode list. P-2802H(W)(L)-I Series User’s Guide Chapter 8 Wireless LAN...
Page 108: Figure 52 Wireless: Wpa(2)-Psk
WEP key for an AP and all stations in a WLAN on a periodic basis. Setting of the Group Key Update Timer is also supported in WPA(2)-PSK mode. The ZyXEL Device default is 1800 seconds (30 minutes). P-2802H(W)(L)-I Series User’s Guide...
Page 109: Wpa(2) Authentication Screen
The wireless station needs to enter the username and password again before access to the wired network is allowed. The default time interval is 3600 seconds (or 1 hour). P-2802H(W)(L)-I Series User’s Guide server, the reauthentication timer on the RADIUS server has priority.
Page 110: Wireless Lan Advanced Setup
Enter a password (up to 31 alphanumeric characters) as the key to be shared between the external accounting server and the ZyXEL Device. The key must be the same on the external accounting server and your ZyXEL Device. The key is not sent over the network. P-2802H(W)(L)-I Series User’s Guide...
Page 111: Otist Screen
Use this screen to set up and start OTIST on the ZyXEL Device in your wireless network. To open this screen, click Network > Wireless LAN > OTIST. Figure 55 Network > Wireless LAN > OTIST P-2802H(W)(L)-I Series User’s Guide Chapter 8 Wireless LAN...
Page 112: Figure 56 Example: Wireless Client Otist Screen
After you click Start in the ZyXEL Device, the following screen appears (in the ZyXEL Device). must change it on the wireless devices too. device(s) within three minutes of each other. You can start OTIST in the wireless devices and the ZyXEL Device in any order. P-2802H(W)(L)-I Series User’s Guide...
Page 113: Notes On Otist
1 If you enable OTIST in a wireless device, you see this screen each time you start the utility. Click Yes to search for an OTIST-enabled AP (in other words, the ZyXEL Device). Figure 60 Start OTIST? P-2802H(W)(L)-I Series User’s Guide Chapter 8 Wireless LAN...
Page 114: Mac Filter
OTIST on the AP and ALL wireless devices again. 8.6 MAC Filter Use this screen to change your ZyXEL Device’s MAC filter settings. Click Network > Wireless LAN > MAC Filter. The screen appears as shown. Figure 61 MAC Address Filter P-2802H(W)(L)-I Series User’s Guide...
Page 115: Table 37 Mac Address Filter
12:34:56:78:9a:bc. Apply Click Apply to save your changes back to the ZyXEL Device. Cancel Click Cancel to reload the previous configuration for this screen. P-2802H(W)(L)-I Series User’s Guide Chapter 8 Wireless LAN...
Page 116 Chapter 8 Wireless LAN P-2802H(W)(L)-I Series User’s Guide...
Page 117: Network Address Translation (Nat) Screens
This refers to the packet address (source or destination) as the packet travels on the LAN. Global This refers to the packet address (source or destination) as the packet travels on the WAN. NAT never changes the IP address (either local or global) of an outside host. P-2802H(W)(L)-I Series User’s Guide (NAT) Screens...
Page 118: Network Address Translation (Nat) Screens
9.1.4 NAT Application The following figure illustrates a possible NAT application, where three inside LANs (logical LANs using IP Alias) behind the ZyXEL Device can communicate with three distinct WAN networks. Table 39 on page 120), P-2802H(W)(L)-I Series User’s Guide...
Page 119: Nat Mapping Types
• Server: This type allows you to specify inside servers of different services behind the NAT to be accessible to the outside world. Port numbers do NOT change for One-to-One and Many-to-Many No Overload NAT mapping types. P-2802H(W)(L)-I Series User’s Guide Chapter 9 Network Address Translation (NAT) Screens...
Page 120: Sua (Single User Account) Versus Nat
ILA2 IGA1 … ILA1 IGA1 ILA2 IGA2 ILA3 IGA1 ILA4 IGA2 … ILA1 IGA1 ILA2 IGA2 ILA3 IGA3 … Server 1 IP IGA1 Server 2 IP IGA1 Server 3 IP IGA1 Table 39 on page P-2802H(W)(L)-I Series User’s Guide 120.
Page 121: Port Forwarding
A port forwarding set is a list of inside (behind NAT on the LAN) servers, for example, web or FTP, that you can make visible to the outside world even though NAT makes your whole inside network appear as a single computer to the outside world. P-2802H(W)(L)-I Series User’s Guide Chapter 9 Network Address Translation (NAT) Screens...
Page 122: Default Server Ip Address
192.168.1.35 to a third (C in the example). You assign the LAN IP addresses and the ISP assigns the WAN IP address. The NAT network appears as a single host on the Internet. Appendix E on page 373. Please P-2802H(W)(L)-I Series User’s Guide...
Page 123: Configuring Port Forwarding
SUA only in the NAT > General screen. Appendix E on page 373 Figure 66 Port Forwarding P-2802H(W)(L)-I Series User’s Guide Chapter 9 Network Address Translation (NAT) Screens for port numbers commonly used for particular services.
Page 124: Port Forwarding Rule Edit
9.5.1 Port Forwarding Rule Edit Use this screen to edit a port forwarding rule. Click the rule’s edit icon in the Port Forwarding screen to display the screen shown next. Figure 67 Port Forwarding Rule Setup P-2802H(W)(L)-I Series User’s Guide...
Page 125: Address Mapping
When a rule matches the current packet, the ZyXEL Device takes the corresponding action and the remaining rules are ignored. To change your ZyXEL Device’s address mapping settings, click Network > NAT > Address Mapping to open the following screen. P-2802H(W)(L)-I Series User’s Guide Chapter 9 Network Address Translation (NAT) Screens...
Page 126: Address Mapping Rule Edit
9.6.1 Address Mapping Rule Edit To edit an address mapping rule, click the rule’s edit icon in the Address Mapping screen to display the screen shown next. P-2802H(W)(L)-I Series User’s Guide...
Page 127: Figure 69 Edit Address Mapping Rule
Back Click Back to return to the previous screen. Apply Click Apply to save your changes to the ZyXEL Device. Cancel Click Cancel to begin configuring this screen afresh. P-2802H(W)(L)-I Series User’s Guide Chapter 9 Network Address Translation (NAT) Screens...
Page 128: Sip Alg
Select this to make sure SIP (VoIP) works correctly with port-forwarding and address-mapping rules. Click this to save your changes and to apply them to the ZyXEL Device. Click this to return to previously saved configuration. P-2802H(W)(L)-I Series User’s Guide...
Page 129: Voice
The SIP number is the part of the SIP URI that comes before the “@” symbol. A SIP number can use letters like in an e-mail address (johndoe@your-ITSP.com for example) or numbers like a telephone number (1122334455@VoIP-provider.com for example). P-2802H(W)(L)-I Series User’s Guide Voice...
Page 130: Sip Call Progression
A or B can act as a SIP user agent client to initiate a call. A and B can also both act as a SIP user agent to receive the call. 2. Ringing 3. OK 5.Dialogue (voice traffic) 7. OK P-2802H(W)(L)-I Series User’s Guide...
Page 131: Figure 71 Sip User Agent
1 Client device A sends a call invitation for C to the SIP redirect server (B). 2 The SIP redirect server sends the invitation back to A with C’s IP address (or domain name). 3 Client device A then sends the call invitation to client device C. P-2802H(W)(L)-I Series User’s Guide Chapter 10 Voice...
Page 132: Rtp
The more similar the audio sample is to the prediction, the less space needed to describe it. G.726 operates at 16, 24, 32 or 40 kbps. P-2802H(W)(L)-I Series User’s Guide...
Page 133: Pstn Call Setup Signaling
10.2.9.2 Listening to Custom Tones Do the following to listen to a custom tone: The ZyXEL Device does not support pulse dialing at the time of writing. P-2802H(W)(L)-I Series User’s Guide DESCRIPTION 128 seconds for all custom tones combined 20 seconds You can record up to 8 different custom tones but the total time must be 128 seconds or less.
Page 134: Quality Of Service (Qos)
DSCP is backward compatible with the three precedence bits in the ToS octet so that non- DiffServ compliant, ToS-enabled network device will not conflict with the DSCP mapping. The ZyXEL Device does not support DiffServ at the time of writing. P-2802H(W)(L)-I Series User’s Guide...
Page 135: Vlan Tagging
Section 10.8 on page 142 Use this screen to maintain basic information about each SIP account. You can also enable and disable each SIP account. To access this screen, click VoIP > SIP > SIP Settings. P-2802H(W)(L)-I Series User’s Guide Unused (2-bit) for how to map a SIP account to a phone port.
Page 136: Figure 75 Sip > Sip Settings
You can use up to 127 printable ASCII Extended set characters. Select this if you want to send identification when you make VoIP phone calls. Clear this if you do not want to send identification. P-2802H(W)(L)-I Series User’s Guide...
Page 137: Advanced Sip Setup Screen
Click VoIP > SIP > SIP Settings to open the SIP Settings screen. Select a SIP account and click Advanced Setup to open the Advanced SIP Setup screen. Use this screen to maintain advanced settings for each SIP account. P-2802H(W)(L)-I Series User’s Guide Chapter 10 Voice...
Page 138: Figure 76 Voip > Sip Settings > Advanced
Figure 76 VoIP > SIP Settings > Advanced Each field is described in the following table. Table 49 VoIP > SIP Settings > Advanced LABEL SIP Account SIP Server Settings DESCRIPTION This field displays the SIP account you see in this screen. P-2802H(W)(L)-I Series User’s Guide...
Page 139 SIP INFO - send the DTMF tones in SIP messages. Outbound Proxy P-2802H(W)(L)-I Series User’s Guide enter the port number at the beginning of the range in the Start Port field. enter the port number at the end of the range in the End Port field.
Page 140 Click this to save your changes and to apply them to the ZyXEL Device. Click this to set every field in this screen to its last-saved value. for more information. for more information. for more information. Section 10.2.9 on page 133 for more P-2802H(W)(L)-I Series User’s Guide...
Page 141: Sip Qos Screen
Voice Activity Detection (VAD) detects whether or not speech is present. This lets the ZyXEL Device reduce the bandwidth that a call uses by not transmitting “silent packets” when you are not speaking. P-2802H(W)(L)-I Series User’s Guide Chapter 10 Voice...
Page 142: Comfort Noise Generation
Select this if you want to receive phone calls for the SIP1 account on this phone port. Select this if you want to receive phone calls for the SIP2 account on this phone port. P-2802H(W)(L)-I Series User’s Guide...
Page 143: Advanced Analog Phone Setup Screen
Enter the loudness that the ZyXEL Device uses for speech that it sends to the peer device. -1 is the quietest, and 1 is the loudest. P-2802H(W)(L)-I Series User’s Guide the settings you configure, the phone(s) connected to the PHONE port(s) can still be used for making PSTN calls. Only one phone can be in use at a time.
Page 144: Common Phone Settings Screen
ZyXEL Device makes the call immediately, instead of waiting. You can still wait, if you want. Click this to save your changes and to apply them to the ZyXEL Device. Click this to set every field in this screen to its last-saved value. P-2802H(W)(L)-I Series User’s Guide...
Page 145: Phone Services Overview
Table 54 European Flash Key Commands COMMAND SUB-COMMAND Flash Flash P-2802H(W)(L)-I Series User’s Guide Section 10.14 on page 150) DESCRIPTION Put a current call on hold to place a second call. Switch back to the call (if there is no second call).
Page 146: European Call Waiting
2. Put a current call on hold to answer an incoming call. 3. Separate the current three-way conference call into two individual calls (one is on-line, the other is on hold). Create three-way conference connection. Transfer the call to another phone. P-2802H(W)(L)-I Series User’s Guide...
Page 147: Usa Type Supplementary Services
1 When you are on the phone talking to someone (party A), press the flash key to put the caller on hold and get a dial tone. P-2802H(W)(L)-I Series User’s Guide DESCRIPTION Put a current call on hold to place a second call. After the second call is successful, press the flash key again to have a three-way conference call.
Page 148: Phone Region Screen
You might have to subscribe to these services to use them. Contact your VoIP service provider. Click this to save your changes and to apply them to the ZyXEL Device. Click this to set every field in this screen to its last-saved value. P-2802H(W)(L)-I Series User’s Guide...
Page 149: Figure 82 Phone Book > Speed Dial
Dial Phone Book section. Speed Dial Phone Use this section to look at all the speed-dial entries and to erase them. Book This field displays the speed-dial number you should dial to use this entry. P-2802H(W)(L)-I Series User’s Guide Chapter 10 Voice...
Page 150: Incoming Call Policy Screen
Dial section, where you can change it. Click the remove icon to erase this speed-dial entry. Click this to erase all the speed-dial entries. Click this to set every field in this screen to its last-saved value. P-2802H(W)(L)-I Series User’s Guide...
Page 151: Table 58 Phone Book > Incoming Call Policy
Forward to Number section. Apply Click this to save your changes and to apply them to the ZyXEL Device. Cancel Click this to set every field in this screen to its last-saved value. P-2802H(W)(L)-I Series User’s Guide Chapter 10 Voice...
Page 152: Pstn Line ("L" Models Only)
10.16 PSTN Line Screen (“L” models only) Use this screen to set up the PSTN line you use to make regular phone calls. To access this screen, click VoIP > PSTN Line > General. Figure 84 PSTN Line > General P-2802H(W)(L)-I Series User’s Guide...
Page 153: Table 59 Pstn Line > General
Apply Click this to save your changes and to apply them to the ZyXEL Device. Cancel Click this to set every field in this screen to its last-saved value. P-2802H(W)(L)-I Series User’s Guide Chapter 10 Voice...
Page 154 Chapter 10 Voice P-2802H(W)(L)-I Series User’s Guide...
Page 155: Firewalls
Internet and the LAN. Enable the firewall to protect your LAN computers from attacks by hackers on the Internet and control access between the LAN and WAN. By default the firewall: P-2802H(W)(L)-I Series User’s Guide Firewalls...
Page 156: Guidelines For Enhancing Security With Your Firewall
LAN interface (IP alias). You can also configure the remote management settings to allow only a specific computer to manage the ZyXEL Device. • WAN to LAN • WAN to WAN/ Router P-2802H(W)(L)-I Series User’s Guide...
Page 157 These custom rules work by comparing the source IP address, destination IP address and IP protocol type of network traffic to rules set by the administrator. Your customized rules take precedence and override the ZyXEL Device’s default rules. P-2802H(W)(L)-I Series User’s Guide Chapter 11 Firewalls...
Page 158: Security Considerations
Device’s LAN IP address), the “triangle route” (also called asymmetrical route) problem may occur. The steps below describe the “triangle route” problem. 1 A computer on the LAN initiates a connection by sending out a SYN packet to a receiving server on the WAN. P-2802H(W)(L)-I Series User’s Guide...
Page 159: Solving The "Triangle Route" Problem
2 The ZyXEL Device reroutes the packet to Gateway A, which is in Subnet 2. 3 The reply from the WAN goes to the ZyXEL Device. 4 The ZyXEL Device then sends it to the computer on the LAN in Subnet 1. P-2802H(W)(L)-I Series User’s Guide Chapter 11 Firewalls...
Page 160: General Firewall Policy
Click Security > Firewall to display the following screen. Activate the firewall by selecting the Active Firewall check box as seen in the following screen. Refer to Section 11.5 on page 160 Figure 88 Firewall: General for more information. P-2802H(W)(L)-I Series User’s Guide...
Page 161: Firewall Rules Summary
The ordering of your rules is very important as rules are applied in turn. Refer to Section 11.5 on page 160 P-2802H(W)(L)-I Series User’s Guide directly to the LAN without passing through the ZyXEL Device. A better solution is to use IP alias to put the ZyXEL Device and the backup gateway on separate subnets.
Page 162: Figure 89 Firewall Rules
(Reject) or allows the passage of packets (Permit). Schedule This field tells you whether a schedule is specified (Yes) or not (No). This field shows you whether a log is created when packets match this rule (Yes) or not (No). for more information. P-2802H(W)(L)-I Series User’s Guide...
Page 163: Configuring Firewall Rules
In the Rules screen, select an index number and click Add or click a rule’s Edit icon to display this screen and refer to the following table for information on the labels. P-2802H(W)(L)-I Series User’s Guide for more information. Chapter 11 Firewalls...
Page 164: Figure 90 Firewall: Edit Rule
Select this option to enable this firewall rule. Use the drop-down list box to select whether to discard (Drop), deny and send an ICMP destination-unreachable message to the sender of (Reject) or allow the passage of (Permit) packets that match this rule. P-2802H(W)(L)-I Series User’s Guide...
Page 165 Click Back to return to the previous screen. Apply Click Apply to save your customized settings and exit this screen. Cancel Click Cancel to exit this screen without saving. P-2802H(W)(L)-I Series User’s Guide Appendix E on page 373 for more information on services available. Chapter 11 Firewalls...
Page 166: Customized Services
Click a rule number in the Firewall Customized Services screen to create a new custom port or edit an existing one. This action displays the following screen. Appendix E on page 373 for some examples. Click the Edit P-2802H(W)(L)-I Series User’s Guide...
Page 167: Example Firewall Rule
11.7 Example Firewall Rule The following Internet firewall rule example allows a hypothetical “MyService” connection from the Internet. 1 Click Security > Firewall > Rules. 2 Select WAN to LAN in the Packet Direction field. P-2802H(W)(L)-I Series User’s Guide Chapter 11 Firewalls...
Page 168: Figure 93 Firewall Example: Rules
Apply. Figure 94 Edit Custom Port Example 7 Select Any in the Destination Address List box and then click Delete. 8 Configure the destination address screen as follows and click Add. P-2802H(W)(L)-I Series User’s Guide...
Page 169: Figure 95 Firewall Example: Edit Rule: Destination Address
9 Use the Add >> and Remove buttons between Available Services and Selected Services list boxes to configure it as follows. Click Apply when you are done. Custom services show up with an “*” before their names in the Services list box and the Rules list box. P-2802H(W)(L)-I Series User’s Guide...
Page 170: Figure 96 Firewall Example: Edit Rule: Select Customized Services
On completing the configuration procedure for this Internet firewall rule, the Rules screen should look like the following. Rule 1 allows a “MyService” connection from the WAN to IP addresses 10.0.0.10 through 10.0.0.15 on the LAN. P-2802H(W)(L)-I Series User’s Guide...
Page 171: Firewall Thresholds
ACK (acknowledgment). After this handshake, a connection is established. Figure 98 Three-Way Handshake For UDP, half-open means that the firewall has detected no return traffic. An unusually high number (or arrival rate) of half-open sessions could indicate a DOS attack. P-2802H(W)(L)-I Series User’s Guide Chapter 11 Firewalls...
Page 172: Threshold Values
The ZyXEL Device also sends alerts whenever TCP Maximum Incomplete is exceeded. The global values specified for the threshold and timeout apply to all TCP connections. Click Firewall > Threshold to bring up the next screen. Figure 99 Firewall: Threshold P-2802H(W)(L)-I Series User’s Guide...
Page 173: Table 65 Firewall: Threshold
Deny new connection requests for the number of minutes that you specify (between 1 and 255). Apply Click Apply to save your changes back to the ZyXEL Device. Reset Click Reset to begin configuring this screen afresh. P-2802H(W)(L)-I Series User’s Guide Chapter 11 Firewalls...
Page 174 Chapter 11 Firewalls P-2802H(W)(L)-I Series User’s Guide...
Page 175: Content Filtering
URL http://www.website.com/bad.html, even if it is not included in the Filter List. To have your ZyXEL Device block Web sites containing keywords in their URLs, click Security > Content Filter. The screen appears as shown. Figure 100 Content Filter: Keyword P-2802H(W)(L)-I Series User’s Guide Content Filtering...
Page 176: Configuring The Schedule
When you try to access a web page containing a keyword, you will get a message telling you that the content filter is blocking this request. Click Apply to save your changes back to the ZyXEL Device. Click Cancel to return to the previously saved settings. P-2802H(W)(L)-I Series User’s Guide...
Page 177: Configuring Trusted Computers
Trusted User IP Range From Apply Cancel P-2802H(W)(L)-I Series User’s Guide DESCRIPTION Type the IP address of a computer (or the beginning IP address of a specific range of computers) on the LAN that you want to exclude from content filtering.
Page 178 Chapter 12 Content Filtering P-2802H(W)(L)-I Series User’s Guide...
Page 179: Introduction To Ipsec
Decryption is the opposite of encryption: it is a mathematical operation that transforms “ciphertext” to plaintext. Decryption also requires a key. P-2802H(W)(L)-I Series User’s Guide Introduction to IPSec...
Page 180: Vpn Applications
LAN, remote users will be able to access all computers that use private IP addresses on the LAN. • Unsupported IP Applications A VPN tunnel may be created to add support for unsupported emerging IP applications. 13.2 IPSec Architecture The overall IPSec architecture is shown as follows. P-2802H(W)(L)-I Series User’s Guide...
Page 181: Ipsec Algorithms
Key management allows you to determine whether to use IKE (ISAKMP) or manual key configuration in order to set up a VPN. 13.3 Encapsulation The two modes of operation for IPSec VPNs are Transport mode and Tunnel mode. P-2802H(W)(L)-I Series User’s Guide Chapter 13 Introduction to IPSec seeSection 14.2...
Page 182: Transport Mode
NAT is incompatible with the AH protocol in both Transport and Tunnel mode. An IPSec VPN using the AH protocol digitally signs the outbound packet, both data payload and headers, with a hash value appended to the packet. When using AH protocol, packet contents (the data payload) are not encrypted. P-2802H(W)(L)-I Series User’s Guide...
Page 183: Table 69 Vpn And Nat
"original header plus original payload," which is unchanged by a NAT device. Transport mode ESP with authentication is not compatible with NAT. Table 69 VPN and NAT SECURITY PROTOCOL P-2802H(W)(L)-I Series User’s Guide Chapter 13 Introduction to IPSec MODE Transport Tunnel...
Page 184 Chapter 13 Introduction to IPSec P-2802H(W)(L)-I Series User’s Guide...
Page 185: Vpn Screens
An added feature of the ESP is payload padding, which further protects communications by concealing the size of the packet being transmitted. P-2802H(W)(L)-I Series User’s Guide VPN Screens Chapter 22 on page 289...
Page 186: My Ip Address
160-bit digest to authenticate packet data. MD5 (default) MD5 (Message Digest 5) produces a 128-bit digest to authenticate packet data. SHA1 SHA1 (Secure Hash Algorithm) produces a 160-bit digest to authenticate packet data. for details on dial backup and traffic redirect. P-2802H(W)(L)-I Series User’s Guide...
Page 187: Dynamic Secure Gateway Address
Click Security > VPN to open the VPN Setup screen. This is a menu of your IPSec rules (tunnels). The IPSec summary menu is read-only. Edit a VPN by selecting an index number and then configuring its associated submenus. P-2802H(W)(L)-I Series User’s Guide Chapter 14 VPN Screens 207for configuration examples).
Page 188: Figure 107 Vpn Setup
Local Address Type field in the VPN Setup - Edit screen is configured to Range. A (static) IP address and a subnet mask are displayed when the Local Address Type field in the VPN Setup - Edit screen is configured to Subnet. P-2802H(W)(L)-I Series User’s Guide...
Page 189: Keep Alive
As a result, the VPN device at the receiving end finds a mismatch between the hash value and the data and assumes that the data has been maliciously altered. P-2802H(W)(L)-I Series User’s Guide Chapter 14 VPN Screens Section 14.12 on page...
Page 190: Remote Dns Server
DNS server, you must identify that DNS server. You cannot use DNS servers on the LAN or from the ISP since these DNS servers cannot resolve domain names to private IP addresses on the remote network Figure 108 on page MODE Transport Tunnel Transport Tunnel P-2802H(W)(L)-I Series User’s Guide 190, when...
Page 191: Id Type And Content
The type of ID can be a domain name, an IP address or an e-mail address. The content is the IP address, domain name, or e-mail address. P-2802H(W)(L)-I Series User’s Guide (seeSection 14.12.1 on page (seeSection 14.18 on page 207...
Page 192: Id Type And Content Examples
The domain name or e-mail address that you use in the Content field is used for identification purposes only and does not need to be a real domain name or e-mail address. ZYXEL DEVICE B Local ID type: IP Local ID content: 1.1.1.2 Peer ID type: E-mail Peer ID content: tom@yourcompany.com P-2802H(W)(L)-I Series User’s Guide...
Page 193: Pre-Shared Key
14.11 Editing VPN Policies Click an Edit icon in the VPN Setup screen to edit VPN policies. P-2802H(W)(L)-I Series User’s Guide ZYXEL DEVICE B Local ID type: IP Local ID content: 1.1.1.10...
Page 194: Figure 110 Vpn Setup: Edit
Select Yes to have the ZyXEL Device automatically reinitiate the SA after the SA lifetime times out, even if there is no traffic. The remote IPSec router must also have keep alive enabled in order for this feature to work. P-2802H(W)(L)-I Series User’s Guide...
Page 195 Use the drop-down menu to choose Single, Range, or Subnet. Select Single Type with a single IP address. Select Range for a specific range of IP addresses. Select Subnet to specify IP addresses on a network by their subnet mask. P-2802H(W)(L)-I Series User’s Guide Chapter 14 VPN Screens...
Page 196 Select IP to identify the remote IPSec router by its IP address. Select DNS to identify the remote IPSec router by a domain name. Select E-mail to identify the remote IPSec router by an e-mail address. for details on dial backup and P-2802H(W)(L)-I Series User’s Guide...
Page 197 Security > Certificates screens, or click the My Certificates link. My Certificates Click this to go to the Security > Certificates > My Certificates screen. If you do not click Apply first, your VPN settings will not be saved. P-2802H(W)(L)-I Series User’s Guide Chapter 14 VPN Screens...
Page 198: Ike Phases
Click Back to return to the previous screen. Click Apply to save your changes back to the ZyXEL Device. Click Cancel to begin configuring this screen afresh. Click Advanced Setup to configure more detailed settings of your IKE key management. P-2802H(W)(L)-I Series User’s Guide...
Page 199: Negotiation Mode
DH2) Diffie-Hellman groups are supported. Upon completion of the Diffie-Hellman exchange, the two peers have a shared secret, but the IKE SA is not authenticated. For authentication, use pre-shared keys. P-2802H(W)(L)-I Series User’s Guide Section 14.12.3 on page 200. Select None (the default) to disable...
Page 200: Perfect Forward Secrecy (Pfs)
The following table describes the fields in this screen. Table 78 Advanced VPN IKE LABEL VPN - IKE Protocol DESCRIPTION Enter 1 for ICMP, 6 for TCP, 17 for UDP, etc. 0 is the default and signifies any protocol. P-2802H(W)(L)-I Series User’s Guide...
Page 201 You must choose a key group for phase 1 IKE setup. DH1 (default) refers to Diffie-Hellman Group 1 a 768 bit random number. DH2 refers to Diffie-Hellman Group 2 a 1024 bit (1Kb) random number. P-2802H(W)(L)-I Series User’s Guide Chapter 14 VPN Screens...
Page 202: Manual Key Setup
Click Back to return to the previous screen. Click Apply to save your changes back to the ZyXEL Device and return to the VPN-IKE screen. Click Cancel to return to the VPN-IKE screen without saving your changes. P-2802H(W)(L)-I Series User’s Guide...
Page 203: Configuring Manual Key
Select IKE or Manual from the drop-down list box. Manual is a useful option for troubleshooting if you have problems using IKE key management. Type a number (base 10) from 1 to 999999 for the Security Parameter Index. P-2802H(W)(L)-I Series User’s Guide Chapter 14 VPN Screens...
Page 204 (static) IP address, in a range of computers on the network behind the remote IPSec router. When the Remote Address Type field is configured to Subnet, enter a subnet mask on the network behind the remote IPSec router. P-2802H(W)(L)-I Series User’s Guide...
Page 205: Viewing Sa Monitor
A Security Association (SA) is the group of security settings related to a specific VPN tunnel. This screen displays active VPN connections. Use Refresh to display active VPN connections. This screen is read-only. The following table describes the fields in this tab. P-2802H(W)(L)-I Series User’s Guide Chapter 14 VPN Screens Chapter 6 on page 83...
Page 206: Figure 114 Vpn: Sa Monitor
Select one of the security associations, and then click Disconnect to stop that security association. Refresh Click Refresh to display the current active VPN connection(s). Section 14.6 on page 189on keep alive to have the ZyXEL P-2802H(W)(L)-I Series User’s Guide...
Page 207: Configuring Global Setting
WAN IP addresses of their IPSec routers. The telecommuters must all use the same IPSec parameters but the local IP addresses (or ranges of addresses) should not overlap. P-2802H(W)(L)-I Series User’s Guide DESCRIPTION NetBIOS (Network Basic Input/Output System) are TCP or UDP packets that enable a computer to find other computers.
Page 208: Telecommuters Using Unique Vpn Rules Example
Telecommuter B: 192.168.3.2 Telecommuter C: 192.168.4.15 192.168.1.10 Section 14.12.1 on page HEADQUARTERS Public static IP address 0.0.0.0 With this IP address only the telecommuter can initiate the IPSec tunnel. 192.168.1.10 0.0.0.0 (N/A) 199), the ZyXEL Device can P-2802H(W)(L)-I Series User’s Guide...
Page 209: Figure 117 Telecommuters Using Unique Vpn Rules Example
Local ID Content: telecommuterb.com Local IP Address: 192.168.3.2 Telecommuter C (telecommuterc.dydns.org) Local ID Type: E-mail Local ID Content: myVPN@myplace.com Local IP Address: 192.168.4.15 P-2802H(W)(L)-I Series User’s Guide Chapter 14 VPN Screens HEADQUARTERS All Headquarters Rules: My IP Address: bigcompanyhq.com Local IP Address: 192.168.1.10 Local ID Type: E-mail Local ID Content: bob@bigcompanyhq.com...
Page 210: Vpn And Remote Management
Chapter 14 VPN Screens 14.19 VPN and Remote Management If a VPN tunnel uses Telnet, FTP, WWW, then you should configure remote management (Remote Management) to allow access for that service. P-2802H(W)(L)-I Series User’s Guide...
Page 211: Certificates
A certification path is the hierarchy of certification authority certificates that validate a certificate. The ZyXEL Device does not trust a certificate if any certificate on its path has expired or been revoked. P-2802H(W)(L)-I Series User’s Guide Certificates...
Page 212: Advantages Of Certificates
15.4 My Certificates Click Security > Certificates > My Certificates to open the My Certificates screen. This is the ZyXEL Device’s summary list of certificates and certification requests. Certificates display in black and certification requests display in gray. P-2802H(W)(L)-I Series User’s Guide...
Page 213: Figure 119 My Certificates
Subject field. Valid From This field displays the date that the certificate becomes applicable. The text displays in red and includes a Not Yet Valid! message if the certificate has not yet become applicable. P-2802H(W)(L)-I Series User’s Guide Chapter 15 Certificates...
Page 214: My Certificate Import
Click Import to open a screen where you can save the certificate that you have enrolled from a certification authority from your computer to the ZyXEL Device. Click Refresh to display the current validity status of the certificates. P-2802H(W)(L)-I Series User’s Guide...
Page 215: Certificate File Formats
Click Browse to find the certificate file you want to upload. Back Click Back to return to the previous screen. Apply Click Apply to save the certificate on the ZyXEL Device. Cancel Click Cancel to clear your settings. P-2802H(W)(L)-I Series User’s Guide Chapter 15 Certificates...
Page 216: My Certificate Create
ZyXEL Device drops trailing spaces. Type up to 127 characters to identify the company or group to which the certificate owner belongs. You may use any character, including spaces, but the ZyXEL Device drops trailing spaces. P-2802H(W)(L)-I Series User’s Guide...
Page 217 Request Authentication Back Apply Cancel P-2802H(W)(L)-I Series User’s Guide DESCRIPTION Type up to 127 characters to identify the nation where the certificate owner is located. You may use any character, including spaces, but the ZyXEL Device drops trailing spaces. Select a number from the drop-down list box to determine how many bits the key should use (512 to 2048).
Page 218: My Certificate Details
ZyXEL Device uses to sign the trusted remote host certificates that you import to the ZyXEL Device. 213). Click the edit icon to open the My Certificate Details screen. Use P-2802H(W)(L)-I Series User’s Guide...
Page 219: Figure 122 My Certificate Details
Chapter 15 Certificates Figure 122 My Certificate Details P-2802H(W)(L)-I Series User’s Guide...
Page 220: Table 87 My Certificate Details
This field displays the type of algorithm that was used to generate the certificate’s key pair (the ZyXEL Device uses RSA encryption) and the length of the key set in bits (1024 bits for example). P-2802H(W)(L)-I Series User’s Guide...
Page 221: Trusted Cas
ZyXEL Device to accept as trusted. The ZyXEL Device accepts any valid certificate signed by a certification authority on this list as being trustworthy; thus you do not need to import any certificate that is signed by one of these certification authorities. P-2802H(W)(L)-I Series User’s Guide Chapter 15 Certificates...
Page 222: Figure 123 Trusted Cas
Lists for the certificates that it has issued and you have selected the Issues certificate revocation lists (CRL) check box in the certificate’s details screen to have the ZyXEL Device check the CRL before trusting any certificates issued by the certification authority. Otherwise the field displays “No”. P-2802H(W)(L)-I Series User’s Guide...
Page 223: Trusted Ca Import
Click Browse to find the certificate file you want to upload. Back Click Back to return to the previous screen. Apply Click Apply to save the certificate on the ZyXEL Device. Cancel Click Cancel to quit and return to the Trusted CAs screen. P-2802H(W)(L)-I Series User’s Guide Chapter 15 Certificates...
Page 224: Trusted Ca Details
ZyXEL Device to check a certification authority’s list of revoked certificates before trusting a certificate issued by the certification authority. Figure 125 Trusted CA Details P-2802H(W)(L)-I Series User’s Guide...
Page 225: Table 90 Trusted Ca Details
This field displays the type of algorithm that was used to generate the certificate’s key pair (the ZyXEL Device uses RSA encryption) and the length of the key set in bits (1024 bits for example). P-2802H(W)(L)-I Series User’s Guide Chapter 15 Certificates...
Page 226: Trusted Remote Hosts
ZyXEL Device to check the CRL that the certification authority issues before trusting a certificate issued by the certification authority. Click Cancel to quit and return to the Trusted CAs screen. P-2802H(W)(L)-I Series User’s Guide...
Page 227: Figure 126 Trusted Remote Hosts
Click Import to open a screen where you can save the certificate of a remote host (which you trust) from your computer to the ZyXEL Device. Refresh Click this button to display the current validity status of the certificates. P-2802H(W)(L)-I Series User’s Guide Chapter 15 Certificates...
Page 228: Verifying A Trusted Remote Host's Certificate
3 Double-click the certificate’s icon to open the Certificate window. Click the Details tab and scroll down to the Thumbprint Algorithm and Thumbprint fields. Figure 128 Certificate Details Verify (over the phone for example) that the remote host has the same information in the Thumbprint Algorithm and Thumbprint fields. P-2802H(W)(L)-I Series User’s Guide...
Page 229: Trusted Remote Hosts Import
Click Security > Certificates > Trusted Remote Hosts to open the Trusted Remote Hosts screen. Click the details icon to open the Trusted Remote Host Details screen. Use this screen to view in-depth information about the trusted remote host’s certificate and/or change the certificate’s name. P-2802H(W)(L)-I Series User’s Guide Chapter 15 Certificates...
Page 230: Figure 130 Trusted Remote Host Details
CA-signed. The ZyXEL Device is the Certification Authority that signed the certificate. X.509 means that this certificate was created and signed according to the ITU-T X.509 recommendation that defines the formats for public-key certificates. P-2802H(W)(L)-I Series User’s Guide...
Page 231 Certificate in PEM (Base-64) Encoded Format Back Export P-2802H(W)(L)-I Series User’s Guide DESCRIPTION This field displays the X.509 version number. This field displays the certificate’s identification number given by the device that created the certificate. This field displays information that identifies the owner of the certificate, such as Common Name (CN), Organizational Unit (OU), Organization (O) and Country (C).
Page 232: Directory Servers
This field displays the name used to identify this directory server. This field displays the IP address or domain name of the directory server. This field displays the port number that the directory server uses. This field displays the protocol that the directory server uses. P-2802H(W)(L)-I Series User’s Guide...
Page 233: Directory Server Add And Edit
Access Protocol field. You may change the server port number if needed, however you must use the same server port number that the directory server uses. 389 is the default server port number for LDAP. P-2802H(W)(L)-I Series User’s Guide Chapter 15 Certificates...
Page 234 Type the password (up to 31 ASCII characters) from the entity maintaining the directory server (usually a certification authority). Click Back to return to the Directory Servers screen. Click Apply to save your changes back to the ZyXEL Device. Click Cancel to quit configuring this screen. P-2802H(W)(L)-I Series User’s Guide...
Page 235: Static Route
ZyXEL Device about the networks beyond the remote nodes. Figure 133 Example of Static Routing Topology 16.2 Configuring Static Route Click Advanced > Static Route to open the Static Route screen. P-2802H(W)(L)-I Series User’s Guide Static Route...
Page 236: Static Route Edit
Click this to return to the previously saved configuration. 16.2.1 Static Route Edit Select a static route index number and click Edit. The screen shown next appears. Use this screen to configure the required information for a static route. P-2802H(W)(L)-I Series User’s Guide...
Page 237: Figure 135 Static Route Edit
Back Click Back to return to the previous screen without saving. Apply Click Apply to save your changes back to the ZyXEL Device. Cancel Click Cancel to begin configuring this screen afresh. P-2802H(W)(L)-I Series User’s Guide Chapter 16 Static Route...
Page 238 Chapter 16 Static Route P-2802H(W)(L)-I Series User’s Guide...
Page 239: Quality Of Service (Qos)
PRIORITY TRAFFIC TYPE LEVEL Level 7 Typically used for network control traffic such as router configuration messages. Level 6 Typically used for voice traffic that is especially sensitive to jitter (jitter is the variations in delay). P-2802H(W)(L)-I Series User’s Guide...
Page 240: Ip Precedence
DiffServ network. Based on the marking rule, different kinds of traffic can be marked for different kinds of forwarding. Resources can then be allocated according to the DSCP values and the configured policies. Unused (2 bits) P-2802H(W)(L)-I Series User’s Guide...
Page 241: Automatical Priority Queue Assignment
Use this screen to enable or disable QoS, and select to have the ZyXEL Device automatically assign priority to traffic according to the IEEE 802.1p priority level, IP precedence and/or packet length. See Section 17.1 on page 239 P-2802H(W)(L)-I Series User’s Guide Chapter 17 Quality of Service (QoS) LAYER 3 TOS (IP...
Page 242: Class Setup
For example, you can configure a classifier to select traffic from the same protocol port (such as Telnet) to form a flow. Section 17.1.4 on page P-2802H(W)(L)-I Series User’s Guide...
Page 243: Class Configuration
Click Apply to save your changes back to the ZyXEL Device. Cancel Click Cancel to begin configuring this screen afresh. 17.3.1 Class Configuration Click the Add button or the Edit icon in the Modify field to configure a classifier. P-2802H(W)(L)-I Series User’s Guide Chapter 17 Quality of Service (QoS)
Page 244: Figure 138 Qos Class Configuration
Select a priority level (between 0 and 7) or select Auto to have the ZyXEL Device map the matched traffic to a queue according to the internal QoS mapping table. See Section 17.1.4 on page 241 "0" is the lowest priority level and "7" is the highest. for more information. P-2802H(W)(L)-I Series User’s Guide...
Page 245 1500) in the fields provided. DSCP Select this option and specify a DSCP (DiffServ Code Point) number between 0 and 63 in the field provided. P-2802H(W)(L)-I Series User’s Guide Chapter 17 Quality of Service (QoS) Appendix E on page 373 for some common services...
Page 246: Qos Example
Select this option and specify a VLAN ID number between 2 and 4094. Click Back to go to the previous screen. Click Apply to save your changes back to the ZyXEL Device. Click Cancel to begin configuring this screen afresh. VDSL 50 Mbps Internet P-2802H(W)(L)-I Series User’s Guide...
Page 247: Figure 141 Qos Class Example: Voip -2
Chapter 17 Quality of Service (QoS) Figure 141 QoS Class Example: VoIP -2 Figure 142 QoS Class Example: Boss -1 P-2802H(W)(L)-I Series User’s Guide...
Page 248: Qos Monitor
Chapter 17 Quality of Service (QoS) Figure 143 QoS Class Example: Boss -2 17.4 QoS Monitor To view the ZyXEL Device’s QoS packet statistics, click Advanced > QoS > Monitor. The screen appears as shown. Figure 144 QoS Monitor P-2802H(W)(L)-I Series User’s Guide...
Page 249: Table 103 Qos Monitor
Enter the time interval for refreshing statistics in this field. Set Interval Click this button to apply the new poll interval you entered in the Poll Interval(s) field. Stop Click Stop to stop refreshing statistics. P-2802H(W)(L)-I Series User’s Guide Chapter 17 Quality of Service (QoS)
Page 250 Chapter 17 Quality of Service (QoS) P-2802H(W)(L)-I Series User’s Guide...
Page 251: Dynamic Dns Setup
Section 18.2 on page 251 18.2 Configuring Dynamic DNS To change your ZyXEL Device’s DDNS, click Advanced > Dynamic DNS. The screen appears as shown. Section 18.1 on page 251 P-2802H(W)(L)-I Series User’s Guide Dynamic DNS Setup for configuration instruction. for more information.
Page 252: Figure 145 Dynamic Dns
Check with your Dynamic DNS service provider to have traffic redirected to a URL (that you can specify) while you are off line. IP Address Update Policy Use WAN IP Select this option to update the IP address of the host name(s) to the WAN IP Address address. P-2802H(W)(L)-I Series User’s Guide...
Page 253 Click Apply to save your changes back to the ZyXEL Device. Cancel Click Cancel to begin configuring this screen afresh. P-2802H(W)(L)-I Series User’s Guide address if there is an HTTP proxy server between the ZyXEL Device and the DDNS server.
Page 254 Chapter 18 Dynamic DNS Setup P-2802H(W)(L)-I Series User’s Guide...
Page 255: Remote Management Configuration
WAN, you still need to configure a firewall rule to allow access. You may manage your ZyXEL Device from a remote location via: • Internet (WAN only) • ALL (LAN and WAN) • LAN only, • Neither (Disable). P-2802H(W)(L)-I Series User’s Guide Remote Management Configuration...
Page 256: Remote Management Limitations
There is a default system management idle timeout of five minutes (three hundred seconds). The ZyXEL Device automatically logs you out if the management session remains idle for longer than this timeout period. The management session does not time out when a statistics screen is polling. P-2802H(W)(L)-I Series User’s Guide...
Page 257: Www (Http And Https)
Figure 147 HTTPS Implementation If you disable the HTTP service in the REMOTE MGMT > WWW screen, then the ZyXEL Device blocks all HTTP connection attempts. P-2802H(W)(L)-I Series User’s Guide Chapter 19 Remote Management Configuration Chapter 15 on page 211...
Page 258: Www
To do that the SSL client must have a CA-signed certificate from a CA that has been imported as a trusted CA on the ZyXEL Device (see on importing certificates for details). Appendix K on page 791 P-2802H(W)(L)-I Series User’s Guide...
Page 259: Https Example
You see the following Security Alert screen in Internet Explorer. Select Yes to proceed to the web configurator login screen; if you select No, then web configurator access is blocked. Figure 149 Security Alert Dialog Box (Internet Explorer) P-2802H(W)(L)-I Series User’s Guide Chapter 19 Remote Management Configuration...
Page 260: Netscape Navigator Warning Messages
Figure 151 Security Certificate 2 (Netscape) 19.4.3 Avoiding the Browser Warning Messages The following describes the main reasons that your browser displays warnings about the ZyXEL Device’s HTTPS server certificate and what you can do to avoid seeing the warnings. P-2802H(W)(L)-I Series User’s Guide...
Page 261: Login Screen
19.4.4 Login Screen After you accept the certificate, the ZyXEL Device login screen appears. The lock displayed in the bottom right of the browser status bar denotes a secure connection. P-2802H(W)(L)-I Series User’s Guide Chapter 19 Remote Management Configuration for details.
Page 262: Figure 152 Example: Lock Denoting A Secure Connection
Click Apply in the Replace Certificate screen to create a certificate using your ZyXEL Device’s MAC address that will be specific to this device. Click Certificates to open the My Certificates screen. You will see information similar to that shown in the following figure. P-2802H(W)(L)-I Series User’s Guide...
Page 263: Telnet
Click Advanced > Remote MGMT > Telnet tab to display the screen as shown. Use this screen to specify which interfaces allow Telnet access and from which IP address the access can come. P-2802H(W)(L)-I Series User’s Guide Chapter 19 Remote Management Configuration...
Page 264: Configuring Ftp
To change your ZyXEL Device’s FTP settings, click Advanced > Remote MGMT > FTP. The screen appears as shown. Use this screen to specify which interfaces allow FTP access and from which IP address the access can come. P-2802H(W)(L)-I Series User’s Guide...
Page 265: Snmp
ZyXEL Device through the network. The ZyXEL Device supports SNMP version one (SNMPv1) and version two (SNMPv2). The next figure illustrates an SNMP management operation. SNMP is only available if TCP/IP is configured. P-2802H(W)(L)-I Series User’s Guide Chapter 19 Remote Management Configuration...
Page 266: Supported Mibs
• Trap - Used by the agent to inform the manager of some events. 19.8.1 Supported MIBs The ZyXEL Device supports MIB II, which is defined in RFC-1213 and RFC-1215. The focus of the MIBs is to let administrators collect statistical data and monitor status and performance. P-2802H(W)(L)-I Series User’s Guide...
Page 267: Snmp Traps
To change your ZyXEL Device’s SNMP settings, click Advanced > Remote MGMT > SNMP. The screen appears as shown. Figure 159 Remote Management: SNMP P-2802H(W)(L)-I Series User’s Guide Chapter 19 Remote Management Configuration DESCRIPTION A trap is sent after booting (power on).
Page 268: Configuring Dns
Type the IP address of the station to send your SNMP traps to. Click Apply to save your customized settings and exit this screen. Click Cancel to begin configuring this screen afresh. Chapter 7 on page 89 for background information. P-2802H(W)(L)-I Series User’s Guide...
Page 269: Configuring Icmp
If you want your device to respond to pings and requests for unauthorized services, you may also need to configure the firewall anti probing settings to match. P-2802H(W)(L)-I Series User’s Guide Chapter 19 Remote Management Configuration...
Page 270: Figure 161 Remote Management: Icmp
UDP packets) or just drop the packets without sending a response packet. Apply Click Apply to save your customized settings and exit this screen. Cancel Click Cancel to begin configuring this screen afresh. P-2802H(W)(L)-I Series User’s Guide...
Page 271: Universal Plug-And-Play (Upnp)
The automated nature of NAT traversal applications in establishing their own services and opening firewall ports may present network security issues. Network information and configuration may also be obtained and modified by users in some network environments. P-2802H(W)(L)-I Series User’s Guide for configuration instructions.
Page 272: Upnp And Zyxel
ZyXEL Device, for example by using NAT traversal, UPnP applications automatically reserve a NAT forwarding port in order to communicate with another UPnP enabled device; this eliminates the need to manually configure port forwarding for the UPnP enabled application. P-2802H(W)(L)-I Series User’s Guide...
Page 273: Installing Upnp In Windows Example
Figure 163 Add/Remove Programs: Windows Setup: Communication 3 In the Communications window, select the Universal Plug and Play check box in the Components selection box. P-2802H(W)(L)-I Series User’s Guide Chapter 20 Universal Plug-and-Play (UPnP) DESCRIPTION Click Apply to save the setting to the ZyXEL Device.
Page 274: Figure 164 Add/Remove Programs: Windows Setup: Communication: Components
3 In the Network Connections window, click Advanced in the main menu and select Optional Networking Components …. Figure 165 Network Connections 4 The Windows Optional Networking Components Wizard window displays. Select Networking Service in the Components selection box and click Details. P-2802H(W)(L)-I Series User’s Guide...
Page 275: Figure 166 Windows Optional Networking Components Wizard
5 In the Networking Services window, select the Universal Plug and Play check box. Figure 167 Networking Services 6 Click OK to go back to the Windows Optional Networking Component Wizard window and click Next. P-2802H(W)(L)-I Series User’s Guide Chapter 20 Universal Plug-and-Play (UPnP)
Page 276: Using Upnp In Windows Xp Example
1 Click Start and Control Panel. Double-click Network Connections. An icon displays under Internet Gateway. 2 Right-click the icon and select Properties. Figure 168 Network Connections 3 In the Internet Connection Properties window, click Settings to see the port mappings there were automatically created. P-2802H(W)(L)-I Series User’s Guide...
Page 277: Figure 169 Internet Connection Properties
Chapter 20 Universal Plug-and-Play (UPnP) Figure 169 Internet Connection Properties 4 You may edit or delete the port mappings or click Add to manually add port mappings. P-2802H(W)(L)-I Series User’s Guide...
Page 278: Figure 170 Internet Connection Properties: Advanced Settings
5 When the UPnP-enabled device is disconnected from your computer, all port mappings will be deleted automatically. 6 Select Show icon in notification area when connected option and click OK. An icon displays in the system tray. P-2802H(W)(L)-I Series User’s Guide...
Page 279: Figure 172 System Tray Icon
ZyXEL Device. Follow the steps below to access the web configurator. 1 Click Start and then Control Panel. 2 Double-click Network Connections. 3 Select My Network Places under Other Places. P-2802H(W)(L)-I Series User’s Guide Chapter 20 Universal Plug-and-Play (UPnP)
Page 280: Figure 174 Network Connections
Figure 174 Network Connections 4 An icon with the description for each UPnP-enabled device displays under Local Network. 5 Right-click on the icon for your ZyXEL Device and select Invoke. The web configurator login screen displays. P-2802H(W)(L)-I Series User’s Guide...
Page 281: Figure 175 Network Connections: My Network Places
Figure 175 Network Connections: My Network Places 6 Right-click on the icon for your ZyXEL Device and select Properties. A properties window displays with basic information about the ZyXEL Device. Figure 176 Network Connections: My Network Places: Properties: Example P-2802H(W)(L)-I Series User’s Guide...
Page 282 Chapter 20 Universal Plug-and-Play (UPnP) P-2802H(W)(L)-I Series User’s Guide...
Page 283: Maintenance, Troubleshooting And Specifications
Maintenance, Troubleshooting and Specifications System (285) Logs (289) Tools (303) Diagnostic (315) Troubleshooting (317) Product Specifications (325)
Page 285: System
DHCP from the ISP is used. While you must enter the host name (System Name), the domain name can be assigned from the ZyXEL Device via DHCP. Click Maintenance > System to open the General screen. P-2802H(W)(L)-I Series User’s Guide System...
Page 286: Figure 177 System General Setup
ZyXEL Device. Retype to Type the new password again for confirmation. Confirm Apply Click Apply to save your changes back to the ZyXEL Device. Cancel Click Cancel to begin configuring this screen afresh. P-2802H(W)(L)-I Series User’s Guide...
Page 287: Time Setting
This field displays the last updated time from the time server or the last time configured manually. (hh:mm:ss) When you set Time and Date Setup to Manual, enter the new time in this field and then click Apply. P-2802H(W)(L)-I Series User’s Guide Chapter 21 System...
Page 288 In Germany for instance, you would type 2 because Germany's time zone is one hour ahead of GMT or UTC (GMT+1). Click Apply to save your changes back to the ZyXEL Device. Click Cancel to begin configuring this screen afresh. P-2802H(W)(L)-I Series User’s Guide...
Page 289: Logs
Log entries in red indicate alerts. The log wraps around and deletes the old entries after it fills. Click a column heading to sort the entries. A triangle indicates ascending or descending sort order. P-2802H(W)(L)-I Series User’s Guide Logs Section 22.3 on page...
Page 290: Configuring Log Settings
Alerts are e-mailed as soon as they happen. Logs may be e-mailed as soon as the log is full. Selecting many alert and/or log categories (especially Access Control) may result in many e- mails being sent. Section 22.1 on page 289 for more information. P-2802H(W)(L)-I Series User’s Guide...
Page 291: Figure 180 Log Settings
ZyXEL Device sends. Not all ZyXEL Device models have this field. Send Log to The ZyXEL Device sends logs to the e-mail address specified in this field. If this field is left blank, the ZyXEL Device does not send logs via e-mail. P-2802H(W)(L)-I Series User’s Guide Chapter 22 Logs...
Page 292: Smtp Error Messages
Click Apply to save your customized settings and exit this screen. Cancel Click Cancel to return to the previously saved settings. 22.4 SMTP Error Messages If there are difficulties in sending e-mail the following error message appears. Daily Weekly Hourly When Log is Full None. P-2802H(W)(L)-I Series User’s Guide...
Page 293: Example E-Mail Log
7 00 |From:192.168.1.131 | 10:05:17 |UDP src port:00520 dest port:00520 128|Apr 7 00 |From:192.168.1.1 | 10:05:30 |UDP src port:00520 dest port:00520 End of Firewall Log P-2802H(W)(L)-I Series User’s Guide To:192.168.1.255 |default policy |<1,00> To:192.168.1.255 |default policy |<1,00> To:10.10.10.10 |match |<1,01>...
Page 294: Log Descriptions
Someone has failed to log on to the router’s SSH server. Someone has logged on to the router's web configurator interface using HTTPS protocol. Someone has failed to log on to the router's web configurator interface using HTTPS protocol. P-2802H(W)(L)-I Series User’s Guide...
Page 295: Table 119 System Error Logs
Peer TCP state out of order, sent TCP RST Firewall session time out, sent TCP RST P-2802H(W)(L)-I Series User’s Guide DESCRIPTION This attempt to create a NAT session exceeds the maximum number of NAT session table entries allowed to be created per host.
Page 296: Table 122 Packet Filter Logs
(3 is for dial-up, 6 is for PPPoE, 10 is for PPTP). "channel" or “ch” is the call channel ID.For example,"board 0 line 0 channel 0, call 3, C01 Outgoing Call dev=6 ch=0 "Means the router has dialed to the PPPoE server 3 times. P-2802H(W)(L)-I Series User’s Guide...
Page 297: Table 125 Ppp Logs
[ TCP | UDP | IGMP | ESP | GRE | OSPF ] land ICMP (type:%d, code:%d) P-2802H(W)(L)-I Series User’s Guide DESCRIPTION The PPPoE, PPTP or dial-up call is connected. The PPPoE, PPTP or dial-up call was disconnected. DESCRIPTION The PPP connection’s Link Control Protocol stage has started.
Page 298: Table 129 802.1X Logs
The local user database only supports the EAP-MD5 method. A user tried to use another authentication method and was not authenticated. The router logged out a user whose session expired. The router logged out a user who ended the session. P-2802H(W)(L)-I Series User’s Guide...
Page 299: Table 130 Acl Setting Notes
A packet that needed fragmentation was dropped because it was set to Don't Fragment (DF) Source route failed Source Quench P-2802H(W)(L)-I Series User’s Guide DESCRIPTION The router logged out a user from which there was no authentication response. The router logged out a user whose idle timeout period expired.
Page 300: Table 132 Syslog Logs
DESCRIPTION The listed SIP account was successfully registered with a SIP register server. An attempt to register the listed SIP account with a SIP register server was not successful. P-2802H(W)(L)-I Series User’s Guide...
Page 301: Table 134 Rtp Logs
Table 137 PSTN Logs LOG MESSAGE PSTN Call Start PSTN Call End PSTN Call Established P-2802H(W)(L)-I Series User’s Guide DESCRIPTION The listed SIP account’s registration was deleted from the SIP register server. An attempt to delete the listed SIP account’s registration from the SIP register server failed.
Page 302: Table 138 Rfc-2408 Isakmp Payload Types
RFC 2408 for detailed information on each type. Table 138 RFC-2408 ISAKMP Payload Types LOG DISPLAY PROP TRANS CER_REQ HASH NONCE NOTFY PAYLOAD TYPE Security Association Proposal Transform Key Exchange Identification Certificate Certificate Request Hash Signature Nonce Notification Delete Vendor ID P-2802H(W)(L)-I Series User’s Guide...
Page 303: Tools
DHCP Setup, TCP/IP Setup, etc. It arrives from ZyXEL with a “rom” filename extension. Once you have customized the ZyXEL Device's settings, they can be saved back to your computer under a filename of your choosing. P-2802H(W)(L)-I Series User’s Guide Tools...
Page 304: File Maintenance Over Wan
ROM file system, including your ZyXEL Device configurations, system-related data (including the default password), the error log and the trace log. This is the generic name for the ZyNOS firmware on the ZyXEL Device. P-2802H(W)(L)-I Series User’s Guide DESCRIPTION *.rom *.bin...
Page 305: Firmware Upgrade Screen
Click Upload to begin the upload process. This process may take up to two minutes. After you see the Firmware Upload in Progress screen, wait two minutes before logging into the ZyXEL Device again. P-2802H(W)(L)-I Series User’s Guide for upgrading firmware using FTP/TFTP commands. Chapter 23 Tools...
Page 306: Backup And Restore
Section 23.7 on page 309 using FTP/TFTP commands. Click Maintenance > Tools > Configuration. Information related to factory defaults, backup configuration, and restoring configuration appears in this screen, as shown next. Section 23.8 on page 312 for transferring configuration files P-2802H(W)(L)-I Series User’s Guide...
Page 307: Backup Configuration
Do not turn off the ZyXEL Device while configuration file upload is in progress. After you see a “restore configuration successful” screen, you must then wait one minute before logging into the ZyXEL Device again. P-2802H(W)(L)-I Series User’s Guide Chapter 23 Tools...
Page 308: Reset To Factory Defaults
Click the Reset button to clear all user-entered configuration information and return the ZyXEL Device to its factory defaults. The following warning screen appears. Figure 190 Reset Warning Message for details on how to set up your computer’s IP address. P-2802H(W)(L)-I Series User’s Guide...
Page 309: Restart
6 Use “ ” to transfer files from the ZyXEL Device to the computer, for example, “ rom-0 config.rom P-2802H(W)(L)-I Series User’s Guide Section 1.6 on page 41 for more information on the RESET button. ” transfers the configuration file on the ZyXEL Device to your...
Page 310: Ftp Command Configuration Backup Example
Normal. The server requires a unique User ID and Password to login. Transfer files in either ASCII (plain text format) or in binary mode. Specify the default remote directory (path). Specify the default local directory (path). P-2802H(W)(L)-I Series User’s Guide...
Page 311: Tftp Command Configuration Backup Example
Stop transfer of the file. Refer to Section 23.3 on page 304 over WAN. P-2802H(W)(L)-I Series User’s Guide ” to disable the management idle timeout, so the TFTP sys stdio 0 sys stdio 5” ” to transfer from the ZyXEL Device to the computer and ”...
Page 312: Using Ftp Or Tftp To Restore Configuration
FTP is the preferred method for uploading the firmware and configuration. To use this feature, your computer must have an FTP client. The following sections give examples of how to upload the firmware and the configuration files. to read about configurations that disallow TFTP and FTP P-2802H(W)(L)-I Series User’s Guide...
Page 313: Ftp File Upload Command From The Dos Prompt Example
1 Use telnet from your computer to connect to the device and log in. Because TFTP does not have any security checks, the device records the IP address of the telnet client and accepts TFTP requests only from this address. P-2802H(W)(L)-I Series User’s Guide to read about configurations that disallow TFTP and FTP Chapter 23 Tools...
Page 314: Tftp Upload Command Example
– name of the firmware on the computer) to the file destination on the remote host (ras - name of the firmware on the device). Commands that you may see in GUI-based TFTP clients are listed earlier in this chapter. P-2802H(W)(L)-I Series User’s Guide...
Page 315: Diagnostic
Type the IP address of a computer that you want to ping in order to test a connection. Address Ping Click this button to ping the IP address that you entered. 24.2 DSL Line Diagnostic Click Maintenance > Diagnostic > DSL Line to open the screen shown next. P-2802H(W)(L)-I Series User’s Guide Diagnostic...
Page 316: Figure 197 Diagnostic: Dsl Line
Loading VDSL modem F/W... Reset VDSL Line Successfully!" Capture All Logs Click this button to display information about your ZyXEL Device’s DSL connection status, DHCP settings, firmware version, WAN and gateway IP address and LAN IP address. P-2802H(W)(L)-I Series User’s Guide...
Page 317: Troubleshooting
2 Check the hardware connections. See the Quick Start Guide. 3 Inspect your cables for damage. Contact the vendor to replace any damaged cables. 4 Turn the ZyXEL Device off and on. 5 If the problem continues, contact the vendor. P-2802H(W)(L)-I Series User’s Guide Troubleshooting Section 1.5 on page...
Page 318: Zyxel Device Access And Login
(Section 7.4.1 on page 95), make sure your computer is in the Appendix A on page 337. Your ZyXEL Device is a DHCP Appendix A on page P-2802H(W)(L)-I Series User’s Guide Section 1.6 Section 1.6 91), use the new IP address. 337.
Page 319 See the troubleshooting suggestions for configurator. Ignore the suggestions about your browser. P-2802H(W)(L)-I Series User’s Guide Section 1.6 on page I cannot see or access the Login screen in the web I cannot see or access the Login screen in the web...
Page 320: Internet Access
• Check the settings for bandwidth management. If it is disabled, you might consider activating it. If it is enabled, you might consider changing the allocations. Section 1.5 on page Section 1.5 on page P-2802H(W)(L)-I Series User’s Guide Section 1.5...
Page 321: Phone Calls And Voip
For example, if you set Phone 1 to use SIP account 1 and set Phone 2 to use SIP account 2, then you can use Phone 1 to call to SIP account 2's SIP number or Phone 2 to call to SIP account 1's SIP number. P-2802H(W)(L)-I Series User’s Guide Chapter 25 Troubleshooting...
Page 322: Problems With Multiple Sip Accounts
SIP account 1. Similarly, every time you place a call through phone port 2, you are using your SIP account 2. To apply these configuration changes you need to configure the Analog Phone screen. See Figure 199 Outgoing Calls: Individual Configuration Section 10.8 on page 142. P-2802H(W)(L)-I Series User’s Guide...
Page 323: Incoming Calls
SIP account 2, the phone connected to phone port 2 rings. To apply these configuration changes you need to configure the Analog Phone screen. See on page 142. Figure 201 Incoming Calls: Individual Configuration P-2802H(W)(L)-I Series User’s Guide Chapter 25 Troubleshooting Section 10.8...
Page 324 Chapter 25 Troubleshooting P-2802H(W)(L)-I Series User’s Guide...
Page 325: Product Specifications
DHCP Server IP Pool Static DHCP Addresses Content Filtering Static Routes Device Management P-2802H(W)(L)-I Series User’s Guide (168 W) x (37 D) x (248 H) mm 390g 18VAC 1A Four auto-negotiating, auto MDI/MDI-X 10/100 Mbps RJ-45 Ethernet ports 2 RJ-11 FXS POTS ports.
Page 326 The Any IP feature allows a computer to access the Internet and the ZyXEL Device without changing the network settings (such as IP address and subnet mask) of the computer, when the IP addresses of the computer and the ZyXEL Device are not in the same subnet. P-2802H(W)(L)-I Series User’s Guide...
Page 327 IP Alias Packet Filters VDSL2 Standards P-2802H(W)(L)-I Series User’s Guide Your device has a stateful inspection firewall with DoS (Denial of Service) protection. By default, when the firewall is activated, all incoming traffic from the WAN to the LAN is blocked unless it is initiated from the LAN. The firewall supports TCP/UDP inspection, DoS detection and prevention, real time alerts, reports and logs.
Page 328 SIP ALG passthrough 20 IPSec tunnels IKE and Manual Key Management AH and ESP Protocol DES, 3DES and AES Encryption SHA-1 and MD5 Authentication Tunnel and Transport Mode Encapsulation IPSec NAT Traversal NETBIOS pass-through for IPSec P-2802H(W)(L)-I Series User’s Guide...
Page 329: Table 148 Voice Features
If you enter the code to not upgrade, you can make a call as normal. You will hear the recording again each time you pick up the phone, until you upgrade. P-2802H(W)(L)-I Series User’s Guide Chapter 26 Product Specifications...
Page 330 DTMF: In-band and Out-band traffic (RFC 2833),(PCM), (SIP INFO) Point-to-point call establishment between two IADs Quick dialing through predefined phone book, which maps the phone dialing number and destination URL. Flexible Dial Plan (RFC3525 section 7.1.14) P-2802H(W)(L)-I Series User’s Guide...
Page 331: Table 149 Wireless Features
Table 150 IEEE 802.11g DATA RATE (MBPS) 5.5 / 11 6/9/12/18/24/36/48/54 P-2802H(W)(L)-I Series User’s Guide The ZyXEL Device is equipped with an attached antenna to provide a clear radio signal between the wireless stations and the access points. Your device can check the MAC addresses of wireless stations against a list of allowed or denied MAC addresses.
Page 332: Table 151 Standards Supported
Standard for Local and Metropolitan Area Networks: Media Access Control (MAC) Bridges Port Based Network Access Control. IEEE 802.11 e Wireless LAN for Quality of Service ITU standard that defines VDSL. ITU standard that defines VDSL2. TR-069 DSL Forum Standard for CPE Wan Management. P-2802H(W)(L)-I Series User’s Guide...
Page 333: Table 152 P-2802Hwl-I Series Power Adaptor Specifications
Safety Standards UNITED KINGDOM PLUG STANDARDS AC Power Adapter Model Input Power Output Power Power Consumption Safety Standards P-2802H(W)(L)-I Series User’s Guide Chapter 26 Product Specifications LEI (LEADER ELECTRONICS INC.) MU18-2180100-A1 AC 100~240Volts/50/60Hz/0.6A DC 18Volts/1A 12 Watt max UL,CUL(UL 60950-1) MU18-2180100-C5 AC 100~240Volts/50/60Hz/0.6A...
Page 334 Chapter 26 Product Specifications P-2802H(W)(L)-I Series User’s Guide...
Page 335: Appendices And Index
Appendices and Index The appendices provide general information. Some details may not apply to your ZyXEL Device. Setting up Your Computer’s IP Address (337) Pop-up Windows, JavaScripts and Java Permissions (349) IP Addresses and Subnetting (355) Wireless LANs (363) Services (373) Command Interpreter (1) Internal SPTGEN (377) Legal Information (401)
Page 337: Appendix A Setting Up Your Computer's Ip Address
IP addresses that place them in the same subnet as the ZyXEL Device's LAN port. Windows 95/98/Me Click Start, Settings, Control Panel and double-click the Network icon to open the Network window P-2802H(W)(L)-I Series User’s Guide Address...
Page 338: Figure 202 Windows 95/98/Me: Network: Configuration
2 Select Client and then click Add. 3 Select Microsoft from the list of manufacturers. 4 Select Client for Microsoft Networks from the list of network clients and then click 5 Restart your computer so the changes you made take effect. P-2802H(W)(L)-I Series User’s Guide...
Page 339: Figure 203 Windows 95/98/Me: Tcp/Ip Properties: Ip Address
• If you do not know your DNS information, select Disable DNS. • If you know your DNS information, select Enable DNS and type the information in the fields below (you may not need to fill them all in). P-2802H(W)(L)-I Series User’s Guide Appendix A Setting up Your Computer’s IP Address...
Page 340: Figure 204 Windows 95/98/Me: Tcp/Ip Properties: Dns Configuration
3 Select your network adapter. You should see your computer's IP address, subnet mask and default gateway. Windows 2000/NT/XP 1 For Windows XP, click start, Control Panel. In Windows 2000/NT, click Start, Settings, Control Panel. P-2802H(W)(L)-I Series User’s Guide...
Page 341: Figure 205 Windows Xp: Start Menu
2 For Windows XP, click Network Connections. For Windows 2000/NT, click Network and Dial-up Connections. Figure 206 Windows XP: Control Panel 3 Right-click Local Area Connection and then click Properties. P-2802H(W)(L)-I Series User’s Guide Appendix A Setting up Your Computer’s IP Address...
Page 342: Figure 207 Windows Xp: Control Panel: Network Connections: Properties
• If you have a dynamic IP address click Obtain an IP address automatically. • If you have a static IP address click Use the following IP Address and fill in the IP address, Subnet mask, and Default gateway fields. Click Advanced. P-2802H(W)(L)-I Series User’s Guide...
Page 343: Figure 209 Windows Xp: Advanced Tcp/Ip Settings
• If you know your DNS server IP address(es), click Use the following DNS server addresses, and type them in the Preferred DNS server and Alternate DNS server fields. P-2802H(W)(L)-I Series User’s Guide Appendix A Setting up Your Computer’s IP Address...
Page 344: Figure 210 Windows Xp: Internet Protocol (Tcp/Ip) Properties
Network Connections, right-click a network connection, click Status and then click the Support tab. Macintosh OS 8/9 1 Click the Apple menu, Control Panel and double-click TCP/IP to open the TCP/IP Control Panel. " and then press [ENTER]. You can ipconfig P-2802H(W)(L)-I Series User’s Guide...
Page 345: Figure 211 Macintosh Os 8/9: Apple Menu
2 Select Ethernet built-in from the Connect via list. Figure 212 Macintosh OS 8/9: TCP/IP 3 For dynamically assigned settings, select Using DHCP Server from the Configure: list. P-2802H(W)(L)-I Series User’s Guide Appendix A Setting up Your Computer’s IP Address...
Page 346: Figure 213 Macintosh Os X: Apple Menu
2 Click Network in the icon bar. • Select Automatic from the Location list. • Select Built-in Ethernet from the Show list. • Click the TCP/IP tab. 3 For dynamically assigned settings, select Using DHCP from the Configure list. P-2802H(W)(L)-I Series User’s Guide...
Page 347: Figure 214 Macintosh Os X: Network
5 Click Apply Now and close the window. 6 Turn on your ZyXEL Device and restart your computer (if prompted). Verifying Settings Check your TCP/IP properties in the Network window. P-2802H(W)(L)-I Series User’s Guide Appendix A Setting up Your Computer’s IP Address...
Page 348 Appendix A Setting up Your Computer’s IP Address P-2802H(W)(L)-I Series User’s Guide...
Page 349: Appendix B Pop-Up Windows, Javascripts And Java Permissions
1 In Internet Explorer, select Tools, Pop-up Blocker and then select Turn Off Pop-up Blocker. Figure 215 Pop-up Blocker You can also check if pop-up blocking is disabled in the Pop-up Blocker section in the Privacy tab. 1 In Internet Explorer, select Tools, Internet Options, Privacy. P-2802H(W)(L)-I Series User’s Guide...
Page 350: Figure 216 Internet Options: Privacy
Alternatively, if you only want to allow pop-up windows from your device, see the following steps. 1 In Internet Explorer, select Tools, Internet Options and then the Privacy tab. 2 Select Settings…to open the Pop-up Blocker Settings screen. P-2802H(W)(L)-I Series User’s Guide...
Page 351: Figure 217 Internet Options: Privacy
3 Type the IP address of your device (the web page that you do not want to have blocked) with the prefix “http://”. For example, http://192.168.167.1. 4 Click Add to move the IP address to the list of Allowed sites. Figure 218 Pop-up Blocker Settings P-2802H(W)(L)-I Series User’s Guide Appendix B Pop-up Windows, JavaScripts and Java Permissions...
Page 352: Figure 219 Internet Options: Security
3 Scroll down to Scripting. 4 Under Active scripting make sure that Enable is selected (the default). 5 Under Scripting of Java applets make sure that Enable is selected (the default). 6 Click OK to close the window. P-2802H(W)(L)-I Series User’s Guide...
Page 353: Figure 220 Security Settings - Java Scripting
3 Scroll down to Microsoft VM. 4 Under Java permissions make sure that a safety level is selected. 5 Click OK to close the window. Figure 221 Security Settings - Java P-2802H(W)(L)-I Series User’s Guide Appendix B Pop-up Windows, JavaScripts and Java Permissions...
Page 354: Figure 222 Java (Sun)
1 From Internet Explorer, click Tools, Internet Options and then the Advanced tab. 2 Make sure that Use Java 2 for <applet> under Java (Sun) is selected. 3 Click OK to close the window. Figure 222 Java (Sun) P-2802H(W)(L)-I Series User’s Guide...
Page 355: Appendix C Ip Addresses And Subnetting
Therefore, each octet has a possible range of 00000000 to 11111111 in binary, or 0 to 255 in decimal. The following figure shows an example IP address in which the first three octets (192.168.1) are the network number, and the fourth octet (16) is the host ID. P-2802H(W)(L)-I Series User’s Guide...
Page 356: Figure 223 Network Number And Host Id
For example, an “8-bit mask” means that the first 8 bits of the mask are ones and the remaining 24 bits are zeroes. 1ST OCTET: OCTET: OCTET: (192) (168) 11000000 10101000 00000001 11111111 11111111 11111111 11000000 10101000 00000001 P-2802H(W)(L)-I Series User’s Guide 4TH OCTET 00000010 00000000 00000010...
Page 357: Table 154 Subnet Masks
The following table shows some possible subnet masks using both notations. Table 156 Alternative Subnet Mask Notation ALTERNATIVE SUBNET MASK NOTATION 255.255.255.0 255.255.255.128 P-2802H(W)(L)-I Series User’s Guide Appendix C IP Addresses and Subnetting 4TH OCTET OCTET OCTET 00000000 00000000 00000000...
Page 358: Figure 224 Subnetting Example: Before Subnetting
The following figure shows the company network after subnetting. There are now two sub- networks, A and B. ALTERNATIVE LAST OCTET NOTATION (BINARY) 1100 0000 1110 0000 1111 0000 1111 1000 1111 1100 LAST OCTET (DECIMAL) P-2802H(W)(L)-I Series User’s Guide...
Page 359: Figure 225 Subnetting Example: After Subnetting
IP Address (Binary) Subnet Mask (Binary) Subnet Address: 192.168.1.0 Broadcast Address: 192.168.1.63 P-2802H(W)(L)-I Series User’s Guide Appendix C IP Addresses and Subnetting - 2 or 62 hosts for each subnet (a host ID of all NETWORK NUMBER 192.168.1. 11000000.10101000.00000001. 11111111.11111111.11111111.
Page 360: Table 158 Subnet 2
Highest Host ID: 192.168.1.190 NETWORK NUMBER 192.168.1. 11000000.10101000.00000001. 11111111.11111111.11111111. Lowest Host ID: 192.168.1.193 Highest Host ID: 192.168.1.254 LAST FIRST ADDRESS ADDRESS P-2802H(W)(L)-I Series User’s Guide LAST OCTET BIT VALUE 01000000 11000000 LAST OCTET BIT VALUE 10000000 11000000 LAST OCTET BIT...
Page 361: Table 162 24-Bit Network Number Subnet Planning
The following table is a summary for subnet planning on a network with a 16-bit network number. Table 163 16-bit Network Number Subnet Planning NO. “BORROWED” HOST BITS P-2802H(W)(L)-I Series User’s Guide Appendix C IP Addresses and Subnetting LAST FIRST ADDRESS ADDRESS SUBNET MASK NO.
Page 362: Configuring Ip Addresses
For more information on address assignment, please refer to RFC 1597, Address Allocation for Private Internets and RFC 1466, Guidelines for Management of IP Address Space. SUBNET MASK NO. SUBNETS 255.255.255.252 (/30) 16384 255.255.255.254 (/31) 32768 P-2802H(W)(L)-I Series User’s Guide NO. HOSTS PER SUBNET...
Page 363: Appendix D Wireless Lans
A and B can access the wired network and communicate with each other. When Intra-BSS is disabled, wireless station A and B can still access the wired network but cannot communicate with each other. P-2802H(W)(L)-I Series User’s Guide Wireless LANs...
Page 364: Figure 227 Basic Service Set
An ESSID (ESS IDentification) uniquely identifies each ESS. All access points and their associated wireless stations within the same ESS must have the same ESSID in order to communicate. P-2802H(W)(L)-I Series User’s Guide...
Page 365: Figure 228 Infrastructure Wlan
(AP) or wireless gateway, but out-of-range of each other, so they cannot "hear" each other, that is they do not know if the channel is currently being used. Therefore, they are considered hidden from each other. P-2802H(W)(L)-I Series User’s Guide Appendix D Wireless LANs...
Page 366: Figure 229 Rts/Cts
AP will fragment the packet into smaller data frames. A large Fragmentation Threshold is recommended for networks not prone to interference while you should set a smaller threshold for busy networks or networks that are prone to interference. P-2802H(W)(L)-I Series User’s Guide...
Page 367: Table 164 Ieee 802.11G
It is supported by Windows XP and a number of network devices. Some advantages of IEEE 802.1x are: P-2802H(W)(L)-I Series User’s Guide MODULATION DBPSK (Differential Binary Phase Shift Keyed)
Page 368: Types Of Radius Messages
The following types of RADIUS messages are exchanged between the access point and the RADIUS server for user accounting: • Accounting-Request Sent by the access point requesting accounting. • Accounting-Response Sent by the RADIUS server to indicate that it has started or stopped accounting. P-2802H(W)(L)-I Series User’s Guide...
Page 369: Types Of Authentication
For client authentication, EAP-TTLS supports EAP methods and legacy authentication methods such as PAP, CHAP, MS-CHAP and MS-CHAP v2. P-2802H(W)(L)-I Series User’s Guide Appendix D Wireless LANs...
Page 370: Table 165 Comparison Of Eap Authentication Types
User Authentication WPA applies IEEE 802.1x and Extensible Authentication Protocol (EAP) to authenticate wireless stations using an external RADIUS database. EAP-MD5 EAP-TLS EAP-TTLS Optional None Strong Strong Easy Hard Moderate P-2802H(W)(L)-I Series User’s Guide PEAP LEAP Optional Strong Moderate Moderate Moderate...
Page 371: Table 166 Wireless Security Relational Matrix
Table 166 Wireless Security Relational Matrix AUTHENTICATION METHOD/ KEY MANAGEMENT PROTOCOL Open Open P-2802H(W)(L)-I Series User’s Guide ENCRYPTIO ENTER ENABLE IEEE 802.1X N METHOD MANUAL KEY None Enable with Dynamic WEP Key...
Page 372 Table 166 Wireless Security Relational Matrix (continued) AUTHENTICATION METHOD/ KEY MANAGEMENT PROTOCOL Shared WPA-PSK WPA-PSK ENCRYPTIO ENTER ENABLE IEEE 802.1X N METHOD MANUAL KEY Enable with Dynamic WEP Key Enable without Dynamic WEP Disable TKIP TKIP P-2802H(W)(L)-I Series User’s Guide...
Page 373: Appendix E Services
AUTH BOOTP_CLIENT BOOTP_SERVER CU-SEEME TCP/UDP TCP/UDP TCP/UDP User-Defined (IPSEC_TUNNEL) FINGER P-2802H(W)(L)-I Series User’s Guide Services PORT(S) DESCRIPTION The IPSEC AH (Authentication Header) tunneling protocol uses this service. 5190 AOL’s Internet Messenger service. Authentication protocol used by some servers. Border Gateway Protocol.
Page 374 (TCP/IP or other). This is a more secure version of POP3 that runs over SSL. 1723 Point-to-Point Tunneling Protocol enables secure transfer of data over public networks. This is the control channel. P-2802H(W)(L)-I Series User’s Guide...
Page 375 SNMP-TRAPS TCP/UDP SQL-NET SSDP TCP/UDP STRM WORKS SYSLOG TACACS TELNET P-2802H(W)(L)-I Series User’s Guide Appendix E Services PORT(S) DESCRIPTION PPTP (Point-to-Point Tunneling Protocol) enables secure transfer of data over public networks. This is the data channel. Remote Command Service. 7070 A streaming audio service that enables real time sound over the web.
Page 376 Trivial File Transfer Protocol is an Internet file transfer protocol similar to FTP, but uses the UDP (User Datagram Protocol) rather than TCP (Transmission Control Protocol). 7000 A videoconferencing solution. The UDP port number is specified in the application. user- defined P-2802H(W)(L)-I Series User’s Guide...
Page 377: Appendix F Internal Sptgen
DO NOT alter or delete any field except parameters in the Input column. This appendix introduces Internal SPTGEN. All menus shown in this appendix are example menus meant to show SPTGEN usage. Actual menus for your product may differ. P-2802H(W)(L)-I Series User’s Guide Internal SPTGEN parameter values allowed <0(No)| 1(Yes)>...
Page 378: Figure 231 Invalid Parameter Entered: Command Line Example
” sets the transfer mode to binary. ” transfers files from the ZyXEL Device to your ” is the configuration filename on the ZyXEL Device. rom-t " file using a text editor (do not use a word processor). You must leave Figure P-2802H(W)(L)-I Series User’s Guide...
Page 379: Figure 233 Internal Sptgen Ftp Download Example
ABBREVIATION MEANING Field Identification Number Field Name P-2802H(W)(L)-I Series User’s Guide ” file when you save it to your computer but it must rom-t ” sets the transfer mode to binary. ” file from your computer to the ZyXEL Device using the “...
Page 380: Table 169 Menu 1 General Setup
<0(No) | 1(Yes)> <Str> = Your Device <Str> <Str> <0(No) | 1(Yes)> <0(No) | 1(Yes)> <0(None) | 1(Server) | 2(Relay)> P-2802H(W)(L)-I Series User’s Guide INPUT = 256 = 256 = 256 = 256 = 256 = 256 = 256 = 256...
Page 381 Set 3 30201009 = IP Alias #1 Incoming protocol filters Set 4 30201010 = IP Alias #1 Outgoing protocol filters Set 1 P-2802H(W)(L)-I Series User’s Guide Appendix F Internal SPTGEN 192.168.1.33 = 32 = 0.0.0.0 = 0.0.0.0 = 0.0.0.0 172.21.2.200 = 16 <0(None) |...
Page 382 = 256 = 256 = 256 = 256 = 256 = 256 INPUT Wireless <0(No) | 1(Yes)> <1|2|3|4|5|6| 7|8|9|10|11|1 2|13> <0 ~ 2432> = 2432 <256 ~ 2432> = 2432 <0(DISABLE) | 1(64-bit WEP) | 2(128-bit WEP)> P-2802H(W)(L)-I Series User’s Guide...
Page 383: Table 171 Menu 4 Internet Access Setup
40000000 = Configured 40000001 = 40000002 = Active 40000003 = ISP's Name 40000004 = Encapsulation 40000005 = Multiplexing P-2802H(W)(L)-I Series User’s Guide Appendix F Internal SPTGEN <1|2|3|4> = 0 <0(Disable) | 1(Enable)> INPUT <0(No) | 1(Yes)> <0(Allow) | 1(Deny)> 00:00:00:00:...
Page 384 = 256 = 256 = 256 = 256 = 256 = 256 <0(No) | 1(Yes)> <0(No) | 1(Yes)> <0(CBR) | (1 (UBR)> <0(None) | 1(Both) | 2(In Only) | 3(Out Only)> <0(Rip-1) | 1(Rip-2B) |2(Rip-2M)> <0(No) |1(Yes)> P-2802H(W)(L)-I Series User’s Guide...
Page 385 IP Static Route set #4, Active 120104003 = IP Static Route set #4, Destination IP address 120104004 = IP Static Route set #4, Destination IP subnetmask P-2802H(W)(L)-I Series User’s Guide Appendix F Internal SPTGEN INPUT <Str> <0(No) |1(Yes)> = 0.0.0.0 = 0.0.0.0 <0(No) |1(Yes)>...
Page 386: Table 172 Menu 12
INPUT <Str> <0(No) |1(Yes)> = 0.0.0.0 = 0.0.0.0 <0(No) |1(Yes)> INPUT <Str> <0(No) |1(Yes)> = 0.0.0.0 = 0.0.0.0 <0(No) |1(Yes)> INPUT <Str> <0(No) |1(Yes)> = 0.0.0.0 = 0.0.0.0 <0(No) |1(Yes)> INPUT <Str> <0(No) |1(Yes)> = 0.0.0.0 P-2802H(W)(L)-I Series User’s Guide...
Page 387 IP Static Route set #11, Private */ Menu 12.1.12 IP Static Route Setup 120112001 = IP Static Route set #12, Name 120112002 = IP Static Route set #12, Active P-2802H(W)(L)-I Series User’s Guide Appendix F Internal SPTGEN = 0.0.0.0 <0(No) |1(Yes)> INPUT <Str>...
Page 388 = 0.0.0.0 = 0.0.0.0 <0(No) |1(Yes)> INPUT <Str> <0(No) |1(Yes)> = 0.0.0.0 = 0.0.0.0 <0(No) |1(Yes)> INPUT <Str> <0(No) |1(Yes)> = 0.0.0.0 = 0.0.0.0 <0(No) |1(Yes)> INPUT <Str> <0(No) |1(Yes)> = 0.0.0.0 = 0.0.0.0 <0(No) |1(Yes)> INPUT P-2802H(W)(L)-I Series User’s Guide...
Page 389: Table 173 Menu 15 Sua Server Setup
SUA Server #5 Port Start 150000020 = SUA Server #5 Port End 150000021 = SUA Server #5 Local IP address 150000022 = SUA Server #6 Active P-2802H(W)(L)-I Series User’s Guide Appendix F Internal SPTGEN <Str> <0(No) |1(Yes)> = 0.0.0.0 = 0.0.0.0 <0(No) |1(Yes)>...
Page 390 = 0.0.0.0 <0(No) | 1(Yes)> <0(All)|6(TCP)|17(U DP)> = 0.0.0.0 <0(No) | 1(Yes)> <0(All)|6(TCP)|17(U DP)> = 0.0.0.0 <0(No) | 1(Yes)> <0(All)|6(TCP)|17(U DP)> = 0.0.0.0 <0(No) | 1(Yes)> <0(All)|6(TCP)|17(U DP)> = 0.0.0.0 <0(No) | 1(Yes)> <0(All)|6(TCP)|17(U DP)> = 0.0.0.0 P-2802H(W)(L)-I Series User’s Guide...
Page 391: Table 174 Menu 21.1 Filter Set #1
210102006 = IP Filter Set 1,Rule 2 Dest Port 210102007 = IP Filter Set 1,Rule 2 Dest Port Comp 210102008 = IP Filter Set 1,Rule 2 Src IP address P-2802H(W)(L)-I Series User’s Guide Appendix F Internal SPTGEN INPUT <Str> INPUT <2(TCP/IP)>...
Page 392 <1(check next)|2(forward)| 3(drop)> <1(check next)|2(forward)| 3(drop)> INPUT <2(TCP/IP)> <0(No)|1(Yes)> = 0.0.0.0 = 139 <0(none)|1(equal) |2(not equal)|3(less)|4( greater)> = 0.0.0.0 <0(none)|1(equal) |2(not equal)|3(less)|4( greater)> <1(check next)|2(forward)| 3(drop) <1(check next)|2(forward)| 3(drop) INPUT <2(TCP/IP)> <0(No)|1(Yes)> = 17 = 0.0.0.0 P-2802H(W)(L)-I Series User’s Guide...
Page 393 IP Filter Set 1,Rule 5 Src Port Comp 210105013 = IP Filter Set 1,Rule 5 Act Match 210105014 = IP Filter Set 1,Rule 5 Act Not Match P-2802H(W)(L)-I Series User’s Guide Appendix F Internal SPTGEN = 137 <0(none)|1(equal) |2(not equal)|3(less)|4( greater)>...
Page 394: Table 175 Menu 21.1 Filer Set #2
INPUT <2(TCP/IP)> <0(No)|1(Yes)> = 17 = 0.0.0.0 = 139 <0(none)|1(equal) |2(not equal)|3(less)|4( greater)> = 0.0.0.0 <0(none)|1(equal) |2(not equal)|3(less)|4( greater)> <1(check next)|2(forward)| 3(drop)> <1(check next)|2(forward)| 3(drop)> INPUT <Str> NetBIOS_WAN INPUT <0(none)|2(TCP/ IP)> <0(No)|1(Yes)> = 0.0.0.0 = 137 P-2802H(W)(L)-I Series User’s Guide...
Page 395 IP Filter Set 2,Rule 2 Src Port 210202011 = IP Filter Set 2, Rule 2 Src Port Comp 210202013 = IP Filter Set 2, Rule 2 Act Match P-2802H(W)(L)-I Series User’s Guide Appendix F Internal SPTGEN <0(none)|1(equal)| 2(not equal)|3(less)|4(g reater)>...
Page 396 <0(none)|2(TCP/ IP)> <0(No)|1(Yes)> = 0.0.0.0 = 139 <0(none)|1(equal)| 2(not equal)|3(less)|4(g reater)> = 0.0.0.0 <0(none)|1(equal)| 2(not equal)|3(less)|4(g reater)> <1(check next)|2(forward)|3 (drop)> <1(check next)|2(forward)|3 (drop)> INPUT <0(none)|2(TCP/ IP)> <0(No)|1(Ye s)> = 1 = 17 = 0.0.0.0 = 137 P-2802H(W)(L)-I Series User’s Guide...
Page 397 IP Filter Set 2, Rule 5 Src Port 210205011 = IP Filter Set 2, Rule 5 Src Port Comp 210205013 = IP Filter Set 2, Rule 5 Act Match P-2802H(W)(L)-I Series User’s Guide Appendix F Internal SPTGEN <0(none)|1(equal)| 2(not equal)|3(less)|4(g reater)>...
Page 398: Table 176 Menu 23 System Menus
IP)> <0(No)|1(Yes)> = 17 = 0.0.0.0 = 139 <0(none)|1(equal)| 2(not equal)|3(less)|4(g reater)> = 0.0.0.0 <0(none)|1(equal)| 2(not equal)|3(less)|4(g reater)> <1(check next)|2(forward)|3 (drop)> <1(check next)|2(forward)|3 (drop)> <0(all)|1(none)|2( Lan)|3(Wan)> = 0.0.0.0 = 80 <0(all)|1(none)|2( Lan) |3(Wan)> = 0.0.0.0 INPUT P-2802H(W)(L)-I Series User’s Guide...
Page 399 230400008 = WPA Mixed Mode 230400009 = Data Privacy for Broadcast/ Multicast packets 230400010 = WPA Broadcast/Multicast Key Update Timer P-2802H(W)(L)-I Series User’s Guide Appendix F Internal SPTGEN = 1234 INPUT <0(No) | 1(Yes)> <0(No) | 1(Yes)> 192.168.1.32 = 1822...
Page 400: Table 177 Menu 24.11 Remote Management Control
/ci command (for annex B): wan adsl opencmd 990000001 = ADSL OPMD INPUT = 23 <0(all)|1(none)|2( Lan)|3(Wan)> = 0.0.0.0 = 21 <0(all)|1(none)|2( Lan)|3(Wan)> = 0.0.0.0 = 80 <0(all)|1(none)|2( Lan) |3(Wan)> = 0.0.0.0 INPUT INPUT <0(glite)|1(t1.413 )|2(gdmt)|3(multim ode)> INPUT <0(etsi)|1(normal) |2(gdmt)|3(multimo de)> P-2802H(W)(L)-I Series User’s Guide...
Page 402 This device has been designed for the WLAN 2.4 GHz network throughout the EC region and Switzerland, with restrictions in France. This Class B digital apparatus complies with Canadian ICES-003. Cet appareil numérique de la classe B est conforme à la norme NMB-003 du Canada. Viewing Certifications 1 Go to http://www.zyxel.com. P-2802H(W)(L)-I Series User’s Guide...
Page 403: Zyxel Limited Warranty
Registration Register your product online to receive e-mail notices of firmware upgrades and information at www.zyxel.com for global products, or at www.us.zyxel.com for North American products. P-2802H(W)(L)-I Series User’s Guide Appendix G Legal Information...
Page 404 Appendix G Legal Information P-2802H(W)(L)-I Series User’s Guide...
Page 405: Appendix H Customer Support
• Sales E-mail: sales@zyxel.com.tw • Telephone: +886-3-578-3942 • Fax: +886-3-578-2439 • Web: www.zyxel.com, www.europe.zyxel.com • FTP: ftp.zyxel.com, ftp.europe.zyxel.com • Regular Mail: ZyXEL Communications Corp., 6 Innovation Road II, Science Park, Hsinchu 300, Taiwan Costa Rica • Support E-mail: soporte@zyxel.co.cr • Sales E-mail: sales@zyxel.co.cr •...
Page 406 Appendix H Customer Support • Regular Mail: ZyXEL Communications, Czech s.r.o., Modranská 621, 143 01 Praha 4 - Modrany, Ceská Republika Denmark • Support E-mail: support@zyxel.dk • Sales E-mail: sales@zyxel.dk • Telephone: +45-39-55-07-00 • Fax: +45-39-55-07-07 • Web: www.zyxel.dk • Regular Mail: ZyXEL Communications A/S, Columbusvej, 2860 Soeborg, Denmark Finland •...
Page 407 • Regular Mail: ZyXEL Malaysia Sdn Bhd., 1-02 & 1-03, Jalan Kenari 17F, Bandar Puchong Jaya, 47100 Puchong, Selangor Darul Ehsan, Malaysia North America • Support E-mail: support@zyxel.com • Sales E-mail: sales@zyxel.com • Telephone: +1-800-255-4101, +1-714-632-0882 • Fax: +1-714-632-0858 • Web: www.us.zyxel.com • FTP: ftp.us.zyxel.com P-2802H(W)(L)-I Series User’s Guide Appendix H Customer Support...
Page 408 Appendix H Customer Support • Regular Mail: ZyXEL Communications Inc., 1130 N. Miller St., Anaheim, CA 92806- 2001, U.S.A. Norway • Support E-mail: support@zyxel.no • Sales E-mail: sales@zyxel.no • Telephone: +47-22-80-61-80 • Fax: +47-22-80-61-81 • Web: www.zyxel.no • Regular Mail: ZyXEL Communications A/S, Nils Hansens vei 13, 0667 Oslo, Norway Poland •...
Page 409 • Telephone: +44-1344-303044, 08707-555779 (UK only) • Fax: +44-1344-303034 • Web: www.zyxel.co.uk • FTP: ftp.zyxel.co.uk • Regular Mail: ZyXEL Communications UK Ltd., 11 The Courtyard, Eastern Road, Bracknell, Berkshire RG12 2XB, United Kingdom (UK) P-2802H(W)(L)-I Series User’s Guide Appendix H Customer Support...
Page 410 Appendix H Customer Support P-2802H(W)(L)-I Series User’s Guide...
Page 411: Index
146, 147 call park and pickup call service mode 145, 147 call transfer 146, 147 call waiting 146, 147, 330 caller ID P-2802H(W)(L)-I Series User’s Guide certificate details factory default certificates advantages and cryptology and directory servers and public-key cryptology...
Page 412 155, 156 firewall address type creating/editing rules custom ports Dos threshold enabling maximum incomplete high maximum incomplete low one minute high one minute low policies rule security considerations TCP maximum incomplete 251, 327 142, 330 303, 304 P-2802H(W)(L)-I Series User’s Guide...
Page 413 331, 367 IEEE 802.11g data rates IEEE 802.11g modulation IEEE 802.11g wireless LAN IEEE 802.11i IEEE 802.1Q VLAN IGMP P-2802H(W)(L)-I Series User’s Guide IGMP proxy IGMP v1 IGMP v2 IKE phases importing certificates importing trusted CAs importing trusted remote hosts...
Page 414 PPP (Point-to-Point Protocol) Link Layer Protocol PPPoE benefits PPPoE (Point-to-Point Protocol over Ethernet) preamble mode pre-shared key product registration 190, 271 135, 240 83, 327 P-2802H(W)(L)-I Series User’s Guide...
Page 415 RF (Radio Frequency) RFC 1631 RFC 1889 132, 330 RFC 1890 RFC 2327 P-2802H(W)(L)-I Series User’s Guide RFC 2516 RFC 3261 Ringer Equivalence Number direction Routing Information Protocol see RIP version romfile RTCP...
Page 416 VLAN ID tags voice activity detection voice channels voice coding VoIP VoIP standards compliance VPN applications WAN (Wide Area Network) warranty note Web Configurator WEP (Wired Equivalent Privacy) WEP encryption P-2802H(W)(L)-I Series User’s Guide 35, 179, 327 141, 330 43, 158...
Page 417 Wi-Fi Protected Access (WPA) wireless LAN MAC address filtering WLAN interference security parameters ZyNOS ZyNOS (ZyXEL Network Operating System) ZyNOS F/W version P-2802H(W)(L)-I Series User’s Guide Index...
Page 418 Index P-2802H(W)(L)-I Series User’s Guide...

This manual is also suitable for:

P-2802h-i1 P-2802h-i3 P-2802hl-i1 P-2802hl-i3 P-2802hw-i P-2802hw-i1 ... Show all

ZyXEL Communications P-2802H(W)(L)-I Series User Manual

Chapter 1 Introducing the Zyxel Device

Chapter 2 Introducing the Web Configurator

Chapter 3 Internet and Wireless Setup Wizard

Chapter 4 Voip Wizard and Example

Chapter 5 Status Screens

Chapter 6 WAN Setup

Chapter 7 LAN Setup

Chapter 8 Wireless LAN

Chapter 9 Network Address Translation (NAT) Screens

Chapter 10 Voice

Chapter 11 Firewalls

Quick Links

Troubleshooting

Related Manuals for ZyXEL Communications P-2802H(W)(L)-I Series

Summary of Contents for ZyXEL Communications P-2802H(W)(L)-I Series