ZyXEL Communications P-660HWP-Dx Support Notes
  1. Manuals
  2. Brands
  3. ZyXEL Communications Manuals
  4. Gateway
  5. P-660HWP-Dx
  6. Support notes
ZyXEL Communications P-660HWP-Dx Support Notes

ZyXEL Communications P-660HWP-Dx Support Notes

802.11g homeplug av adsl2+ security gateway
Hide thumbs Also See for P-660HWP-Dx:
Table of Contents

Advertisement

Quick Links

Download this manual See also: User Manual
P-660HWP-Dx Support Notes
P-660HWP-Dx
802.11g HomePlug AV ADSL2+ Security Gateway
Support Notes
Version 3.40
Mar. 2007

Advertisement

Table of Contents
loading

Related Manuals for ZyXEL Communications P-660HWP-Dx

Summary of Contents for ZyXEL Communications P-660HWP-Dx

  • Page 1 P-660HWP-Dx Support Notes P-660HWP-Dx 802.11g HomePlug AV ADSL2+ Security Gateway Support Notes Version 3.40 Mar. 2007...

  • Page 2: Table Of Contents

    3. What’s the difference between ‘Common User Account’ and ‘Administrator Account’? ..............13 4. How do I know the P-660HWP-Dx's WAN IP address assigned by the ISP? ....................13 5. What is the micro filter or splitter used for? ........14 6.
  • Page 3 8. What are the signaling pins of the ADSL connector? ....20 9. What is triple play? ................20 HPAV FAQ ....................22 1. Can I deploy P-660HWP-Dx in both 100V region like Japan or 230V region like UK?..................22 2. Will P-660HWP-Dx damage or influence any home appliances and other electronics devices?..............
  • Page 4 P-660HWP-Dx Support Notes 11 What is Brute-force attack? ............27 12. What is IP Spoofing attack? ............27 13. What are the default ACL firewall rules in P-660HWP-Dx? ..28 Configuration .................... 28 1. How do I configure the firewall? ............28 2.
  • Page 5 8. What is Server Set ID (SSID)?..........39 9. What is an ESSID? .............. 39 Security FAQ..................... 41 1. How do I secure the data across the P-660HWP-Dx Access Point's radio link?....................41 2. What is WEP? ..................41 3. What is WPA? ................... 41 4.
  • Page 6 P-660HWP-Dx Support Notes 18. How to configure TR069 on P-660HWP-Dx? ....95 Wireless Application Notes ..............99 1. Configure a Wireless Client to Ad hoc mode ....99 2. Configuring Infrastructure mode ........103 3. MAC Filter ................. 107 4. Setup WEP (Wired Equivalent Privacy) ......109 5.

  • Page 7: Faq

    Note: It is protected by super password, ‘1234’ by factory default. 3. How do I update the firmware and configuration file? You can do this if you access the P-660HWP-Dx as Administrator. You can upload the firmware and configuration file to Prestige from Web Condigurator, or using FTP or TFTP client software.

  • Page 8: How Do I Restore P-660Hwp-Dx Configurations By Using Tftp Client Program Via Lan

    In case you forget the system password, you can erase the current configuration and restore factory defaults this way: Use the RESET button on the rear panel of P-660HWP-Dx to reset the router. After the router is reset, the LAN IP address will be reset to '192.168.1.1', the common user password will be reset to 'user', the Administrator password will be reset to „1234’.

  • Page 9: What Is Sua? When Should I Use Sua

    Many-to-One and Server. With SUA, 'visible' servers had to be mapped to different ports, since the servers share only one global IP. The P-660HWP-Dx now has Full Feature NAT which supports five types of IP/Port mapping: One to One, Many to One, Many to Many Overload, Many to Many No Overload and Server.

  • Page 10: Is It Possible To Access A Server Running Behind Sua From The Outside Internet? How Can I Do It

    P-660HWP-Dx Support Notes The P-660HWP-Dx supports NAT sets on a remote node basis. They are reusable, but only one set is allowed for each remote node. The P-660HWP-Dx supports 8 sets since there are 8 remote nodes. By fatory default, the NAT is select as SUA in Web Configurator, Advanced Setup, Network ->...
  • Page 11 IP addresses as the Internal Local Addresses (ILA) and the global IP addresses as the Inside Global Address (IGA),  One to One: In One-to-One mode, the P-660HWP-Dx maps one ILA to one IGA.  Many to One: In Many-to-One mode, the P-660HWP-Dx maps multiple ILA to one IGA.

  • Page 12: How Many Network Users Can The Sua/Nat Support

    The Prestige does not limit the number of the users but the number of the sessions. The P-660HWP-Dx supports 2048 sessions that you can use the 'ip nat session' command in CLI to see. You can also use „ip nat hashTable wanif0‟...
  • Page 13  Destination IP Addr =a.b.c.d  Destination IP Mask =w.x.y.z  Action Matched =Drop  Action No Matched =Forward Where a.b.c.d is an IP address on your local network and w.x.y.z is your netmask. All contents copyright © 2007 ZyXEL Communications Corporation.

  • Page 14: Product Faq

    Moreover, only with Administrator Password, you could manage the P-660HWP-Dx via FTP/TFTP or Telnet. 4. How do I know the P-660HWP-Dx's WAN IP address assigned by the ISP? You can view "My WAN IP <from ISP> : x.x.x.x" shown in Web Configurator „Status->Device Information ->WAN Information‟...

  • Page 15: What Is The Micro Filter Or Splitter Used For

    You can also check your ISP or the information sheet given by the ISP. Please choose PPPoE as the encapsulation type in the P-660HWP-Dx if the ISP uses PPPoE. 8. Why does my provider use PPPoE? PPPoE emulates a familiar Dial-Up connection.

  • Page 16: When Do I Need Ddns Service

    IP address we can use the DDNS service. The DDNS server allows to alias a dynamic IP address to a static hostname. Whenever the ISP assigns you a new IP, the P-660HWP-Dx sends this IP to the DDNS server for its updates.

  • Page 17: How Do I Setup My P-660Hwp-Dx For Routing Ipsec Packets Over Sua

    Because the remote gateway checks this source port during connections, the port thus is not allowed to be changed. 13. How do I setup my P-660HWP-Dx for routing IPSec packets over SUA? For outgoing IPSec tunnels, no extra setting is required.

  • Page 18: What Do The Parameters (Pcr, Scr, Mbs) Mean

    P-660HWP-Dx Support Notes applications have their own natural bit rate. Large data transactions have a fluctuating natural bit rate. The P-660HWP-Dx is able to support variable traffic among different virtual connections. Certain traffic may be discarded if the virtual connection experiences congestion. Traffic shaping defines a set of actions taken by the P-660HWP-Dx to avoid congestion;...

  • Page 19: What Is Content Filter

    (that you specify) in the URL. You can set a schedule for when the P-660HWP-Dx performs content filtering. You can also specify trusted IP Addresses on LAN for which the P-660HWP-Dx will not perform content filtering. You can configure the details about it in Web Configurator, Advanced setup, Security ->...

  • Page 20: Adsl Faq

    4. How do I know the ADSL line is up? You can see the DSL LED Green on the P-660HWP-Dx's front panel is on when the ADSL physical layer is up.

  • Page 21: Does The Vc-Based Multiplexing Perform Better Than The Llc-Based Multiplexing

    Maintenance -> Diagnostic -> DSL Line -> DSL Status: 8. What are the signaling pins of the ADSL connector? The signaling pins on the P-660HWP-Dx's ADSL connector are pin 3 and pin 4. The middle two pins for a RJ11 cable.
  • Page 22  The low priority is internet access such as ftp etc … Triple Play is a port-based policy to forward packets from different LAN port to different PVCs, thus you can configure each PVC separately to assign different QoS to different application. All contents copyright © 2007 ZyXEL Communications Corporation.

  • Page 23: Hpav Faq

    1. Can I deploy P-660HWP-Dx in both 100V region like Japan or 230V region like UK?. Yes, the operational voltage of P-660HWP-Dx is 100-240v@50-60Hz. As long as you can operate P-660HWP-Dx, it can be used to transmit data over your power network. 2. Will P-660HWP-Dx damage or influence any home appliances and...

  • Page 24: As To Zyxel P-660Hwp-Dx, Will The Powerline Signal Pass Between Houses

    9. What is the maximum area that P-660HWP-Dx can cover? It depends on the quality, loops and routes of your power wire. Basically the length of power wire that P-660HWP-Dx can cover is up to 300 meters/984 feet. All contents copyright © 2007 ZyXEL Communications Corporation.

  • Page 25: General

    2. What makes P-660HWP-Dx secure? The P-660HWP-Dx is pre-configured to automatically detect and thwart Denial of Service (DoS) attacks such as Ping of Death, SYN Flood, LAND attack, IP Spoofing, etc. It also uses stateful packet inspection to determine if an inbound connection is allowed through the firewall to the private LAN.

  • Page 26: What Kind Of Firewall Is The P-660Hwp-Dx

    4. The P-660HWP-Dx's firewall is fast. It uses a hashing function to search the matched session cache instead of going through every individual rule for a packet.

  • Page 27: What Is Denials Of Service (Dos) Attack

    SYN-ACK response, While the targeted system waits for the ACK that follows the SYN-ACK, it queues up all outstanding SYN-ACK responses on what is known as a backlog queue. All contents copyright © 2007 ZyXEL Communications Corporation.

  • Page 28: What Is Land Attack

    IP Spoofing, a hacker must modify the packet headers so that it appears that the packets originate from a trusted host and should be allowed through the router or firewall. All contents copyright © 2007 ZyXEL Communications Corporation.

  • Page 29: What Are The Default Acl Firewall Rules In P-660Hwp-Dx

    Configuration 1. How do I configure the firewall? You can use the Web Configurator to configure the firewall for P-660HWP-Dx. By factory default, if you connect your PC to the LAN Interface of P-660HWP-Dx, you can access Web Configurator via „http: //192.168.1.1‟.

  • Page 30: Why Can't I Configure My P-660Hwp-Dx Using Web Configurator/Telnet Over Wan

    P-660HWP-Dx Support Notes 3. Why can't I configure my P-660HWP-Dx using Web Configurator/Telnet over WAN? There are four reasons that WWW/Telnet from WAN is blocked. (1) When the firewall is turned on, all connections from WAN to LAN are blocked by the default ACL rule. To enable Telnet from WAN, you must turn the firewall off, or create a firewall rule to allow WWW/Telnet connection from WAN.

  • Page 31: Why Can't I Upload The Firmware And Configuration File Using Ftp Over Wan

    Web Configurator, Advanced setup, Advanced -> Remote MGNT. (4) A filter set which blocks FTP from WAN is applied to WAN node. You can check by command: wan node index [index #] wan node display All contents copyright © 2007 ZyXEL Communications Corporation.

  • Page 32: Log And Alert

    Log and Alert . When does the P-660HWP-Dx generate the firewall log? The P-660HWP-Dx generates the firewall log immediately when the packet matches a firewall rule. The log for Default Firewall Policy (LAN to WAN, WAN to LAN, WAN to WAN) is generated automatically with factory default setting, but you can change it in Web Configurator.

  • Page 33: When Does The P-660Hwp-Dx Generate The Firewall Alert

    5. What is the difference between the log and alert? A log entry is just added to the log inside the P-660HWP-Dx and e-mailed together with all other log entries at the scheduled time as configured. An alert is e-mailed immediately after an attacked is detected.

  • Page 34: Wireless Faq

    3. What is the disadvantage of Wireless LAN? All contents copyright © 2007 ZyXEL Communications Corporation.

  • Page 35: Where Can You Find 802.11 Wireless Networks

    Frequency Data Rate(Mbps) Compatibility Time Band(GHZ) IEEE802.11a 1999 UNII Band 6,9,12,18,24,36,48, Only work with 5.15~5.825 802.11a devices IEEE802.11b 1999 ISM Band 1,2,5.5,11 2.4~2.4835 IEEE802.11g 2001 ISM Band 6,9,12,18,24,36,48, Backward 2.4~2.4835 compatible with All contents copyright © 2007 ZyXEL Communications Corporation.

  • Page 36: Is It Possible To Use Wireless Products From A Variety Of Vendors

    Both the 802.11b/g and Bluetooth devices occupy the same2.4-to-2.483-GHz unlicensed frequency range-the same band. But a Bluetooth device would not interfere with other 802.11 devices much more than another 802.11 device All contents copyright © 2007 ZyXEL Communications Corporation.

  • Page 37: Can Radio Signals Pass Through Wall

    WWANs are generally publicly shared data networks designed to provide coverage in metropolitan areas and along traffic corridors. WWANs are owned All contents copyright © 2007 ZyXEL Communications Corporation.

  • Page 38: Can I Manually Swap The Wireless Module Without Damage Any Hardware

    Yes, it supports up to 32 MAC Address filtering. 18. Does P-660HWP-Dx support auto rate adaption? Yes, it means that the AP on P-660HWP-Dx will automatically decelerate when devices move beyond the optimal range, or other interference is present. If the device moves back within the range of a higher-speed transmission, the connection will automatically speed up again.

  • Page 39: Advanced Faq

    The FCC rules the minimum processing gain should be 10, typical systems use processing gains of 20. IEEE 802.11b specifies the use of DSSS. 5. What is Frequency-hopping Spread Spectrum Technology – (FHSS)? All contents copyright © 2007 ZyXEL Communications Corporation.

  • Page 40: Do I Need The Same Kind Of Antenna On Both Sides Of A Link

    SSID can communicate with base stations having the same SSID. SSID from a security point of view acts as a simple single shared password between base stations and clients. 9. What is an ESSID? All contents copyright © 2007 ZyXEL Communications Corporation.
  • Page 41 ESSID stands for Extended Service Set Identifier and identifies the wireless LAN. The ESSID of the mobile device must match the ESSID of the AP to communicate with the AP. The ESSID is a 32-character maximum string and is case-sensitive. All contents copyright © 2007 ZyXEL Communications Corporation.

  • Page 42: Security Faq

    P-660HWP-Dx Support Notes Security FAQ 1. How do I secure the data across the P-660HWP-Dx Access Point's radio link? To secure the date across the P-660HWP-Dx Access Point‟s radio link, we could select any one of the security mode: Static 64/128/256 bit WEP, WPA-PSK, WPA, WPA2-PSK, WPA2.

  • Page 43: What Is The Difference Between 40-Bit And 64-Bit Wep

    The insertion attacks are based on placing unauthorized devices on the wireless network without going through a security process and review. 10. What is Wireless Sniffer? An attacker can sniff and capture legitimate traffic. Many of the sniffer tools for All contents copyright © 2007 ZyXEL Communications Corporation.

  • Page 44: What Is Otist? How Do I Use It

    WPA-PSK security mode automatically with just one touch at the reset button on rear panel. To use this function on P-660HWP-Dx, you could press the reset button on P-660HWP-Dx for 1~5 seconds, the OTIST is actived. The P-660HWP-Dx will enhance the Wireless Security Level to WPA-PSK automatically if no WLAN security has been set.

  • Page 45: Application Notes

    In this case, we use P-660HWP-Dx which works as an ADSL bridge modem to connect to the ISP. The ISP will generally give one Internet account and limit only one computer to access the Internet.
  • Page 46 P-660HWP-Dx Support Notes Setup your P-660HWP-Dx under bridge mode The following procedure shows you how to configure your P-660HWP-Dx as bridge mode. We will use Web Configurator to guide you through the related menu. (1) Configure P-660HWP-Dx as bridge mode and configure Internet setup parameters in Web Configurator, Advanced Setup, Network ->...

  • Page 47: Internet Access Using P-660Hwp-Dx Under Routing Mode

    Ethernet cable. (2) TCP/IP configuration Since the P-660HWP-Dx is set to DHCP server as default, so you need only to configure the workstations as the DHCP clients in the networking settings. In this case, the IP address of the computer is assigned by the P-660HWP-Dx.
  • Page 48 Identifier) given to you by your ISP. IP Address Set to Dynamic if the ISP provides the IP for the P-660HWP-Dx Assignment dynamically. Otherwise, set to Static and enter the IP in the IP All contents copyright © 2007 ZyXEL Communications Corporation.

  • Page 49: Setup The P-660Hwp-Dx As A Dhcp Relay

    P-660HWP-Dx Support Notes Address field. (2) Configure a LAN IP for the P-660HWP-Dx and the DHCP settings in Web Configurator, Advanced Setup, Network -> LAN. 3. Setup the P-660HWP-Dx as a DHCP Relay  What is DHCP Relay? DHCP stands for Dynamic Host Configuration Protocol. In addition to the DHCP server feature, the P-660HWP-Dx supports the DHCP relay function.
  • Page 50 Cu-SeeMe, and ICQ will need to connect to the local user behind the P-660HWP-Dx. In such case, a SUA server must be configured to forward the incoming packets to the true destination behind SUA. After the required server are configured in Web Configurator, Advanced Setup, Network ->...
  • Page 51 Voice Net2Phone None 6701/client IP Network Time Protocol (NTP) None 123 /server IP Win2k Terminal Server None 3389/server IP Remote Anything None 3996 - 4000/client IP Virtual Network Computing None 5500/client IP All contents copyright © 2007 ZyXEL Communications Corporation.
  • Page 52 Certain Quake servers do not allow multiple users to login using the same unique IP, so only one Quake user will be allowed in this case. Moreover, when a Quake server is configured behind SUA, P-660HWP-Dx will not be able to provide information of that server on the internet.
  • Page 53 A service is identified by the port number. Also, since you need to specify the IP address of a server behind the P-660HWP-Dx, a server must have a fixed IP address and not be a DHCP client whose IP address potentially changes each time P-660HWP-Dx is powered on.
  • Page 54 „Modify‟ on corresponding rule, then modify and apply it. Default port numbers for some services Service Port Number Telnet SMTP DNS (Domain Name Server) www-http (Web) Configure a PPTP server behind SUA Introduction All contents copyright © 2007 ZyXEL Communications Corporation.
  • Page 55 PPP support for the analog or ISDN modem. The PPTP is supported in Windows NT and Windows 98 already. For Windows 95, it needs to be upgraded by the Dial-Up Networking 1.2 upgrade. Configuration All contents copyright © 2007 ZyXEL Communications Corporation.
  • Page 56 Example The following example shows how to dial to an ISP via the P-660HWP-Dx and then establish a tunnel to a private network. There will be three items that you need to set up for PPTP application, these are PPTP server (WinNT), PPTP client (Win9x) and the P-660HWP-Dx.
  • Page 57 Internet IP address that the ISP assigns to P-660HWP-Dx router in SUA mode and enter this IP address in the VPN dial-up dialog box. You can check this Internet IP address from PNC Monitor or S Web Configurator, Status ->...

  • Page 58: Using Full Feature Nat

    P-660HWP-Dx Support Notes 5. Using Full Feature NAT When P-660HWP-Dx is in Routing mode, you can select NAT Option as Full Feature in Network -> Remote Node -> Edit: Key Settings: Field Options Description When you select this option you can select...
  • Page 59 Configuring NAT Address Mapping Sets and NAT Server Sets The P-660HWP-Dx has 8 remote nodes and so allows you to configure 8 NAT Address Mapping Sets, You must specify which NAT Address Mapping Set (1~8) to use in the remote node when you select Full Feature NAT.
  • Page 60 Click the „Edit’ Button on the rule #1, then you can enter the window in which you can edit an individual rule and configure the Mapping Type, Local and Global Start/End IPs: All contents copyright © 2007 ZyXEL Communications Corporation.
  • Page 61 Start address, i.e., you cannot have an End IP address beginning before the Start IP address.  Configure Address Mapping Sets in CLI Setp 1: Telnet to the P-660HWP-Dx. (We suppose the LAN IP Address of P-660HWP-Dx is 192.168.1.1) Step 2: Select one Address Mapping Set (#1~#8) by command „ip nat addrmap map [map #] [set name]‟...
  • Page 62 Load the server sets of NAT into buffer “disp 1” means to display the NAT server set in buffer, ip nat server disp [1] if parameter “1” is omitted, then it will display all the All contents copyright © 2007 ZyXEL Communications Corporation.
  • Page 63 192.168.1.36 and a FTP server at 192.168.1.33, then you need to specify for port 80 (Web) the server at IP address 192.168.1.36 and for port 21 (FTP) another at IP address 192.168.1.33. All contents copyright © 2007 ZyXEL Communications Corporation.
  • Page 64 In our Internet Access example, we only need one rule where all our ILAs map to one IGA assigned by the ISP. You can just use the default SUA NAT, or you All contents copyright © 2007 ZyXEL Communications Corporation.
  • Page 65 In this case, we do exactly as the figure (use the convenient pre-configured SUA Only set) and also go to Web Configurator, Advanced Setup, Network -> NAT -> Port Forwarding to specify the Internet Server behind the NAT as All contents copyright © 2007 ZyXEL Communications Corporation.
  • Page 66 Rule 4 (Server type) to map a web server and mail server with ILA3 (192.168.1.20) to IGA3. Type Server allows us to specify multiple servers, of different types, to other machines behind NAT on the LAN. All contents copyright © 2007 ZyXEL Communications Corporation.
  • Page 67 Step 1: In this case, we need to map ILA to more than one IGA, therefore we must choose the Full Feature option from the NAT field in currently active remote node, and assign IGA3 to P-660HWP-Dx‟s WAN IP Address. Step 2: Go to Web Configurator, Advanced Setup, Network -> NAT ->...
  • Page 68 (200.0.0.3). Rule 4 Setup: Select Server type to map our web server and mail server with ILA3 (192.168.1.20) to IGA3. Menu Network -> NAT -> Address Mapping should look as follows now: All contents copyright © 2007 ZyXEL Communications Corporation.
  • Page 69 IP address. In this case it is better to use Many-to-Many No Overload or One-to-One NAT mapping types, thus each user login to the server using a unique global IP address. The following figure illustrates this. All contents copyright © 2007 ZyXEL Communications Corporation.

  • Page 70: Using The Dynamic Dns (Ddns)

    Without DDNS, we always tell the users to use the WAN IP of the P-660HWP-Dx to access the internal server. It is inconvenient for the users if this IP is dynamic. With DDNS supported by the P-660HWP-Dx, you apply a DNS name (e.g., www.zyxel.com.tw) for your server (e.g., Web server) from a...
  • Page 71 DDNS server. The outside users can always access the web server using the www.zyxel.com.tw regardless of the WAN IP of the P-660HWP-Dx. When the ISP assigns the P-660HWP-Dx a new IP, the P-660HWP-Dx must inform the DDNS server the change of this IP so that the server can update its IP-to-DNS entry.

  • Page 72: Network Management Using Snmp

    7. Network Management Using SNMP  ZyXEL SNMP Implementation ZyXEL currently includes SNMP support in some P-660HWP-Dx routers. It is implemented based on the SNMPv1, so it will be able to communicate with SNMPv1 NMSs. Further, users can also add ZyXEL's private MIB in the NMS to monitor and control additional system variables.
  • Page 73 (2) For fatal error: System has to reboot for some fatal errors. And traps with the message of the fatal code will be sent.  Downloading ZyXEL's private MIB  Configure the P-660HWP-Dx for SNMP All contents copyright © 2007 ZyXEL Communications Corporation.
  • Page 74 P-660HWP-Dx Support Notes The SNMP related settings in P-660HWP-Dx are configured in Web Configurator, Advanced Setup, Advanced -> Remote MGNT -> SNMP The following steps describe a simple setup procedure for configuring all SNMP settings. Key Settings: Option Descriptions Enter the correct Get Community. This Get Community must match the 'Get-' and 'GetNext' community requested from the NMS.

  • Page 75: Using Syslog

    In a typical environment, a LAN router is required to connect two local networks. The P-660HWP-Dx can connect three local networks to the ISP or a remote node, we call this function as 'IP Alias'. In this case, an internal router is not required.
  • Page 76 IP alias 1 and enif0:1 for the IP alias 2. Therefore, three routes are created in the P-660HWP-Dx as shown below when the three networks are configured. If the P-660HWP-Dx's DHCP is also enabled, the IP pool for the clients can be any of the three networks.

  • Page 77: Using Ip Policy Routing

    Active it and enter the second LAN IP address for the P-660HWP-Dx. This IP Alias 1 will create the second route in the enif0:0 interface. Active it and enter the third LAN IP address for the P-660HWP-Dx. This will IP Alias 2 create the third route in the enif0:1 interface.
  • Page 78 The inclusion of length criterion is to differentiate between interactive and bulk traffic. Interactive applications, e.g., Telnet, tend to have short packets, while bulk traffic, e.g., file transfer, tends to have large packets. All contents copyright © 2007 ZyXEL Communications Corporation.
  • Page 79 (Set the name as Test of IP routing policy rule) ip policyrouting set active yes (Enable the rule) ip policyrouting set criteria protocol 6 (Set the protocol ID as 6(TCP) for the rule) All contents copyright © 2007 ZyXEL Communications Corporation.
  • Page 80 WAN site you apply the policy set in WAN interface. Apply to WAN Interface (Suppose we apply it to remote node 1 in the example): wan node index 1 wan node ippolicy 1 All contents copyright © 2007 ZyXEL Communications Corporation.

  • Page 81: Using Call Scheduling

     What is Call Scheduling? Call scheduling enables the mechanism for the P-660HWP-Dx to run the remote node connection according to the pre-defined schedule. This feature is just like the scheduler in a video recorder which records the program according to the specified time.
  • Page 82 For example, if we want to apply the call schedule set 1 to remote node 1, we could use the commands: wan node index 1 wan node callsch 1 wan node save All contents copyright © 2007 ZyXEL Communications Corporation.

  • Page 83: Using Ip Multicast

    Time service is implemented by the Daytime protocol(RFC-867), Time protocol(RFC-868), and NTP protocol(RFC-1305). You have to assign an IP address of a time server and then, the P-660HWP-Dx will get the date, time, and time-zone information from this server. You can configure it in Web Configurator, Advanced Setup, Maintenance ->...

  • Page 84: Using Bandwidth Management

    P-660HWP-Dx Support Notes needs to be forwarded. At start up, the P-660HWP-Dx queries all directly connected networks to gather group membership. After that, the P-660HWP-Dx updates the information by periodic queries. The P-660HWP-Dx implementation of IGMP is also compatible with version 1. The multicast setting can be turned on or off on Ethernet and remote nodes.
  • Page 85 Step 2: Go to Web Configurator, Advanced Setup, Advanced -> Bandwidth MGMT-> Rule Setup, select the interface, Service, Priority, and Allocated Bandwidth for this rule, then click button „Add‟ to apply this rule. All contents copyright © 2007 ZyXEL Communications Corporation.
  • Page 86 Maximize Bandwidth Usage on the interface to meet the condition.) Service Select User-defined, SIP, FTP, or H.323 to specify the traffic types Destination Enter the IP address of destination that meets this class. IP Address Destination Enter the destination subnet mask. All contents copyright © 2007 ZyXEL Communications Corporation.

  • Page 87: Using Zero-Configuration

    Whenever system send out all the probing patterns with specific VPI/VCI, system will wait for 5~10 seconds and get the response from ISP, the response patterns will decide which kinds of ADSL All contents copyright © 2007 ZyXEL Communications Corporation.
  • Page 88 (2) If you want to enable all service for VC hunting, the service bits will be 1+2+4+8+16+32=63(decimal)= 3f (hex), you must input 3f Need to perform save after this by command „wan atm vchunt save‟ All contents copyright © 2007 ZyXEL Communications Corporation.
  • Page 89 Internet. If the connection test fail, it will go back to the page ask for user name and password. (4) Basically the zero configuration only work on the VC that was preconigured in the auto-haunting preconfigured table. All contents copyright © 2007 ZyXEL Communications Corporation.

  • Page 90: How Could I Configure Triple Play On P-660Hwp-Dx

    16. How to configure packet filter on P-660HWP-Dx? The P-660HWP-Dx allows you to configure up to twelve filter sets with six rules in each set, for a total of 72 filter rules in the system. You can apply up to four filter sets to a particular port to block multiple types of packets.
  • Page 91 P-660HWP-Dx Support Notes The packet filter function on P-660HWP-Dx is the same as before, just that you could only configure the filter set and apply them by command in CLI. It‟s very complex for common users to do it. So here‟s the recommendation: (1) Usually if you want to block special packets, you could edit a firewall rule in Web Configurator.
  • Page 92 Set the protocol ID of the rule sys filter set sourceroute [yes|no] Set the sourceroute yes/no sys filter set destip [address] [subnet Set the destination IP address and subnet mask of mask] the rule All contents copyright © 2007 ZyXEL Communications Corporation.

  • Page 93: How To Use Homeplug On P-660Hwp-Dx

    Save the filter set parameters Display Filter set information. W/o parameter, it will sys filter set display [set#][rule#] display buffer information. sys filter set freememory Discard Changes 17. How to use HomePlug on P-660HWP-Dx? All contents copyright © 2007 ZyXEL Communications Corporation.
  • Page 94 Go to remote setting to set the same network password and device access key, then you can connect to the remote devices.See picture as below,the MAC of remote device will be added. All contents copyright © 2007 ZyXEL Communications Corporation.
  • Page 95 Then go to see status.Both CO and Local station information will be shown.The statistic of transmit rate and receive rate is list as below. Note: you can check this in the home page or with CLI command(powerline display). All contents copyright © 2007 ZyXEL Communications Corporation.

  • Page 96: How To Configure Tr069 On P-660Hwp-Dx

    P-660HWP-Dx Support Notes 18. How to configure TR069 on P-660HWP-Dx? For example: ACS IP: 192.168.10.11 Port: 8080 On CPE In SMT 24.8, CI Command, v> wan tr069 load // Load TR-064 before configuration. v> wan tr069 active 1 // enable the TR-069 operation.
  • Page 97 30 // TR069 Informinterval 30 v> wan tr069 debug on v> wan tr069 save After configuration, CPE will send inform to ACS. We can see ZyXEL‟s device in Manufacture and Product page in ACS. All contents copyright © 2007 ZyXEL Communications Corporation.
  • Page 98 P-660HWP-Dx Support Notes You can set Parameter Values on the ACS. All contents copyright © 2007 ZyXEL Communications Corporation.
  • Page 99 Auto-configuration and dynamic service provisioning; Software/firmware image management; Status and performance monitoring; Diagnostics and so on.It‟s provide a convenient way to use one common platform to manage lots of CPE through the Internet. All contents copyright © 2007 ZyXEL Communications Corporation.

  • Page 100: Wireless Application Notes

    Step 1: Double click on the utility icon in your windows task bar the utility will pop up on your windows screen. Step 2: Select configuration tab. All contents copyright © 2007 ZyXEL Communications Corporation.
  • Page 101 Step 4: Since there is no DHCP server to give the host IP you must first designate a static IP for your station. From Windows Start select Control Panel >Network Connection>Wireless Network Connection. All contents copyright © 2007 ZyXEL Communications Corporation.
  • Page 102 Step1: Double click on the utility icon in your windows task bar the utility will pop up on your windows screen. Step 2: Select configuration tab. All contents copyright © 2007 ZyXEL Communications Corporation.
  • Page 103 Step 4: Since there is no DHCP server to give the host IP you must first designate a static IP for your station. From Windows Start select Control Panel >Network Connection>Wireless Network Connection. All contents copyright © 2007 ZyXEL Communications Corporation.

  • Page 104: Configuring Infrastructure Mode

    For Infrastructure WLANs, multiple Access Points (APs) like the WLAN to the wired network and allow users to efficiently share network resources. The Access Points not only provide communication with the wired network but also mediate wireless network traffic in the immediate neighborhood. All contents copyright © 2007 ZyXEL Communications Corporation.
  • Page 105 P-660HWP-Dx Support Notes Configure Wireless Access Point to Infrastructure mode using Web configurator. To configure Infrastructure mode of your P-660HWP-Dx wireless AP please follow the steps below. Step 1: Login Web Configurator, Advanced Setup, Network -> Wireless LAN -> General. Configure the basic parameters for Wireless LAN.
  • Page 106 Adapter please follow the following steps. Step 1: Double click on the utility icon in your windows task bar the utility will pop up on your windows screen. Step 2: Select configuration tab. All contents copyright © 2007 ZyXEL Communications Corporation.
  • Page 107 Change to take effect. Step 4: Click on Site Survey tab, and press search all the available AP will be listed. Step 5: Double click on the AP you want to associated with. All contents copyright © 2007 ZyXEL Communications Corporation.

  • Page 108: Mac Filter

    This provides an additional layer of control layer in that only stations with registered MAC addresses can connect. This approach requires that the list of MAC addresses be configured. All contents copyright © 2007 ZyXEL Communications Corporation.
  • Page 109 Association is selected in this field, hosts with MAC addresses configured in this list Filter Action will be allowed to associate with AP. If Deny Association is selected in this field, hosts with MAC addresses configured in this list will be blocked. All contents copyright © 2007 ZyXEL Communications Corporation.

  • Page 110: Setup Wep (Wired Equivalent Privacy)

    You can set up the Access Point from Web configurator, Advanced Setup, Network -> Wireless LAN -> General. (You can also configure it via CLI): Step 1: Select „Static WEP‟ from the pull down menu „Security Mode‟ in Web Configurator: All contents copyright © 2007 ZyXEL Communications Corporation.
  • Page 111 256-bit WEP key (secret key) with 58 hexadecimal digits There are two ways you can configure the WEP Key. (1) You can put in a special WEP key in the „WEP Key‟ menu directly. All contents copyright © 2007 ZyXEL Communications Corporation.
  • Page 112 P-660HWP-Dx Support Notes (2) You can also put in an arbitrary sequence of characters in the „Passphrase‟ and then press button „Generate‟ to let the P-660HWP-Dx generate WEP Key for you:  Setting up the Station Step 1: Double click on the utility icon in your windows task bar or right click the utility icon then select 'Show Config Utility'.
  • Page 113 Note: If the utility icon doesn't exist in your task bar, click Start -> Programs -> …… to start the utility. Step 2: Select the 'Configuration' tab. Select „Set Security‟ to configure encryption type and parameters correspond with access point. All contents copyright © 2007 ZyXEL Communications Corporation.
  • Page 114 P-660HWP-Dx Support Notes Note: You should select Key 1 as default Transmit Key, since the P-660HWP-Dx is supposed to use Key 1 by default. Key settings The WEP Encryption type of station has to equal to the access point. Check 'ASCII' field for characters WEP key or uncheck 'ASCII' field for Hexadecimal digits WEP key.

  • Page 115: Site Survey

    Survey on Site Step 1: With the diagram with all information you gathered in the preparation phase. Now you are ready to make the survey. All contents copyright © 2007 ZyXEL Communications Corporation.
  • Page 116 Record the changes at point where transfer rate drop and the link quality and signal strength information on the diagram as you go alone. All contents copyright © 2007 ZyXEL Communications Corporation.
  • Page 117 Step 8: Repeat step 1~6 of survey on site as necessary, upon completion you will have a diagram and information of site survey. As illustrated below. All contents copyright © 2007 ZyXEL Communications Corporation.

  • Page 118: Configure 802.1X And Wpa

    WAP applies IEEE 802.1x Extensible Authentication Protocol (EAP) to authenticate wireless clients using an external RADIUS database. You can not use the P-660HWP-Dx's local user database for WPA authentication purpose since the local user database uses MD5 EAP which can not to generate keys.
  • Page 119 Authentication can be done using local user database internal to the P-660HWP-Dx (authenticate up to 32 users) or an external RADIUS server for an unlimited number of users. Step 1: To change your P-660HWP-Dx's authentication settings, login Web Configurator, Advanced Setup, Network ->...
  • Page 120 Step 1: Double click on your wireless utility icon in your windows task bar, the utility will pop up on your windows screen. Step 2: Select the configuration tab, type in the SSID (Service Set Identifier), select the operating Mode as Infrastructure, and select proper channel. All contents copyright © 2007 ZyXEL Communications Corporation.
  • Page 121 P-660HWP-Dx Support Notes Step 3: Click Set Security to configure the security parameters: Step 4: Click OK for finish, and begin to Site survey. Connect to the AP as you have configured. All contents copyright © 2007 ZyXEL Communications Corporation.
  • Page 122 P-660HWP-Dx Support Notes Step 5: Click Link Info tab, if the PC associated and authenticated with AP successfully, we will see the following information. All contents copyright © 2007 ZyXEL Communications Corporation.
  • Page 123 P-660HWP-Dx Support Notes All contents copyright © 2007 ZyXEL Communications Corporation.

  • Page 124: Support Tool

    Offline Trace--capture the trace first and display later The details for capturing the trace in CLI as follows: First of all, you need to telnet to the P-660HWP-Dx firstly. The password is Administrator passwords, „admin‟ by default.  Online Trace (1) Trace LAN packet ...
  • Page 125 & sys trcl sw on  Display the brief trace online by entering: sys trcd brief  Display the detailed trace online by entering: sys trcd parse Example: All contents copyright © 2007 ZyXEL Communications Corporation.

  • Page 126: Offline Trace

     Disable the trace log by entering: sys trcp sw off & sys trcl sw off  Display the trace briefly by entering: sys trcp brief  Display specific packets by using: sys trcp parse <from_index> <to_index> All contents copyright © 2007 ZyXEL Communications Corporation.

  • Page 127: Capture The Detailed Logs By Hyper Terminal

    P-660HWP-Dx Support Notes  Capture the detailed logs by Hyper Terminal Step 1: Initiate a hyper terminal connection from your PC(suppose you connected to the LAN port of P-660HWP-Dx) Step 2: Click the „properties‟ to configure parameters to telnet to the P-660HWP-Dx.
  • Page 128 P-660HWP-Dx Support Notes Step 3: So that after you invoke the relevant commands, you could save the logs you‟ve captured. All contents copyright © 2007 ZyXEL Communications Corporation.

  • Page 129: Firmware/Configurations Uploading And Downloading Using Tftp

    Step 5:To upload the firmware, please save the remote file as 'ras' to Prestige. After the transfer is complete, the Prestige will program the upgraded firmware into FLASH ROM and reboot itself. An example: All contents copyright © 2007 ZyXEL Communications Corporation.
  • Page 130 Step 3: Run the TFTP client software Step 4: To download the P-660HWP-Dx configuration, please get the remote file 'rom-0' from the Prestige. Step 5: To upload the P-660HWP-Dx configuration, please save the remote file as 'rom-0' in the Prestige. An example:...

  • Page 131: Using Tftp Command On Windows Nt

    Step 2: Type the CI command 'sys stdio 0' to disable console idle timeout in Command Line Interface (CLI). Step 3: Download ZyNOS via LAN: c:\tftp -i [PrestigeIP] get ras [localfile] Step 4: Upload P-660HWP-Dx configurations via LAN: c:\tftp -i [PrestigeIP] put [localfile] rom-0 Step 5: Download P-660HWP-Dx configurations via LAN:...

  • Page 132: Using Ftp To Upload The Firmware And Configuration Files

    Step 5 Use 'put' command to transfer the file to the Prestige. Example: Step 1: Connect to the Prestige by entering the Prestige's IP and Administrator password in the FTP software. Set the transfer type to 'Auto-Detect' or 'Binary'. All contents copyright © 2007 ZyXEL Communications Corporation.
  • Page 133 To upload the configuration file, we transfer the local 'rom-0' to overwrite the remote 'rom-0' file. Step 4: The Prestige reboots automatically after the uploading is finished. Please do not power off the router at this moment. All contents copyright © 2007 ZyXEL Communications Corporation.

  • Page 134: Ci Command Reference

    The latest CI Command list is available in release note of every ZyXEL firmware release. Please goto ZyXEL public WEB site http://www.zyxel.com/support/download_index.php to download firmware package (*.zip), you should unzip the package to get the release note in PDF format. All contents copyright © 2007 ZyXEL Communications Corporation.

Table of Contents