Sign In
Upload
Manuals
Brands
ZyXEL Communications Manuals
Gateway
Prestige 653HWI series
ZyXEL Communications Prestige 653HWI series Manuals
Manuals and User Guides for ZyXEL Communications Prestige 653HWI series. We have
2
ZyXEL Communications Prestige 653HWI series manuals available for free PDF download: User Manual
ZyXEL Communications Prestige 653HWI series User Manual (564 pages)
ADSL Security Gateway with IEEE802.11g and ISDN Backup
Brand:
ZyXEL Communications
| Category:
Gateway
| Size: 18.89 MB
Table of Contents
Copyright
2
Safety Warnings
4
Zyxel Limited Warranty
4
Customer Support
5
Table of Contents
6
List of Figures
14
Preface
26
Syntax Conventions
27
Introduction to DSL
28
Getting Started
29
Chapter 1 Getting to Know Your Prestige
31
Introducing the Prestige 653HWI
31
Features of the Prestige
32
Ipsec Vpn Capability
32
Wep Encryption
33
Traffic Redirect
33
Isdn Interface
33
Dynamic Dns Support
35
Universal Plug and Play (Upnp)
35
Lan/Dmz Interface
35
Protocol Support
36
Network Management
37
Networking Compatibility
37
Applications for the Prestige
38
Figure 1-1 Prestige Internet Access Application
39
Figure 1-2 Firewall Application
40
Vpn Application
40
Figure 1-3 VPN Application
41
Figure 1-4 Prestige LAN-To-LAN Application
42
Chapter 2 Introducing the Web Configurator
43
Web Configurator Overview
43
Accessing the Prestige Web Configurator
43
Figure 2-1 Password Screen
43
Navigating the Prestige Web Configurator
44
Figure 2-2 Web Configurator SITE MAP Screen
44
Resetting the Prestige
45
Figure 2-3 Example Xmodem Upload
46
Chapter 3 Wizard Setup
47
Wizard Setup Introduction
47
Encapsulation
47
Multiplexing
48
VPI and VCI
48
Wizard Setup Configuration: First Screen
48
Figure 3-1 Wizard Screen 1
49
Table 3-1 Wizard Screen 1
49
IP Address and Subnet Mask
50
IP Address Assignment
50
Ip Assignment with Pppoa or Pppoe Encapsulation
51
Ip Assignment with Rfc 1483 Encapsulation
51
Ip Assignment with Enet Encap Encapsulation
51
Private Ip Addresses
51
Nailed-Up Connection (PPP)
52
Nat
52
Wizard Setup Configuration: Second Screen
52
Figure 3-2 Internet Connection with Pppoe
52
Table 3-2 Internet Connection with Pppoe
53
Figure 3-3 Internet Connection with RFC 1483
54
Table 3-3 Internet Connection with RFC 1483
54
Figure 3-4 Internet Connection with ENET ENCAP
55
Table 3-4 Internet Connection with ENET ENCAP
55
Figure 3-5 Internet Connection with Pppoa
56
DHCP Setup
57
Table 3-5 Internet Connection with Pppoa
57
Wizard Setup Configuration: Third Screen
58
Figure 3-6 Wizard Screen 3
58
Ip Pool Setup
58
Figure 3-7 Wizard: LAN Configuration
59
Table 3-6 Wizard: LAN Configuration
59
Wizard Setup Configuration: Connection Tests
60
Figure 3-8 Wizard Screen 4
60
Test Your Internet Connection
61
Password, LAN, Wireless LAN and WAN
63
Chapter 4 Password Setup
65
Password Overview
65
Configuring Password
65
Figure 4-1 Password
65
Table 4-1 Password
65
Chapter 5 LAN Setup
67
LAN Overview
67
DNS Server Address
67
Figure 5-1 LAN and WAN IP Addresses
67
DNS Server Address Assignment
68
Lan Tcp/Ip
68
Factory Lan Defaults
68
Rip Setup
69
Configuring LAN
70
Table 5-1 LAN
71
Chapter 6 Wireless LAN Setup
73
Wireless LAN Overview
73
Ess ID
73
Figure 6-1 RTS Threshold
74
Levels of Security
75
Figure 6-2 Prestige Wireless Security Levels
75
Data Encryption with WEP
76
Figure 6-3 Wireless
76
Table 6-1 Wireless
77
Configuring MAC Filter
78
Figure 6-4 MAC Address Filter
79
Network Authentication
80
Table 6-2 MAC Address Filter
80
Eap Authentication Overview
81
Types of Radius Messages
81
Configuring 802.1X
82
Figure 6-5 EAP Authentication
82
Figure 6-6 802.1X
82
Table 6-3 802.1X
83
Configuring Local User Authentication
84
Figure 6-7 Local User Database
85
Configuring RADIUS
86
Figure 6-8 RADIUS
86
Table 6-4 Local User Database
86
Table 6-5 RADIUS
87
Chapter 7 WAN Setup
89
WAN Overview
89
Isdn
89
Netcapi
89
Metric
90
Pppoe Encapsulation
90
Traffic Shaping
91
Configuring WAN Functions
92
Figure 7-1 Example of Traffic Shaping
92
Figure 7-2 WAN Functions
92
Table 7-1 WAN Functions
93
Configuring WAN DSL Setup
94
Figure 7-3 WAN DSL Setup
94
Table 7-2 WAN DSL Setup
95
ISDN Connection Setup
98
Figure 7-4 ISDN Connection Setup
98
Table 7-3 ISDN Connection Setup
99
ISDN Dial in Setup
101
Figure 7-5 ISDN Dial in Setup
101
Configuring Netcapi
103
Figure 7-6 Configuring Netcapi
103
Table 7-5 Configuring Netcapi
104
Figure 7-7 Configuration Example
105
WAN Backup
106
Traffic Redirect on the LAN
106
Traffic Redirect on the WAN
106
Figure 7-8 Traffic Redirect Setup Example
106
Figure 7-9 Traffic Redirect WAN Setup
107
Figure 7-10 Traffic Redirect LAN Setup
108
Configuring WAN Backup
109
Figure 7-11 WAN Backup Setup
109
Table 7-6 WAN Backup Setup
110
NAT, Dynamic DNS and Time Zone
113
Chapter 8 Network Address Translation (NAT) Screens
115
NAT Overview
115
Table 8-1 NAT Definitions
115
What Nat Does
116
How Nat Works
116
Figure 8-1 How NAT Works
117
Figure 8-2 NAT Application with IP Alias
118
SUA (Single User Account) Versus NAT
119
Table 8-2 NAT Mapping Types
119
SUA Server
120
Table 8-3 Services and Port Numbers
121
Selecting the NAT Mode
122
Figure 8-3 Multiple Servers Behind NAT Example
122
Figure 8-4 NAT Mode
122
Configuring SUA Server
123
Table 8-4 NAT Mode
123
Figure 8-5 Edit SUA/NAT Server Set
124
Table 8-5 Edit SUA/NAT Server Set
124
Configuring Address Mapping
125
Figure 8-6 Address Mapping Rules
125
Editing an Address Mapping Rule
126
Table 8-6 Address Mapping Rules
126
Figure 8-7 Address Mapping Rule Edit
127
Table 8-7 Address Mapping Rule Edit
127
Chapter 9 Dynamic DNS Setup
129
Dynamic DNS
129
Configuring Dynamic DNS
129
Figure 9-1 DDNS
130
Table 9-1 DDNS
130
Chapter 10 Time Zone
131
Configuring Time Zone
131
Figure 10-1 Time/Date
131
Table 10-1 Time/Date
132
Firewall and Content Filters
135
Chapter 11 Firewalls
137
Firewall Overview
137
Types of Firewalls
137
Introduction to Zyxel's Firewall
138
Denial of Service
139
Figure 11-1 Prestige Firewall Application
139
Table 11-1 Common IP Ports
140
Figure 11-2 Three-Way Handshake
141
Figure 11-3 SYN Flood
141
Figure 11-4 Smurf Attack
142
Table 11-2 ICMP Commands that Trigger Alerts
142
Stateful Inspection
143
Table 11-3 Legal Netbios Commands
143
Table 11-4 Legal SMTP Commands
143
Figure 11-5 Stateful Inspection
144
Stateful Inspection and the Prestige
145
Tcp Security
146
Udp/Icmp Security
146
Guidelines for Enhancing Security with Your Firewall
147
Upper Layer Protocols
147
Packet Filtering Vs Firewall
148
When to Use Filtering
149
When to Use the Firewall
149
Chapter 12 Firewall Configuration
151
Remote Management and the Firewall
151
Enabling the Firewall
151
Figure 12-1 Enabling the Firewall
151
Attack Alert
152
Threshold Values
152
Tcp Maximum Incomplete and Blocking Time
153
Figure 12-2 Attack Alert
154
Table 12-1 Attack Alert
154
Chapter 13 Creating Custom Rules
157
Rules Overview
157
Rule Logic Overview
157
Rule Checklist
157
Security Ramifications
158
Key Fields for Configuring Rules
158
Connection Direction
159
Source Address
159
Figure 13-1 LAN to WAN Traffic
160
Logs
161
Rule Summary
161
Figure 13-2 WAN to LAN Traffic
161
Figure 13-3 Firewall Rules Summary: First Screen
162
Table 13-1 Firewall Rules Summary: First Screen
162
Predefined Services
163
Table 13-2 Predefined Services
164
Creating/Editing Firewall Rules
166
Figure 13-4 Creating/Editing a Firewall Rule
167
Table 13-3 Creating/Editing a Firewall Rule
167
Source and Destination Addresses
168
Timeout
169
Figure 13-5 Adding/Editing Source and Destination Addresses
169
Table 13-4 Adding/Editing Source and Destination Addresses
169
Figure 13-6 Timeout
170
Table 13-5 Timeout
170
Chapter 14 Customized Services
173
Introduction to Customized Services
173
Figure 14-1 Customized Services
173
Creating/Editing a Customized Service
174
Figure 14-2 Creating/Editing a Customized Service
174
Table 14-1 Customized Services
174
Example Custom Service Firewall Rule
175
Table 14-2 Creating/Editing a Customized Service
175
Figure 14-3 Configure Source IP Example
176
Figure 14-4 Customized Service for Myservice Example
176
Figure 14-5 Syslog Rule Configuration Example
177
Figure 14-6 Rule Summary Example
178
Chapter 15 Content Filtering Screens
179
Content Filtering Overview
179
Configuring Keyword Blocking
179
Figure 15-1 Content Filter: Keyword
180
Table 15-1 Content Filter: Keyword
180
Configuring the Schedule
181
Figure 15-2 Content Filter: Schedule
181
Configuring Trusted Computers
182
Figure 15-3 Content Filter: Trusted
182
Table 15-2 Content Filter: Schedule
182
Table 15-3 Content Filter: Trusted
182
Vpn/Ipsec
185
Chapter 16 Introduction to Ipsec
187
VPN Overview
187
Security Association
187
Figure 16-1 Encryption and Decryption
188
Vpn Applications
188
Ipsec Architecture
189
Key Management
189
Encapsulation
190
Ipsec and NAT
190
Transport Mode
190
Tunnel Mode
190
Table 16-1 VPN and NAT
191
Chapter 17 VPN Screens
193
Vpn/Ipsec Overview
193
Ipsec Algorithms
193
My IP Address
194
Secure Gateway Address
194
Table 17-1 AH and ESP
194
VPN Summary Screen
195
Figure 17-1 Ipsec Summary Fields
195
Figure 17-2 VPN Summary
196
Table 17-2 VPN Summary
196
Keep Alive
197
ID Type and Content
197
Table 17-3 Local ID Type and Content Fields
198
Table 17-4 Peer ID Type and Content Fields
198
Table 17-5 Matching ID Type and Content Configuration Example
198
Pre-Shared Key
199
Editing VPN Policies
199
Table 17-6 Mismatching ID Type and Content Configuration Example
199
Figure 17-3 VPN IKE
200
Table 17-7 VPN IKE
201
IKE Phases
205
Figure 17-4 Two Phases to Set up the Ipsec SA
205
Configuring Advanced IKE Settings
206
Figure 17-5 VPN IKE: Advanced
207
Table 17-8 VPN IKE: Advanced
207
Manual Key Setup
210
Configuring Manual Key
211
Figure 17-6 Manual Setup
211
Table 17-9 VPN Manual Setup
212
Viewing SA Monitor
214
Figure 17-7 SA Monitor
215
Table 17-10 SA Monitor
215
Configuring Global Setting
216
Figure 17-8 Global Setting
216
Table 17-11 Global Setting
216
Telecommuter Vpn/Ipsec Examples
217
Table 17-12 Telecommuter and Headquarters Configuration Example
217
Figure 17-9 Telecommuters Sharing One VPN Rule Example
218
VPN and Remote Management
219
Figure 17-10 Telecommuters Using Unique VPN Rules Example
219
Remote Management, Upnp and Logs
221
Chapter 18 Remote Management Configuration
223
Remote Management Overview
223
Telnet
224
Figure 18-1 Telnet Configuration on a TCP/IP Network
224
Ftp
225
Web
225
Configuring Remote Management
225
Figure 18-2 Remote Management
225
Chapter 19 Universal Plug-And-Play (Upnp)
227
Introducing Universal Plug and Play
227
Upnp and Zyxel
228
Figure 19-1 Configuring Upnp
228
Table 19-1 Configuring Upnp
228
Installing Upnp in Windows Example
229
Using Upnp in Windows XP Example
231
Chapter 20 Logs Screens
235
Logs Overview
235
Configuring Log Settings
235
Figure 20-1 Log Settings
236
Table 20-1 Log Settings
237
Displaying the Logs
238
Figure 20-2 View Logs
238
Table 20-2 View Logs
238
SMTP Error Messages
239
Table 20-3 SMTP Error Messages
239
Figure 20-3 E-Mail Log Example
240
Bandwidth Management
241
Chapter 21 Bandwidth Management
243
Bandwidth Management Overview
243
Bandwidth Classes and Filters
243
Proportional Bandwidth Allocation
244
Bandwidth Management Usage Examples
244
Figure 21-1 Application-Based Bandwidth Management Example
244
Figure 21-2 Subnet-Based Bandwidth Management Example
245
Table 21-1 Application and Subnet-Based Bandwidth Management Example
245
Scheduler
246
Maximize Bandwidth Usage
246
Figure 21-3 Application and Subnet-Based Bandwidth Management Example
246
Maximize Bandwidth Usage Example
247
Figure 21-4 Bandwidth Allotment Example
248
Figure 21-5 Maximize Bandwidth Usage Example
248
Bandwidth Borrowing
249
Figure 21-6 Bandwidth Borrowing Example
250
Configuring Summary
251
Figure 21-7 Bandwidth Manager: Summary
252
Table 21-2 Bandwidth Manager: Summary
252
Configuring Class Setup
253
Figure 21-8 Bandwidth Manager: Class Setup
254
Table 21-3 Bandwidth Manager: Class Setup
254
Figure 21-9 Bandwidth Manager: Class Configuration
256
Table 21-4 Bandwidth Manager: Class Configuration
256
Table 21-5 Services and Port Numbers
258
Figure 21-10 Bandwidth Management Statistics
259
Table 21-6 Bandwidth Management Statistics
259
Configuring Monitor
260
Figure 21-11 Bandwidth Manager Monitor
260
Table 21-7 Bandwidth Manager Monitor
260
Maintenance
263
Chapter 22 Maintenance
265
Maintenance Overview
265
System Status Screen
265
Figure 22-1 System Status
266
Table 22-1 System Status
267
Figure 22-2 System Status: Show Statistics
268
Table 22-2 System Status: Show Statistics
269
DHCP Table Screen
270
Figure 22-3 DHCP Table
270
Table 22-3 DHCP Table
270
Wireless Screens
271
Figure 22-4 Association List
271
Table 22-4 Association List
271
Figure 22-5 Channel Usage Table
272
Diagnostic Screens
273
Table 22-5 Channel Usage Table
273
Figure 22-6 Diagnostic General
274
Table 22-6 Diagnostic General
274
Figure 22-7 Diagnostic DSL Line
275
Table 22-7 Diagnostic DSL Line
275
Figure 22-8 Diagnostic ISDN Line
277
Table 22-8 Diagnostic ISDN Line
277
Firmware Screen
278
Figure 22-9 Firmware Upgrade
279
Table 22-9 Firmware Upgrade
279
Figure 22-10 Network Temporarily Disconnected
280
Figure 22-11 Error Message
280
SMT General Configuration
281
Chapter 23 Introducing the SMT
283
SMT Introduction
283
Figure 23-1 Login Screen
284
Navigating the SMT Interface
285
Figure 23-2 Prestige 653 SMT Menu Overview
285
Table 23-1 Main Menu Commands
286
Figure 23-3 SMT Main Menu
287
Table 23-2 Main Menu Summary
287
Changing the System Password
288
Figure 23-4 Menu 23 System Password
288
Chapter 24 Menu 1 General Setup
289
General Setup
289
Procedure to Configure Menu 1
289
Figure 24-1 Menu 1 General Setup
290
Table 24-1 Menu 1 General Setup
290
Figure 24-2 Menu 1.1 Configure Dynamic DNS
291
Table 24-2 Menu 1.1 Configure Dynamic DNS
291
Chapter 25 Menu 2 WAN Backup Setup
293
Introduction to WAN Backup Setup
293
ISDN Dial Backup
293
Configuring Dial Backup in Menu 2
293
Figure 25-1 Menu 2 WAN Backup Setup
294
Table 25-1 Menu 2 WAN Backup Setup
294
Figure 25-2 Menu 2.1Traffic Redirect Setup
295
Configuring ISDN Dial Backup Setup
296
Figure 25-3 Menu 2.2 IDN Dial Backup Setup
296
Table 25-2 Menu 2.1Traffic Redirect Setup
296
ISDN Advanced Setup Menus
297
Table 25-3 Menu 2 ISDN Dial Backup Setup
297
Figure 25-4 Router Behind a PABX
299
Netcapi Setup Menu
300
Figure 25-5 Menu 2 ISDN Setup for DSS1
300
Figure 25-6 Loopback Test
300
Figure 25-7 Menu 2.2.2 Netcapi Setup
301
Table 25-4 Menu 2.2.2 Netcapi Setup
301
ISDN Remote Node Profile
302
Figure 25-8 Menu 11.1 ISDN Remote Node Profile
302
Table 25-5 Menu 11.1 ISDN Remote Node Profile
302
Editing PPP Options
304
Figure 25-9 Menu 11.2 Remote Node PPP Options
305
Table 25-6 Menu 11.2 Remote Node PPP Options
305
Editing TCP/IP Options
306
Figure 25-10 Menu 11.3 Remote Node Network Layer Options
306
Table 25-7 Menu 11.2 Remote Node PPP Options
307
Editing Login Script
308
Figure 25-11 Menu 11.4 Remote Node Setup Script
309
Table 25-8 Menu 11.4 Remote Node Setup Script
309
Remote Node Filter
310
Figure 25-12 Menu 11.1 Remote Node Profile (Backup ISP)
310
Figure 25-13 Menu 11.5 Dial Backup Remote Node Filter
311
Chapter 26 Menu 3 LAN Setup
313
LAN Setup
313
Figure 26-1 Menu 3 LAN Setup
313
Figure 26-2 Menu 3.1 LAN Port Filter Setup
313
Protocol Dependent Ethernet Setup
314
TCP/IP Ethernet Setup and DHCP
314
Figure 26-3 Menu 3.2 TCP/IP and DHCP Ethernet Setup
314
Table 26-1 DHCP Ethernet Setup Menu Fields
315
Table 26-2 TCP/IP Ethernet Setup Menu Fields
315
Advertisement
ZyXEL Communications Prestige 653HWI series User Manual (562 pages)
ADSL Security Gateway with IEEE802.11g and ISDN Backup
Brand:
ZyXEL Communications
| Category:
Gateway
| Size: 18.58 MB
Table of Contents
Copyright
2
Safety Warnings
4
Zyxel Limited Warranty
4
Customer Support
5
Table of Contents
7
List of Figures
15
List of Charts
31
Preface
33
Syntax Conventions
34
What Is DSL
35
Getting Started
36
Chapter 1 Getting to Know Your Prestige
37
Introducing the Prestige 653HWI
37
Features of the Prestige
37
Ipsec Vpn Capability
37
Traffic Redirect
38
Isdn Interface
39
Dynamic Dns Support
41
Lan/Dmz Interface
41
Protocol Support
42
Networking Compatibility
42
Network Management
43
Applications for the Prestige
44
Figure 1-1 Prestige Internet Access Application
44
Figure 1-2 Firewall Application
45
Vpn Application
45
Figure 1-3 VPN Application
46
Figure 1-4 Prestige LAN-To-LAN Application
47
Chapter 2 Introducing the Web Configurator
49
Web Configurator Overview
49
Accessing the Prestige Web Configurator
49
Navigating the Prestige Web Configurator
50
Figure 2-1 Password Screen
50
Resetting the Prestige
51
Figure 2-2 Web Configurator SITE MAP Screen
51
Figure 2-3 Example Xmodem Upload
52
Chapter 3 Wizard Setup
53
Wizard Setup Introduction
53
Encapsulation
53
Multiplexing
54
VPI and VCI
54
Wizard Setup Configuration: First Screen
54
Figure 3-1 Wizard Screen 1
55
Table 3-1 Wizard Screen 1
55
IP Address and Subnet Mask
56
IP Address Assignment
56
Ip Assignment with Pppoa or Pppoe Encapsulation
57
Ip Assignment with Rfc 1483 Encapsulation
57
Ip Assignment with Enet Encap Encapsulation
57
Private Ip Addresses
57
Nailed-Up Connection (PPP)
58
Nat
58
Wizard Setup Configuration: Second Screen
58
Figure 3-2 Internet Connection with Pppoe
58
Table 3-2 Internet Connection with Pppoe
59
Figure 3-3 Internet Connection with RFC 1483
60
Table 3-3 Internet Connection with RFC 1483
60
Figure 3-4 Internet Connection with ENET ENCAP
61
Table 3-4 Internet Connection with ENET ENCAP
61
Figure 3-5 Internet Connection with Pppoa
62
DHCP Setup
63
Table 3-5 Internet Connection with Pppoa
63
Wizard Setup Configuration: Third Screen
64
Figure 3-6 Wizard Screen 3
64
Ip Pool Setup
64
Figure 3-7 Wizard: LAN Configuration
65
Table 3-6 Wizard: LAN Configuration
65
Wizard Setup Configuration: Connection Tests
66
Figure 3-8 Wizard Screen 4
66
Test Your Internet Connection
67
Password, LAN, Wireless LAN and WAN
68
Chapter 4 Password Setup
69
Password Overview
69
Configuring Password
69
Figure 4-1 Password
69
Table 4-1 Password
69
Chapter 5 LAN Setup
71
LAN Overview
71
DNS Server Address
71
Figure 5-1 LAN and WAN IP Addresses
71
DNS Server Address Assignment
72
Lan Tcp/Ip
72
Factory Lan Defaults
72
Rip Setup
73
Configuring LAN
74
Table 5-1 LAN
75
Chapter 6 Wireless LAN Setup
77
Wireless LAN Overview
77
Ess ID
77
Figure 6-1 RTS Threshold
78
Levels of Security
79
Figure 6-2 Prestige Wireless Security Levels
79
Data Encryption with WEP
80
Figure 6-3 Wireless
80
Table 6-1 Wireless
81
Configuring MAC Filter
82
Figure 6-4 MAC Address Filter
83
Network Authentication
84
Table 6-2 MAC Address Filter
84
Eap Authentication Overview
85
Types of Radius Messages
85
Configuring 802.1X
86
Figure 6-5 EAP Authentication
86
Figure 6-6 802.1X
86
Table 6-3 802.1X
87
Configuring Local User Authentication
88
Figure 6-7 Local User Database
89
Configuring RADIUS
90
Figure 6-8 RADIUS
90
Table 6-4 Local User Database
90
Table 6-5 RADIUS
91
Chapter 7 WAN Setup
93
WAN Overview
93
Isdn
93
Netcapi
93
Metric
94
Pppoe Encapsulation
94
Traffic Shaping
95
Configuring WAN Functions
96
Figure 7-1 Example of Traffic Shaping
96
Figure 7-2 WAN Functions
96
Table 7-1 WAN Functions
97
Configuring WAN DSL Setup
98
Figure 7-3 WAN DSL Setup
98
Table 7-2 WAN DSL Setup
99
ISDN Connection Setup
102
Figure 7-4 ISDN Connection Setup
102
Table 7-3 ISDN Connection Setup
103
ISDN Dial in Setup
105
Figure 7-5 ISDN Dial in Setup
105
Configuring Netcapi
107
Figure 7-6 Configuring Netcapi
107
Table 7-5 Configuring Netcapi
108
Figure 7-7 Configuration Example
109
WAN Backup
110
Traffic Redirect on the LAN
110
Traffic Redirect on the WAN
110
Figure 7-8 Traffic Redirect Setup Example
110
Figure 7-9 Traffic Redirect WAN Setup
111
Figure 7-10 Traffic Redirect LAN Setup
112
Configuring WAN Backup
113
Figure 7-11 WAN Backup Setup
113
Metric
114
Table 7-6 WAN Backup Setup
114
NAT, Dynamic DNS and Time Zone
116
Chapter 8 Network Address Translation (NAT) Screens
117
NAT Overview
117
Table 8-1 NAT Definitions
117
What Nat Does
118
How Nat Works
118
Figure 8-1 How NAT Works
119
Figure 8-2 NAT Application with IP Alias
120
SUA (Single User Account) Versus NAT
121
Table 8-2 NAT Mapping Types
121
SUA Server
122
Table 8-3 Services and Port Numbers
123
Selecting the NAT Mode
124
Figure 8-3 Multiple Servers Behind NAT Example
124
Figure 8-4 NAT Mode
124
Configuring SUA Server
125
Table 8-4 NAT Mode
125
Figure 8-5 Edit SUA/NAT Server Set
126
Table 8-5 Edit SUA/NAT Server Set
126
Configuring Address Mapping
127
Figure 8-6 Address Mapping Rules
127
Editing an Address Mapping Rule
128
Table 8-6 Address Mapping Rules
128
Figure 8-7 Address Mapping Rule Edit
129
Table 8-7 Address Mapping Rule Edit
129
Chapter 9 Dynamic DNS Setup
131
Dynamic DNS
131
Configuring Dynamic DNS
131
Figure 9-1 DDNS
132
Table 9-1 DDNS
132
Chapter 10 Time Zone
133
Configuring Time Zone
133
Figure 10-1 Time/Date
133
Table 10-1 Time/Date
134
Firewall and Content Filters
136
Chapter 11 Firewalls
137
Firewall Overview
137
Types of Firewalls
137
Introduction to Zyxel's Firewall
138
Denial of Service
139
Figure 11-1 Prestige Firewall Application
139
Table 11-1 Common IP Ports
140
Figure 11-2 Three-Way Handshake
141
Figure 11-3 SYN Flood
141
Figure 11-4 Smurf Attack
142
Table 11-2 ICMP Commands that Trigger Alerts
142
Stateful Inspection
143
Table 11-3 Legal Netbios Commands
143
Table 11-4 Legal SMTP Commands
143
Figure 11-5 Stateful Inspection
144
Stateful Inspection and the Prestige
145
Tcp Security
146
Udp/Icmp Security
146
Guidelines for Enhancing Security with Your Firewall
147
Upper Layer Protocols
147
Packet Filtering Vs Firewall
148
When to Use Filtering
149
When to Use the Firewall
149
Chapter 12 Firewall Configuration
151
Remote Management and the Firewall
151
Enabling the Firewall
151
Figure 12-1 Enabling the Firewall
151
Attack Alert
152
Threshold Values
152
Tcp Maximum Incomplete and Blocking Time
153
Figure 12-2 Attack Alert
154
Table 12-1 Attack Alert
154
Chapter 13 Creating Custom Rules
157
Rules Overview
157
Rule Logic Overview
157
Rule Checklist
157
Security Ramifications
158
Key Fields for Configuring Rules
158
Connection Direction
159
Source Address
159
Figure 13-1 LAN to WAN Traffic
160
Logs
161
Rule Summary
161
Figure 13-2 WAN to LAN Traffic
161
Figure 13-3 Firewall Rules Summary: First Screen
162
Table 13-1 Firewall Rules Summary: First Screen
162
Predefined Services
163
Table 13-2 Predefined Services
164
Creating/Editing Firewall Rules
166
Figure 13-4 Creating/Editing a Firewall Rule
167
Table 13-3 Creating/Editing a Firewall Rule
167
Source and Destination Addresses
168
Timeout
169
Figure 13-5 Adding/Editing Source and Destination Addresses
169
Table 13-4 Adding/Editing Source and Destination Addresses
169
Figure 13-6 Timeout
170
Table 13-5 Timeout
170
Chapter 14 Customized Services
173
Introduction to Customized Services
173
Figure 14-1 Customized Services
173
Creating/Editing a Customized Service
174
Figure 14-2 Creating/Editing a Customized Service
174
Table 14-1 Customized Services
174
Example Custom Service Firewall Rule
175
Table 14-2 Creating/Editing a Customized Service
175
Figure 14-3 Configure Source IP Example
176
Figure 14-4 Customized Service for Myservice Example
176
Figure 14-5 Syslog Rule Configuration Example
177
Figure 14-6 Rule Summary Example
178
Chapter 15 Content Filtering Screens
179
Content Filtering Overview
179
Configuring Keyword Blocking
179
Figure 15-1 Content Filter: Keyword
180
Table 15-1 Content Filter: Keyword
180
Configuring the Schedule
181
Figure 15-2 Content Filter: Schedule
181
Configuring Trusted Computers
182
Figure 15-3 Content Filter: Trusted
182
Table 15-2 Content Filter: Schedule
182
Table 15-3 Content Filter: Trusted
182
Vpn/Ipsec
184
Chapter 16 Introduction to Ipsec
185
VPN Overview
185
Security Association
185
Figure 16-1 Encryption and Decryption
186
Vpn Applications
186
Figure 16-2 VPN Application
187
Ipsec Architecture
188
Figure 16-3 Ipsec Architecture
188
Key Management
188
Encapsulation
189
Ipsec and NAT
189
Figure 16-4 Transport and Tunnel Mode Ipsec Encapsulation
189
Transport Mode
189
Tunnel Mode
189
Table 16-1 VPN and NAT
190
Chapter 17 VPN Screens
191
Vpn/Ipsec Overview
191
Ipsec Algorithms
191
My IP Address
192
Secure Gateway Address
192
Table 17-1 AH and ESP
192
VPN Summary Screen
193
Figure 17-1 Ipsec Summary Fields
193
Figure 17-2 VPN Summary
194
Table 17-2 VPN Summary
194
Keep Alive
195
ID Type and Content
195
Table 17-3 Local ID Type and Content Fields
196
Table 17-4 Peer ID Type and Content Fields
196
Table 17-5 Matching ID Type and Content Configuration Example
196
Pre-Shared Key
197
Editing VPN Policies
197
Table 17-6 Mismatching ID Type and Content Configuration Example
197
Figure 17-3 VPN IKE
198
Table 17-7 VPN IKE
199
IKE Phases
203
Figure 17-4 Two Phases to Set up the Ipsec SA
203
Configuring Advanced IKE Settings
204
Figure 17-5 VPN IKE: Advanced
205
Table 17-8 VPN IKE: Advanced
205
Manual Key Setup
208
Configuring Manual Key
209
Figure 17-6 Manual Setup
209
Viewing SA Monitor
212
Figure 17-7 SA Monitor
213
Table 17-10 SA Monitor
213
Configuring Global Setting
214
Figure 17-8 Global Setting
214
Table 17-11 Global Setting
214
Telecommuter Vpn/Ipsec Examples
215
Table 17-12 Telecommuter and Headquarters Configuration Example
215
Figure 17-9 Telecommuters Sharing One VPN Rule Example
216
VPN and Remote Management
217
Figure 17-10 Telecommuters Using Unique VPN Rules Example
217
Remote Management, Upnp and Logs
220
Chapter 18 Remote Management Configuration
221
Remote Management Overview
221
Telnet
222
Figure 18-1 Telnet Configuration on a TCP/IP Network
222
Ftp
223
Web
223
Configuring Remote Management
223
Figure 18-2 Remote Management
223
Chapter 19 Universal Plug-And-Play (Upnp)
225
Introducing Universal Plug and Play
225
Upnp and Zyxel
226
Figure 19-1 Configuring Upnp
226
Table 19-1 Configuring Upnp
226
Installing Upnp in Windows Example
227
Using Upnp in Windows XP Example
229
Chapter 20 Logs Screens
233
Logs Overview
233
Configuring Log Settings
233
Figure 20-1 Log Settings
234
Table 20-1 Log Settings
235
Displaying the Logs
236
Figure 20-2 View Logs
236
Table 20-2 View Logs
236
SMTP Error Messages
237
Table 20-3 SMTP Error Messages
237
Figure 20-3 E-Mail Log Example
238
Bandwidth Management
240
Chapter 21 Bandwidth Management
241
Bandwidth Management Overview
241
Bandwidth Classes and Filters
241
Proportional Bandwidth Allocation
242
Bandwidth Management Usage Examples
242
Figure 21-1 Application-Based Bandwidth Management Example
242
Figure 21-2 Subnet-Based Bandwidth Management Example
243
Table 21-1 Application and Subnet-Based Bandwidth Management Example
243
Scheduler
244
Maximize Bandwidth Usage
244
Figure 21-3 Application and Subnet-Based Bandwidth Management Example
244
Maximize Bandwidth Usage Example
245
Figure 21-4 Bandwidth Allotment Example
246
Figure 21-5 Maximize Bandwidth Usage Example
246
Bandwidth Borrowing
247
Figure 21-6 Bandwidth Borrowing Example
248
Configuring Summary
249
Figure 21-7 Bandwidth Manager: Summary
250
Table 21-2 Bandwidth Manager: Summary
250
Configuring Class Setup
251
Figure 21-8 Bandwidth Manager: Class Setup
252
Table 21-3 Bandwidth Manager: Class Setup
252
Figure 21-9 Bandwidth Manager: Class Configuration
254
Table 21-4 Bandwidth Manager: Class Configuration
254
Table 21-5 Services and Port Numbers
256
Figure 21-10 Bandwidth Management Statistics
257
Table 21-6 Bandwidth Management Statistics
257
Configuring Monitor
258
Figure 21-11 Bandwidth Manager Monitor
258
Table 21-7 Bandwidth Manager Monitor
258
Maintenance
260
Chapter 22 Maintenance
261
Maintenance Overview
261
System Status Screen
261
Figure 22-1 System Status
262
Table 22-1 System Status
263
Figure 22-2 System Status: Show Statistics
264
Table 22-2 System Status: Show Statistics
265
DHCP Table Screen
266
Figure 22-3 DHCP Table
266
Table 22-3 DHCP Table
266
Wireless Screens
267
Figure 22-4 Association List
267
Table 22-4 Association List
267
Figure 22-5 Channel Usage Table
268
Diagnostic Screens
269
Table 22-5 Channel Usage Table
269
Figure 22-6 Diagnostic General
270
Table 22-6 Diagnostic General
270
Figure 22-7 Diagnostic DSL Line
271
Table 22-7 Diagnostic DSL Line
271
Figure 22-8 Diagnostic ISDN Line
273
Table 22-8 Diagnostic ISDN Line
273
Firmware Screen
274
Figure 22-9 Firmware Upgrade
275
Table 22-9 Firmware Upgrade
275
Figure 22-10 Network Temporarily Disconnected
276
Figure 22-11 Error Message
276
SMT General Configuration
277
Chapter 23 Introducing the SMT
279
SMT Introduction
279
Figure 23-1 Login Screen
280
Navigating the SMT Interface
281
Figure 23-2 Prestige 653 SMT Menu Overview
281
Table 23-1 Main Menu Commands
282
Figure 23-3 SMT Main Menu
283
Table 23-2 Main Menu Summary
283
Changing the System Password
284
Figure 23-4 Menu 23 System Password
284
Chapter 24 Menu 1 General Setup
285
General Setup
285
Procedure to Configure Menu 1
285
Figure 24-1 Menu 1 General Setup
286
Table 24-1 Menu 1 General Setup
286
Figure 24-2 Menu 1.1 Configure Dynamic DNS
287
Table 24-2 Menu 1.1 Configure Dynamic DNS
287
Chapter 25 Menu 2 WAN Backup Setup
289
Introduction to WAN Backup Setup
289
ISDN Dial Backup
289
Configuring Dial Backup in Menu 2
289
Figure 25-1 Menu 2 WAN Backup Setup
290
Table 25-1 Menu 2 WAN Backup Setup
290
Figure 25-2 Menu 2.1Traffic Redirect Setup
291
Configuring ISDN Dial Backup Setup
292
Figure 25-3 Menu 2.2 IDN Dial Backup Setup
292
Table 25-2 Menu 2.1Traffic Redirect Setup
292
ISDN Advanced Setup Menus
293
Table 25-3 Menu 2 ISDN Dial Backup Setup
293
Figure 25-4 Router Behind a PABX
295
Netcapi Setup Menu
296
Figure 25-5 Menu 2 ISDN Setup for DSS1
296
Figure 25-6 Loopback Test
296
Figure 25-7 Menu 2.2.2 Netcapi Setup
297
Table 25-4 Menu 2.2.2 Netcapi Setup
297
ISDN Remote Node Profile
298
Figure 25-8 Menu 11.1 ISDN Remote Node Profile
298
Table 25-5 Menu 11.1 ISDN Remote Node Profile
298
Editing PPP Options
300
Figure 25-9 Menu 11.2 Remote Node PPP Options
301
Table 25-6 Menu 11.2 Remote Node PPP Options
301
Editing TCP/IP Options
302
Figure 25-10 Menu 11.3 Remote Node Network Layer Options
302
Table 25-7 Menu 11.2 Remote Node PPP Options
303
Editing Login Script
304
Figure 25-11 Menu 11.4 Remote Node Setup Script
305
Table 25-8 Menu 11.4 Remote Node Setup Script
305
Remote Node Filter
306
Figure 25-12 Menu 11.1 Remote Node Profile (Backup ISP)
306
Figure 25-13 Menu 11.5 Dial Backup Remote Node Filter
307
Advertisement
Related Products
ZyXEL Communications PRESTIGE 653HX
ZyXEL Communications Prestige 662H Series
ZyXEL Communications Prestige 662HW Series
ZyXEL Communications ADSL2+ Ethernet/USB Gateway 660RU-Tx Series
ZyXEL Communications PRESTIGE 660RU Series
ZyXEL Communications Prestige 660W/HW Series
ZyXEL Communications Prestige 661WH Series
ZyXEL Communications Prestige 660W Series
ZyXEL Communications Prestige 660RU-T Series
ZyXEL Communications Prestige HW Series
ZyXEL Communications Categories
Gateway
Network Router
Switch
Wireless Router
Adapter
More ZyXEL Communications Manuals
Login
Sign In
OR
Sign in with Facebook
Sign in with Google
Upload manual
Upload from disk
Upload from URL