f f f f o o o o r r r r d d d d a a a a t t t t a a a a c c c c o o o o m m m m m m m m u u u u n n n n i i i i c c c c a a a a t t t t i i i i o o o o n n n n
Page 1
Netopia R2020 Dual Analog Router f f f f o o o o r r r r d d d d a a a a t t t t a a a a c c c c o o o o m m m m m m m m u u u u n n n n i i i i c c c c a a a a t t t t i i i i o o o o n n n n...
Page 2
This manual and any associated artwork, software and product designs are copyrighted with all rights reserved. Under the copyright laws such materials may not be copied, in whole or part, without the prior written consent of Netopia, Inc. Under the law, copying includes translation to another language or format.
C C C C o o o o n n n n t t t t e e e e n n n n t t t t s s s s Welcome to the Netopia R2020 Dual Analog Router User’s Reference Guide . This guide is designed to be your single source for information about your Netopia R2020 Dual Analog Router.
Page 4
User’s Reference Guide Sharing the Connection ... 3-9 Configuring TCP/IP on Windows 95, 98, or NT computers ... 3-9 Configuring TCP/IP on Macintosh computers ... 3-13 Chapter 4 — Connecting Your Local Area Network ...4-1 Overview ... 4-1 Readying computers on your local network... 4-1 Connecting to an Ethernet network...
Page 5
Navigating through the System Configuration screens... 7-8 System Configuration features ... 7-8 Network Protocols Setup... 7-10 Filter Sets (Firewalls) ... 7-10 IP Address Serving ... 7-11 Date and Time ... 7-11 Console Configuration... 7-11 SNMP (Simple Network Management Protocol) ... 7-12 Security ...
Page 6
User’s Reference Guide Encryption support ... 9-7 VPN Default Answer Profile ... 9-8 VPN QuickView ... 9-9 Dial-Up Networking for VPN ... 9-10 Installing Dial-Up Networking ... 9-10 Creating a new Dial-Up Networking profile ... 9-11 Configuring a Dial-Up Networking profile ... 9-12 Installing the VPN Client ...
Page 10
ISP’s Point of presence ... B-2 Endorsements ... B-2 Deciding on an ISP account ... B-2 Setting up a Netopia R2020 account ... B-2 Obtaining an IP host address ... B-2 SmartIP™ ... B-3 Obtaining information from the ISP... B-3 Local LAN IP address information to obtain (NAT enabled) ...
Page 11
Example: Working with a Class C subnet ... C-5 Distributing IP addresses ... C-5 Technical note on subnet masking... C-6 Configuration ... C-7 Manually distributing IP addresses ... C-8 Using address serving ... C-8 Tips and rules for distributing IP addresses... C-9 Nested IP subnets ...
Configuration options for your Netopia R2020 Dual Analog The Netopia R2020 can be used in different ways depending on your needs. In general, you will probably want to use it in one or more of the following ways: (Click on one of these links) “1.
For Small Office connections to the Internet, using a single dynamic IP address with Network Address Translation (NAT) enabled, you should use the following configuration option: the SmartStart™ Wizard, included on your Netopia R2020 CD. This is the fastest and simplest way to get you up and running with the minimum difficulty.
Page 15
2. Small Office connection to the Internet For Small Office connections to the Internet, using a block of IP addresses (Network Address Translation disabled), you should use the following configuration tool: Easy Setup configuration using console-based management. This option allows maximum flexibility for experienced users and administrators.
For direct connections to a Corporate Office, you can use either one of two configuration options: If you will be using Network Address Translation, use the SmartStart™ Wizard, included on your Netopia R2020 CD. For instructions on this option, see on page 3-3.
4. Configured to accept incoming dial-up connections To configure the Netopia R2020 to accept incoming dial-up connections, you should use the following configuration method: To create one or more dial-in Connection Profiles for each dial-in user, see new Connection Profile” on page You do this using console-based management.
5. Configured for two onboard and one external modem on the Auxiliary port To configure the Netopia R2020 to use the two onboard modems and a third external modem on the Auxiliary serial port, you should use the following configuration options. This might be done to allow three separate simultaneous dial-in/dial-out connections or one or two aggregated dial-in/dial-out calls using Multilink PPP.
Page 19
P P P P a a a a r r r r t t t t I I I I : : : : G G G G e e e e t t t t t t t t i i i i n n n n g g g g S S S S t t t t a a a a r r r r t t t t e e e e d d d d...
The Netopia R2020 Dual Analog Router is a full-featured, stand-alone, multiprotocol router for connecting diverse local area networks (LANs) to the Internet and other remote networks. The Netopia R2020 Dual Analog Router uses two 56Kbps V.90 modems communicating over standard analog telephone lines to provide your whole network with a high-speed connection to the outside world.
How to use this guide This guide is designed to be your single source for information about your Netopia R2020 Dual Analog Router. It is intended to be viewed on-line, using the powerful features of the Adobe Acrobat Reader. The information display has been deliberately designed to present the maximum information in the minimum space on your screen.
Cable length and network size limitations when expanding networks For small networks, install the Netopia R2020 near one of the LANs. For large networks, you can install the Netopia R2020 in a wiring closet or a central network administration site.
Windows and Macintosh, ZTerm terminal emulator software and NCSA Telnet 2.6 for Macintosh You will need: A Windows 95-based PC or a Macintosh with Ethernet connectivity for configuring the Netopia R2020. This may be built-in Ethernet or an add-on card, with TCP/IP installed and configured. See SmartStart”...
Page 25
Netopia R2020 are powered ON. the computer running SmartStart and the Netopia R2020 to be configured must be on the same Ether- net segment; there can be no intervening routers. Repeaters, such as 10Base-T hubs, are acceptable.
2-4 User’s Reference Guide Netopia R2020 Dual Analog Router Back Panel Ports The figure below displays the back of the Netopia R2020 Dual Analog Router. Netopia R2020 Dual Analog Router back panel Ethernet Crossover switch 8 port Ethernet hub Line ports...
Page 27
The following table describes all the Netopia R2020 Dual Analog Router back panel ports. Port Power port a mini-DIN8 power adapter cable connection. Line 1 port a red RJ-11 telephone jack labelled “Line 1". Console port a DE-9 Console port for a direct serial connection to the console screens. You may use this if you are an experienced user and choose not to use SmartStart.
2-6 User’s Reference Guide Netopia R2020 Dual Analog Router Status Lights The figure below represents the Netopia R2020 status light (LED) panel. Netopia R2020 LED front panel 2 3 4 5 WAN 1 The following table summarizes the meaning of the various LED states and colors: When this happens...
IP address assign an IP address to your router allow you to register with a new ISP if you don’t already have one. For a list of ISPs that support Netopia Routers in North America, see the Netopia website at http://www.netopia.com.
Page 30
SmartStart, in case you do not want to use the dynamic addressing features built in to the Netopia Router and need to restore the fixed IP address.
The SmartStart Wizard presents a series of screens to guide you through the preliminary configuration of a Netopia R2020. It will then create a connection profile using the information you supply to it. Welcome screen. The first screen welcomes you to the SmartStart Wizard configuration utility.
Check your cable connections. Be sure you have connected the router and the computer properly, using the correct cables. Refer to the Step 1 “Connect the Router” sheet in your Netopia R2020 documentation folio. Make sure the router is turned on and that there is an Ethernet connection between your computer and the router.
Page 33
ISP Automation or Manual Entry. Options are explained below. Make your selection and click Next. If you select ISP Automation, SmartStart offers you the option of choosing one of several Netopia ISP partners that support the Netopia R2020. You then see the page 3-5.
Page 34
3-6 User’s Reference Guide with: Your dial-up number, sometimes referred to as an ISP POP number Your Login name and Password. (These are case-sensitive.) Note: Your ISP may provide you with additional values such as “Remote IP Gateway” or “Subnet Mask.” These entries are not required for the SmartStart Wizard to configure your router.
Page 35
Connection Profile Test screen. SmartStart tests your connection profile by attempting to connect to your ISP. To test the connection profile with your ISP, click Next. While the test is running, SmartStart reports its progress in a brief succession of dialog boxes as described below. Available Line Test Progress screen.
It is also found in your documentation folio. Note: Forcing a new IP address may turn off the Netopia R2020’s IP address serving capabilities, if you assign an IP address and subnet mask outside the router’s current IP address serving pool.
The TCP/IP protocol must be “bound” to the adapter or card Dynamic configuration (recommended) If you configure your Netopia R2020 using SmartStart, you can accept the dynamic IP address assigned by your router. The Dynamic Host Configuration Protocol (DHCP) server, which enables dynamic addressing, is enabled by default in the router.
Page 38
DNS will be assigned by the router with DHCP. Click OK in this window, and the next window. When prompted, reboot the computer. Note: You can also use these instructions to configure other computers on your network to accept IP addresses served by the Netopia R2020.
Page 39
Static configuration (optional) If you are manually configuring for a fixed or static IP address, perform the following: Go to Start Menu/Settings/Control Panels and double click the Network icon. From the Network components list, select the Configuration tab. Select TCP/IP-->Your Network Card. Then select Properties. In the TCP/IP Properties screen (shown below), select the IP Address tab.
Page 40
Click on the Gateway tab (shown below). Under “New gateway,” enter 192.168.1.1. Click Add. This is the Netopia R2020’s pre-assigned IP address. Click OK in this window, and the next window. When prompted, reboot the computer. Note: You can also use these instructions to configure other computers on your network with manual or static IP addresses.
Macintosh. Dynamic configuration (recommended) If you configure your Netopia R2020 using SmartStart, you can accept the dynamic IP address assigned by your router. The Dynamic Host Configuration Protocol (DHCP), which enables dynamic addressing, is enabled by default in the router. To configure your Macintosh computer for dynamic addressing do the following: Go to the Apple menu.
Page 42
3-14 User’s Reference Guide Static configuration (optional) If you are manually configuring for a fixed or static IP address, perform the following: Go to the Apple menu. Select Control Panels and then TCP/IP or MacTCP. With the TCP/IP window open, go to the Edit menu and select User Mode.
Page 43
If you want to use MacIP to dynamically assign IP addresses to the Macintosh computers on your network you must install the optional AppleTalk feature set kit. Note: You cannot use MacIP dynamic configuration to configure your Netopia R2020 Dual Analog Router because you must first configure the router in order to enable AppleTalk.
Page 44
These are the only fields you need to modify in these screens. Note: More information about configuring your Macintosh computer for TCP/IP connectivity through a Netopia R2020 can be found in Technote NIR_026, “Open Transport and Netopia Routers,” located on the Netopia Web site.
Before connecting the Netopia R2020 to any AppleTalk LANs that contain other AppleTalk routers, you should read “Routers and seeding” on page 12-3. See the sections later in this chapter for details on how to connect the Netopia R2020 to different types of networks. Readying computers on your local network PC and Macintosh computers must have certain components installed before they can communicate through the Netopia R2020.
Page 46
TCP/IP stack: This is the software that lets your PC or Macintosh communicate using Internet protocols. TCP/IP stacks must be configured with some of the same information you used to configure the Netopia R2020. There are a number of TCP/IP stacks available for PC computers. Windows 95 includes a built-in TCP/IP stack. See “Configuring TCP/IP on Windows 95, 98, or NT computers”...
The Netopia R2020 supports Ethernet connections through its eight Ethernet ports. The Router automatically detects which Ethernet port is in use. 10Base-T You can connect a standard 10Base-T Ethernet network to the Netopia R2020 using any of its available Ethernet ports. Netopia R2020 back panel...
4-4 User’s Reference Guide If you add devices connected through a hub, connect the hub to Ethernet port number 1 on the Netopia R2020 and set the Normal/Uplink switch to Uplink. Macintosh Adding an external modem You may wish to add a third (external) modem to gain additional speed for your Internet connection. You will need to obtain the special external modem cable either from your reseller or directly from Netopia.
HD-15 (female) Connect the male HD-15 end of the LocalTalk cable to the Auxiliary port on your Netopia R2020. Connect the other end of the cable to your LocalTalk network. You can use only one connection on the Auxiliary port. You cannot use both the PhoneNET connector and an external modem.
4-6 User’s Reference Guide Wiring guidelines for PhoneNET cabling Topology daisy chain backbone 4-branch passive star* LocalTalk StarController 12-branch active star * distance is per branch For detailed configuration instructions see 22 gauge 24 gauge .642 mm .510 mm 4500 ft. 3000 ft.
C C C C o o o o n n n n s s s s o o o o l l l l e e e e - - - - b b b b a a a a s s s s e e e e d d d d M M M M a a a a n n n n a a a a g g g g e e e e m m m m e e e e n n n n t t t t Console-based management is a menu-driven interface for the capabilities built in to the Netopia R2020.
“Quick View status overview” on page 13-1 Connecting through a Telnet session Features of the Netopia R2020 may be configured through the console screens. Before you can access the console screens through Telnet, you must have: a network connection locally to the router or IP access to the router through the WAN port. This could be the same connection as the one you used with SmartStart.
ZTerm, included on the Netopia CD, for the Macintosh. The Netopia R2020 back panel has a connector labeled “Console” for attaching the Router to either a PC or Macintosh computer via the serial port on the computer. (On a Macintosh, the serial port is called the Modem port or the Printer port.) This connection lets you use the computer to configure and monitor the Netopia R2020...
The new baud rate is displayed at the bottom of the screen. Navigating through the console screens Use your keyboard to navigate the Netopia R2020’s configuration screens, enter and edit information, and make choices. The following table lists the keys to use to navigate through the console screens.
E E E E a a a a s s s s y y y y S S S S e e e e t t t t u u u u p p p p This chapter describes how to use the Easy Setup console screens on your Netopia R2020 Dual Analog Router.
Page 56
If you do not see the Main Menu, verify that: the computer used to view the console screen has its serial port connected to the Netopia R2020’s “Console” port or an Ethernet connection to one of its Ethernet ports. See console cable to your router”...
ISP or a corporate site. On a Netopia R2020 Dual Analog Router you can add up to 15 more connection profiles, for a total of 16. See “Creating a new Connection Profile” on page Select Number to Dial and enter the telephone number you received from your ISP.
However, you may enter another address if you want to use static addressing. When using numbered interfaces, the Netopia Router will use its local WAN IP address and subnet mask to send packets to the remote router. Both routers have WAN IP addresses and subnet masks associated with the connection.
Page 59
Select Primary Domain Name Server and enter the IP address your ISP has given you. The Default IP Gateway defaults to the remote IP address you entered in the Easy Setup connection profile. If the Netopia Router does not recognize the destination of any IP traffic, it forwards that traffic to this gateway.
PREVIOUS SCREEN Configure a Configuration Access Name and Password here. The final step in configuring the Easy Setup console screens is to restart the Netopia R2020, so the configuration settings take effect. Select RESTART DEVICE. A prompt asks you to confirm your choice.
Page 61
P P P P a a a a r r r r t t t t I I I I I I I I : : : : A A A A d d d d v v v v a a a a n n n n c c c c e e e e d d d d C C C C o o o o n n n n f f f f i i i i g g g g u u u u r r r r a a a a t t t t i i i i o o o o n n n n...
This chapter describes how to use the console-based management screens to access and configure advanced features of your Netopia R2020 Dual Analog Router. You can customize these features for your individual setup. These menus provide a powerful method for experienced users to set up their router’s connection profiles and system configuration.
Configure a new Conn. Profile. Finished? On a Netopia R2020 Dual Analog Router you can add up to 15 more connection profiles, for a total of 16. Select Profile Name and enter a name for this connection profile. It can be any name you wish. For example: the name of your ISP.
Page 65
Select Datalink Options and press Return. The Datalink Options screen appears. Note: The Datalink Options shown below are for the default Data Link Encapsulation method PPP. (For VPN Data Link Options see “Virtual Private Networks” on page Data Compression... Send Authentication... Send User Name: Send Password: Receive User Name:...
Page 66
7-4 User’s Reference Guide Address Translation Enabled: IP Addressing... NAT Rule List... NAT Server List... Local WAN IP Address: Local WAN IP Mask: Remote IP Address: Remote IP Mask: Filter Set... Remove Filter Set Receive RIP: Toggle to Yes if this is a single IP address ISP account. Configure IP requirements for a remote network connection here.
Select Telco Options and press return. the Telco Options screen appears. NOTE: If you are creating a VPN Connection Profile, the Telco Options menu is not used and becomes unavailable. Dial... Dialing Prefix: Number to Dial: Alternate Site to Dial: Dial on Demand: Idle Timeout (seconds): CNA Validation Number:...
Page 68
7-6 User’s Reference Guide +-Profile Name---------------------IP Address----IPX Network-+ +------------------------------------------------------------+ | Easy Setup Profile | Profile 02 +------------------------------------------------------------+ Up/Down Arrow Keys to select, ESC to dismiss, Return/Enter to Edit. Select the connection profile you want to view or edit and press Return. The profile is displayed, and you can change any of the parameters.
5-3) You can also retrieve the Netopia R2020’s configuration information and remotely set its parameters using the Simple Network Management Protocol (see Open a Telnet connection to the IP address you set in the router with SmartStart, for example “192.168.1.1.”...
To go back in this sequence of screens, use the Escape key. System Configuration features SmartStart may be all you need to configure your Netopia R2020. Some users, however, require advanced settings or prefer manual control over the default selections that SmartStart automatically chooses. For these users, the Netopia R2020 provides System Configuration options.
Page 71
To help you determine whether you need to use the System Configuration options, review the following requirements. If you have one or more of these needs, use the System Configuration options described in the later chapters. Two or more outgoing connection profiles to connect to more than one remote location (for example, to connect to the Internet and to a network at another office).
7-10 User’s Reference Guide Layer Category Physical Layer Telco Parameters To access the System Configuration screens, select System Configuration in the Main Menu, then press Return. The System Configuration Menu screen appears: Return/Enter to configure Networking Protocols (such as TCP/IP). Use this screen if you want options beyond Easy Setup.
IP Address Serving These screens allow you to configure IP Address serving on your network by means of DHCP, WANIP, BootP, and with the optional AppleTalk kit, MacIP. Details are given in “IP address serving” on page Date and Time You can set the system’s date and time in the Set Date and Time screen.
You can upgrade your Netopia R2020 by adding new feature sets through the Upgrade Feature Set utility. See the release notes that came with your router or feature set upgrade or visit the Netopia web site at www.netopia.com for information on new feature sets, how to obtain them, and how to install them on your Netopia R2020.
You can specify the UNIX syslog Facility to use by selecting the Facility pop-up. Installing the Syslog client The Goodies folder on the Netopia CD contains a Syslog client daemon program that can be configured to report the WAN events you specified in the Logging Configuration screen.
Page 76
The following screen shows a sample syslog dump of WAN events: April 5 10:14:06 tsnext.netopia.com April 5 10:14:06 tsnext.netopia.com >>Issued Speech Setup Request from our DN: 5108645534 April 5 10:14:06 tsnext.netopia.com April 5 10:14:06 tsnext.netopia.com April 5 10:14:06 tsnext.netopia.com April 5 10:14:06 tsnext.netopia.com >>Issued Speech Setup Request from our DN: 5108645534...
It is also useful for once-only connections that you want to schedule in advance. The Netopia R2020 Dual Analog Router can answer calls as well as initiate them. To answer calls, the Netopia R2020 uses a Default Answer Profile. The Default Answer Profile controls how incoming calls are set up, authenticated, filtered, and more.
Page 78
Enter the optional telephone or Directory Numbers for the two onboard modems to provide the Netopia R2020 with the information needed to establish a two-channel call using MP or BAP. This will advise the remote side of an inbound data call how to connect to a second channel.
Page 79
Allows carrier tones to be heard, as well. You can specify how to use the auxiliary serial port on the Netopia R2020’s back panel. By default, this port is enabled for an external asynchronous modem. If you have installed the optional AppleTalk feature set, then this port defaults to a LocalTalk connection.
Default Answer Profile for Dial-in Connections The Netopia R2020 Dual Analog Router can answer calls as well as initiate them. To answer calls, the Netopia R2020 uses a Default Answer Profile. The Default Answer Profile controls how incoming calls are set up, authenticated, filtered, and more.
Page 81
Required: Authentication is attempted if the calling number is available. If authentication fails, or the calling number is not available, the Netopia Router disconnects the caller. Use this setting if you require all calls to be CNA-authenticated. Calling Number Authentication (CNA), is an application of CallerID. It is a method of verifying that an incoming call is originating from an expected site.
Page 82
If a remote network has a non-standard mask (that is, it uses subnetting), the only way for it to successfully connect to the Netopia Router is by matching a connection profile. In other words, you will have to set up a connection profile for that network.If Must Match a Defined Profile is set to No, you can also set the...
Main Menu You can set a Netopia Router to make scheduled connections using designated connection profiles. This is useful for creating and controlling regularly scheduled periods when the router can be used by hosts on your network. It is also useful for once-only connections that you want to schedule in advance.
Page 84
8-8 User’s Reference Guide Viewing scheduled connections To display a table of view-only scheduled connections, select Display/Change Scheduled Connection in the Scheduled Connections screen. Each scheduled connection occupies one row of the table. +-Days----Begin At---HH:MM---When----Conn. Prof. Name----Enabled-----+ +--------------------------------------------------------------------+ | mtWtfss 08:30PM +--------------------------------------------------------------------+ The first column in the table shows a one-letter representation of the Days of the week, from Monday (M or m) to Sunday (S or s).
Page 85
Scheduled Connection Enable: How Often... Schedule Type... Set Weekly Schedule... Use Connection Profile... ADD SCHEDULED CONNECTION Scheduled Connections dial remote Networks on a Weekly or Once-Only basis. Follow these steps to configure the new scheduled connection: To activate the connection, select Scheduled Connection Enable and toggle it to On. You can make the scheduled connection inactive by toggling Scheduled Connection Enable to Off.
Page 86
8-10 User’s Reference Guide Often is set to Once Only, the item directly below How Often reads Set Once-Only Schedule. Set Weekly Schedule If you set How Often to Weekly, select Set Weekly Schedule and go to the Set Weekly Schedule screen. Select the days for the scheduled connection to occur and toggle them to Yes.
Page 87
Place Call on (MM/DD/YY): Scheduled Window Start Time: AM or PM: Scheduled Window Duration: Select Place Call On (Date) and enter a date in the format MM/DD/YY or MM/DD/YYYY (month, day, year). Note: You must enter the date in the format specified. The slashes are mandatory. For example, the entry 5/7/98 would be accepted as May 7, 1998.
Escape key. Connection Metering The Netopia R2020 offers system-wide and per-Connection Profile enhanced connection metering and budgeting. You use this feature to track first minutes (an ISDN tariff factor) and additional minutes or megabytes per time period for initiated data and voice calls, either through the Web-based management pages or the console-based management screens.
S S S S y y y y s s s s t t t t e e e e m m m m I I I I n n n n f f f f o o o o r r r r m m m m a a a a t t t t i i i i o o o o n n n n p p p p a a a a g g g g e e e e This is the initial page you link to when you connect to the Web-based management pages.
8-14 User’s Reference Guide of the activity for your Frame relay DLCIs. “Connection Status page” on page 8-15 your switched connection. “Connect/Disconnect page” on page 8-16 nection Profiles, allowing you to initiate connections using any one of them. Accounting (for switched interfaces only) If you have a leased line with an unswitched interface, these options do not appear.
Page 91
Managing Data Calls 8-15 C C C C o o o o n n n n n n n n e e e e c c c c t t t t i i i i o o o o n n n n S S S S t t t t a a a a t t t t u u u u s s s s p p p p a a a a g g g g e e e e For switched interface connections, the Connection Status page displays information for your active Connection Profile and, if applicable, any POTS calls currently active.
Page 92
8-16 User’s Reference Guide C C C C o o o o n n n n n n n n e e e e c c c c t t t t / / / / D D D D i i i i s s s s c c c c o o o o n n n n n n n n e e e e c c c c t t t t p p p p a a a a g g g g e e e e The Connect/Disconnect page displays a list of your configured Connection Profiles and allows you to connect or disconnect any of them.
Page 93
R R R R o o o o u u u u t t t t e e e e r r r r B B B B u u u u d d d d g g g g e e e e t t t t C C C C o o o o n n n n f f f f i i i i g g g g u u u u r r r r a a a a t t t t i i i i o o o o n n n n p p p p a a a a g g g g e e e e The Router Budget Configuration page allows you to modify the parameters for your overall connection accounting policy.
8-18 User’s Reference Guide C C C C o o o o n n n n n n n n e e e e c c c c t t t t i i i i o o o o n n n n B B B B u u u u d d d d g g g g e e e e t t t t s s s s p p p p a a a a g g g g e e e e The Connection Budgets page displays information for three budgets or Connection Profiles for tracking and controlling connection usage on a per-Connection Profile basis.
Page 95
C C C C o o o o n n n n n n n n e e e e c c c c t t t t i i i i o o o o n n n n B B B B u u u u d d d d g g g g e e e e t t t t C C C C o o o o n n n n f f f f i i i i g g g g u u u u r r r r a a a a t t t t i i i i o o o o n n n n p p p p a a a a g g g g e e e e You can configure budgets to be: Enforced, meaning that when you reach the usage limit for the assigned time period, the Connection Profile will allow no more connections.
Page 96
8-20 User’s Reference Guide schedule, you choose the day of the month to start it. Click the Submit button to enable your entries and be returned to the Connection Budgets page or click the Cancel button to discard all your entries. Click the Reset button to reset all counters and archives to zero. B B B B u u u u d d d d g g g g e e e e t t t t S S S S t t t t a a a a t t t t i i i i s s s s t t t t i i i i c c c c s s s s p p p p a a a a g g g g e e e e You can view statistics for all of your budgets at once or one at a time.
You can view two different event histories: one for the router’s system and one for the WAN. The Netopia R2020’s built-in battery backup prevents loss of event history from a shutdown or reset.
Page 98
8-22 User’s Reference Guide D D D D e e e e v v v v i i i i c c c c e e e e E E E E v v v v e e e e n n n n t t t t H H H H i i i i s s s s t t t t o o o o r r r r y y y y p p p p a a a a g g g g e e e e You can refresh the Device Event History log by clicking the update this page link.
C C C C o o o o n n n n s s s s o o o o l l l l e e e e - - - - b b b b a a a a s s s s e e e e d d d d m m m m a a a a n n n n a a a a g g g g e e e e m m m m e e e e n n n n t t t t s s s s c c c c r r r r e e e e e e e e n n n n s s s s You access the console-based management screens either by running your Telnet application or your terminal emulator to the serial console.
Page 100
8-24 User’s Reference Guide Name: Use Connection Profile... Enforced: Override: Units: Limit: Time Period... 1st Day of Week... Choose the Connection Profile this budget is for. Configuration is similar to the Web-based management configuration screens. Selecting Use Connection Profile displays a pop-up list of all of your Connection Profiles. Choose the Connection Profile you want this budget to apply to and press Return.
Page 101
Main Menu The Budget Statistics screen appears. Budget Name------First Minutes----Additional Minutes-------Cutoff--Expired Budget 1 Budget 2 Budget 3 You can view statistics for all your budgets at once or one at a time. Budget Name shows the names of your budgets. First Minutes displays the number of first minutes of outbound calls placed during the recording interval.
Page 102
8-26 User’s Reference Guide D D D D a a a a t t t t e e e e a a a a n n n n d d d d t t t t i i i i m m m m e e e e s s s s e e e e t t t t t t t t i i i i n n n n g g g g Note: If you have Connection Budgets configured, changing the date setting will reset the Connection Budgets under one of the following conditions: If the new date is greater than the old date and the new date falls outside of the current budget window;...
(Internet). The Netopia Router can be used in VPNs either to initiate the connection or to answer it. When used in this way, the routers are said to be tunnelling through the public network (Internet). The advantages are that, like your long distance phone call, you don't need a direct line between one computer or LAN and the other, but use the local connections, making it much cheaper;...
Page 104
Netopia’s PPTP implementation is compatible with Microsoft’s and can function as either the client (PAC) or the server (PNS). As a client, a Netopia R-series router can provide all users on a LAN with secure access over the Internet to the resources of another LAN by setting up a tunnel with a Windows NT server running Remote Access Services (RAS) or with another Netopia Router.
Configuring the Netopia Router for use with either of the two protocols is done through the console-based menu screens. Each type is described in its own section: “About PPTP tunnels” on page 9-4 “About ATMP Tunnels” on page 9-16 Your configuration depends on which protocol you (and the router at the other end of your tunnel) will use, and whether or not you will be using the VPN client software in a standalone remote connection.
Page 106
9-4 User’s Reference Guide A A A A b b b b o o o o u u u u t t t t P P P P P P P P T T T T P P P P t t t t u u u u n n n n n n n n e e e e l l l l s s s s To set up a PPTP tunnel, you create a Connection Profile including the IP address and other relevant information for the remote PPTP partner.
Page 107
PPTP Partner IP Address: Tunnel Via Gateway: Data Compression... Authentication... Send Host name: Send Secret: Receive Host name: Receive Secret: Initiate Connections: On Demand: Idle Timeout (seconds): Return accepts * ESC cancels * Left/Right moves insertion point * Del deletes. In this Screen you will configure the GRE/PPTP specific connection params.
Page 108
9-6 User’s Reference Guide initiating a tunnel connection. You can specify a Receive Host Name which is used with the Receive Secret for authenticating a remote PPTP client. You must specify a Receive Secret, used for authenticating the remote PPTP client. You can specify that this router will Initiate Connections (acting as a PAC) or only answer them (acting as a PNS).
Page 109
Netopia’s ATMP implementation supports Data Encryption Standard (DES) data encryption for user data transfer over the ATMP tunnel between two Netopia routers. The encryption option, none or DES, is a selectable option in the ATMP Tunnel Options screen.
Page 110
9-8 User’s Reference Guide V V V V P P P P N N N N D D D D e e e e f f f f a a a a u u u u l l l l t t t t A A A A n n n n s s s s w w w w e e e e r r r r P P P P r r r r o o o o f f f f i i i i l l l l e e e e The WAN Configuration menu offers a VPN Default Answer Profile option.
Page 111
default) if you do not. This applies to both ATMP and PPTP connections. For PPTP tunnel connections only, you must define what type of authentication these connections will use. Select Receive Authentication and press Return. A pop-up menu offers the following options: PAP (the default), CHAP, or MS-CHAP.
Page 112
Microsoft Windows Dial-Up Networking software permits a remote stand-alone workstation to establish a VPN tunnel to a PPTP server such as a Netopia Router located at a central site. Dial-Up Networking also allows a mobile user who may not be connected to a PAC to dial into an intermediate ISP and establish a VPN tunnel to, for example, a corporate headquarters, remotely.
Page 113
The Communications window appears. In the Communications window, select Dial-Up Networking and click the OK button. This returns you to the Windows Setup screen. Click the OK button. Respond to the prompts to install Dial-Up Networking from the system disks or CDROM. When prompted, reboot your PC.
Page 114
9-12 User’s Reference Guide C C C C o o o o n n n n f f f f i i i i g g g g u u u u r r r r i i i i n n n n g g g g a a a a D D D D i i i i a a a a l l l l - - - - U U U U p p p p N N N N e e e e t t t t w w w w o o o o r r r r k k k k i i i i n n n n g g g g p p p p r r r r o o o o f f f f i i i i l l l l e e e e Once you have created your Dial-Up Networking profile, you configure it for TCP/IP networking to allow you to connect to the Internet through your Internet connection device.
Page 115
Click the TCP/IP Settings button. If your ISP uses dynamic IP addressing (DHCP), select the Server assigned IP address radio button. If your ISP uses static IP addressing, select the Specify an IP address radio button and enter your assigned IP address in the fields provided. Also enter the IP address in the Primary and Secondary DNS fields.
Page 116
9-14 User’s Reference Guide I I I I n n n n s s s s t t t t a a a a l l l l l l l l i i i i n n n n g g g g t t t t h h h h e e e e V V V V P P P P N N N N C C C C l l l l i i i i e e e e n n n n t t t t Before Installing the VPN Client you must have TCP/IP installed and have an established Internet connection.
Page 117
Click the Windows Setup tab. The Windows Setup screen will be displayed within the top center box. Double-click Communications. This displays a list of possible selections for the communications option. Active components will have a check in the checkboxes to their left. Check Dial Up Networking at the top of the list and Virtual Private Networking at the bottom of the list.
Page 118
9-16 User’s Reference Guide A A A A b b b b o o o o u u u u t t t t A A A A T T T T M M M M P P P P T T T T u u u u n n n n n n n n e e e e l l l l s s s s To set up an ATMP tunnel, you create a Connection Profile including the IP address and other relevant information for the remote ATMP partner.
Page 119
You can specify a Network Name. When the tunnel partner is another Netopia router, this name may be used to match against a Connection Profile. When the partner is an Ascend router in Gateway mode, then Network Name is used by the Ascend router to match a gateway profile.
Page 120
Ordinarily, Ping is an excellent troubleshooting tool, but it will not be effective in this circumstance. Instead, use another TCP- or UDP-based network service for troubleshooting. Since the Netopia Router is capable of serving Telnet and HTTP, we recommend using these services instead of Ping.
A A A A l l l l l l l l o o o o w w w w i i i i n n n n g g g g V V V V P P P P N N N N s s s s t t t t h h h h o o o o u u u u g g g g h h h h a a a a f f f f i i i i r r r r e e e e w w w w a a a a l l l l l l l l An administrator interested in securing a network will usually combine the use of VPNs with the use of a firewall or some similar mechanism.
Page 122
9-20 User’s Reference Guide Select Display/Change Input Filter. Display/Change Input Filter screen +-#----Source IP Addr----Dest IP Addr------Proto-Src.Port-D.Port--On?-Fwd-+ +-------------------------------------------------------------------------+ 0.0.0.0 0.0.0.0 For Input Filter 1 set the Destination Port information as shown below. Enabled: Forward: Source IP Address: Source IP Address Mask: Dest.
Page 123
In the Display/Change IP Filter Set screen select Display/Change Output Filter. Display/Change Output Filter screen +-#----Source IP Addr----Dest IP Addr------Proto-Src.Port-D.Port--On?-Fwd-+ +-------------------------------------------------------------------------+ 0.0.0.0 0.0.0.0 For Output Filter 1 set the Protocol Type and Destination Port information as shown below. Enabled: Forward: Source IP Address: Source IP Address Mask: Dest.
Page 124
9-22 User’s Reference Guide A A A A T T T T M M M M P P P P E E E E x x x x a a a a m m m m p p p p l l l l e e e e To enable a firewall to allow ATMP traffic, you must provision the firewall to allow inbound and outbound UDP packets specifically destined for port 5150.
Page 125
Enabled: Forward: Source IP Address: Source IP Address Mask: Dest. IP Address: Dest. IP Address Mask: Protocol Type: In the Display/Change IP Filter Set screen select Display/Change Output Filter. Display/Change Output Filter screen +-#----Source IP Addr----Dest IP Addr------Proto-Src.Port-D.Port--On?-Fwd-+ +-------------------------------------------------------------------------+ 0.0.0.0 0.0.0.0 For Output Filter 1 set the Protocol Type and Destination Port information as shown below.
Page 126
9-24 User’s Reference Guide Enabled: Forward: Source IP Address: Source IP Address Mask: Dest. IP Address: Dest. IP Address Mask: Protocol Type: Change Output Filter 2 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0...
The terms mapping or remapping refer to rules that translate one or more addresses on the Netopia Router's LAN to another address or addresses on the other side of the Netopia Router's WAN link (typically the Internet). The terms private and internal refer to addresses on the Netopia Router's LAN network that are protected or obscured from the NAT remappings.
Page 128
10-2 User’s Reference Guide The terms public and external refer to the Internet side of the Netopia Router's connection. A machine on the public network cannot necessarily access a machine behind a Netopia Router's NAT remapping, unless you specify that it can.
Page 129
F F F F e e e e a a a a t t t t u u u u r r r r e e e e s s s s The Netopia R2020 Router features the following: Default behavior consistent with previous firmware versions, including PAT to a DHCP- or PPP-assigned address.
10-4 User’s Reference Guide NAT configuration You use the NAT feature sets by defining a series of remapping rules and then grouping them into a list . There are two kinds of lists -- Map Lists , made up of PAT and Static remapping rules, and Server Lists , a list of internal services to be presented to the external world.
The Local WAN IP Address is used to configure a NAT public address range consisting of the Local WAN IP Address and all its ports. The public address map list is named Easy-PAT List and the port map list is named Easy-Servers .
Page 132
Network Address Translation (NAT)... Filter Sets... Enter an IP address in decimal and dot form (xxx.xxx.xxx.xxx). Set up the basic IP attributes of your Netopia in this screen. Select Network Address Translation (NAT) and press Return. The Network Address Translation screen appears.
Page 133
N N N N A A A A T T T T r r r r u u u u l l l l e e e e s s s s The following rules apply to assigning NAT ranges and server lists: Static public address ranges must not overlap other static, PAT, public addresses or the public address assigned to the router’s WAN interface.
Page 134
10-8 User’s Reference Guide Select ADD NAT PUBLIC RANGE and press Return. The range will be added to your list and you will be returned to the Network Address Translation screen. Once the public ranges have been assigned, the next step is to bind interior addresses to them. Because these bindings occur in ordered lists, called map lists , you must first define the list, then add mappings to it.
Page 135
Select First and Last Private Address and enter the first and last interior IP addresses you want to assign to this mapping. Select Use NAT Public Range and press Return. A screen appears displaying the public ranges you have defined. +-Public Address Range------------Type----Name-------------+ +----------------------------------------------------------+ | 0.0.0.0...
Page 136
10-10 User’s Reference Guide First Private Address: Last Private Address: Use NAT Public Range... Public Range Type is: Public Range Start Address is: ADD NAT MAP Select ADD NAT MAP and press Return. Your mapping is added to your map list. M M M M o o o o d d d d i i i i f f f f y y y y i i i i n n n n g g g g m m m m a a a a p p p p l l l l i i i i s s s s t t t t s s s s You can make changes to an existing map list after you have created it.
Page 137
The Show/Change NAT Map List screen appears. Map List Name: Add Map... Show/Change Maps... Delete Map... Move Map... Add Map allows you to add a new map to the map list. Show/Change Maps allows you to modify the individual maps within the list. Delete Map allows you to delete a map from the list.
Page 138
10-12 User’s Reference Guide The Change NAT Map screen appears. First Private Address: Last Private Address: Use NAT Public Range... Public Range Type is: Public Range Start Address is: Public Range End Address is: CHANGE NAT MAP Make any modifications you need and then select CHANGE NAT MAP and press Return. Your changes will become effective and you will be returned to the Show/Change NAT Map List screen.
Page 139
All operations are done from a single pop-up menu. In the Show/Change Map List screen, select Move Map. A selection mode pop-up menu appears. In this mode you scroll to the map you want to move and press Return to select it for moving. After pressing Return you are in Move mode.
Page 140
10-14 User’s Reference Guide Service... Server Private IP Address: Public IP Address: ADD NAT SERVER Select Service and press Return. A pop-up menu appears listing a selection of commonly exported services. Service... Server Private IP Address: Public IP Address: ADD NAT SERVER Choose the service you want to export and press Return.
Page 141
Note: CUSeeMe (or other services that listen on specific ports) through MultiNAT works as it did for regular NAT routers. In order to use CUSeeMe through the Netopia R2020 Router, you must export the ports 7648 and 7649. In MultiNAT, you may use a port range export. Without the export, CUSeeMe will fail to work.
Page 142
10-16 User’s Reference Guide Up/Down Arrow Keys to select, ESC to dismiss, Return/Enter to Edit. The Show/Change NAT Server List screen appears. Server List Name: Add Server... Show/Change Server... Delete Server... Selecting Show/Change Server or Delete Server displays the same pop-up menu. Network Address Translation +-NAT Server List Name-+ +----------------------+...
Page 143
+-Private Address--Public Address----Port------------+ +----------------------------------------------------+ Se| 1.1.1.1 | 3.3.3.3 | 5.5.5.5 +----------------------------------------------------+ Up/Down Arrow Keys to select, ESC to dismiss, Return/Enter to Edit. Select any server from the list and press Return. The Change NAT Server screen appears. Service... Server Private IP Address: Public IP Address: CHANGE NAT SERVER You can make changes to the server’s service and port or internal or external address.
10-18 User’s Reference Guide A pop-up menu lists your configured servers. Select the one you want to delete and press Return. A dialog box asks you to confirm your choice. +-Internal Address-External Address--Port------------+ +----------------------------------------------------+ Se| 1.1.1.1 | 3.+----------------------------------------------+ | | 5.+----------------------------------------------+ | | Are you sure you want to delete this Server? | | +----------------------------------------------+ | +----------------------------------------------------+...
Page 145
Address Translation Enabled: IP Addressing... NAT Map List... NAT Server List... Local WAN IP Address: Remote IP Address: Remote IP Mask: Filter Set... Remove Filter Set Receive RIP: Return/Enter to select <among/between> ... Configure IP requirements for a remote network connection here. Select NAT Map List and press Return.
10-20 User’s Reference Guide Address Trans| my_server_list IP Addressing| my_servers NAT Map List.| NAT Server Li| Local WAN IP | Local WAN IP | Remote IP Add| Remote IP Mas| Filter Set...| Remove Filter| Receive RIP: | Up/Down Arrow Keys to select, ESC to dismiss, Return/Enter to Edit. Select the server list you want to bind to this Connection Profile and press Return.
Page 147
The Default Answer Profile screen appears. Must Match a Defined Profile: IP Enabled: IP Parameters... IPX Enabled: Data Compression... Max. Receive Packet Size: Idle Timeout: Return/Enter accepts * Tab toggles * ESC cancels. Configure values which may be used when receiving a call in this screen. If Must Match a Defined Profile is set to Yes, then the NAT attributes of the Connection Profile take precedence.
10-22 User’s Reference Guide N N N N A A A A T T T T A A A A s s s s s s s s o o o o c c c c i i i i a a a a t t t t i i i i o o o o n n n n s s s s Configuration of map and server lists alone is not sufficient to enable NAT for a WAN connection because map and server lists must be linked to a profile that controls the WAN interface.
Page 149
Profile/Interface Name-------------Nat+------------------+Server List Name Easy Setup Profile Profile 01 Profile 02 Profile 03 Profile 04 Default Answer Profile Up/Down Arrow Keys to select, ESC to dismiss, Return/Enter to Edit. Select the list name you want to assign and press Return again. Your selection will then be associated with the corresponding profile or interface.
Page 150
Public IP addresses assigned by the ISP are 206.1.1.1 through 206.1.1.6 (255.255.255.248 subnet mask). Your internal devices have IP addresses of 192.168.1.1 through 192.168.1.254 (255.255.255.0 subnet mask). Netopia router's address is: Web server's address is: Mail server's address is: FTP server's address is: In this example you will statically map the first five public IP addresses (206.1.1.1 - 206.1.1.5) to the first five...
Page 151
Default IP Gateway: IP Address Serving: Number of Client IP Addresses: 1st Client Address: PREVIOUS SCREEN Set up the basic IP & IPX attributes of your Netopia in this screen. Then navigate to the Network Address Translation (NAT) screen. System Main Menu...
Page 152
10-26 User’s Reference Guide Select Show/Change Public Range, then Easy-PAT Range, and press Return. Enter the value your ISP assigned for your public address (206.1.1.6, in this example). Toggle Type to pat . Your public address is then mapped to the remaining private IP addresses using PAT.
Page 153
You do this through either the NAT Associations screen or the profile’s configuration screens. The PAT part of this example setup will allow any user on the Netopia Router's LAN with an IP address in the range of 192.168.1.6 through 192.168.1.254 to initiate traffic flow to the outside world (for example, the Internet).
Page 154
IP address, 206.1.1.3. For the sake of this example, alias both services to 206.1.1.2. Now, as before, the PAT configuration will allow any user on the Netopia Router's LAN with an IP address in the range of 192.168.1.6 through 192.168.1.254 to initiate traffic flow to the Internet.
All eight row labels are always visible, regardless of the number of subnets configured. To add an IP subnet, enter the Netopia R2020’s IP address on the subnet in the IP Address field in a particular row and the subnet mask for the subnet in the Subnet Mask field in that row.
Page 156
10-30 User’s Reference Guide For example: IP Address ---------------- 192.128.117.162 192.128.152.162 0.0.0.0 To delete a configured subnet, set both the IP address and subnet mask values to 0.0.0.0, either explicitly or by clearing each field and pressing Return or Enter to commit the change. When a configured subnet is deleted, the values in subsequent rows adjust up to fill the vacant fields.
Static routes are IP routes that are maintained manually. Each static route acts as a pointer that tells the Netopia R2020 how to reach a particular network. However, static routes are used only if they appear in the IP routing table, which contains all of the routes used by the Netopia R2020 (see Static routes are helpful in situations where a route to a network must be used and other means of finding the...
Page 158
10-32 User’s Reference Guide Configure/View/Delete Static Routes from this and the following Screens. Viewing static routes To display a view-only table of static routes, select Display/Change Static Route in the Static Routes screen. +-Dest. Network---Subnet Mask-----Next Gateway----Priority-Enabled-+ +------------------------------------------------------------------+ | 0.0.0.0 +------------------------------------------------------------------+ Select a Static Route to modify.
Page 159
Select Destination Network Subnet Mask and enter the subnet mask used by the destination network. Select Next Gateway IP Address and enter the IP address for the router that the Netopia R2020 will use to reach the destination network. This router does not necessarily have to be part of the destination network, but it must at least know where to forward packets destined for that network.
Page 160
Rules of static route installation The Netopia R2020 applies certain rules before installing enabled static routes in the IP routing table. An enabled static route will not be installed in the IP routing table if any of the following conditions are true: The static route’s Next Gateway IP Address matches the IP address used by a connection profile or the...
Menu Configuration In addition to being a router, the Netopia R2020 is also an IP address server. There are four protocols it can use to distribute IP addresses. The first, called Dynamic Host Configuration Protocol (DHCP), is widely supported on PC networks, as well as Apple Macintosh computers using Open Transport and computers using the UNIX operating system.
Page 162
DHCP, BOOTP, Dynamic WAN, and/or MacIP. Example: Your ISP has given your Netopia R2020 the IP address 192.168.6.137, with a subnet mask of 255.255.255.248. The subnet mask allocated will give you six IP addresses to use when connecting to the ISP over the Internet (for more information on understanding IP addressing refer to “Understanding IP...
DHCP NetBIOS Options If your network uses NetBIOS, you can enable the Netopia R2020 to use DHCP to distribute NetBIOS information. NetBIOS stands for Network Basic Input/Output System. It is a layer of software originally developed by IBM and Sytek to link a network operating system with specific hardware. NetBIOS has been adopted as an industry standard.
Page 164
Note: Addresses assigned through BOOTP are permanently allocated from the IP Address Serving pool until you release them. To view all of the IP addresses currently being served by the Netopia R2020, from the Statistics & Logs menu select Served IP Addresses.
Page 165
The Served IP Addresses screen appears. -IP Address-------Type----Expires--Client Identifier-------------------------- ----------------------------------SCROLL UP----------------------------------- 192.168.1.100 192.168.1.101 192.168.1.102 192.168.1.103 192.168.1.104 192.168.1.105 192.168.1.106 192.168.1.107 192.168.1.108 192.168.1.109 192.168.1.110 192.168.1.111 192.168.1.112 192.168.1.113 ---------------------------------SCROLL DOWN---------------------------------- Lease Management... EN = Ethernet Address; AT = AppleTalk Address; CP = Profile Name; HX = hex To release these addresses, select Lease Management.
Netopia Router. If the Netopia Router is configured to act as a DHCP server, it will assign the client an address from an address pool configured locally in the Netopia Router and respond to the client's request...
Ethernet), they must use a MacIP (AppleTalk-IP) gateway. The optional Netopia AppleTalk feature enhancement kit provides for this service. A MacIP gateway converts network traffic into the correct format for AppleTalk or IP, depending on the traffic’s destination. The MacIP gateway can also distribute IP addresses to AppleTalk computers on the network.
Page 168
Select MacIP/KIP Static Options and press Return. The MacIP (KIP) Forwarding Setup screen tells the Netopia R2020 how many static addresses to allocate for MacIP/KIP clients. The addresses must fall within the address pool from the previous screen. You will need to enter the number of static MacIP addresses to reserve in this screen.
Internetwork Packet Exchange (IPX) is the network protocol used by Novell NetWare networks. This chapter shows you how to configure the Netopia R2020 for routing data using IPX. You also learn how to configure the router to serve IPX network addresses.
11-2 User’s Reference Guide IPX address An IPX address consists of a network number, a node number, and a socket number. An IPX network number is composed of eight hexadecimal digits. The network number must be the same for all nodes on a particular physical network segment.
IPX Spoofing The Netopia R2020 has several IPX features designed to restrict the traffic on the dial-up link when the unit is not sending or receiving IPX data. When the link is idle and a user is logged into a Novell server, the server will send “keep alive”...
Page 172
IPX network to only those required by remote users connecting to the Netopia R2020. An Ethernet SAP filter must be used with networks that have so many servers advertised that the Netopia R2020 would otherwise exhaust its internal memory storing server entries.
Select Default Gateway Address, and enter the network address of the IPX network to which all packets of unknown destination address should be routed. Note: The Default Gateway Address is usually set up to match the IPX Address in your network Connection Profile.
Page 174
11-6 User’s Reference Guide To configure IPX routing in the answer profile, select IPX Parameters and go to the IPX Parameters (Default Answer Profile) screen. The items in this screen are similar to the IPX Profile Parameters items of the same name (see page 11-5).
IPX routing tables Main Menu IPX routing tables provide information on current IPX routes and services. To go to the IPX Routing Table screen, select IPX Routing Table in the Routing Tables screen. This table shows detailed information about current IPX network routes. Net Addr-Hops-Ticks-Type--Status-Interface--------------via Router------------ -----------------------------------SCROLL UP---------------------------------- 00000020...
This chapter discusses the concept of AppleTalk routing and how to configure AppleTalk Setup for a Netopia R2020 with the AppleTalk kit installed. AppleTalk support is available as a separate kit for the Netopia R2020 Dual Analog Router. Skip this chapter if you do not have the AppleTalk kit.
Page 178
AppleTalk tells them apart according to an additional part of their addresses: the network number. The Netopia R2020 assigns a unique network number to each member network. In terms of the city street metaphor, the network number is similar to the name of the street. Putting a network number together with a node number fully specifies the address of a node on an internet.
When two networks using AppleTalk communicate with each other through a network based on the Internet Protocol, they are said to be tunneling through the IP network. The Netopia R2020 uses AURP to allow your AppleTalk network to tunnel to designated AppleTalk partner networks, as well as to accept connections from remote AppleTalk networks tunneling to your AppleTalk LAN.
You should set the Netopia R2020’s seeding action to work best in your particular network environment. These scenarios may guide you in deciding how to set the router’s seeding: If the Netopia R2020 is the only router on your network, you must set it to either hard seeding or soft seeding. The default is soft seeding.
Page 181
Main Menu The Netopia Feature Set Upgrade screen appears. You may be able to extend the features of your Netopia by purchasing a 'Software Upgrade'. notes that came with your Netopia or visit the Netopia Communications web site at www.netopia.com.
Otherwise, your EtherTalk network may experience routing conflicts. The Netopia R2020 supports creating up to 32 zone names. As an alternative, you can set EtherTalk seeding to soft seeding and let the Netopia R2020 receive the zone name and network number from the other router.
Note: Your LocalTalk network may already have a zone and network number in place. For the Netopia R2020’s LocalTalk port to be part of your LocalTalk network, it must have a network number and zone name that matches the values in use on the LocalTalk network.
12-8 User’s Reference Guide As an alternative, you can set LocalTalk seeding to soft seeding and let the Netopia R2020 receive the zone name and network number from the other router. Select LocalTalk Network Number and enter the desired network number.
Page 185
Site A has an AURP tunnel to site B. Both sides have multiple zones defined on the EtherTalk port and a unique zone on their LocalTalk ports. If side A has indicated one of its EtherTalk zones is the Free Trade Zone and has opted to use the Free Trade Zone option for its tunnel to B, then only this Free Trade Zone will show up on side B and only those machines or services in the Free Trade Zone will be accessible to side B.
Page 186
The AURP tickle timer is a parameter that you can set anywhere between 0 and 100 hours. This parameter tells the AURP partners when to send out an AURP tickle packet. If this value is set to 0, the Netopia R2020 will never send out a tickle packet.
Page 187
Update Interval every time there's such a change in the network topology. This will cause the Netopia's WAN link to be brought up. You can opt to minimize what may be unnecessary calls by changing the Update Interval value to some larger value. At the end of this time window if there has been a local AppleTalk network change the Netopia R2020 will call any remote AURP partner and forward the new network information.
“SNMP” on page 13-12 Quick View status overview You can get a useful, overall status report from the Netopia R2020 in the Quick View screen. To go to the Quick View screen, select Quick View in the Main Menu. The Quick View screen has three status sections:...
IPX Address: The Netopia R2020’s IPX address, entered in the IPX Setup screen. EtherTalk Address: The Netopia R2020’s AppleTalk address on its EtherTalk Phase II interface, entered in the EtherTalk Phase II Setup screen (only if the optional AppleTalk feature set is installed).
ISDN caller identification (if available). Status lights This section shows the current real-time status of the Netopia R2020’s status lights (LEDs). It is useful for remotely monitoring the router’s status. The Quick View screen’s arrangement of LEDs corresponds to the physical arrangement of LEDs on the router.
Main Menu When you are troubleshooting your Netopia R2020, the Statistics screens provide insight into the recent event activities of the Router. From the Main Menu go to Statistics & Logs and select one of the options described in the sections below.
You can view two different event histories: one for the router’s system and one for the WAN. The Netopia R2020’s built-in battery backup prevents loss of event history from a shut down or reset.
Page 194
13-6 User’s Reference Guide WAN Event History The WAN Event History screen lists a total of 128 events on the WAN. The most recent events appear at the top. To go to the WAN Event History screen, select WAN Event History in the Statistics & Logs screen. -Date-----Time-----Event------------------------------------------------------ ----------------------------------SCROLL UP----------------------------------- 6/17/99 01:56:49...
Return. Routing Tables You can view all of the IP, IPX and AppleTalk routes in the Netopia R2020’s IP, IPX and AppleTalk routing tables, respectively. To go to a Routing Table screen, select the Routing Table you are interested in from the Statistics & Logs screen.
Page 196
13-8 User’s Reference Guide IP routing table The IP routing table displays all of the IP routes currently known to the Netopia R2020. To display the IP Routing Table screen, select IP Routing Table in the Statistics & Logs screen and press Return.
Page 197
IPX Sap Bindery table The IPX Sap Bindery table displays all of the IPX Sap Bindery routes currently known to the Netopia R2020. To display the IPX SAP Bindery Table screen, select IPX Sap Bindery Table in the Statistics & Logs screen and press Return.
Pkts Fwded: The number of packets sent to the router shown. Served IP Addresses You can view all of the IP addresses currently being served by the Netopia R2020 Dual Analog Router from the Served IP Addresses screen. From the Statistics & Logs menu, select Served IP Addresses.
Page 199
The IP Address Lease Management screen appears. Reset All Leases Release BootP Leases Reclaim Declined Addresses Hit RETURN/ENTER, you will return to the previous screen. By selecting each of these options you can: Reset all current IP addresses leased through DHCP without waiting for the default one hour lease period to elapse Release BootP leases that may be in place, and which may no longer be required Reclaim served leases that have been declined, for example by devices which may no longer be on the...
Frame Relay DTE MIB (RFC 1315) Netopia MIB These MIBs are on the Netopia R2020 CD included with the Netopia R2020. You should load these MIBs into your SNMP management software in the order they are listed here. Follow the instructions included with your SNMP manager on how to load MIBs.
Select System Contact and enter the name of the person responsible for maintaining the router. System Name, System Location, and System Contact set the values returned by the Netopia R2020 SNMP agent for the SysName, SysLocation, and SysContact objects, respectively, in the MIB-II system group. Although optional, the information you enter in these items can help a system administrator manage the network more efficiently.
SNMP traps An SNMP trap is an informational message sent from an SNMP agent (in this case, the Netopia R2020) to a manager. When a manager receives a trap, it may log the trap as well as generate an alert message of its own.
Page 203
Return/Enter to modify an existing Trap Receiver. Navigate from here to view, add, modify and delete IP Trap Receivers. Setting the IP trap receivers Select Add IP Trap Receiver. Select Receiver IP Address or Domain Name. Enter the IP address or domain name of the SNMP manager you want to receive the trap.
S S S S e e e e c c c c u u u u r r r r i i i i t t t t y y y y The Netopia R2020 provides a number of security features to help protect its configuration screens and your local network from unauthorized access.
14-2 User’s Reference Guide User accounts When you first set up and configure the Netopia R2020, no passwords are required to access the configuration screens. Anyone could tamper with the router’s configuration by simply connecting it to a console. However, by adding user accounts, you can protect the most sensitive screens from unauthorized access. User accounts are composed of name/password combinations that can be given to authorized users.
Remote modem terminal emulator setups can dial in to either internal modem line and establish a remote console session, even though they are not using PPP. This allows Netopia Inc.'s “Up and Running, Guaranteed!” department or other administrator with the appropriate security to remotely configure your router for you. If you used SmartStart to configure your router, this option will be set to “No”.
SmartStart. To prevent access to these features toggle this option to “No”. Telnet access Telnet is a TCP/IP service that allows remote terminals to access hosts on an IP network. The Netopia R2020 supports Telnet access to its configuration screens. Caution! You should consider password-protecting or restricting Telnet access to the Netopia R2020 if you suspect there is a chance of tampering.
Security 14-5 How filter sets work A filter set acts like a team of customs inspectors. Each filter is an inspector through which incoming and outgoing packages must pass. The inspectors work as a team, but each inspects every package individually. Each inspector has a specific task.
Page 210
14-6 User’s Reference Guide If the package does not match the first inspector’s criteria, it goes to the second inspector, and so on. You can see that the order of the inspectors in the line is very important. For example, let’s say the first inspector’s orders are to send along all packages that come from Rome, and the second inspector’s orders are to reject all packages that come from France.
This rule applies to Telnet packets that come from a host with the IP address 199.211.211.17. If a match occurs, the packet is blocked. Here is what this rule looks like when implemented as a filter on the Netopia R2020: +-#--Source IP Addr--Dest IP Addr-----Proto-Src.Port-D.Port--On?-Fwd-+ +--------------------------------------------------------------------+ 199.211.211.17...
Page 212
14-8 User’s Reference Guide Internet service Telnet SMTP (mail) Gopher Internet service Who Is World Wide Web SNMP TFTP Port number comparisons A filter can also use a comparison option to evaluate a packet’s source or destination port number. The comparison options are: No Compare: No comparison of the port number specified in the filter with the packet’s port number.
Page 213
Putting the parts together When you display a filter set, its filters are displayed as rows in a table: +-#---Source IP Addr---Dest IP Addr-----Proto-Src.Port-D.Port--On?-Fwd-+ +----------------------------------------------------------------------+ 192.211.211.17 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 +----------------------------------------------------------------------+ The table’s columns correspond to each filter’s attributes: #: The filter’s priority in the set. Filter number 1, with the highest priority, is first in the table. Source IP Addr: The packet source IP address to match.
Page 214
14-10 User’s Reference Guide Filtering example #1 Returning to our filtering rule example from above (see Start with the rule, then fill in the filter’s attributes: The rule you want to implement as a filter is: Block all Telnet attempts that originate from the remote host 199.211.211.17. The host 199.211.211.17 is the source of the Telnet packets you want to block, while the destination address is any IP address.
+-#---Source IP Addr---Dest IP Addr-----Proto-Src.Port-D.Port--On?-Fwd-+ +----------------------------------------------------------------------+ 200.233.14.0 +----------------------------------------------------------------------+ This filter blocks any packets coming from a remote network with the IP network address 200.233.14.0. The 0 at the end of the address signifies any host on the class C IP network 200.233.14.0. If, for example, the filter is applied to a packet with the source IP address 200.233.14.5, it will block it.
14-12 User’s Reference Guide An approach to using filters The ultimate goal of network security is to prevent unauthorized access to the network without compromising authorized access. Using filter sets is part of reaching that goal. Each filter set you design will be based on one of the following approaches: That which is not expressly prohibited is permitted.
View, change, or delete individual filters and filter sets. The sections below explain how to execute these steps. Adding a filter set You can create up to eight different custom filter sets. Each filter set can contain up to 16 output filters and up to 16 input filters.
Page 218
The Netopia R-series Router Packets in the Netopia R2020 pass through an input filter if they originate in the WAN and through an output filter if they’re being sent out to the WAN. The process for adding input and output filters is exactly the same. The main difference between the two involves their reference to source and destination.
Page 219
Enter the IP specific information for this filter. To make the filter active in the filter set, select Enabled and toggle it to Yes. If Enabled is toggled to No, the filter can still exist in the filter set, but it will have no effect. If you want the filter to forward packets that match its criteria to the destination IP address, select Forward and toggle it to Yes.
14-16 User’s Reference Guide 10. When you are finished configuring the filter, select ADD THIS FILTER NOW to save the filter in the filter set. Select CANCEL to discard the filter. Viewing filters To display a view-only table of input (output) filters, select Display/Change Input Filters (Display/Change Output Filters) in the Add IP Filter Set screen.
filter set. A sample IP filter set This section contains the settings for a filter set, called Basic Firewall, which is part of the Netopia R2020’s factory configuration. Basic Firewall blocks undesirable traffic originating from the WAN (in most cases, the Internet), but passes all traffic originating from the LAN.
Page 222
14-18 User’s Reference Guide The five input filters and one output filter that make up Basic Firewall are shown in the table below. Input filter Setting Enabled Forward Source IP 0.0.0.0 address Source IP 0.0.0.0 address mask Dest. IP 0.0.0.0 address Dest.
Page 223
Basic Firewall is suitable for a LAN containing only client hosts that wish to access servers on the WAN, not for a LAN containing servers providing services to clients on the WAN. Basic Firewall’s general strategy is to explicitly pass WAN-originated TCP and UDP traffic to ports greater than 1023. Ports lower than 1024 are the service origination ports for various Internet services such as FTP, Telnet, and the World Wide Web (WWW).
Page 224
AURP tunnel. To allow an AURP tunnel between a remote AURP router with the IP address a.b.c.d (corresponding to a numbered IP address such as 163.176.8.243) and a local AURP router (including the Netopia R2020 itself), insert the following input filter ahead of the current input filter 1: Enabled: Yes Forward: Yes Source IP Address: a.b.c.d...
IPX filters Main Menu IPX packet filters work very similarly to IP packet filters. They filter data traffic coming from or going to remote IPX networks. IPX filters can be set up to pass or discard IPX packets based on a number of user-defined criteria.
14-22 User’s Reference Guide The items in the IPX Filters and Filter Sets screen are grouped into four areas: IPX packet filters IPX packet filter sets IPX SAP filters IPX SAP filter sets The following sections explain the items in each of these areas. IPX packet filters For each IPX packet filter, you can configure a set of parameters to match on the source or destination attributes of IPX data packets coming from or going to the WAN.
Select Filter Name and enter a descriptive name for the filter. To specify a source network for the filter to match on, select Source Network and enter an IPX network address. To specify a source node for the filter to match on, select Source Node Address and enter an IPX node address.
Page 228
14-24 User’s Reference Guide Add Packet Filter Set Filter Set Name: Show Filters/Change Action on Match... Append Filter... Remove Filter... ADD FILTER SET NOW Configure an IPX Filter Set here. You must ADD FILTER SET NOW to save. Follow these steps to configure the new packet filter set: Select Filter Set Name and enter a descriptive name for the filter set.
To add a filter to the filter set, select Append Filter to display a table of filters. Select a filter from the table and press Return to add it to the filter set. The default action of newly added filters is to not forward packets that match their criteria.
Page 230
(no characters), and ? to match any single character in the server’s name. For example, the filter could match on the server name “NETOPIA” with “NETO*”, “NETO?IA”, and “NETOPIA*”. To specify a socket for the filter to match on, select Socket and enter an IPX socket number.
Deleting a SAP filter To delete a SAP filter, select Delete IPX SAP filter in the IPX Filters and Filter Sets screen to display a table of filters. Select a filter from the table and press Return to delete it. Press the Escape key to exit the table without deleting the filter.
14-28 User’s Reference Guide Set whether filters forward or drop matching packets here. Select a filter and toggle the entry forwarding action to Yes (pass) or No (discard). To add a filter to the filter set, select Append Filter to display a table of filters. Select a filter from the table and press Return to add it to the filter set.
Host: A workstation on the Network. Packet: Unit of communication on the Internet. Packet Filter: Packet filters allow or deny packets based on source or destination IP addresses, TCP or UDP ports, or the TCP ACK bit. Port: A number that defines a particular type of service. Filter Rule: A filter set is comprised of individual filter rules.
14-30 User’s Reference Guide Firewall design rules There are two basic rules to firewall design: “What is not explicitly allowed is denied...” “What is not explicitly denied is allowed...” The first rule is far more secure, and is the best approach to firewall design. It is far easier (and more secure) to allow in or out only certain services and deny anything else.
Page 235
Logical ANDing When a packet is compared (in most cases) a logical AND is performed. First the IP addresses and subnet masks are converted to binary and then ANDed together. The rules for logical ANDing are as follows: 0 AND 0 = 0 0 AND 1 = 0 1 AND 0 = 0 1 AND 1 = 1...
In the source or destination IP address fields, the IP address that is entered MUST be the NETWORK address of the subnet. A HOST address can be entered, but the applied subnet mask must be 32 bits (255.255.255.255). The Netopia R2020 has the ability to compare source and destination TCP or UDP ports. These options are as follows:...
IP Address 200.1.1.28 255.255.255.128 This incoming IP packet has a source IP address that matches the network address in the Source IP Address field (00000000) in the Netopia R2020. This will NOT forward this packet. Incoming Packet Filter Netopia 200.1.1.0 (Source IP Network Address) 255.255.255.128...
Page 238
IP Address 200.1.1.184 255.255.255.240 Since the Source IP Network Address in the Netopia R2020 is 01100000, and the source IP address after the logical AND is 1011000, this rule does NOT match and this packet will be passed. 200.1.1.0 (Source IP Network Address) 255.255.255.128...
Page 239
IP Address 200.1.1.104 255.255.255.240 Since the Source IP Network Address in the Netopia R2020 is 01100000, and the source IP address after the logical AND is 01100000, this rule DOES match and this packet will NOT be passed. Example 5 Filter Rule: Incoming packet has the source address of 200.1.1.96...
As a remote device, the Netopia R2020 offers client/calling side security authentication. This feature allows the Netopia R2020 to call a server router and perform security card authentication. The router of the called server must have access to a server with ACE software loaded on it.
Note: The Netopia R2020 currently only supports Ascend routers as ACMs. An external Netopia R2020 calling into a designated server. For example, a telecommuter dialing into a remote site from a Netopia R2020 interested in accessing personal email or file sharing services.
CACHE-TOKEN. Your network administrator or the remote network administrator will tell you which method to select. If you select PAP-TOKEN, select Send User Name and enter a name for your Netopia R2020. You will not need to enter a Send Password for PAP-TOKEN. Press Return.
Page 243
Select Secure Authentication Monitor and press Return. The Secure Authentication Monitor screen appears. Wait for the call to initiate. Profile Name---State---%Use---Remote Address---Est.---More Info--- Status --- Passcode Required For Connection Profile: 0-Challenge: Enter PASSCODE: Passcode: From the fields that appear, select Enter PASSCODE and press Return. Enter your PIN and the code displayed on your security authentication token card LED.
Page 244
14-40 User’s Reference Guide Note: When using CACHE-TOKEN, your passcode is valid for a time interval determined by the network administrator. When this time interval expires, you must provide a new passcode for the call negotiation. When using PAP-TOKEN, your passcode is valid for one call negotiation. For a second call negotiation, you must enter the next passcode provided by the security authentication token card every 60 seconds.
C C C C h h h h a a a a p p p p t t t t e e e e r r r r 1 1 1 1 5 5 5 5 U U U U t t t t i i i i l l l l i i i i t t t t i i i i e e e e s s s s a a a a n n n n d d d d D D D D i i i i a a a a g g g g n n n n o o o o s s s s t t t t i i i i c c c c s s s s A number of utilities and tests are available for system diagnostic and control purposes: “Ping”...
(Ping-capable) IP host. Each time the target host receives a Ping packet, it returns a packet to the original sender. Ping allows you to see whether a particular IP destination is reachable from the Netopia R2020. You can also ascertain the quality and reliability of the connection to the desired destination by studying the Ping test’s statistics.
Page 247
Ping packets. Note that the second return Ping packet is considered to be late because it is not received by the Netopia R2020 before the third Ping packet is sent. The first and third return Ping packets are on time.
Page 248
The time-to-live (TTL) value for each Ping packet sent by the Netopia R2020 is 255, the maximum allowed. The TTL value defines the number of IP routers that the packet can traverse. Ping packets that reach their TTL value are dropped, and a “destination unreachable”...
Trace Route You can count the number of routers between your Netopia Router and a given destination with the Trace Route utility. Select Trace Route in the Statistics & Diagnostics screen and press Return to go to the Trace Route screen.
15-6 User’s Reference Guide Telnet client The Telnet client mode replaces the normal menu mode. Telnet sessions can be cascaded, that is, you can initiate a Telnet client session when using a Telnet console session. To activate the Telnet client, select Telnet from the Utilities &...
If you select Continue, you will immediately terminate your session. Factory defaults You can reset the Netopia R2020 to its factory default settings. Select the Revert to Factory Defaults item in the Statistics & Diagnostics screen and press Return. Select CONTINUE in the dialog box and press Return.
firmware governs how the modems communicate with the remote site. Modem firmware, for example to support the ITU V.90 standard, is included on your Netopia CD for XMODEM transfer and later updates will be available on the Netopia website. Router firmware updates are also periodically posted on the Netopia website.
Some models do not support all firmware versions. Loading an incorrect firmware version can permanently damage the unit. Do not manually power down or reset the Netopia R2020 while it is automatically resetting or it could be damaged. If you choose to download the firmware, the TFTP Transfer State item will change from Idle to Reading Firmware.
Using TFTP, you can send a file containing a snapshot of the Router’s current configuration to a TFTP server. The file can then be downloaded by a different Netopia R2020 unit to configure its parameters (see configuration files” on page 15-9).
Send Firmware to Netopia Internal modem... Modem Firmware Status: Updating firmware Firmware updates may be available periodically from Netopia or from a site maintained by your organization’s network administration. The procedure below applies whether you are using the console or the built-in modems.
The system will reset at the end of a successful file transfer to put the new firmware into effect. While the system resets, the LEDs will blink on and off. Caution! Do not manually power down or reset the Netopia R2020 while it is automatically resetting or it could be damaged. Downloading configuration files The Netopia R2020 can be configured by downloading a configuration file.
You can restart the system by selecting the Restart System item in the Utilities & Diagnostics screen. You must restart the system whenever you reconfigure the Netopia R2020 and want the new parameter values to take effect. Under certain circumstances, restarting the system may also clear up system or network malfunctions.
Page 259
P P P P a a a a r r r r t t t t I I I I I I I I I I I I : : : : A A A A p p p p p p p p e e e e n n n n d d d d i i i i x x x x e e e e s s s s...
Note: If you are attempting to modify the IP address or subnet mask from a previous, successful configuration attempt, you will need to clear the IP address or reset your Netopia R2020 to the factory default before reinitiating the configuration process. For further information on resetting your Netopia R2020 to factory default, see “Factory defaults”...
Problems communicating with remote IP hosts Verify the accuracy of the default gateway’s IP address (entered in the IP Setup or Easy Setup screen). Use the Netopia R2020’s ping utility, in the Statistics, Tests, Utilities screen, and try to ping local and remote hosts. See “Ping”...
Power outages If you suspect that power was restored after a power outage, and the Netopia R2020 is connected to a remote site, you may need to switch the Netopia R2020 off and then back on again. After temporary power outages, a connection that still seems to be up may actually be disconnected.
Page 264
Netopia World Wide Web server via http://www.netopia.com Internet via anonymous FTP to ftp.netopia.com/pub FAX-Back This service provides technical notes which answer the most commonly asked questions, and offer solutions for many common problems encountered with Netopia products. FAX-Back: +1 510-814-5040...
During the setup session, the SmartStart setup application will provide you with a list of service providers who support the Netopia R2020 with Dual Analog. You can register with one of these ISPs as part of setting up your router.
Setting up a Netopia R2020 account Check whether your ISP has the Netopia R2020 on a list of supported products that have been tested with a particular configuration. If the ISP does not have the Netopia R2020 on such a list, describe the Netopia R2020 in as much detail as needed, so your ISP account can be optimized.
The Netopia R2020 with Dual Analog supports the SmartIP™ feature which includes Network Address Translation. Network Address Translation provides Internet access to the network connected to the Netopia R2020 using only a single IP address. These routers translate between the internal or local area network (LAN) addresses and a single external IP address and route accordingly.
Page 268
The Ethernet IP address for your Netopia R2020 The Ethernet IP subnet mask address for your Netopia R2020 The Default Gateway IP Address (same as Remote IP Address in most cases) Primary and Secondary Domain Name Server IP Addresses Domain Name (usually the same as the ISP’s domain name unless you have registered for your own...
U U U U n n n n d d d d e e e e r r r r s s s s t t t t a a a a n n n n d d d d i i i i n n n n g g g g I I I I P P P P A A A A d d d d d d d d r r r r e e e e s s s s s s s s i i i i n n n n g g g g This appendix is a brief general introduction to IP addressing. A basic understanding of IP will help you in configuring the Netopia R2020 and using some of its powerful features, such as static routes and packet filtering.
C-2 User’s Reference Guide IP addresses indicate both the identity of the network and the identity of the individual host on the network. The number of bits used for the network number and the number of bits used for the host number can vary, as long as certain rules are followed.
When setting up IP routing with a Class A Address, or even multiple Class C Addresses, subnetting is fairly straightforward. Subnetting a single Class C address between two networks, however, is more complex. This section describes the general procedures for subnetting a single Class C network between two Netopia routers so that each can have Internet access.
Page 272
Below is a diagram of a simple network configuration. The ISP is providing a Class C address to the customer site, and both networks A and B want to gain Internet access through this address. Netopia R2020 B connects to Netopia R2020 A and is provided Internet access through Routers A and B.
ISP's equipment. The most important item in this configuration is the Static Route defined on Router B. This tells Router B what path to take to get to the network defined by Netopia R2020 B. Without this information, Customer Site B will be able to access Customer Site A, but not the Internet.
These two methods are not mutually exclusive; you can manually issue some of the addresses while the rest are distributed by the Netopia R2020. Using the Router in this way allows it to function as an address server. One reason to use the Netopia R2020 as an address server is that it takes less time than manually distributing the addresses.
DHCP address lease for one hour. The number of devices a Netopia R2020 can serve DHCP to is 512. This is imposed by global limits on the size of the address serving database, which is shared by all address serving functions active in the router.
Clients (IPCP), is used to fulfill WAN client requirements The Netopia R2020 can use both DHCP and MacIP. Whether you use one or both will depend on your particular networking environment. If that environment includes both PCs and Macintosh computers that do not use Open Transport, you will need to use both DHCP and MacIP to distribute IP addresses to all of your computers.
In any situation where a device is dialing into a Netopia router, the router may need to be configured to serve IP via the WAN interface. This is only a requirement if the calling device has not been configured locally to know what its address(es) are.
Page 278
(199.1.1.49, 199.1.1.50, and 199.1.1.51). Distributed to the (Ethernet IP address) Pool of Addresses Distributed Netopia R2020 Manually distributed (static) by MacIP and DHCP...
The figure at left shows a possible network configuration following this scheme. The main network is set up with the Class C address a.b.c.0, and contains Router A (which could be a Netopia R2020), a Netopia R2020, and a number of other hosts. Router A maintains a link to the Internet, and may be used as the default gateway.
Page 280
Router C a.b.c.248 The Netopia R2020’s connection profiles for Routers B and C create entries in its IP routing table. One entry points to the subnet a.b.c.128, while a second entry points to the subnet a.b.c.248. The IP routing table might...
These two protocols specify two different ways to organize the very first signals in the sequence of electrical signals that make up an IP packet travelling over Ethernet. By default, the Netopia R2020 uses Ethernet packet headers for IP traffic. If your network requires 802.3 IP framing, you must configure this through SNMP.
A A A A p p p p p p p p e e e e n n n n d d d d i i i i x x x x D D D D B B B B i i i i n n n n a a a a r r r r y y y y C C C C o o o o n n n n v v v v e e e e r r r r s s s s i i i i o o o o n n n n T T T T a a a a b b b b l l l l e e e e This table is provided to help you choose subnet numbers and host numbers for IP and MacIP networks that use subnetting for IP addresses.
Further Reading E-1 A A A A p p p p p p p p e e e e n n n n d d d d i i i i x x x x E E E E F F F F u u u u r r r r t t t t h h h h e e e e r r r r R R R R e e e e a a a a d d d d i i i i n n n n g g g g Angell, David.
Page 286
E-2 User’s Reference Guide Hares, S. "Components of OSI: Inter-Domain Routing Protocol (IDRP)." ConneXions: The Interoperability Report, Vol. 6, No. 5: May 1992. Jones, N.E.H. and D. Kosiur. Macworld Networking Handbook . San Mateo, California: IDG Books Worldwide, Inc.; 1992. Joyce, S.T.
Page 287
Further Reading E-3 Rose, M.T. The Open Book: A Practical Perspective on OSI . Englewood Cliffs, New Jersey: Prentice Hall; 1990. Rose, M.T. The Simple Book: An Introduction to Management of TCP/IP-based Internets . Englewood Cliffs, New Jersey: Prentice Hall; 1991. Ross, F.E.
A A A A p p p p p p p p e e e e n n n n d d d d i i i i x x x x F F F F T T T T e e e e c c c c h h h h n n n n i i i i c c c c a a a a l l l l S S S S p p p p e e e e c c c c i i i i f f f f i i i i c c c c a a a a t t t t i i i i o o o o n n n n s s s s a a a a n n n n d d d d S S S S a a a a f f f f e e e e t t t t y y y y I I I I n n n n f f f f o o o o r r r r m m m m a a a a t t t t i i i i o o o o n n n n Pinouts for Auxiliary Port Modem Cable Shield HD-15...
9.4” (w) x 7.9” (d) x 2.1” (h) Communications interfaces: The Netopia R2020 Dual Analog Router has two RJ-45 jacks for modem connections; an 8 port 10Base-T Ethernet hub for your LAN connection; a DE-9 Console port; and an HD-15 Auxiliary port that can be used as either a serial or LocalTalk port.
Diagnostics: PING, event logging, routing table displays, traceroute, statistics counters, Call Accounting Agency approvals The Netopia R2020 Dual Analog Router has met the safety standards (per CSA-950) of the Canadian Standards Association for Canada. The Netopia R2020 Dual Analog Router has met the safety standards (per UL-1950) of the Underwriters Laboratories for United States.
Page 292
It is the responsibility of users requiring service to report the need for service to our Company or to one of our authorized agents. Service can be obtained at Netopia, Inc., 2470 Mariner Square Loop, Alameda, California, 94501. Important This product was tested for FCC compliance under conditions that included the use of shielded cables and connectors between system components.
Do not use the telephone to report a gas leak in the vicinity of the leak. Battery The Netopia R2020’s lithium battery is designed to last for the life of the product. The battery is not user-ser- viceable. Caution! Danger of explosion if battery is incorrectly replaced.
A A A A b b b b o o o o u u u u t t t t 5 5 5 5 6 6 6 6 K K K K L L L L i i i i n n n n e e e e A A A A c c c c c c c c e e e e s s s s s s s s The Netopia R2020 is capable of 56Kbps per line connections. This means that if you use both onboard modems, you can achieve inbound data transfer rates of up to 112Kbps.
Page 296
Internet Service Provider, but simply a fact of life in trying to extend the limitations of noisy analog telephone lines. The Netopia R2020 ships with the unified ITU V.90 standard firmware, also known as V.PCM, which merges the K56flex standard with the competing x2 standard. Modem firmware updates that may from time to time become available will be made available on the Netopia website.
Glossary 1 G G G G l l l l o o o o s s s s s s s s a a a a r r r r y y y y Access Line: A telephone line reaching from the telephone company central office to a point usually on your premises.
Page 298
CNA (Calling Number Authentication): A security feature that will reject an incoming call if it does not match the Calling Number field in one of the Netopia ISDN Router’s Connection Profiles. CND (Calling Number Delivery): Also known as caller ID, a feature that allows the Called Customer Premises Equipment (CPE) to receive a calling party’s directory number during the call establishment phase.
Page 299
LocalTalk networks are compatible with Phase II but are not extended because a single LocalTalk network cannot have multiple network numbers or multiple zone names. firmware: System software stored in a device’s memory that controls the device. The Netopia ISDN Router’s firmware can be updated.
Page 300
4 User’s Reference Guide internet: A set of networks connected together by routers. This is a general term, not to be confused with the large, multi-organizational collection of IP networks known as the Internet. An internet is sometimes also known as an internetwork.
Page 301
Glossary 5 NAT (Network Address Translation): A feature that allows communication between the LAN connected to the Netopia ISDN Router and the Internet using a single IP address, instead of having a separate IP address for each computer on the network.
Page 302
A physical or logical connection between a router and a network. Where a network only allows the use of one protocol, each physical connection corresponds to one logical router port. An example is the Netopia ISDN Router’s LocalTalk port. Where a network allows the use of several protocols, each physical connection may correspond to several logical router ports—one for each protocol used.
Page 303
WANs can span a state, a country, or even the world. WAN IP: In addition to being a router, the Netopia ISDN Router is also an IP address server. There are four protocols it can use to distribute IP addresses over the WAN which include: DHCP, BOOTP, IPCP and MacIP. WAN IP is a feature for both the Small Office and Corporate Netopia ISDN Router models.
I I I I n n n n d d d d e e e e x x x x Numerics 10Base-T 4-3 10Base-T, connecting 4-3 56k, about G-1 accounting configuration 8-23 add static route 10-33 adding a filter set 14-13 advanced configuration features 7-8 answer profile...
Page 306
configuring profiles for incoming calls. 8-6 configuring terminal emulation software 5-3 configuring the console 7-11 connecting to an Ethernet network 4-3 connecting to the configuration screens 7-7 connection metering 8-12 connection profiles defined 6-3 scheduling 8-1 console configuring 7-11 screens, connecting to 7-7 console configuration 7-12 console connection problems A-2 console-based management...
Page 307
output 14-14 parts of 14-7 priority 14-5 using 14-12 viewing 14-16 finding an ISP B-1 firewall 14-17 firmware files updating with TFTP 15-8 updating with XMODEM 15-11 FTP sessions 14-20 further reading E-1 General Statistics 13-4 Glossary GL-1 hard seeding 12-3 hops 13-10 how to reach us A-3 input filter 3 14-18...
Page 308
7-8 Easy Setup 5-4 NCSA Telnet 5-3 nested IP subnets C-11 NetBIOS 10-37 11-3 NetBIOS scope 10-38 Netopia answering calls 8-4 connecting to Ethernet, rules 4-3 connecting to LocalTalk 4-5 connection profile 6-3 distributing IP addresses 10-35 IP setup 6-4 IPX setup 6-4 LocalTalk configuration 12-7...
Page 309
14-19 trusted subnet 14-19 tunnel options ATMP 9-16 PPTP 9-4 tunneling 9-1 12-3 updating firmware with TFTP 15-8 with XMODEM 15-11 updating Netopia’s firmware 15-8 uploading a configuration file 15-10 uploading configuration files with TFTP 15-10 with XMODEM 15-12 Index-5...
Page 310
user accounts 14-2 using filters 14-12 utilities and tests 15-1 viewing and modifying packet filters 14-23 viewing and modifying SAP filter sets 14-28 viewing IP trap receivers 13-15 viewing scheduled connections 8-8 Virtual Private Networks (VPN) 9-1 VPN 9-1 allowing through a firewall 9-19 ATMP tunnel options 9-16 default answer profile 9-8 encryption support 9-7...
L L L L i i i i m m m m i i i i t t t t e e e e d d d d W W W W a a a a r r r r r r r r a a a a n n n n t t t t y y y y a a a a n n n n d d d d L L L L i i i i m m m m i i i i t t t t a a a a t t t t i i i i o o o o n n n n o o o o f f f f R R R R e e e e m m m m e e e e d d d d i i i i e e e e s s s s Netopia warrants to you, the end user, that the Netopia R2020 Dual Analog Router (the “Product”) will be free from defects in materials and workmanship under normal use for a period of one (1) year from date of purchase.