Download Print this page

Advertisement

Quick Links

This document is uncontrolled pending incorporation in PDM
1 OVERVIEW
Security
The SVG2500 provides the following:
A
firewall
For wireless transmissions, data encryption and network access control
Network Address Translation
addresses of SVG2500 LAN computers are not visible on the Internet.
This diagram does not necessarily correspond to the network cabling. A full
discussion of network security is beyond the scope of this document.
Figure 1-6 — SVG2500 Security Measures
to protect the SVG2500 LAN from undesired attacks over the Internet
(NAT)
provides some security because the IP
15

Advertisement

loading

Summary of Contents for Motorola SVG2500

  • Page 1 1 OVERVIEW Security The SVG2500 provides the following: • firewall to protect the SVG2500 LAN from undesired attacks over the Internet • For wireless transmissions, data encryption and network access control Network Address Translation (NAT) provides some security because the IP addresses of SVG2500 LAN computers are not visible on the Internet.
  • Page 2 (DMZ) is one or more computers logically located outside the firewall between an SVG2500 LAN and the Internet. A DMZ prevents direct access by outside users to private data. For example, you can set up a web server on a DMZ computer to enable outside users to access your website without exposing confidential data on your network.
  • Page 3 “disabling SSID broadcasting” or “enabling closed network operation. ” Port Forwarding The SVG2500 opens logical data ports when a computer on its LAN sends data, such as e-mail messages or web data, to the Internet. A logical data port is different from a physical port, such as an Ethernet port.
  • Page 5 This document is uncontrolled pending incorporation in PDM 2 INSTALLATION The following topics provide information about installing the SVG2500 hardware: • Before You Begin • Precautions • Signing Up for Service • Computer System Requirements • Installing the Battery •...
  • Page 6 You will need 75-ohm coaxial cable with F-type connectors to connect the SVG2500 to the nearest cable outlet. If a TV is connected to the cable outlet, you may need a 5 to 900 MHz RF splitter and two additional coaxial cables to use both the TV and the SVG2500.
  • Page 7 • When can I begin to use my SVG2500? • Are there any files I need to download after connecting the SVG2500? • Do I need a user name or password to access the Internet or use e-mail? Computer System Requirements ®...
  • Page 8 1. Place the SVG2500 on a soft surface to access the bottom of the unit. 2. Pull up on the battery cover tab. 3. Align the key pins in the SVG2500 with the key slots on the battery for proper contact.
  • Page 9 This document is uncontrolled pending incorporation in PDM 2 INSTALLATION 4. The battery connectors should mate with the connectors on the SVG2500. Make sure the pull-tab is accessible and does not prevent the battery cover from closing properly. 5. Reinstall the battery cover with the alignment tabs seated downward.
  • Page 10 4. Plug the power cord into the electrical outlet. This turns the SVG2500 on. You do not need to unplug it when not in use. The first time you plug in the SVG2500, allow it 5 to 30 minutes to find and lock on the appropriate communications channels.
  • Page 11 This section describes installing the USB driver on a PC connected to the USB port on the SVG2500. Before connecting the PC to the SVG2500 USB port, perform one of the following procedures applicable to the Windows version you are running: •...
  • Page 12 2 INSTALLATION Installing the Windows 2000 USB Driver 1. Insert the SVG2500 Installation CD-ROM in the CD-ROM drive. This CD contains the USB drivers and must be inserted and read by the PC before you connect the SVG2500 to the PC.
  • Page 13 5. Click Next to display the Locate Driver Files window. 6. Checkmark CD-ROM drives only. 7. Click Next to display the Driver Files Search Results window. 8. Click Next to display the Digital Signature Not Found window. Motorola USB SVG Modem...
  • Page 14 Installing the Windows XP USB Driver 1. Insert the SVG2500 Installation CD-ROM in the CD-ROM drive. This CD contains the USB drivers and must be inserted and read by the PC before you connect the SVG2500 to the PC.
  • Page 15 Although your SVG model number may be different than in the images in this guide, the procedure is the same. 6. Click Finish to complete the installation. Otherwise, be sure the SVG2500 Installation CD-ROM is correctly seated in the CD-ROM drive.
  • Page 16 This document is uncontrolled pending incorporation in PDM 2 INSTALLATION Installing the Windows Vista USB Driver 1. Be sure the USB cable is connected to both the computer and the SVG2500 gateway. If not, connect it as described in Connecting a PC to the USB Port.
  • Page 17 5. Click Install this driver software anyway. The Found New Hardware window is displayed. Motorola USB SVG Modem 6. Click Close. The SVG2500 USB interface is now installed and ready for operation. When you finish installing the USB driver, you can continue with Configuring TCP/IP...
  • Page 18 You can connect a single PC running Windows 2000, Windows XP , or Windows Vista to the SVG2500 USB port. Caution! Before plugging in the USB cable, be sure the SVG2500 Installation CD-ROM is inserted in the PC CD-ROM drive. To connect a PC to the SVG2500 USB port: 1.
  • Page 19 This document is uncontrolled pending incorporation in PDM 2 INSTALLATION Windows 2000 or Windows XP To retrieve the IP and DNS addresses, do the following on each Ethernet client computer running Windows 2000 or Windows XP: 1. From the Windows Desktop, select Control Panel to display the Control Panel window.
  • Page 20 Open entry box and then click OK to display a command prompt window. 4. Type and press Enter to obtain your computer’s IP address from ipconfig /renew the DHCP server on the Motorola SVG2500. 5. Type and press Enter to return to Windows. exit Windows Vista...
  • Page 21 This document is uncontrolled pending incorporation in PDM 2 INSTALLATION Linux To retrieve the IP Address, do the following on each client computer running Linux: 1. Type at the system prompt to log in as super-user. 2. Type to display the network devices and allocated IP addresses. ifconfig 3.
  • Page 22 This document is uncontrolled pending incorporation in PDM 2 INSTALLATION Configuring TCP/IP in Windows 2000 1. Select Control Panel from either the Windows Start menu or Windows Desktop to display the Control Panel window. 2. Double-click Network and Dial-up Connections to display the Network and Dial-up Connections window.
  • Page 23 This document is uncontrolled pending incorporation in PDM 2 INSTALLATION 4. Click Properties to display the Local Area Connection number Properties window. Information similar to the following displays. 5. If Internet Protocol (TCP/IP) is in the list of components, TCP/IP is installed. You can skip to step 8.
  • Page 24 This document is uncontrolled pending incorporation in PDM 2 INSTALLATION 8. Click Internet Protocol (TCP/IP) and then click OK. The Local Area Connection number Properties window redisplays. 9. Click Internet Protocol (TCP/IP) and then click Properties to display the Internet Protocol (TCP/IP) Properties window: 10.
  • Page 25 This document is uncontrolled pending incorporation in PDM 2 INSTALLATION Configuring TCP/IP in Windows XP 1. On the Windows desktop, click Start to display the Start window: 2. Click Control Panel to display the Control Panel window. The display varies, depending on the Windows XP view options.
  • Page 26 This document is uncontrolled pending incorporation in PDM 2 INSTALLATION 4. Click Network Connections to display the LAN or High-Speed connections. You can skip to step 7 . 5. If a Classic view similar to the screenshot below displays, double-click Network Connections to display LAN or High-Speed Internet connections: 6.
  • Page 27 This document is uncontrolled pending incorporation in PDM 2 INSTALLATION 8. Select Internet Protocol (TCP/IP) and click Properties to display the Internet Protocol (TCP/IP) Properties window: 9. Make sure Obtain an IP address automatically and Obtain DNS server address automatically are selected.
  • Page 28 This document is uncontrolled pending incorporation in PDM 2 INSTALLATION 2. Click Control Panel to display the Control Panel Home window. 3. Double-click Network and Internet to display the Network and Internet window: 4. Double-click Network and Sharing Center to display the Network and Sharing Center window:...
  • Page 29 This document is uncontrolled pending incorporation in PDM 2 INSTALLATION 5. Click Manage network connections to display LAN or High-Speed Internet connections. 6. Right-click the network connection and select Properties to display the Local Area Connection Properties window. 7. If more than one connection is displayed, make sure to select the one for your network interface.
  • Page 30 This document is uncontrolled pending incorporation in PDM 2 INSTALLATION 8. Select Internet Protocol Version4 (TCP/IPv4) and click Properties to display the Internet Protocol Version4 (TCP/IPv4) Properties window. 9. Make sure Obtain an IP address automatically and Obtain DNS server address automatically are selected.
  • Page 31 5. If, as in the following window, an Autoconfiguration IP Address is displayed, there is an incorrect connection between the PC and the SVG2500, or there are broadband network problems: 6. After verifying the broadband connections, renew the IP address.
  • Page 32 This document is uncontrolled pending incorporation in PDM 2 INSTALLATION Verifying the IP Address in Windows Vista Do the following to verify the IP address: 1. On the Windows Vista desktop, click Start to display the Start Menu. 2. Click All Programs. 3.
  • Page 33 A display similar to the following indicates a normal configuration. 7. If, as in the following window, an Autoconfiguration IP Address is displayed, there is an incorrect connection between the PC and the SVG2500, or there are broadband network problems.
  • Page 34 Internet Service provider for help. Installing the Telephone for VoIP Your SVG2500 allows you to use your cable Internet connection for VoIP telephone service. You must contact a VoIP service provider for this feature to work with the SVG2500. You can connect up to two standard telephone lines using your SVG2500.
  • Page 35 A two-line telephone may be connected to TEL 1/2. TEL 2 Wall Mounting Your SVG2500 If you mount your SVG2500 on the wall, you must: • Locate the unit as specified by the local or national codes governing residential or business cable TV and communications services.
  • Page 36 Before drilling holes, check the structure for potential damage to water, gas, or electric lines. If necessary, seat an anchor in each hole. Use M3.5 x 38 mm (#6 x 1 inch) screws with a flat underside and maximum screw head diameter of 7 .0 mm to mount the SVG2500.
  • Page 37 There must be .09 inches (2.3 mm) between the wall and the underside of the screw head. 9. Place the SVG2500 so the keyholes on the back of the unit are aligned above the mounting screws. Be sure you do not damage the antennas.
  • Page 39 Wireless 802.11b/g Basic Page to disable. Starting the SVG2500 Configuration Manager (CMGR) 1. Open the web browser on a computer connected to the SVG2500 over an Ethernet or USB connection. Note: Do not attempt to configure the SVG2500 over a wireless connection.
  • Page 40 Current system time from the DOCSIS timeserver Click the Refresh button in your web browser any time you want to refresh the information on this page. If you have any problems starting the SVG2500 Configuration Manager (CMGR), see Troubleshooting for information.
  • Page 41 This document is uncontrolled pending incorporation in PDM 3 BASIC CONFIGURATION SVG2500 Menu Options Bar The SVG2500 Menu Options bar is displayed along the top of the SVG2500 Configuration Manager window. When a menu option is selected, a top-level page for that option is displayed.
  • Page 42 Changing the SVG2500 Default Password Do the following to change the default password: 1. On the SVG2500 Status page, click the Security submenu option from the Status Options list in the left panel to display the Status Security page. 2. In the Password Change Username field, type your new .
  • Page 43 To reset the user name and password back to the original factory settings: 1. Select Yes and then click Apply. 2. You must login with the default user name, ‘admin and password, ‘motorola,’ ,’ after applying this change All entries are case-sensitive.
  • Page 44 The following provides information about configuring the SVG2500 firewall and DMZ for gaming. Configuring the Firewall for Gaming By default, the SVG2500 firewall is disabled. If, as recommended, you enable the firewall, refer to the game’s documentation to ensure that the necessary ports are open for use by that game.
  • Page 45 You can reserve IP addresses for multiple devices, but only one can be designated as the gaming DMZ at once. Exiting the SVG2500 Configuration Manager To logoff and close the SVG2500 Configuration Manager: • Click Logout on the SVG2500 Menu Options bar...
  • Page 47 You can also monitor your cable system connection. Additional pages provide diagnostic tools and allow you to change your SVG2500 user name and password. You can click any Status submenu option to view or change the status information for that option.
  • Page 48 This document is uncontrolled pending incorporation in PDM 4 SVG2500 STATUS PAGES Status Connection Page This page provides the HFC and IP network connectivity status of the SVG2500 cable modem. The Connection page also displays IP lease information, including the current IP address of the cable modem, the duration of both leases, the expiration time of both leases, and the current system time from the DOCSIS timeserver.
  • Page 49 Status Security Page This page allows you to define administrator access privileges by changing your SVG2500 user name and password. It also allows you to reset your user name and password to the default setting. Changing the SVG2500 Default Password 1.
  • Page 50 Ping (Packet InterNet Groper) allows you to check connectivity between the SVG2500 and other devices on the SVG2500 LAN. This utility sends a small packet of data and then waits for a reply. When you Ping a computer IP address and receive a reply, it confirms that the computer is connected to the SVG2500.
  • Page 51 This document is uncontrolled pending incorporation in PDM 4 SVG2500 STATUS PAGES Traceroute Utility Traceroute allows you to map the network path from the SVG2500 Configuration Manager to a public host. Selecting Traceroute from the Select Utility drop-down list will present alternate controls for the Traceroute utility.
  • Page 52 This document is uncontrolled pending incorporation in PDM 4 SVG2500 STATUS PAGES Status Event Log Page This page lists the critical system events in chronological order. A sample Event log is shown below: Field Description Time Indicates the date and time the error occurred...
  • Page 53 You can click any Basic submenu option to view or change the configuration information for that option. Basic Setup Page This page allows you to configure the basic features of your SVG2500 gateway related to your ISP connection. Field Description...
  • Page 54 SVG2500 Access Point. IP Address The public WAN IP address of your SVG2500 device, which is either dynamically or statically assigned by your ISP. MAC Address Media Access Control address — a set of 12 hexadecimal digits assigned during manufacturing that uniquely identifies the hardware address of the SVG2500 Access Point.
  • Page 55 Enter the starting IP address to be assigned by the SVG2500 DHCP server to clients in dotted-decimal format. The default is 192.168.0.2. Number of CPEs Sets the number of clients for the SVG2500 DHCP server to assign a private IP address. There are 245 possible client addresses. The default is 245.
  • Page 56 This page allows you to set up the Dynamic Domain Name System (DDNS) service. The DDNS service allows you to assign a static Internet domain name to a dynamic IP address, which allows your SVG2500 to be more easily accessed from various locations on the Internet.
  • Page 57 Backing Up Your SVG2500 Configuration 1. Type the path with the file name where you want to store your backup file on your computer, or click Browse to locate the file. 2. Click Backup to create a backup of your SVG2500 settings.
  • Page 59 You can click any Advanced submenu option to view or change the advanced configuration information for that option. Advanced Options Page This page allows you to set the operating modes for adjusting how the SVG2500 device routes IP traffic. Field...
  • Page 60 Allows remote access to the SVG2500 Configuration Manager. Management This enables you to configure the SVG2500 WAN by accessing the WAN IP address at Port 8080 of the configuration manager from anywhere on the Internet. For example, in the browser URL window, type http://WanIPAddress:8080/ to access the SVG2500 Configuration Manager remotely.
  • Page 61 LAN by entering starting and ending IP address ranges. Note that you only need to enter the LSB (Least-significant byte) of the IP address; the upper bytes of the IP address are set automatically from the SVG2500 Configuration Manager’s IP address.
  • Page 62 This document is uncontrolled pending incorporation in PDM 6 SVG2500 ADVANCED PAGES Advanced MAC Filtering Page This page allows you to define Media Access Control (MAC) address filters to prevent PCs from sending outgoing TCP/UDP traffic to the WAN via their MAC addresses.
  • Page 63 This document is uncontrolled pending incorporation in PDM 6 SVG2500 ADVANCED PAGES Advanced Port Filtering Page This page allows you to define port filters to prevent all devices from sending outgoing TCP/UDP traffic to the WAN on specific IP port numbers. By specifying a starting and ending port range, you can determine what TCP/UDP traffic is allowed out to the WAN on a per-port basis.
  • Page 64 This document is uncontrolled pending incorporation in PDM 6 SVG2500 ADVANCED PAGES Advanced Port Forwarding Page This page allows you to run a publicly accessible server on the LAN by specifying the mapping of TCP/UDP ports to a local PC. This enables incoming requests on specific port numbers to reach web servers, FTP servers, mail servers, etc.
  • Page 65 This document is uncontrolled pending incorporation in PDM 6 SVG2500 ADVANCED PAGES Advanced Port Triggers Page This page allows you to configure dynamic triggers to specific devices on the LAN. This allows for special applications that require specific port numbers with bi-directional traffic to function properly.
  • Page 66 This document is uncontrolled pending incorporation in PDM 6 SVG2500 ADVANCED PAGES Advanced DMZ Host Page This page allows you to specify the "default" recipient of WAN traffic that NAT is unable to translate to a known local PC. The DMZ (De-militarized Zone) hosting (also commonly referred to as "Exposed Host") can also be described as a computer or...
  • Page 67 This document is uncontrolled pending incorporation in PDM 6 SVG2500 ADVANCED PAGES Advanced Routing Information Protocol Setup Page This page allows you to configure Routing Information Protocol (RIP) parameters related to authentication, destination IP address/subnet mask, and reporting intervals. RIP automatically identifies and uses the best known and quickest route to any given destination address.
  • Page 68 This document is uncontrolled pending incorporation in PDM 6 SVG2500 ADVANCED PAGES Field Description RIP Reporting Interval Determines how long before a RIP packet is sent out to the CPE. RIP Destination IP Address Location where the RIP packet is sent to update the routing table in your CPE.
  • Page 69 80. Inbound responses from the Internet are allowed because an outbound session is established. When required, you can configure the SVG2500 firewall to allow inbound packets without first establishing an outbound session. You also need to configure a port...
  • Page 70 LAN and WAN. Checkmark Enable for each Web filter you want to set for the firewall, and then click Apply. The Web filters will activate without having to reboot the SVG2500 Configuration Manager. Note: If you deselect all the Web filters, you will disable the firewall. This is not...
  • Page 71 This document is uncontrolled pending incorporation in PDM 7 SVG2500 FIREWALL PAGES Firewall Local Log Page This page allows you to set up how to send notification of the firewall event log in either of the following formats: • Individual e-mail alerts sent out automatically each time the firewall is under attack •...
  • Page 72 This document is uncontrolled pending incorporation in PDM 7 SVG2500 FIREWALL PAGES Firewall Remote Log Page This page allows you to send firewall attack reports out to a standard SysLog server so many instances can be logged over a long period of time. You can select individual attack or configuration items to send to the SysLog server so that only the items of interest will be monitored.
  • Page 73 This document is uncontrolled pending incorporation in PDM 8 SVG2500 PARENTAL CONTROL PAGES The SVG2500 Parental Control Pages allow you to configure access restrictions to a specific device connected to the SVG2500 LAN. You can click any Parental Control submenu option to view or change the configuration information for that option.
  • Page 74 This document is uncontrolled pending incorporation in PDM 8 SVG2500 PARENTAL CONTROL PAGES Field Description Add User Adds a user to set the parental controls for a specific user. User Settings Select the user for whom you want to modify their access restrictions.
  • Page 75 This document is uncontrolled pending incorporation in PDM 8 SVG2500 PARENTAL CONTROL PAGES Parental Control Basic Setup Page This page allows you to set rules to block certain kinds of Internet content and certain Web sites. After you have changed your Parental Control settings, click the appropriate Apply, Add, or Remove button.
  • Page 76 This page allows you to block all Internet traffic to and from specified devices on your SVG2500 network based on the day and time settings you specify. You can set policies to block Internet traffic for the entire day or just certain time periods within each day for specific users.
  • Page 77 This document is uncontrolled pending incorporation in PDM 8 SVG2500 PARENTAL CONTROL PAGES Parental Control Event Log Page This page displays a report of the Parental Control event log. The event log is a running list of the last 30 Parental Control access violations that include the following items on Internet traffic: •...
  • Page 79 The default SVG2500 settings provide no wireless security. After your WLAN is operational, be sure to enable wireless security. To enable security for your WLAN, you can do the following on the SVG2500: Perform Use in SVG2500 Configuration Mgr...
  • Page 80 You must configure the identical WEP key to the SVG2500 the SVG2500 on each wireless client. If all of your wireless clients support WPA encryption, Motorola recommends using WPA instead of WEP because WPA: • Provides much stronger encryption and is more secure •...
  • Page 81 (such as network name, and encryption key or WPA pass phrase) on each Wi-Fi device. Motorola SecureEasySetup technology dramatically simplifies installation by automating the processes of configuring new wireless networks and adding devices to existing networks.
  • Page 82 For this field, the channel selected on the wireless clients on your WLAN must be the same as the one selected on the SVG2500. Interface Allows the access point to be Enabled or Disabled.
  • Page 83 This document is uncontrolled pending incorporation in PDM 9 SVG2500 WIRELESS PAGES Wireless 802.11b/g Privacy Page This page allows you to configure the WEP keys and/or passphrase.
  • Page 84 This document is uncontrolled pending incorporation in PDM 9 SVG2500 WIRELESS PAGES Field Description Enables or disables Wi-Fi Protected Access (WPA) encryption. WPA2 WPA-PSK Enables or disables a local pre-shared key (WPA-PSK) passphrase. WPA2-PSK WPA/WPA2 Encryption When using WPA or WPA-PSK authentication, these WPA encryption modes can be set: TKIP, AES, or TKIP + AES.
  • Page 85 This document is uncontrolled pending incorporation in PDM 9 SVG2500 WIRELESS PAGES Field Description Network Key 1-4 Sets the static WEP keys when WEP encryption is enabled. Enter 5 ASCII characters or 10 hexadecimal digits for a 64-bit key. Enter 13 ASCII characters or 26 hexadecimal digits for a 128-bit key.
  • Page 86 This document is uncontrolled pending incorporation in PDM 9 SVG2500 WIRELESS PAGES Wireless 802.11b/g Access Control Page This page allows you to configure the Access Control to the AP as well as status on the connected clients. Field Description MAC Restrict Mode Selects whether wireless clients with the specified MAC address are allowed or denied wireless access.
  • Page 87 This document is uncontrolled pending incorporation in PDM 9 SVG2500 WIRELESS PAGES Wireless 802.11b/g Advanced Page This page allows you to configure data rates and WiFi thresholds. Field Description 54g™ Mode Sets these network modes: 54g Auto 54g Performance 54g LRS 802.11b only...
  • Page 88 This document is uncontrolled pending incorporation in PDM 9 SVG2500 WIRELESS PAGES Field Description Auto will provide the best performance in nearly all situations. Output Power Sets the output power as a percentage of the hardware's maximum capability. Beacon Interval Sets the beacon interval for the AP.
  • Page 89 This document is uncontrolled pending incorporation in PDM 9 SVG2500 WIRELESS PAGES Wireless 802.11b/g Wi-Fi Multimedia Page This page allows you to configure the Wi-Fi Multimedia Quality of Service (QoS). Field Description WMM Support Sets WMM support to Auto, On, or Off.
  • Page 90 This document is uncontrolled pending incorporation in PDM 9 SVG2500 WIRELESS PAGES Field Description EDCA AP Parameters Specifies the transmit parameters for traffic transmitted from the AP to the STA in four Access Categories: • Best Effort (AC_BE) • Background (AC_BK) •...
  • Page 91 This document is uncontrolled pending incorporation in PDM 9 SVG2500 WIRELESS PAGES Wireless 802.11b/g Guest Network Page This page allows you to configure a secondary guest network on the wireless interface. This network is isolated from the LAN. Any clients that associate with the guest network SSID...
  • Page 92 This document is uncontrolled pending incorporation in PDM 9 SVG2500 WIRELESS PAGES Field Description Guest Network You may have several different wireless Guest Networks running with different options. This field lets you select which wireless Guest Network you want to modify.
  • Page 93 SVG2500 Configuring a Wireless Client for WPA If you enabled WPA and set a PSK Passphrase by configuring WPA on the SVG2500, you must configure the same passphrase (key) on each wireless client. The SVG2500 cannot authenticate a client if: •...
  • Page 94 9 SVG2500 WIRELESS PAGES Configuring a Wireless Client for WEP If you enabled WEP and set a key by configuring WEP on the SVG2500, you must configure the same WEP key on each wireless client. The SVG2500 cannot authenticate a client if: •...
  • Page 95 This document is uncontrolled pending incorporation in PDM 10 SVG2500 VPN PAGES The VPN pages allow you to configure and manage VPN tunnels. You can click any VPN submenu option to view or change the configuration information for that option.
  • Page 96 This document is uncontrolled pending incorporation in PDM 10 SVG2500 VPN PAGES VPN IPsec Page This page allows you to configure multiple VPN tunnels to various client PCs. You can configure and store different tunnels, but you cannot enable them for ease of use with connections and/or client PCs that are not constantly used.
  • Page 97 This document is uncontrolled pending incorporation in PDM 10 SVG2500 VPN PAGES Field Description Name A generic user-specified name for a group of settings for a single tunnel. Once the appropriate tunnel name is entered for the first time, click Add New Tunnel to create a heading for the tunnel settings selected from the Tunnel drop-down list.
  • Page 98 This document is uncontrolled pending incorporation in PDM 10 SVG2500 VPN PAGES Field Description Remote Endpoint Settings Address group type Set the remote VPN access group to one of the following group types: • Single IP address – for one computer, enter the IP address for the specific computer •...
  • Page 99 This document is uncontrolled pending incorporation in PDM 10 SVG2500 VPN PAGES Field Description IPsec Settings With VPN tunnels, there are two phases of Security Association (SA). Phase 1 is used to create an IKE SA. After Phase 1 is completed, Phase 2 is used to create one or more IPSEC SAs, which are then used to key IPSEC sessions.
  • Page 100 Password Enter a user password for authentication. Confirm Password Enter the password again for confirmation. Preshared Phrase Pre shared Phrase – A phrase used to authenticate when the SVG2500 is acting as a Layer 2 Tunneling Protocol (L2TP) server.
  • Page 101 This document is uncontrolled pending incorporation in PDM 10 SVG2500 VPN PAGES VPN Event Log Page This page allows you to view the VPN Event Log. It shows a history of VPN connections and activity in chronological order and shows the IP address of both endpoints on the tunnel (remote and local).
  • Page 103 Internet to make telephone calls. Basic telephone functions such as call waiting, three-way calling, voice mail, and fax transmissions are supported with this connection on the SVG2500. You can click any MTA submenu option to view the status information for that option.
  • Page 104 This document is uncontrolled pending incorporation in PDM 11 SVG2500 MTA PAGES MTA QoS Page This page displays the MTA Quality of Service (QoS) parameters.
  • Page 105 This document is uncontrolled pending incorporation in PDM 11 SVG2500 MTA PAGES MTA Provisioning Page This page displays the MTA provisioning details about your SVG2500 VoIP telephone connection.
  • Page 106 11 SVG2500 MTA PAGES MTA Event Log This page displays the MTA Event Log information related to your SVG2500 VoIP telephone connection. Diagnostic messages generated by the MTA are provided. This information is intended for use by a qualified technician.
  • Page 107 SVG2500. You can click any Battery submenu option to view the status information for that option. Battery Controller Page This page displays the status of the SVG2500 battery controller. Field Description Driver Shows the Revision Level of the PICO microcode. The PICO is the module within the BCM3368 that is responsible for managing the battery charge and discharge circuitry.
  • Page 108 This document is uncontrolled pending incorporation in PDM 12 SVG2500 BATTERY PAGES Battery UPS Page This page displays the status of the individual batteries. Field Description Status Shows whether Battery A and/or Battery B are currently installed in the battery pack. Note that some units are only capable of supporting Battery A.
  • Page 109 If the solutions listed here do not solve your problem, contact your service provider. Before calling your service provider, try pressing the reset button on the rear panel of the SVG2500. Resetting the SVG2500 may take 5 to 30 minutes. Your service provider may ask for the...
  • Page 110 ONLINE IP registration is unsuccessful The IP registration is lost POWER The SVG2500 is not properly plugged into the The SVG2500 is unplugged power outlet Removing USB Drivers Removing the USB Driver in Windows 2000 Although your SVG model number may be different than in the images in this guide, the procedure is the same.
  • Page 111 4. Click Device Manager to display the Device Manager window: 5. Double-click Network Adapters to expand the list. 6. Click Motorola USB SVG Modem. The Uninstall icon displays on the menu bar at the top of the window. 7. Click the Uninstall icon. The Confirm Device Removal window is displayed: 8.
  • Page 112 5. Click the Hardware tab to display the Hardware page. 6. Click the Device Manager button to display the Device Manager window: 7. Double-click Network adapters. 8. Click the Motorola USB SVG Modem. The Uninstall icon displays on the window near the top. 9. Click the Uninstall icon.
  • Page 113 This document is uncontrolled pending incorporation in PDM 13 TROUBLESHOOTING 8. Double-click remove or remove.exe to run the Remove utility from the SVG2500 Installation CD-ROM. The Motorola USB Driver Removal window is displayed. Be sure the USB cable is disconnected.
  • Page 115 This document is uncontrolled pending incorporation in PDM 14 CONTACT US If you need assistance while working with the SVG2500, contact your Internet Service provider. For information about customer service, technical support, or warranty claims, see the Motorola Regulatory, Safety, Software License, and Warranty Information card provided with the SVG2500.
  • Page 117 How many users can one SVG2500 support? A single SVG2500 can support up to 245 users, each assigned a unique IP address, on a Class C network. What is Network Address Translation?
  • Page 118 Your SVG2500 is DOCSIS or Euro-DOCSIS certified. If I have an SVG2500, can I still use my old 28.8 Kbps or 56 Kbps modem? Yes you can. However, once you’ve experienced the speed of cable Internet access, you’ll never again want to wait for traditional dial-up services.
  • Page 119 This document is uncontrolled pending incorporation in PDM 16 SPECIFICATIONS GENERAL Standards Interoperates with DOCSIS and Euro-DOCSIS 2.0/1.1 and PacketCable and Euro-PacketCable 1.5/1.0 (SIP and CableHome 1.1 optional) Cable Interface F-connector, female, 75 Ω Network Interface One USB, four 10/100 Ethernet ports Wireless Interface 802.11b/g Wi-Fi Dimensions...
  • Page 120 This document is uncontrolled pending incorporation in PDM 16 SPECIFICATIONS UPSTREAM Modulation 8***, 16, 32***, 64***,128*** QAM or QPSK Maximum Channel Rate 30 Mbps** Bandwidth 200 kHz, 400 kHz, 800 kHz, 1.6 MHz, 3.2 MHz, 6.4 MHz*** Symbol Rates 160, 320, 640, 1280, 2560, 5120*** ksym/s Operating Level Range A-TDMA 8 to 54 dBmV (32, 64 QAM),...
  • Page 121 This document is uncontrolled pending incorporation in PDM 16 SPECIFICATIONS NETWORK Gateway DHCP , NAT, VPN endpoint, VPN tunneling; static routing and dynamic IP routing (RIPv1, RIPv2); SPI firewall with DoS protection and intrusion prevention; port, packet, and URL keyword filtering; full suite of ALGs; UPnP IGD 1.0 802.11b/g Wi-Fi, two external removable antennas, WDS bridging, Wireless LAN...
  • Page 123 This document is uncontrolled pending incorporation in PDM 17 GLOSSARY This glossary defines terms and lists acronyms used with the SVG2500. TERM DEFINITION access point A device that provides WLAN connectivity to wireless clients (stations). The SVG2500 acts as a wireless access point.
  • Page 124 Automatic medium-dependent interface crossover detects and corrects cabling errors by automatically reversing the send and receive pins on any port. It enables the use of straight-through wiring between the SVG2500 Ethernet port and any computer, printer, or hub. TERM DEFINITION...
  • Page 125 This document is uncontrolled pending incorporation in PDM 17 GLOSSARY TERM DEFINITION bridge An OSI layer 2 networking device that connects two LANs using similar protocols. It filters frames based on the MAC address to reduce the amount of traffic. A bridge can be placed between two groups of hosts that communicate a lot together, but not so much with the hosts in the other group.
  • Page 126 This document is uncontrolled pending incorporation in PDM 17 GLOSSARY TERM DEFINITION circuit-switched Network connection scheme used in the traditional PSTN telephone network, where each connection requires a dedicated path for its duration. An alternative is packet-switched. Class C An IP network containing up to 253 hosts. Class C IP addresses network are in the form “network.network.
  • Page 127 “leasing” an IP address and subnet mask to each client. It enables the automatic reuse of unused IP addresses. The SVG2500 is simultaneously a DHCP client and a DHCP server. A DHCP server at the cable system headend assigns a public IP address to the SVG2500 and optionally to clients on the SVG2500 LAN.
  • Page 128 DOCSIS is now called CableLabs Certified Cable Modems. Euro-DOCSIS is DOCSIS adapted for use in Europe. domain name A unique name, such as motorola.com, that maps to an IP address. Domain names are typically much easier to remember than are IP addresses. dotted-decimal...
  • Page 129 To encode data. endpoint A VPN endpoint terminates the VPN at the router so that computers on the SVG2500 LAN do not need VPN client software to tunnel through the Internet to the VPN server. Ethernet The most widely used LAN type, also known as IEEE 802.3. The...
  • Page 130 A device that enables communication between networks using different protocols. See also router. The SVG2500 enables up to 245 computers supporting IEEE 802.11b, Ethernet, or USB to share a single broadband Internet connection.
  • Page 131 This document is uncontrolled pending incorporation in PDM 17 GLOSSARY TERM DEFINITION H.323 A suite of protocols created by the ITU for interactive video conferencing, data sharing, and audio applications such as VoIP . half-duplex Network where only one device at a time can transmit data. See also full-duplex.
  • Page 132 This document is uncontrolled pending incorporation in PDM 17 GLOSSARY TERM DEFINITION On an HFC network, a hub is a scaled-down headend that performs some or all headend functions for part of the system. Hertz — one cycle per second. The unit to measure the frequency that an alternating electromagnetic signal cycles through its highest and lowest states.
  • Page 133 8 bits are the host address; in dotted-decimal format, the IP address appears as “network.network.network.host. ” If you enable the SVG2500 DHCP client on the Basic DHCP Page, the Internet Service provider automatically assigns the network address, subnet mask, domain name, and DNS server to provide a continuous Internet connection.
  • Page 134 This document is uncontrolled pending incorporation in PDM 17 GLOSSARY TERM DEFINITION ISAKMP Internet Security Association and Key Management Protocol ISDN Integrated Services Digital Network The International Organization for Standardization (http://www.iso.ch) is a worldwide federation of national standards bodies from approximately 140 countries. ISO is a non- governmental organization established in 1947 to promote the development of standardization and related activities in the world with a view to facilitating the international exchange of goods and...
  • Page 135 Ethernet network device. It is expressed as a sequence of 12 hexadecimal digits printed on a Label on the Bottom of the SVG2500. You need to provide the HFC MAC address to the Internet Service provider. Also called an Ethernet address, physical address, hardware address, or NIC address.
  • Page 136 This document is uncontrolled pending incorporation in PDM 17 GLOSSARY TERM DEFINITION Megahertz — one million cycles per second. A measure of radio frequency. MPDU MAC protocol data unit (PDU) MSDU MAC service data unit. Multiple Systems Operator. A company that owns and operates more than one cable system.
  • Page 137 This document is uncontrolled pending incorporation in PDM 17 GLOSSARY TERM DEFINITION establish a path between open systems. The network layer knows the address of the neighboring nodes, packages output with the correct network address data, selects routes, and recognizes and forwards to the transport layer incoming messages for local host domains.
  • Page 138 Built on DOCSIS 1.1, PacketCable networks use IP technology as the basis for a highly-capable multimedia architecture. pass-through A pass-through client on the SVG2500 LAN obtains its public IP address from the Internet Service provider’s DHCP server. Port Address Translation Peripheral Component Interconnect...
  • Page 139 Ports 0 to 1024 are reserved port mirroring A feature that enables one port (source) on the SVG2500 to be copied to another port (destination) to be studied. The destination mirrors the transmitted (from) or received (to) data on the source port to enable the person managing the network to monitor activity.
  • Page 140 The public switched telephone network is the traditional circuit- switched, voice-oriented telephone network. See also POTS. public IP The IP address assigned to the SVG2500 by the Internet Service address provider. A public IP address is visible to devices on the Internet.
  • Page 141 This document is uncontrolled pending incorporation in PDM 17 GLOSSARY TERM DEFINITION network. Request for Comments published on the IETF or other websites. Many RFCs become international standards. RJ-11 The most common type of connector for household or office phones. RJ-45 An 8-pin modular connector;...
  • Page 142 This document is uncontrolled pending incorporation in PDM 17 GLOSSARY TERM DEFINITION and manage networks and network devices. Data is exchanged using PDU messages. SOHO small office home office spectrum A specified range of frequencies used for transmission of electromagnetic signals. spectrum An allocation of portions of the available electromagnetic allocation...
  • Page 143 The SVG2500 reserves data bytes requiring x number of mini-slots. The CMTS replies that it can receive data at a specified time (synchronized). At the specified time, the SVG2500 transmits the x-number of data bytes. symbol rate Also known as baud rate.
  • Page 144 This document is uncontrolled pending incorporation in PDM 17 GLOSSARY TERM DEFINITION Transparent A method to enable all hosts on the wired Ethernet LAN, WLAN, bridging and USB connection to communicate as if they were all connected to the same physical network. transport layer Layer of the OSI concerned with protocols for error recognition and recovery.
  • Page 145 WiFi Wireless fidelity (pronounced y-phi) brand name applied to products supporting IEEE 802.11b. Wireless Cable The Motorola SURFboard Wireless Cable Modem Gateway is a Modem single device that combines a cable modem, router, Ethernet Gateway switch, wireless access point, and DHCP server for SOHO or...
  • Page 146 Wi-Fi Protected Access (WPA) encryption, as described on the Wi-Fi Alliance web page: http://www.wifialliance.org It is a far more robust form of encryption than WEP . Motorola recommends using WPA if all of your client hardware supports WPA.
  • Page 147 This document is uncontrolled pending incorporation in PDM Motorola, Inc. 101 Tournament Drive Horsham, PA 19044 U.S.A. http://www.motorola.com 540596-001-a 08/07...