ZyXEL Communications P-2602HWL-D1A Support Notes
  1. Manuals
  2. Brands
  3. ZyXEL Communications Manuals
  4. Wireless Router
  5. P-2602HWL-D1A
  6. Support notes
ZyXEL Communications P-2602HWL-D1A Support Notes

ZyXEL Communications P-2602HWL-D1A Support Notes

Zyxel p-2602hwl-d1a: user guide
Hide thumbs Also See for P-2602HWL-D1A:
Table of Contents

Advertisement

Quick Links

Download this manual See also: User Manual
Prestige 2602HWL-DXA
Support Notes
Version 3.40
Feb. 2006

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the P-2602HWL-D1A and is the answer not in the manual?

Questions and answers

Related Manuals for ZyXEL Communications P-2602HWL-D1A

Summary of Contents for ZyXEL Communications P-2602HWL-D1A

  • Page 1 Prestige 2602HWL-DXA Support Notes Version 3.40 Feb. 2006...

  • Page 2: Table Of Contents

    Setup SIP Account ...129 Peer to Peer call ...132 Phone port settings...136 Advanced voice settings configuration...138 Phone book Speed dial...141 Voice - QoS setup ...144 Call Forwarding setup...145 All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...
  • Page 3 Does Prestige support dynamic IP addressing? ...156 What is the difference between the internal IP and the real IP from my ISP? ...156 How does e-mail work through the Prestige? ...156 All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...
  • Page 4 Why use VoIP? ...163 What is the relationship between codec and VoIP?...164 What advantage does Voice over IP can provide?...164 What is the difference between H.323 and SIP?...164 All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...
  • Page 5 Content Filter FAQ ...172 IPSec FAQ ...172 What is VPN? ...172 Why do I need VPN? ...173 What are most common VPN protocols?...173 What is PPTP? ...173 What is L2TP? ...174 All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...
  • Page 6 Can Prestige behave as a NAT router supporting IPSec passthrough and an IPSec gateway simultaneously?...182 Wireless FAQ ...182 What is a Wireless LAN ? ...182 What are the advantages of Wireless LANs ? ...182 All contents copyright (c) 2005 ZyXEL Communications Corporation.
  • Page 7 By turning off the broadcast of SSID, can someone still sniff the SSID ? 189 What are Insertion Attacks ?...189 What is Wireless Sniffer ? ...189 What is the difference between Open System and Shared Key of Authentication Type ?...189 All contents copyright (c) 2005 ZyXEL Communications Corporation.
  • Page 8 What is AAA ?...190 What is RADIUS ?...190 What is WPA ?...191 What is WPA-PSK?...191 Trouble Shooting ...191 Using Embedded Packet Trace ...191 Debug PPPoE Connection ...206 CLI Command List ...218 All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...

  • Page 9: Application Notes

    2. DHCP server enabled with IP pool starting from 192.168.1.33 3. Default SMT menu password = 1234 • Setting up the PC (Windows OS) 1. Ethernet connection All PCs must have an Ethernet adapter card installed. All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...
  • Page 10 Prestige is powered on before answering Yes to the prompt. Repeat the above steps for each Windows PC on your network. • Setting up the Prestige router All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes window, click button.
  • Page 11 Prestige. The default LAN IP of the Prestige is 192.168.1.1. See the example below. Note that you can either http://192.168.1.1 2. Login first The default password is the default SMT password, '1234'. 3. Configure Prestige for Internet access by using WIZARD SETUP All contents copyright (c) 2005 ZyXEL Communications Corporation.
  • Page 12 Prestige 2602HWL-DxA Support Notes The Web screen shown below takes PPPoE as the example. All contents copyright (c) 2005 ZyXEL Communications Corporation.

  • Page 13: Setup The Prestige As A Dhcp Relay

    DHCP stands for Dynamic Host Configuration Protocol. In addition to the DHCP server feature, the P2602 supports the DHCP relay function. When it is configured as DHCP server, it assigns the IP addresses to the All contents copyright (c) 2005 ZyXEL Communications Corporation.
  • Page 14 Primary DNS Server= N/A Secondary DNS Server= N/A Remote DHCP Server= TCP/IP Setup: IP Address= 192.168.1.1 IP Subnet Mask= 255.255.255.0 RIP Direction= None Multicast= None IP Policies= All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes Relay 192.168.1.2 Version= N/A...

  • Page 15: Configure An Internal Server Behind Sua

    If the default server is not defined, the service request is simply discarded. • Configuration All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...
  • Page 16 Rule Start Port No. End Port No. IP Address --------------------------------------------------- Default Press ENTER to Confirm or ESC to Cancel: • Port numbers for some services Service Telnet SMTP All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes Default 0.0.0.0 192.168.1.10 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0...

  • Page 17: Configure A Pptp Server Behind Sua

    PPTP appears as new modem type (Virtual Private Networking Adapter) that can be selected when setting up a connection in the Dial-Up Networking folder. The VPN Adapter type does not appear elsewhere in the system. All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...
  • Page 18 Add an user account for PPTP logged on user Enable RAS port Select the network protocols from RAS such as IPX, TCP/IP NetBEUI Set the Internet gateway to Prestige All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...
  • Page 19 When you have finished the above settings, you can ping to the remote Win9x client from WinNT. This ping command is used to demonstrate that remote the Win9x can be reached across the All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes Default 0.0.0.0...
  • Page 20 IP address in the 'VPN Server' dialog box for reaching the PPTP server. After the VPN link is established, you can start the network protocol application such as IP, IPX and NetBEUI. All contents copyright (c) 2005 ZyXEL Communications Corporation.

  • Page 21: Using Nat / Multi-Nat

    Internet ISP, thus making them appear as if they had come from the NAT system itself (e.g., the Prestige router). The Prestige keeps track of the original addresses and port numbers so incoming reply packets can have their original values restored. All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes outside .
  • Page 22 3. Many to One In Many-to-One mode, the Prestige maps multiple ILA to one IGA. This is equivalent to SUA (i.e., PAT, port address translation), ZyXEL's Single User Account feature that previous ZyNOS routers supported (the SUA only option in today's routers).
  • Page 23 SUA in previous ZyNOS versions. • SMT Menus 1. Applying NAT in the SMT Menus All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes Mapping Direction...
  • Page 24 Address Mapping Set= 1 Press ENTER to Confirm or ESC to Cancel: The following table describes the options for Network Address Translation. Field Network Address Translation All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes Full Feature Options Description...
  • Page 25 Prestige), a server rule must be set up inside the NAT Address Mapping set. Please see further information on these menus. Enter 1 to bring up Menu 15.1-Address Mapping Sets All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes Overload mapping. Select Full Feature when you require other mapping types.
  • Page 26 255. SUA (read only) Enter Set Number to Edit: Let's first look at Option 255. Option 255 is equivalent to SUA in previous ZyXEL routers. The fields in this menu cannot be changed. Entering 255 brings up this screen. Menu 15.1.1 - Address Mapping Rules...
  • Page 27 Menu 15.1.1 - Address Mapping Rules Set Name= ? Idx Local Start IP Local End IP --- --------------- --------------- --------------- --------------- ------ All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes Global Start IP Global End IP Option/Example 0.0.0.0 Many-to-One type.
  • Page 28 15.1.1.1-Address Mapping Rule in which you can edit an individual rule and configure the Type, Local and Global Start/End IPs displayed in Menu 15.1.1. Menu 15.1.1.1 - - Rule 1 Type: One-to-One All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes , Select Rule= 0 Option...
  • Page 29 Note: For all Local and Global IPs, the End IP address must begin after the IP Start address, i.e., you cannot have an End IP address beginning before the Start IP address. • NAT Server Sets All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes Option/Example One-to-One...
  • Page 30 ESC at any time to cancel. Menu 15.2 - NAT Server Setup (Used for SUA Only) Rule Start Port No. End Port No. IP Address --------------------------------------------------- Default All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes Default 0.0.0.0...
  • Page 31 1. Internet Access Only In our Internet Access example, we only need one rule where all our ILAs map to one IGA assigned by the ISP. See the following figure. All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes 192.168.1.33 192.168.1.36...
  • Page 32 My Login= cso@zyxel My Password= ******** Idle Timeout (sec)= 0 IP Address Assignment= Dynamic IP Address= N/A Network Address Translation= Address Mapping Set= 1 Press ENTER to Confirm or ESC to Cancel: All contents copyright (c) 2005 ZyXEL Communications Corporation. SUA Only...
  • Page 33 NAT as shown below. Menu 15.2 - NAT Server Setup (Used for SUA Only) Rule Start Port No. End Port No. IP Address --------------------------------------------------- Default All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes Default 0.0.0.0 192.168.1.33 0.0.0.0...
  • Page 34 8. Rule 4 (Server type) to map a web server and mail server with ILA3 (192.168.1.20) to IGA3. Type Server allows us to specify multiple servers, of different types, to other machines behind NAT on the LAN. All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes 0.0.0.0 0.0.0.0...
  • Page 35 Rule 1 Setup: Select One-to-One type to map the FTP Server 1 with ILA1 (192.168.1.10) to IGA1. Menu 15.1.1.1 - - Rule 1 Type: One-to-One Local IP: All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes IGA3 Full Feature...
  • Page 36 Menu 15.1.1.3 - - Rule 3 Type: Many-to-One Local IP: Start= End = Global IP: Start= End = N/A All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes 192.168.1.10 [Enter IGA1] 192.168.1.11 [Enter IGA2] 0.0.0.0 255.255.255.255 [Enter IGA3]...
  • Page 37 Local End IP --- --------------- --------------- --------------- --------------- ------ 1. 192.168.1.10 2. 192.168.1.11 3. 0.0.0.0 255.255.255.255 [IGA3] All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes [Enter IGA3] Global Start IP Global End IP [IGA1] [IGA2] [IGA3]...
  • Page 38 Rule Start Port No. End Port No. IP Address --------------------------------------------------- Default Press ENTER to Confirm or ESC to Cancel: 4. Support Non NAT Friendly Applications All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes Default 0.0.0.0 192.168.1.20 192.168.1.20...
  • Page 39 Press ENTER to Confirm or ESC to Cancel: The three rules configured for using One-to-One mapping type is shown below. Menu 15.1.1.1 - - Rule 1 Type: One-to-One All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes 192.168.1.10 192.168.1.12 [Enter IGA1]...
  • Page 40 End = N/A Press ENTER to Confirm or ESC to Cancel: Menu 15.1.1.3 - - Rule 3 Type: One-to-One Local IP: Start= 192.168.1.12 End = N/A Global IP: Start= [Enter IGA3] End = N/A All contents copyright (c) 2005 ZyXEL Communications Corporation.
  • Page 41 The following table summarizes these types. NAT Type IP Mapping One-to-One ILA1<--->IGA1 ILA1<--->IGA1 Many-to-One ILA2<--->IGA1 (SUA/PAT) ILA1<--->IGA1 ILA2<--->IGA2 Many-to-Many ILA3<--->IGA1 Overload ILA4<--->IGA2 ILA1<--->IGA1 Many-to-Many No ILA2<--->IGA2 Overload ILA3<--->IGA3 ILA4<--->IGA4 All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...

  • Page 42: About Filter & Filter Examples

    With each filter set having up to six rules, you can have a maximum of 24 rules active for a single port. The following diagram illustrates the logic flow when executing a filter rule. All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...
  • Page 43 The Generic filter rules belong to the device category; they act on the raw data from/to LAN and WAN. The IP and IPX filter rules belong to the protocol category; they act on the IP and IPX packets. All contents copyright (c) 2005 ZyXEL Communications Corporation.
  • Page 44 'Protocol and device filter rules cannot be active together' IPX) filter rule in a filter set that has already had one or more active Generic filter rules. You will receive the All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes filter rules are in different filter sets.
  • Page 45 Active= Yes IP Protocol= 0 Destination: IP Addr= 0.0.0.0 Source: IP Addr= 0.0.0.0 TCP Estab= N/A All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes Log= None IP Source Route= No IP Mask= 0.0.0.0 Port #= 0 Port # Comp= None IP Mask= 0.0.0.0...
  • Page 46 Rem Node Name= LAN Active= Yes Encapsulation= PPP Incoming: Rem Login= test Rem Password= ******** All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes Log= None Route= IP Bridge= No Edit PPP Options= No Rem IP Addr= ?
  • Page 47 • Configuration Before configuring a filter, you need to know the following information: All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes Session Options: Edit Filter Sets= Yes protocol filters field.
  • Page 48 _______________ _______________ _______________ _______________ Enter Filter Set Number to Configure= 1 Edit Comments= Press ENTER to Confirm or ESC to Cancel: All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes Filter Set # Comments ------ ----------------- _______________...
  • Page 49 Filter #: 1,2 Filter Type= TCP/IP Filter Rule Active= Yes IP Protocol= 6 Destination: IP Addr= 0.0.0.0 All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes IP Source Route= No IP Mask= 0.0.0.0 Port #= 80 Port # Comp= Equal IP Mask= 0.0.0.0...
  • Page 50 Action Not Matched= Forward Press ENTER to Confirm or ESC to Cancel: 5. After the three rules are completed, you will see the rule summary in Menu 21. All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes IP Mask= 0.0.0.0...
  • Page 51 _______________ _______________ Enter Filter Set Number to Configure= 0 Edit Comments= Press ENTER to Confirm or ESC to Cancel: All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes M m n N D N N D N...
  • Page 52 Action Not Matched...Set to 'Forward' to allow the packets from other clients 3. Apply the filter set number '1' to the A filter for blocking a specific MAC address All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes IP Source Route= No IP Mask= 0.0.0.0...
  • Page 53 The detailed format of the Ethernet Version II: + Ethernet Version II - Address: 00-80-C8-4C-EA-63 (Source MAC) (Destination MAC) - Ethernet II Protocol Type: IP All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes 08 00 45 00 ----> 00-A0-C5-23-45...
  • Page 54 0040: 77 61 62 63 64 65 66 67 68 69 2. We are now ready to configure the 'Generic Filter Rule' as below. All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes [00 80 c8 4c ea 63].
  • Page 55 Specify the MAC address masked packet. If the result from the masked packet matches the 'Value', then the packet is considered matched. All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes Log= None [00 80 c8 4c ea 63]...
  • Page 56 Input Filter Sets: protocol filters= device filters= 1 Output Filter Sets: protocol filters= device filters= All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes Log= None in Menu 3.1. Please note that the but not the 'Protocol Filter'...
  • Page 57 Before starting to set the filter rules, please enter a name for each filter set in the 'Comments' field first. Menu 21 - Filter Set Configuration Filter All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes Filter...
  • Page 58 TCP Estab= No More= No Action Matched= Drop Action Not Matched= Check Next Rule Press ENTER to Confirm or ESC to Cancel: All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes Set # Comments ------ ----------------- _______________...
  • Page 59 Rule 3-Destination port number 138 with protocol number 6 (TCP) Menu 21.1.3 - TCP/IP Filter Rule Filter #: 1,3 Filter Type= TCP/IP Filter Rule Active= Yes All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes IP Source Route= No IP Mask= 0.0.0.0 Port #= 137 Port # Comp= Equal IP Mask= 0.0.0.0...
  • Page 60 IP Protocol= 17 Destination: IP Addr= 0.0.0.0 Source: IP Addr= 0.0.0.0 TCP Estab= N/A More= No All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes IP Source Route= No IP Mask= 0.0.0.0 Port #= 138 Port # Comp= Equal IP Mask= 0.0.0.0...
  • Page 61 • Rule 6-Destination port number 139 with protocol number 17 (UDP) Menu 21.1.6 - TCP/IP Filter Rule Filter #: 1,6 All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes IP Source Route= No IP Mask= 0.0.0.0 Port #= 139 Port # Comp= Equal IP Mask= 0.0.0.0...
  • Page 62 Pr=17, SA=0.0.0.0, DA=0.0.0.0, DP=138 5 Y IP Pr=6, SA=0.0.0.0, DA=0.0.0.0, DP=139 6 Y IP Pr=17, SA=0.0.0.0, DA=0.0.0.0, DP=139 All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes IP Source Route= No IP Mask= 0.0.0.0 Port #= 139 Port # Comp= Equal IP Mask= 0.0.0.0...
  • Page 63 Rule 2-Source port number 137, Destination port number 53 with protocol number 17 (UDP) Menu 21.2.2 - TCP/IP Filter Rule Filter #: 2,2 Filter Type= TCP/IP Filter Rule Active= Yes All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes 'Output Protocol Filter' IP Source Route= No IP Mask= 0.0.0.0...
  • Page 64 1. Apply the filter set 'NetBIOS_LAN' in the the packets from LAN Menu 3.1 - General Ethernet Setup Input Filter Sets: All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes IP Source Route= No IP Mask= 0.0.0.0...

  • Page 65: Using The Dynamic Dns (Ddns)

    IP is dynamic. With DDNS supported by the Prestige, you apply a DNS name (e.g., www.zyxel.com.tw) for your server (e.g., Web server) from a DDNS server. The outside users can always access the web server using the www.zyxel.com.tw regardless of the WAN IP of the Prestige.
  • Page 66 Host zyxel.com.tw. EMAIL Enter the email address you give to the DDNS server. Enter the user name that User All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes Menu 1 - General Setup DDNS server this field.

  • Page 67: Network Management Using Snmp

    TCP/IP protocol suite, it uses the UDP to exchange messages between a management Client and an Agent, residing in a network node. There are two versions of SNMP: Version 1 and Version 2. ZyXEL supports SNMPv1. Most of the changes introduced in Version 2 increase SNMP's security capabilities. SNMP encompasses three main areas: 1.
  • Page 68 NMSs use these operations to determine which variables a managed device supports and to sequentially gather information from variable tables (such as IP routing table) in managed devices. 9. Traps The managed devices to asynchronously report certain events to NMSs use trap. All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...
  • Page 69 The SNMPv1 messages contains two part. The first part contains a version and a community name. The second part contains the actual SNMP protocol data unit (PDU) specifying the operation to be performed (Get, Set, and All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...
  • Page 70 Variable-bindings 3. ZyXEL SNMP Implementation ZyXEL currently includes SNMP support in some Prestige routers. It is implemented based on the SNMPv1, so it will be able to communicate with SNMPv1 NMSs. For SNMPv1 operation, ZyXEL permits one community string so that the router can belong to only one community and allows trap messages to be sent to only one NMS manager.
  • Page 71 "System reboot by user !" will be sent. (ii) For fatal error : System has to reboot for some fatal errors. And traps with the message of the fatal code will be sent. All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...
  • Page 72 The SNMP related settings in Prestige are configured in menu 22, SNMP Configuration. The following steps describe a simple setup procedure for configuring all SNMP settings. Menu 22 - SNMP Configuration SNMP: Get Community= public Set Community= public Trusted Host= 192.168.1.33 All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...

  • Page 73: Using Syslog

    Prestige will not send trap any NMS manager. Using syslog 4. Prestige Setup Menu 24.3.2 - System Maintenance - UNIX Syslog and Accounting UNIX Syslog: Active= Yes Syslog IP Address= 192.168.1.33 Log Facility= Local 1 All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...
  • Page 74 , this option will enable the facility to receive message from the network using an Internet domain socket with the syslog services. The default setting is not enabled. 2. Edit the file /etc/syslog.conf local1.* /var/log/zyxel.log Where /var/log/zyxel.log is the full path of the log file. 3. Restart syslogd. • CDR log(call messages) Format: sdcmdSyslogSend( SYSLOG_CDR, SYSLOG_INFO, String );...
  • Page 75 Feb 14 16:57:17 192.168.1.1 ZyXEL Communications Corp.: board 0 line 0 channel 0, call 18, C01 Incoming Call OK Feb 14 17:07:18 192.168.1.1 ZyXEL Communications Corp.: board 0 line 0 channel 0, call 18, C02 Call Terminated • Packet triggered log Format: sdcmdSyslogSend( SYSLOG_PKTTRI, SYSLOG_NOTICE, String );...
  • Page 76 Protocol (TCP,UDP,ICMP) spo: Source port dpo: Destination port Example: Jul 19 14:44:09 192.168.1.1 ZyXEL Communications Corp.: IP[Src=202.132.154.1 Dst=192.168.1.33 UDP spo=0035 dpo=05d4]}S03>R01mF Jul 19 14:44:13 192.168.1.1 ZyXEL Communications Corp.: IP[Src=192.168.1.33 Dst=202.132.154.1 ICMP]}S03>R01mF • PPP Log Format: sdcmdSyslogSend( SYSLOG_PPPLOG, SYSLOG_NOTICE, String );...

  • Page 77: Using Ip Alias

    Therefore, three routes are created in the Prestige as shown below when the three networks are configured. If the Prestige's DHCP is also enabled, the IP pool for the clients can be any of the three networks. Copyright (c) 1994 - 2004 ZyXEL Communications Corp. ras> ip ro st...
  • Page 78 DHCP Setup three networks. Enter the first LAN IP address for the Prestige. This will create the first route in the TCP/IP Setup enif0 interface. All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes 192.168.1.33 192.168.1.1 255.255.255.0...

  • Page 79: Using Call Scheduling

    Toggle to 'Yes' and enter the third LAN IP address for the Prestige. This will create the IP Alias 2 third route in the enif0:1 interface. Using Call Scheduling 1. What is Call Scheduling ? All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes Menu 3.2.1 - IP Alias Setup 192.168.2.1 255.255.255.0 192.168.3.1...
  • Page 80 Schedule Set # Name ------ ----------------- 1 ZyXEL 2 _______________ 3 _______________ All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes Prestige 2602HWL-61C Main Menu Advanced Management 21. Filter and Firewall Setup 22. SNMP Configuration 23. System Password 24.
  • Page 81 Duration(hh:mm)= 16 : 00 Action= Enable Dial-on-demand Press ENTER to Confirm or ESC to Cancel: Key Settings: All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes 10 _______________ 11 _______________ 12 _______________ 2004 - 01 - 01...
  • Page 82 Service Type= Standard Service Name= Outgoing: My Login= cso@zyxel My Password= ******** Retype to Confirm= ******** Authen= CHAP/PAP All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes Route= IP Edit IP= No Telco Option: Allocated Budget(min)= 0 Period(hr)= 0...
  • Page 83 Time Zone= GMT+0800 Daylight Saving= No Start Date (mm-dd): 01 - 00 End Date (mm-dd): 01 - 00 All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes Session Options: Edit Filter Sets= No Idle Timeout(sec)= 100 Edit Traffic Redirect= No Daytime (RFC-867) 202.132.154.1...

  • Page 84: Using Ip Multicast

    Size of Client IP Pool= 32 Primary DNS Server= 0.0.0.0 Secondary DNS Server= 0.0.0.0 Remote DHCP Server= N/A TCP/IP Setup: IP Address= 192.168.1.1 All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes Menu 3.2 - TCP/IP and DHCP Setup...
  • Page 85 Enter here to CONFIRM or ESC to CANCEL: Key Settings: Multicast IGMP-v1 for IGMP version 1, IGMP-v2 for IGMP version 2. All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes IGMP-v2 Bridge Options: Ethernet Addr Timeout(min)= N/A...

  • Page 86: Using Prestige Traffic Redirect

    Configure parameters that determine when Prestige will forward WAN traffic to the backup gateway using SMT Menu 2 WAN Backup Setup. Menu 2 - Wan Backup Setup All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes Menu 2 - Wan Backup Setup...
  • Page 87 "down" after the Prestige times out the number of times specified in the Fail Tolerance field. Use a higher value in this field if your network is busy or congested. Traffic All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes DSL Link...

  • Page 88: Using Universal Plug N Play (Upnp)

    Internet gateway and delete the mappings when the connections are complete. The key components in UPnP are devices, services, and control points. All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...
  • Page 89 The description may include product name, model name, serial number, vendor ID, and embedded services...etc. • Control: Devices can be manipulated by control points through Control message. All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...
  • Page 90 2. Using UPnP in ZyXEL devices In this example, we will introduce how to enable UPnP function in ZyXEL devices. Currently, Microsoft MSN is the most popular application exploiting UPnP, so we take Microsoft MSN application as an example in this support note.
  • Page 91 MSN application can assign dynamic port mapping to the router. So that network administrator don't need to setup SUA port mapping in the router. 2. After getting IP address, you can go to open MSN application on PC and sign in MSN server. All contents copyright (c) 2005 ZyXEL Communications Corporation.
  • Page 92 Prestige 2602HWL-DxA Support Notes 3. Start a Video conversation with one online user. 4. On the opposite side, your partner select Accept to accept your conversation request. All contents copyright (c) 2005 ZyXEL Communications Corporation.
  • Page 93 Prestige 2602HWL-DxA Support Notes 5. Finally, your video conversation is achieved. All contents copyright (c) 2005 ZyXEL Communications Corporation.

  • Page 94: Wireless Application Notes

    Infrastructure mode, sometimes referred to as Access Point mode, is an operating mode of an 802.11b/Wi-Fi client unit. In infrastructure mode, the client unit can associate with an 802.11b/Wi-Fi Access Point and communicate with other clients in infrastructure mode through that access point. All contents copyright (c) 2005 ZyXEL Communications Corporation.
  • Page 95 ESSID= Wireless Hide ESSID= No Channel ID= CH07 2442MHz RTS Threshold= 2432 Frag. Threshold= 2432 WEP= Disable Default Key= N/A Key1= N/A Key2= N/A Key3= N/A Key4= N/A All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...
  • Page 96 1. From the web configurator main menu, click Network->wireless LAN to display –Wireless LAN. 3. Configure the desired configuation on Prestige wireless VoIP IAD and check the Active wireless LAN check box. 4. When finish click on apply button to take effect. All contents copyright (c) 2005 ZyXEL Communications Corporation.
  • Page 97 3. Select Infrastructure from the operation mode pull down menu, fill in an SSID or leave it as any if you wish to connect to any AP than press Apply Change to take effect. 4. Click on Site Survey tab, and press search all the available AP will be listed. All contents copyright (c) 2005 ZyXEL Communications Corporation.
  • Page 98 Prestige 2602HWL-DxA Support Notes 5. Double click on the AP you want to associated with. All contents copyright (c) 2005 ZyXEL Communications Corporation.

  • Page 99: Wireless Mac Address Filtering

    Wireless MAC address filtering MAC Filter Overview Users can use MAC Filter as a method to restrict unauthorized stations from accessing the APs. ZyXEL's APs provide the capability for checking MAC address of the station before allowing it to connect to the network.
  • Page 100 MAC addresses configured in this list will be allowed to Filter Action associate with AP. If Deny Association is selected in this field, hosts with MAC addresses configured in this list will be blocked. All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes 00:00:00:00:00:00 00:00:00:00:00:00...
  • Page 101 4. Select the Filter Action to allow or deny association from hosts in the list. 5. Enter the MAC Addresses which you may want to apply the filter to allow or block associations from. 6. Click Apply to make your setting work. All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...

  • Page 102: Wep Configuration (Wired Equivalent Privacy)

    The reson for this misnomer is that the WEP key ( 40/104 bits ) is concatenated with the initialisation vector ( 24 bits ) resulting in a 64/128 bit total key size. All contents copyright (c) 2005 ZyXEL Communications Corporation.
  • Page 103 64-bit WEP key (secret key) with 5 characters 64-bit WEP key (secret key) with 10 hexadecimal digits 128-bit WEP key (secret key) with 13 characters 128-bit WEP key (secret key) with 26 hexadecimal digits All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...
  • Page 104 Hexadecimal digits have to preceded by '0x', WEP Key type 64-bit WEP with 5 characters 64-bit WEP with 10 hexadecimal digits ('0-9', 'A-F') All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes Example Key1= 2e3f4 Key2= 5y7js...
  • Page 105 At the same time, when the station transmits data to access point which encrypt data by Key 2. The access point will decrypt the data by its Key 2. • Setting up the Access Point with Web configurator All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes Key3= 0x3456789ABC Key4= 0x456789ABCD...
  • Page 106 1. Double click on the utility icon in your windows task bar or right click the utility icon then select 'Show Config Utility'. The utility will pop up on your windows screen. All contents copyright (c) 2005 ZyXEL Communications Corporation.
  • Page 107 Select encryption type correspond with access point. Set up 4 Keys which correspond with the WEP Keys of access point. And select on WEP key as default key to encrypt wireless data transmission. All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...
  • Page 108 Prestige 2602HWL-DxA Support Notes All contents copyright (c) 2005 ZyXEL Communications Corporation.

  • Page 109: Configuring 802.1X

    Ethernet), in order to provide a means of authenticating and authorizing devices attached to a LAN port that has point-to-point connection characteristics, and of preventing access to that port in cases the authentication process fails. All contents copyright (c) 2005 ZyXEL Communications Corporation.
  • Page 110 The station must be running 802.1x-compliant client software such as that offered in the Microsoft Windows XP operating system, Meeting House AEGIS 802.1x client and Odyssey 802.1x client. 3. Authentication Server : All contents copyright (c) 2005 ZyXEL Communications Corporation.
  • Page 111 It validates the identity of the supplicant. Because the authenticator acts as the proxy, the authentication service is transparent to the supplicant. Some Wireless AP (i.e. ZyXEL Wireless AP) have built-in authentication server, external RADIUS authentication server is not needed. In this case, Wireless AP is acted as both authenticator and authentication server.
  • Page 112 Authenticator will send EAP-Request/ Identity to reinitiate authentication process. In ZyXEL Wireless AP 802.1x implementation, if you do not specify a time period before enabling re-authentication, the number of seconds between re-authentication attempts is 1800 seconds (30 minutes).
  • Page 113 Request followed by one or more Requests for authentication information. When supplicant receive the EAP request, it will reply associated EAP response. So far, ZyXEL Wireless AP only supports MD-5 challenge authentication mechanism, but will support TLS and TTLS in the future.
  • Page 114 The EAPOL packet contains the following fields: protocol version, packet type, packet body length and packet body. Most of the fields are obvious. The packet type can have four different values, and these values are described below: All contents copyright (c) 2005 ZyXEL Communications Corporation.
  • Page 115 • Enable 802.1x in AP When the IEEE 802.1x authentication is enabled, the wireless client must be authenticated by the ZyXEL AP before it can communicate on your network through ZyXEL AP. By default, the 802.1x function is disabled (Authentication Control= Force Authorized) to allow all wireless client. You can use SMT or Web Configuration to configure it.
  • Page 116 1. From the Web Configurator main menu, Click Network -> Wireless LAN -> and select 802.1x 2. Click Apply to make your setting work. All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes Menu 23.4 - System Security - IEEE802.1x...
  • Page 117 By storing wireless 802.1x client profiles locally, your ZyXEL AP is able to authenticate wireless client without interacting with a extra network RADIUS server. Follow the steps to add user accounts on your ZyXEL AP. 1. From the SMT main menu, enter 14 to display Menu 14 Dial-in User Setup Menu 14 - Dial-in User Setup 1.
  • Page 118 1. From the Web Configurator main menu, Network -> Wireless LA N -> Local User Database 2. Select one of the profile and check Active check box 3. Input the User Name and Password then click Apply to save the profile. All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes 18. ________ 26.
  • Page 119 • Using External RADIUS Authentication Server In addition to the internal authentication server inside ZyXEL AP, you can use external RADIUS authentication server to centrally manage the user account profile. RADIUS is based on a client-server model that supports authentication, authorization and accounting. The wireless AP is the client and the server is the RADIUS server.
  • Page 120 1. From the SMT main menu, enter Menu 23.2 to setup System Security - RADIUS Server to setup the RADIUS authentication server. Menu 23.2 - System Security - RADIUS Server Authentication Server: Active= Server Address= Port #= All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes 192.168.1.100 1812...
  • Page 121 Specify a password (up to 31 characters) as the key to be shared between external RADIUS authentication server and ZyXEL AP (RADIUS client). The key is not send Shared Secret to the network.

  • Page 122: Site Survey

    2. Visually inspect the facility, walk through the facility to verify the accuracy of the diagram and mark down any large obstacle you see that may effect the RF signal such as metal shelf, metal desk, etc on the diagram. All contents copyright (c) 2005 ZyXEL Communications Corporation.
  • Page 123 4. It's always a good idea to start with putting the access point at the corner of the room and walk away from the access point in a systematic manner. Record down the changes at point where transfer rate drop and the link quality and signal strength information on the diagram as you go alone. All contents copyright (c) 2005 ZyXEL Communications Corporation.
  • Page 124 7. You may need more than one access point is the RF coverage area have not cover all the wireless service area you needed. 8. Repeat step 1~6 of survey on site as necessary, upon completion you will have an diagram and information of site survey. As illustrated below. All contents copyright (c) 2005 ZyXEL Communications Corporation.

  • Page 125: Pstn Lifeline Application Notes

    PSTN dial out is 0000 and can be change to value you wish to) and dial this prefix to switch over to PSTN line than dial the PSTN number as normal. All contents copyright (c) 2005 ZyXEL Communications Corporation.

  • Page 126: Lifeline Configuration

    0000, than the device will switch over to PSTN line. At this moment you will heard dial tone from PSTN again. At this state you can dial out to PSTN as you would on a regular PSTN system. All contents copyright (c) 2005 ZyXEL Communications Corporation.

  • Page 127: Relay To Pstn

    If your ADSL line type is Splitter type you ISP will provide you with splitter otherwise it should be splitterless. For correct info you may check with your service provider as for which type of line you have. Firgure 1 Splitter type All contents copyright (c) 2005 ZyXEL Communications Corporation.

  • Page 128: Voip Application Notes

    Connect the DSL cable to the other output jacket on the Y connector Connect the Y connector input port with a phone cable to the wall Jack or line from ISP. VoIP Application Notes All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes Figure 2 Splitterless type...

  • Page 129: Setup Sip Account

    You should have a voice account already set up and have VoIP information from your VoIP service provider prior to configure SIP account on to the unit. With the account information your ITSP provider provided now you may start. All contents copyright (c) 2005 ZyXEL Communications Corporation.
  • Page 130 SIP. SIP Server Type the IP address of the SIP server in this field. All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...
  • Page 131 Prestige’s advanced VoIP settings like SIP server settings, the RTP port Setup range and the coding type. Apply Click Apply to save your changes back to the Prestige. Reset Click Reset to begin configuring this screen afresh. All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...

  • Page 132: Peer To Peer Call

    Note that there are 10 speed dial can be configured only so far. (2) Make you can call by callee's SIP number You need to configure the self SIP number and put callee's IP address at SIP server, SIP proxy, Domain All contents copyright (c) 2005 ZyXEL Communications Corporation.
  • Page 133 Prestige 2602HWL-DxA Support Notes server all in the VOIP screen. Setup--- Configuring SIP / VoIP related settings in device A All contents copyright (c) 2005 ZyXEL Communications Corporation.
  • Page 134 2. Fill in device B’s IP into SIP server address, Register server address… as example. 3. Setup speed dial, put device B’s information into the column. Setup--- Configuring SIP / VoIP related settings in device B All contents copyright (c) 2005 ZyXEL Communications Corporation.
  • Page 135 Prestige 2602HWL-DxA Support Notes All contents copyright (c) 2005 ZyXEL Communications Corporation.

  • Page 136: Phone Port Settings

    After completing the setting, you can dial #01 from the phone under device A, then the phone under device B will ring. Phone port settings Prestige allow you to configure the volume and echo cancellation setting for each individual phone port. All contents copyright (c) 2005 ZyXEL Communications Corporation.
  • Page 137 Use this field to set the loudness that the Prestige uses for the speech signal Volume that it receives from the peer device and sends to your phone. -1 is the All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...

  • Page 138: Advanced Voice Settings Configuration

    Advanced Settings to display the following screen. Advanced voice settings configuration allows user to modify SIP server related settings, RTP port range, preferred compression type (codec), DTMF type and Message Waiting Indication (MWI) All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...
  • Page 139 SIP Account This read-only field displays the number of the SIP account that you are configuring. The changes that you save in this page affect the Prestige’s settings with the SIP account displayed here.. All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...
  • Page 140 It DTMF Mode is recommended that you use the same mode that your VoIP service provider uses. All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...

  • Page 141: Phone Book Speed Dial

    Click Apply to save your changes back to the Prestige. Phone book Speed dial Prestige allows you to configure up to 10 SIP numbers in the phone book for speed dial. All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...
  • Page 142 IP or URL remote peer. Step 6. Click on Add button when you are finish to add the entry to the phone book. Each field's detail description of the page is listed below. All contents copyright (c) 2005 ZyXEL Communications Corporation.
  • Page 143 Add New Entry section of the screen where you can edit it. Click this button to remove all of the entries from the speed dial phonebook. Clear All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...

  • Page 144: Voice - Qos Setup

    Type the VLAN ID (VID) from 1 to 4095 for the Prestige to add to voice Ethernet frames that it sends out to the network. Disable VLAN tagging if the Prestige does not need to be a member of a All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...

  • Page 145: Call Forwarding Setup

    Prestige to block or redirect calls. You can configure a different call forwarding table for each SIP account or use the same call forwarding table for both. Unconditional Forward to Number All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...
  • Page 146 With call waiting a second call is only forwarded after being rejected. Enable this feature to have the Prestige forward incoming calls to the No Answer All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...
  • Page 147 Select Block to have the Prestige reject calls from the number specified in the call forwarding entry. Select Accept to have the Prestige allow calls from the number specified in All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...

  • Page 148: Voice – Common Settings

    Click VoIP -> Phone -> Common to display the following screen. Use this screen to configure Immediate Dial Click VoIP -> Phone -> Region to display the following screen. Use this screen to configure VoIP Common Settings. Label Description All contents copyright (c) 2005 ZyXEL Communications Corporation.

  • Page 149: Zynos Faq

    Click Back to return to the previous screen. Apply Click Apply to save your changes back to the Prestige. ZyNOS FAQ What is ZyNOS? All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes services from your voice service provider.

  • Page 150: How Do I Access The Embedded Web Configurator

    ZyNOS is ZyXEL's proprietary Network Operating System. It is the platform on all Prestige routers that delivers network services and applications. It is designed in a modular fashion so it is easy for developers to add new features. New ZyNOS software upgrades can be easily downloaded from our FTP sites and public Web download site as they become available.

  • Page 151: How Do I Upload Or Backup Romfile Via Web Configurator

    Use the a FTP client program in your PC (such as cuteftp, wsftp client) to login to your Prestige. b. To backup the configurations, use FTP client program to get file 'rom-0' from the Prestige. All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...

  • Page 152: Why Can't I Make Telnet To Prestige From Wan

    This is because SUA keeps a table of the IP addresses and port numbers of the local systems currently using it. All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...

  • Page 153: What Is The Difference Between Nat And Sua

    The design goal of ZyXEL's SUA is to minimize the Internet access cost in a small office environment by using a single IP address to represent the multiple hosts inside. It does more than IP address translation, so that multiple hosts on the LAN can access the Internet at the same time.

  • Page 154: Product Faq

    There are some service providers running of PPPoE today. Before configuring PPPoE in the Prestige, please make sure your ISP supports PPPoE. All contents copyright (c) 2005 ZyXEL Communications Corporation.

  • Page 155: Does The Prestige Support Pppoe

    Browse the World Wide Web (WWW), send and receive individual e-mail, and download software. These are just a few of many benefits you can enjoy when you put the whole office on-line with the Prestige Internet Access Sharing Router. All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...

  • Page 156: Does Prestige Support Dynamic Ip Addressing

    Prestige's DHCP client allows it to get the Internet IP address from ISP automatically if your ISP use DHCP as a method to assign IP address. The Prestige's internal DHCP server allows it to automatically assign IP and DNS addresses to the clients on the local LAN. All contents copyright (c) 2005 ZyXEL Communications Corporation.

  • Page 157: How Do I Used The Reset Button, More Over What Field Of Parameter Will Be Reset By Reset Button

    Networks use 10baseT Ethernet, and although they are 10 Mbps networks, it takes a LOT longer than one second to transmit 10 megabits (or 1.25 megabytes) of data from one terminal to another. All contents copyright (c) 2005 ZyXEL Communications Corporation.

  • Page 158: What Is Multi-Nat

    Make local server accessible from outside Internet When NAT is enabled the local computers are not accessible from outside. You can use Multi-NAT to make an internal server accessible from outside. All contents copyright (c) 2005 ZyXEL Communications Corporation.

  • Page 159: What Ip/Port Mapping Does Multi-Nat Support

    2. Many to One In Many-to-One mode, the Prestige maps multiple ILA to one IGA. This is equivalent to SUA (i.e., PAT, port address translation), ZyXEL's Single User Account feature that previous ZyNOS routers supported (the SUA only option in today's routers).

  • Page 160: What Is The Difference Between Sua And Multi-Nat

    Internet Access Sharing Router is a BOOTP/DHCP server. Win95 and WinNT clients use DHCP to request an internal IP address, while WFW and WinSock clients use BOOTP. TCP/IP clients may specify their own IP or utilize BOOTP/DHCP to request an IP address. All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...

  • Page 161: What Is Ddns

    IP is dynamic. With DDNS supported by the Prestige, you apply a DNS name (e.g., www.zyxel.com.tw) for your server (e.g., Web server) from a DDNS server. The outside users can always access the web server using the www.zyxel.com.tw regardless of the WAN IP of the 312.

  • Page 162: Can The Prestige Sua Handle Ipsec Packets Sent By The Vpn Gateway Behind Prestige

    Do I need Lifeline? Not everyone needs lifeline support on VoIP telephone adapter. It depends on the government authority or ITSP provider. As in some countries lifeline support are mandatory by law. All contents copyright (c) 2005 ZyXEL Communications Corporation.

  • Page 163: Can I Connect More Than One Phone On The Phone Port

    Traditional telephony can not evolve as quickly as the demand and develop new feature on circuit switch takes much time and money. IP is an already exist standard and many type of service All contents copyright (c) 2005 ZyXEL Communications Corporation.

  • Page 164: What Is The Relationship Between Codec And Voip

    Voice quality is most commonly rated through a voice quality metric called the Mean Opinion Score (MOS) which is recommendation by ITU-T. The MOS is a 5 point scale where 5 represent excellent voice quality and 1 represent bad voice quality. All contents copyright (c) 2005 ZyXEL Communications Corporation.

  • Page 165: What Is Codec

    • G.711a-law voice codec Note: G.711 u-law or G.711 a-law is country specific, thus ZyXEL device is shipped preconfigured to use u-law or a-law according to specific country. If for special reason this setting needed to be changed. It can be modify through device CI command through telnet.

  • Page 166: Unable To Register With The Sip Server

    If you can register to server but can only make out going call but can not receive incoming calls or the incoming call signal establishment can be made but voice only goes one way very likely there is NAT/firewall router before it, please see NAT/firewall related question above for tips to troubleshoot. All contents copyright (c) 2005 ZyXEL Communications Corporation.

  • Page 167: If All The About Have Been Tried, But Register Still Fail What Should I Do

    Please follow the troubleshooting section in the user’s guide for brief hardware troubleshooting and diagnostic tips. If you are sure there is a hardware problem after following the hardware diagnostic tips in the user’s guide. Please contact your ZyXEL local vendor to send the device in for RMA service. Firewall FAQ What is a network firewall? A firewall is a system or group of systems that enforces an access-control policy between two networks.

  • Page 168: What Are The Basic Types Of Firewalls

    4. The Prestige's firewall is fast. It uses a hashing function to search the matched session cache instead of going through every individual rule for a packet. 5. The Prestige's firewall provides email service to notify you for routine reports and when alerts occur. All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...

  • Page 169: Nat Built-In

    SYN attack floods a targeted system with a series of SYN packets. Each packet causes the targeted system to issue a SYN-ACK response, While the targeted system waits for the ACK that follows the All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...

  • Page 170: What Is Land Attack

    There are two default ACLs pre-configured in the Prestige, one allows all connections from LAN to WAN and the other blocks all connections from WAN to LAN except of the DHCP packets. All contents copyright (c) 2005 ZyXEL Communications Corporation.

  • Page 171: How Can I Protect Against Ip Spoofing Attacks

    Where a.b.c.d is an IP address on your local network and w.x.y.z is your netmask: For the output data filters: • Deny bounceback packet • Allow packets that originate from us Filter rule setup: • Filter Type =TCP/IP Filter Rule All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...

  • Page 172: Content Filter Faq

    What types of content filter does Prestige provide? Can I have different policies in effect for different times of the day or week? Yes, but only one blocking period of time is supported currently on ZyXEL appliance. Can I override (block or allow) certain URLs by wording? Yes, you can use key word blocking to achieve this.

  • Page 173: What Are Most Common Vpn Protocols

    PPTP is a tunneling protocol defined by the PPTP forum that allows PPP packets to be encapsulated within Internet Protocol (IP) packets and forwarded over any IP network, including the Internet itself. The All contents copyright (c) 2005 ZyXEL Communications Corporation.

  • Page 174: What Is L2Tp

    IP payload including user data. There is no restriction that the IPSec hosts and the security gateway must be separate machines. Both IPSec protocols, AH and ESP, can operate in either transport mode and tunnel mode. All contents copyright (c) 2005 ZyXEL Communications Corporation.

  • Page 175: What Is Pre-Shared Key

    Such additional information is what we call phase 1 ID. In the IKE payload, there are local and peer ID field to achieve this. All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...

  • Page 176: What Are Local Id And Peer Id

    IPSec VPN is available for Prestige since ZyNOS V3.50. It is free upgrade, no registration is needed. By upgrading the firmware and also configurations (romfile) to ZyNOS V3.50, the IPSec VPN capability All contents copyright (c) 2005 ZyXEL Communications Corporation.

  • Page 177: How Do I Configure Prestige Vpn

    I am planning my Prestige-to-Prestige VPN configuration. What do I need to know? First of all, both Prestige must have VPN capabilities. Please check the firmware version, V3.50 or later has the VPN capability. All contents copyright (c) 2005 ZyXEL Communications Corporation.

  • Page 178: Does Prestige Support Dynamic Secure Gateway Ip

    Cisco 1720 Router, IOS 12.2(2)XH, IP/ADSL/FW/IDS PLUS IPSEC 3DES • NetScreen 5, ScreenOS 2.6.0r6 • SonicWALL SOHO 2 • WatchGuard Firebox II • ZyXEL Prestige 100 • Avaya VPN • Netopia VPN • III VPN All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...

  • Page 179: What Vpn Software That Has Been Tested With Prestige Successfully

    If Prestige stays in menu 24.1, 24.8 and 27.3 a certain of memory is allocated to generate the required statistics. So, we do not suggest to stay in menu 24.1, 27.3 and 24.8 when VPN is in use. All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...

  • Page 180: Where Can I Configure Phase 1 Id In Prestige

    If I have NAT router between two VPN gateways, and I would like to use IP type as Phase 1 ID, what should I know? We presume your environment may look like this, All contents copyright (c) 2005 ZyXEL Communications Corporation.

  • Page 181: How Can I Keep A Tunnel Alive

    PCs or even a network of PCs to utilize the VPN/IPSec service. Can Prestige support IPSec passthrough? Yes, Prestige can support IPSec passthrough. Prestige series don't only support IPSec/VPN gateway, it can also be a NAT router supporting IPSec passthrough. All contents copyright (c) 2005 ZyXEL Communications Corporation.

  • Page 182: Can Prestige Behave As A Nat Router Supporting Ipsec Passthrough And An Ipsec Gateway Simultaneously

    What are the advantages of Wireless LANs ? a. Mobility: Wireless LAN systems can provide LAN users with access to real-time information anywhere in their organization. This mobility supports productivity and service opportunities not possible with wired All contents copyright (c) 2005 ZyXEL Communications Corporation.

  • Page 183: What Are The Disadvantages Of Wireless Lans

    What is an Access Point ? The AP (access point also known as a base station) is the wireless server that with an antenna and a wired All contents copyright (c) 2005 ZyXEL Communications Corporation.

  • Page 184: What Is Ieee 802.11

    What is 802.11g ? 802.11g is an extension to 802.11b. 802.11g increases 802.11b's data rates to 54 Mbps and still utilise the the 2.4 GHz ISM. Modulation is based upon OFDM (orthogonal frequency division multiplexing) All contents copyright (c) 2005 ZyXEL Communications Corporation.

  • Page 185: Is It Possible To Use Products From A Variety Of Vendors

    Bluetooth device may have on an 802.11 network, if any, aren't far-reaching. Can radio signals pass through walls ? Transmitting through a wall is possible depending upon the material used in its construction. In general, All contents copyright (c) 2005 ZyXEL Communications Corporation.

  • Page 186: What Are Potential Factors That May Causes Interference Among Wlan Products

    Infrastructure mode implies connectivity to a wired communications infrastructure. If such connectivity is required the Access Points must be used to connected to the wired LAN backbone. Wireless clients have their configurations set for "infrastructure mode" in order to utilise access points relaying. All contents copyright (c) 2005 ZyXEL Communications Corporation.

  • Page 187: How Many Access Points Are Required In A Given Area

    The ISM band is populated by Industrial, Scientific and Medical devices that are all low power devices, but can interfere with each other. What is Server Set ID (SSID) ? All contents copyright (c) 2005 ZyXEL Communications Corporation.

  • Page 188: What Is An Essid

    Vector " (not under user control) (40+24=64). Some vendors refer to this level of WEP as 40 bit, others as 64 bit. What is a WEP key ? A WEP key is a user defined string of characters used to encrypt and decrypt data. All contents copyright (c) 2005 ZyXEL Communications Corporation.

  • Page 189: A Wep Key Is A User Defined String Of Characters Used To Encrypt And Decrypt Data

    Open System: The default authentication service that simply announces the desire to associate with another station or access point. A station can authenticate with any other station or access point using open system All contents copyright (c) 2005 ZyXEL Communications Corporation.

  • Page 190: What Is 802.1X

    MAC address) and accounting for their network usage. What is RADIUS ? RADIUS stands for Remote Authentication Dial-In User Service. RADIUS is a standard that has been All contents copyright (c) 2005 ZyXEL Communications Corporation.

  • Page 191: What Is Wpa-Psk

    Prestige. It is also very helpful for diagnostics if you have compatibility problems with your ISP or if you want to know the details of a packet for configuring a filter rule. The format of the display is as following: Packet: 11880.160 ENET0-R[0062] TCP 192.168.1.2:1108->192.31.7.130:80 All contents copyright (c) 2005 ZyXEL Communications Corporation.
  • Page 192 11883.340 ENET0-R[0060] TCP 192.168.1.2:1108->192.31.7.130:80 11883.340 ENET0-R[0339] TCP 192.168.1.2:1108->192.31.7.130:80 11883.610 ENET0-T[0054] TCP 192.31.7.130:80->192.168.1.2:1108 11883.620 ENET0-T[0102] TCP 192.31.7.130:80->192.168.1.2:1108 All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes sys trcp channel enet1 none sys trcp channel enet0 bothway sys trcp sw on &...
  • Page 193 TCP Header: Source Port Destination Port Sequence Number Ack Number Header Length Flags All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes Time: 12089.790 sec = 00A0C5921311 = 0080C84CEA63 = 0x0800 (TCP/IP) = 20 = 0x00 (0)
  • Page 194 Time to Live Protocol = 0x06 (TCP) Header Checksum Source IP Destination IP TCP Header: All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes = 0x2000 (8192) = 0xBEC3 (48835) = 0x0000 (0) Time: 12090.020 sec = 0080C84CEA63...
  • Page 195 Header Length Type of Service Total Length Idetification Flags Fragment Offset Time to Live All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes = 0x0050 (80) = 0x045C (1116) = 0x4AD1B57F (1255257471) = 0x00BD15A8 (12391848) = 24 = 0x12 (.A..S.)
  • Page 196 1.3 Enable the trace log by entering: 1.4 Display the brief trace online by entering: 1.5 Display the detailed trace online by entering: Example: All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes = 0x06 (TCP) = 0x3C79 (15481) = 0xC0A80102 (192.168.1.2)
  • Page 197 Total Length Idetification Flags Fragment Offset Time to Live Protocol Header Checksum Source IP All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes Time: 12387.260 sec = 00A0C5921312 = 00A0C5012345 = 0x0800 (TCP/IP) = 20 = 0x00 (0)
  • Page 198 Frame Type: TCP 202.132.155.97:10270->192.31.7.130:80 Ethernet Header: Destination MAC Addr Source MAC Addr Network Type IP Header: All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes = 0xCA849B61 (202.132.155.97) = 0x0050 (80) = 0x281E (10270) = 0xD3E95985 (3555285381)
  • Page 199 ---<0002>---------------------------------------------------------------- LAN Frame: ENET1-XMIT Size: 54/ 54 Frame Type: TCP 202.132.155.97:10270->192.31.7.130:80 Ethernet Header: Destination MAC Addr All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes = 20 = 0x00 (0) = 0x0028 (40) = 0x7A0C (31244) = 0x02...
  • Page 200 0020: 07 82 28 1E 00 50 00 C1-8F 63 D3 E9 5D E9 50 11 ..(..P...c..].P. 0030: 1D D5 7A 11 00 00 Prestige> All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes = 00A0C5921312 = 0x0800 (TCP/IP)
  • Page 201 10855.810 ENET0-R[0062] TCP 192.168.1.2:1103->192.31.7.130:80 10855.840 ENET0-R[0062] TCP 192.168.1.2:1104->192.31.7.130:80 10856.020 ENET0-T[0054] TCP 192.31.7.130:80->192.168.1.2:1102 10856.030 ENET0-T[0058] TCP 192.31.7.130:80->192.168.1.2:1103 All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes sys trcp channel enet1 none sys trcp channel enet0 bothway sys trcp sw on &...
  • Page 202 Destination IP TCP Header: Source Port Destination Port Sequence Number Ack Number Header Length All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes Time: 10856.030 sec = 0080C84CEA63 = 00A0C5921311 = 0x0800 (TCP/IP) = 20 = 0x00 (0)
  • Page 203 Prestige> sys trcp sw off Prestige> sys trcp brief 12864.800 ENET1-T[0411] TCP 202.132.155.97:10278->204.217.0.2:80 12864.890 ENET1-R[0247] TCP 204.217.0.2:80->202.132.155.97:10282 12864.900 ENET1-T[0416] TCP 202.132.155.97:10282->204.217.0.2:80 All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes = 0x12 (.A..S.) = 0xFAF0 (64240) = 0xDCEF (56559)
  • Page 204 Source Port Destination Port Sequence Number Ack Number Header Length Flags Window Size All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes Time: 12865.120 sec = 00A0C5921312 = 00A0C5591284 = 0x0800 (TCP/IP) = 20 = 0x00 (0)
  • Page 205 Total Length Idetification Flags Fragment Offset Time to Live Protocol Header Checksum All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes = 0xAB57 (43863) = 0x0000 (0) Time: 12865.130 sec = 00A0C5591284 = 00A0C5921312 = 0x0800 (TCP/IP)

  • Page 206: Debug Pppoe Connection

    0050: 6F 2F 62 65 73 74 6F 66-74 69 6D 65 73 2E 67 69 o/bestoftimes.gi Prestige> Debug PPPoE Connection Debug PPPoE Connection All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes = 0xCA849B61 (202.132.155.97) = 0xCCD90002 (204.217.0.2)
  • Page 207 1 Start dialing for node <GPMI>... poeNetCmdExe: chann poe0 event x420 poeChannDial: start session, peer<GPMI> bdcastInit: pch poe0 poePut1SrvcName: '' len 0 host-uniq 31303030 len 4 All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...
  • Page 208 PADO recv'd, chann enet1 procPADO: for poe chann poe0 Chann poe0 sending request poePut1SrvcName: '' len 0 host-uniq 31303030 len 4 putPoeHdr: ver 1 type 1 code x19 sess-id 0 len 12(x000C) All contents copyright (c) 2005 ZyXEL Communications Corporation.
  • Page 209 (Compressed) Version: RAS P2602R, start: bfc58030 Length: 3DB3EC, Checksum: 9AA9 Compressed Length: 12AC58, Checksum: DC06 Copyright (c) 1994 - 2004 ZyXEL Communications Corp. All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes r2= 0x000000E5 r3= 0x56FF54FF...
  • Page 210 2. Offline Trace--capture the trace first and display later The details for capturing the trace in SMT menu 24.8 are as follows. Online Trace 1. Trace LAN packet 2. Trace WAN packet All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes...
  • Page 211 Frame Type: TCP 192.168.1.2:1116->192.31.7.130:80 Ethernet Header: Destination MAC Addr Source MAC Addr Network Type All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes sys trcp channel mpoa00 none sys trcp channel enet0 bothway sys trcp sw on &...
  • Page 212 0030: 20 00 BE C3 00 00 02 04-05 B4 01 01 04 02 ---<0001>---------------------------------------------------------------- LAN Frame: ENET0-XMIT Size: 58/ 58 All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes = 20 = 0x00 (0) = 0x0030 (48)
  • Page 213 Flags Window Size Checksum Urgent Ptr Options 0000: 02 04 05 B4 RAW DATA: All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes = 0080C84CEA63 = 00A0C5921311 = 0x0800 (TCP/IP) = 20 = 0x00 (0) = 0x002C (44)
  • Page 214 TCP Header: Source Port Destination Port Sequence Number Ack Number Header Length Flags Window Size All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes ...w... Time: 12090.210 sec = 00A0C5921311 = 0080C84CEA63 = 0x0800 (TCP/IP) = 20...
  • Page 215 ---<0000>---------------------------------------------------------------- LAN Frame: MPOA00-RECV Size:1181/ 96 Frame Type: TCP 192.31.7.130:80->202.132.155.97:10270 Ethernet Header: Destination MAC Addr All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes = 0xE8ED (59629) = 0x0000 (0) "8... sys trcp channel enet0 none sys trcp channel mpoa00 bothway sys trcp sw on &...
  • Page 216 0020: FC 2A 4C 2F FB BE 2F FE-EF D0 RAW DATA: 0000: 00 A0 C5 92 13 12 00 A0-C5 01 23 45 08 00 45 00 ...#E..E. All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes .*L/../...
  • Page 217 1.5 Disable the trace log by entering: 1.6 Display the trace briefly by entering: 1.7 Display specific packets by using: All contents copyright (c) 2005 ZyXEL Communications Corporation. Prestige 2602HWL-DxA Support Notes sys trcp channel mpoa00 none sys trcp channel enet0 bothway sys trcp sw on &...

  • Page 218: Cli Command List

    Prestige 2602HWL-DxA Support Notes CLI Command List The latest CI command list is available in release notes of every ZyXEL firmware release. Please go to ZyXEL public WEB site http://www.zyxel.com/support/download.php to download firmware package (*.zip), you should unzip the package to get the release note in PDF format.

This manual is also suitable for:

P-2602hwl-d3aP-2602hwl-d7a

Table of Contents