Sign In
Upload
Manuals
Brands
ZyXEL Communications Manuals
Gateway
Broadband Security Gateway P-312
ZyXEL Communications Broadband Security Gateway P-312 Manuals
Manuals and User Guides for ZyXEL Communications Broadband Security Gateway P-312. We have
1
ZyXEL Communications Broadband Security Gateway P-312 manual available for free PDF download: User Manual
ZyXEL Communications Broadband Security Gateway P-312 User Manual (254 pages)
Broadband Security Gateway
Brand:
ZyXEL Communications
| Category:
Gateway
| Size: 1.93 MB
Table of Contents
Declaration of Conformity
5
Table of Contents
9
List of Figures
16
List of Tables
23
Log Screen
25
Preface
27
Getting Started
29
Chapter 1 Getting to Know Your Prestige
31
The Prestige 312 Broadband Security Gateway
31
Features of the Prestige 312
31
Applications for Prestige 312
33
Broadband Internet Access Via Cable or Xdsl Modem
33
Figure 1-1 Secure Internet Access Via Cable
33
Figure
33
Figure 1-2 Secure Internet Access Via DSL
34
Chapter 2 Hardware Installation & Initial Setup
35
Front Panel Leds and Back Panel Ports
35
Front Panel Leds
35
Front Panel
35
Figure
35
Figure
36
Prestige 312 Rear Panel and Connections
36
Additional Installation Requirements
37
Figure 2-3 Initial Screen
38
Housing
38
Power up Your Prestige
38
Navigating the SMT Interface
39
Figure 2-4 Password Screen
39
Main Menu
40
System Management Terminal Interface Summary
40
Prestige 312 Main Menu
40
Figure
40
Changing the System Password
41
Resetting the Prestige
41
Menu 23 - System Security
41
Figure
41
General Setup
42
Dynamic DNS
42
Figure 2-7 Menu 1 - General Setup
42
Configuring Dynamic DNS
43
Configure Dynamic DNS
43
Figure
43
WAN Setup
44
LAN Setup
45
Menu 2 - WAN Setup
45
Figure
45
Figure 2-10 Menu 3 - LAN Setup
46
Figure 2-11 Menu 3.1 – LAN Port Filter Setup
46
LAN Port Filter Setup
46
Chapter 3 Internet Access
47
TCP/IP and DHCP for LAN
47
Factory LAN Defaults
47
IP Address and Subnet Mask
47
Private IP Addresses
48
RIP Setup
48
DHCP Configuration
49
IP Multicast
49
Figure 3-2 Partitioned Logical Networks
50
IP Alias
50
TCP/IP and DHCP Ethernet Setup
50
Figure 3-1 Physical Network
50
Partitioned Logical Networks
50
Figure
50
Figure 3-3 Menu 3 - LAN Setup (10/100 Mbps Ethernet)
51
Figure 3-4 Menu 3.2 - TCP/IP and DHCP Ethernet Setup
51
IP Alias Setup
53
Menu 3.2.1 - IP Alias Setup
53
Figure
53
Internet Access Setup
54
Ethernet Encapsulation
54
Menu 4 - Internet Access Setup (Ethernet)
54
Figure
54
Internet Access Setup (PPTP)
54
Internet Access Setup (Pppoe)
54
PPTP Encapsulation
55
Configuring the PPTP Client
56
Pppoe Encapsulation
56
Figure
56
Figure 3-8 Internet Access Setup (Pppoe)
57
Basic Setup Complete
58
Advanced Applications
59
Chapter 4 Remote Node Setup
60
Remote Node Profile
60
Ethernet Encapsulation
60
Menu 11.1 Remote Node Profile for Ethernet Encapsulation
60
Figure
60
Pppoe Encapsulation
62
Menu 11.1 Remote Node Profile for Pppoe Encapsulation
62
Figure
62
Nailed-Up Connection
62
PPTP Encapsulation
63
Remote Node Profile for PPTP Encapsulation
64
Figure
64
Remote Node Setup
64
Editing TCP/IP Options (with Ethernet Encapsulation)
65
Figure 4-4 Remote Node Network Layer Options
65
Editing TCP/IP Options (with PPTP Encapsulation)
66
Figure 4-5 Remote Node Network Layer Options
67
Editing TCP/IP Options (with Pppoe Encapsulation)
68
Remote Node Filter
68
Figure 4-6 Remote Node Filter (Ethernet Encapsulation)
69
Figure 4-7 Remote Node Filter (Pppoe or PPTP Encapsulation)
69
Chapter 5 IP Static Route Setup
70
IP Static Route Setup
70
Figure 5-1 Example of Static Routing Topology
70
Figure 5-2 Menu 12 - IP Static Route Setup
71
Figure 5-3 Menu 12. 1 - Edit IP Static Route
71
Chapter 6 Network Address Translation (NAT)
74
Introduction
74
NAT Definitions
74
What NAT Does
74
How NAT Works
75
NAT Mapping Types
75
Figure 6-1 How NAT Works
75
SUA (Single User Account) Versus NAT
76
Mapping Types
76
NAT Application
77
SMT Menus
77
Applying NAT in the SMT Menus
77
Figure 6-2 NAT Application
77
Applying NAT for Internet Access
78
Figure
78
Applying NAT to the Remote Node
78
Figure 6-4 Applying NAT to the Remote Node
78
Address Mapping Sets and NAT Server Sets
79
Configuring NAT
79
Figure 6-5 Menu 15 NAT Setup
79
Menu 15.1 Address Mapping Sets
80
Figure
80
Figure 6-7 SUA Address Mapping Rules
80
SUA Address Mapping Rules
80
First Set in Menu 15.1.1
82
Figure
82
Editing an Individual Rule in a Set
83
Figure
83
Multiple Servers Behind NAT
84
NAT Server Sets
84
Configuring a Server Behind NAT
85
Figure 6-10 Multiple Servers Behind NAT
85
Examples
86
Figure 6-11 Menu 15.2 – NAT Server Setup
86
Internet Access Only
86
Figure
87
Internet Access & NAT Example
87
Figure 6-13 Internet Access & NAT Example
87
Example 2 - Internet Access with an Inside Server
88
Example 3 - General Case
88
NAT Example 1
87
NAT Example 2
88
Figure 6-15 Specifying an Inside Sever
88
Figure
89
Figure 6-16 NAT - Example 3
89
Figure 6-19 Example 3 Final Menu 15.1.1
91
Example 4 -NAT Unfriendly Application Programs
92
Figure 6-21 NAT Example 4
92
Advanced Management
94
Chapter 7 Filter Configuration
96
About Filtering
96
Figure 7-1 Outgoing Packet Filtering Process
96
The Filter Structure of the Prestige
97
Figure 7-2 Filter Rule Process
98
Configuring a Filter Set
99
Figure 7-4 Menu 21 - Filter and Firewall Setup
99
Figure 7-5 Menu 21.1 - Filter Set Configuration
99
Figure 7-6 Netbios_Wan Filter Rules Summary
100
Figure 7-7 Netbios _LAN Filter Rules Summary
100
Figure 7-8 TEL_FTP_WEB_WAN Filter Rules Summary
100
Filter Rules Summary Menu
101
Configuring a Filter Rule
102
TCP/IP Filter Rule
102
Menu 21.1.1.1 - TCP/IP Filter Rule
103
Figure
103
Figure 7-11 Menu 21.4.1.1 - Generic Filter Rule
107
Generic Filter Rule
107
Table 7-5 Generic Filter Rule Menu Fields
108
Example Filter
109
Figure 7-12 Telnet Filter Example
109
Figure 7-13 Example Filter – Menu 21.1.1.1
110
Filter Types and NAT
111
Applying a Filter and Factory Defaults
112
Figure 7-15 Protocol and Device Filter Sets
112
LAN Traffic
112
Figure 7-16 Filtering LAN Traffic
113
Figure 7-17 Filtering Remote Node Traffic
113
Remote Node Filters
113
Firewall
112
Chapter 8 SNMP Configuration
114
About SNMP
114
Configuring SNMP
114
Menu 22 - SNMP Configuration
114
Figure
114
Chapter 9 System Information & Diagnosis
116
Menu 24 - System Maintenance
116
Figure
116
System Status
117
Menu 24.1 - System Maintenance - Status
117
Figure
117
Table 9-1 System Maintenance - Status Menu Fields
118
System Information and Console Port Speed
119
System Information
119
Menu 24.2 - System Information and Console Port Speed
119
Figure
119
Menu 24.2.1 System Maintenance - Information
119
Console Port Speed
120
Log and Trace
120
Menu 24.2.2 - System Maintenance - Change Console Port Speed
120
Figure
120
Figure 9-6 Examples of Error and Information Messages
121
Figure 9-7 Examples of Error and Information Messages
121
UNIX Syslog
121
Viewing Error Log
121
Figure 9-8 Menu 24.3.2 - System Maintenance - UNIX Syslog
122
Table 9-3 System Maintenance Menu Syslog Parameters
122
Filter Log
123
Packet Triggered
123
Firewall Log
124
Ppp Log
124
Call-Triggering Packet
125
Call-Triggering Packet Example
125
Figure
125
Wan Dhcp
126
Diagnostic
125
Figure
127
Wan & Lan Dhcp
127
Chapter 10 Transferring Files
128
Filename Conventions
128
Figure 9-4 Menu 24.2.1 System Maintenance - Information
128
Firmware Development
129
Backup Configuration
129
Restore Configuration
130
Upload Firmware
130
Uploading the Router Firmware
130
Figure 10-3 Menu 24.7 - System Maintenance - Upload Firmware
130
Uploading Router Configuration File
131
Figure 10-4 Menu 24.7.1 - System Maintenance - Upload Router Firmware
131
TFTP File Transfer
132
Figure 10-5 Menu 24.7.2 - System Maintenance - Upload Router Configuration File
132
Example TFTP Command
133
Table 10-2 Third Party TFTP Clients -General Fields
133
FTP File Transfer
134
Using the FTP Command from the DOS Prompt
135
Figure 10-7 Telnet into Menu 24.7.2 - System Maintenance
135
Figure 10-8 FTP Session Example
136
Table 10-3 Third Party FTP Clients -General Fields
136
Chapter 11 System Maintenance & Information
138
Command Interpreter Mode
138
Command Mode in Menu 24
138
Figure
138
Valid Commands
138
Figure 11-4 Budget Management
139
Call Control Support
139
Budget Management
139
Call Control
139
Figure
139
Call History
140
Figure
140
Time and Date Setting
141
How Often Does the Prestige Update the Time
141
Figure 11-6 System Maintenance - Time and Date Setting
142
Table 11-3 Time and Date Setting Fields
142
Figure 11-7 Menu 24.11 - Remote Management Control
143
Remote Management Setup
143
Boot Commands
144
Table 11-4 Menu 24.11 - Remote Management Control
144
Boot Module Commands
145
Figure
145
Chapter 12 Telnet Configuration and Capabilities
146
About Telnet Configuration
146
Telnet under NAT
146
Telnet Capabilities
146
Single Administrator
146
System Timeout
147
Telnet under the Firewall
147
Figure 12-1 Telnet Configuration on a TCP/IP Network
146
Firewall and Content Filters
148
Chapter 13 What Is a Firewall
149
Types of Firewalls
149
Packet Filtering Firewalls
149
Application-Level Firewalls
149
Stateful Inspection Firewalls
150
Introduction to Zyxel's Firewall
150
Denial of Service
151
Basics
151
Figure 13-1 Prestige Firewall Application
151
Types of Dos Attacks
152
Figure 13-3 SYN Flood
153
Stateful Inspection
154
Figure 13-4 Smurf Attack
154
Figure 13-5 Stateful Inspection
155
Stateful Inspection Process
155
Stateful Inspection & the Prestige
156
TCP Security
156
UDP/ICMP Security
157
Upper Layer Protocols
157
Guidelines for Enhancing Security with Your Firewall
157
Security in General
158
Chapter 14 Introducing the Prestige Firewall
161
SMT Menus
161
SMT Main Menu
161
Figure 14-2 Menu 21 - Filter and Firewall Setup
161
Attack Types
162
Figure
162
View Firewall Log
162
Table 14-1 ICMP Commands that Trigger Alerts
163
Figure 14-4 View Firewall Log
164
Syn Flood
164
The Big Picture - Filtering, Firewall and NAT
165
Packet Filtering Vs Firewall
166
Figure 14-5 Big Picture - Filtering, Firewall and NAT
166
Packet Filtering
166
Firewall
167
Chapter 15 Introducing the Prestige Web Configurator
169
Figure 15-1 Login Screen as Seen in Netscape
169
Web Configurator Login and Welcome Screens
169
Enabling the Firewall
170
Figure 15-2 Prestige Web Configurator Welcome Screen
170
E-Mail
171
What Are Alerts
171
Figure 15-3 Enabling the Firewall
171
What Are Logs
172
Figure 15-4 E-Mail Screen
172
SMTP Error Messages
174
Example E-Mail Log
174
Attack Alert
175
Threshold Values
176
Half-Open Sessions
176
Figure 15-6 Attack Alert
177
Chapter 16 Creating Custom Rules
181
Rules Overview
181
Rule Logic Overview
181
Rule Checklist
181
Security Ramifications
182
Key Fields for Configuring Rules
182
Connection Direction
183
LAN to WAN Rules
183
WAN to LAN Rules
183
Figure 16-1 LAN to WAN Traffic
183
Services Supported
184
Figure 16-2 WAN to LAN Traffic
184
Rule Summary
186
Figure 16-3 Firewall Rules Summary - First Screen
186
Table 16-2 Firewall Rules Summary - First Screen
187
Creating/Editing Firewall Rules
188
Figure 16-4 Creating/Editing a Firewall Rule
189
Source & Destination Addresses
190
Timeout
192
Factors Influencing Choices for Timeout Values
192
Figure 16-6 Timeout Screen
193
Chapter 17 Custom Ports
195
Introduction
195
Figure 17-1 Custom Ports
195
Creating/Editing a Custom Port
196
Figure 17-2 Creating/Editing a Custom Port
197
Chapter 18 Logs
199
Log Screen
199
Figure 18-1 Log Screen
199
Chapter 19 Example Firewall Rules
203
Examples
203
Example 1 - Firewall Rule to Allow Web Service from the Internet
203
Figure 19-1 Activate the Firewall
204
Figure 19-2 Example 1 – E-Mail Screen
205
Figure 19-3 Example 1 – Configuring a Rule
206
Figure 19-4 Example 1: Destination Address for Traffic Originating from the Internet
207
Example 2 - Small Office with Mail, FTP and Web Servers
208
Figure 19-5 Example 1 - Rule Summary Screen
208
Figure 19-6 Send Alerts When Attacked
209
Figure 19-7 Configuring a POP Custom Port
210
Example 2 - Local Network Rule Summary
212
Figure
212
Example 3: DHCP Negotiation and Syslog Connection from the Internet
213
Example 2 - Internet to Local Network Rule Summary
213
Figure
213
Custom Port for Syslog
214
Figure
214
Syslog Rule Configuration
215
Figure 19-13 Example 3 Rule Summary
216
Chapter 20 Content Filtering
217
Restrict Web Features
217
Activex
217
Java
217
Cookies
218
Web Proxy
218
Blocking Urls
218
Figure 20-1 Content Filtering Screen
219
Troubleshooting, Appendices, Glossary and Index
220
Chapter 21 Troubleshooting
222
Problems Starting up the Prestige
222
Problems with the LAN Interface
223
Problems with the WAN Interface
223
Problems with Internet Access
224
Problems with the Firewall
224
Appendix Apppoe
226
Appendix Bpptp
228
Appendix C Hardware Specifications
230
Appendix D Important Safety Instructions
231
Appendix E Firewall CLI Commands
232
Cli Commands
233
Appendix F Power Adapter Specs
237
Glossary of Terms
239
Index
250
Advertisement
Advertisement
Related Products
ZyXEL Communications P-324
ZyXEL Communications P-304
ZyXEL Communications P-870HW-I Series
ZyXEL Communications P-2302R-P1C - V3.60
ZyXEL Communications P-660D - V3.40
ZyXEL Communications P-870H-53A v2
ZyXEL Communications PX7511-B0
ZyXEL Communications P-660HW-Tx v2 Series
ZyXEL Communications P-660HNU-T1
ZyXEL Communications P-661H-61
ZyXEL Communications Categories
Gateway
Network Router
Switch
Wireless Router
Adapter
More ZyXEL Communications Manuals
Login
Sign In
OR
Sign in with Facebook
Sign in with Google
Upload manual
Upload from disk
Upload from URL