ProForm PFTL81405.0 Treadmill User Manual
Contents
1. 16 2 Problems with the LAN Interface Table 16 2 Troubleshooting the LAN Interface PROBLEM CORRECTIVE ACTION Cannot access the Prestige from Check your Ethernet cable type and connections Refer to the Rear the LAN Panel and Connections section for LAN connection instructions Troubleshooting 16 1 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch PROBLEM CORRECTIVE ACTION Cannot ping any computer on the LAN Check the 10M 100M LEDs on the front panel One of these LEDs should be on If they are both off check the cables between your Prestige and hub or the station Verify that the IP addresses and subnet masks of the Prestige and the computers on the LAN are on the same subnet 16 3 Problems with the WAN Interface Table 16 3 Troubleshooting the WAN interface PROBLEM CORRECTIVE ACTION Cannot get a WAN IP address from the ISP The WAN IP address is provided when the ISP recognizes the user as an authorized user after verifying the MAC address or Host Name or User ID Find out the verification method used by your ISP If the ISP checks the LAN MAC address tell the ISP the WAN MAC address of the Prestige The WAN MAC can be obtained from menu 24 1 In case the ISP does not allow you to use a new MAC you can clone the MAC from the LAN as the WAN MAC and send it to the ISP using Menu 2 WAN Setup If the ISP checks the Host2. TELNET Login Someone has logged on to the router via telnet Successfully TELNET Login Fail Someone has failed to log on to the router via telnet FTP Login Someone has logged on to the router via ftp Successfully FTP Login Fail Someone has failed to log on to the router via ftp NAT Session Table is Full The maximum number of NAT session table entries has been exceeded and the table is full Phase 1 ID type mismatch The ID type of an incoming packet does not match the local s peer ID type Phase 1 ID content mismatch The ID content of an incoming packet does not match the local s peer ID content No known phase 1 ID type found The ID type of an incoming packet does not match any known ID type Chart 3 UPnP Logs LOG MESSAGE DESCRIPTION UPnP pass through Firewall UPnP packets can pass through the firewall Chart 4 Content Filtering Logs CATEGORY LOG MESSAGE DESCRIPTION URLFOR IP Domain Name The Prestige allows access to this IP address or domain name and forwarded traffic addressed to the IP address or domain name URLBLK IP Domain Name The Prestige blocked access to this IP address or domain name due to a forbidden keyword All web traffic is disabled except for trusted domains untrusted domains or the cybernot list Log Descriptions Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch
3. mA y No Action Not Matched i Action Matched Check Next Rule Check Next Rule Drop Forward a A Drop Forward PE yoy r r X Drop Packet Check Next Rule Accept Packet Ne NS Sa D Sis Figure 7 9 Executing an IP Filter Filter Configuration 7 11 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch 7 2 4 Generic Filter Rule This section shows you how to configure a generic filter rule The purpose of generic rules is to allow you to filter non IP packets For IP it is generally easier to use the IP rules directly For generic rules the Prestige treats a packet as a byte stream as opposed to an IP or IPX packet You specify the portion of the packet to check with the Offset from 0 and the Length fields both in bytes The Prestige applies the Mask bit wise ANDing to the data portion before comparing the result against the Value to determine a match The Mask and Value are specified in hexadecimal numbers Note that it takes two hexadecimal digits to represent a byte so if the length is 4 the value in either field will take 8 digits e g FFFFFFFF To configure a generic rule select Generic Filter Rule in the Filter Type field in the menu 21 4 1 and press ENTER to open Menu 21 4 1 Generic Filter Rule as shown below Menu 21 4 1 Generic Filter Rule Filter 4 1 Filter Type Generic Filter Rule Active No Offset 0 Leng
4. FIELD DESCRIPTION EXAMPLE Set Name Enter a name for this set of rules This is a required field If this NAT_SET field is left blank the entire set will be deleted Action The default is Edit Edit means you want to edit a selected Edit rule see following field Insert Before means to insert a rule NAT 4 11 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch FIELD DESCRIPTION EXAMPLE Action The default is Edit Edit means you want to edit a selected Edit rule see following field Insert Before means to insert a rule before the rule selected The rules after the selected rule will then be moved down by one rule Delete means to delete the selected rule and then all the rules after the selected one will be advanced one rule None disables the Select Rule item Select Rule When you choose Edit Insert Before or Delete in the 1 previous field the cursor jumps to this field to allow you to select the rule to apply the action in question You must press ENTER at the bottom of the screen to save the whole set You must do this again if you make any changes to the set including deleting a rule No changes to the set take place until this action is taken Selecting Edit in the Action field and then selecting a rule brings up the following menu Menu 15 1 1 1 Address Mapping Rule in which you can edit an individual rule and configure the Type Local and Global Start End IPs An End
5. Figure 9 2 Menu 22 SNMP Configuration The following table describes the SNMP configuration parameters SNMP Configuration 9 3 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Table 9 1 SNMP Configuration Menu Fields FIELD DESCRIPTION EXAMPLE Get Community Type the Get Community which is the password for the incoming Public Get and GetNext requests from the management station Set Community Type the Set community which is the password for incoming Set Public requests from the management station Trusted Host If you enter a trusted host your Prestige will only respond to SNMP Blank messages from this address A blank default field means your Prestige will respond to all SNMP messages it receives regardless of source Trap Community Type the trap community which is the password sent with each Public trap to the SNMP manager Trap Destination Type the IP address of the station to send your SNMP traps to Blank When you have completed this menu press ENTER at the prompt Press ENTER to confirm or ESC to cancel to save your configuration or press ESC to cancel and go back to the previous screen 9 4 SNMP Traps The Prestige will send traps to the SNMP manager when any one of the following events occurs Table 9 2 SNMP Traps TRAP TRAP NAME DESCRIPTION 0 coldStart defined in RFC 1275 A trap is sent after bo
6. Idle Timeout This value specifies the time in seconds that elapses before 300 the Prestige automatically disconnects from the PPPoE default server 3 4 Internet Test Setup After configuring the menu 4 fields when you press ENTER to confirm you will see the message Do you wish to perform the Internet Setup Test y n if you have chosen PPTP or PPPoE as your encapsulation method Say Y to test your setup An example of Internet Setup Test is shown next 3 14 Internet Access Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Start dialing for node lt ChangeMe gt Hit any key to continue DIALING dev a ch 0 OUTGOING CALL phone PPTP Start tunnel setup send SCCRQ PPTP OCRQ sent CALL CONNECT speed lt 10000000 gt type lt 10 gt chan lt 0 gt LCP opened CHAP login to remote OK IPCP negotiation started CCP stopped BACP stopped IPCP neg Primary DNS 202 XXX XXX X IPCP opened Figure 3 9 Internet Setup Test Example 3 5 Basic Setup Complete Well done You have successfully connected installed and set up your Prestige to operate on your network and access the Internet Internet Access 3 15 Advanced Applications Part II Advanced Applications PERENA n nnn nnn nnn nnn nnn nn nnn nnn nn nnn nnn nnn nnn nnn nnn nnn nnn nn nnn nnn nnn EREEREER ERANT This section describes the adva
7. ccccccccssesssesscesscesscesecesecesecneceseceaecnaecsaecaeecseesaeseaesaeseeserenseeneeenseenaeenaes 2 14 Figure 2 10 Menu 3 LAN Setup s c ccecieeseseecteesgel iol ee ebb ee eeiereestene seta capo vi euuenndzveuesen tie isons dateeseee 2 15 Figure 2 11 Menu 3 1 LAN Port Filter Setup eeceeccsseceesecseeeeceseeceaeceeesecseseecneeeesaeceesaecaeeeeeaeens 2 16 Figure A Physical Network AEE E EEE E A ues ell eh ioe La ee Me lee le 3 5 Figure 3 2 Partitioned Logical Networks 0 ceceeecssseccssecsseecseeseceecsevseceseeecsaecseesecaevsecnaeecesaecateaesaeetenaeeees 3 5 Figure 3 3 Menu 3 LAN Setup 10 100 Mbps Ethernet cccccceccessseesceesceeeceseceseceecaeecaeesaeeeneeneeeneeees 3 6 Figure 3 4 Menu 3 2 TCP IP and DHCP Ethernet Setup cece ececcssescessecseeeecneeeeceseeeeeseeaeeeesaesaeseeeneeeees 3 6 Figure 3 5 Menu 3 2 1 IP Alias SEID a tees thireds actandhsehereuethds a a a ee 3 9 Figure 3 6 Internet Access Setup Ethernet cccccecccssesssceseceseceseeseecseeeaeceseeeeeeeeesseenseceaecesesaeeeenaeenaeenaes 3 10 Figure 3 7 Intertiet Access Setup PP EP ontecon hess ce eesas cesee de e e a E a E a celetices 3 12 Figure 3 8 Internet Access PPPOE cc ccsssssessscesscescesecesecssecesecssecseecseeeseeeaeseeeseesseseseseaecnaeensenaeenseenseenaes 3 14 Figure 3 9 Internet Setup Test Examples serros ioo nE E eecect esc ctu sesce E E E dade ete teeewsed E 3 15 Fig r 4 VHOWw NAT Works icccrtes ih
8. IP Static Route Setup 6 1 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch 6 1 IP Static Route Setup You configure IP static routes in menu 12 1 by selecting one of the IP static routes as shown below Enter 12 from the main menu Menu 12 IP Static Route Setup 1 2 Sis 4 5 6 hg 8 Enter selection number Figure 6 2 Menu 12 IP Static Route Setup Now enter the index number of one of the static routes you want to configure Menu 12 1 Edit IP Static Route Route 1 Route Name Active No Destination IP Address IP Subnet Mask Gateway IP Address Metric 2 Private No Press ENTER to CONFIRM or ESC to CANCEL Figure 6 3 Menu 12 1 Edit IP Static Route The following table describes the IP Static Route Menu fields 6 2 IP Static Route Setup Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Table 6 1 IP Static Route Menu Fields FIELD DESCRIPTION Route This is the index number of the static route that you chose in menu 12 Route Name Enter a descriptive name for this route This is for identification purposes only Active This field allows you to activate deactivate this static route Destination IP Address This parameter specifies the IP network address of the final destination Routing is always based on network number If you need to specify a route to a single host use a subnet mask of 255 255 25
9. Size of Client IP Pool This field specifies the size or count of the IP address pool 32 Primary DNS Server __ Enter the IP addresses of the DNS servers The DNS servers are Secondary DNS passed to the DHCP clients along with the IP address and the Server subnet mask Leave these entries at 0 0 0 0 if a WAN DHCP server provides them DHCP Server Address The Prestige acts as a surrogate DHCP server when you select N A Relay from the DHCP field This field is N A when the DHCP field is Server or None Follow the instructions in the table shown next to configure TCP IP parameters for the LAN port Table 3 4 LAN TCP IP Setup Menu Fields FIELD DESCRIPTION EXAMPLE TCP IP Setup IP Address Enter the IP address of your Prestige in dotted decimal notation 192 168 1 1 default IP Subnet Mask Your Prestige will automatically calculate the subnet mask based on 255 255 255 0 the IP address that you assign Unless you are implementing subnetting use the subnet mask computed by the Prestige Internet Access 3 7 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch FIELD DESCRIPTION EXAMPLE RIP Direction Press the SPACE BAR to select the RIP direction Both Options are Both In Only Out Only or None default Version Press the SPACE BAR to select the RIP version RIP 1 Options are RIP 1 RIP 2B or RIP 2M default Multicast IGMP Internet Group M
10. 4 4 3 Example 3 Multiple Public IP Addresses With Inside Servers In this example there are 3 IGAs from our ISP There are many departments but two have their own FTP server All departments share the same router The example will reserve one IGA for each department with an FTP server and all departments use the other IGA Map the FTP servers to the first two IGAs and the other LAN traffic to the remaining IGA Map the third IGA to an inside web server and mail server Four rules need to be configured two bi directional and two uni directional as follows Rule 1 Map the first IGA to the first inside FTP server for FTP traffic in both directions 1 1 mapping giving both local and global IP addresses Rule 2 Map the second IGA to our second inside FTP server for FTP traffic in both directions 1 1 mapping giving both local and global IP addresses Rule 3 Map the other outgoing LAN traffic to IGA3 Many 1 mapping 4 20 NAT Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Rule 4 You also map your third IGA to the web server and mail server on the LAN Type Server allows you to specify multiple servers of different types to other computers behind NAT on the LAN The example situation looks somewhat like this Other Computers on the LAN Web Server 192 168 1 21 Mapping Rules 1 FTP 1 lt gt IGA 1 Type 1 1 2 FTP 2 lt gt IGA 2 Type 1 1 3 Other LAN traffic gt IGA 3
11. B PPPoE Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch The Prestige as a PPPoE Client When using the Prestige as a PPPoE client the PCs on the LAN see only Ethernet and are not aware of PPPoE This alleviates the administrator from having to manage the PPPoE clients on the individual PCs ADSL Modem Prestige thernet Ethernet Access Concentrator Diagram 2 Prestige as a PPPoE Client PPPoE C Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Appendix B PPIP What is PPTP PPTP Point to Point Tunneling Protocol is a Microsoft proprietary protocol RFC 2637 for PPTP is informational only to tunnel PPP frames How can we transport PPP frames from a PC to a broadband modem over Ethernet A solution is to build PPTP into the ANT ADSL Network Termination where PPTP is used only over the short haul between the PC and the modem over Ethernet For the rest of the connection the PPP frames are transported with PPP over AALS RFC 2364 The PPP connection however is still between the PC and the ISP The various connections in this setup are depicted in the following diagram The drawback of this solution is that it requires one separate ATM VC per destination ATM over ADSL PC ANT ISP PP TP RF C 2364 Diagram 3 Transport PPP frames over Ethernet PPTP and the Prestige When the Prestige is deployed in such a setup it appears as a PC to the ANT ADS
12. Interference Statement This device complies with Part 15 of FCC rules Operation is subject to the following two conditions e This device may not cause harmful interference e This device must accept any interference received including interference that may cause undesired operations This equipment has been tested and found to comply with the limits for a Class B digital device pursuant to Part 15 of the FCC Rules These limits are designed to provide reasonable protection against harmful interference in a commercial environment This equipment generates uses and can radiate radio frequency energy and if not installed and used in accordance with the instructions may cause harmful interference to radio communications If this equipment does cause harmful interference to radio television reception which can be determined by turning the equipment off and on the user is encouraged to try to correct the interference by one or more of the following measures 1 Reorient or relocate the receiving antenna 2 Increase the separation between the equipment and the receiver 3 Connect the equipment into an outlet on a circuit different from that to which the receiver is connected 4 Consult the dealer or an experienced radio TV technician for help Notice Changes or modifications not expressly approved by the party responsible for compliance could void the user s authority to operate the equipment FCC Statement iii Prestige
13. Network Address Translation SUA Only Metric 1 Private No RIP Direction None Version N A Multicast None Enter here to CONFIRM or ESC to CANCEL Press Space Bar to Toggle Figure 5 5 Remote Node Network Layer Options The next table gives you instructions about configuring remote node network layer options Remote Node Setup 5 9 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Table 5 5 Remote Node Network Layer Options Menu Fields FIELD DESCRIPTION EXAMPLE IP Address If your ISP did not assign you an explicit IP address select Dynamic Dynamic Assignment otherwise select Static and enter the IP address amp subnet mask in the following fields Rem IP Address If you have a Static IP Assignment enter the IP address assigned to 192 168 1 1 the remote node Rem IP Subnet Mask If you have a Static IP Assignment enter the subnet mask assigned to the remote node 255 255 255 0 My WAN Addr Some implementations especially the UNIX derivatives require the WAN link to have a separate IP network number from the LAN and each end must have a unique address within the WAN network number If this is the case enter the IP address assigned to the WAN port of your Prestige Note that this is the address assigned to your local Prestige not the remote router Network Address Translation Use the SPACE BAR to select either Full Feature None or SUA Only See the NAT cha
14. Support europe zyxel com www europe zyxel com Based Industrial Park Hsinchu 300 Taiwan Sales zyxel com tw 886 3 578 2439 ftp europe zyxel com NORTH Support zyxel com 1 714 632 0882 www zyxel com ZyXEL Communications Inc AMERICA 800 255 4101 1650 Miraloma Avenue Placentia CA 92870 U S A Sales zyxel com 1 714 632 0858 ftp zyxel com SCANDINAVIA Support zyxel dk 45 3955 0700 www zyxel dk ZyXEL Communications A S Columbusvej 5 2860 Soeborg Sales zyxel dk 45 3955 0707 ftp zyxel dk Denmark GERMANY Support zyxel de 49 2405 6909 0 www zyxel de ZyXEL Deutschland GmbH Adenauerstr 20 A4 D 52146 Sales zyxel de 49 2405 6909 99 Wuerselen Germany Sales zyxel com my 603 795 34 407 Customer Support vii Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Table of Contents Copyright A sacle taei nee Aedes ees Lae aes E A Sa ee il Federal Communications Commission FCC Interference Statement ecceseeseeeeeeeeeeceseeseeeeeenes iii Information for Canadian USers cc ceescsssssecseeeeceseeecesecetesecsevsccuaeeecsaeceeesecaeesecnaeeesaeeaseeesaeceeeaecaeeeeeneees iv ZY XEVs Limited Warranty aeei aaa a r a eea a ihe weieeel E a a AE Ghee vi Customer SUpport esien ieee ie i eE o EK Ee EEEE E E E EE EE EEE vii List of Pigures cc8 fost oe et RS oe nada ek Noe ABA ek RE oA ent R xii RIA Dia Grains EAE T AAA A AE E EE xvi List Of CHArts i302 sceset Sie neei iia a oes oat nea lees etek P
15. CHAP PAP Press ENTER to Confirm or ESC to Cancel Figure 15 4 Applying Schedule Sets to a Remote Node Example PPTP Encapsulation Call Scheduling 15 5 Troubleshooting and Additional Information PART IV Troubleshooting and Additional Information This section provides information about solving common problems some Appendices as well as a i Glossary and Index Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Chapter 16 Troubleshooting This chapter covers the potential problems and possible remedies After each problem description some instructions are provided to help you to diagnose and to solve the problem See the included CD for further information 16 1 Problems Starting Up the Prestige Table 16 1 Troubleshooting the Start Up of your Prestige PROBLEM CORRECTIVE ACTION None of the LEDs are on when Check the connection between the AC adapter and the Prestige ou power on the Prestige pow ig If the error persists you may have a hardware problem In this case you should contact your vendor Cannot access the Prestige via 1 Check to see if the Prestige is connected to your computer s the console port console port 2 Check to see if the VT100 terminal emulation communications program is configured correctly The 9600 bps communications software should No parity 8 data bits 1 stop bit be configured as follows data flow setto none
16. COLOR STATUS MEANING WAN WAN Green Off The WAN Link is not ready or has failed On The WAN Link is ok Flashing The 10 100M WAN link is sending receiving packets 2 2 Prestige Rear Panel and Connections The following figure shows the rear panel of your Prestige and the related connections POWER 12YDC LAN 10 100M CONSOLE WAN 10 100M FG III lls 4 3 2 1 RESET Figure 2 2 Prestige Rear Panel Connections Table 2 2Prestige Rear Panel Connections CONNECTION DESCRIPTION AND FUNCTION Power 12VDC This supplies the power to the unit Connect the supplied power adaptor to the wall outlet and insert the small plug from the power adaptor to this socket Reset This button resets the unit Refer to section 2 7 1 for details on how to reset the unit LAN 10 100M These auto sensing LAN ports are used to connect the Prestige to local computers or to an external hub All LAN ports are auto sensing This means that these ports automatically adjust according to the type of cable eg Straight through Ethernet cable or Crossover Ethernet cable Console This port is used for configuration and administration of the Prestige Connect your administration computer to this port via an RS 232 cable WAN 10 100M Connect your Cable DSL modem to this port F G Ground the Prestige by connecting a grounded wire to the Frame Ground F G terminal 2 2 H
17. Call Filter Sets protocol filters 1 device filters Enter here to CONFIRM or ESC to CANCEL Figure 5 6 Remote Node Filter Ethernet Encapsulation Menu 11 5 Remote Node Filter Input Filter Sets protocol filters 5 device filters Output Filter Sets protocol filters 1 device filters Call Filter Sets protocol filters 1 device filters Enter here to CONFIRM or ESC to CANCEL Figure 5 7 Remote Node Filter PPTP PPPoE Encapsulation 5 12 Remote Node Setup Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Chapter 6 IP Static Route Setup This chapter shows you how to configure static routes with your Prestige Static routes tell the Prestige routing information what it cannot learn automatically through other means This can arise in cases where RIP is disabled on the LAN Each remote node specifies only the network to which the gateway is directly connected and the Prestige has no knowledge of the networks beyond For instance the Prestige knows about network N2 in the following diagram through remote node Router 1 However the Prestige is unable to route a packet to network N3 because it doesn t know that there is a route through the same remote node Router via gateway Router 2 The static routes are for you to tell the Prestige about the networks beyond the remote nodes N1 N2 N3 Prestige Router 2 Router 1 Figure 6 1 Example of Static Routing Topology
18. Chart 4 Content Filtering Logs JAVBLK IP Domain Name The Prestige blocked access to this IP address or domain name because of a forbidden service such as ActiveX a Java applet a cookie or a proxy Chart 5 ICMP Type and Code Explanations TYPE CODE DESCRIPTION 0 Echo Reply 0 Echo reply message 3 Destination Unreachable 0 Net unreachable 1 Host unreachable 2 Protocol unreachable 3 Port unreachable 4 A packet that needed fragmentation was dropped because it was set to Don t Fragment DF 5 Source route failed 4 Source Quench 0 A gateway may discard internet datagrams if it does not have the buffer space needed to queue the datagrams for output to the next network on the route to the destination network 5 Redirect 0 Redirect datagrams for the Network 1 Redirect datagrams for the Host 2 Redirect datagrams for the Type of Service and Network 3 Redirect datagrams for the Type of Service and Host 8 Echo 0 Echo message N Log Descriptions Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Chart 5 ICMP Type and Code Explanations TYPE CODE DESCRIPTION 11 Time Exceeded 0 Time to live exceeded in transit 1 Fragment reassembly time exceeded 12 Parameter Problem 0 Pointer indicates the error 13 Timestamp 0 Timestamp request message 14 Timestamp Reply 0 Timestamp reply message 15 Informa
19. Enter command sys stdio 5 to restore the five minute SMT timeout default when the file transfer is complete Step 4 Launch the TFTP client on your computer and connect to the Prestige Set the transfer mode to binary before starting data transfer Step 5 Use the TFTP client see the example below to transfer files between the Prestige and the computer The file name for the configuration file is rom 0 rom zero not capital o Note that the telnet connection must be active and the SMT in CI mode before and during the TFTP transfer For details on TFTP commands see following example please consult the documentation of your TFTP client program For UNIX use get to transfer from the Prestige to the computer and binary to set binary transfer mode 12 2 3 TFTP Command Example The following is an example tftp command Firmware and Configuration Maintenance 12 5 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch TFTP 1 host get rom 0 config rom where i specifies binary image transfer mode use this mode when transferring binary files host is the Prestige IP address get transfers the file source on the Prestige rom 0 name of the configuration file on the Prestige to the file destination on the computer and renames it config rom TFTP GUI Clients The following table describes some of the fields that you may see in some TFTP GUI clients Table 12 3 General C
20. IP Protocol 6 IP Source Route No Destination IP Addr 0 0 0 0 IP Mask 0 0 0 0 Port 137 Port Comp Equal Source IP Addr 0 0 0 0 IP Mask 0 0 0 0 Port Port Comp None TCP Estab No More No Log None Action Matched Drop Action Not Matched Check Next Rule Press ENTER to Confirm or ESC to Cancel Press Space Bar to Toggle The following Figure 7 8 Menu 21 1 1 TCP IP Filter Rule table describes how to configure your TCP IP filter rule Table 7 3 TCP IP Filter Rule Menu Fields FIELD DESCRIPTION EXAMPLE Active Yes activates and No deactivates the filter rule Yes IP Protocol Protocol refers to the upper layer protocol e g TCP is 6 0 255 UDP is 17 and ICMP is 1 This value must be between 0 and 255 IP Source Route If Yes the rule applies to packet with IP source route No option else the packet must not have source route option The majority of IP packets do not have source route Destination IP Address Enter the destination IP Address of the packet you wish to IP address filter This field reads don t care if it is 0 0 0 0 IP Mask Enter the IP mask that will be used to mask the bits of the IP mask IP address given in the Destination IP Address field Port Enter the destination port of the packets that you wish to 0 65535 filter The range of this field is 0 to 65535 This field reads don t care if it is 0 7 8 Filter Configuration Prestige 314 P
21. Press ENTER to Confirm or ESC to Cancel Press Space Bar to Toggle Figure 2 9 Menu 2 WAN Setup The MAC address field allows users to configure the WAN port s MAC Address by either using the factory default or cloning the MAC address from a workstation on your LAN Once it is successfully configured the address will be copied to the rom file ZyNOS configuration file It will not change unless you change the setting in menu 2 or upload a different rom file The following table contains instructions on how to configure your WAN setup Table 2 8 WAN Setup Menu Fields FIELD DESCRIPTION EXAMPLE MAC Address Assigned By Press the SPACE BAR to choose one of two methods to assign a IP Address MAC Address Choose Factory Default to select the factory assigned attached on default MAC Address Choose IP Address attached on LAN to use LAN the MAC Address of that workstation whose IP you give in the following field 2 14 Hardware Installation amp Initial Setup Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch FIELD DESCRIPTION EXAMPLE IP Address This field is applicable only if you choose the IP Address attached 192 168 1 33 on LAN method in the Assigned By field above Enter the IP address of the workstation on the LAN whose MAC you are cloning When you have completed this menu press ENTER at the prompt Press ENTER to Confirm to save your configuration or pre
22. Type M 1 Outgoing Traffic 4 IGA 3 Internal web server and mail server Incoming Traffic Prestige Mail Server 192 168 1 20 10 132 50 1 IGA 1 10 132 50 2 IGA 2 10 132 50 3 IGA 3 FTP Server 1 192 168 1 10 FTP Server 2 192 168 1 11 Figure 4 17 NAT Example 3 In this case you need to configure Address Mapping Set from Menu 15 1 Address Mapping Sets Therefore you must choose the Full Feature option from the Network Address Translation field in menu 4 or menu 11 3 in Figure 4 18 Step 1 Then enter 15 from the main menu Step 2 Enter 1 to configure the Address Mapping Sets Step 3 Enter 1 to begin configuring this new set Enter a Set Name choose the Edit Action and then enter 1 for the Select Rule field Press ENTER to confirm NAT 4 21 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Step 4 Select Type as One to One direct mapping for packets going both ways and enter the local Start IP as 192 168 1 10 the IP address of FTP Server 1 the global Start IP as 10 132 50 1 our first IGA See Figure 4 19 Step 5 Repeat the previous step for rules 2 to 4 as outlined above Step 6 When finished menu 15 1 1 should look like as shown in Figure 4 20 Menu 11 3 Remote Node Network Layer Options IP Address Assignment Dynamic IP Address N A IP Subnet Mask N A Gateway IP Addr N A Network Address Translation Full Feature Metric Private No RIP Direction
23. 3 2 1 IP Alias Setup Follow the instructions in the table shown next to configure IP Alias parameters Table 3 5 IP Alias Setup Menu Fields FIELD DESCRIPTION EXAMPLE IP Alias Choose Yes to configure the LAN network for the Prestige Yes IP Address Enter the IP address of your Prestige in dotted decimal notation 192 168 2 1 IP Subnet Mask Your Prestige will automatically calculate the subnet mask based on 255 255 255 0 the IP address that you assign Unless you are implementing subnetting use the subnet mask computed by the Prestige RIP Direction Press the SPACE BAR to select the RIP direction None Options are None Both In Only or Out Only Version Press the SPACE BAR to select the RIP version RIP 1 Options are RIP 1 RIP 2B or RIP 2M Incoming Enter the filter set s you wish to apply to the incoming traffic Protocol Filters between this node and the Prestige Internet Access 3 9 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch FIELD DESCRIPTION EXAMPLE Outgoing Enter the filter set s you wish to apply to the outgoing traffic between Protocol Filters this node and the Prestige When you have completed this menu press ENTER at the prompt Press ENTER to Confirm to save your configuration or press ESC at any time to cancel 3 3 Internet Access Setup You will see three different menu 4 screens depending on whether you c
24. 314 PLUS Broadband Sharing Gateway with 4 Port Switch Information for Canadian Users The Industry Canada label identifies certified equipment This certification means that the equipment meets certain telecommunications network protective operation and safety requirements The Industry Canada label does not guarantee that the equipment will operate to a user s satisfaction Before installing this equipment users should ensure that it is permissible to be connected to the facilities of the local telecommunications company The equipment must also be installed using an acceptable method of connection In some cases the company s inside wiring associated with a single line individual service may be extended by means of a certified connector assembly The customer should be aware that compliance with the above conditions may not prevent degradation of service in some situations Repairs to certified equipment should be made by an authorized Canadian maintenance facility designated by the supplier Any repairs or alterations made by the user to this equipment or equipment malfunctions may give the telecommunications company cause to request the user to disconnect the equipment For their own protection users should ensure that the electrical ground connections of the power utility telephone lines and internal metallic water pipe system if present are connected together This precaution may be particularly important in rural areas Cautio
25. Appendix A Log Descriptions Configure centralized logs using the embedded web configurator see the online help for details This appendix describes some of the log messages Chart 1 System Error Logs LOG MESSAGE DESCRIPTION 6s exceeds the max number of session per host This attempt to create a NAT session exceeds the maximum number of NAT session table entries allowed to be created per host Chart 2 System Maintenance Logs LOG MESSAGE DESCRIPTION Time calibration is successful The router has adjusted its time based on information from the time server Time calibration The router failed to get information from the time server failed DHCP client gets s A DHCP client got a new IP address from the DHCP server DHCP client IP A DHCP client s IP address has expired expired DHCP server assigns The DHCP server assigned an IP address to a client SS SMT Login Someone has logged on to the router s SMT interface Successfully SMT Login Fail Someone has failed to log on to the router s SMT interface WEB Login Someone has logged on to the router s web configurator interface Successfully WEB Login Fail Someone has failed to log on to the router s web configurator interface L Log Descriptions Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Chart 2 System Maintenance Logs
26. Broadband Sharing Gateway with 4 Port Switch DHCP LAN WAN Server Client Relay None None Prestige Figure 11 11 WAN amp LAN DHCP The following table describes the diagnostic tests available in menu 24 4 for your Prestige and the connections Table 11 4 System Maintenance Menu Diagnostic NUMBER FIELD DESCRIPTION 1 Ping Host Enter 1 to ping any machine with an IP address on your LAN or WAN Enter its IP address in the Host IP Address field mentioned in the last row of this table 2 WAN DHCP Release Enter 2 to release your WAN DHCP settings 3 WAN DHCP Renewal Enter 3 to renew your WAN DHCP settings The renewal timeout is 32 seconds 4 Internet Setup Test Enter 4 to test the Internet Setup You can also test the Internet Setup in menu 4 Internet Access Please refer to the chapter Internet Access for more details 11 Reboot System Enter 11 to reboot the Prestige Host IP Address If you entered 1 above then enter the IP address of the machine you want to ping in this field System Information amp Diagnosis 11 13 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Chapter 12 Firmware and Configuration File Maintenance This chapter tells you how to back up and restore your configuration file as well as upload new firmware and a new configuration file 12 1 Filename Conventions The configuration file often called the romfile or rom 0 contains the factor
27. Connect the WAN port silver on the Prestige to the Ethernet port on the xDSL modem using the cable that came with your xDSL modem Step 3 Connecting the Prestige to the LAN When the Prestige Ethernet cable is correctly connected to a computer or a hub the corresponding LAN LED on the front panel will go on You can connect up to four computers directly to the Prestige For each computer connect a 10 100M LAN port on the Prestige to the Network Adapter on the computer using a straight through cable Hardware Installation amp Initial Setup 2 3 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch If you have more than four computers you must use an external hub Connect a 10 100M LAN port on the Prestige to a port on the hub using a crossover Ethernet cable The Uplink button allows you to reverse the role of LAN port 4 Pushing the Uplink button in on lets you connect LAN port 4 on the Prestige directly to a computer using a crossover Ethernet cable If the Uplink button is not on you must use a straight through cable for this connection When connecting the Prestige LAN port 4 to an external hub pressing the Uplink button allows a straight through Ethernet cable to be used instead of a crossover cable Step 4 Connecting the Power Adapter to your Prestige Connect one end of the power adapter to the port labeled POWER on the rear panel of your Prestige To prevent damage to the Prestige
28. Create a new connection Set up a home or small office network LAN or High Speed Internet Local Area Connection S Enabled p Accton EN1207D TX PCI Fast See Also Ji Network Troubleshooter Other Places LUDE W My Network Places My Computer Details Network Connections System Folder start s Network Connections File Edit View Favorites Tools Help B JO search gt Folders E E my Network Places Local Network Network Tasks ZyXEL ZYWALL 10W Internet la Add a network place Security Gateway View network connections Set up a home or small office network gy View workgroup computers Create Shortcut Rename Other Places Properties UPnP 8 9 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Step 27 Right click on the icon for your ZyXEL ZyXEL Prestige 314 Plus Internet Sharing Gateway Pr x device and select Properties A properties window displays with basic information about the ZyXEL device WEL Prestige 314 Plus Internet Sharing Gateway Manufacturer ZyXEL Model Name ZyXEL Internet Sharing Gateway Model Number Prestige 314 Plus Description ZyXEL Prestige 314 Plus Internet Sharing Gateway Device Address http 192 168 10 1 8 10 UPnP Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Chapter 9 SNMP Configuration This chapter explains SNMP configuration menu 22 SNMP is only available i
29. Dynamic Assignment Dynamic otherwise select Static and enter the IP address amp subnet mask in the following fields Rem IP If you have a Static IP Assignment enter the IP address assigned to Address you by your ISP Rem IP If you have a Static IP Assignment enter the subnet mask assigned Subnet to you Mask My WAN If you have a Static IP Assignment enter the gateway IP address Addr assigned to you Network Use the SPACE BAR to select either Full Feature None or SUA SUA Only Address Only See the NAT chapter for a full discussion of this feature Translation Metric This field is valid only for PPTP PPPoE encapsulation The metric 3 represents the cost of transmission for routing purposes IP routing uses hop count as the measurement of cost with a minimum of 1 for directly connected networks Enter a number that approximates the cost for this link The number need not be precise but it must be between 1 and 15 In practice 2 or 3 is usually a good number Private This field is valid only for PPTP PPPoE encapsulation This Yes parameter determines if the Prestige will include the route to this remote node in its RIP broadcasts If set to Yes this route is kept private and not included in RIP broadcast If No the route to this remote node will be propagated to other hosts through RIP broadcasts RIP Press the SPACE BAR to select the RIP direction Options are None Both None In Only Out Only or None Please see
30. Figure 1 1 Configuring UPP 2 cisco oo eects ioaeh cen case sees escuela a a a tee seep duatbadh seca e a i 8 3 Figure 8 1 SNMP Management Model ccciscoisecosskaussnctossecg jeatones sedebooe veutesagandubieg a adios obeesonsiaday a as 9 2 Figure 8 2 Menu 22 SNMP Configuration ccsecssessssseceeeeeceseeeceseceeesecaecaeesecaesseeeaeecesaecatseeeneeetenaeeees 9 3 Figure 9 1 Traftic Redirect WAN Setup iis cesspsttevesheuhoxitnadee tins tees bavi a a E T RA 10 2 Figure 9 2 Traffic Redirect LAN Setup sci csccsseecececccresesshen Dees einen ei leven ccoceasenep deca ei a iias 10 2 Figure 9 3 Menu 11 1 Remote Node Profile ee ceeecsssecceseeeeseceeeesceeeecaeceseeceaeceeesecaeseeenaeeeeeaeeaeeneeas 10 3 Figure 9 4 Menu 11 6 Traffic Redirect Setup cc ceeecsesccssecseesecseeeeceeeeeceseceessecseseecnaeeeceaeceesaeeateneeaeeas 10 4 Figure 10 1 Menu 24 System Maintenance ccccesccesecsseesseeseeeeeessceecesecesecnsecnaecsaecnecsaeenaesnaecsaeeaeeaaes 11 1 Figure 10 2 Menu 24 1 System Maintenance Status cccecccesseesseesceeeceeeceeceeceeeenseesaeeseecseeeneeeneeses 11 2 Figure 10 3 Menu 24 2 System Information and Console Port Speed eecceeeseesceeeeceeceeeeeceseeeeeseens 11 4 Figure 10 4 Menu 24 2 1 System Maintenance Information 00 cceeceeseecceseeeeseceeeeeceeeeceaeeeeeseeaeeeeeaeens 11 4 Figure 10 5 Menu 24 2 2 System Maintenance Change Console Port Speed e
31. Forwarding Use this feature to forward incoming service requests to a server on your local network You may enter a single port number or a range of port numbers to be forwarded and the local IP address of the desired server Packet Filtering The Packet Filtering mechanism blocks unwanted traffic from entering leaving your network 1 3 Broadband Internet Access via Cable or DSL Modem A cable modem or DSL modem can be connected to the Prestige 10M WAN Ethernet port and up to four computers can be connected to the four Prestige 10 100M LAN Ethernet ports for super fast broadband Internet access The Prestige provides not only the high speed Internet access but also a complete solution to efficiently manage data traffic on your network Prestige Cable xDSL Modem Figure 1 1 Internet Access Application 1 4 Internet Access Configuration Checklist The following table shows the minimum SMT menu configurations you ll need to make without changing the default Prestige values in order to access the Internet 1 4 Getting to Know Your Prestige Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Table 1 1 Internet Access Configuration Checklist SMT FIELD ACTION 1 System Name This field is for identification purposes but because some ISPs check this name you should enter your computer s Computer Name e In Windows 95 98 click Start Settings Control Panel Network Click the Identific
32. IGA Inside Global Address assigned by your ISP 4 18 NAT Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Inside Local One Dynamic PC 3 oO O Addresses ILA Inside Global l Addresses IGA 2 5 1 Assigned by ISP Figure 4 14 NAT Example 1 Menu 4 Internet Access Setup ISP s Name ChangeMe Encapsulation Ethernet Service Type Standard My Login N A My Password N A Login Server IP N A IP Address Assignment Dynamic IP Address N A IP Subnet Mask N A p Addre Address Translation SUA Only Press ENTER to Confirm or ESC to Cancel Figure 4 15 Menu 4 Internet Access amp NAT Example From menu 4 shown above simply choose the SUA Only option from the Network Address Translation field This is the Many to One mapping discussed in section 4 1 5 The SUA Only read only option from the Network Address Translation field in menus 4 and 11 3 is specifically pre configured to handle this case NAT 4 19 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch 4 4 2 Example 2 Internet Access with an Inside Server Inside Local One Dynamic PC 3 LI Addresses ILA Inside Global Addresses IGA Assigned by ISP Inside Server IP Address 192 168 1 10 Figure 4 16 NAT Example 2 In this case you do exactly as above use the convenient pre configured SUA Only set and also go to menu 15 2 to specify the Inside Server behind the NAT as shown later
33. Name enter host name in the system field in Menu 1 General Setup when you connect the Prestige to a cable xDSL modem If the ISP checks the User ID make sure that you have entered the correct Service Type User Name and Password in Menu 4 Internet Access Setup Cannot connect to a remote node or ISP Check menu 24 1 to verify the line status Contact your service provider if your line remains down 16 2 Troubleshooting Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch 16 4 Problems with Internet Access Table 16 4 Internet Access PROBLEM CORRECTIVE ACTION Cannot access the Internet Make sure your cable XDSL modem is properly connected to the Prestige Check with the manufacturer of your Cable xDSL modem about the cable requirement because some devices require a crossover cable and others a straight through cable Verify your settings in menu 3 2 and menu 4 Troubleshooting 16 3 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Appendix A PPPoE PPPoE in Action An ADSL modem bridges a PPP session over Ethernet PPP over Ethernet RFC 2516 from your PC to an ATM PVC Permanent Virtual Circuit which connects to a xDSL Access Concentrator where the PPP session terminates see the next figure One PVC can support any number of PPP sessions from your LAN PPPoE provides access control and billing functionality in a manner sim
34. None Version N A Enter here to CONFIRM or ESC to CANCEL Figure 4 18 Example 3 Menu 11 3 The following figure shows how to configure the first rule 4 22 NAT Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Menu 15 1 1 1 Address Mapping Rule Local IP Start 197 168 1 10 End N A Global IP Start 10 End N A Press ENTER to Confirm or ESC to Cancel Press Space Bar to Toggle Figure 4 19 Example 3 Menu 15 1 1 1 Menu 15 1 1 Address Mapping Rules Set Name Idx Local Sta S re P 3 l_ End IP Type o LOD 168130 10 132 50 1 192 168 1 11 10 132 50 2 0 0 0 0 255 255 2099 6299 104132 50 3 10 132 50 3 Server Action Edit Select Rule Press ENTER to Confirm or ESC to Cancel Figure 4 20 Example 3 Final Menu 15 1 1 Now configure the IGA3 to map to our web server and mail server on the LAN Step 7 Enter 15 from the main menu NAT 4 23 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Step 8 Now enter 2 from this menu and configure it as shown in Figure 4 21 Menu 15 2 NAT Server Setup Rule Start Port No End Port No IP Address Default 80 25 OIDAHGOBWNHE ooo oneonone CoooCCCCC 0 0 0 0 0 0 0 0 ni 0 0 0 0 0 0 0 026 1026 R Press ENTER to Confirm or ESC to Cancel Figure 4 21 Example 3 Menu 15 2 4 4 4 Example 4 NAT Unfriendly Application Programs Some applications do not support NAT Mapping usi
35. Note also that the in the Set Name field means that this is a required field and you must enter a name for the set If the Set Name field is left blank the entire set will be deleted 4 10 NAT Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Set Name Menu 15 1 1 Address Mapping Rules Idx Local Start IP Local End IP Global Start IP Global End IP Type Te 2 3e 4 Te 6 ies 8 9 10 Action None Select Rule N A Press ENTER to Confirm or ESC to Cancel Figure 4 8 Menu 15 1 1 First Set The Type Local and Global Start End IPs are configured in menu 15 1 1 1 described later and the values are displayed here Ordering Your Rules Ordering your rules is important because the Prestige applies the rules in the order that you specify When a tule matches the current packet the Prestige takes the corresponding action and the remaining rules are ignored If there are any empty rules before your new configured rule your configured rule will be pushed up by that number of empty rules For example if you have already configured rules 1 to 6 in your current set and now you configure rule number 9 In the set summary screen the new rule will be rule 7 not 9 Now if you delete rule 4 rules 5 to 7 will be pushed up by 1 rule so as old rule 5 becomes rule 4 old rule 6 becomes rule 5 and old rule 7 becomes rule 6 Table 4 5 Fields in Menu 15 1 1
36. Only the SMT will use the pre configured Set 255 read only The Server Set is a list of LAN side servers mapped to external ports To use this set one set for the Prestige 10 a server rule must be set up inside the NAT Address Mapping set Please see section Error Reference source not found for further information on these menus To configure NAT enter 15 from the main menu to bring up the following screen Menu 15 NAT Setup Address Mapping Sets Port Forwarding Setup Trigger Port Setup Enter Menu Selection Number Figure 4 5 Menu 15 NAT Setup 4 3 1 Address Mapping Sets Enter to bring up Menu 15 1 Address Mapping Sets Menu 15 1 Address Mapping Sets Ta 255 SUA read only Enter Menu Selection Number Figure 4 6 Menu 15 1 Address Mapping Sets 4 8 NAT Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch SUA Address Mapping Set Enter 255 to display the next screen see also section 4 2 1 The fields in this menu cannot be changed Menu 15 1 255 Address Mapping Rules Set Name SUA Idx Local Start IP Local End IP Global Start IP Global End IP Type 255 255 255 255 0 0 0 0 0 0 0 0 Server Press ENTER to Confirm or ESC to Cancel Figure 4 7 Menu 15 1 255 SUA Address Mapping Rules The following table explains the fields in this screen The fields in menu 15 1 255 are read only Table 4 4 SUA Address Mapping Rules FIELD DESC
37. Port Speed Log and Trace Diagnostic Backup Configuration Restore Configuration 5 Time and Date Setting Remote Management Setup Enter Menu Selection Number Figure 13 1 Command Mode in Menu 24 System Maintenance amp Information 13 1 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Copyright c 1994 2002 ZyXEL Communications Corp ras gt Valid commands are sys exit device ether poe pptp ip ppp hdap ras gt Figure 13 2 Valid Commands 13 2 Call Control Support The Prestige provides two call control functions budget management and call history Please note that this menu is only applicable when Encapsulation is set to PPPoE or PPTP in menu 4 or menu 11 1 The budget management function allows you to set a limit on the total outgoing call time of the Prestige within certain times When the total outgoing call time exceeds the limit the current call will be dropped and any future outgoing calls will be blocked Call history chronicles preceding incoming and outgoing calls To access the call control menu select option 9 in menu 24 to go to Menu 24 9 System Maintenance Call Control as shown in the next table Menu 24 9 System Maintenance Call Control 1 Budget Management 2 Call History Enter Menu Selection Number Figure 13 3 Call Control 13 2 System Maintenance amp Information Prestige 314 PLUS Broadband Sharing Gateway with 4 Po
38. SMT Session Begin 60 Thu Jan 00 05 11 1970 PINI INFO SMT Session End 61 Thu Jan 00 17 59 1970 PINI INFO SMT Session Begin 1 1 1 62 Thu Jan 1 00 24 40 1970 PINI INFO SMT Session End 63 Thu Jan 1 00 35 32 1970 PINI INFO SMT Session Begin L Clear Error Figure 11 7 Examples of Error and Information Messages 11 3 2 UNIX Syslog The Prestige uses the UNIX syslog facility to log the CDR Call Detail Record and system messages to a syslog server Syslog and accounting can be configured in Menu 24 3 2 System Maintenance Syslog and Accounting as shown next Menu 24 3 2 System Maintenance UNIX Syslog Syslog Active No Syslog IP Address Log Facility Local 1 Types CDR No Packet triggered No Filter log No PPP log No Press ENTER to Confirm or ESC to Cancel Press Space Bar to Toggle Figure 11 8 Menu 24 3 2 System Maintenance UNIX Syslog You need to configure the UNIX syslog parameters described in the following table to activate syslog then choose what you want to log System Information amp Diagnosis 11 7 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Table 11 3 System Maintenance Menu Syslog Parameters PARAMETER DESCRIPTION Syslog Active Press the SPACE BAR to turn on or off syslog Syslog IP Address Enter the IP Address of the server that will log the CDR Call Detail Record and system messages i e the syslog server Log Facilit
39. Set Configuration Step 2 Enter the index of the filter set you wish to configure e g 7 and press ENTER Step 3 Enter a descriptive name or comment in the Edit Comments field e g TELNET WAN and press ENTER Step 4 Press ENTER at the message Press ENTER to confirm to open Menu 21 7 Filter Rules Summary Step 5 Enter 1 to configure the first filter rule Make the entries in this menu as shown in the following figure 7 14 Filter Configuration Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Menu 21 7 1 TCP IP Filter Rule Press SPACE BAR to choose this Filter 7 1 filter rule type The first filter rule Filter Type TCP IP Filter Rule Active Yes IP Protocol 6 IP Sowrce Raute No Destination IP Addr 0 0 0 IP Mask 0 0 0 0 Port 21 aad ee Leg ae Select Yes to make the rule active IP Mask 0 0 0 0 Port 0 Port Comp None TCP Estab No More No Log None 6 is the TCP protocol Action Matched Drop Action Not Matched Chec Pess ENTER to Press Space Bar to Toggle type determines all subsequent filter types within a set The port number for FTP is 21 See There are no RFC 1060 for port numbers of well more rules to Select Equal here known services check as we are looking for packets going Select Drop so that the to port 21 only packet will be dropped if its destination is the telnet port Select Check Next Rule h
40. Step 3 Enter atgo to restart the Prestige Example Xmodem Configuration Upload Using HyperTerminal Click Transfer then Send File to display the following screen Firmware and Configuration Maintenance 12 17 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch C Product config rom Figure 12 19 Example Xmodem Upload After the configuration upload process has completed restart the Prestige by entering atgo 12 18 Firmware and Configuration Maintenance Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Chapter 13 System Maintenance amp Information This chapter leads you through SMT menus 24 8 to 24 11 13 1 Command Interpreter Mode The Command Interpreter CI is a part of the main router firmware The CI provides much of the same functionality as the SMT while adding some low level setup and diagnostic functions The CI can be entered from the SMT by selecting menu 24 8 Access can be either by Telnet or by a serial connection to the console port although some commands are only available with a serial connection See the included CD or the zyxel com web site for more detailed information on CI commands Enter 8 from Menu 24 System Maintenance A list of valid commands can be found by typing help or at the command prompt Type exit to return to the SMT main menu when finished Menu 24 System Maintenance System Status System Information and Console
41. U 4 U Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Appendix D Boot Commands The BootModule AT commands execute from within the router s bootup software when debug mode is selected before the main router firmware ZyNOS is started When you start up your Prestige you are given a choice to go into debug mode by pressing a key at the prompt shown in the following screen In debug mode you have access to a series of boot module commands for example ATUR for uploading firmware and ATLC for uploading the configuration file These are already discussed in the Transferring Files chapter Bootbase Version V2 02 10 11 2000 13 58 03 RAM Size 8192 Kbytes DRAM Post Testing 8192K OK FLASH Intel 16M ZyNOS Version V324 wa0b05 3 5 2001 18 00 34 Press any key to enter debug mode within 3 seconds Diagram 6 Option to Enter Debug Mode Enter ATHE to view all available Prestige boot module commands as shown in the next screen ATBAX allows you to change the console port speed The x denotes the number preceding the colon to give the console port speed following the colon in the list of numbers that follows e g ATBA3 will give a console port speed of 9 6 Kbps ATSE displays the seed that is used to generate a password to turn on the debug flag in the firmware The ATSH command shows product related information such as boot module version vendor name product model RAS code revision etc ATGO allows you to
42. ZyXEL routers supported the SUA Only option in today s routers 4 4 NAT Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch 3 Many to Many Overload In Many to Many Overload mode the Prestige maps the multiple local IP addresses to shared global IP addresses 4 Many One to One In Many One to One mode the Prestige maps the each local IP addresses to unique global IP addresses 5 Server This type allows you to specify inside servers of different services behind the NAT to be accessible to the outside world Port numbers do not change for One to One and Many One to One NAT mapping types The following table summarizes these types Table 4 2 NAT Mapping Types TYPE IP MAPPING SMT ABBREVIATION One to One ILA1 amp gt IGA1 1 1 Many to One SUA PAT ILA1 amp gt IGA1 M 1 ILA2 gt IGA1 Many to Many Overload ILA1 lt 7 gt IGA1 M M Ov ILA2 gt IGA2 ILA3 gt IGA1 ILA4 gt IGA2 Many One to One ILA1 lt 7 gt IGA1 M 1 1 ILA2 gt IGA2 ILA3 lt gt IGA3 Server Server 1 IP lt 7 gt IGA1 Server Server 2 IP 7 gt IGA1 Server 3 IP 7 gt IGA1 NAT 4 5 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch 4 2 Using NAT 4 2 1 SUA Single User Account Versus NAT SUA Single User Account is a ZyNOS implementation of a subset of NAT that supports two types of mapping Many to One and Server See section 4 3 for a detailed de
43. address and returns this address to your system From then on the IP address is used in all subsequent communications DNS service port number 53 is not configurable on the Prestige 14 5 SNMP Simple Network Management Protocol Simple Network Management Protocol is a member of TCP IP protocol suite that is used for exchanging management information between network devices Your Prestige supports SNMP agent functionality which allows a manager station to manage and monitor the Prestige through the network 14 6 Remote Management Setup Remote management setup is for managing Telnet Web and FTP services You can customize the service port access interface and the secured client IP address to enhance security and flexibility You may manage your Prestige from a remote location via the Internet WAN only via the LAN only Both LAN amp WAN or neither Disable If you enable remote management of a service but have applied a filter to block the service then you will not be able to remotely manage the service To disable remote management of a service select Disable in the corresponding Server Access field Enter 11 from menu 24 to bring up Menu 24 11 Remote Management Control 14 2 Remote Management Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch If you just wish to block certain users from using these services then use filtering Menu 24 11 Remote Management Control TELNET Se
44. any time to cancel 2 8 3 Configuring Dynamic DNS To configure Dynamic DNS go to Menu 1 General Setup and press select Yes in the Edit Dynamic DNS field Press ENTER to display Menu 1 1 Configure Dynamic DNS as shown next Hardware Installation amp Initial Setup 2 11 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Menu 1 1 Configure Dynamic DNS Service Provider WWW DynDNS ORG Active Yes DDNSType DynamicDNS Hostl Host2 Host3 EMATL USER Password KKKKKKKK Enable Wildcard No Offline N A Edit Update IP Address Use Server Detected IP Yes User Specified IP Addr No IP Address N A Press ENTER to confirm or ESC to cancel Figure 2 8 Configure Dynamic DNS Follow the instructions in the next table to configure Dynamic DNS parameters Table 2 6 Configure Dynamic DNS Menu Fields Table 2 7 Configure Dynamic DNS Menu Fields FIELD DESCRIPTION EXAMPLE Service Provider This is the name of your Dynamic DNS service provider WWW DynDNS ORG default Active Press SPACE BAR to select Yes and then press ENTER to Yes make dynamic DNS active DDNS Type Press SPACE BAR and then ENTER to select DynamicDNS DynamicDNS if you have a dynamic IP address es Select StaticDNS if you default have a static IP address s Select CustomDNS to have dyns org provide DNS service for a domain name that you already have from a source ot
45. automatically when it is no longer in use 8 1 1 How do know if I m using UPnP UPnP hardware is identified as an icon in the Network Connections folder Windows XP Each UPnP compatible device installed on your network will appear as a separate icon Selecting the icon of a UPnP device will allow you to access the information and properties of that device 8 1 2 NAT Transversal UPnP NAT Traversal automates the process of allowing an application to operate through NAT UPnP network devices can automatically configure network addressing announce their presence in the network to other UPnP devices and enable exchange of simple product and service descriptions NAT traversal allows the following gt Dynamic port mapping gt Learning public IP addresses gt Assigning lease times to mappings Windows Messenger is an example of an application that supports NAT Transversal and UPnP UPnP 8 1 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch See the Network Address Translation NAT chapter in your User s Guide for further information about NAT 8 1 3 Cautions with UPnP The automated nature of NAT Transversal applications in establishing their own services and opening firewall ports may present network security issues Network information and configuration may also be obtained and modified by users in some network environments All UPnP enabled devices may communicate freely with each other without additional c
46. continue booting the system Most other commands aid in advanced troubleshooting and should only be used by qualified engineers Boot Commands G Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch AT ATHE ATBAx just answer OK print help change baudrate 1 38 4k 2 19 2k 3 9 6k 4 57 6k 5 115 2k ATENx y set BootExtension Debug Flag y password ATSE show the seed of password generator ATTI h m s change system time to hour min sec or show current time ATDA y m d change system date to year month day or show current date ATDS ATDT ATDUx y ATRBx ATRWx ATRLx ATGO x ATGR ATGT ATRTw X ATSH ATTD ATUR ATLC ATXSx ATSR dump RAS stack dump Boot Module Common Area dump memory contents from address x for length y display the 8 bit value of address x display the 16 bit value of address x display the 32 bit value of address x run program at addr x or boot router boot router run Hardware Test Program y z RAM test level w from address x to y z iterations dump manufacturer related data in ROM download router configuration to PC via XMODEM upload router firmware to flash ROM upload router configuration file to flash ROM xmodem select x 0 CRC mode default x 1 checksum mode system reboot Diagram 7 Boot Module Commands Boot Commands Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Appendix E NetBIOS Filter Commands The following describes the NetBIOS
47. forwarded in the End Port No field Enter the inside IP address of the server in the IP Address field In the following figure you have a computer acting as an FTP Telnet and SMTP server ports 21 23 and 25 at 192 168 1 33 Press ENTER at the Press ENTER to confirm prompt to save your configuration after you define all the servers or press ESC at any time to cancel Menu 15 2 NAT Server Setup Rule Start Port No End Port No IP Address Default Default 0 03 0 10 ooo ooo onone ooo onomononone ooocoo0o0cccd 0 0 0 0 0 0 0 0 0 1 026 1026 R Reserved Press ENTER to Confirm or ESC to Cancel Figure 4 10 Menu 15 2 NAT Server Setup NAT 4 15 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch The NAT network appears as a single host on the Internet FTP Telnet SMTP server IP addi 192 168 133 ol 192 168 1 1 D Og Prestige 3 o gt Computer o l Q IPaddress 2 c rA 192 168 1 4 oS SUD Computer Z f IP address a2 1921681 35 Computer IP address IP address assigned 192 168 1 36 by ISP Figure 4 11 Multiple Servers Behind NAT Example 4 3 3 Trigger Port Setup The following is an example of trigger port forwarding Real Audio server Figure 4 12 Trigger Port Forwarding Process Example 1 Jane requests a file from the Real Audio server port 7070 2 Port 7070 is a trigger port and causes the Prestige to record
48. help you get up and running right away It contains a detailed easy to follow connection diagram default settings handy checklists and information on setting up your network and configuring for Internet access gt Packing List Card The Packing List Card lists all items that should have come in the package gt ZyXEL Glossary and Web Site Preface xix Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Please refer to www zyxel com for an online glossary of networking terms and additional support documentation Syntax Conventions Mouse action sequences are denoted using a comma For example click Start Settings Control Panel Network means first you click Start move the mouse pointer over Settings then move the mouse pointer over Control Panel and finally click Network Enter means for you to type one or more characters and press the carriage return Select or Choose means for you to select one from the predefined choices The SMT menu titles and labels are in Bold Times New Roman font The choices of a menu item are in Bold Arial font A single keystroke is in Arial font and enclosed in square brackets for instance ENTER means the Enter or carriage return key ESC means the escape key and SPACE BAR means the space bar UP and DOWN are the up and down arrow keys For brevity s sake we will use e g as shorthand for for instance and i e for that is or i
49. icon displays in the system tray A Internet Connection is now connected Click here For more information upnp2 Paint UPnP Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Step 21 Double click on the icon to display your current Internet connection status Y Internet Connection Status General Internet Gateway Status Connected Duration 00 00 56 Speed 100 0 Mbps Activity Internet Internet Gateway My Computer 58 Sent 8 Received 5 943 Cee T Web Configurator Easy Access With UPnP you can access the web based configurator on the ZyXEL device without finding out the IP address of the ZyXEL device first This comes helpful if you do not know the IP address of the ZyXEL device Follow the steps below to access the web configurator 8 8 UPnP Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Step 22 Step 23 Click start and then Control Panel Double click Network Connections Select My Network Places under Other Places Step 24 Step 25 An icon with the description for each UPnP enabled device displays under Local Network Right click on the icon for your ZyXEL device and select Invoke The web configurator login screen displays Step 26 s Network Connections File Edit View Favorites Tools Advanced Help Q ex Se a po Search E Folders E e Network Connections Network Tasks E
50. logged Action Matched Only packets that match the rule parameters will be logged Action Not Matched Only packets that do not match the rule parameters will be logged Both All packets will be logged None Action Matched Select the action for a matching packet Options are Check Next Rule Forward or Drop Drop Action Not Matched Select the action for a packet not matching the rule Options are Check Next Rule Forward or Drop Check Next Rule Filter Configuration 7 9 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch FIELD DESCRIPTION EXAMPLE Once you have completed filling in Menu 21 1 1 1 TCP IP Filter Rule press ENTER at the message Press Enter to Confirm to save your configuration or press ESC to cancel This data will now be displayed on Menu 21 1 1 Filter Rules Summary The following figure illustrates the logic flow of an IP filter 7 10 Filter Configuration Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Packet into IP Filter Yes Y Apply SrcAddrMask to Sre Addr Check SO lt IP Ad da ame Matched Matched Y Apply DestAddrMask to Dest Addr Check De pe Ad dr pA No Matched N gt Matched Pe ates Not Matched A gt IP Protocol lt Matched ao aie I not Matched A gt Dest Port_ Matched
51. make sure you have the correct power adapter See the Power Adapter Specification Appendix for regional specifications Step 5 Grounding the Prestige Optional Ground the Prestige by connecting a grounded wire to the F G Frame Ground of the Prestige 2 4 Additional Installation Requirements In addition to the contents of your package there are other hardware and software requirements you need before you can install and use your Prestige These requirements include 1 A computer s with an installed Ethernet NIC Network Interface Card 2 A computer equipped with terminal emulation communications software configured to the following parameters VT100 terminal emulation e 9600 baud No parity 8 data bits 1 stop bit flow control set to none 3 A cable xDSL modem and an ISP account 2 4 Hardware Installation amp Initial Setup Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch 2 5 Turning on Your Prestige At this point you should have connected the console port the LAN port s the WAN port and the power port to the appropriate devices or lines Plug the power adapter into a wall outlet The PWR LED should be on The SYS LED will come on after the system tests are complete The WAN LED and one of the LAN LEDs come on immediately after the SYS LED comes on if proper connections have been made to the LAN and WAN ports 2 5 1 Initial Screen When you turn on your Prestige it performs seve
52. makes your Prestige a cost effective and viable network solution A 4 port bandwidth sensitive 10 100Mbps switch provides greater network efficiency than traditional hubs because the bandwidth is dedicated and not shared An unlimited number of computers may be connected to your Prestige by adding other hubs if your LAN consists of more than 4 computers 10 100MB Auto negotiation Ethernet Fast Ethernet Interface This auto negotiation feature allows the Prestige to detect the speed of incoming transmissions and adjust appropriately without manual intervention It allows data transfer of either 10 Mbps or 100 Mbps in either half duplex or full duplex mode depending on your Ethernet network Auto Sensing Ethernet LAN Ports The LAN ports on the Prestige automatically adjust for straight through or crossover cabling This automatic polarity correction helps find and fix common cabling problems and it simplifies the installation process as the can be either a straight through or crossover cable The Prestige automatically switches its transmit and receive circuitry to accommodate the link partner s polarity Getting to Know Your Prestige 1 1 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Universal Plug and Play UPnP Using the standard TCP IP protocol the Prestige and other UPnP enabled devices can dynamically join a network obtain an IP address and convey its capabilities to other devices on the network Traffic Redi
53. rule 1 R match m drop D Src Source Address Dst Destination Address prot Protocol TCP UDP ICMP spo Source port Dpo Destination port Mar 03 10 39 43 202 132 155 97 ZyXEL GEN ffffffffffinordff0080 SO5 gt RO1mF Mar 03 10 41 29 202 132 155 97 ZyXEL GEN 00a0c5f502fnord0 10080 SO5 gt RO1mF Mar 03 10 41 34 202 132 155 97 ZyXEL IP Src 192 168 2 33 Dst 202 132 155 93 ICMP S04 gt RO01mF Mar 03 11 59 20 202 132 155 97 ZyXEL GEN 00a0c5f502fnord010080 SO5 gt RO1mF Mar 03 12 00 31 202 132 155 97 ZyXEL GEN ffffffffffinordff0080 SO5 gt RO1mF Mar 03 12 00 52 202 132 155 97 ZyXEL GEN ffffffffffffO080 SO5 gt RO1mF Mar 03 12 00 57 202 132 155 97 ZyXEL GEN 00a0c5f502010080 SO5 gt RO1mF Mar 03 12 01 01 202 132 155 97 ZyXEL IP Src 192 168 2 33 Dst 202 132 155 93 TCP spo 01170 dpo 00021 S04 gt RO01mF Mar 03 12 01 06 202 132 155 97 ZyXEL IP Src 192 168 2 33 Dst 202 132 155 93 TCP spo 01170 dpo 00021 S04 gt RO1mF System Information amp Diagnosis 11 9 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch 4 PPP log PPP Log Message Format sdcmdSyslogSend SYSLOG_PPPLOG SYSLOG_NOTICE String String ppp Proto Starting ppp Proto Opening ppp Proto Closing ppp Proto Shutdown Proto LCP ATCP BACP BCP CBCP CCP CHAP PAP IPCP IPXCP Jul 19 11 42 44 192 168 102 2 ZyXEL ppp LCP Closing Jul 19 11 42 49 192 168 102 2 ZyXEL ppp IPCP Closing Jul 19 11 42 54 1
54. see the following screen when you telnet into menu 24 7 2 12 12 Firmware and Configuration Maintenance Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Menu 24 7 2 System Maintenance Upload System Configuration File upload the system configuration file follow the procedure below Launch the FTP client on your workstation Type open and the IP address of your system Then type root and SMT password as requested Type put configurationfilename rom 0 where configurationfilename is the name of your system configuration file on your workstation which will be transferred to the rom 0 file on the system The system reboots automatically after the upload system configuration file process is complete For details on FTP commands please consult the documentation of your FTP client program For details on uploading system firmware using TFTP note that you must remain on this menu to upload system firmware using TFTP please see your manual Press ENTER to Exit Figure 12 14 Telnet Into Menu 24 7 2 System Maintenance To upload the firmware and the configuration file follow these examples FTP File Upload Command from the DOS Prompt Example Step 1 Step 2 Step 3 Step 4 Step 5 Step 6 Step 7 Launch the FTP client on your computer Enter open followed by a space and the IP address of your Prestige Press ENTER when prompted for a username Enter your pa
55. systems e g Radius For the user PPPoE provides a login and authentication method that the existing Microsoft Dial Up Networking software can activate and therefore requires no new learning or procedures for Windows users One of the benefits of PPPoE is the ability to let end users access one of multiple network services a function known as dynamic service selection This enables the service provider to easily create and offer new IP services for specific users Operationally PPPoE saves significant effort for both the end user and ISP carrier as it requires no specific configuration of the broadband modem at the customer site By implementing PPPoE directly on the Prestige rather than individual computers the computers on the LAN do not need PPPoE software installed since the Prestige does that part of the task Furthermore with NAT all of the LANs computers will have access Enable PPPoE in menu 11 1 by pressing the SPACE BAR to select PPPoE in the Encapsulation field Remote Node Setup 5 5 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Menu 11 1 Remote Node Rem Node Name ChangeMe Active Yes Encapsulation PPPoE Service Type Standard Service Name Outgoing My Login My Password x Authen CHAP PAP Profile Route IP Edit IP No Telco Option Allocated Budget min 0 Period hr 0 Schedules Nailed up Connections No Session Options Edit Filter Set
56. the RIP Setup default section for more information on RIP The default for RIP on the WAN side is None It is recommended that you do not change this setting Version Press the SPACE BAR to select the RIP version Options are RIP None 1 RIP 2B or RIP 2M Remote Node Setup Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Table 5 4 Remote Node Network Layer Options Menu Fields FIELD DESCRIPTION EXAMPLE Multicast IGMP Internet Group Multicast Protocol is a session layer protocol IGMP v2 used to establish membership in a Multicast group The Prestige supports both IGMP version 1 IGMP v1 and version 2 IGMP v2 Press SPACE BAR to enable IP Multicasting or select None to disable it See the previous Part for more information on this feature Once you have completed filling in the Network Layer Options Menu press ENTER to return to menu 11 Press ENTER at the message Press ENTER to Confirm to save your configuration or press ESC at any time to cancel 5 2 1 Editing TCP IP Options with PPTP Encapsulation Make sure that Encapsulation is set to PPTP in menu 11 1 Then move the cursor to the Edit IP field in menu 11 1 press the SPACE BAR to toggle No to Yes Press ENTER to open Menu 11 3 Network Layer Options Menu 11 3 Remote Node Network Layer Options IP Address Assignment Dynamic Rem IP Address N A Rem Subnet Mask N A My WAN Addr N A
57. the following screen Firmware and Configuration Maintenance 12 15 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Menu 24 7 1 System Maintenance Upload Router Firmware To upload router firmware 1 Enter y at the prompt below to go into debug mode 2 Enter atur after Enter Debug Mode message 3 Wait for Starting XMODEM upload message before activating Xmodem upload on your terminal 4 After successful firmware upload enter atgo to restart the router Warning Proceeding with the upload will erase the current router firmware Do You Wish To Proceed Y N Figure 12 16 Menu 24 7 1 as seen using the Console Port Step 2 After the Starting Xmodem upload message appears activate the Xmodem protocol on your computer Follow the procedure as shown previously for the HyperTerminal program The procedure for other serial communications programs should be similar Example Xmodem Firmware Upload Using HyperTerminal Click Transfer then Send File to display the following screen Send File EIE Type the firmware file s Folder C Program Files location or click Browse to Filename look for it C Product firmware bin Browse Protocol Choose the Xmodem modem hs protocol Cose ance Then click Send Figure 12 17 Example Xmodem Upload After the firmware upload process has completed the Prestige will automatically restart 12 16 Firmware and Configuration Mai
58. will take you in most cases to the previous menu Exit the SMT Type 99 then press Type 99 at the main menu prompt and press ENTER to exit the ENTER SMT interface 2 6 Hardware Installation amp Initial Setup Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch 2 6 1 Main Menu After you enter the password the SMT displays the Prestige Main Menu as shown next Copyright c 1994 2002 ZyXEL Communications Corp Prestige 314 PLUS Main Menu Getting Started Advanced Management 1 General Setup Filter Set Configuration 2 WAN Setup SNMP Configuration 3 LAN Setup System Password 4 Internet Access Setup System Maintenance Schedule Setup Advanced Applications 11 Remote Node Setup 12 Static Routing Setup 15 NAT Setup Enter Menu Selection Number Figure 2 5 Prestige Main Menu 2 6 2 System Management Terminal Interface Summary Table 2 4 Main Menu Summary NO MENU TITLE FUNCTION 1 General Setup Use this menu to set up routing bridging and general information 2 WAN Setup Use this menu to clone a MAC address from a computer on your LAN 3 LAN Setup Use this menu to configure LAN DHCP and TCP IP settings as well as apply LAN filters 4 Internet Access Setup Configure your Internet Access setup Internet address gateway login etc with this menu 11 Remote Node Setup Use this menu to configure detailed remote node settings your ISP is also a remote node as well
59. 2 1 System Maintenance Information to confirm that you have uploaded the correct firmware version The AT command is the command you enter after you press y when prompted in the SMT menu to go into debug mode Table 12 1 Filename Conventions FILE TYPE INTERNAL EXTERNAL DESCRIPTION NAME NAME Configuration Rom 0 rom This is the configuration filename on the File Prestige Uploading the rom 0 file replaces the entire ROM file system including your Prestige configurations system related data including the default password the error log and the trace log Firmware Ras bin This is the generic name for the ZyNOS firmware on the Prestige 12 2 Backup Configuration The Prestige displays different messages explaining different ways to backup restore and upload files in menus 24 5 24 6 24 7 1 and 24 7 2 when you use the serial console port and when you telnet in Option 5 from Menu 24 System Maintenance allows you to backup the current Prestige configuration to your computer Backup is highly recommended once your Prestige is functioning properly FTP and TFTP are the preferred methods for backing up your current configuration to your computer since FTP and TFTP are faster You can also perform backup and restore using menu 24 through the console port Any serial communications program should work fine however you must use Xmodem protocol to perform the download upload and you don t have to rename th
60. 2 168 1 10 Figure 4 1 How NAT Works 4 1 4 NAT Application The following figure illustrates a possible NAT application where three inside LANs logical LANs using IP Alias behind the Prestige can communicate with three distinct WAN networks More examples follow at the end of this chapter NAT 4 3 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Corporation B Serverin Bz Admin Network RG IP 1 IGA 1 Bs 8 3 38 33 o lt LANI 192 168 1 X gt a N 2 g Network Server Admin 192 168 1 1 Corporation A PC1 PC1 Server in PC2 LAN2 192 168 2 X Sales Network PC 2 Network Server IP 2 IGA 2 Sales 192 168 2 1 PC3 PC3 NT Server Poa 192 168 2 1 N ed Q o BL Server in 3 z 3 2z R amp D Network 2 IP3 IGA 3 B LANS 192 168 3 X we Network Server R amp D 192 168 3 1 WAN Addresses LAN Addresses Default IPs IGA 1 gt 192168 1 1 IGA 2 gt 192168 2 1 IGA 3 gt 192168 3 1 Figure 4 2 NAT Application With IP Alias 4 1 5 NAT Mapping Types NAT supports five types of IP port mapping They are 1 One to One In One to One mode the Prestige maps one local IP address to one global IP address 2 Many to One In Many to One mode the Prestige maps multiple local IP addresses to one global IP address This is equivalent to SUA i e PAT port address translation ZyXEL s Single User Account feature that previous
61. 3 Step 14 Step 15 Click start and Control Panel Double click Network Connections In the Network Connections window click Advanced in the main menu and select Optional Networking Components The Windows Optional Networking Components Wizard window displays Select Networking Service in the Components selection box and click Details In the Networking Services window select the Universal Plug and Play check box Click OK to go back to the Windows Optional Networking Component Wizard window and click Next s Network Connections Edit View Favorites Tools Help Q ex Q i ps File Address S Network Connections Operator Assisted Dialing Dial up Preferences Network Identification Bridge Connections Advanced Settings Optional Network Tasks fl Create a nemi cannertinn Windows Optional Networking Components Wizard Windows Components You can add or remove components of Windows XP To add of remove a component click the checkbox 4 shaded box means that only part of the component will be installed To see what s included in a component click Details Components o a Management and Monitoring Tools 1 9MB M Networking es 0 3 MB o 35 Other Network File and Print Services 0 0M Description Contains a variety of specialized network related services and protocols Next gt 0 0 MB 260 9 MB Total disk space required Space available on disk Networking Ser
62. 3 45 IP Address 192 168 1 1 IP Mask 255 255 255 0 DHCP Server Press ESC or RETURN to Exit Figure 11 4 Menu 24 2 1 System Maintenance Information 11 4 System Information amp Diagnosis Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Table 11 2 Fields in System Maintenance FIELD DESCRIPTION Name This is the Prestige s system name domain name assigned in menu 1 E G System Name Prestige Domain Name zyxel com Name P314 PLUS zyxel com Routing Refers to the routing protocol used ZyNOS F W Version Refers to the version of ZyXEL s Network Operating System software Ethernet Address Refers to the Ethernet MAC Media Access Control address of your Prestige IP Address This is the IP address of the Prestige in dotted decimal notation IP Mask This shows the subnet mask of the Prestige DHCP This field shows the DHCP setting of the Prestige 11 2 2 Console Port Speed You can change the speed of the console port through Menu 24 2 2 Console Port Speed Your Prestige supports 9600 default 19200 38400 57600 and 115200 bps for the console port The recommended maximum port speed fort he Prestige is 57600 Use the SPACE BAR to select the desired speed in menu 24 2 2 as shown next Menu 24 2 2 System Maintenance Change Console Port Speed Console Port Speed 9600 Press ENTER to Confirm or ESC to Cancel Figure 11 5 Menu 2
63. 4 10 System Maintenance Time and Date Setting Use Time Server when Bootup None Time Server IP Address N A Current Time 00 00 00 New Time hh mm ss 21 S37 S2 30723 I6 Current Date 2000 01 01 New Date yyyy mm dd 2000 01 01 Time Zone GMT Daylight Saving No Start Date mm dd Od a 01 End Date mm_dd O12 gt 01 Press ENTER to Confirm or ESC to Cancel Figure 13 7 Menu 24 10 System Maintenance Time and Date Setting Table 13 3 Time and Date Setting Fields FIELD DESCRIPTION Use Time Server Enter the time service protocol that your time server sends when you turn on the when Bootup Prestige Not all time servers support all protocols so you may have to check with your SP network administrator or use trial and error to find a protocol that works The main differences between them are the format Daytime RFC 867 format is day month year time zone of the server Time RFC 868 format displays a 4 byte integer giving the total number of seconds since 1970 1 1 at 0 0 0 NTP RFC 1305 is similar to Time RFC 868 None is the default value Enter the time manually Each time you turn on the Prestige the time and date will be reset to 2000 1 1 0 0 0 Time Server IP Enter the IP address of your time server or its domain name if your time server is Address using DNS Check with your ISP network administrator if you are unsure of this information Current Time This fiel
64. 4 2 2 System Maintenance Change Console Port Speed System Information amp Diagnosis Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch 11 3 Log and Trace There are three logging facilities in the Prestige The first is the error logs and trace records that are stored locally The second is the UNIX syslog facility for message logging UNIX syslog is an external UNIX server used for storing log messages 11 3 1 Viewing Error Log The first place you should look for clues when something goes wrong is the error trace log Follow the procedure below to view the local error trace log Step 1 Select option 24 from the main menu to open Menu 24 System Maintenance Step 2 From menu 24 select option 3 to display Menu 24 3 System Maintenance Log and Trace Step 3 Select the first option from Menu 24 3 System Maintenance Log and Trace to display the error log in the system After the Prestige finishes displaying you will have the option to clear the error log Menu 24 3 System Maintenance Log and Trace 1 View Error Log 2 UNIX Syslog 4 Call Triggering Packet Please enter selection Figure 11 6 Menu 23 3 System Maintenance Log and Trace Examples of typical error and information messages are presented in the figure below 11 6 System Information amp Diagnosis Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch 59 Thu Jan 00 00 03 1970 PINI INFO
65. 5 255 in the subnet mask field to force the network number to be identical to the host ID IP Subnet Mask Enter the IP subnet mask for this destination Gateway IP Address Enter the IP address of the gateway The gateway is an immediate neighbor of your Prestige that will forward the packet to the destination On the LAN the gateway must be a router on the same segment as your Prestige over the WAN the gateway must be the IP address of one of the Remote Nodes Metric Metric represents the cost of transmission for routing purposes IP routing uses hop count as the measurement of cost with a minimum of 1 for directly connected networks Enter a number that approximates the cost for this link The number need not be precise but it must be between 1 and 15 In practice 2 or 3 is usually a good number Private This parameter determines if the Prestige will include the route to this remote node in its RIP broadcasts If set to Yes this route is kept private and not included in RIP broadcast If No the route to this remote node will be propagated to other hosts through RIP broadcasts Once you have completed filling in this menu press ENTER at the message Press ENTER to Confirm to save your configuration or press ESC to cancel IP Static Route Setup 6 3 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Part III Advanced Management Thi
66. 92 168 102 2 ZyXEL ppp CCP Closing 11 3 3 Call Triggering Packet Call Triggering Packet displays information about the packet that triggered a dial out call in an easy readable format Equivalent information is available in menu 24 1 in hex format An example is shown next Note This feature is available for PPTP PPPoE Encapsulation only 11 10 System Information amp Diagnosis Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch IP Frame ENETO RECV Size 44 44 Time 17 02 44 262 Frame Type IP Header P Version 4 Header Length 20 Type of Service 0x00 0 Total Length 0x002C 44 dentification 0x0002 2 Flags 0x00 Fragment Offset 0x00 Time to Live OxFE 254 Protocol 0x06 TCP Header Checksum OxFB20 64288 Source IP 0xC0A80101 192 168 1 1 Destination IP 0x00000000 0 0 0 0 TCP Header Source Port 0x0401 1025 Destination Port 0x000D 13 Sequence Number 0x05B8D000 95997952 Ack Number 0x00000000 0 Header Length 24 Flags OROT rer ae Window Size 0x2000 8192 Checksum 0xE06A 57450 Urgent Ptr 0x0000 0 Options 0000 02 04 02 00 RAW DATA 0000 45 00 00 2C 00 02 00 00 FE 06 FB 20 CO A8 01 01 E 0010 00 00 00 00 04 01 00 OD 05 B8 DO 00 00 00 00 00 0020 60 02 20 00 EO 6A 00 00 02 04 02 00 Press any key to continue Figure 11 9 Call Triggering Packet Example 11 4 Diagnostic The diagnostic facility
67. Address and Subnet Mask Similar to the way houses on a street share a common street name so too do computers on a LAN share one common network number Where you obtain your network number depends on your particular situation If the ISP or your network administrator assigns you a block of registered IP addresses follow their instructions in selecting the IP addresses and the subnet mask If the ISP did not explicitly give you an IP network number then most likely you have a single user account and the ISP will assign you a dynamic IP address when the connection is established If this is the case it is recommended that you select a network number from 192 168 0 0 to 192 168 255 0 and you must enable the 3 2 Internet Access Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Network Address Translation NAT feature of the Prestige The Internet Assigned Number Authority IANA reserved this block of addresses specifically for private use please do not use any other number unless you are told otherwise Let s say you select 192 168 1 0 as the network number which covers 254 individual addresses from 192 168 1 1 to 192 168 1 254 zero and 255 are reserved In other words the first three numbers specify the network number while the last number identifies an individual workstation on that network Once you have decided on the network number pick an IP address that is easy to remember e g 192 168 1 1 for your Pre
68. Console Port cccecseesseesseesceesceesceeeceeeeseenaeceecseeeneeeneeaes 12 17 Figure 11 19 Example Xmodem Upload o00 cccceceseeccsseeessecseeeeceeeecaeeeseeceaeecessecaeseecaeseeeeaeeeeeaesaeeeeeneeered 12 18 Figure 12 1 Command Mode in Menu 24 2 ccsececscsesesensecesesesevoneunenencecnenentencucesnsenenscosneneenenenensesenedonnener 13 1 Figure 12 2 Valid Commands p2sc05 33hsthsi sso covecs isin than e date aa aaa aeaa ae a bect atsteg seated laste ie teks 13 2 Figure 12 3Call Cotoliu i e e g E EE sawiees E E edie eee aera 13 2 Figure 12 4 Budset M aa EO Sie ate aa a A a aa A aa aa aada a aiaia 13 3 Figure 12 5 Call History ciei nthe Aw A E i ed oa E a aon 13 4 Figure 12 6 Menu 24 System Maintenance 00 ccceesecscsscceseeecesecstesecseveccsaeeeceaecaessecaeeaeesecaeseeeeasereeaeees 13 5 Figure 12 7 Menu 24 10 System Maintenance Time and Date Setting ieeceeeeceseeeeeeeeeeecneeerenee 13 6 Figure 13 1 Telnet Configuration on a TCP IP Network ccccesccssecssecsseeseeeseeeseeeeceeesseceeeeeeeeeeneeneenaees 14 1 Figure 13 2 Menu 24 11 Remote Management Control 0 c ce eeeeeseeecseeeeceseeeeesecseeeeesecaeeeecneeeecaeeeeeaeens 14 3 Figure 14 1 Schedule Setup nisreen heen caine ih han aaa Ean dat 15 1 Figure 14 2 Schedule Set Setup a ea a a e a tapoiv ap e E E a E peop a A Ta 15 2 Figure 14 3 Applying Schedule Sets to a Remote Node Example PPPoE Encapsulation 15 4 Figure 14 4 Applying Sche
69. E 4 11 Table 4 6 Menu 15 1 1 1 Editing Configuring an Individual Rule in a Set 0 eee eeceeceeseeeeeeeeeeteeneees 4 13 Table 4 7 Services amp Port Numbers 2 ccie ssisecoscsecvececssetclaspevedsotescpenednesideuecevsenstnee ei aeaa da 4 14 Table 4 8 Menu 15 3 Trigger Port Setup Description ccecceseesseescesseeesceeeeeeeeeeceeeeeseeneceaeenaeenseesseeaees 4 18 Table 5 1 Fields in Menu 11 1 Ethernet Encapsulation cccecceeseceseesseesceeeeeeeceeeeeseceseceaeeaeceeneesseenseeaes 5 2 Table 5 2 Fields in Menu 11 1 PPTP Encapsulation ccceccescceseesseeseeeseeeeeeeeeeeeeseceseeseesseenseeeseenseenseeees 5 4 Table 5 3 Fields in Menu 11 1 PPPoE Encapsulation Specific Only cceecceeceeseceseceseceseesecesecneeeeeeneeees 5 6 Table 5 4 Remote Node Network Layer Options Menu Fields cccccccceessesseeesceesceeeceeeceseceseceneceeeeeeseeees 5 8 List of Tables xvii Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Table 5 5 Remote Node Network Layer Options Menu Fields cccccsceesseesseesceesceeeceeceseeeseeeseeseenaeenaes 5 10 Table 6 1 IP Static Route Menu Fields cceecceeccsssceseceseceseceneceeecseeeseeeeeeseeseeeeeenseceseceaecaecaeceeeaeeeaeeeneeas 6 3 Table 7 1 Abbreviations Used in the Filter Rules Summary Menu ccccecceesccesecsseceeeeeeeseeeeeeeeeeereneeensees 7 6 Table 7 2 Rule Abbreviations Used lt lt cis siccscs recdeden see cave ecee de leccdee
70. IP address must be numerically greater than its corresponding IP Start address Menu 15 1 1 1 Address Mapping Rule Type One to One Local IP Start End N A Global IP Start End N A Press ENTER to Confirm or ESC to Cancel Press Space Bar to Toggle Figure 4 9 Menu 15 1 1 1 Editing Configuring an Individual Rule in a Set 4 12 NAT Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Table 4 6 Menu 15 1 1 1 Editing Configuring an Individual Rule in a Set FIELD DESCRIPTION EXAMPLE Type Press the SPACE BAR to select one of five types These are the One to One mapping types discussed in Table 4 2 Server allows you to specify multiple servers of different types behind NAT to this computer See section 4 4 3 below for an example Local IP Only local IP fields are N A for server Global IP fields MUST be set for Server Start This is the starting local IP address ILA 0 0 0 0 End This is the ending local IP address ILA If the rule is for all local N A IPs then put the Start IP as 0 0 0 0 and the End IP as 255 255 255 255 This field is N A for One to One and Server types Global IP Start This is the starting global IP address IGA If you have a dynamic 0 0 0 0 IP enter 0 0 0 0 as the Global IP Start Note that Global IP Start can be set to 0 0 0 0 only if the types are Many to One or Server End This is the ending global IP address IGA This
71. If the check box is shaded only part of the will be installed To see what s included in a component click Detaik Components BilAddress Book 17MB M amp Communicati 5 6 MB C RY Desktop Themes 00MB i fa Games 10 1 MB C Multilanguage Support 00MB gt Space used by installed components 424MB Space required 0 0MB Space available on disk 866 3 MB Description Includes accessories to help you connect to other computers and online services 5 of 10 components selected Details Have Disk OK Cancel Aap Communicates O To install a component select the check box next to the component name or clear the check box if you do not want to instal it A shaded box means that only part of the component will be installed To see what s included in a component click Details Components M NetMeeting M amp Phone Dialer 0 2 MB Universal Plug and Play 0 4 MB C G Virtual Private Networking 0 0 MB Space used by installed components 42 4 MB Space required 0 0 MB Space available on disk 866 3 MB Description Universal Plug and Play enables seamless connectivity and communication between Windows and intelligent appliances Details cae UPnP Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Installing UPnP in Windows XP Follow the steps below to install the UPnP in Windows ME Step 10 Step 11 Step 12 Step 1
72. Jane s computer IP address The Prestige associates Jane s computer IP address with the incoming port range of 6970 7170 3 The Real Audio server responds using a port number ranging between 6970 7170 4 16 NAT Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch 4 The Prestige forwards the traffic to Jane s computer IP address 5 Only Jane can connect to the Real Audio server until the connection is closed or times out The Prestige times out in three minutes with UDP User Datagram Protocol or two hours with TCP IP Transfer Control Protocol Internet Protocol Two Points To Remember About Trigger Ports 1 Trigger events only happen on data that is going coming from inside the Prestige and going to the outside 2 If an application needs a continuous data stream that port range will be tied up so that another computer on the LAN can t trigger it Only one LAN computer can use a trigger port range at a time Enter 3 in menu 15 to display Menu 15 3 Trigger Port Setup shown next Menu 15 3 Trigger Port Setup Incoming Trigger Start Port End Port Start Port End Port Ww c BB oO Real Audio 1y Biy Sas 4 Ds 6 ae 8 oo oon ono omono nome OE OM OOo OS DO Ono ORO O1LONOLO O O 050 SO SRO On SOMO mone mora Press ENTER to Confirm or ESC to Cancel Figure 4 13 Menu 15 3 Trigger Port Setup NAT 4 17 Prestige 314 PLUS Broadband Sharing Gateway with 4 Po
73. L Network Termination In Windows VPN or PPTP Pass Through feature the PPTP tunneling is created from Windows 95 98 and NT clients to an NT server in a remote location The pass through feature allows users on the network to access a different remote server using the Prestige s Internet connection In NAT mode the Prestige is able to D PPTP Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch pass the PPTP packets to the internal PPTP server i e NT server behind the NAT Users need to forward PPTP packets to port 1723 by configuring the server in Menu 15 2 Server Set Setup In the case above as the PPTP connection is initialized by the remote PPTP Client the user must configure the PPTP clients The Prestige initializes the PPTP connection hence there is no need to configure the remote PPTP clients PPTP Protocol Overview PPTP is very similar to L2TP since L2TP is based on both PPTP and L2F Cisco s Layer 2 Forwarding Conceptually there are three parties in PPTP namely the PNS PPTP Network Server the PAC PPTP Access Concentrator and the PPTP user The PNS is the box that hosts both the PPP and the PPTP stacks and forms one end of the PPTP tunnel The PAC is the box that dials answers the phone calls and relays the PPP frames to the PNS The PPTP user is not necessarily a PPP client can be a PPP server too Both the PNS and the PAC must have IP connectivity however the PAC must in addition have dial up capa
74. LUS Broadband Sharing Gateway with 4 Port Switch FIELD DESCRIPTION EXAMPLE Port Comp Select the comparison to apply to the destination port in the packet against the value given in Destination Port field Options are None Less Greater Equal or Not Equal Equal Source IP Address Enter the source IP Address of the packet you wish to filter This field reads don t care if it is 0 0 0 0 IP Address IP Mask Enter the IP mask that will be used to mask the bits of the IP address given in the Source IP Address field IP Mask Port Enter the source port of the packets that you wish to filter The range of this field is 0 to 65535 This field reads don t care if it is 0 0 65535 Port Comp Select the comparison to apply to the source port in the packet against the value given in Source Port field Options are None Less Greater Equal or Not Equal None TCP Estab This field is applicable only when IP Protocol field is 6 TCP If Yes the rule matches only established TCP connections else the rule matches all TCP packets Yes No More If Yes a matching packet is passed to the next filter rule before an action is taken else the packet is disposed of according to the action fields If the More field is Yes then Action Matched and Action Not Matched will be No No Log Select the logging option from the following None No packets will be
75. NFIRM or ESC to CANCEL Figure 7 3 Menu 21 Filter Set Configuration Step 2 Select the filter set you wish to configure no 1 12 and press ENTER Step 3 Enter a descriptive name or comment in the Edit Comments field and press ENTER Step 4 Press ENTER at the message Press ENTER to confirm to open Menu 21 1 1 Filter Rules Summary 7 4 Filter Configuration Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Menu 21 1 Filter Rules Summary A Type Filter Rules Mmn 1 Y IP Pr 6 SA 0 0 0 0 DA 0 0 0 0 DP 137 NDN 2 Y IP Pr 6 SA 0 0 0 0 DA 0 0 0 0 DP 138 NDN 3 Y IP Pr 6 SA 0 0 0 0 DA 0 0 0 0 DP 139 NDN 4 Y IP Pr 17 SA 0 0 0 0 DA 0 0 0 0 DP 137 NDN 5 Y IP Pr 17 SA 0 0 0 0 DA 0 0 0 0 DP 138 NDN 6 Y IP Pr 17 SA 0 0 0 0 DA 0 0 0 0 DP 139 NDF Enter Filter Rule Number 1 6 to Configure Menu 21 2 Filter Rules Summary Filter Rules Pr 17 SA 0 0 0 0 SP 137 DA 0 0 0 0 Enter Filter Rule Number 1 6 to Configure Figure 7 5 NetBIOS _LAN Filter Rules Summary Menu 21 3 Filter Rules Summary A Type Filter Rules Enter Filter Rule Number 1 6 to Configure Figure 7 6 TEL_FTP_WEB_WAN Filter Rules Summary Filter Configuration 7 5 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Menu 21 5 Filter Rules Summary Filter Rules Pr 17 SA 0 0 0 0 DA 0 0 0 0 DP 161 Enter Filter Rule Number 1 6 to Configure Figure 7 7 SNMP_WAN Filter Rules
76. P Address in the Check WAN IP Address field before it times out The number in this field should be less than the number in the Period field Three to 50 is usually a good number The WAN connection is considered down after the Prestige times out the number of times specified in the Fail Tolerance field When you have completed this menu press ENTER at the prompt Press ENTER to confirm or ESC to cancel to save your configuration or press ESC to cancel and go back to the previous screen Traffic Redirect 10 5 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Chapter 11 System Information amp Diagnosis This chapter covers SMT menus 24 1 to 24 4 This chapter covers the diagnostic tools that help you to maintain your Prestige These tools include updates on system status port status log and trace capabilities and upgrades for the system software Select menu 24 in the main menu to open Menu 24 System Maintenance as shown below Menu 24 System Maintenance System Status System Information and Console Port Speed Log and Trace Diagnostic Backup Configuration Restore Configuration Upload Firmware Command Interpreter Mode Call Control 0 Time and Date Setting 1 Remote Management Setup FPRPoOMIDDGOBWNE Enter Menu Selection Number Figure 11 1 Menu 24 System Maintenance 11 1 System Status The first selection System Status gives you
77. Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch User s Guide Version 3 60 October 2002 ZyXEL TOTAL INTERNET ACCESS SOLUTION Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Copyright Copyright 2002 by ZyXEL Communications Corporation The contents of this publication may not be reproduced in any part or as a whole transcribed stored in a retrieval system translated into any language or transmitted in any form or by any means electronic mechanical magnetic optical chemical photocopying manual or otherwise without the prior written permission of ZyXEL Communications Corporation Published by ZyXEL Communications Corporation All rights reserved Disclaimer ZyXEL does not assume any liability arising out of the application or use of any products or software described herein Neither does it convey any license under its patent rights nor the patent rights of others ZyXEL further reserves the right to make changes in any products described herein without notice This publication is subject to change without notice Trademarks ZyNOS ZyXEL Network Operating System is a registered trademark of ZyXEL Communications Inc Other trademarks mentioned in this publication are used for identification purposes only and may be properties of their respective owners ii Copyright Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Federal Communications Commission FCC
78. R to select Yes and then press ENTER to Yes have the DDNS server automatically update the IP address of Use Server the host name s with the public IP address that the Prestige Detected IP uses or is behind You can set this field to Yes whether the IP address is public or private static or dynamic Press SPACE BAR to select Yes and then press ENTER to No update the IP address of the host name s to the IP address User Specified IP specified below Addr Only select Yes if the Prestige uses or is behind a static public IP address IP Address Enter the static public IP address if you select Yes in the User N A Specified IP Addr field When you have completed this menu press ENTER at the prompt Press ENTER to Confirm to save your configuration or press ESC at any time to cancel The IP address will be updated when you reconfigure menu 1 or perform DHCP client renewal If you have a private WAN IP address then you cannot use Dynamic DNS Hardware Installation amp Initial Setup 2 13 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch 2 9 WAN Setup This section describes how to configure the WAN using Menu 2 WAN Setup From the main menu enter 2 to display menu 2 ZyXEL recommends you configure this menu even if your ISP does not require MAC address authentication Menu 2 WAN Setup MAC Address Assigned By Factory default IP Address N A
79. RIPTION EXAMPLE Set Name This is the name of the set you selected in menu SUA 15 1 or enter the name of a new set you want to create Idx This is the index or rule number 1 Local Start IP Local Start IP is the starting local IP address ILA 0 0 0 0 see Figure 4 1 Local End IP is the ending local Local End IP Ip address ILA If the rule is for all local IPs then 299 295 255 255 the Start IP is 0 0 0 0 and the End IP is 255 255 255 255 NAT 4 9 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Table 4 4 SUA Address Mapping Rules FIELD DESCRIPTION EXAMPLE Global Start IP This is the starting global IP address IGA If you 0 0 0 0 have a dynamic IP enter 0 0 0 0 as the Global Start IP Global End IP This is the ending global IP address IGA N A Type These are the mapping types discussed above Server see Table 4 2 Server allows you to specify multiple servers of different types behind NAT to this machine See later for some examples Once you have finished configuring a rule in this menu press ENTER at the message Press ENTER to Confirm to save your configuration or press ESC to cancel User Defined Address Mapping Sets Now let s look at Option 1 in menu 15 1 Enter 1 to bring up this menu We ll just look at the differences from the previous menu Note the extra Action and Select Rule fields mean you can configure rules in this screen
80. Summary 7 2 1 Filter Rules Summary Menu This screen shows the summary of the existing rules in the filter set The following tables contain a brief description of the abbreviations used in the previous menus Table 7 1 Abbreviations Used in the Filter Rules Summary Menu FIELD DESCRIPTION The filter rule number 1 to 6 A Active Y means the rule is active N means the rule is inactive Type The type of filter rule GEN for Generic IP for TCP IP Filter Rules These parameters are displayed here M More Y means there are more rules to check which form a rule chain with the present rule An action cannot be taken until the rule chain is complete N means there are no more rules to check You can specify an action to be taken i e forward the packet drop the packet or check the next rule For the latter the next rule is independent of the rule just checked m Action Matched F means to forward the packet immediately and skip checking the remaining rules D means to drop the packet N means to check the next rule n Action Not Matched F means to forward the packet immediately and skip checking the remaining rules D means to drop the packet N means to check the next rule 7 6 Filter Configuration Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch The protocol dependent filter rules abbreviation ar
81. System Maintenance amp Information 13 7 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Chapter 14 Remote Management This chapter covers remote management SMT menu 24 11 14 1 Telnet The only way to configure your Prestige for remote management is through an SMT session using the console port Once your Prestige is configured you can use Telnet to configure it remotely as shown next Prestige User telnets into the LAN via the Prestige Figure 14 1 Telnet Configuration on a TCP IP Network 14 2 FTP You can upload and download Prestige firmware and configuration files using FTP To use this feature your computer must have an FTP client 14 3 Web You can use the Prestige s embedded web configurator for configuration and file management See the online help for details Remote Management 14 1 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch 14 4 DNS Domain Name System DNS links names to IP addresses When you access Web sites on the Internet you can type the IP address of the site or the DNS name DNS servers on the Internet convert domain names to IP addresses Your own Internet service provider may do this conversion or connect to a specific DNS server that does When you type a domain name in a Web browser a query is sent to the primary DNS server defined in your Web browser s configuration dialog box The DNS server converts the name you specified to an IP
82. TP in the Encapsulation field in menu 4 Table 3 7 New Fields in Menu 4 PPTP screen FIELD DESCRIPTION EXAMPLE Encapsulation Press the SPACE BAR and then press ENTER to choose PPTP PPTP The encapsulation method influences your choices for IP Address 3 12 Internet Access Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch FIELD DESCRIPTION EXAMPLE Idle Timeout This value specifies the time in seconds that elapses before 300 the Prestige automatically disconnects from the PPTP server default 3 3 4 PPPoE Encapsulation The Prestige supports PPPoE Point to Point Protocol over Ethernet You can use PPPoE encapsulation only when you re using the Prestige with an xDSL modem as the WAN device PPPoE is an IETF Draft standard specifying how a host personal computer interacts with a broadband modem i e xDSL cable wireless etc to achieve access to high speed data networks It preserves the existing Microsoft Dial Up Networking experience and requires no new learning or procedures For the service provider PPPoE offers an access and authentication method that works with existing access control systems e g Radius For the user PPPoE provides a login and authentication method that the existing Microsoft Dial Up Networking software can activate and therefore requires no new learning or procedures for Windows users One of the benefits of PPPoE is the ability
83. Timeout 2 5 cscs ec n nin sec eecceces deel E E EE E cae E E 14 4 Chapter 15 Call Scheduling scsscssscssscsssssscssscsssessessssssssesensssssesesesessssesssssssssesssesssssessonsesnsesssoes 15 1 PS el Mintrod Yei aol nE EEE festa fede as acae th Sass oes foo A A Sota tc hey seauencbtacabedtasetecpatee 15 1 1522 Schedule Setup ai E eh ER es Sl ee A 15 1 15 3 Schedule Set Setup o5 lt he r 424 ote ec ite tet E DN ele AY ls asso 15 2 15 4 Applying Schedule Sets to Remote Nodes ccccecccesccsseesseeseceneeseecaeeeseeseeeeseeeeeneeeneeeeenaeenaes 15 4 Chapter 16 Troubleshooting csscssscssscssssscssscsssssssssscsssessesssessssessneseseessesssesssesssesssssnsscnsssesesssees 16 1 16 1 Problems Starting Up the Prestige cccccccseessesseessesseeeseeeeceeceseeeseeeseeaecsaecsaecaeecaeeeneeeeeeneeeaes 16 1 16 2 Problems with the LAN Interface is ccd isis aa e a e E eee tet 16 1 16 3 Problems with the WAN Interface 0 0 eesscessecseeeecneeeeceseeeeesecseesesaecaeesecneveecsaeeeeeaecaeeaeeneeetes 16 2 x Table of Contents Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch 16 4 Problems with Internet ACCESS eanas ea a a a a aiaa 16 3 Appendix A PPPOE onacnonienreiee nenni ienen e na e a A Appendix Bo PPTP shinni nee nk SU EE Ae O SE ee A D Appendix D Boot Commands ciias ccc iscsi esd RE dele de ees teaaade steven nnd ais G Appendix E NetBIOS Filter Commands cceec
84. Y PERMANENTLY DAMAGE YOUR PRESTIGE WHEN THE RESTORE CONFIGURATION PROCESS IS COMPLETE THE PRESTIGE WILL AUTOMATICALLY RESTART 12 3 1 Restore Using FTP or TFTP For details about backup using T FTP please refer to earlier sections on FTP and TFTP file upload in this chapter 12 8 Firmware and Configuration Maintenance Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Step 1 Step 2 Step 3 Step 4 Step 5 Step 6 Step 7 Step 8 Menu 24 6 System Maintenance Restore Configuration To transfer the firmware and configuration file to your workstation follow the procedure below 1 Launch the FTP client on your workstation 2 Type open and the IP address of your router Then type root and SMT password as requested 3 Type put backupfilename rom 0 where backupfilename is the name of your backup configuration file on your workstation and rom spt is the remote file name on the router This restores the configuration to your router 4 The system reboots automatically after a successful file transfer For details on FTP commands please consult the documentation of your FTP client program For details on backup using TFTP note that you must remain in this menu to back up using TFTP please see your router manual Press ENTER to Exit Figure 12 7 Telnet into Menu 24 6 Launch the FTP client on your computer Enter open followed by a space and the IP address of your Pre
85. a 192 168 1 10 192 168 1 12 10 132 50 1 Action Edit Select Rule Press ENTER to Confirm or ESC to Cancel Figure 4 24 Example 4 Menu 15 1 1 Address Mapping Rules 4 26 NAT Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Chapter 5 Remote Node Setup This chapter shows you how to configure a remote node A remote node is required for placing calls to a remote gateway A remote node represents both the remote gateway and the network behind it across a WAN connection Note that when you use menu 4 to set up Internet access you are actually configuring a remote node We will show you how to configure Menu 11 1 Remote Node Profile Menu 11 3 Remote Node Network Layer Options and Menu 11 5 Remote Node Filter 5 1 Remote Node Profile From the main menu select option 11 to display Menu 11 1 Remote Node Profile There are three variations of this menu depending on whether you choose Ethernet Encapsulation PPTP or PPPoE Encapsulation See Chapter 10 for information on the Traffic Redirect feature 5 1 1 Ethernet Encapsulation Choose the Ethernet option when the WAN port is used as a regular Ethernet The first menu 11 1 screen you see is for Ethernet Encapsulation shown next Remote Node Setup 5 1 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Menu 11 1 Remote Node Profile Rem Node Name ChangeMe Route IP Active Yes Encapsulation Ethernet Edit IP No Se
86. a atvettese a Ate ae Sie eae 12 1 12 2 Backup Config ralo nenesinin neuen ooehss te gn dunes Seeds task oes Slee ee Re vee eee 12 2 12 3 Restore Configuration ioi nnie i i EE EE EEE R E E E E a ai 12 8 12 4 Uploading Firmware and Configuration Files cccecscesceseceseceseceeecseeeneeeeecaeeeseeeseeneeeeeeees 12 11 Chapter 13 System Maintenance amp Information sseseesesessoeseeoesseseesoeseseoeseeoesoeeoesoesereorsereereeeeesoreeseeee 13 1 13 1 Command Interpreter Mode neaei E E E ON E E S 13 1 13 2 Ca Cono Supports a R E 13 2 13 3 Time atid Date Settings ic fish cose sch KO E Hie hsee teenth henna ee 13 5 Chapter 14 Remote Managemen cscccsscsssssccsscesseecssccesseesssseesceesssscescesssessesceesossesceesscssesceesosseoees 14 1 14 1 Telnet ie tevin tence tienen hash tae iia Gai Bi Mein ee eb EER Bes 14 1 A2 GE EP a enen a a eho Dass Cae ea OM dete nee ieee tone ecard les 14 1 i De WED EPE E E nies taaatas T Nae ash ties ate Ma A ect A 14 1 14 4 DNS Domain Namie System oree E eee ease ce ne eee ee eee 14 2 14 5 SNMP Simple Network Management Protocol 0 ccccceeeeseeesecscecseeeseeeseeeeeeeeeeeeeneeeseesseenaes 14 2 14 6 Remote Management Setup csscccsssscsscssssecssscesnsscnsscsensscnsecsensecesesensesnsevensesessevensesennees 14 2 14 7 Remote Management and NAT ccccececsecsecsseeseeeseessceseeeeeeseceseeeseceaeenaeceaecaeecaeecaeceaeceeeaeeenes 14 4 14 8 Syst m
87. aget ceecceeesceeneeesteeeeeees 1 5 3 11 5 2 RR Pe IStr a anessan 3 11 5 2 RR Toshiba ec eeceseeeeseesereeeeeeeees 1 5 3 11 5 2 S Schedule Set Set p ssni nnet 15 2 Schedule Sets D rtatioti eaae eee aes eee 15 2 Schedule Setup ccceeccesessecseeseeeteeeeeenes 15 1 Server3 2 3 7 3 11 4 5 4 8 4 10 4 13 4 14 4 PPTP and the Prestige uiine D 15 4 20 4 21 5 2 5 3 13 6 PPTP Encapsulation 3 12 5 1 5 3 5 9 SEL VICE en r E E eee aoa os vi PPTP Protocol Overview s s s E Service Type sssssssesirrereerseser teree 3 11 5 2 16 2 PPTP What is it oc oseaced tenance acaba D setup a schedule s sssssssrtssrssresrnsstsrtrst arrette 15 2 Prestige ave PPPoE ORAE annA c SIT area ieee 2 6 Private ossessi 3 3 3 4 5 8 5 10 6 3 SNMP Private IP Addresse A 3 3 COMMUMNItY iioii iis 9 4 Index U Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Configuration ccccccceesseeseeeeeeeceseeeseeeeees 9 3 REStriCtiONS c cceccesceeseeeseeeeeeeeeeeeeeeeensees 14 4 Geb E EE E 9 3 TFTP and FTP over WAN Will Not Work Mamaget ecccecccesccesecsecseeeeeeseeeeeeeeeeeeeeeaees 9 2 WHER aiport n Ri 12 4 MIBseescnuunennoenannnun ee 9 3 TFTP File Transfer 0 ccecceeseeeseeeteeseeenes 12 14 Trap ennn an EEEE EE EEEE S 9 3 TETP Restrictons cc ccnscici cats 12 4 TTUsted HOSt ss eer isossa 9 4 time and date setting 1 3 SNMP Simple Network Management P
88. allows you to test the different aspects of your Prestige to determine if it is working properly Menu 24 4 allows you to choose among various types of diagnostic tests to evaluate your system as shown next System Information amp Diagnosis 11 11 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Menu 24 4 System Maintenance Diagnostic TCP IP 1 Ping Host 2 WAN DHCP Release 3 WAN DHCP Renewal 4 Internet Setup Test System 11 Reboot System Enter Menu Selection Number Host IP Address N A Figure 11 10 Menu 24 4 System Maintenance Diagnostic Follow the procedure below to get to Menu 24 4 System Maintenance Diagnostic Step 1 From the main menu select option 24 to open Menu 24 System Maintenance Step 2 From this menu select option 4 Diagnostic This will open Menu 24 4 System Maintenance Diagnostic 11 4 1 WAN DHCP DHCP functionality can be enabled on the LAN or WAN as shown in Figure 11 11 The Prestige can act either as a WAN DHCP client IP Address Assignment field in menu 4 or menu 11 3 is Dynamic and the Encapsulation field in menu 4 or menu 11 is Ethernet or none i e you have a static IP The WAN Release and Renewal fields in menu 24 4 conveniently allow you to release and or renew the assigned WAN IP address subnet mask and default gateway in a fashion similar to winipcfg 11 12 System Information amp Diagnosis Prestige 314 PLUS
89. ameters that determine when the Prestige will forward WAN traffic to the backup gateway using Menu 11 6 Traffic Redirect Setup Traffic Redirect 10 3 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Menu 11 6 Traffic Redirect Setup Active Yes Configuration Backup Gateway IP Address 0 0 0 0 Metric 15 Check WAN IP Address 0 0 0 0 Fail Tolerance 2 Period sec 5 Timeout sec 3 Press ENTER to Confirm or ESC to Cancel Press Space Bar to Toggle Figure 10 4 Menu 11 6 Traffic Redirect Setup Table 10 2 Traffic Redirect Setup FIELD DESCRIPTION EXAMPLE Active Press SPACE BAR and select Yes to enable or No to disable traffic Yes redirect setup The default is No When the Active field is Yes you must configure every field in this screen unless you are using PPPoE or PPTP encapsulation except Check WAN IP Address and Timeout If you don t configure these fields and are using PPTP or PPPoE encapsulation then the Prestige checks the PPPoE channel or PPTP tunnel to determine if the WAN connection is down Configuration Backup Enter the IP address of your backup gateway in dotted decimal notation 0 0 0 0 cea The Prestige automatically forwards traffic to this IP address if the Prestige s Internet connection terminates Metric Enter a number from 1 to 15 to set this route s priority among the 15 Prestige s routes see Metric on page 10 1 The smaller
90. ardware Installation amp Initial Setup Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch 2 3 Connecting Your Prestige This section outlines how to connect your Prestige to the LAN and the WAN If you want to connect a cable modem you must connect the coaxial cable from your cable service to the threaded coaxial cable connector on the back of the cable modem Connect an xDSL modem to the xDSL wall jack Step 1 Connecting the Console Port For the initial configuration of your Prestige you need to use terminal emulator software on your computer and connect it to the Prestige through the console port Connect the 9 pin end of the console cable to the console port of the Prestige and the other end choice of 9 pin or 25 pin depending on your computer end to a serial port COM1 COM2 or other COM port of your computer You can use an extension RS 232 cable if the enclosed one is too short After the initial setup you can modify the configuration remotely through telnet connections Step 2 Connecting the Prestige to the Broadband Modem The WAN connection cable should be STP Shielded Twisted Pair Step 2a Connecting the Prestige to the cable modem Connect the WAN port silver on the Prestige to the Ethernet port on the cable modem using the cable that came with your cable modem The Ethernet port on a cable modem is sometimes labeled PC or Workstation OR Step 2b Connecting the Prestige to the xDSL Modem
91. as apply WAN filters 12 Static Routing Setup Configure static routes for bridging and IP in this menu 15 NAT Setup Use this menu to configure network address translation 21 Filter Set Configuration Use this menu to provide security via filters Hardware Installation amp Initial Setup 2 7 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch NO MENU TITLE FUNCTION 22 SNMP Configuration Use this menu to configure SNMP related parameters 23 System Password Change your password in this menu recommended 24 System Maintenance From displaying system status to uploading firmware this menu provides comprehensive system maintenance 26 Schedule Setup Use this menu to schedule outgoing calls 99 Exit Use this menu to exit necessary for remote configuration 2 7 Changing the System Password The first thing you should do is change the default system password by following the steps shown next Step 1 Enter 23 in the main menu to open Menu 23 System Password as shown next Menu 23 System Password Old Password New Password Retype to confirm Enter here to CONFIRM or ESC to CANCEL Figure 2 6 Menu 23 System Security Step 2 Enter your existing password and press ENTER Step 3 Enter your new system password and press ENTER Step 4 Re type your new system password for confirmation and press ENTER Note that as you type a passwor
92. ase read on 2 16 Hardware Installation amp Initial Setup Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Chapter 3 Internet Access This chapter shows you how to configure the LAN as well as the WAN of your Prestige for Internet access 3 1 TCP IP and DHCP for LAN The Prestige has built in DHCP server capability that assigns IP addresses and DNS servers to systems that support DHCP client capability 3 1 1 Factory LAN Defaults The LAN parameters of the Prestige are preset in the factory with the following values 1 IP address of 192 168 1 1 with subnet mask of 255 255 255 0 24 bits 2 DHCP server enabled with 32 client IP addresses starting from 192 168 1 33 These parameters should work for the majority of installations If your ISP gives you explicit DNS server address es skip to the DNS Server Address section to see how to enter the DNS server address es 3 1 2 DHCP Configuration DHCP Dynamic Host Configuration Protocol RFC 2131 and RFC 2132 allows individual clients to obtain TCP IP configuration at start up from a server You can configure the Prestige as a DHCP server or disable it When configured as a server the Prestige provides the TCP IP configuration for the clients If set to None DHCP service will be disabled and you must have another DHCP server on your LAN or else the workstation must be manually configured The Prestige can also act as a surrogate DHCP server DHCP Relay where i
93. ation tab note the entry for the Computer Name field and enter it as the System Name e In Windows 2000 click Start Settings Control Panel Network Identification Click the Identification tab note the entry for the Computer Name field and enter it as the System Name e In Windows XP click Start Control Panel System Click the Computer Name tab Note the entry for the Computer Description field and enter it as the System Name 2 MAC Address The default is Factory Default which is the factory assigned default MAC Assigned By Address We recommend you choose IP Address attached on LAN and enter the IP address of the workstation on the LAN whose MAC you are cloning 4 Encapsulation Choose PPPoE if you have a dial up connection to the Internet or PPTP if you reside in France or Austria otherwise choose Ethernet Choose from RR Manager RR Telstra or RR Toshiba if your ISP is Time Warner s RoadRunner otherwise choose Standard PPTP You need to know your login name password and connection ID Name The latter may not be obligatory for some ISPs but if it is you must follow the c id and n name format PPPoE You need to know your login name password and service name The latter may not be obligatory for some ISPs IP Address If your ISP did not assign you a fixed IP address select Dynamic otherwise Assignment select Static and enter the IP address amp subnet mask in the IP address and IP Subnet Mask fi
94. bility The phone call is between the user and the PAC and the PAC tunnels the PPP frames to the PNS The PPTP user is unaware of the tunnel between the PAC and the PNS PPTP User Phone call PAC PPP frames PNS Diagram 4 PPTP Protocol Overview Microsoft includes PPTP as a part of the Windows OS In Microsoft s implementation the PC and hence the Prestige is the PNS that requests the PAC the ANT to place an outgoing call over AALS to an RFC 2364 server Control amp PPP connections Each PPTP session has distinct control connection and PPP data connection Call Connection The control connection runs over TCP Similar to L2TP a tunnel control connection is first established before call control messages can be exchanged Please note that a tunnel control connection supports multiple call sessions The following diagram depicts the message exchange of a successful call setup between a PC and an ANT PPTP E Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Start Control Connection Request Start Control Connection Reply Outgoing Call Reply PPP Frames Outgoing Call Request PPP Frames Diagram 5 Example Message Exchange between PC and an ANT PPP Data Connection The PPP frames are tunneled between the PNS and PAC over GRE General Routing Encapsulation RFC 1701 1702 The individual calls within a tunnel are distinguished using the Call ID field in the GRE header mn U
95. ble if line not up Send packet i i 1 Outgoing D match Packet Data i i i i i and reset Match Idle Timer Drop Drop packet Drop packet packet if line not up if line not up Or Or Send packet Send packet but do not reset but do not reset Idle Timer Idle Timer Figure 7 1 Outgoing Packet Filtering Process For incoming packets your Prestige applies data filters only Packets are processed depending upon whether a match is found The following sections describe how to configure filter sets 7 1 1 The Filter Structure of the Prestige A filter set consists of one or more filter rules Usually you would group related rules e g all the rules for NetBIOS into a single set and give it a descriptive name The Prestige allows you to configure up to twelve filter sets with six rules in each set for a total of 72 filter rules in the system You cannot mix device filter tules and protocol filter rules within the same set You can apply up to four filter sets to a particular port to block multiple types of packets With each filter set having up to six rules you can have a maximum of 24 tules active for a single port Three sets of factory default filter rules have been configured in menu 21 to prevent NetBIOS traffic from triggering calls and to prevent incoming telnetting and FTP connections from the WAN s
96. ceceecsseseceecseeseceeecceseeeceaecseesecaeseecneeeeceaeeeeeaecaeeeeeneeeaeeates I Appendix F Power Adapter Specifications 0 cececessssccssesseesecseeesceeeecaecsessecaeesecnecaesanenaeeeeeaecaeeaecaeeateaes P Appendix F Hardware Specifications ccccescsssecesesssesecsevecceceeeceaecaessecaeesecnesseenaeeecaecaeeaeeaecaeeeeeneserenes Q Index Gaines RAMoi earn ee cred ae eth a eee ate kate het ae et ela Koa Leche ane oiler AE S Table of Contents xi Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch List of Figures Figure 1 1 Internet Access Application ccccesccesccsseesseesecesecseecaeeeseeeseceeesseensecnsecnaecnaecnaecaaecaeesaeeeneeneeenseees 1 4 Figure 2 1 Front Panel cc cccesccccccess 2edenccdessacaeasedecceves RA ER tk 0beccee ieee a E E EEE REEE E ia 2 1 Figure 2 2 Prestige Rear Panel Connections ccsccesccesecsseeseeesecaeeeseeeseeseeeseeeseceeecaecaaecaaecaaecaeeeaeeeaeeeneeneeees 2 2 Fig te 2 3 Initial Screen isaten henna nn eai nn e etn a a e ii E 2 5 Fig re 2 4 Password Screet iinne tanii i A E OR bed en een a OR 2 5 Figure 2 5 Prestige Main MONU e T a a e a A e 2 7 Figure 2 6 Ment 23 System Security ae tE E E E E R cs E EA E actors es 2 8 Figure 2 7 Menu General Setups craen i a E E EERE E 2 11 Figure 2 8 Configure Dynamic DNS 0 cccceccseessesscessceeeceseesecsaecesecseecaeeeaeesaecaeecaeeeseeeeeseeseeneeeeeneenaeenaes 2 12 Figure 2 9 Menu 2 WAN Setup
97. ceeeeeeeeseeeeeeees 11 5 Figure 10 6 Menu 23 3 System Maintenance Log and Trace eesesseecceseeeeeseceeeeceeeeceaeeeeeseeneeeeeaeens 11 6 Figure 10 7 Examples of Error and Information Messages cssccssessseessesseeeseeeeceeeceseceseseeeneeneenseenaeenaes 11 7 Figure 10 8 Menu 24 3 2 System Maintenance UNIX Syslog ceccecseesseesceeseeeeceseceeeesecneeneesseenses 11 7 Figure 10 9 Call Triggering Packet Example ccccecccscecsseesseseeeeeeeseeseceeeensecesecsecnaeceaecaaecaeeeaeesseeseseneeses 11 11 Figure 10 10 Menu 24 4 System Maintenance Diagnostic ce eeeeseecceseeseeseceeeeeeeseeeceseeeeeseeneeetenee 11 12 Fig re 10 11 WAN amp CAN DACP is scc sad sseeetesttateuedesses mennee atl ped settee eeent th eetttenn ogee pata se aves 11 13 Fig r 11 1 Telnet in Menu 24 S v icccccieh iniii tannete na a a mala eia gia 12 3 Figure 11 2 FTP Session Example credn e e ae EE E E SER ES 12 4 Figure 11 3 System Maintenance Backup Configuration ssssesessseseesessreressesessteressesresreseesessesressesees 12 7 xiv List of Figures Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Figure 11 4 System Maintenance Starting Xmodem Download Screen eesseceseeseeeecneeeeeeeeneeerenee 12 7 Figure 11 5 Backup Configuration Example ccccccscesscessceeeceseeeseceecaeecaeeseecaeeeaeeeaeeneeeeeeeeeeseeneeeeenaees 12 7 Figure 11 6 Successful Backup Confirmation Sc
98. cified IP Addr ccecccseseeeeteees 2 13 13 7 17 14 1 y PE TE PUCETE saria cs i ee ne nee 2 4 Tenet at is e a R 14 1 Telnet Configuration ccecceseeseerteeeees 14 1 w Telnet Under NAT cssssssssssssssssescesssseseesseesen 14 1 WAN DHCP won eeceessssssstteeteeeeesssnnniees 11 12 11 13 TFTP WAN SetUD sssrini seniii 2 14 16 2 And FTP Over WAN wvesecsssessseeesseesseen 14 4 What is PPTP onenn aes eens aess D WWW dyndns org ee eeeeseeseeeeeeeeeeereeeeeeteensees 2 13 V Index Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch WWW ZYXEL COM 0 eeecececeseceseeseeeseeeseeeeeeeseeereeseens vi X xDSL modem 2 3 2 4 3 13 16 2 16 3 XMODEM protocol cceeseesseeteeeeeeeeeees 12 2 Z LYNOS tee Meeks 2 14 11 3 11 5 12 2 ZYNOS F W Version ossessione 11 3 11 5 12 2 ZyXEL Limited Warranty NOt wisi cee cnsrs cteareetostens bide ke a o vi ZyXEL WeDSIte ee ee eecesceeseeseeeeeeneeeseeseeeseeees vi Index
99. ct Once in the How Often field above enter the date the set should activate in year month day format If you select Weekly in the How Often field above this field is N A 2001 01 01 Weekday Day If you select Weekly in the How Often field above then choose the day s the set should activate and recur Individual Day parameters are active when their fields read Yes and inactive when their fields read No or N A N A default Start Time Enter the start time that you wish the schedule set to take effect in hour minute format 12 00 Duration Enter the maximum duration allowed in hour minute format for this scheduled connection 10 00 Action Choose an action Choices are Forced On means that the connection is maintained whether or not there is a demand call on the line and will persist for the time period specified in the Duration field Forced Down means that the connection is blocked whether or not there is a demand call on the line Enable Dial On Demand means that this schedule permits a demand call on the line Disable Dial On Demand means that this schedule prevents a demand call on the line Forced On Call Scheduling 15 3 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch 15 4 Applying Schedule Sets to Remote Nodes Once your schedule sets are configured you must apply them to the desired remote node s Enter 11 from the main menu an
100. d Trigger dial This field displays whether NetBIOS packets are allowed to initiate Disabled calls Disabled means that NetBIOS packets are blocked from initiating calls NetBIOS Filter Configuration Syntax sys filter netbios config lt type gt lt on off gt where lt type gt Identify which NetBIOS filter numbered 0 3 to configure 0 LAN to WAN 1 WAN to the LAN 2 IPSec Packets 3 Trigger dial lt on off gt For types 0 and 1 use on to enable the filter and block NetBIOS packets Use off to disable the filter and forward NetBIOS packets For type 2 use on to block NetBIOS packets from being sent through a VPN connection Use off to allow NetBIOS packets to be sent through a VPN connection For type 3 use on to allow NetBIOS packets to initiate calls Use of f to block NetBIOS packets from initiating calls Example commands Command sys filter netbios config 0 on This command blocks LAN to WAN NetBIOS packets J NetBIOS Filter Commands Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Command sys filter netbios config 1 off This command forwards WAN to the LAN NetBIOS packets Command sys filter netbios config 2 on This command blocks IPSec NetBIOS packets Command sys filter netbios config 3 off This command stops NetBIOS commands from initiating calls NetBIOS Filter Commands K Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch
101. d the screen displays a X for each character you type 2 8 Hardware Installation amp Initial Setup Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch 2 7 1 Resetting the Prestige If you forget your password or cannot access the SMT menu you will need to reload the factory default configuration file Uploading this configuration file replaces the current configuration file with the factory default configuration file This means that you will lose all configurations that you had previously and the speed of the console port will be reset to the default of 9600bps with 8 data bit no parity one stop bit and flow control set to none The password will be reset to 1234 also Turn off the Prestige and begin a terminal emulation software session with the default console port settings Turn on the Prestige again When you see the message Press Any key to enter Debug Mode within 3 seconds press any key to enter debug mode You should already have downloaded the correct file from your nearest ZyXEL FTP site See section 12 4 for more information on how to transfer the configuration file to your Prestige Procedure To Use The Reset Button Make sure the SYS led is on not blinking before you begin this procedure Step 1 Press the RESET button for ten seconds then release it If the SYS LED begins to blink the defaults have been restored and the Prestige restarts Otherwise go to step 2 Step 2 Turn the Prestige o
102. d using the SPACE BAR select PPPoE or PPTP in the Encapsulation field Enter your target remote node index number s in the Schedules field as shown next Menu 11 1 Remote Node Profile Rem Node Name ChangeMe Route IP Active Yes ncapsulation PPPoE Edit IP No Service Typ pi Telco Option Service Name Allocated Budget min 0 Outgoing Period 0 Rem Login Sched Rem Password x x Nailed Up Connection No Authen CHAP PAP PPTP Session Options My IP Addr Edit Filter Sets No Server IP Addr Idle Timeout sec 300 Connection ID Name Press ENTER to Confirm or ESC to Cancel Figure 15 3 Applying Schedule Sets to a Remote Node Example PPPoE Encapsulation You can apply up to four schedule sets separated by commas for one remote node Enter the schedule set numbers for specific remote nodes in the Schedules field In the examples shown previously and next schedule sets 1 3 and 4 are applied 15 4 Call Scheduling Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Menu 11 1 Remote Node Profile Rem Node Name ChangeMe Route IP Active Yes scapsulation PPTP Edit IP No Service Type Standard Telco Option Service Name Allocated Budget min 0 Outgoing Rem Login Schedules 1 3 4 Rem Password x x n 0 Athen CHAP PAP Session Options Edit Filter Sets No Idle Timeout sec 100 PPTP My IP Addr Server IP Addr Connection ID Name Authen
103. d displays an updated time only when you reenter this menu New Time Enter the new time in hour minute and second format Current Date This field displays an updated date only when you reenter this menu New Date Enter the new date in year month and day format 13 6 System Maintenance amp Information Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch FIELD DESCRIPTION Time Zone Press SPACE BAR to set the time difference between your time zone and Greenwich Mean Time GMT Daylight Saving Daylight Saving Time is a period from late spring to early fall wnen many countries set their clocks ahead of normal local time by one hour to give more daylight time in the evenings If you use daylight savings time then choose Yes Start Date Enter the month and day that your daylight savings time starts on if you selected Yes in the Daylight Saving field End Date Enter the month and day that your daylight savings time ends on if you selected Yes in the Daylight Saving field Once you have filled in this menu press ENTER at the message Press ENTER to Confirm or ESC to Cancel to save your configuration or press ESC to cancel Time Update Frequency The Prestige resets the time in three instances i On leaving menu 24 10 after making changes ii When the Prestige starts up and if there is a time server configured in menu 24 10 iii 24 hour intervals after booting
104. dband ISP accounts do not allow you to run any server processes such as a Web or FTP server from your location Your ISP may periodically check for servers and may suspend your account if it discovers any active services at your location If you are unsure refer to your ISP The most often used port numbers are shown in the following table Please refer to RFC 1700 for further information about port numbers Please also refer to the included disk for more examples and details on NAT Table 4 7 Services amp Port Numbers SERVICES PORT NUMBER ECHO 7 FTP File Transfer Protocol 21 Telnet 23 SMTP Simple Mail Transfer Protocol 25 DNS Domain Name System 53 Finger 79 HTTP Hyper Text Transfer protocol or WWW Web 80 POP3 Post Office Protocol 110 NNTP Network News Transport Protocol 119 SNMP Simple Network Management Protocol 161 SNMP trap 162 PPTP Point to Point Tunneling Protocol 1723 Configuring a Server behind NAT Follow these steps to configure a server behind NAT Step 1 Enter 15 in the main menu to go to Menu 15 NAT Setup NAT Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Step 2 Step 3 Step 4 Step 5 Enter 2 to go to Menu 15 2 NAT Server Setup Enter a port number in an unused Start Port No field To forward only one port enter it again in the End Port No field To specify a range of ports enter the last port to be
105. dband Sharing Gateway with 4 Port Switch FIELD DESCRIPTION EXAMPLE My Login This field is applicable for PPPoE encapsulation only Enter the jim login name assigned by your ISP when the Prestige calls this remote node Some ISPs append this field to the Service Name field above e g jim poellc to access the PPPoE server My Password Enter the password assigned by your ISP when the Prestige Fai calls this remote node Valid for PPPoE encapsulation only Server IP This field is valid for RoadRunner service type only The Prestige will find the RoadRunner Server IP automatically if this field is left blank If it does not then you must enter the authentication server IP address here Route This field refers to the protocol that will be routed by your IP Prestige IP is the only option for the Prestige 10 Edit IP This field leads to a hidden menu Press SPACE BAR to Yes select Yes and press ENTER to go to Menu 11 3 Remote Node Network Layer Options Session This field leads to another hidden menu Use the SPACE BAR Yes Options to select Yes and press ENTER to open menu 11 5 to edit the oe filter sets See the Remote Node Filter section for more details Edit Filter sets Once you have configured the Remote Node Profile Menu press ENTER to return to menu 11 Press ENTER at the message Press ENTER to Confirm to save your configuration or press ESC at any time to ca
106. deddvcesiees 12 2 Table 11 2 General Commands for GUI Clients 0 0 0 c cc ceccceseceseeeseeeecseecseeeseeeeeeeeneensecnseenseenaeeaeceeeaeenaes 12 4 Table 11 3 General Commands for TFTP GUI Clients 00 0 0 ce cececsseesseesceesceseeeeeeeeeeeecnsecnaeenseeaeceseseeeneeenes 12 6 Tabl e 12 Budget Management sanoe E cobs caw O eke eased Meee 13 3 Lable 1222 Call Bistoty Fieldsy E iatieih isc eased ns iach ei hice oe Mae le BN 13 4 Table 12 3 Time and Date Setting Fields ccccccssssecesesesossccssensesssesseossecsscessossecssessssesesscesseesestssesneesenss 13 6 Table 13 1 Menu 24 11 Remote Management Control 0 ccccecsceessessceesceesceeeceeeeecesecnseceseenaeeseeneeeaeeenes 14 3 Table 14 1 Schedule Set Setup Fields cccccceccessssessesecdencececsoeensescecsncessecessessanstecsdecsedecsensessseesusdensneeesess 15 3 Table 15 1 Troubleshooting the Start Up of your Prestige ccccecccesecsseesseeseeeseeeeceeeceseceseceseenseenseceenaeenses 16 1 Table 15 2 Troubleshooting the LAN Interface ceeceeccesccesecesecesecscecaeecseeeseeeeeeeeeeenseenseceseenseeeaeeneenaes 16 1 Table 15 3 Troubleshooting the WAN interface cceccceseceseesceeseeeeeeseceseeeseeseeeeeeceseenseeseeaecnseeaaecaeentes 16 2 Tablewi5 4 Intertiet ACCESS sc evcsrts ert cole Gat Ul talspece lactis hate geese iss tat teas anaes Gantee A E 16 3 xviii List of Tables Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switc
107. default remote directory path Initial Local Directory Specify the default local directory path TFTP and FTP over WAN Will Not Work When e Telnet service is disabled in menu 24 11 e A filter in menu 3 1 LAN or in menu 11 5 WAN is applied to block Telnet service 12 4 Firmware and Configuration Maintenance Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch e The IP address in the Secured Client IP field menu 24 11 does not match the client IP address If it does not match the Prestige will disconnect the Telnet session immediately e There is a SMT console session running 12 2 2 Backup Configuration Using TFTP The Prestige supports the up downloading of the firmware and the configuration file using TFTP Trivial File Transfer Protocol over LAN Although TFTP should work over WAN as well it is not recommended To use TFTP your computer must have both telnet and TFTP clients To backup the configuration file follow the procedure shown next Step 1 Use telnet from your computer to connect to the Prestige and log in Because TFTP does not have any security checks the Prestige records the IP address of the telnet client and accepts TFTP requests only from this address Step 2 Put the SMT in command interpreter CI mode by entering 8 in Menu 24 System Maintenance Step 3 Enter command sys stdio 0 to disable the SMT timeout so the TFTP transfer will not be interrupted
108. dress always follow the guidelines above For more information on address assignment please refer to RFC 1597 Address Allocation for Private Internets and RFC 1466 Guidelines for Management of IP Address Space 3 1 5 RIP Setup RIP Routing Information Protocol RFC1058 and RFC 1389 allows a router to exchange routing information with other routers The RIP Direction field controls the sending and receiving of RIP packets When set to Both or Out Only the Prestige will broadcast its routing table periodically When set to Both or In Only it will incorporate the RIP information that it receives when set to None it will not send any RIP packets and will ignore any RIP packets received The Version field controls the format and the broadcasting method of the RIP packets that the Prestige sends it recognizes both formats when receiving RIP 1 is universally supported but RIP 2 carries more information RIP 1 is probably adequate for most networks unless you have an unusual network topology Both RIP 2B and RIP 2M sends the routing data in RIP 2 format the difference being that RIP 2B uses subnet broadcasting while RIP 2M uses multicasting Multicasting can reduce the load on non router machines since they generally do not listen to the RIP multicast address and so will not receive the RIP packets However if one router uses multicasting then all routers on your network must use multicasting also By default RIP Direction is set
109. ds packets from the protected LAN Subnet 1 to the backup gateway Subnet 2 Subnet 1 WAN 192 168 1 0 192 168 1 24 y Subnet 2 LAN 192 168 2 0 192 168 2 24 Figure 10 2 Traffic Redirect LAN Setup 10 2 Traffic Redirect Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch To configure the parameters for traffic redirect enter 11 from the main menu to display Menu 11 1 Remote Node Profile as shown next Menu 11 1 Remote Node Profile Rem Node Name Route IP Active Yes Encapsulation Ethernet Edit IP No Service Type Standard Session Options Service Name N A Edit Fi 2 Outgoing My Login N A Edit Traffic Redirect Yes My Password N A Server IP N A Press ENTER to Confirm or ESC to Cancel Figure 10 3 Menu 11 1 Remote Node Profile To configure traffic redirect properties press SPACE BAR to select Yes in the Edit Traffic Redirect field and then press ENTER Table 10 1 Menu 11 1 Remote Node Profile Traffic Redirect Field FIELD DESCRIPTION EXAMPLE Edit Traffic Press SPACE BAR to select Yes or No Redirect Select No default if you do not want to configure this feature Select Yes and press ENTER to configure Menu 11 6 Traffic Yes Redirect Setup Press ENTER at the message Press ENTER to Confirm to save your configuration or press ESC at any time to cancel 10 1 1 Traffic Redirect Setup Configure par
110. dule Sets to a Remote Node Example PPTP Encapsulation ceceeeee 15 5 List of Figures XV Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch List of Diagrams Diagram 1 Single PC per Modem Hardware Configuration cccsssccsssssescesesecesecseesecseeeeceaeeecsaeeaeeseeneearenee B Diagram 2 Prestige asa PPPOE Client eoii inire e a e aee a aaas aaa E a a E aas C Diagram 3 Transport PPP frames over Ethernet ccccesescsssesseesessecseeecseceeceaeeceesecaeesecaevseceaseeeeaeeaeeeeeaeeaeeaes D Diagrami 4 PPTP Protocol Overview soiien a a E a A a AA E AEE E Diagram 5 Example Message Exchange between PC and an ANT ssessssessesiesssssssisrerrereresesrsterrersessrsrsrrersesrseee F Diagram 6 Option to Enter Debug Mode ee eeeesssecseesecnseeeceseeceesecseesecnevscenaeeecsaecaeesecaevecceaeenceaecaseeeaeeateas G Diagram 7 Boot Module Commands senistres ie a a iai aa H Diagram 8 NetBIOS Display Filter Settings Command 0 0 00 ccc ecesesssesecseeeecseeeceseceeesecaeeeecnaeeceaecaeesecaeeeeeneees I Chart 1 System Error Logs iorn cen BER GRAS E GR a ERAN E E a ae L Chart 2 System Maintenance Logs ccccceessesssesseseeesscesscesecesecnsecsaeceaecaaecaaecaeeeaeseseseeesseeseeeeseenseseseeeeneseaeenaees L Chart 3 UPnP LO gs secs occ sect sh ergs Ride Bes E secede teh avai vce eb es age eet es M Chart 4 Content Filtering Logs ccc ccsscsssssssessscesecsonsscesscsconscnesensconssnsuonsesnsessses
111. e EEA xvi IE ISE Of PADIS Sisco 3 hs teat eset aa a a a a aa elo aR ee eer S xvii Preface rieonnden iien cesta a e ia a e aia E helen a E va dena aed xix Chapter 1 Getting to Know Your Prestige 314 PLUS 1 0 0 0 ccssssscsccecsccesccesssssesceesscssescessessesceesssseess 1 1 1 1 The Prestige Broadband Sharing Gateway With 4 Port SWitch oo eccecceseesseesseeeeeeeeeeeeeeeeerens 1 1 1 2 Features of the Prestige 314 PLUS casts cones eic ace See a Seo 1 1 1 3 Broadband Internet Access via Cable or DSL Modem 00 ccescceseceseeeseeeeeseeeseeeeceseeeeeeneeenseees 1 4 1 4 Internet Access Configuration Checklist ccccccccessessseeseeesceesceecesecesecaecseecaeeeseeeaeeeeeeesesereeerens 1 4 Chapter 2 Hardware Installation amp Initial Setup ccscsssssscsscesscsssccessssscrsessessssssssesesessneseeesenes 2 1 2 1 Front Panel LEDS jcc venteecnt neaisenonii dhl aia etait aie eaten eee ealaiee 2 1 2 2 Prestige Rear Panel and Connections ccccccsseessesseeesceesceecesecesecaeceecaeceaeceaecseecaeeeseseneeneeeereeas 2 2 2 3 Connecting Your Prestige c c cccccstecsees cco cecccice a aa e duties sees ceatecducedecutacescwetaceseesoseecdetdvess 2 3 2 4 Additional Installation Requirement cccccecsseesseesceesceesceeceseceseceaecaecseecaeecaeeeaeeeeeeneeeereeatens 2 4 2 5 Turning on Your Presper r aa ae eE a a e a a arn aeea aie e a a E e 2 5 26 gt Navigating the SMT Interface E E ER E O E E R O E 2 6 2 7 Cha
112. e files see section 12 1 12 2 Firmware and Configuration Maintenance Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Please note that terms download and upload are relative to the computer Download means to transfer from the Prestige to the computer while upload means from your computer to the Prestige Follow the instructions as shown in the next screen Menu 24 5 System Maintenance Backup Configuration To transfer the configuration file to your workstation follow the procedure below 1 Launch the FTP client on your workstation 2 Type open and the IP address of your router Then type root and SMT password as requested 3 Locate the rom 0 file 4 Type get rom 0 to back up the current router configuration to your workstation For details on FTP commands please consult the documentation of your FTP client program For details on backup using TFTP note that you must remain in this menu to back up using TFTP please see your router manual Press ENTER to Exit Figure 12 1 Telnet in Menu 24 5 12 2 1 Using the FTP Command from the DOS Prompt Step 1 Step 2 Step 3 Step 4 Step 5 Step 6 Step 7 Launch the FTP client on your computer Enter open followed by a space and the IP address of your Prestige Press ENTER when prompted for a username Enter your password as requested the default is 1234 Enter bin to set transfe
113. e listed as follows Table 7 2 Rule Abbreviations Used ABBREVIATION DESCRIPTION IP Pr Protocol SA Source Address SP Source Port number DA Destination Address DP Destination Port number GEN Off Offset Len Length Refer to the next section for information on configuring the filter rules 7 2 2 Configuring a Filter Rule To configure a filter rule type its number in Menu 21 1 Filter Rules Summary and press ENTER to open menu 21 1 1 for the rule To speed up filtering all rules in a filter set must be of the same class i e protocol filters or generic filters The class of a filter set is determined by the first rule that you create When applying the filter sets to a port separate menu fields are provided for protocol and device filter sets If you include a protocol filter set in a device filter field or vice versa the Prestige will warn you and will not allow you to save 7 2 3 TCP IP Filter Rule This section shows you how to configure a TCP IP filter rule TCP IP rules allow you to base the rule on the fields in the IP and the upper layer protocol e g UDP and TCP headers To configure TCP IP rules select press ENTER to open Menu 21 1 1 TCP IP Filter Rule as shown next Filter Configuration 7 7 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Menu 21 1 1 TCP IP Filter Rule Filter 1 1 Filter Type TCP IP Filter Rule Active Yes
114. e s system name domain name assigned in menu 1 e g System Name xxx Domain Name baboo mickey com Name xxx baboo mickey com ZyNOS F W Version The ZyNOS Firmware version and the date created You may enter 1 to drop the PPPoE PPTP connection 9 to reset the counters or ESC to return to menu 24 11 2 System Information and Console Port Speed This section describes your system and allows you to choose different console port speeds To get to the system information and console port speed System Information amp Diagnosis 11 3 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Step 1 Step 2 Step 3 Enter 24 to go to Menu 24 System Maintenance Enter 2 to open Menu 24 2 System Information and Console Port Speed From this menu you have two choices as shown in the next figure Menu 24 2 System Information and Console Port Speed 1 System Information 2 Console Port Speed Please enter selection Figure 11 3 Menu 24 2 System Information and Console Port Speed 11 2 1 System Information Menu 24 2 1 System Maintenance Information gives you information about your system as shown below More specifically it gives you information on your routing protocol country code Ethernet address IP address etc Menu 24 2 1 System Maintenance Information Name Routing IP ZyNOS F W Version V3 60 CX 0 b2 07 02 2002 Country Code 255 LAN Ethernet Address 00 a0 c5 01 2
115. ed applications to automatically configuration changes configure the Prestige so that they can communicate through the Prestige for through UPnP example by using NAT Transversal UPnP applications automatically reserve a NAT forwarding port in order to communicate with another UPnP enabled device this eliminates the need to manually configure port forwarding for the UPnP enabled application UPNP Name This identifies the ZyXEL device in UPnP applications Apply Click Apply to save the setting to the Prestige Reset Click Reset to begin configuring this screen afresh UPnP 8 3 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch 8 3 Installing UPnP in Windows Example This section shows how to install UPnP in Windows Me and Windows XP Installing UPnP in Windows Me Follow the steps below to install the UPnP in Windows Me Step 5 Click Start and Control Panel Double click Add Remove Programs Step 6 Click on the Windows Setup tab and select Communication in the Components selection box Click Details Step 7 In the Communications window select the Universal Plug and Play check box in the Components selection box Step 8 Click OK to go back to the Add Remove Programs Properties window and click Next Step 9 Restart the computer when prompted Add Remove Programs Pr es Install Uninstall Windows Setup Startup Disk To add of remove a component select or clear the check box
116. eecceeseeseceteeeseeeeeeneeenes 4 4 Non NAT Friendly Application Programs 4 24 4 25 Ordering Rules cccecceseesseereeteeeeeeeees 4 11 What NAT doe ceceeeescsseeeeseereeeeeneeerenee 4 2 Network Address Translation NAT 1 2 4 1 O Offlipessn neediest eid Sih 2 13 Online Registration cececceeeseeeteeseeseeeeees vi P Packet Triggered ooien 11 8 Packing List Card eceeeceesceeseeeeceseeeteeeteenees xix PAP annarar ieta aR 5 6 Password ni t E R s 2 5 2 8 9 3 PUT sesh he EA tint Oo ee T 11 13 Power Adapter ire nedor e 2 4 Power Adapter Specifications cesses P PPP OS kennen iin eae eis 11 8 PPPoE Encapsulation 3 10 3 13 5 1 5 5 5 6 5 11 5 12 R Read Me First oiiire cisean xix Rear Panel aeree ren aore en EN E Ea tS 2 2 Related Documentation ccceseeseesteereenes xix Remote Management cceessceeeeeenteeeers 14 1 Remote Management Limitations 14 4 Remote Management Setup eeceseeeeees 14 2 Remote Node ccceescessceseceseeeteesseeseeeneeeneenes 5 1 Remote Node Setup cccccccseecseeseereeeees 2 7 Remote Node Filter ceeeeceeseeeteesteeeees 5 11 Required fields rosna renane 2 6 Resetting the Prestige cecceseesseereseereeees 2 9 Restore Configuration ccccesceeseeseeeteerees 12 8 RIP sesteiiie cence atin 3 4 3 8 5 8 5 10 RoadRunner Support cccesceeseesteeseeteeees 1 3 RR Man
117. elds Once these key fields have been configured you should be able to enjoy super fast Internet access with your Prestige Getting to Know Your Prestige 1 5 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Chapter 2 Hardware Installation amp Initial Setup This chapter shows you how to connect hardware and perform the initial setup 2 1 Front Panel LEDs The LEDs on the front panel indicate the operational status of the Prestige PRESTIGE 300 series PWR SYS 10m 100m 10M 100M 10M 100M 10M 100M 10 100M i LAN LAN 2 LAN 3 t LAN 4 WAN Figure 2 1 Front Panel The following table describes the LED functions Table 2 1 LED Descriptions LED FUNCTION COLOR STATUS MEANING PWR Power Green On The Prestige is receiving power SYS System Off The system is not ready or failed On The system is ready and running Flashing The system is rebooting 10M LAN LAN Green Off The 10M LAN is not connected 1 2 3 4 On The Prestige is connected to a 10M LAN Flashing The 10M LAN is sending receiving packets 100M Orange Off The 100M LAN is not connected Ar 4 On The Prestige is connected to a 100Mbps LAN Flashing The 100M LAN is sending receiving packets Hardware Installation amp Initial Setup 2 1 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch LED FUNCTION
118. em Maintenance amp Information Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch 13 3 Time and Date Setting There is no Real Time Chip RTC in the Prestige so there is a software mechanism to set the time manually or get the current time and date from an external server when you turn on your Prestige Menu 24 10 allows you to update the time and date settings of your Prestige The real time is then displayed in the Prestige error logs and firewall logs If you do not choose a time service protocol that your timeserver will send when you turn on the Prestige then you can enter the time manually but each time the system is booted the time and date will be reset to 2000 01 01 00 00 00 Select menu 24 in the main menu to open Menu 24 System Maintenance as shown next Menu 24 System Maintenance System Status System Information and Console Port Speed Log and Trace Diagnostic Backup Configuration Restore Configuration Upload Firmware Command Interpreter Mode ai Ontro Q Time and Date Setting 11 Remote Management Setup ouou BUNE Enter Menu Selection Number Figure 13 6 Menu 24 System Maintenance Then enter 10 to go to Menu 24 10 System Maintenance Time and Date Setting to update the time and date settings of your Prestige as shown in the following screen System Maintenance amp Information 13 5 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Menu 2
119. en else the packet is disposed of according to the action fields If the More field is Yes then Action Matched and Action Not Matched will be No Log Select the logging option from the following None None No packets will be logged Action Matched Only packets that match the rule parameters will be logged Action Not Matched Only packets that do not match the rule parameters will be logged Both All packets will be logged Action Select the action for a matching packet Options are Check Next Check Next Rule Matched Rule Forward or Drop Action Not Select the action for a packet not matching the rule Options are Check Next Rule Matched Check Next Rule Forward or Drop Once you have completed filling in Menu 21 4 1 1 Generic Filter Rule press ENTER at the message Press Enter to Confirm to save your configuration or press ESC to cancel This data will now be displayed on Menu 21 1 1 Filter Rules Summary Filter Configuration 7 13 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch ie Prestige Se em ser trying to access lt the Prestige via Incoming FTP or Telnet Traffic Filter Figure 7 11 Filter Example 7 3 Example Filter Let s look at an example to block outside users from telnetting into the Prestige See the included support CD for more example filters Step 1 Enter 21 from the main menu to open Menu 21 Filter
120. enance Upload Router Configuration File for console port Firmware and Configuration Maintenance 12 11 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch WARNING DO NOT INTERUPT THE FILE TRANSFER PROCESS AS THIS MAY PERMANENTLY DAMAGE YOUR PRESTIGE 12 4 1 Firmware File Upload FTP is the preferred method for uploading the firmware and configuration To use this feature your computer must have an FTP client When you telnet into the Prestige you will see the following screens for uploading firmware and the configuration file using FTP Menu 24 7 1 System Maintenance Upload System Firmware upload the system firmware follow the procedure below Launch the FTP client on your workstation Type open and the IP address of your system Then type root and SMT password as requested Type put firmwarefilename ras where firmwarefilename is the name of your firmware upgrade file on your workstation and ras is the remote file name on the system 4 The system reboots automatically after a successful firmware upload For details on FTP commands please consult the documentation of your FTP client program For details on uploading system firmware using TFTP note that you must remain on this menu to upload system firmware using TFTP please see your manual Press ENTER to Exit Figure 12 13 Telnet Into Menu 24 7 1 Upload System Firmware 12 4 2 Configuration File Upload You
121. endix F Hardware Specifications SPECIFICATIONS Power Specification I P AC 120V 60Hz O P DC 12V 1200 mA MTBF Mean Time Between Failure 100000 hrs Operation Temperature 0 C 40 degrees Celsius Ethernet Specification for WAN 10Mbit Half Full Manual Setting Ethernet Specification for LAN 10 100 Mbit Half Full Auto negotiation Cable Pin Assignments In a serial communications connection generally a computer is DTE Data Terminal Equipment and a modem is DCE Data Circuit terminating Equipment The Prestige is DCE when you connect a computer to the console port Pin 5 ee Pin 1 O O O O OS OO O O Pin 9 Pin 6 Diagram 9 Console Port Pin Layouts Chart 6 CONSOLE Port RS 232 Female DB 9F Pin Assignments Pin 1 NON Pin 4 DCE DSR Pin 7 DCE CTS Pin 2 DCE TXD Pin 5 GND Pin 8 DCE RTS Pin 3 DCE RXD Pin 6 DCE DTR PIN 9 NON Products without flow control only use pins 2 3 and 5 Power Adapter Specifications Q Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch 1 10 100 MB Auto negotiation cece 1 1 A Applying Schedule Sets to Remote Nodes 15 4 AT command leespan a a s 12 2 Authentication e sssseseseesesssessesessesesesssseseereses 5 6 auto negotiation ssesssseesesseseseesersessreresseseesee 1 1 B bah up em cdeceesveenietsieceieseslesceeeseeeenvie
122. enes ee ai pend saci a a a aa aa a a A A REN 4 3 Figure 4 2 NAT Application With IP Alias cccececccssecssecssecseecseeeneeeeeeeeeeseeeseenaecaecsaecaaecsaecaeeeaeeeaeeneeeeenes 4 4 Figure 4 3 Menu 4 Applying NAT for Internet ACCESS 0 ee eeeeeceeeeecneeeeceseceesecaeeeeceecaeesecnesseeeaeeeeeaesates 4 6 Figure 4 4 Menu 11 3 Applying NAT to the Remote Node 0 e ec eeessessceseeeeeeceeeceeeecaeeeceaecaeeeeeneeeees 4 7 Figure 4 5 Menu 15 NAT Setup apiri usenet SL TE EE 4 8 Figure 4 6 Menu 15 1 Address Mapping Sets 0 ccccesccssessseesseeseeeeeeseeeeeeeseceseensecnaecnaecaaeaecaecsaeeaeeetenes 4 8 Figure 4 7 Menu 15 1 255 SUA Address Mapping Rules ccccecscesccesseeeceeceecesecaecaeecaeeeaeesneenneeneeees 4 9 xii List of Figures Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Figure 4 8 Mente 5 01 First Setarea nn ennaa a a aveevdine nd aati 4 11 Figure 4 10 Menu 15 2 NAT Server Setup ececessccssecseesecseseeceseecesseceesscaecaeesecaevecceaeeeeeaecaeeaecaeeerenee 4 15 Figure 4 11 Multiple Servers Behind NAT Example 0 cccceeccecsescsseeeeeseceeeseceeeseceaeeeseecnaeeeceaeceesaecaeeatenee 4 16 Figure 4 12 Trigger Port Forwarding Process Example sccscssccessesceesseeececececeeeceaeceeeeeaecateeeeaeeerenee 4 16 Figure 4 13 Menu 15 3 Trigger Port Setup E E E E R E 4 17 areira NNa A D ETa 0 E EE E E E ES 4 19 Figure 4 15 Menu 4 Internet Acce
123. enter y at the following screen Ready to restore Configuration via Xmodem Do you want to continue y n Figure 12 9 System Maintenance Restore Configuration Step 2 The following screen indicates that the Xmodem download has started Starting XMODEM download CRC mode CCCCCCCCC Figure 12 10 System Maintenance Starting Xmodem Download Screen Step 3 Run the HyperTerminal program by clicking Transfer then Receive File as shown in the following screen 12 10 Firmware and Configuration Maintenance Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Send File 2 x Type the configuration file s location or click Browse to Folder C Program Files search for it Filename C Product config rom Browse Protocol Choose the Xmodem modem protocol ancel Then click Send Figure 12 11 Restore Configuration Example Step 4 After a successful restoration you will see the following screen Press any key to restart the Prestige and return to the SMT menu Save to ROM Hit any key to start system reboot Figure 12 12 Successful Restoration Confirmation Screen 12 4 Uploading Firmware and Configuration Files This section shows you how to upload firmware and configuration files You can upload configuration files by following the procedure in the previous Restore Configuration section or by following the instructions in Menu 24 7 2 System Maint
124. ere so that the next rule in this set will be checked Figure 7 12 Example Filter Menu 21 3 1 Step 6 Press ENTER to confirm and display the next screen Note that there is only one filter rule in this set Filter Configuration 7 15 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Menu 21 7 Filter Rules Summary Filter Rules A 0 0 0 0 DA 0 0 0 0 Entek Filter Rule Numbey 1 6 to Configure This shows you that you have M N means an action can be taken immediately configured and activated A Y a The action is to drop the packet m D if the TCP IP filter rule Type IP Pr 6 action is matched and to forward the packet for destination FTP ports DP 21 immediately n N if the action is not matched and there are more rules to be checked there is one more in this example Figure 7 13 Example Filter Rules Summary Menu 21 3 Step 7 Enter 2 in the above menu to configure the second rule Configure this filter rule with port number as 23 Telnet as shown in the next screen after you press ENTER to confirm 7 16 Filter Configuration Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Menu 21 7 Filter Rules Summary Filter Rules Enter Filter Rule Number 1 6 to Configure Figure 7 14 Example Filter Rules Summary After you ve created the filter set you must apply it Step 1 En
125. eseeseeseceeeeeceeseesecneeeceeaeeeeeaecaeeeteneees 7 5 List of Figures xiii Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Figure 7 7 SNMP_WAN Filter Rules Summary 0 ccecesccsceseceseseceseeeeesecaeesecneeeceaeeeeesecaeesecneeeeeaeeeeeaeeetes 7 6 Figure 7 8 Menu 21 1 1 TCP IP Filter Rule oe tee ecessssessceecesececeeecneeecevaseecesecaseeecnesseesaseceeaecaseeesnereees 7 8 Figure 7 9 Executing an IP Filter is nnii ae Hee eRe ae ee LS Re A es 7 11 Figure 7 10 Menu 21 4 1 Generic Filter Rule cceccececesecsseeseeesseseeeseeeseeeeeeeeceecnsecesecnsecsaeenseseeeaeenaes 7 12 Figure fo 12 Filter Example nenn Hoe ce cerns ee he Re 7 14 Figure 7 12 Example Filter Menu 21 3 1 oo cece ecssesecssecseeseceeecceeeeeceaeceessecaeeeccnevecceaeeeceecsasenesaecateaeeneaes 7 15 Figure 7 13 Example Filter Rules Summary Menu 21 3 0 ceeccescssescsseeeceseceeeseceeeecceaeeeeeaeceesaeeaeeaeeaeens 7 16 Figure 7 14 Example Filter Rules Summary 0 ccceccccsscesscesecesecsseeseecseeeaeeeneeseeeeeeseceeeseeeeeeneeneeneenaeenaes 7 17 Figure 7 15 Protocol and Device Filter Sets ccceccssssccssessessecseeseesecseeeecneeeecaeceessecseeeecnaeeceaeeeesaeeaeeaeeneeas 7 18 igure 7 16 Filtering LAN Tra fiO vases te E tuned set evs ent phe EE sh tphoua es saves EEE sabewbcats EEES 7 19 Figure 7 17 Filtering Remote Node Traffic eecesscscsesceseeeeeeceseeeceaeceeesecseesecnaeeeceaeeeeeaecaeseecaesneaeeneeats 7 19
126. ext Menu 26 1 Schedule Set Setup Active Yes Start Date yyyy mm dd 2000 01 01 How Often Once Once Date yyyy mm dd 2000 01 01 Weekdays Sunday N A Monday N A Tuesday N A Wednesday N A Thursday N A Friday N A Saturday N A Start Time hh mm 00 00 Duration hh mm 00 00 Action Forced On Press ENTER to Confirm or ESC to Cancel Figure 15 2 Schedule Set Setup If a connection has been already established your Prestige will not drop it Once the connection is dropped manually or it times out then that remote node can t be triggered again until the time period configured in the Duration field expires 15 2 Call Scheduling Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Table 15 1 Schedule Set Setup Fields FIELD DESCRIPTION EXAMPLE Active Choose Yes to activate and No to deactivate the schedule set Yes default Start Date Enter the start date that you wish the set to take effect in year month day format Valid dates are from the present to February 5 2036 2000 07 01 How Often Should this schedule set recur weekly or be used just once Choose Once or Weekly Both these options are mutually exclusive If Once is selected then all weekday settings are N A When Once is selected the schedule rule deletes automatically after the scheduled time elapses Once default Once Date If you sele
127. f TCP IP is configured 9 1 About SNMP Simple Network Management Protocol is a protocol used for exchanging management information between network devices SNMP is a member of TCP IP protocol suite Your Prestige supports SNMP agent functionality which allows a manager station to manage and monitor the Prestige through the network The Prestige supports SNMP version one SNMPv1 The next figure illustrates an SNMP management operation SNMP is only available if TCP IP is configured SNMP Configuration 9 1 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch MANAGER AGENT AGENT Managed Device Managed Device Managed Device Figure 9 1 SNMP Management Model An SNMP managed network consists of two main components agents and a manager An agent is a management software module that resides in a managed device the Prestige An agent translates the local management information from the managed device into a form compatible with SNMP The manager is the console through which network administrators perform network management functions It executes applications that control and monitor managed devices The managed devices contain object variables managed objects that define each piece of information to be collected about a device Examples of variables include such as number of packets received node port status etc A Management Information Base MIB is a collection of managed objects SNMP all
128. f character to the purchaser To obtain the services of this warranty contact ZyXEL s Service Center for your Return Material Authorization number RMA Products must be returned Postage Prepaid It is recommended that the unit be insured when shipped Any returned products without proof of purchase or those with an out dated warranty will be repaired or replaced at the discretion of ZyXEL and the customer will be billed for parts and labor All repaired or replaced products will be shipped by ZyXEL to the corresponding return address Postage Paid This warranty gives you specific legal rights and you may also have other rights that vary from country to country ZA Online Registration Don t forget to register your ZyXEL product fast easy online registration at www zyxel com for free future product updates and information yi Warranty Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Customer Support Please have the following information ready when you contact customer support e Product model and serial number e Information in Menu 24 2 1 System Information e Warranty Information e Date that you received your device e Brief description of the problem and the steps you took to solve it METHOD E MAIL TELEPHONE FAX WEB SITE FTP SITE REGULAR MAIL SUPPORT SALES LOCATION WORLDWIDE Support zyxel com tw 886 3 578 3942 www zyxel com ZyXEL Communications Corp 6 Innovation Road II Science
129. ff Step 3 While pressing the RESET button turn the Prestige on Step 4 Continue to hold the RESET button The SYS LED will begin to blink and flicker very quickly after about 10 or 15 seconds This indicates that the defaults have been restored and the Prestige is now restarting 2 8 General Setup Menu 1 General Setup contains administrative and system related information shown next System Name is for identification purposes However because some ISPs check this name you should enter your computer s Computer Name e In Windows 95 98 click Start Settings Control Panel Network Click the Identification tab note the entry for the Computer Name field and enter it as the System Name Hardware Installation amp Initial Setup 2 9 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch e In Windows 2000 click Start Settings Control Panel and then double click System Click the Network Identification tab and then the Properties button Note the entry for the Computer name field and enter it as the System Name e In Windows XP click Start Control Panel System Click the Computer Name tab Note the entry for the Computer Description field and enter this entry as the System Name The Domain Name entry is what is propagated to the DHCP clients on the LAN If you leave this blank the domain name obtained by DHCP from the ISP is used While you must enter the host name System Name on each individual compute
130. field is N A for N A One to One Many to One and Server types Once you have finished configuring a rule in this menu press ENTER at the message Press ENTER to Confirm to save your configuration or press ESC to cancel 4 3 2 Port Forwarding Setup ANAT server set is a list of inside behind NAT on the LAN servers for example web or FTP that you can make visible to the outside world even though NAT makes your whole inside network appear as a single machine to the outside world Use Menu 15 NAT Setup to forward incoming service requests to the server s on your local network You may enter a single port number or a range of port numbers to be forwarded and the local IP address of the desired server The port number identifies a service for example web service is on port 80 and FTP on port 21 In some cases such as for unknown services or where one server can support more than one service for example both FTP and web service it might be better to specify a range of port numbers Entry 12 port 1026 is non editable see Figure 4 10 NAT 4 13 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch In addition to the servers for specified services NAT supports a default server A service request that does not have a server explicitly designated for it is forwarded to the default server If the default is not defined the service request is simply discarded Many residential broa
131. h Preface Congratulations on your purchase of the Prestige 314 PLUS Broadband Sharing Gateway Don t forget to register your Prestige fast easy online registration at www zyxel com for free future product updates and information The Prestige is a dual Ethernet broadband gateway integrated with network management features that allows access to the Internet via Cable kDSL modem It is designed for Q Home offices and small businesses with Cable and xDSL modem via Ethernet port as Internet access media Q Multiple office department connections via access devices Your Prestige is easy to install and to configure The embedded web configurator is a convenient platform independent GUI Graphical User Interface that allows you to access the Prestige s management settings All functions of the Prestige are also software configurable via the SMT System Management Terminal interface The SMT is a menu driven interface that you can access from a terminal emulator through the console port or over a telnet connection About This User s Manual This manual is designed to guide you through the SMT configuration of your Prestige for its various applications There is also HTML help for the embedded web configurator Related Documentation gt Supporting Disk More detailed information and examples can be found in the included disk as well as on the zyxel com web site gt Read Me First Our Read Me First is designed to
132. her than dyndns org Host1 3 Enter your host name s in the fields provided You can specify me dyndns org up to two host names separated by a comma in each field EMAIL Enter your e mail address mail mailserver USER Enter your user name 2 12 Hardware Installation amp Initial Setup Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Table 2 7 Configure Dynamic DNS Menu Fields FIELD DESCRIPTION EXAMPLE Password Enter the password assigned to you Enable Wildcard Your Prestige supports DYNDNS Wildcard Press SPACE BAR No and then ENTER to select Yes or No This field is N A when you choose DDNS client as your service provider Offline This field is only available when CustomDNS is selected in the Yes DDNS Type field Press SPACE BAR and then ENTER to select Yes When Yes is selected traffic is redirected to a URL that you have previously specified see www dyndns org for details Edit Update IP Address You can select Yes in either the Use Server Detected IP field recommended or the User Specified IP Addr field but not both With the Use Server Detected IP and User Specified IP Addr fields both set to No the DDNS server automatically updates the IP address of the host name s with the Prestige s WAN IP address DDNS does not work with a private IP address When both fields are set to No the Prestige must have a public WAN IP address in order for DDNS to work Press SPACE BA
133. his information Table 4 1 NAT Definitions TERM DEFINITION Inside This refers to the host on the LAN Outside This refers to the host on the WAN Local This refers to the packet address source or destination as the packet travels on the LAN Global This refers to the packet address source or destination as the packet travels on the WAN NAT 4 1 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch NAT never changes the IP address either local or global of an outside host 4 1 2 What NAT Does In the simplest form NAT changes the source IP address in a packet received from a subscriber the inside local address to another the inside global address before forwarding the packet to the WAN side When the response comes back NAT translates the destination address the inside global address back the inside local address before forwarding it to the original inside host Note that the IP address either local or global of an outside host is never changed The global IP addresses for the inside hosts can be either static or dynamically assigned by the ISP In addition you can designate servers e g a web server and a telnet server on your local network and make them accessible to the outside world If you do not define any servers for Many to One and Many to Many Overload mapping see Table 4 2 NAT offers the additional benefit of firewall protection If no server is defined in the
134. hose Ethernet PPTP or PPPoE encapsulation In the Encapsulation field in menu 4 choose e Ethernet when the WAN port is used as a regular Ethernet e PPTP or PPPoE if you have a dial up connection to the Internet 3 3 1 Ethernet Encapsulation You must choose the Ethernet option when the WAN port is used as a regular Ethernet If you choose Ethernet in menu 4 you will see the next screen Menu 4 Internet Access Setup ISP s Name myISP Encapsulation Ethernet Service Type Standard My Login N A My Password N A Login Server IP N A IP Address Assignment Dynamic IP Address N A IP Subnet Mask N A Gateway IP Address N A Network Address Translation SUA Only Press ENTER to Confirm or ESC to Cancel Figure 3 6 Internet Access Setup Ethernet 3 10 Internet Access Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch The following table describes this screen Table 3 6 Internet Access Setup Menu Fields FIELD DESCRIPTION ISP s Name Enter the name of your Internet Service Provider e g myISP This information is for identification purposes only Encapsulation Press the SPACE BAR and then press ENTER to choose Ethernet The encapsulation method influences your choices for IP Address Service Type This is applicable only when you choose Ethernet as your encapsulation method Press the SPACE BAR to select Standard RR Toshiba RoadRunner Toshiba authe
135. ide A summary of their filter rules is shown in the figures that follow The following diagram illustrates the logic flow when executing a filter rule 7 2 Filter Configuration Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Start Packet into Filter t Fetch First Filter Set Filter Set e o Fetch Next Fetch First y Filter Set g Filter Rule Yes Fetch Next Filter Rule Execute Filter Next Filter Set ext Filter Rule Available Available Rule Check Next Rule Nog 0 SSS ee E Drop Forward Drop Packet ene Packet Figure 7 2 Filter Rule Process Filter Configuration 7 3 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch You can apply up to four filter sets to a particular port to block multiple types of packets With each filter set having up to six rules you can have a maximum of 24 rules active for a single port 7 2 Configuring a Filter Set To configure a filter set follow the procedure below Select option 21 from the main menu to display menu 21 Step 1 Enter 1 to display the following menu Menu 21 Filter Set Configuration Filter Filter Set Comments Set Comments T NetBIOS WAN Po 2 NetBIOS LAN 8 et 3 TEL_FTP WEB WAN 9 oes E 4 anak 10 Spake koe BO a e 11 ee 6 peee 12 eee Enter Filter Set Number to Configure 0 Edit Comments Press ENTER to CO
136. ies if you want to make the connection to Connection this remote node a nailed up connection More details are given earlier in this section Session Options This value specifies the idle time i e the length of time 300 seconds there is no traffic from the Prestige to the remote node default in seconds that can elapse before the Prestige automatically disconnects the PPPoE connection This option only applies when the Prestige initiates the call Idle Timeout 5 2 Editing TCP IP Options with Ethernet Encapsulation Move the cursor to the Edit IP field in Menu 11 1 then press the SPACE BAR to set the value to Yes Press ENTER to open Menu 11 3 Network Layer Options Menu 11 3 Remote Node Network Layer Options IP Address Assignment Dynamic Rem IP Address N A Rem IP Subnet Mask N A My WAN Addr 0 0 0 0 Network Address Translation SUA only Metric 1 Private No RIP Direction None Version N A Multicast None Enter here to CONFIRM or ESC to CANCEL Press Space Bar to Toggle Figure 5 4 Remote Node Network Layer Options Remote Node Setup 5 7 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch The next table gives you instructions about configuring remote node network layer options Table 5 4 Remote Node Network Layer Options Menu Fields FIELD DESCRIPTION EXAMPLE IP Address If your ISP did not assign you an explicit IP address select
137. ilar to dial up services using PPP Benefits of PPPoE PPPoE offers the following benefits 1 It provides you with a familiar dial up networking DUN user interface 2 It lessens the burden on the carriers of provisioning virtual circuits all the way to the ISP on multiple switches for thousands of users For GSTN PSTN amp ISDN the switching fabric is already in place 3 It allows the ISP to use the existing dial up model to authenticate and optionally to provide differentiated services Traditional Dial up Scenario The following diagram depicts a typical hardware configuration where the PCs use traditional dial up networking PPPoE A Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch t ISP 1 O L 4 C 54 c ISP 2 O O Diagram 1 Single PC per Modem Hardware Configuration How PPPoE Works The PPPoE driver makes the Ethernet appear as a serial link to the PC and the PC runs PPP over it while the modem bridges the Ethernet frames to the Access Concentrator AC Between the AC and an ISP the AC is acting as a L2TP Layer 2 Tunneling Protocol LAC L2TP Access Concentrator and tunnels the PPP frames to the ISP The L2TP tunnel is capable of carrying multiple PPP sessions With PPPoE the VC Virtual Circuit is equivalent to the dial up connection and is between the modem and the AC as opposed to all the way to the ISP However the PPP negotiation is between the PC and the ISP
138. ildcard ccccceecesseeseeseeeseeeeeeteees 2 13 Encapsulation PPP over Ethetnet sic 0cii ce neviccstiencect test A Error LOS r ar aia 11 6 Ethernet Encapsulation 3 10 4 13 5 1 5 2 5 4 5 7 5 12 F Factory Default ecce n o 2 14 Fail Tolerance iseinean a 10 5 EC Gi p N E E R EREE iii Index Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Filename Conventions cccceseeeeeeeetees 12 1 Initial Screen eeceecceeseeesceseceteceseceeeeseeeseeenes 2 5 Pater eirond rh cece 2 15 5 11 7 1 Installation Requirements cceeceeeeeeree 2 4 ADOUt ieee ae i ns aes 7 1 Internet access tiie coher itn nee 3 1 Applying ii ii s 7 18 Internet Access Setup 3 10 3 11 4 6 16 2 Configuring wi aso ee thes 7 4 Internet Assigned Numbers Authority See IANA Filter 10g cssssssssssseerseeseessesseesseeseeeness 11 8 Internet Test Setup cccecesessecseeseeeteeeeeees 3 14 Generic Filter Rule ccc eeecceeeeeeeeees 7 12 IP addresse taos 3 3 3 7 SAna LOLE DI E SE E ene dete 7 2 IP Address Assignment 0 06 5 8 5 10 Filter Types and NAT osooso 7 17 IP Alias 2 scescceccee dies niouri 1 3 3 5 Filters TP Alias Setup 00 ccceecesessecssecssecseeeeeeeeeeeenes 3 8 Executing a Filter Rule eee 7 2 IP Mullticast 2 c scecceccivncsiaccesnenccin 1 2 3 4 Logic Flow of an IP Filter eee 7 10 Internet Group Management Protocol IGMP Flow Control niie
139. information on the version of your system firmware and the status and statistics of the ports as shown in the next figure System Status is a tool that can be used to monitor your Prestige Specifically it gives you information on your system firmware version number of packets sent and number of packets received System Information amp Diagnosis 11 1 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch 11 1 1 To get to the System Status e Enter 24 to display Menu 24 System Maintenance e In this menu enter number to open System Maintenance Status e There are three commands in Menu 24 1 System Maintenance Status Entering 1 drops the WAN PPTP PPPoE connection 9 resets the counters and ESC takes you back to the previous screen The table below describes the fields present in Menu 24 1 System Maintenance Status It should be noted that these fields are READ ONLY and are meant to be used for diagnostic purposes Menu 24 1 System Maintenance Status 1 39 06 Thu Jan 1 1970 Port Status TxPkts RxPkts Cols Tx B s Rx B s Up Time WAN 100M Full 1 0 0 0 0 0 00 00 LAN 100M Full 0 0 0 0 0 0 00 00 Port Ethernet Address IP Address IP Mask DHCP WAN 00 a0 c5 21 8c a3 0 0 0 0 0 0 0 0 Client LAN 00 a0 c5 21 8c a2 192 168 1 1 255 255 255 0 Server System up Time 1 08 22 Name Routing ZyNOS F W Version V3 60 CX 0 b2 07 02 2002 IP Press Command COMMANDS 1 Drop WAN 9 Reset Counter
140. ith Dynamic DNS support you can have a static hostname alias for a dynamic IP address allowing the host to be more easily accessible from various locations on the Internet You must register for this service with a Dynamic DNS service provider IP Multicast Traditionally IP packets are transmitted in two ways unicast or broadcast Multicast is a third way to deliver IP packets to a group of hosts IGMP Internet Group Management Protocol is the protocol used to support multicast groups The latest version is version 2 see RFC 2236 The Prestige supports versions 1 and 2 PPPoE Support PPPoE facilitates the interaction of a host with a broadband modem to achieve access to high speed data networks via a familiar dial up networking user interface 1 2 Getting to Know Your Prestige Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch PPTP Support Point to Point Tunneling Protocol PPTP is a network protocol that enables secure transfer of data from a remote client to a private server creating a Virtual Private Network VPN using a TCP IP based network PPTP supports on demand multi protocol and virtual private networking over public networks such as the Internet IP Alias IP alias allows you to partition a physical network into logical networks over the same Ethernet interface Call Scheduling Configure call time periods to restrict and allow access for users on remote nodes Call Control The Prestige p
141. le of Network Properties for LAN Servers with Fixed IP Addresses c cssesseseeeenees 3 2 Table 3 2 Private IP Address R hn gesserat e a E aE a EEA R Eea E e Sa 3 3 Table 3 3 LAN DHCP Setup Menu Fields 00 cccecccsseessecseeesecesecseeeaeecaeesaeeceeeeenseensecesecaecaecaaeceesaeeeneeags 3 7 Table 3 A LAN TCP IP Setup Men Fields ronte o a ts el ie ans O R ER i 3 7 Table 3 5 IP Alias Setup Menu Fields snsseeneeeenssesenseseesesseeressesetsesersesstenesststesesersteesseseestesetseseseeseeseeet 3 9 Table 3 6 Internet Access Setup Menu Fields cccceeeescesscesecesecesecseecaeeeseeeseceeeeeceeeneenseenseeeaeeeeeneenaees 3 11 Table 3 7 New Fields in Menu 4 PPTP Screen eeeseescesscesecesecesecseecseeeseeeeeeeeeeseeeeeeseeneeeeaeenseeeeeseeeaees 3 12 Table 3 8 New Fields in Menu 4 PPPOE SCreen eeceseceseceseeseeeseeeeeesseeceeeeceseeesecesceseenseeeaeeaecaeenseaees 3 14 Tables FNAT Definitions vhs sad veto cserch te thsteheatets hat aed eta bnmanted athe nop a a a a nates acd 4 1 Table 4 2 NAT Mapping Types c cccccd ccceceeececencdievece see a EE E e Ei eiii E ins 4 5 Table 4 3 Applying NAT in Menus 4 amp 11 3 ececececceesccesecssecseeesecseeeseecaeeeneeeeeseeseeenseensecaeesaecaecaeeeaeenseeees 4 7 Table 4 4 SUA Address Mapping Rules s ssesesesesseeeesseseesresersesstesesstsressestestssesseseesteseesessteressesesteseesesseent 4 9 Table4 5 Fields in Menu V5 0 51 erionit ee ee EEN E EEE OE E ER EE
142. mote Node Network Layer Options ccesccssessseessesseeseeeseeeseeseeeeeeeenseenseeeaeeeaecaecaeeeaeeeneesss 5 9 Figure 5 6 Remote Node Filter Ethernet Encapsulation cccccccscessecsseesseeseeeeceeeceeeeeeeesecnseenseeeaeeseenees 5 12 Figure 5 7 Remote Node Filter PPTP PPPoE Encapsulation ccccsesecsceseceeeeeceseceeesecaeeeecneeeecaeeeeeaeens 5 12 Figure 6 1 Example of Static Routing Topology c cccccssccsssssseesseeseeesceeseeeeeeceneeeecnseensecaecaecaeeaeeeaeeeneeaes 6 1 Figure 6 2 Menu 12 IP Static Route Setup eeeccsssecseeeecseeeeceseeeessecseeeeceeeeecsaeeeeaecaeeeesaecaeeeeeeesaeeates 6 2 Figure 6 3 Menu 12 1 Edit IP Static Route 00 eee eecseseesecseeeeceseeeeesecaeesecneeeceaeeeesaecaeesesneeeeceasaeeeaeeaees 6 2 Figure 7 1 Outgoing Packet Filtering Process c cccesccescesseeseeesecseeesceeseeeseeseeeeenseeeseensecaecaecaecaeeeeeeneeaes 7 2 Figure 7 2 Filter Rule Process isis cissescsctestectecetocceteses sagvlg e EE EEEE O E EER 7 3 Figure 7 3 Menu 21 Filter Set Configuration ccccecccesccssecesecsseesseeseeeseenseeeeeeeenseeesecsaeeaecaeceeceeeneeess 7 4 Figure 7 4 NetBIOS WAN Filter Rules Summary 0 ccccccssecseseecneeeeceseceeesecaeeseceeeeeceaeeeesaecaeeeeeneseeeeaees 7 5 Figure 7 5 NetBIOS LAN Filter Rules Summary cece ccsesecseesecneeeeceseeeeesecaeesecneveeceaeeeessecaeeeeeneeereeaees 7 5 Figure 7 6 TEL FTP_WEB_ WAN Filter Rules Summary 00 ccc ecceceecc
143. n Users should not attempt to make such connections themselves but should contact the appropriate electrical inspection authority or electrician as appropriate Note This digital apparatus does not exceed the Class A limits for radio noise emissions from digital apparatus set out in the radio interference regulations of Industry Canada iv Information For Canadian Users Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Declaration of Conformity We the Manufacturer Importer ZyXEL Communications Corp No 6 Innovation Rd Il Science Based Industrial Park Hsinchu Taiwan 300 R O C declare that the product Prestige 314 PLUS is in conformity with STANDARD STANDARD ITEM VERSION EN 55022 Radio disturbance characteristics Limits and method of 1998 measurement EN 61000 3 2 Disturbance in supply system caused by household appliances 1995 and similar electrical equipment Harmonics EN 61000 3 3 Disturbance in supply system caused by household appliances 1995 and similar electrical equipment Voltage fluctuations EN 61000 4 2 Electrostatic discharge immunity test Basic EMC Publication 1995 EN 61000 4 3 Radiated radio frequency electromagnetic field immunity test 1996 EN 61000 4 4 Electrical fast transient burst immunity test Basic EMC 1995 Publication EN 61000 4 5 Surge immunity test 1995 EN 61000 4 6 Immunity to conducted disturbances induced by radio frequency 1996 field
144. n other words throughout this manual The Prestige 314 PLUS may be referred to as the Prestige or the P314 PLUS in this manual Occasionally SMT screens may refer to the Prestige as a router XX Preface Getting Started Part I Getting Started This section helps you connect install and setup your Prestige to operate on your network and access the Internet Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Chapter 1 Getting to Know Your Prestige 314 PLUS This chapter introduces the main features and applications of the Prestige as well as a checklist for fast Internet access 1 1 The Prestige Broadband Sharing Gateway With 4 Port Switch The Prestige is a dual Ethernet Broadband Sharing Gateway with an integrated 4 port switch and robust network management features for Internet access via external Cable kKDSL modem Equipped with 10 100Mbps Ethernet port for WAN an auto negotiating 10 100Mbps Ethernet port for LAN and the Network Address Translation NAT feature the Prestige is uniquely suited as a broadband Internet access sharing gateway for small offices and home offices The Prestige web configurator is a breeze to operate and totally independent of the operating system platform you use 1 2 Features of the Prestige 314 PLUS The following are the main features of the Prestige Broadband WAN Connection with Integrated 4 Port Switch A combination of switch and router
145. nced applications of your Prestige such as NAT Remote Node Setup and IP Static Route Setup Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Chapter 4 Network Address Translation NAT This chapter discusses how to configure NAT on the Prestige 4 1 Introduction NAT Network Address Translation NAT RFC 1631 is the translation of the IP address of a host in a packet e g the source address of an outgoing packet used within one network to a different IP address known within another network 4 1 1 NAT Definitions Inside outside denotes where a host is located relative to the Prestige e g the workstations of your subscribers are the inside hosts while the web servers on the Internet are the outside hosts Global local denotes the IP address of a host in a packet as the packet traverses a router e g the local address refers to the IP address of a host when the packet is in the local network while the global address refers to the IP address of the host when the same packet is traveling in the WAN side Note that inside outside refers to the location of a host while global local refers to the IP address of a host used in a packet Thus an inside local address ILA is the IP address of an inside host in a packet when the packet is still in the local network while an inside global address IGA is the IP address of the same inside host when the packet is on the WAN side The following table summarizes t
146. ncel 5 1 2 PPTP Encapsulation If you change the Encapsulation to PPTP in Menu 11 1 then you will see the next screen Please see the appendix for information Remote Node Setup 5 3 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Menu 11 1 Remote Node Profile Rem Node Name ChangeMe Active Yes Encapsulation PPTP Service Type Standard Service Name N A Outgoing My Login My Password Authen CHAP PAP PPTP IP Addr Server IP Addr Route IP Edit IP No Telco Option Allocated Budget min 0 Period hr 0 Schedules Nailed up Connections No Session Options Edit Filter Sets No Idle Timeout sec 300 Connection ID Name Edit Traffic Redirect No Press ENTER to Confirm or ESC to Cancel Press Space Bar to Toggle Figure 5 2 Remote Node Profile for PPTP Encapsulation The next table shows how to configure the new fields in the Remote Node Profile menu Table 5 2 Fields in Menu 11 1 PPTP Encapsulation FIELD DESCRIPTION EXAMPLE Encapsulation Press the SPACE BAR to choose PPTP You must also go to PPTP menu 11 3 to check the IP Address setting once you have selected the encapsulation method My IP Addr Enter the IP address of the WAN Ethernet port 10 0 0 140 Server IP Addr Enter the IP address of the ANT modem 10 0 0 138 Connection Enter the connection ID or connection name in the ANT It must N My ISP ID Name foll
147. ng TCP or UDP port address translation In this case it is better to use Many One to One mapping as port numbers do not change for this mapping type The following figure illustrates this 4 24 NAT Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Mapping Rules 1 Game Players 1 to 3 lt gt IGAs 1 to 3 Type Many One to One Prestige Game Player 1 192 168 1 10 Game Player 2 192 168 1 11 3IGAs 10 132 50 1 IGA 1 10 132 50 2 IGA 2 Game Player 3 10 132 50 3 IGA 3 192 168 1 12 Figure 4 22 NAT Example 4 Other applications for example gaming programs are NAT unfriendly because they embed addressing information in the data stream These applications still won t work through NAT even when using One to One and Many One to One mapping types Follow the steps outlined in example 3 above to configure these two menus as follows Menu 15 1 1 1 Address Mapping Rule Type Many One to One Local IP Start 192 168 1 10 End 192 168 1 12 Global IP Start 10 132 50 1 End 10 132 50 3 Press ENTER to Confirm or ESC to Cancel Figure 4 23 Example 4 Menu 15 1 1 1 Address Mapping Rule After you ve configured your rule you should be able to check the settings in menu 15 1 1 as shown next NAT 4 25 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Menu 15 1 1 Address Mapping Rules Set Name Example4 Idx Local Start IP Local End IP
148. nging the System PassWord sereni a i eia eree EEEE 2 8 2 8 General Sep scecesaesiecsechecccse eeepc sce Rees ie ipi en e n e n es aei ee 2 9 9a SWAN S tipens aee dh akan E E a a eee 2 14 DAO LAN Setupecs caste ie a A AA OCIERA EE AAEN valid OEE CEE eles 2 15 Chapter 3 Internet AcCESS scssccssccscssscsssssssssscsnsessessssssssssssssssessssssssesssssseesssssssssessscesesessneseneeseessoess 3 1 3 1 TCP IP and DHCP for LAN aiaiai EE E EAE aA EREA E E Eiai 3 1 32 TCPA Pand DHCP Eth rnet Setups irii e ea Reh Aa 3 6 viii Table of Contents Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch 33 8 INternet ACCESS Setup esiema Aina ene nahin ni Meta aero Pedi aimee sees 3 10 3A Internet Test Setup niie niniin EERE K REAR EE ROER E tines 3 14 3 5 Basic Setup Complete sesninnensin aa Moos ae i BRE Ren oR Es 3 15 Chapter 4 Network Address Translation NAT csscssssssssssssssecssesesssscscesesceecescescesssseesceesscsseseeseees 4 1 Al Tntroduct oni inene aina ieee ee he Toes a ee ate See 4 1 Ade OTT NAD a sees costs ETE O A E OREA E T E deeas 4 6 4 3 1 NAT Setup ascii nai aoa kati hited ERE AE R E Ate ees 4 8 4 4 Gener l NAT Examples a cein ps e ge duns Sage E eae va neee nutes han hte EEEa SERER 4 18 Chapter 5 Remote Node Setup csscccscssscssssssecsscsssesscsssssssssssssssssscssssesssesesesssesssessssesssessssessssseseees 5 1 San Remote Node Pro tile si ss0e2 tees ars tase alr vraxcse
149. ns 12 2 Boot commands 0 ceeeeeeesceseeeeeeceeeeeeeeeeneees G Broadband Sharing Gatewal 06 xix l 1 Budget Management esceeseeeseesteereeees 13 3 C Cable Modem eceeseesecsecseeeecneeeeceeeeeeeeeeaees 2 3 Call Control icctec npn aceite 13 2 Call History E E EE 13 4 Call Scheduling eseseesseeeeeseeseesesseesessreeesse 15 1 maximum number of schedule sets 15 1 PPPoE e n e L AE 15 4 PLECEMENCE isa ernesta kiei s 15 2 precedence example See precedence Call Trigerring Packet 11 10 E DA T E T 11 8 CHAP en On EE N VaR 5 6 Command Interpreter Mode cesses 13 1 Comm nity isecite iieii 9 3 Conditions that prevent TFTP and FTP from working over WAN c cecsssseeeeeeteeeteesees 12 4 Index Console Port cccee 2 3 11 3 11 4 11 5 Q Copyright xcs ecnileed is tne tis hostesses il Customer Support ccceceeeseesseeseeeseeeeeeeeeeeeees vii D DDNS Configuration ccccccceescesseeseeeeeseeeseeees 2 11 DDNS TYPE aonana a tees 2 12 DHCP cess siseicteteccissstassivsesceveeventeuieserceens 1 2 11 12 DHCP Dynamic Host Configuration Protocol 1 2 3 1 Did gnostieen 0c8 Soden eRe es 11 11 DNSe a ER init 3 2 3 7 Domain Name 000 3 2 4 14 11 3 11 5 Dynamic DNS 2 10 2 11 DYNDNS Wildcard cecceseeseeteeeeeseees 2 10 E EMAIL ena ee aed 2 12 E mail Address ccccecesseesseereeeeeeeeeeeseeeeens 2 12 Enable W
150. ntenance Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Uploading a Configuration File Via Console Port Step 1 Select 2 from Menu 24 7 System Maintenance Upload Firmware to display Menu 24 7 2 System Maintenance Upload Router Configuration File Follow the instructions as shown in the next screen Menu 24 7 2 System Maintenance Upload Router Configuration File To upload router configuration file 1 Enter y at the prompt below to go into debug mode 2 Enter atlc after Enter Debug Mode message 3 Wait for Starting XMODEM upload message before activating Xmodem upload on your terminal 4 After successful firmware upload enter atgo to restart the router Warning 1 Proceeding with the upload will erase the current configuration file 2 The router s console port speed Menu 24 2 2 may change when it is restarted please adjust your terminal s speed accordingly The password may change menu 23 also 3 When uploading the DEFAULT configuration file the console port speed will be reset to 9600 bps and the password to 1234 Do You Wish To Proceed Y N Figure 12 18 Menu 24 7 2 as seen using the Console Port Step 2 After the Starting Xmodem upload message appears activate the Xmodem protocol on your computer Follow the procedure as shown previously for the HyperTerminal program The procedure for other serial communications programs should be similar
151. ntication method RR Manager RoadRunner Manager authentication method or RR Telstra RoadRunner Telstra authentication method Choose a RoadRunner service type if your ISP is Time Warner s RoadRunner otherwise choose Standard Note xDSL users must choose the Standard option only The Server IP My Login IP and My Password fields are not applicable in this case My Login Enter the login name given to you by your ISP My Password Enter the password associated with the login name above Login Server IP The Prestige will find the RoadRunner Server IP if this field is left blank If it does not then you must enter the authentication server IP address IP Address Assignment If your ISP did not assign you a fixed IP address select Dynamic otherwise select Static and enter the IP address amp subnet mask in the following fields IP Address Enter the fixed IP address assigned to you by your ISP Static IP Address Assignment is selected in the previous field IP Subnet Mask Enter the subnet mask associated with your static IP Gateway IP Address Enter the gateway IP address associated with your static IP Network Address Translation Refer to the following chapter for a more detailed discussion on the Single User Account and NAT Options are SUA only Full Feature or None Once you have finished configuring a rule in this menu press ENTER at the message Press ENTER to C
152. ocation budget is reset see menu 11 1 The minutes out of the 1 elapsed time is the time used up within this hour time period has period lapsed Enter 0 to update the screen or press ESC to return to the previous screen System Maintenance amp Information 13 3 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch 13 2 2 Call History This is the second option in Menu 24 9 System Maintenance Call Control It displays information about past incoming and outgoing calls Enter 2 from Menu 24 9 System Maintenance Call Control to bring up the following menu Phone Number 1 2 3 4 ae 6 Ts 8 F 0 1 Menu 24 9 2 Call History Rate call Max Enter Entry to Delete 0 to exit Figure 13 5 Call History Table 13 2 Call History Fields FIELD DESCRIPTION Phone Number The PPPoE service names are shown here Dir This shows whether the call was incoming or outgoing Rate This is the transfer rate of the call call This is the number of calls made to or received from that telephone number Max This is the length of time of the longest telephone call Min This is the length of time of the shortest telephone call Total This is the total length of time of all the telephone calls to from that telephone number Enter 0 to update the screen or press ESC to return to the previous screen 13 4 Syst
153. ocumentation of your TFTP client program For UNIX use get to transfer from the Prestige to the computer put the other way around and binary to set binary transfer mode TFTP Upload Command Example The following is an example tftp command TFTP i host put firmware bin ras 66599 where i specifies binary image transfer mode use this mode when transferring binary files host is the Prestige s IP address put transfers the file source on the computer firmware bin name of the firmware on the computer to the file destination on the remote host ras name of the firmware on the Prestige Commands that you may see in third party TFTP clients are listed earlier in this chapter 12 4 4 Uploading Via Console Port FTP or TFTP are the preferred methods for uploading firmware to your Prestige However in the event of your network being down uploading files is only possible with a direct connection to your Prestige via the console port Uploading files via the console port under normal conditions is not recommended since FTP or TFTP is faster Any serial communications program should work fine however you must use the Xmodem protocol to perform the download upload Uploading a Firmware File Via Console Port Step 1 Select 1 from Menu 24 7 System Maintenance Upload Firmware to display Menu 24 7 1 System Maintenance Upload Router Firmware and then follow the instructions as shown in
154. of firmware files using TFTP Trivial File Transfer Protocol over LAN Although TFTP should work over WAN as well it is not recommended To use TFTP your computer must have both telnet and TFTP clients To transfer the firmware and the configuration file follow the procedure shown next Step 1 Use telnet from your computer to connect to the Prestige and log in Because TFTP does not have any security checks the Prestige records the IP address of the telnet client and accepts TFTP requests only from this address Step 2 Put the SMT in command interpreter CI mode by entering 8 in Menu 24 System Maintenance Step 3 Enter the command sys stdio 0 to disable the console timeout so the TFTP transfer will not be interrupted Enter command sys stdio 5 to restore the five minute console timeout default when the file transfer is complete Step 4 Launch the TFTP client on your computer and connect to the Prestige Set the transfer mode to binary before starting data transfer 12 14 Firmware and Configuration Maintenance Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Step 5 Use the TFTP client see the example below to transfer files between the Prestige and the computer The file name for the firmware is ras Note that the telnet connection must be active and the Prestige in CI mode before and during the TFTP transfer For details on TFTP commands see following example please consult the d
155. ommands for TFTP GUI Clients COMMAND DESCRIPTION Host Enter the IP address of the Prestige 192 168 1 1 is the Prestige s default IP address when shipped Send Fetch Use Send to upload the file to the Prestige and Fetch to back up the file on your computer Local File Enter the path and name of the firmware file bin extension or configuration file rom extension on your computer Remote File This is the filename on the Prestige The filename for the firmware is ras and for the configuration file is rom 0 Binary Transfer the file in binary mode Abort Stop transfer of the file Refer to the TFTP and FTP over WAN Will Not Work When section to read about configurations that disallow TFTP and FTP to work over WAN 12 2 4 Backup Via Console Port Backup configuration via console port by following the HyperTerminal procedure shown next Procedures using other serial communications programs should be similar Step 1 Display menu 24 5 and enter y at the following screen 12 6 Firmware and Configuration Maintenance Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Ready to backup Configuration via Xmodem Do you want to continue y n Figure 12 3 System Maintenance Backup Configuration Step 2 The following screen indicates that the Xmodem download has started You can enter ctrl x to terminate operation an
156. on and enter the number s of the filter set s as appropriate You can cascade up to four filter sets by entering their numbers separated by commas The factory default filter set NetBIOS_WAN can be applied in menu 11 5 to block local NetBIOS traffic from triggering calls to the ISP when you are using PPPoE or PPTP encapsulation only Enter 1 in protocol filters under Output Filter Sets when using Ethernet encapsulation and in the protocol filters field under Call Filter Sets when using PPPoE or PPTP encapsulation Apply them as shown in the following figure Menu 11 5 Remote Node Filter Input Filter Sets protocol filters 3 device filters Output Filter Sets protocol filters 1 device filters Call Filter Sets protocol filters 1 device filters Enter here to CONFIRM or ESC to CANCEL Figure 7 17 Filtering Remote Node Traffic Apply factory default Filters here Filter Configuration 7 19 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Chapter 8 UPnP This chapter introduces the UPnP feature 8 1 Introducing Universal Plug and Play Universal Plug and Play UPnP is a distributed open networking standard that uses TCP IP for simple peer to peer network connectivity between devices A UPnP device can dynamically join a network obtain an IP address convey its capabilities and learn about other devices on the network In turn a device can leave a network smoothly and
157. onfiguration Disable UPnP if this is not your intention 8 2 UPnP and ZyXEL ZyXEL has achieved UPnP certification from the Universal Plug and Play Forum Creates UPnP Implementers Corp UIC ZyXEL s UPnP implementation supports IGD 1 0 Internet Gateway Device At the time of writing ZyXEL s UPnP implementation supports Windows Messenger 4 6 and 4 7 while Windows Messenger 5 0 and Xbox are still being tested UPnP broadcasts are only allowed on the LAN Please see later in this Users Guide for examples of installing UPnP in Windows XP and Windows Me as well as an example of using UPnP in Windows 8 2 1 Configuring UPnP From the MAIN MENU click ADVANCED and then UPnP to display the screen shown next 8 2 UPnP Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch UPnP V Enable the Universal Plug and Play UPnP Feature Allow users to make configuration changes through UPnP UPNP Name ZyXEL Prestige 314 Plus Internet Sharing Gateway Apply Reset Figure 8 1 Configuring UPnP Table 8 1 Configuring UPnP FIELD DESCRIPTION Enable the Universal Plug Select this checkbox to activate UPnP Be aware that anyone could use a and Play UPnP feature UPnP application to open the web configurator s login screen without entering the Prestige s IP address although you must still enter the password to access the web configurator Allow users to make Select this check box to allow UPnP enabl
158. onfirm to save your configuration or press ESC to cancel 3 3 2 PPTP Encapsulation Point to Point Tunneling Protocol PPTP is a network protocol that enables transfer of data from a remote client to a private server creating a Virtual Private Network VPN using TCP IP based networks Internet Access 3 11 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch PPTP supports on demand multi protocol and virtual private networking over public networks such as the Internet The P314 PLUS supports one PPTP server connection at any given time 3 3 3 Configure PPTP Client To configure a PPTP client you must configure My Login and Password fields for PPP connection and PPTP parameters for PPTP connection After configuring the User Name and Password for PPP connection press SPACE BAR in the Encapsulation field in Menu 4 Internet Access Setup to choose PPTP as your encapsulation option If you choose PPTP in menu 4 you will see the next screen Menu 4 Internet Access Setup ISP s Name myISP Encapsulation PPTP Service Type N A My Login My Password Idle Timeout 300 IP Address Assignment Dynamic IP Address N A IP Subnet Mask N A Gateway IP Address N A Network Address Translation SUA Only Press ENTER to Confirm or ESC to Cancel Figure 3 7 Internet Access Setup PPTP The following table contains instructions about the new fields when you choose PP
159. ory Defaults This section shows you where to apply the filter s after you design it them Sets of factory default filter tules have been configured in menu 21 to prevent NetBIOS traffic from triggering calls and block incoming telnet FTP and HTTP connections 7 5 1 LAN traffic You seldom need to filter LAN traffic however the filter sets may be useful to block certain packets reduce traffic and prevent security breaches Go to menu 3 1 shown below and enter the number s of the filter set s that you want to apply as appropriate You can choose up to four filter sets from twelve by entering their numbers separated by commas e g 3 4 6 11 Input filter sets filter incoming traffic to the Prestige and Output filter sets filter outgoing traffic from the Prestige A factory default set NetBIOS LAN is inserted in protocol filters field under Input Filter Sets in menu 3 1 to block NetBIOS traffic to the Prestige from the LAN 7 18 Filter Configuration Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Menu 3 1 LAN Port Filter Setup Input Filter Sets protocol filters 2 4 device filters Output Filter Sets Protocol filters device filters Press ENTER to Confirm or ESC to Cancel Figure 7 16 Filtering LAN Traffic 7 5 2 Remote Node Filters Apply factory default filter here Go to menu 11 5 shown next note that call filter sets are only present for PPPoE encapsulati
160. oting power on 1 warmStart defined in RFC 1215 A trap is sent after booting software reboot 2 LinkUp A trap is sent when the link is established 3 LinkDown A trap is sent when the link is down 4 authenticationFailure defined in A trap is sent to the manager when receiving any SNMP RFC 1215 get or set requirements with wrong community password 6 whyReboot defined in ZYXEL A trap is sent with the reason of restart before rebooting MIB when the system is going to restart warmstart 6a For intentional reboot A trap is sent with the message System reboot by user if reboot is done intentionally e g download new files Cl command sys reboot etc 9 4 SNMP Configuration Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch TRAP TRAP NAME DESCRIPTION 6b For fatal error A trap is sent with the message of the fatal code if the system reboots because of fatal errors SNMP Configuration 9 5 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Chapter 10 Traffic Redirect This section details the configuration process for Traffic Redirect Metric The metric sets the priority for the Prestige s routes to the Internet If any two of the default routes have the same metric the Prestige uses the following pre defined priorities 1 Normal route designated by the ISP or a static route 2 Traffic redirect route 3 Dial backup route IP Policy Routing o
161. over LAN or WAN will not work when 1 A filter in menu 3 1 LAN or in menu 11 5 WAN is applied to block a service 2 You have disabled that service in menu 24 11 3 The IP address in the Secured Client IP field menu 24 11 does not match the client IP address If it does not match the Prestige will disconnect the session immediately 4 There is an SMT console session running 5 There is already another remote management session of the same type running You may only have one remote management session of the same type running at one time 14 7 Remote Management and NAT When NAT is enabled e Use the Prestige s WAN IP address when configuring from the WAN e Use the Prestige s LAN IP address when configuring from the LAN 14 8 System Timeout There is a system timeout of five minutes 300 seconds for Telnet web FTP connections Your Prestige will automatically log you out if you do nothing in this timeout period except when it is continuously updating the status in menu 24 1 or when sys stdio has been changed on the command line 14 4 Remote Management Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Chapter 15 Call Scheduling This chapter shows you how to setup call time periods for remote nodes 15 1 Introduction The call scheduling feature allows the Prestige to manage a remote node and dictate when a remote node should be called and for how long This feature is similar to the schedule
162. ow the c id and n name format This field is optional and depends on the requirements of your xDSL Modem Schedules You can apply up to four schedule sets here For more details please refer to the Call Schedule Scheduling chapter Nailed Up Use the SPACE BAR to select Yes if you want to make the No Connections connection to this remote node a nailed up connection 5 4 Remote Node Setup Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Nailed Up Connection A nailed up connection is a dial up line where the connection is always up regardless of traffic demand The Prestige does two things when you specify a nailed up connection The first is that idle timeout is disabled The second is that the Prestige will try to bring up the connection at power on and whenever the connection is down A nailed up connection can be very expensive for obvious reasons Do not specify a nailed up connection unless your telephone company offers flat rate service or you need a constant connection and the cost is of no concern 5 1 3 PPPoE Encapsulation The Prestige supports PPPoE Point to Point Protocol over Ethernet PPPoE is an IETF Draft standard RFC 2516 specifying how a personal computer PC interacts with a broadband modem i e xDSL cable wireless etc connection For the service provider PPPoE offers an access and authentication method that works with existing access control
163. ows a manager and agents to communicate for the purpose of accessing these objects SNMP itself is a simple request response protocol based on the manager agent model The manager issues a request and the agent returns responses using the following protocol operations 9 2 SNMP Configuration Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch e Get Allows the manager to retrieve an object variable from the agent e GetNext Allows the manager to retrieve the next object variable from a table or list within an agent In SNMPv1 when a manager wants to retrieve all elements of a table from an agent it initiates a Get operation followed by a series of GetNext operations e Set Allows the manager to set values for object variables within an agent e Trap Used by the agent to inform the manager of some events 9 2 Supported MIBs The P314 PLUS supports MIB II that is defined in RFC 1213 and RFC 1215 The focus of the MIBs is to let administrators collect statistic data and monitor status and performance 9 3 SNMP Configuration To configure SNMP enter 22 from the main menu to display Menu 22 SNMP Configuration as shown next The community for Get Set and Trap fields is SNMP terminology for password Menu 22 SNMP Configuration SNMP Get Community public Set Community public Trusted Host 0 0 0 0 Trap Community public Destination 0 0 0 0 Press ENTER to Confirm or ESC to Cancel
164. packet filter commands Introduction NetBIOS Network Basic Input Output System are TCP or UDP broadcast packets that enable a computer to connect to and communicate with a LAN For some dial up services such as PPPoE or PPTP NetBIOS packets cause unwanted calls You can configure NetBIOS filters to e Block or forward NetBIOS packets from being sent from the LAN to the WAN e Block or forward NetBIOS packets from being sent from the WAN to the LAN e Allow or deny NetBIOS packets to be sent through VPN connections e Block or forward NetBIOS packets from initiating calls Display NetBIOS Filter Settings Syntax sys filter netbios disp This command displays the current NetBIOS filter settings NetBIOS Filter Status LAN to WAN Forward WAN to LAN Forward IPSec Packets Forward Trigger Dial Disabled Diagram 8 NetBIOS Display Filter Settings Command NetBIOS Filter Commands Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch The filter types and their default settings are as follows NAME DESCRIPTION EXAMPLE LAN to WAN This field displays whether NetBIOS packets are blocked or Block forwarded from the LAN to the WAN WAN to the LAN This field displays whether NetBIOS packets are blocked or Block forwarded from the WAN to the LAN IPSec Packets This field displays whether NetBIOS packets sent through a VPN Forward connection are blocked or forwarde
165. pter for a full discussion on this feature SUA Only Metric The metric represents the cost of transmission for routing purposes IP routing uses hop count as the measurement of cost with a minimum of 1 for directly connected networks Enter a number that approximates the cost for this link The number need not be precise but it must be between 1 and 15 In practice 2 or 3 is usually a good number 1 to 15 Private This parameter determines if the Prestige will include the route to this remote node in its RIP broadcasts If set to Yes this route is kept private and not included in RIP broadcast If No the route to this remote node will be propagated to other hosts through RIP broadcasts Yes RIP Version Press the SPACE BAR to select the RIP direction Options are Both None In Only Out Only or None Press the SPACE BAR to select the RIP version Options are RIP 1 RIP 2B or RIP 2M None default RIP 1 Multicast IGMP Internet Group Multicast Protocol is a session layer protocol used to establish membership in a Multicast group The Prestige supports both IGMP version 1 IGMP v1 and version 2 IGMP v2 Press the SPACE BAR to enable IP Multicasting or select None to disable it See the previous Part for more information on this feature None 5 10 Remote Node Setup Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Table 5 5 Remote Node Ne
166. r the domain name can be assigned from the Prestige via DHCP 2 8 1 Dynamic DNS Dynamic DNS Domain Name System allows you to update your current dynamic IP address with one or many dynamic DNS services so that anyone can contact you in NetMeeting CU SeeMe or other services You can also access your FTP server or Web site on your own computer using a DNS like address for example myhost dhs org where myhost is a name of your choice which will never change instead of using an IP address that changes each time you reconnect Your friends or relatives will always be able to call you even if they don t know your IP address First of all you need to have registered a dynamic DNS account with www dyndns org This is for people with a dynamic IP from their ISP or DHCP server that would still like to have a DNS name To use this service you must register with the Dynamic DNS service provider The Dynamic DNS service provider will give you a password or key The Prestige supports www dyndns org You can apply to this service provider for Dynamic DNS service DYNDNS Wildcard Enabling the wildcard feature for your host causes yourhost dyndns org to be aliased to the same IP address as yourhost dyndns org This feature is useful if you want to be able to use for example www yourhost dyndns org and still reach your hostname 2 8 2 Procedure For Configuring Menu 1 Step 1 Enter 1 in the main menu to open Menu 1 General Setup shown ne
167. r in a video cassette recorder you can record programs at times that you specify You can apply up to four schedule sets in Menu 11 1 Remote Node Profile 15 2 Schedule Setup From the main menu enter 26 to access Menu 26 Schedule Setup as shown next Menu 26 Schedule Setup Schedule Schedule Set Name Set Name eg eee oe ee emg pe ee ee A 2 en ees 8 So 2422 8 8 fe 3 a E Ose te es he Bee ee TON ee oe ee 5 a A A S ee 6 12 Enter Schedule Set Number to Configure Edit Name Press ENTER to Confirm or ESC to Cancel Figure 15 1 Schedule Setup Call Scheduling 15 1 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Lower numbered sets take precedence over higher numbered sets thereby avoiding scheduling conflicts For example if sets 1 2 3 and 4 in are applied in the remote node then set 1 will take precedence over set 2 3 and 4 as the Prestige by default applies the lowest numbered set first Set 2 will take precedence over set 3 and 4 and so on You can design up to 12 schedule sets but you can only apply up to four schedule sets for a remote node To delete a schedule set enter the set number and press the SPACE BAR in the Edit Name field 15 3 Schedule Set Setup To setup a schedule set select the schedule set you want to setup from menu 26 1 12 press ENTER and then type in a name for the set Press ENTER to display Menu 26 1 Schedule Set Setup as shown n
168. r mode to binary Use get to transfer files from the Prestige to the computer for example get rom 0 config rom transfers the configuration file on the Prestige to your computer and renames it config rom See earlier in this chapter for more information on filename conventions Enter quit to exit the ftp prompt Firmware and Configuration Maintenance 12 3 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Example of FTP Commands from the DOS Prompt 331 Enter PASS command Password 230 Logged in ftp gt bin 200 Type I OK ftp gt get rom 0 zyxel rom 200 Port command okay 150 Opening data connection for STOR ras 226 File received OK ftp 16384 bytes sent in 1 10Seconds 297 89Kbytes sec ftp gt quit Figure 12 2 FTP Session Example FTP GUI Clients The following table describes some of the commands that you may see in FTP GUI clients Table 12 2 General Commands for GUI Clients COMMAND DESCRIPTION Host Address Enter the address of the host server Login Type Anonymous This is when a user I D and password is automatically supplied to the server for anonymous access Anonymous logins will work only if your ISP or service administrator has enabled this option Normal The server requires a unique User ID and Password to login Transfer Type Transfer files in either ASCII plain text format or in binary mode Initial Remote Directory Specify the
169. r that the Prestige periodically updates this information IP Multicasting can be enabled disabled on the Prestige LAN and or WAN interfaces using menus 3 2 LAN and 11 3 WAN Select None to disable IP Multicasting on these interfaces 3 1 7 IP Alias IP Alias allows you to partition a physical network into different logical networks over the same Ethernet interface The Prestige supports three logical LAN interfaces via its single physical Ethernet interface with the Prestige itself as the gateway for each LAN network Prestige Prestige LAN 1 IP Address Menu 3 2 LAN 2 IP Alias 1 Menu 3 2 1 Ethernet Interfa ce LAN 3 IP Alias 2 Menu 3 2 1 Figure 3 1 Physical Network Figure 3 2 Partitioned Logical Networks Use menu 3 2 1 to configure IP Alias on your Prestige Internet Access 3 5 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch 3 2 TCP IP and DHCP Ethernet Setup From the main menu enter 3 to open Menu 3 LAN Setup 10 100 Mbps Ethernet to configure TCP IP RFC 1155 and DHCP Ethernet setup Menu 3 LAN Setup 1 LAN Port Filter Setup 2 TCP IP and DHCP Setup Enter Menu Selection Number Figure 3 3 Menu 3 LAN Setup 10 100 Mbps Ethernet To edit the TCP IP and DHCP configuration enter 2 to display Menu 3 2 TCP IP and DHCP Ethernet Setup as shown next Menu 3 2 TCP IP and DHCP Ethernet Setup DHCP Server First address in Configuration the IP Pool Clien
170. ral internal tests as well as line initialization After the tests the Prestige asks you to press ENTER to continue as shown next Copyright c 1994 2002 ZyXEL Communications Corp initialize ch 0 ethernet address 00 a0 c5 01 23 45 initialize ch 1 ethernet address 00 a0 c5 01 23 46 Press ENTER to continue Figure 2 3 Initial Screen 2 5 2 Entering the Password The login screen appears after you press ENTER prompting you to enter the password as shown next For your first login enter the default password 1234 As you type the password the screen displays an X for each character you type Note that if there is no activity for longer than five minutes after you log in your Prestige will automatically log you out and will display a blank screen If you see a blank screen press ENTER to bring up the login screen again Enter Password XXXX Figure 2 4 Password Screen Hardware Installation amp Initial Setup 2 5 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch 2 6 Navigating the SMT Interface The SMT System Management Terminal is the interface that you use to configure your Prestige Several operations that you should be familiar with before you attempt to modify the configuration are listed next Table 2 3 Main Menu Commands OPERATION KEYSTROKE S DESCRIPTION Move down to ENTER To move forward to a submenu type in the number of the desired ano
171. rect Traffic Redirect is used to sustain the Internet connection The Prestige detects if the connectivity has been lost and will forward the outgoing traffic to another specified gateway SNMP SNMP Simple Network Management Protocol is a protocol used for exchanging management information between network devices SNMP is a member of the TCP IP protocol suite Your Prestige supports SNMP agent functionality which allows a manager station to manage and monitor the Prestige through the network The Prestige supports SNMP version one SNMPv1 NAT Network Address Translation NAT Network Address Translation NAT RFC 1631 allows the translation of an Internet Protocol address used within one network to a different IP address known within another network The Prestige can now map multiple global IP addresses to local IP addresses of clients or servers DHCP Support DHCP Dynamic Host Configuration Protocol allows the individual clients workstations to obtain the TCP IP configuration at start up from a centralized DHCP server The Prestige has built in DHCP server capability enabled by default which means it can assign IP addresses an IP default gateway and DNS servers to Windows 9x Windows NT Windows 2000 and other systems that support the DHCP client The Prestige can now also act as a surrogate DHCP server DHCP Relay where it relays IP address assignment from the actual real DHCP server to the clients Dynamic DNS Support W
172. reen ecceeeccsssscesseceesesseesecsesseceseeeceaecaeesecaeseeeaeereeaeees 12 8 Figure 11 7 Telnet into Menu 24 6 innse ninin suieinran l e a R R i a meats 12 9 Figure 11 8 Restore Using FTP or TFTP Session Example esssseesesesesesrserersessssrsrerersrsrerreresssesrsrrerses 12 10 Figure 11 9 System Maintenance Restore Configuration ceeccesesccssecseceseeecesecseesecseeeeenaeeeeeaeeateaes 12 10 Figure 11 10 System Maintenance Starting Xmodem Download Screen eee eeesecseeeeceeeeeeeeeeeeeees 12 10 Figure 11 11 Restore Configuration Example cccccccesccesesesecsseeseeeneeseceneeneeseeeceeseeeseenseeeseceaeeneeeneeenes 12 11 Figure 11 12 Successful Restoration Confirmation Screen cccccceesseesseseceeeceeeceseceseceeeenseceaecseeeeeeneeees 12 11 Figure 11 13 Telnet Into Menu 24 7 1 Upload System Firmware cccccceecceseeseeeteeeeecseeeneeeseeeeeeaes 12 12 Figure 11 14 Telnet Into Menu 24 7 2 System Maintenance c ce eescsseecseeeeceseeeceseceeeeeceeceeeeeeneeeees 12 13 Figure 11 15 FTP Session Example of Firmware File Upload 0 00 cececcesseccsseceeeceseceeesecneeeecaseeeeaeeneaes 12 14 Figure 11 16 Menu 24 7 1 as seen using the Console Port ceessesscseseceseceeesecseeeceeeecaeeeesaeeaeeseenees 12 16 Figure 11 17 Example Xmodem Upload 00 cc cecececcssesesseceeseceeeseceaeeesecceaeecessecaessecneseeeaeeeeaecaeeeeeneeetes 12 16 Figure 11 18 Menu 24 7 2 as seen using the
173. ress N A IP Subnet Mask N A Gateway IP Addr N A Network Address Translation Full Feature Metric 1 Private No RIP Direction None Version N A Multicast None Enter here to CONFIRM or ESC to CANCEL Press Space Bar to Toggle Figure 4 4 Menu 11 3 Applying NAT to the Remote Node The following table describes the options for Network Address Translation Table 4 3 Applying NAT in Menus 4 amp 11 3 FIELD OPTIONS DESCRIPTION Network Full When you select this option the SMT will use Address Mapping Set 1 Address Feature menu 15 1 see section 4 3 7 for further discussion You can configure Translation any of the mapping types described in Table 4 2 Choose Full Feature if you have multiple public WAN IP addresses for your Prestige SUA Only When you select this option the SMT will use Address Mapping Set 255 menu 15 1 see section 4 3 1 Choose SUA Only if you have just one public WAN IP address for your Prestige NAT 4 7 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch 4 3 NAT Setup Use the Address Mapping Sets menus and submenus to create the mapping table used to assign global addresses to computers on the LAN You can see two NAT Address Mapping sets in menu 15 1 You can only configure Set 1 Set 255 is used for SUA When you select Full Feature in menu 4 or 11 3 the SMT will use Set 1 which supports all mapping types as outlined in Table 4 2 When you select SUA
174. rminated Jul 19 11 19 27 192 168 102 2 ZyXEL board 0 line 0 channel 0 call 1 C01 Outgoing Call dev 2 ch 0 40002 Jul 19 11 19 32 192 168 102 2 ZyXEL board 0 line 0 channel 0 call 1 C02 OutCall Connected 64000 40002 Jul 19 11 20 06 192 168 102 2 ZyXEL board 0 line 0 channel 0 call 1 C02 Call Terminated 11 8 System Information amp Diagnosis Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch 2 Packet triggered Packet triggered Message Format sdcmdSyslogSend SYSLOG_PKTTRI SYSLOG_NOTICE String String Packet trigger Protocol xx Data xxxxXXXXxx X Protocol 1 IP 2 IPX 3 IPXHC 4 BPDU 5 ATALK 6 IPNG Data We will send forty eight Hex characters to the server Jul 19 11 28 39 192 168 102 2 ZyXEL Packet Trigger Protocol 1 Data 4500003c100100001f010004c0a86614ca849a7b08004a5c020001006162636465666768696a6b6c6d6e6f70 71727374 Jul 19 11 28 56 192 168 102 2 ZyXEL Packet Trigger Protocol 1 Data 4500002c1b0140001f06b50ec0a86614ca849a7b0427001700195b3e00000000600220008cd40000020405b 4 Jul 19 11 29 06 192 168 102 2 ZyXEL Packet Trigger Protocol 1 Data 45000028240140001f06ac12c0a86614ca849a7b0427001700195b451d1430135004000077600000 3 Filter log Filter log Message Format SdcmdSyslogSend SYSLOG_FILLOG SYSLOG_NOTICE String String IP Src xx xx xx xx Dst xx xx xx xx prot SPO xxxx dpo xxxx S04 gt R01mD IP is the packet header and S04 gt R01mD means filter set 4 S and
175. rotocol Time and Date Setting eee 13 5 13 6 EA EE PETEA APE E TA E 1 2 Time ZONE 2 0 ceceeeeeeeeeeeeeeceeeceeseeeseetsestsesteeee LOW 7 Standard oii ee Ratan ites asain 3 11 5 2 THMGOUE si ceived Hackietie tins 3 13 3 14 5 7 SUA Single User Account 00 See NAT Treener R EER 11 6 Subnetmask isss soseri 3 7 Trigger Port Forwarding Subnet Mask 3 2 3 3 3 11 5 8 5 10 6 3 PLOCESS ee en TOT 4 16 Supporting Disk ecceseesceesseereeeeeeeeeeereees XIX Process Example cc cccsceseeeseeeeereeerees 4 16 SYSS siian See UNIX Syslog Troubleshooting cccceecceseeseceteeseeeseeeeeees 16 1 Syslog IP Address eeens sesser 11 8 Internet ACCesSS s ssssseeesseessseeeesrreerereseee 16 3 System Information 006 11 1 11 3 11 4 LAN Interface sniene inire 16 1 System Maintenance 11 1 11 2 11 4 11 5 11 6 WAN Interface ccc cecccceceseseceesseeeeeenes 16 2 11 7 11 8 11 12 11 13 12 2 12 5 12 14 U keele DeL eee ale Unicast nann nnee a ee 3 4 System NaMe sosire nienie E oiran enni ERE EA PEALE EET 2 11 UNIX Syslog nceann 11 7 11 8 System Status escesecesseecseeeseseeceeeeeseeeeees 11 1 pland Pinned te cere sles cate cin 12 11 System Timeout cccccceeceesceeeeeeceseeeeeees 14 4 Ul STN HA SPRITE ecccss access echdooes 2 13 T User Name iiss cisisescassictsvetssentedescenss eassseescensorkets 2 12 TCP IP 3 1 3 6 3 7 5 7 5 11 7 7 7 8 7 10 7 User Spe
176. rovides budget management for outgoing calls and chronicles incoming and outgoing calls Full Network Management Your Prestige offers you a variety of options for network management It supports password protected local and remote network management via the console port or a telnet connection using SMT System Management Interface It also supports FTP File Transfer Protocol server for remote management TFTP Trivial FTP SNMP Simple Network Management Protocol and CI Command Interpreter mode RoadRunner Support In addition to standard cable modem services the Prestige supports Time Warner s RoadRunner Service Time and Date Setting This new feature menu 24 10 allows you to get the current time and date from an external server when you power up your Prestige The real time is then displayed in the Prestige Menu 24 1 System Status and error logs If you do not choose a time service protocol that your timeserver will send when the Prestige powers up you can enter the time manually but each time the system is booted the time amp date will be reset to 1 1 2000 0 0 0 Logging and Tracing Built in message logging and packet tracing Unix syslog facility support Embedded FTP and TFTP Services The Prestige s embedded FTP and TFTP services enable the fast upgrade of firmware via standard file transfer protocols Getting to Know Your Prestige 1 3 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Port
177. rt Switch 13 2 1 Budget Management Menu 24 9 1 shows the budget management statistics for outgoing calls Enter from Menu 24 9 System Maintenance Call Control to bring up the following menu Menu 24 9 1 Budget Management Remote Node Connection Time Total Budget Elapsed Time Total Period 1 ChangeMe No Budget No Budget Reset Node 0 to update screen Figure 13 4 Budget Management The total budget is the time limit on the accumulated time for outgoing calls to a remote node When this limit is reached the call will be dropped and further outgoing calls to that remote node will be blocked After each period the total budget is reset The default for the total budget is 0 minutes and the period is 0 hours meaning no budget control You can reset the accumulated connection time in this menu by entering the index of a remote node Enter 0 to update the screen The budget and the reset period can be configured in menu 11 1 for the remote node Table 13 1 Budget Management FIELD DESCRIPTION EXAMPLE Remote Node Enter the index number of the remote node you 1 want to reset just one in this case Connection Time Total This is the total connection time that has gone 5 10 means that 5 Budget by within the allocated budget that you set in minutes out of a total menu 11 1 allocation of 10 minutes have lapsed Elapsed Time Total The period is the time cycle in hours that the 0 5 1 means that 30 Period all
178. rt Switch Table 4 8 Menu 15 3 Trigger Port Setup Description FIELD DESCRIPTION EXAMPLE Rule This is the rule index number 1 Name Enter a unique name for identification purposes You may enter up to 15 Real Audio characters in this field All characters are permitted including spaces Incoming Incoming is a port or a range of ports that a server on the WAN uses when it sends out a particular service The Prestige forwards the traffic with this port or range of ports to the client computer on the LAN that requested the service Start Port Enter a port number or the starting port number in a range of port numbers 6970 End Port Enter a port number or the ending port number in a range of port numbers 7170 Trigger The trigger port is a port or a range of ports that causes or triggers the Prestige to record the IP address of the LAN computer that sent the traffic to a server on the WAN Start Port Enter a port number or the starting port number in a range of port numbers 7070 End Port Enter a port number or the ending port number in a range of port numbers 7070 Press ENTER at the message Press ENTER to Confirm to save your configuration or press ESC at any time to cancel 4 4 General NAT Examples 4 4 1 Internet Access Only In the following Internet access example you only need one rule where all your ILAs Inside Local addresses map to one dynamic
179. rtcut Rename this connection View status of this connection Q Change settings of this ronnertion al Rename Properties 8 6 UPnP Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Step 18 In the Internet Connection Properties Step 19 You may edit or delete the port window click Settings to see the port mappings or click Add to mappings there were automatically created manually add port mappings Y Internet Connection Properties Advanced Settings General L Services Connect to the Internet using Select the saevices unning on pour malwctk that inleme usais can Intemet Connection aas 1 B1 BE ERB TCF ege 192 1681 659859 2111 UDP A mimg 192 166 1 01 7281 28007 UDP This connection allows you to connect to the Internet through a A mems 192 1681 07 7810 9771 TCR shared connection on another computer Show icon in notification area when connected Cancel Service Settings Description of service Test Name or IP address for example 192 168 0 12 of the computer hosting this service on your network 192 168 1 11 External Port number for this service 143 f TEPA f UDP Internal Port number for this service 144 Cancel When the UPnP enabled device is disconnected from your computer all port mappings will be deleted automatically Step 20 Select Show icon in notification area when connected option and click OK An
180. rver Port 23 WA ly Secured Client 0 FTP Server Port 21 Secured Client Web Server Port 80 Secured Client SNMP Service Port 161 Access DNS Service Port 53 Access Press ENTER to Confirm or ESC Figure 14 2 Menu 24 11 Remote Management Control Table 14 1 Menu 24 11 Remote Management Control IELD DESCRIPTION EXAMPLE TELNET Server FTP Each of these read only labels denotes a service that you may use Server to remotely manage the Prestige Web Server SNMP Server DNS Server Server Port This field shows the port number for the remote management 53 service You may change the port number for a service if needed but you must use the same port number to use that service for remote management Server Access Select the access interface if any by pressing SPACE BAR then LAN only ENTER to choose from LAN only WAN only ALL or Disable Secured Client IP The default 0 0 0 0 allows any client to use this service to remotely 0 0 0 0 manage the Prestige Enter an IP address to restrict access to a client with a matching IP address Remote Management 14 3 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch IELD DESCRIPTION EXAMPLE Once you have filled in this menu press ENTER at the message Press ENTER to Confirm or ESC to Cancel to save your configuration or press ESC to cancel 14 6 1 Remote Management Limitations Remote management
181. rvice Type Standard Session Options Service Name N A Edit Filter Sets No Outgoing My Login N A Edit Traffic Redirect No My Password N A Server IP N A Press ENTER to Confirm or ESC to Cancel Figure 5 1 Menu 11 1 Remote Node Profile for Ethernet Encapsulation Table 5 1 Fields in Menu 11 1 Ethernet Encapsulation FIELD DESCRIPTION EXAMPLE Rem Node Enter a descriptive name for the remote node This field can be LAoffice Name up to eight characters Active Press SPACE BAR to select Yes activate remote node or No Yes deactivate remote node Encapsulation Ethernet is the default encapsulation Press the SPACE BAR if Ethernet you wish to change to PPPoE or PPTP encapsulation Service Type Press SPACE BAR to select from Standard RR Toshiba Standard RoadRunner Toshiba authentication method RR Manager RoadRunner Manager authentication method or RR Telstra RoadRunner Telstra authentication method Choose one of the RoadRunner methods if your ISP is Time Warner s RoadRunner otherwise choose Standard Note xDSL users must choose the Standard option only The Server IP My Login IP and My Password fields are not applicable in this case Service Name This is valid only when you have chosen PPPoE encapsulation poellc If you are using PPPoE encapsulation then type the name of your PPPoE service here Outgoing 5 2 Remote Node Setup Prestige 314 PLUS Broa
182. s EN 61000 4 8 1993 EN61000 4 11 Voltage dips short interruptions and voltage variations immunity 1994 tests Declaration of Conformity v Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch ZyXEL Limited Warranty ZyXEL warrants to the original end user purchaser that this product is free from any defects in materials or workmanship for a period of up to two years from the date of purchase During the warranty period and upon proof of purchase should the product have indications of failure due to faulty workmanship and or materials ZyXEL will at its discretion repair or replace the defective products or components without charge for either parts or labor and to whatever extent it shall deem necessary to restore the product or components to proper operating condition Any replacement will consist of a new or re manufactured functionally equivalent product of equal value and will be solely at the discretion of ZyXEL This warranty shall not apply if the product is modified misused tampered with damaged by an act of God or subjected to abnormal working conditions Note Repair or replacement as provided under this warranty is the exclusive remedy of the purchaser This warranty is in lieu of all other warranties express or implied including any implied warranty of merchantability or fitness for a particular use or purpose ZyXEL shall in no event be held liable for indirect or consequential damages of any kind o
183. s No Idle Timeout sec 100 Edit Traffic Redirect No Press ENTER to Confirm or ESC to Cancel Press Space Bar to Toggle Figure 5 3 Menu 11 1 Remote Node Profile for PPPoE Encapsulation The next table describes the fields NOT already described in Table 5 already Table 5 3 Fields in Menu 11 1 PPPoE Encapsulation Specific Only FIELD DESCRIPTION EXAMPLE Authen outgoing calls Options for this field are CHAP accept CHAP only PAP accept PAP only This field sets the authentication protocol used for CHAP PAP Your Prestige will accept either CHAP or PAP when requested by this remote node CHAP PAP Telco Option Allocated Budget min budget control The field sets a ceiling for outgoing call time for this remote node The default for this field is 0 meaning no 10 5 6 Remote Node Setup Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Table 5 3 Fields in Menu 11 1 PPPoE Encapsulation Specific Only FIELD DESCRIPTION EXAMPLE Period hr This field is the time period that the budget should be 1 reset For example if we are allowed to call this remote node for a maximum of 10 minutes every hour then the Allocated Budget min is 10 minutes and the Period hr is 1 hour Schedules You can apply up to four schedule sets here For more details please refer to the Call Scheduling chapter Nailed Up This field specif
184. s 8 4 8 4 Using UPnP in Windows XP Example cccccccecssessesssceseceseceseessecsecnaeeaecseecaeeeseeeaeeseeeneeseeeeaeens 8 6 Chapter 9 SNMP Configurations cessisse estesse voet rissie ords sno isese Vo SS eser SESE SRS 9 1 OT AboutCSNMP AE E E EE E S EE EEE 9 1 927 Supported MIBS a or EE A E E O E a a 9 3 93 SNMP CofA OAE a a r meas 9 3 94 SNMP Traps wvecccocscessecctscadeeecies e EEEN E AEEA ER EER T E devs 9 4 Chapter 10 Traffic Redirect cssccsscsssesssesscsssesssesscsssssssssesesessesssssssssssssnsscnsessssessessessssesesesesessesees 10 1 LOB rae Redirect 5 r r aa a e ates laste Sead ac pease iets tastes tases Fase be seees a tain 10 1 Table of Contents ix Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Chapter 11 System Information amp Diagmosis sccssccscsecscsccscsscscssescesssssesccesssssesesesssssccsesssessees 11 1 Kid o Syste SUNS voce sees E a E EEEE ERG da WEE eae ude E R tenes ky ten ccben ER tities 11 1 11 2 System Information and Console Port Speed cccccccsceesesseeesceeseeeeceeeeseceaecseecaeecaeeeaeesneeneeeaes 11 3 11 3 Log and Trace wsciiss ne eet ected E ta tatan see eecanccdsd E A eae essed Ses aa ene RIE 11 6 TA Diagnostics sete Scotch ges SR eee eh hove ed ee ees 11 11 Chapter 12 Firmware and Configuration File Maintenance sscsscssssccscsesssscesceesseeessceeeseereees 12 1 128 Filename Conventions c3 0 chegeesa ath baie
185. s ESC Exit Figure 11 2 Menu 24 1 System Maintenance Status The following table describes the fields present in Menu 24 1 System Maintenance Status Table 11 1 System Maintenance Status Menu Fields FIELD DESCRIPTION Port The WAN or LAN port Status Shows the port speed and duplex setting if you re using Ethernet Encapsulation and Down line is down idle line ppp idle dial starting to trigger a call and drop dropping a call if you re using PPPoE Encapsulation System Information amp Diagnosis Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch FIELD DESCRIPTION TxPkts The number of transmitted packets on this port RxPkts The number of received packets on this port Cols The number of collisions on this port Tx B s Shows the transmission speed in Bytes per second on this port Rx B s Shows the reception speed in Bytes per second on this port Up Time Total amount of time the line has been up LAN Ethernet Address The LAN port Ethernet address IP Address The LAN port IP address IP Mask The LAN port IP mask DHCP The LAN port DHCP role WAN Ethernet Address The WAN port Ethernet address IP Address The WAN port IP address IP Mask The WAN port IP mask DHCP The WAN port DHCP role System up Time The total time the Prestige has been on Name This is the Prestig
186. s inire De a a t 1 2 Front Panel LEDS cioinn i 2 1 IP Network Number cc cescesseeeteeseeeseeenes 3 2 E E E E T E T 14 4 IPAP OOD aeaa a A AEA RA 3 2 Restrictions einn aenar ee en 14 4 IP Static Route ccc ceeccceeeseeeeenees 6 1 6 2 6 3 FTP File Transferi ic cecangiantenaicetis 12 12 L FTP Restrictions 0 ccccceesceeseeeeeeseeeteeneenees 12 4 DAN Sp ii an 2 15 3 6 a cal ea lardan a E E O EAT 11 6 G Log Facility a ennaa ae eboese 11 8 General Setup secs ccscscscstee eves desescesceseetvedeccetee 2 9 M H MAA ddress isch xuendcdntteanauee 2 14 16 2 Hidden Menus ccccescceseeseceseeeeeseeeseeeseeees 2 6 Main Men rsin hte 2 7 Hostinne ren i ni eR R ee 2 12 Management Information Base MIB 9 2 How PPPoE WoKkS ccccceecssceessececeesseeeeesseees B Metri pnpa aaa 5 8 5 10 6 3 10 1 1 Gl Fel ao epee R I A E 4 14 My WAN Address 5 10 HyperTerminal program cee 12 6 12 10 N I nailed up connection sssssessesseeesssseeseesereeesee 5 5 TANA e ad eetabs coat nttbeetipbes evi 3 3 INA AT teeters A 5 8 5 10 7 17 Idle time Otic iri ee ee 5 5 Applicati m anen e ern 4 3 IGMP Internet Group Multicast Protocol 3 4 Applying NAT in the SMT Menus 4 6 T Index Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Conf Surin g eaa R 4 8 Definitions siete nian aie 4 1 Examples arenan see ie eee wk 4 18 How NAT Works 4 2 Mapping Types c
187. s section provides information on Filter Configuration SNMP Configuration System Information and Diagnosis Firmware and Configuration File Maintenance System Maintenance and Call Scheduling Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Chapter 7 Filter Configuration This chapter shows you how to create and apply filter s 7 1 About Filtering Your Prestige uses filters to decide whether to allow passage of a data packet and or to make a call There are two types of filter applications data filtering and call filtering Filters are subdivided into device and protocol filters which are discussed later Data filtering screens the data to determine if the packet should be allowed to pass Data filters are divided into incoming and outgoing filters depending on the direction of the packet relative to a port Data filtering can be applied on either the WAN side or the Ethernet side Call filtering is used to determine if a packet should be allowed to trigger a call Remote node call filtering is only applicable when using PPTP or PPPoE encapsulation see Figure 5 7 Outgoing packets must undergo data filtering before they encounter call filtering as shown in the following figure Filter Configuration 7 1 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Active Data no Built in User defined s default Call Filters Initiate call Call Filters if applica
188. scription of the NAT set for SUA The Prestige also supports Full Feature NAT to map multiple global IP addresses to multiple private LAN IP addresses of clients or servers using mapping types as outlined in Table 4 2 1 Choose SUA Only if you have just one public WAN IP address for your Prestige 2 Choose Full Feature if you have multiple public WAN IP addresses for your Prestige 4 2 2 Applying NAT You apply NAT via menus 4 or 11 3 as displayed next The next figure shows you how to apply NAT for Internet access in menu 4 Enter 4 from the main menu to go to Menu 4 Internet Access Setup Menu 4 Internet Access Setup ISP s Name myISP Encapsulation Ethernet Service Type Standard My Login N A My Password N A Login Server IP N A IP Address Assignment Dynamic IP Address N A IP Subnet Mask N A Gateway IP Address N A Network Ag dress Translation SUA Only Press ENTER to Confirm or ESC to Cancel Figure 4 3 Menu 4 Applying NAT for Internet Access 4 6 NAT Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch The following figure shows how you apply NAT to the remote node in menu 11 1 Step 1 Enter 11 from the main menu Step 2 Move the cursor to the Edit IP field press the SPACE BAR to select Yes and then press Step 3 ENTER to bring up Menu 11 3 Remote Node Network Layer Options Menu 11 3 Remote Node Network Layer Options IP Address Assignment Dynamic IP Add
189. se cases all incoming inquiries will be filtered out by your Prestige thus preventing intruders from probing your network For more information on IP address translation refer to RFC 1631 The IP Network Address Translator NAT 4 1 3 How NAT Works Each packet has two addresses a source address and a destination address For outgoing packets the ILA Inside Local Address is the source address on the LAN and the IGA Inside Global Address is the source address on the WAN For incoming packets the ILA is the destination address on the LAN and the IGA is the destination address on the WAN NAT maps private local IP addresses to globally unique ones required for communication with hosts on other networks It replaces the original IP source address and TCP or UDP source port numbers for Many to One and Many to Many Overload NAT mapping in each packet and then forwards it to the Internet The Prestige keeps track of the original addresses and port numbers so incoming reply packets can have their original values restored The following figure illustrates this 4 2 NAT Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Inside Local Inside Global IP Address IP Address LAN 192 168 1 10 IGA1 WAN 192 168 1 11 IGA2 192 168 1 12 IGA3 IP Address 192 168 1 13 IGA4 192 168 1 13 IP Address 192 168 1 12 Prestige Ly le pein Inside Local Inside Global Addresses ILA Addresses IGA IP Address 19
190. senstesssesseuaesneescecaussoneenensnes M Chart 5 ICMP Type and Code Explanations ccccccccessessscesseeseeesecesecaeecaeeeseesaeeneceseceseensecaeceaeeaeceaenaeenaeenaes N Chart 6 CONSOLE Port RS 232 Female DB 9F Pin Assignment c ccesceesseesceesceeeceeeeeeceseeseeneenseenaes Q xvi List of Diagrams and Charts Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch List of Tables Table 1 1 Internet Access Configuration Checklist 0 cccccescsesecseesceeeeescesseeeeceeenseenseceaeeaecaeeeeeseeeneeees 1 5 Table 2 1 LED Descriptions ccc ccsssessserseersosseesscessesseesoesnsesonesonsonsuonsesnseseesuesssesssesseseeeseessonesotsensesnseess 2 1 Table 2 2Prestige Rear Panel Connections eccceecceseceseeseeesecsecseecaeecaeeseeeeeeeecesecnsecesecaecaecnaecaeeeseeeneeass 2 2 Table 2 3 Main Menu Commands Sasian naa aa a a a a a a aa a 2 6 Table 2 4 Main Menu Summary noei incini ie E e i i E eiai ians 2 7 Table 2 5 General Setup Menu Field niecne Mii ai eh E E ES ER T mea 2 11 Table 2 6 Configure Dynamic DNS Menu Fields sseseeesseeeesseseeseesersesseeresseseesseserseesresessreressesresresersesees 2 12 Table 2 7 Configure Dynamic DNS Menu Fields c eeceeccescceseceseeetecaceeseeeseeneeeeeceeeneeeneeenseesaeesaeenaeenees 2 12 Table 2 8 WAN Setup Menu Fields ccccceccceesesesceseceeceseceeceeecseecseceneceeesceeeenseeeseeeresseenseenaeeeseeereeeeaees 2 14 Table 3 1 Examp
191. ss ESC at any time to cancel Your Prestige WAN Port is always set at half duplex mode as most cable modems only support half duplex mode If your cable modem supports full duplex mode then you will be able to manually set it at half duplex mode If the Prestige is set at half duplex mode and the cable modem is set at full duplex mode then the WAN port will not function properly Your Prestige supports full duplex mode on the LAN side 2 10 LAN Setup This section describes how to configure the LAN using Menu 3 LAN Setup From the main menu enter 3 to display menu 3 shown next Menu 3 LAN Setup 1 LAN Port Filter Setup 2 TCP IP and DHCP Setup Enter Menu Selection Number Figure 2 10 Menu 3 LAN Setup 2 10 1 LAN Port Filter Setup This menu allows you to specify the filter sets that you wish to apply to the LAN traffic You seldom need to filter the LAN traffic however the filter sets may be useful to block certain packets reduce traffic and prevent security breaches Hardware Installation amp Initial Setup 2 15 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Menu 3 1 LAN Port Filter Setup Input Filter Sets protocol filters 2 device filters Output Filter Sets protocol filters device filters Press ENTER to Confirm or ESC to Cancel Figure 2 11 Menu 3 1 LAN Port Filter Setup Menu 3 2 is discussed in the next part of the manual Ple
192. ss amp NAT Example eseeesesseeieseessrsisrsrrerstssesrsrersestssesrsrerretsesserrens 4 19 Figure 4 TGNAT Example 2 xecnnccc vie cn nA a eae aae ea e a Ea a Ton eaae 4 20 Figure 4 17 NAT Example 3 2 2 sccseccccccceesedecccees voces sedeeceedhsaecvecedsccevcevsscuacutce caveueeasedeecides seei eisaseddecevaeceaede 4 21 Figure 4 18 Example 3 Menu 11 3 disirei rsr nenten er a S Esi Eria EE aE o eiS ASS 4 22 Figure 4 19 Example 3 Meru IS a l aaaeeeaa anae aaaea i ae a aenn iadaaa asats Eiai 4 23 Figure 4 20 Example 3 Final Men 15 1 Isnin iaren nienia an iea i e 4 23 Figure 4 21 Example 3 Menu TS 2 oiaren a e a a a aaa 4 24 Figure 4 22 NAT Example 4n iieii p i ia AE EOE R EREE 4 25 Figure 4 23 Example 4 Menu 15 1 1 1 Address Mapping Rule cccccecceeseesceesceeeceeeeeeeeereneeeeseesaees 4 25 Figure 4 24 Example 4 Menu 15 1 1 Address Mapping Rules cccccccessessseeceeseeeseeeeceeceseeeseeteenaees 4 26 Figure 5 1 Menu 11 1 Remote Node Profile for Ethernet Encapsulation 0 0 0 0 ecessecssecseeeecneeeeceseeeeeaeenees 5 2 Figure 5 2 Remote Node Profile for PPTP Encapsulation ec eccesescessecseeeeceeeeeceaeeeeesecaeesecneseseesnesereeaees 5 4 Figure 5 3 Menu 11 1 Remote Node Profile for PPPoE Encapsulation ccccessseescseeereeseeeeeeceseeeeeeeenees 5 6 Figure 5 4 Remote Node Network Layer Options c cecccssesseessessecseeeseeeseeseeeeeeeeneenseceaeeaecaeceeeseeeneenes 5 7 Figure 5 5 Re
193. ssword as requested the default is 1234 Enter bin to set transfer mode to binary Use put to transfer files from the computer to the Prestige for example put firmware bin ras transfers the firmware on your computer firmware bin to the Prestige and renames it ras Similarly put config rom rom 0 transfers the configuration file on your computer config rom to the Prestige and renames it rom 0 Likewise get rom 0 config rom transfers the configuration file on the Prestige to your computer and renames it config rom See earlier in this chapter for more information on filename conventions Enter quit to exit the ftp prompt Firmware and Configuration Maintenance 12 13 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch FTP Session Example of Firmware File Upload 331 Enter PASS command Password 230 Logged in ftp gt bin 200 Type I OK ftp gt put firmware bin ras 200 Port command okay 150 Opening data connection for STOR ras 226 File received OK ftp 1103936 bytes sent in 1 10Seconds 297 89Kbytes sec ftp gt quit Figure 12 15 FTP Session Example of Firmware File Upload More commands found in third party FTP clients are listed earlier in this chapter Refer to the TFTP and FTP over WAN Will Not Work When section to read about configurations that disallow TFTP and FTP to work over WAN 12 4 3 TFTP File Upload The Prestige also supports the uploading
194. stige Press ENTER when prompted for a username Enter your password as requested the default is 1234 Enter bin to set transfer mode to binary Find the rom file on your computer that you want to restore to your Prestige Use put to transfer files from the Prestige to the computer for example put config rom rom 0 transfers the configuration file on the Prestige to your computer and renames it config rom See earlier in this chapter for more information on filename conventions Enter quit to exit the ftp prompt The Prestige will automatically restart after a successful restore process Firmware and Configuration Maintenance 12 9 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Restore Using FTP or TFTP Session Example ftp gt put config rom rom 0 200 Port command okay 150 Opening data connection for STOR rom 0 226 File received OK 221 Goodbye for writing flash ftp 16384 bytes sent in 0 06Seconds 273 07Kbytes sec ftp gt quit Figure 12 8 Restore Using FTP or TFTP Session Example Refer to the TFTP and FTP over WAN Will Not Work When section to read about configurations that disallow TFTP and FTP to work over WAN 12 3 2 Restore Via Console Port Restore configuration via console port by following the HyperTerminal procedure shown next Procedures using other serial communications programs should be similar 66 99 Step 1 Display menu 24 6 and
195. stige but make sure that no other device on your network is using that IP The subnet mask specifies the network number portion of an IP address Your Prestige will compute the subnet mask automatically based on the IP address that you entered You don t need to change the subnet mask computed by the Prestige unless you are instructed to do otherwise 3 1 4 Private IP Addresses Every computer on the Internet must have a unique IP address If your networks are isolated from the Internet e g only between your two branch offices you can assign any IP addresses to the hosts without problems However the Internet Assigned Numbers Authority IANA has reserved the following three blocks of IP addresses specifically for private networks Table 3 2 Private IP Address Ranges 10 0 0 0 10 255 255 255 172 16 0 0 172 31 255 255 192 168 0 0 192 168 255 255 You can obtain your IP address from the IANA from an ISP or have it assigned by a private network If you belong to a small organization and your Internet access is through an ISP the ISP can provide you with the Internet addresses for your local networks On the other hand if you are part of a much larger organization you should consult your network administrator for the appropriate IP addresses Internet Access 3 3 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Regardless of your particular situation do not create an arbitrary IP ad
196. svandeaicaseddscagesceducctcevsdeieesstucctecseeeteedsdeeceeeseees 7 7 Table 7 3 TCP IP Filter Rule Men Fields ccsccssssesssonecosscnsssnsecssenssesesssesvessoeseesoseconssnsesnseenseensesneess 7 8 Table 7 4 Generic Filter Rule Menu Fields ccceccesceesecsceeseeeseeeeeeseceseceseeeeeeessecesecnseceaecaeensenaeenaeenaes 7 12 Fable 1 1 Configuring UPnP ssn 3 acetates ARO Aree ee sk E ER EA 8 3 Table 8 1 SNMP Configuration Menu Fields cecccesccsseessecssecseeeseeeseeeeeeseceseeeeeseeeseenseeeseceaeenaecaeeeeeereeas 9 4 Table 8 2 SNMP Traps cenn nira n iE aE E E E ise eve dence E E REEE E ies 9 4 Table 9 1 Menu 11 1 Remote Node Profile Traffic Redirect Field cccccceeseeseeseceseceseeeeeneeeeenaes 10 3 Table 9 2 Traffic Redirect Setup AE E EEN 10 4 Table 10 1 System Maintenance Status Menu Fields 00 eccecceseesseeseeeseeeseeeeceeecesecesecnseeaeenseeaeeseeenes 11 2 Table 10 2 Fields in System Maintenance ccccecccesscesscesscssecesecesecsnecseecseeeseeeseceeeseeseeeeeseseeeseeereenseeseenaes 11 5 Table 10 3 System Maintenance Menu Syslog Parameters csccesccsseesseeseeeseeeeeeeeceseceseenseesaeenaeeeeeaeeenes 11 8 Table 10 4 System Maintenance Menu Diagnostic cecccesccsseesseeseeesceseeeseceseeescesecnseeeseeaeesecseeeneeeneeaes 11 13 Table 11 1 Filename Conventions 2 ccccieccccseeceteccavcsace see acne dusetcsidvestee de idadedceddededducessecducedtatevecces
197. t IP Pool Starting Address 192 168 1 33 Size of Client IP Pool 32 Primary DNS Server 0 0 0 0 Secondary DNS Server 0 0 0 0 z DHCP Server Address N A Size of the IP Pool TCP IP Setup IP Address 192 168 1 1 IP Subnet Mask 255 255 2557 RIP Direction Both Version RIP 1 Multicast None Edit IP Alias No IP address of DNS servers Press ENTER to Confirm or ESC to Cancel Press Space Bar to Toggle The IP address of the Prestige Figure 3 4 Menu 3 2 TCP IP and DHCP Ethernet Setup 3 6 Internet Access Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Follow the instructions in the following table on how to configure the DHCP fields Table 3 3 LAN DHCP Setup Menu Fields FIELD DESCRIPTION EXAMPLE DHCP This field enables disables the DHCP server If it is set to Server Server your Prestige will act as a DHCP server If set to None DHCP default service will be disabled and you must have another DHCP sever on your LAN or else the workstation must be manually configured When DHCP is set to Server the following four items need to be set The Prestige can now also act as a surrogate DHCP server Relay where it relays IP address assignment from the actual real DHCP server to the clients Configuration Client IP Pool Starting This field specifies the first of the contiguous addresses in the IP 192 168 1 33 Address address pool
198. t neste acne tected emer beeth eden ware teeta acaba ti a 5 1 5 2 Editing TCP IP Options with Ethernet Encapsulation 0 cscescsecceeseceeeeecneeeeceaeeeeeaceaeeseeneees 5 7 5 3 Remote Node Filter iesin n E wei E anil tien seo 5 11 Chapter 6 IP Static Route Setup irs cccs ssscessssessssessesnnsossossenes svesesonts ssovessnnsseveesnnsossecceusssonesdveassenseceesseseeatons 6 1 6 1 ALP Static Route Setup sss ficere ee Bee ao ee i eee ek 6 2 Chapter 7 Filter Configuration csscscsssssscccccssssscscscsssessscessscsesescesescsessescessscssescesssssesesssssesessseeees 7 1 FL About Filtering 2 ccce ccticesccicscvescedcenccves acca dea heii eete oten eens sed tade ee oi a an 7 1 72 Configuring a Filter S t is ccs KAR et rae cee A one ei RAR oe eed 7 4 73 4 Example Filtercxs 1m sec ti astalehee AE she T east BER Pade tat Gans Mtoe anes 7 14 RA FaltersPypes anid NAT rao O abe EEN E Re is tee 7 17 7 5 Applying a Filter and Factory Defaults cccceccesecsceesecesecseeeseeeseeeeceeeceseenseenaecnaecaecseeeneeenes 7 18 Chapter S UPnP arena r Anoe tees s oria SES suites sodestunss ESE ERESSE SV ESE Se SORE E TETs 8 1 8 1 Introducing Universal Plug and Play esssseeeseeseesseseeseserseseesessteresseseestesresesseenessreressesrseeseese 8 1 8 20 V UPnP and ZyXEL i iee re E E NE een aoe E A a ee 8 2 8 3 Installing UPnP in Windows Example ccccccessesssessceesceecesecesecaecaeaecaecsaecaaecaeeeseeneeeneeeneea
199. t relays IP address assignment from the actual real DHCP server to the clients Internet Access 3 1 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch IP Pool Setup The Prestige is pre configured with a pool of 32 IP addresses starting from 192 168 1 33 to 192 168 1 64 This configuration leaves 31 IP addresses excluding the Prestige itself in the lower range for other server computers e g server for mail FTP telnet web etc that you may have DNS Server Address Use DNS Domain Name System to map a domain name to its corresponding IP address and vice versa e g the IP address of www zyxel com is 204 217 0 2 The DNS server is extremely important because without it you must know the IP address of a computer before you can access it There are two ways that an ISP disseminates the DNS server addresses 1 The ISP tells you the DNS server addresses usually in the form of an information sheet when you sign up If your ISP gives you DNS server addresses enter them in the DNS Server fields in DHCP Setup 2 Leave the DNS Server fields in DHCP Setup blank for example 0 0 0 0 The Prestige acts as a DNS proxy when this field is blank Table 3 1 Example of Network Properties for LAN Servers with Fixed IP Addresses Choose an IP address 192 168 1 2 192 168 1 32 192 168 1 65 192 168 1 254 Subnet mask 255 255 255 0 Gateway or default route 192 168 1 1 Prestige LAN IP 3 1 3 IP
200. ter 11 from the main menu to display menu 11 Step 2 Go to the Edit Filter Sets field press the SPACE BAR to select Yes and press ENTER Step 3 This brings you to menu 11 5 Apply the TELNET FTP_WAN filter set filter set 7 as shown in Figure 7 17 7 4 Filter Types and NAT There are two classes of filter rules Generic Filter Device rules and Protocol Filter TCP IP rules Generic Filter rules act on the raw data from to LAN and WAN and Protocol Filter rules act on the IP packets Generic and TCP IP filter rules are discussed in more detail in the next section When NAT Network Address Translation is enabled the inside IP address and port number are replaced on a connection by connection basis which makes it impossible to know the exact address and port on the wire Therefore the Prestige applies the protocol filters to the native IP address and port number before NAT for outgoing packets and after NAT for incoming packets On the other hand the generic or device filters are applied to the raw packets that appear on the wire They are applied at the point when the Prestige is receiving and sending the packets i e the interface The interface can be an Ethernet port or any other hardware port The following figure illustrates this Filter Configuration 7 17 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Incoming Figure 7 15 Protocol and Device Filter Sets 7 5 Applying a Filter and Fact
201. th 0 Mask N A Value N A More No Log None Action Matched Check Next Rule Action Not Matched Check Next Rule Press ENTER to Confirm or ESC to Cancel Press Space Bar to Toggle Figure 7 10 Menu 21 4 1 Generic Filter Rule The following table describes the fields in the Generic Filter Rule Menu Table 7 4 Generic Filter Rule Menu Fields Field Description EXAMPLE Filter This is the filter set filter rule co ordinates i e 2 3 refers to the second filter set and the third rule of that set 7 12 Filter Configuration Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Field Description EXAMPLE Filter Type Use the SPACE BAR to select a rule Parameters displayed Generic Filter Rule below each type will be different Options are Generic Filter Rule or TCP IP Filter Rule Active Select Yes to turn on the filter rule No Offset Enter the starting byte of the data portion in the packet that you 0 wish to compare The range for this field is from 0 to 255 default Length Enter the byte count of the data portion in the packet that you 0 wish to compare The range for this field is 0 to 8 default Mask Enter the mask in Hexadecimal to apply to the data portion before comparison Value Enter the value in Hexadecimal to compare with the data portion More If Yes a matching packet is passed to the next filter rule before No an action is tak
202. the number the default higher priority the route has Check WAN Enter the IP address of a reliable nearby computer for example your 0 0 0 0 IP Address ISP s DNS server address to test your Prestige s WAN accessibility The Prestige uses the default gateway IP address if you do not enter an IP address here If you are using PPTP or PPPoE Encapsulation enter 0 0 0 0 to configure the Prestige to check the PVC Permanent Virtual Circuit or 10 4 Traffic Redirect Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch FIELD DESCRIPTION EXAMPLE Check WAN IP Address Enter the IP address of a reliable nearby computer for example your ISP s DNS server address to test your Prestige s WAN accessibility The Prestige uses the default gateway IP address if you do not enter an IP address here If you are using PPTP or PPPoE Encapsulation enter 0 0 0 0 to configure the Prestige to check the PVC Permanent Virtual Circuit or PPTP tunnel 0 0 0 0 Fail Tolerance Enter the number of times your Prestige may attempt and fail to connect to the Internet before traffic is forwarded to the backup gateway Two to five is usually a good number Period sec Enter the time interval in seconds between WAN connection checks Five to 60 is usually a good number Timeout sec Enter the number of seconds the Prestige waits for a ping response from the I
203. ther menu submenu and press ENTER Move up toa ESC Press the ESC key to move back to the previous menu previous menu Move to a hidden menu Press the SPACE BAR to change No to Yes then press ENTER Fields beginning with Edit lead to hidden menus and have a default setting of No Press the SPACE BAR to change No to Yes then press ENTER to go to a hidden menu Move the cursor ENTER or Up Down arrow keys Within a menu press ENTER to move to the next field You can also use the Up Down arrow keys to move to the previous and the next field respectively Enter information Fill in or Press the SPACE BAR to select You need to fill in two types of fields The first requires you to type in the appropriate information The second allows you to cycle through the available choices by pressing the SPACE BAR Required fields lt gt or ChangeMe All fields with the symbol lt gt must be filled in order to be able to save the new configuration All fields with ChangeMe must not be left blank in order to be able to save the new configuration N A fields lt N A gt Some of the fields in the SMT will show a lt N A gt This symbol refers to an option that is Not Applicable Save your ENTER Save your configuration by pressing ENTER at the message configuration Press ENTER to confirm or ESC to cancel Saving the data on the screen
204. tion Request 0 Information request message 16 Information Reply 0 Information reply message Log Descriptions Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Appendix F Power Adapter Specifications NORTH AMERICAN PLUG STANDARDS MW48 1201200 AD48 1201200DUY AC Power Adapter Model Input Power AC120Volts 60Hz 22W AC120Volts 60HZ 0 25A Output Power DC12Volts 1 2A DC12Volts 1 2A Power Consumption 9 W 9 W Safety Standards UL CUL UL1314 CSA C22 2 No 233 M91 EUROPEAN PLUG STANDARDS AD 1201200DV JAD 121200E AC Power Adapter Model Input Power AC230Volts 50Hz 0 2A AC230Volts 50Hz Output Power DC12Volts 1 2A DC12Volts 1 2A Power Consumption 9 W 9 W Safety Standards TUV CE EN 60950 UNITED KINGDOM JAPANESE PLUG STANDARDS PLUG STANDARDS AC Power Adapter Model AD 1201200DK JOD 48 1124 Input Power AC230Volts 50Hz 0 2A AC100Volts 50 60Hz 27VA Output Power DC12Volts 1 2A DC12Volts 1 2A Power Consumption 9 W 9 W Safety Standards TUV CE EN 60950 BS7002 T Mark Japan Dentori AUSTRAL IAN AND NEW ZEALAND PLUG STANDARDS AC Power Adapter Model AD 1201200DS or AD 121200DS Input Power AC240Volts 50Hz 0 2A Output Power DC12Volts 1 2A Power Consumption 9 W Safety Standards NATA AS 3260 Hardware Specifications Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch App
205. to Both and the Version set to RIP 1 3 1 6 IP Multicast Traditionally IP packets are transmitted in one of either two ways Unicast 1 sender recipient or Broadcast 1 sender everybody on the network Multicast delivers IP packets to a group of hosts on the network not everybody and not just 1 IGMP Internet Group Multicast Protocol is a session layer protocol used to establish membership in a Multicast group it is not used to carry user data IGMP version 2 RFC 2236 is an improvement over version 1 RFC 1112 but IGMP version 1 is still in wide use If you would like to read more detailed information about interoperability between IGMP version 2 and version 1 please see sections 4 and 5 of 3 4 Internet Access Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch RFC 2236 The class D IP address is used to identify host groups and can be in the range 224 0 0 0 to 239 255 255 255 The address 224 0 0 0 is not assigned to any group and is used by IP multicast computers The address 224 0 0 1 is used for query messages and is assigned to the permanent group of all IP hosts including gateways All hosts must join the 224 0 0 1 group in order to participate in IGMP The address 224 0 0 2 is assigned to the multicast routers group The Prestige supports both IGMP version 1 IGMP v1 and IGMP version 2 IGMP v2 At start up the Prestige queries all directly connected networks to gather group membership Afte
206. to let end users access one of multiple network services a function known as dynamic service selection This enables the service provider to easily create and offer new IP services for specific users Operationally PPPoE saves significant effort for both the end user and ISP carrier as it requires no specific configuration of the broadband modem at the customer site By implementing PPPoE directly on the Prestige rather than individual computers the computers on the LAN do not need PPPoE software installed since the Prestige does that part of the task Furthermore with NAT all of the LAN s computers will have access If you enable PPPoE in menu 4 you will see the next screen For more information on PPPoE please refer to the PPPoE Appendix Internet Access 3 13 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Menu 4 Internet Access Setup ISP s Name myISP Encapsulation PPPoE Service Type N A My Login My Password Idle Timeout 300 IP Address Assignment Dynamic IP Address N A IP Subnet Mask N A Gateway IP Address N A Network Address Translation SUA Only Press ENTER to Confirm or ESC to Cancel Figure 3 8 Internet Access PPPoE Table 3 8 New Fields in Menu 4 PPPoE screen FIELD DESCRIPTION EXAMPLE Encapsulation Press the SPACE BAR and then press ENTER to choose PPPoE PPPoE The encapsulation method influences your choices for IP Address
207. twork Layer Options Menu Fields FIELD DESCRIPTION EXAMPLE Once you have completed filling in the Network Layer Options Menu press ENTER to return to menu 11 Press ENTER at the message Press ENTER to Confirm to save your configuration or press ESC at any time to cancel 5 2 2 Editing TCP IP Options with PPPoE Encapsulation Make sure Encapsulation is set to PPPoE in menu 11 1 Move the cursor to the Edit IP field in menu 11 1 The menu and filed are the same as described for PPTP encapsulation 5 3 Remote Node Filter Move the cursor to the field Edit Filter Sets in menu 11 1 then press the SPACE BAR to set the value to Yes Press ENTER to open Menu 11 5 Remote Node Filter Use menu 11 5 to specify the filter set s to apply to the incoming and outgoing traffic between this remote node and the Prestige to prevent certain packets from triggering calls You can specify up to 4 filter sets separated by commas e g 1 5 9 12 in each filter field Note that spaces are accepted in this field For more information on defining the filters please refer to the Filters chapter For PPPoE or PPTP Encapsulation you can also specify remote node call filter sets Remote Node Setup 5 11 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Menu 11 5 Remote Node Filter Input Filter Sets protocol filters 5 device filters Output Filter Sets protocol filters 1 device filters
208. ulticast Protocol is a session layer protocol None used to establish membership in a Multicast group The Prestige supports both IGMP version 1 IGMP v1 and IGMP v2 Press the SPACE BAR to enable IP Multicasting or select None default to disable it Edit IP Alias The Prestige supports three logical LAN interfaces via its single Yes physical Ethernet interface with the Prestige itself as the gateway for each LAN network Press the SPACE BAR to select Yes then press ENTER to display menu 3 2 1 When you have completed this menu press ENTER at the prompt Press ENTER to Confirm to save your configuration or press ESC at any time to cancel 3 2 1 IP Alias Setup Use menu 3 2 to configure the first network and move the cursor to the Edit IP Alias field and press SPACE BAR to choose Yes and press ENTER to configure the second and third network Pressing ENTER opens Menu 3 2 1 IP Alias Setup as shown next 3 8 Internet Access Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Menu 3 2 1 IP Alias Setup IP Alias 1 No P Address N A P Subnet Mask N A RIP Direction N A Version N A ncoming protocol filters N A Outgoing protocol filters N A IP Alias 2 No P Address N A P Subnet Mask N A RIP Direction N A Version N A ncoming protocol filters N A Outgoing protocol filters N A Enter here to CONFIRM or ESC to CANCEL Press Space Bar to Toggle Figure 3 5 Menu
209. verrides the default routing behavior and takes priority over all of the routes mentioned above For example if the normal route has a metric of 1 and the traffic redirect route has a metric of 2 and dial backup route has a metric of 3 then the normal route acts as the primary default route If the normal route fails to connect to the Internet the Prestige tries the traffic redirect route next In the same manner the Prestige uses the dial backup route if the traffic redirect route also fails If you want the dial backup route to take first priority over the traffic redirect route or even the normal route all you need to do is set the dial backup route s metric to 1 and the others to 2 or greater 10 1 Traffic Redirect Traffic redirect forwards WAN traffic to a backup gateway when the Prestige cannot connect to the Internet through its normal gateway Traffic Redirect 10 1 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Figure 10 1 Traffic Redirect WAN Setup The following network topology allows you to avoid triangle route security holes when the backup gateway is connected to the LAN Use IP alias to configure the LAN into two or three logical networks with the Prestige itself as the gateway for each LAN network Put the protected LAN in one subnet Subnet 1 in the following figure and the backup gateway in another subnet Subnet 2 Configure a LAN to LAN Prestige firewall rule that forwar
210. vices To add or remove a component click the check box A shaded box means that only part of the component will be installed To see what s included in a component click Details m Subcomponents of Networking Services B RIP Listener 2 Simple TCP IP Services Universal Plug and Play DOMB 0 0 MB Description Total disk space required Space available on disk Allows your computer to discover and control Universal Plug and Play devices 0 0 MB 260 8 MB UPnP 8 5 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch 8 4 Using UPnP in Windows XP Example This appendix shows you how to use the UPnP feature in Windows XP You must already have UPnP installed in Windows XP and UPnP activated on the ZyXEL device Make sure the computer is connected to a LAN port of the ZyXEL device Turn on your computer and the ZyXEL device Auto discover Your UPnP enabled Network Device Step 16 Click start and Control Panel Double click Network Connections Network Connections An icon displays under Internet Gateway Step 17 Right click the icon and select Properties File Edit View Favorites Tools Advanced Help Q sox Q B JO search E Folders E Address Network Connections _ Internet Gateway Network Tasks E Create anew connection Set up a home or small office network Disable this network device Disable LANorH Status 2 Create Sho
211. xt 2 10 Hardware Installation amp Initial Setup Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Step 2 Fill in the required fields Refer to the table shown next for more information about these fields Menu 1 General Setup System Name Domain Name Edit Dynamic DNS No Press ENTER to Confirm or ESC to Cancel Figure 2 7 Menu 1 General Setup Table 2 5 General Setup Menu Field FIELD DESCRIPTION EXAMPLE System Name Choose a descriptive name for identification purposes It is P314 PLUS recommended you enter your computer s Computer name in this field This name can be up to 30 alphanumeric characters long Spaces are not allowed but dashes and underscores _ are accepted Domain Name Enter the domain name if you know it here If you leave this field zyxel com tw blank the ISP may assign a domain name via DHCP You can go to menu 24 8 and type sys domainname to see the current domain name used by your gateway If you want to clear this field just press the SPACE BAR The domain name entered by you is given priority over the ISP assigned domain name Edit Dynamic Press the SPACE BAR to select Yes or No default Select Yes to No DNS configure Menu 1 1 Configure Dynamic DNS discussed next When you have completed this menu press ENTER at the prompt Press ENTER to Confirm to save your configuration or press ESC at
212. y Press the SPACE BAR to toggle between the 7 different Local options The log facility allows you to log the message to different files in the server Please refer to your UNIX manual for more detail Types CDR Call Detail Record CDR logs all data phone line activity if set to Yes Packet triggered The first 48 bytes or octets and protocol type of the triggering packet is sent to the UNIX syslog server when this field is set to Yes Filter log No filters are logged when this field is set to No Filters with the individual filter Log Filter field set to Yes menu 21 x x are logged when this field is set to Yes PPP log PPP events are logged when this field is set to Yes When finished viewing press ESC or ENTER to exit Your Prestige sends five types of syslog messages Some examples not P314 PLUS specific of these syslog messages with their message formats are shown next 1 CDR CDR Message Format SdcmdSyslogSend SYSLOG_CDR SYSLOG_INFO String String board xx line xx channel xx call xx str board the hardware board ID line the WAN ID in a board Channel channel ID within the WAN call the call reference number which starts from 1 and increments by 1 for each new call str C01 Outgoing Call dev xx ch xx dev device No ch channel No L02 Tunnel Connected L2TP C02 OutCall Connected xxxx means connected speed xxxxx means Remote Call Number L02 Call Terminated C02 Call Te
213. y default settings in the menus such as password DHCP Setup TCP IP Setup etc It arrives from ZyXEL with a rom filename extension Once you have customized the Prestige s settings they can be saved back to your computer under a filename of your choosing ZyNOS ZyXEL Network Operating System sometimes referred to as the ras file is the system firmware and has a bin filename extension With many ftp and tftp clients the filenames are similar to those seen next ftp gt put firmware bin ras This is a sample ftp session showing the transfer of the computer file firmware bin to the Prestige ftp gt get rom 0 config cfg This is a sample ftp session saving the current configuration to the computer file config cfg If your t ftp client does not allow you to have a destination filename different than the source you will need to rename them as the Prestige only recognizes rom 0 and ras Be sure you keep unaltered copies of both files for later use Firmware and Configuration Maintenance 12 1 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch The following table is a summary Please note that the internal filename refers to the filename on the Prestige and the external filename refers to the filename not on the Prestige that is on your computer local network or ftp site and so the name but not the extension will vary After uploading new firmware see the ZyNOS F W Version field in Menu 24
214. y time Starting XMODEM download Figure 12 4 System Maintenance Starting Xmodem Download Screen Step 3 Run the HyperTerminal program by clicking Transfer then Receive File as shown in the following screen Type a location for storing Receive File the configuration file or click Place received file in the following folder C Product contig ron Browse to look for one Use receiving protocol Choose the Xmodem protocol Figure 12 5 Backup Configuration Example Step 4 After a successful backup you will see the following screen Press any key to return to the SMT menu Firmware and Configuration Maintenance 12 7 Prestige 314 PLUS Broadband Sharing Gateway with 4 Port Switch Backup Configuration completed OK Hit any key to continue Figure 12 6 Successful Backup Confirmation Screen 12 3 Restore Configuration This section shows you how to restore a previously saved configuration Note that this function erases the current configuration before restoring a previous back up configuration please do not attempt to restore unless you have a backup configuration file stored on disk FTP and TFTP are the preferred methods for restoring your current computer configuration to your Prestige since FTP and TFTP are faster Please note that you must restart the system after the file transfer is complete WARNING DO NOT INTERUPT THE FILE TRANSFER PROCESS AS THIS MA
Download Pdf Manuals
Related Search