User ManualTable of ContentsUser’s Guide1About This User's Guide3Document Conventions4Safety Warnings6Contents Overview9Table of Contents11List of Figures21List of Tables29Introduction33Getting to Know Your ZyXEL Device351.1 Overview351.2 Applications for the ZyXEL Device351.2.1 3G WAN Application351.2.2 Secure Broadband Internet Access via Cable or DSL Modem361.3 Ways to Manage the ZyXEL Device361.4 Configuring Your ZyXEL Device’s Security Features371.4.1 Control Access to Your Device371.4.2 Wireless Security371.4.3 Firewall371.4.4 NAT381.4.5 UPnP381.5 Maintaining Your ZyXEL Device381.5.1 Front Panel Lights39Introducing the Web Configurator432.1 Web Configurator Overview432.2 Accessing the ZyXEL Device Web Configurator432.3 Resetting the ZyXEL Device452.3.1 Procedure To Use The Reset Button452.3.2 Uploading a Configuration File Via Console Port452.4 Navigating the ZyXEL Device Web Configurator462.4.1 Title Bar462.4.2 Main Window472.4.3 HOME Screen472.4.4 Navigation Panel522.4.5 Port Statistics542.4.6 Show Statistics: Line Chart552.4.7 DHCP Table Screen56Wizard Setup593.1 Wizard Setup Overview593.2 Internet Access593.2.1 ISP Parameters593.2.2 Internet Access Wizard Setup Complete64Tutorials654.1 DMZ Overview654.2 DMZ Setup Example664.2.1 Basic Setup664.2.2 Advanced Setup684.3 Firewall Rule Setup694.4 Setting Up a VoIP Phone with H.323724.5 Using NAT with Multiple Public IP Addresses774.5.1 Example Parameters and Scenario774.5.2 Configuring the WAN Connection with a Static IP Address784.5.3 Public IP Address Mapping824.5.4 Forwarding Traffic from the WAN to a Local Computer874.5.5 Allow WAN-to-LAN Traffic through the Firewall894.5.6 Testing the Connections964.6 Using NAT with Multiple Game Players96Network99LAN Screens1015.1 LAN, WAN and the ZyXEL Device1015.2 IP Address and Subnet Mask1015.2.1 Private IP Addresses1025.3 DHCP1025.3.1 IP Pool Setup1035.4 RIP Setup1035.5 Multicast1035.6 WINS1045.7 LAN1045.8 LAN Static DHCP1065.9 LAN IP Alias1075.10 LAN Port Roles109WAN Screens1116.1 WAN Overview1116.2 Multiple WAN1116.3 TCP/IP Priority (Metric)1126.4 WAN General1126.5 WAN IP Address Assignment1156.6 DNS Server Address Assignment1166.7 WAN MAC Address1166.8 WAN 11176.8.1 WAN Ethernet Encapsulation1176.8.2 PPPoE Encapsulation1206.8.3 PPTP Encapsulation1236.9 3G (WAN 2)1266.10 Traffic Redirect1336.11 Configuring Traffic Redirect134DMZ Screens1357.1 DMZ1357.2 Configuring DMZ1357.3 DMZ Static DHCP1387.4 DMZ IP Alias1397.5 DMZ Public IP Address Example1417.6 DMZ Private and Public IP Address Example1417.7 DMZ Port Roles142Wireless145Wi-Fi1478.1 Wi-Fi Introduction1478.2 Wireless Security Overview1488.2.1 SSID1488.2.2 MAC Address Filter1488.2.3 User Authentication1498.2.4 Encryption1498.2.5 Additional Installation Requirements for Using 802.1x1518.3 Wireless Card1518.3.1 SSID Profile1538.4 Configuring Wireless Security1548.4.1 No Security1568.4.2 Static WEP1568.4.3 IEEE 802.1x Only1578.4.4 IEEE 802.1x + Static WEP1588.4.5 WPA, WPA2, WPA2-MIX1608.4.6 WPA-PSK, WPA2-PSK, WPA2-PSK-MIX1618.5 MAC Filter162Security165Firewall1679.1 Firewall Overview1679.2 Packet Direction Matrix1689.3 Packet Direction Examples1699.4 Security Considerations1709.5 Firewall Rules Example1719.6 Asymmetrical Routes1739.6.1 Asymmetrical Routes and IP Alias1739.7 Firewall Default Rule1739.8 Firewall Rule Summary1759.8.1 Firewall Edit Rule1779.9 Anti-Probing1809.10 Firewall Thresholds1819.10.1 Threshold Values1829.11 Threshold Screen1829.12 Service1849.12.1 Firewall Edit Custom Service1859.13 My Service Firewall Rule Example186Authentication Server19110.1 Authentication Server Overview19110.2 Local User Database19110.3 RADIUS193Certificates19511.1 Certificates Overview19511.1.1 Advantages of Certificates19611.2 Self-signed Certificates19611.3 Verifying a Certificate19611.3.1 Checking the Fingerprint of a Certificate on Your Computer19611.4 Configuration Summary19711.5 My Certificates19811.6 My Certificate Details20011.7 My Certificate Export20211.7.1 Certificate File Export Formats20211.8 My Certificate Import20311.8.1 Certificate File Formats20311.9 My Certificate Create20511.10 Trusted CAs20911.11 Trusted CA Details21111.12 Trusted CA Import21411.13 Trusted Remote Hosts21511.14 Trusted Remote Hosts Import21711.15 Trusted Remote Host Certificate Details21811.16 Directory Servers22011.17 Directory Server Add or Edit221Advanced223Network Address Translation (NAT)22512.1 NAT Overview22512.1.1 NAT Definitions22512.1.2 What NAT Does22612.1.3 How NAT Works22612.1.4 NAT Application22712.1.5 Port Restricted Cone NAT22812.1.6 NAT Mapping Types22912.2 Using NAT23012.2.1 SUA (Single User Account) Versus NAT23012.3 NAT Overview Screen23012.4 NAT Address Mapping23212.4.1 What NAT Does23212.4.2 NAT Address Mapping Edit23412.5 Port Forwarding23512.5.1 Default Server IP Address23512.5.2 Port Forwarding: Services and Port Numbers23612.5.3 Configuring Servers Behind Port Forwarding (Example)23612.5.4 NAT and Multiple WAN23712.5.5 Port Translation23712.6 Port Forwarding Screen23812.7 Port Triggering240Static Route24313.1 IP Static Route24313.2 IP Static Route24413.2.1 IP Static Route Edit245DNS24714.1 DNS Overview24714.2 DNS Server Address Assignment24714.3 DNS Servers24714.4 Address Record24814.4.1 DNS Wildcard24814.5 Name Server Record24814.5.1 Private DNS Server24814.6 System Screen24814.6.1 Adding an Address Record25014.6.2 Inserting a Name Server Record25114.7 DNS Cache25214.8 Configure DNS Cache25214.9 Configuring DNS DHCP25414.10 Dynamic DNS25514.10.1 DYNDNS Wildcard25514.10.2 High Availability25614.11 Configuring Dynamic DNS256Remote Management25915.1 Remote Management Overview25915.1.1 Remote Management Limitations26015.1.2 System Timeout26015.2 WWW (HTTP and HTTPS)26015.3 WWW26115.4 HTTPS Example26315.4.1 Internet Explorer Warning Messages26315.4.2 Netscape Navigator Warning Messages26315.4.3 Avoiding the Browser Warning Messages26415.4.4 Login Screen26515.5 SSH26715.6 How SSH Works26715.7 SSH Implementation on the ZyXEL Device26815.7.1 Requirements for Using SSH26815.8 Configuring SSH26915.9 Secure Telnet Using SSH Examples27015.9.1 Example 1: Microsoft Windows27015.9.2 Example 2: Linux27015.10 Secure FTP Using SSH Example27115.11 Telnet27215.12 Configuring TELNET27215.13 FTP27315.14 SNMP27415.14.1 Supported MIBs27515.14.2 SNMP Traps27615.14.3 REMOTE MANAGEMENT: SNMP27615.15 DNS27715.16 Introducing Vantage CNM27815.17 Configuring CNM27815.17.1 Additional Configuration for Vantage CNM280UPnP28116.1 Universal Plug and Play Overview28116.1.1 How Do I Know If I'm Using UPnP?28116.1.2 NAT Traversal28116.1.3 Cautions with UPnP28116.1.4 UPnP and ZyXEL28216.2 Configuring UPnP28216.3 Displaying UPnP Port Mapping28316.4 Installing UPnP in Windows Example28416.4.1 Installing UPnP in Windows Me28516.4.2 Installing UPnP in Windows XP28616.5 Using UPnP in Windows XP Example28616.5.1 Auto-discover Your UPnP-enabled Network Device28716.5.2 Web Configurator Easy Access288Custom Application29117.1 Custom Application29117.2 Custom Application Configuration291ALG Screen29318.1 ALG Introduction29318.1.1 ALG and NAT29318.1.2 ALG and the Firewall29318.1.3 ALG and Multiple WAN29418.2 FTP29418.3 H.32329418.4 RTP29418.4.1 H.323 ALG Details29418.5 SIP29518.5.1 STUN29518.5.2 SIP ALG Details29618.5.3 SIP Signaling Session Timeout29618.5.4 SIP Audio Session Timeout29618.6 ALG Screen296Logs and Maintenance299Logs Screens30119.1 Configuring View Log30119.2 Log Description Example30219.2.1 About the Certificate Not Trusted Log30319.3 Configuring Log Settings30419.4 Configuring Reports30719.4.1 Viewing Web Site Hits30919.4.2 Viewing Host IP Address30919.4.3 Viewing Protocol/Port31019.4.4 System Reports Specifications31219.5 Log Descriptions31219.6 Syslog Logs323Maintenance32520.1 Maintenance Overview32520.2 General Setup and System Name32520.2.1 General Setup32520.3 Configuring Password32620.4 Time and Date32720.5 Pre-defined NTP Time Server Pools33020.5.1 Resetting the Time33020.5.2 Time Server Synchronization33020.6 F/W Upload Screen33120.7 Backup and Restore33320.7.1 Backup Configuration33420.7.2 Restore Configuration33420.7.3 Back to Factory Defaults33520.8 Restart Screen336Troubleshooting and Specifications337Troubleshooting33921.1 Power, Hardware Connections, and LEDs33921.2 ZyXEL Device Access and Login34021.3 Internet Access34221.4 3G Connection343Product Specifications34522.1 General ZyXEL Device Specifications34522.2 Wall-mounting Instructions34722.3 Power Adaptor Specifications349Appendices and Index351Pop-up Windows, JavaScripts and Java Permissions353Setting up Your Computer’s IP Address361IP Addresses and Subnetting377Common Services385Wireless LANs389Importing Certificates403Legal Information415Customer Support419Index425Size: 12 MBPages: 430Language: EnglishOpen manual