ARRIS 224762 Users Manual

Administrator’s Handbook

Embedded Software Version 7.7.4
Motorola Netopia Series Gateways
®
Administrator’s Handbook
Copyright
Copyright © 2007 by Motorola, Inc.
All rights reserved. No part of this publication may be reproduced in any form or by any means or used to make any derivative work (such as translation, transformation or adaptation) without written permission from Motorola, Inc.
Motorola reserves the right to revise this publication and to make changes in content from time to time without obligation on the part of Motorola to provide notification of such revision or change. Motorola provides this guide without warranty of any kind, either implied or expressed, including, but not limited to, the implied warranties of merchantability and fitness for a particular purpose. Motorola may make improvements or changes in the product(s) described in this manual at any time. MOTOROLA and the Stylized M Logo are registered in the US Patent & Trademark Office. Microsoft, Windows, Windows Me, and Windows NT are either trademarks or registered trademarks of Microsoft Corporation in the U.S and/or other countries. Macintosh is a registered trademark of Apple, Inc. Firefox is a registered trademark of the Mozilla Foundation. All other product or service names are the property of their respective owners.
Motorola, Inc. 6001 Shellmound Street Emeryville, CA 94608 U.S.A.
Part Number
6161244-00-01
Copyright Acknowledgments
Because Motorola has included certain software source code in this product, Motorola includes the following text required by the respective copyright holders:
Portions of this software are based in part on the work of the following:
Copyright (c) 1998-2005 The OpenSSL Project. All rights reserved. Redistribution and use in source and binary forms, with or without modification, are permitted provided that the
following conditions are met:
1. Redistributions of source code must retain the above copyright notice, this list of conditions and the following disclaimer.
2. Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the following disclaimer in the documentation and/or other materials provided with the distribution.
3. All advertising materials mentioning features or use of this software must display the following acknowledgment: “This product includes software developed by the OpenSSL Project for use in the OpenSSL Toolkit.
(http://www.openssl.org/)”
4. The names “OpenSSL Toolkit” and “OpenSSL Project” must not be used to endorse or promote products derived from this software without prior written permission. For written permission, please contact openssl­core@openssl.org.
5. Products derived from this software may not be called “OpenSSL” nor may “OpenSSL” appear in their names without prior written permission of the OpenSSL Project.
6. Redistributions of any form whatsoever must retain the following acknowledgment: “This product includes software developed by the OpenSSL Project for use in the OpenSSL Toolkit (http://www.openssl.org/)” THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY EXPRESSED OR IMPLIED
WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
This product includes cryptographic software written by Eric Young (eay@cryptsoft.com). This product includes software written by Tim Hudson (tjh@cryptsoft.com). Original SSLeay License /Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) All rights reserved. This package is an SSL implementation written by Eric Young (eay@cryptsoft.com). The implementation was written so as to conform with Netscape’s SSL. This library is free for commercial and non-commercial use as long as the following conditions are adhered to. The
following conditions apply to all code found in this distribution, be it the RC4, RSA, lhash, DES, etc., code; not just the SSL code. The SSL documentation included with this distribution is covered by the same copyright terms except that the holder is Tim Hudson (tjh@cryptsoft.com).
Copyright remains Eric Young's, and as such any Copyright notices in the code are not to be removed. If this package is used in a product, Eric Young should be given attribution as the author of the parts of the library used. This can be in the form of a textual message at program startup or in documentation (online or textual) provided with the package.
Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met:
1. Redistributions of source code must retain the copyright notice, this list of conditions and the following disclaimer.
2. Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the following disclaimer in the documentation and/or other materials provided with the distribution.
3. All advertising materials mentioning features or use of this software must display the following acknowledgement:
“This product includes cryptographic software written by Eric Young (eay@cryptsoft.com)” The word 'cryptographic' can be left out if the routines from the library being used are not cryptographic
related :-).
4. If you include any Windows specific code (or a derivative thereof) from the apps directory (application code) you must include an acknowledgement:
“This product includes software written by Tim Hudson (tjh@cryptsoft.com)” THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND ANY EXPRESS OR IMPLIED
WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
The licence and distribution terms for any publicly available version or derivative of this code cannot be changed. i.e. this code cannot simply be copied and put under another distribution licence [including the GNU Public Licence.]
Portions of this software are based in part on the work of the following:
Copyright (C) 1995, 1996, 1997, and 1998 WIDE Project. All rights reserved. Redistribution and use in source and binary forms, with or without modification, are permitted provided that the
following conditions are met:
1. Redistributions of source code must retain the above copyright notice, this list of conditions and the following disclaimer.
2. Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the following disclaimer in the documentation and/or other materials provided with the distribution.
3. Neither the name of the project nor the names of its contributors may be used to endorse or promote products derived from this software without specific prior written permission.
THIS SOFTWARE IS PROVIDED BY THE PROJECT AND CONTRIBUTORS ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE PROJECT OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
Portions of this software are based in part on the work of the following:
Copyright (C) 1990, RSA Data Security, Inc. All rights reserved. <<RSA Data Security, Inc. MD5 Message-Digest Algorithm>> License to copy and use this software is granted provided that it is identified as the “RSA Data Security, Inc.
MD5 Message Digest Algorithm” in all material mentioning or referencing this software or this function. License is also granted to make and use derivative works provided that such works are identified as “derived
from the RSA Data Security, Inc. MD5 Message-Digest Algorithm” in all material mentioning or referencing the derived work.
<<RSA Data Security, Inc. MD4 Message-Digest Algorithm>> License to copy and use this software is granted provided that it is identified as the “RSA Data Security, Inc.
MD4 Message Digest Algorithm” in all material mentioning or referencing this software or this function. License is also granted to make and use derivative works provided that such works are identified as “derived
from the RSA Data Security, Inc. MD4 Message-Digest Algorithm” in all material mentioning or referencing the derived work.
Administrator’s Handbook
Portions of this software are based in part on the work of the following:
Portions of this software are based in part on the work of the following:
RSA Data Security, Inc. makes no representations concerning either the merchantability of this software or the suitability of this software for any particular purpose. It is provided “as is” without express or implied warranty of any kind.
These notices must be retained in any copies of any part of this documentation and/or software.
Copyright (c) 1989 Carnegie Mellon University. All rights reserved. Redistribution and use in source and binary forms are permitted provided that the above copyright notice and this
paragraph are duplicated in all such forms and that any documentation, advertising materials, and other materials related to such distribution and use acknowledge that the software was developed by Carnegie Mellon University. The name of the University may not be used to endorse or promote products derived from this software without specific prior written permission.
THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED WARRANTIES OF MERCHANTIBILITY AND FITNESS FOR A PARTICULAR PURPOSE.
Copyright 2000, 2001 Shane Kerr. All rights reserved. Redistribution and use in source and binary forms, with or without modification, are permitted provided that the
following conditions are met:
1. Redistributions of source code must retain the above copyright notice, this list of conditions and the following disclaimer.
2. Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the following disclaimer in the documentation and/or other materials provided with the distribution.
THIS SOFTWARE IS PROVIDED BY THE AUTHOR(S) ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

Table of Contents

CHAPTER 1
CHAPTER 2
Introduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13
What’s New in 7.7.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13
About Motorola Netopia® Documentation . . . . . . . . . . . . . . . . 15
Intended Audience . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15
Documentation Conventions . . . . . . . . . . . . . . . . . . . . . . . . . . 15
General. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15
Internal Web Interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 16
Command Line Interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 16
Organization . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 17
A Word About Example Screens . . . . . . . . . . . . . . . . . . . . . . . 17
Basic Mode Setup . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 19
Important Safety Instructions . . . . . . . . . . . . . . . . . . . . . . . . . . 20
POWER SUPPLY INSTALLATION. . . . . . . . . . . . . . . . . . . . . . . . . . . . 20
TELECOMMUNICATION INSTALLATION . . . . . . . . . . . . . . . . . . . . . . 20
PRODUCT VENTILATION . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 20
Wichtige Sicherheitshinweise . . . . . . . . . . . . . . . . . . . . . . . . . 21
NETZTEIL INSTALLIEREN . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 21
INSTALLATION DER TELEKOMMUNIKATION . . . . . . . . . . . . . . . . . . 21
Setting up the Motorola Netopia® Gateway . . . . . . . . . . . . . . 22
Microsoft Windows: . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 22
Macintosh MacOS 8 or higher or Mac OS X: . . . . . . . . . . . . . . . . 24
Configuring the Motorola Netopia® Gateway . . . . . . . . . . . . . 25
MiAVo VDSL and Ethernet WAN models Quickstart . . . . . . . . . . . . . . 25
PPPoE Quickstart. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 27
Set up the Motorola Netopia® Pocket Gateway. . . . . . . . . . . . . . . . . . 28
Motorola Netopia® Gateway Status Indicator Lights . . . . . . . . 30
Home Page - Basic Mode . . . . . . . . . . . . . . . . . . . . . . . . . . . . 31
Manage My Account. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 33
Status Details . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 34
Enable Remote Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 35
Expert Mode. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 36
Update Firmware . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 37
Factory Reset. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 38
CHAPTER 3
Expert Mode . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 39
Accessing the Expert Web Interface . . . . . . . . . . . . . . . . . . . . 39
Open the Web Connection. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 39
Home Page - Expert Mode. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 41
5
Administrator’s Handbook
Home Page - Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 41
Toolbar . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 43
Navigating the Web Interface . . . . . . . . . . . . . . . . . . . . . . . . . 43
Breadcrumb Trail . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 43
Restart . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 44
Alert Symbol. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 45
Help . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 46
Configure . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 47
Quickstart . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 47
How to Use the Quickstart Page . . . . . . . . . . . . . . . . . . . . . . . . . 47
Setup Your Gateway using a PPP Connection . . . . . . . . . . . . . . 47
LAN . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 49
Wireless . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 53
Privacy . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 54
Advanced . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 56
About Closed System Mode . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 57
WPA Version Allowed . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 59
Multiple SSIDs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 59
WiFi Multimedia . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 62
Wireless MAC Authorization. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 63
Use RADIUS Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 65
WAN. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 67
PPP over Ethernet interface. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 67
Advanced: . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 69
Ethernet WAN interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 70
WAN Ethernet and VDSL Gateways. . . . . . . . . . . . . . . . . . . . . . . 73
ADSL Gateways . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 73
Advanced . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 78
IP Static Routes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 79
IP Static ARP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 81
Pinholes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 82
Configure Specific Pinholes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 82
Planning for Your Pinholes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 82
Example: A LAN Requiring Three Pinholes . . . . . . . . . . . . . . . . . 82
Pinhole Configuration Procedure . . . . . . . . . . . . . . . . . . . . . . . . . 84
IPMaps . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 87
Configure the IPMaps Feature . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 87
FAQs for the IPMaps Feature . . . . . . . . . . . . . . . . . . . . . . . . . . . . 87
What are IPMaps and how are they used? . . . . . . . . . . . . . . . . . 87
What types of servers are supported by IPMaps? . . . . . . . . . . . . 87
Can I use IPMaps with my PPPoE or PPPoA connection? . . . . . 87
Will IPMaps allow IP addresses from different subnets to be assigned to my Gate-
way? . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 87
IPMaps Block Diagram . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 88
Default Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 89
Configure a Default Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 89
Typical Network Diagram . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 89
NAT Combination Application . . . . . . . . . . . . . . . . . . . . . . . . . . . 90
IP-Passthrough . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 90
A restriction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 91
Differentiated Services . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 92
DNS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 95
DHCP Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 96
RADIUS Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 97
6
SNMP. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 98
IGMP (Internet Group Management Protocol) . . . . . . . . . . . . . . . . . . 100
UPnP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 102
LAN Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 103
Ethernet Bridge . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 104
Configuring for Bridge Mode . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 105
VLAN . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 107
Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 107
Ethernet Switching/Policy Setup . . . . . . . . . . . . . . . . . . . . . . . . . . . . 108
Example . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 116
VoIP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 120
System . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 124
Syslog Parameters. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 125
Log Event Messages . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 126
Internal Servers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 129
Software Hosting . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 130
List of Supported Games and Software . . . . . . . . . . . . . . . . . . . 131
Rename a User(PC). . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 132
Backup . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 133
Manual options . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 133
Automatic options . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 134
Ethernet MAC Override . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 136
Clear Options . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 137
Time Zone . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 138
Security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 139
Passwords . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 140
Create and Change Passwords . . . . . . . . . . . . . . . . . . . . . . . . . 140
Firewall. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 142
Use a Motorola Netopia® Firewall . . . . . . . . . . . . . . . . . . . . . . . 142
BreakWater Basic Firewall . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 142
Configuring for a BreakWater Setting . . . . . . . . . . . . . . . . . . . . . 142
TIPS for making your BreakWater Basic Firewall Selection . . . 143
Basic Firewall Background . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 143
IPSec . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 146
SafeHarbour IPSec VPN . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 147
Configuring a SafeHarbour VPN. . . . . . . . . . . . . . . . . . . . . . . . . 148
Parameter Descriptions. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 151
Stateful Inspection . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 154
Stateful Inspection Firewall installation procedure . . . . . . . . . . . . . . . 154
Exposed Addresses . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 155
Stateful Inspection Options . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 157
Open Ports in Default Stateful Inspection Installation . . . . . . . . . . . . 157
Firewall Tutorial . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 158
General firewall terms . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 158
Basic IP packet components . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 158
Basic protocol types . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 158
Firewall design rules. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 159
Firewall Logic . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 159
Implied rules . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 160
Example filter set page . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 160
Filter basics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 161
Example network. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 161
Example filters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 161
Example 1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 161
Example 2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 162
7
Administrator’s Handbook
Example 3 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 162
Example 4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 162
Example 5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 162
Packet Filter . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 163
What’s a filter and what’s a filter set?. . . . . . . . . . . . . . . . . . . . . . . . . 163
How filter sets work . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 164
Filter priority . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 164
How individual filters work . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 165
A filtering rule . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 165
Parts of a filter. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 165
Port numbers. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 165
Port number comparisons. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 166
Other filter attributes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 166
Putting the parts together . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 167
Filtering example #1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 167
Filtering example #2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 169
Design guidelines. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 169
An approach to using filters. . . . . . . . . . . . . . . . . . . . . . . . . . . . . 170
Working with IP Filters and Filter Sets . . . . . . . . . . . . . . . . . . 171
Adding a filter set . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 171
Adding filters to a filter set . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 172
Viewing filters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 175
Modifying filters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 175
Deleting filters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 175
Moving filters. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 175
Deleting a filter set . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 175
Associating a Filter Set with an Interface . . . . . . . . . . . . . . . 176
Policy-based Routing using Filtersets . . . . . . . . . . . . . . . . . . 177
TOS field matching. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 177
Security Log . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 179
Using the Security Monitoring Log . . . . . . . . . . . . . . . . . . . . . . . 179
Timestamp Background . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 181
Install . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 182
Install Software. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 183
Updating Your Gateway’s Motorola Netopia® Firmware Version 183
Step 1: Required Files . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 183
Step 2: Motorola Netopia® firmware Image File . . . . . . . . . . . . . . . . 184
Install Key. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 187
Use Motorola Netopia® Software Feature Keys . . . . . . . . . . . . . . . . 187
Obtaining Software Feature Keys . . . . . . . . . . . . . . . . . . . . . . . . 187
Procedure - Install a New Feature Key File . . . . . . . . . . . . . . . . 187
To check your installed features: . . . . . . . . . . . . . . . . . . . . . . . . 189
Install Certificate. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 190
CHAPTER 4
8
Basic Troubleshooting . . . . . . . . . . . . . . . . . . . . . . . . 193
Status Indicator Lights . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 194
LED Function Summary Matrix . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 204
Factory Reset Switch . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 206
CHAPTER 5
CHAPTER 6
Advanced Troubleshooting . . . . . . . . . . . . . . . . . . . . . 207
Home Page . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 208
Expert Mode. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 210
System Status . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 211
Ports: Ethernet . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 212
Ports: DSL . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 213
IP: Interfaces . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 214
DSL: Circuit Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 215
System Log: Entire. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 216
Diagnostics. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 217
Network Tools . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 218
Command Line Interface . . . . . . . . . . . . . . . . . . . . . . 223
Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 224
Starting and Ending a CLI Session . . . . . . . . . . . . . . . . . . . . 226
Logging In. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 226
Ending a CLI Session. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 226
Saving Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 226
Using the CLI Help Facility . . . . . . . . . . . . . . . . . . . . . . . . . . 226
About SHELL Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . 227
SHELL Prompt . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 227
SHELL Command Shortcuts . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 227
SHELL Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 228
Common Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 228
WAN Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 239
About CONFIG Commands . . . . . . . . . . . . . . . . . . . . . . . . . . 240
CONFIG Mode Prompt. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 240
Navigating the CONFIG Hierarchy. . . . . . . . . . . . . . . . . . . . . . . . . . . 240
Entering Commands in CONFIG Mode . . . . . . . . . . . . . . . . . . . . . . . 241
Guidelines: CONFIG Commands. . . . . . . . . . . . . . . . . . . . . . . . . . . . 241
Displaying Current Gateway Settings. . . . . . . . . . . . . . . . . . . . . . . . . 242
Step Mode: A CLI Configuration Technique . . . . . . . . . . . . . . . . . . . . 242
Validating Your Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 242
CONFIG Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 243
Remote ATA Configuration Commands . . . . . . . . . . . . . . . . . . . . . . . 243
DSL Commands. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 245
ATM Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 245
Bridging Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 246
Common Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 247
DHCP Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 248
Common Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 248
DHCP Generic Options. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 249
DHCP Option Filtering. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 252
Example . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 253
DMT Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 254
DSL Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 254
Domain Name System Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 255
Common Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 255
Dynamic DNS Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 256
IGMP Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 257
9
Administrator’s Handbook
IP Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 259
Common Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 259
ARP Timeout Settings. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 259
DSL Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 259
Ethernet LAN Settings. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 261
Additional subnets. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 262
Default IP Gateway Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . 263
IP-over-PPP Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 263
Static ARP Settings. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 266
IGMP Forwarding . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 266
IPsec Passthrough . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 266
IP Prioritization . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 266
Differentiated Services (DiffServ) . . . . . . . . . . . . . . . . . . . . . . . . 267
Packet Mapping Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . 269
Queue Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 271
Basic Queue . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 272
Weighted Fair Queue . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 273
Priority Queue . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 274
Funnel Queue . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 275
Interface Queue Assignment. . . . . . . . . . . . . . . . . . . . . . . . . . . . 275
SIP Passthrough . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 276
RTSP Passthrough . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 276
Static Route Settings. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 276
IPMaps Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 277
Network Address Translation (NAT) Default Settings. . . . . . . . . . . . . 278
Network Address Translation (NAT) Pinhole Settings . . . . . . . . . . . . 278
PPPoE /PPPoA Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 279
Configuring Basic PPP Settings . . . . . . . . . . . . . . . . . . . . . . . . . 279
Configuring Port Authentication . . . . . . . . . . . . . . . . . . . . . . . . . 281
PPPoE with IPoE Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 282
Ethernet WAN platforms . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 282
ADSL platforms. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 283
Ethernet Port Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 283
802.3ah Ethernet OAM Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . 284
Command Line Interface Preference Settings . . . . . . . . . . . . . . . . . . 285
Port Renumbering Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 286
Security Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 287
Firewall Settings (for BreakWater Firewall). . . . . . . . . . . . . . . . . 287
SafeHarbour IPSec Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . 287
Internet Key Exchange (IKE) Settings . . . . . . . . . . . . . . . . . . . . 291
Stateful Inspection. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 292
Example: . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 293
Packet Filtering Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 294
Example: . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 296
SNMP Settings. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 297
SNMP Notify Type Settings. . . . . . . . . . . . . . . . . . . . . . . . . . . . . 297
System Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 298
Syslog. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 301
Default syslog installation procedure . . . . . . . . . . . . . . . . . . . . . 302
Wireless Settings (supported models) . . . . . . . . . . . . . . . . . . . . . . . . 303
Wireless Multi-media (WMM) Settings . . . . . . . . . . . . . . . . . . . . 306
Wireless Privacy Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 308
Wireless MAC Address Authorization Settings . . . . . . . . . . . . . . 309
RADIUS Server Settings. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 310
VLAN Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 311
Example 1: . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 312
10
Example 2: . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 313
VoIP settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 316
Example . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 320
UPnP settings. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 321
DSL Forum settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 321
TR-064 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 321
TR-069 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 322
Backup IP Gateway Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 323
VDSL Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 325
VDSL Parameter Defaults. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 325
VDSL Parameters Accepted Values . . . . . . . . . . . . . . . . . . . . . . 327
CHAPTER 7
CHAPTER 8
Glossary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 331
-----A----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 331
-----B----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 332
-----C----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 332
-----D----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 333
-----E----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 334
-----F----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 335
-----H----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 335
-----I----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 336
-----K----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 336
-----L----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 336
-----M----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 337
-----N----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 337
-----P----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 338
-----Q----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 338
-----R----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 339
-----S----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 339
-----T----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 340
-----U----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 341
-----V----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 341
-----W-----. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 341
-----X----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 341
Technical Specifications and Safety Information . . . . 343
Description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 343
Dimensions: . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 343
Communications interfaces: . . . . . . . . . . . . . . . . . . . . . . . . . . . . 343
Power requirements . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 343
Environment . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 343
Operating temperature: . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 343
Storage temperature: . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 343
Relative storage humidity: . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 343
Software and protocols. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 343
Software media: . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 343
Routing: . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 343
WAN support: . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 343
Security: . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 343
Management/configuration methods: . . . . . . . . . . . . . . . . . . . . . 344
Diagnostics: . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 344
Agency approvals . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 344
11
Administrator’s Handbook
North America . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 344
International . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 344
Regulatory notices . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 344
European Community. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 344
Manufacturer’s Declaration of Conformance . . . . . . . . . . . . . 344
United States . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 345
Service requirements . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 345
Canada . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 345
Declaration for Canadian users. . . . . . . . . . . . . . . . . . . . . . . . . . 345
Caution . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 346
Important Safety Instructions . . . . . . . . . . . . . . . . . . . . . . . . . 346
Australian Safety Information . . . . . . . . . . . . . . . . . . . . . . . . . . . 346
Caution . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 346
Caution . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 346
Telecommunication installation cautions . . . . . . . . . . . . . . . . . . 346
47 CFR Part 68 Information . . . . . . . . . . . . . . . . . . . . . . . . . 347
FCC Requirements. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 347
FCC Statements. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 347
Electrical Safety Advisory . . . . . . . . . . . . . . . . . . . . . . . . . . . 348
Copyright Acknowledgments . . . . . . . . . . . . . . . . . . . . . . . . . 348
CHAPTER 9
Overview of Major Capabilities . . . . . . . . . . . . . . . . . . 351
Wide Area Network Termination . . . . . . . . . . . . . . . . . . . . . . 351
PPPoE/PPPoA (Point-to-Point Protocol over Ethernet/ATM). . . . . . . 351
Instant-On PPP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 352
Simplified Local Area Network Setup . . . . . . . . . . . . . . . . . . 352
DHCP (Dynamic Host Configuration Protocol) Server . . . . . . . . . . . . 352
DNS Proxy . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 353
Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 353
Embedded Web Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 353
Diagnostics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 353
Security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 354
Remote Access Control . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 354
Password Protection . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 354
Network Address Translation (NAT) . . . . . . . . . . . . . . . . . . . . . . 354
Motorola Netopia® Advanced Features for NAT . . . . . . . . . . . . 355
Internal Servers. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 355
Pinholes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 356
Default Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 356
Combination NAT Bypass Configuration . . . . . . . . . . . . . . . . . . 356
IP-Passthrough . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 356
VPN IPSec Pass Through. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 357
VPN IPSec Tunnel Termination . . . . . . . . . . . . . . . . . . . . . . . . . 357
Stateful Inspection Firewall . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 358
SSL Certificate Support. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 358
VLANs. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 358
Index . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 359
12

CHAPTER 1 Introduction

What’s New in 7.7.4

New in Motorola Netopia® Embedded Software Version 7.7.4 are the following features:
Internet Group Management Protocol (IGMP) Version 3 support. See
IGMP (Internet Group Management Protocol)” on page 100.
TR-101 Support:
• Concurrent suppor t for PPPoE and IPoE connections on the WAN. See
• Multiple LAN IP Subnet support. See “LAN” on page 49.
• Additional DHCP range support. These ranges are associated with the additional LAN subnets on a 1-to-1 basis.
• DHCP option filtering support. Allows DHCP option data to be used to determine the desired DHCP address range. See “DHCP Option Filtering” on page 252.
• Support for additional WAN settings to control multicast forwarding as well as if
0.0.0.0 is used as the source address for IGMP packets. See “Advanced:” on page 69.
• Support for “unnumbered” interfaces. For IP interfaces, this allows the address to be set to 0 and the DHCP client also to be disabled. See page 71.
PPPoE/DHCP Autosensing. See
Wireless Multimedia Mode (WMM) support. See
Firewall: ClearSailing is automatically enabled on all 2200-Series ADSL2+ platforms. (Explicit excep-
tions: bonded and VDSL2, 3341, and 3387WG.) See TR-069 Remote device management is automatically enabled by default for 2200-Series Gateways.
(Explicit exceptions: bonded and VDSL2, 3341, 3387WG). See Voice-over-IP (VoIP) Support using Session Initiation Protocol (SIP) for suppor ted models. See
page 120 and VoIP CLI “VoIP settings” on page 316.
Support of VLAN ID 0 on the Ethernet WAN and support for setting p-bits on a segment/port basis; inter­VLAN groups. See
Backup IP Gateway Support. See
page 323.
WAN” on page 67.
WAN” on page 67.
WiFi Multimedia” on page 62.
Firewall” on page 142.
TR-069” on page 322.
VoIP” on
VLAN” on page 107 and CLI “VLAN Settings” on page 311.
Backup” on page 133 and CLI “Backup IP Gateway Settings” on
Corresponding commands have been added to the Command Line Inter face (CLI). See “Command Line
Interface” on page 223.
Reset WAN port and wireless counter and CLI command to display individual Ethernet port statistics.
See
reset enet [ all ]” on page 231 and “show enet [ all ]” on page 233.
CLI for Motorola Netopia® ATA Remote Management. See
Remote ATA Configuration Commands” on page 243.
13
Administrator’s Handbook
Provide Bandwidth Management using Weighted Fair Queueing.
See
Queue Configuration” on page 271.
New CLI command for disabling Dying Gasp. See “DMT Settings” on page 254.
Ethernet in the First Mile Operations Administration and Maintenance (802.3ah EFM OAM) Support. See
802.3ah Ethernet OAM Settings” on page 284.
IP multicast to layer 2 unicast mapping. See “IGMP Settings” on page 257.
Real Time Streaming Protocol (RTSP) ALG suppor t for Video-on-Demand (VoD) Services. See “RTSP
Passthrough” on page 276.
14

About Motorola Netopia® Documentation

NOTE:
This guide describes the wide variety of features and functionality of the Motorola Netopia® Gateway, when used in Router mode. The Motorola Netopia® Gateway may also be delivered in Bridge mode. In Bridge mode, the Gateway acts as a pass-through device and allows the work­stations on your LAN to have public addresses directly on the Internet.
Motorola, Inc. provides a suite of technical information for its 2200-, 3300- and 7000-series family of intel­ligent enterprise and consumer Gateways. It consists of:
Administrator’s Handbook
Dedicated Quickstart guides
Specific White Papers
The documents are available in electronic form as Por table Document Format (PDF) files. They are viewed (and printed) from Adobe Acrobat Reader, Exchange, or any other application that supports PDF files.
They are downloadable from Motorola’s Netopia website:
http://www.netopia.com/

Intended Audience

This guide is targeted primarily to residential ser vice subscribers.
Expert Mode sections may also be of use to the support staffs of broadband ser vice providers and advanced residential service subscribers.
See “Expert Mode” on page 39.

Documentation Conventions

General

This manual uses the following conventions to present information:
Convention (Typeface) Description
bold italic monospaced
bold italic sans serif
Menu commands
Web GUI page links and button names
15
Administrator’s Handbook
terminal
bold terminal
Italic Italic type indicates the complete titles of manuals.
Computer display text
User-entered text

Internal Web Interface

Convention (Graphics) Description
blue rectangle or line
solid rounded rectangle with an arrow
Denotes an “excerpt” from a Web page or the visual truncation of a Web page
Denotes an area of emphasis on a Web page

Command Line Interface

Syntax conventions for the Netopia Gateway command line interface are as follows:
Convention Description
straight ([ ]) brackets in cmd line Optional command arguments curly ({ }) brackets, with values sep-
arated with vertical bars (|).
bold terminal type
Alternative values for an argument are presented in curly ({ }) brackets, with values separated with vertical bars (|).
User-entered text
face
italic terminal
Variables for which you supply your own values
type face
16

Organization

This guide consists of nine chapters, including a glossary, and an index. It is organized as follows:
Chapter 1, “Introduction” — Describes the Motorola Netopia® document suite, the purpose of, the
audience for, and structure of this guide. It gives a table of conventions.
Chapter 2, “Basic Mode Setup” — Describes how to get up and running with your Motorola Netopia®
Gateway.
Chapter 3, “Expert Mode” — Focuses on the “Expert Mode” Web-based user inter face for advanced
users. It is organized in the same way as the Web UI is organized. As you go through each section, func­tions and procedures are discussed in detail.
Chapter 4, “Basic Troubleshooting” — Gives some simple suggestions for troubleshooting problems
with your Gateway’s initial configuration.
Chapter 5, “Advanced Troubleshooting” — Gives suggestions and descriptions of expert tools to use
to troubleshoot your Gateway’s configuration.
Chapter 6, “Command Line Interface” — Describes all the current text-based commands for both the
SHELL and CONFIG modes. A summary table and individual command examples for each mode is pro­vided.
Chapter 7, “Glossary”
Chapter 8, “Technical Specifications and Safety Information”
Chapter 9, “Overview of Major Capabilities” — Presents a product description summar y.
Index

A Word About Example Screens

This manual contains many example screen illustrations. Since Motorola Netopia® 2200-, 3300- and 7000-Series Gateways offer a wide variety of features and functionality, the example screens shown may not appear exactly the same for your particular Gateway or setup as they appear in this manual. The exam­ple screens are for illustrative and explanator y purposes, and should not be construed to represent your own unique environment.
17
Administrator’s Handbook
18

CHAPTER 2 Basic Mode Setup

Most users will find that the basic Quickstart configuration is all that they ever need to use. This section may be all that you ever need to configure and use your Motorola Netopia® Gateway. The following instruc­tions cover installation in Router Mode.
This section covers:
“Important Safety Instructions” on page 20
“Wichtige Sicherheitshinweise” on page 21 (German)
“Setting up the Motorola Netopia® Gateway” on page 22
“Configuring the Motorola Netopia® Gateway” on page 25
“Motorola Netopia® Gateway Status Indicator Lights” on page 30
“Home Page - Basic Mode” on page 31
19
Administrator’s Handbook

Important Safety Instructions

POWER SUPPLY INSTALLATION

Connect the power supply cord to the power jack on the Motorola Netopia® Gateway. Plug the power supply into an appropriate electrical outlet.
CAUTION:
Depending on the power supply provided with the product, either the direct plug-in power sup­ply blades, power supply cord plug or the appliance coupler serves as the mains power discon­nect. It is important that the direct plug-in power supply, socket-outlet or appliance coupler be located so it is readily accessible.
(Sweden) Apparaten skall anslutas till jordat uttag när den ansluts till ett nätverk (Norway) Apparatet må kun tilkoples jordet stikkontakt. USB-powered models: For Use with Listed I.T.E. Only

TELECOMMUNICATION INSTALLATION

When using your telephone equipment, basic safety precautions should always be followed to reduce the risk of fire, electric shock and injury to persons, including the following:
Do not use this product near water, for example, near a bathtub, wash bowl, kitchen sink or laundry tub,
in a wet basement or near a swimming pool.
Avoid using a telephone (other than a cordless type) during an electrical storm. There may be a remote
risk of electrical shock from lightning.
Do not use the telephone to report a gas leak in the vicinity of the leak.

PRODUCT VENTILATION

The Motorola Netopia® Gateway is intended for use in a consumer's home. Ambient temperatures around this product should not exceed 104°F (40°C). It should not be used in locations exposed to outside heat radiation or trapping of its own heat. The product should have at least one inch of clearance on all sides except the bottom when properly installed and should not be placed inside tightly enclosed spaces unless proper ventilation is provided.
SAVE THESE INSTRUCTIONS
20

Wichtige Sicherheitshinweise

NETZTEIL INSTALLIEREN

Verbinden Sie das Kabel vom Netzteil mit dem Power-Anschluss an dem Motorola Netopia® Gateway. Stecken Sie dann das Netzteil in eine Netzsteckdose.
Achtung:
Abhängig von dem mit dem Produkt gelieferten Netzteil, entweder die direkten Stecker­netzgeräte, Stecker vom Netzkabel oder der Gerätekoppler dienen als Hauptspannungsunter­brechung. Es ist wichtig, dass das Steckernetzgerät, Steckdose oder Gerätekoppler frei zugänglich sind.
(Sweden) Apparaten skall anslutas till jordat uttag när den ansluts till ett nätverk (Norway) Apparatet må kun tilkoples jordet stikkontakt. USB-powered models: For Use with Listed I.T.E. Only

INSTALLATION DER TELEKOMMUNIKATION

Wenn Ihre Telefonausrüstung ver wendet wird, sollten grundlegende Sicherheitsanweisungen immer befolgt werden, um die Gefahr eines Feuers, eines elektrischen Schlages und die Verletzung von Personen, zu ver­ringern. Beachten Sie diese weiteren Hinweise:
Benutzen Sie dieses Produkt nicht in Wassernähe wie z.B. nahe einer Badewanne, Waschschüssel,
Küchenspüle, in einem nassen Keller oder an einem Swimmingpool.
Vermeiden Sie das Telefonieren (gilt nicht für schnurlose Telefone) während eines Gewitters. Es besteht
die Gefahr eines elektrischen Schlages durch einen Blitz.
Nicht das Telefon benutzen um eine Gasleckstelle zu Melden, wenn Sie sich in der Nähe der Leckstelle
befinden.
Bewahren Sie diese Anweisungen auf
21
Administrator’s Handbook

Setting up the Motorola Netopia® Gateway

Refer to your Quickstart Guide for instructions on how to connect your Motorola Netopia® gateway to your power source, PC or local area network, and your Internet access point, whether it is a dedicated DSL outlet or a DSL or cable modem. Different Motorola Netopia® Gateway models are supplied for any of these con­nections. Be sure to enable Dynamic Addressing on your PC. Per form the following:
Microsoft Windows:
Step 1. Navigate to the TCP/IP Properties Control Panel.
a. Some Windows versions follow a path like this:
b. Some Windows versions follow a path like this:
Start menu -> Settings -> Control Panel -> Network (or Network and Dial-up Connections -> Local Area Connection -> Properties) ­> TCP/IP [your_network_card] or Internet Protocol [TCP/IP]
-> Properties
Start menu -> Con­trol Panel -> Net­work and Internet Connections -> Net­work Connections -> Local Area Connec­tion -> Properties -> Internet Protocol [TCP/IP] -> Proper­ties
22
c. Windows Vista is set to obtain an IP address automatically by default. You may not need to configure it at all.
To check, open the Networking Control Panel and select Internet Protocol Version 4 (TCP/IPv4). Click the Properties button.
The Internet Protocol Version 4 (TCP/IPv4) Properties window should appear as shown.
If not, select the radio buttons shown above, and click the OK button.
23
Administrator’s Handbook
Macintosh MacOS 8 or higher or Mac OS X:
Step 1. Access the TCP/IP or Network control panel.
a. MacOS follows a path like this:
b. Mac OS X follows a path like this:
Apple Menu -> Control Pan­els -> TCP/IP
Control Panel
Apple Menu -> System Preferences -> Network
Then go to Step 2.
Step 2. Select Built-in Ethernet
Step 3. Select Configure Using DHCP
Step 4. Close and Save, if prompted.
Proceed to
Configuring the Motorola Netopia® Gateway” on page 25.
24
Configuring the Motorola Netopia® Gateway
1. Run your Web browser application, such as Firefox or Microsoft Internet Explorer, from
the computer connected to the Motorola Netopia® Gateway.
Enter http://192.168.1.254 in the Location text box. The Admin Password page appears.
Access to your Motorola Netopia® device can be controlled through two access control accounts, Admin or User.
The Admin, or administrative user, performs all configuration, management or maintenance operations
on the Gateway.
The User account provides monitor capability only.
A user may NOT change the configuration, perform upgrades or invoke maintenance functions. For the security of your connection, an Admin password must be set on the Motorola Netopia® unit.

MiAVo VDSL and Ethernet WAN models Quickstart

The browser then displays the Quickstart page.
2. Click the
Connect to the Internet
button.
25
Administrator’s Handbook
Once a connection is established, your browser is redirected to your ser vice provider’s home page or a registration page on the Internet.
NOTE:
For MiAVo Series (3397GP) models, skip the rest of this section.
Congratulations! Your configuration is complete.
You can skip to
Home Page - Basic Mode” on page 31.
26

PPPoE Quickstart

For a PPPoE connection, your browser will display a different series of web pages:
The browser then displays the Quickstart web page.
3. Enter the username and password supplied by your Internet Service Provider. Click the
Connect to the Internet
Once you enter your username and password here, you will no longer need to enter them whenever you access the Internet. The Motorola Netopia® Gateway stores this information and automatically connects you to the Internet.
The Gateway displays a message while it configures itself.
4. When the connection succeeds, your browser will display a success message.
button.
Once a connection is established, your browser is redirected to your ser vice provider’s home page or a registration page on the Internet.
5. Congratulations! Your installation is complete. You can now surf to your favorite Web
sites by typing an URL in your browser’s location box or by selecting one of your favor­ite Internet bookmarks.
27
Administrator’s Handbook

Set up the Motorola Netopia® Pocket Gateway

Your Motorola Netopia® 3342N/3352N Pocket Gateway comes with its own installation wizard.
If you are using Windows 98, insert the CD.
If you are using Windows XP, Windows 2000, Windows NT or Windows Vista, you don’t even need the
CD.
Follow these easy setup steps:
1. Plug the Motorola Netopia® Pocket Gateway into a USB port on your PC.
2. Whether you use the CD (Windows 98) or not (all other Windows versions), on Windows-based
PCs, the Motorola Netopia® Installation Wizard will launch automatically.
The Motorola Netopia® Installation Wizard will assist you to configure your PC to work with the Motorola Netopia® pocket Gateway. Follow the on-screen instructions.
To proceed, click the
Next
button.
The Motorola Netopia® Installation Wizard per forms a series of checks on your system and then will install USB drivers for your connection.
3. Place the Motorola Netopia® Pocket Gateway near your PC so you can see it easily.
Make sure any cables are kept away from power cords, fluorescent lighting fixtures, and other sources of electrical interference.
4. When the wizard prompts you, connect the RJ-11 Telephone Cable from the DSL port on the
Motorola Netopia® Pocket Gateway to the ADSL phone jack.
The DSL indicator light should blink for up to two minutes and then come on solid green once the device is connected to your computer.
phone jack
RJ-11 phone cable
USB port
Netopia Pocket Gateway/
28
The Wizard displays a success message when the settings are configured.
5. The Motorola Netopia® Installation Wizard will then launch your web browser and display the
Welcome
page where you configure your Motorola Netopia® Pocket Gateway.
29
Administrator’s Handbook

Motorola Netopia® Gateway Status Indicator Lights

Colored LEDs on your Motorola Netopia® Gateway indicate the status of various por t activity. Different Gateway models have different ports for your connections and different indicator LEDs. The Quickstar t Guide accompanying your Motorola Netopia® Gateway describes the behavior of the various indicator LEDs.
Example status indicator lights
Status Indicator Lights (LEDs)
netopia
30
Loading...
+ 338 hidden pages