Motorola 2200, 3342, 3352N, 7000, 3352 User Manual

0 (0)

Administrator’s

Handbook

Embedded Software Version 7.7.4

Motorola Netopia® 2200, 3300 and 7000

Series Gateways

Administrator’s Handbook

Copyright

Copyright © 2007 by Motorola, Inc.

All rights reserved. No part of this publication may be reproduced in any form or by any means or used to make any derivative work (such as translation, transformation or adaptation) without written permission from Motorola, Inc.

Motorola reserves the right to revise this publication and to make changes in content from time to time without obligation on the part of Motorola to provide notification of such revision or change. Motorola provides this guide without warranty of any kind, either implied or expressed, including, but not limited to, the implied warranties of merchantability and fitness for a particular purpose. Motorola may make improvements or changes in the product(s) described in this manual at any time. MOTOROLA and the Stylized M Logo are registered in the US Patent & Trademark Office. Microsoft, Windows, Windows Me, and Windows NT are either trademarks or registered trademarks of Microsoft Corporation in the U.S and/or other countries. Macintosh is a registered trademark of Apple, Inc. Firefox is a registered trademark of the Mozilla Foundation. All other product or service names are the property of their respective owners.

Motorola, Inc.

6001 Shellmound Street

Emeryville, CA 94608

U.S.A.

Part Number

6161244-00-01

Copyright Acknowledgments

Because Motorola has included certain software source code in this product, Motorola includes the following text required by the respective copyright holders:

Portions of this software are based in part on the work of the following:

Copyright (c) 1998-2005 The OpenSSL Project. All rights reserved.

Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met:

1.Redistributions of source code must retain the above copyright notice, this list of conditions and the following disclaimer.

2.Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the following disclaimer in the documentation and/or other materials provided with the distribution.

3.All advertising materials mentioning features or use of this software must display the following acknowledgment:

“This product includes software developed by the OpenSSL Project for use in the OpenSSL Toolkit. (http://www.openssl.org/)”

4.The names “OpenSSL Toolkit” and “OpenSSL Project” must not be used to endorse or promote products derived from this software without prior written permission. For written permission, please contact opensslcore@openssl.org.

5.Products derived from this software may not be called “OpenSSL” nor may “OpenSSL” appear in their names without prior written permission of the OpenSSL Project.

6.Redistributions of any form whatsoever must retain the following acknowledgment:

“This product includes software developed by the OpenSSL Project for use in the OpenSSL Toolkit (http://www.openssl.org/)”

THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

This product includes cryptographic software written by Eric Young (eay@cryptsoft.com). This product includes software written by Tim Hudson (tjh@cryptsoft.com).

Original SSLeay License

/Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) All rights reserved.

This package is an SSL implementation written by Eric Young (eay@cryptsoft.com). The implementation was written so as to conform with Netscape’s SSL.

This library is free for commercial and non-commercial use as long as the following conditions are adhered to. The following conditions apply to all code found in this distribution, be it the RC4, RSA, lhash, DES, etc., code; not just the SSL code. The SSL documentation included with this distribution is covered by the same copyright terms except that the holder is Tim Hudson (tjh@cryptsoft.com).

Copyright remains Eric Young's, and as such any Copyright notices in the code are not to be removed. If this package is used in a product, Eric Young should be given attribution as the author of the parts of the library used. This can be in the form of a textual message at program startup or in documentation (online or textual) provided with the package.

Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met:

1.Redistributions of source code must retain the copyright notice, this list of conditions and the following disclaimer.

2.Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the following disclaimer in the documentation and/or other materials provided with the distribution.

3.All advertising materials mentioning features or use of this software must display the following acknowledgement:

“This product includes cryptographic software written by Eric Young (eay@cryptsoft.com)”

The word 'cryptographic' can be left out if the routines from the library being used are not cryptographic related :-).

4. If you include any Windows specific code (or a derivative thereof) from the apps directory (application code) you must include an acknowledgement:

“This product includes software written by Tim Hudson (tjh@cryptsoft.com)”

THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

The licence and distribution terms for any publicly available version or derivative of this code cannot be changed. i.e. this code cannot simply be copied and put under another distribution licence [including the GNU Public Licence.]

Portions of this software are based in part on the work of the following:

Copyright (C) 1995, 1996, 1997, and 1998 WIDE Project. All rights reserved.

Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met:

1.Redistributions of source code must retain the above copyright notice, this list of conditions and the following disclaimer.

2.Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the following disclaimer in the documentation and/or other materials provided with the distribution.

3.Neither the name of the project nor the names of its contributors may be used to endorse or promote products derived from this software without specific prior written permission.

THIS SOFTWARE IS PROVIDED BY THE PROJECT AND CONTRIBUTORS ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE PROJECT OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

Portions of this software are based in part on the work of the following:

Copyright (C) 1990, RSA Data Security, Inc. All rights reserved. <<RSA Data Security, Inc. MD5 Message-Digest Algorithm>>

License to copy and use this software is granted provided that it is identified as the “RSA Data Security, Inc. MD5 Message Digest Algorithm” in all material mentioning or referencing this software or this function.

License is also granted to make and use derivative works provided that such works are identified as “derived from the RSA Data Security, Inc. MD5 Message-Digest Algorithm” in all material mentioning or referencing the derived work.

<<RSA Data Security, Inc. MD4 Message-Digest Algorithm>>

License to copy and use this software is granted provided that it is identified as the “RSA Data Security, Inc. MD4 Message Digest Algorithm” in all material mentioning or referencing this software or this function.

License is also granted to make and use derivative works provided that such works are identified as “derived from the RSA Data Security, Inc. MD4 Message-Digest Algorithm” in all material mentioning or referencing the derived work.

Administrator’s Handbook

RSA Data Security, Inc. makes no representations concerning either the merchantability of this software or the suitability of this software for any particular purpose. It is provided “as is” without express or implied warranty of any kind.

These notices must be retained in any copies of any part of this documentation and/or software.

Portions of this software are based in part on the work of the following:

Copyright (c) 1989 Carnegie Mellon University. All rights reserved.

Redistribution and use in source and binary forms are permitted provided that the above copyright notice and this paragraph are duplicated in all such forms and that any documentation, advertising materials, and other materials related to such distribution and use acknowledge that the software was developed by Carnegie Mellon University. The name of the University may not be used to endorse or promote products derived from this software without specific prior written permission.

THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED WARRANTIES OF MERCHANTIBILITY AND FITNESS FOR A PARTICULAR PURPOSE.

Portions of this software are based in part on the work of the following:

Copyright 2000, 2001 Shane Kerr. All rights reserved.

Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met:

1. Redistributions of source code must retain the above copyright notice, this list of conditions and the following disclaimer.

2. Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the following disclaimer in the documentation and/or other materials provided with the distribution.

THIS SOFTWARE IS PROVIDED BY THE AUTHOR(S) ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

Table of Contents

CHAPTER 1 Introduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13

What’s New in 7.7.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13

About Motorola Netopia® Documentation . . . . . . . . . . . . . . . . 15

Intended Audience . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15

Documentation Conventions . . . . . . . . . . . . . . . . . . . . . . . . . . 15

General. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15

Internal Web Interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 16

Command Line Interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 16

Organization . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

17

A Word About Example Screens . . . . . . . . . . . . . . . . . . . . . . .

17

CHAPTER 2 Basic Mode Setup . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 19

Important Safety Instructions . . . . . . . . . . . . . . . . . . . . . . . . . . 20

POWER SUPPLY INSTALLATION. . . . . . . . . . . . . . . . . . . . . . . . . . . . 20

TELECOMMUNICATION INSTALLATION . . . . . . . . . . . . . . . . . . . . . . 20

PRODUCT VENTILATION . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 20

Wichtige Sicherheitshinweise . . . . . . . . . . . . . . . . . . . . . . . . . 21

NETZTEIL INSTALLIEREN . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 21

INSTALLATION DER TELEKOMMUNIKATION . . . . . . . . . . . . . . . . . . 21

Setting up the Motorola Netopia® Gateway . . . . . . . . . . . . . .

22

Microsoft Windows: . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

22

Macintosh MacOS 8 or higher or Mac OS X: . . . . . . . . . . . . . . . .

24

Configuring the Motorola Netopia® Gateway . . . . . . . . . . . . .

25

MiAVo VDSL and Ethernet WAN models Quickstart . . . . . . . . . . . . . . 25

PPPoE Quickstart. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 27

Set up the Motorola Netopia® Pocket Gateway. . . . . . . . . . . . . . . . . . 28

Motorola Netopia® Gateway Status Indicator Lights . . . . . . . .

30

Home Page - Basic Mode . . . . . . . . . . . . . . . . . . . . . . . . . . . . 31

Manage My Account. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 33

Status Details . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 34

Enable Remote Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 35

Expert Mode. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 36

Update Firmware . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 37

Factory Reset. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 38

CHAPTER 3 ExpertMode . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 39

Accessing the Expert Web Interface . . . . . . . . . . . . . . . . . . . .

39

Open the Web Connection. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 39

Home Page - Expert Mode. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 41

5

Administrator’s Handbook

Home Page - Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 41

Toolbar . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

43

Navigating the Web Interface . . . . . . . . . . . . . . . . . . . . . . . . .

43

Breadcrumb Trail . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

43

Restart . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

44

Alert Symbol. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

45

Help . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

46

Configure . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

47

Quickstart . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 47 How to Use the Quickstart Page . . . . . . . . . . . . . . . . . . . . . . . . . 47 Setup Your Gateway using a PPP Connection . . . . . . . . . . . . . . 47 LAN . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 49 Wireless . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 53 Privacy . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 54 Advanced . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 56 About Closed System Mode . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 57 WPA Version Allowed . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 59 Multiple SSIDs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 59 WiFi Multimedia . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 62 Wireless MAC Authorization. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 63 Use RADIUS Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 65 WAN. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 67 PPP over Ethernet interface. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 67 Advanced: . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 69 Ethernet WAN interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 70 WAN Ethernet and VDSL Gateways. . . . . . . . . . . . . . . . . . . . . . . 73 ADSL Gateways . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 73 Advanced . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 78 IP Static Routes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 79 IP Static ARP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 81 Pinholes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 82 Configure Specific Pinholes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 82 Planning for Your Pinholes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 82 Example: A LAN Requiring Three Pinholes . . . . . . . . . . . . . . . . . 82 Pinhole Configuration Procedure . . . . . . . . . . . . . . . . . . . . . . . . . 84 IPMaps . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 87 Configure the IPMaps Feature . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 87 FAQs for the IPMaps Feature . . . . . . . . . . . . . . . . . . . . . . . . . . . . 87 What are IPMaps and how are they used? . . . . . . . . . . . . . . . . . 87 What types of servers are supported by IPMaps? . . . . . . . . . . . . 87 Can I use IPMaps with my PPPoE or PPPoA connection? . . . . . 87

Will IPMaps allow IP addresses from different subnets to be assigned to my Gateway? . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 87

IPMaps Block Diagram . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 88 Default Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 89 Configure a Default Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 89 Typical Network Diagram . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 89 NAT Combination Application . . . . . . . . . . . . . . . . . . . . . . . . . . . 90 IP-Passthrough . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 90 A restriction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 91

Differentiated Services . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 92 DNS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 95 DHCP Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 96 RADIUS Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 97

6

SNMP. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 98 IGMP (Internet Group Management Protocol) . . . . . . . . . . . . . . . . . . 100 UPnP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 102 LAN Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 103 Ethernet Bridge . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 104 Configuring for Bridge Mode . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 105 VLAN . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 107 Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 107 Ethernet Switching/Policy Setup . . . . . . . . . . . . . . . . . . . . . . . . . . . . 108

Example . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 116 VoIP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 120 System . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 124 Syslog Parameters. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 125 Log Event Messages . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 126 Internal Servers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 129 Software Hosting . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 130

List of Supported Games and Software . . . . . . . . . . . . . . . . . . . 131 Rename a User(PC). . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 132 Backup . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 133 Manual options . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 133 Automatic options . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 134 Ethernet MAC Override . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 136 Clear Options . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 137 Time Zone . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 138

Security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 139

Passwords . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 140 Create and Change Passwords . . . . . . . . . . . . . . . . . . . . . . . . . 140 Firewall. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 142 Use a Motorola Netopia® Firewall . . . . . . . . . . . . . . . . . . . . . . . 142 BreakWater Basic Firewall . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 142 Configuring for a BreakWater Setting . . . . . . . . . . . . . . . . . . . . . 142 TIPS for making your BreakWater Basic Firewall Selection . . . 143 Basic Firewall Background . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 143 IPSec . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 146 SafeHarbour IPSec VPN . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 147 Configuring a SafeHarbour VPN. . . . . . . . . . . . . . . . . . . . . . . . . 148 Parameter Descriptions. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 151 Stateful Inspection . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 154 Stateful Inspection Firewall installation procedure . . . . . . . . . . . . . . . 154 Exposed Addresses . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 155 Stateful Inspection Options . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 157 Open Ports in Default Stateful Inspection Installation . . . . . . . . . . . . 157

Firewall Tutorial . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 158

General firewall terms . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 158 Basic IP packet components . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 158 Basic protocol types . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 158 Firewall design rules. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 159 Firewall Logic . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 159 Implied rules . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 160 Example filter set page . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 160 Filter basics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 161 Example network. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 161 Example filters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 161 Example 1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 161 Example 2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 162

7

Administrator’s Handbook

Example 3 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 162

Example 4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 162

Example 5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 162

Packet Filter . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 163

What’s a filter and what’s a filter set?. . . . . . . . . . . . . . . . . . . . . . . . . 163

How filter sets work . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 164

Filter priority . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 164

How individual filters work . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 165

A filtering rule . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 165

Parts of a filter. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 165

Port numbers. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 165

Port number comparisons. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 166

Other filter attributes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 166

Putting the parts together . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 167

Filtering example #1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 167

Filtering example #2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 169

Design guidelines. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 169

An approach to using filters. . . . . . . . . . . . . . . . . . . . . . . . . . . . . 170

Working with IP Filters and Filter Sets . . . . . . . . . . . . . . . . . .

171

Adding a filter set . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 171

Adding filters to a filter set . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 172

Viewing filters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 175

Modifying filters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 175

Deleting filters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 175

Moving filters. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 175

Deleting a filter set . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 175

Associating a Filter Set with an Interface . . . . . . . . . . . . . . .

176

Policy-based Routing using Filtersets . . . . . . . . . . . . . . . . . .

177

TOS field matching. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 177

Security Log . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 179

Using the Security Monitoring Log . . . . . . . . . . . . . . . . . . . . . . . 179

Timestamp Background . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 181

Install . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 182

Install Software. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 183

Updating Your Gateway’s Motorola Netopia® Firmware Version 183

Step 1: Required Files . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 183

Step 2: Motorola Netopia® firmware Image File . . . . . . . . . . . . . . . . 184

Install Key. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 187

Use Motorola Netopia® Software Feature Keys . . . . . . . . . . . . . . . . 187

Obtaining Software Feature Keys . . . . . . . . . . . . . . . . . . . . . . . . 187

Procedure - Install a New Feature Key File . . . . . . . . . . . . . . . . 187

To check your installed features: . . . . . . . . . . . . . . . . . . . . . . . . 189

Install Certificate. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 190

CHAPTER 4 Basic Troubleshooting . . . . . . . . . . . . . . . . . . . . . . . . 193

Status Indicator Lights . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 194

LED Function Summary Matrix . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 204

Factory Reset Switch . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 206

8

CHAPTER 5 AdvancedTroubleshooting . . . . . . . . . . . . . . . . . . . . . 207

Home Page . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 208

Expert Mode. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 210

System Status . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 211

Ports: Ethernet . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 212

Ports: DSL . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 213

IP: Interfaces . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 214

DSL: Circuit Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 215

System Log: Entire. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 216

Diagnostics. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 217

Network Tools . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 218

CHAPTER 6 Command Line Interface . . . . . . . . . . . . . . . . . . . . . .

223

Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

. 224

Starting and Ending a CLI Session . . . . . . . . . . . . . . . . . . . .

226

Logging In. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 226

Ending a CLI Session. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 226

Saving Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 226

Using the CLI Help Facility . . . . . . . . . . . . . . . . . . . . . . . . . . 226

About SHELL Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . 227

SHELL Prompt . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 227

SHELL Command Shortcuts . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 227

SHELL Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 228

Common Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 228

WAN Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 239

About CONFIG Commands . . . . . . . . . . . . . . . . . . . . . . . . . . 240

CONFIG Mode Prompt. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 240

Navigating the CONFIG Hierarchy. . . . . . . . . . . . . . . . . . . . . . . . . . . 240

Entering Commands in CONFIG Mode . . . . . . . . . . . . . . . . . . . . . . . 241

Guidelines: CONFIG Commands. . . . . . . . . . . . . . . . . . . . . . . . . . . . 241

Displaying Current Gateway Settings. . . . . . . . . . . . . . . . . . . . . . . . . 242

Step Mode: A CLI Configuration Technique . . . . . . . . . . . . . . . . . . . . 242

Validating Your Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 242

CONFIG Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 243

Remote ATA Configuration Commands . . . . . . . . . . . . . . . . . . . . . . . 243

DSL Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 245

ATM Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 245

Bridging Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 246

Common Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 247

DHCP Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 248

Common Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 248

DHCP Generic Options. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 249

DHCP Option Filtering. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 252

Example . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 253

DMT Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 254

DSL Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 254

Domain Name System Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 255

Common Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 255

Dynamic DNS Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 256

IGMP Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 257

9

Administrator’s Handbook

IP Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 259 Common Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 259 ARP Timeout Settings. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 259 DSL Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 259 Ethernet LAN Settings. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 261 Additional subnets. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 262 Default IP Gateway Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . 263 IP-over-PPP Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 263 Static ARP Settings. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 266 IGMP Forwarding . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 266 IPsec Passthrough . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 266 IP Prioritization . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 266 Differentiated Services (DiffServ) . . . . . . . . . . . . . . . . . . . . . . . . 267 Packet Mapping Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . 269

Queue Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 271 Basic Queue . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 272 Weighted Fair Queue . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 273 Priority Queue . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 274 Funnel Queue . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 275 Interface Queue Assignment. . . . . . . . . . . . . . . . . . . . . . . . . . . . 275 SIP Passthrough . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 276 RTSP Passthrough . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 276 Static Route Settings. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 276

IPMaps Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 277 Network Address Translation (NAT) Default Settings. . . . . . . . . . . . . 278 Network Address Translation (NAT) Pinhole Settings . . . . . . . . . . . . 278 PPPoE /PPPoA Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 279 Configuring Basic PPP Settings . . . . . . . . . . . . . . . . . . . . . . . . . 279 Configuring Port Authentication . . . . . . . . . . . . . . . . . . . . . . . . . 281 PPPoE with IPoE Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 282 Ethernet WAN platforms . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 282 ADSL platforms. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 283 Ethernet Port Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 283 802.3ah Ethernet OAM Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . 284 Command Line Interface Preference Settings . . . . . . . . . . . . . . . . . . 285 Port Renumbering Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 286 Security Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 287 Firewall Settings (for BreakWater Firewall). . . . . . . . . . . . . . . . . 287 SafeHarbour IPSec Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . 287 Internet Key Exchange (IKE) Settings . . . . . . . . . . . . . . . . . . . . 291 Stateful Inspection. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 292 Example: . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 293 Packet Filtering Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 294 Example: . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 296 SNMP Settings. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 297 SNMP Notify Type Settings. . . . . . . . . . . . . . . . . . . . . . . . . . . . . 297 System Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 298 Syslog. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 301 Default syslog installation procedure . . . . . . . . . . . . . . . . . . . . . 302 Wireless Settings (supported models) . . . . . . . . . . . . . . . . . . . . . . . . 303 Wireless Multi-media (WMM) Settings . . . . . . . . . . . . . . . . . . . . 306 Wireless Privacy Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 308 Wireless MAC Address Authorization Settings . . . . . . . . . . . . . . 309 RADIUS Server Settings. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 310 VLAN Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 311 Example 1: . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 312

10

Example 2: . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 313

VoIP settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 316

Example . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 320

UPnP settings. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 321

DSL Forum settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 321

TR-064 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 321

TR-069 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 322

Backup IP Gateway Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 323

VDSL Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 325

VDSL Parameter Defaults. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 325

VDSL Parameters Accepted Values . . . . . . . . . . . . . . . . . . . . . . 327

CHAPTER 7 Glossary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 331

-----A----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

. . . . . . . . 331

-----B----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

. . . . . . . . 332

-----C----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

. . . . . . . . 332

-----D----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

. . . . . . . . 333

-----E----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

. . . . . . . . 334

-----F----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

. . . . . . . . 335

-----H----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

. . . . . . . . 335

-----I----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

. . . . . . . . 336

-----K----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

. . . . . . . . 336

-----L----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

. . . . . . . . 336

-----M----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

. . . . . . . . 337

-----N----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

. . . . . . . . 337

-----P----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

. . . . . . . . 338

-----Q----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

. . . . . . . . 338

-----R----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

. . . . . . . . 339

-----S----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

. . . . . . . . 339

-----T----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

. . . . . . . . 340

-----U----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

. . . . . . . . 341

-----V----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

. . . . . . . . 341

-----W-----. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

. . . . . . . . 341

-----X----- . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

. . . . . . . . 341

CHAPTER 8 Technical Specifications and Safety Information

. . . . 343

Description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

. . . . . . . 343

Dimensions: . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

. . . . . . . . 343

Communications interfaces: . . . . . . . . . . . . . . . . . . . .

. . . . . . . . 343

Power requirements . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

. . . . . . . . 343

Environment . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

. . . . . . . . 343

Operating temperature: . . . . . . . . . . . . . . . . . . . . . . .

. . . . . . . . 343

Storage temperature: . . . . . . . . . . . . . . . . . . . . . . . . .

. . . . . . . . 343

Relative storage humidity: . . . . . . . . . . . . . . . . . . . . .

. . . . . . . . 343

Software and protocols. . . . . . . . . . . . . . . . . . . . . . . . . . . .

. . . . . . . . 343

Software media: . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

. . . . . . . . 343

Routing: . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

. . . . . . . . 343

WAN support: . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

. . . . . . . . 343

Security: . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

. . . . . . . . 343

Management/configuration methods: . . . . . . . . . . . . .

. . . . . . . . 344

Diagnostics: . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

. . . . . . . . 344

Agency approvals . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 344

11

Administrator’s Handbook

North America . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 344

International . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 344

Regulatory notices . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 344

European Community. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 344

Manufacturer’s Declaration of Conformance . . . . . . . . . . . . .

344

United States . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 345

Service requirements . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 345

Canada . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 345

Declaration for Canadian users. . . . . . . . . . . . . . . . . . . . . . . . . . 345

Caution . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 346

Important Safety Instructions . . . . . . . . . . . . . . . . . . . . . . . . . 346

Australian Safety Information . . . . . . . . . . . . . . . . . . . . . . . . . . . 346

Caution . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 346

Caution . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 346

Telecommunication installation cautions . . . . . . . . . . . . . . . . . . 346

47 CFR Part 68 Information . . . . . . . . . . . . . . . . . . . . . . . . . 347

FCC Requirements. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 347

FCC Statements. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 347

Electrical Safety Advisory . . . . . . . . . . . . . . . . . . . . . . . . . . . 348

Copyright Acknowledgments . . . . . . . . . . . . . . . . . . . . . . . . . 348

CHAPTER 9 Overview of Major Capabilities . . . . . . . . . . . . . . . . . . 351

Wide Area Network Termination . . . . . . . . . . . . . . . . . . . . . .

351

PPPoE/PPPoA (Point-to-Point Protocol over Ethernet/ATM). . . . . . . 351

Instant-On PPP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 352

Simplified Local Area Network Setup . . . . . . . . . . . . . . . . . .

352

DHCP (Dynamic Host Configuration Protocol) Server . . . . . . . . . . . . 352

DNS Proxy . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 353

Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 353

Embedded Web Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 353

Diagnostics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 353

Security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 354

Remote Access Control . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 354 Password Protection . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 354 Network Address Translation (NAT) . . . . . . . . . . . . . . . . . . . . . . 354 Motorola Netopia® Advanced Features for NAT . . . . . . . . . . . . 355 Internal Servers. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 355 Pinholes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 356 Default Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 356 Combination NAT Bypass Configuration . . . . . . . . . . . . . . . . . . 356 IP-Passthrough . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 356 VPN IPSec Pass Through. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 357 VPN IPSec Tunnel Termination . . . . . . . . . . . . . . . . . . . . . . . . . 357 Stateful Inspection Firewall . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 358 SSL Certificate Support. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 358 VLANs. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 358

Index . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 359

12

CHAPTER 1 Introduction

What’s New in 7.7.4

New in Motorola Netopia® Embedded Software Version 7.7.4 are the following features:

Internet Group Management Protocol (IGMP) Version 3 support. See “IGMP (Internet Group Management Protocol)” on page 100.

TR-101 Support:

Concurrent support for PPPoE and IPoE connections on the WAN. See “WAN” on page 67.

Multiple LAN IP Subnet support. See “LAN” on page 49.

Additional DHCP range support. These ranges are associated with the additional LAN subnets on a 1-to-1 basis.

DHCP option filtering support. Allows DHCP option data to be used to determine the desired DHCP address range. See “DHCP Option Filtering” on page 252.

Support for additional WAN settings to control multicast forwarding as well as if 0.0.0.0 is used as the source address for IGMP packets.

See “Advanced:” on page 69.

Support for “unnumbered” interfaces. For IP interfaces, this allows the address to be set to 0 and the DHCP client also to be disabled. See page 71.

PPPoE/DHCP Autosensing. See “WAN” on page 67.

Wireless Multimedia Mode (WMM) support. See “WiFi Multimedia” on page 62.

Firewall: ClearSailing is automatically enabled on all 2200-Series ADSL2+ platforms. (Explicit exceptions: bonded and VDSL2, 3341, and 3387WG.) See “Firewall” on page 142.

TR-069 Remote device management is automatically enabled by default for 2200-Series Gateways. (Explicit exceptions: bonded and VDSL2, 3341, 3387WG). See “TR-069” on page 322.

Voice-over-IP (VoIP) Support using Session Initiation Protocol (SIP) for supported models. See “VoIP” on page 120 and VoIP CLI “VoIP settings” on page 316.

Support of VLAN ID 0 on the Ethernet WAN and support for setting p-bits on a segment/port basis; interVLAN groups. See “VLAN” on page 107 and CLI “VLAN Settings” on page 311.

Backup IP Gateway Support. See “Backup” on page 133 and CLI “Backup IP Gateway Settings” on page 323.

Corresponding commands have been added to the Command Line Interface (CLI). See “Command Line Interface” on page 223.

Reset WAN port and wireless counter and CLI command to display individual Ethernet port statistics. See “reset enet [ all ]” on page 231 and “show enet [ all ]” on page 233.

CLI for Motorola Netopia® ATA Remote Management.

See “Remote ATA Configuration Commands” on page 243.

13

Administrator’s Handbook

Provide Bandwidth Management using Weighted Fair Queueing. See “Queue Configuration” on page 271.

New CLI command for disabling Dying Gasp. See “DMT Settings” on page 254.

Ethernet in the First Mile Operations Administration and Maintenance (802.3ah EFM OAM) Support. See “802.3ah Ethernet OAM Settings” on page 284.

IP multicast to layer 2 unicast mapping. See “IGMP Settings” on page 257.

Real Time Streaming Protocol (RTSP) ALG support for Video-on-Demand (VoD) Services. See “RTSP Passthrough” on page 276.

14

About Motorola Netopia® Documentation

NOTE:

This guide describes the wide variety of features and functionality of the Motorola Netopia® Gateway, when used in Router mode. The Motorola Netopia® Gateway may also be delivered in Bridge mode. In Bridge mode, the Gateway acts as a pass-through device and allows the workstations on your LAN to have public addresses directly on the Internet.

Motorola, Inc. provides a suite of technical information for its 2200-, 3300and 7000-series family of intelligent enterprise and consumer Gateways. It consists of:

Administrator’s Handbook

Dedicated Quickstart guides

Specific White Papers

The documents are available in electronic form as Portable Document Format (PDF) files. They are viewed (and printed) from Adobe Acrobat Reader, Exchange, or any other application that supports PDF files.

They are downloadable from Motorola’s Netopia website:

http://www.netopia.com/

Intended Audience

This guide is targeted primarily to residential service subscribers.

Expert Mode sections may also be of use to the support staffs of broadband service providers and advanced residential service subscribers.

See “Expert Mode” on page 39.

Documentation Conventions

General

This manual uses the following conventions to present information:

Convention (Typeface)

Description

 

 

bold italic

Menu commands

monospaced

 

bold italic sans serif

Web GUI page links and button names

15

Administrator’s Handbook

terminal

bold terminal

Italic

Internal Web Interface

Convention (Graphics)

blue rectangle or line

solid rounded rectangle with an arrow

Computer display text

User-entered text

Italic type indicates the complete titles of manuals.

Description

Denotes an “excerpt” from a Web page or the visual truncation of a Web page

Denotes an area of emphasis on a Web page

Command Line Interface

Syntax conventions for the Netopia Gateway command line interface are as follows:

Convention

Description

 

 

straight ([ ]) brackets in cmd line

curly ({ }) brackets, with values separated with vertical bars (|).

bold terminal type face

Optional command arguments

Alternative values for an argument are presented in curly ({ }) brackets, with values separated with vertical bars (|).

User-entered text

italic terminal type face

Variables for which you supply your own values

16

Organization

This guide consists of nine chapters, including a glossary, and an index. It is organized as follows:

Chapter 1, “Introduction” — Describes the Motorola Netopia® document suite, the purpose of, the audience for, and structure of this guide. It gives a table of conventions.

Chapter 2, “Basic Mode Setup” — Describes how to get up and running with your Motorola Netopia® Gateway.

Chapter 3, “Expert Mode” — Focuses on the “Expert Mode” Web-based user interface for advanced users. It is organized in the same way as the Web UI is organized. As you go through each section, functions and procedures are discussed in detail.

Chapter 4, “Basic Troubleshooting” — Gives some simple suggestions for troubleshooting problems with your Gateway’s initial configuration.

Chapter 5,“Advanced Troubleshooting” — Gives suggestions and descriptions of expert tools to use to troubleshoot your Gateway’s configuration.

Chapter 6, “Command Line Interface” — Describes all the current text-based commands for both the SHELL and CONFIG modes. A summary table and individual command examples for each mode is provided.

Chapter 7, “Glossary”

Chapter 8, “Technical Specifications and Safety Information”

Chapter 9, “Overview of Major Capabilities” — Presents a product description summary.

Index

A Word About Example Screens

This manual contains many example screen illustrations. Since Motorola Netopia® 2200-, 3300and 7000-Series Gateways offer a wide variety of features and functionality, the example screens shown may not appear exactly the same for your particular Gateway or setup as they appear in this manual. The example screens are for illustrative and explanatory purposes, and should not be construed to represent your own unique environment.

17

Administrator’s Handbook

18

CHAPTER 2 Basic Mode Setup

Most users will find that the basic Quickstart configuration is all that they ever need to use. This section may be all that you ever need to configure and use your Motorola Netopia® Gateway. The following instructions cover installation in Router Mode.

This section covers:

“Important Safety Instructions” on page 20

“Wichtige Sicherheitshinweise” on page 21 (German)

“Setting up the Motorola Netopia® Gateway” on page 22

“Configuring the Motorola Netopia® Gateway” on page 25

“Motorola Netopia® Gateway Status Indicator Lights” on page 30

“Home Page - Basic Mode” on page 31

19

Administrator’s Handbook

Important Safety Instructions

POWER SUPPLY INSTALLATION

Connect the power supply cord to the power jack on the Motorola Netopia® Gateway. Plug the power supply into an appropriate electrical outlet.

CAUTION:

Depending on the power supply provided with the product, either the direct plug-in power supply blades, power supply cord plug or the appliance coupler serves as the mains power disconnect. It is important that the direct plug-in power supply, socket-outlet or appliance coupler be located so it is readily accessible.

(Sweden) Apparaten skall anslutas till jordat uttag när den ansluts till ett nätverk (Norway) Apparatet må kun tilkoples jordet stikkontakt.

USB-powered models: For Use with Listed I.T.E. Only

TELECOMMUNICATION INSTALLATION

When using your telephone equipment, basic safety precautions should always be followed to reduce the risk of fire, electric shock and injury to persons, including the following:

Do not use this product near water, for example, near a bathtub, wash bowl, kitchen sink or laundry tub, in a wet basement or near a swimming pool.

Avoid using a telephone (other than a cordless type) during an electrical storm. There may be a remote risk of electrical shock from lightning.

Do not use the telephone to report a gas leak in the vicinity of the leak.

PRODUCT VENTILATION

The Motorola Netopia® Gateway is intended for use in a consumer's home. Ambient temperatures around this product should not exceed 104°F (40°C). It should not be used in locations exposed to outside heat radiation or trapping of its own heat. The product should have at least one inch of clearance on all sides except the bottom when properly installed and should not be placed inside tightly enclosed spaces unless proper ventilation is provided.

SAVE THESE INSTRUCTIONS

20

Wichtige Sicherheitshinweise

NETZTEIL INSTALLIEREN

Verbinden Sie das Kabel vom Netzteil mit dem Power-Anschluss an dem Motorola Netopia® Gateway. Stecken Sie dann das Netzteil in eine Netzsteckdose.

Achtung:

Abhängig von dem mit dem Produkt gelieferten Netzteil, entweder die direkten Steckernetzgeräte, Stecker vom Netzkabel oder der Gerätekoppler dienen als Hauptspannungsunterbrechung. Es ist wichtig, dass das Steckernetzgerät, Steckdose oder Gerätekoppler frei zugänglich sind.

(Sweden) Apparaten skall anslutas till jordat uttag när den ansluts till ett nätverk (Norway) Apparatet må kun tilkoples jordet stikkontakt.

USB-powered models: For Use with Listed I.T.E. Only

INSTALLATION DER TELEKOMMUNIKATION

Wenn Ihre Telefonausrüstung verwendet wird, sollten grundlegende Sicherheitsanweisungen immer befolgt werden, um die Gefahr eines Feuers, eines elektrischen Schlages und die Verletzung von Personen, zu verringern. Beachten Sie diese weiteren Hinweise:

Benutzen Sie dieses Produkt nicht in Wassernähe wie z.B. nahe einer Badewanne, Waschschüssel, Küchenspüle, in einem nassen Keller oder an einem Swimmingpool.

Vermeiden Sie das Telefonieren (gilt nicht für schnurlose Telefone) während eines Gewitters. Es besteht die Gefahr eines elektrischen Schlages durch einen Blitz.

Nicht das Telefon benutzen um eine Gasleckstelle zu Melden, wenn Sie sich in der Nähe der Leckstelle befinden.

Bewahren Sie diese Anweisungen auf

21

Administrator’s Handbook

Setting up the Motorola Netopia® Gateway

Refer to your Quickstart Guide for instructions on how to connect your Motorola Netopia® gateway to your power source, PC or local area network, and your Internet access point, whether it is a dedicated DSL outlet or a DSL or cable modem. Different Motorola Netopia® Gateway models are supplied for any of these connections. Be sure to enable Dynamic Addressing on your PC. Perform the following:

Microsoft Windows:

Step 1. Navigate to the TCP/IP Properties Control Panel.

a. Some Windows

Start menu -> Settings ->

versions follow a

Control Panel -> Network

path like this:

(or Network and Dial-up

 

Connections -> Local Area

 

Connection -> Properties) -

 

> TCP/IP

 

[your_network_card] or

 

Internet Protocol [TCP/IP]

 

-> Properties

b. Some Windows

Start menu -> Con-

versions follow a

trol Panel -> Net-

path like this:

work and Internet

 

Connections -> Net-

 

work Connections ->

 

Local Area Connec-

 

tion -> Properties ->

 

Internet Protocol

 

[TCP/IP] -> Proper-

 

ties

22

c. Windows Vista is set to obtain an IP address automatically by default. You may not need to configure it at all.

To check, open the Networking Control Panel and select Internet Protocol Version 4 (TCP/IPv4). Click the Properties button.

The Internet Protocol Version 4 (TCP/IPv4) Properties window should appear as shown.

If not, select the radio buttons shown above, and click the OK button.

23

Motorola 2200, 3342, 3352N, 7000, 3352 User Manual

Administrator’s Handbook

Macintosh MacOS 8 or higher or Mac OS X:

Step 1. Access the TCP/IP or Network control panel.

a. MacOS follows a

Apple Menu ->

path like this:

Control Pan-

 

els -> TCP/IP

 

Control Panel

b. Mac OS X follows Apple Menu -> System Preferences -> Network a path like this:

Then go to Step 2.

Step 2. Select Built-in Ethernet

Step 3. Select Configure Using DHCP

Step 4. Close and Save, if prompted.

Proceed to “Configuring the Motorola Netopia® Gateway” on page 25.

24

Configuring the Motorola Netopia® Gateway

1.Run your Web browser application, such as Firefox or Microsoft Internet Explorer, from the computer connected to the Motorola Netopia® Gateway.

Enter http://192.168.1.254 in the Location text box. The Admin Password page appears.

Access to your Motorola Netopia® device can be controlled through two access control accounts,

Admin or User.

The Admin, or administrative user, performs all configuration, management or maintenance operations on the Gateway.

The User account provides monitor capability only.

A user may NOT change the configuration, perform upgrades or invoke maintenance functions.

For the security of your connection, an Admin password must be set on the Motorola Netopia® unit.

MiAVo VDSL and Ethernet WAN models Quickstart

The browser then displays the Quickstart page.

2. Click the Connect to the Internet button.

25

Administrator’s Handbook

Once a connection is established, your browser is redirected to your service provider’s home page or a registration page on the Internet.

NOTE:

For MiAVo Series (3397GP) models, skip the rest of this section.

Congratulations! Your configuration is complete.

You can skip to “Home Page - Basic Mode” on page 31.

26

PPPoE Quickstart

For a PPPoE connection, your browser will display a different series of web pages:

The browser then displays the Quickstart web page.

3.Enter the username and password supplied by your Internet Service Provider. Click the

Connect to the Internet button.

Once you enter your username and password here, you will no longer need to enter them whenever you access the Internet. The Motorola Netopia® Gateway stores this information and automatically connects you to the Internet.

The Gateway displays a message while it configures itself.

4.When the connection succeeds, your browser will display a success message.

Once a connection is established, your browser is redirected to your service provider’s home page or a registration page on the Internet.

5.Congratulations! Your installation is complete.You can now surf to your favorite Web sites by typing an URL in your browser’s location box or by selecting one of your favorite Internet bookmarks.

27

Administrator’s Handbook

Set up the Motorola Netopia® Pocket Gateway

Your Motorola Netopia® 3342N/3352N Pocket Gateway comes with its own installation wizard.

If you are using Windows 98, insert the CD.

If you are using Windows XP, Windows 2000, Windows NT or Windows Vista, you don’t even need the CD.

Follow these easy setup steps:

1.Plug the Motorola Netopia® Pocket Gateway into a USB port on your PC.

2.Whether you use the CD (Windows 98) or not (all other Windows versions), on Windows-based PCs, the Motorola Netopia® Installation Wizard will launch automatically.

The Motorola Netopia® Installation Wizard will assist you to configure your PC to work with the Motorola Netopia® pocket Gateway. Follow the on-screen instructions.

To proceed, click the Next button.

The Motorola Netopia® Installation Wizard performs a series of checks on your system and then will install USB drivers for your connection.

3.Place the Motorola Netopia® Pocket Gateway near your PC so you can see it easily.

Make sure any cables are kept away from power cords, fluorescent lighting fixtures, and other sources of electrical interference.

4.When the wizard prompts you, connect the RJ-11 Telephone Cable from the DSL port on the Motorola Netopia® Pocket Gateway to the ADSL phone jack.

The DSL indicator light should blink for up to two minutes and then come on solid green once the device is connected to your computer.

USB port

phone jack

Netopia Pocket Gateway/

RJ-11 phone cable

28

The Wizard displays a success message when the settings are configured.

5.The Motorola Netopia® Installation Wizard will then launch your web browser and display the Welcome page where you configure your Motorola Netopia® Pocket Gateway.

29

Administrator’s Handbook

Motorola Netopia® Gateway Status Indicator Lights

Colored LEDs on your Motorola Netopia® Gateway indicate the status of various port activity. Different Gateway models have different ports for your connections and different indicator LEDs. The Quickstart Guide accompanying your Motorola Netopia® Gateway describes the behavior of the various indicator LEDs.

Example status indicator lights

Status Indicator Lights (LEDs)

netopia

30

Loading...
+ 338 hidden pages