Verizon FiOS-G1100 User Manual

Download

FiOS Quantum Gateway

™

USER GUIDE

01/

INTRODUCTION

1.0 Package 7

Contents

1.1 System 7

Requirements

1.2 Features 7

1.3 Getting to 10

Know Your Gateway

02/

CONNECTING YOUR GATEWAY

2.0 Setting 18

Up Your Gateway

2.1 Computer 24

Network Conﬁguration

2.2 Main 30

Screen

03/

WIRELESS SETTINGS

3.0 Overview 36

3.1 Wireless Status 37

3.2 Basic Security 40

Settings

3.3 Advanced 43

Security Settings

3.4 Wireless MAC 49

Authentication

3.5 802.11 Mode 51

3.6 Other Advanced 53

Wireless Options

04/

CONFIGURING MY NETWORK SETTINGS

4.0 Accessing 59

My Network Settings

4.2 Using My 60

Network Settings

05/

USING NETWORK CONNECTIONS

5.0 Accessing 64

Network Connections

5.1 Network 65

(Home/ Of ﬁce) Connection

5.2 Ethernet/ 73

Coax Connection

5.3 Wireless 77

Access A/B Point Connection

5.4 Broadband 80

Ethernet/ Coax Connection

06/

CONFIGURING SECURITY SETTINGS

6.0 Firewall 87

6.2 Access 91

Control

6.3 Port 94

Forwarding

6.4 Port 96

Triggering

6.5 Remote 98

Administration

6.6 Static NAT 100

6.7 Security Log 102

07/

SETTING PARENTAL CONTROL

7.0 Activating 111

Parental Controls

7.1 Rule 113

Summary

TABLE OF CONTENTS

CONTENTS

TABLE OF CONTENTS

CONTENTS

08/

CONFIGURING ADVANCED SETTINGS

8.0 Using 117

Advanced Settings

8.1 Utilities 118

8.2 DNS 127

Settings

8.3 Network 128

Settings

8.4 Routing 134

8.5 Firmware 156

Upgrade

8.6 Date and 159

Time

8.8 Conﬁguration 163

Settings

09/

MONITORING YOUR GATEWAY

9.0 Gateway 171

Status

9.1 Advanced 172

Status

9.2 System 17 3

Logging

9.3 Full Status/ 1 74

System wide Monitoring of Connections

9.4 Traf ﬁc 175

Monitoring

9.5 Bandwidth 176

Monitoring

10/

TROUBLESHOOTING

10. 0 Troubleshooting 179

Tips

10.1 Frequently 185

Asked Questions

11/

SPECIFICATIONS

11.0 General 192

Speciﬁcations

11.1 LED 193

Indicators

11. 2 Environmental 193

Parameters

12/

NOTICES

12.0 Regulatory 197

Compliance Notices

01/

INTRODUCTION

1.0

1.1

1.2

1.3

Package Contents System Requirements Features Getting to Know Your

Gateway

The Verizon FiOS Quantum Gateway™ lets you transmit and distribute digital entertainment and information to multiple devices in your home/ofﬁce.

Your Gateway supports networking using coaxial cables, Ethernet, or Wi-Fi, making it one of the most versatile and powerful gateways available.

01 / INTRODUCTION

PACKAGE CONTENTS, SYSTEM REQUIREMENTS AND FEATURES

– Ethernet supports speeds up to 1000 Mbps

– MoCA 2.0 and 1.1 enabled to support speeds up to 700 Mbps

over coaxial cable

• Integrated wireless networking with 802.11b/g/n/ac access point featuring:

– 802.11b enabled to support speeds up to 11 Mbps wirelessly

– 802.11g enabled to support speeds up to 54 Mbps wirelessly

– 802.11n enabled to support speeds up to 450 Mbps

wirelessly

– 802.11ac enabled to support speeds up to 1300 Mbps

wirelessly

• Enterprise-level security, including:

– Fully customizable ﬁrewall with Stateful Packet Inspection

(SPI)

– Content ﬁltering with URL-keyword based ﬁltering, parental

control, and customizable ﬁltering policies per computer

– Intrusion detection with Denial of Service protection against

IP spooﬁng attacks, scanning attacks, IP fragment overlap exploit, ping of death, and fragmentation attacks

– Event log ging

– MAC address ﬁltering

01 / INTRODUCTION

1.0/ PACKAGE CONTENT

Your package contains:

• The FiOS Quantum Gateway

• Power adapter

• LAN Ethernet cable (yellow)

• WAN Ethernet cable (white)

• Quick Start Guide

1.1/ SYSTEM REQUIREMENTS

System and software requirements are:

• A computer or other network device supporting Wi-Fi or wired Ethernet

• A web browser, such as Chrome™, Firefox®, Internet Explorer 8® or higher, or Safari® 5.1 or higher

1.2/ FEATURES

Your Gateway features include:

• Support for multiple networking standards, including

– WAN – Gigabit Ethernet and MoCA 2.0 interfaces

– LAN – 802.11 b/g/n/ac, Gigabit Ethernet and MoCA 2.0

interfaces

• Integrated wired networking with 4-port Ethernet switch and MoCA

FEATURES AND GETTING TO KNOW YOUR GATEWAY

– IGMP

– Daylight savings time support

1.3/ GETTING TO KNOW YOUR GATEWAY

1.3a/ FRONT PA NEL

The front panel has two lighted indicators and a WPS (Wi-Fi Protected Setup) button.

The Power/Internet light will be on and solid when your Gateway is turned on, connected to the Internet, and functioning normally.

The Wireless light will be on when your Gateway Wi-Fi is turned on.

For additional information on the front lights and error indications, refer the Troubleshooting section in this Guide.

The WPS button is used to initiate Wi-Fi Protected Setup. This is an easy way to add WPS capable devices to your wireless network.

When WPS is initiated from your Gateway, the wireless light slowly ﬂashes white for up to two minutes, allowing time to complete the WPS pairing process on your wireless device (also known as a wireless client).

When a device begins connecting to your Gateway using WPS, the wireless light rapidly ﬂashes white for a few seconds, then turns solid white as the connection completes.

01 / INTRODUCTION

– St atic NAT

– Port forwarding

– Port triggering

– Access control

– Advanced wireless protection featuring WPA2/WPA Mixed

Mode, WEP 64/128 bit encryption, and MAC address ﬁltering

• Options, including:

– DHCP server

– WAN interface auto-detection

– DNS server

– LAN IP and WAN IP address selection

– MAC address cloning

– IPv6 support

– QoS support (end to end layer 2/3) featuring: Differentiated

Services (Diffserv), 802.1p/q prioritization, and passthrough of WAN-side DSCPs, Per Hop Behaviors (PHBs), and queuing to LAN-side devices

– Remote management and secured remote management using

HTTPS

– Static routing

– VPN (VPN pass through only)

USB (2 ports)

Reset Button

Ethernet LAN (4 ports)

HAN expansion port

Ethernet WAN

MoCA (Coax) WAN and LAN

Power

01 / INTRODUCTION

If there is an error during the WPS pairing process, the wireless light ﬂashes red rapidly for two minutes after the error occurs.

The WPS button can also be used to reboot the router. To perform a soft reboot, press and hold the WPS button for at least 10 seconds.

1.3b/ SIDE PA NEL

The side panel of your Gateway has a label that contains important information about your device, including the default settings for the Gateway’s wireless network name (ESSID), wireless password (WPA2 key), local URL for accessing the Gateway’s administrative pages, and Gateway administrator password. The label also contains a QR code that you can scan with your smartphone, tablet, or other cameraequipped Wi-Fi device to allow you to automatically connect your device to your Wi-Fi network without typing in a password (requires a QR code reading app with support for Wi-Fi QR codes).

1.3c/ REAR PANEL

The rear panel of your Gateway has 8 ports; MoCA (COAX), Ethernet LAN [4], Ethernet WAN, and USB [2]. The rear panel also includes a DC power jack and a reset button.

Default login credentials

Please note: password letters are all lower-case

Wireless network name (ESSID)

Wireless password (WPA2)

Administrator password

Administration URL

www.verizon.com/quickguides

Online tutorials :

To reboot, press and hold the WPS button for 10 seconds.

XXXXXXXXXXX XXXXXXXXXXXXXXXX

XXXXXXXXXX

myfiosgateway.com

GETTING TO KNOW YOUR GATEWAY

• USB - provides up to 500 mA at 5 VDC for attached devices. For example, you could charge a cell phone. In the future, with a ﬁrmware upgrade, the USB host functionality may be available for other devices, such as external storage and cameras.

• Reset Button - allows you to reset your Gateway to the factory default settings. To reset the Gateway, press and hold the Reset button for at least three seconds.

• Ethernet LAN - connects devices to your Gateway using Ethernet cables to join the local area network (LAN). The four Ethernet LAN ports are 10/100/1000 Mbps auto-sensing and can be used with either straight-through or crossover Ethernet cables.

• HAN Expansion Port - provides for future hardware upgrades to add support for Home Area Networking capabilities.

• Ethernet WAN - connects your Gateway to the Internet using an Ethernet cable.

• MoCA (Coax) WAN and LAN - connects your Gateway to the Internet and/or to other MoCA devices using a coaxial cable.

Warning: The WAN Coax Port is intended for connection to Verizon FiOS

only. It must not be connected to any exterior or interior coaxial wires not designated for Verizon FiOS.

• Power - connects your Gateway to an electrical wall outlet using the supplied power adapter.

Warning: The included power adapter is for home use only, supporting

voltages from 100-240Vac. Do not use in environments with greater than 240V ac .

GETTING TO KNOW THE GATEWAY

1.3d/ MOUNTING THE GATEWAY TO A WALL

For optimum performance, the FiOS Quantum Gateway is designed to stand in a vertical upright position. Verizon does not recommend wall mounting the FiOS Quantum Gateway. However, if you wish to mount your Gateway, you can purchase a wall mount bracket from the Verizon FiOS Accessories Store at verizon.com/ﬁosaccessories.

If you are replacing an existing Verizon wall mounted router, you do not need to remove the mounting screws from the wall. The existing mounting screws will ﬁt the new bracket.

To mount your Gateway to a wall:

1. Remove the foot by turning the Gateway upside down

and removing the single screw that holds the foot to the Gateway.

2. Slide the foot toward the front of the Gateway and pull the

foot from the holes. You may need to wiggle the foot slightly.

3. You may use the wall mount bracket as a template for

positioning the Gateway.

01 / INTRODUCTION

GETTING TO KNOW THE GATEWAY

02/

CONNECTING YOUR GATEWAY

2.0

2.1

2.2

Setting Up Your Gateway Computer Network

Conﬁguration Main Screen

4. Mark the mounting holes,

then remove the wall mount bracket from the wall.

5. Drill holes for the screw

anchors.

6. Insert the screw anchors

in the holes in the wall, then insert the screws into the screw anchors and tighten the screws. Leave screws extended about 0.2 inches from the wall.

7. Verify the screws are positioned correctly by placing the wall

bracket on the screws. Remove the wall bracket from the wall.

8. Place the Gateway on the wall

bracket and slide the Gateway forward until it locks in place.

9. To secure the Gateway, attach

the bracket to the Gateway using the single screw you removed from the foot.

10. Slide the wall mount bracket

with the attached Gateway on the screws, then slide the bracket down until it locks in place.

SETTING UP YOUR GATEWAY

YOUR GATEWAY

02 / CONNECTING

Connecting your Gateway and accessing its web-based Graphical User Interface (GUI) are both simple procedures.

Accessing the GUI may vary slightly, depending on your device’s operating system and web browser.

2.0/ SETTING UP YOUR GATEWAY

There are three basic steps to setting up your Gateway:

Step 1: Connect your Gateway to the Internet

Step 2: Connect your network device to your Gateway

Step 3: Conﬁgure your Gateway

Before you begin, if you are replacing an existing Gateway, disconnect it. Remove all old Gateway components, including the power supply. They will not work with your new Gateway.

2.0a/ STEP 1 - CONNECT YOUR GATEWAY

1. Remove your Gateway, Ethernet cables, and power adapter

from the box.

2. Locate your high-speed Internet (WAN) outlet. This would be

the wall jack installed previously by Verizon. Note the type of jack may be either Ethernet or coaxial.

3. Connect your Gateway to the Internet (WAN).

• If connecting the WAN using Ethernet, use the supplied white Ethernet cable and plug one end into the white Ethernet WAN port on the back of your Gateway. Plug the other end of the cable into the high-speed Ethernet wall jack.

YOUR GATEWAY

02 / CONNECTING

If connecting a wireless device:

• Access the Wi-Fi setting on your wireless device, then select your new Gateway using the wireless network name (ESSID) shown on the sticker located on the side of your Gateway.

• Enter the wireless password (WPA2 key) also shown on the sticker.

2.0c/ STEP 3 - CONFIGURE YOUR GATEWAY:

1. Open a web browser on the device connected to your

Gateway network.

2. In the browser address ﬁeld (URL), enter:

myﬁosgateway.com, then press the Enter key on your keyboard.

Alternately, you can enter: https://192.168.1.1

• If connecting the WAN using coaxial cable, locate a coaxial cable and connect one end to the coax port on the back of your Gateway. Connect the other end of the coaxial cable to a coax wall jack.

Tighten the coaxial cables by hand until snug. The cables should not require a wrench.

4. Plug the power cord into the power port on the back of

your Gateway and then into a power outlet. The Gateway automatically turns on as soon as power is plugged in.

Important: Wait until the Power/Internet light on

the front of the Gateway stops ﬂashing and is solid white. If after several minutes it is still not solidly lit, check the troubleshooting steps in the Troubleshooting section of the user guide.

2.0b/ STEP 2 - CONNECT YOUR DEVICE TO YOUR GATEWAY

If connecting a device using wired Ethernet (preferred for initial setup):

• Plug one end of the supplied yellow Ethernet cable into one of the four yellow Ethernet ports in the back of your Gateway. Alternatively, you can use your own Ethernet cable of any color to connect from the yellow Ethernet ports on the back of your Gateway to your device with an Ethernet connector.

• Plug the other end of the yellow Ethernet cable into the Ethernet port of your network device.

Default login credentials

Please note: password letters are all lower-case

Wireless network name (ESSID)

Wireless password (WPA2)

Administrator password

Administration URL

www.verizon.com/quickguides

Online tutorials :

To reboot, press and hold the WPS button for 10 seconds.

XXXXXXXXXXX XXXXXXXXXXXXXXXX

XXXXXXXXXX

myfiosgateway.com

SETTING UP YOUR GATEWAY

YOUR GATEWAY

02 / CONNECTING

In the Admin Password ﬁeld, enter the password that is printed next to the Administrator Password on the label on the side of your Gateway.

5. Click Next. The Personalize your Gateway screen displays.

The ﬁrst time you access your Gateway, an Easy Setup Wizard displays to help step you through the setup process.

3. Click the Get Started button. The Gateway Login screen

displays.

Default login credentials

Please note: password letters are all lower-case

Wireless network name (ESSID)

Wireless password (WPA2)

Administrator password

Administration URL

www.verizon.com/quickguides

Online tutorials :

To reboot, press and hold the WPS button for 10 seconds.

XXXXXXXXXXX XXXXXXXXXXXXXXXX

XXXXXXXXXX

myfiosgateway.com

SETTING UP YOUR GATEWAY

YOUR GATEWAY

02 / CONNECTING

Click Next to continue. Your Gateway veriﬁes the ﬁnal settings and displays that it is successfully connected to the Internet and is ready for use.

Upon the successful completion of setup, the Main screen of the Gateway displays. Your Gateway is now conﬁgured. You can change any of the Gateway settings after this initial log in.

If your Gateway is subsequently reset to the factory default settings, the settings printed on the label will again be in effect.

If your Gateway fails to connect, follow the troubleshooting steps in the Troubleshooting section of this guide.

2.1/ COMPUTER NETWORK CONFIGURATION

Each network interface on your computer should either automatically obtain an IP address from the upstream Network DHCP server (default

For your protection, your Gateway is pre-set at the factory to use WPA/WPA2 (Wi-Fi Protected Access) encryption for your wireless network. This is the best setting for most users and provides maximum security.

If you have an old wireless device that does not support WPA or WPA2, click the Change button below the Lock icon. This allows you to change the security type to the backwardscompatible WEP encryption.

Warning: WEP provides a low level of security and is not

recommended. The WEP security setting will drop your Gateway’s wireless speed performance from a maximum data rate of 450 Mbps to a maximum data rate of 54 Mbps.

6. Click Next to continue and save the Admin and Wi-Fi changes

to your Gateway.

Important: If you are on a Wi-Fi device when setting up your

Gateway, you will be disconnected from the Wi-Fi network when you change the Wi-Fi name or Wi-Fi password. When this occurs, your Gateway will detect this situation and prompt you to reconnect using the new settings.

7. Print your settings. Once you have personalized your

Gateway settings, you will be prompted to print a record of these settings in case you forget them.

SETTING UP YOUR GATEWAY AND COMPUTER NETWORK CONFIGURATION

COMPUTER NETWORK CONFIGURATION

YOUR GATEWAY

02 / CONNECTING

the Properties option (refer to IPv6 section for Gateway conﬁguration).

MACINTOSH OS X

1. Click the Apple icon in the top left corner of the desktop. A

menu displays.

2. Select System Preferences. The System Preferences

window displays.

3. Click Network.

4. Verify that Ethernet, located in the list on the left, is

highlighted and displays Connected.

5. Click Assist Me.

6. Follow the instructions in the Network Diagnostics

Assistant.

2.1b/ CONNECTING OTHER COMPUTERS & NETWORK DEVICES

You can connect your Gateway to other computers or set top boxes using an Ethernet cable, wireless connection (Wi-Fi), or coaxial cable.

ETHERNET

1. Plug one end of an Ethernet cable into one of the open yellow

Ethernet ports on the back of your Gateway.

2. Plug the other end of the Ethernet cable into an Ethernet

port on the computer.

conﬁguration) or be manually conﬁgured with a statically deﬁned IP address and DNS address. We recommend leaving this setting as is.

2.1a/ CONFIGURING DYNAMIC IP ADDRESSING

To conﬁgure a computer to use dynamic IP addressing:

WINDOWS 7/8

1. In the Control Panel, locate Network and Internet, then

select View Network Status and Tasks.

2. In the View your active networks – Connect or disconnect

section, click Local Area Connection in the Connections ﬁeld. The Local Area Connection Status window displays.

3. Click Properties. The Local Area Connection Properties

window displays.

4. Select Internet Protocol Version 4 (TCP/IPv4), then click

Properties. The Internet Protocol Version 4 (TCP/IPv4)

Properties window displays.

5. Click the Obtain an IP address automatically radio button.

6. Click the Obtain DNS server address automatically radio

button, then click OK.

7. In the Local Area Connection Properties window, click OK to

save the settings.

8. To conﬁgure Internet Protocol Version 6 (TCP/IPv6) to use

dynamic IP addressing, repeat step 1 to 7. However for step 3, select Internet Protocol Version 6 (TCP/IPv6) in

3. Repeat these steps for each computer to be connected to

your Gateway using Ethernet. You can connect up to four.

CONNECTING A WI-FI DEVICE USING WPS

Wi-Fi Protected Setup (WPS) is an easier way for many devices to set up a secure wireless network connection. Instead of manually entering passwords or multiple keys on each wireless client, such as a laptop, printer, or external hard drive, your Gateway creates a secure wireless network.

In most cases, this only requires the pressing of two buttons – one on your Gateway and one on the wireless client. This could be either a built-in button or one on a compatible wireless adapter/card, or a virtual button in software. Once completed, this allows wireless clients to join your wireless network.

To initialize the WPS process, you can either press and release the WPS button located on the front of your Gateway or use the GUI and press the on-screen button.

If you press the WPS button on your Gateway and change your mind, you can cancel the WPS process by pressing the button a second time.

You can easily add wireless devices to your wireless network using the WPS option if your wireless device supports the WPS feature.

To access WPS using the user interface:

1. From the Main menu, select Wireless Settings, then select

Wi-Fi Protected Setup (WPS).

YOUR GATEWAY

02 / CONNECTING

Enable the protected setup by moving the selector to On.

3. Use one of the following methods:

• If your wireless client device has a WPS button, press the WPS button on your Gateway, then click the WPS button on your wireless device (client) to start the WPS registration process.

• If your client device has a WPS PIN, locate the PIN printed on the client’s label or in the client documentation.

COMPUTER NETWORK CONFIGURATION

Enter the PIN number in the Client WPS PIN ﬁeld. The Client WPS PIN ﬁeld is located in the section B PIN Enrollment on the user interface.

Click Register.

• Alternatively, you can enter the Gateway’s PIN shown on this screen into the WPS user interface of your device, if this PIN mode is supported by your wireless device.

4. After pressing the WPS button on your Gateway, you have

two minutes to press the WPS button on the client device before the WPS session times out.

When the WPS button on your Gateway is pressed, the Wireless light on the front of your Gateway begins ﬂashing white. The ﬂashing continues until WPS pairing to the client device completes successfully. At this time, the Wireless light turns solid white.

If WPS fails to establish a connection to a wireless client device within two minutes, the Wireless light on your Gateway ﬂashes red for two minutes to indicate the WPS pairing process was unsuccessful. After ﬂashing red, the light returns to solid white to indicate that Wi-Fi is on.

CONNECTING A WI-FI DEVICE USING A PASSWORD

1. Verify each device that you are connecting wirelessly (using

Wi-Fi) has a built-in wireless or external wireless adapter.

2. Open the device’s wireless settings application.

3. Select your Gateway’s wireless network name (SSID) from

the device’s list of discovered wireless networks.

4. When prompted, enter your Gateway’s wireless password

(WPA2 key) into the device’s wireless settings. Your Gateway’s default wireless network name and wireless password are located are on the sticker on the side of your Gateway.

5. Verify the changes were implemented by using the device’s

web browser to access a site on the Internet.

6. Repeat these steps for every device that you are wirelessly

connecting to your Gateway.

COAXIAL

1. Verify all coax devices are turned off.

2. Disconnect any adapter currently connected to the coaxial

wall jack in the room where your Gateway is located.

3. Connect one end of the coaxial cable to the coaxial wall jack

and the other end to the Coax port on your network device.

4. Power up the network device.

2.2/ MAIN SCREEN

When you log into your Gateway, the page displays showing the Main navigation menu at the top of the page and your Gateway’s Status, including Quick Links, My Network, and Verizon Zone display in the body of the page.

YOUR GATEWAY

02 / CONNECTING

COMPUTER NETWORK CONFIGURATION AND MAIN SCREEN

MAIN SCREEN

2.2a/ MENU

The Main menu links across the top of the page to the following conﬁguration options and chapters:

• Wireless Settings - Chapter 3

• My Network - Chapter 5

• Firewall Settings - Chapter 6

• Parental Controls - Chapter 7

• Advanced - Chapter 8

• System Monitoring - Chapter 9

YOUR GATEWAY

02 / CONNECTING

2.2b/ STATUS

This section displays the status of your Gateway’s local network (LAN) and Internet connection (WAN).

BROADBAND CONNECTION

Broadband Connection displays the state of the broadband connection:

• Broadband interface: Ethernet or Coax

• Connected status: Connected or No Connection

• Connection Type: DHCP or Static

• WAN IP address: Address of the broadband connection

QUICK LINKS

Quick Links contains frequently accessed documentation, such as User Guide and Verizon Help, and settings, such as Change Wireless Settings, Change Admin Password, and Port Forwarding as well as Logout.

MY NETWORK

My Network displays the connection type, IP address, and status of all devices that have accessed or are currently connected to the network.

The icon associated with the device displays to signify the device is active or shaded gray to indicate the device has not been active for several minutes. You can view the individual settings of each device by clicking its icon.

03/

WIRELESS SETTINGS

3.0

3.1

3.2

3.3

3.4

3.5

3.6

Overview Wireless Status Basic Security Settings Advanced Security Settings Wireless MAC

Authentication

802.11 Mode Other Advanced Wireless

Options

VERIZON ZONE

The Verizon Zone contains links to various Verizon web sites and other informational links.

MAIN SCREEN

OVERVIEW

SETTINGS

03 / WIRELESS

Wireless networking enables you to free yourself from wires and plugs, making your devices more accessible and easier to use.

You can create a wireless network, including accessing and conﬁguring wireless security options.

3.0/ OVERVIEW

Your Gateway provides you with wireless connectivity using the

802.11b, g, n, or ac standards. These are the most common wireless standards.

802.11b has a maximum data rate of 11 Mbps, 802.11g has a maximum data rate of 54 Mbps, 802.11n has a maximum data rate of 450 Mbps, and 802.11ac has a maximum data rate of 1300 Mbps.

802.11b and g standards operate in the 2.4 GHz range. 802.11n operates in both the 2.4 GHz and 5 GHz ranges. 802.11ac operates in the 5 GHz range.

Note: 802.11 b is a legacy mode and is not recommended. Even one 802.11b

device connected to the network will slow your entire wireless network.

The wireless service and wireless security are activated by default. The level of security is preset to WPA2 encryption using a unique default WPA2 key (also referred to as a passphrase or password) preconﬁgured at the factory. This information is displayed on a sticker located on the side of your Gateway.

Default login credentials

Please note: password letters are all lower-case

Wireless network name (ESSID)

Wireless password (WPA2)

Administrator password

Administration URL

www.verizon.com/quickguides

Online tutorials :

To reboot, press and hold the WPS button for 10 seconds.

XXXXXXXXXXX XXXXXXXXXXXXXXXX

XXXXXXXXXX

myfiosgateway.com

WIRELESS STATUS

SETTINGS

03 / WIRELESS

Select the Wireless Settings icon. The Wireless Status page displays additional wireless details.

Your Gateway integrates multiple layers of security. These include Wired Equivalent Privacy (WEP), Wi-Fi Protected Access (WPA/WPA2), and ﬁrewall.

3.1/ WIRELESS STATUS

Use the Wireless Status feature to view the status of your Gateway’s wireless network.

To view the status:

1. Access the Main page. You can quickly view your Gateway’s

wireless status in the My Network column. This includes all devices that have recently accessed or are currently connected to the network.

WIRELESS STATUS AND BASIC SECURITY SETTINGS

SETTINGS

03 / WIRELESS

• Packets Received/Sent - displays the number of packets received and sent since the wireless capability was activated.

3. 2/ BASIC SECURITY SETTINGS

You can conﬁgure the basic security settings for your Gateway’s wireless network.

Note: Your Gateway’s recommended wireless security encryption is set to

WPA2. This is the factory default.

This section explains how to activate WEP (Wired Equivalent Privacy) wireless security. WEP is a signiﬁcantly less robust security compared to WPA or WPA2 and is not recommended. To set up WPA2 wireless security, refer to the WPA2 section.

To conﬁgure basic security to WEP:

1. On the Wireless Setting page, select Basic Security Settings.

3. On the Wireless Status page for either 2.4 GHz or 5 GHz, the

following information displays:

• Radio Enabled - displays whether the wireless radio is active. When the radio is not enabled, no wireless devices will be able to connect to the home network.

• SSID - displays the SSID (Service Set Identiﬁer) shared among all devices on a wireless network. The SSID is the network name. All devices must use the same SSID.

• Channel - displays the channel the wireless connection is currently using.

• Security Enabled - displays the type of security active on the wireless connection as well as the security encryption key.

• SSID Broadcast - displays whether your Gateway is broadcasting its SSID. If activated, the SSID of your Gateway wireless network is broadcast wirelessly. If not activated, the SSID is hidden and the wireless clients must be manually conﬁgured to use the SSID.

• MAC Authentication - displays whether your Gateway is using MAC (Media Access Control) address authentication to allow wireless devices to join the network.

• Wireless Mode - displays the types of wireless device that can join the network.

• WMM - displays whether WMM is enabled on your Gateway.

BASIC SECURITY SETTINGS

SETTINGS

03 / WIRELESS

To turn on WEP (Wired Equivalent Privacy) security, click the WEP radio button.

6. Select a WEP security level as 64/40 bit or 128/104 bit.

7. Enter the key code. If using a HEX key, each character

must be a letter from A to F or a number from 0 to 9. If the key is ASCII, each character can be either any ASCII or alphanumeric character.

If using 64/40 bit, enter 10 HEX or 5 ASCII/alphanumeric characters. If 128/104, enter 26 HEX or 13 ASCII/ alphanumeric characters.

8. Be sure to write down the wireless settings for future

use. Other wireless devices that will be connected to your

2. To activate the wireless radio, click the On radio button.

3. If desired, enter a new name for the wireless network in

the SSID ﬁeld or leave the default name that displays automatically.

4. Select the channel you want the wireless radio to use to

communicate or accept the default channel, then select the Keep my channel selection during power cycle check box to save your channel selection when your Gateway is rebooted.

ADVANCED SECURITY SETTINGS

SETTINGS

03 / WIRELESS

3.3a/ LEVEL 1: SECURING YOUR NETWORK

In the Level 1 section, select the type of wireless security. Depending on your selection, one of the following pages displays.

WEP

If WEP was selected, the WEP Settings page displays.

To set the WEP security:

1. In the Network Authentication ﬁeld, select the

authentication level as Open System Authentication, Shared Key Authentication or Both.

Gateway must be conﬁgured to use these settings to join your Gateway’s wireless network.

9. Click Apply to save changes.

3.3/ ADVANCED SECURITY SETTINGS

You can change your advanced wireless security settings, such as conﬁguring wireless encryption to help protect your network from unauthorized access or damage to your network devices; disable your SSID broadcast to secure your wireless trafﬁc; stop your Gateway from broadcasting your SSID; set Wireless MAC Authentication to limit access to speciﬁc wireless devices; and change the wireless mode to limit or allow access to your wireless network based on the type of technology as well as other advanced wireless options.

To modify the security settings for either 2.4 GHz or 5 GHz:

1. In the Wireless Settings page, select Advanced Security

Settings.

ADVANCED SECURITY SETTINGS

SETTINGS

03 / WIRELESS

WPA/WPA2 Mixed Mode

If WPA/WPA2 Mixed Mode (Wi-Fi Protected Access) was selected, the WPA Key page displays. Selecting WPA/WPA2 Mixed Mode allows the security mode to be automatically set by the gateway based on the security capabilities of the client device. WPA/WPA2 mixed mode is the default wireless security protocol.

To set the WPA/WPA2 Mixed Mode security:

1. Enter the Pre-Shared Key as a wireless password.

2. To activate the group key update interval, select the Group

Key Update Interval check box and set the interval time in seconds.

3. Click Apply to save the changes.

WPA 2

If WPA2 (Wi-Fi Protected Access II) was selected, the WPA2 page displays.

To set the WPA2 security:

1. Enter the Pre-Shared Key.

2. In the WEP Keys section, activate the encryption key by

entering the key name in the Encryption Key column. If HEX, the key must be hexadecimal digits. If ASCII, any characters can be used.

3. Specify the length of key 1 by selecting 64/40 bit or

128/104 bit in the Key Length ﬁeld and HEX or ASCII in the Entry Method ﬁeld.

4. Click Apply to save changes.

ADVANCED SECURITY SETTINGS

SETTINGS

03 / WIRELESS

conﬁguration looks basically the same for the 5 GHz network.

3. To enable SSID broadcasting, click the Enable radio button.

SSID broadcast is enabled by default. The SSID of the wireless network will be broadcast to all wireless devices.

4. To disable SSID broadcasting, click the Disable radio button.

The public SSID broadcast will be hidden from all wireless devices. You will need to manually conﬁgure additional wireless devices to join the wireless network.

5. Click Apply to save the changes.

3.3c/ LEVEL 3: LIMIT ACCESS

You can conﬁgure your Gateway to limit access to your wireless network allowing access only to those devices with speciﬁc MAC addresses or based on the type of wireless technology used.

2. To activate the group key update interval, select the Group

Key Update Interval check box and set the interval time in

seconds.

3. Click Apply to save the changes.

3.3b/ LEVEL 2: SSID BROADCAST

You can conﬁgure your Gateway’s SSID broadcast capabilities to allow or disallow wireless devices from automatically using a broadcast SSID name to detect your Gateway wireless network.

To enable or disable SSID broadcast:

1. In the Advanced Settings page, locate the Level 2 section.

2. Click the 2.4 GHz SSID Broadcast or 5 GHz SSID Broadcast

link for the wireless network you wish to modify. The following example uses the 2.4 GHz network. The display

WIRELESS MAC AUTHENTICATION

SETTINGS

03 / WIRELESS

To enable access control, select the Enable Access List check box.

To limit access:

1. In the Advanced Settings page, locate the Level 3 section.

2. To allow only devices with speciﬁc MAC addresses, click

the Wireless MAC Authentication link. The Wireless MAC Authentication page displays. For additional details, refer to the Wireless MAC Authentication section.

3. To limit access based on the type of technology, click the

802.11 b/g/n/ac Mode link. The 802.11 b/g/n/ac Mode page

displays. For additional details, refer to the 802.11 b/g/n/ac Mode section.

4. To access other advanced wireless options, click the Other

Advanced Wireless Options link. The Other Advanced

Wireless Options page displays. For additional details, refer to the Other Advanced Wireless Options section.

3.4/ WIRELESS MAC AUTHENTICATION

You can allow or deny access to your wireless network by specifying devices with speciﬁc MAC addresses.

To set wireless MAC authentication:

1. On the Advanced Settings page, locate the Level 3 section

and click the Wireless MAC Authentication link. The Wireless MAC Authentication page displays.

802.11 MODE

SETTINGS

03 / WIRELESS

To select the 802.11 Mode:

1. On the Advanced Settings page, locate the Level 3 section

and click the 802.11 Mode link. The 802.11 Mode page displays.

2. Select the 2.4 GHz Wireless Mode as follows:

• Compatibility – This is the default mode setting, providing a good balance of performance and compatibility with existing wireless devices. 802.11b, g, and n devices can connect.

• Legacy – For older wireless devices. Only 802.11b and g devices can connect. 802.11b (legacy mode) will cause your wireless network to slow and is not recommended.

• Performance – For newer wireless 802.11n devices only. No other devices can be used.

3. Select either:

• Accept all devices listed below – allows only the listed devices to access the wireless network.

Warning: This will block wireless network access for all devices

not in the list. Only devices in the list will be able to connect to the wireless network.

• Deny all devices listed below – denies access to the listed devices. All other wireless devices will be able to access the wireless network if they use the correct wireless password.

4. Enter the MAC address of a device, then click Add.

5. Repeat step 2 to add additional devices, as needed.

6. To remove a speciﬁc device’s MAC address, click the Remove

button next to the speciﬁc MAC address.

7. When all changes are complete, click Apply to save changes.

3.5/ 802.11 MODE

From the 802.11 Mode page, you can limit the wireless access to your network by selecting the 2.4 GHz and 5 GHz wireless communication standard (mode) best suited or compatible with the devices you allow access to your wireless network.

OTHER ADVANCED WIRELESS OPTIONS

SETTINGS

03 / WIRELESS

View the following options:

Caution: These settings should only be conﬁgured by experienced

network technicians. Changing the settings could adversely affect the operation of your Gateway and your local network.

3. Select the 5 GHz Wireless Mode as follows:

• N and AC Mode – This is the default setting. Both 802.11n and 802.11ac are available on the 5 GHz frequencies.

• N Only Mode – The 5 GHz frequencies are available to

802.11n devices. 802.11ac is not enabled.

• AC Only Mode – This provides maximum performance.

802.11ac devices will have exclusive use of the 5 GHz frequencies and 802.11n devices will not be able to connect at 5 GHz.

4. Click Apply to save the changes.

3.6/ OTHER ADVANCED WIRELESS OPTIONS

You can view additional wireless options.

To view the options:

1. In the Advanced Settings page, locate the Level 3 section

and click Other Advanced Wireless Options link. A warning message displays.

2. Click Yes . The Other Advanced Wireless Options page

displays.

SETTINGS

03 / WIRELESS

• MPDU Aggregation – enables or disables MPDU aggregation

5. To access the WMM settings, click the WMM Settings link.

6. Click Apply to save changes.

3.6a/ WMM SETTINGS

You can prioritize the types of data transmitted over the wireless network using the advanced WMM settings.

Wireless QoS (WMM) can improve the quality of service (QoS) for voice, video, and audio streaming over Wi-Fi by prioritizing these data streams.

To set the options:

1. In the Advanced Wireless Options page, click WMM Settings

link. A warning message displays.

2. Click Ye s. The WMM Settings page displays.

3. To enable Wireless QoS (WMM), select the Enabled check

box.

4. To enable WMM Power Save, enable Wireless QoS (WMM)

ﬁrst, then enable WMM Power Save by selecting the Enabled check box.

5. Click Apply to save changes.

• Transmission Rate – displays status as Auto

• Transmit Power – adjusts the power of the wireless signal

• CTS (Clear to Send) Protection Mode – allows mixed

802.11b/g/n/ac networks to operate at maximum efﬁciency

• CTS Protection Type – displays cts, which is only for mixed 802.11b/g/n/ac networks or rts-cts, which is for

802.11a/b/g networks

• Frame Burst – Max Number – allows packet bursting, which increases overall network speed

• Frame Burst – Burst Time – indicates the burst time of the frame bursts

• Beacon Interval – displays the time period of the beacon interval

• DTIM (Delivery Trafﬁc Indication Message) Interval – provides a countdown mechanism, informing wireless network clients of the next window for listening to broadcast and multicast messages

• Fragmentation Threshold – increases the reliability of frame transmissions on the wireless network

• RTS Threshold – controls the size of the data packet that the low level RF protocol issues to an RTS packet

• MSDU Aggregation – enables or disables MSDU aggregation

OTHER ADVANCED WIRELESS OPTIONS

04/

CONFIGURING MY NETWORK SETTINGS

You can conﬁgure the basic network settings for your Gateway’s network.

MY NETWORK SETTINGS

04 / CONFIGURING

4.0

4.1

Accessing My Network Settings

Using My Network Settings

ACCESSING MY NETWORK SETTINGS AND USING MY NETWORK SETTINGS

4.1/ USING MY NETWORK SETTINGS

You can access and conﬁgure common network parameters:

• Website Blocking - To block speciﬁc websites, click Website Blocking. The Parental Control page displays.

For additional information about blocking websites, refer to Chapter 7 Setting Parental Controls.

• Block Internet Services - Internet services blocking prevents a device on your network from accessing speciﬁc services, such as receiving email or downloading ﬁles from FTP sites. Block Internet services by locating the device, then clicking Block Internet Services. The Access Control page displays.

For additional information on blocking Internet services, refer to the Access Control section in Chapter 6 Conﬁguring Security Settings.

• Port Forwarding - Port Forwarding allows your network to be exposed to the Internet in speciﬁc limited and controlled ways. For example, you could allow speciﬁc applications, such as gaming, voice, and chat, to access servers in the local network. To access the Port Forwarding page, click Port Forwarding.

For additional information, refer to the Port Forwarding section in Chapter 6 Conﬁguring Security Settings.

• View Device Details - Click View Device Details to display the Device Information page and view the selected device’s information, such as IP Address, MAC address, Network Connection, Lease Type,

Caution: The settings described in this chapter should only be conﬁgured

by experienced network technicians. Changes could adversely affect the operation of your Gateway and your local network.

4.0/ ACCESSING MY NETWORK SETTINGS

My Network allows you to view and manage your network connections and devices. You can block websites and Internet services, set port forwarding, view device details, and rename devices.

To view your network connections:

1. On the Main page, select the My Network icon. The My

Network page opens with our current status displayed.

MY NETWORK SETTINGS

04 / CONFIGURING

USING MY NETWORK SETTINGS

Port Forwarding Services, and Windows Shared Folder as well as the Ping Test option. You can also click the device’s icon in the Main page to display the Device Information page.

• Rename this Device - To change the name of a speciﬁc device, click Rename this Device. The Rename Device page displays.

If desired, enter the new device name and/or select a different icon. Click Apply to save changes. The My Network page will open with the new name and icon displayed.

05/

USING NETWORK CONNECTIONS

5.0

5.1

5.2

5.3

5.4

Accessing Network Connections

Network (Home/Ofﬁce) Connection

Ethernet/Coax Connection Wireless Access Point

Connection Broadband Ethernet/Coax

Connection

ACCESSING NETWORK CONNECTIONS

CONNECTIONS

05 / USING NETWORK

Your Gateway supports various local area network (LAN) and wide area network (WAN), or Internet connections using Ethernet or coaxial cables.

You can conﬁgure aspects of the network and Internet connections as well as create new connections.

Caution: The settings described in this chapter should only be conﬁgured

by experienced network technicians. Changes could adversely affect the operation of your Gateway and your local network.

5.0/ ACCESSING NETWORK CONNECTIONS

You can access your network connections and view the connections by connection type.

To access the network connections:

1. Select My Network, then select Network Connections.

2. To display all connection entries, click the Advanced button.

NETWORK (HOME/OFFICE) CONNECTION

CONNECTIONS

05 / USING NETWORK

To view the connection:

1. On the Network Connections page, click the Network

(Home/Ofﬁce) connection link. The Network (Home/Ofﬁce)

Properties page displays.

2. To disable an active network connection, click Disable.

3. To rename a network connection, enter the new network

name in the Name ﬁeld.

4. Click Apply to save the changes.

3. To select a speciﬁc network connection, click the hyperlinked

name. The following sections detail the types of network connections that you can view.

5.1/ NETWORK (HOME/OFFICE) CONNECTION

You can view the properties of your local network. This connection is used to combine several network devices under one virtual network. For example, you can create a home/ofﬁce network connection for Ethernet and other network devices.

Note: When a network connection is disabled, the formerly underlying devices

connected to it will not be able to obtain a new DHCP address from that Gateway network interface.

CONNECTIONS

05 / USING NETWORK

• Connection Type - displays the type of connection.

• Physical Address - displays the physical address of the network card used for the network

• MTU - speciﬁes the Maximum Transmission Unit (MTU) speciﬁes the largest packet size permitted for Internet transmissions:

– Automatic - sets the MTU at 1500

– Automatic by DHCP - sets the MTU according to the

DHCP connection

– Manual - allows you to manually set the MTU

INTERNET PROTOCOL

In the Internet Protocol section, specify one of the following:

• Obtain an IP Address Automatically – the network connection is required by Verizon to obtain an IP address automatically (default). The DHCP server assigning the IP address also assigns a subnet mask address. The subnet mask address can be overridden by entering a different subnet mask address provided by Verizon or experienced network technician.

• Use the Following IP Address – the network connection uses a permanent or static IP address and subnet mask address, provided by Verizon or experienced network technician.

CONFIGURING THE HOME/OFFICE NETWORK

To conﬁgure a network connection:

1. In the Network (Home/Ofﬁce) Properties page, click

Settings. The conﬁguration page displays.

2. Conﬁgure the following sections, as needed.

GENERAL

In the General section, verify the following information:

• Status - displays the connection status of the network.

• Network – displays the type of network connection.

NETWORK (HOME/OFFICE) CONNECTION

CONNECTIONS

05 / USING NETWORK

For example, when you click the Action icon, you can conﬁgure the DNS server in the lower-level network connection properties settings for the Broadband Connection (Ethernet/Coax) network.

In addition, the DHCP and Routing actions listed below are examples of the actions that can be conﬁgured for the Broadband Connection (Ethernet/Coax) and Network (Home/Ofﬁce) networks.

DNS SERVER

The DNS (Domain Name System) is the naming system method by which websites or domain names are translated into IP addresses.

To conﬁgure your Gateway’s Broadband Connection (Ethernet/Coax) network to use a speciﬁc DNS server, refer to the DNS Server section of the Properties page.

To manually conﬁgure a DNS server using the DNS addresses provided by Verizon:

1. Specify the following DNS Server addresses: the Primary

and Secondary DNS server addresses.

2. Click Apply to save the changes.

DHCP SERVER

The IP Address Distribution section of the Properties settings is used to conﬁgure your Gateway’s Dynamic Host Conﬁguration Protocol (DHCP) server parameters.

BRIDGE

In the Bridge section of the Conﬁgure Network (Home/Ofﬁce), you can conﬁgure the various LAN interfaces. By default, the Ethernet, Coax, and Wireless Access Point connections are activated.

Caution: Do not change these settings unless speciﬁcally instructed to by

Verizon. Changes could adversely affect the operation of your Gateway and your local network.

Verify the following information:

• Status – displays the connection status of a speciﬁc device.

• Action – contains an icon that, when clicked, generates the next lower-level conﬁguration page for the speciﬁc network connection or network device.

NETWORK (HOME/OFFICE) CONNECTION

CONNECTIONS

05 / USING NETWORK

ROUTING

You can conﬁgure your Gateway to use static or dynamic routing.

• Static routing – speciﬁes a ﬁxed routing path to neighboring destinations based on predetermined metrics.

• Dynamic routing – automatically adjusts how packets travel on the network. The path determination is based on network/ device reachability and status of network being traveled.

To conﬁgure routing:

1. In the Routing Table section, click Add New Route to display

and modify the new route conﬁguration page.

Once enabled and conﬁgure, the DHCP server automatically assigns IP addresses to any network devices which are set to obtain their IP address dynamically.

If DHCP Server is enabled on your Gateway, conﬁgure the network devices as DHCP Clients. There are 2 basic options in this section: Disabled and DHCP Server.

To set up the Gateway’s network bridge to function as a DHCP server:

1. In the IP Address Distribution section, select the DHCP

server. Once enabled, the DHCP server provides automatic IP assignments (also referred to as IP leases) based on the preset IP range deﬁned below.

• Start IP Address – Enter the ﬁrst IP address in the IP range that the Gateway will automatically begin assigning IP addresses from. Since your Gateway’s IP address is

192.168.1.1, the default Start IP Address is 192.168.1.2.

• End IP Address – Enter the last IP address in the IP range that the Gateway will automatically stop the IP address allocation at. The maximum end IP address range that can be entered is 192.168.1.254.

2. If Windows Internet Naming Service (WINS) is being used,

enter the WINS server address.

3. In the Lease Time in Minutes ﬁeld, enter the amount of time

a network device is allowed to connect to the Gateway with its currently issued dynamic IP address.

4. Click Apply to save changes.

NETWORK (HOME/OFFICE) CONNECTION

ETHERNET/COAX CONNECTION

CONNECTIONS

05 / USING NETWORK

To rename the network connection, enter the new name in the Name ﬁeld.

3. Click Apply to save changes.

5.2a/ CONFIGURING THE ETHERNET/COAX CONNECTION

To conﬁgure the connection:

1. In the Broadband Connection (Ethernet/Coax) Properties

page, click Settings. The conﬁguration page displays.

COMPLETE NETWORK CONNECTION CONFIGURATION UPDATES

To save your changes click Apply.

5. 2/ ETHERNET/COAX CONNECTION

An Ethernet connection connects computers to your Gateway using Ethernet cables. The connections are either direct or use network hubs and switches.

A Coax connection connects devices, such as set-top boxes, to your Gateway using a coaxial cable.

Note: If disabling the connection, you must reboot your Gateway for the

change to take effect.

To view the connection:

1. In the Network Connections page, click the Broadband

Connection (Ethernet/Coax) link.

CONNECTIONS

05 / USING NETWORK

– Automatic by DHCP - sets the MTU according to the

DHCP connection

– Manual - allows you to manually set the MTU to be set.

COAX LINK

To set the Channel:

1. Select the coax link channel as 1 to 3.

2. Select the On or Off radio button in the Auto Detection ﬁeld.

3. To set privacy, select the Enabled check box. This causes

all devices connected to the coaxial cable to use the same password. This is recommended.

4. To set the password, enter the Coax Link password in the

Password ﬁeld.

5. To enable or disable the Coax link, click Disable or Enable.

6. To view the devices connected using the coaxial cable, click

the Go to WAN Coax Stats link.

2. Conﬁgure the following settings, as needed.

GENERAL

Verify the following information:

• Status - displays the connection status of the network.

• Network – displays the type of network connection.

• Connection Type - displays the type of connection.

• Physical Address - displays the physical address of the network card used for the network.

• MTU - speciﬁes the largest packet size permitted for Internet transmissions:

– Automatic - sets the MTU (Maximum Transmission Unit

at 1500)

ETHERNET/COAX CONNECTION

CONNECTIONS

05 / USING NETWORK

Click 5 GHz Wireless Access Point 1 or 2.4 GHz Wireless Access Point 2.

3. To disable the connection, click Disable.

4. To rename the connection, enter a name in the Name ﬁeld.

5. Click Apply to save the changes.

6. Reboot your Gateway.

COMPLETE ALL ETHERNET/COAX CONNECTION CONFIGURATION UPDATES

To save your changes:

1. Click Apply.

5.3/ WIRELESS ACCESS POINT CONNECTION

A Wireless Access Point network connection allows wireless devices to connect to the local area network (LAN) using the 2.4 GHz or 5 GHz Wi-Fi network.

Note: Once disabled, all wireless devices connected to that wireless network

will be disconnected from the LAN network and Internet.

To view the connection:

1. In the Network Connections page, click Advanced.

WIRELESS ACCESS POINT CONNECTION

CONNECTIONS

05 / USING NETWORK

– Automatic - set the MTU (Maximum Transmission

Unit) at 1500

– Automatic by DHCP - sets the MTU according to the

DHCP connection

– Manual - allows you to manually set the MTU

3. Click Apply to save changes.

5.4/ BROADBAND ETHERNET/COAX CONNECTION

A Broadband Ethernet connection connects computers to your Gateway using Ethernet cables. The connections are either direct or use network hubs and switches.

A Coax connection connects devices, such as set-top boxes, to your Gateway using a coaxial cable.

Note: If disabling the connection, you must reboot your Gateway for the

change to take effect.

To view the connection:

1. In the Network Connections page, click the Broadband

Connection (Ethernet/Coax) link.

5.3a/ CONFIGURING WIRELESS ACCESS POINT PROPERTIES

To conﬁgure the connection:

1. In the Wireless Access Point Properties page, click Settings.

The conﬁguration page displays.

2. Verify the following information:

• Status - displays the connection status of the network.

• Network – displays the type of network connection.

• Connection Type - displays the type of connection.

• Physical Address - displays the physical address of the

network card used for the network.

• MTU - speciﬁes the largest packet size permitted for

Internet transmissions:

WIRELESS ACCESS POINT CONNECTION AND BROADBAND ETHERNET/COAX CONNECTION

CONNECTIONS

05 / USING NETWORK

Conﬁgure the following settings, as needed.

GENERAL

Verify the following information:

• Status - displays the connection status of the network

• Network – displays the type of network connection

• Connection Type - displays the type of connection

• Physical Address - displays the physical address of the network card used for the network

2. To rename the network connection, enter the new name in

the Name ﬁeld.

3. Click Apply to save changes.

5.4a/ CONFIGURING THE ETHERNET/COAX CONNECTION

To conﬁgure the connection:

1. In the Broadband Connection (Ethernet/Coax) Properties

page, click Settings. The conﬁguration page displays.

BROADBAND ETHERNET/COAX CONNECTION

CONNECTIONS

05 / USING NETWORK

To view the devices connected using the coaxial cable, click the Go to WAN Coax Stats link.

INTERNET PROTOCOL

1. In the Internet Protocol section, specify one of the following:

• No IP Address – the connection has no IP address. This is

useful if the connection operates under a bridge.

• Obtain an IP Address Automatically – the network

connection is required by Verizon to obtain an IP address automatically. The server assigning the IP address also assigns a subnet mask address, which can be overridden by entering another subnet mask address.

• Use the Following IP Address - the network connection

uses a permanent or static IP address, then the IP address and subnet mask address.

2. To override the subnet mask, select the Override Subnet

Mask check box, then enter the new subnet mask.

• MTU - speciﬁes the largest packet size permitted for Internet transmissions:

– Automatic - set the MTU (Maximum Transmission Unit) at

1500

– Automatic by DHCP - sets the MTU according to the

DHCP connection

– Manual - allows you to manually set the MTU

COAX LINK

1. To set the Channel, select the coax link channel as 1 to 3.

2. Select the On or Off radio button in the Auto Detection ﬁeld.

3. To set privacy, select the Enabled check box. This causes

all devices connected to the coaxial cable to use the same password. This is recommended.

4. To set the password, enter the Coax Link password in the

Password ﬁeld.

5. To enable or disable the Coax link, click Disable or Enable.

BROADBAND ETHERNET/COAX CONNECTION

06/

CONFIGURING SECURITY SETTINGS

Your Gateway’s security suite includes comprehensive and robust security services, such as stateful packet inspection, ﬁrewall security, user authentication protocols, and password protection mechanisms.

These and other features help protect your computers from security threats on the Internet.

SECURITY SETTINGS

06 / CONFIGURING

6.0

6.1

6.2

6.3

6.4

6.5

6.6

Firewall Access Control Port Forwarding Port Triggering Remote Administration Static NAT Security Log

FIREWALL

The ﬁrewall regulates the ﬂow of data between the local network and the Internet. Both incoming and outgoing data are inspected, then either accepted and allowed to pass through your Gateway or rejected and barred from passing through your Gateway, according to a ﬂexible and conﬁgurable set of rules. These rules are designed to prevent unwanted intrusions from the outside, while allowing local network users access to Internet services.

The ﬁrewall rules specify the type of services on the Internet that are accessible from the local network and types of services in the local network that are accessible from the Internet.

Each request for a service that the ﬁrewall receives is checked against the ﬁrewall rules to determine whether the request should be allowed to pass through the ﬁrewall. If the request is permitted to pass, all subsequent data associated with this request or session is also allowed to pass, regardless of its direction.

For example, when accessing a website on the Internet, a request is sent to the Internet for this site. When the request reaches your Gateway, the ﬁrewall identiﬁes the request type and origin, such as HTTP and a speciﬁc computer in the local network. Unless your Gateway is conﬁgured to block requests of this type from this computer, the ﬁrewall allows this type of request to pass to the Internet.

When the website is returned from the web server, the ﬁrewall associates the website with this session and allows it to pass; regardless HTTP access from the Internet to the local network is blocked or permitted.

This chapter covers the following security features:

• Firewall - select the security level for the ﬁrewall.

• Access Control - restrict access from the local network to the Internet.

• Port Forwarding - enable access from the Internet to speciﬁed services provided by computers on the local network.

• Port Triggering - deﬁne port triggering entries to dynamically open the ﬁrewall for some protocols or ports.

• Remote Administration - enable remote conﬁguration of your gateway from any Internet-accessible computer.

• Static NAT - allow multiple static NAT IP addresses to be designated to devices on the network.

• Security Log - view and conﬁgure the security log.

6.0/ FIREWALL

The ﬁrewall is the cornerstone of the security suite for your Gateway. It has been exclusively tailored to the needs of the residential or ofﬁce user and is pre-conﬁgured to provide optimum security.

The ﬁrewall provides both the security and ﬂexibility home and ofﬁce users seek. It provides a managed, professional level of network security while enabling the safe use of interactive applications, such as Internet gaming and video conferencing.

Additional features, including surﬁng restrictions and access control, can also be conﬁgured locally through the user interface or remotely by a service provider.

SECURITY SETTINGS

06 / CONFIGURING

6.0b/ SPECIFYING GENERAL SETTINGS FOR IPV4 OR IPV6

To set your ﬁrewall conﬁguration:

1. From the Firewall General settings page click on desired IPv6

option to conﬁgure IPv6 security:

It is the origin of the request, not subsequent responses to this request, which determines whether a session can be established.

6.0a/ SETTING FIREWALL CONFIGURATION

You can select a maximum, typical, or minimum security level to block, limit, or permit all trafﬁc. The following table shows request access for each security level.

The request access is deﬁned as:

• Blocked trafﬁc - no access allowed, except as conﬁgured in Port Forwarding and Remote Access

• Limited - permits only commonly used services, such as email and web browsing

• Unrestricted - permits full access of incoming trafﬁc from the Internet and allows all outgoing trafﬁc, except as conﬁgured in Access Control

SECURITY SETTINGS

06 / CONFIGURING

Maximum

Typ ica l

Minimum

Blocked

Unrestricted

Limited

Unrestricted

Security Level Internet Requests

Incoming Trafﬁc

Local Network Req uests

Outgoing Trafﬁc

FIREWALL

ACCESS CONTROL

2. To block a service, click Add. The Add Access Control Rule

page displays.

3. To apply the rule to:

• All networked devices - select Any.

2. Select a security level by clicking one of the radio buttons.

Using the Minimum Security setting may expose the local network to signiﬁcant security risks, and should only be used for short periods of time to allow temporary network access.

3. Click Apply to save changes.

6.1/ ACCESS CONTROL

You can block individual computers on your local network from accessing speciﬁc services on the Internet. For example, you could block one computer from accessing the Internet, then block a second computer from transferring ﬁles using FTP as well as prohibit the computer from receiving incoming email.

Access control incorporates a list of preset services, such as applications and common port settings.

6.1a/ ALLOW OR RESTRICT SERVICES

To allow or restrict services:

1. From the Firewall page, select Access Control. The Access

Control page opens with the Allows and Blocked sections displayed. The Allowed section only displays when the ﬁrewall is set to maximum security.

SECURITY SETTINGS

06 / CONFIGURING

ACCESS CONTROL AND PORT FORWARDING

6. 2/ PORT FORWARDING

You can activate port forwarding to expose the network to the Internet in a limited and controlled manner. For example, enabling applications, such as gaming and voice, to work from the local network as well as allowing Internet access to servers within the local network.

To create port forwarding rules:

1. From the Firewall page, select Port Forwarding. The Port

Forwarding page opens with the current rules displayed.

2. To create a new rule, select the IP address in the Select IP

from Menu drop down.

• Speciﬁc devices only - select User Deﬁned, then click Add and create a network object.

4. In the Protocol ﬁeld, select the Internet protocol to be

allowed or blocked.

If the service is not included in the list, select User Deﬁned. The Edit Service page displays. Deﬁne the service, then click

OK. The service is automatically added to the Add Access Control Rule section.

5. Specify when the rule is active as Always or User Deﬁned

and click Add to create the schedule.

6. Click Apply to save changes. The Access Control page

displays a summary of the new access control rule.

6.1b/ DISABLE ACCESS CONTROL

You can disable an access control and enable access to the service without removing the service from the Access Control table. This can make the service available temporarily and allow you to easily reinstate the restriction later.

• To disable an access control, clear the check box next to the service name.

• To reinstate the restriction, select the check box next to the service name.

• To remove an access restriction, select the service and click Remove. The service is removed from the Access Control table.

SECURITY SETTINGS

06 / CONFIGURING

2. If needed, to select a port to forward communication to,

select an option in the Forward to Port list box.

3. If a single port or range of ports is selected, a text box

displays. Enter the port numbers.

4. To schedule the rule, select either Always or User Deﬁned in

the Schedule list box.

5. Click Add. The rule displays in the Applied Rules section.

6. Click Apply to save changes.

6.3/ PORT TRIGGERING

Port triggering can be described as dynamic port forwarding. By setting port triggering rules, inbound trafﬁc arrives at a speciﬁc network host using ports that are different than those used for outbound trafﬁc. The outbound trafﬁc triggers the ports where the inbound trafﬁc is directed.

For example, a gaming server is accessed using UDP protocol on port

2222. The gaming server then responds by connecting the user using UDP on port 3333, when a gaming session is initiated.

In this case, port triggering must be used since it conﬂicts with the following default ﬁrewall settings:

• Firewall blocks inbound trafﬁc by default.

• Server replies to your Gateway IP, and the connection is not sent back to the host since it is not part of a session.

3. Select the application in the Application to Forward drop

down.

4. Click Add. The rule displays in the Applied Rules section.

5. Click Apply to save changes.

6.2a/ ADVANCED PORT FORWARDING RULES

You can conﬁgure advanced port forwarding rules.

To conﬁgure the rules:

1. In the Port Forwarding page, select Advanced.

SECURITY SETTINGS

06 / CONFIGURING

PORT FORWARDING AND PORT TRIGGERING

3. Enter the service name then conﬁgure its inbound and

outbound trigger ports. Click Apply to save User Deﬁned changes. The Port Triggering page displays.

4. Click Apply again to save all changes.

6.4/ REMOTE ADMINISTRATION

Caution: Enabling Remote Administration places your Gateway network at risk

from outside attacks.

You can access and control your Gateway not only from within the local network, but also from the Internet using Remote Administration.

To resolve the conﬂict, a port triggering entry must be deﬁned, which allows inbound trafﬁc on UDP port 3333 only after a network host generated trafﬁc to UDP port 2222. This results in your Gateway accepting the inbound trafﬁc from the gaming server and sending it back to the network host which originated the outgoing trafﬁc to UDP port 2222.

To conﬁgure port triggering:

1. Select Port Triggering.

2. To add a service as an active protocol, click Add. The Edit

Port Triggering Rule page displays.

SECURITY SETTINGS

06 / CONFIGURING

PORT TRIGGERING AND REMOTE ADMINISTRATION

REMOTE ADMINISTRATION AND STATIC NAT

2. To enable access, select the check box.

3. Click Apply to save changes.

4. To remove access, clear the check box.

5. Click Apply again to save changes.

6.5/ STATIC NAT

Static NAT allows devices located behind a ﬁrewall that is conﬁgured with private IP addresses to appear to have public IP addresses to the Internet. This allows an internal host, such as a web server, to have an unregistered (private) IP address and still be accessible over the Internet.

100

You can allow incoming access to the following:

• Web Management - used to obtain access to your Gateway’s GUI and gain access to all settings and parameters through a web browser.

• Diagnostic Tools - used for troubleshooting and remote system management by a user or Verizon.

Web Management remote administration access may be used to modify or disable ﬁrewall settings. Local IP addresses and other settings can also be changed, making it difﬁcult or impossible to access your Gateway from the local network. Remote administration access to SSH or Web Management services should be activated only when absolutely necessary.

Note: Encrypted remote administration is performed using a secure SSL

connection and requires a SSL certiﬁcate. When accessing your Gateway for the ﬁrst time using encrypted remote administration, a warning page opens with a certiﬁcate authentication message displayed. This is due to your Gateway SSL certiﬁcate being self-generated. When this message display under that circumstance, ignore the message and continue. Even though this message displays, the self-generated certiﬁcate is safe and provides a secure SSL connection.

To enable remote administration:

1. Select Remote Administration.

SECURITY SETTINGS

06 / CONFIGURING

STATIC NAT AND SECURITY LOG

3. Select a source address in the Specify Address ﬁeld or enter

an IP address in the text box.

4. Enter the public IP address.

5. If using port forwarding, select the Enable Port Forwarding

for Static NAT check box.

6. Click Apply to save changes.

7. Repeat these steps to add additional static IP addresses.

6.6/ SECURITY LOG

You can view events that your ﬁrewall has blocked by accessing the security log. Your Gateway reports events, such as attempts to establish inbound and outbound connections, attempts to authenticate at an administrative interface, such as your Gateway GUI, ﬁrewall conﬁguration, and system start-up.

The security log reports the following information:

• Time - based on the date and time in your Gateway

• Event - consists of ﬁrewall information, ﬁrewall setup, and system log

• Even t Typ e - describes the event that occurred, such as a fragmented packet or parental controls.

• Details - provide a reason the event occurred, such as a packet has been blocked because of parental control.

102

To conﬁgure static NAT:

1. Select Stati c NAT.

2. To create a static NAT, click Add. The Add NAT/NAPT Rule

page displays.

SECURITY SETTINGS

06 / CONFIGURING

SECURITY LOG

• Echo/Chargen/Quote/Snork protection – a packet has been blocked due to Echo/Chargen/Quote/Snork protection.

• Firewall internal – from the ﬁrewall internal mechanism, event type is recorded and an accompanying explanation will be added.

• Firewall rules were changed – the rule set has been modiﬁed.

• Firewall status changed – the ﬁrewall status changed from up to down or vice versa, as speciﬁed in the event type description.

• First packet in connection is not a SYN packet – a packet has been blocked due to a TCP connection that started without a SYN packet.

• Fragmented packet – a fragment has been rejected.

• Fragmented packet, bad align – a packet has been blocked because, after defragmentation, the packet was badly aligned.

• Fragmented packet, header too big – a packet has been blocked because, after defragmentation, the header was too big.

• Fragmented packet, header too small – a packet has been blocked because, after defragmentation, the header was too small.

• Fragmented packet, no memory – a packet has been blocked because there is no memory for fragments.

• Fragmented packet, overlapped – a packet has been blocked because, after defragmentation, there were overlapping fragments.

• Fragmented packet, packet exceeds – a packet has been blocked

because, after defragmentation, the packet exceeded.

104

You can modify the type of events that display in the security log. This does not modify the event itself. It simply changes the information that displays in the log.

6.6a/ EVENT TYPES

The security log records the following event types:

• Access control – a packet has been accepted/blocked due to an access control rule.

• Advance ﬁlter rule – a packet has been accepted/blocked due to an advanced ﬁlter rule.

• ARP – an ARP packet has been accepted.

• AUTH:113 request - an outbound packet for AUTH protocol has been accepted (for maximum security level).

• Broadcast/Multicast protection – a packet with a broadcast/ multicast source IP has been blocked.

• Default policy – a packet has been accepted/blocked according to the default policy.

• Defragmentation failed – the fragment has been stored in memory and blocked until all fragments have arrived and defragmentation can be performed.

• DHCP request – your Gateway sent a DHCP request (depends on the distribution).

• DHCP response - your Gateway sent a DHCP response (depends on the distribution).

SECURITY SETTINGS

06 / CONFIGURING

• NAT Error: No free NAT IP – no free NAT IP, so NAT has failed.

• NAT out failed – NAT failed for this packet.

• Outbound Auth1X – an outbound Auth1X packet has been accepted.

• Packet invalid in connection – an invalid connection packet has been blocked.

• Parental control – a package has been block because of parental control.

• Passive attack on ftp-server: Client attempted to open Server ports – a packet has been blocked.

• Service – a packet has been accepted because of a certain service, as speciﬁed in the event type.

• Spooﬁng protection – a packet from the Internet with a source IP belong to the local network has been blocked.

• STP packet – STP (Spanning Tree Protocol) packet has been accepted/rejected.

• SynCookies protection – a SynCookies packet has been blocked.

• Trusted d evice – a packet from a trusted device has been accepted.

• UDP ﬂood protection – a packed has been blocked, stopping a UDP ﬂood.

• User authentication – a message arrived during login time, including both successful and failed authentication.

• Wildcard connection hooked – debug message regarding connection.

106

• Fragmented packet, packet too big – a packet has been blocked because, after defragmentation, the packet was too big.

• FTP port request to 3rd party is forbidden – possible bounce attack – a packet has been blocked.

• ICMP ﬂood protection – a broadcast ICMP (Internet Control Message Protocol) ﬂood.

• ICMP protection – a broadcast ICMP message has been blocked.

• ICMP redirect protection – an ICMP redirected message has been blocked.

• ICMP replay – an ICMP replay message has been blocked.

• Illegal packet options – the options ﬁeld in the packet’s header is either illegal or forbidden.

• IP Version 6 – an IPv6 packet has been accepted.

• Malformed packet: Failed parsing – a packed has been blocked because it is malformed.

• Maximum security enabled service – a packet has been accepted because it belongs to a permitted service in the maximum security level.

• Multicast IGMP connection – a multicast packet has been accepted.

• NAT Error: Connection pool is full - No connection created – a connection has not been created because the connection pool is full.

• NAT Error: Conﬂict mapping already exists – a conﬂict occurred because the NAT mapping already exists, so NAT failed.

SECURITY SETTINGS

06 / CONFIGURING

SECURITY LOG

108

SECURITY SETTINGS

06 / CONFIGURING

• Wildcard connection opened - debug message regarding connection.

• WinNuke protection – a WinNuke attack has been blocked.

To view the security log:

1. Select Security Log.

2. To modify the types of events that display in the log, click

Settings.

3. In the Accepted Events section, select the type of activities

that generates a log message:

• Accepted Incoming Connections – generates a log message for each successful attempt to establish an inbound connection to the local network.

• Accepted Outgoing Connections - generates a log message for each successful attempt to establish an outbound connection to the public network.

4. In the Blocked Events section, select the type of blocked

events you want logged.

5. To log a message for each remote administration connection

attempt, click the Remote Administration Attempts check box.

6. To log the connection for handling by the ﬁrewall and

application level Gateways, click the Connection States check box.

7. Click Apply to save changes.

SECURITY LOG

07/

SETTING PARENTAL CONTROLS

7.0

7.1

Activating Parental Controls

Rule Summary

The abundance of harmful information on the Internet poses a serious challenge for employers and parents alike as they ask “How can I regulate what my employee or child does on the Internet?”

With that question in mind, your Gateway’s Parental Controls were designed to allow control of Internet access on all locally networked devices.

110

PARENTAL CONTROLS

07 / SETTING

112

PARENTAL CONTROLS

07 / SETTING

ACTIVATING PARENTAL CONTROLS

7.0/ ACTIVATING PARENTAL CONTROLS

You can create a basic access policy for any computer or device on your Gateway network. Parental controls limit Internet access to speciﬁc websites based on a schedule that you create.

Access can be limited on speciﬁc websites or keywords embedded in a website. For example, you can block access to the ‘www.anysite.com’ as well as block any website that has the word ‘any’ in its site name.

To limit computer access:

1. Select Parental Controls.

2. In Step 1, select the computers or device where you are

limiting access in the Networked Computer/Device list box, then click Add. The devices display in the Selected Devices section.

3. To remove a device from the Selected Devices list box, select

the device, then click Remove. The device displays in the Networked Computer/Device list box.

4. In Step 2, click one of the following options in the Limit

Access By section:

• Block the following Websites and Embedded Keywords within a Website – blocks the speciﬁed websites and

websites with names contained the speciﬁed keyword.

• Allow the following Websites and Embedded Keywords within a Website – allows the speciﬁed websites and websites with names contained the speciﬁed keyword.

• Block ALL Internet Access – will not allow the device to access the Internet.

5. Enter the name of the website or keyword, then click Add.

6. To remove a website or keyword, select the word, then click

Remove.

114

PARENTAL CONTROLS

07 / SETTING

ACTIVATING PARENTAL CONTROLS AND RULE SUMMARY

7. Create a schedule by selecting the days of the week when the

rule will be active or inactive.

8. Set the time when the rule will be active or inactive, then

specify the start time and end time.

9. Create a rule name and description.

10. Click Apply to save changes.

7.1/ RULE SUMMARY

You can view the rules created for your Gateway.

• To view the rule summary, select Rule Summary. The Rule Summary page opens with the rule name, description, and computer or device displayed.

You can view, edit, or delete the rule.

08/

CONFIGURING ADVANCED SETTINGS

Advanced settings cover a wide range of sophisticated conﬁgurations for your Gateway’s ﬁrmware and network.

116

ADVANCED SETTINGS

08 / CONFIGURING

8.0

8.1

8.2

8.3

8.4

8.5

8.6

8.7

Using Advanced Settings Utilities DNS Settings Network Settings Routing Firmware Upgrade Date and Time Conﬁguration Settings

118

ADVANCED SETTINGS

08 / CONFIGURING

USING ADVANCED SETTINGS AND UTILITIES

3. Select a topic by clicking the topic name.

8.1/ UTILITIES

You can access the following advanced settings:

• Diagnostics – performs diagnostic tests

• Restore Defaults – resets your Gateway to it default settings

• Reboot Router – restarts your Gateway

• MAC Cloning – clones the MAC address

• AR P Table – displays active devices with their IP and MAC addresses

• Users – creates and manages remote users

• Quality of Service (QoS) – contact Technical Support for detailed information

Caution: Many of the settings described in this section should only be

conﬁgured by experienced network technicians. Changes could adversely affect the operation of your Gateway and local network.

8.0/ USING ADVANCED SETTINGS

You can access the following settings:

To access the advanced settings:

1. Select Advanced. A warning page displays, asking if you want

to proceed.

2. Click Ye s. The Advanced page displays.

Utilities

DNS Settings

Network Settings

Conﬁguration Settings

Date & Time

Firmware Upgrade

Routing

120

ADVANCED SETTINGS

08 / CONFIGURING

UTILITIES

3. Click Close to exit the session.

8.1b/ RESTORE DEFAULTS

You can restore your conﬁguration settings to your Gateway factory default settings. Restoring the default settings erases the current conﬁguration, including user deﬁned settings and network connections. All connected DHCP client must request new IP addresses. Your Gateway must restart.

Prior to restoring the factory defaults, you may want to save your current conﬁguration to a ﬁle. This allows you to reapply your current settings and parameters to the default settings, as needed. For additional information, refer to the Conﬁguration File section.

Note: When restoring defaults, the setting and parameters of your Gateway

are restored to their default values. This includes the Administrator password. A user-speciﬁed password will no longer be valid.

To restore your Gateway’s factory default settings:

1. Select Restore Defaults in the Advanced page.

• Local Administration – allows you to grant local SSH access

• Remove Administration – detailed in Chapter 6 Conﬁguring Your Network Settings

8.1a/ DIAGNOSTICS

You can use diagnostics to test network connectivity.

To diagnose network connectivity:

1. Select Diagnostics in the Advanced page.

2. To ping an IP address, enter the IP address or domain name in

the Destination ﬁeld and click Go.

The diagnostics will display the number of pings, status, packets sent, and round trip time.

If no diagnostic status displays, click Refresh in your web browser.

122

ADVANCED SETTINGS

08 / CONFIGURING

UTILITIES

8.1d/ MAC CLONING

A MAC address is a hexadecimal code that identiﬁes a device on a network. All networkable devices have a unique MAC address.

When replacing a network device on your Gateway, you can simplify the installation process by copying the MAC address of the existing device to your Gateway.

To copy the MAC address of the existing device:

1. Select MAC Cloning in the Advanced page.

2. In the To Physical Address ﬁeld, enter the MAC address of

your new device.

3. To locate the MAC address, refer to the documentation from

the device manufacturer.

4. Click Apply to save changes.

2. To save your current conﬁguration ﬁle, click Save

Conﬁguration File.

3. To restore the factory default settings, click OK.

The factory default settings are applied and your Gateway restarts. Once complete, the Login page for the First Time Easy Setup Wizard displays.

8.1c/ REBOOT GATEWAY

You can reboot your Gateway using the Reboot Router feature as well as pressing and holding the WPS button on the front of the Gateway for at least 10 seconds.

To reboot your Gateway:

1. Select Reboot Router in the Advanced page.

2. To reboot, click OK. Your Gateway reboots. This may take up

to a minute.

3. To access your Gateway user interface, refresh your web

browser.

124

ADVANCED SETTINGS

08 / CONFIGURING

UTILITIES

To view users:

1. Select Users in the Advanced page.

2. In the Login Conﬁguration section, enter the maximum

number of unsuccessful login attempts.

3. To edit usernames and passwords, click the Edit icon in the

Action column. The User Settings page displays.

8.1e/ ARP TABLE

You can view the IP and MAC addresses of each DHCP connection.

To view the IP and MAC addresses:

1. Select ARP Table.

2. Review the IP and MAC address for each device.

3. When complete, click Close.

8.1f/ USERS

You can view the users that can currently access your wireless network. In addition, you can modify their login password and name as well as manage the number of unsuccessful login attempts a user can enter before your Gateway temporarily denies all further login attempts by that user.

126

ADVANCED SETTINGS

08 / CONFIGURING

UTILITIES

8.1g/ LOCAL ADMINISTRATION

You can grant local access on a speciﬁc port.

To grant access:

1. Select Local Administration in the Advanced page.

2. To grant access, select the check box for the speciﬁc SSH

access.

3. Click Apply to save changes. Local access is granted.

4. To remove access, clear the checkbox, then click Apply. No

local access is granted.

8.1h/ REMOTE ADMINISTRATION

The Remote Administration parameters are detailed in Chapter 4 Conﬁguring Your Network Settings.

4. To edit the username and set a new password, as needed.

5. To add a new user, specify the following parameters:

• Full Name - name of the user.

• User Name – name the user enters to remotely access the home or ofﬁce network. This ﬁeld is case-sensitive.

6. To set a new Password, select the Set a new password check

box. The New Password ﬁelds display.

7. Verify the level of access for the user in the Permissions

ﬁeld.

8. Click Apply to save changes. The Users page opens with the

user information displayed.

9. Click Apply again to save changes and exit.

128

ADVANCED SETTINGS

08 / CONFIGURING

DNS SETTINGS AND NETWORK SETTINGS

4. To edit the host name or IP address, click the Edit icon in the

Action column. The DNS Entry page displays. Edit the host name and/or IP address, then click Apply to save changes.

5. To remove a host from the DNS table, click the Delete icon in

the Action column.

8.3/ NETWORK SETTINGS

You can conﬁgure the following network settings:

• Network Objects – deﬁne a group, such as a group of computers

• UPnP – checks the validity of all UPnP services and rules

• Port Forwarding Rules – displays port forwarding rules

8.3a/ NETWORK OBJECTS

Network objects deﬁne a group, such as a group of computers, on your Gateway network by MAC address, IP address, and /or host name. The deﬁned group becomes a network object. You can apply settings, such as conﬁguring system rules, to all devices deﬁned in the network object.

For example, instead of setting the same website ﬁltering conﬁguration individually to ﬁve computers one at a time, you can deﬁne the computers as a network object. Website ﬁltering can then be simultaneously applied to all the computers.

You can use network objects to apply security rules based on host names, instead of IP addresses. This is useful since IP addresses

8. 2/ DNS SETTINGS

You can view and manage the DNS server host name and IP address as well as add a new computer. The DNS server does not require conﬁguration.

8.2a/ DNS SERVER

You can edit the host name and/or IP address, if the host was manually added to the DNS table. If not, you can only modify the host name.

To access the DNS server:

1. Select DNS Server in the Advanced page.

2. To view and add computers stored in the DNS table, click Add

DNS Entry. The Add DNS Entry page displays.

3. In the Host Name ﬁeld, enter the name of the computer, then

enter the IP address and click Apply to save changes. The DNS Server page displays.

130

ADVANCED SETTINGS

08 / CONFIGURING

NETWORK SETTINGS

3. In the Description ﬁeld, enter a name for the network object.

4. Click Add. The Edit Item page displays.

5. Select the type of network object as IP address, IP subnet,

IP range, MAC address, host name, DHCP option, or protocol, and click Apply to save changes.

change from time to time. In addition, you can deﬁne network objects according to MAC address to make the rule application more persistent against network conﬁguration settings.

To deﬁne a network object:

1. Select Network Objects in the Advanced page.

2. To deﬁne a network object, click Add. The Edit Network

Objects page displays.

132

ADVANCED SETTINGS

08 / CONFIGURING

To enable UPnP and allow UPnP services to be deﬁned on any network hosts, select the UPnP Enabled check box.

3. To enable automatic cleanup of invalid rules, select Enable

Automatic Cleanup of Old Unused UPnP Services check box.

4. Click Apply to save changes.

8.3c/ PORT FORWARDING RULES

You can view, modify, and delete port forwarding rules.

To access the rules:

1. Select Port Forwarding Rules in the Advanced page.

6. Repeat the above steps to create additional network objects.

7. When complete, click Apply to save changes.

8.3b/ UNIVERSAL PLUG AND PLAY

You can use Universal Plug and Play (UPnP) to support new devices without conﬁguring or rebooting your Gateway. In addition, you can enable the automatic cleanup of invalid rules. When enabled, this functionality veriﬁes the validity of all UPnP services and rules every ﬁve minutes. Old and unused UPnP deﬁned services are removed, unless a user-deﬁned rule depends on it.

UPnP services are not deleted when disconnecting a computer without proper shutdown of the UPnP applications, such as messenger. Services may often not be deleted and eventually this leads to the exhaustion of rules and services, and no new services can be deﬁne. The cleanup feature locates the invalid services and removes them, preventing services exhaustion.

To access this setting:

1. Select Universal Plug and Play in the Advanced page.

NETWORK SETTINGS

134

ADVANCED SETTINGS

08 / CONFIGURING

8.4/ ROUTING

You can conﬁgure the following settings:

• IPv6 – enables IPv6 support.

• Routing – manages the routing and IP address distribution rules.

• IP Address Distribution - adds computers conﬁgured as DHCP clients to the network

8.4a/ IPv6

Use the IPv6 feature settings to enable, disable, or conﬁgure an IPv6 Internet connection and IPv6 LAN settings.

1. To conﬁgure your network to use the IPv6 Internet

connection type. Select IPv6 from the Advanced page to display the IPv6 service options:

2. To edit a protocol rule, click the Edit icon in the Action

column. The Edit Service page displays.

3. Modify the Service Name and Service Description, as

needed.

4. To modify the current protocol, click the Edit icon in the

Action column.

5. To add server ports, click Add Server Ports.

6. Click Apply to save changes.

NETWORK SETTINGS AND ROUTING

136

ADVANCED SETTINGS

08 / CONFIGURING

Once conﬁgured using valid IPv6 WAN and LAN conﬁgurations you should not see any errors when you click on the “Apply” button and the Main page will reﬂect the router’s new IPv6 address as shown below.

You should also see the IPv6 address for all IPv6 supported devices on your local network displayed on the My Network page and under the Broadband Connection (Ethernet/Coax) Properties as shown on the two pages below.

2. Select Enable under the Enable IPv6 Support option. (Once

IPv6 is enabled the default setting will be IPv6 WAN as DHCPv6 and IPv6 LAN as Stateless).

3. Select the appropriate IPv6 connection method from the

drop-down list, as shown below to specify the method to be used to obtain your WAN IPv6 Address.

4. Click Apply to have changes take effect.

NOTE: The Internet IPv6 service is required for this feature to work

over the Internet.

5. To disable the IPv6 service click on the “Disable” option as

shown below and click Apply to have changes take effect.

ROUTING

Once conﬁgured your IPv6 address will show here

138

ADVANCED SETTINGS

08 / CONFIGURING

ROUTING

2. Specify the Static method to be used to obtain your WAN

IPv6 Address by entering:

• IPv6 WAN Conﬁguration (select Static) as shown in drop-

down list and page below:

• IPv6 WAN Address

• Preﬁx Length (A numeric value between 16 and 128)

• Default Gateway

• Primary DNS Server

STATIC - WAN IPv6 ADDRESS CONNECTION

The IPv6 WAN Static conﬁgurations are IPv6 settings that you enter manually. These speciﬁc IPv6 addresses and settings are not expected to change frequently.

1. To conﬁgure IPv6 WAN Static mode, select the Static option

on the IPv6 Conﬁguration Control Page as shown below:

140

ADVANCED SETTINGS

08 / CONFIGURING

• LAN Preﬁx

• LAN IPv6 Link Local Address (automatically populated)

• LAN IPv6 Address Range (start and end)

• Router Advertisement Lifetime (minutes between 0-150)

• IPv6 Address Lifetime (minutes between 3-150)

• Interfaces - check one or more of the box(s) to apply IPv6 LAN settings to the selected interfaces:

– Ethernet/Coax IPv6 Enabled

– Wireless Access Point 1 IPv6 Enabled

– Wireless Access Point 2 IPv6 Enabled

3. After entering all appropriate IPv6 settings click Apply to

have changes take effect.

STATIC WAN WITH LAN IPv6 STATELESS SETTINGS:

1. To conﬁgure LAN IPv6 Stateless mode with Static WAN,

select the Stateless option on the IPv6 Conﬁguration Control Page as shown below:

2. Specify the settings to be used to assign LAN IPv6

addresses by entering the following details:

• Secondary DNS Server

3. After entering all appropriate IPv6 settings click Apply to

have changes take effect.

STATIC - WAN IPv6 ADDRESS CONNECTION

1. To conﬁgure IPv6 LAN Stateful mode with Static

WAN, select the Stateful (DHCPv6) option on the IPv6 Conﬁguration Control Page as shown below:

2. Specify the Stateful (DHCPv6) settings to be used to assign

LAN IPv6 addresses by entering the following details:

• IPv6 LAN Conﬁguration (select Stateful from the drop- down list) as shown in drop-down list and page below:

ROUTING

142

ADVANCED SETTINGS

08 / CONFIGURING

DHCPv6 - WAN IPv6 ADDRESS CONNECTION

The IPv6 WAN DHCPv6 conﬁgurations are IPv6 settings that you enter that will allow your IPv6 connection to be updated by the ISP as needed.

1. To conﬁgure IPv6 WAN Stateful (DHCPv6) mode, select the

Stateful (DHCPv6) option on the IPv6 Conﬁguration Control Page as shown below:

2. Specify the DHCPv6 method to be used to obtain your WAN

IPv6 Address by entering:

• IPv6 WAN Conﬁguration (select DHCPv6 from the dropdown list) as shown in drop-down list and page below:

• IPv6 LAN Conﬁguration (select Stateless from the drop- down list) as shown in drop-down list and page below:

• LAN Preﬁx

• LAN IPv6 Link Local Address (automatically populated)

• Router Advertisement Lifetime (minutes between 0-150)

• Interfaces - check one or more of the box(s) to apply IPv6 LAN settings to the selected interfaces:

– Ethernet/Coax IPv6 Enabled

– Wireless Access Point 1 IPv6 Enabled

– Wireless Access Point 2 IPv6 Enabled

3. After entering all appropriate IPv6 settings click Apply to

have changes take effect.

ROUTING

144

ADVANCED SETTINGS

08 / CONFIGURING

• LAN Preﬁx

• LAN IPv6 Link Local Address (automatically populated)

• LAN IPv6 Address Range (start and end)

• Router Advertisement Lifetime (minutes between 0-150)

• IPv6 Address Lifetime (minutes between 3-150)

• Interfaces - check one or more of the box(s) to apply IPv6 LAN settings to the selected interfaces:

– Ethernet/Coax IPv6 Enabled

– Wireless Access Point 1 IPv6 Enabled

– Wireless Access Point 2 IPv6 Enabled

3. After entering all appropriate IPv6 settings click Apply to

have changes take effect.

DHCPv6 WAN WITH LAN IPv6 STATELESS SETTINGS:

1. To conﬁgure IPv6 LAN Stateless mode with DHCPv6 WAN,

select the Stateless option on the IPv6 Conﬁguration Control Page as shown below:

3. Check to either ‘Obtain IPv6 DNS Server address

automatically’, or to ‘Use the following IPv6 DNS Server addresses’

4. After entering all appropriate IPv6 settings click Apply to

have changes take effect.

DHCPv6 WAN WITH LAN IPv6 STATEFUL (DHCPv6) SETTINGS:

1. To conﬁgure IPv6 WAN Stateful (DHCPv6) mode, select the

Stateful (DHCPv6) option on the IPv6 Conﬁguration Control Page as shown below:

2. Specify the Stateful (DHCPv6) settings to be used to assign

LAN IPv6 addresses by entering the following details:

• IPv6 LAN Conﬁguration (select Stateful from the drop- down list) as shown in drop-down list and page below:

ROUTING

146

ADVANCED SETTINGS

08 / CONFIGURING

ROUTING

3. After entering all appropriate IPv6 settings click Apply to

have changes take effect.

LAN IPv6 CONFIGURATION WITHOUT AN IPv6 WAN CONNECTION:

1. To conﬁgure IPv6 to use either the IPv6 LAN Stateful

or Stateless mode without using an IPv6 Internet WAN connection, select the None option on the IPv6 Conﬁguration Control Page as shown below:

2. After entering all appropriate IPv6 settings click Apply to

have changes take effect.

LAN IPv6 STATEFUL (DHCPv6) WITH NO WAN SETTINGS:

1. To conﬁgure IPv6 LAN Stateful mode with No WAN

connection, select the Stateful option on the IPv6 Conﬁguration Control Page as shown below:

2. Specify the Stateless settings to be used to assign LAN IPv6

addresses by entering the following details:

• IPv6 LAN Conﬁguration (select Stateless from the drop- down list) as shown in drop-down list and page below:

• LAN Preﬁx (automatically populated)

• LAN IPv6 Link Local Address (automatically populated)

• Router Advertisement Lifetime (minutes between 0-150)

• Interfaces - check one or more of the box(s) to apply IPv6 LAN settings to the selected interfaces:

– Ethernet/Coax IPv6 Enabled

– Wireless Access Point 1 IPv6 Enabled

– Wireless Access Point 2 IPv6 Enabled

148

ADVANCED SETTINGS

08 / CONFIGURING

• Interfaces - check one or more of the box(s) to apply IPv6 LAN settings to the selected interfaces:

– Ethernet/Coax IPv6 Enabled

– Wireless Access Point 1 IPv6 Enabled

– Wireless Access Point 2 IPv6 Enable

3. After entering all appropriate IPv6 settings click Apply to

have changes take effect.

LAN IPv6 STATELESS WITH NO WAN SETTINGS:

1. To conﬁgure IPv6 LAN Stateless mode with No WAN

connection, select the Stateless option on the IPv6 Conﬁguration Control Page as shown below:

2. Specify the Stateless settings to be used to assign LAN IPv6

addresses by entering the following details:

2. Specify the Stateful (DHCPv6) settings to be used to assign

LAN IPv6 addresses by entering the following details:

• IPv6 LAN Conﬁguration (select Stateful from the drop- down list) as shown in drop-down list and page below:

• LAN IPv6 Link Local Address (automatically populated)

• LAN IPv6 Address Range (start and end)

• Router Advertisement Lifetime (minutes between 0-150)

ROUTING

• IPv6 LAN Conﬁguration (select Stateless from the drop- down list) as shown in drop-down list and page below:

• LAN IPv6 Link Local Address (automatically populated)

• Router Advertisement Lifetime (minutes between 0-150)

• Interfaces - check one or more of the box(s) to apply IPv6 LAN settings to the selected interfaces:

– Ethernet/Coax IPv6 Enabled

– Wireless Access Point 1 IPv6 Enabled

– Wireless Access Point 2 IPv6 Enable

3. After entering all appropriate IPv6 settings click Apply to

have changes take effect.

8.4b/ ROUTING SETTINGS

You can view the routing and IP address distribution rules as well as add, edit, or delete the rules.

To view the rules:

1. Select Routing in the Advanced page.

150

ADVANCED SETTINGS

08 / CONFIGURING

To add a new Gateway, click Add New Route.

ROUTING

152

ADVANCED SETTINGS

08 / CONFIGURING

Specify the following parameters:

• Name – select the network type.

• Destination - enter the destination IP of the destination host, subnet address, network address, or default route. The destination for a default route is 0.0.0.0.

• Netmask – enter the network mask. This is used in conjunction with the destination to determine when a route is used.

• Gateway – enter the IP address of your Gateway.

• Metric – enter a measurement preference of the route. Typically, the lowest metric is the most preferred route. If multiple routes exist to a speciﬁc destination network, the route with the lowest metric is used.

4. Click Apply to save changes.

8.4c/ IP ADDRESS DISTRIBUTION

You can easily add computers conﬁgured as DHCP clients to the network. The DHCP server provides a mechanism for allocating IP addresses to these hosts and for delivering network conﬁguration parameters to the hosts.

For example, a client (host) sends a broadcast message on the network requesting an IP address for itself. The DHCP server then checks its list of available addresses and leases a local IP address to the host for a speciﬁc period of time and simultaneously designates this IP address as taken. At this point, the host is conﬁgured with an IP address for the duration of the lease.

The host can renew an expiring lease or let it expire. If it renews a lease, the host receives current information about network services, as it did during the original lease, allowing it to update its network conﬁgurations to reﬂect any changes that occurred since the ﬁrst connection to the network.

If the host wishes to terminate a lease before its expiration, it sends a release message to the DHCP server. This makes the IP address available for use by other hosts.

The DHCP server performs the following functions:

• Displays a list of all DHCP host devices connected to your Gateway

• Deﬁnes the range of IP addresses that can be allocated in the network

• Deﬁnes the length of time the dynamic P addresses are allocated

• Provides the above conﬁgurations for each network device and can be conﬁgured and enabled or disabled separately for each network device

• Assigns a static lease to a network computer to receive the same IP address each time it connects to the network, even if this IP address is within the range of addresses that the DHCP server may assign to other computer

• Provides the DNS server with the host name and IP address of each computer connected to the network

ROUTING

154

ADVANCED SETTINGS

08 / CONFIGURING

ROUTING

To view a summary of the services provided by the DHCP server:

1. Select IP Address Distribution in the Advanced page.

DHCP SERVER SETTINGS

You can edit the DHCP server settings for a device.

To edit the settings:

1. On the IP Address Distribution page, click the Edit icon in

the Action column. The DHCP Settings page opens with the device information displayed.

2. To enable the DHCP server, select DHCP Server in the IP

Address Distribution ﬁeld.

Once enabled, the DHCP server provides automatic IP assignments (IP leases) based on the preset IP range deﬁned below.

3. To conﬁgure the DHCP server complete the following ﬁelds:

• Start IP Address – enter the ﬁrst IP address that your Gateway will automatically begin assigning IP addresses from. Since your Gateway’s default IP address is

192.168.1.1, the default start IP address should be

192.162.1.2.

• End IP Address – enter the last IP address that your Gateway will automatically stop the IP address allocation. The maximum end IP address range that can be entered is

192.168.1.254.

• WINS Server – determines the IP address associated with a network device.

• Lease Time in Minutes – assigns the amount of time in minutes that each device is assigned an IP address by the DHCP server when it connects to the network.

When the lease expires, the server determines if the computer has disconnected from the network. If it has, the server may reassign this IP address to a newlyconnected computer.

• Provide Host Name if Not Speciﬁed by Client – when activated, your Gateway assigns a default name to the client, if the DHCP client has no host name.

4. Click Apply to save changes.

DHCP CONNECTIONS

You can view a list of the connections currently assigned and recognized by the DHCP server. In addition, you can add a new connection with a ﬁxed IP address.

NOTE: The ﬁxed IP address of a device is assigned to the MAC address of

the network card installed on the network computer. If this network card is replaced, you must update the device entry in the DHCP Connections list with the MAC address of the new network card.

To view a list of computers:

1. On the IP Address page, click Connection List.

2. To deﬁne a new Static Connection with a ﬁxed IP address,

click Add Static Connection.

3. Enter the host name.

4. Enter the ﬁxed IP address to be assigned.

5. Enter the MAC address of the network interface of the

computer used with this DHCP static connection.

6. Click Apply to save changes.

8.5/ FIRMWARE UPGRADE

You can perform the following functions:

• Firmware Upgrade – upgrades using the Internet or a local computer.

• Firmware Restore – rollbacks your ﬁrmware to a previous version.

156

ADVANCED SETTINGS

08 / CONFIGURING

ROUTING AND FIRMWARE UPGRADE

8.5a/ FIRMWARE UPGRADE

Your Gateway offers a built-in mechanism for upgrading or restoring its ﬁrmware without losing custom conﬁguration and settings.

To upgrade the ﬁrmware:

1. Select Firmware Upgrade in the Advanced page.

To upgrade from a local computer:

1. First obtain a valid ﬁrmware image (ﬁle) for your Gateway.

2. Click Upgrade Now, then click Browse to locate the

downloaded ﬁrmware ﬁle and click Open.

3. Click OK to begin the ﬁrmware update process. The Firmware

Upgrade in process page displays.

When the upgrade process completes, your Gateway automatically reboots. If the web page does not automatically refresh within one minute, you can manually refresh the page. The new ﬁrmware runs, maintaining any custom conﬁguration and settings.

8.5b/ FIRMWARE RESTORE

Firmware Restore allows you to undo changes to your Gateway and restore previous settings. For example, you can use ﬁrmware restore if a ﬁrmware update does not ﬁt your needs.

To restore ﬁrmware to a previous version:

1. Select Firmware Restore in the Advanced page.

2. Click Restore Backup Firmware.

158

ADVANCED SETTINGS

08 / CONFIGURING

FIRMWARE UPGRADE

8.6/ DATE AND TIME

You can conﬁgure the following settings:

• Date and Time Settings – sets the time zone and enables automatic time updates.

• Scheduler Rules – limits the activation of ﬁrewall rules to speciﬁc time periods.

8.6a/ DATE AND TIME SETTINGS

You can set the time zone and enable automatic time updates.

To conﬁgure the settings:

7. Select Date and Time in the Advanced page.

8. Select the local time zone. Your Gateway automatically

detects daylight saving times for selected time zone.

9. In the Automatic Time Update section, select the Enabled

check to perform an automatic time update.

10. Deﬁne the time server addresses by clicking Add. The Time

Server Settings page displays.

11. Enter the IP address or domain name of the time server, then

click Apply to save changes.

8.6b/ SCHEDULER RULES

Scheduler rules are used for limiting the activation of ﬁrewall rules to speciﬁc time periods. The time periods are either for days of the week or for hours of each day based on activity or inactivity.

To deﬁne a rule:

1. Verify that the date and time of your Gateway is correct.

2. Select Scheduler Rules in the Advanced page.

160

ADVANCED SETTINGS

08 / CONFIGURING

FIRMWARE UPGRADE

3. Click Add. The Set Rule Schedule page displays.

4. Enter the name of the rule.

5. In the Rule Settings section, specify if the rule is active at

the scheduled time or inactive at the scheduled time.

6. Click the Add Rule Schedule. The Edit Rule Schedule page

displays.

7. Select the active or inactive days of the week.

8. To deﬁne a new active or inactive hourly range, click New

Hours Range Entry.

9. Enter the start and end time, then click Apply to save

changes.

162

ADVANCED SETTINGS

08 / CONFIGURING

DATE AND TIME

10. Click Apply again to save the rule schedule.

8.7/ CONFIGURATION SETTINGS

You can conﬁgure the following conﬁguration settings:

• Conﬁguration File – used for ﬁle backups and restoring conﬁguration ﬁles

• System Settings – conﬁgures various system and management parameters

• Port Conﬁguration – sets up Ethernet ports

8.7a/ CONFIGURATION FILE

You can use the Conﬁguration File functionality to view, save, and load conﬁguration ﬁles. These ﬁles are used to backup and restore the current conﬁguration of your Gateway.

Only conﬁguration ﬁles saved on a speciﬁc Gateway can be applied to that Gateway. You cannot transfer conﬁguration ﬁles between Gateways.

WARNING: Manually editing a conﬁguration ﬁle can cause your Gateway to

malfunction or become completely inoperable.

To save or load the conﬁguration ﬁle:

1. Select Conﬁguration File.

2. To save the current conﬁguration to a ﬁle, click Save

Conﬁguration File. The conﬁguration ﬁle is saved to you web browser’s download folder.

3. To load a previously saved conﬁguration ﬁle, click Load

Conﬁguration File.

Browse to the location of the ﬁle, then click Apply to begin the conﬁguration uploading process. Your Gateway will automatically restart with that conﬁguration.

8.7b/ SYSTEM SETTINGS

You can conﬁgure various system and management parameters.

To conﬁgure system settings:

1. Select System Settings in the Advanced page.

164

ADVANCED SETTINGS

08 / CONFIGURING

DATE AND TIME

2. In the Router Status section, conﬁgure the following:

• Wireless Broadband Route’s Hostname – enter the host name or URL address of your Gateway. Both names are the same.

• Local Domain – view the local domain of the network.

3. In the Wireless Broadband Router section, conﬁgure the

following by selecting the check box:

• Automatic Refresh of System Monitoring Web Pages – activates the automatic refresh of system monitoring web pages.

• Prompt for Password when Accessing via LAN – causes your Gateway to ask for a password when trying to connect to the network.

• Warn User Before Conﬁguration Changes – activates user warnings before network conﬁguration changes take effect.

In the Session Lifetime ﬁeld, specify the length of time required before reentering a user name and password after your Gateway has been inactive.

In the Conﬁgure a Number of Concurrent Users ﬁeld, select the number of users that can access your Gateway at any time.

4. Select Remote Administration to conﬁgure the remote

administration to your Gateway.

5. In the Management Application Ports section, change the

primary and secondary HTTP management ports.

6. In the System Logging section, conﬁgure the following

system log options:

• Enable Logging – activates system logging.

• Low Capacity Notiﬁcation Enabled – activates low capacity notiﬁcation. This works in conjunction with the

166

ADVANCED SETTINGS

08 / CONFIGURING

CONFIGURATION SETTINGS

Allowed Capacity before Email Notiﬁcation and System Log Buffer Size.

• Allowed Capacity before Email Notiﬁcation – specify the capacity before an email notiﬁcation is sent.

• System Log Buffer Size – specify the size of the system lo g bu ff er.

• Remote System Notify Level – specify the type of information, such as none, error, warning, and information, received for remote system logging.

7. In the Security Logging section, conﬁgure the following

security logging options:

• Low Capacity Notiﬁcation Enabled – activates low capacity notiﬁcation. This works in conjunction with the Allowed Capacity before Email Notiﬁcation and System Log Buffer Size.

• Allowed Capacity before Email Notiﬁcation – specify the capacity before an email notiﬁcation is sent.

• System Log Buffer Size – specify the size of the system lo g bu ff er.

• Remote System Notify Level – specify the type of information, such as none, error, warning, and information, received for remote system logging.

8. In the Auto WAN Detection section, specify the DHCP

timeout.

9. Click Apply to save changes.

8.7c/ ETHERNET PORT CONFIGURATION

Ethernet port conﬁguration allows you to set up the Ethernet ports as either full- or half-duplex ports, at either 10 Mbps, 100 Mbps, or 1000 Mbps.

To conﬁgure the ports:

1. Select Port Conﬁguration in the Advanced page.

2. To emulate the speed and duplex conﬁguration of the port

with which it’s communicating, select Auto or select the port speed and duplicity.

3. Click Apply to save changes.

168

ADVANCED SETTINGS

08 / CONFIGURING

CONFIGURATION SETTINGS

System Monitoring displays system information, including basic settings, system log, key network device parameters, and network trafﬁc statistics.

170

YOUR GATEWAY

09 / MONITORING

09/

MONITORING YOUR GATEWAY

9.0

9.1

9.2

9.3

9.4

9.5

Gateway Status Advanced Status System Logging Full Status/System wide

Monitoring of Connections Trafﬁc Monitoring Bandwidth Monitoring

3. To continuously refresh the page, click Automatic Refresh

On.

9.1/ ADVANCED STATUS

You can view the details and status of:

• System Logging

• Full Status/System wide Monitoring of Connections

• Trafﬁc Monitoring

• Broadband Monitoring

To view the advanced status:

1. Select Advanced Status. A warning page displays.

2. Click Ye s. The Advanced Status page displays.

3. To view the details of the listed monitoring options, click the

link.

172

YOUR GATEWAY

09 / MONITORING

9.0/ GATEWAY STATUS

You can view the basic settings of your Gateway.

To view the basic settings:

1. Select System Monitoring in the Main menu. The Router

Status page displays.

2. To refresh the page, click Refresh.

GATEWAY STATUS AND ADVANCED STATUS

9.3/ FULL STATUS/SYSTEM WIDE MONITORING OF

CONNECTIONS

You can view a summary of the monitored data collected for your Gateway.

To view your Gateway’s full system status:

1. In the Advanced Status page, click Full Status/System wide

Monitoring of Connections.

2. To modify the connection properties, click the individual

connection links.

174

YOUR GATEWAY

09 / MONITORING

9.2/ SYSTEM LOGGING

System logging provides a view of the most recent activity of your Gateway. In addition, you can view additional logs, such as the security, advanced, ﬁrewall, WAN, DHCP, and LAN DHCP.

To view the system log:

1. In the Advanced Status page, click the System Logging link.

2. To view a speciﬁc type of log event such as Security Log,

WAN DHCP Log, etc., click the appropriate link in the menu in the left column.

3. To update the data, click Refresh.

SYSTEM LOGGING AND FULL STATUS/ SYSTEM WIDE MONITORING OF CONNECTIONS

2. To refresh the page, click Refresh.

3. To continuously refresh the page, click Automatic Refresh

On.

9.5/ BANDWIDTH MONITORING

You can view and monitor the recorded bandwidth usage measured in Kbps.

To view the bandwidth:

1. In the Advanced Status page, select Bandwidth Monitoring.

2. To refresh the page, click Refresh.

3. To continuously refresh the page, click Automatic Refresh

On.

176

YOUR GATEWAY

09 / MONITORING

3. To refresh the page, click Refresh.

4. To continuously refresh the page, click Automatic Refresh

On.

9.4/ TRAFFIC MONITORING

Your Gateway continually monitors trafﬁc in the local area network and between the local network and the Internet. You can view up to the second statistical information about data received from and transmitted to the Internet as well as data received from and transmitted to computers in the local network.

To view the trafﬁc monitoring data:

1. In the Advanced Status page, select Trafﬁc Monitoring.

TRAFFIC MONITORING AND BANDWIDTH MONITORING

This chapter lists solutions for issues that may be encountered while using your Gateway as well as frequently asked questions.

178

10 / TROUBLESHOOTING

10/

TROUBLE SHOOTING

10.0

10.1

Troubleshooting Tips Frequently Asked

Questions

• Try turning your network device’s Wi-Fi off and on and try to connect.

• If you have made a changes in your network settings and turning your network device’s Wi-Fi off and on does not help, try to restart your network device.

• As a ﬁnal tip you may need to turn your gateways’ Wi-Fi settings from on to off, and back to on again and apply the changes.

10.0a/ ACCESSING YOUR GATEWAY IF YOU ARE LOCKED OUT

If your Gateway connection is lost while making conﬁguration changes, a setting that locks access to your Gateway’s GUI may have

inadvertently been activated.

The common ways to lock access to your Gateway are:

• Scheduler - If a schedule has been created that applies to the computer over the connection being used, your Gateway will not accessible during the times set in the schedule.

• Access Control - If the access control setting for the computer is set to block the computer, access to your Gateway is denied.

To gain access, restore the default settings to your Gateway.

10.0b/ RESTORING YOUR GATEWAY’S DEFAULT SETTINGS

There are two ways to restore your Gateway’s default settings. It is important to note that after performing either procedure, all

previously save settings on your Gateway will be lost.

180

10 / TROUBLESHOOTING

TROUBLESHOOTING TIPS

NOTE: The advanced settings should only be conﬁgured by experienced

network technicians to avoid adversely affecting the operation of your Gateway and your local network.

10.0/ TROUBLESHOOTING TIPS

10.0a/ IF YOU ARE UNABLE TO CONNECT TO THE INTERNET:

• The ﬁrst thing to check is whether your Gateway is powered on and it is connected to the Internet. Check the Power/Internet light on the front of the Gateway; if it is lit a solid white color, then the Gateway itself has successfully connected to the Internet, and the problem lies elsewhere. If the Power/Internet light is red, the Gateway is on but is unable to connect to the Internet. In that case, check the WAN cable (Ethernet or Coax) connecting your Gateway to the Internet to make sure it is properly connected on both ends.

• Be sure your wireless device is within range of your Wi-Fi Gateway, move it closer to see if your connection improves.

• Check your network device’s Wi-Fi settings to be sure your device’s Wi-Fi is on (enabled) and that you have the correct Wi-Fi network and password (if using a Wi-Fi password) as conﬁgured on your Gateway.

• Be sure you are connecting to the correct Wi-Fi network, check to be sure you are using your Gateway’s ESSID. In some cases, if using a wireless password, you may need to enter the Wi-Fi password into your network device again to be sure your device accepts the password.

• Check to be sure you are running the latest ﬁrmware on your Gateway and latest software for your network device.

10.0d/ TIMEOUT ERROR OCCURS WHEN ENTERING THE URL OR

IP ADDRESS

Verify the following:

• All computers are working properly.

• IP settings are correct.

• Gateway is on and connected properly.

• Gateway settings are the same as the computer.

10.0e/ FRONT LIGHTED INDICATORS

Flash Speed

• Slow ﬂash – Two times per second

• Fast ﬂash – Four times per second

Power/Internet Light

• Slow ﬂash white – Gateway is starting

• Solid white – Gateway is powered on and connected to the Internet

• Slow ﬂash red – Gateway has malfunctioned

• Solid red – Unable to connect to the Internet

• Fast ﬂash red – Gateway is overheating. Please verify your Gateway is upright and has sufﬁcient ventilation

182

10 / TROUBLESHOOTING

• Using the tip of a ballpoint pen or pencil, press and hold the Reset button on the back of your Gateway for three seconds.

• Access the GUI and navigate to the Advanced Settings page. Select the Restore Defaults option. After saving your conﬁguration, if desired, click the Restore Defaults button. For additional details, refer to the Restore Defaults section of this guide.

10.0c/ LAN CONNECTION FAILURE

To troubleshoot a LAN connection failure:

• Verify your Gateway is properly installed, LAN connections are correct, and that the Gateway and communicating network devices are all powered on.

• Conﬁrm that the computer and Gateway are both on the same network segment.

If unsure, let the computer get the IP address automatically by initiating the DHCP function, then verify the computer is using an IP address within the default range of 192.168.1.2 through

192.168.1.254.

If the computer is not using an IP address within the correct IP range, it will not connect to your Gateway.

• Verify the subnet mask address is set to 255.255.255.0.

TROUBLESHOOTING TIPS

184

10 / TROUBLESHOOTING

• Fast ﬂash green – Indicates network activity. The trafﬁc can be in either direction.

LAN Ethernet – Upper LED

• Unlit – Indicates no 1 Gbps link

• Solid green – Indicates 1 Gbps link

• Fast ﬂash green – Indicates LAN activity. The trafﬁc can be in either direction.

LAN Ethernet – Lower LED

• Unlit – Indicates no 10/100 Mbps link

• Solid green – Indicates 10/100 Mbps link

• Fast ﬂash green – Indicates LAN activity. The trafﬁc can be in either direction.

LAN MoCA

• Unlit – Indicates no MoCA network connection to the device

• Solid green – Indicates network link

WAN MoCA

• Unlit – Indicates no link to the upstream MoCA device

• Solid green – Indicates network link

Wireless Light

• Solid white – Wi-Fi is on

Additional Functions when pressing WPS button:

• Slow ﬂash white – When the WPS button is pressed, the Wireless Light slowly ﬂashes white, while waiting for a WPS device to connect. This can require up to two minutes.

• Fast ﬂash white – When a device begins connecting to the Gateway using WPS, the Wireless Light fast ﬂashes white for two seconds as establishing connection.

• Solid white – When a device successfully completes its WPS association to the Gateway, the Wireless Light returns to solid white.

• Fast ﬂash red –If an error occurs during Wi-Fi Protected Setup, the Wireless Light ﬂashes red rapidly for two minutes.

10.0f/ REAR LIGHTED INDICATORS

Flash Speed

• Slow ﬂash – Two times per second

• Fast ﬂash – Four times per second

WAN Ethernet

• Unlit – Indicates no Ethernet link

• Solid green – Indicates a network link

TROUBLESHOOTING TIPS AND FREQUENTLY ASKED QUESTIONS

10.1d/ IS THE WIRELESS SECURITY ON BY DEFAULT WHEN THE

WIRELESS OPTION IS ACTIVATED?

Yes, with the unique WPA2 (Wi-Fi Protected Access II) key that is printed on the sticker on the side of your Gateway.

10.1e/ WHICH CONNECTION SPEEDS DOES MY GATEWAY

SUPPORT?

The Ethernet WAN Internet connection supports 10/100/1000 Mbps. The LAN Ethernet connections support 10/100/1000 Mbps. The 802.11ac wireless connection supports up to 1300 Mbps and the 802.11n supports up to 450 Mbps, depending on signal quality. The MoCA 2.0 connection supports 700 Mbps.

10.1f/ ARE MY GATEWAY’S ETHERNET PORTS

AUTO-SENSING?

Yes. Either a straight-through or crossover Ethernet cable can be used.

10.1g/ CAN I USE AN OLDER WIRELESS DEVICE TO CONNECT

TO MY GATEWAY?

Yes, your Gateway can interface with 802.11b, g, n, or ac devices. Your Gateway can be setup to handle only n wireless cards, g wireless cards, b wireless cards, or any combination of the three.

186

10 / TROUBLESHOOTING

FREQUENTLY ASKED QUESTIONS

10.1/ FREQUENTLY ASKED QUESTIONS

10.1a/ I’VE RUN OUT OF ETHERNET PORTS ON MY GATEWAY.

HOW DO I ADD MORE COMPUTERS OR DEVICES?

Plugging in an Ethernet hub or switch expands the number of ports on your Gateway.

• Run a straight-through Ethernet cable from the Uplink port of the new hub to the Gateway.

Use a crossover cable if there is no Uplink port/switch on your hub, use a crossover cable.

• Remove an existing device from the yellow Ethernet port on your Gateway and use that port.

10.1b/ HOW DO I CHANGE THE PASSWORD ON MY GATEWAY

GUI?

To change the password:

1. On the Main screen, select Advanced, then select Users.

2. In the Users page, select Admin. The User Settings page

displays.

3. In the General section, change the password.

10.1c/ IS THE WIRELESS OPTION ON BY DEFAULT ON MY

GAT EWAY ?

Yes, your Gateway’s wireless option is activated out of the box.

FREQUENTLY ASKED QUESTIONS

10.1h/ CAN MY WIRELESS SIGNAL PASS THROUGH FLOORS,

WALLS, AND GLASS?

The physical environment surrounding your Gateway can have a varying effect on signal strength and quality. The denser the object, such as a concrete wall compared to a plaster wall, the greater the interference. Concrete or metal-reinforced structures experience a higher degree of signal loss than those made of wood, plaster, or glass.

10.1i/ HOW DO I LOCATE THE IP ADDRESS THAT MY COMPUTER

IS USING?

In Windows 7, click the Windows button and select Control Panel, then click View Network Status and Tasks. In the next

window, click Local Area Connection. In the Local Area Network Connection Status window, click Details.

On Mac OS X, open System Preferences and click the Network icon. The IP address displays near the top of the screen.

10.1j/ MY COMPUTER CANNOT CONNECT TO THE INTERNET

USING MOCA. WHAT SHOULD I DO?

A computer cannot be connected directly using a MoCA cable. It must go through a NIM to connect. The NIM converts the MoCA signal to an Ethernet signal the computer can understand.

First, check the connection and verify all cables are connected correctly. Then verify the NIM is still connected and check the Ethernet connection to the NIM from the computer.

10.1k / I USED DHCP TO CONFIGURE MY NETWORK. DO I

NEED TO RESTART MY COMPUTER TO REFRESH MY IP ADDRESS?

No. In Windows 7, unplug the Ethernet cable or wireless card, then plug it back in.

10.1l/ I CANNOT ACCESS MY GATEWAY GUI. WHAT SHOULD I

DO?

If you cannot access the GUI, verify the computer connected to your Gateway is set up to dynamically receive an IP address.

10.1m/ I HAVE A FTP OR WEB SERVER ON MY NETWORK.

HOW CAN I MAKE IT AVAILABLE TO USERS ON THE INTERNET?

For a web server, enable port forwarding for port 80 to the IP address of the server. Also, set up the web server to receive that port. Conﬁguring the server to use a static IP address is recommended.

For a FTP server, enable port forwarding for port 21 to the IP address of the server. Also, set up the web server to receive that port. Conﬁguring the server to use a static IP address is recommended.

188

10 / TROUBLESHOOTING

11/

SPECIFICATIONS

11.0

11.1

11.2

General Speciﬁcations LED Indicators Environmental

Parameters

FREQUENTLY ASKED QUESTIONS

10.1n/ HOW MANY COMPUTERS CAN BE CONNECTED

THROUGH MY GATEWAY?

Your Gateway is capable of 254 connections, but we recommend having no more than 45 connections. As the number of connections increase, the available speed for each computer decreases.

NOTE: The speciﬁcations listed in this chapter are subject to change without

notice.

11.0/ GENERAL SPECIFICATIONS

Model Number: Model: FiOS-G1100

Standards: IEEE 802.3x, 802.3u

IEEE 802.11b/g/n/ac

IP: IP versions 4 and 6

MoCA: MoCA WAN: 1350 – 1675 MHz and

975 - 1025 MHz

MoCA LAN: 1125 – 1225 MHz

Speed: Wired WAN Ethernet: 10/100/10 00 M bps

auto-sensing

Wired LAN Ethernet: 10/100/1000 Mbps

auto-sensing

192

11 / SP ECIFICATIONS

GENERAL SPECIFICATIONS

The speciﬁcations for your FiOS Quantum Gateway are as follows.

This includes standards, cabling types, and environmental parameters.

Complete System (including packaging)

Size: 10.16” / 258 mm width x 3.78” / 96 mm

height x 10.35” / 263 mm depth

Weight: 2.63 lbs / 1.19 kg

Power: External, 12V DC, 3.0A

Certiﬁcations: FCC Part 15, UL 60950-1

Operating Temperature: 10° C to 40° C (50° F to 104° F)

Storage Temperature: -20° C to 85° C (-4° F to 185° F)

Operating Humidity: 8% to 95% (non-condensing)

Storage Humidity: 5% to 100% (non-condensing)

194

11 / SP ECIFICATIONS

LED INDICATORS AND ENVIRONMENTAL PARAMETERS

Wireless LAN:

802.11b – up to 11 Mbps

802.11g – up to 54 Mbps

802.11n – up to 450 Mbps

802.11ac – up to 1300 Mbps

Cablin g Type: Ethernet 10BaseT: UTP/STP Category 3 or 5

Ethernet 100BaseT: UTP/STP Category 5

Ethernet 1000BaseT: UTP/STP Category 5e

Firewall: ICSA certiﬁed

11.1/ LED INDICATORS

Front Panel: Power/Internet, Wi-Fi

Rear Panel: WAN Coax, LAN Coax, WAN Ethernet, and

LAN Ethernet [4]

11. 2/ ENVIRONMENTAL PARAMETERS

DIMENSIONS AND WEIGHT

FiOS Quantum Gateway (unit only)

Size: 3.63” width x 9.56” height x 8.50” depth

Weight: 1.56 lbs / 0.71 kg

This chapter lists various compliance and modiﬁcation notices, as well as the NEBS requirements and GPL.

196

12 / NOTICE S

12/

NOTICES

12.0 Regulatory Compliance

Notices

Declaration of conformity for products marked with the FCC logo – United States only.

This device complies with Part 15 of the FCC Rules. Operation is subject to the following two conditions:

• This device may not cause harmful interference

• This device must accept any interference received, including interference that may cause unwanted operation

Note: To comply with FCC RF exposure compliance requirements, the antenna

used for this transmitter must be installed to provide a separation distance of at least 28 cm from all persons and must not be co-located or operating in conjunction with any other antenna or transmitter.

For operation within the 5.15 ~ 5.25 GHz frequency range, this device is restricted to indoor environments. This device meets all the other requirements speciﬁed in Part 15E, Section 15.407 of the FCC Rules.

For questions regarding your product or the FCC declaration, contact:

GreenWave Reality Inc.

133 Technology, Suite 200, Irvine, CA – 92618 USA

tel: +1 714 805 WAVE (9283)

email: na@greenwavereality.com

198

12 / NOTICE S

REGULATORY COMPLIANCE NOTICES

12.0/ REGULATORY COMPLIANCE NOTICES

12.0 a/ CLASS B EQUIPMENT

This equipment has been tested and found to comply with the limits for a Class B digital device, pursuant to Part 15 of the FCC Rules. These limits are designed to provide reasonable protection against harmful interference in a residential installation. This equipment generates, uses, and can radiate radio frequency energy and, if not installed and used in accordance with the instructions, may cause harmful interference to radio communications. However, there is no guarantee that interference will not occur in a particular installation.

If this equipment does cause harmful interference to radio or television reception, which can be determined by turning the equipment off and on, the user is encouraged to try to correct the interference by

implementing one or more of the following measures:

• Reorient or relocate the receiving antenna

• Increase the separation between the equipment and receiver

• Connect the equipment to an outlet on a circuit different from the one to which the receiver is connected

• Consult the dealer or an experienced radio or television technician for help

12.0 b/ MODIFICATIONS

The FCC requires the user to be notiﬁed that any changes or modiﬁcations made to this device that are not expressly approved by Verizon may void the user’s authority to operate the equipment.

Verizon FiOS-G1100 User Manual

Specifications and Main Features

Frequently Asked Questions

User Manual