ZyXEL MAX200M1 User Manual

ZyXEL MAX-200M1 Series User’s Guide

Figure 84 Management > Static Route > IP Static Route > Edit

Each field is described in the following table.

Table 49 Management > Static Route > IP Static Route > Edit

LABEL DESCRIPTION

Route Name Enter the name of the static route.

Active

Private

Destination IP Address

IP Subnet Mask

Gateway IP Address

Metric

Apply

Cancel

Select this if you want the static route to be used. Clear this if you do not want the static route to be used.

Select this if you do not want the ZyXEL Device to tell other routers about this static route. For example, you might select this if the static route is in your LAN. Clear this if you want the ZyXEL Device to tell other routers about this static route.

Enter one of the destination IP addresses that this static route affects.

Enter the subnet mask that defines the range of destination IP addresses that this static route affects. If this static route affects only one IP address, enter

255.255.255.255.

Enter the IP address of the gateway to which the ZyXEL Device should send packets for the specified Destination. The gateway is a router or a switch on the same network segment as the device's LAN or WAN port. The gateway helps forward packets to their destinations.

Usually, you should keep the default value. This field is related to RIP. See Chapter

8 on page 83 for more information.

The metric represents the "cost of transmission". A router determines the best route for transmission by choosing a path with the lowest "cost". The smaller the metric, the lower the "cost". RIP uses hop count as the measurement of cost, where 1 is for a directly-connected network. The metric must be 1-15; if you use a value higher than 15, the routers assume the link is down.

Click this to save your changes and to apply them to the ZyXEL Device.

Click this to return to the previous screen without saving your changes.

Chapter 15 Static Route 151

ZyXEL MAX-200M1 Series User’s Guide

152 Chapter 15 Static Route

CHAPTER 16

Remote MGMT

Use these screens to control which computers can use which services to access the ZyXEL Device on each interface.

16.1 Remote Management Overview

Remote management allows you to determine which services/protocols can access which ZyXEL Device interface (if any) from which computers.

You may manage your ZyXEL Device from a remote location via:

• Internet (WAN only) • ALL (LAN and WAN)

• LAN only • Neither (Disable).

ZyXEL MAX-200M1 Series User’s Guide

To disable remote management of a service, select Disable in the corresponding Server Access field.

You may only have one remote management session running at a time. The ZyXEL Device automatically disconnects a remote management session of lower priority when another remote management session of higher priority starts. The priorities for the different types of remote management sessions are as follows.

1 Telnet

2 HTTP

16.1.1 Remote Management Limitations

Remote management over LAN or WAN will not work when:

1 A filter in SMT menu 3.1 (LAN) or in menu 11.5 (WAN) is applied to block a Telnet,

FTP or Web service.

2 You have disabled that service in one of the remote management screens.

3 The IP address in the Secured Client IP field does not match the client IP address. If it

does not match, the ZyXEL Device will disconnect the session immediately.

4 There is already another remote management session with an equal or higher priority

running. You may only have one remote management session running at one time.

Chapter 16 Remote MGMT 153

ZyXEL MAX-200M1 Series User’s Guide

16.1.2 Remote Management and NAT

When NAT is enabled:

• Use the ZyXEL Device’s WAN IP address when configuring from the WAN.

• Use the ZyXEL Device’s LAN IP address when configuring from the LAN.

16.1.3 System Timeout

There is a default system management idle timeout of five minutes (three hundred seconds). The ZyXEL Device automatically logs you out if the management session remains idle for longer than this timeout period. The management session does not time out when a statistics screen is polling. You can change the timeout period in the Maintenance > System > General screen.

16.2 Remote Management Screens

16.2.1 WWW Screen

Use this screen to control HTTP access to your ZyXEL Device. To access this screen, click Management > Remote MGMT > WWW.

Figure 85 Management > Remote MGMT > WWW

Each field is described in the following table.

Table 50 Management > Remote MGMT > WWW

LABEL DESCRIPTION

Server Port Enter the port number this service can use to access the ZyXEL Device. The

Server Access Select the interface(s) through which a computer may access the ZyXEL Device

Secured Client IP Address

computer must use the same port number.

using this service.

Select All to allow any computer to access the ZyXEL Device using this service. Select Selected to only allow the computer with the IP address that you specify to

access the ZyXEL Device using this service.

154 Chapter 16 Remote MGMT

Table 50 Management > Remote MGMT > WWW

LABEL DESCRIPTION

Apply Click this to save your changes.

Reset Click this to set every field in this screen to its default value.

16.2.2 Telnet Screen

Use this screen to control Telnet access to your ZyXEL Device. To access this screen, click Management > Remote MGMT > Telnet.

Figure 86 Management > Remote MGMT > Telnet

ZyXEL MAX-200M1 Series User’s Guide

Each field is described in the following table.

Table 51 Management > Remote MGMT > Telnet

LABEL DESCRIPTION

Server Port Enter the port number this service can use to access the ZyXEL Device. The

Server Access Select the interface(s) through which a computer may access the ZyXEL Device

Secured Client IP Address

Apply

Reset Click this to set every field in this screen to its default value.

16.2.3 FTP Screen

Use this screen to control FTP access to your ZyXEL Device. To access this screen, click Management > Remote MGMT > FTP.

computer must use the same port number.

using this service.

Select All to allow any computer to access the ZyXEL Device using this service. Select Selected to only allow the computer with the IP address that you specify to

access the ZyXEL Device using this service.

Click this to save your changes.

Chapter 16 Remote MGMT 155

ZyXEL MAX-200M1 Series User’s Guide

Figure 87 Management > Remote MGMT > FTP

Each field is described in the following table.

Table 52 Management > Remote MGMT > FTP

LABEL DESCRIPTION

Server Port Enter the port number this service can use to access the ZyXEL Device. The

Server Access Select the interface(s) through which a computer may access the ZyXEL Device

Secured Client IP Address

Apply

Reset Click this to set every field in this screen to its default value.

16.3 SNMP

Simple Network Management Protocol (SNMP) is a protocol used for exchanging management information between network devices. SNMP is a member of the TCP/IP protocol suite. Your ZyXEL Device supports SNMP agent functionality, which allows a manager station to manage and monitor the ZyXEL Device through the network. The ZyXEL Device supports SNMP version one (SNMPv1) and version two (SNMPv2). The next figure illustrates an SNMP management operation.

Note: SNMP is only available if TCP/IP is configured.

computer must use the same port number.

using this service.

Select All to allow any computer to access the ZyXEL Device using this service. Select Selected to only allow the computer with the IP address that you specify to

access the ZyXEL Device using this service.

Click this to save your changes and to apply them to the ZyXEL Device.

156 Chapter 16 Remote MGMT

Figure 88 SNMP Management Model

ZyXEL MAX-200M1 Series User’s Guide

An SNMP managed network consists of two main types of component: agents and a manager.

An agent is a management software module that resides in a managed device (the ZyXEL Device). An agent translates the local management information from the managed device into a form compatible with SNMP. The manager is the console through which network administrators perform network management functions. It executes applications that control and monitor managed devices.

The managed devices contain object variables/managed objects that define each piece of information to be collected about a device. Examples of variables include such as number of packets received, node port status etc. A Management Information Base (MIB) is a collection of managed objects. SNMP allows a manager and agents to communicate for the purpose of accessing these objects.

SNMP itself is a simple request/response protocol based on the manager/agent model. The manager issues a request and the agent returns responses using the following protocol operations:

• Get - Allows the manager to retrieve an object variable from the agent.

• GetNext - Allows the manager to retrieve the next object variable from a table or list within an agent. In SNMPv1, when a manager wants to retrieve all elements of a table from an agent, it initiates a Get operation, followed by a series of GetNext operations.

• Set - Allows the manager to set values for object variables within an agent.

• Trap - Used by the agent to inform the manager of some events.

16.3.1 Supported MIBs

The ZyXEL Device supports MIB II that is defined in RFC-1213 and RFC-1215. The focus of the MIBs is to let administrators collect statistical data and monitor status and performance.

Chapter 16 Remote MGMT 157

ZyXEL MAX-200M1 Series User’s Guide

16.3.2 SNMP Traps

The ZyXEL Device will send traps to the SNMP manager when any one of the following events occurs:

Table 53 SNMP Traps

TRAP #

0 coldStart (defined in RFC-1215) A trap is sent after booting (power on).

1 warmStart (defined in RFC-1215) A trap is sent after booting (software reboot).

4 authenticationFailure (defined in

6 whyReboot (defined in ZYXEL-

6a For intentional reboot: A trap is sent with the message "System reboot by

6b For fatal error: A trap is sent with the message of the fatal code if the

TRAP NAME DESCRIPTION

RFC-1215)

MIB)

16.3.3 Configuring SNMP

To change your ZyXEL Device’s SNMP settings, click Advanced > Remote MGMT > SNMP. The screen appears as shown.

Use this screen to control FTP access to your ZyXEL Device. To access this screen, click Management > Remote MGMT > SNMP.

A trap is sent to the manager when receiving any SNMP get or set requirements with the wrong community (password).

A trap is sent with the reason of restart before rebooting when the system is going to restart (warm start).

user!" if reboot is done intentionally, (for example, download new files, CI command "sys reboot", etc.).

system reboots because of fatal errors.

158 Chapter 16 Remote MGMT

ZyXEL MAX-200M1 Series User’s Guide

Figure 89 Management > Remote MGMT > SNMP

The following table describes the labels in this screen.

Table 54 Remote Management: SNMP

LABEL DESCRIPTION

SNMP Configuration

Get Community Enter the Get Community, which is the password for the incoming Get and

Set Community Enter the Set community, which is the password for incoming Set requests from

Trap Community Enter the trap community, which is the password sent with each trap to the

Trap Destination Enter the IP address of the station to send your SNMP traps to.

SNMP

Port You may change the server port number for a service if needed, however you

Access Status Select the interface(s) through which a computer may access the ZyXEL Device

Secured Client IP A secured client is a “trusted” computer that is allowed to communicate with the

Apply Click this button to save your customized settings and exit this screen.

Reset Click this button to set each field in this screen to its default value.

GetNext requests from the management station. The default is public and allows all requests.

the management station. The default is public and allows all requests.

SNMP manager. The default is public and allows all requests.

must use the same port number in order to use that service for remote management.

using this service.

ZyXEL Device using this service. Select All to allow any computer to access the ZyXEL Device using this service. Choose Selected to just allow the computer with the IP address that you specify

to access the ZyXEL Device using this service.

Chapter 16 Remote MGMT 159

ZyXEL MAX-200M1 Series User’s Guide

16.3.4 DNS Screen

Use this screen to control DNS access to your ZyXEL Device. To access this screen, click Management > Remote MGMT > DNS.

Figure 90 Management > Remote MGMT > DNS

Each field is described in the following table.

Table 55 Management > Remote MGMT > DNS

LABEL DESCRIPTION

Server Port This field is read-only. This field displays the port number this service uses to

Server Access Select the interface(s) through which a computer may access the ZyXEL Device

Secured Client IP Address

Apply

Reset Click this to set every field in this screen to its last-saved value.

access the ZyXEL Device. The computer must use the same port number.

using this service.

Select All to allow any computer to access the ZyXEL Device using this service. Select Selected to only allow the computer with the IP address that you specify to

access the ZyXEL Device using this service.

Click this to save your changes.

16.3.5 Security Screen

Use this screen to control how your ZyXEL Device responds to other types of requests. To access this screen, click Management > Remote MGMT > Security.

160 Chapter 16 Remote MGMT

ZyXEL MAX-200M1 Series User’s Guide

Figure 91 Management > Remote MGMT > Security

Each field is described in the following table.

Table 56 Management > Remote MGMT > Security

LABEL DESCRIPTION

Respond to Ping onSelect the interface(s) on which the ZyXEL Device should respond to incoming

ping requests.

Disable - the ZyXEL Device does not respond to any ping requests. LAN - the ZyXEL Device only responds to ping requests received from the LAN. WAN - the ZyXEL Device only responds to ping requests received from the WAN. LAN & WAN - the ZyXEL Device responds to ping requests received from the LAN

or the WAN.

Do not respond to requests for unauthorized services

Apply

Cancel

Select this to prevent outsiders from discovering your ZyXEL Device by sending requests to unsupported port numbers. If an outside user attempts to probe an unsupported port on your ZyXEL Device, an ICMP response packet is automatically returned. This allows the outside user to know the ZyXEL Device exists. Your ZyXEL Device supports anti-probing, which prevents the ICMP response packet from being sent. This keeps outsiders from discovering your ZyXEL Device when unsupported ports are probed.

If you clear this, your ZyXEL Device replies with an ICMP Port Unreachable packet for a port probe on unused UDP ports and with a TCP Reset packet for a port probe on unused TCP ports.

Click this to save your changes.

Click this to set every field in this screen to its default value.

Chapter 16 Remote MGMT 161

ZyXEL MAX-200M1 Series User’s Guide

162 Chapter 16 Remote MGMT

ZyXEL MAX-200M1 Series User’s Guide

CHAPTER 17

Use this screen to set up UPnP.

17.1 Introducing Universal Plug and Play

Universal Plug and Play (UPnP) is a distributed, open networking standard that uses TCP/IP for simple peer-to-peer network connectivity between devices. A UPnP device can dynamically join a network, obtain an IP address, convey its capabilities and learn about other devices on the network. In turn, a device can leave a network smoothly and automatically when it is no longer in use.

17.1.1 How do I know if I'm using UPnP?

UPnP

UPnP hardware is identified as an icon in the Network Connections folder (Windows XP). Each UPnP compatible device installed on your network will appear as a separate icon. Selecting the icon of a UPnP device will allow you to access the information and properties of that device.

17.1.2 NAT Traversal

UPnP NAT traversal automates the process of allowing an application to operate through NAT. UPnP network devices can automatically configure network addressing, announce their presence in the network to other UPnP devices and enable exchange of simple product and service descriptions. NAT traversal allows the following:

• Dynamic port mapping

• Learning public IP addresses

• Assigning lease times to mappings

Windows Messenger is an example of an application that supports NAT traversal and UPnP.

See Chapter 9 on page 97 for further information about NAT.

17.1.3 Cautions with UPnP

The automated nature of NAT traversal applications in establishing their own services and opening firewall ports may present network security issues. Network information and configuration may also be obtained and modified by users in some network environments.

Chapter 17 UPnP 163

ZyXEL MAX-200M1 Series User’s Guide

All UPnP-enabled devices may communicate freely with each other without additional configuration. Disable UPnP if this is not your intention.

17.1.4 UPnP and ZyXEL

ZyXEL has achieved UPnP certification from the Universal Plug and Play Forum Creates UPnP™ Implementors Corp. (UIC). ZyXEL's UPnP implementation supports IGD 1.0 (Internet Gateway Device). At the time of writing ZyXEL's UPnP implementation supports Windows Messenger 4.6 and 4.7 while Windows Messenger 5.0 and Xbox are still being tested.

The ZyXEL Device only sends UPnP multicasts to the LAN.

See later sections for examples of installing UPnP in Windows XP and Windows Me as well as an example of using UPnP in Windows.

17.2 UPnP Examples

17.2.1 Installing UPnP in Windows Example

This section shows how to install UPnP in Windows Me and Windows XP.

17.2.1.1 Installing UPnP in Windows Me

Follow the steps below to install the UPnP in Windows Me.

1 Click Start and Control Panel. Double-click Add/Remove Programs.

2 Click on the Windows Setup tab and select Communication in the Components

selection box. Click Details.

164 Chapter 17 UPnP

ZyXEL MAX-200M1 Series User’s Guide

Figure 92 Add/Remove Programs: Windows Setup: Communication

3 In the Communications window, select the Universal Plug and Play check box in the

Components selection box.

Figure 93 Add/Remove Programs: Windows Setup: Communication Components

4 Click OK to go back to the Add/Remove Programs Properties window and click Next.

5 Restart the computer when prompted.

Chapter 17 UPnP 165

ZyXEL MAX-200M1 Series User’s Guide

17.2.1.2 Installing UPnP in Windows XP

Follow the steps below to install the UPnP in Windows XP.

1 Click Start and Control Panel.

2 Double-click Network Connections.

3 In the Network Connections window, click Advanced in the main menu and select

Optional Networking Components ….

Figure 94 Network Connections

4 The Windows Optional Networking Components Wizard window displays. Select

Networking Service in the Components selection box and click Details.

Figure 95 Windows Optional Networking Components Wizard

5 In the Networking Services window, select the Universal Plug and Play check box.

166 Chapter 17 UPnP

Figure 96 Networking Services

ZyXEL MAX-200M1 Series User’s Guide

6 Click OK to go back to the Windows Optional Networking Component Wizard

window and click Next.

17.2.2 Using UPnP in Windows XP Example

This section shows you how to use the UPnP feature in Windows XP. You must already have UPnP installed in Windows XP and UPnP activated on the ZyXEL Device.

Make sure the computer is connected to a LAN port of the ZyXEL Device. Turn on your computer and the ZyXEL Device.

17.2.2.1 Auto-discover Your UPnP-enabled Network Device

1 Click Start and Control Panel. Double-click Network Connections. An icon displays

under Internet Gateway.

2 Right-click the icon and select Properties.

Chapter 17 UPnP 167

ZyXEL MAX-200M1 Series User’s Guide

Figure 97 Network Connections

3 In the Internet Connection Properties window, click Settings to see the port mappings

there were automatically created.

168 Chapter 17 UPnP

Figure 98 Internet Connection Properties

ZyXEL MAX-200M1 Series User’s Guide

4 You may edit or delete the port mappings or click Add to manually add port mappings.

Chapter 17 UPnP 169

ZyXEL MAX-200M1 Series User’s Guide

Figure 99 Internet Connection Properties: Advanced Settings

Figure 100 Internet Connection Properties: Advanced Settings: Add

5 When the UPnP-enabled device is disconnected from your computer, all port mappings

will be deleted automatically.

6 Select Show icon in notification area when connected option and click OK. An icon

displays in the system tray.

170 Chapter 17 UPnP

ZyXEL MAX-200M1 Series User’s Guide

Figure 101 System Tray Icon

7 Double-click on the icon to display your current Internet connection status.

Figure 102 Internet Connection Status

17.2.2.2 Web Configurator Easy Access

With UPnP, you can access the web-based configurator on the ZyXEL Device without finding out the IP address of the ZyXEL Device first. This becomes helpful if you do not know the IP address of the ZyXEL Device.

Follow the steps below to access the web configurator.

1 Click Start and then Control Panel.

2 Double-click Network Connections.

3 Select My Network Places under Other Places.

Chapter 17 UPnP 171

+ 49 hidden pages