Zyxel PRESTIGE 653HX user manual
Prestige 653HWI Series
ADSL Security Gateway with IEEE802.11g and ISDN Backup
User's Guide
Version 3.40
October 2003
Prestige 653HWI Series User’s Guide
Copyright
Copyright © 2003 by ZyXEL Communications Corporation.
The contents of this publication may not be reproduced in any part or as a whole, transcribed, stored in a
retrieval system, translated into any language, or transmitted in any form or by any means, electronic,
mechanical, magnetic, optical, chemical, photocopying, manual, or otherwise, without the prior written
permission of ZyXEL Communications Corporation.
Published by ZyXEL Communications Corporation. All rights reserved.
Disclaimer
ZyXEL does not assume any liability arising out of the application or use of any products, or software
described herein. Neither does it convey any license under its patent rights nor the patent rights of others.
ZyXEL further reserves the right to make changes in any products described herein without notice. This
publication is subject to change without notice.
Trademarks
ZyNOS (ZyXEL Network Operating System) is a registered trademark of ZyXEL Communications, Inc.
Other trademarks mentioned in this publication are used for identification purposes only and may be
properties of their respective owners.
ii Copyright
Prestige 653HWI Series User’s Guide
Federal Communications Commission
(FCC) Interference Statement
This device complies with Part 15 of FCC rules. Operation is subject to the following two conditions:
• This device may not cause harmful interference.
• This device must accept any interference received, including interference that may cause undesired
operations.
This equipment has been tested and found to comply with the limits for a Class B digital device pursuant to
Part 15 of the FCC Rules. These limits are designed to provide reasonable protection against harmful
interference in a commercial environment. This equipment generates, uses, and can radiate radio frequency
energy, and if not installed and used in accordance with the instructions, may cause harmful interference to
radio communications.
If this equipment does cause harmful interference to radio/television reception, which can be determined by
turning the equipment off and on, the user is encouraged to try to correct the interference by one or more of
the following measures:
1. Reorient or relocate the receiving antenna.
2. Increase the separation between the equipment and the receiver.
3. Connect the equipment into an outlet on a circuit different from that to which the receiver is connected.
4. Consult the dealer or an experienced radio/TV technician for help.
Notice 1
Changes or modifications not expressly approved by the party responsible for compliance could void the
user's authority to operate the equipment.
Certifications
Refer to the product page at www.zyxel.com
FCC Statement iii
.
Prestige 653HWI Series User’s Guide
ZyXEL Limited Warranty
ZyXEL warrants to the original end user (purchaser) that this product is free from any defects in materials
or workmanship for a period of up to two years from the date of purchase. During the warranty period, and
upon proof of purchase, should the product have indications of failure due to faulty workmanship and/or
materials, ZyXEL will, at its discretion, repair or replace the defective products or components without
charge for either parts or labor, and to whatever extent it shall deem necessary to restore the product or
components to proper operating condition. Any replacement will consist of a new or re-manufactured
functionally equivalent product of equal value, and will be solely at the discretion of ZyXEL. This warranty
shall not apply if the product is modified, misused, tampered with, damaged by an act of God, or subjected
to abnormal working conditions.
Note
Repair or replacement, as provided under this warranty, is the exclusive remedy of the purchaser. This
warranty is in lieu of all other warranties, express or implied, including any implied warranty of
merchantability or fitness for a particular use or purpose. ZyXEL shall in no event be held liable for indirect
or consequential damages of any kind of character to the purchaser.
To obtain the services of this warranty, contact ZyXEL's Service Center for your Return Material
Authorization number (RMA). Products must be returned Postage Prepaid. It is recommended that the unit
be insured when shipped. Any returned products without proof of purchase or those with an out-dated
warranty will be repaired or replaced (at the discretion of ZyXEL) and the customer will be billed for parts
and labor. All repaired or replaced products will be shipped by ZyXEL to the corresponding return address,
Postage Paid. This warranty gives you specific legal rights, and you may also have other rights that vary
from country to country.
Safety Warnings
1. To reduce the risk of fire, use only No. 26 AWG or larger telephone wire.
2. Do not use this product near water, for example, in a wet basement or near a swimming pool.
3. Avoid using this product during an electrical storm. There may be a remote risk of electric shock from
lightening.
iv ZyXEL Warranty
Prestige 653HWI Series User’s Guide
Customer Support
Please have the following information ready when you contact customer support.
• Product model and serial number.
• Warranty Information.
• Date that you received your device.
• Brief description of the problem and the steps you took to solve it.
METHOD
LOCATION
WORLDWIDE
AMERICA
FINLAND support@zyxel.fi
support@zyxel.com.tw
sales@zyxel.com.tw
support@zyxel.com +1-800-255-4101 www.us.zyxel.com NORTH
sales@zyxel.com
support@zyxel.dk +45-3955-0700 www.zyxel.dk SCANDINAVIA
sales@zyxel.dk
support@zyxel.de +49-2405-6909-0 www.zyxel.de GERMANY
sales@zyxel.de
sales@zyxel.fi
E-MAIL
SUPPORT/SALES
TELEPHONE/FAX WEB SITE/ FTP SITE REGULAR MAIL
+886-3-578-3942 www.zyxel.com
www.europe.zyxel.com
+886-3-578-2439 ftp.europe.zyxel.com
+1-714-632-0858 ftp.zyxel.com
+45-3955-0707 ftp.zyxel.dk
+49-2405-6909-99
+358-9-4780 8400
+358-9-4780 8448
www.zyxel.fi
ZyXEL Communications Corp.,
6 Innovation Road II, ScienceBased Industrial Park, Hsinchu
300, Taiwan.
ZyXEL Communications A/S,
Columbusvej 5, 2860 Soeborg,
Denmark.
ZyXEL Deutschland GmbH.
Adenauerstr. 20/A2 D-52146
Wuerselen, Germany
ZyXEL Communications Oy,
Malminkaari 10, 00700
Helsinki, Finland.
Customer Support v
Prestige 653HWI Series User’s Guide
Table of Contents
Copyright......................................................................................................................................................... ii
Federal Communications Commission (FCC) Interference Statement.....................................................iii
ZyXEL Limited Warranty ............................................................................................................................ iv
Customer Support........................................................................................................................................... v
List of Figures ..............................................................................................................................................xiv
List of Tables .............................................................................................................................................. xxiv
List of Charts .............................................................................................................................................. xxx
Preface ....................................................................................................................................................... xxxii
What is DSL? ........................................................................................................................................... xxxiv
Getting Started.................................................................................................................................................I
Chapter 1 Getting To Know Your Prestige ................................................................................................ 1-1
1.1 Introducing the Prestige 653HWI ..............................................................................................1-1
1.2 Features of the Prestige..............................................................................................................1-1
1.3 Applications for the Prestige...................................................................................................... 1-8
Chapter 2 Introducing the Web Configurator ..........................................................................................2-1
2.1 Web Configurator Overview...................................................................................................... 2-1
2.2 Accessing the Prestige Web Configurator .................................................................................2-1
2.3 Navigating the Prestige Web Configurator................................................................................2-2
2.4 Resetting the Prestige................................................................................................................. 2-3
Chapter 3 Wizard Setup.............................................................................................................................. 3-1
3.1 Wizard Setup Introduction......................................................................................................... 3-1
3.2 Encapsulation.............................................................................................................................3-1
3.3 Multiplexing...............................................................................................................................3-2
3.4 VPI and VCI ..............................................................................................................................3-2
3.5 Wizard Setup Configuration: First Screen .................................................................................3-2
3.6 IP Address and Subnet Mask .....................................................................................................3-4
3.7 IP Address Assignment.............................................................................................................. 3-4
3.8 Nailed-Up Connection (PPP) ..................................................................................................... 3-6
3.9 NAT ...........................................................................................................................................3-6
3.10 Wizard Setup Configuration: Second Screen............................................................................. 3-6
3.11 DHCP Setup.............................................................................................................................3-11
3.12 Wizard Setup Configuration: Third Screen..............................................................................3-12
3.13 Wizard Setup Configuration: Connection Tests.......................................................................3-14
3.14 Test Your Internet Connection.................................................................................................3-15
Password, LAN, Wireless LAN and WAN ................................................................................................... II
Chapter 4 Password Setup..........................................................................................................................4-1
4.1 Password Overview ...................................................................................................................4-1
4.2 Configuring Password................................................................................................................4-1
vi Table of Contents
Prestige 653HWI Series User’s Guide
Chapter 5 LAN Setup ..................................................................................................................................5-1
5.1 LAN Overview...........................................................................................................................5-1
5.2 DNS Server Address ..................................................................................................................5-1
5.3 DNS Server Address Assignment ..............................................................................................5-2
5.4 LAN TCP/IP ..............................................................................................................................5-2
5.5 Configuring LAN .......................................................................................................................5-4
Chapter 6 Wireless LAN Setup...................................................................................................................6-1
6.1 Wireless LAN Overview............................................................................................................6-1
6.2 Levels of Security ......................................................................................................................6-3
6.3 Data Encryption with WEP ........................................................................................................6-4
6.4 Configuring MAC Filter.............................................................................................................6-6
6.5 Network Authentication .............................................................................................................6-8
6.6 Configuring 802.1x ..................................................................................................................6-10
6.7 Configuring Local User Authentication ...................................................................................6-12
6.8 Configuring RADIUS ..............................................................................................................6-14
Chapter 7 WAN Setup .................................................................................................................................7-1
7.1 WAN Overview .........................................................................................................................7-1
7.2 ISDN ..........................................................................................................................................7-1
7.3 NetCAPI.....................................................................................................................................7-1
7.4 Metric .........................................................................................................................................7-2
7.5 PPPoE Encapsulation .................................................................................................................7-2
7.6 Traffic Shaping...........................................................................................................................7-3
7.7 Configuring WAN Functions .....................................................................................................7-4
7.8 Configuring WAN DSL Setup ...................................................................................................7-1
7.9 ISDN Connection Setup.............................................................................................................7-5
7.10 ISDN Dial In Setup ....................................................................................................................7-8
7.11 Configuring NetCAPI ..............................................................................................................7-10
7.12 WAN Backup...........................................................................................................................7-13
7.13 Traffic Redirect on the LAN ....................................................................................................7-13
7.14 Traffic Redirect on the WAN...................................................................................................7-13
7.15 Configuring WAN Backup.......................................................................................................7-16
NAT, Dynamic DNS and Time Zone........................................................................................................... III
Chapter 8 Network Address Translation (NAT) Screens ..........................................................................8-1
8.1 NAT Overview...........................................................................................................................8-1
8.2 SUA (Single User Account) Versus NAT..................................................................................8-5
8.3 SUA Server ................................................................................................................................8-6
8.4 Selecting the NAT Mode............................................................................................................8-8
8.5 Configuring SUA Server............................................................................................................8-9
8.6 Configuring Address Mapping.................................................................................................8-11
8.7 Editing an Address Mapping Rule ...........................................................................................8-12
Chapter 9 Dynamic DNS Setup...................................................................................................................9-1
Table of Contents vii
Prestige 653HWI Series User’s Guide
9.1 Dynamic DNS............................................................................................................................ 9-1
9.2 Configuring Dynamic DNS .......................................................................................................9-1
Chapter 10 Time Zone...............................................................................................................................10-1
10.1 Configuring Time Zone ...........................................................................................................10-1
Firewall and Content Filters........................................................................................................................IV
Chapter 11 Firewalls.................................................................................................................................. 11-1
11.1 Firewall Overview ...................................................................................................................11-1
11.2 Types of Firewalls....................................................................................................................11-1
11.3 Introduction to ZyXEL’s Firewall ...........................................................................................11-2
11.4 Denial of Service .....................................................................................................................11-3
11.5 Stateful Inspection ...................................................................................................................11-7
11.6 Guidelines For Enhancing Security With Your Firewall....................................................... 11-11
11.7 Packet Filtering Vs Firewall ..................................................................................................11-12
Chapter 12 Firewall Configuration .......................................................................................................... 12-1
12.1 Remote Management and the Firewall ....................................................................................12-1
12.2 Enabling the Firewall...............................................................................................................12-1
12.3 Attack Alert..............................................................................................................................12-2
Chapter 13 Creating Custom Rules .........................................................................................................13-1
13.1 Rules Overview........................................................................................................................13-1
13.2 Rule Logic Overview...............................................................................................................13-1
13.3 Connection Direction............................................................................................................... 13-3
13.4 Logs .........................................................................................................................................13-5
13.5 Rule Summary .........................................................................................................................13-5
13.6 Predefined Services..................................................................................................................13-7
13.7 Creating/Editing Firewall Rules.............................................................................................13-10
13.8 Timeout.................................................................................................................................. 13-13
Chapter 14 Customized Services.............................................................................................................. 14-1
14.1 Introduction to Customized Services ....................................................................................... 14-1
14.2 Creating/Editing A Customized Service .................................................................................. 14-2
14.3 Example Custom Service Firewall Rule ..................................................................................14-3
Chapter 15 Content Filtering Screens...................................................................................................... 15-1
15.1 Content Filtering Overview .....................................................................................................15-1
15.2 Configuring Keyword Blocking...............................................................................................15-1
15.3 Configuring the Schedule ........................................................................................................15-3
15.4 Configuring Trusted Computers ..............................................................................................15-4
VPN/IPSec ...................................................................................................................................................... V
Chapter 16 Introduction to IPSec.............................................................................................................16-1
16.1 VPN Overview.........................................................................................................................16-1
16.2 IPSec Architecture ...................................................................................................................16-4
16.3 Encapsulation........................................................................................................................... 16-5
16.4 IPSec and NAT ........................................................................................................................16-5
viii Table of Contents
Prestige 653HWI Series User’s Guide
Chapter 17 VPN Screens ...........................................................................................................................17-1
17.1 VPN/IPSec Overview...............................................................................................................17-1
17.2 IPSec Algorithms .....................................................................................................................17-1
17.3 My IP Address..........................................................................................................................17-2
17.4 Secure Gateway Address..........................................................................................................17-2
17.5 VPN Summary Screen .............................................................................................................17-3
17.6 Keep Alive ...............................................................................................................................17-5
17.7 ID Type and Content................................................................................................................17-5
17.8 Pre-Shared Key ........................................................................................................................17-7
17.9 Editing VPN Policies ...............................................................................................................17-7
17.10 IKE Phases .............................................................................................................................17-13
17.11 Configuring Advanced IKE Settings......................................................................................17-14
17.12 Manual Key Setup..................................................................................................................17-18
17.13 Configuring Manual Key .......................................................................................................17-19
17.14 Viewing SA Monitor ..............................................................................................................17-22
17.15 Configuring Global Setting ....................................................................................................17-24
17.16 Telecommuter VPN/IPSec Examples ....................................................................................17-25
17.17 VPN and Remote Management..............................................................................................17-27
Remote Management, UPnP and Logs....................................................................................................... VI
Chapter 18 Remote Management Configuration....................................................................................18-1
18.1 Remote Management Overview...............................................................................................18-1
18.2 Telnet .......................................................................................................................................18-2
18.3 FTP...........................................................................................................................................18-3
18.4 Web ..........................................................................................................................................18-3
18.5 Configuring Remote Management ...........................................................................................18-3
Chapter 19 Universal Plug-and-Play (UPnP) ..........................................................................................19-1
19.1 Introducing Universal Plug and Play........................................................................................19-1
19.2 UPnP and ZyXEL ....................................................................................................................19-2
19.3 Installing UPnP in Windows Example.....................................................................................19-3
19.4 Using UPnP in Windows XP Example ....................................................................................19-5
Chapter 20 Logs Screens ...........................................................................................................................20-1
20.1 Logs Overview.........................................................................................................................20-1
20.2 Configuring Log Settings .........................................................................................................20-1
20.3 Displaying the Logs .................................................................................................................20-4
20.4 SMTP Error Messages .............................................................................................................20-5
Bandwidth Management ............................................................................................................................VII
Chapter 21 Bandwidth Management .......................................................................................................21-1
21.1 Bandwidth Management Overview..........................................................................................21-1
21.2 Bandwidth Classes and Filters .................................................................................................21-1
21.3 Proportional Bandwidth Allocation..........................................................................................21-2
21.4 Bandwidth Management Usage Examples...............................................................................21-2
Table of Contents ix
Prestige 653HWI Series User’s Guide
21.5 Scheduler .................................................................................................................................21-4
21.6 Maximize Bandwidth Usage.................................................................................................... 21-4
21.7 Bandwidth Borrowing..............................................................................................................21-7
21.8 Configuring Summary .............................................................................................................21-9
21.9 Configuring Class Setup ........................................................................................................21-11
21.10 Configuring Monitor ..............................................................................................................21-18
Maintenance ...............................................................................................................................................VIII
Chapter 22 Maintenance...........................................................................................................................22-1
22.1 Maintenance Overview ............................................................................................................22-1
22.2 System Status Screen............................................................................................................... 22-1
22.3 DHCP Table Screen................................................................................................................. 22-6
22.4 Wireless Screens ...................................................................................................................... 22-7
22.5 Diagnostic Screens................................................................................................................... 22-9
22.6 Firmware Screen.................................................................................................................... 22-14
SMT General Configuration........................................................................................................................IX
Chapter 23 Introducing the SMT............................................................................................................. 23-1
23.1 SMT Introduction ....................................................................................................................23-1
23.2 Navigating the SMT Interface..................................................................................................23-3
23.3 Changing the System Password............................................................................................... 23-6
Chapter 24 Menu 1 General Setup...........................................................................................................24-1
24.1 General Setup...........................................................................................................................24-1
24.2 Procedure To Configure Menu 1 .............................................................................................24-1
Chapter 25 Menu 2 WAN Backup Setup .................................................................................................25-1
25.1 Introduction to WAN Backup Setup........................................................................................ 25-1
25.2 ISDN Dial Backup................................................................................................................... 25-1
25.3 Configuring Dial Backup in Menu 2........................................................................................25-1
25.4 Configuring ISDN Dial Backup Setup.....................................................................................25-4
25.5 ISDN Advanced Setup Menus................................................................................................. 25-5
25.6 NetCAPI Setup Menu ..............................................................................................................25-8
25.7 ISDN Remote Node Profile ...................................................................................................25-10
25.8 Editing PPP Options ..............................................................................................................25-12
25.9 Editing TCP/IP Options .........................................................................................................25-14
25.10 Editing Login Script...............................................................................................................25-16
25.11 Remote Node Filter................................................................................................................ 25-18
Chapter 26 Menu 3 LAN Setup ................................................................................................................26-1
26.1 LAN Setup ............................................................................................................................... 26-1
26.2 Protocol Dependent Ethernet Setup......................................................................................... 26-2
26.3 TCP/IP Ethernet Setup and DHCP...........................................................................................26-2
Chapter 27 Wireless LAN Setup...............................................................................................................27-1
27.1 Wireless LAN Overview..........................................................................................................27-1
27.2 Wireless LAN Setup ................................................................................................................27-1
x Table of Contents
Prestige 653HWI Series User’s Guide
Chapter 28 Internet Access .......................................................................................................................28-1
28.1 Internet Access Overview ........................................................................................................28-1
28.2 IP Policies ................................................................................................................................28-1
28.3 IP Alias.....................................................................................................................................28-1
28.4 IP Alias Setup...........................................................................................................................28-2
28.5 Route IP Setup..........................................................................................................................28-4
28.6 Internet Access Configuration..................................................................................................28-5
Chapter 29 Remote Node Configuration..................................................................................................29-1
29.1 Remote Node Setup Overview.................................................................................................29-1
29.2 Remote Node Setup..................................................................................................................29-1
29.3 Remote Node Network Layer Options.....................................................................................29-5
29.4 Remote Node Filter ..................................................................................................................29-8
29.5 Editing ATM Layer Options ....................................................................................................29-9
Chapter 30 Static Route Setup..................................................................................................................30-1
30.1 IP Static Route Overview.........................................................................................................30-1
30.2 Configuration ...........................................................................................................................30-2
Chapter 31 Bridging Setup........................................................................................................................31-1
31.1 Bridging in General..................................................................................................................31-1
31.2 Bridge Ethernet Setup ..............................................................................................................31-1
Chapter 32 Network Address Translation (NAT)....................................................................................32-1
32.1 Using NAT...............................................................................................................................32-1
32.2 Applying NAT .........................................................................................................................32-1
32.3 NAT Setup ...............................................................................................................................32-3
32.4 Configuring a Server behind NAT ...........................................................................................32-9
32.5 General NAT Examples .........................................................................................................32-11
Chapter 33 Enabling the Firewall.............................................................................................................33-1
33.1 Remote Management and the Firewall.....................................................................................33-1
33.2 Access Methods .......................................................................................................................33-1
33.3 Enabling the Firewall ...............................................................................................................33-1
SMT Advanced Management........................................................................................................................ X
Chapter 34 Filter Configuration...............................................................................................................34-1
34.1 About Filtering.........................................................................................................................34-1
34.2 Configuring a Filter Set for the Prestige ..................................................................................34-4
34.3 Configuring a Filter Set for the Prestige ..................................................................................34-6
34.4 Filter Rules Summary Menus...................................................................................................34-7
34.5 Configuring a Filter Rule .........................................................................................................34-8
34.6 Filter Types and NAT ............................................................................................................34-15
34.7 Example Filter........................................................................................................................34-15
34.8 Applying Filters and Factory Defaults ...................................................................................34-18
Chapter 35 SNMP Configuration .............................................................................................................35-1
35.1 About SNMP............................................................................................................................35-1
Table of Contents xi
Prestige 653HWI Series User’s Guide
35.2 Supported MIBs.......................................................................................................................35-2
35.3 SNMP Configuration ...............................................................................................................35-2
35.4 SNMP Traps ............................................................................................................................35-4
Chapter 36 System Security...................................................................................................................... 36-1
36.1 System Security .......................................................................................................................36-1
36.2 Creating User Accounts on the Prestige...................................................................................36-5
Chapter 37 System Information and Diagnosis.......................................................................................37-1
37.1 System Status...........................................................................................................................37-1
37.2 System Information..................................................................................................................37-3
37.3 Log and Trace ..........................................................................................................................37-5
37.4 Diagnostic ................................................................................................................................ 37-8
Chapter 38 Firmware and Configuration File Maintenance .................................................................38-1
38.1 Filename Conventions .............................................................................................................38-1
38.2 Backup Configuration..............................................................................................................38-2
38.3 Restore Configuration..............................................................................................................38-7
38.4 Uploading Firmware and Configuration Files .......................................................................38-10
Chapter 39 System Maintenance.............................................................................................................. 39-1
39.1 Command Interpreter Mode.....................................................................................................39-1
39.2 Call Control Support................................................................................................................ 39-2
39.3 Time and Date Setting .............................................................................................................39-4
Chapter 40 Remote Management.............................................................................................................40-1
40.1 Remote Management Overview...............................................................................................40-1
40.2 Remote Management ...............................................................................................................40-1
40.3 Remote Management and NAT ...............................................................................................40-3
40.4 System Timeout ....................................................................................................................... 40-3
Chapter 41 IP Policy Routing ...................................................................................................................41-1
41.1 IP Policy Routing Overview ....................................................................................................41-1
41.2 Benefits of IP Policy Routing ..................................................................................................41-1
41.3 Routing Policy .........................................................................................................................41-1
41.4 IP Routing Policy Setup........................................................................................................... 41-2
41.5 Applying an IP Policy..............................................................................................................41-5
41.6 IP Policy Routing Example...................................................................................................... 41-7
Chapter 42 Call Scheduling ......................................................................................................................42-1
42.1 Introduction..............................................................................................................................42-1
SMT VPN/IPSec and Internal SPTGEN.....................................................................................................XI
Chapter 43 VPN/IPSec Setup....................................................................................................................43-1
43.1 VPN/IPSec Overview ..............................................................................................................43-1
43.2 IPSec Summary Screen............................................................................................................43-2
43.3 IPSec Setup.............................................................................................................................. 43-6
43.4 IKE Setup...............................................................................................................................43-11
43.5 Manual Setup .........................................................................................................................43-13
xii Table of Contents
Prestige 653HWI Series User’s Guide
Chapter 44 SA Monitor .............................................................................................................................44-1
44.1 SA Monitor Overview..............................................................................................................44-1
44.2 Using SA Monitor ....................................................................................................................44-1
Chapter 45 Internal SPTGEN...................................................................................................................45-1
45.1 Internal SPTGEN Overview.....................................................................................................45-1
45.2 The Configuration Text File Format ........................................................................................45-1
45.3 Internal SPTGEN FTP Download Example.............................................................................45-3
45.4 Internal SPTGEN FTP Upload Example..................................................................................45-4
Appendices and Index.................................................................................................................................XII
Appendix A Troubleshooting......................................................................................................................A-1
Appendix B IP Subnetting.......................................................................................................................... B-1
Appendix C Wireless LAN and IEEE 802.11............................................................................................C-1
Appendix D Antenna Selection and Positioning Recommendation ........................................................D-1
Appendix E PPPoE .....................................................................................................................................E-1
Appendix F Virtual Circuit Topology........................................................................................................ F-1
Appendix G Power Adaptor Specifications.............................................................................................. G-1
Appendix H Example Internal SPTGEN Screens................................................................................... H-1
Appendix I Setting up Your Computer’s IP Address ................................................................................I-1
Appendix J Splitters and Microfilters........................................................................................................J-1
Appendix K Log Descriptions................................................................................................................... K-1
Appendix L Index........................................................................................................................................ L-1
Table of Contents xiii
Prestige 653HWI Series User’s Guide
List of Figures
Figure 1-1 Prestige Internet Access Application.............................................................................................1-8
Figure 1-2 Firewall Application......................................................................................................................1-9
Figure 1-3 VPN Application.........................................................................................................................1-10
Figure 1-4 Prestige LAN-to-LAN Application ............................................................................................. 1-11
Figure 2-1 Password Screen ...........................................................................................................................2-2
Figure 2-2 Web Configurator SITE MAP Screen ...........................................................................................2-3
Figure 2-3 Example Xmodem Upload............................................................................................................2-4
Figure 3-1 Wizard Screen 1 ............................................................................................................................3-3
Figure 3-2 Internet Connection with PPPoE...................................................................................................3-6
Figure 3-3 Internet Connection with RFC 1483 .............................................................................................3-8
Figure 3-4 Internet Connection with ENET ENCAP......................................................................................3-9
Figure 3-5 Internet Connection with PPPoA ................................................................................................3-10
Figure 3-6 Wizard Screen 3 ..........................................................................................................................3-12
Figure 3-7 Wizard: LAN Configuration .......................................................................................................3-13
Figure 3-8 Wizard Screen 4 ..........................................................................................................................3-14
Figure 4-1 Password .......................................................................................................................................4-1
Figure 5-1 LAN and WAN IP Addresses ........................................................................................................5-1
Figure 5-2 LAN ..............................................................................................................................................5-4
Figure 6-1 RTS Threshold ..............................................................................................................................6-2
Figure 6-2 Prestige Wireless Security Levels .................................................................................................6-3
Figure 6-3 Wireless......................................................................................................................................... 6-4
Figure 6-4 MAC Address Filter......................................................................................................................6-7
Figure 6-5 EAP Authentication.....................................................................................................................6-10
Figure 6-6 802.1x..........................................................................................................................................6-10
Figure 6-7 Local User Database ...................................................................................................................6-13
xiv List of Figures
Prestige 653HWI Series User’s Guide
Figure 6-8 RADIUS..................................................................................................................................... 6-14
Figure 7-1 Example of Traffic Shaping.......................................................................................................... 7-4
Figure 7-2 WAN Functions ............................................................................................................................ 7-4
Figure 7-3 WAN DSL Setup............................................................................................................................. 7-1
Figure 7-4 ISDN Connection Setup ............................................................................................................... 7-5
Figure 7-5 ISDN Dial In Setup......................................................................................................................... 7-8
Figure 7-6 Configuring NetCAPI ................................................................................................................... 7-10
Figure 7-7 Configuration Example .............................................................................................................. 7-12
Figure 7-8 Traffic Redirect Setup Example ................................................................................................. 7-13
Figure 7-9 Traffic Redirect WAN Setup....................................................................................................... 7-14
Figure 7-10 Traffic Redirect LAN Setup ..................................................................................................... 7-15
Figure 7-11 WAN Backup Setup .................................................................................................................... 7-16
Figure 8-1 How NAT Works .......................................................................................................................... 8-3
Figure 8-2 NAT Application With IP Alias .................................................................................................... 8-4
Figure 8-3 Multiple Servers Behind NAT Example....................................................................................... 8-8
Figure 8-4 NAT Mode.................................................................................................................................... 8-8
Figure 8-5 Edit SUA/NAT Server Set.......................................................................................................... 8-10
Figure 8-6 Address Mapping Rules...............................................................................................................8-11
Figure 8-7 Address Mapping Rule Edit........................................................................................................ 8-13
Figure 9-1 DDNS........................................................................................................................................... 9-2
Figure 10-1 Time/Date ................................................................................................................................. 10-1
Figure 11-1 Prestige Firewall Application ....................................................................................................11-3
Figure 11-2 Three-Way Handshake...............................................................................................................11-5
Figure 11-3 SYN Flood.................................................................................................................................11-5
Figure 11-4 Smurf Attack..............................................................................................................................11-6
Figure 11-5 Stateful Inspection .....................................................................................................................11-8
Figure 12-1 Enabling the Firewall ............................................................................................................... 12-1
List of Figures xv
Prestige 653HWI Series User’s Guide
Figure 12-2 Attack Alert ...............................................................................................................................12-4
Figure 13-1 LAN to WAN Traffic.................................................................................................................13-4
Figure 13-2 WAN to LAN Traffic.................................................................................................................13-5
Figure 13-3 Firewall Rules Summary: First Screen......................................................................................13-6
Figure 13-4 Creating/Editing A Firewall Rule............................................................................................13-11
Figure 13-5 Adding/Editing Source and Destination Addresses.................................................................13-13
Figure 13-6 Timeout ...................................................................................................................................13-14
Figure 14-1 Customized Services.................................................................................................................14-1
Figure 14-2 Creating/Editing A Customized Service....................................................................................14-2
Figure 14-3 Configure Source IP Example................................................................................................... 14-4
Figure 14-4 Customized Service for MyService Example............................................................................14-4
Figure 14-5 Syslog Rule Configuration Example.........................................................................................14-5
Figure 14-6 Rule Summary Example ...........................................................................................................14-6
Figure 15-1 Content Filter: Keyword ...........................................................................................................15-2
Figure 15-2 Content Filter: Schedule............................................................................................................15-3
Figure 15-3 Content Filter: Trusted ..............................................................................................................15-4
Figure 16-1 Encryption and Decryption .......................................................................................................16-2
Figure 16-2 VPN Application.......................................................................................................................16-3
Figure 16-3 IPSec Architecture.....................................................................................................................16-4
Figure 16-4 Transport and Tunnel Mode IPSec Encapsulation.....................................................................16-5
Figure 17-1 IPSec Summary Fields..............................................................................................................17-3
Figure 17-2 VPN Summary ..........................................................................................................................17-4
Figure 17-3 VPN IKE...................................................................................................................................17-8
Figure 17-4 Two Phases to Set Up the IPSec SA........................................................................................17-13
Figure 17-5 VPN IKE: Advanced...............................................................................................................17-15
Figure 17-6 Manual Setup ..........................................................................................................................17-19
Figure 17-7 SA Monitor..............................................................................................................................17-23
xvi List of Figures
Prestige 653HWI Series User’s Guide
Figure 17-8 Global Setting......................................................................................................................... 17-24
Figure 17-9 Telecommuters Sharing One VPN Rule Example.................................................................. 17-26
Figure 17-10 Telecommuters Using Unique VPN Rules Example ............................................................ 17-27
Figure 18-1 Telnet Configuration on a TCP/IP Network ............................................................................. 18-2
Figure 18-2 Remote Management................................................................................................................ 18-3
Figure 19-1 Configuring UPnP .................................................................................................................... 19-2
Figure 20-1 Log Settings.............................................................................................................................. 20-2
Figure 20-2 View Logs................................................................................................................................. 20-4
Figure 20-3 E-mail Log Example ................................................................................................................ 20-6
Figure 21-1 Application-based Bandwidth Management Example.............................................................. 21-2
Figure 21-2 Subnet-based Bandwidth Management Example ..................................................................... 21-3
Figure 21-3 Application and Subnet-based Bandwidth Management Example........................................... 21-4
Figure 21-4 Bandwidth Allotment Example ................................................................................................ 21-6
Figure 21-5 Maximize Bandwidth Usage Example ..................................................................................... 21-6
Figure 21-6 Bandwidth Borrowing Example............................................................................................... 21-8
Figure 21-7 Bandwidth Manager: Summary.............................................................................................. 21-10
Figure 21-8 Bandwidth Manager: Class Setup........................................................................................... 21-12
Figure 21-9 Bandwidth Manager: Class Configuration ............................................................................. 21-14
Figure 21-10 Bandwidth Management Statistics ....................................................................................... 21-17
Figure 21-11 Bandwidth Manager Monitor ............................................................................................... 21-18
Figure 22-1 System Status ........................................................................................................................... 22-2
Figure 22-2 System Status: Show Statistics ................................................................................................. 22-4
Figure 22-3 DHCP Table.............................................................................................................................. 22-6
Figure 22-4 Association List........................................................................................................................ 22-7
Figure 22-5 Channel Usage Table ................................................................................................................ 22-8
Figure 22-6 Diagnostic General................................................................................................................. 22-10
Figure 22-7 Diagnostic DSL Line...............................................................................................................22-11
List of Figures xvii
Prestige 653HWI Series User’s Guide
Figure 22-8 Diagnostic ISDN Line.............................................................................................................22-13
Figure 22-9 Firmware Upgrade ..................................................................................................................22-15
Figure 22-10 Network Temporarily Disconnected......................................................................................22-16
Figure 22-11 Error Message .......................................................................................................................22-16
Figure 23-1 Login Screen .............................................................................................................................23-2
Figure 23-2 Prestige 653 SMT Menu Overview...........................................................................................23-3
Figure 23-3 SMT Main Menu.......................................................................................................................23-5
Figure 23-4 Menu 23 System Password .......................................................................................................23-6
Figure 24-1 Menu 1 General Setup...............................................................................................................24-2
Figure 24-2 Menu 1.1 Configure Dynamic DNS..........................................................................................24-3
Figure 25-1 Menu 2 WAN Backup Setup .....................................................................................................25-2
Figure 25-2 Menu 2.1Traffic Redirect Setup................................................................................................25-3
Figure 25-3 Menu 2.2 IDN Dial Backup Setup ............................................................................................25-4
Figure 25-4 Router Behind a PABX .............................................................................................................25-7
Figure 25-5 Menu 2 ISDN Setup for DSS1 ..................................................................................................25-8
Figure 25-6 Loopback Test ........................................................................................................................... 25-8
Figure 25-7 Menu 2.2.2 NetCAPI Setup ......................................................................................................25-9
Figure 25-8 Menu 11.1 ISDN Remote Node Profile ..................................................................................25-10
Figure 25-9 Menu 11.2 Remote Node PPP Options ...................................................................................25-13
Figure 25-10 Menu 11.3 Remote Node Network Layer Options................................................................25-14
Figure 25-11 Menu 11.4 Remote Node Setup Script ..................................................................................25-17
Figure 25-12 Menu 11.1 Remote Node Profile (Backup ISP) .................................................................... 25-18
Figure 25-13 Menu 11.5 Dial Backup Remote Node Filter........................................................................25-19
Figure 26-1 Menu 3 LAN Setup...................................................................................................................26-1
Figure 26-2 Menu 3.1 LAN Port Filter Setup...............................................................................................26-1
Figure 26-3 Menu 3.2 TCP/IP and DHCP Ethernet Setup............................................................................26-2
Figure 27-1 Menu 3.5 - Wireless LAN Setup...............................................................................................27-1
xviii List of Figures
Prestige 653HWI Series User’s Guide
Figure 27-2 Menu 3.5.1 WLAN MAC Address Filtering ............................................................................ 27-3
Figure 28-1 Physical Network ..................................................................................................................... 28-2
Figure 28-2 Partitioned Logical Networks................................................................................................... 28-2
Figure 28-3 Menu 3.2 TCP/IP and DHCP Setup.......................................................................................... 28-3
Figure 28-4 Menu 3.2.1 IP Alias Setup ........................................................................................................ 28-3
Figure 28-5 Menu 1 General Setup.............................................................................................................. 28-4
Figure 28-6 Menu 4 Internet Access Setup .................................................................................................. 28-5
Figure 29-1 Menu 11 Remote Node Setup................................................................................................... 29-2
Figure 29-2 Menu 11.1 Remote Node Profile.............................................................................................. 29-3
Figure 29-3 Menu 11.3 Remote Node Network Layer Options................................................................... 29-6
Figure 29-4 Sample IP Addresses for a TCP/IP LAN-to-LAN Connection................................................. 29-8
Figure 29-5 Menu 11.5 Remote Node Filter (RFC 1483 or ENET Encapsulation) ..................................... 29-9
Figure 29-6 Menu 11.5 Remote Node Filter (PPPoA or PPPoE Encapsulation).......................................... 29-9
Figure 29-7 Menu 11.6 for VC-based Multiplexing................................................................................... 29-10
Figure 29-8 Menu 11.6 for LLC-based Multiplexing or PPP Encapsulation ............................................. 29-10
Figure 29-9 Menu 11.1 Remote Node Profile(ISDN Dial Backup) ............................................................29-11
Figure 29-10 Menu 11.1 Remote Node Profile(ISDN Dial In)...................................................................29-11
Figure 30-1 Sample Static Routing Topology .............................................................................................. 30-1
Figure 30-2 Menu 12 Static Route Setup..................................................................................................... 30-2
Figure 30-3 Menu 12.1 IP Static Route Setup.............................................................................................. 30-2
Figure 30-4 Menu12.1.1 Edit IP Static Route.............................................................................................. 30-3
Figure 31-1 Menu 11.1 Remote Node Profile.............................................................................................. 31-2
Figure 31-2 Menu 11.3 Remote Node Network Layer Options................................................................... 31-2
Figure 31-3 Menu 12.3.1 Edit Bridge Static Route...................................................................................... 31-3
Figure 32-1 Menu 4 Applying NAT for Internet Access .............................................................................. 32-2
Figure 32-2 Menu 11.3 Applying NAT to the Remote Node ....................................................................... 32-3
Figure 32-3 Menu 15 NAT Setup................................................................................................................. 32-4
List of Figures xix
Prestige 653HWI Series User’s Guide
Figure 32-4 Menu 15.1 Address Mapping Sets.............................................................................................32-4
Figure 32-5 Menu 15.1.255 SUA Address Mapping Rules ..........................................................................32-5
Figure 32-6 Menu 15.1.1 First Set................................................................................................................32-6
Figure 32-7 Menu 15.1.1.1 Editing/Configuring an Individual Rule in a Set...............................................32-8
Figure 32-8 Menu 15.2 NAT Server Setup ...................................................................................................32-9
Figure 32-9 Menu 15.2.1 NAT Server Setup ..............................................................................................32-10
Figure 32-10 Multiple Servers Behind NAT Example................................................................................32-11
Figure 32-11 NAT Example 1.....................................................................................................................32-12
Figure 32-12 Menu 4 Internet Access & NAT Example .............................................................................32-12
Figure 32-13 NAT Example 2.....................................................................................................................32-13
Figure 32-14 Menu 15.2.1 Specifying an Inside Server .............................................................................32-13
Figure 32-15 NAT Example 3.....................................................................................................................32-14
Figure 32-16 Example 3: Menu 11.3 .......................................................................................................... 32-15
Figure 32-17 Example 3: Menu 15.1.1.1 ....................................................................................................32-16
Figure 32-18 Example 3: Final Menu 15.1.1..............................................................................................32-16
Figure 32-19 NAT Example 4.....................................................................................................................32-17
Figure 32-20 Example 4: Menu 15.1.1.1 Address Mapping Rule...............................................................32-18
Figure 32-21 Example 4: Menu 15.1.1 Address Mapping Rules ................................................................ 32-18
Figure 33-1 Menu 21.2 Firewall Setup.........................................................................................................33-2
Figure 34-1 Outgoing Packet Filtering Process ............................................................................................34-2
Figure 34-2 Filter Rule Process ....................................................................................................................34-3
Figure 34-3 Menu 21 Filter Set Configuration .............................................................................................34-4
Figure 34-4 NetBIOS_WAN Filter Rules Summary.....................................................................................34-5
Figure 34-5 NetBIOS_LAN Filter Rules Summary......................................................................................34-5
Figure 34-6 IGMP Filter Rules Summary.....................................................................................................34-5
Figure 34-7 Menu 21 Filter Set Configuration .............................................................................................34-6
Figure 34-8 PPPoE Filter Rules Summary ...................................................................................................34-7
xx List of Figures
Prestige 653HWI Series User’s Guide
Figure 34-9 TEL_FTP_WEB_SNM Filter Rules Summary ........................................................................ 34-7
Figure 34-10 Menu 21.1.x.1 TCP/IP Filter Rule.......................................................................................... 34-9
Figure 34-11 Executing an IP Filter ........................................................................................................... 34-12
Figure 34-12 Menu 21.1.5.1 Generic Filter Rule ...................................................................................... 34-13
Figure 34-13 Protocol and Device Filter Sets ............................................................................................ 34-15
Figure 34-14 Sample Telnet Filter.............................................................................................................. 34-16
Figure 34-15 Menu 21.1.6.1 Sample Filter ................................................................................................ 34-17
Figure 34-16 Menu 21.1.6.1 Sample Filter Rules Summary...................................................................... 34-18
Figure 34-17 Filtering Ethernet Traffic...................................................................................................... 34-19
Figure 34-18 Filtering Remote Node Traffic ............................................................................................. 34-20
Figure 35-1 SNMP Management Model...................................................................................................... 35-1
Figure 35-2 Menu 22 SNMP Configuration................................................................................................. 35-3
Figure 36-1 Menu 23 System Security......................................................................................................... 36-1
Figure 36-2 Menu 23 System Security......................................................................................................... 36-1
Figure 36-3 Menu 23.2 System Security : RADIUS Server ........................................................................ 36-2
Figure 36-4 Menu 23 System Security......................................................................................................... 36-3
Figure 36-5 Menu 23.4 System Security : IEEE802.1x............................................................................... 36-4
Figure 36-6 Menu 14 Dial-in User Setup..................................................................................................... 36-6
Figure 36-7 Menu 14.1 Edit Dial-in User .................................................................................................... 36-6
Figure 37-1 Menu 24 System Maintenance ................................................................................................. 37-1
Figure 37-2 Menu 24.1 System Maintenance: Status................................................................................... 37-2
Figure 37-3 Menu 24.2 System Information and Console Port Speed......................................................... 37-3
Figure 37-4 Menu 24.2.1 System Maintenance : Information ..................................................................... 37-4
Figure 37-5 Menu 24.2.2 System Maintenance : Change Console Port Speed............................................ 37-5
Figure 37-6 Menu 24.3 System Maintenance : Log and Trace .................................................................... 37-6
Figure 37-7 Sample Error and Information Messages ................................................................................. 37-6
Figure 37-8 Menu 24.3.2 System Maintenance : Syslog and Accounting.................................................... 37-6
List of Figures xxi
Prestige 653HWI Series User’s Guide
Figure 37-9 Menu 24.4 System Maintenance : Diagnostic...........................................................................37-9
Figure 38-1 Telnet in Menu 24.5 ..................................................................................................................38-3
Figure 38-2 FTP Session Example................................................................................................................38-4
Figure 38-3 Menu 24.5 System Maintenance : Backup Configuration.........................................................38-6
Figure 38-4 Menu 24.5 System Maintenance : Starting Xmodem Download Screen ..................................38-6
Figure 38-5 Backup Configuration Example................................................................................................38-7
Figure 38-6 Successful Backup Confirmation Screen .................................................................................. 38-7
Figure 38-7 Telnet into Menu 24.6 ...............................................................................................................38-8
Figure 38-8 Restore Using FTP Session Example........................................................................................38-9
Figure 38-9 System Maintenance : Restore Configuration...........................................................................38-9
Figure 38-10 System Maintenance : Starting Xmodem Download Screen...................................................38-9
Figure 38-11 Restore Configuration Example ............................................................................................38-10
Figure 38-12 Successful Restoration Confirmation Screen........................................................................38-10
Figure 38-13 Telnet Into Menu 24.7.1 Upload System Firmware ..............................................................38-11
Figure 38-14 Telnet Into Menu 24.7.2 System Maintenance ...................................................................... 38-11
Figure 38-15 FTP Session Example of Firmware File Upload...................................................................38-12
Figure 38-16 Menu 24.7.1 as seen using the Console Port.........................................................................38-14
Figure 38-17 Example Xmodem Upload....................................................................................................38-14
Figure 38-18 Menu 24.7.2 as seen using the Console Port.........................................................................38-15
Figure 38-19 Example Xmodem Upload....................................................................................................38-16
Figure 39-1 Command Mode in Menu 24 ....................................................................................................39-1
Figure 39-2 Valid Commands .......................................................................................................................39-2
Figure 39-3 Menu 24.9 System Maintenance : Call Control ........................................................................39-2
Figure 39-4 Menu 24.9.1 System Maintenance : Budget Management........................................................39-3
Figure 39-5 Menu 24 System Maintenance..................................................................................................39-4
Figure 39-6 Menu 24.10 System Maintenance: Time and Date Setting .......................................................39-4
Figure 40-1 Menu 24.11 Remote Management Control ...............................................................................40-2
xxii List of Figures
Prestige 653HWI Series User’s Guide
Figure 41-1 Menu 25 IP Routing Policy Setup ............................................................................................ 41-2
Figure 41-2 Menu 25.1 IP Routing Policy Setup ......................................................................................... 41-3
Figure 41-3 Menu 25.1.1 IP Routing Policy ................................................................................................ 41-4
Figure 41-4 Menu 3.2 TCP/IP and DHCP Ethernet Setup ........................................................................... 41-6
Figure 41-5 Menu 11.3 Remote Node Network Layer Options................................................................... 41-6
Figure 41-6 Example of IP Policy Routing.................................................................................................. 41-7
Figure 41-7 IP Routing Policy Example ...................................................................................................... 41-8
Figure 41-8 IP Routing Policy Example ...................................................................................................... 41-9
Figure 41-9 Applying IP Policies Example .................................................................................................. 41-9
Figure 42-1 Menu 26 Schedule Setup.......................................................................................................... 42-1
Figure 42-2 Menu 26.1 Schedule Set Setup................................................................................................. 42-2
Figure 42-3 Applying Schedule Set(s) to a Remote Node (PPPoE)............................................................. 42-4
Figure 43-1 VPN SMT Menu Tree............................................................................................................... 43-1
Figure 43-2 Menu 27 VPN/IPSec Setup ...................................................................................................... 43-2
Figure 43-3 Menu 27.1 IPSec Summary...................................................................................................... 43-2
Figure 43-4 Menu 27.1.1 IPSec Setup ......................................................................................................... 43-6
Figure 43-5 Menu 27.1.1.1 IKE Setup ............................................................................................................43-11
Figure 43-6 Menu 27.1.1.2 Manual Setup ................................................................................................. 43-14
Figure 44-1 Menu 27.2 SA Monitor............................................................................................................. 44-1
Figure 45-1 Configuration Text File Format: Column Descriptions ............................................................ 45-2
Figure 45-2 Invalid Parameter Entered: Command Line Example .............................................................. 45-3
Figure 45-3 Valid Parameter Entered: Command Line Example................................................................. 45-3
Figure 45-4 Internal SPTGEN FTP Download Example ............................................................................. 45-3
Figure 45-5 Internal SPTGEN FTP Upload Example..................................................................................45-4
List of Figures xxiii
Prestige 653HWI Series User’s Guide
List of Tables
Table 3-1 Wizard Screen 1..............................................................................................................................3-3
Table 3-2 Internet Connection with PPPoE ....................................................................................................3-7
Table 3-3 Internet Connection with RFC 1483...............................................................................................3-8
Table 3-4 Internet Connection with ENET ENCAP .......................................................................................3-9
Table 3-5 Internet Connection with PPPoA.................................................................................................. 3-11
Table 3-6 Wizard: LAN Configuration ......................................................................................................... 3-13
Table 4-1 Password.........................................................................................................................................4-1
Table 5-1 LAN................................................................................................................................................5-4
Table 6-1 Wireless ..........................................................................................................................................6-5
Table 6-2 MAC Address Filter........................................................................................................................6-8
Table 6-3 802.1x ...........................................................................................................................................6-11
Table 6-4 Local User Database.....................................................................................................................6-14
Table 6-5 RADIUS .......................................................................................................................................6-15
Table 7-1 WAN Functions.................................................................................................................................7-5
Table 7-2 WAN DSL Setup ...............................................................................................................................7-2
Table 7-3 ISDN Connection Setup ..................................................................................................................7-6
Table 7-4 ISDN Dial In Setup ..........................................................................................................................7-9
Table 7-5 Configuring NetCAPI...................................................................................................................7-11
Table 7-6 WAN Backup Setup ........................................................................................................................7-17
Table 8-1 NAT Definitions..............................................................................................................................8-1
Table 8-2 NAT Mapping Types.......................................................................................................................8-5
Table 8-3 Services and Port Numbers.............................................................................................................8-7
Table 8-4 NAT Mode ......................................................................................................................................8-9
Table 8-5 Edit SUA/NAT Server Set ............................................................................................................8-10
Table 8-6 Address Mapping Rules................................................................................................................8-12
xxiv List of Tables
Prestige 653HWI Series User’s Guide
Table 8-7 Address Mapping Rule Edit ......................................................................................................... 8-13
Table 9-1 DDNS............................................................................................................................................. 9-2
Table 10-1 Time/Date................................................................................................................................... 10-2
Table 11-1 Common IP Ports ........................................................................................................................11-4
Table 11-2 ICMP Commands That Trigger Alerts.........................................................................................11-6
Table 11-3 Legal NetBIOS Commands.........................................................................................................11-7
Table 11-4 Legal SMTP Commands .............................................................................................................11-7
Table 12-1 Attack Alert ................................................................................................................................ 12-4
Table 13-1 Firewall Rules Summary: First Screen....................................................................................... 13-6
Table 13-2 Predefined Services.................................................................................................................... 13-8
Table 13-3 Creating/Editing A Firewall Rule..............................................................................................13-11
Table 13-4 Adding/Editing Source and Destination Addresses.................................................................. 13-13
Table 13-5 Timeout .................................................................................................................................... 13-14
Table 14-1 Customized Services.................................................................................................................. 14-2
Table 14-2 Creating/Editing A Customized Service..................................................................................... 14-3
Table 15-1 Content Filter: Keyword ............................................................................................................ 15-2
Table 15-2 Content Filter: Schedule............................................................................................................. 15-4
Table 15-3 Content Filter: Trusted............................................................................................................... 15-4
Table 16-1 VPN and NAT ............................................................................................................................ 16-6
Table 17-1 AH and ESP ............................................................................................................................... 17-2
Table 17-2 VPN Summary........................................................................................................................... 17-4
Table 17-3 Local ID Type and Content Fields ............................................................................................. 17-6
Table 17-4 Peer ID Type and Content Fields ............................................................................................... 17-6
Table 17-5 Matching ID Type and Content Configuration Example............................................................ 17-6
Table 17-6 Mismatching ID Type and Content Configuration Example...................................................... 17-7
Table 17-7 VPN IKE.................................................................................................................................... 17-9
Table 17-8 VPN IKE: Advanced ................................................................................................................ 17-15
List of Tables xxv
Prestige 653HWI Series User’s Guide
Table 17-9 VPN Manual Setup...................................................................................................................17-20
Table 17-10 SA Monitor .............................................................................................................................17-23
Table 17-11 Global Setting.........................................................................................................................17-24
Table 17-12 Telecommuter and Headquarters Configuration Example ......................................................17-25
Table 18-1 Remote Management..................................................................................................................18-3
Table 19-1 Configuring UPnP ......................................................................................................................19-2
Table 20-1 Log Settings................................................................................................................................20-3
Table 20-2 View Logs...................................................................................................................................20-4
Table 20-3 SMTP Error Messages ................................................................................................................ 20-5
Table 21-1 Application and Subnet-based Bandwidth Management Example ............................................. 21-3
Table 21-2 Bandwidth Manager: Summary ................................................................................................ 21-10
Table 21-3 Bandwidth Manager: Class Setup.............................................................................................21-12
Table 21-4 Bandwidth Manager: Class Configuration................................................................................21-14
Table 21-5 Services and Port Numbers.......................................................................................................21-16
Table 21-6 Bandwidth Management Statistics............................................................................................21-17
Table 21-7 Bandwidth Manager Monitor....................................................................................................21-18
Table 22-1 System Status..............................................................................................................................22-3
Table 22-2 System Status: Show Statistics ...................................................................................................22-5
Table 22-3 DHCP Table................................................................................................................................22-6
Table 22-4 Association List ..........................................................................................................................22-7
Table 22-5 Channel Usage Table ..................................................................................................................22-9
Table 22-6 Diagnostic General ...................................................................................................................22-10
Table 22-7 Diagnostic DSL Line ................................................................................................................22-11
Table 22-8 Diagnostic ISDN Line ..............................................................................................................22-13
Table 22-9 Firmware Upgrade....................................................................................................................22-15
Table 23-1 Main Menu Commands ..............................................................................................................23-4
Table 23-2 Main Menu Summary.................................................................................................................23-5
xxvi List of Tables
Prestige 653HWI Series User’s Guide
Table 24-1 Menu 1 General Setup................................................................................................................ 24-2
Table 24-2 Menu 1.1 Configure Dynamic DNS........................................................................................... 24-3
Table 25-1 Menu 2 WAN Backup Setup ...................................................................................................... 25-2
Table 25-2 Menu 2.1Traffic Redirect Setup................................................................................................. 25-4
Table 25-3 Menu 2 ISDN Dial Backup Setup.............................................................................................. 25-5
Table 25-4 Menu 2.2.2 NetCAPI Setup ....................................................................................................... 25-9
Table 25-5 Menu 11.1 ISDN Remote Node Profile ...................................................................................25-10
Table 25-6 Menu 11.2 Remote Node PPP Options ....................................................................................25-13
Table 25-7 Menu 11.2 Remote Node PPP Options ....................................................................................25-15
Table 25-8 Menu 11.4 Remote Node Setup Script..................................................................................... 25-17
Table 26-1 DHCP Ethernet Setup Menu Fields............................................................................................ 26-3
Table 26-2 TCP/IP Ethernet Setup Menu Fields .......................................................................................... 26-3
Table 27-1 Menu 3.5 - Wireless LAN Setup................................................................................................ 27-2
Table 27-2 Menu 3.5.1 WLAN MAC Address Filtering.............................................................................. 27-3
Table 28-1 Menu 3.2.1 IP Alias Setup.......................................................................................................... 28-4
Table 28-2 Menu 4 Internet Access Setup.................................................................................................... 28-5
Table 29-1 Menu 11.1 Remote Node Profile................................................................................................ 29-3
Table 29-2 Menu 11.3 Remote Node Network Layer Options..................................................................... 29-6
Table 30-1 Menu12.1.1 Edit IP Static Route................................................................................................ 30-3
Table 31-1 Remote Node Network Layer Options : Bridge Fields.............................................................. 31-3
Table 31-2 Menu 12.3.1 Edit Bridge Static Route ....................................................................................... 31-3
Table 32-1 Applying NAT in Menus 4 & 11.3 ............................................................................................. 32-3
Table 32-2 SUA Address Mapping Rules .................................................................................................... 32-5
Table 32-3 Menu 15.1.1 First Set................................................................................................................. 32-7
Table 32-4 Menu 15.1.1.1 Editing/Configuring an Individual Rule in a Set................................................ 32-8
Table 34-1 Abbreviations Used in the Filter Rules Summary Menu............................................................ 34-7
Table 34-2 Rule Abbreviations Used ........................................................................................................... 34-8
List of Tables xxvii
Prestige 653HWI Series User’s Guide
Table 34-3 Menu 21.1.x.1 TCP/IP Filter Rule ............................................................................................ 34-10
Table 34-4 Menu 21.1.5.1 Generic Filter Rule ...........................................................................................34-14
Table 34-5 Filter Sets Table ........................................................................................................................ 34-19
Table 35-1 Menu 22 SNMP Configuration...................................................................................................35-3
Table 35-2 SNMP Traps................................................................................................................................35-4
Table 35-3 Ports and Permanent Virtual Circuits..........................................................................................35-4
Table 36-1 Menu 23.2 System Security : RADIUS Server...........................................................................36-2
Table 36-2 Menu 23.4 System Security : IEEE802.1x .................................................................................36-4
Table 36-3 Menu 14.1 Edit Dial-in User.......................................................................................................36-6
Table 37-1 Menu 24.1 System Maintenance: Status.....................................................................................37-2
Table 37-2 Menu 24.2.1 System Maintenance : Information........................................................................37-4
Table 37-3 Menu 24.3.2 System Maintenance : Syslog and Accounting......................................................37-7
Table 37-4 Menu 24.4 System Maintenance Menu : Diagnostic .................................................................. 37-9
Table 38-1 Filename Conventions ................................................................................................................ 38-2
Table 38-2 General Commands for GUI-based FTP Clients ........................................................................38-4
Table 38-3 General Commands for GUI-based TFTP Clients ......................................................................38-6
Table 39-1 Menu 24.9.1 System Maintenance : Budget Management .........................................................39-3
Table 39-2 Menu 24.10 System Maintenance: Time and Date Setting ......................................................... 39-5
Table 40-1 Menu 24.11 Remote Management Control.................................................................................40-2
Table 41-1 Menu 25.1 IP Routing Policy Setup............................................................................................41-3
Table 41-2 Menu 25.1.1 IP Routing Policy...................................................................................................41-4
Table 42-1 Menu 26.1 Schedule Set Setup ...................................................................................................42-2
Table 43-1 Menu 27.1 IPSec Summary ........................................................................................................43-3
Table 43-2 Menu 27.1.1 IPSec Setup............................................................................................................43-6
Table 43-3 Menu 27.1.1.1 IKE Setup .............................................................................................................43-12
Table 43-4 Active Protocol: Encapsulation and Security Protocol .............................................................43-13
Table 43-5 Menu 27.1.1.2 Manual Setup....................................................................................................43-14
xxviii List of Tables
Prestige 653HWI Series User’s Guide
Table 44-1 Menu 27.2 SA Monitor .............................................................................................................. 44-2
List of Tables xxix
Loading...