How it Works
ZyXEL
Loading...
SBG3500-N000
User Manual
436 pgs9.87 Mb0
User Manual
410 pgs9.25 Mb0
Table of contents
Loading...

ZyXEL SBG3500-N000, SBG3500-NB00 User Manual

Quick Start Guide

SBG3500-N Series

SBG3500-N000 / SBG3500-NB00
Wireless N Fiber WAN Small Business Gateway
Version 1.00 Edition 4, 9/2014
User’s Guide
Default Login Details
LAN IP Address http://192.168.1.1 User Name admin Password 1234
www.zyxel.com
IMPORTANT! READ CAREFULLY BEFORE USE. KEEP THIS GUIDE FOR FUTURE REFERENCE.
Screenshots and graphics in this book may differ slightly from your product due to differences in your product firmware or your computer operating system. Every effort has been made to ensure that the information in this manual is accurate.
Related Documentation
•Quick Start Guide The Quick Start Guide shows how to connect the SBG3500-N Series and access the Web
Configurator wizards. It contains information on setting up your network and configuring for Internet access.
SBG3500-N Series User’s Guide
2

Contents Overview

Contents Overview
User’s Guide .......................................................................................................................................16
Introducing the SBG3500-N Series .........................................................................................................17
The Web Configurator .............................................................................................................................25
Quick Start ...............................................................................................................................................32
Tutorials ..................................................................................................................................................35
Technical Reference ..........................................................................................................................96
Status Screens ........................................................................................................................................97
Broadband .............................................................................................................................................100
Wireless ................................................................................................................................................130
LAN .......................................................................................................................................................159
Routing ..................................................................................................................................................179
Quality of Service (QoS) .......................................................................................................................185
Network Address Translation (NAT) ......................................................................................................203
Dynamic DNS Setup .............................................................................................................................219
AP Control .............................................................................................................................................222
AP Profile ..............................................................................................................................................227
Interface Group .....................................................................................................................................243
USB Service ..........................................................................................................................................248
Firewall ..................................................................................................................................................251
MAC Filter .............................................................................................................................................261
User Access Control .............................................................................................................................264
Scheduler Rules ....................................................................................................................................267
Certificates ............................................................................................................................................269
IPSec VPN ............................................................................................................................................275
PPTP VPN ............................................................................................................................................294
L2TP VPN .............................................................................................................................................299
Log .......................................................................................................................................................305
Network Status .....................................................................................................................................308
ARP Table ............................................................................................................................................. 311
Routing Table ........................................................................................................................................313
IGMP Status .........................................................................................................................................315
xDSL Statistics ......................................................................................................................................316
AP Monitor ............................................................................................................................................319
MyZyXEL ...............................................................................................................................................323
User Account .........................................................................................................................................325
Remote Management ............................................................................................................................328
TR-069 Client ........................................................................................................................................330
SBG3500-N Series User’s Guide
3
Contents Overview
SNMP ....................................................................................................................................................332
Time ......................................................................................................................................................334
E-mail Notification .................................................................................................................................337
Logs Setting .........................................................................................................................................339
Firmware Upgrade ................................................................................................................................342
Configuration .........................................................................................................................................344
Diagnostic .............................................................................................................................................347
Troubleshooting ....................................................................................................................................352
SBG3500-N Series User’s Guide
4

Table of Contents

Table of Contents
Contents Overview ..............................................................................................................................3
Table of Contents .................................................................................................................................5
Part I: User’s Guide .........................................................................................16
Chapter 1
Introducing the SBG3500-N Series...................................................................................................17
1.1 Overview ...........................................................................................................................................17
1.2 Applications for the SBG3500-N Series ...........................................................................................17
1.2.1 Internet Access ........................................................................................................................17
1.2.2 Wireless LAN ...........................................................................................................................20
1.2.3 SBG3500-N Series’s USB Support ..........................................................................................21
1.3 LEDs (Lights) ....................................................................................................................................21
1.4 Ways to Manage the SBG3500-N Series ..........................................................................................24
1.5 Good Habits for Managing the SBG3500-N Series ...........................................................................24
1.6 The RESET Button ............................................................................................................................24
Chapter 2
The Web Configurator........................................................................................................................25
2.1 Overview ...........................................................................................................................................25
2.1.1 Accessing the Web Configurator .............................................................................................25
2.2 Web Configurator Layout ..................................................................................................................27
2.2.1 Title Bar ...................................................................................................................................27
2.2.2 Main Window ...........................................................................................................................28
2.2.3 Navigation Panel .....................................................................................................................28
Chapter 3
Quick Start...........................................................................................................................................32
3.1 Overview ...........................................................................................................................................32
3.2 Quick Start Setup ..............................................................................................................................32
Chapter 4
Tutorials...............................................................................................................................................35
4.1 Overview ...........................................................................................................................................35
4.2 Setting Up an ADSL PPPoE Connection ..........................................................................................35
4.3 Setting Up a GbE WAN connection ..................................................................................................38
4.4 Setting Up a 3G WAN connection .....................................................................................................40
SBG3500-N Series User’s Guide
5
Table of Contents
4.5 Setting Up a Secure Wireless Network .............................................................................................40
4.5.1 Configuring the Wireless Network Settings .............................................................................41
4.5.2 Using WPS ..............................................................................................................................43
4.5.3 Without WPS ...........................................................................................................................47
4.6 Setting Up Multiple Wireless Groups ................................................................................................48
4.7 Configuring Static Route for Routing to Another Network .................................................................51
4.8 Configuring QoS Queue and Class Setup ........................................................................................54
4.9 Access the SBG3500-N Series Using DDNS ....................................................................................57
4.9.1 Registering a DDNS Account on www.dyndns.org ..................................................................57
4.9.2 Configuring DDNS on Your SBG3500-N Series ......................................................................58
4.9.3 Testing the DDNS Setting ........................................................................................................58
4.10 Configuring the MAC Address Filter ................................................................................................58
4.11 Access Your Shared Files From a Computer ..................................................................................60
4.12 Certificate Configuration for VPN ....................................................................................................61
4.13 Examples of Configuring IPSec VPN Rules ....................................................................................64
4.13.1 Example 1: Use 3DES Encryption .........................................................................................64
4.13.2 Example 2: Use AES128 Encryption .....................................................................................67
4.13.3 Example 3: Configuring a Site-to-Site with Dynamic Peer Rule ............................................68
4.13.4 Example 4: Configuring a Remote Access Rule ....................................................................68
4.14 PPTP VPN Tutorial .........................................................................................................................69
4.14.1 Configuring PPTP VPN Setup (Server) .................................................................................69
4.14.2 Configuring PPTP VPN on Windows (Client) ........................................................................70
4.14.3 Configuring PPTP VPN on Android Devices (Client) .............................................................77
4.14.4 Configuring PPTP VPN in iOS Devices (Client) ....................................................................79
4.15 L2TP VPN Tutorial ..........................................................................................................................81
4.15.1 Configuring the Default_L2TPVPN IPSec VPN Rule (Server) ..............................................81
4.15.2 Configuring the L2TP VPN Setup (Server) ............................................................................82
4.15.3 Configuring L2TP VPN in Windows (Client) ..........................................................................83
4.15.4 Configuring L2TP VPN on Windows 7 ...................................................................................84
4.15.5 Configuring L2TP VPN on Android Devices (Client) .............................................................91
4.15.6 Configuring L2TP VPN in iOS Devices (Client) .....................................................................93
Part II: Technical Reference............................................................................96
Chapter 5
Status Screens....................................................................................................................................97
5.1 Overview ...........................................................................................................................................97
5.2 The Status Screen .............................................................................................................................97
Chapter 6
Broadband.........................................................................................................................................100
SBG3500-N Series User’s Guide
6
Table of Contents
6.1 Overview .........................................................................................................................................100
6.1.1 What You Can Do in this Chapter ..........................................................................................100
6.1.2 What You Need to Know ........................................................................................................101
6.1.3 Before You Begin ...................................................................................................................104
6.2 The Broadband Screen ...................................................................................................................104
6.2.1 Add/Edit Internet Connection .................................................................................................106
6.3 The 3G WAN Screen ...................................................................................................................... 114
6.4 The Add New 3G Dongle Screen .................................................................................................... 118
6.4.1 Add 3G Dongle Information ...................................................................................................118
6.5 The Advanced Screen ..................................................................................................................... 119
6.6 The 802.1x Screen ..........................................................................................................................120
6.6.1 Edit 802.1x Settings ...............................................................................................................121
6.7 The multi-WAN Screen ...................................................................................................................122
6.7.1 Add/Edit multi-WAN ...............................................................................................................122
6.7.2 How to Configure multi-WAN for Load-Balancing and Fail-Over ...........................................123
6.8 Technical Reference ........................................................................................................................125
Chapter 7
Wireless.............................................................................................................................................130
7.1 Overview .........................................................................................................................................130
7.1.1 What You Can Do in this Chapter ..........................................................................................130
7.1.2 What You Need to Know ........................................................................................................131
7.2 The General Screen .......................................................................................................................131
7.2.1 No Security ............................................................................................................................134
7.2.2 Basic (WEP Encryption) ........................................................................................................134
7.2.3 More Secure (WPA(2)-PSK) ..................................................................................................136
7.2.4 WPA(2) Authentication ...........................................................................................................137
7.3 The More AP Screen .......................................................................................................................138
7.3.1 Edit More AP ........................................................................................................................139
7.4 MAC Authentication ........................................................................................................................141
7.5 The WPS Screen ............................................................................................................................142
7.6 The WMM Screen ...........................................................................................................................143
7.7 The Others Screen ..........................................................................................................................144
7.8 The Channel Status Screen ............................................................................................................146
7.9 Technical Reference ........................................................................................................................146
7.9.1 Wireless Network Overview ...................................................................................................146
7.9.2 Additional Wireless Terms .....................................................................................................148
7.9.3 Wireless Security Overview ...................................................................................................148
7.9.4 Signal Problems ....................................................................................................................150
7.9.5 BSS .......................................................................................................................................151
7.9.6 MBSSID .................................................................................................................................151
7.9.7 Preamble Type ......................................................................................................................152
7.9.8 WiFi Protected Setup (WPS) .................................................................................................152
SBG3500-N Series User’s Guide
7
Table of Contents
Chapter 8
LAN .................................................................................................................................................... 159
8.1 Overview .........................................................................................................................................159
8.1.1 What You Can Do in this Chapter ..........................................................................................159
8.1.2 What You Need To Know .......................................................................................................160
8.1.3 Before You Begin ...................................................................................................................161
8.2 The LAN Setup Screen ...................................................................................................................161
8.3 The Static DHCP Screen .................................................................................................................165
8.4 The UPnP Screen ...........................................................................................................................167
8.5 Installing UPnP in Windows Example .............................................................................................167
8.5.1 Using UPnP in Windows XP Example ...................................................................................169
8.5.2 Web Configurator Easy Access .............................................................................................171
8.6 The Additional Subnet Screen ........................................................................................................174
8.7 The 5th Ethernet Port Screen .........................................................................................................175
8.8 Technical Reference ........................................................................................................................175
8.8.1 LANs, WANs and the SBG3500-N Series .............................................................................175
8.8.2 DHCP Setup ..........................................................................................................................176
8.8.3 DNS Server Addresses .........................................................................................................176
8.8.4 LAN TCP/IP ...........................................................................................................................177
Chapter 9
Routing ..............................................................................................................................................179
9.1 Overview ........................................................................................................................................179
9.1.1 What You Can Do in this Chapter ..........................................................................................179
9.2 The Routing Screen ........................................................................................................................180
9.2.1 Add/Edit Static Route .............................................................................................................180
9.3 The Policy Forwarding Screen ........................................................................................................181
9.3.1 Add/Edit Policy Forwarding ...................................................................................................182
9.4 The RIP Screen ...............................................................................................................................183
Chapter 10
Quality of Service (QoS)...................................................................................................................185
10.1 Overview ......................................................................................................................................185
10.1.1 What You Can Do in this Chapter ........................................................................................185
10.2 What You Need to Know ...............................................................................................................186
10.3 The Quality of Service General Screen ........................................................................................187
10.4 The Queue Setup Screen .............................................................................................................188
10.4.1 Adding a QoS Queue .........................................................................................................190
10.5 The Class Setup Screen ...............................................................................................................190
10.5.1 Add/Edit QoS Class ............................................................................................................191
10.6 The QoS Policer Setup Screen .....................................................................................................195
10.6.1 Add/Edit a QoS Policer .......................................................................................................196
10.7 The QoS Monitor Screen .............................................................................................................197
SBG3500-N Series User’s Guide
8
Table of Contents
10.8 Technical Reference ......................................................................................................................198
Chapter 11
Network Address Translation (NAT)................................................................................................203
11.1 Overview .......................................................................................................................................203
11.1.1 What You Can Do in this Chapter ........................................................................................203
11.1.2 What You Need To Know .....................................................................................................203
11.2 The Port Forwarding Screen ........................................................................................................204
11.2.1 Add/Edit Port Forwarding ....................................................................................................206
11.3 The Applications Screen ...............................................................................................................207
11.3.1 Add New Application ............................................................................................................208
11.4 The Port Triggering Screen ...........................................................................................................208
11.4.1 Add/Edit Port Triggering Rule .............................................................................................210
11.5 The Default Server Screen ............................................................................................................ 211
11.6 The ALG Screen ............................................................................................................................212
11.7 The Address Mapping Screen .......................................................................................................212
11.7.1 Add/Edit Address Mapping Rule ..........................................................................................213
11.8 Technical Reference ......................................................................................................................214
11.8.1 NAT Definitions ....................................................................................................................214
11.8.2 What NAT Does ...................................................................................................................215
11.8.3 How NAT Works ...................................................................................................................216
11.8.4 NAT Application ...................................................................................................................216
Chapter 12
Dynamic DNS Setup .........................................................................................................................219
12.1 Overview .......................................................................................................................................219
12.1.1 What You Can Do in this Chapter ........................................................................................219
12.1.2 What You Need To Know .....................................................................................................220
12.2 The DNS Entry Screen ..................................................................................................................220
12.2.1 Add/Edit DNS Entry .............................................................................................................220
12.3 The Dynamic DNS Screen ............................................................................................................221
Chapter 13
AP Control.........................................................................................................................................222
13.1 Overview .......................................................................................................................................222
13.1.1 What You Can Do in this Chapter ........................................................................................222
13.2 The Controller Screen ...................................................................................................................222
13.3 The Managed AP List Screen .......................................................................................................223
13.4 The Load Balancing Screen ..........................................................................................................224
13.5 The Dynamic Channel Selection Screen ......................................................................................225
Chapter 14
AP Profile...........................................................................................................................................227
SBG3500-N Series User’s Guide
9
Table of Contents
14.1 Overview .......................................................................................................................................227
14.1.1 What You Can Do in this Chapter ........................................................................................227
14.1.2 What You Need To Know .....................................................................................................227
14.2 Radio Screen ...............................................................................................................................228
14.2.1 Add/Modify New Profile .......................................................................................................229
14.3 SSID Screen ................................................................................................................................233
14.3.1 Add New Profile/Modify SSID Profile ...................................................................................234
14.4 Security Screen .............................................................................................................................235
14.4.1 Add/Modify Security Profile .................................................................................................236
14.5 MAC Filtering Screen ....................................................................................................................239
14.5.1 Add New Entry/Modify MAC Filtering Profile .......................................................................240
14.6 Layer-2 Isolation Overview ............................................................................................................240
14.7 Layer-2 Isolation Screen ..............................................................................................................241
14.7.1 Add New Profile/Modify Layer-2 Isolation ...........................................................................242
Chapter 15
Interface Group.................................................................................................................................243
15.1 Overview .......................................................................................................................................243
15.2 The Interface Group/VLAN Screen ...............................................................................................243
15.2.1 Interface Group Configuration .............................................................................................244
15.2.2 Interface Grouping Criteria .................................................................................................245
Chapter 16
USB Service ......................................................................................................................................248
16.1 Overview .......................................................................................................................................248
16.1.1 What You Can Do in this Chapter ........................................................................................248
16.1.2 What You Need To Know .....................................................................................................248
16.2 The File Sharing Screen ...............................................................................................................249
16.2.1 Before You Begin .................................................................................................................249
Chapter 17
Firewall .............................................................................................................................................. 251
17.1 Overview .......................................................................................................................................251
17.1.1 What You Can Do in this Chapter ........................................................................................251
17.1.2 What You Need to Know ......................................................................................................252
17.2 The Firewall Screen ......................................................................................................................253
17.3 The DoS Screen ............................................................................................................................253
17.4 The Service Screen ......................................................................................................................254
17.4.1 Add/Edit a Service ..............................................................................................................255
17.5 The Access Control Screen ..........................................................................................................257
17.5.1 Add/Edit an ACL Rule ........................................................................................................258
17.6 The Zone Control Screen ..............................................................................................................260
SBG3500-N Series User’s Guide
10
Table of Contents
Chapter 18
MAC Filter..........................................................................................................................................261
18.1 Overview ......................................................................................................................................261
18.2 The MAC Filter Screen ..................................................................................................................262
Chapter 19
User Access Control ........................................................................................................................264
19.1 Overview .......................................................................................................................................264
19.2 The User Access Control Screen ..................................................................................................264
19.2.1 Add/Edit a User Access Control Rule ..................................................................................265
Chapter 20
Scheduler Rules................................................................................................................................267
20.1 Overview .......................................................................................................................................267
20.2 The Scheduler Rules Screen ........................................................................................................267
20.2.1 Add/Edit a Schedule ............................................................................................................267
Chapter 21
Certificates........................................................................................................................................269
21.1 Overview .......................................................................................................................................269
21.1.1 What You Can Do in this Chapter ........................................................................................269
21.2 What You Need to Know ...............................................................................................................269
21.3 The Local Certificates Screen .......................................................................................................269
21.3.1 Create Certificate Request .................................................................................................270
21.3.2 Load Signed Certificate ......................................................................................................272
21.4 The Trusted CA Screen ................................................................................................................273
21.4.1 Import Trusted CA Certificate ..............................................................................................273
Chapter 22
IPSec VPN..........................................................................................................................................275
22.1 Overview .......................................................................................................................................275
22.2 What You Can Do in this Chapter .................................................................................................275
22.3 What You Need To Know ..............................................................................................................276
22.4 The Setup Screen .........................................................................................................................276
22.4.1 Add/Edit VPN Rule ..............................................................................................................277
22.4.2 The VPN Connection Add/Edit Screen ................................................................................277
22.4.3 The Default_L2TPVPN IPSec VPN Rule .............................................................................285
22.5 The IPSec VPN Monitor Screen ....................................................................................................285
22.6 The Radius Screen .......................................................................................................................286
22.7 Technical Reference ......................................................................................................................287
22.7.1 IPSec Architecture ...............................................................................................................287
22.7.2 Encapsulation ......................................................................................................................288
22.7.3 IKE Phases .........................................................................................................................289
SBG3500-N Series User’s Guide
11
Table of Contents
22.7.4 Negotiation Mode ................................................................................................................290
22.7.5 IPSec and NAT ....................................................................................................................290
22.7.6 VPN, NAT, and NAT Traversal .............................................................................................291
22.7.7 ID Type and Content ............................................................................................................292
22.7.8 Pre-Shared Key ...................................................................................................................293
22.7.9 Diffie-Hellman (DH) Key Groups ..........................................................................................293
Chapter 23
PPTP VPN..........................................................................................................................................294
23.1 Overview .......................................................................................................................................294
23.2 What You Can Do in this Chapter .................................................................................................294
23.3 PPTP VPN Setup ..........................................................................................................................295
23.4 The PPTP VPN Monitor Screen ....................................................................................................296
23.5 PPTP VPN Troubleshooting Tips ..................................................................................................296
Chapter 24
L2TP VPN...........................................................................................................................................299
24.1 Overview .......................................................................................................................................299
24.1.1 What You Can Do in this Chapter ........................................................................................299
24.2 L2TP VPN Screen .........................................................................................................................299
24.3 The L2TP VPN Monitor Screen .....................................................................................................301
24.4 L2TP VPN Troubleshooting Tips ...................................................................................................301
Chapter 25
Log ....................................................................................................................................................305
25.1 Overview .......................................................................................................................................305
25.1.1 What You Can Do in this Chapter ........................................................................................305
25.1.2 What You Need To Know .....................................................................................................305
25.2 The System Log Screen ................................................................................................................306
25.3 The Security Log Screen ...............................................................................................................306
Chapter 26
Network Status .................................................................................................................................308
26.1 Overview .......................................................................................................................................308
26.1.1 What You Can Do in this Chapter ........................................................................................308
26.2 The WAN Status Screen ...............................................................................................................308
26.3 The LAN Status Screen .................................................................................................................309
26.4 The DHCP Client Screen ..............................................................................................................309
Chapter 27
ARP Table..........................................................................................................................................311
27.1 Overview ....................................................................................................................................... 311
27.1.1 How ARP Works .................................................................................................................. 311
SBG3500-N Series User’s Guide
12
Table of Contents
27.2 ARP Table Screen .........................................................................................................................311
Chapter 28
Routing Table....................................................................................................................................313
28.1 Overview .......................................................................................................................................313
28.2 The Routing Table Screen .............................................................................................................313
Chapter 29
IGMP Status ......................................................................................................................................315
29.1 Overview .......................................................................................................................................315
29.2 The IGMP Group Status Screen ...................................................................................................315
Chapter 30
xDSL Statistics..................................................................................................................................316
30.1 The xDSL Statistics Screen ...........................................................................................................316
Chapter 31
AP Monitor.........................................................................................................................................319
31.1 Overview .......................................................................................................................................319
31.1.1 What You Can Do in this Chapter ........................................................................................319
31.2 AP List Screen .............................................................................................................................319
31.3 Radio List Screen ..........................................................................................................................320
31.4 Station List Screen .......................................................................................................................321
Chapter 32
MyZyXEL............................................................................................................................................323
32.1 MyZyXEL Overview .......................................................................................................................323
32.2 The License Status Screen ...........................................................................................................323
Chapter 33
User Account ....................................................................................................................................325
33.1 Overview ......................................................................................................................................325
33.2 The User Account Screen .............................................................................................................325
33.2.1 Add/Edit a User Account ....................................................................................................326
Chapter 34
Remote Management........................................................................................................................328
34.1 Overview .......................................................................................................................................328
34.2 The Remote MGMT Screen ..........................................................................................................328
Chapter 35
TR-069 Client.....................................................................................................................................330
35.1 Overview .......................................................................................................................................330
SBG3500-N Series User’s Guide
13
Table of Contents
35.2 The TR-069 Client Screen ............................................................................................................330
Chapter 36
SNMP .................................................................................................................................................332
36.1 The SNMP Agent Screen ..............................................................................................................332
Chapter 37
Time ...................................................................................................................................................334
37.1 Overview .......................................................................................................................................334
37.2 The Time Screen ..........................................................................................................................334
Chapter 38
E-mail Notification............................................................................................................................337
38.1 Overview ....................................................................................................................................337
38.2 The Email Notification Screen .......................................................................................................337
38.2.1 Email Notification Edit ........................................................................................................337
Chapter 39
Logs Setting ..................................................................................................................................... 339
39.1 Overview ......................................................................................................................................339
39.2 The Log Setting Screen ................................................................................................................339
39.2.1 Example E-mail Log ............................................................................................................340
Chapter 40
Firmware Upgrade ............................................................................................................................342
40.1 Overview .......................................................................................................................................342
40.2 The Firmware Screen ....................................................................................................................342
Chapter 41
Configuration ....................................................................................................................................344
41.1 Overview .......................................................................................................................................344
41.2 The Configuration Screen .............................................................................................................344
41.3 The Reboot Screen .......................................................................................................................346
Chapter 42
Diagnostic .........................................................................................................................................347
42.1 Overview .......................................................................................................................................347
42.1.1 What You Can Do in this Chapter ........................................................................................347
42.2 What You Need to Know ...............................................................................................................347
42.3 Ping & TraceRoute & NsLookup ...................................................................................................348
42.4 802.1ag .........................................................................................................................................348
42.5 OAM Ping Test ..............................................................................................................................349
SBG3500-N Series User’s Guide
14
Table of Contents
Chapter 43
Troubleshooting................................................................................................................................352
43.1 Power, Hardware Connections, and LEDs ....................................................................................352
43.2 SBG3500-N Series Access and Login ..........................................................................................353
43.3 Internet Access .............................................................................................................................355
43.4 Wireless Internet Access ...............................................................................................................356
43.5 USB Device Connection ................................................................................................................357
43.6 UPnP .............................................................................................................................................358
Appendix A Setting up Your Computer’s IP Address.......................................................................359
Appendix B IP Addresses and Subnetting.......................................................................................379
Appendix C Pop-up Windows, JavaScript and Java Permissions...................................................387
Appendix D Wireless LANs..............................................................................................................394
Appendix E IPv6 ..............................................................................................................................407
Appendix F Services........................................................................................................................415
Appendix G Legal Information .........................................................................................................419
Appendix H Customer Support........................................................................................................424
Index ..................................................................................................................................................430
SBG3500-N Series User’s Guide
15
PART I

User’s Guide

16

1.1 Overview

The SBG3500-N Series is a secure VPN (Virtual Private Network), multi-WAN gateway that provides high-speed Internet access for business users. It features not only VDSL2/ADSL2+ Bonding functionality, but also one Gigabit Ethernet (GbE) WAN with Small Form Factor Pluggable (SFP) interface. SFP is also known as Fiber Optics interface. The GbE WAN with SFP is a dual-personality design (GbE + Fiber) which enables increased bandwidth and extended coverage. Namely, the SBG3500-N Series can adopt varied network environment and enable service providers to flexibly install this device for VDSL, Fiber and 3G, in addition to provide load-balancing to ensure seamless Internet connectivity.
FEATURES
• Four GbE Ports for LAN Connection
• One USB Port for 3G Connection and File Sharing
• One SFP Port for Fiber Optic Internet Connection
•One GbE WAN Port
• Two VDSL2/ADSL2+ (SBG3500-N000 only) Integrated Ports (Bonding)
• One VDSL2/ADSL2+ (SBG3500-NB00 only) Port
• Integrated Firewall with Secure Network Management
• IP secure VPN
CHAPTER 1

Introducing the SBG3500-N Series

Only use firmware for your SBG3500-N Series’s specific model. Refer to the label on the bottom of your SBG3500-N Series.
Note: SFP and GbE connections cannot be used at the same time.

1.2 Applications for the SBG3500-N Series

Here are some example uses for which the SBG3500-N Series is well suited.
1.2.1 Internet Access
Your SBG3500-N Series provides multiple Internet access methods (up to two at a time), and you can use them in the following combinations, if your ISP supports them.
SBG3500-N Series User’s Guide
17
Chapter 1 Introducing the SBG3500-N Series
• ADSL2+ and VDSL, connect the DSL1 and/or DSL2 port using a phone cable to a DSL or MODEM on a splitter or your telephone jack. For single DSL connection, use only DSL1 port. For DSL bonding connection, use both DSL1 and DSL2 port at the same time. Refer to Section 6.2 on
page 104 for the Network Setting > Broadband screen. When using the DSL1/DSL2 ports
and VDSL connection is not available, then the ADSL2+ will automatically be the network interface. You need to enable bonding feature if you want to use the bonding state. See (Section
6.5 on page 119) for details.
• DSL and GbE, connect the DSL port to the DSL or MODEM as described above and connect the GbE port to a broadband router (if available) using an Ethernet cable. The 3G USB dongle is the failover or a backup connection in case both the DSL and GbE fails. You can set the load balance and failover in SBG3500-N Series to prioritize and redirect all traffic to the backup connection in case the Internet access is down by clicking Network Settings > Broadband > Multi-WAN
• DSL and Fiber (SFP), connect the the DSL port to the DSL or MODEM and connect the SFP port using a Fiber Optical module, also known as a mini-GBIC transceiver, to a Switch or Router. The 3G USB dongle is the failover or backup connection. Set load balance as described above and see the SBG3500-N Series’s Quick Start Guide for details on how to install and remove a mini-GBIC transceiver.
• DSL and 3G, connect the DSL port to the DSL or MODEM and connect the USB port using a USB 3G dongle. The Fiber/Ethernet is the failover. You can set the load balance/failover as described above.
• Fiber and 3G, connect the SFP port using a mini-GBIC transceiver and the USB port using a USB 3G dongle as described above. The DSL is the failover in case both Fiber and 3G is unavailable.
• GbE and 3G, connect the GbE port to a broadband router and the USB port using a USB 3G dongle. The DSL is the failover in case both Fiber and 3G is unavailable.
• WLAN or Wireless Internet access, Refer to Section 1.2.2 on page 20 for more information.
The below table is a summary of the SBG3500-N Series Multi-WAN combinations and failover.
DSL SFP/ETHERNET WAN 3G
Active Active Failover Active Failover Active Failover Active Active
The following figure shows the possible internet access scenarios described above.
Computers can connect to the SBG3500-N Series’s LAN ports (or wirelessly).
SBG3500-N Series User’s Guide
18
Chapter 1 Introducing the SBG3500-N Series
ADSL2+/VDSL
WLAN
WAN
ADSL2+/VDSL and GbE
Load Balancing
WAN
LAN
LAN
WLAN
A
A
PPPoA
IPoE/IPoA
PPPoE
Bridging
WAN
ADSL2+/VDSL and Fiber
ADSL2+/VDSL and 3G
WAN
LAN
WLAN
A
A
Figure 1 SBG3500-N Series’s Internet Access Application
SBG3500-N Series User’s Guide
19
Chapter 1 Introducing the SBG3500-N Series
Fiber and 3G
WAN
LAN
WLAN
A
GbE and 3G
WAN
LAN
WLAN
A
Figure 2 SBG3500-N Series’s Internet Access Application (Continue)
1.2.2 Wireless LAN
You can also configure IP filtering on the SBG3500-N Series for secure Internet access. Go to Security > MAC Filter to do this task. When the IP filter is on, all incoming traffic from the Internet to your network is blocked by default unless it is initiated from your network. This means that probes from the outside to your network are not allowed, but you can safely browse the Internet and download files.
The SBG3500-N Series is a wireless Access Point (AP) for wireless clients, such as notebook computers or PDAs and iPads. It allows them to connect to the Internet without having to rely on inconvenient Ethernet cables.
You can configure your wireless network in either the built-in Web Configurator.
Figure 3 Wireless Access Example
SBG3500-N Series User’s Guide
20
Chapter 1 Introducing the SBG3500-N Series
B
A
Using the WLAN Button
If the wireless network is turned off, press the WLAN button at the back of the SBG3500-N Series. Once the WLAN LED turns green, the wireless network is active.
1.2.3 SBG3500-N Series’s USB Support
The USB port of the SBG3500-N Series is used for 3G Dongle and file-sharing.
3G Dongle
See the product page on ZyXEL’s website for the list of 3G Dongles that are compatible. To set up a new 3G Dongle, click Network Settings > Broadband > 3G WAN, and to add new 3G Dongle, click Network Settings > Broadband > Add new 3G Dongle.
File Sharing
Use the built-in USB 2.0 port to share files on a USB memory stick or a USB hard drive (B). You can connect one USB hard drive to the SBG3500-N Series at a time. Use FTP to access the files on the USB device.
Figure 4 USB File Sharing Application

1.3 LEDs (Lights)

The following graphic displays the labels of the LEDs.
SBG3500-N Series User’s Guide
21
Chapter 1 Introducing the SBG3500-N Series
SBG3500-NB00
SBG3500-N000
Figure 5 LEDs on the Device
None of the LEDs are on if the SBG3500-N Series is not receiving power.
Table 1 LED Descriptions
LED COLOR STATUS DESCRIPTION
POWER Green On The SBG3500-N Series is receiving power and ready for use.
Blinking The SBG3500-N Series is self-testing. Off The SBG3500-N Series is not receiving power.
Red On The SBG3500-N Series detected an error while self-testing, or there is a
device malfunction.
Off The SBG3500-N Series is not receiving power.
SBG3500-N Series User’s Guide
22
Chapter 1 Introducing the SBG3500-N Series
Table 1 LED Descriptions (continued)
LED COLOR STATUS DESCRIPTION
ETHERNET LAN 1-4
ETHERNET WAN
DSL1 and
DSL2 (SBG3500­N000)
DSL1 (SBG3500­NB00)
SFP Green On The Fiber connection is working.
INTERNET Green On The SBG3500-N Series has an IP connection but no traffic.
Left LED (1000)
Green
Right LED (10/
100)
Orange
Left LED (1000)
Green
Right LED (10/
100)
Orange
Green On The ADSL2+ line is up.
Orange On The VDSL line is up.
On The SBG3500-N Series has a successful Ethernet connection with a
device on the Local Area Network (LAN). Blinking The SBG3500-N Series is sending or receiving data to/from the LAN. Off The SBG3500-N Series does not have an Ethernet connection with the
LAN. On The SBG3500-N Series has a successful Ethernet connection with a
device on the Local Area Network (LAN). Blingking The SBG3500-N Series is sending or receiving data to/from the LAN. Off The SBG3500-N Series does not have an Ethernet connection with the
LAN. On The Gigabit Ethernet connection is working. Blinking The SBG3500-N Series is sending or receiving data to/from the Gigabit
Ethernet link. Off There is no Gigabit Ethernet link. On The Gigabit Ethernet connection is working. Blinking The SBG3500-N Series is sending or receiving data to/from the Gigabit
Ethernet link. Off There is no Gigabit Ethernet link.
Blinking The SBG3500-N Series is initializing the ADSL2+ line. Off The ADSL2+ line is down.
Blinking The SBG3500-N Series is initializing the VDSL line. Off The VDSL line is down.
Blinking The SBG3500-N Series is sending or receiving data to/from the Fiber
link. Off There is no Fiber link.
Your device has a WAN IP address (either static or assigned by a DHCP
server), PPP negotiation was successfully completed (if used) and the
DSL connection is up. Blinking The SBG3500-N Series is sending or receiving IP or 3G traffic. Off There is no Internet connection or the gateway is in bridged mode.
Red On The SBG3500-N Series failed to establish an IP connection.
No WAN IP address (either static or assigned by a DHCP server), PPPoE
negotiation failed (if used) and there’s no DSL connection.
USB Green On The SBG3500-N Series recognizes a 3G/USB connection.
Blinking The SBG3500-N Series is sending/receiving data to /from the USB
device connected to it. Off The SBG3500-N Series does not detect a USB connection.
WLAN Green On The wireless network is activated.
Blinking The SBG3500-N Series is communicating with other wireless clients and
Off The wireless network is not activated.
is setting up a WPS connection.
SBG3500-N Series User’s Guide
23
Chapter 1 Introducing the SBG3500-N Series

1.4 Ways to Manage the SBG3500-N Series

Use any of the following methods to manage the SBG3500-N Series.
• Web Configurator. This is recommended for everyday management of the SBG3500-N Series using a (supported) web browser.
• TR-069. This is an auto-configuration server used to remotely configure your SBG3500-N Series.

1.5 Good Habits for Managing the SBG3500-N Series

Do the following things regularly to make the SBG3500-N Series more secure and to manage the SBG3500-N Series more effectively.
• Change the password. Use a password that’s not easy to guess and that consists of different types of characters, such as numbers and letters. The password must have at least six characters.
• Write down the password and put it in a safe place.
• Back up the configuration (and make sure you know how to restore it). Restoring an earlier working configuration may be useful if the device becomes unstable or even crashes. If you forget your password, you will have to reset the SBG3500-N Series to its factory default settings. If you backed up an earlier configuration file, you would not have to totally re-configure the SBG3500-N Series. You could simply restore your last configuration.

1.6 The RESET Button

If you forget your password or cannot access the web configurator, you will need to use the RESET button at the front of the device to reload the factory-default configuration file. This means that you will lose all configurations that you had previously and the password will be reset to “1234”.
1 Make sure the POWER LED is on (not blinking).
2 To set the device back to the factory default settings, press the RESET button for ten seconds or
until the POWER LED begins to blink and then release it. When the POWER LED begins to blink, the defaults have been restored and the device restarts.
SBG3500-N Series User’s Guide
24

2.1 Overview

The web configurator is an HTML-based management interface that allows easy device setup and management of the SBG3500-N Series via Internet browser. Use Internet Explorer 8.0 and later versions with JavaScript enabled, or Mozilla Firefox 3 and later versions or Safari 2.0 and later versions or Google Chrome and later versions. The recommended screen resolution is 1024 by 768 pixels.
In order to use the web configurator you need to allow:
• Web browser pop-up windows from your device. Web pop-up blocking is enabled by default in Windows XP SP (Service Pack) 2.
• JavaScript (enabled by default).
• Java permissions (enabled by default).
CHAPTER 2

The Web Configurator

See Appendix C on page 387 if you need to make sure these functions are allowed in Internet Explorer.
2.1.1 Accessing the Web Configurator
1 Make sure your SBG3500-N Series hardware is properly connected (refer to the Quick Start Guide).
2 Launch your web browser. If the SBG3500-N Series does not automatically re-direct you to the
login screen, go to http://192.168.1.1.
3 A password screen displays. To access the administrative web configurator and manage the
SBG3500-N Series, type the default username admin and password 1234 in the password screen and click Login. If advanced account security is enabled (see Section 33.2 on page 325) the number of dots that appears when you type the password changes randomly to prevent anyone watching the password field from knowing the length of your password. If you have changed the password, enter your password and click Login.
SBG3500-N Series User’s Guide
25
Chapter 2 The Web Configurator
Figure 6 Password Screen
4 The following screen displays prompting you to change the password. It is strongly recommended
you change the default password. Enter a new password, minding the rules in the screen, retype it to confirm and click Apply.
Figure 7 Change Password Screen
5 The Password screen re-appears. Enter the new password and click Login. Next, Status page
appears, where you can view the SBG3500-N Series’s interface and system information.
6 Click the Quick Start Wizard button on top of the page to configure the SBG3500-N Series’s time
zone, basic Internet access, and wireless settings. See Chapter 3 on page 32 for more information. Figure 8 Status
SBG3500-N Series User’s Guide
26
Chapter 2 The Web Configurator
B
C
A

2.2 Web Configurator Layout

Figure 9 Screen Layout
As illustrated above, the main screen is divided into these parts:
A - title bar
B - main window
C - navigation panel
2.2.1 Title Bar
The title bar provides some icons in the upper right corner.
The icons provide the following functions.
Table 2 Web Configurator Icons in the Title Bar
ICON DESCRIPTION
Quick Start: Click this icon to open screens where you can configure the SBG3500-N Series’s time zone Internet access, and wireless settings.
Logout: Click this icon to log out of the web configurator.
SBG3500-N Series User’s Guide
27
2.2.2 Main Window
The main window displays information and configuration fields. It is discussed in the rest of this document. See Chapter 5 on page 97 for more information about the Status screen.
If you click Virtual Device on the System Info screen, a graphic shows the connection status of the Device’s ports. The connected interfaces are in color and disconnected interfaces are gray.
Figure 10 Virtual Device
2.2.3 Navigation Panel
Use the menu items on the navigation panel to open screens to configure SBG3500-N Series features. The following tables describe each menu item.
Table 3 Navigation Panel Summary
LINK TAB FUNCTION
Status Click this to go to the main Web Configurator screen. Network Setting
Broadband Broadband Use this screen to view and configure ISP parameters, WAN IP
3G WAN Use this screen to configure 3G WAN connection. Add New 3G
Dongle Advanced Use this screen to enable or disable PTM over ADSL, Annex M, and
802.1x Use this screen to view and configure the IEEE 802.1x settings on the
Multi-WAN Use this screen to configure the multiple WAN load balance and fail-
Wireless General Use this screen to configure the wireless LAN settings and WLAN
More AP Use this screen to configure multiple BSSs on the SBG3500-N Series. MAC
Authentication WPS Use this screen to configure and view your WPS (Wi-Fi Protected
WMM Use this screen to enable or disable Wi-Fi MultiMedia (WMM). Others Use this screen to configure advanced wireless settings. Channel Status Use this screen to scan wireless LAN channel noises and view the
Scheduling Use this screen to set a schedule to turn off wireless LAN for power
Chapter 2 The Web Configurator
address assignment, and other advanced properties. You can also add new WAN connections.
Use this screen to view or add a new 3G dongle.
DSL PhyR functions.
Device.
over rules to distribute traffic among different interfaces.
authentication/security settings.
Use this screen to block or allow wireless traffic from wireless devices of certain SSIDs and MAC addresses to the SBG3500-N Series.
Setup) settings.
results.
saving purposes.
SBG3500-N Series User’s Guide
28
Chapter 2 The Web Configurator
Table 3 Navigation Panel Summary (continued)
LINK TAB FUNCTION
LAN LAN Setup Use this screen to configure LAN TCP/IP settings, and other advanced
properties.
Static DHCP Use this screen to assign specific IP addresses to individual MAC
addresses. UPnP Use this screen to turn UPnP and UPnP NAT-T on or off. Additional
Subnet 5th Ethernet
Port
Routing Static Route Use this screen to view and set up static routes on the SBG3500-N
Policy Forwarding
RIP
QoS General Use this screen to enable QoS and traffic prioritizing. You can also
Queue Setup Use this screen to configure QoS queues. Class Setup Use this screen to define a classifier. Policer Setup Use these screens to configure QoS policers. Monitor Use this screen to view QoS packets statistics.
NAT Port Forwarding Use this screen to make your local servers visible to the outside
Applications Use this screen to configure servers behind the SBG3500-N Series. Port Triggering Use this screen to change your SBG3500-N Series’s port triggering
Default Server Use this screen to configure a default server which receives packets
ALG Use this screen to enable or disable NAT ALG and SIP ALG. Address Mapping Use this screen to change your Device’s address mapping settings.
DNS DNS Entry Use this screen to view and configure DNS routes.
Dynamic DNS Use this screen to allow a static hostname alias for a dynamic IP
Interface Group/VLAN
USB Service USB Service Use this screen to enable file sharing via the SBG3500-N Series.
Security
Firewall General Use this screen to configure the security level of your firewall.
MAC Filter MAC Filter Use this screen to block or allow traffic from devices of certain MAC
User Access Control
Interface Group/ VLAN
Service Use this screen to add Internet services and configure firewall rules. Access Control Use this screen to enable specific traffic directions for network
DoS Use this screen to activate protection against Denial of Service (DoS)
User Access Control
Use this screen to configure IP alias and public static IP.
Use this screen to configure the Ethernet WAN port as a LAN port.
Series.
Use this screen to configure policy routing on the SBG3500-N Series.
Use this screen to set up RIP settings on the SBG3500-N Series.
configure the QoS rules and actions.
world.
settings.
from ports that are not specified in the Port Forwarding screen.
address.
Use this screen to create a new interface group, which is a new LAN
bridge interface (subnet).
services.
attacks.
addresses to the SBG3500-N Series.
Use this screen to block web sites with the specific URL.
SBG3500-N Series User’s Guide
29
Chapter 2 The Web Configurator
Table 3 Navigation Panel Summary (continued)
LINK TAB FUNCTION
Scheduler Rule Scheduler Rule Use this screen to configure the days and times when a configured
restriction (such as User Access control) is enforced.
Certificates Local Certificates Use this screen to view a summary list of certificates and manage
certificates and certification requests. Trusted CA
VPN IPSec VPN Setup Use this screen to display and manage the SBG3500-N Series’s IPSec
Monitor Use this screen to display and manage active IPSec VPN connections. Radius Use this screen to manage the list of RADIUS servers the SBG3500-N
PPTP VPN Setup Use this screen to configure the PPTP VPN settings in the SBG3500-N
Monitor Use this screen to view settings for PPTP clients.
L2TP VPN Setup Use this screen to configure the SBG3500-N Series’s L2TP VPN
Monitor Use this screen to view settings for L2TP clients.
System Monitor Log System Log Use this screen to view the status of events that occurred to the
Security Log Use this screen to view the login record of the SBG3500-N Series. You
Network Status WAN Use this screen to view the status of all network traffic going through
LAN Use this screen to view the status of all network traffic going through
DHCP Client Use this screen to view the status of all wired and wireless devices
ARP Table ARP Table Use this screen to view the ARP table. It displays the IP and MAC
Routing Table Routing Table Use this screen to view the routing table. IGMP Group
Status
xDSL Statistics xDSL Statistics Use this screen to view the Device’s xDSL traffic statistics.
Maintenance
User Account User Account Use this screen to manage user accounts, which includes configuring
Remote MGMT Remote MGMT Use this screen to enable specific traffic directions for network
TR-069 Client TR-069 Clients Use this screen to configure the SBG3500-N Series to be managed by
SNMP SNMP Use this screen to enable/disable and configure settings for SNMP. Time Time Use this screen to change your SBG3500-N Series’s time and date. Email
Notification
IGMP Group Status
Email Notification
Use this screen to view and manage the list of the trusted CAs.
VPN rules (tunnels).
Series can use in authenticating users.
Series.
settings.
SBG3500-N Series. You can export or e-mail the logs.
can export or e-mail the logs.
the WAN port of the SBG3500-N Series.
the LAN ports of the SBG3500-N Series.
connected to the SBG3500-N Series. You can also set screen refresh
time to see updates on new devices.
address of each DHCP connection.
Use this screen to view the status of all IGMP settings on the
SBG3500-N Series.
the username, password, retry times, file sharing, captive portal, and
customizing the login message.
services.
an Auto Configuration Server (ACS).
Use this screen to configure up to two mail servers and sender
addresses on the SBG3500-N Series.
SBG3500-N Series User’s Guide
30
Loading...
+ 406 hidden pages
Buy Points How it Works FAQ Contact Us Questions and Suggestions Privacy Policy Cookie Policy Terms of Use