How it Works
ZyXEL
Loading...
XMG3563-B10A
Users Manual
181 pgs3 Mb0

ZyXEL XMG3563-B10A Users Manual

Chapter 11 Network Address Translation (NAT)
DSL
Figure 75 Multiple Servers Behind NAT Example
Click Network Setting > NAT > Port Forwarding to open the following screen.
See Appendix C on page 308 for port numbers commonly used for particular services.
Figure 76 Network Setting > NAT > Port Forwarding
The following table describes the fields in this screen.
LABEL DESCRIPTION
Add New Rule Click this to add a new rule.
# This is the index number of the entry.
Status This field displays whether the NAT rule is active or not. A yellow bulb signifies that this rule is
active. A gray bulb signifies that this rule is not active.
Service Name This shows the service’s name.
Originating IP This shows the destination IP address that this NAT rule supports.
WAN Interface This shows the WAN interface through which the service is forwarded.
Server IP Address
Start Port This is the first external port number that identifies a service.
End Port This is the last external port number that identifies a service.
Translation Start Port
This is the server’s IP address.
This is the first internal port number that identifies a service.
XMG3563-B10A User’s Guide
153
Chapter 11 Network Address Translation (NAT)
Table 53 Network Setting > NAT > Port Forwarding (continued)
LABEL DESCRIPTION
Translation End Port
Protocol This shows the IP protocol supported by this virtual server, whether it is TCP, UDP, or TCP/UDP. Modify Click the Edit icon to edit this rule.
This is the last internal port number that identifies a service.
Click the Delete icon to delete an existing rule.
11.2.1 Add/Edit Port Forwarding
Click Add New Rule in the Port Forwarding screen or click the Edit icon next to an existing rule to open the following screen.
Figure 77 Port Forwarding: Add/Edit
The following table describes the labels in this screen.
Table 54 Port Forwarding: Add/Edit
LABEL DESCRIPTION
Active Select to enable or disable the rule.
Service Name Enter a name to identify this rule using keyboard characters (A-Z, a-z, 1-2 and so on).
WAN Interface Select the WAN interface through which the service is forwarded.
You must have already configured a WAN connection with NAT enabled.
Start Port Enter the original destination port for the packets.
To forward only one port, enter the port number again in the End Port field. To forward a series of ports, enter the start port number here and the end port number in the End
Port field.
XMG3563-B10A User’s Guide
154
Chapter 11 Network Address Translation (NAT)
Table 54 Port Forwarding: Add/Edit (continued)
LABEL DESCRIPTION
End Port Enter the last port of the original destination port range.
To forward only one port, enter the port number in the Start Port field above and then enter it again in this field.
To forward a series of ports, enter the last port number in a series that begins with the port number in the Start Port field above.
Translation Start Port
Translation End Port
Server IP Address
Configure Originating IP
Originating IP Protocol Select the protocol supported by this virtual server. Choices are TCP, UDP, or TCP/UDP. OK Click OK to save your changes. Cancel Click Cancel to exit this screen without saving.
This shows the port number to which you want the XMG to translate the incoming port. For a range of ports, enter the first number of the range to which you want the incoming ports translated.
This shows the last port of the translated port range.
Enter the inside IP address of the virtual server here.
Specify the destination IP address of the packets received by this NAT rule.
Type the destination IP address that this NAT rule supports.
11.3 The Applications Screen
This screen provides a summary of all NAT applications and their configuration. In addition, this screen allows you to create new applications and/or remove existing ones.
To access this screen, click Network Setting > NAT > Applications. The following screen appears.
Figure 78 Network Setting > NAT > Applications
The following table describes the labels in this screen.
Table 55 Network Setting > NAT > Applications
LABEL DESCRIPTION
Add New Application
# This is the index number of the entry.
Application Forwarded
WAN Interface This field shows the WAN interface through which the service is forwarded.
Click this to add a new NAT application rule.
This field shows the type of application that the service forwards.
XMG3563-B10A User’s Guide
155
Chapter 11 Network Address Translation (NAT)
Table 55 Network Setting > NAT > Applications (continued)
LABEL DESCRIPTION
Server IP Address
Modify Click the Delete icon to delete the rule.
This field displays the destination IP address for the service.
11.3.1 Add New Application
This screen lets you create new NAT application rules. Click Add New Application in the Applications screen to open the following screen.
Figure 79 Network Setting > NAT > Applications: Add
The following table describes the labels in this screen.
Table 56 Network Setting > NAT > Applications: Add
LABEL DESCRIPTION
WAN Interface Select the WAN interface that you want to apply this NAT rule to.
Server IP Address
Application Category
Application Forwarded
View Rules Click this to display the configuration of the service that you have chosen in Application
OK Click OK to save your changes. Cancel Click Cancel to exit this screen without saving.
Enter the inside IP address of the application here.
Select the category of the application from the drop-down list box.
Select a service from the drop-down list box and the XMG automatically configures the protocol, start, end, and map port number that define the service.
Fowarded.
11.4 The Port Triggering Screen
Some services use a dedicated range of ports on the client side and a dedicated range of ports on the server side. With regular port forwarding you set a forwarding port in NAT to forward a service (coming in from the server on the WAN) to the IP address of a computer on the client side (LAN). The problem is that port forwarding only forwards a service to a single LAN IP address. In order to use the same service on a
XMG3563-B10A User’s Guide
156
Chapter 11 Network Address Translation (NAT)
DSL
different LAN computer, you have to manually replace the LAN computer's IP address in the forwarding port with another LAN computer's IP address.
Trigger port forwarding solves this problem by allowing computers on the LAN to dynamically take turns using the service. The XMG records the IP address of a LAN computer that sends traffic to the WAN to request a service with a specific port number and protocol (a "trigger" port). When the XMG's WAN port receives a response with a specific port number and protocol ("open" port), the XMG forwards the traffic to the LAN IP address of the computer that sent the request. After that computer’s connection for that service closes, another computer on the LAN can use the service in the same manner. This way you do not need to configure a new IP address each time you want a different LAN computer to use the application.
For example:
Figure 80 Trigger Port Forwarding Process: Example
1 Jane requests a file from the Real Audio server (port 7070).
2 Port 7070 is a “trigger” port and causes the XMG to record Jane’s computer IP address. The XMG
associates Jane's computer IP address with the "open" port range of 6970-7170.
3 The Real Audio server responds using a port number ranging between 6970-7170.
4 The XMG forwards the traffic to Jane’s computer IP address.
5 Only Jane can connect to the Real Audio server until the connection is closed or times out. The XMG
times out in three minutes with UDP (User Datagram Protocol) or two hours with TCP/IP (Transfer Control Protocol/Internet Protocol).
Click Network Setting > NAT > Port Triggering to open the following screen. Use this screen to view your XMG’s trigger port settings.
Figure 81 Network Setting > NAT > Port Triggering
XMG3563-B10A User’s Guide
157
Chapter 11 Network Address Translation (NAT)
The following table describes the labels in this screen.
Table 57 Network Setting > NAT > Port Triggering
LABEL DESCRIPTION
Add New Rule Click this to create a new rule.
# This is the index number of the entry.
Status This field displays whether the port triggering rule is active or not. A yellow bulb signifies that this
Service Name This field displays the name of the service used by this rule.
WAN Interface This field shows the WAN interface through which the service is forwarded.
Trigger Start Port The trigger port is a port (or a range of ports) that causes (or triggers) the XMG to record the IP
Trigger End Port This is the last port number that identifies a service.
Trigger Proto. This is the trigger transport layer protocol.
Open Start Port The open port is a port (or a range of ports) that a server on the WAN uses when it sends out a
Open End Port This is the last port number that identifies a service.
Open Protocol This is the open transport layer protocol. Modify Click the Edit icon to edit this rule.
rule is active. A gray bulb signifies that this rule is not active.
address of the LAN computer that sent the traffic to a server on the WAN.
This is the first port number that identifies a service.
particular service. The XMG forwards the traffic with this port (or range of ports) to the client computer on the LAN that requested the service.
This is the first port number that identifies a service.
Click the Delete icon to remove an existing rule.
11.4.1 Add/Edit Port Triggering Rule
This screen lets you create new port triggering rules. Click Add new rule in the Port Triggering screen or click a rule’s Edit icon to open the following screen.
Figure 82 Port Triggering: Add/Edit
XMG3563-B10A User’s Guide
158
Chapter 11 Network Address Translation (NAT)
The following table describes the labels in this screen.
Table 58 Port Triggering: Configuration Add/Edit
LABEL DESCRIPTION
Active Select to enable or disable this rule.
Service Name Enter a name to identify this rule using keyboard characters (A-Z, a-z, 1-2 and so on).
WAN Interface Select a WAN interface for which you want to configure port triggering rules.
Trigger Start Port The trigger port is a port (or a range of ports) that causes (or triggers) the XMG to record the IP
Trigger End Port Type a port number or the ending port number in a range of port numbers. Trigger Protocol Select the transport layer protocol from TCP, UDP, or TCP/UDP.
Open Start Port The open port is a port (or a range of ports) that a server on the WAN uses when it sends out a
Open End Port Type a port number or the ending port number in a range of port numbers. Open Protocol Select the transport layer protocol from TCP, UDP, or TCP/UDP. OK Click OK to save your changes. Cancel Click Cancel to exit this screen without saving.
address of the LAN computer that sent the traffic to a server on the WAN.
Type a port number or the starting port number in a range of port numbers.
particular service. The XMG forwards the traffic with this port (or range of ports) to the client computer on the LAN that requested the service.
Type a port number or the starting port number in a range of port numbers.
11.5 The DMZ Screen
In addition to the servers for specified services, NAT supports a default server IP address. A default server receives packets from ports that are not specified in the NAT Port Forwarding Setup screen.
Figure 83 Network Setting > NAT > DMZ
The following table describes the fields in this screen.
Table 59 Network Setting > NAT > DMZ
LABEL DESCRIPTION
Default Server Address
Apply Click Apply to save your changes. Cancel Click Cancel to restore your previously saved settings.
Enter the IP address of the default server which receives packets from ports that are not specified in the NAT Port Forwarding screen.
Note: If you do not assign a Default Server Address, the XMG discards all packets
received for ports that are not specified in the NAT Port Forwarding screen.
XMG3563-B10A User’s Guide
159
Chapter 11 Network Address Translation (NAT)
11.6 The ALG Screen
Some NAT routers may include a SIP Application Layer Gateway (ALG). A SIP ALG allows SIP calls to pass through NAT by examining and translating IP addresses embedded in the data stream. When the XMG registers with the SIP register server, the SIP ALG translates the XMG’s private IP address inside the SIP data stream to a public IP address. You do not need to use STUN or an outbound proxy if your XMG is behind a SIP ALG.
Use this screen to enable and disable the ALGs in the XMG. To access this screen, click Network Setting >
NAT > ALG.
Figure 84 Network Setting > NAT > ALG
The following table describes the fields in this screen.
Table 60 Network Setting > NAT > ALG
LABEL DESCRIPTION
NAT ALG Enable this to make sure applications such as FTP and file transfer in IM applications work
correctly with port-forwarding and address-mapping rules.
SIP ALG
RTSP ALG
PPTP ALG
IPSEC ALG
Apply Click Apply to save your changes. Cancel Click Cancel to restore your previously saved settings.
Enable this to make sure SIP (VoIP) works correctly with port-forwarding and address-mapping rules.
Enable this to have the XMG detect RTSP traffic and help build RTSP sessions through its NAT. The Real Time Streaming (media control) Protocol (RTSP) is a remote control for multimedia on the Internet.
Enable this to turn on the PPTP ALG on the XMG to detect PPTP traffic and help build PPTP sessions through the XMG’s NAT.
Enable this to turn on the IPsec ALG on the XMG to detect IPsec traffic and help build IPsec sessions through the XMG’s NAT.
11.7 The Address Mapping Screen
Ordering your rules is important because the XMG applies the rules in the order that you specify. When a rule matches the current packet, the XMG takes the corresponding action and the remaining rules are ignored.
Click Network Setting > NAT > Address Mapping to display the following screen.
XMG3563-B10A User’s Guide
160
Chapter 11 Network Address Translation (NAT)
Figure 85 Network Setting > NAT > Address Mapping
The following table describes the fields in this screen.
Table 61 Network Setting > NAT > Address Mapping
LABEL DESCRIPTION
Add New Rule Click this to create a new rule.
Rule Name This shows the descriptive name to identify this rule.
Local Start IP This is the starting Inside Local IP Address (ILA).
Local End IP This is the ending Inside Local IP Address (ILA). If the rule is for all local IP addresses, then this field
Global Start IP This is the starting Inside Global IP Address (IGA). Enter 0.0.0.0 here if you have a dynamic IP
Global End IP This is the ending Inside Global IP Address (IGA). This field is blank for One-to-One and Many-to-
Type This is the address mapping type.
displays 0.0.0.0 as the Local Start IP address and 255.255.255.255 as the Local End IP address. This field is blank for One-to-One mapping types.
address from your ISP. You can only do this for the Many-to-One mapping type.
One mapping types.
One-to-One: This mode maps one local IP address to one global IP address. Note that port
numbers do not change for the One-to-one NAT mapping type. Many-to-One: This mode maps multiple local IP addresses to one global IP address. This is
equivalent to SUA (i.e., PAT, port address translation), the XMG's Single User Account feature that previous routers supported only.
Many-to-Many: This mode maps multiple local IP addresses to shared global IP addresses.
WAN Interface Name
Modify Click the Edit icon to go to the screen where you can edit the address mapping rule.
This is the WAN interface to which the address mapping rule applies.
Click the Delete icon to delete an existing address mapping rule. Note that subsequent address mapping rules move up by one when you take this action.
11.7.1 Add/Edit Address Mapping Rule
To add or edit an address mapping rule, click Add new rule or the rule’s edit icon in the Address Mapping screen to display the screen shown next.
XMG3563-B10A User’s Guide
161
Chapter 11 Network Address Translation (NAT)
Figure 86 Address Mapping: Add/Edit
The following table describes the fields in this screen.
Table 62 Address Mapping: Add/Edit
LABEL DESCRIPTION
Rule Name Enter a name to identify this rule using keyboard characters (A-Z, a-z, 1-2 and so on).
Type Choose the IP/port mapping type from one of the following.
One-to-One: This mode maps one local IP address to one global IP address. Note that port numbers do not change for the One-to-one NAT mapping type.
Many-to-One: This mode maps multiple local IP addresses to one global IP address. This is equivalent to SUA (i.e., PAT, port address translation), the XMG's Single User Account feature that previous routers supported only.
Many-to-Many: This mode maps multiple local IP addresses to shared global IP addresses.
Local Start IP
Local End IP Enter the ending Inside Local IP Address (ILA). If the rule is for all local IP addresses, then this field
Global Start IP Enter the starting Inside Global IP Address (IGA). Enter 0.0.0.0 here if you have a dynamic IP
Global End IP Enter the ending Inside Global IP Address (IGA). This field is blank for One-to-One and Many-to-
WAN Interface Select a WAN interface to which the address mapping rule applies. OK Click OK to save your changes. Cancel Click Cancel to exit this screen without saving.
Enter the starting Inside Local IP Address (ILA).
displays 0.0.0.0 as the Local Start IP address and 255.255.255.255 as the Local End IP address. This field is blank for One-to-One mapping types.
address from your ISP. You can only do this for the Many-to-One mapping type.
One mapping types.
11.8 The Sessions Screen
Use this screen to limit the number of concurrent NAT sessions a client can use. Click Network Setting > NAT > Sessions to display the following screen.
XMG3563-B10A User’s Guide
162
Chapter 11 Network Address Translation (NAT)
Figure 87 Network Setting > NAT > Sessions
The following table describes the fields in this screen.
Table 63 Network Setting > NAT > Sessions
LABEL DESCRIPTION
MAX NAT Session Per Host
Apply Click this to save your changes on this screen.
Cancel Click this to exit this screen without saving any changes.
Use this field to set a limit to the number of concurrent NAT sessions each client host can have.
If only a few clients use peer to peer applications, you can raise this number to improve their performance. With heavy peer-to-peer application use, lower this number to ensure no single client uses too many of the available NAT sessions.
11.9 Technical Reference
This part contains more information regarding NAT.
11.9.1 NAT Definitions
Inside/outside denotes where a host is located relative to the XMG, for example, the computers of your subscribers are the inside hosts, while the web servers on the Internet are the outside hosts.
Global/local denotes the IP address of a host in a packet as the packet traverses a router, for example, the local address refers to the IP address of a host when the packet is in the local network, while the global address refers to the IP address of the host when the same packet is traveling in the WAN side.
Note that inside/outside refers to the location of a host, while global/local refers to the IP address of a host used in a packet. Thus, an inside local address (ILA) is the IP address of an inside host in a packet when the packet is still in the local network, while an inside global address (IGA) is the IP address of the same inside host when the packet is on the WAN side. The following table summarizes this information.
Table 64 NAT Definitions
ITEM DESCRIPTION
Inside This refers to the host on the LAN.
Outside This refers to the host on the WAN.
Local This refers to the packet address (source or destination) as the packet travels on the LAN.
Global This refers to the packet address (source or destination) as the packet travels on the WAN.
NAT never changes the IP address (either local or global) of an outside host.
XMG3563-B10A User’s Guide
163
11.9.2 What NAT Does
DSL
In the simplest form, NAT changes the source IP address in a packet received from a subscriber (the inside local address) to another (the inside global address) before forwarding the packet to the WAN side. When the response comes back, NAT translates the destination address (the inside global address) back to the inside local address before forwarding it to the original inside host. Note that the IP address (either local or global) of an outside host is never changed.
The global IP addresses for the inside hosts can be either static or dynamically assigned by the ISP. In addition, you can designate servers, for example, a web server and a telnet server, on your local network and make them accessible to the outside world. If you do not define any servers (for Many-to­One and Many-to-Many Overload mapping), NAT offers the additional benefit of firewall protection. With no servers defined, your XMG filters out all incoming inquiries, thus preventing intruders from probing your network. For more information on IP address translation, refer to RFC 1631, The IP Network Address Translator (NAT).
11.9.3 How NAT Works
Each packet has two addresses – a source address and a destination address. For outgoing packets, the ILA (Inside Local Address) is the source address on the LAN, and the IGA (Inside Global Address) is the source address on the WAN. For incoming packets, the ILA is the destination address on the LAN, and the IGA is the destination address on the WAN. NAT maps private (local) IP addresses to globally unique ones required for communication with hosts on other networks. It replaces the original IP source address (and TCP or UDP source port numbers for Many-to-One and Many-to-Many Overload NAT mapping) in each packet and then forwards it to the Internet. The XMG keeps track of the original addresses and port numbers so incoming reply packets can have their original values restored. The following figure illustrates this.
Chapter 11 Network Address Translation (NAT)
Figure 88 How NAT Works
11.9.4 NAT Application
The following figure illustrates a possible NAT application, where three inside LANs (logical LANs using IP alias) behind the XMG can communicate with three distinct WAN networks.
XMG3563-B10A User’s Guide
164
Chapter 11 Network Address Translation (NAT)
DSL
Figure 89 NAT Application With IP Alias
Port Forwarding: Services and Port Numbers
The most often used port numbers are shown in the following table. Please refer to RFC 1700 for further information about port numbers. Please also refer to the Supporting CD for more examples and details on port forwarding and NAT.
Table 65 Services and Port Numbers
SERVICES PORT NUMBER
ECHO 7
FTP (File Transfer Protocol) 21
SMTP (Simple Mail Transfer Protocol) 25
DNS (Domain Name System) 53
Finger 79
HTTP (Hyper Text Transfer protocol or WWW, Web) 80
POP3 (Post Office Protocol) 110
NNTP (Network News Transport Protocol) 119
SNMP (Simple Network Management Protocol) 161
SNMP trap 162
PPTP (Point-to-Point Tunneling Protocol) 1723
Port Forwarding Example
Let's say you want to assign ports 21-25 to one FTP, Telnet and SMTP server (A in the example), port 80 to another (B in the example) and assign a default server IP address of 192.168.1.35 to a third (C in the example). You assign the LAN IP addresses and the ISP assigns the WAN IP address. The NAT network appears as a single host on the Internet.
XMG3563-B10A User’s Guide
165
Chapter 11 Network Address Translation (NAT)
DSL
Figure 90 Multiple Servers Behind NAT Example
XMG3563-B10A User’s Guide
166
12.1 Overview
DNS
DNS (Domain Name System) is for mapping a domain name to its corresponding IP address and vice versa. The DNS server is extremely important because without it, you must know the IP address of a machine before you can access it.
In addition to the system DNS server(s), each WAN interface (service) is set to have its own static or dynamic DNS server list. You can configure a DNS static route to forward DNS queries for certain domain names through a specific WAN interface to its DNS server(s). The XMG uses a system DNS server (in the order you specify in the Broadband screen) to resolve domain names that do not match any DNS routing entry. After the XMG receives a DNS reply from a DNS server, it creates a new entry for the resolved IP address in the routing table.
CHAPTER 12
DNS
Dynamic DNS
Dynamic DNS allows you to update your current dynamic IP address with one or many dynamic DNS services so that anyone can contact you (in NetMeeting, CU-SeeMe, etc.). You can also access your FTP server or Web site on your own computer using a domain name (for instance myhost.dhs.org, where myhost is a name of your choice) that will never change instead of using an IP address that changes each time you reconnect. Your friends or relatives will always be able to call you even if they don't know your IP address.
First of all, you need to have registered a dynamic DNS account with www.dyndns.org. This is for people with a dynamic IP from their ISP or DHCP server that would still like to have a domain name. The Dynamic DNS service provider will give you a password or key.
12.1.1 What You Can Do in this Chapter
• Use the DNS Entry screen to view, configure, or remove DNS routes (Section 12.2 on page 168).
• Use the Dynamic DNS screen to enable DDNS and configure the DDNS settings on the XMG (Section
12.3 on page 169).
12.1.2 What You Need To Know
DYNDNS Wildcard
Enabling the wildcard feature for your host causes *.yourhost.dyndns.org to be aliased to the same IP address as yourhost.dyndns.org. This feature is useful if you want to be able to use, for example, www.yourhost.dyndns.org and still reach your hostname.
XMG3563-B10A User’s Guide
167
Chapter 12 DNS
If you have a private WAN IP address, then you cannot use Dynamic DNS.
12.2 The DNS Entry Screen
Use this screen to view and configure DNS routes on the XMG. Click Network Setting > DNS to open the DNS Entry screen.
Figure 91 Network Setting > DNS > DNS Entry
The following table describes the fields in this screen.
Table 66 Network Setting > DNS > DNS Entry
LABEL DESCRIPTION
Add New DNS Entry
# This is the index number of the entry.
Hostname This indicates the host name or domain name.
IP Address This indicates the IP address assigned to this computer. Modify Click the Edit icon to edit the rule.
Click this to create a new DNS entry.
Click the Delete icon to delete an existing rule.
12.2.1 Add/Edit DNS Entry
You can manually add or edit the XMG’s DNS name and IP address entry. Click Add New DNS Entry in the DNS Entry screen or the Edit icon next to the entry you want to edit. The screen shown next appears.
Figure 92 DNS Entry: Add/Edit
XMG3563-B10A User’s Guide
168
Chapter 12 DNS
The following table describes the labels in this screen.
Table 67 DNS Entry: Add/Edit
LABEL DESCRIPTION
Host Name Enter the host name of the DNS entry.
IPv4 Address Enter the IPv4 address of the DNS entry. OK Click OK to save your changes. Cancel Click Cancel to exit this screen without saving.
12.3 The Dynamic DNS Screen
Use this screen to change your XMG’s DDNS. Click Network Setting > DNS > Dynamic DNS. The screen appears as shown.
Figure 93 Network Setting > DNS > Dynamic DNS
The following table describes the fields in this screen.
Table 68 Network Setting > DNS > > Dynamic DNS
LABEL DESCRIPTION
Dynamic DNS Setup
Dynamic DNS Select Enable to use dynamic DNS.
Service Provider Select your Dynamic DNS service provider from the drop-down list box.
Host Name Type the domain name assigned to your XMG by your Dynamic DNS provider.
You can specify up to two host names in the field separated by a comma (",").
Host/Domain Name
Username Type your user name.
Password Type the password assigned to you.
Dynamic DNS Status
User Authentication Result
Type the domain name the XMG can route.
This shows Success if the account is correctly set up with the Dynamic DNS provider account.
XMG3563-B10A User’s Guide
169
Chapter 12 DNS
Table 68 Network Setting > DNS > > Dynamic DNS (continued)
LABEL DESCRIPTION
Last Updated Time This shows the last time the IP address the Dynamic DNS provider has associated with the
hostname was updated.
Current Dynamic IPThis shows the IP address your Dynamic DNS provider has currently associated with the
hostname.
Apply Click Apply to save your changes. Cancel Click Cancel to exit this screen without saving.
XMG3563-B10A User’s Guide
170
13.1 Overview
Use the IGMP/MLD screen to configure IGMP/MLD protocols.
13.2 The IGMP/MLD Screen
Click Network Setting > IGMP/MLD to open the following screen.
Figure 94 Network Setting > IGMP/MLD
CHAPTER 13
IGMP/MLD
XMG3563-B10A User’s Guide
171
Chapter 13 IGMP/MLD
The following table describes the labels in this screen.
Table 69 Network Setting > IGMP/MLD
LABEL DESCRIPTION
IGMP Configuration/MLD Configuration
Default Version Enter the version (1~3) of the IGMP/MLD packets that the XMG should use.
Query Interval Specify the amount of time in seconds (1~30000) between general query messages
Query Response Interval Specify the amount of time in seconds (1~30000) the router waits for a response to a
Last Member Query Interval Specify the amount of time in seconds (1~30000) the router waits for a response to a
Robustness Value Specify how susceptible (1~7) the subnet is to lost packets.
Maximum Multicast Groups Enter a number to limit the number of multicast groups of an interface on the XMG is
Maximum Multicast Data Sources (for IGMPv3/mldv2)
sent by the router.
general query message.
group specific query message.
allowed to join. Once a multicast member is registered in the specified number of multicast groups, any new IGMP or MLD join report frames are dropped by the interface.
Enter a number to limit the number of multicast data sources (1-24) a multicast group is allowed to have.
Note: The setting only works for IGMPv3 and MLDv2.
Maximum Multicast Group Members
Fast Leave Enable Select this option to set the XMG to remove a port from the multicast tree
LAN to LAN (Intra LAN) Multicast Enable
Membership Join Immediate (IPTV)
Apply Click Apply to save your changes. Cancel Click Cancel to exit this screen without saving.
Enter a number to limit the number of multicast members a multicast group can have.
immediately (without sending an IGMP or MLD membership query message) once it receives an IGMP or MLD message. This is helpful if a user wants to quickly change a TV channel (multicast group change) especially for IPTV applications.
Select this to enable LAN to LAN IGMP snooping capability.
Select this to have the XMG add a host to a multicast group immediately once the XMG receives an IGMP or MLD join messages.
XMG3563-B10A User’s Guide
172
14.1 Overview
DSL
Virtual LAN IDs are used to identify different traffic types over the same physical link.
In the following example, the XMG (DSL) can use VLAN IDs (VID) 100 and 200 to identify Video-on­Demand and IPTV traffic respectively coming from the two VoD and IPTV multicast servers. The XMG (DSL) can also tag outgoing requests to these servers with these VLAN IDs.
Figure 95 VLAN Group Example
CHAPTER 14 VLAN Group
14.1.1 What You Can Do in this Chapter
Use these screens to group separate VLAN groups together to be treated as one VLAN group.
14.2 The VLAN Group Screen
Click Network Setting > Vlan Group to open the following screen.
Figure 96 Network Setting > Vlan Group
XMG3563-B10A User’s Guide
173
Chapter 14 VLAN Group
The following table describes the fields in this screen.
Table 70 Network Setting > Vlan Group
LABEL DESCRIPTION
Add New Vlan Group
# This is the index number of the VLAN group.
Group Name This shows the descriptive name of the VLAN group.
VLAN ID This shows the unique ID number that identifies the VLAN group.
Interfaces This shows the LAN ports included in the VLAN group and if traffic leaving the port will be tagged
Modify Click the Edit icon to change an existing VLAN group setting or click the Delete icon to remove
Click this button to create a new VLAN group.
with the VLAN ID.
the VLAN group.
14.2.1 Add/Edit a VLAN Group
Click the Add New VLAN Group button in the Vlan Group screen to open the following screen. Use this screen to create a new VLAN group.
Figure 97 Add/Edit VLAN Group
The following table describes the fields in this screen.
Table 71 Add/Edit VLAN Group
LABEL DESCRIPTION
VLAN Group Name
VLAN ID Enter a unique ID number, from 1 to 4,094, to identify this VLAN group. Outgoing traffic is tagged
LAN 1~5 Select Include to add the associated LAN interface to this VLAN group.
OK Click OK to save your changes back to the XMG. Cancel Click Cancel to exit this screen without saving.
Enter a name to identify this group. You can enter up to 30 characters. You can use letters, numbers, hyphens (-) and underscores (_). Spaces are not allowed.
with this ID if Tx Tagging is selected below.
Select Tx Tagging to tag outgoing traffic from the associated LAN port with the VLAN ID number entered above.
XMG3563-B10A User’s Guide
174
Interface Grouping
DSL
15.1 Overview
By default, all LAN and WAN interfaces on the XMG are in the same group and can communicate with each other. Create interface groups to have the XMG assign the IP addresses in different domains to different groups. Each group acts as an independent network on the XMG. This lets devices connected to an interface group’s LAN interfaces communicate through the interface group’s WAN or LAN interfaces but not other WAN or LAN interfaces.
15.1.1 What You Can Do in this Chapter
The Interface Grouping screens let you create multiple networks on the XMG (Section 15.2 on page 175).
CHAPTER 15
15.2 The Interface Grouping Screen
You can manually add a LAN interface to a new group. Alternatively, you can have the XMG automatically add the incoming traffic and the LAN interface on which traffic is received to an interface group when its DHCP Vendor ID option information matches one listed for the interface group.
Use the LAN screen to configure the private IP addresses the DHCP server on the XMG assigns to the clients in the default and/or user-defined groups. If you set the XMG to assign IP addresses based on the client’s DHCP Vendor ID option information, you must enable DHCP server and configure LAN TCP/IP settings for both the default and user-defined groups. See Chapter 8 on page 111 for more information.
In the following example, the client that sends packets with the DHCP Vendor ID option set to MSFT 5.0 (meaning it is a Windows 2000 DHCP client) is assigned the IP address 192.168.2.2 and uses the WAN VDSL_PoE/ppp0.1 interface.
Figure 98 Interface Grouping Application
XMG3563-B10A User’s Guide
175
Chapter 15 Interface Grouping
Click Network Setting > Interface Grouping to open the following screen.
Figure 99 Network Setting > Interface Grouping
The following table describes the fields in this screen.
Table 72 Network Setting > Interface Grouping
LABEL DESCRIPTION
Add New Interface Group
Group Name This shows the descriptive name of the group.
WAN Interface This shows the WAN interfaces in the group.
LAN Interfaces This shows the LAN interfaces in the group.
Criteria This shows the filtering criteria for the group. Modify Click the Delete icon to remove the group.
Click this button to create a new interface group.
15.2.1 Interface Group Configuration
Click the Add New Interface Group button in the Interface Grouping screen to open the following screen. Use this screen to create a new interface group.
Note: An interface can belong to only one group at a time.
XMG3563-B10A User’s Guide
176
Chapter 15 Interface Grouping
Figure 100 Interface Group Configuration
The following table describes the fields in this screen.
Table 73 Interface Group Configuration
LABEL DESCRIPTION
Group Name Enter a name to identify this group. You can enter up to 30 characters. You can use letters,
numbers, hyphens (-) and underscores (_). Spaces are not allowed.
WAN Interfaces used in the grouping
Selected LAN Interfaces
Available LAN Interfaces
Automatically Add Clients With the following DHCP Vendor IDs
# This shows the index number of the rule.
Select the WAN interface this group uses. The group can have up to one PTM interface, up to one ATM interface, up to one ETH interface, and and up to one WWAN interface.
Select None to not add a WAN interface to this group. Select one or more LAN interfaces (Ethernet LAN, HPNA or wireless LAN) on the Available LAN
Interfaces list and use the left arrow to move them to the interface list on the left to add the interfaces to this group.
To remove a LAN or wireless LAN interface from the interface list on the left, use the right-facing arrow.
Click Add to identify LAN hosts to add to the interface group by criteria such as the type of the hardware or firmware. See Section 15.2.2 on page 178 for more information.
XMG3563-B10A User’s Guide
177
Chapter 15 Interface Grouping
Table 73 Interface Group Configuration (continued)
LABEL DESCRIPTION
Filter Criteria This shows the filtering criteria. The LAN interface on which the matched traffic is received will
belong to this group automatically.
WildCard Support
Modify Click the Modify icon to edit this rule on the XMG. OK Click OK to save your changes back to the XMG. Cancel Click Cancel to exit this screen without saving.
This shows if wildcard on DHCP option 60 is enabled.
15.2.2 Interface Grouping Criteria
Click the Add button in the Interface Grouping Configuration screen to open the following screen.
Figure 101 Interface Grouping Criteria
The following table describes the fields in this screen.
Table 74 Interface Grouping Criteria
LABEL DESCRIPTION
Source MAC Address
DHCP Option 60 Select this option and enter the Vendor Class Identifier (Option 60) of the matched traffic, such
Enable wildcard
DHCP Option 61 Select this and enter the device identity of the matched traffic.
DHCP Option 125
Enterprise Number
Manufactur er OUI
Select this option and enter the source MAC address of the packet.
as the type of the hardware or firmware.
Select this option to be able to use wildcards in the Vendor Class Identifier configured for DHCP option 60.
Select this and enter vendor specific information of the matched traffic.
Enter the vendor’s 32-bit enterprise number registered with the IANA (Internet Assigned Numbers Authority).
Specify the vendor’s OUI (Organization Unique Identifier). It is usually the first three bytes of the MAC address.
XMG3563-B10A User’s Guide
178
Chapter 15 Interface Grouping
Table 74 Interface Grouping Criteria (continued)
LABEL DESCRIPTION
Serial Number
Product Class
VLAN Group Select this and the VLAN group of the matched traffic from the drop-down list box. OK Click OK to save your changes back to the XMG. Cancel Click Cancel to exit this screen without saving.
Enter the serial number of the device.
Enter the product class of the device.
XMG3563-B10A User’s Guide
179
16.1 Overview
DSL
You can share files on a USB memory stick or hard drive connected to your XMG with users on your network.
The following figure is an overview of the XMG’s file server feature. Computers A and B can access files on a USB device (C) which is connected to the XMG.
Figure 102 File Sharing Overview
CHAPTER 16
USB Service
The XMG will not be able to join the workgroup if your local area network has restrictions set up that do not allow devices to join a workgroup. In this case, contact your network administrator.
16.1.1 What You Can Do in this Chapter
• Use the File Sharing screen to enable file-sharing server (Section 16.1.3 on page 181).
• Use the Media Server screen to enable or disable the sharing of media files (Section 16.3 on page
182).
16.1.2 What You Need To Know
The following terms and concepts may help as you read this chapter.
XMG3563-B10A User’s Guide
180
16.1.2.1 About File Sharing Workgroup name
This is the name given to a set of computers that are connected on a network and share resources such as a printer or files. Windows automatically assigns the workgroup name when you set up a network.
Shares
When settings are set to default, each USB device connected to the XMG is given a folder, called a “share”. If a USB hard drive connected to the XMG has more than one partition, then each partition will be allocated a share. You can also configure a “share” to be a sub-folder or file on the USB device.
File Systems
A file system is a way of storing and organizing files on your hard drive and storage device. Often different operating systems such as Windows or Linux have different file systems. The file sharing feature on your XMG supports File Allocation Table (FAT) and FAT32.
Common Internet File System
Chapter 16 USB Service
The XMG uses Common Internet File System (CIFS) protocol for its file sharing functions. CIFS compatible computers can access the USB file storage devices connected to the XMG. CIFS protocol is supported on Microsoft Windows, Linux Samba and other operating systems (refer to your systems specifications for CIFS compatibility).
16.1.3 Before You Begin
Make sure the XMG is connected to your network and turned on.
1 Connect the USB device to one of the XMG’s USB port. Make sure the XMG is connected to your
network.
2 The XMG detects the USB device and makes its contents available for browsing. If you are connecting a
USB hard drive that comes with an external power supply, make sure it is connected to an appropriate power source that is on.
Note: If your USB device cannot be detected by the XMG, see the troubleshooting for
suggestions.
16.2 The File Sharing Screen
Use this screen to set up file sharing through the XMG. The XMG’s LAN users can access the shared folder (or share) from the USB device inserted in the XMG. To access this screen, click Network Setting > USB Service > File Sharing.
XMG3563-B10A User’s Guide
181
Chapter 16 USB Service
Figure 103 Network Setting > USB Service > File Sharing
Each field is described in the following table.
Table 75 Network Setting > USB Service > File Sharing
LABEL DESCRIPTION
Information
Volume This is the volume name the XMG gives to an inserted USB device.
Capacity This is the total available memory size (in megabytes) on the USB device.
Used Space This is the memory size (in megabytes) already used on the USB device.
Server Configuration
File Sharing Services
Account Management
Add New User
Active
Status This field shows the status of the user.
Select Enable to activate file sharing through the XMG.
Click this button to access the User Account screen, use this screen to create a new user account to access the secured shared. For more information see Section 31.2 on page 256.
Select this to allow the user to access the secured shares.
: The user account is not activated for the share.
: The user account is activated for the share.
User Name Modify Click the Edit icon to modify the user account.
Apply
Cancel Click this to restore your previously saved settings.
This is the name of a user who is allowed to access the secured shares on the USB device.
Click the Delete icon to remove the user account from the XMG.
Click this to save your changes to the XMG.
16.3 The Media Server Screen
The media server feature lets anyone on your network play video, music, and photos from the USB storage device connected to your XMG (without having to copy them to another computer). The XMG can function as a DLNA-compliant media server. The XMG streams files to DLNA-compliant media
XMG3563-B10A User’s Guide
182
Loading...
+ 151 hidden pages
Buy Points How it Works FAQ Contact Us Questions and Suggestions Privacy Policy Cookie Policy Terms of Use