ZyXEL Communications G-1000 User Manual

ZyXEL G-1000 v2

Wireless-11g Access Point

User’s Guide

Version 3.60

Edition 1

3/2006

ZyXEL G-1000 v2 User’s Guide

Copyright

The contents of this publication may not be reproduced in any part or as a whole, transcribed, stored in a retrieval system, translated into any language, or transmitted in any form or by any means, electronic, mechanical, magnetic, optical, chemical, photocopying, manual, or otherwise, without the prior written permission of ZyXEL Communications Corporation.

Disclaimer

ZyXEL does not assume any liability arising out of the application or use of any products, or software described herein. Neither does it convey any license under its patent rights nor the patent rights of others. ZyXEL further reserves the right to make changes in any products described herein without notice. This publication is subject to change without notice.

Trademarks

ZyNOS (ZyXEL Network Operating System) is a registered trademark of ZyXEL Communications, Inc. Other trademarks mentioned in this publication are used for identification purposes only and may be properties of their respective owners.

ZyXEL G-1000 v2 User’s Guide

Interference Statements and

Federal Communications Commission (FCC) Interference Statement

This device complies with Part 15 of FCC rules. Operation is subject to the following two conditions:

• This device may not cause harmful interference.

• This device must accept any interference received, including interference that may cause undesired operations.

This equipment has been tested and found to comply with the limits for a Class B digital device pursuant to Part 15 of the FCC Rules. These limits are designed to provide reasonable protection against harmful interference in a residential installation. This equipment generates, uses, and can radiate radio frequency energy, and if not installed and used in accordance with the instructions, may cause harmful interference to radio communications. However, there is no guarantee that interference will not occur in a particular installation

Certifications

If this equipment does cause harmful interference to radio/television reception, which can be determined by turning the equipment off and on, the user is encouraged to try to correct the interference by one or more of the following measures:

• Reorient or relocate the receiving antenna.

• Increase the separation between the equipment and the receiver.

• Connect the equipment into an outlet on a circuit different from that to which the receiver is connected.

• Consult the dealer or an experienced radio/TV technician for help.

This Class B digital apparatus complies with Canadian ICES-003.

Cet appareil numérique de la classe B est conforme à la norme NMB-003 du Canada.

FCC Caution

Any changes or modifications not expressly approved by the party responsible for compliance could void the user's authority to operate this equipment.

IMPORTANT NOTE: FCC Radiation Exposure Statement

This equipment complies with FCC radiation exposure limits set forth for an uncontrolled environment. This equipment should be installed and operated with minimum distance 20cm between the radiator & your body.

4 Interference Statements and Certifications

ZyXEL G-1000 v2 User’s Guide

This transmitter must not be co-located or operating in conjunction with any other antenna or transmitter.

ZyXEL Communications Corporation declared that G-1000 v2 is limited in CH1~11 from 2400 to 2483.5 MHz by specified firmware controlled in USA.

注意 !

依據低功率電波輻射性電機管理辦法

第十二條經型式認證合格之低功率射頻電機，非經許可，公司、商號或使用者均不得擅自變更頻率、加大功率或變更原設計之特性及功能。

第十四條低功率射頻電機之使用不得影響飛航安全及干擾合法通信；經發現有干擾現象時，應立即停用，並改善至無干擾時方得繼續使用。前項合法通信，指依電信規定作業之無線電信。低功率射頻電機須忍受合法通信或工業、科學及醫療用電波輻射性電機設備之干擾。

Certifications

1 Go to www.zyxel.com

2 Select your product from the drop-down list box on the ZyXEL home

page to go to that product's page.

3 Select the certification you wish to view from this page.

Interference Statements and Certifications 5

ZyXEL G-1000 v2 User’s Guide

For your safety, be sure to read and follow all warning notices and instructions.

• To reduce the risk of fire, use only No. 26 AWG (American Wire Gauge) or larger telecommunication line cord.

• Do NOT open the device or unit. Opening or removing covers can expose you to dangerous high voltage points or other risks. ONLY qualified service personnel can service the device. Please contact your vendor for further information.

• Use ONLY the dedicated power supply for your device. Connect the power cord or power adaptor to the right supply voltage (110V AC in North America or 230V AC in Europe).

• Do NOT use the device if the power supply is damaged as it might cause electrocution.

• If the power supply is damaged, remove it from the power outlet.

• Do NOT attempt to repair the power supply. Contact your local vendor to order a new power supply.

• Place connecting cables carefully so that no one will step on them or stumble over them. Do NOT allow anything to rest on the power cord and do NOT locate the product where anyone can walk on the power cord.

• If you wall mount your device, make sure that no electrical, gas or water pipes will be damaged.

• Do NOT install nor use your device during a thunderstorm. There may be a remote risk of electric shock from lightning.

• Do NOT expose your device to dampness, dust or corrosive liquids.

• Do NOT use this product near water, for example, in a wet basement or near a swimming pool.

• Make sure to connect the cables to the correct ports.

• Do NOT obstruct the device ventilation slots, as insufficient airflow may harm your device.

• Do NOT store things on the device.

• Connect ONLY suitable accessories to the device.

Safety Warnings

6 Safety Warnings

ZyXEL G-1000 v2 User’s Guide

ZyXEL Limited Warranty

ZyXEL warrants to the original end user (purchaser) that this product is free from any defects in materials or workmanship for a period of up to two years from the date of purchase. During the warranty period, and upon proof of purchase, should the product have indications of failure due to faulty workmanship and/or materials, ZyXEL will, at its discretion, repair or replace the defective products or components without charge for either parts or labor, and to whatever extent it shall deem necessary to restore the product or components to proper operating condition. Any replacement will consist of a new or re-manufactured functionally equivalent product of equal or higher value, and will be solely at the discretion of ZyXEL. This warranty shall not apply if the product has been modified, misused, tampered with, damaged by an act of God, or subjected to abnormal working conditions.

Note

Repair or replacement, as provided under this warranty, is the exclusive remedy of the purchaser. This warranty is in lieu of all other warranties, express or implied, including any implied warranty of merchantability or fitness for a particular use or purpose. ZyXEL shall in no event be held liable for indirect or consequential damages of any kind to the purchaser.

To obtain the services of this warranty, contact ZyXEL's Service Center for your Return Material Authorization number (RMA). Products must be returned Postage Prepaid. It is recommended that the unit be insured when shipped. Any returned products without proof of purchase or those with an out-dated warranty will be repaired or replaced (at the discretion of ZyXEL) and the customer will be billed for parts and labor. All repaired or replaced products will be shipped by ZyXEL to the corresponding return address, Postage Paid. This warranty gives you specific legal rights, and you may also have other rights that vary from country to country.

ZyXEL Limited Warranty 7

ZyXEL G-1000 v2 User’s Guide

Please have the following information ready when you contact customer support.

• Product model and serial number.

• Warranty Information.

• Date that you received your device.

• Brief description of the problem and the steps you took to solve it.

Customer Support

METHOD

LOCATION

CORPORATE HEADQUARTERS (WORLDWIDE)

CZECH REPUBLIC

DENMARK

FINLAND

FRANCE

GERMANY

HUNGARY

KAZAKHSTAN

NORTH AMERICA

NORWAY

SUPPORT E-MAIL TELEPHONE

SALES E-MAIL FAX FTP SITE

support@zyxel.com.tw +886-3-578-3942 www.zyxel.com

sales@zyxel.com.tw +886-3-578-2439 ftp.zyxel.com

info@cz.zyxel.com +420-241-091-350 www.zyxel.cz ZyXEL Communications

info@cz.zyxel.com +420-241-091-359

support@zyxel.dk +45-39-55-07-00 www.zyxel.dk ZyXEL Communications A/S

sales@zyxel.dk +45-39-55-07-07

support@zyxel.fi +358-9-4780-8411 www.zyxel.fi ZyXEL Communications Oy

sales@zyxel.fi +358-9-4780 8448

info@zyxel.fr +33-4-72-52-97-97 www.zyxel.fr ZyXEL France

+33-4-72-52-19-20

support@zyxel.de +49-2405-6909-0 www.zyxel.de ZyXEL Deutschland GmbH.

sales@zyxel.de +49-2405-6909-99

support@zyxel.hu +36-1-3361649 www.zyxel.hu ZyXEL Hungary

info@zyxel.hu +36-1-3259100

http://zyxel.kz/support +7-3272-590-698 www.zyxel.kz ZyXEL Kazakhstan

sales@zyxel.kz +7-3272-590-689

support@zyxel.com 1-800-255-4101

+1-714-632-0882

sales@zyxel.com +1-714-632-0858 ftp.us.zyxel.com

support@zyxel.no +47-22-80-61-80 www.zyxel.no ZyXEL Communications A/S

sales@zyxel.no +47-22-80-61-81

WEB SITE

www.europe.zyxel.com

ftp.europe.zyxel.com

www.us.zyxel.com ZyXEL Communications Inc.

REGULAR MAIL

ZyXEL Communications Corp. 6 Innovation Road II

Science Park Hsinchu 300 Ta iw a n

Czech s.r.o. Modranská 621 143 01 Praha 4 - Modrany Ceská Republika

Columbusvej 2860 Soeborg Denmark

Malminkaari 10 00700 Helsinki Finland

1 rue des Vergers Bat. 1 / C 69760 Limonest France

Adenauerstr. 20/A2 D-52146 Wuerselen Germany

48, Zoldlomb Str. H-1025, Budapest Hungary

43, Dostyk ave.,Office 414 Dostyk Business Centre 050010, Almaty Republic of Kazakhstan

1130 N. Miller St. Anaheim CA 92806-2001 U.S.A.

Nils Hansens vei 13 0667 Oslo Norway

8 Customer Support

ZyXEL G-1000 v2 User’s Guide

METHOD

LOCATION

POLAND

RUSSIA

SPAIN

SWEDEN

UKRAINE

UNITED KINGDOM

1. “+” is the (prefix) number you enter to make an international telephone call.

SUPPORT E-MAIL TELEPHONE

SALES E-MAIL FAX FTP SITE

info@pl.zyxel.com +48-22-5286603 www.pl.zyxel.com ZyXEL Communications

+48-22-5206701

http://zyxel.ru/support +7-095-542-89-29 www.zyxel.ru ZyXEL Russia

sales@zyxel.ru +7-095-542-89-25

support@zyxel.es +34-902-195-420 www.zyxel.es ZyXEL Communications

sales@zyxel.es +34-913-005-345

support@zyxel.se +46-31-744-7700 www.zyxel.se ZyXEL Communications A/S

sales@zyxel.se +46-31-744-7701

support@ua.zyxel.com +380-44-247-69-78 www.ua.zyxel.com ZyXEL Ukraine

sales@ua.zyxel.com +380-44-494-49-32

support@zyxel.co.uk +44-1344 303044

08707 555779 (UK only)

sales@zyxel.co.uk +44-1344 303034 ftp.zyxel.co.uk

WEB SITE

REGULAR MAIL

ul.Emilli Plater 53 00-113 Warszawa Poland

Ostrovityanova 37a Str. Moscow, 117279 Russia

Alejandro Villegas 33 1º, 28043 Madrid Spain

Sjöporten 4, 41764 Göteborg Sweden

13, Pimonenko Str. Kiev, 04050 Ukraine

www.zyxel.co.uk ZyXEL Communications UK

Ltd.,11 The Courtyard, Eastern Road, Bracknell, Berkshire, RG12 2XB, United Kingdom (UK)

Customer Support 9

ZyXEL G-1000 v2 User’s Guide

10 Customer Support

ZyXEL G-1000 v2 User’s Guide

Copyright ..................................................................................................................3

Interference Statements and Certifications ........................................................... 4

Safety Warnings ....................................................................................................... 6

ZyXEL Limited Warranty.......................................................................................... 7

Customer Support.................................................................................................... 8

Table of Contents ................................................................................................... 11

List of Figures ........................................................................................................ 17

List of Tables .......................................................................................................... 21

Preface ....................................................................................................................25

Chapter 1

Getting to Know Your Device ................................................................................ 27

1.1 Introducing the ZyXEL G-1000 v2 .....................................................................27

1.2 Features .............................................................................................................27

1.2.1 Physical Features .....................................................................................27

1.2.2 Firmware Features ....................................................................................28

1.3 Applications for the G-1000 v2 ...........................................................................30

1.3.1 Internet Access Application ......................................................................31

1.3.2 Corporation Network Application ..............................................................31

1.4 Front Panel of the G-1000 ..................................................................................31

Chapter 2

Introducing the Web Configurator........................................................................ 33

2.1 Web Configurator Overview ...............................................................................33

2.2 Accessing the G-1000 v2 Web Configurator ......................................................33

2.3 Resetting the G-1000 v2 ....................................................................................34

2.3.1 .Procedure To Use The Reset Button .......................................................34

2.4 Navigating the Web Configurator .......................................................................35

2.4.1 Navigation Panel .......................................................................................35

2.4.3 Status: Packet Statistics ............................................................................38

2.4.4 Status: WLAN Association List .................................................................39

Table of Contents 11

ZyXEL G-1000 v2 User’s Guide

Chapter 3

Wizard Setup .......................................................................................................... 41

3.1 Wizard Setup Overview ......................................................................................41

3.2 General Setup ....................................................................................................41

3.3 Wizard Setup Wireless LAN ...............................................................................42

3.3.1 Name (SSID), Channel ID and Security ...................................................42

3.3.2 Configuring WEP or WPA(2) PSK Security ..............................................43

3.3.3 IP Address Assignment ............................................................................46

3.3.4 Apply Settings ...........................................................................................47

Chapter 4

Wireless LAN .......................................................................................................... 49

4.1 Wireless Network Overview ...............................................................................49

4.2 Wireless Security Overview ...............................................................................50

4.2.1 SSID .........................................................................................................50

4.2.2 MAC Address Filter ...................................................................................50

4.2.3 User Authentication ..................................................................................50

4.2.4 Encryption .................................................................................................51

4.3 Additional Wireless Terms ..................................................................................52

4.4.1 No Security ...............................................................................................54

4.4.2 WEP Encryption ........................................................................................55

4.4.3 WEP Encryption Screen ...........................................................................55

4.4.4 WPA(2)-PSK .............................................................................................56

4.4.5 WPA(2) Authentication Screen .................................................................58

Chapter 5

IP and DNS Screens............................................................................................... 63

5.1 Configuring IP ....................................................................................................63

5.2 Configuring DNS ................................................................................................64

Chapter 6

Remote Management Configuration .................................................................... 67

6.1.1 Remote Management Limitations .............................................................67

6.1.2 System Timeout .......................................................................................68

6.3 Telnet ..................................................................................................................69

6.6 SNMP .................................................................................................................71

6.6.1 Supported MIBs ........................................................................................72

6.6.2 SNMP Traps .............................................................................................73

Chapter 7

System .................................................................................................................... 75

7.1 General Setup ....................................................................................................75

7.1.1 General Setup and System Name ............................................................75

12 Table of Contents

ZyXEL G-1000 v2 User’s Guide

Chapter 8

Logs ........................................................................................................................ 81

8.1.1 Alerts and Logs .........................................................................................81

8.4 SMTP Error Messages .......................................................................................84

Chapter 9

Tools ........................................................................................................................ 87

9.2.1 Backup Configuration ...............................................................................89

9.2.2 Restore Configuration ...............................................................................89

9.2.3 Back to Factory Defaults ...........................................................................90

Chapter 10

Introducing the SMT ..............................................................................................93

10.1 Connect to your G-1000 v2 Using Telnet .........................................................93

10.2 Changing the System Password ......................................................................93

10.3 G-1000 v2 SMT Menus Overview ...................................................................94

10.4 Navigating the SMT Interface ...........................................................................95

Chapter 11

General Setup......................................................................................................... 97

Chapter 12

LAN Setup............................................................................................................... 99

12.1 LAN Setup ........................................................................................................99

12.2 TCP/IP Ethernet Setup .....................................................................................99

12.3 Wireless LAN Setup .......................................................................................100

12.3.1 Configuring MAC Address Filter ...........................................................102

12.3.2 Configuring Roaming ............................................................................103

Chapter 13

SNMP Configuration ............................................................................................ 105

Chapter 14

System Security ................................................................................................... 107

14.1 System Password ..........................................................................................107

14.2 Configuring External RADIUS Server ............................................................107

14.3 802.1x ............................................................................................................109

Chapter 15

System Information and Diagnosis .................................................................... 113

15.1 System Status ................................................................................................ 113

15.2 System Information ........................................................................................ 115

15.2.1 System Information ...............................................................................115

15.2.2 Console Port Speed ..............................................................................116

Table of Contents 13

ZyXEL G-1000 v2 User’s Guide

15.3 Log and Trace ................................................................................................ 116

15.3.1 Syslog Logging ..................................................................................... 117

15.4 Diagnostic ...................................................................................................... 117

Chapter 16

Firmware and Configuration File Maintenance ................................................. 119

16.1 Filename Conventions ...................................................................................119

16.2 Backup Configuration .....................................................................................120

16.2.1 Backup Configuration Using FTP .........................................................120

16.2.2 Using the FTP command from the DOS Prompt ..................................121

16.2.3 Backup Configuration Using TFTP .......................................................122

16.2.4 Example: TFTP Command ...................................................................123

16.2.5 Backup Via Console Port ......................................................................123

Chapter 17

System Maintenance and Information ...............................................................125

17.1 Command Interpreter Mode ...........................................................................125

17.2 Time and Date Setting ....................................................................................126

17.3 Remote Management Setup ..........................................................................127

17.3.1 Telnet ....................................................................................................127

17.3.2 FTP .......................................................................................................127

17.3.3 Web ......................................................................................................127

17.3.4 Remote Management Setup .................................................................128

17.3.5 Remote Management Limitations .........................................................129

17.4 Remote Management and NAT ......................................................................129

17.5 System Timeout .............................................................................................130

Chapter 18

Troubleshooting ................................................................................................... 131

Appendix A

Product Specifications ........................................................................................ 133

Appendix B

Brute-Force Password Guessing Protection..................................................... 135

Appendix C

Setting up Your Computer’s IP Address............................................................ 137

Appendix D

IP Address Assignment Conflicts ......................................................................149

Appendix E

IP Subnetting ........................................................................................................ 153

Appendix F

14 Table of Contents

ZyXEL G-1000 v2 User’s Guide

Command Interpreter........................................................................................... 161

Appendix G

Log Descriptions.................................................................................................. 163

Appendix H

Wireless LAN and IEEE 802.11 ...........................................................................167

Appendix I

Wireless LAN Security......................................................................................... 173

Appendix J

Types of EAP Authentication.............................................................................. 185

Appendix K

Antenna Selection and Positioning Recommendation..................................... 187

Table of Contents 15

ZyXEL G-1000 v2 User’s Guide

16 Table of Contents

ZyXEL G-1000 v2 User’s Guide

List of Figures

Figure 1 Internet Access Application ...................................................................... 31

Figure 2 Corporation Network Application ............................................................. 31

Figure 3 G-1000 v2 Front Panel ............................................................................. 32

Figure 4 Change Password Screen ....................................................................... 34

Figure 5 Web Configurator: Main Screen ............................................................. 35

Figure 6 Status Screen ........................................................................................... 37

Figure 7 Status: Packet Statistics ........................................................................... 38

Figure 8 Enter System and Domain Names. .......................................................... 41

Figure 9 Enter Name and Select Security .............................................................. 42

Figure 10 Wireless LAN Basic Security ................................................................. 44

Figure 11 Wireless LAN Extend Security ............................................................... 45

Figure 12 IP Address Assignment .......................................................................... 46

Figure 13 Wizard Completed ................................................................................. 48

Figure 14 Example of a Wireless Network ............................................................. 49

Figure 15 Wireless LAN: General ......................................................................... 53

Figure 16 Wireless: No Security ............................................................................. 54

Figure 17 Wireless: Static WEP Encryption ........................................................... 55

Figure 18 Wireless: WPA(2)-PSK .......................................................................... 57

Figure 19 Wireless: WPA(2) ................................................................................... 58

Figure 20 MAC Address Filter ................................................................................ 60

Figure 21 Wireless LAN: Advanced ....................................................................... 61

Figure 22 Network: Internet Connection ................................................................ 63

Figure 23 Network: Advanced ................................................................................ 64

Figure 24 Remote Management: WWW ................................................................ 68

Figure 25 Telnet Configuration on a TCP/IP Network ............................................ 69

Figure 26 Remote Management: Telnet ................................................................. 70

Figure 27 Remote Management: FTP .................................................................... 71

Figure 28 SNMP Management Model .................................................................... 72

Figure 29 Remote Management: SNMP ................................................................ 74

Figure 30 System General Setup ........................................................................... 76

Figure 31 System Time Setting .............................................................................. 77

Figure 32 View Log ................................................................................................ 81

Figure 33 Log Settings ........................................................................................... 83

Figure 34 Firmware Upgrade ................................................................................. 87

Figure 35 Firmware Upload In Progress ................................................................ 88

Figure 36 Network Temporarily Disconnected ....................................................... 88

Figure 37 Error Message ....................................................................................... 88

Figure 38 Configuration .......................................................................................... 89

List of Figures 17

ZyXEL G-1000 v2 User’s Guide

Figure 39 Configuration Restore Successful .......................................................... 90

Figure 40 Temporarily Disconnected ...................................................................... 90

Figure 41 Configuration Restore Error ................................................................... 90

Figure 42 Restart Screen ....................................................................................... 91

Figure 43 Login Screen .......................................................................................... 93

Figure 44 Menu 23.1 System Security: Change Password .................................... 93

Figure 45 G-1000 v2 SMT Main Menu ................................................................... 96

Figure 46 Menu 1 General Setup ........................................................................... 97

Figure 47 Menu 3 LAN Setup ................................................................................ 99

Figure 48 Menu 3.2 TCP/IP Setup ......................................................................... 99

Figure 49 Menu 3.5 Wireless LAN Setup ............................................................... 100

Figure 50 Menu 3.5 Wireless LAN Setup ............................................................... 102

Figure 51 Menu 3.5.1 WLAN MAC Address Filter ................................................. 103

Figure 52 Menu 3.5 Wireless LAN Setup ............................................................... 104

Figure 53 WLAN Roaming Configuration ............................................................... 104

Figure 54 Menu 22 SNMP Configuration ............................................................... 105

Figure 55 Menu 23 System Security ...................................................................... 107

Figure 56 Menu 23 System Security ...................................................................... 107

Figure 57 Menu 23.2 System Security: RADIUS Server ........................................ 108

Figure 58 Menu 23 System Security ...................................................................... 109

Figure 59 Menu 23.4 System Security: IEEE802.1x .............................................. 109

Figure 60 Menu 24 System Maintenance .............................................................. 113

Figure 61 Menu 24.1 System Maintenance: Status ............................................... 114

Figure 62 Menu 24.2 System Information and Console Port Speed ...................... 115

Figure 63 Menu 24.2.1 System Information: Information ....................................... 115

Figure 64 Menu 24.2.2 System Maintenance: Change Console Port Speed ......... 116

Figure 65 Menu 24.3 Log and Trace ...................................................................... 117

Figure 66 Menu 24.3.2 System Maintenance - Syslog Logging ............................. 117

Figure 67 Menu 24.4 System Maintenance: Diagnostic ......................................... 118

Figure 68 Menu 24.5 Backup Configuration ........................................................... 121

Figure 69 FTP Session Example ........................................................................... 121

Figure 70 System Maintenance: Backup Configuration ......................................... 123

Figure 71 System Maintenance: Starting Xmodem Download Screen .................. 123

Figure 72 Backup Configuration Example .............................................................. 124

Figure 73 Successful Backup Confirmation Screen ............................................... 124

Figure 74 Menu 24 System Maintenance .............................................................. 125

Figure 75 Valid CI Commands ............................................................................... 125

Figure 76 Menu 24.10 System Maintenance: Time and Date Setting .................... 126

Figure 77 Telnet Configuration on a TCP/IP Network ............................................ 127

Figure 78 Menu 24.11 Remote Management Control ............................................ 128

Figure 79 WIndows 95/98/Me: Network: Configuration .......................................... 138

Figure 80 Windows 95/98/Me: TCP/IP Properties: IP Address .............................. 139

Figure 81 Windows 95/98/Me: TCP/IP Properties: DNS Configuration ................. 140

18 List of Figures

ZyXEL G-1000 v2 User’s Guide

Figure 82 Windows XP: Start Menu ....................................................................... 141

Figure 83 Windows XP: Control Panel ................................................................... 141

Figure 84 Windows XP: Control Panel: Network Connections: Properties ............ 142

Figure 85 Windows XP: Local Area Connection Properties ................................... 142

Figure 86 Windows XP: Advanced TCP/IP Settings .............................................. 143

Figure 87 Windows XP: Internet Protocol (TCP/IP) Properties .............................. 144

Figure 88 Macintosh OS 8/9: Apple Menu ............................................................. 145

Figure 89 Macintosh OS 8/9: TCP/IP ..................................................................... 145

Figure 90 Macintosh OS X: Apple Menu ................................................................ 146

Figure 91 Macintosh OS X: Network ...................................................................... 147

Figure 92 IP Address Conflicts: CaseA .................................................................. 149

Figure 93 IP Address Conflicts: Case B ................................................................ 149

Figure 94 IP Address Conflicts: Case C ................................................................. 150

Figure 95 IP Address Conflicts: Case D ................................................................. 151

Figure 96 IBSS (Ad-hoc) Wireless LAN ................................................................. 168

Figure 97 Basic Service Set ................................................................................... 169

Figure 98 Extended Service Set ............................................................................ 170

Figure 99 RTS/CTS ............................................................................................... 170

Figure 100 WEP Authentication Steps ................................................................... 177

Figure 101 WPA with RADIUS Application Example .............................................. 180

Figure 102 Sequences for EAP MD5–Challenge Authentication ........................... 182

Figure 103 Sequences for PEAP, MS–CHAP V2 Authentication ........................... 183

List of Figures 19

ZyXEL G-1000 v2 User’s Guide

20 List of Figures

ZyXEL G-1000 v2 User’s Guide

List of Tables

Table 1 IEEE 802.11b ............................................................................................ 28

Table 2 IEEE 802.11g ............................................................................................ 28

Table 3 Front Panel Light Description ................................................................... 32

Table 4 Web Configurator Screens Summary ....................................................... 35

Table 5 Status Screen ........................................................................................... 37

Table 6 Status: Packet Statistics ........................................................................... 39

Table 7 Association List ......................................................................................... 39

Table 8 Enter System and Domain Names ........................................................... 42

Table 9 Enter Name and Select Security .............................................................. 43

Table 10 Wireless LAN Basic Security .................................................................. 44

Table 11 Wireless LAN Extend Security ................................................................ 45

Table 12 IP Address Assignment .......................................................................... 46

Table 13 Apply Settings ......................................................................................... 47

Table 14 Types of Encryption for Each Type of Authentication ............................. 51

Table 15 Additional Wireless Terms ...................................................................... 52

Table 16 Wireless LAN: General ........................................................................... 53

Table 17 Wireless No Security .............................................................................. 54

Table 18 Wireless: Static WEP Encryption ............................................................ 56

Table 19 Wireless: WPA(2)-PSK ........................................................................... 57

Table 20 Wireless: WPA(2) ................................................................................... 59

Table 21 MAC Address Filter ................................................................................ 61

Table 22 Wireless LAN: Advanced ........................................................................ 62

Table 23 Network: Internet Connection ................................................................. 63

Table 24 Network: Advanced ................................................................................ 64

Table 25 Remote Management: WWW ................................................................. 68

Table 26 Remote Management: Telnet ................................................................. 70

Table 27 Remote Management: FTP .................................................................... 71

Table 28 SNMP Traps ........................................................................................... 73

Table 29 Remote Management: SNMP ................................................................. 74

Table 30 System General Setup ........................................................................... 76

Table 31 System Time Setting ............................................................................... 77

Table 32 View Log ................................................................................................. 82

Table 33 Log Settings ............................................................................................ 83

Table 34 SMTP Error Messages ........................................................................... 84

Table 35 Firmware Upgrade .................................................................................. 87

Table 36 Maintenance Restore Configuration ....................................................... 89

Table 37 SMT Menus Overview ............................................................................ 94

Table 38 Main Menu Commands .......................................................................... 95

List of Tables 21

ZyXEL G-1000 v2 User’s Guide

Table 39 Main Menu Summary ............................................................................. 96

Table 40 Menu 1 General Setup ........................................................................... 97

Table 41 Menu 3.2 TCP/IP Setup .......................................................................... 100

Table 42 Menu 3.5 Wireless LAN Setup ............................................................... 101

Table 43 Menu 3.5.1 WLAN MAC Address Filter .................................................. 103

Table 44 Menu 3.5.4 Bridge Link Configuration .................................................... 104

Table 45 Menu 22 SNMP Configuration ................................................................ 105

Table 46 Menu 23.2 System Security: RADIUS Server ........................................ 108

Table 47 Menu 23.4 System Security: IEEE802.1x ............................................... 110

Table 48 Menu 24.1 System Maintenance: Status ................................................ 114

Table 49 Menu 24.2.1 System Maintenance: Information ..................................... 115

Table 50 Menu 24.3.2 System Maintenance - Syslog Logging ............................. 117

Table 51 Menu 24.4 System Maintenance Menu: Diagnostic ............................... 118

Table 52 Filename Conventions ............................................................................ 120

Table 53 General Commands for Third Party FTP Clients .................................... 122

Table 54 General Commands for Third Party TFTP Clients .................................. 123

Table 55 System Maintenance: Time and Date Setting ........................................ 126

Table 56 Remote Management Port Control ......................................................... 128

Table 57 Menu 24.11 Remote Management Control ............................................. 129

Table 58 Troubleshooting the Start-Up of Your G-1000 v2 .................................... 131

Table 59 Troubleshooting the Ethernet Interface .................................................. 131

Table 60 Troubleshooting the Password ............................................................... 132

Table 61 Troubleshooting the WLAN Interface ...................................................... 132

Table 62 Hardware ................................................................................................ 133

Table 63 Firmware ................................................................................................. 133

Table 64 Brute-Force Password Guessing Protection Commands ....................... 135

Table 65 Classes of IP Addresses ........................................................................ 153

Table 66 Allowed IP Address Range By Class ...................................................... 154

Table 67 “Natural” Masks ..................................................................................... 154

Table 68 Alternative Subnet Mask Notation .......................................................... 155

Table 69 Two Subnets Example ............................................................................ 155

Table 70 Subnet 1 ................................................................................................. 156

Table 71 Subnet 2 ................................................................................................. 156

Table 72 Subnet 1 ................................................................................................. 157

Table 73 Subnet 2 ................................................................................................. 157

Table 74 Subnet 3 ................................................................................................. 157

Table 75 Subnet 4 ................................................................................................. 158

Table 76 Eight Subnets ......................................................................................... 158

Table 77 Class C Subnet Planning ........................................................................ 158

Table 78 Class B Subnet Planning ........................................................................ 159

Table 79 System Error Logs .................................................................................. 163

Table 80 System Maintenance Logs ..................................................................... 163

Table 81 ICMP Notes ............................................................................................ 163

22 List of Tables

ZyXEL G-1000 v2 User’s Guide

Table 82 Sys log .................................................................................................... 164

Table 83 Log Categories and Available Settings ................................................... 165

Table 84 IEEE 802.11g .......................................................................................... 173

Table 85 Comparison of EAP Authentication Types .............................................. 176

Table 86 Wireless Security Relational Matrix ........................................................ 181

Table 87 Comparison of EAP Authentication Types .............................................. 186

List of Tables 23

ZyXEL G-1000 v2 User’s Guide

24 List of Tables

ZyXEL G-1000 v2 User’s Guide

Preface

Congratulations on your purchase of the ZyXEL G-1000 v2 IEEE 802.11g wireless access point.

Your G-1000 v2 is easy to install and configure.

Note: Register your product online to receive e-mail notices of firmware upgrades and

information at www.zyxel.com American products.

About This User's Guide

This User’s Guide is designed to guide you through the configuration of your ZyXEL device using the web configurator or the SMT. The web configurator parts of this guide contain background information on features configurable by web configurator. The SMT parts of this guide contain background information solely on features not configurable by web configurator

for global products, or at www.us.zyxel.com for North

Note: Use the web configurator, System Management Terminal (SMT) or command

interpreter interface to configure your G-1000 v2. Not all features can be configured through all interfaces.

Getting to Know Your Device

This chapter introduces the main features and applications of the G-1000 v2.

1.1 Introducing the ZyXEL G-1000 v2

The ZyXEL G-2000 Plus v2 is a wireless access point. The G-1000 v2 offers highly secured wireless connectivity to your wired network with IEEE 802.1X, WEP data encryption, WPA(2) (Wi-Fi Protected Access) and MAC address filtering.

The G-1000 v2 is easy to install and configure. The embedded web-based configurator and SNMP network management enables remote configuration and management of your G-1000 v2.

ZyXEL G-1000 v2 User’s Guide

1.2 Features

The following sections describe the features of the G-1000 v2.

Note: See the product specifications in the appendix for detailed features and

standards support.

1.2.1 Physical Features

10/100M Auto-negotiating Ethernet/Fast Ethernet Interface

This auto-negotiating feature allows the G-1000 v2 to detect the speed of incoming transmissions and adjust appropriately without manual intervention. It allows data transfer of either 10 Mbps or 100 Mbps in either half-duplex or full-duplex mode depending on your Ethernet network.

10/100M Auto-crossover Ethernet/Fast Ethernet Interface

The LAN interface automatically adjusts to either a crossover or straight-through Ethernet cable.

Reset Button

The G-1000 v2 reset button is built into the side panel. Use this button to restore the factory default password to 1234; IP address to 192.168.1.2 and subnet mask to 255.255.255.0.

Chapter 1 Getting to Know Your Device 27

ZyXEL G-1000 v2 User’s Guide

ZyAIR LED

The blue ZyAIR LED (also known as the breathing light) is on when the G-1000 v2 is on and blinks (or breaths) when data is being transmitted to/from its wireless stations. You may use the web configurator to turn this light off even when the G-1000 v2 is on and data is being transmitted/received.

1.2.2 Firmware Features

WPA and WPA2

Wi-Fi Protected Access (WPA) is a subset of the IEEE 802.11i standard. WPA2 (IEEE

802.11i) is a wireless security standard that defines stronger encryption, authentication and key management than WPA.

Key differences between WPA(2) and WEP are improved data encryption and user authentication.

IEEE 802.11b Wireless LAN Standard

The G-1000 v2 complies with the IEEE 802.11b wireless standards.

The IEEE 802.11b data rate and corresponding modulation techniques are shown in the table below. The modulation technique defines how bits are encoded onto radio waves.

Table 1 IEEE 802.11b

DATA RATE (MBPS) MODULATION

1 DBPSK (Differential Binary Phase Shift Keyed)

2 DQPSK (Differential Quadrature Phase Shift Keying)

5.5 / 11 CCK (Complementary Code Keying)

IEEE 802.11g Wireless LAN Standard

The G-1000 v2, complies with the IEEE 802.11g wireless standard and is also fully compatible with the IEEE 802.11b standard. This means an IEEE 802.11b radio card can interface directly with an IEEE 802.11g device (and vice versa) at 11 Mbps or lower depending on range.The IEEE 802.11g has several intermediate rate steps between the maximum and minimum data rates. The IEEE 802.11g data rate and modulation are as follows:.

Table 2 IEEE 802.11g

DATA RATE (MBPS)

6/9/12/18/24/36/48/54 OFDM (Orthogonal Frequency Division Multiplexing)

28 Chapter 1 Getting to Know Your Device

MODULATION

ZyXEL G-1000 v2 User’s Guide

Note: The G-1000 v2 may be prone to RF (Radio Frequency) interference from other

2.4 GHz devices such as microwave ovens, wireless phones, Bluetooth enabled devices, and other wireless LANs.

STP (Spanning Tree Protocol) / RSTP (Rapid STP)

(R)STP detects and breaks network loops and provides backup links between switches, bridges or routers. It allows a bridge to interact with other (R)STP -compliant bridges in your network to ensure that only one path exists between any two stations on the network.

Limit the number of Client Connections

You may set a maximum number of wireless stations that may connect to the G-1000 v2. This may be necessary if for example, there is interference or difficulty with channel assignment due to a high density of APs within a coverage area.

SSL Passthrough

SSL (Secure Sockets Layer) uses a public key to encrypt data that's transmitted over an SSL connection. Both Netscape Navigator and Internet Explorer support SSL, and many Web sites use the protocol to obtain confidential user information, such as credit card numbers. By convention, URLs that require an SSL connection start with “https” instead of “http”. The G1000 v2 allows SSL connections to take place through the G-1000 v2.

Brute-Force Password Guessing Protection

The G-1000 v2 has a special protection mechanism to discourage brute-force password guessing attacks on the G-1000 v2's management interfaces. You can specify a wait-time that must expire before entering a fourth password after three incorrect passwords have been entered. Please see the appendix for details about this feature.

Wireless LAN MAC Address Filtering

Your G-1000 v2 checks the MAC address of the wireless station against a list of allowed or denied MAC addresses.

WEP Encryption

WEP (Wired Equivalent Privacy) encrypts data frames before transmitting over the wireless network to help keep network communications private.

IEEE 802.1X Network Security

The G-1000 v2 supports the IEEE 802.1x standard to enhance user authentication. Use the built-in user profile database to authenticate up to 32 users using MD5 encryption. Use an EAP-compatible RADIUS (RFC2138, 2139 - Remote Authentication Dial In User Service) server to authenticate a limitless number of users using EAP (Extensible Authentication Protocol). EAP is an authentication protocol that supports multiple types of authentication.

Chapter 1 Getting to Know Your Device 29

ZyXEL G-1000 v2 User’s Guide

SNMP

SNMP (Simple Network Management Protocol) is a protocol used for exchanging management information between network devices. SNMP is a member of the TCP/IP protocol suite. Your G-1000 v2 supports SNMP agent functionality, which allows a manager station to manage and monitor the G-1000 v2 through the network. The G-1000 v2 supports SNMP version one (SNMPv1) and version two c (SNMPv2c).

Full Network Management

The embedded web configurator is an all-platform web-based utility that allows you to easily access the G-1000 v2’s management settings. Most functions of the G-1000 v2 are also software configurable via the SMT (System Management Terminal) interface. The SMT is a menu-driven interface that you can access from a terminal emulator over a telnet connection.

Logging and Tracing

• Built-in message logging.

• Unix syslog facility support.

Diagnostics Capabilities

The G-1000 v2 can perform self-diagnostic tests. These tests check the integrity of the following circuitry:

• FLASH memory

•DRAM

• LAN port

• Wireless port

Embedded FTP and TFTP Servers

The G-1000 v2’s embedded FTP and TFTP servers enable fast firmware upgrades as well as configuration file backups and restoration.

Wireless Association List

With the wireless association list, you can see the list of the wireless stations that are currently using the G-1000 v2 to access your wired network.

1.3 Applications for the G-1000 v2

Here are application examples of what you can do with your G-1000 v2.

30 Chapter 1 Getting to Know Your Device

+ 168 hidden pages