ZyXEL Communications P-334W User Manual
Prestige 334W
802.11g Wireless Broadband Router with Firewall
User’s Guide
Version 3.60
May 2004
Prestige 334W User’s Guide
Copyright
Copyright © 2004 by ZyXEL Communications Corporation.
The contents of this publication may not be reproduced in any part or as a whole, transcribed, stored in a
retrieval system, translated into any language, or transmitted in any form or by any means, electronic,
mechanical, magnetic, optical, chemical, photocopying, manual, or otherwise, without the prior written
permission of ZyXEL Communications Corporation.
Published by ZyXEL Communications Corporation. All rights reserved.
Disclaimer
ZyXEL does not assume any liability arising out of the application or use of any products, or software
described herein. Neither does it convey any license under its patent rights nor the patent rights of others.
ZyXEL further reserves the right to make changes in any products described herein without notice.
This publication is subject to change without notice.
Trademarks
Trademarks mentioned in this publication are used for identification purposes only and may be properties of
their respective owners.
ii Copyright
Prestige 334W User’s Guide
Federal Communications Commission (FCC)
Interference Statement
This device complies with Part 15 of FCC rules. Operation is subject to the following two conditions:
This device may not cause harmful interference.
This device must accept any interference received, including interference that may cause undesired
operations.
This equipment has been tested and found to comply with the limits for a CLASS B digital device pursuant to
Part 15 of the FCC Rules. These limits are designed to provide reasonable protection against harmful
interference in a commercial environment. This equipment generates, uses, and can radiate radio frequency
energy, and if not installed and used in accordance with the instructions, may cause harmful interference to
radio communications.
If this equipment does cause harmful interference to radio/television reception, which can be determined by
turning the equipment off and on, the user is encouraged to try to correct the interference by one or more of
the following measures:
Reorient or relocate the receiving antenna.
Increase the separation between the equipment and the receiver.
Connect the equipment into an outlet on a circuit different from that to which the receiver is connected.
Consult the dealer or an experienced radio/TV technician for help.
Notice 1
Changes or modifications not expressly approved by the party responsible for compliance could void the
user's authority to operate the equipment.
This product has been designed for the WLAN 2.4Ghz network throughout the EC region and Switzerland,
with restrictions in France !
Certifications
1. Go to www.zyxel.com.
2. Select your product from the drop-down list box on the ZyXEL home page to go to that product's page.
3. Select the certification you wish to view from this page.
FCC iii
Prestige 334W User’s Guide
Information for Canadian Users
The Industry Canada label identifies certified equipment. This certification means that the equipment meets
certain telecommunications network protective, operation, and safety requirements. The Industry Canada
does not guarantee that the equipment will operate to a user's satisfaction.
Before installing this equipment, users should ensure that it is permissible to be connected to the facilities of
the local telecommunications company. The equipment must also be installed using an acceptable method of
connection. In some cases, the company's inside wiring associated with a single line individual service may
be extended by means of a certified connector assembly. The customer should be aware that the compliance
with the above conditions may not prevent degradation of service in some situations.
Repairs to certified equipment should be made by an authorized Canadian maintenance facility designated by
the supplier. Any repairs or alterations made by the user to this equipment, or equipment malfunctions, may
give the telecommunications company cause to request the user to disconnect the equipment.
For their own protection, users should ensure that the electrical ground connections of the power utility,
telephone lines, and internal metallic water pipe system, if present, are connected together. This precaution
may be particularly important in rural areas.
Caution
Users should not attempt to make such connections themselves, but should contact the appropriate electrical
inspection authority, or electrician, as appropriate.
Note
This digital apparatus does not exceed the class A limits for radio noise emissions from digital apparatus set
out in the radio interference regulations of Industry Canada.
iv Information for Canadian Users
Prestige 334W User’s Guide
ZyXEL Limited Warranty
ZyXEL warrants to the original end user (purchaser) that this product is free from any defects in materials or
workmanship for a period of up to two years from the date of purchase. During the warranty period, and upon
proof of purchase, should the product have indications of failure due to faulty workmanship and/or materials,
ZyXEL will, at its discretion, repair or replace the defective products or components without charge for
either parts or labor, and to whatever extent it shall deem necessary to restore the product or components to
proper operating condition. Any replacement will consist of a new or re-manufactured functionally
equivalent product of equal value, and will be solely at the discretion of ZyXEL. This warranty shall not
apply if the product is modified, misused, tampered with, damaged by an act of God, or subjected to
abnormal working conditions.
NOTE
Repair or replacement, as provided under this warranty, is the exclusive remedy of the purchaser. This
warranty is in lieu of all other warranties, express or implied, including any implied warranty of
merchantability or fitness for a particular use or purpose. ZyXEL shall in no event be held liable for indirect
or consequential damages of any kind of character to the purchaser.
To obtain the services of this warranty, contact ZyXEL's Service Center for your Return Material
Authorization number (RMA). Products must be returned Postage Prepaid. It is recommended that the unit be
insured when shipped. Any returned products without proof of purchase or those with an out-dated warranty
will be repaired or replaced (at the discretion of ZyXEL) and the customer will be billed for parts and labor.
All repaired or replaced products will be shipped by ZyXEL to the corresponding return address, Postage
Paid. This warranty gives you specific legal rights, and you may also have other rights that vary from country
to country.
Online Registration
Register your product online at www.zyxel.com
www.us.zyxel.com for North American products.
Warranty v
for global products, or at
Prestige 334W User’s Guide
Customer Support
When you contact your customer support representative please have the following information ready:
Please have the following information ready when you contact customer support.
• Product model and serial number.
• Warranty Information.
• Date that you received your device.
• Brief description of the problem and the steps you took to solve it.
REGULAR MAIL
ZyXEL Communications Corp.
6 Innovation Road II
Science Park
Hsinchu 300
Taiwan
ZyXEL Communications Inc.
1130 N. Miller St.
Anaheim
CA 92806-2001
U.S.A.
ZyXEL Deutschland GmbH.
Adenauerstr. 20/A2 D-52146
Wuerselen
Germany
1 rue des Vergers
Bat. 1 / C
69760 Limonest
France
Alejandro Villegas 33
1º, 28043 Madrid
Spain
ZyXEL Communications A/S
Columbusvej 5
2860 Soeborg
Denmark
ZyXEL Communications A/S
Nils Hansens vei 13
0667 Oslo
Norway
LOCATION
WORLDWIDE
AMERICA
SUPPORT E-MAIL TELEPHONE1 WEB SITE METHOD
SALES E-MAIL FAX1 FTP SITE
support@zyxel.com.tw +886-3-578-3942 www.zyxel.com
sales@zyxel.com.tw
support@zyxel.com +1-800-255-4101
sales@zyxel.com
support@zyxel.de +49-2405-6909-0 www.zyxel.de GERMANY
sales@zyxel.de
support@zyxel.es +34 902 195 420 SPAIN
sales@zyxel.es
support@zyxel.dk +45 39 55 07 00 www.zyxel.dk DENMARK
sales@zyxel.dk
support@zyxel.no +47 22 80 61 80 www.zyxel.no NORWAY
sales@zyxel.no
+886-3-578-2439 ftp.europe.zyxel.com
+1-714-632-0882
+1-714-632-0858 ftp.us.zyxel.com
+49-2405-6909-99
+33 (0)4 72 52 97 97 FRANCE info@zyxel.fr
+33 (0)4 72 52 19 20
+34 913 005 345
+45 39 55 07 07
+47 22 80 61 81
www.europe.zyxel.com
ftp.zyxel.com
www.us.zyxel.com NORTH
www.zyxel.fr ZyXEL France
www.zyxel.es
ZyXEL Communications
1
“+” is the (prefix) number you enter to make an international telephone call.
vi Customer Support
Prestige 334W User’s Guide
LOCATION
SUPPORT E-MAIL TELEPHONE1 WEB SITE METHOD
SALES E-MAIL FAX1 FTP SITE
support@zyxel.se +46 31 744 7700 www.zyxel.se SWEDEN
sales@zyxel.se
support@zyxel.fi +358-9-4780-8411 www.zyxel.fi FINLAND
sales@zyxel.fi
+46 31 744 7701
+358-9-4780 8448
REGULAR MAIL
ZyXEL Communications A/S
Sjöporten 4, 41764 Göteborg
Sweden
ZyXEL Communications Oy
Malminkaari 10
00700 Helsinki
Finland
Customer Support vii
Prestige 334W User’s Guide
Table of Contents
Copyright......................................................................................................................................................ii
Federal Communications Commission (FCC) Interference Statement................................................. iii
Information for Canadian Users ...............................................................................................................iv
ZyXEL Limited Warranty ..........................................................................................................................v
Customer Support ......................................................................................................................................vi
List of Figures ...........................................................................................................................................xxi
List of Tables ..........................................................................................................................................xxvii
Preface .....................................................................................................................................................xxxi
Getting Started ................................................................................................................................................. I
Chapter 1 Getting to Know Your Prestige ................................................................................................. 1-1
1.1 Prestige Internet Security Gateway Overview........................................................................... 1-1
1.2 Prestige Features .......................................................................................................................... 1-1
1.2.1 Physical Features.................................................................................................................... 1-1
1.2.2 Non-Physical Features............................................................................................................ 1-2
1.3 Applications for the Prestige ....................................................................................................... 1-5
1.3.1 Secure Broadband Internet Access via Cable or DSL Modem............................................... 1-6
1.3.2 VPN Application.................................................................................................................... 1-6
1.3.3 Internet Access Application ................................................................................................... 1-7
Chapter 2 Introducing the Web Configurator........................................................................................... 2-1
2.1 Web Configurator Overview.......................................................................................................2-1
2.2 Accessing the Prestige Web Configurator .................................................................................. 2-1
2.3 Resetting the Prestige................................................................................................................... 2-2
2.3.1 Procedure To Use The Reset Button ...................................................................................... 2-2
2.3.2 Navigation Panel .................................................................................................................... 2-3
Chapter 3 Wizard Setup.............................................................................................................................. 3-1
3.1 Wizard Setup Overview............................................................................................................... 3-1
3.2 Wizard Setup: General Setup and System Name...................................................................... 3-1
3.2.1 Domain Name ........................................................................................................................ 3-1
3.3 Wizard Setup: Screen 2 ............................................................................................................... 3-2
3.4 Wizard Setup: Screen 3 ............................................................................................................... 3-3
3.5 Wizard Setup: Screen 4 ............................................................................................................... 3-5
3.5.1 Ethernet .................................................................................................................................. 3-5
3.5.2 PPPoE Encapsulation.............................................................................................................3-7
3.5.3 PPTP Encapsulation............................................................................................................... 3-9
3.6 Wizard Setup: Screen 5 ............................................................................................................. 3-10
3.6.1 WAN IP Address Assignment.............................................................................................. 3-10
3.6.2 IP Address and Subnet Mask ............................................................................................... 3-11
3.6.3 DNS Server Address Assignment ........................................................................................ 3-11
Table of Contents ix
Prestige 334W User’s Guide
3.6.4 WAN MAC Address.............................................................................................................3-12
3.7 Basic Setup Complete .................................................................................................................3-14
Chapter 4 Media Bandwidth Management Setup......................................................................................4-1
4.1 Media Bandwidth Management Setup Overview ......................................................................4-1
4.2 Media Bandwidth Management Setup 1.....................................................................................4-1
4.3 Media Bandwidth Management Setup 2.....................................................................................4-2
4.4 Media Bandwidth Management Setup 3: ...................................................................................4-3
4.5 Media Bandwidth Management Setup Complete ......................................................................4-4
System, LAN, WLAN and WAN.................................................................................................................... II
Chapter 5 System Screens............................................................................................................................5-1
5.1 System Overview...........................................................................................................................5-1
5.2 Configuring General Setup .......................................................................................................... 5-1
5.3 Dynamic DNS ................................................................................................................................ 5-3
5.3.1 DynDNS Wildcard..................................................................................................................5-3
5.4 Configuring Dynamic DNS ..........................................................................................................5-3
5.5 Configuring Password .................................................................................................................. 5-5
5.6 Configuring Time Zone ................................................................................................................5-6
Chapter 6 LAN Screens................................................................................................................................6-1
6.1 LAN Overview...............................................................................................................................6-1
6.2 DHCP Setup ..................................................................................................................................6-1
6.2.1 IP Pool Setup ..........................................................................................................................6-1
6.2.2 System DNS Servers...............................................................................................................6-1
6.3 LAN TCP/IP..................................................................................................................................6-1
6.3.1 Factory LAN Defaults.............................................................................................................6-1
6.3.2 IP Address and Subnet Mask ..................................................................................................6-2
6.3.3 RIP Setup ................................................................................................................................ 6-2
6.3.4 Multicast .................................................................................................................................6-2
6.4 Any IP ............................................................................................................................................6-3
6.4.1 How Any IP Works.................................................................................................................6-4
6.5 Configuring IP...............................................................................................................................6-4
6.6 Configuring Static DHCP.............................................................................................................6-8
6.7 Configuring IP Alias .....................................................................................................................6-9
Chapter 7 Wireless Configuration and Roaming.......................................................................................7-1
7.1 Wireless LAN Overview...............................................................................................................7-1
7.1.1 IBSS........................................................................................................................................7-1
7.1.2 BSS .........................................................................................................................................7-1
7.1.3 ESS .........................................................................................................................................7-2
7.2 Wireless LAN Basics.....................................................................................................................7-3
7.2.1 RTS/CTS.................................................................................................................................7-3
7.2.2 Fragmentation Threshold........................................................................................................7-4
7.3 Configuring Wireless ....................................................................................................................7-5
x Table of Contents
Prestige 334W User’s Guide
7.4 Configuring Roaming .................................................................................................................. 7-6
7.4.1 Requirements for Roaming .................................................................................................... 7-8
Chapter 8 Wireless Security........................................................................................................................ 8-1
8.1 Wireless Security Overview......................................................................................................... 8-1
8.2 Security Parameters Summary ................................................................................................... 8-3
8.3 WEP Overview ............................................................................................................................. 8-4
8.3.1 Data Encryption ..................................................................................................................... 8-4
8.3.2 Authentication........................................................................................................................ 8-4
8.3.3 Preamble Type ....................................................................................................................... 8-6
8.4 Configuring WEP Encryption..................................................................................................... 8-6
8.5 Introduction to WPA.................................................................................................................... 8-8
8.5.1 User Authentication ............................................................................................................... 8-9
8.5.2 Encryption.............................................................................................................................. 8-9
8.5.3 WPA-PSK Application Example ........................................................................................... 8-9
8.6 Configuring WPA-PSK Authentication.................................................................................... 8-10
8.7 Wireless Client WPA Supplicants ............................................................................................. 8-13
8.7.1 WPA with RADIUS Application Example .......................................................................... 8-13
8.8 Configuring WPA Authentication............................................................................................. 8-14
8.9 802.1x Overview ......................................................................................................................... 8-16
8.10 Dynamic WEP Key Exchange ............................................................................................... 8-17
8.11 Configuring 802.1x and Dynamic WEP Key Exchange .......................................................... 8-17
8.12 Configuring 802.1x and Static WEP Key Exchange ............................................................ 8-19
8.13 Configuring 802.1x................................................................................................................. 8-23
8.14 MAC Filter.............................................................................................................................. 8-25
8.15 Introduction to Local User Database.................................................................................... 8-27
8.16 Configuring Local User Database......................................................................................... 8-28
8.17 Introduction to RADIUS ....................................................................................................... 8-29
8.17.1 EAP Authentication Overview............................................................................................. 8-30
8.18 Configuring RADIUS............................................................................................................. 8-31
Chapter 9 WAN Screens .............................................................................................................................. 9-1
9.1 WAN Overview ............................................................................................................................. 9-1
9.2 TCP/IP Priority (Metric) ............................................................................................................. 9-1
9.3 Configuring Route........................................................................................................................ 9-1
9.4 Configuring WAN ISP ................................................................................................................. 9-2
9.4.1 Ethernet Encapsulation........................................................................................................... 9-2
9.4.2 PPPoE Encapsulation.............................................................................................................9-4
9.4.3 PPTP Encapsulation............................................................................................................... 9-6
9.5 Configuring WAN IP.................................................................................................................... 9-7
9.6 Configuring WAN MAC .............................................................................................................9-11
9.7 Traffic Redirect .......................................................................................................................... 9-12
9.8 Configuring Traffic Redirect..................................................................................................... 9-13
Table of Contents xi
Prestige 334W User’s Guide
SUA/NAT and Static Route .......................................................................................................................... III
Chapter 10 Network Address Translation (NAT) Screens.......................................................................10-1
10.1 NAT Overview.........................................................................................................................10-1
10.1.1 NAT Definitions ...................................................................................................................10-1
10.1.2 What NAT Does ...................................................................................................................10-2
10.1.3 How NAT Works.................................................................................................................. 10-2
10.1.4 NAT Application ..................................................................................................................10-3
10.1.5 NAT Mapping Types ............................................................................................................ 10-4
10.2 Using NAT ...............................................................................................................................10-6
10.2.1 SUA (Single User Account) Versus NAT ............................................................................10-6
10.3 SUA Server ..............................................................................................................................10-6
10.3.1 Port Forwarding: Services and Port Numbers.......................................................................10-6
10.3.2 Configuring Servers Behind SUA (Example).......................................................................10-7
10.4 Configuring SUA Server.........................................................................................................10-8
10.5 Configuring Address Mapping.............................................................................................10-10
10.6 Trigger Port Forwarding......................................................................................................10-13
10.6.1 Trigger Port Forwarding Example ......................................................................................10-14
10.6.2 Two Points To Remember About Trigger Ports .................................................................10-14
10.7 Configuring Trigger Port Forwarding ................................................................................ 10-14
Chapter 11 Static Route Screens................................................................................................................ 11-1
11. 1 Static Route Overview ................................................................................................................11-1
11. 2 Configuring IP Static Route ....................................................................................................... 11-1
11.2.1 Configuring Route Entry.......................................................................................................11-2
UPnP and Firewall.........................................................................................................................................IV
Chapter 12 UPnP ........................................................................................................................................ 12-1
12.1 Universal Plug and Play Overview ........................................................................................12-1
12.1.1 How Do I Know If I'm Using UPnP? ...................................................................................12-1
12.1.2 NAT Traversal ...................................................................................................................... 12-1
12.1.3 Cautions with UPnP..............................................................................................................12-2
12.2 UPnP and ZyXEL ...................................................................................................................12-2
12.3 Configuring UPnP...................................................................................................................12-2
12.4 Installing UPnP in Windows Example ..................................................................................12-4
12.4.1 Installing UPnP in Windows Me ..........................................................................................12-4
12.4.2 Installing UPnP in Windows XP...........................................................................................12-4
12.5 Using UPnP in Windows XP Example...................................................................................12-6
12.5.1 Auto-discover Your UPnP-enabled Network Device ...........................................................12-6
12.5.2 Web Configurator Easy Access ............................................................................................12-8
Chapter 13 Firewall....................................................................................................................................13-1
13.1 Introduction.............................................................................................................................13-1
13.1.1 Guidelines For Enhancing Security With Your Firewall......................................................13-2
13.2 Firewall Settings Screen .........................................................................................................13-3
xii Table of Contents
Prestige 334W User’s Guide
13.3 The Firewall, NAT and Remote Management ..................................................................... 13-5
13.3.1 LAN-to-WAN rules ............................................................................................................. 13-5
13.3.2 WAN-to-LAN rules ............................................................................................................. 13-5
13.4 Configuring Content Filtering .............................................................................................. 13-6
13.5 Services.................................................................................................................................... 13-8
Remote Management and VPN/IPSec........................................................................................................... V
Chapter 14 Remote Management Screens............................................................................................... 14-1
14.1 Remote Management Overview............................................................................................ 14-1
14.1.1 Remote Management Limitations ........................................................................................ 14-2
14.1.2 Remote Management and NAT............................................................................................ 14-2
14.1.3 System Timeout ................................................................................................................... 14-2
14.2 Configuring WWW................................................................................................................ 14-2
14.3 Configuring Telnet ................................................................................................................. 14-4
14.4 Configuring TELNET............................................................................................................ 14-4
14.5 Configuring FTP .................................................................................................................... 14-6
14.6 SNMP ...................................................................................................................................... 14-7
14.6.1 Supported MIBs ................................................................................................................... 14-9
14.6.2 SNMP Traps......................................................................................................................... 14-9
14.6.3 Configuring SNMP ............................................................................................................ 14-10
14.7 Configuring DNS...................................................................................................................14-11
14.8 Configuring Security............................................................................................................14-13
Chapter 15 Introduction to IPSec............................................................................................................. 15-1
15.1 VPN Overview ........................................................................................................................ 15-1
15.1.1 IPSec .................................................................................................................................... 15-1
15.1.2 Security Association............................................................................................................. 15-1
15.1.3 Other Terminology...............................................................................................................15-1
15.1.4 VPN Applications ................................................................................................................15-2
15.2 IPSec Architecture.................................................................................................................. 15-3
15.2.1 IPSec Algorithms ................................................................................................................. 15-3
15.2.2 Key Management ................................................................................................................. 15-4
15.3 Encapsulation ......................................................................................................................... 15-4
15.3.1 Transport Mode.................................................................................................................... 15-4
15.3.2 Tunnel Mode ........................................................................................................................ 15-4
15.4 IPSec and NAT ....................................................................................................................... 15-5
Chapter 16 VPN Screens ........................................................................................................................... 16-1
16.1 VPN/IPSec Overview ............................................................................................................. 16-1
16.2 IPSec Algorithms.................................................................................................................... 16-1
16.2.1 AH (Authentication Header) Protocol.................................................................................. 16-1
16.2.2 ESP (Encapsulating Security Payload) Protocol.................................................................. 16-2
16.3 My IP Address ........................................................................................................................ 16-2
16.4 Secure Gateway Address........................................................................................................ 16-2
Table of Contents xiii
Prestige 334W User’s Guide
16.4.1 Dynamic Secure Gateway Address.......................................................................................16-3
16.5 Summary Screen ..................................................................................................................... 16-3
16.6 Keep Alive................................................................................................................................16-5
16.7 NAT Traversal .........................................................................................................................16-6
16.7.1 NAT Traversal Configuration............................................................................................... 16-6
16.7.2 Remote DNS Server..............................................................................................................16-7
16.8 ID Type and Content...............................................................................................................16-8
16.8.1 ID Type and Content Examples............................................................................................16-9
16.9 Pre-Shared Key.....................................................................................................................16-10
16.10 Editing VPN Rules ................................................................................................................16-10
16.11 IKE Phases.............................................................................................................................16-15
16.11.1 Negotiation Mode ...........................................................................................................16-17
16.11.2 Diffie-Hellman (DH) Key Groups .................................................................................. 16-17
16.11.3 Perfect Forward Secrecy (PFS).......................................................................................16-18
16.12 Configuring Advanced IKE Settings ...................................................................................16-18
16.13 Manual Key Setup ................................................................................................................16-25
16.13.1 Security Parameter Index (SPI).......................................................................................16-25
16.14 Configuring Manual Key .....................................................................................................16-26
16.15 Viewing SA Monitor..............................................................................................................16-30
16.16 Configuring Global Setting .................................................................................................. 16-32
16.17 Telecommuter VPN/IPSec Examples...................................................................................16-33
16.17.1 Telecommuters Sharing One VPN Rule Example..........................................................16-33
16.17.2 Telecommuters Using Unique VPN Rules Example ......................................................16-34
16.18 VPN and Remote Management ...........................................................................................16-36
Logs, Media Bandwidth Management and Maintenance...........................................................................VI
Chapter 17 Centralized Logs.....................................................................................................................17-1
17.1 View Log .................................................................................................................................. 17-1
17.2 Log Settings .............................................................................................................................17-2
Chapter 18 Media Bandwidth Management ............................................................................................18-1
18.1 Bandwidth Management Overview.......................................................................................18-1
18.1.1 Application-based Bandwidth Management Example ..........................................................18-1
18.1.2 Subnet-based Bandwidth Management Example..................................................................18-2
18.1.3 Application and Subnet-based Bandwidth Management Example .......................................18-2
18.1.4 Bandwidth Usage Example................................................................................................... 18-3
18.1.5 Bandwidth Management Priorities........................................................................................18-4
18.1.6 Bandwidth Management Services.........................................................................................18-5
18.1.7 Services.................................................................................................................................18-6
18.2 Configuration Screen..............................................................................................................18-8
18.3 Editing Bandwidth Management Rules ..............................................................................18-11
18.3.1 Bandwidth Borrowing.........................................................................................................18-11
18.4 Configuring Bandwidth Management Rules and Services................................................ 18-11
xiv Table of Contents
Prestige 334W User’s Guide
18.5 Monitor Screen..................................................................................................................... 18-13
Chapter 19 Maintenance ........................................................................................................................... 19-1
19.1 Maintenance Overview .......................................................................................................... 19-1
19.2 Status Screen........................................................................................................................... 19-1
19.2.1 System Statistics................................................................................................................... 19-2
19.3 DHCP Table Screen................................................................................................................ 19-4
19.4 Any IP Table ........................................................................................................................... 19-5
19.5 Association List....................................................................................................................... 19-5
19.6 F/W Upload Screen ................................................................................................................ 19-6
19.7 Configuration Screen............................................................................................................. 19-8
19.7.1 Backup Configuration .......................................................................................................... 19-9
19.7.2 Restore Configuration .......................................................................................................... 19-9
19.7.3 Back to Factory Defaults.................................................................................................... 19-11
19.8 Restart Screen........................................................................................................................19-11
SMT General Configuration ....................................................................................................................... VII
Chapter 20 Introducing the SMT ............................................................................................................. 20-1
20.1 SMT Introduction .................................................................................................................. 20-1
20.1.1 Procedure for SMT Configuration via Console Port............................................................ 20-1
20.1.2 Procedure for SMT Configuration via Telnet ...................................................................... 20-1
20.1.3 Entering Password................................................................................................................ 20-1
20.1.4 Prestige SMT Menu Overview............................................................................................. 20-2
20.2 Navigating the SMT Interface............................................................................................... 20-3
20.2.1 System Management Terminal Interface Summary ............................................................. 20-5
20.3 Changing the System Password ............................................................................................ 20-6
Chapter 21 Menu 1 General Setup ........................................................................................................... 21-1
21.1 General Setup ......................................................................................................................... 21-1
21.2 Procedure To Configure Menu 1........................................................................................... 21-1
21.2.1 Procedure to Configure Dynamic DNS................................................................................ 21-3
Chapter 22 Menu 2 WAN Setup................................................................................................................ 22-1
22.1 Introduction to WAN.............................................................................................................. 22-1
22.2 WAN Setup.............................................................................................................................. 22-1
Chapter 23 Menu 3 LAN Setup ................................................................................................................ 23-1
23.1 LAN Setup .............................................................................................................................. 23-1
23.1.1 General Ethernet Setup......................................................................................................... 23-1
23.2 Protocol Dependent Ethernet Setup ..................................................................................... 23-2
23.3 TCP/IP Ethernet Setup and DHCP ...................................................................................... 23-2
23.3.1 IP Alias Setup....................................................................................................................... 23-4
23.4 Wireless LAN Setup............................................................................................................... 23-6
23.4.1 Configuring MAC Address Filter......................................................................................... 23-9
23.4.2 Configuring Roaming on the Prestige................................................................................ 23-11
Chapter 24 Internet Access ....................................................................................................................... 24-1
Table of Contents xv
Prestige 334W User’s Guide
24.1 Introduction to Internet Access Setup...................................................................................24-1
24.2 Ethernet Encapsulation..........................................................................................................24-1
24.3 Configuring the PPTP Client .................................................................................................24-3
24.4 Configuring the PPPoE Client...............................................................................................24-4
24.5 Basic Setup Complete .............................................................................................................24-5
Chapter 25 Remote Node Configuration ..................................................................................................25-1
25.1 Introduction to Remote Node Setup......................................................................................25-1
25.2 Remote Node Profile Setup ....................................................................................................25-1
25.2.1 Ethernet Encapsulation .........................................................................................................25-1
25.2.2 PPPoE Encapsulation............................................................................................................25-4
25.2.3 PPTP Encapsulation..............................................................................................................25-6
25.3 Edit IP ...................................................................................................................................... 25-7
25.4 Remote Node Filter.................................................................................................................25-9
25.4.1 Traffic Redirect Setup.........................................................................................................25-10
Chapter 26 Static Route Setup...................................................................................................................26-1
26.1 IP Static Route Setup ..............................................................................................................26-1
Chapter 27 Dial-in User Setup...................................................................................................................27-1
27.1 Dial-in User Setup...................................................................................................................27-1
Chapter 28 Network Address Translation (NAT)..................................................................................... 28-1
28.1 Using NAT ...............................................................................................................................28-1
28.1.1 SUA (Single User Account) Versus NAT ............................................................................28-1
28.2 Applying NAT..........................................................................................................................28-1
28.3 NAT Setup................................................................................................................................28-3
28.3.1 Address Mapping Sets ..........................................................................................................28-4
28.4 Configuring a Server behind NAT.........................................................................................28-9
28.5 General NAT Examples........................................................................................................28-10
28.5.1 Example 1: Internet Access Only........................................................................................28-10
28.5.2 Example 2: Internet Access with an Inside Server..............................................................28-11
28.5.3 Example 3: Multiple Public IP Addresses With Inside Servers..........................................28-12
28.5.4 Example 4: NAT Unfriendly Application Programs...........................................................28-16
28.6 Configuring Trigger Port Forwarding ................................................................................ 28-18
Chapter 29 Enabling the Firewall .............................................................................................................29-1
29.1 Remote Management and the Firewall .................................................................................29-1
29.2 Access Methods .......................................................................................................................29-1
29.3 Enabling the Firewall..............................................................................................................29-1
SMT Advanced Management.....................................................................................................................VIII
Chapter 30 Filter Configuration................................................................................................................30-1
30.1 Introduction to Filters ............................................................................................................30-1
30.1.1 The Filter Structure of the Prestige .......................................................................................30-2
30.2 Configuring a Filter Set.......................................................................................................... 30-4
30.2.1 Configuring a Filter Rule ......................................................................................................30-6
xvi Table of Contents
Prestige 334W User’s Guide
30.2.2 Configuring a TCP/IP Filter Rule ........................................................................................ 30-6
30.2.3 Configuring a Generic Filter Rule...................................................................................... 30-11
30.3 Example Filter ...................................................................................................................... 30-13
30.4 Filter Types and NAT ........................................................................................................... 30-15
30.5 Firewall Versus Filters .........................................................................................................30-16
30.6 Applying a Filter .................................................................................................................. 30-16
30.6.1 Applying LAN Filters ........................................................................................................ 30-17
30.6.2 Applying Remote Node Filters........................................................................................... 30-17
Chapter 31 SNMP Configuration ............................................................................................................. 31-1
31.1 About SNMP........................................................................................................................... 31-1
31.2 Supported MIBs ..................................................................................................................... 31-2
31.3 SNMP Configuration ............................................................................................................. 31-2
31.4 SNMP Traps............................................................................................................................ 31-4
Chapter 32 System Security ...................................................................................................................... 32-1
32.1 System Security ...................................................................................................................... 32-1
32.1.1 System Password.................................................................................................................. 32-1
32.1.2 Configuring External RADIUS Server................................................................................. 32-1
32.1.3 802.1x................................................................................................................................... 32-3
Chapter 33 System Information and Diagnosis....................................................................................... 33-1
33.1 System Status.......................................................................................................................... 33-1
33.2 System Information................................................................................................................ 33-3
33.2.1 System Information..............................................................................................................33-3
33.2.2 Console Port Speed ..............................................................................................................33-4
33.3 Log and Trace......................................................................................................................... 33-5
33.3.1 Syslog Logging .................................................................................................................... 33-5
33.3.2 Call-Triggering Packet......................................................................................................... 33-8
33.4 Diagnostic................................................................................................................................ 33-9
33.4.1 WAN DHCP....................................................................................................................... 33-10
Chapter 34 Firmware and Configuration File Maintenance.................................................................. 34-1
34.1 Filename Conventions............................................................................................................34-1
34.2 Backup Configuration............................................................................................................34-2
34.2.1 Backup Configuration .......................................................................................................... 34-3
34.2.2 Using the FTP Command from the Command Line............................................................. 34-3
34.2.3 Example of FTP Commands from the Command Line........................................................ 34-4
34.2.4 GUI-based FTP Clients ........................................................................................................ 34-4
34.2.5 TFTP and FTP over WAN Management Limitations .......................................................... 34-4
34.2.6 Backup Configuration Using TFTP ..................................................................................... 34-5
34.2.7 TFTP Command Example.................................................................................................... 34-5
34.2.8 GUI-based TFTP Clients...................................................................................................... 34-6
34.3 Restore Configuration............................................................................................................ 34-6
34.3.1 Restore Using FTP ...............................................................................................................34-7
Table of Contents xvii
Prestige 334W User’s Guide
34.3.2 Restore Using FTP Session Example....................................................................................34-8
34.4 Uploading Firmware and Configuration Files .....................................................................34-8
34.4.1 Firmware File Upload...........................................................................................................34-8
34.4.2 Configuration File Upload ....................................................................................................34-9
34.4.3 FTP File Upload Command from the DOS Prompt Example.............................................34-10
34.4.4 FTP Session Example of Firmware File Upload.................................................................34-10
34.4.5 TFTP File Upload ...............................................................................................................34-10
34.4.6 TFTP Upload Command Example......................................................................................34-11
Chapter 35 System Maintenance...............................................................................................................35-1
35.1 Command Interpreter Mode..................................................................................................35-1
35.1.1 Command Syntax..................................................................................................................35-1
35.1.2 Command Usage...................................................................................................................35-2
35.2 Call Control Support ..............................................................................................................35-2
35.2.1 Budget Management .............................................................................................................35-3
35.2.2 Call History...........................................................................................................................35-4
35.3 Time and Date Setting ............................................................................................................35-4
35.3.1 Resetting the Time ................................................................................................................ 35-6
Chapter 36 Remote Management..............................................................................................................36-1
36.1 Remote Management .............................................................................................................. 36-1
36.1.1 Remote Management Limitations......................................................................................... 36-2
Chapter 37 Call Scheduling .......................................................................................................................37-1
37.1 Introduction to Call Scheduling.............................................................................................37-1
SMT VPN/IPSec.............................................................................................................................................IX
Chapter 38 VPN/IPSec Setup.....................................................................................................................38-1
38.1 VPN/IPSec Overview..............................................................................................................38-1
38.2 IPSec Summary Screen ..........................................................................................................38-2
38.3 IPSec Setup..............................................................................................................................38-5
38.4 IKE Setup ..............................................................................................................................38-10
38.5 Manual Setup ........................................................................................................................38-13
38.5.1 Active Protocol ...................................................................................................................38-13
38.5.2 Security Parameter Index (SPI)...........................................................................................38-13
Chapter 39 SA Monitor .............................................................................................................................. 39-1
39.1 SA Monitor Overview.............................................................................................................39-1
39.2 Using SA Monitor....................................................................................................................39-1
Appendices and Index ....................................................................................................................................X
Appendix A PPPoE ......................................................................................................................................A-1
Appendix B PPTP........................................................................................................................................ B-1
Appendix C NetBIOS Filter Commands ...................................................................................................C-1
Appendix D Log Descriptions.....................................................................................................................D-1
Appendix E Setting up Your Computer’s IP Address............................................................................... E-1
Appendix F Wireless LAN and IEEE 802.11 ............................................................................................. F-1
xviii Table of Contents
Prestige 334W User’s Guide
Appendix G Wireless LAN With IEEE 802.1x ......................................................................................... G-1
Appendix H Types of EAP Authentication................................................................................................ H-1
Appendix I Antenna Selection and Positioning Recommendation............................................................I-1
Appendix J Brute-Force Password Guessing Protection.......................................................................... J-1
Appendix K Triangle Route ....................................................................................................................... K-1
Appendix L Index.........................................................................................................................................L-1
Table of Contents xix
Prestige 334W User’s Guide
List of Figures
Figure 1-1 Secure Internet Access via Cable, DSL or Wireless Modem........................................................ 1-6
Figure 1-2 VPN Application .......................................................................................................................... 1-6
Figure 1-3 Internet Access Application Example........................................................................................... 1-7
Figure 2-1 Change Password Screen.............................................................................................................. 2-1
Figure 2-2 The MAIN MENU Screen of the Web Configurator.................................................................... 2-3
Figure 3-1 Wizard 1: General Setup............................................................................................................... 3-2
Figure 3-2 Wizard 2: Wireless LAN Setup .................................................................................................... 3-2
Figure 3-3 Wizard 3: Wireless LAN Setup: Basic Security ........................................................................... 3-4
Figure 3-4 Wizard 3: Wireless LAN Setup: Extend Security......................................................................... 3-5
Figure 3-5 Wizard 4: Ethernet Encapsulation ................................................................................................ 3-6
Figure 3-6 Wizard 4: PPPoE Encapsulation................................................................................................... 3-8
Figure 3-7 Wizard 4: PPTP Encapsulation..................................................................................................... 3-9
Figure 3-8 Wizard 5: WAN Setup ................................................................................................................ 3-13
Figure 3-9 Wizard Finish ............................................................................................................................. 3-15
Figure 4-1 Media Bandwidth Management Setup 1 ...................................................................................... 4-1
Figure 4-2 Media Bandwidth Management Setup 2: Services....................................................................... 4-2
Figure 4-3 Media Bandwidth Management Setup 3: Service Priority ........................................................... 4-3
Figure 4-4 Media Bandwidth Management Setup 4: Finish .......................................................................... 4-4
Figure 5-1 System General Setup .................................................................................................................. 5-1
Figure 5-2 DDNS........................................................................................................................................... 5-4
Figure 5-3 Password....................................................................................................................................... 5-6
Figure 5-4 Time Setting ................................................................................................................................. 5-7
Figure 6-1 Any IP Example Application ........................................................................................................ 6-3
Figure 6-2 IP .................................................................................................................................................. 6-5
Figure 6-3 Static DHCP ................................................................................................................................. 6-8
Figure 6-4 IP Alias ......................................................................................................................................... 6-9
Figure 7-1 IBSS (Ad-hoc) Wireless LAN...................................................................................................... 7-1
Figure 7-2 Basic Service set........................................................................................................................... 7-2
Figure 7-3 Extended Service Set.................................................................................................................... 7-3
Figure 7-4 RTS/CTS ...................................................................................................................................... 7-4
Figure 7-5 Wireless ........................................................................................................................................ 7-5
Figure 7-6 Roaming Example........................................................................................................................ 7-7
Figure 7-7 Roaming ....................................................................................................................................... 7-8
Figure 8-1 Prestige Wireless Security Levels ................................................................................................ 8-1
Figure 8-2 Wireless: No Security................................................................................................................... 8-2
Figure 8-3 WEP Authentication Steps............................................................................................................ 8-5
Figure 8-4 Wireless: Static WEP Encryption ................................................................................................. 8-7
Figure 8-5 WPA - PSK Authentication......................................................................................................... 8-10
List of Figures xxi
Prestige 334W User’s Guide
Figure 8-6 Wireless: WPA-PSK....................................................................................................................8-11
Figure 8-7 WPA with RADIUS Application Example..................................................................................8-14
Figure 8-8 Wireless: WPA ............................................................................................................................8-15
Figure 8-9 Wireless: 802.1x and Dynamic WEP ..........................................................................................8-18
Figure 8-10 Wireless: 802.1x and Static WEP..............................................................................................8-20
Figure 8-11 Wireless: 802.1x ........................................................................................................................8-23
Figure 8-12 MAC Address Filter..................................................................................................................8-26
Figure 8-13 Local User Database .................................................................................................................8-28
Figure 8-14 EAP Authentication...................................................................................................................8-30
Figure 8-15 RADIUS....................................................................................................................................8-31
Figure 9-1 WAN: Route ....................................................................................................................................9-2
Figure 9-2 Ethernet Encapsulation ....................................................................................................................9-3
Figure 9-3 PPPoE Encapsulation.......................................................................................................................9-5
Figure 9-4 PPTP Encapsulation.........................................................................................................................9-6
Figure 9-5 WAN: IP .........................................................................................................................................9-8
Figure 9-6 MAC Setup ...................................................................................................................................9-11
Figure 9-7 Traffic Redirect WAN Setup .......................................................................................................9-12
Figure 9-8 Traffic Redirect LAN Setup ........................................................................................................9-12
Figure 9-9 WAN: Traffic Redirect................................................................................................................... 9-13
Figure 10-1 How NAT Works.......................................................................................................................10-3
Figure 10-2 NAT Application With IP Alias ................................................................................................. 10-4
Figure 10-3 Multiple Servers Behind NAT Example.................................................................................... 10-8
Figure 10-4 SUA/NAT Setup........................................................................................................................10-9
Figure 10-5 Address Mapping ....................................................................................................................10-11
Figure 10-6 Address Mapping Edit............................................................................................................. 10-12
Figure 10-7 Trigger Port Forwarding Process: Example ............................................................................10-14
Figure 10-8 Trigger Port.............................................................................................................................10-15
Figure 11-1 Example of Static Routing Topology ........................................................................................ 11-1
Figure 11-2 Static Route............................................................................................................................... 11-2
Figure 11-3 Static Route: Edit ......................................................................................................................11-3
Figure 12-1 Configuring UPnP.....................................................................................................................12-3
Figure 13-1 Firewall: Settings ......................................................................................................................13-3
Figure 13-2 Firewall Rule Directions ...........................................................................................................13-5
Figure 13-3 Firewall: Filter...........................................................................................................................13-7
Figure 13-4 Firewall: Service .......................................................................................................................13-9
Figure 14-1 Remote Management: WWW ................................................................................................... 14-3
Figure 14-2 Telnet Configuration on a TCP/IP Network ..............................................................................14-4
Figure 14-3 Remote Management: Telnet.....................................................................................................14-5
Figure 14-4 Remote Management: FTP .......................................................................................................14-6
Figure 14-5 SNMP Management Model.......................................................................................................14-8
Figure 14-6 Remote Management: SNMP..................................................................................................14-10
xxii List of Figures
Prestige 334W User’s Guide
Figure 14-7 Remote Management: DNS.................................................................................................... 14-12
Figure 14-8 Security................................................................................................................................... 14-13
Figure 15-1 Encryption and Decryption....................................................................................................... 15-2
Figure 15-2 IPSec Architecture.................................................................................................................... 15-3
Figure 15-3 Transport and Tunnel Mode IPSec Encapsulation.................................................................... 15-4
Figure 16-1 IPSec Summary Fields ............................................................................................................. 16-3
Figure 16-2 VPN: Summary ........................................................................................................................ 16-4
Figure 16-3 NAT Router Between IPSec Routers........................................................................................ 16-6
Figure 16-4 VPN Host using Intranet DNS Server Example....................................................................... 16-7
Figure 16-5 VPN: Rule Setup (Basic).........................................................................................................16-11
Figure 16-6 Two Phases to Set Up the IPSec SA....................................................................................... 16-16
Figure 16-7 VPN IKE: Advanced .............................................................................................................. 16-19
Figure 16-8 Rule Setup: Manual................................................................................................................ 16-27
Figure 16-9 SA Monitor............................................................................................................................. 16-31
Figure 16-10 VPN: Global Setting............................................................................................................. 16-32
Figure 16-11 Telecommuters Sharing One VPN Rule Example ................................................................ 16-34
Figure 16-12 Telecommuters Using Unique VPN Rules Example ............................................................ 16-35
Figure 17-1 View Logs................................................................................................................................. 17-1
Figure 17-2 Log Settings.............................................................................................................................. 17-3
Figure 18-1 Application-based Bandwidth Management Example.............................................................. 18-2
Figure 18-2 Subnet-based Bandwidth Management Example ..................................................................... 18-2
Figure 18-3 Application and Subnet-based Bandwidth Management Example........................................... 18-3
Figure 18-4 Bandwidth Usage Example ...................................................................................................... 18-3
Figure 18-5 Maximize Bandwidth Usage Example ..................................................................................... 18-4
Figure 18-6 Bandwidth Management Configuration ................................................................................... 18-9
Figure 18-7 Bandwidth Management Edit..................................................................................................18-11
Figure 18-8 Bandwidth Management Monitor........................................................................................... 18-14
Figure 19-1 Maintenance Status................................................................................................................... 19-1
Figure 19-2 Maintenance System Statistics ................................................................................................. 19-3
Figure 19-3 Maintenance DHCP Table ........................................................................................................ 19-4
Figure 19-4 Maintenance Any IP ................................................................................................................. 19-5
Figure 19-5 Maintenance Association List................................................................................................... 19-6
Figure 19-6 Maintenance Firmware Upload................................................................................................ 19-6
Figure 19-7 Upload Warning........................................................................................................................ 19-7
Figure 19-8 Network Temporarily Disconnected......................................................................................... 19-7
Figure 19-9 Upload Error Message.............................................................................................................. 19-8
Figure 19-10 Maintenance Configuration.................................................................................................... 19-9
Figure 19-11 Configuration Restore Successful......................................................................................... 19-10
Figure 19-12 Temporarily Disconnected.................................................................................................... 19-10
Figure 19-13 Configuration Restore Error..................................................................................................19-11
Figure 19-14 Factory Defaults ....................................................................................................................19-11
List of Figures xxiii
Prestige 334W User’s Guide
Figure 19-15 System Restart.......................................................................................................................19-12
Figure 20-1 Login Screen .............................................................................................................................20-2
Figure 20-2 SMT Menu Overview ...............................................................................................................20-3
Figure 20-3 SMT Main Menu.......................................................................................................................20-5
Figure 20-4 Menu 23 System Password .......................................................................................................20-6
Figure 21-1 Menu 1 General Setup...............................................................................................................21-2
Figure 21-2 Menu 1.1 Configure Dynamic DNS..........................................................................................21-4
Figure 22-1 Menu 2 WAN Setup ..................................................................................................................22-1
Figure 23-1 Menu 3 LAN Setup...................................................................................................................23-1
Figure 23-2 Menu 3.1 LAN Port Filter Setup...............................................................................................23-1
Figure 23-3 Menu 3.2 TCP/IP and DHCP Ethernet Setup............................................................................23-2
Figure 23-4 Physical Network & Partitioned Logical Networks..................................................................23-5
Figure 23-5 Menu 3.2.1: IP Alias Setup........................................................................................................23-5
Figure 23-6 Menu 3.5 Wireless LAN Setup .................................................................................................23-7
Figure 23-7 Menu 3.5 Wireless LAN Setup .................................................................................................23-9
Figure 23-8 Menu 3.5.1 WLAN MAC Address Filter ................................................................................23-10
Figure 23-9 Menu 3.5 Wireless LAN Setup ...............................................................................................23-11
Figure 23-10 Menu 3.5.2 Roaming Configuration .....................................................................................23-12
Figure 24-1 Menu 4 Internet Access Setup...................................................................................................24-1
Figure 24-2 Internet Access Setup (PPTP) ...................................................................................................24-4
Figure 24-3 Internet Access Setup (PPPoE) .................................................................................................24-5
Figure 25-1 Menu 11.1 Remote Node Profile for Ethernet Encapsulation ...................................................25-2
Figure 25-2 Menu 11.1 Remote Node Profile for PPPoE Encapsulation......................................................25-4
Figure 25-3 Menu 11.1 Remote Node Profile for PPTP Encapsulation........................................................25-6
Figure 25-4 Menu 11.3 Remote Node Network Layer Options for Ethernet Encapsulation ........................25-7
Figure 25-5 Menu 11.5: Remote Node Filter (Ethernet Encapsulation) .......................................................25-9
Figure 25-6 Menu 11.5: Remote Node Filter (PPPoE or PPTP Encapsulation) .........................................25-10
Figure 25-7 Menu 11.6: Traffic Redirect Setup ..........................................................................................25-10
Figure 26-1 Menu 12 IP Static Route Setup .................................................................................................26-1
Figure 26-2 Menu12.1 Edit IP Static Route..................................................................................................26-2
Figure 27-1 Menu 14- Dial-in User Setup .................................................................................................... 27-1
Figure 27-2 Menu 14.1- Edit Dial-in User....................................................................................................27-1
Figure 28-1 Menu 4 Applying NAT for Internet Access ...............................................................................28-2
Figure 28-2 Menu 11.3 Applying NAT to the Remote Node ........................................................................28-3
Figure 28-3 Menu 15 NAT Setup..................................................................................................................28-4
Figure 28-4 Menu 15.1 Address Mapping Sets.............................................................................................28-4
Figure 28-5 Menu 15.1.255 SUA Address Mapping Rules ..........................................................................28-5
Figure 28-6 Menu 15.1.1 First Set................................................................................................................28-6
Figure 28-7 Menu 15.1.1.1 Editing/Configuring an Individual Rule in a Set...............................................28-8
Figure 28-8 Menu 15.2.1 NAT Server Setup ................................................................................................28-9
Figure 28-9 Multiple Servers Behind NAT Example.................................................................................. 28-10
xxiv List of Figures
Prestige 334W User’s Guide
Figure 28-10 NAT Example 1 .................................................................................................................... 28-10
Figure 28-11 Menu 4 Internet Access & NAT Example..............................................................................28-11
Figure 28-12 NAT Example 2 .....................................................................................................................28-11
Figure 28-13 Menu 15.2.1 Specifying an Inside Server............................................................................. 28-12
Figure 28-14 NAT Example 3 .................................................................................................................... 28-13
Figure 28-15 Example 3: Menu 11.3.......................................................................................................... 28-14
Figure 28-16 Example 3: Menu 15.1.1.1 ................................................................................................... 28-14
Figure 28-17 Example 3: Final Menu 15.1.1 ............................................................................................. 28-15
Figure 28-18 NAT Example 4 .................................................................................................................... 28-16
Figure 28-19 Example 4: Menu 15.1.1.1 Address Mapping Rule.............................................................. 28-17
Figure 28-20 Example 4: Menu 15.1.1 Address Mapping Rules ............................................................... 28-17
Figure 28-21 Menu 15.3 Trigger Port Setup .............................................................................................. 28-18
Figure 29-1 Menu 21.2 Firewall Setup ........................................................................................................ 29-2
Figure 30-1 Outgoing Packet Filtering Process ........................................................................................... 30-2
Figure 30-2 Filter Rule Process.................................................................................................................... 30-3
Figure 30-4 Menu 21: Filter and Firewall Setup.......................................................................................... 30-4
Figure 30-5 Menu 21.1: Filter Set Configuration......................................................................................... 30-4
Figure 30-6 Menu 21.1.1.1 TCP/IP Filter Rule............................................................................................ 30-7
Figure 30-7 Executing an IP Filter............................................................................................................. 30-10
Figure 30-8 Menu 21.1.4.1 Generic Filter Rule..........................................................................................30-11
Figure 30-9 Telnet Filter Example ............................................................................................................. 30-13
Figure 30-10 Example Filter: Menu 21.1.3.1............................................................................................. 30-14
Figure 30-11 Example Filter Rules Summary: Menu 21.1.3...................................................................... 30-15
Figure 30-12 Protocol and Device Filter Sets ............................................................................................ 30-16
Figure 30-13 Filtering LAN Traffic ........................................................................................................... 30-17
Figure 30-14 Filtering Remote Node Traffic ............................................................................................. 30-18
Figure 31-1 SNMP Management Model...................................................................................................... 31-1
Figure 31-2 Menu 22 SNMP Configuration................................................................................................. 31-3
Figure 32-1 Menu 23 System Security......................................................................................................... 32-1
Figure 32-2 Menu 23 System Security......................................................................................................... 32-1
Figure 32-3 Menu 23.2 System Security : RADIUS Server ........................................................................ 32-2
Figure 32-4 Menu 23 System Security......................................................................................................... 32-3
Figure 32-5 Menu 23.4 System Security : IEEE802.1x............................................................................... 32-4
Figure 33-1 Menu 24 System Maintenance ................................................................................................. 33-1
Figure 33-2 Menu 24.1 System Maintenance : Status.................................................................................. 33-2
Figure 33-3 Menu 24.2 System Information and Console Port Speed......................................................... 33-3
Figure 33-4 Menu 24.2.1 System Maintenance : Information ..................................................................... 33-4
Figure 33-5 Menu 24.2.2 System Maintenance : Change Console Port Speed............................................ 33-5
Figure 33-6 Menu 24.3.2 System Maintenance : Syslog Logging ............................................................... 33-5
Figure 33-7 Call-Triggering Packet Example .............................................................................................. 33-9
Figure 33-8 Menu 24.4 System Maintenance : Diagnostic........................................................................ 33-10
List of Figures xxv
Prestige 334W User’s Guide
Figure 33-9 LAN & WAN DHCP...............................................................................................................33-10
Figure 34-1 Telnet in Menu 24.5 ..................................................................................................................34-3
Figure 34-2 FTP Session Example................................................................................................................34-4
Figure 34-3 Telnet into Menu 24.6 ...............................................................................................................34-7
Figure 34-4 Restore Using FTP Session Example........................................................................................34-8
Figure 34-5 Telnet Into Menu 24.7.1 Upload System Firmware ..................................................................34-9
Figure 34-6 Telnet Into Menu 24.7.2 System Maintenance ..........................................................................34-9
Figure 34-7 FTP Session Example of Firmware File Upload.....................................................................34-10
Figure 35-1 Command Mode in Menu 24 ....................................................................................................35-1
Figure 35-2 Valid Commands .......................................................................................................................35-2
Figure 35-3 Menu 24.9 System Maintenance : Call Control ........................................................................35-2
Figure 35-4 Budget Management .................................................................................................................35-3
Figure 35-5 Call History...............................................................................................................................35-4
Figure 35-6 Menu 24: System Maintenance.................................................................................................35-5
Figure 35-7 Menu 24.10 System Maintenance: Time and Date Setting .......................................................35-5
Figure 36-1 Menu 24.11 – Remote Management Control ............................................................................36-1
Figure 37-1 Menu 26 Schedule Setup...........................................................................................................37-1
Figure 37-2 Menu 26.1 Schedule Set Setup..................................................................................................37-2
Figure 37-3 Applying Schedule Set(s) to a Remote Node (PPPoE)..............................................................37-4
Figure 38-1 VPN SMT Menu Tree ...............................................................................................................38-1
Figure 38-2 Menu 27 VPN/IPSec Setup.......................................................................................................38-2
Figure 38-3 Menu 27.1 IPSec Summary.......................................................................................................38-2
Figure 38-4 Menu 27.1.1 IPSec Setup..........................................................................................................38-6
Figure 38-5 Menu 27.1.1.1 IKE Setup............................................................................................................ 38-11
Figure 38-6 Menu 27.1.1.2 Manual Setup .................................................................................................. 38-14
Figure 39-1 Menu 27.2 SA Monitor .............................................................................................................39-1
xxvi List of Figures
Prestige 334W User’s Guide
List of Tables
Table 2-1 Screens Summary........................................................................................................................... 2-3
Table 3-1 Wizard 2: Wireless LAN Setup...................................................................................................... 3-3
Table 3-2 Wizard 3: Wireless LAN Setup: Basic Security............................................................................. 3-4
Table 3-3 Wizard 3: Wireless LAN Setup: Extend Security .......................................................................... 3-5
Table 3-4 Wizard 4: Ethernet Encapsulation.................................................................................................. 3-6
Table 3-5 Wizard 4: PPPoE Encapsulation .................................................................................................... 3-8
Table 3-6 Wizard 4: PPTP Encapsulation .................................................................................................... 3-10
Table 3-7 Private IP Address Ranges ............................................................................................................3-11
Table 3-8 Example of Network Properties for LAN Servers with Fixed IP Addresses................................ 3-12
Table 3-9 Wizard 5: WAN Setup .................................................................................................................. 3-13
Table 4-1 Media Bandwidth Management Setup 1........................................................................................ 4-2
Table 4-2 Media Bandwidth Management Setup 2: Services......................................................................... 4-3
Table 4-3 Media Bandwidth Management Setup 3: Service Priority............................................................. 4-4
Table 5-1 System General Setup.................................................................................................................... 5-2
Table 5-2 DDNS............................................................................................................................................. 5-4
Table 5-3 Password ........................................................................................................................................ 5-6
Table 5-4 Time Setting................................................................................................................................... 5-7
Table 6-1 IP.................................................................................................................................................... 6-5
Table 6-2 Static DHCP................................................................................................................................... 6-9
Table 6-3 IP Alias......................................................................................................................................... 6-10
Table 7-1 Wireless.......................................................................................................................................... 7-5
Table 7-2 Roaming......................................................................................................................................... 7-8
Table 8-1 Wireless: No Security..................................................................................................................... 8-2
Table 8-2 Wireless Security Relational Matrix .............................................................................................. 8-3
Table 8-3 Wireless: Static WEP Encryption................................................................................................... 8-7
Table 8-4 Wireless: WPA-PSK......................................................................................................................8-11
Table 8-5 Wireless: WPA ............................................................................................................................. 8-15
Table 8-6 Wireless: 802.1x and Dynamic WEP........................................................................................... 8-18
Table 8-7 Wireless: 802.1x and Static WEP................................................................................................. 8-20
Table 8-8 Wireless: 802.1x and No WEP..................................................................................................... 8-24
Table 8-9 MAC Address Filter..................................................................................................................... 8-26
Table 8-10 Local User Database .................................................................................................................. 8-29
Table 8-11 RADIUS..................................................................................................................................... 8-31
Table 9-1 WAN: Route..................................................................................................................................... 9-2
Table 9-2 Ethernet Encapsulation..................................................................................................................... 9-3
Table 9-3 PPPoE Encapsulation ....................................................................................................................... 9-5
Table 9-4 PPTP Encapsulation ......................................................................................................................... 9-7
Table 9-5 WAN: IP .......................................................................................................................................... 9-8
List of Tables xxvii
Prestige 334W User’s Guide
Table 9-6 WAN: Traffic Redirect ....................................................................................................................9-13
Table 10-1 NAT Definitions..........................................................................................................................10-1
Table 10-2 NAT Mapping Types...................................................................................................................10-5
Table 10-3 Services and Port Numbers.........................................................................................................10-7
Table 10-4 SUA/NAT Setup .........................................................................................................................10-9
Table 10-5 Address Mapping...................................................................................................................... 10-11
Table 10-6 Address Mapping Edit ..............................................................................................................10-13
Table 10-7 Trigger Port...............................................................................................................................10-15
Table 11-1 Static Route................................................................................................................................. 11-2
Table 11-2 Static Route: Edit ........................................................................................................................11-3
Table 12-1 Configuring UPnP ......................................................................................................................12-3
Table 13-1 Firewall: Settings........................................................................................................................13-3
Table 13-2 Firewall: Filter ............................................................................................................................13-7
Table 13-3 Firewall: Service.........................................................................................................................13-9
Table 14-1 Remote Management: WWW.....................................................................................................14-3
Table 14-2 Remote Management: Telnet ......................................................................................................14-5
Table 14-3 Remote Management: FTP.........................................................................................................14-6
Table 14-4 SNMP Traps................................................................................................................................14-9
Table 14-5 Remote Management: SNMP ................................................................................................... 14-11
Table 14-6 Remote Management: DNS......................................................................................................14-12
Table 14-7 Security..................................................................................................................................... 14-13
Table 15-1 VPN and NAT............................................................................................................................. 15-5
Table 16-1 AH and ESP................................................................................................................................16-2
Table 16-2 VPN: Summary...........................................................................................................................16-4
Table 16-3 Local ID Type and Content Fields ..............................................................................................16-8
Table 16-4 Peer ID Type and Content Fields ................................................................................................16-9
Table 16-5 Matching ID Type and Content Configuration Example ............................................................16-9
Table 16-6 Mismatching ID Type and Content Configuration Example.......................................................16-9
Table 16-7 VPN: Rule Setup (Basic) ..........................................................................................................16-12
Table 16-8 VPN IKE: Advanced.................................................................................................................16-20
Table 16-9 Rule Setup: Manual ..................................................................................................................16-28
Table 16-10 SA Monitor .............................................................................................................................16-31
Table 16-11 VPN: Global Setting ...............................................................................................................16-32
Table 16-12 Telecommuter and Headquarters Configuration Example ......................................................16-33
Table 17-1 View Logs...................................................................................................................................17-2
Table 17-2 log Settings .................................................................................................................................17-4
Table 18-1 Application and Subnet-based Bandwidth Management Example ............................................. 18-2
Table 18-2 Media Bandwidth Management Priorities ..................................................................................18-5
Table 18-3 Commonly Used Services...........................................................................................................18-6
Table 18-4 Bandwidth Management Configuration....................................................................................18-10
Table 18-5 Bandwidth Management Edit ...................................................................................................18-12
xxviii List of Tables
Prestige 334W User’s Guide
Table 19-1 Maintenance Status .................................................................................................................... 19-2
Table 19-2 Maintenance System Statistics................................................................................................... 19-3
Table 19-3 Maintenance DHCP Table.......................................................................................................... 19-4
Table 19-4 Maintenance Any IP................................................................................................................... 19-5
Table 19-5 Maintenance Association List .................................................................................................... 19-6
Table 19-6 Maintenance Firmware Upload.................................................................................................. 19-7
Table 19-7 Maintenance Restore Configuration ........................................................................................ 19-10
Table 20-1 Main Menu Commands.............................................................................................................. 20-4
Table 20-2 Main Menu Summary ................................................................................................................ 20-5
Table 21-1 Menu 1 General Setup................................................................................................................ 21-2
Table 21-2 Menu 1.1 Configure Dynamic DNS........................................................................................... 21-4
Table 22-1 Menu 2 WAN Setup ................................................................................................................... 22-1
Table 23-1 Menu 3.2: DHCP Ethernet Setup Fields .................................................................................... 23-2
Table 23-2 Menu 3.2: LAN TCP/IP Setup Fields ........................................................................................ 23-4
Table 23-3 Menu 3.2.1: IP Alias Setup......................................................................................................... 23-6
Table 23-4 Menu 3.5 Wireless LAN Setup .................................................................................................. 23-7
Table 23-5 Menu 3.5.1 WLAN MAC Address Filter ................................................................................. 23-10
Table 23-6 Menu 3.5.2 Roaming Configuration ........................................................................................ 23-12
Table 24-1 Menu 4: Internet Access Setup (Ethernet)................................................................................. 24-2
Table 24-2 New Fields in Menu 4 (PPTP) Screen ....................................................................................... 24-4
Table 24-3 New Fields in Menu 4 (PPPoE) screen...................................................................................... 24-5
Table 25-1 Menu 11.1 Remote Node Profile for Ethernet Encapsulation.................................................... 25-2
Table 25-2 Fields in Menu 11.1 (PPPoE Encapsulation Specific) ............................................................... 25-5
Table 25-3 Menu 11.1 Remote Node Profile for PPTP Encapsulation......................................................... 25-6
Table 25-4 Remote Node Network Layer Options....................................................................................... 25-7
Table 25-5 Menu 11.6: Traffic Redirect Setup ........................................................................................... 25-10
Table 26-1 Menu12.1 Edit IP Static Route................................................................................................... 26-2
Table 27-1 Menu 14.1- Edit Dial-in User..................................................................................................... 27-2
Table 28-1 Applying NAT in Menus 4 & 11.3 ............................................................................................. 28-3
Table 28-2 SUA Address Mapping Rules .................................................................................................... 28-5
Table 28-3 Menu 15.1.1 First Set................................................................................................................. 28-7
Table 28-4 Menu 15.1.1.1 Editing/Configuring an Individual Rule in a Set................................................ 28-8
Table 28-5 Menu 15.3 Trigger Port Setup.................................................................................................. 28-18
Table 30-1 Abbreviations Used in the Filter Rules Summary Menu............................................................ 30-5
Table 30-2 Rule Abbreviations Used ........................................................................................................... 30-6
Table 30-3 TCP/IP Filter Rule...................................................................................................................... 30-7
Table 30-4 Generic Filter Rule Menu Fields...............................................................................................30-11
Table 31-1 Menu 22 SNMP Configuration .................................................................................................. 31-3
Table 31-2 SNMP Traps............................................................................................................................... 31-4
Table 31-3 Ports and Permanent Virtual Circuits ......................................................................................... 31-4
Table 32-1 Menu 23.2 System Security : RADIUS Server.......................................................................... 32-2
List of Tables xxix
Prestige 334W User’s Guide
Table 32-2 Menu 23.4 System Security : IEEE802.1x .................................................................................32-4
Table 33-1 System Maintenance: Status Menu Fields ..................................................................................33-2
Table 33-2 Menu 24.2.1 System Maintenance : Information........................................................................33-4
Table 33-3 Menu 24.3.2 System Maintenance : Syslog and Accounting......................................................33-5
Table 33-4 System Maintenance Menu Diagnostic ....................................................................................33-11
Table 34-1 Filename Conventions ................................................................................................................ 34-2
Table 34-2 General Commands for GUI-based FTP Clients ........................................................................34-4
Table 34-3 General Commands for GUI-based TFTP Clients ......................................................................34-6
Table 35-1 Budget Management...................................................................................................................35-3
Table 35-2 Call History Fields......................................................................................................................35-4
Table 35-3 Time and Date Setting Fields......................................................................................................35-6
Table 36-1 Menu 24.11 – Remote Management Control.............................................................................. 36-2
Table 37-1 Menu 26.1 Schedule Set Setup ...................................................................................................37-2
Table 38-1 Menu 27.1 IPSec Summary ........................................................................................................38-2
Table 38-2 Menu 27.1.1 IPSec Setup............................................................................................................38-6
Table 38-3 Menu 27.1.1.1 IKE Setup .............................................................................................................38-11
Table 38-4 Active Protocol: Encapsulation and Security Protocol .............................................................38-13
Table 38-5 Menu 27.1.1.2 Manual Setup....................................................................................................38-14
Table 39-1 Menu 27.2 SA Monitor ............................................................................................................... 39-2
Table C-1 NetBIOS Filter Default Settings ...................................................................................................C-2
xxx List of Tables
Loading...