User Guide
Page 12
ZyXEL G-2000 Plus v2 User's Guide 3.3 Wizard Setup Wireless LAN 52 3.3.1 Name (SSID), Channel ID and Security 53 3.3.2 Configuring WEP or WPA(2)-PSK Security 54 3.3.3 Confirm Security Settings 55 3.4 Wizard Setup WAN 56 3.4.1 Ethernet ...56 3.4.2 PPPoE Encapsulation 58 3.4.3 PPTP Encapsulation 59 3.5 Wizard Setup WAN IP 61 3.5.1 WAN IP Address Assignment 61 3.5.2 IP Address and Subnet Mask 61 3.5.3 DNS Server Address Assignment 62 3.5.4 WAN MAC Address 62 3.6 Basic Setup Complete 64 Chapter 4 System Screens ...67 4.1 System Overview 67 4.2 Configuring General Setup 67 4.3 ...
ZyXEL G-2000 Plus v2 User's Guide 3.3 Wizard Setup Wireless LAN 52 3.3.1 Name (SSID), Channel ID and Security 53 3.3.2 Configuring WEP or WPA(2)-PSK Security 54 3.3.3 Confirm Security Settings 55 3.4 Wizard Setup WAN 56 3.4.1 Ethernet ...56 3.4.2 PPPoE Encapsulation 58 3.4.3 PPTP Encapsulation 59 3.5 Wizard Setup WAN IP 61 3.5.1 WAN IP Address Assignment 61 3.5.2 IP Address and Subnet Mask 61 3.5.3 DNS Server Address Assignment 62 3.5.4 WAN MAC Address 62 3.6 Basic Setup Complete 64 Chapter 4 System Screens ...67 4.1 System Overview 67 4.2 Configuring General Setup 67 4.3 ...
User Guide
Page 13
... / Network Address Translation (NAT 113 8.1 NAT Overview 113 8.1.1 NAT Definitions 113 8.1.2 What NAT Does 114 8.1.3 How NAT Works 114 8.1.4 NAT Application 115 8.1.5 NAT Mapping Types 116 8.2 Using NAT ...117 8.2.1 SUA (Single User Account) Versus NAT 117 8.3 SUA Server ...117 8.3.1 Default Server IP Address 118 8.3.2 Port Forwarding: Services and Port Numbers 118 8.3.3 Configuring Servers Behind SUA (Example 119 8.4 Configuring SUA Server 119 8.5 Configuring Address Mapping 121 Table of Contents 13 ZyXEL G-2000 Plus v2 User's Guide 6.2 Wireless Security Overview 82 6.2.1 SSID...
... / Network Address Translation (NAT 113 8.1 NAT Overview 113 8.1.1 NAT Definitions 113 8.1.2 What NAT Does 114 8.1.3 How NAT Works 114 8.1.4 NAT Application 115 8.1.5 NAT Mapping Types 116 8.2 Using NAT ...117 8.2.1 SUA (Single User Account) Versus NAT 117 8.3 SUA Server ...117 8.3.1 Default Server IP Address 118 8.3.2 Port Forwarding: Services and Port Numbers 118 8.3.3 Configuring Servers Behind SUA (Example 119 8.4 Configuring SUA Server 119 8.5 Configuring Address Mapping 121 Table of Contents 13 ZyXEL G-2000 Plus v2 User's Guide 6.2 Wireless Security Overview 82 6.2.1 SSID...
User Guide
Page 21
ZyXEL G-2000 Plus v2 User's Guide 34.2.1 Budget Management 349 34.2.2 Call History 350 34.3 Time and Date Setting 351 34.3.1 Resetting the Time 353 Chapter 35 Remote Management 355 35.1 Remote Management 355 35.1.1 Telnet ...356 35.1.2 FTP ...357 35.1.3 Web ...357 35.1.4 Remote Management Limitations 357 35.2 Remote Management and NAT 357 35.3 System Timeout 358 Chapter 36 Call Scheduling ...359 36.1 Introduction to Call Scheduling 359 Chapter 37 Troubleshooting 363 Problems Starting Up...
ZyXEL G-2000 Plus v2 User's Guide 34.2.1 Budget Management 349 34.2.2 Call History 350 34.3 Time and Date Setting 351 34.3.1 Resetting the Time 353 Chapter 35 Remote Management 355 35.1 Remote Management 355 35.1.1 Telnet ...356 35.1.2 FTP ...357 35.1.3 Web ...357 35.1.4 Remote Management Limitations 357 35.2 Remote Management and NAT 357 35.3 System Timeout 358 Chapter 36 Call Scheduling ...359 36.1 Introduction to Call Scheduling 359 Chapter 37 Troubleshooting 363 Problems Starting Up...
User Guide
Page 29
... System Maintenance : Time and Date Setting 352 Figure 203 Menu 24.11 - ZyXEL G-2000 Plus v2 User's Guide Figure 167 Example Filter: Menu 21.1.3.1 307 Figure 168 Example Filter Rules Summary: Menu 21.1.3 308 Figure 169 Protocol and Device Filter Sets 309 Figure 170 Filtering LAN Traffic 310 Figure 171 Filtering Remote Node Traffic 310 Figure 172 Menu 21.2 Firewall Setup 312 Figure 173 SNMP Management Model 313 Figure 174...
... System Maintenance : Time and Date Setting 352 Figure 203 Menu 24.11 - ZyXEL G-2000 Plus v2 User's Guide Figure 167 Example Filter: Menu 21.1.3.1 307 Figure 168 Example Filter Rules Summary: Menu 21.1.3 308 Figure 169 Protocol and Device Filter Sets 309 Figure 170 Filtering LAN Traffic 310 Figure 171 Filtering Remote Node Traffic 310 Figure 172 Menu 21.2 Firewall Setup 312 Figure 173 SNMP Management Model 313 Figure 174...
User Guide
Page 34
ZyXEL G-2000 Plus v2 User's Guide Table 124 Call History Fields 351 Table 125 System Maintenance : Time and Date Setting 352 Table 126 ...356 Table 127 Menu 26.1 Schedule Set Setup 361 Table 128 Troubleshooting the Start-Up of Your ZyXEL device 363 Table 129 Troubleshooting the Ethernet Interface 363 Table 130 Troubleshooting the Password 364 Table 131 Troubleshooting Telnet 364 Table 132 Troubleshooting the WLAN Interface 364 Table 133 Hardware 365 Table...
ZyXEL G-2000 Plus v2 User's Guide Table 124 Call History Fields 351 Table 125 System Maintenance : Time and Date Setting 352 Table 126 ...356 Table 127 Menu 26.1 Schedule Set Setup 361 Table 128 Troubleshooting the Start-Up of Your ZyXEL device 363 Table 129 Troubleshooting the Ethernet Interface 363 Table 130 Troubleshooting the Password 364 Table 131 Troubleshooting Telnet 364 Table 132 Troubleshooting the WLAN Interface 364 Table 133 Hardware 365 Table...
User Guide
Page 37
... the LAN ports on your ZyXEL device. 1.2 Features The following sections describe the features of the ZyXEL device. ZyXEL G-2000 Plus v2 User's Guide CHAPTER 1 Getting to Know Your Device This chapter introduces the main features and applications of the ZyXEL device. 1.1 Introducing the ZyXEL G-2000 Plus v2 The ZyXEL G-2000 Plus v2 is easy to install and configure. The ZyXEL device is a wireless access point and a broadband router with a built-in switch rolled into one. You can share an Internet connection (through a cable or DSL modem...
... the LAN ports on your ZyXEL device. 1.2 Features The following sections describe the features of the ZyXEL device. ZyXEL G-2000 Plus v2 User's Guide CHAPTER 1 Getting to Know Your Device This chapter introduces the main features and applications of the ZyXEL device. 1.1 Introducing the ZyXEL G-2000 Plus v2 The ZyXEL G-2000 Plus v2 is easy to install and configure. The ZyXEL device is a wireless access point and a broadband router with a built-in switch rolled into one. You can share an Internet connection (through a cable or DSL modem...
User Guide
Page 41
ZyXEL G-2000 Plus v2 User's Guide Universal Plug and Play (UPnP) Using the standard TCP/IP protocol, the ZyXEL device and other UPnP-enabled devices can have a static hostname alias for this service. It allows your regular WAN connection fails. Network Address Translation (NAT) NAT (Network Address Translation - No configuration is needed to use their existing network configuration with newer broadband technologies such as the Internet. PPPoE Support (RFC2516) PPPoE (Point-to a private server, creating a Virtual Private Network (VPN) using a TCP/IP-based network. Use PPTP to ...
ZyXEL G-2000 Plus v2 User's Guide Universal Plug and Play (UPnP) Using the standard TCP/IP protocol, the ZyXEL device and other UPnP-enabled devices can have a static hostname alias for this service. It allows your regular WAN connection fails. Network Address Translation (NAT) NAT (Network Address Translation - No configuration is needed to use their existing network configuration with newer broadband technologies such as the Internet. PPPoE Support (RFC2516) PPPoE (Point-to a private server, creating a Virtual Private Network (VPN) using a TCP/IP-based network. Use PPTP to ...
User Guide
Page 42
... Network Management Protocol) is the protocol used for each LAN network. It can access from the actual real DHCP server to support multicast groups. The SMT is a member of the ZyXEL device are transmitted in message logging and packet tracing. • Unix syslog facility support. 42 Chapter 1 Getting to a group of hosts. ZyXEL G-2000 Plus v2 User's Guide DHCP (Dynamic Host Configuration Protocol) DHCP (Dynamic Host Configuration Protocol) allows the individual clients (computers) to override the default routing...
... Network Management Protocol) is the protocol used for each LAN network. It can access from the actual real DHCP server to support multicast groups. The SMT is a member of the ZyXEL device are transmitted in message logging and packet tracing. • Unix syslog facility support. 42 Chapter 1 Getting to a group of hosts. ZyXEL G-2000 Plus v2 User's Guide DHCP (Dynamic Host Configuration Protocol) DHCP (Dynamic Host Configuration Protocol) allows the individual clients (computers) to override the default routing...
User Guide
Page 49
ZyXEL G-2000 Plus v2 User's Guide Table 3 Web Configurator Screens Summary (continued) LINK ADVANCED SUB-LINK SYSTEM LAN WIRELESS WAN SUA/NAT STATIC ROUTE FIREWALL CONTENT FILTER REMOTE MGNT UPNP AUTH. Use this screen to configure SUA/NAT settings. Use this screen to configure port addresses and security settings for the categories that you selected. Use this screen to exit the web configurator. Chapter 2 Introducing the Web Configurator 49 SERVER CERTIFICATES LOGS MAINTENANCE LOGOUT FUNCTION Use this icon to configure LAN TCP/IP settings, enable IP Alias and other...
ZyXEL G-2000 Plus v2 User's Guide Table 3 Web Configurator Screens Summary (continued) LINK ADVANCED SUB-LINK SYSTEM LAN WIRELESS WAN SUA/NAT STATIC ROUTE FIREWALL CONTENT FILTER REMOTE MGNT UPNP AUTH. Use this screen to configure SUA/NAT settings. Use this screen to configure port addresses and security settings for the categories that you selected. Use this screen to exit the web configurator. Chapter 2 Introducing the Web Configurator 49 SERVER CERTIFICATES LOGS MAINTENANCE LOGOUT FUNCTION Use this icon to configure LAN TCP/IP settings, enable IP Alias and other...
User Guide
Page 62
... using the factory default or cloning the MAC address from 192.168.1.1 to dynamically assign the DNS server IP addresses. 3.5.4 WAN MAC Address Every Ethernet device has a unique MAC (Media Access Control) address. Let's say you are reserved). The subnet mask specifies the network number portion of an IP address. The ZyXEL device can access it. Once it , you must know the IP address of a computer before you a dynamic IP address when the connection is successfully configured, the address will not change the setting...
... using the factory default or cloning the MAC address from 192.168.1.1 to dynamically assign the DNS server IP addresses. 3.5.4 WAN MAC Address Every Ethernet device has a unique MAC (Media Access Control) address. Let's say you are reserved). The subnet mask specifies the network number portion of an IP address. The ZyXEL device can access it. Once it , you must know the IP address of a computer before you a dynamic IP address when the connection is successfully configured, the address will not change the setting...
User Guide
Page 142
... the WAN, this data can be stored. When the ZyXEL device receives any new connection has its SYN flag set and its connection information is the case with the default policy), the connection will create a cache entry. For instance, any connection information (such as IP addresses, TCP ports, sequence numbers, etc. All of the security policy (as FTP and RealAudio) utilize multiple network connections simultaneously. Its IP address and port pairs will allow...
... the WAN, this data can be stored. When the ZyXEL device receives any new connection has its SYN flag set and its connection information is the case with the default policy), the connection will create a cache entry. For instance, any connection information (such as IP addresses, TCP ports, sequence numbers, etc. All of the security policy (as FTP and RealAudio) utilize multiple network connections simultaneously. Its IP address and port pairs will allow...
User Guide
Page 143
... Firewalls 143 At this point, the remote server will open a data connection from the Internet would normally be used to achieve this . 10.6 Guidelines For Enhancing Security With Your Firewall 1 Change the default password via SMT or web configurator. 2 Think about access control before you connect a console port to the network in a secured (locked) room. 10.7 Packet Filtering Vs Firewall Below are enabled, protect against IP spoofing by configuring the services to block packets for the anticipated data connection. ZyXEL G-2000 Plus v2 User's Guide...
... Firewalls 143 At this point, the remote server will open a data connection from the Internet would normally be used to achieve this . 10.6 Guidelines For Enhancing Security With Your Firewall 1 Change the default password via SMT or web configurator. 2 Think about access control before you connect a console port to the network in a secured (locked) room. 10.7 Packet Filtering Vs Firewall Below are enabled, protect against IP spoofing by configuring the services to block packets for the anticipated data connection. ZyXEL G-2000 Plus v2 User's Guide...
User Guide
Page 159
... previously. Authentication protocol used to IP numbers. Border Gateway Protocol. www.zyxel.com) to find out if a user is a UNIX or Internet related command that the ZyXEL device already supports. Finger is logged on the LAN. 11.8 Predefined Services The Available Services list box in brackets. Figure 65 My Service Example Rule Summary ZyXEL G-2000 Plus v2 User's Guide Rule 1: Allows a My Service connection from White Pines Software. For example, look at the default configuration labeled (DNS). (UDP/TCP:53) means UDP port 53...
... previously. Authentication protocol used to IP numbers. Border Gateway Protocol. www.zyxel.com) to find out if a user is a UNIX or Internet related command that the ZyXEL device already supports. Finger is logged on the LAN. 11.8 Predefined Services The Available Services list box in brackets. Figure 65 My Service Example Rule Summary ZyXEL G-2000 Plus v2 User's Guide Rule 1: Allows a My Service connection from White Pines Software. For example, look at the default configuration labeled (DNS). (UDP/TCP:53) means UDP port 53...
User Guide
Page 228
... instructions in this field or click Browse ... Note: Do not turn off the ZyXEL device while firmware upload is in this screen. After you see the Firmware Upload in Process screen, wait two minutes before you can upload them. See the Firmware and Configuration File Maintenance chapter for upgrading firmware using FTP/TFTP commands. to two minutes. Upload DESCRIPTION Type in the location of the file...
... instructions in this field or click Browse ... Note: Do not turn off the ZyXEL device while firmware upload is in this screen. After you see the Firmware Upload in Process screen, wait two minutes before you can upload them. See the Firmware and Configuration File Maintenance chapter for upgrading firmware using FTP/TFTP commands. to two minutes. Upload DESCRIPTION Type in the location of the file...
User Guide
Page 239
... Firewall Setup 22. Static Routing Setup 14. Remote Node Setup 12. General Setup 2. ZyXEL G-2000 Plus v2 User's Guide Figure 110 ZyXEL device SMT Main Menu Copyright (c) 1994 - 2004 ZyXEL Communications Corp. WAN Setup 3. SNMP Configuration 23. Exit Enter Menu Selection Number: 19.5.1 System Management Terminal Interface Summary Table 84 Main Menu Summary # MENU TITLE DESCRIPTION 1 General Setup Use this menu to set up your general information. 2 WAN Setup Use this menu to clone a MAC address from a computer on the ZyXEL device. 15 NAT Setup Use...
... Firewall Setup 22. Static Routing Setup 14. Remote Node Setup 12. General Setup 2. ZyXEL G-2000 Plus v2 User's Guide Figure 110 ZyXEL device SMT Main Menu Copyright (c) 1994 - 2004 ZyXEL Communications Corp. WAN Setup 3. SNMP Configuration 23. Exit Enter Menu Selection Number: 19.5.1 System Management Terminal Interface Summary Table 84 Main Menu Summary # MENU TITLE DESCRIPTION 1 General Setup Use this menu to set up your general information. 2 WAN Setup Use this menu to clone a MAC address from a computer on the ZyXEL device. 15 NAT Setup Use...
User Guide
Page 279
... on port forwarding in the chapter on NAT web configurator screens for further information on the LAN. Chapter 27 Network Address Translation (NAT) 279 ZyXEL G-2000 Plus v2 User's Guide Table 102 Applying NAT in Menus 4 & 11.3 FIELD NAT DESCRIPTION Press [SPACE BAR] and then [ENTER] to select Full Feature if you have just one public WAN IP address for your ZyXEL device. The SMT uses the address mapping set . Set 255 is a list of LAN servers mapped to disable NAT...
... on port forwarding in the chapter on NAT web configurator screens for further information on the LAN. Chapter 27 Network Address Translation (NAT) 279 ZyXEL G-2000 Plus v2 User's Guide Table 102 Applying NAT in Menus 4 & 11.3 FIELD NAT DESCRIPTION Press [SPACE BAR] and then [ENTER] to select Full Feature if you have just one public WAN IP address for your ZyXEL device. The SMT uses the address mapping set . Set 255 is a list of LAN servers mapped to disable NAT...
User Guide
Page 363
... front panel is installed and working properly. In this case, you may have a hardware problem. After each problem description, some instructions are using the supplied power adaptor and that the IP address and the subnet mask of the Ethernet device. Problems with the Ethernet Interface Table 129 Troubleshooting the Ethernet Interface PROBLEM CORRECTIVE ACTION Cannot access the ZyXEL device from the LAN. Verify that it is receiving reboots automatically enough power. sometimes. ZyXEL G-2000 Plus v2 User's Guide CHAPTER 37 Troubleshooting This chapter...
... front panel is installed and working properly. In this case, you may have a hardware problem. After each problem description, some instructions are using the supplied power adaptor and that the IP address and the subnet mask of the Ethernet device. Problems with the Ethernet Interface Table 129 Troubleshooting the Ethernet Interface PROBLEM CORRECTIVE ACTION Cannot access the ZyXEL device from the LAN. Verify that it is receiving reboots automatically enough power. sometimes. ZyXEL G-2000 Plus v2 User's Guide CHAPTER 37 Troubleshooting This chapter...
User Guide
Page 366
... Service attacks such as Ping of Death, SYN Flood, LAND, Smurf etc. ZyXEL G-2000 Plus v2 User's Guide Table 134 Firmware (continued) Management Wireless Data modulation type RF Output Power Security Firewall NAT/SUA Content Filtering Static Routes Logs Embedded Web Configurator CLI (Command Line Interpreter) Remote Management via Telnet or Web SMT (System Management Terminal) SNMP Management Embedded FTP/TFTP server for firmware downloading, configuration backup and restoration with large rom file support Syslog Built-in Diagnostic Tools for FLASH memory, DRAM, LAN ports and wireless ports...
... Service attacks such as Ping of Death, SYN Flood, LAND, Smurf etc. ZyXEL G-2000 Plus v2 User's Guide Table 134 Firmware (continued) Management Wireless Data modulation type RF Output Power Security Firewall NAT/SUA Content Filtering Static Routes Logs Embedded Web Configurator CLI (Command Line Interpreter) Remote Management via Telnet or Web SMT (System Management Terminal) SNMP Management Embedded FTP/TFTP server for firmware downloading, configuration backup and restoration with large rom file support Syslog Built-in Diagnostic Tools for FLASH memory, DRAM, LAN ports and wireless ports...
User Guide
Page 411
... need the IP address of key exchange messages from WPA include key caching and pre-authentication. However, you must run Windows XP to the RADIUS server. 411 "DS" is the distribution system. 1 The AP passes the wireless client's authentication request to use WPA. The encryption mechanisms used to authenticate wireless stations using an external RADIUS database. This prevent all wireless devices. These two features are the same. At the time of WEP) User Authentication WPA...
... need the IP address of key exchange messages from WPA include key caching and pre-authentication. However, you must run Windows XP to the RADIUS server. 411 "DS" is the distribution system. 1 The AP passes the wireless client's authentication request to use WPA. The encryption mechanisms used to authenticate wireless stations using an external RADIUS database. This prevent all wireless devices. These two features are the same. At the time of WEP) User Authentication WPA...
User Guide
Page 436
ZyXEL G-2000 Plus v2 User's Guide Remote Node 324 Remote Node Filter 271 Removing 6 Reorient 4 Repair 6, 7 Replace 7 Replacement 7 Reproduction 3 Required fields 238 Reset Button 38 Restore 7, 231 Restore Configuration 340 Restrict Web Features 164 Return Material Authorization (RMA) Number 7 Returned Products 7 Returns 7 RF signals 404 Rights 3 Rights, Legal 7 RIP 74, 270 Version 270 Risk 6 Risks 6 RMA 7 Roaming 99, 419 Example 420 Requirements 420 Route 265 RTS Threshold 402 Rules 145, 148 Checklist 146 Creating...
ZyXEL G-2000 Plus v2 User's Guide Remote Node 324 Remote Node Filter 271 Removing 6 Reorient 4 Repair 6, 7 Replace 7 Replacement 7 Reproduction 3 Required fields 238 Reset Button 38 Restore 7, 231 Restore Configuration 340 Restrict Web Features 164 Return Material Authorization (RMA) Number 7 Returned Products 7 Returns 7 RF signals 404 Rights 3 Rights, Legal 7 RIP 74, 270 Version 270 Risk 6 Risks 6 RMA 7 Roaming 99, 419 Example 420 Requirements 420 Route 265 RTS Threshold 402 Rules 145, 148 Checklist 146 Creating...