User Guide
Page 12
ZyXEL G-2000 Plus v2 User's Guide 3.3 Wizard Setup Wireless LAN 52 3.3.1 Name (... Overview 67 4.2 Configuring General Setup 67 4.3 Dynamic DNS 68 4.3.1 DynDNS Wildcard 68 4.4 Configuring Dynamic DNS 69 4.5 Configuring Password 70 4.6 Configuring Time Setting 71 Chapter 5 LAN Screens...73 5.1 LAN Overview ...73 5.2 DHCP Setup ...73 5.2.1 IP ...Pool Setup 73 5.2.2 System DNS Servers 73 5.3 LAN TCP/IP ...73 5.3.1 Factory LAN Defaults 73 5.3.2 IP Address and Subnet Mask 74 5.3.3 RIP Setup 74 5.3.4 Multicast ...74 5.4 Configuring IP 75 5.5 Configuring Static...
ZyXEL G-2000 Plus v2 User's Guide 3.3 Wizard Setup Wireless LAN 52 3.3.1 Name (... Overview 67 4.2 Configuring General Setup 67 4.3 Dynamic DNS 68 4.3.1 DynDNS Wildcard 68 4.4 Configuring Dynamic DNS 69 4.5 Configuring Password 70 4.6 Configuring Time Setting 71 Chapter 5 LAN Screens...73 5.1 LAN Overview ...73 5.2 DHCP Setup ...73 5.2.1 IP ...Pool Setup 73 5.2.2 System DNS Servers 73 5.3 LAN TCP/IP ...73 5.3.1 Factory LAN Defaults 73 5.3.2 IP Address and Subnet Mask 74 5.3.3 RIP Setup 74 5.3.4 Multicast ...74 5.4 Configuring IP 75 5.5 Configuring Static...
User Guide
Page 17
ZyXEL G-2000 Plus v2 User's Guide 17.2 Configuring Log Settings 218 17.3 Configuring Reports 221 Chapter 18 Maintenance ...223 18.1 Maintenance Overview 223 18.2 System Status Screen 223 18.2.1 ... 231 18.6.2 Restore Configuration 231 18.6.3 Back to Factory Defaults 233 18.7 Restart Screen 233 Chapter 19 Introducing the SMT 235 19.1 SMT Introduction 235 19.2 Connect to your ZyXEL device Using Telnet 235 19.2.1 Entering Password 235 19.3 Changing the System Password 236 19.4 ZyXEL device SMT Menu Overview Example 236 19.5 Navigating the...
ZyXEL G-2000 Plus v2 User's Guide 17.2 Configuring Log Settings 218 17.3 Configuring Reports 221 Chapter 18 Maintenance ...223 18.1 Maintenance Overview 223 18.2 System Status Screen 223 18.2.1 ... 231 18.6.2 Restore Configuration 231 18.6.3 Back to Factory Defaults 233 18.7 Restart Screen 233 Chapter 19 Introducing the SMT 235 19.1 SMT Introduction 235 19.2 Connect to your ZyXEL device Using Telnet 235 19.2.1 Entering Password 235 19.3 Changing the System Password 236 19.4 ZyXEL device SMT Menu Overview Example 236 19.5 Navigating the...
User Guide
Page 38
... encryption, authentication and key management than WPA. Key differences between WPA(2) and WEP are improved data encryption and user authentication. ZyXEL G-2000 Plus v2 User's Guide 10/100M Auto-crossover Ethernet/Fast Ethernet Interface The LAN interface automatically adjusts to either a crossover or straight-through...configurator to turn this button to restore the factory default password to /from its wireless stations. WPA2 (IEEE 802.11i) is a wireless security standard that can authenticate wireless clients or other wireless networks.The ZyXEL device can also function as an AP and as...
... encryption, authentication and key management than WPA. Key differences between WPA(2) and WEP are improved data encryption and user authentication. ZyXEL G-2000 Plus v2 User's Guide 10/100M Auto-crossover Ethernet/Fast Ethernet Interface The LAN interface automatically adjusts to either a crossover or straight-through...configurator to turn this button to restore the factory default password to /from its wireless stations. WPA2 (IEEE 802.11i) is a wireless security standard that can authenticate wireless clients or other wireless networks.The ZyXEL device can also function as an AP and as...
User Guide
Page 40
... prevention, real time alerts, reports and logs. Use an EAP-compatible RADIUS (RFC2138, 2139 - By default, when the firewall is initiated from the WAN to 32 users using EAP (Extensible Authentication Protocol). Content ...ZyXEL G-2000 Plus v2 User's Guide SSL Passthrough SSL (Secure Sockets Layer) uses a public key to encrypt data that require an SSL connection start with DoS (Denial of Service) protection. Both Netscape Navigator and Internet Explorer support SSL, and many Web sites use the protocol to enhance user authentication. Brute-Force Password Guessing Protection The ZyXEL...
... prevention, real time alerts, reports and logs. Use an EAP-compatible RADIUS (RFC2138, 2139 - By default, when the firewall is initiated from the WAN to 32 users using EAP (Extensible Authentication Protocol). Content ...ZyXEL G-2000 Plus v2 User's Guide SSL Passthrough SSL (Secure Sockets Layer) uses a public key to encrypt data that require an SSL connection start with DoS (Denial of Service) protection. Both Netscape Navigator and Internet Explorer support SSL, and many Web sites use the protocol to enhance user authentication. Brute-Force Password Guessing Protection The ZyXEL...
User Guide
Page 45
... Navigator 7.0 and later versions with JavaScript enabled. Note: If you do not change your password (highly recommended) as Microsoft Internet Explorer or Netscape Navigator. Type a new password (and retype it to confirm) and click Apply or click Ignore. It is recommended that... Introducing the Web Configurator 45 The default IP address of its screens. ZyXEL G-2000 Plus v2 User's Guide CHAPTER 2 Introducing the Web Configurator This chapter describes how to access the ZyXEL device web configurator and provides an overview of the ZyXEL device is properly connected and prepare ...
... Navigator 7.0 and later versions with JavaScript enabled. Note: If you do not change your password (highly recommended) as Microsoft Internet Explorer or Netscape Navigator. Type a new password (and retype it to confirm) and click Apply or click Ignore. It is recommended that... Introducing the Web Configurator 45 The default IP address of its screens. ZyXEL G-2000 Plus v2 User's Guide CHAPTER 2 Introducing the Web Configurator This chapter describes how to access the ZyXEL device web configurator and provides an overview of the ZyXEL device is properly connected and prepare ...
User Guide
Page 46
Simply log back into the ZyXEL device if this device. Note: The management session automatically times out when the time period set in the Replace Certificate screen to create a certificate using your ZyXEL device's MAC address that will be specific to this happens to you. 46 Chapter 2 Introducing the Web Configurator ZyXEL G-2000 Plus v2 User's Guide Figure 3 Change Password Screen 6 Click Apply in the Administrator Inactivity Timer field expires (default five minutes). Figure 4 Replace Certificate Screen You should now see the MAIN MENU screen.
Simply log back into the ZyXEL device if this device. Note: The management session automatically times out when the time period set in the Replace Certificate screen to create a certificate using your ZyXEL device's MAC address that will be specific to this happens to you. 46 Chapter 2 Introducing the Web Configurator ZyXEL G-2000 Plus v2 User's Guide Figure 3 Change Password Screen 6 Click Apply in the Administrator Inactivity Timer field expires (default five minutes). Figure 4 Replace Certificate Screen You should now see the MAIN MENU screen.
User Guide
Page 47
... corner of most screens) to navigate the web configurator from the MAIN MENU screen. The password will be reset to the default of 9600bps with the factory-default configuration file. ZyXEL G-2000 Plus v2 User's Guide 2.3 Resetting the ZyXEL device If you forget your password or cannot access the web configurator, you will need to 1234, also. 2.3.1 .Procedure To...
... corner of most screens) to navigate the web configurator from the MAIN MENU screen. The password will be reset to the default of 9600bps with the factory-default configuration file. ZyXEL G-2000 Plus v2 User's Guide 2.3 Resetting the ZyXEL device If you forget your password or cannot access the web configurator, you will need to 1234, also. 2.3.1 .Procedure To...
User Guide
Page 49
...and restore configuration or restore the ZyXEL device to enable UPnP on the ZyXEL device. ZyXEL G-2000 Plus v2 User's Guide Table 3 Web ...self-signed certificates or certification requests and import the ZyXEL device's CAsigned certificates. You can also use this...rules on the ZyXEL device. These screens also lets you view the status of the ZyXEL device and lets...FTP, WWW, SNMP and DNS protocols on the ZyXEL device. This screen allows you perform a restart... and other advanced properties. You can also activate your password and configure the time settings. Use this screen to...
...and restore configuration or restore the ZyXEL device to enable UPnP on the ZyXEL device. ZyXEL G-2000 Plus v2 User's Guide Table 3 Web ...self-signed certificates or certification requests and import the ZyXEL device's CAsigned certificates. You can also use this...rules on the ZyXEL device. These screens also lets you view the status of the ZyXEL device and lets...FTP, WWW, SNMP and DNS protocols on the ZyXEL device. This screen allows you perform a restart... and other advanced properties. You can also activate your password and configure the time settings. Use this screen to...
User Guide
Page 57
... not log in this screen. Chapter 3 Wizard Setup 57 Figure 11 Ethernet Encapsulation ZyXEL G-2000 Plus v2 User's Guide The following fields are not applicable (N/A) for a dial-up connection. Password Type the password associated with the user name above. The following table describes the labels in periodically....authentication method), or Telia Login. Back Click Back to return to continue. Service Type Choose from 1 to 59 (30 default) for the ZyXEL device to you one. Login Server This field only applies when you select Telia Login in the Service Type field. ...
... not log in this screen. Chapter 3 Wizard Setup 57 Figure 11 Ethernet Encapsulation ZyXEL G-2000 Plus v2 User's Guide The following fields are not applicable (N/A) for a dial-up connection. Password Type the password associated with the user name above. The following table describes the labels in periodically....authentication method), or Telia Login. Back Click Back to return to continue. Service Type Choose from 1 to 59 (30 default) for the ZyXEL device to you one. Login Server This field only applies when you select Telia Login in the Service Type field. ...
User Guide
Page 59
...connection. Nailed-Up Connection Select Nailed-Up Connection if you do not want the connection to you by your service provider. The default time is a network protocol that elapses before the router automatically disconnects from the PPPoE server. Back Click Back to return to the...PPP over Ethernet from a remote client to continue. Password Type the password associated with the user name above. Service Name Type the name of data from the pull-down list box. Figure 12 PPPoE Encapsulation ZyXEL G-2000 Plus v2 User's Guide The following table describes the labels in...
...connection. Nailed-Up Connection Select Nailed-Up Connection if you do not want the connection to you by your service provider. The default time is a network protocol that elapses before the router automatically disconnects from the PPPoE server. Back Click Back to return to the...PPP over Ethernet from a remote client to continue. Password Type the password associated with the user name above. Service Name Type the name of data from the pull-down list box. Figure 12 PPPoE Encapsulation ZyXEL G-2000 Plus v2 User's Guide The following table describes the labels in...
User Guide
Page 60
... Type the subnet mask assigned to you by your ISP (if given). 60 Chapter 3 Wizard Setup Note: The ZyXEL device supports one PPTP server connection at any given time. Refer to time out. ZyXEL G-2000 Plus v2 User's Guide PPTP supports on PPTP. Figure 13 PPTP Encapsulation The following table describes the fields in seconds... the user name given to you do not want the connection to the appendix for Internet Access Encapsulation Select PPTP from the PPTP server. The default is 100 seconds. Password Type the password associated with the User Name above.
... Type the subnet mask assigned to you by your ISP (if given). 60 Chapter 3 Wizard Setup Note: The ZyXEL device supports one PPTP server connection at any given time. Refer to time out. ZyXEL G-2000 Plus v2 User's Guide PPTP supports on PPTP. Figure 13 PPTP Encapsulation The following table describes the fields in seconds... the user name given to you do not want the connection to the appendix for Internet Access Encapsulation Select PPTP from the PPTP server. The default is 100 seconds. Password Type the password associated with the User Name above.
User Guide
Page 68
... even if your ISP does not require MAC address authentication. 68 Chapter 4 System Screens The Dynamic DNS service provider will give you a password or key. 4.3.1 DynDNS Wildcard Enabling the wildcard feature for example, www.yourhost.dyndns.org and still reach your IP address. A value ... want to None after you click Apply. ZyXEL G-2000 Plus v2 User's Guide Table 15 System General Setup LABEL DESCRIPTION Administrator Inactivity Timer Type how many dynamic DNS services so that anyone can contact you (in NetMeeting, CU-SeeMe, etc.). The default is None. After it . Very long...
... even if your ISP does not require MAC address authentication. 68 Chapter 4 System Screens The Dynamic DNS service provider will give you a password or key. 4.3.1 DynDNS Wildcard Enabling the wildcard feature for example, www.yourhost.dyndns.org and still reach your IP address. A value ... want to None after you click Apply. ZyXEL G-2000 Plus v2 User's Guide Table 15 System General Setup LABEL DESCRIPTION Administrator Inactivity Timer Type how many dynamic DNS services so that anyone can contact you (in NetMeeting, CU-SeeMe, etc.). The default is None. After it . Very long...
User Guide
Page 70
... host name(s) automatically by the DDNS server. Note that you select this option. ZyXEL G-2000 Plus v2 User's Guide Table 16 DDNS LABEL Use WAN IP address DDNS server auto detect IP Address Use specified IP Address IP Address Apply Reset DESCRIPTION Select this option if you have a static IP address. It is the default password).
... host name(s) automatically by the DDNS server. Note that you select this option. ZyXEL G-2000 Plus v2 User's Guide Table 16 DDNS LABEL Use WAN IP address DDNS server auto detect IP Address Use specified IP Address IP Address Apply Reset DESCRIPTION Select this option if you have a static IP address. It is the default password).
User Guide
Page 82
...allowed or not allowed to store the user names and passwords for each wireless client, see the information that is sent in which wireless clients are ways for unauthorized devices to get the SSID. ZyXEL G-2000 Plus v2 User's Guide Security stops unauthorized devices from using twelve... 6.2.2 MAC Address Filter Every wireless client has a unique identification number, called user authentication. In addition, you should change the default SSID to something that is sent in the wireless network. 6.2 Wireless Security Overview The following sections introduce different types of wireless ...
...allowed or not allowed to store the user names and passwords for each wireless client, see the information that is sent in which wireless clients are ways for unauthorized devices to get the SSID. ZyXEL G-2000 Plus v2 User's Guide Security stops unauthorized devices from using twelve... 6.2.2 MAC Address Filter Every wireless client has a unique identification number, called user authentication. In addition, you should change the default SSID to something that is sent in the wireless network. 6.2 Wireless Security Overview The following sections introduce different types of wireless ...
User Guide
Page 90
... is done using WPA2PSK. Select this screen. The default time interval is available only when you select WPA2-PSK as your security level. ZyXEL G-2000 Plus v2 User's Guide Figure 27 Wireless: WPA(2)-PSK The following table describes the labels in this to have to reenter usernames and passwords in Timer (in a WLAN on the RADIUS...
... is done using WPA2PSK. Select this screen. The default time interval is available only when you select WPA2-PSK as your security level. ZyXEL G-2000 Plus v2 User's Guide Figure 27 Wireless: WPA(2)-PSK The following table describes the labels in this to have to reenter usernames and passwords in Timer (in a WLAN on the RADIUS...
User Guide
Page 95
...the external accounting server and your network administrator instructs you to do so with additional information. Chapter 6 Wireless LAN 95 The default port number is not sent over the network. 6.10 Configuring 802.1x In order to enable user accounting through an external ...be shared between the external authentication server and the ZyXEL device. The key must be the same on the external authentication server and your ZyXEL device. ZyXEL G-2000 Plus v2 User's Guide Table 29 RADIUS LABEL DESCRIPTION Shared Secret Enter a password (up to 31 alphanumeric characters) as the key ...
...the external accounting server and your network administrator instructs you to do so with additional information. Chapter 6 Wireless LAN 95 The default port number is not sent over the network. 6.10 Configuring 802.1x In order to enable user accounting through an external ...be shared between the external authentication server and the ZyXEL device. The key must be the same on the external authentication server and your ZyXEL device. ZyXEL G-2000 Plus v2 User's Guide Table 29 RADIUS LABEL DESCRIPTION Shared Secret Enter a password (up to 31 alphanumeric characters) as the key ...
User Guide
Page 96
ZyXEL G-2000 Plus v2 User's Guide Figure 30 Wireless: 802.1x The following table describes the labels in order to stay connected. The default time interval is done using a RADIUS server, the reauthentication timer on the RADIUS server has priority. 96 Chapter 6 Wireless LAN Note: If wireless station authentication is 1800 seconds (30 minutes). Enter a time interval between 10 and 9999 seconds. Table 30 Wireless: 802.1x and No WEP LABEL DESCRIPTION ReAuthentication Timer (in seconds) Specify how often wireless stations have to reenter usernames and passwords in this screen.
ZyXEL G-2000 Plus v2 User's Guide Figure 30 Wireless: 802.1x The following table describes the labels in order to stay connected. The default time interval is done using a RADIUS server, the reauthentication timer on the RADIUS server has priority. 96 Chapter 6 Wireless LAN Note: If wireless station authentication is 1800 seconds (30 minutes). Enter a time interval between 10 and 9999 seconds. Table 30 Wireless: 802.1x and No WEP LABEL DESCRIPTION ReAuthentication Timer (in seconds) Specify how often wireless stations have to reenter usernames and passwords in this screen.
User Guide
Page 97
ZyXEL G-2000 Plus v2 User's Guide Table 30 Wireless: 802.1x and No WEP LABEL Idle Timeout Authentication Databases DESCRIPTION The ZyXEL device automatically disconnects a wireless station from the wired network after a period of inactivity. The authentication database contains wireless ... station's username and password. The wireless station needs to enter the username and password again before access to have set up the corresponding database correctly first. The default time interval is an external server. The trusted user database is not found or password does not match in...
ZyXEL G-2000 Plus v2 User's Guide Table 30 Wireless: 802.1x and No WEP LABEL Idle Timeout Authentication Databases DESCRIPTION The ZyXEL device automatically disconnects a wireless station from the wired network after a period of inactivity. The authentication database contains wireless ... station's username and password. The wireless station needs to enter the username and password again before access to have set up the corresponding database correctly first. The default time interval is an external server. The trusted user database is not found or password does not match in...
User Guide
Page 143
...a control connection to access the firewall or the network. 5 For local services that are some comparisons between the ZyXEL device's filtering and firewall functions. 10.7.1 Packet Filtering: • The router filters packets as SNMP or NTP...'s Custom Services feature to do this. 10.6 Guidelines For Enhancing Security With Your Firewall 1 Change the default password via SMT or web configurator. 2 Think about access control before you connect a console port to the ...the services at specific interfaces. 6 Protect against misuse. ZyXEL G-2000 Plus v2 User's Guide Consider the FTP protocol.
...a control connection to access the firewall or the network. 5 For local services that are some comparisons between the ZyXEL device's filtering and firewall functions. 10.7.1 Packet Filtering: • The router filters packets as SNMP or NTP...'s Custom Services feature to do this. 10.6 Guidelines For Enhancing Security With Your Firewall 1 Change the default password via SMT or web configurator. 2 Think about access control before you connect a console port to the ...the services at specific interfaces. 6 Protect against misuse. ZyXEL G-2000 Plus v2 User's Guide Consider the FTP protocol.
User Guide
Page 174
ZyXEL G-2000 Plus v2 User's Guide 13.5.3 Configuring SNMP To change your ZyXEL device will only respond to SNMP messages from the management station. The screen appears as shown. Trusted Host If you enter a trusted host, your ZyXEL device will respond to the SNMP manager. Trap Community ...Management: SNMP The following table describes the labels in this address. A blank (default) field means your ZyXEL device's SNMP settings, click REMOTE MGMT, then the SNMP tab. The default is the password sent with each trap to all requests. Table 59 Remote Management: SNMP LABEL...
ZyXEL G-2000 Plus v2 User's Guide 13.5.3 Configuring SNMP To change your ZyXEL device will only respond to SNMP messages from the management station. The screen appears as shown. Trusted Host If you enter a trusted host, your ZyXEL device will respond to the SNMP manager. Trap Community ...Management: SNMP The following table describes the labels in this address. A blank (default) field means your ZyXEL device's SNMP settings, click REMOTE MGMT, then the SNMP tab. The default is the password sent with each trap to all requests. Table 59 Remote Management: SNMP LABEL...