Manuals / Motorola / Computer Equipment / Network Router

Motorola Security, Firewall, SBG1000 security measures shown in a logical network diagram

Models: SBG1000

1 150

Download 150 pages 40.39 Kb

Page 21

Security

Overview Installation Troubleshooting Contact FAQ Specifications Glossary License

Configuration: Basic Gateway TCP/IP Wireless Print Server USB

Security

The Motorola SBG1000 Wireless Cable Modem Gateway provides:

•

•

A firewall to protect the SBG LAN from undesired attacks over the Internet

Security measures to prevent eavesdropping of wireless data

Network Address Translation (NAT) provides some security because the IP addresses of SBG LAN computers are not visible on the Internet.

The logical network diagram does not necessarily correspond to the network cabling. A full discussion of network security is beyond the scope of this document.

SBG1000 security measures shown in a logical network diagram

Internet

SBG

DMZ computer

Firewall

DMZ:

WEP shared key encryption

MAC access control list

Closed network

Computer		Computer

Wired Ethernet and/or HPNA LAN

Computer		Laptop		PDA

Wireless IEEE 802.11b LAN

Firewall

The SBG1000 firewall protects the SBG LAN from undesired attacks and other intrusions from the Internet. It provides an advanced integrated stateful-inspectionfirewall supporting intrusion detection, session tracking, and denial-of-service attack prevention. The firewall:

•

•

Maintains state data for every TCP/IP session on the OSI network and transport layers

Monitors all incoming and outgoing packets, applies the firewall policy to each one, and screens for improper packets and intrusion attempts

•Provides comprehensive logging for all:

—User authentications

—Rejected internal and external connection requests

—Session creation and termination

—Outside attacks (intrusion detection)

You can configure the firewall filters to set rules for port usage and to block specific IP domains and networks. For information about choosing a default firewall policy, see “Setting the Firewall Policy” on page 36.

X

15

SBG1000 Wireless Cable Modem Gateway User Guide

Home Print Exit

Image 21

Motorola manual Security, SBG1000 security measures shown in a logical network diagram, Internet, Firewall DMZ

Contents

SURFboard R Cable Modem SBG1000 Wireless Cable Modem Gateway User GuideReorient or relocate the receiving antenna Comply with all instructions that accompany this equipment Copyright 2002 by Motorola, Inc Installation ContentsConfiguring the SBG1000 Configuring the GatewayTroubleshooting Setting Up a USB DriverContact Us Frequently-Asked Questions Specifications Glossary Software LicenseOverview Easy Setup Powerful Features in a Single UnitAuto-MDIX stateful-inspectionSample LAN PCC11B Wireless CardSample SBG1000 hybrid network SBG1000Motorola USB11b Wireless Adapter left and PCC11b Wireless Card Optional AccessoriesMotorola External Diversity Antenna Gain5 dBi peak gain, nominal Front-panel top section lights Front PanelLight FlashingConfiguration Basic Gateway TCP/IP Wireless Print Server USB Front-panel bottom section lightsLight FlashingDescription Rear PanelConfiguration Basic Gateway TCP/IP Wireless Print Server USB Use the USB port for Connecting a PC to the USB Port see pageWiring the SBG LAN Label on the Bottom of the UnitHPNA USB Sample SBG Ethernet network connections Wired Ethernet LANAdd additional hubs or switches for further expansion Sample USB connection USB ConnectionSample HPNA network connections HPNA LANSample wireless network connections IEEE 802.11b Wireless LANSecurity SBG1000 security measures shown in a logical network diagramFirewall InternetVirtual Private Networks Wireless SecurityMotorola Diversity Antenna Installation Instructions Motorola SBG1000 Wireless Cable Modem Gateway Quick Start GuidePrint Server Related DocumentationHome Print Exit SBG1000 Wireless Cable Modem Gateway User GuideInstallation Before You BeginDescription To Set Up PrecautionsYou Will Need Always make the wall connection firstComputer System Requirements Signing Up for ServiceConnecting the SBG1000 to the cable system Connecting the SBG1000 to the Cable SystemObtaining an IP address in Windows 98, Windows 98 SE, or Windows Me Cabling the Ethernet or HPNA LANObtaining an IP address in Windows 2000 or Windows XP Obtaining an IP address on Macintosh or UNIX SystemsConnecting a PC to the USB Port Setting Up the Wireless LANConnecting the Printer 1 Print the Wall Mounting Template on page Wall Mounting the Wireless Gateway7.6 mm .3 inches maximum 10.5 mm .4 inches maximum 4.0 mm .16 inches You can print this page to use as a wall mounting template Wall Mounting Template17.24 cm 6.79 inInstalling the Optional External Diversity Antenna DistanceData Transfer Rate Disconnecting the antennas provided with the SBG1000 Connecting the Optional External Diversity Antenna to the SBG1000 Configuration Basic Gateway TCP/IP Wireless Print Server USBHome Print Exit Starting the SBG Setup Program see page Configuring the SBG1000Changing the Default Password see page Getting Help see page Setting the Firewall Policy see pageStarting the SBG Setup Program To Perform ClickConfiguration Basic Gateway TCP/IP Wireless Print Server USB Admin Changing the Default Password see pageChanging the Default Password Getting Help Setting the Firewall Policy Firewall POLICY - basic Page see page Firewall Pages in the SBG Setup ProgramFirewall POLICY - advanced Page see page Firewall ALERT - basic Page see pageestablishing an outbound session Firewall POLICY - basic PageFirewall POLICY - advanced page fields Firewall POLICY - advanced PageField Configuration Basic Gateway TCP/IP Wireless Print Server USBFirewall ALERT - basic page fields Firewall ALERT - basic PageField or Button Configuration Basic Gateway TCP/IP Wireless Print Server USBFirewall ALERT - email page fields Firewall ALERT - email PageConfiguration Basic Gateway TCP/IP Wireless Print Server USB Field or ButtonFirewall LOGS page fields Firewall LOGS PageConfiguration Basic Gateway TCP/IP Wireless Print Server USB SBG1000 Wireless Cable Modem Gateway User GuideGateway LAN - nat config Page see page Configuring the GatewayGateway LAN - dhcp server config Page see page Gateway STATUS Page see page Gateway WAN Page see pageConfiguration Basic Gateway TCP/IP Wireless Print Server USB Gateway STATUS PageSBG1000 Wireless Cable Modem Gateway User Guide This page displays the gateway status informationGateway WAN page fields Gateway WAN PageConfiguration Basic Gateway TCP/IP Wireless Print Server USB FieldConfiguration Basic Gateway TCP/IP Wireless Print Server USB Gateway WAN page fields continuedField DescriptionGateway LAN - nat config page fields Gateway LAN - nat config PageConfiguration Basic Gateway TCP/IP Wireless Print Server USB Field or ButtonGateway LAN - advanced page fields Gateway LAN - dhcp server config PageFieldDescription Configuration Basic Gateway TCP/IP Wireless Print Server USBGateway LAN - dhcp reservations page fields Gateway LAN - dhcp reservations PageConfiguration Basic Gateway TCP/IP Wireless Print Server USB FieldGateway ALG - advanced Page Gateway ALG - basic PageGateway LAN - dhcp reservations page fields continued Configuration Basic Gateway TCP/IP Wireless Print Server USBGateway LOG page fields Gateway LOG PageConfiguration Basic Gateway TCP/IP Wireless Print Server USB SBG1000 Wireless Cable Modem Gateway User GuideHome Print Exit SBG1000 Wireless Cable Modem Gateway User Guide“Configuring TCP/IP in Windows 95, Windows 98, or Windows Me” on page Configuring TCP/IP“Configuring TCP/IP in Windows 2000” on page “Configuring TCP/IP in Windows XP” on pageConfiguring TCP/IP in Windows 95, Windows 98, or Windows Me 13 Click Obtain an IP address automatically Configuring TCP/IP in Windows 4 Click Local Area Connection number. The value of number varies from system to system. The Local Area Connection number Status window is displayed 8 Click Internet Protocol TCP/IP 13 Click OK to accept the TCP/IP settings Configuring TCP/IP in Windows XP 3 Click Network and Internet Connections to display the Network and Internet Connections window 6 Right-click on the network connection. If more than one connection is displayed, be sure to select the one for your network interface 11 Click OK to close the TCP/IP Properties window Verifying the IP Address in Windows 95, Windows 98, or Windows Me Verifying the IP Address in Windows 2000 or Windows XP To renew the IP address Configuring a Unique Wireless Network Name see page Setting Up the Wireless LANConfiguring Basic Wireless LAN Security see page Configuring Wireless Clients see pageConfiguring a Unique Wireless Network Name Configuring Basic Wireless LAN Security Configuration Basic Gateway TCP/IP Wireless Print Server USBHome Print Exit Wireless Pages in the SBG Setup Program Configuring Wireless ClientsWireless STATUS Page see page Wireless NETWORK Page see page Wireless SECURITY - basic Page see pageWireless STATUS Page Fields Wireless STATUS PageConfiguration Basic Gateway TCP/IP Wireless Print Server USB Unique Wireless Network Name” on pageWireless NETWORK page fields Wireless NETWORK PageConfiguration Basic Gateway TCP/IP Wireless Print Server USB not using the defaultWireless NETWORK page fields continued Wireless SECURITY - basic PageConfiguration Basic Gateway TCP/IP Wireless Print Server USB FieldWireless Security - ADVANCED page fields Wireless SECURITY - advanced PageConfiguration Basic Gateway TCP/IP Wireless Print Server USB SBG1000 Wireless Cable Modem Gateway User GuideWireless Security - ADVANCED page fields continued Wireless STATISTICS pageWireless STATISTICS page fields Configuration Basic Gateway TCP/IP Wireless Print Server USBConfiguration Basic Gateway TCP/IP Wireless Print Server USB Wireless STATISTICS page fields continuedField or Button DescriptionConfiguring the SBG1000 Print Server Configuring the Print ServerConfiguring the SBG1000 Print Server “Adding a Printer in Windows 98 or Windows Me” on pagePrinter CONFIGURATION - Microsoft smb page fields Printer CONFIGURATION - Microsoft smb PageConfiguration Basic Gateway TCP/IP Wireless Print Server USB FieldPrinter CONFIGURATION - apple page fields Printer CONFIGURATION - Apple PageConfiguration Basic Gateway TCP/IP Wireless Print Server USB FieldPrinter CONFIGURATION - lpr page fields Printer CONFIGURATION - lpr Page2 Click Settings Adding a Printer in Windows 98 or Windows Me7 Click the Configuration tab to display the Configuration page 5 Click the Identification tabConfiguration Basic Gateway TCP/IP Wireless Print Server USB SBG1000 Wireless Cable Modem Gateway User GuideBe sure Obtain an IP address automatically is selected 16 Click SettingsSBG1000 Wireless Cable Modem Gateway User Guide Configuration Basic Gateway TCP/IP Wireless Print Server USB17 Click Printer to display the Printers window 18 Double-click the Add Printer icon to start the Add Printer WizardSBG1000 Wireless Cable Modem Gateway User Guide Configuration Basic Gateway TCP/IP Wireless Print Server USB20 Select Network printer by clicking its radio button and click Next 23 In the Printers field, click the printer modelConfiguration Basic Gateway TCP/IP Wireless Print Server USB 24 Click Next 25 Click Next to accept the default printer name. orSBG1000 Wireless Cable Modem Gateway User Guide Type the name and click Next5 Click the Network Identification tab Adding a Printer in Windows2 Click Settings Configuration Basic Gateway TCP/IP Wireless Print Server USB14 Double-click the Network and Dial-up Connections icon 12 Click Settings15 Double-click the Local Area Connection icon. If more than one is present, be sure you select the one connected to the SBG1000. The Local Area Connection Status window is displayed Be sure Obtain an IP address automatically is selected 19 Click Advanced to display the Advanced TCP/IP Settings window22 In the WINS server field, type 192.168.100.1 click Add Configuration Basic Gateway TCP/IP Wireless Print Server USB 25 Click SettingsSBG1000 Wireless Cable Modem Gateway User Guide 26 Click Printers to display the Printers window28 Click Next Configuration Basic Gateway TCP/IP Wireless Print Server USB 33 Click Finish to complete printer installationSBG1000 Wireless Cable Modem Gateway User Guide The following message should displayHome Print Exit SBG1000 Wireless Cable Modem Gateway User Guide“Setting Up a USB Driver in Windows 98” on page Setting Up a USB Driver“Setting Up a USB Driver in Windows 2000” on page “Setting Up a USB Driver in Windows Me” on pageSetting Up a USB Driver in Windows 2 Click Next. The following window is displayed 5 Click Next.The following window is displayed 8 Click Finish. The Systems Settings Change window is displayed Setting Up a USB Driver in Windows SBG1000 Wireless Cable Modem Gateway User Guide Configuration Basic Gateway TCP/IP Wireless Print Server USB2 Click Next. The following window is displayed Be sure “CD-ROM drives” is the only box checked6 If necessary, select the CD-ROM drive in the Copy files from list Configuration Basic Gateway TCP/IP Wireless Print Server USB Setting Up a USB Driver in Windows MeSetting Up a USB Driver in Windows XP 2 Click the Motorola SurfBoard SBG1000 USB Gateway Removing the USB Driver from Windows 98 or Windows Me4 Click OK. The System Settings Change window is displayed 5 Disconnect the USB cable from the PC or SBG1000“Setting Up a USB Driver in Windows 98” on page 13 Click Remove Driver“Setting Up a USB Driver in Windows Me” on page Configuration Basic Gateway TCP/IP Wireless Print Server USB2 Click Settings Removing the USB Driver from WindowsConfiguration Basic Gateway TCP/IP Wireless Print Server USB SBG1000 Wireless Cable Modem Gateway User Guide5 On the System Properties window, click the Hardware tab 21 Click Remove Driver 20 Be sure the USB cable is disconnectedConfiguration Basic Gateway TCP/IP Wireless Print Server USB Removing the USB Driver from Windows XPSBG1000 Wireless Cable Modem Gateway User Guide 1 On the Windows desktop, click Start to display the Start window4 Click System to display the System Properties window. Skip to step 5 If a classic view similar to the following is displayed, click System to display the System Properties window 8 Double-click Network adapters 15 Type explorer and click OK to display Windows Explorer Home Print Exit SBG1000 Wireless Cable Modem Gateway User GuideFront-Panel Lights and Error Conditions TroubleshootingProblem Possible SolutionsHome Print Exit SBG1000 Wireless Cable Modem Gateway User GuideContact Us Home Print Exit SBG1000 Wireless Cable Modem Gateway User GuideQ How fast is the Motorola SBG1000 Wireless Cable Modem Gateway? Q What is high-speed cable Internet access?Q What is Network Address Translation? Q What is IEEE802.11b?Q Do I need to subscribe to cable TV to get cable Internet access? Q Do I need to change my Internet service provider ISP?Q What type of technical support is available? Q What do I do if my SBG stops working?General Specifications SpecificationsConfiguration Basic Gateway TCP/IP Wireless Print Server USB Home Print ExitConfiguration Basic Gateway TCP/IP Wireless Print Server USB Cable Modem SpecificationsF-Connector, female, 75 ohm Interface USB, Ethernet 10/100Base-T auto sensingGlossary FAQ Specifications Overview Installation Troubleshooting ContactConfiguration Basic Gateway TCP/IP Wireless Print ServerHome Print Exit Configuration Basic Gateway TCP/IP Wireless Print Server USBSBG1000 Wireless Cable Modem Gateway User Guide Configuration Basic Gateway TCP/IP Wireless Print Server USBThe SBG is simultaneously a DHCP client and a DHCP server Home Print ExitFAQ Specifications Overview Installation Troubleshooting ContactConfiguration Basic Gateway TCP/IP Wireless Print ServerFAQ Specifications Overview Installation Troubleshooting ContactConfiguration Basic Gateway TCP/IP Wireless Print ServerFAQ Specifications Overview Installation Troubleshooting ContactConfiguration Basic Gateway TCP/IP Wireless Print ServerFAQ Specifications Overview Installation Troubleshooting ContactConfiguration Basic Gateway TCP/IP Wireless Print ServerFAQ Specifications Overview Installation Troubleshooting ContactConfiguration Basic Gateway TCP/IP Wireless Print ServerFAQ Specifications Overview Installation Troubleshooting ContactConfiguration Basic Gateway TCP/IP Wireless Print ServerFAQ Specifications Overview Installation Troubleshooting ContactConfiguration Basic Gateway TCP/IP Wireless Print ServerPage circuit-switched Configuration Basic Gateway TCP/IP Wireless Print Server USBSBG1000 Wireless Cable Modem Gateway User Guide bandwidthHome Print Exit Configuration Basic Gateway TCP/IP Wireless Print Server USBFAQ Specifications Overview Installation Troubleshooting ContactConfiguration Basic Gateway TCP/IP Wireless Print ServerIEEE 802.11b term for wireless client Configuration Basic Gateway TCP/IP Wireless Print Server USBSBG1000 Wireless Cable Modem Gateway User Guide Home Print ExitConfiguration Basic Gateway TCP/IP Wireless Print Server USB subscriberHome Print Exit FAQ Specifications Overview Installation Troubleshooting ContactConfiguration Basic Gateway TCP/IP Wireless Print ServerConfiguration Basic Gateway TCP/IP Wireless Print Server USB Software LicenseLicense You may495002-001 10/02MGBI