Manuals / Brands / Computer Equipment / Network Router / ZyXEL Communications / Computer Equipment / Network Router

ZyXEL Communications 645R 8.5Filter Types and SUA, Pr, DP, Yes, Step, Step, Step, A = Y, M = N, m = D, n = F, protocol, Type = IP, Device Filter, Device Filter, Protocol Filter

1 167

Download 167 pages, 934.87 Kb

Prestige 645 ADSL Internet Access Router

			Menu 21.3 - Filter Rules Summary
# A Type			Filter Rules	M m n
-	-	----	---------------------------------------------------------------	-	-	-
1	Y	IP	Pr=6, SA=0.0.0.0, DA=0.0.0.0, DP=23	N	D	F

2N

3N

4N

5N

6N

Enter Filter Rule Number (1-6) to Configure: 1

This shows you that you have configured and activated (A = Y) a TCP/IP filter rule (Type = IP, Pr = 6) for destination telnet ports (DP = 23).

M = N means an action can be taken immediately. The action is to drop the packet (m = D) if the action is matched and to forward the packet immediately (n = F) if the action is not matched no matter whether there are more rules to be checked (there aren’t in this example).

Figure 8-15 Example Filter Rules Summary – Menu 21.3

After you’ve created the filter set, you must apply it. Step 1. Enter 11 from the main menu to go to menu 11. Step 2. Select a remote node number and press [ENTER].

Step 3. Go to the Edit Filter Sets field, press the [SPACE BAR] to select Yes and press [ENTER]. This brings you to menu 11.5. Apply the TELNET_WAN filter set (filter set 3) as shown later.

8.5Filter Types and SUA

There are two types of filter rules, Device Filter (Generic) rules and Protocol Filter (TCP/IP and IPX) rules. Device Filter rules act on the raw data from/to LAN and WAN. Protocol Filter rules act on the IP and IPX packets. When NAT/SUA (Network Address Translation/Single User Account) is enabled, the inside IP address and port number are replaced on a connection-by-connection basis, which makes it impossible to know the exact address and port on the wire. Therefore, the Prestige applies the protocol

8-18	Filter Configuration

Contents

ADSL Router Copyright ZyXEL Limited Warranty Federal Communications Commission (FCC) Interference Statement Customer Support Table of Contents Page Chapter 4 Remote Node Configuration Chapter 5 Remote Node TCP/IP Configuration Page SNMP Traps Chapter 10 System Maintenance Chapter 11 Configuration and Firmware File Maintenance Restore Configuration Chapter 12 IP Policy Routing Index List of Figures Page Page Page List of Tables Page Preface What Is ADSL Part I: Page Getting to Know Your Prestige 1.1Prestige 645R ADSL Internet Access Router 1.2Features of the Prestige 645R Ease of Installation High Speed Internet Access IP Policy Routing Call Scheduling Networking Compatibility Multiplexing Encapsulation 1.3Applications for the Prestige 645R 1.3.1 Internet Access Internet Single User Account 1.3.2 LAN to LAN Application Figure 1-2 LAN-to-LANApplication Page Hardware Installation & Initial Setup 2.1Front Panel LEDs of the P645R 2.2Prestige 645R Rear Panel and Connections 2.2.1 Using the Reset Button 2.2.2 Making the Connections 2.3Additional Installation Requirements 2.4Connecting the POTS Splitter 2.5Telephone Microfilters 2.6Turning On Your Prestige 2.7Navigating the SMT Interface 2.7.1 SMT Menu Overview 2.7.2 System Management Terminal Interface Summary 2.8Changing the System Password 2.9General Setup 2.10 Ethernet Setup 2.10.1 General Ethernet Setup 2.11 Protocol Dependent Ethernet Setup Page Internet Access 3.1Factory Ethernet Defaults 3.2TCP/IP Parameters 3.2.1 IP Address and Subnet Mask 3.2.2 Private IP Addresses 3.2.3 RIP Setup 3.2.4 IP Multicast 3.2.5 IP Alias 3.2.6 DHCP Configuration IP Pool Setup DNS Server Address 3.3Route IP Setup 3.4TCP/IP Ethernet Setup and DHCP Table 3-1DHCP Ethernet Setup Menu Fields Table 3-2TCP/IP Ethernet Setup Menu Fields 3.4.1 IP Alias Setup Figure 3-5Menu 3.2.1 — IP Alias Setup Table 3-3IP Alias Setup Menu Fields 3.5LANs & WANs 3.5.1 LANs, WANs and the Prestige 3.6VPI & VCI 3.7Multiplexing 3.7.1VC-basedmultiplexing 3.8Encapsulation 3.8.1 ENET ENCAP 3.8.2 PPP 3.8.3 RFC 3.9IP Address Assignment 3.9.1 Using PPP Encapsulation 3.9.2 Using RFC 1483 Encapsulation 3.9.3 Using ENET ENCAP Encapsulation 3.10 Internet Access Configuration Table 3-4Internet Account Information Figure 3-7Internet Access Setup Table 3-5Internet Access Setup Menu Fields 3.11 Single User Account 3.11.1 Advantages of SUA 3.11.2 Single User Account Configuration 3.12 Multiple Servers behind SUA 3.12.1 Configuring a Server behind SUA Figure 3-10Multiple Server Configuration Table 3-7Services vs. Port number Part II: Page Remote Node Configuration 4.1Remote Node Setup 4.1.1 Remote Node Profile 4.1.2 Encapsulation & Multiplexing Scenarios Scene 1. One VC, Multiple Protocols Scene 2. One VC, One Protocol (IP) Scene 3. Multiple VCs Page 4.1.3 Outgoing Authentication Protocol 4.1.4 Editing PPP Options 4.1.5 Remote Node Filter Figure 4-4Menu 11.5 – Remote Node Filter Remote Node TCP/IP Configuration 5.1LAN-to-LANApplication 5.1.1 Editing TCP/IP Options VC-BasedMultiplexing LLC-basedmultiplexing Figure 5-3Menu 11.3 for LLC-basedmultiplexing My Wan Addr My WAN Addr Rem IP Address Figure 5-4Sample IP Addresses for a TCPI/IP LAN-to-LANConnection Menu 11.1 – Remote Node Profile Figure 5-5Menu 11.1 Remote Node Profile Table 5-1TCP/IP related fields in Remote Node Profile Figure 5-6Menu 11.3 for VC-basedmultiplexing with RFC 1483 and ENET ENCAP Table 5-2TCP/IP Remote Node Configuration 5.1.2Static Route Setup Figure 5-7Example of Static Routing Topology Figure 5-8Menu 12 Static Route Setup Menu 12 Static Route Setup Menu 12.1 – IP Static Route Setup Menu 12.1.1 - Edit IP Static Route Figure 5-9Menu 12.1 - IP Static Route Setup Figure 5-10Menu 12.1.1 - Edit IP Static Route Menu 12.1.1 – Edit IP Static Route Setup Table 5-3Edit IP Static Route Menu Fields Page IPX Configuration 6.1IPX Network Environment 6.1.1 Network and Node Number 6.1.2 Frame Types 6.1.3 External Network Number 6.2Prestige in an IPX Environment 6.2.1 Prestige 645R on LAN with Server 6.2.2 Prestige 645R on LAN without Server 6.3IPX Ethernet Setup 6.4LAN-to-LANApplication with Novell IPX 6.4.1 IPX Remote Node Setup Figure 6-5Menu 11.3 - Remote Node Novell IPX Options Table 6-2Remote Node Novell IPX Options 6.4.2 IPX Static Route Setup Table 6-3Edit IPX Static Route Menu Fields Bridging Setup 7.1Bridging in General 7.2Bridge Ethernet Setup 7.2.1 Remote Node Bridging Setup Figure 7-2Menu 11.3 - Remote Node Bridging Options Table 7-2P645R Remote Node Network Layers Menu Bridge Options 7.3Bridge Static Route Setup Table 7-3Bridge Static Route Menu Fields Part III: Page Filter Configuration 8.1About Filtering The Filter Structure of the Prestige Figure 8-2Filter Rule Process 8.2Configuring a Filter Set Figure 8-5NetBIOS _LAN Filter Rules Summary Figure 8-6Telnet Filter Rules Summary Figure 8-7PPPoE Filter Rules Summary Figure 8-8FTP _WAN Filter Rules Summary 8.2.1 Filter Rules Summary Menu Table 8-2Abbreviations Used If Filter Type Is IP 8.3Configuring a Filter Rule 8.3.1 TCP/IP Filter Rule Figure 8-10Menu 21.1.1 - TCP/IP Filter Rule Table 8-5TCP/IP Filter Rule Menu Fields Page Figure 8-11Executing an IP Filter 8.3.2 Generic Filter Rule Table 8-6Generic Filter Rule Menu Fields 8.3.3 Novell IPX Filter Rule 8.4Example Filter Yes Equal Drop Forward Figure 8-14Example Filter – Menu 8.5Filter Types and SUA 8.6Applying a Filter and Factory Defaults 8.6.1 Ethernet traffic 8.6.2 Remote Node Filters SNMP Configuration 9.1About SNMP 9.2Supported MIBs 9.3Configuring SNMP Figure 9-2Menu 22 — SNMP Configuration Table 9-1SNMP Configuration Menu Fields 9.4SNMP Traps System Maintenance 10.1 System Status Figure 10-2Menu 24.1 - System Maintenance – Status Table 10-1System Maintenance - Status Menu Fields 10.2 System Information and Console Port speed Figure 10-4System Maintenance - Information Table 10-2Fields in System Maintenance - Information 10.3 Log and Trace 10.3.1 Viewing Error Log 10.3.2 Syslog Figure 10-6Menu 24.3.2 - System Maintenance - Syslog and Accounting Table 10-3System Maintenance Menu Syslog Parameters Page 10.4 Diagnostic 10.5 Command Interpreter Mode Figure 10-8Command mode Configuration and Firmware File Maintenance 11.1 Filename Conventions 11.2 Backup Configuration 11.2.1 Backup Configuration Using FTP 11.2.2 Using the FTP command from the DOS Prompt 11.2.3 Backup Configuration Using TFTP 11.2.4 Example: TFTP Command 11.3 Restore Configuration 11.4 Uploading Firmware and Configuration Files 11.4.1 Firmware Upload 11.4.2 Configuration File Upload 11.4.3 Using the FTP command from the DOS Prompt Example 11.4.4 TFTP File Upload 11.4.5 Example: TFTP Command IP Policy Routing 12.1 Introduction 12.2 Benefits 12.3 Routing Policy 12.4 IP Routing Policy Setup Figure 12-2Menu 25.1 – Sample IP Routing Policy Setup Table 12-1IP Routing Policy Setup Menu 25.1.1 – IP Routing Policy Figure 12-3IP Routing Policy Table 12-2IP Routing Policy 12.5 Applying an IP Policy 12.5.1 Ethernet IP Policies Figure 12-4Menu 3.2 – TCP/IP and DHCP Ethernet Setup Figure 12-5Menu 11.3 – Remote Node Network Layer Options 12.6 IP Policy Routing Example Menu 25.1.1 - IP Routing Policy Figure 12-7IP Routing Policy Example Menu 25.1 - IP Routing Policy Setup Figure 12-8IP Routing Policy Figure 12-9Applying IP Policies Page Call Scheduling 13.1 Introduction 13.2 Schedule Setup 13.3 Schedule Set Setup 13.4 Applying Schedule Sets to Remote Nodes Page Troubleshooting 14.1 Problems Starting Up the Prestige 14.2 Problems Telnetting into the Prestige 14.3 Problems With the WAN Interface 14.4 Problems With the LAN Interface 14.5 Problems Connecting to a Remote Node or ISP Page Appendix A VPI and VCI Appendix B Power Adapter Specifications Glossary Page Page Page Page Page Page Page Index