Manuals / Brands / Computer Equipment / Network Router / ZyXEL Communications / Computer Equipment / Network Router

ZyXEL Communications 782R 8.5Filter Configuration Example, Figure 8-11Sample Telnet Filter, Figure 8-10Protocol and Device Filter Sets

1 166

Download 166 pages, 2.37 Mb

Prestige 782R G.SHDSL Router

When NAT/SUA (Network Address Translation/Single User Account) is enabled, the inside IP address and port number are replaced on a connection-by-connection basis, which makes it impossible to know the exact address and port on the wire. Therefore, the Prestige applies the protocol filters to the “native” IP address and port number before NAT/SUA for outgoing packets and after NAT/SUA for incoming packets. On the other hand, the generic (or device) filters are applied to the raw packets that appear on the wire. They are applied at the point where the Prestige is receiving and sending the packets; i.e., the interface. The interface can be an Ethernet, or any other hardware port. The following figure illustrates this.

Figure 8-10 Protocol and Device Filter Sets

8.5Filter Configuration Example

Let us look at part of the third default ZyXEL filter as an example. See the Support CD for more sample filters. This filter was designed to block outside users from telnetting into the Prestige.

Figure 8-11 Sample Telnet Filter

Filter Configuration

8-15

Contents

Page Copyright Page Federal Communications Commission (FCC) Interference Statement Information for Canadian Users Page We, the Manufacturer/Importer ZyXEL Limited Warranty Customer Support Table of Contents Page PART III ADVANCED MANAGEMENT Page List of Figures Page Page List of Tables Page Preface About This User’s Guide Related Documentation Syntax Conventions Bold Times Bold Arial What is xDSL Part I: GETTING STARTED Page Getting to Know Your G.SHDSL Router 1.1Features of the Prestige IP Alias IP Policy Routing 10/100MB Auto-negotiationEthernet/Fast Ethernet Interface Protocols Supported Multiple Protocol Support Encapsulation SUA for Single-IPAddress Internet Access Full Network Management Upgrade Firmware via LAN Filters 1.2Application Scenarios for the Prestige 1.2.1 Internet Access 1.2.2 LAN-to-LANApplication Figure 1-2 LAN-to-LANApplication Page Hardware Installation and Initial Setup 2.1Installation Requirements 2.2Front Panel LEDs of the Prestige 782R 2.3Rear Panel and Connections of the Prestige 782R 2.4Turning On Your Prestige 2.5Navigating the SMT Interface 2.6SMT Menu Commands You can make future changes to the configuration through telnet connections See the Telnet Configuration and Capabilities chapter See the chapter Table 2-2Main Menu Commands 2.7Changing the System Password 2.8Resetting the Prestige 2.9General Setup 2.9.1 Note on Bridging 2.10 Setting Up the WAN Link 2.10.1 Service Type 2.10.2 Rate Adaption 2.10.3 Transfer Rates 2.10.4 Standard Mode 2.11 Ethernet Setup 2.11.1 LAN Setup 2.11.2 Protocol Dependent Ethernet Setup Internet Access 3.1Ethernet Factory Defaults 3.2TCP/IP and DHCP Ethernet Setup: DHCP 3.2.1 DHCP Setup 3.2.2 Client IP Pool Setup 3.2.3 DNS Server Address 3.2.4 TCP/IP and DHCP Ethernet Setup: TCP/IP 3.2.5 IP Address and Subnet Mask 3.2.6 RIP Setup 3.2.7 Multicast 3.2.8 IP Policies 3.2.9 Configuring TCP/IP and DHCP Ethernet Setup Table 3-2TCP/IP Ethernet Setup Menu Fields 3.2.10 IP Alias 3.2.11 IP Alias Setup Figure 3-4Menu 3.2.1 – IP Alias Setup Table 3-3IP Alias Setup Menu Fields 3.3LANs and WANs 3.3.1 LANs, WANs and the Prestige 3.4Internet Access Configuration 3.4.1 VPI and VCI 3.4.2 Multiplexing 3.4.3 Encapsulation 3.4.4 IP Address Assignment 3.4.5 Internet Account Information 3.4.6 Traffic Shaping 3.5Internet Access Configuration Table 3-5Internet Access Setup Menu Fields 3.6Single User Account 3.6.1 Advantages of SUA 3.6.2 Single User Account Configuration 3.7Multiple Servers Behind the SUA 3.7.1 Configuring a Server Behind the SUA Figure 3-10SUA Server Configuration Table 3-7Services and Corresponding Port Numbers Part II: ADVANCED APPLICATIONS Remote Node Configuration 4.1Remote Node Setup 4.1.1 Remote Node Profile 4.1.2 Encapsulation and Multiplexing Scenarios Remote Node Profile Table 4-1Remote Node Profile Menu Fields 4.1.3 Outgoing Authentication Protocol 4.1.4 Editing PPP Options 4.2Remote Node Setup Figure 4-4Remote Node Network Layer Options Table 4-3 TCP/IP-relatedFields in Menu 11.1 – Remote Node Profile Remote Node Network Layer Options Table 4-4Remote Node TCP/IP Configuration 4.3Remote Node Filter Remote Node TCP/IP Configuration 5.1TCP/IP Configuration 5.1.1 Editing TCP/IP Options LLC-basedMultiplexing or PPP Encapsulation LLC-based Figure 5-2Menu 11.6 for LLC-basedMultiplexing or PPP Encapsulation My Wan Addr My WAN Addr Figure 5-3Sample IP Addresses for a TCP/IP LAN-to-LANConnection Menu 11.1 – Remote Node Profile Chapter 3 – Internet Access Application Table 5-1 TCP/IP-relatedFields in Remote Node Profile Figure 5-4Menu 11.3 – Remote Node Novell IPX Options Table 5-2TCP/IP Remote Node Configuration 5.1.2 IP Static Route Setup Figure 5-5Sample Static Routing Topology Static Route Setup Figure 5-6Menu 12 – Static Route Setup IP Static Route Setup Figure 5-7Menu 12.1 – IP Static Route Setup Figure 5-8Edit IP Static Route Menu 12.1 – Edit IP Static Route Setup Table 5-3Edit IP Static Route Menu Fields Page IPX Configuration 6.1IPX Network Environment 6.1.1 Network and Node Number 6.1.2 Frame Types 6.1.3 External Network Number 6.1.4 Internal Network Number 6.2The Prestige in an IPX Environment 6.2.1 The Prestige on a LAN with a Server 6.2.2 The Prestige on a LAN without Server 6.3IPX Ethernet Setup 6.4LAN-to-LANApplication With Novell IPX 6.4.1 IPX Remote Node Setup 6.4.2 IPX Static Route Setup Menu 12.2.1 – Edit IPX Static Route Figure 6-6Menu 12.2.1 – Edit IPX Static Route Table 6-3Edit IPX Static Route Menu Fields Page Bridging Setup 7.1Bridging in General 7.2Bridge Ethernet Setup 7.2.1 Remote Node Bridging Setup 7.2.2 Bridge Static Route Setup Edit Bridge Static Route Table 7-3Edit Bridge Static Route Menu Fields Part III: ADVANCED MANAGEMENT Page Filter Configuration 8.1About Filtering Filter Rule 8.2Configuring a Filter Set Menu 21.1 – Filter Rules Summary Figure 8-4Menu 21.1 – Filter Rules Summary Figure 8-5Menu 21.2 – Filter Rules Summary 8.2.1 Filter Rules Summary Menus 8.3Configuring a Filter Rule 8.3.1 TCP/IP Filter Rule Figure 8-6Menu 21.1.1 – TCP/IP Filter Rule Table 8-3TCP/IP Filter Rule Menu Fields Page Figure 8-7Executing an IP Filter 8.3.2 Generic Filter Rule Table 8-4Generic Filter Rule Menu Fields 8.3.3 Novell IPX Filter Rule Table 8-5IPX Filter Rule Menu Fields 8.4Filter Types and SUA 8.5Filter Configuration Example Step 1. Type 21 from the main menu to open Menu 21 – Filter Set Configuration Menu 21.3 – Filter Rules Summary Equal Drop Forward A = Y Type = IP Pr DP M = N 8.6Applying Filters and Factory Defaults 8.6.1 Ethernet Traffic 8.6.2 Remote Node Filters Figure 8-15Filtering Remote Node Traffic Page SNMP Configuration 9.1About SNMP 9.2Supported MIBs 9.3SNMP Configuration Figure 9-2Menu 22 - SNMP Configuration Table 9-1SNMP Configuration Menu Fields 9.4SNMP Traps System Maintenance 10.1 System Status Figure 10-2Menu 24.1 – System Maintenance – Status Table 10-1System Maintenance – Status Menu Fields Figure 10-3LAN Packet That Triggered Last Call 10.1.1 System Information 10.1.2 Console Port Speed 10.2 Log and Trace 10.2.1 Viewing Error Log 10.2.2 Syslog and Accounting Figure 10-7Menu 24.3.2 – System Maintenance – Syslog and Accounting Table 10-3System Maintenance Menu – Syslog Parameters Page 10.3 Diagnostic 10.4 Filename Conventions 10.5 Backup Configuration Figure 10-9Backup Configuration Send Figure 10-10HyperTerminal Screen Figure 10-11Successful Backup 10.6 Restore Configuration 10.7 Upload Firmware 10.7.1 Upload Router Firmware 10.7.2 Uploading Router Configuration File 10.7.3 TFTP Transfer Using the FTP Command from the DOS Prompt quit Figure 10-18Sample FTP Session Table 10-6Third Party FTP Clients – General Fields 10.7.4 Boot Module Commands 10.8 Command Interpreter Mode 10.9 Time and Date Setting Figure 10-22System Maintenance – Time and Date Setting Table 10-7Time and Date Setting Fields Page IP Routing Policy 11.1 Introduction 11.2 Benefits 11.3 Routing Policy 11.4 IP Routing Policy Setup Figure 11-2Menu 25.1 – Sample IP Routing Policy Setup Table 11-1IP Routing Policy Setup Menu 25.1.1 – IP Routing Policy Figure 11-3IP Routing Policy Table 11-2IP Routing Policy 11.5 Applying an IP Policy 11.5.1 Ethernet IP Policies Figure 11-4Menu 3.2 – TCP/IP and DHCP Ethernet Setup Figure 11-5Menu 11.3 – Remote Node Network Layer Options 11.6 IP Policy Routing Example Menu 25.1 - IP Routing Policy Figure 11-7IP Routing Policy Example Menu 25.1 - IP Routing Policy Setup Figure 11-8IP Policy Routing Figure 11-9Applying IP Policies Part: ADDITIONAL INFORMATION Page Troubleshooting Page Appendix A Power Adapter Specifications Glossary Page Page Page Page Page Page Page Page Page Page Index