Security Parameters Summary | ZyXEL Communications P-2602 manual

P-2602H(W)(L)-DxA Series User’s Guide

The Message Integrity Check (MIC) is designed to prevent an attacker from capturing data packets, altering them and resending them. The MIC provides a strong mathematical function in which the receiver and the transmitter each compute and then compare the MIC. If they do not match, it is assumed that the data has been tampered with and the packet is dropped.

By generating unique data encryption keys for every data packet and by creating an integrity checking mechanism (MIC), TKIP makes it much more difficult to decrypt data on a Wi-Fi network than WEP, making it difficult for an intruder to break into the network.

The encryption mechanisms used for WPA and WPA-PSK are the same. The only difference between the two is that WPA-PSK uses a simple common password, instead of user-specific credentials. The common-password approach makes WPA-PSK susceptible to brute-force password-guessing attacks but it’s still an improvement over WEP as it employs an easier-to- use, consistent, single, alphanumeric password.

Security Parameters Summary

Refer to this table to see what other security parameters you should configure for each Authentication Method/ key management protocol type. MAC address filters are not dependent on how you configure these security features.

Table 149 Wireless Security Relational Matrix

	AUTHENTICATION	ENCRYPTION	ENTER
	METHOD/ KEY	ENCRYPTION	ENTER	ENABLE IEEE 802.1X
	METHOD/ KEY	METHOD	MANUAL KEY	ENABLE IEEE 802.1X
	MANAGEMENT PROTOCOL	METHOD	MANUAL KEY

	Open	None	No	No

	Open	WEP	No	Enable with Dynamic WEP Key

			Yes	Enable without Dynamic WEP Key

			Yes	Disable

	Shared	WEP	No	Enable with Dynamic WEP Key

			Yes	Enable without Dynamic WEP Key

			Yes	Disable

	WPA	WEP	No	Yes

	WPA	TKIP	No	Yes

	WPA-PSK	WEP	Yes	Yes

	WPA-PSK	TKIP	Yes	Yes

370	Appendix E Wireless LANs

Image 370

ZyXEL Communications P-2602 Security Parameters Summary, Wireless Security Relational Matrix, Appendix E Wireless LANs

Contents

2602HWL Series Page Trademarks CopyrightDisclaimer 2602HWL-DxA Series User’s Guide Viewing Certifications CertificationsCertifications Safety Warnings Safety Warnings ZyXEL Limited Warranty ZyXEL Limited Warranty Customer Support Customer Support Norway Table of Contents Chapter VoIP Wizard And Example Chapter LAN Setup 107 141 156 Chapter Phone Usage 179 Chapter Firewall Configuration 193 Chapter VPN Screens 221 Chapter Static Route 249 Chapter System 289 Chapter Diagnostic 315 Appendix B Splitters and Microfilters 339 Appendix F Services 371 Appendix G Firewall Commands 375 Index 421 List of Figures List of Figures Bandwidth Management Wizard General Information Firewall Example Edit Rule Destination Address 205 Telecommuters Using Unique VPN Rules Example 246 FTP Session Example of Firmware File Upload 312 Peer-to-Peer Communication in an Ad-hoc Network 361 List of Tables List of Tables 139 228 333 389 2602HWL-DxA Series User’s Guide List of Tables Related Documentation PrefaceAbout This Users Guide User Guide Feedback Graphics Icons Key Dslam Models Covered Getting To Know the ZyXEL DeviceIntroducing the P-2602HWL-Dx Series Getting To Know the ZyXEL Device High Speed Internet Access FeaturesBuilt-in Switch Adsl Standards Any IP Zero Configuration Internet AccessAuto Firmware Upgrade Auto Provisioning Media Bandwidth Management Content FilteringNetwork Address Translation NAT Dynamic Jitter Buffer Other PPPoE Features Echo CancellationQoS Quality of Service Universal Plug and Play UPnP Wireless Features W models only Wi-Fi Protected Access Ieee 802.11g+ Wireless LANWireless LAN MAC Address Filtering External Antenna Applications for the ZyXEL Device Internet AccessMaking Calls via Internet Telephony Service Provider Internet Single User Account Firewall for Secure Broadband Internet Access Make Peer-to-peer Calls LAN to LAN Application Firewall Application Ethernet LED Color Status Description PowerLEDs Wlan Internet 2602HWL-DxA Series User’s Guide LEDsLED Color Status Description DSL Phone 1 Accessing the Web Configurator Introducing the Web ConfiguratorWeb Configurator Overview Introducing the Web Configurator Password Screen Reset Button Using The Reset Button Web Configurator Main Screen Title Bar Navigation Panel Summary Web Configurator Icons in the Title BarNavigation Panel Icon Description VPN 2602HWL-DxA Series User’s Guide Navigation Panel SummaryMgmt Main Window Status BarPage Internet and Wireless Setup Wizard Internet and Wireless Setup WizardInternet Access Wizard Setup Introduction Wizard Welcome Manual Configuration Auto-Detection PPPoE VPI Label DescriptionPPPoE VCI Internet Connection with PPPoE Internet Connection with RFC Internet Connection with Enet Encap Internet Connection with PPPoA Connection Test Failed-1 Wireless Connection Wizard Setup Connection Test Successful Wireless LAN Setup Wizard Wireless LAN Manually Assign a WPA key Internet and Wireless Setup Wizard Manually Assign a WPA key Manually Assign a WEP key Manually Assign a WPA key Wireless LAN Setup Manually Assign a WEP key 2602HWL-DxA Series User’s Guide VoIP Wizard And Example VoIP Wizard SetupVoIP Wizard And Example Wizard Welcome VoIP Wizard And Example VoIP Wizard Configuration Sample SIP Account Information 2602HWL-DxA Series User’s Guide VoIP Wizard Configuration SIP Registration Test VoIP Wizard Fail 2602HWL-DxA Series User’s Guide VoIP Wizard And Example Service Description Predefined Media Bandwidth Management ServicesMedia Bandwidth Management Setup Services Bandwidth Management Wizard Bandwidth Management Wizard Setup Tftp Click Bandwidth Management Setup Following fields describe the label in this screen Bandwidth Management Wizard Complete 2602HWL-DxA Series User’s Guide Bandwidth Management Wizard Status Screens Status Screen Dhcp Status ScreenVPI/VCI Ssid This in Maintenance System Time Setting 253 Any IP Table SettingsCan change these in VoIP SIP SIP Settings 2602HWL-DxA Series User’s Guide Status Screen Packet Statistics Wlan Status W models onlyAny IP Table Packet Statistics VoIP Statistics VoIP Statistics Status Screens VoIP Statistics Interval 2602HWL-DxA Series User’s Guide Status Screens Encapsulation WAN SetupWAN Overview Enet Encap Multiplexing VPI and VCI Nailed-Up Connection PPP IP Address Assignment6 NAT Metric Traffic Shaping Constant Bit Rate CBR ATM Traffic ClassesVariable Bit Rate VBR Internet Access Setup Zero Configuration Internet AccessUnspecified Bit Rate UBR Internet Access Setup Encap or PPPoE Enet Encap 2602HWL-DxA Series User’s Guide Internet Access Setup100 WAN Setup Enet Encap in the Encapsulation field Advanced Internet Access Setup WAN Setup 101 102 WAN Setup WAN More Connections WAN Setup 103 Traffic Redirect Traffic Redirect Example WAN Backup Setup WAN Backup SetupWAN Setup 105 2602HWL-DxA Series User’s Guide WAN Backup Setup 106 WAN Setup LAN Overview LAN SetupLANs, WANs and the ZyXEL Device 108 LAN Setup Dhcp SetupIP Pool Setup DNS Server Address DNS Server Address Assignment LAN Setup 109IP Address and Subnet Mask 110 LAN Setup RIP SetupPrivate IP Addresses Multicast LAN Setup 111Any IP 112 LAN Setup How Any IP Works LAN Setup 113 Configuring LAN IPConfiguring Advanced LAN Setup LAN TCP/IP 114 LAN Setup TCP/IP Dhcp Setup Dhcp SetupLAN Setup 115 2602HWL-DxA Series User’s Guide Dhcp Setup LAN Client List LAN IP Alias LAN Setup 117LAN Client List Physical Network & Partitioned Logical Networks LAN IP Alias LAN Setup 119 2602HWL-DxA Series User’s Guide 120 LAN Setup Wireless Network Overview Wireless LANWireless LAN 121 Ssid Wireless Security Overview122 Wireless LAN MAC Address Filter Wireless LAN 123 User AuthenticationTypes of Encryption for Each Type of Authentication Weakest Strongest No Authentication Radius Server 124 Wireless LAN Wireless Performance OverviewQuality of Service QoS One-Touch Intelligent Security Technology Otist General Wlan Screen Additional Wireless TermsWireless LAN 125 Term Description 126 Wireless LAN No Security Wireless LAN 127 WEP Encryption Screen 128 Wireless LAN 3 WPA2-PSK Wireless WPA2-PSK Wireless LAN 129 4 WPA2 Authentication Screen 130 Wireless LAN Wireless LAN Advanced Setup Wireless LAN 131 802.11g Only mode Wireless LAN Advanced132 Wireless LAN RTS/CTS Security Mode to WPA-PSK , and enter the Pre-Shared Key Wireless LAN 133Setup Key Type a key password 8 Ascii characters long Otist Screen Example Wireless Client Otist Screen Otist In Progress on the Wireless Device Start OTIST? 136 Wireless LAN MAC Filter Wireless LAN 137 QoS Screen Application Priority Configuration screen Application Priority Configuration2602HWL-DxA Series User’s Guide Wireless LAN QoS Policy FTP Application Priority ConfigurationWireless LAN 139 WWW 2602HWL-DxA Series User’s Guide 140 Wireless LAN NAT Definitions Network Address Translation NAT ScreensNAT Overview NAT Definitions What NAT Does How NAT Works NAT Mapping Types NAT ApplicationNetwork Address Translation NAT Screens 143 NAT Mapping Types NAT General SetupSUA Single User Account Versus NAT 144 Network Address Translation NAT Screens Port Forwarding Network Address Translation NAT Screens 145 Port Forwarding Services and Port Numbers Default Server IP AddressConfiguring Servers Behind Port Forwarding Example Configuring Port Forwarding Network Address Translation NAT Screens 147 2602HWL-DxA Series User’s Guide Port Forwarding Port Forwarding Rule Edit148 Network Address Translation NAT Screens SIP ALG 2602HWL-DxA Series User’s Guide Port Forwarding Rule SetupNetwork Address Translation NAT Screens 149 Page 11.2 SIP VoiceIntroduction to VoIP SIP Identities SIP Servers SIP Service DomainSIP Call Progression SIP Call Progression SIP User Agent SIP Proxy Server SIP Register Server SIP Settings ScreenSIP Redirect Server 154 Voice Voice 155 Server Port field 11.3.1 RTP Pulse Code ModulationVoice Coding 11.5.1 G.711 Custom Tones IVR Pstn Call Setup SignalingMWI Message Waiting Indication Recording Custom Tones Deleting Custom Tones Advanced SIP Setup ScreenListening to Custom Tones 158 Voice VoIP SIP Settings Advanced Voice 159 VoIP SIP Settings Advanced 160 Voice Voice 161 DiffServ Quality of Service QoSType Of Service ToS Dscp and Per-Hop Behavior SIP QoS Screen VlanVoice 163 Pstn Line L models only Echo CancellationPhone Voice Activity Detection/Silence Suppression SIP1 Analog Phone ScreenVoice 165 SIP2 2602HWL-DxA Series User’s Guide Phone Analog Phone Advanced Analog Phone Setup Screen166 Voice Voice 167 Common Phone Settings ScreenDialing Interval Select in VoIP Phone Analog Phone European Flash Key Commands Supplementary Phone Services OverviewEurope Type Supplementary Phone Services Flash Key European Call Transfer European Call HoldEuropean Call Waiting Voice 169 European Three-Way Conference USA Type Supplementary ServicesUSA Flash Key Commands USA Call Hold USA Call Transfer Phone Region ScreenUSA Call Waiting USA Three-Way Conference Peer-to-Peer Calls Speed Dial172 Voice Voice 173 Speed Dial ScreenDial Phone Book section 2602HWL-DxA Series User’s Guide Phone Book Speed Dial Incoming Call Policy Screen174 Voice Phone Book Incoming Call Policy Voice 175 Condition Pstn Line Screen L models only176 Voice Incoming Call Number to the Forward to Number Pstn Line General Voice 177 2602HWL-DxA Series User’s Guide 178 Voice Dialing a Telephone Number Using Speed Dial to Dial a Telephone NumberPhone Usage Internal Calls Auto Firmware Upgrade 180 Phone Usage Types of Firewalls FirewallsFirewall Overview Packet Filtering Firewalls Stateful Inspection Firewalls Introduction to ZyXEL’s FirewallApplication-level Firewalls 182 Firewalls Basics Denial of ServiceDenial of Service Attacks Firewalls 183 Types of DoS Attacks 2602HWL-DxA Series User’s Guide Common IP Ports SYN Flood Firewalls 185 Illegal Commands NetBIOS and Smtp Icmp Vulnerability Stateful Inspection Traceroute Stateful Inspection on Your ZyXEL Device Stateful Inspection Process188 Firewalls 13.5.4 UDP/ICMP Security TCP SecurityFirewalls 189 Security In General Guidelines for Enhancing Security with Your FirewallUpper Layer Protocols 190 Firewalls Packet Filtering Packet Filtering Vs FirewallFirewalls 191 Firewall When To Use FilteringWhen To Use The Firewall 192 Firewalls Firewall Configuration 193 Firewall ConfigurationAccess Methods Firewall Policies Overview Rule Logic Overview Rule Checklist194 Firewall Configuration Security Ramifications Key Fields For Configuring Rules Connection Direction LAN to WAN Rules General Firewall PolicyAlerts Firewall General Firewall Configuration 197Firewall Rules Summary WAN to WAN / Router , WAN to LAN 198 Firewall Configuration General screen Configuring Firewall Rules Firewall Configuration 199 Firewall Edit Rule 200 Firewall Configuration Range Address , Subnet Address and Any Address Firewall Configuration 201Firewall Edit Rule Edit Customized Services Customized ServicesConfiguring a Customized Service 202 Firewall Configuration Firewall Configuration 203 Example Firewall Rule Firewall Example Rules Edit Custom Port Example Firewall Configuration 205 Firewall Example Edit Rule Destination Address Firewall Example Edit Rule Select Customized Services 206 Firewall Configuration DoS Thresholds Firewall Configuration 207Threshold Values Half-Open Sessions 208 Firewall ConfigurationTCP Maximum Incomplete and Blocking Time Firewall Configuration 209 Configuring Firewall ThresholdsLabel Description Default Values Not set Maximum Incomplete High to lower 210 Firewall Configuration2602HWL-DxA Series User’s Guide Firewall Threshold Than the current Maximum Incomplete Low Content Filtering Overview Content FilteringConfiguring Keyword Blocking Configuring the Schedule Content Filter Keyword Content Filter Schedule Configuring Trusted ComputersContent Filtering 213 2602HWL-DxA Series User’s Guide 214 Content Filtering IPSec Introduction to IPSecVPN Overview Security Association VPN Applications Data Origin AuthenticationIPSec Architecture Data Confidentiality Key Management EncapsulationIPSec Algorithms Introduction to IPSec 217 IPSec and NAT Transport ModeTunnel Mode 218 Introduction to IPSec Introduction to IPSec 219 Security Protocol Mode NATVPN and NAT ESP 2602HWL-DxA Series User’s Guide 220 Introduction to IPSec 17.1 VPN/IPSec Overview AH Authentication Header ProtocolVPN Screens IPSec Algorithms 2602HWL-DxA Series User’s Guide AH and ESP My IP Address222 VPN Screens Dynamic Secure Gateway Address VPN Setup ScreenSecure Gateway Address VPN Screens 223 VPN Setup 224 VPN Screens VPN Screens 225 Keep AliveIKE screen to 17.7 VPN, NAT, and NAT Traversal 226 VPN Screens Remote DNS Server ID Type and ContentVPN Screens 227 Local ID TYPE= CONTENT= Local ID Type and Content FieldsPeer ID Type and Content Fields Peer ID TYPE= CONTENT= Pre-Shared Key ID Type and Content ExamplesEditing VPN Policies Edit VPN Policies 230 VPN Screens VPN Screens 231 0.0 2602HWL-DxA Series User’s Guide Edit VPN Policies 232 VPN Screens VPN Screens 233 Secure Gateway Address field description IKE Phases 234 VPN Screens Negotiation Mode VPN Screens 235 Perfect Forward Secrecy PFS Configuring Advanced IKE SettingsDiffie-Hellman DH Key Groups 236 VPN Screens VPN Screens 237 VPN IKE 2602HWL-DxA Series User’s Guide Advanced VPN Policies 238 VPN Screens Security Parameter Index SPI Manual Key SetupConfiguring Manual Key VPN Screens 239 240 VPN Screens SPI 2602HWL-DxA Series User’s Guide VPN Manual Key VPN Screens 241 Viewing SA Monitor 242 VPN Screens VPN SA Monitor VPN Screens 243 Telecommuters Sharing One VPN Rule Example Configuring Global SettingTelecommuter VPN/IPSec Examples 244 VPN Screens VPN Screens 245 Telecommuters Using Unique VPN Rules ExampleFields Telecommuters Headquarters 246 VPN Screens Telecommuters Headquarters VPN and Remote Management VPN Screens 247 2602HWL-DxA Series User’s Guide 248 VPN Screens Static Route Configuring Static RouteStatic Route Static Route 249 Static Route Edit 250 Static Route Static Route Edit Static Route 251 2602HWL-DxA Series User’s Guide 252 Static Route Application-based Bandwidth Management Bandwidth ManagementBandwidth Management Overview Subnet-based Bandwidth Management Priority-based Scheduler Application and Subnet-based Bandwidth ManagementScheduler Application and Subnet-based Bandwidth Management Example Reserving Bandwidth for Non-Bandwidth Class Traffic Maximize Bandwidth UsageFairness-based Scheduler Bandwidth Management 255 Maximize Bandwidth Usage Example Maximize Bandwidth Usage ExamplePriority-based Allotment of Unused and Unbudgeted Bandwidth 256 Bandwidth Management Fairness-based Allotment of Unused and Unbudgeted Bandwidth Configuring SummaryBandwidth Management Priorities Bandwidth Management Priorities Media Bandwidth Management Summary 258 Bandwidth Management Bandwidth Management Rule Setup Bandwidth Management 259 Rule Configuration Bandwidth Management Rule Configuration 260 Bandwidth Management Rule Configuration Bandwidth Management 261 Bandwidth Monitor Bandwidth Management Monitor 262 Dynamic DNS Setup 263 Dynamic DNS SetupConfiguring Dynamic DNS Dynamic DNS Overview 264 Dynamic DNS Setup Dynamic DNS Dynamic DNS Setup 265 2602HWL-DxA Series User’s Guide 266 Dynamic DNS Setup Remote Management Overview Remote Management ConfigurationRemote Management Configuration 267 Remote Management Limitations 21.2 WWW System TimeoutRemote Management and NAT Telnet Configuring TelnetRemote Management Configuration 269 Remote Management WWW Configuring FTP 270 Remote Management Configuration Remote Management Configuration 271 Snmp 272 Remote Management Configuration Supported MIBs Snmp Traps Configuring SnmpRemote Management Configuration 273 Snmp Traps 274 Remote Management Configuration Remote Management Snmp Configuring Icmp Configuring DNSRemote Management Configuration 275 276 Remote Management Configuration Remote Management Icmp Introducing Universal Plug and Play How do I know if Im using UPnP?Universal Plug-and-Play UPnP NAT Traversal Configuring UPnP UPnP and ZyXEL Configuring UPnP Installing UPnP in Windows ExampleUniversal Plug-and-Play UPnP 279 Add/Remove Programs Windows Setup Communication Add/Remove Programs Windows Setup Communication Components Network Connections Windows Optional Networking Components Wizard Using UPnP in Windows XP Example 282 Universal Plug-and-Play UPnP Network Connections Internet Connection Properties Advanced Settings Internet Connection Properties Advanced Settings Add System Tray Icon Internet Connection Status 286 Universal Plug-and-Play UPnP Network Connections My Network Places Page System General Setup and System NameGeneral Setup System 289 System General Setup 290 System Time Setting System 291 2602HWL-DxA Series User’s Guide System Time Setting 292 System System 293 2602HWL-DxA Series User’s Guide 294 System Viewing the Logs LogsLogs Overview Alerts and Logs Configuring Log Settings 296 Logs Log Settings Logs 297 2602HWL-DxA Series User’s Guide Log Settings 298 Logs Example E-mail Log Smtp Error MessagesSmtp Error Messages Logs 299 Mail Log Example 300 Logs Introduction Filename Conventions ToolsTools 301 Filename Conventions File Maintenance Over WANFirmware Upgrade Screen 302 Tools Firmware Upgrade Backup and Restore 304 Tools Restore Configuration Backup ConfigurationRestore Configuration Tools 305 Configuration Upload Successful Reset to Factory Defaults Restart FTP Command Configuration Backup Example Using FTP or Tftp to Back Up ConfigurationUsing the FTP Commands to Back Up Configuration 308 Tools General Commands for GUI-based FTP Clients Configuration Backup Using GUI-based FTP ClientsBackup Configuration Using Tftp Command Description Configuration Backup Using GUI-based Tftp Clients Using FTP or Tftp to Restore ConfigurationTftp Command Configuration Backup Example General Commands for GUI-based Tftp Clients FTP File Upload Command from the DOS Prompt Example FTP and Tftp Firmware and Configuration File UploadsRestore Using FTP Session Example Tools 311 Tftp File Upload FTP Session Example of Firmware File Upload312 Tools Tftp Upload Command Example Tools 313 2602HWL-DxA Series User’s Guide 314 Tools DSL Line Diagnostic DiagnosticGeneral Diagnostic Diagnostic 315 Diagnostic DSL Line 316 Diagnostic Diagnostic 317 Signal coming into the ZyXEL Device from the ISP 2602HWL-DxA Series User’s Guide 318 Diagnostic Problems Starting Up the ZyXEL Device TroubleshootingProblems with the LAN 320 Troubleshooting Problems with the WANTroubleshooting the WAN Internet light is Troubleshooting 321 Problems Accessing the ZyXEL DeviceTroubleshooting Accessing Your Device Pop-up Windows, JavaScripts and Java Permissions 322 Troubleshooting Internet Explorer Pop-up Blockers Troubleshooting 323 Internet Options 324 Troubleshooting Troubleshooting 325 JavaScripts 326 Troubleshooting Troubleshooting 327 Java Permissions Security Settings Java 328 Troubleshooting Troubleshooting Telephone Telephone ProblemsTroubleshooting 329 Problems With Multiple SIP Accounts Outgoing Calls Incoming Calls Default Incoming Calls 2602HWL-DxA Series User’s Guide 332 Troubleshooting Device Specifications Specification TablesAppendix a Product Specifications 333 334 Appendix a Product Specifications 2602HWL-DxA Series User’s Guide Firmware SpecificationsRIP I/RIP WMM Appendix a Product Specifications 335WPA2 NAT/SUA 2602HWL Series Power Adaptor Specifications 2602HWL Series Power Adaptor Specifications336 Appendix a Product Specifications Appendix a Product Specifications 337 United Kingdom Plug StandardsPage Telephone Microfilters Connecting a Pots SplitterAppendix B Splitters and Microfilters 339 Connecting a Microfilter ZyXEL Device With Isdn Appendix C Setting up Your Computer’s IP Address 341 Windows 95/98/Me Installing Components 342 Appendix C Setting up Your Computer’s IP Address Configuring Appendix C Setting up Your Computer’s IP Address 343 344 Appendix C Setting up Your Computer’s IP Address Verifying SettingsWindows 2000/NT/XP Windows XP Start Menu Windows XP Control Panel Windows XP Control Panel Network Connections Properties Windows XP Local Area Connection Properties Windows XP Advanced TCP/IP Settings Appendix C Setting up Your Computer’s IP Address 347 348 Appendix C Setting up Your Computer’s IP Address Windows XP Internet Protocol TCP/IP Properties Appendix C Setting up Your Computer’s IP Address 349 Macintosh OS 8/9 Macintosh OS Macintosh OS 8/9 TCP/IP Appendix C Setting up Your Computer’s IP Address 351 Macintosh OS X NetworkPage IP Address Classes and Hosts Introduction to IP AddressesAppendix D IP Addresses and Subnetting 353 Allowed IP Address Range By Class IP Address Classes and Network IDClasses of IP Addresses 354 Appendix D IP Addresses and Subnetting Natural Masks Subnet MasksSubnetting Alternative Subnet Mask Notation 356 Appendix D IP Addresses and Subnetting Example Two SubnetsTwo Subnets Example IP/SUBNET Mask Network Number Host ID Subnet Example Four SubnetsAppendix D IP Addresses and Subnetting 357 2602HWL-DxA Series User’s Guide Subnet Example Eight Subnets358 Appendix D IP Addresses and Subnetting Class C Subnet Planning Subnetting With Class a and Class B NetworksEight Subnets Appendix D IP Addresses and Subnetting 359 Class B Subnet Planning 360 Appendix D IP Addresses and Subnetting Ad-hoc Wireless LAN Configuration Wireless LAN TopologiesAppendix E Wireless LANs 361 Basic Service Set 362 Appendix E Wireless LANs Appendix E Wireless LANs 363 Channel 364 Appendix E Wireless LANs Fragmentation Threshold Appendix E Wireless LANs 365 Preamble Type Ieee 366 Appendix E Wireless LANsTypes of Radius Messages Appendix E Wireless LANs 367 Types of AuthenticationEAP-MD5 Message-Digest Algorithm EAP-TLS Transport Layer Security EAP-TTLS Tunneled Transport Layer Service368 Appendix E Wireless LANs Peap Protected EAP Appendix E Wireless LANs 369 Comparison of EAP Authentication TypesEAP-MD5 EAP-TLS EAP-TTLS Peap Leap 370 Appendix E Wireless LANs Wireless Security Relational MatrixSecurity Parameters Summary Appendix F Services 371 Examples of ServicesName Protocol Ports Description 2602HWL-DxA Series User’s Guide Examples of Services 372 Appendix F Services Appendix F Services 373 Tftp UDP 374 Appendix F ServicesVdolive TCP Appendix G Firewall Commands 375 Sys Firewall CommandsSys Firewall Commands Command DescriptionPage Triangle Route Problem Ideal SetupAppendix H Triangle Route 377 IP Aliasing Triangle Route Solutions378 Appendix H Triangle Route Gateways on the WAN Side Gateways on the WAN Side Appendix H Triangle Route 379Page Appendix I Log Descriptions 381 System Maintenance LogsLOG Message Description Access Control Logs 2602HWL-DxA Series User’s Guide System Maintenance LogsSystem Error Logs 382 Appendix I Log Descriptions Appendix I Log Descriptions 383 2602HWL-DxA Series User’s Guide TCP Reset LogsPacket Filter Logs TCP Maximum Incomplete in the Firewall Attack Alerts screen 2602HWL-DxA Series User’s Guide Icmp Logs 384 Appendix I Log Descriptions Attack Logs Content Filtering LogsSystem forwarded web content Appendix I Log Descriptions 385 802.1X Logs 2602HWL-DxA Series User’s Guide Attack Logs386 Appendix I Log Descriptions Appendix I Log Descriptions 387 ACL Setting NotesIcmp Notes Packet Direction Description Syslog Logs 2602HWL-DxA Series User’s Guide Icmp Notes388 Appendix I Log Descriptions Pstn Logs FSM Logs Caller SideFSM Logs Callee Side Appendix I Log Descriptions 389 RFC-2408 Isakmp Payload Types Log CommandsConfiguring What You Want the ZyXEL Device to Log 390 Appendix I Log Descriptions Displaying Logs Appendix I Log Descriptions 391 Log Command Example 392 Appendix I Log Descriptions Command Usage Command SyntaxAppendix J Command Interpreter 393 Page Internal Sptgen Overview Configuration Text File FormatAppendix K Internal Sptgen 395 Internal Sptgen FTP Download Example 396 Appendix K Internal Sptgen Example Internal Sptgen Screens Internal Sptgen FTP Upload ExampleAppendix K Internal Sptgen 397 398 Appendix K Internal Sptgen Menu 1 General SetupAbbreviation Meaning Appendix K Internal Sptgen 399 Dhcp 400 Appendix K Internal Sptgen Menu 4 Internet Access Setup Appendix K Internal Sptgen 401 2602HWL-DxA Series User’s Guide Menu 4 Internet Access Setup 402 Appendix K Internal Sptgen Appendix K Internal Sptgen 403 2602HWL-DxA Series User’s Guide Menu 404 Appendix K Internal Sptgen Appendix K Internal Sptgen 405 406 Appendix K Internal Sptgen Menu 15 SUA Server Setup Appendix K Internal Sptgen 407 2602HWL-DxA Series User’s Guide Menu 15 SUA Server Setup 408 Appendix K Internal Sptgen Menu 21.1 Filter Set #1 Appendix K Internal Sptgen 409 2602HWL-DxA Series User’s Guide Menu 21.1 Filter Set #1 410 Appendix K Internal Sptgen Appendix K Internal Sptgen 411 412 Appendix K Internal Sptgen 2602HWL-DxA Series User’s Guide Menu 21.1 Filer Set #2 Appendix K Internal Sptgen 413 414 Appendix K Internal Sptgen Appendix K Internal Sptgen 415 416 Appendix K Internal Sptgen Menu 23 System Menus Appendix K Internal Sptgen 417 Menu 24.11 Remote Management Control 2602HWL-DxA Series User’s Guide Menu 23 System Menus418 Appendix K Internal Sptgen Appendix K Internal Sptgen 419 Command ExamplesCommand Examples FIN PVA InputPage Index Index 421 Dbpsk 422 IndexFCC Index 423 Http 182, 183 Itsp 424 IndexOfdm Index 425 QoS 41 426 Index SIP URI Index 427 Vlan ID