Index, Ddns | ZyXEL Communications P-312 manual

P312 Broadband Security Gateway

A

Action for Matched Packets	.......................... 16-10
Activate The Firewall	19-2
ActiveX	20-1
Add Keyword	20-3
Alert Schedule	15-5
Application-level Firewalls	13-1
AT command	10-1
Attack
Reasons	18-2
Attack Alert	15-7, 15-9, 15-10
Attack Types	14-3
Reason	14-5
Authentication	4-3, 4-4

B

BackOrifice	R
backup	10-2
Big Picture
Filtering, Firewall and NAT	14-5
Block Web URLs	20-3
Blocking Time	15-8, 15-9, 15-11
Blocking URLs	20-2
Boot commands	11-7
Broadband Security Gateway	i, ii, xxvii, 1-1
Brute Force Hacking	R
Budget Management	11-2, 11-3

C
Cable Modem	2-2, 2-3, 13-2
Call Control	11-2
Call History	11-3, 11-4
Call-Trigerring Packet	9-10
CDR	9-7
CHAP	4-4
CLI Commands	K
COM (Component Object Model)	20-1
Command Interpreter Mode	11-1
Configuring A POP Custom Port	19-8

		Index
Configuring A Rule		19-5
console port		2-3
Console Port	2-3, 9-4, 9-5, I
Content Filtering		20-1
Cookies		20-2
Custom Ports
Creating/Editing		17-2
Introduction		17-1
Customer Support		viii
Customized Services		17-2
	D
DDNS
Configuration		2-9
Default Permit Log		16-7
Denial of Service	13-2, 13-3, 14-1, 15-8
Denial of Services
Thresholds		15-10
DestAdd		19-10
Destination Address		16-2, 16-9
DHCP		3-3
DHCP (Dynamic Host Configuration Protocol)1-2,
3-3
DHCP Negotiation		19-11
Diagnostic		9-10
DNS		3-3, 3-6
Domain Name	3-3, 6-13, 9-3, 9-5, T
DoS
Basics		13-3
Types		13-4
DoS (Denial of Service)		1-1
Dynamic DNS		2-8, 2-9
DYNDNS Wildcard		2-8
	E
EG 2 - Internet Rule Summary		19-11
EG 2 - Local Network Rule Summary		19-10
EG3 - Rule Summary		19-14
E-Mail Alerts		15-5
E-Mail Screen		19-3
E-Mail tab		15-4

Index

CC

Image 250

ZyXEL Communications P-312 manual Index, Ddns

Contents

Prestige Disclaimer CopyrightTrademarks Federal Communications Commission FCC Interference Statement Information for Canadian Users Declaration of Conformity Version P312 Broadband Security Gateway CE Doc ZyXEL Limited Warranty Customer Support Information in Menu 24.2.1 -System Information Table of Contents LAN Port Filter Setup Chapter Advanced Management 12-1 Firewall and Content Filters 13-1 17-1 21-1 Pptp List of Figures Menu 11.1 Remote Node Profile for Ethernet Encapsulation List Of Figures Xvii Xviii List Of Figures Xix Menu 21 Filter and Firewall Setup 14-1 List Of Figures Xxi Page List Of Tables Xxiv List of Tables Xxv Page About Your Router PrefaceStructure of this Manual Related Documentation Syntax Conventions Part Page Getting to Know Your Prestige Features of The PrestigePrestige 312 Broadband Security Gateway Dynamic DNS Support Dhcp Dynamic Host Configuration ProtocolTime and Date Setting IP Multicast Applications for Prestige Broadband Internet Access via Cable or xDSL ModemUpgrade Prestige Firmware via LAN Logging and Tracing Secure Internet Access via DSL Front Panel LEDs Hardware Installation & Initial SetupFront Panel LEDs and Back Panel Ports LED functions Prestige 312 Rear Panel and Connections WAN Additional Installation Requirements Entering Password HousingPower Up Your Prestige Initial Screen Operation Keystrokes Description Main Menu CommandsNavigating the SMT Interface Enter Prestige 312 Main Menu Main MenuSystem Management Terminal Interface Summary Main Menu Summary Changing the System Password Resetting the Prestige Dynamic DNS General SetupDyndns Wildcard Configure Menu 1.1 Configure Dynamic DNS discussed next Configuring Dynamic DNSGeneral Setup Menu Field Field Description Example Yes WAN SetupConfigure Dynamic DNS Menu Fields Me.ddns.org LAN Setup WAN Setup Menu Fields LAN Port Filter Setup 10 Menu 3 LAN Setup TCP/IP and Dhcp for LAN Internet AccessFactory LAN Defaults IP Address and Subnet Mask RIP Setup Private IP Addresses IP Multicast Dhcp ConfigurationIP Pool Setup DNS Server Address IP Alias TCP/IP and Dhcp Ethernet SetupPhysical Network Partitioned Logical Networks Menu 3 LAN Setup 10/100 Mbps Ethernet LAN Dhcp Setup Menu Fields LAN TCP/IP Setup Menu Fields Menu 3.2.1 IP Alias Setup IP Alias SetupIP Alias Setup Menu Fields Only/Out Only Internet Access SetupEthernet Encapsulation RIP-1 Internet Access Setup Menu Fields Pptp Encapsulation New Fields in Menu 4 Pptp screen Configuring the Pptp ClientPPPoE Encapsulation Prestige automatically disconnects from the Pptp server Internet Access Setup PPPoE Basic Setup Complete New Fields in Menu 4 PPPoE screen Advanced Applications Remote Node Setup Remote Node Profile Fields in Menu Nailed-Up Connection Fields in Menu 11.1 PPPoE Encapsulation Specific Fields in Menu 11.1 Pptp Encapsulation Editing TCP/IP Options with Ethernet Encapsulation Remote Node Network Layer Options Menu Fields Version Editing TCP/IP Options with Pptp EncapsulationPrivate 2B/RIP-2M and None Multicast Remote Node Network Layer Options Yes/No Remote Node FilterEditing TCP/IP Options with PPPoE Encapsulation None/In Only/Out Only and None Remote Node Filter Ethernet Encapsulation IP Static Route Setup Example of Static Routing Topology IP Static Route Setup Menu 12 IP Static Route Setup IP Static Route Menu Fields Field DescriptionPage NAT Definitions Network Address Translation NATIntroduction What NAT Does How NAT works NAT Mapping Types NAT Mapping Types SUA Single User Account Versus NATType IP Mapping SMT abbreviation NAT Application SMT MenusApplying NAT in the SMT Menus Applying NAT for Internet Access Address Mapping Sets and NAT Server Sets Configuring NATField Options Description Network Full Feature Applying NAT in Menus 4 Menu 15.1 Address Mapping Sets Field Description Options/Example Server Ordering Your Rules Menu Menu 15.1.1.1 configuring an individual rule Editing an Individual Rule in a Set NAT Server Sets Multiple Servers behind NAT Configuring a Server behind NAT 10 Multiple Servers Behind NAT Services Port Number Internet Access OnlyExamples 13 Internet Access & NAT Example NAT Example Example 2 Internet Access with an Inside Server Example 3 General Case 16 NAT Example 17 Example 3 Menu 19 Example 3 Final Menu Example 4 -NAT Unfriendly Application Programs 21 NAT Example 22 Example 4- Menu 15.1.1.1 Address Mapping Rule Advanced Management Page Filter Configuration About Filtering Filter Structure of the Prestige Filter Rule Process Rule Forward Drop Configuring a Filter Set Menu 21 Filter and Firewall Setup NetBIOSWAN Filter Rules Summary Abbreviations Description Display Filter Rules Summary MenuAbbreviations Used in the Filter Rules Summary Menu Action Not Matched will be N/A Refers to Action Matched Abbreviations Used If Filter Type Is IP Configuring a Filter Rule3 TCP/IP Filter Rule Abbreviations Used If Filter Type Is GEN Menu 21.1.1.1 TCP/IP Filter Rule TCP/IP Filter Rule Menu Fields Yes / No None/Less/GreaterEqual/Not Equal Action Matched Following diagram illustrates the logic flow of an IP filter 10 Executing an IP Filter Generic Filter Rule 11 Menu 21.4.1.1 Generic Filter Rule Generic Filter Rule Menu Fields Example Filter 12 Telnet Filter Example 13 Example Filter Menu Filter Types and NAT 14 Example Filter Rules Summary Menu Firewall Applying a Filter and Factory DefaultsLAN traffic Remote Node Filters 16 Filtering LAN Traffic Configuring Snmp Snmp ConfigurationAbout Snmp Snmp Configuration Menu Fields Field Description Default Menu 24 System Maintenance System Information & Diagnosis Menu 24.1 System Maintenance Status System Status LAN System Maintenance Status Menu FieldsPPPoE Encapsulation Dhcp System Information and Console Port Speed System Information Log and Trace Fields in System MaintenanceConsole Port Speed Viewing Error Log Unix Syslog Parameter Description System Maintenance Menu Syslog ParametersCDR CDR PPP log Diagnostic Call-Triggering Packet 10 Menu 24.4 System Maintenance Diagnostic WAN Dhcp Internet Setup in Menu 4 Internet Access System Maintenance Menu DiagnosticNumber Field Description Transferring Files Filename conventions Firmware Development Backup ConfigurationCommand Filename Conventions Upload Firmware Restore ConfigurationUploading the Router Firmware Uploading Router Configuration File Menu 24.7.1 System Maintenance Upload Router Firmware Tftp File Transfer Example Tftp Command Third Party Tftp Clients -General fields FTP File Transfer Telnet into Menu Using the FTP command from the DOS Prompt Telnet into Menu 24.7.2 System Maintenance Third Party FTP Clients -General fields Page Command Interpreter Mode System Maintenance & InformationValid Commands Budget Management Call Control SupportCall Control Call History Call History How often does the Prestige update the time? Time and Date SettingCall History Fields System Maintenance & Information 11-5 Remote Management Setup Menu 24.11 Remote Management Control Boot Commands Option to Enter Debug Mode Boot Module Commands Single Administrator Telnet Configuration and CapabilitiesAbout Telnet Configuration Telnet Under NAT System Timeout Telnet Under the Firewall Firewall and Content Filters Packet Filtering Firewalls What is a FirewallTypes of Firewalls Application-level Firewalls Introduction to ZyXEL’s Firewall Stateful Inspection firewalls Denial of Service Basics Types of DoS attacks Common IP Ports SYN Flood Stateful Inspection Smurf Attack Stateful Inspection Process Stateful Inspection Stateful Inspection & the Prestige TCP Security 13.4.4 UDP/ICMP Security Guidelines For Enhancing Security With Your FirewallUpper Layer Protocols Security In General What Is a Firewall? 13-11 Page Introducing the Prestige Firewall SMT Main Menu Land View Firewall LogAttack Types IP Spoofing Legal NetBIOS Commands Icmp Commands That Trigger AlertsIllegal Commands NetBIOS and Smtp Legal Smtp Commands Traceroute Teardrop Big Picture Filtering, Firewall and NAT Packet Filtering Vs Firewall Packet Filtering When To Use The Firewall When To Use FilteringFirewall Page Introducing the Prestige Web Configurator Web Configurator Login and Welcome Screens Prestige Web Configurator Welcome Screen Enabling the Firewall Mail What are Alerts? What are Logs? Mail Screen Mail Smtp Error Messages Smtp Error MessagesExample E-Mail Log Attack Alert Mail Log Half-Open Sessions Threshold ValuesTCP Maximum Incomplete And Blocking Time Attack Alert Field Description Default Values Existing half-open sessions When TCP Maximum Incomplete is Do not set Maximum Incomplete High toPage Rules Overview Rule ChecklistCreating Custom Rules Rule Logic Overview Key Fields For Configuring Rules Security Ramifications LAN to WAN Rules Connection DirectionWAN to LAN Rules Services Supported WAN to LAN Traffic Services Supported Service Description Rule Summary Firewall Rules Summary First Screen Block Match Creating/Editing Firewall Rules Field Description Option Creating/Editing a Firewall Rule Source & Destination Addresses Range Address Adding/Editing Source & Destination AddressesSingle Address Subnet Address Timeout Factors Influencing Choices for Timeout Values Timeout Screen Field Description Default Value Timeout MenuHour Custom Ports Custom Ports Creating/Editing a Custom Port Creating/Editing a Custom Port Single Range Log Screen LogsLog Screen Jan 1 Vulnerability, NetBIOS, smtp illegalCommand, traceroute, teardrop, or syn Src IP, dest port, src port and protocol Logs 18-3 Page Example Firewall Rules Activate The Firewall Example 1 E-Mail Screen Example 1 Configuring a Rule Example Firewall Rules 19-5 Example 2 Small Office With Mail, FTP and Web Servers Example 1 Rule Summary Screen Send Alerts When Attacked Configuring a POP Custom Port Example 2 Local Network Rule 1 Configuration Example 2 Local Network Rule Summary 10 Example 2 Internet to Local Network Rule Summary 11 Custom Port for Syslog 12 Syslog Rule Configuration 13 Example 3 Rule Summary ActiveX Content FilteringRestrict Web Features Java Cookies Content Filtering Using the Web ConfiguratorBlocking URLs Web Proxy Field Description Restrict Web Features Content Filtering FieldsBlock Web URLs Troubleshooting, Appendices, Glossary and Index Page Troubleshooting the Start-Up of your Prestige TroubleshootingProblems Starting Up the Prestige Problem Corrective Action Troubleshooting the LAN Interface Problems with the LAN InterfaceProblems with the WAN interface Troubleshooting the WAN interface Problems with the Firewall Problems with Internet AccessTroubleshooting Internet Access Page PPPoE in Action Diagram 1 Single-PC per Modem Hardware ConfigurationAppendix a PPPoE Benefits of PPPoE How PPPoE Works Diagram 2 Prestige as a PPPoE ClientPrestige as a PPPoE Client Pptp and the Prestige What is PPTP?Appendix B Pptp Protocol Overview Control & PPP connections Mtbf Appendix C Hardware SpecificationsIRD + OTD + Appendix D Important Safety Instructions Appendix E Firewall CLI Commands Function CLI Syntax Sets Function CLI Syntax Description P312 Broadband Security Gateway Delete Appendix F Power Adapter Specs AC Power Adapter Specifications P312 Broadband Security Gateway ARP Glossary of TermsCDR Chap CSU/DSU DCE DTE Dram DSLDslam EMI FTP FAQFCC Hdlc IRC ISP Ipcp PPP IPXMAC NIC NATNdis PAP Pots PPP POPPstn RIP PVCRFC SAP SUA TCP SpamSTP Tftp VPN Page Index Ddns Encapsulation 2-11, 2-12, 3-4 13-6 15-1 ZyNOS