NBG-460N
Page
About This Users Guide
Intended Audience
Related Documentation
User Guide Feedback
About This Users Guide
Document Conventions
Syntax Conventions
Telephone Switch Router Modem
Icons Used in Figures
NBG-460N Computer Server
Dslam
Safety Warnings
Safety Warnings NBG-460N User’s Guide
Contents Overview
Contents Overview NBG-460N User’s Guide
Table of Contents
Chapter Connection Wizard
Part II Network
WAN
177
Part IV Management
235
Part V Maintenance and Troubleshooting 261
Part VI Appendices and Index
Table of Contents NBG-460N User’s Guide
Part
Page
Overview
Getting to Know Your NBG-460N
Applications
Wireless Applications
Router Mode
LAN
NBG460N
AP Mode
3 AP + Bridge
Bridge
AP + Bridge Application
Bridge Application
Bridge Loop Two Bridges Connected to Hub
Features Available in Router Mode vs. AP Mode
Feature Router AP Mode Bridge
Ways to Manage the NBG-460N
Router vs. AP vs. Bridge
Power
Good Habits for Managing the NBG-460N
LEDs
Front Panel LEDs
Wireless LAN Off Wireless LAN is not ready or has failed
This feature Off Device is in normal power mode
WAN
Wlan
Getting to Know Your NBG-460N NBG-460N User’s Guide
WPS Button
WPS Button NBG-460N User’s Guide
Web Configurator Overview
Introducing the Web Configurator
Accessing the Web Configurator
Change Password Screen
Navigating the Web Configurator
Resetting the NBG-460N
Procedure to Use the Reset Button
Status Screen Icon Key
Status Screen in Router Mode
Icon Description
Dhcp
Label Description
Scheduler
Wlan is disabled
When the line is disconnected
Is enabled and N/A when the Wlan is disabled
Memory Usage
Navigation Panel
Screens Summary
Link TAB Function
LAN
NAT
Ddns
VPN
Mgmt
Mode As a Router or a Access Point Language
Summary Any IP Table
Summary Bandwidth Management Monitor
Logs View Log
Summary Dhcp Table
Summary BW Mgmt Monitor
Summary Packet Statistics
Host Name field
Summary VPN Monitor
Intervals field
Stop Click Stop to stop refreshing statistics
This is the security association index number
Summary Wireless Station Status
This is the index number of an associated wireless station
Association Time
NBG-460N’s Wlan network
Introducing the Web Configurator NBG-460N User’s Guide
Wizard Setup
Connection Wizard
Connection Wizard System Information
System Name
Domain Name
Underscores are accepted
Connection Wizard Wireless LAN
Use the same Ssid in order to access the network
This option is only available if WPS is not enabled
Ssid
Basic WEP Security
Wizard Basic WEP Security
Extend WPA-PSK or WPA2-PSK Security
WEP
Ascii
HEX
Connection Wizard Internet Configuration
Pre-Shared
Key
Do this
Ethernet Connection
PPPoE Connection
Connection Description Type
Pptp
ISP Parameter for Internet Access
Pptp Connection
ISP Parameters for Internet Access
Wizard Pptp Connection
Your IP Address
WAN IP Address Assignment
Use fixed IP address
Provided by your ISP
Private IP Address Ranges
IP Address and Subnet Mask
10.0.0.0 172.16.0.0 192.168.0.0
DNS Server Address Assignment
WAN IP and DNS Server Address Assignment
WAN IP Address Assignment
WAN MAC Address
Choose an IP address
Connection Wizard Bandwidth management
Wizard WAN MAC Address
Connection Wizard Complete
Wizard Bandwidth Management
Connection Wizard Complete
Connection Wizard NBG-460N User’s Guide
Tutorials
How to Connect to the Internet from an AP
Internet
Push Button Configuration
NBG460N
Example WPS Process PIN Method
SSIDExample3
Channel Security
WPA-PSK
Pre-Shared Key ThisismyWPA-PSKpre-sharedkey
Configure Your Notebook
Tutorial Status AP Mode
Connecting a Wireless Client to a Wireless Network
Using AP + Bridge Mode and WDS
Link Status
Configuring Your Bridge Mode Settings
WPA2-PSK
Pre-Shared Key ThisismyWPA2-PSKpre-sharedkey
Setting BOB’S NBG-460N JACK’S NBG-460N
Site-To-Site VPN Tunnel Settings
Site-To-Site VPN Tunnel Tutorial
Configuring Bob’s NBG-460N VPN Settings
Tutorial Property
Configuring Jack’s NBG-460N VPN Settings
Tutorial Authentication Method
Tutorial Property
Tutorial Authentication Method
Checking the VPN Connection
Pinging Jack’s Local IP Address
Configuring Bandwidth Management by Application
Bandwidth Management for your Network
Configuring Bandwidth Management by Custom Application
Configuring Bandwidth Allocation by IP or IP Range
Fields Services Real Audio Rtsp VDO Live FTP
Refer to Appedix F on the Bandwidth Mgnt
AP Mode
Setting your NBG-460N to AP Mode
Status AP Mode
Status Screen
Display Network Wireless LAN WPS screen
System Setting Configuration Mode
This shows the LAN port’s Dhcp role Client or None
Schedules
Menu AP Mode
Or connected
Maintenance System General
Setting Logs View Log
Reset the factory defaults to your NBG-460N
Mask or to get the LAN IP address from a Dhcp server
LAN Settings
Configuring Your Settings
Sys OP General
Wlan and Maintenance Settings
Table below describes the labels in the screen
Logging in to the Web Configurator in AP Mode
Network
Page
Wireless LAN
Example of a Wireless Network
What You Can Do
Wireless Security Overview
What You Should Know
Ssid
Types of Encryption for Each Type of Authentication
No Authentication Radius Server
100
Weakest Stronges t
Printable 7-bit Ascii characters for the wireless LAN
General Wireless LAN Screen
101
No Security
102
WPA-PSK and WPA2-PSK are available in this field
Select Static WEP , WPA-PSK , WPA , WPA2-PSK or WPA2 to add
WEP Encryption
103
104
Select 64-bit WEP or 128-bit WEP to enable data encryption
WEP keys and displays them in the Key fields below
105
AP or peer computer
Correct WEP key
Hex
Server, the reauthentication timer on the Radius server has
Security Mode field
106
Priority
4 WPA/WPA2
107
108
Server, the reauthentication timer on the Radius server
Has priority
MAC Filter Screen
109
110
MAC
Wireless LAN Advanced Screen
Quality of Service QoS Screen
111
RTS/CTS
112
On page 123 for more information
WMM QoS Policy
You want to apply WMM QoS
Configuration screen
Application Priority Configuration
113
Mail
114
User-Defined
WPS Screen
115
WPS Station Screen
Scheduling Screen
116
Push Button
117
Whole day
Following times fields
Day
WDS Screen
118
Between the NBG-460N and any wireless clients
Security Mode Static WEP
119
120
ASCII/HEX
Security Mode WPA2-PSK
Technical Reference
Roaming
121
122
Roaming Example
Quality of Service
123
WiFi Protected Setup
IPod Touch Web Configurator
124
WMM QoS Priorities
Login Screen
125
System Status
126
127
WAN connection is not working
128
MBM
Port Forwarding
WPS in Progress
129
Rule is turned on
130
Turn the rule OFF
Accessing the iPod Touch Web Configurator
Accessing the iPod Touch Web Configurator
131
132
133
LAN and WAN
What You Need To Know
Configuring Your Internet Connection
134
135
Multicast
WAN MAC Address
Iptv STB Port
136
137
You have one STB
You have two STBs
192.168.1.20
Auto-Bridge
NetBIOS over TCP/IP
138
Ethernet Encapsulation
Internet Connection
139
140
Address
Defined changes to None after you click Apply
WAN MAC
Setting or upload a different ROM file
PPPoE Encapsulation
141
Select Clone the computers MAC address IP Address and enter
All of the LANs computers will have access
142
143
DNS Servers First DNS
Computer’s
Different ROM file
Pptp Encapsulation
144
145
Pptp connection
146
Advanced WAN Screen
Select Clone the computers MAC address IP Address
147
Select Igmp V-1,IGMP V-2 or None
When the NBG-460N gets a WAN IP address that is not
To be in Router Mode for the Iptv STB port to work
Igmp
148
LAN
149
IP Pool Setup
LAN IP Screen
LAN TCP/IP
150
151
LAN IP Alias
LAN TCP/IP
Any IP Setup
Advanced LAN Screen
152
IP address that you assign. Unless you are implementing
LANs, WANs and the ZyXEL Device
153
Any IP
154
155
156
Dhcp
157
Dhcp Advanced Screen
Dhcp General Screen
158
Must have their DNS server addresses manually configured
Select the Enable Dhcp Server check box. When you clear
159
NBG-460Ns system DNS server configured in the WAN Internet
Client List Screen
160
Select DNS Relay to have the NBG-460N act as a DNS proxy.
161
This is the index number of the host computer
Host names. After you click Apply, the MAC address and IP
Them
162
Network Address Translation NAT
163
Enable Network
Select the check box to enable NAT
Default Server Setup
General NAT Screen
NAT Application Screen
165
166
167
Wake On LAN is enabled
Fields under Add Application Rule
Game List Example
Configuring Servers Behind Port Forwarding Example
168
NAT Advanced Screen
169
170
Users may not be able to access the Internet
Can establish through the NBG-460N
LAN that requested the service
Trigger Port Forwarding Example
171
Traffic to a server on the WAN
Two Points To Remember About Trigger Ports
172
DynDNS Wildcard
Dynamic DNS
173
Dynamic DNS Screen
Enable Dynamic Select this check box to use dynamic DNS
174
175
WAN IP address
176
Part
177
178
Firewall
179
Triangle Routes
About the NBG-460N Firewall
180
Triangle Routes and IP Alias
181
General Firewall Screen
Services Screen
182
183
Icmp
184
Add Firewall Rule screen
Add Firewall Rule Screen
185
Pool
Single IP is selected as the Address Type
186
Click Clear All to empty the Blocked Services
Address Type
187
188
Content Filtering Profiles
Content Filtering
189
Restrict Web Features
190
Keyword Blocking URL Checking
Days and Times
Filter Screen
191
192
Cookies
Web Proxy
Allowed
Which content filtering will be enforced
Schedule Screen
193
Not affected
Customizing Keyword Blocking URL Checking
194
Domain Name or IP Address URL Checking
Full Path URL Checking
IPSec VPN
195
IKE SA IKE Phase 1 Overview
196
IPSec SA IKE Phase 2 Overview
197
IP Addresses of the NBG-460N and Remote IPSec Router
Local Network and Remote Network
General Screen
198
VPN Rule Setup Basic
199
Feature to work
200
201
Enabled
Secure Gateway Address field set to
202
203
Your computer in the Local Content field. The NBG-460N
With dynamic WAN IP addresses
204
Address field refer to the Secure Gateway Address field
VPN Rule Setup Advanced
205
Security VPN General Rule Setup IKE Advanced
206
Select No to disable it
207
208
209
210
211
212
213
VPN Rule Setup Manual
Each IPSec SA. It is more secure but takes more time
Security VPN General Rule Setup Manual
214
215
216
Secure
217
SPI
218
SA Monitor Screen
Trailing spaces are truncated
IKE SA Proposal
VPN and Remote Management
219
Diffie-Hellman DH Key Exchange
220
Authentication
VPN Example Matching ID Type and Content
221
Remote Ipsec Router
VPN Example Mismatching ID Type and Content
Negotiation Mode
222
15.6.6 VPN, NAT, and NAT Traversal
223
Encapsulation
IPSec Protocol
224
IPSec SA Proposal and Perfect Forward Secrecy
Additional IPSec VPN Topics
225
SA Life Time
226
Encryption and Authentication Algorithms
Private DNS Server
227
Private DNS Server Example
228
Management
229
230
231
Static Route
Lanwan
IP Static Route Screen
232
Static Route Setup Screen
233
234
Bandwidth Management
235
FTP
Chat, Email
General Configuration Screen
236
Management check box
237
Mbps
Advanced Configuration
238
Connected to the WAN port has an upstream speed of 10 Mbps
Wlan Bandwidth
239
Low
Rule Configuration with the Pre-defined Service
240
Wlan to WAN
To Wlan
Rule Configuration User Defined Service Rule Configuration
241
Monitor Screen
242
Predefined Bandwidth Management Services
Media Bandwidth Management Setup Services
Service Description
Technical References
Default Bandwidth Management Classes and Priorities
Bandwidth Management Priority with Default Classes
244
Class Type Priority
245
Bandwidth Management Priorities
Bandwidth Management Priorities
246
Remote Management
247
System Timeout
Remote Management Limitations
Remote Management and NAT
248
Specify to access the NBG-460N using this service
WWW Screen
249
Remote management
FTP Screen
Telnet Screen
250
DNS Screen
251
252
You specify to send DNS queries to the NBG-460N
NAT Traversal
Universal Plug-and-Play UPnP
253
UPnP Screen
254
Using UPnP in Windows XP Example
255
256
Network Connections
Internet Connection Properties Advanced Settings
257
Web Configurator Easy Access
258
259
Network Connections My Network Places
260
Network Connections My Network Places Properties Example
Maintenance Troubleshooting
261
262
System General Screen
System
263
264
Time Setting Screen
265
266
Select User Defined Time Server Address and enter the IP
267
268
Logs
269
Log categories that you selected in the Log Settings
View Log Screen
270
Display
271
Log Settings
Time and date
272
Mail Log Settings Mail Server
Messages will not be sent via e-mail
Sent via e-mail
273
Smtp
System Maintenance Logs
Log Descriptions
274
LOG Message Description
System Error Logs
275
Access Control Logs
TCP Reset Logs
276
Firewall Attack Alerts screen
277
Packet Filter Logs
278
Icmp Logs
279
Content Filtering Logs
UPnP packets can pass through the firewall
280
Attack Logs
281
IPSec Logs
282
IKE Logs
283
284
PKI Logs
285
802.1X Logs
ACL Setting Notes
286
Packet Direction Description
Type Code Description
Icmp Notes
287
Syslog Logs
RFC-2408 Isakmp Payload Types
288
LOG Display Payload Type
Firmware Upload Screen
Tools
289
Maintenance Tools Firmware
290
Upload Error Message
Network Temporarily Disconnected
Configuration Screen
Backup Configuration
Restore Configuration
Maintenance Restore Configuration
Configuration Restore Successful
293
Restart Screen
Back to Factory Defaults
294
Indicate either Ready or MAC Address error
Wake On LAN
Green
295
Maintenance Tools Green
296
Configuration Mode
297
298
Advanced Configuration Options
Category Link TAB
Sys Op Mode
299
300
Router
Maintenance Sys OP Mode General
301
302
Firewall or bandwidth management
Language Screen
Language
303
304
Power, Hardware Connections, and LEDs
Troubleshooting
305
NBG-460N Access and Login
306
307
Advanced Suggestions
Internet Access
308
309
Internet connection is slow or intermittent
Resetting the NBG-460N to Its Factory Defaults
310
Wireless Router/AP Troubleshooting
311
Advanced Features
312
Product Specifications and Wall- Mounting Instructions
Hardware Features
313
PWR, LAN1-4, WAN, WLAN, WPS
Firmware Features
Such as microwave ovens, wireless phones
Bluetooth enabled devices, and other wireless LANs
314
315
Feature Specifications
Feature Specification
316
Standards Supported
317
Wall-mounting Instructions
Protocol MBM Media Bandwidth Management
318
Masonry Plug and M4 Tap Screw
Appendices Index
319
320
Internet Explorer Pop-up Blockers
Disable pop-up Blockers
321
Enable pop-up Blockers with Exceptions
322
Select Settings…to open the Pop-up Blocker Settings screen
323
JavaScripts
324
325
Internet Options Security
Java Permissions
326
327
Java Sun
328
Java Sun
Structure
Introduction to IP Addresses
329
Subnet Masks
330
Subnet Mask Identifying Network Number
1ST 2ND 3RD 4TH Octet
331
Network Size
Subnet Masks
Binary 1ST 2ND 3RD 4TH Decimal Octet
Notation
332
Maximum Host Numbers
Alternative Subnet Mask Notation
Subnetting
333
Example Four Subnets
334
335
IP/SUBNET Mask Network Number Last Octet BIT Value
Subnet Planning
Example Eight Subnets
336
Configuring IP Addresses
337
16-bit Network Number Subnet Planning
NO. Borrowed Subnet Mask NO. Hosts PER Host Bits Subnets
338
Private IP Addresses
Setting up Your Computer’s IP Address
339
Windows 95/98/Me
Installing Components
340
Configuring
341
Verifying Settings
342
Windows 2000/NT/XP
343
344
Windows XP Control Panel
345
Windows XP Local Area Connection Properties
346
Windows XP Internet Protocol TCP/IP Properties
347
Windows XP Advanced TCP/IP Properties
348
Macintosh OS 8/9
349
350
Macintosh OS 8/9 TCP/IP
Macintosh OS
351
Linux
Using the K Desktop Environment KDE
352
353
Red Hat 9.0 KDE Ethernet Device General
Using Configuration Files
354
Red Hat 9.0 Static IP Address Setting in ifconfig-eth0
Red Hat 9.0 DNS Settings in resolv.conf
Verifying Settings
356
Ad-hoc Wireless LAN Configuration
Wireless LAN Topologies
357
Basic Service Set
358
Channel
359
360
RTS/CTS
Ieee 802.11g Wireless LAN
Fragmentation Threshold
Preamble Type
361
Ieee
362
Ieee 802.11g
Data Rate Modulation Mbps
Types of Authentication
363
Types of Radius Messages
EAP-MD5 Message-Digest Algorithm
EAP-TTLS Tunneled Transport Layer Service
364
EAP-TLS Transport Layer Security
Peap Protected EAP
Comparison of EAP Authentication Types
WPA2
365
Encryption
User Authentication
366
27.0.3 WPA2 with Radius Application Example
27.0.2 WPA2-PSK Application Example
367
Wireless Security Relational Matrix
Authentication Encryptio Enter METHOD/ KEY
Security Parameters Summary
368
Services
369
370
Examples of Services
Name Protocol Ports Description
371
372
Copyright
Certifications
373
Disclaimer
374
FCC Radiation Exposure Statement
375
ZyXEL Limited Warranty
Viewing Certifications
376
Registration
Index
377
Classes and priorities
CTS Clear to Send
Essid
378
Encapsulating Security Payload. See ESP
379
IKE SA
Ethernet PPPoE. see also PPP over Ethernet
Language Link type 40
MAC
380
Mbssid
381
QoS QoS priorities Quality of Service QoS
Radius
Wireless security 98 overview
382
383
Xbox Live ZyNOS 39
384
