MitraStar Technology M4G-301 TD-LTE OUTDOOR CPE User Manual

Download:
Mirror Download [FCC.gov]
Document ID	1730649
Application ID	nUhGYilIYAW1duXaj45t1Q==
Document Description	User Manual
Short Term Confidential	No
Permanent Confidential	No
Supercede	No
Document Type	User Manual
Display Format	Adobe Acrobat PDF - pdf
Filesize	275.58kB (3444742 bits)
Date Submitted	2012-06-26 00:00:00
Date Available	2012-12-23 00:00:00
Creation Date	2017-10-31 03:18:13
Producing Software	GPL Ghostscript 9.18
Document Lastmod	2017-10-31 03:18:13
Document Title	User Manual

B222s
LTE Outdoor CPE
Default Login Details
Web
Address
ht t p: / / 192.168.1.1
User Nam e
adm in
Password
1234
IMPORTANT!
Edit ion 1, 6/ 2012
www.zyxel.com
www.huawei.com
Copyright © 2012
Huawei Technologies Co., LTD.
Graphics in t his book m ay differ slight ly from t he product due t o differences in operat ing syst em s,
operat ing syst em versions, or if you inst alled updat ed firm ware/ soft ware for your device. Every
effort has been m ade t o ensure t hat t he inform at ion in t his m anual is accurat e.
Related Documentation
• Quick St art Guide
The Quick St art Guid shows how t o connect t he LTE Device and access t he Web Configurat or
wizards. ( See t he wizard real t im e help for inform at ion on configuring each screen.) I t also
cont ains a connect ion diagram and package cont ent s list .
Not e: I t is recom m ended you use t he Web Configurat or t o configure t he LTE Device.
B222s User’s Guide
Contents Overview
Contents Overview
User’s Guide .......................................................................................................................................13
Introduction .............................................................................................................................................15
Introducing the Web Configurator ...........................................................................................................21
Technical Reference ..........................................................................................................................27
Connection Status and System Info ........................................................................................................29
Broadband ...............................................................................................................................................35
Wireless ..................................................................................................................................................43
Home Networking ....................................................................................................................................69
Routing ....................................................................................................................................................75
DNS Route ..............................................................................................................................................79
Quality of Service (QoS) .........................................................................................................................83
Network Address Translation (NAT) ........................................................................................................95
Dynamic DNS ........................................................................................................................................103
Firewall ..................................................................................................................................................105
MAC Filter ............................................................................................................................................. 115
Parental Control .................................................................................................................................... 117
VoIP .......................................................................................................................................................121
Logs .....................................................................................................................................................145
Traffic Status .........................................................................................................................................149
User Account .........................................................................................................................................155
Remote MGMT ......................................................................................................................................157
System ..................................................................................................................................................159
Time Setting ..........................................................................................................................................161
Log Setting ...........................................................................................................................................163
Firmware Upgrade ................................................................................................................................165
Backup/Restore .....................................................................................................................................167
Diagnostic .............................................................................................................................................171
Troubleshooting ....................................................................................................................................173
B222s User’s Guide
Contents Overview
B222s User’s Guide
Table of Contents
Table of Contents
Contents Overview ..............................................................................................................................3
Table of Contents .................................................................................................................................5
Part I: User’s Guide ......................................................................................... 13
Chapter 1
Introduction.........................................................................................................................................15
1.1 Overview ...........................................................................................................................................15
1.2 Applications for the LTE Device ........................................................................................................15
1.2.1 Internet Access ........................................................................................................................15
1.2.2 VoIP Features ..........................................................................................................................16
1.2.3 Wireless Connection ................................................................................................................16
1.3 The WLAN Button .............................................................................................................................16
1.4 Ways to Manage the LTE Device ......................................................................................................18
1.5 Good Habits for Managing the LTE Device .......................................................................................18
1.6 LEDs (Lights) ....................................................................................................................................18
1.7 The RESET Button ............................................................................................................................20
Chapter 2
Introducing the Web Configurator ....................................................................................................21
2.1 Overview ...........................................................................................................................................21
2.1.1 Accessing the Web Configurator .............................................................................................21
2.2 The Web Configurator Layout ...........................................................................................................23
2.2.1 Title Bar ...................................................................................................................................23
2.2.2 Main Window ...........................................................................................................................24
2.2.3 Traffic Status ............................................................................................................................24
2.2.4 User Account ...........................................................................................................................24
2.2.5 Navigation Panel .....................................................................................................................24
Part II: Technical Reference............................................................................ 27
Chapter 3
Connection Status and System Info .................................................................................................29
3.1 Overview ...........................................................................................................................................29
3.2 The Connection Status Screen .........................................................................................................29
B222s User’s Guide
Table of Contents
3.3 The System Info Screen ....................................................................................................................31
Chapter 4
Broadband...........................................................................................................................................35
4.1 Overview ...........................................................................................................................................35
4.1.1 What You Can Do in this Chapter ............................................................................................35
4.1.2 What You Need to Know ..........................................................................................................35
4.1.3 Before You Begin .....................................................................................................................38
4.2 The Broadband Screen .....................................................................................................................38
4.2.1 Add/Edit Internet Connection ...................................................................................................39
4.3 Technical Reference ..........................................................................................................................41
Chapter 5
Wireless ...............................................................................................................................................43
5.1 Overview ...........................................................................................................................................43
5.1.1 What You Can Do in this Chapter ............................................................................................43
5.1.2 Wireless Network Overview .....................................................................................................43
5.1.3 Before You Begin .....................................................................................................................45
5.2 The Wireless General Screen ..........................................................................................................45
5.2.1 No Security ..............................................................................................................................47
5.2.2 Basic (Static WEP/Shared WEP Encryption) ...........................................................................47
5.2.3 More Secure (WPA(2)-PSK) ....................................................................................................49
5.2.4 WPA(2) Authentication .............................................................................................................50
5.3 The More AP Screen .........................................................................................................................51
5.3.1 Edit More AP ...........................................................................................................................52
5.4 The WPS Screen ..............................................................................................................................53
5.5 The WMM Screen .............................................................................................................................55
5.6 Scheduling Screen ...........................................................................................................................57
5.7 Technical Reference ..........................................................................................................................57
5.7.1 Additional Wireless Terms .......................................................................................................58
5.7.2 Wireless Security Overview .....................................................................................................58
5.7.3 Signal Problems ......................................................................................................................60
5.7.4 BSS .........................................................................................................................................61
5.7.5 MBSSID ...................................................................................................................................61
5.7.6 WiFi Protected Setup (WPS) ...................................................................................................62
Chapter 6
Home Networking ...............................................................................................................................69
6.1 Overview ...........................................................................................................................................69
6.1.1 What You Can Do in this Chapter ............................................................................................69
6.1.2 What You Need To Know .........................................................................................................69
6.2 The LAN Setup Screen .....................................................................................................................71
6.3 The Static DHCP Screen ...................................................................................................................72
B222s User’s Guide
Table of Contents
6.3.1 Before You Begin .....................................................................................................................72
6.4 The UPnP Screen .............................................................................................................................73
Chapter 7
Routing ................................................................................................................................................75
7.1 Overview ...........................................................................................................................................75
7.2 Configuring Static Route ...................................................................................................................76
7.2.1 Add/Edit Static Route .............................................................................................................77
Chapter 8
DNS Route ...........................................................................................................................................79
8.1 Overview ...........................................................................................................................................79
8.1.1 What You Can Do in this Chapter ............................................................................................79
8.2 The DNS Route Screen ....................................................................................................................80
8.2.1 Add/Edit DNS Route Edit ........................................................................................................80
Chapter 9
Quality of Service (QoS).....................................................................................................................83
9.1 Overview ...........................................................................................................................................83
9.1.1 What You Can Do in this Chapter ............................................................................................83
9.1.2 What You Need to Know ..........................................................................................................83
9.2 The QoS General Screen .................................................................................................................84
9.3 The Queue Setup Screen .................................................................................................................86
9.3.1 Add/Edit a QoS Queue ...........................................................................................................87
9.4 The Class Setup Screen
.................................................................................................................87
9.4.1 Add/Edit QoS Class ................................................................................................................89
9.5 The QoS Monitor Screen .................................................................................................................92
9.6 QoS Technical Reference .................................................................................................................92
9.6.1 IEEE 802.1p ............................................................................................................................93
9.6.2 IP Precedence .........................................................................................................................93
9.6.3 DiffServ ....................................................................................................................................93
Chapter 10
Network Address Translation (NAT)..................................................................................................95
10.1 Overview ........................................................................................................................................95
10.1.1 What You Can Do in this Chapter ..........................................................................................95
10.1.2 What You Need To Know .......................................................................................................95
10.2 The Port Forwarding Screen ..........................................................................................................96
10.2.1 The Port Forwarding Screen .................................................................................................97
10.2.2 The Port Forwarding Edit Screen ..........................................................................................98
10.3 The DMZ Screen .............................................................................................................................99
10.4 The Sessions Screen ......................................................................................................................99
10.5 Technical Reference ......................................................................................................................100
B222s User’s Guide
Table of Contents
10.5.1 NAT Definitions ....................................................................................................................100
10.5.2 What NAT Does ...................................................................................................................101
10.5.3 How NAT Works ..................................................................................................................101
Chapter 11
Dynamic DNS ....................................................................................................................................103
11.1 Overview ......................................................................................................................................103
11.1.1 What You Need To Know .....................................................................................................103
11.2 The Dynamic DNS Screen ............................................................................................................104
Chapter 12
Firewall ..............................................................................................................................................105
12.1 Overview .......................................................................................................................................105
12.1.1 What You Can Do in this Chapter ........................................................................................105
12.1.2 What You Need to Know ......................................................................................................106
12.2 The General Screen .....................................................................................................................107
12.3 The Services Screen .....................................................................................................................108
12.3.1 The Add New Services Entry Screen ..................................................................................108
12.4 The Access Control Screen ..........................................................................................................109
12.4.1 The Add New ACL Rule/Edit Screen ................................................................................... 110
12.5 The DoS Screen ............................................................................................................................ 111
12.6 Firewall Technical Reference ........................................................................................................ 112
12.6.1 Guidelines For Enhancing Security With Your Firewall ....................................................... 112
12.6.2 Security Considerations ....................................................................................................... 112
Chapter 13
MAC Filter.......................................................................................................................................... 115
13.1 Overview ....................................................................................................................................... 115
13.1.1 What You Need to Know ...................................................................................................... 115
13.2 The MAC Filter Screen .................................................................................................................. 115
Chapter 14
Parental Control ................................................................................................................................ 117
14.1 Overview ....................................................................................................................................... 117
14.2 The Parental Control Screen ......................................................................................................... 117
14.2.1 Add/Edit a Parental Control Rule ......................................................................................... 118
Chapter 15
VoIP ....................................................................................................................................................121
15.1 Overview .......................................................................................................................................121
15.1.1 What You Can Do in this Chapter ........................................................................................121
15.1.2 What You Need to Know ......................................................................................................121
15.1.3 Before You Begin .................................................................................................................123
B222s User’s Guide
Table of Contents
15.2 The SIP Service Provider Screen ................................................................................................123
15.3 The SIP Account Screen ...............................................................................................................129
15.3.1 Add/Edit SIP Account ..........................................................................................................130
15.4 Multiple SIP Accounts ...................................................................................................................132
15.5 Phone Screen ..............................................................................................................................133
15.5.1 Edit Phone Device ...............................................................................................................133
15.6 The Phone Region Screen ............................................................................................................134
15.7 The Call Rule Screen ....................................................................................................................134
15.8 Technical Reference ......................................................................................................................136
15.8.1 VoIP .....................................................................................................................................136
15.8.2 SIP ......................................................................................................................................136
15.8.3 Quality of Service (QoS) ......................................................................................................140
15.8.4 Phone Services Overview ...................................................................................................141
Chapter 16
Logs ..................................................................................................................................................145
16.1 Overview ......................................................................................................................................145
16.1.1 What You Can Do in this Chapter ........................................................................................145
16.1.2 What You Need To Know .....................................................................................................145
16.2 The System Log Screen ................................................................................................................146
16.3 The Phone Log Screen .................................................................................................................147
16.4 The VoIP Call History Screen ........................................................................................................147
Chapter 17
Traffic Status .....................................................................................................................................149
17.1 Overview .......................................................................................................................................149
17.1.1 What You Can Do in this Chapter ........................................................................................149
17.2 The WAN Status Screen ...............................................................................................................149
17.3 The LAN Status Screen .................................................................................................................150
17.4 The NAT Status Screen .................................................................................................................151
17.5 The VoIP Status Screen ................................................................................................................152
Chapter 18
User Account ....................................................................................................................................155
18.1 Overview .......................................................................................................................................155
18.2 The User Account Screen .............................................................................................................155
Chapter 19
Remote MGMT...................................................................................................................................157
19.1 Overview .......................................................................................................................................157
19.1.1 What You Need to Know ......................................................................................................157
19.2 The Remote MGMT Screen ..........................................................................................................157
B222s User’s Guide
Table of Contents
Chapter 20
System ...............................................................................................................................................159
20.1 Overview .......................................................................................................................................159
20.1.1 What You Need to Know ......................................................................................................159
20.2 The System Screen .......................................................................................................................159
Chapter 21
Time Setting ......................................................................................................................................161
21.1 Overview .......................................................................................................................................161
21.2 The Time Setting Screen .............................................................................................................161
Chapter 22
Log Setting .......................................................................................................................................163
22.1 Overview ......................................................................................................................................163
22.2 The Log Setting Screen ................................................................................................................163
Chapter 23
Firmware Upgrade ............................................................................................................................165
23.1 Overview .......................................................................................................................................165
23.2 The Firmware Upgrade Screen .....................................................................................................165
Chapter 24
Backup/Restore ................................................................................................................................167
24.1 Overview .......................................................................................................................................167
24.2 The Backup/Restore Screen .........................................................................................................167
24.3 The Reboot Screen .......................................................................................................................169
Chapter 25
Diagnostic .........................................................................................................................................171
25.1 Overview .......................................................................................................................................171
25.2 The Ping/TraceRoute Screen ........................................................................................................171
Chapter 26
Troubleshooting................................................................................................................................173
26.1 Overview .......................................................................................................................................173
26.2 Power, Hardware Connections, and LEDs ....................................................................................173
26.3 LTE Device Access and Login ......................................................................................................174
26.4 Internet Access .............................................................................................................................175
26.5 Wireless Internet Access ...............................................................................................................176
26.6 Phone Calls and VoIP ...................................................................................................................177
26.7 UPnP .............................................................................................................................................178
Appendix A IP Addresses and Subnetting.......................................................................................179
10
B222s User’s Guide
Table of Contents
Appendix B Setting Up Your Computer’s IP Address ......................................................................189
Appendix C Pop-up Windows, JavaScript and Java Permissions ...................................................219
Appendix D Wireless LANs..............................................................................................................229
Appendix E Common Services ........................................................................................................249
Appendix F Legal Information..........................................................................................................253
Index ..................................................................................................................................................255
B222s User’s Guide
11
Table of Contents
12
B222s User’s Guide
P ART I
User’s Guide
13
14
C HAPT ER
Introduction
1.1 Overview
The Device is an LTE ( Long Term Evolut ion) device including an out door unit ( ODU) and an indoor
unit ( I DU) . The LTE Device support s Voice over I P ( VoI P) com m unicat ion capabilit ies t o allow you t o
use a t radit ional analog t elephone t o m ake I nt ernet calls. The LTE Device also provides a com plet e
securit y solut ion wit h a robust firewall based on St at eful Packet I nspect ion ( SPI ) t echnology and
Denial of Service ( DoS) .
See t he chapt er on product specificat ions for a full list of feat ures.
1.2 Applications for the LTE Device
Here are som e exam ple uses for which t he LTE Device is well suit ed.
1.2.1 Internet Access
Your LTE Device provides I nt ernet access by connect ing t o an LTE net work wirelessly.
Com put ers can connect t o t he LTE Device’s ETH ERN ET port s ( or wirelessly) .
Figure 1 LTE Device’s I nt ernet Access Applicat ion
LAN
WAN
LTE
B222s User’s Guide
15
Chapter 1 Introduction
1.2.2 VoIP Features
You can regist er 1 SI P ( Session I nit iat ion Prot ocol) profile ( 2 account s for t hat profile) and use t he
LTE Device t o m ake and receive VoI P t elephone calls:
Figure 2 LTE Device’s VoI P Applicat ion
PSTN
The LTE Device sends your call t o a VoI P service provider ’s SI P server which forwards your calls t o
eit her VoI P or PSTN phones.
1.2.3 Wireless Connection
By default , t he wireless LAN ( WLAN) is enabled on t he LTE Device. Once Wireless is enabled, I EEE
802.11b/ g/ n com pliant client s can wirelessly connect t o t he LTE Device t o access net work
resources. You can set up a wireless net work wit h WPS ( WiFi Prot ect ed Set up) or m anually add a
client t o your wireless net work.
Figure 3 Wireless Connect ion Applicat ion
WLAN
WAN
LAN
1.3 The WLAN Button
You can use t he WIRELESS On/Off but t on on t op of t he device t o t urn t he wireless LAN on or off. You
can also use it t o act ivat e WPS in order t o quickly set up a wireless net work wit h st rong securit y.
16
B222s User’s Guide
Chapter 1 Introduction
Turn the Wireless LAN On or Off
Make sure t he PW R/ SYS LED is on ( not blinking) .
Press t he WIRELESS On/Off but t on for one second and release it . The W LAN / W PS LED should
change from on t o off or vice versa.
Activate WPS
Make sure t he PW R/ SYS LED is on ( not blinking) .
Press t he WIRELESS On/Off but t on for m ore t han five seconds and release it . Press t he WPS but t on
on anot her WPS - enabled device wit hin range of t he LTE Device. The W LAN / W PS LED should flash
while t he LTE Device set s up a WPS connect ion wit h t he wireless device.
Not e: You m ust act ivat e WPS in t he LTE Device and in anot her wireless device wit hin t wo
m inut es of each ot her. See Chapt er 5 on page 62 for m ore inform at ion.
B222s User’s Guide
17
Chapter 1 Introduction
1.4 Ways to Manage the LTE Device
• Web Configurat or. This is for m anagem ent of t he LTE Device using a ( support ed) web browser.
1.5 Good Habits for Managing the LTE Device
Do t he following t hings regularly t o m ake t he LTE Device m ore secure and t o m anage t he LTE
Device m ore effect ively.
• Change t he password. Use a password t hat ’s not easy t o guess and t hat consist s of different
t ypes of charact ers, such as num bers and let t ers.
• Writ e down t he password and put it in a safe place.
• Back up t he configurat ion ( and m ake sure you know how t o rest ore it ) . Rest oring an earlier
working configurat ion m ay be useful if t he device becom es unst able or even crashes. I f you
forget your password t o access t he Web Configurat or, you will have t o reset t he LTE Device t o it s
fact ory default set t ings. I f you backed up an earlier configurat ion file, you would not have t o
t ot ally re- configure t he LTE Device. You could sim ply rest ore your last configurat ion. Keep in
m ind t hat backing up a configurat ion file will not back up passwords used t o set up PPPoE and
VoI P. Writ e down any inform at ion your I SP provides you.
1.6 LEDs (Lights)
The following graphic displays t he labels of t he LEDs.
Figure 4 LEDs on t he Top of t he Device
Figure 5 LEDs on t he Et hernet Port s
None of t he LEDs are on if t he LTE Device is not receiving power.
Table 1 LED Descript ions ( From Left To Right )
LED
COLOR
STATUS
DESCRIPTION
PWR/ SYS
Green
On
The LTE Device is receiving power and ready for use.
Blinking
The LTE Device is boot ing up.
Red
On
The LTE Device det ect ed an error while self- t est ing, or t here
is a device m alfunct ion.
Blinking
Off
18
The LTE Device is upgrading t he firm ware.
The LTE Device is not receiving power.
B222s User’s Guide
Chapter 1 Introduction
Table 1 LED Descript ions ( From Left To Right ) ( cont inued)
LED
COLOR
STATUS
LI NK
Green
On
The LTE Device has an LTE connect ion on t he WAN.
Blinking
The LTE Device is searching for a frequency channel or is
perform ing net work ent ry.
Off
The LTE Device does not have an LTE connect ion on t he
WAN.
LTE
The LTE LEDs display t he Received Signal St rengt h
I ndicat ion ( RSSI ) of t he LTE connect ion. Three signals on at
t he sam e t im e m eans best signal qualit y, t wo m eans
m edium signal qualit y, and one m eans low signal qualit y.
Green
WLAN/ WPS
Green
Orange
No Signal
LEDS
There is no LTE connect ion.
Signal 1
On
The signal st rengt h is less t han - 90 dBm if signal 1 is on
only.
Signal 2
On
The signal st rengt h is bet ween - 90 dBm and - 70 dBm if bot h
signals 1 and 2 are on.
Signal 3
On
The signal st rengt h is - 70 dBm or great er if t hree signals are
all on.
On
The wireless net work is act ivat ed and is operat ing in I EEE
802.11 “ b”, “ g” or “ n” m ode.
Blinking
The LTE Device is com m unicat ing wit h ot her wireless client s.
Blinking
The LTE Device is set t ing up a WPS connect ion.
Off
PHONE
Green
Orange
The wireless net work is not act ivat ed.
On
A SI P account is regist ered for t he phone port .
Blinking
A t elephone connect ed t o t he phone port has it s receiver off
of t he hook or t here is an incom ing call.
On
A SI P account is regist ered for t he phone port and t here is a
voice m essage in t he corresponding SI P account .
Blinking
A t elephone connect ed t o t he phone port has it s receiver off
of t he hook and t here is a voice m essage in t he
corresponding SI P account .
Off
ETHERNET1
-2
DESCRIPTION
Yellow
( Giga
Et hernet )
Green ( Fast
Et hernet )
Off
The phone port does not have a SI P account regist ered.
On
The LTE Device has a successful 1000 Mbps Et hernet
connect ion wit h a device on t he Local Area Net work ( LAN) .
Blinking
The LTE Device is sending or receiving dat a t o/ from t he LAN
at 1000 Mbps.
On
The LTE Device has a successful 10/ 100 Mbps Et hernet
connect ion wit h a device on t he Local Area Net work ( LAN) .
Blinking
The LTE Device is sending or receiving dat a t o/ from t he LAN
at 10/ 100 Mbps.
The LTE Device does not have an Et hernet connect ion wit h
t he LAN.
Refer t o t he Quick St art Guide for inform at ion on hardware connect ions.
B222s User’s Guide
19
Chapter 1 Introduction
1.7 The RESET Button
I f you forget your password or cannot access t he web configurat or, you will need t o use t he RESET
but t on at t he back of t he device t o reload t he factory- default configurat ion file. This m eans t hat you
will lose all configurat ions t hat you had previously and t he passwords will be reset t o t he default s.
20
Make sure t he POW ER LED is on ( not blinking) .
To set t he device back t o t he fact ory default set t ings, press t he RESET but t on for 5 seconds or unt il
t he POW ER LED begins t o blink and t hen release it . When t he POW ER LED begins t o blink, t he
default s have been rest ored and t he device rest art s.
B222s User’s Guide
C HAPT ER
Introducing the Web Configurator
2.1 Overview
The web configurat or is an HTML- based m anagem ent int erface t hat allows easy device set up and
m anagem ent via I nt ernet browser. Use I nt ernet Explorer 6.0 and lat er versions, Mozilla Firefox 3
and lat er versions, or Safari 2.0 and lat er versions. The recom m ended screen resolut ion is 1024 by
768 pixels.
I n order t o use t he web configurat or you need t o allow:
• Web browser pop- up windows from your device. Web pop- up blocking is enabled by default in
Windows XP SP ( Service Pack) 2.
• JavaScript ( enabled by default ) .
• Java perm issions ( enabled by default ) .
See Appendix C on page 219 if you need t o m ake sure t hese funct ions are allowed in I nt ernet
Explorer.
2.1.1 Accessing the Web Configurator
Make sure your LTE Device hardware is properly connect ed ( refer t o t he Quick St art Guide) .
Launch your web browser.
Type " 192.168.1.1" as t he URL.
A password screen displays. Type “ adm in” as t he default Usernam e and “ 1234” as t he default
password t o access t he device’s Web Configurat or. Click Login . I f you have changed t he password,
ent er your password and click Login .
Figure 6 Password Screen
Not e: For securit y reasons, t he LTE Device aut om at ically logs you out if you do not use
t he web configurat or for five m inut es ( default ) . I f t his happens, log in again.
B222s User’s Guide
21
Chapter 2 Introducing the Web Configurator
The following screen displays if you have not yet changed your password. I t is st rongly
recom m ended you change t he default password. Ent er a new password, ret ype it t o confirm and
click Apply; alt ernat ively click Sk ip t o proceed t o t he m ain m enu if you do not want t o change t he
password now.
Figure 7 Change Password Screen
The Con n e ct ion St a t us screen appears.
Figure 8 Connect ion St at us
22
Click Syst e m I nfo t o display t he Syst e m I nfo screen, where you can view t he LTE Device’s
int erface and syst em inform at ion.
B222s User’s Guide
Chapter 2 Introducing the Web Configurator
2.2 The Web Configurator Layout
Click Con n e ct ion St a t us > Syst e m I n fo t o show t he following screen. ( See Sect ion 3.3 on page
31 for m ore inform at ion.)
Figure 9 Web Configurat or Layout
As illust rat ed above, t he m ain screen is divided int o t hese part s:
• A - t it le bar
• B - m ain window
• C - navigat ion panel
2.2.1 Title Bar
The t it le bar shows t he following icon in t he upper right corner.
Click t his icon t o log out of t he web configurat or.
B222s User’s Guide
23
Chapter 2 Introducing the Web Configurator
2.2.2 Main Window
The m ain window displays inform at ion and configurat ion fields. I t is discussed in t he rest of t his
docum ent .
Aft er you click Syst e m I n fo on t he Conn e ct ion St a t us screen, t he Syst e m I nfo screen is
displayed. See Chapt er 3 on page 31 for m ore inform at ion about t he Syst e m I nfo screen.
I f you click LAN D e vice on t he Syst e m I nfo screen ( a in Figure 9 on page 23) , t he Conn e ct ion
St a t us screen appears. See Chapt er 3 on page 29 for m ore inform at ion about t he Conn e ct ion
St a t us screen.
I f you click Vir t ua l D e vice on t he Syst e m I nfo screen ( b in Figure 9 on page 23) , a visual graphic
appears, showing t he connect ion st at us of t he LTE Device’s port s. The connect ed port s are in color
and disconnect ed port s are gray.
Figure 10 Virt ual Device
2.2.3 Traffic Status
Use t he M a int e n a nce > Tr a ffic St a t u s screens t o look at net work t raffic st at us and st at ist ics of
t he WAN, LAN int erfaces and NAT. See Chapt er 20 on page 159 for m ore inform at ion.
2.2.4 User Account
Use t he M a int e n a nce > Use r Accou n t s screen t o configure syst em password for different user
account s. See Chapt er 18 on page 155 for m ore inform at ion.
2.2.5 Navigation Panel
Use t he m enu it em s on t he navigat ion panel t o open screens t o configure LTE Device feat ures. The
following t able describes each m enu it em .
Table 2 Navigat ion Panel Sum m ary
LINK
Connect ion St at us
TAB
FUNCTION
This screen shows t he net work st at us of t he LTE Device and
com put ers/ devices connect ed t o it .
Net work Set t ing
24
B222s User’s Guide
Chapter 2 Introducing the Web Configurator
Table 2 Navigat ion Panel Sum m ary ( cont inued)
LINK
TAB
FUNCTION
Broadband
Broadband
Use t his screen t o view and m odify your WAN int erface. You can also
configure I SP param et ers, WAN I P address assignm ent , DNS servers
and ot her advanced propert ies.
Wireless
General
Use t his screen t o t urn t he wireless connect ion on or off, specify t he
SSI D( s) and configure t he wireless LAN set t ings and WLAN
aut hent icat ion/ securit y set t ings.
More AP
Use t his screen t o configure m ult iple BSSs on t he LTE Device.
WPS
Use t his screen t o use WPS ( Wi- Fi Prot ect ed Set up) t o est ablish a
wireless connect ion.
WMM
Use t his screen t o enable or disable Wi- Fi Mult iMedia ( WMM) .
Scheduling
Use t his screen t o configure when t he LTE Device enables or disables
t he wireless LAN.
LAN Set up
Use t his screen t o configure LAN TCP/ I P set t ings, and ot her advanced
propert ies.
St at ic DHCP
Use t his screen t o assign specific I P addresses t o individual MAC
addresses.
Hom e
Net working
UPnP
Use t his screen t o enable t he UPnP funct ion.
St at ic Rout e
St at ic Rout e
Use t his screen t o view and set up st at ic rout es on t he LTE Device.
DNS Rout e
DNS Rout e
Use t his screen t o view and configure DNS rout es.
QoS
General
Use t his screen t o enable QoS and decide allowable bandwidt h using
QoS.
Queue Set up
Use t his screen t o configure QoS queue assignm ent .
Class Set up
Use t his screen t o set up classifiers t o sort t raffic int o different flows
and assign priorit y and define act ions t o be perform ed for a classified
t raffic flow.
Monit or
Use t his screen t o view each queue’s st at ist ics.
Port Forwarding
Use t his screen t o m ake your local servers visible t o t he out side
world.
DMZ
Use t his screen t o configure t he I P address of t he LTE Device’s DMZ
int erface.
Sessions
Use t his screen t o lim it t he num ber of NAT sessions a single client can
est ablish.
Dynam ic DNS
Use t his screen t o allow a st at ic host nam e alias for a dynam ic I P
address.
General
Use t his screen t o act ivat e/ deact ivat e t he firewall.
Services
Use t his screen t o view and configure services.
Access Cont rol
Use t his screen t o view and configure filt er rules for incom ing and
out going t raffic.
DoS
Use t his screen t o act ivat e/ deact ivat e Denial of Service ( DoS)
prot ect ion.
MAC Filt er
MAC Filt er
Use t his screen t o allow specific devices t o access t he LTE Device.
Parent al
Cont rol
Parent al Cont rol
Use t his screen t o define t im e periods and days during which t he LTE
Device perform s parent al cont rol and/ or block web sit es wit h t he
specific URL.
NAT
Dynam ic DNS
Securit y
Firewall
VoI P
B222s User’s Guide
25
Chapter 2 Introducing the Web Configurator
Table 2 Navigat ion Panel Sum m ary ( cont inued)
LINK
TAB
FUNCTION
SI P Service
Provider
Use t his screen t o configure your LTE Device’s Voice over I P set t ings.
SI P Account
Use t his screen t o set up inform at ion about your SI P account and
configure audio set t ings such as volum e levels for t he phones
connect ed t o t he LTE Device.
Phone Device
Use t his screen t o set which phone port s use which SI P account s.
Region
Use t his screen t o select your locat ion.
Speed Dial
Use t his screen t o configure speed dial for SI P phone num bers t hat
you call oft en.
Syst em Log
Use t his screen t o view t he syst em logs for t he cat egories t hat you
select .
Phone Log
Use t his screen t o view t he LTE Device’s phone logs.
VoI P Call Hist ory
Use t his screen t o view t he LTE Device’s VoI P call hist ory.
WAN
Use t his screen t o view t he st at us of all net work t raffic going t hrough
t he WAN port of t he LTE Device.
LAN
Use t his screen t o view t he st at us of all net work t raffic going t hrough
t he LAN port s of t he LTE Device.
NAT
Use t his screen t o view t he st at us of NAT sessions on t he LTE Device.
VoI P St at us
Use t his screen t o view t he SI P, phone, and call st at us of t he LTE
Device.
Users Account
Users Account
Use t his screen t o configure t he passwords your user account s.
Rem ot e MGMT
Rem ot e MGMT
Use t his screen t o enable specific t raffic direct ions for net work
services.
Syst em
Syst em
Use t his screen t o configure t he LTE Device’s nam e, dom ain nam e,
m anagem ent inact ivit y t im e- out .
Tim e Set t ing
Tim e Set t ing
Use t his screen t o change your LTE Device’s t im e and dat e.
Log Set t ing
Log Set t ing
Use t his screen t o select which logs and/ or im m ediat e alert s your
device is t o record. You can also set it t o e- m ail t he logs t o you.
Firm ware
Upgrade
Firm ware
Upgrade
Use t his screen t o upload firm ware t o your device.
Backup/
Rest ore
Backup/ Rest ore
Use t his screen t o backup and rest ore your device’s configurat ion
( set t ings) or reset t he fact ory default set t ings.
Reboot
Reboot
Use t his screen t o reboot t he LTE Device wit hout t urning t he power
off.
Diagnost ic
Ping/ TraceRout e
Use t his screen t o t est t he connect ions t o ot her devices.
Aut o Provision
Aut o Provision
Use t his screen t o configure aut o provision which aut om at ically
updat es t he lat est firm ware and configurat ion t o t he LTE Device.
SI P
Phone
Call Rule
Syst em Monit or
Log
Traffic St at us
VoI P St at us
Maint enance
26
B222s User’s Guide
P ART II
Technical Reference
The appendices provide general inform at ion. Som e det ails m ay not apply t o your LTE Device.
27
28
C HAPT ER
Connection Status and System Info
3.1 Overview
Aft er you log int o t he web configurat or, t he Con n e ct ion St a t u s screen appears. This shows t he
net work connect ion st at us of t he LTE Device and client s connect ed t o it .
Use t he Syst e m I n fo screen t o look at t he current st at us of t he device, syst em resources,
int erfaces ( LAN, WAN and WLAN) , and SI P account s. You can also regist er and unregist er SI P
account s.
I f you click Vir t ua l D e vice on t he Syst e m I n fo screen, a visual graphic appears, showing t he
connect ion st at us of t he LTE Device’s port s. See Sect ion 2.2.2 on page 24 for m ore inform at ion.
3.2 The Connection Status Screen
Use t his screen t o view t he net work connect ion st at us of t he device and it s client s. A warning
m essage appears if t here is a connect ion problem .
B222s User’s Guide
29
Chapter 3 Connection Status and System Info
I f you prefer t o view t he st at us in a list , click List Vie w in t he Vie w in g m ode select ion box. You
can configure how oft en you want t he LTE Device t o updat e t his screen in Re fr e sh I nt e r va l.
Figure 11 Connect ion St at us: I con View
Figure 12 Connect ion St at us: List View
I n I con Vie w , if you want t o view inform at ion about a client , click t he client ’s nam e and I n fo. Click
t he I P address if you want t o change it . I f you want t o change t he nam e or icon of t he client , click
Cha nge na m e / icon .
I n List Vie w , you can also view t he client ’s inform at ion.
30
B222s User’s Guide
Chapter 3 Connection Status and System Info
3.3 The System Info Screen
Click Con n e ct ion St a t us > Syst e m I nfo t o open t his screen.
Figure 13 Syst em I nfo Screen
Each field is described in t he following t able.
Table 3 Syst em I nfo Screen
LABEL
DESCRIPTION
Language
Select t he web configurat or language from t he drop- down list box.
Refresh I nt erval
Select how oft en you want t he LTE Device t o updat e t his screen from t he dropdown list box.
Device I nform at ion
Host Nam e
This field displays t he LTE Device syst em nam e. I t is used for ident ificat ion. You
can change t his in t he M a int e n a n ce > Syst e m screen’s H ost N a m e field.
Model Nam e
This is t he m odel nam e of your device.
MAC Address
This is t he MAC ( Media Access Cont rol) or Et hernet address unique t o your LTE
Device.
B222s User’s Guide
31
Chapter 3 Connection Status and System Info
Table 3 Syst em I nfo Screen ( cont inued)
LABEL
Firm ware Version
DESCRIPTION
This field displays t he current version of t he firm ware inside t he device. I t also
shows t he dat e t he firm ware version was creat ed. Go t o t he M a in t e n a n ce >
Fir m w a r e Upgr a de screen t o change it .
WAN I nform at ion
Mode
This is t he m et hod of encapsulat ion used by your I SP.
I P Address
This field displays t he current I P address of t he LTE Device in t he WAN.
LAN I nform at ion
I P Address
This field displays t he current I P address of t he LTE Device in t he LAN.
I P Subnet Mask
This field displays t he current subnet m ask in t he LAN.
DHCP Server
This field displays what DHCP services t he LTE Device is providing t o t he LAN.
Choices are:
Se r ve r - The LTE Device is a DHCP server in t he LAN. I t assigns I P addresses t o
ot her com put ers in t he LAN.
N on e - The LTE Device is not providing any DHCP services t o t he LAN.
WLAN I nform at ion
Channel
This is t he channel num ber used by t he LTE Device now.
WPS St at us
Configur e d displays when a wireless client has connect ed t o t he LTE Device or
WPS is enabled and wireless or wireless securit y set t ings have been configured.
Un configu r e d displays if WPS is disabled or wireless securit y set t ings have not
been configured.
SSI D ( 1~ 4) I nform at ion
SSI D
This is t he descript ive nam e used t o ident ify t he LTE Device in t he wireless LAN.
St at us
This shows whet her or not t he SSI D is enabled ( on) .
Securit y Mode
This displays t he t ype of securit y t he LTE Device is using in t he wireless LAN.
LTE St at us
St at us
This displays 4 G LTE if t here is an LTE connect ion, ot herwise, it displays N / A.
Signal St rengt h
This displays t he st rengt h of t he LTE connect ion t hat t he LTE Device has wit h t he
base st at ion which is also known as eNodeB or eNB.
Service Provider
This displays t he service provider ’s nam e of t he connect ed LTE net work.
Frequency Band
This displays LTE if t here is an LTE connect ion.
Connect ion Upt im e
This displays how long t he LTE connect ion has been available since it was last
est ablished successfully.
ODU F/ W Version
This displays t he firm ware version of t he out door unit .
Module F/ W Version
This displays t he firm ware version of LTE m odule.
I MEI
This displays t he LTE Device’s I nt ernat ional Mobile Equipm ent I dent it y num ber
( I MEI ) . An I MEI is a unique I D used t o ident ify a m obile device.
I MSI
This displays t he I nt ernat ional Mobile Subscriber I dent it y ( I MSI ) of t he SI M card
insert ed in t he out door unit . An I MSI is a unique I D used t o ident ify a m obile
subscriber in a m obile net work.
I nt erface St at us
I nt erface
32
This colum n displays each int erface t he LTE Device has.
B222s User’s Guide
Chapter 3 Connection Status and System Info
Table 3 Syst em I nfo Screen ( cont inued)
LABEL
St at us
DESCRIPTION
This field indicat es whet her or not t he LTE Device is using t he int erface.
For t he LTE WAN int erface, t his field displays Up when t he LTE Device is connect ed
t o an LTE net work and D ow n when t he LTE Device does not have an LTE
connect ion.
For t he LAN int erface, t his field displays Up when t he LTE Device is using t he
int erface and D ow n when t he LTE Device is not using t he int erface.
For t he WLAN int erface, it displays Up when WLAN is enabled or D ow n when
WLAN is disabled.
Rat e
For t he LTE WAN int erface, t his displays 4 G LTE if t here is an LTE connect ion.
For t he LAN int erface, t his displays t he port speed and duplex set t ing.
For t he WLAN int erface, it displays t he m axim um t ransm ission rat e when WLAN is
enabled or N / A when WLAN is disabled.
Syst em St at us
Syst em Up Tim e
This field displays how long t he LTE Device has been running since it last st art ed
up. The LTE Device st art s up when you plug it in, when you rest art it
( M a in t e n a n ce > Re boot ) , or when you reset it ( see Sect ion 1.7 on page 20) .
Current Dat e/ Tim e
This field displays t he current dat e and t im e in t he LTE Device. You can change t his
in M a in t e n a n ce > Tim e Se t t ing.
Syst em Resource
CPU Usage
This field displays what percent age of t he LTE Device’s processing abilit y is
current ly used. When t his percent age is close t o 100% , t he LTE Device is running
at full load, and t he t hroughput is not going t o im prove anym ore. I f you want som e
applicat ions t o have m ore t hroughput , you should t urn off ot her applicat ions.
Mem ory Usage
This field displays what percent age of t he LTE Device’s m em ory is current ly used.
Usually, t his percent age should not increase m uch. I f m em ory usage does get close
t o 100% , t he LTE Device is probably becom ing unst able, and you should rest art
t he device. See Chapt er 24 on page 169, or t urn off t he device ( unplug t he power)
for a few seconds.
Regist rat ion St at us
Account
This colum n displays each SI P account in t he LTE Device.
Act ion
This field displays t he current regist rat ion st at us of t he SI P account . You have t o
regist er SI P account s wit h a SI P server t o use VoI P.
I f t he SI P account is already regist ered wit h t he SI P server,
•
•
Click Un r e gist e r t o delet e t he SI P account ’s regist rat ion in t he SI P server. This
does not cancel your SI P account , but it delet es t he m apping bet ween your SI P
ident it y and your I P address or dom ain nam e.
The second field displays Re gist e r e d.
I f t he SI P account is not regist ered wit h t he SI P server,
•
•
Click Re gist e r t o have t he LTE Device at t em pt t o regist er t he SI P account wit h
t he SI P server.
The second field displays t he reason t he account is not regist ered.
I n a ct ive - The SI P account is not act ive. You can act ivat e it in VoI P > SI P > SI P
Se t t in gs.
Re gist e r Fa il - The last t im e t he LTE Device t ried t o regist er t he SI P account wit h
t he SI P server, t he at t em pt failed. The LTE Device aut om at ically t ries t o regist er
t he SI P account when you t urn on t he LTE Device or when you act ivat e it .
B222s User’s Guide
33
Chapter 3 Connection Status and System Info
Table 3 Syst em I nfo Screen ( cont inued)
LABEL
34
DESCRIPTION
Account St at us
This shows Act ive when t he SI P account has been regist ered and ready for use or
I n - Act ive when t he SI P account is not yet regist ered.
URI
This field displays t he account num ber and service dom ain of t he SI P account . You
can change t hese in V oI P > SI P > SI P Se t t in gs.
B222s User’s Guide
C HAPT ER
Broadband
4.1 Overview
This chapt er discusses t he LTE Device’s Br oa dba nd screens. Use t hese screens t o configure your
LTE Device for I nt ernet access.
A WAN ( Wide Area Net work) connect ion is an out side connect ion t o anot her net work or t he
I nt ernet . I t connect s your privat e net works, such as a LAN ( Local Area Net work) and ot her
net works, so t hat a com put er in one locat ion can com m unicat e wit h com put ers in ot her locat ions.
This LTE Device support s LTE connect ion for t he WAN only.
Figure 14 LAN and WAN
LAN
WAN
4.1.1 What You Can Do in this Chapter
• Use t he Br oa dba n d screen t o view, rem ove or add an LTE WAN int erface. You can also configure
t he WAN set t ings on t he LTE Device for I nt ernet access ( Sect ion 4.2 on page 38) .
4.1.2 What You Need to Know
The following t erm s and concept s m ay help as you read t his chapt er.
Encapsulation Method
Encapsulat ion is used t o include dat a from an upper layer prot ocol int o a lower layer prot ocol. To set
up a WAN connect ion t o t he I nt ernet , you need t o use t he sam e encapsulat ion m et hod used by your
I SP ( I nt ernet Service Provider) .
B222s User’s Guide
35
Chapter 4 Broadband
WAN IP Address
The WAN I P address is an I P address for t he LTE Device, which m akes it accessible from an out side
net work. I t is used by t he LTE Device t o com m unicat e wit h ot her devices in ot her net works. I t can
be st at ic ( fixed) or dynam ically assigned by t he I SP each t im e t he LTE Device t ries t o access t he
I nt ernet .
I f your I SP assigns you a st at ic WAN I P address, t hey should also assign you t he subnet m ask and
DNS server I P address( es) .
APN
Access Point Nam e ( APN) is a unique st ring which indicat es an LTE net work. An APN is required for
LTE st at ions t o ent er t he LTE net work and t hen t he I nt ernet .
CAPWAP
The LTE Device support s CAPWAP. This is ZyXEL’s im plem ent at ion of t he CAPWAP prot ocol ( RFC
5415) .
The CAPWAP dat aflow is prot ect ed by Dat agram Transport Layer Securit y ( DTLS) .
The following figure illust rat es a CAPWAP wireless net work. You ( U) configure t he AP cont roller ( C) ,
which t hen aut om at ically updat es t he configurat ions of t he m anaged APs ( M 1 ~ M 4 ) .
Figure 15 CAPWAP Net work Exam ple
DHCP SERVER
M1
M2
M3
M4
Not e: The LTE Device can be a st andalone AP ( default ) , a CAPWAP m anaged AP, or a
CAPWAP AP cont roller.
CAPWAP Discovery and Management
The link bet ween CAPWAP- enabled access point s proceeds as follows:
36
An AP in m anaged AP m ode j oins a wired net work ( receives a dynam ic I P address) .
B222s User’s Guide
Chapter 4 Broadband
The AP sends out a discovery request , looking for an AP in CAPWAP AP cont roller m ode.
I f t here is an AP cont roller on t he net work, it receives t he discovery request . I f t he AP cont roller is
in M a n u a l m ode it adds t he det ails of t he AP t o it s Un m a na ge d Acce ss Poin t s list , and you
decide which available APs t o m anage. I f t he AP is in Alw a ys Acce pt m ode, it aut om at ically adds
t he AP t o it s M a na ge d Acce ss Point s list and provides t he m anaged AP wit h default configurat ion
inform at ion, as well as securely t ransm it t ing t he DTLS pre- shared key. The m anaged AP is ready for
associat ion wit h wireless client s.
Managed AP Finds the Controller
A m anaged LTE Device can find t he cont roller in one of t he following ways:
• Manually specify t he cont roller ’s I P address using t he com m ands. See t he LTE Device CLI
Reference Guide for det ails.
• Get t he cont roller ’s I P address from a DHCP server wit h t he cont roller ’s I P address configured as
opt ion 138.
• Broadcast ing t o discover t he cont roller wit hin t he broadcast dom ain.
The AP cont roller m ust have a st at ic I P address; it cannot be a DHCP client .
CAPWAP and IP Subnets
By default , CAPWAP works only bet ween devices wit h I P addresses in t he sam e subnet ( see t he
appendices for inform at ion on I P addresses and subnet t ing) .
However, you can configure CAPWAP t o operat e bet ween devices wit h I P addresses in different
subnet s by doing t he following.
• Act ivat e DHCP. Your net work’s DHCP server m ust support opt ion 138 defined in RFC 5415.
• Configure DHCP opt ion 138 wit h t he I P address of t he CAPWAP AP cont roller on your net work.
B222s User’s Guide
37
Chapter 4 Broadband
DHCP Opt ion 138 allows t he CAPWAP m anagem ent request ( from t he AP in m anaged AP m ode) t o
reach t he AP cont roller in a different subnet , as shown in t he following figure.
Figure 16 CAPWAP and DHCP Opt ion 138
SUBNET 1
SUBNET 2
DHCP
SERVER
+ OPTION 138
CAPWAP
TRAFFIC
AP
CONTROLLER
(STATIC IP)
MANAGED
AP
Notes on CAPWAP
This sect ion list s som e addit ional feat ures of ZyXEL’s im plem ent at ion of t he CAPWAP prot ocol.
• When t he AP cont roller uses it s int ernal Rem ot e Aut hent icat ion Dial I n User Service ( RADI US)
server, m anaged APs also use t he AP cont roller ’s aut hent icat ion server t o aut hent icat e wireless
client s.
• I f a m anaged AP’s link t o t he AP cont roller is broken, t he m anaged AP cont inues t o use t he
wireless set t ings wit h which it was last provided.
4.1.3 Before You Begin
You m ay need t o know your I nt ernet access set t ings such as LTE APN, WAN I P address and SI M
card’s PI N code if t he I N TERN ET light on your LTE Device is off. Get t his inform at ion from your
service provider.
4.2 The Broadband Screen
The LTE Device m ust have a WAN int erface t o allow users t o use t he LTE connect ion t o access t he
I nt ernet . Use t he Br oa dba n d screen t o view or m odify a WAN int erface. You can also configure t he
LTE Device as part of a Cont rol And Provisioning of Wireless Access Point s ( CAPWAP) net work in t his
screen.
38
B222s User’s Guide
Chapter 4 Broadband
Click N e t w or k Se t t in g > Br oa dba nd. The following screen opens.
Figure 17 Net work Set t ing > Broadband
The following t able describes t he fields in t his screen.
Table 4 Net work Set t ing > Broadband
LABEL
DESCRIPTION
CAPWAP Set t ing
CAPWAP Enable
Select t his t o act ivat e ??
CAPWAP AC Server
Ent er t he I P address of t he AC server.??
Apply
Click t his t o save t he change in t his sect ion.
Cancel
Click t his t o rest ore your previously saved set t ings in t his sect ion.
I nt ernet Set up
Nam e
This is t he service nam e of t he connect ion.
APN
This is t he nam e of t he LTE net work t o which t he LTE Device will connect .
Encapsulat ion
This shows t he m et hod of encapsulat ion used by t his connect ion.
NAT
This shows whet her NAT is act ivat ed or not for t his connect ion. NAT is not
available when t he connect ion uses t he bridging service.
Default Gat eway
This shows whet her t he LTE Device uses t he int erface of t his connect ion as t he
syst em default gat eway.
Modify
Click t he Edit icon t o configure t he connect ion.
Click t he D e le t e icon t o delet e t his connect ion from t he Device. A window
displays asking you t o confirm t hat you want t o delet e t he connect ion.
4.2.1 Add/Edit Internet Connection
Use t his screen t o configure a WAN connect ion. The screen varies depending on t he int erface t ype,
encapsulat ion, and WAN service t ype you select .
B222s User’s Guide
39
Chapter 4 Broadband
Click t he Add n e w W AN I n t e r fa ce in t he N e t w or k Se t t ing > Br oa dba nd screen or t he Edit icon
next t o t he connect ion you want t o configure, t he screen displays as shown next .
Figure 18 Broadband Add/ Edit
The following t able describes t he fields in t his screen.
Table 5 Broadband Add/ Edit
LABEL
DESCRIPTION
Nam e
Specify t he nam e for t his WAN int erface.??
APN
Ent er t he Access Point Nam e ( APN) of an LTE net work, which your service provider gave
you.??
Dial St ring
Ent er t he dial st ring of your 3G net card.??
I Pv6/ I Pv4
Mode
Select I Pv4 On ly if you j ust connect t his WAN int erface t o an I Pv4 net work.
Select I Pv6 / I Pv4 D u a l St a ck if you connect t his WAN int erface t o bot h an I Pv6 and an I Pv4
net works.
Select I Pv6 On ly if you j ust connect t his WAN int erface t o an I Pv6 net work.??
40
MTU
The Maxim um Transm ission Unit ( MTU) defines t he size of t he largest packet allowed on an
int erface or connect ion. Ent er t he MTU for t his WAN int erface in t his field.
NAT Enable
Select t his t o act ivat e NAT on t he WAN.
Apply as
Default
Gat eway
??
6t o4
Tunneling
Select t his if you need t o t ransm it I Pv6 packet s over t he I Pv4 net work t hrough t his WAN
int erface, t he I Pv6 packet s are encapsulat ed inside I Pv4 packet s.??
Apply
Click Apply t o save your changes.
Back
Click Ba ck t o ret urn t o t he previous screen.
B222s User’s Guide
Chapter 4 Broadband
4.3 Technical Reference
The following sect ion cont ains addit ional t echnical inform at ion about t he LTE Device feat ures
described in t his chapt er.
Encapsulation
Be sure t o use t he encapsulat ion m et hod required by your I SP. The LTE Device support s t he
following m et hods:
IP Address Assignment
A st at ic I P is a fixed I P t hat your I SP gives you. A dynam ic I P is not fixed; t he I SP assigns you a
different one each t im e. The Single User Account feat ure can be enabled or disabled if you have
eit her a dynam ic or st at ic I P. However t he encapsulat ion m et hod assigned influences your choices
for I P address and default gat eway.
DNS Server Address Assignment
Use Dom ain Nam e Syst em ( DNS) t o m ap a dom ain nam e t o it s corresponding I P address and vice
versa, for inst ance, t he I P address of www.zyxel.com is 204.217.0.2. The DNS server is ext rem ely
im port ant because wit hout it , you m ust know t he I P address of a com put er before you can access
it .
The LTE Device can get t he DNS server addresses in t he following ways.
The I SP t ells you t he DNS server addresses, usually in t he form of an inform at ion sheet , when you
sign up. I f your I SP gives you DNS server addresses, m anually ent er t hem in t he DNS server fields.
I f your I SP dynam ically assigns t he DNS server I P addresses ( along wit h t he LTE Device’s WAN I P
address) , set t he DNS server fields t o get t he DNS server address from t he I SP.
LTE Frequency Band Table
See t he following t able for t he frequency bands used in LTE wireless t echnologies.
Table 6 LTE Wireless Technologies
UPLINK (UL) OPERATING BAND
DOWNLINK (DL) OPERATING BAND
BASE STATION RECEIVE
BASE STATION TRANSMIT
BAND
CPE TRANSMIT
CPE RECEIVE
UL (LOW - HIGH)
DL (LOW - HIGH)
DUPLEX
MODE
1920 MHz
–
1980 MHz
2110 MHz
–
2170 MHz
FDD
1850 MHz
–
1910 MHz
1930 MHz
–
1990 MHz
FDD
1710 MHz
–
1785 MHz
1805 MHz
–
1880 MHz
FDD
1710 MHz
–
1755 MHz
2110 MHz
–
2155 MHz
FDD
824 MHz
–
849 MHz
869 MHz
–
894MHz
FDD
830 MHz
–
840 MHz
875 MHz
–
885 MHz
FDD
2500 MHz
–
2570 MHz
2620 MHz
–
2690 MHz
FDD
B222s User’s Guide
41
Chapter 4 Broadband
Table 6 LTE Wireless Technologies
UPLINK (UL) OPERATING BAND
DOWNLINK (DL) OPERATING BAND
BASE STATION RECEIVE
BASE STATION TRANSMIT
BAND
CPE TRANSMIT
CPE RECEIVE
UL (LOW - HIGH)
DL (LOW - HIGH)
880 MHz
–
915 MHz
DUPLEX
MODE
925 MHz
–
960 MHz
FDD
1844.9 MHz
–
1879.9 MHz
FDD
2110 MHz
–
2170 MHz
FDD
1475.9 MHz
–
1495.9 MHz
FDD
1749.9 MHz
–
1784.9 MHz
10
1710 MHz
–
1770 MHz
11
1427.9 MHz
–
1447.9 MHz
12
699 MHz
–
716 MHz
729 MHz
–
746 MHz
FDD
13
777 MHz
–
787 MHz
746 MHz
–
756 MHz
FDD
14
788 MHz
–
798 MHz
758 MHz
–
768 MHz
FDD
15
Reserved
Reserved
FDD
16
Reserved
Reserved
FDD
17
704 MHz
–
716 MHz
734 MHz
–
746 MHz
FDD
18
815 MHz
–
830 MHz
860 MHz
–
875 MHz
FDD
19
830 MHz
–
845 MHz
875 MHz
–
890 MHz
FDD
20
832 MHz
–
862 MHz
791 MHz
–
821 MHz
FDD
21
1447.9 MHz
–
1462.9 MHz
1495.9 MHz
–
1510.9 MHz
FDD
1626.5 MHz
–
1660.5 MHz
1525 MHz
–
1559 MHz
FDD
...
24
...
33
1900 MHz
–
1920 MHz
1900 MHz
–
1920 MHz
TDD
34
2010 MHz
–
2025 MHz
2010 MHz
–
2025 MHz
TDD
35
1850 MHz
–
1910 MHz
1850 MHz
–
1910 MHz
TDD
36
1930 MHz
–
1990 MHz
1930 MHz
–
1990 MHz
TDD
37
1910 MHz
–
1930 MHz
1910 MHz
–
1930 MHz
TDD
38
2570 MHz
–
2620 MHz
2570 MHz
–
2620 MHz
TDD
39
1880 MHz
–
1920 MHz
1880 MHz
–
1920 MHz
TDD
40
2300 MHz
–
–
41
2496 MHz
42
3400 MHz
43
3600 MHz
2400 MHz
2300 MHz
2690 MHz
2496 MHz
–
3600 MHz
3400 MHz
–
3800 MHz
3600 MHz
2400 MHz
TDD
2690 MHz
TDD
–
3600 MHz
TDD
–
3800 MHz
TDD
Note 1: Band 6 is not applicable
42
B222s User’s Guide
C HAPT ER
Wireless
5.1 Overview
This chapt er describes t he LTE Device’s N e t w or k Se t t in g > W ir e le ss screens. Use t hese screens
t o set up your LTE Device’s wireless connect ion.
5.1.1 What You Can Do in this Chapter
• Use t he Ge n e r a l screen t o enable t he Wireless LAN, ent er t he SSI D and select t he wireless
securit y m ode ( Sect ion 5.2 on page 45) .
• Use t he M or e AP screen t o set up m ult iple wireless net works on your LTE Device ( Sect ion 5.3 on
page 51) .
• Use t he W PS screen t o enable or disable WPS, view or generat e a securit y PI N ( Personal
I dent ificat ion Num ber) ( Sect ion 5.4 on page 53) .
• Use t he W M M screen t o enable Wi- Fi Mult iMedia ( WMM) t o ensure qualit y of service in wireless
net works for m ult im edia applicat ions ( Sect ion 5.5 on page 55) .
• Use t he Sche duling screen t o schedule a t im e period for t he wireless LAN t o operat e each day
( Sect ion 5.6 on page 57) .
You don’t necessarily need t o use all t hese screens t o set up your wireless connect ion. For exam ple,
you m ay j ust want t o set up a net work nam e, a wireless radio channel and som e securit y in t he
Ge ne r a l screen.
5.1.2 Wireless Network Overview
Wireless net works consist of wireless client s, access point s and bridges.
• A wireless client is a radio connect ed t o a user ’s com put er.
• An access point is a radio wit h a wired connect ion t o a net work, which can connect wit h
num erous wireless client s and let t hem access t he net work.
• A bridge is a radio t hat relays com m unicat ions bet ween access point s and wireless client s,
ext ending a net work’s range.
Tradit ionally, a wireless net work operat es in one of t wo ways.
• An “ infrast ruct ure” t ype of net work has one or m ore access point s and one or m ore wireless
client s. The wireless client s connect t o t he access point s.
• An “ ad- hoc” t ype of net work is one in which t here is no access point . Wireless client s connect t o
one anot her in order t o exchange inform at ion.
B222s User’s Guide
43
Chapter 5 Wireless
The following figure provides an exam ple of a wireless net work.
Figure 19 Exam ple of a Wireless Net work
The wireless net work is t he part in t he blue circle. I n t his wireless net work, devices A and B use t he
access point ( AP) t o int eract wit h t he ot her devices ( such as t he print er) or wit h t he I nt ernet . Your
LTE Device is t he AP.
Every wireless net work m ust follow t hese basic guidelines.
• Every device in t he sam e wireless net work m ust use t he sam e SSI D.
The SSI D is t he nam e of t he wireless net work. I t st ands for Service Set I Dent ifier.
• I f t wo wireless net works overlap, t hey should use a different channel.
Like radio st at ions or t elevision channels, each wireless net work uses a specific channel, or
frequency, t o send and receive inform at ion.
• Every device in t he sam e wireless net work m ust use securit y com pat ible wit h t he AP.
• Securit y st ops unaut horized devices from using t he wireless net work. I t can also prot ect t he
inform at ion t hat is sent in t he wireless net work.
Radio Channels
I n t he radio spect rum , t here are cert ain frequency bands allocat ed for unlicensed, civilian use. For
t he purposes of wireless net working, t hese bands are divided int o num erous channels. This allows a
variet y of net works t o exist in t he sam e place wit hout int erfering wit h one anot her. When you
creat e a net work, you m ust select a channel t o use.
Since t he available unlicensed spect rum varies from one count ry t o anot her, t he num ber of
available channels also varies.
A channel is t he radio frequency( ies) used by wireless devices t o t ransm it and receive dat a.
Channels available depend on your geographical area. You m ay have a choice of channels ( for your
region) so you should use a channel different from an adj acent AP ( access point ) t o reduce
44
B222s User’s Guide
Chapter 5 Wireless
int erference. I nt erference occurs when radio signals from different access point s overlap causing
int erference and degrading perform ance.
Adj acent channels part ially overlap however. To avoid int erference due t o overlap, your AP should
be on a channel at least five channels away from a channel t hat an adj acent AP is using. For
exam ple, if your region has 11 channels and an adj acent AP is using channel 1, t hen you need t o
select a channel bet ween 6 or 11.
5.1.3 Before You Begin
Before you st art using t hese screens, ask yourself t he following quest ions. See Sect ion 5.7 on page
57 if som e of t he t erm s used here do not m ake sense t o you.
• What wireless st andards do t he ot her wireless devices support ( I EEE 802.11g, for exam ple) ?
What is t he m ost appropriat e st andard t o use?
• What securit y opt ions do t he ot her wireless devices support ( WPA- PSK, for exam ple) ? What is
t he best one t o use?
• Do t he ot her wireless devices support WPS ( Wi- Fi Prot ect ed Set up) ? I f so, you can set up a wellsecured net work very easily.
Even if som e of your devices support WPS and som e do not , you can use WPS t o set up your
net work and t hen add t he non- WPS devices m anually, alt hough t his is som ewhat m ore
com plicat ed t o do.
• What advanced opt ions do you want t o configure, if any? I f you want t o configure advanced
opt ions, ensure t hat you know precisely what you want t o do. I f you do not want t o configure
advanced opt ions, leave t hem alone.
5.2 The Wireless General Screen
Use t his screen t o enable t he Wireless LAN, ent er t he SSI D and select t he wireless securit y m ode.
Not e: I f you are configur ing t he LTE Device from a com put er connect ed t o t he wireless
LAN and you change t he LTE Device’s SSI D or securit y set t ings, you will lose your
wireless connect ion when you press Apply t o confirm . You m ust t hen change t he
wireless set t ings of your com put er t o m at ch t he LTE Device’s new set t ings.
B222s User’s Guide
45
Chapter 5 Wireless
Click N e t w or k Se t t ing > W ir e le ss t o open t he Ge ne r a l screen. Select t he Ena ble W ir e le ss LAN
checkbox t o show t he Wireless configurat ions.
Figure 20 Net work Set t ing > Wireless > General
The following t able describes t he labels in t his screen.
Table 7 Net work > Wireless LAN > General
LABEL
DESCRIPTION
Wireless Net work Set up
Wireless
Select t he En a ble W ir e le ss LAN check box t o act ivat e t he wireless LAN.
Wireless Net work Set t ings
Wireless
Net work Nam e
( SSI D)
The SSI D ( Service Set I Dent it y) ident ifies t he service set wit h which a wireless
device is associat ed. Wireless devices associat ing t o t he access point ( AP) m ust
have t he sam e SSI D.
Ent er a descript ive nam e ( up t o 32 English keyboard charact ers) for t he wireless
LAN.
Hide SSI D
Select t his check box t o hide t he SSI D in t he out going beacon fram e so a st at ion
cannot obt ain t he SSI D t hrough scanning using a sit e survey t ool.
BSSI D
This shows t he MAC address of t he wireless int erface on t he LTE Device when
wireless LAN is enabled.
Mode Select
This m akes sure t hat only com pliant WLAN devices can associat e wit h t he LTE
Device.
Select 8 0 2 .1 1 b/ g/ n t o allow I EEE802.11b, I EEE802.11g and I EEE802.11n
com pliant WLAN devices t o associat e wit h t he LTE Device. The t ransm ission rat e of
your LTE Device m ight be reduced.
Select 8 0 2 .1 1 b/ g t o allow bot h I EEE802.11b and I EEE802.11g com pliant WLAN
devices t o associat e wit h t he LTE Device. The t ransm ission rat e of your LTE Device
m ight be reduced.
Select 8 0 2 .1 1 g On ly t o allow only I EEE 802.11g com pliant WLAN devices t o
associat e wit h t he LTE Device. Select 8 0 2 .1 1 n on ly in 2 .4 G ba nd t o allow only
I EEE 802.11n com pliant WLAN devices wit h t he sam e frequency range ( 2.4 GHz) t o
associat e wit h t he LTE Device.
46
B222s User’s Guide
Chapter 5 Wireless
Table 7 Net work > Wireless LAN > General ( cont inued)
LABEL
DESCRIPTION
Channel
Select ion
Set t he channel depending on your part icular region.
Operat ing
Channel
Select a channel or use Aut o t o have t he LTE Device aut om at ically det erm ine a
channel t o use. I f you are having problem s wit h wireless int erference, changing t he
channel m ay help. Try t o use a channel t hat is as m any channels away from any
channels used by neighboring APs as possible. The channel num ber which t he LTE
Device is current ly using t hen displays in t he Ope r a t in g Ch a n n e l field.
This is t he channel current ly being used by your AP.
Securit y Level
Securit y Mode
Select Ba sic or M or e Se cu r e t o add securit y on t his wireless net work. The wireless
client s which want t o associat e t o t his net work m ust have sam e wireless securit y
set t ings as t he LTE Device. When you select t o use a securit y, addit ional opt ions
appears in t his screen.
Or you can select N o Se cu r it y t o allow any client t o associat e t his net work wit hout
any dat a encrypt ion or aut hent icat ion.
See t he following sect ions for m ore det ails about wireless securit y m odes.
Apply
Click Apply t o save your changes back t o t he LTE Device.
Cancel
Click Ca n ce l t o rest ore your previously saved set t ings.
5.2.1 No Security
Select N o Se cur it y t o allow wireless st at ions t o com m unicat e wit h t he access point s wit hout any
dat a encrypt ion or aut hent icat ion.
Not e: I f you do not enable any wireless securit y on your LTE Device, your net wor k is
accessible t o any wireless net working device t hat is wit hin range.
Figure 21 Wireless > General: No Securit y
The following t able describes t he labels in t his screen.
Table 8 Wireless > General: No Securit y
LABEL
DESCRIPTION
Securit y Level
Choose N o Se cu r it y from t he sliding bar.
5.2.2 Basic (Static WEP/Shared WEP Encryption)
WEP encrypt ion scram bles t he dat a t ransm it t ed bet ween t he wireless st at ions and t he access point s
( AP) t o keep net work com m unicat ions privat e. Bot h t he wireless st at ions and t he access point s
m ust use t he sam e WEP key.
B222s User’s Guide
47
Chapter 5 Wireless
There are t wo t ypes of WEP aut hent icat ion nam ely, Open Syst em ( St a t ic W EP) and Shared Key
( Sha r e d W EP) .
Open syst em is im plem ent ed for ease- of- use and when securit y is not an issue. The wireless st at ion
and t he AP or peer com put er do not share a secret key. Thus t he wireless st at ions can associat e
wit h any AP or peer com put er and list en t o any t ransm it t ed dat a t hat is not encrypt ed.
Shared key m ode involves a shared secret key t o aut hent icat e t he wireless st at ion t o t he AP or peer
com put er. This requires you t o enable t he wireless LAN securit y and use sam e set t ings on bot h t he
wireless st at ion and t he AP or peer com put er.
I n order t o configure and enable WEP encrypt ion, click N e t w or k Se t t ings > W ir e le ss t o display
t he Ge ne r a l screen. Select Ba sic as t he securit y level. Then select St a t ic W EP or Sha r e d W EP
from t he Se cur it y M ode list .
Figure 22 Wireless > General: Basic ( St at ic WEP/ Shared WEP)
The following t able describes t he labels in t his screen.
Table 9 Wireless > General: Basic ( St at ic WEP/ Shared WEP)
LABEL
DESCRIPTION
Securit y Mode
Choose St a t ic W EP or Sh a r e d W EP from t he drop- down list box.
•
•
WEP Key
Select St a t ic W EP t o have t he LTE Device allow associat ion wit h wireless client s
t hat use Open Syst em m ode. Dat a t ransfer is encrypt ed as long as t he wireless
client has t he correct WEP key for encrypt ion. The LTE Device aut hent icat es
wireless client s using Shared Key m ode t hat have t he correct WEP key.
Select Sha r e d W EP t o have t he LTE Device aut hent icat e only t hose wireless
client s t hat use Shared Key m ode and have t he correct WEP key.
Ent er a WEP key t hat will be used t o encrypt dat a. Bot h t he LTE Device and t he
wireless st at ions m ust use t he sam e WEP key for dat a t ransm ission.
I f you want t o m anually set t he WEP key, ent er any 5 or 13 charact ers ( ASCI I
st ring) or 10 or 26 hexadecim al charact ers ( " 0- 9" , " A- F" ) for a 64- bit or 128- bit
WEP key respect ively.
48
B222s User’s Guide
Chapter 5 Wireless
5.2.3 More Secure (WPA(2)-PSK)
The WPA- PSK securit y m ode provides bot h im proved dat a encrypt ion and user aut hent icat ion over
WEP. Using a Pre- Shared Key ( PSK) , bot h t he LTE Device and t he connect ing client share a com m on
password in order t o validat e t he connect ion. This t ype of encrypt ion, while robust , is not as st rong
as WPA, WPA2 or even WPA2- PSK. The WPA2- PSK securit y m ode is a newer, m ore robust version of
t he WPA encrypt ion st andard. I t offers slight ly bet t er securit y, alt hough t he use of PSK m akes it
less robust t han it could be.
Click N e t w or k Se t t in gs > W ir e le ss t o display t he Ge n e r a l screen. Select M or e Se cur e as t he
securit y level. Then select W PA- PSK or W PA2 - PSK from t he Se cur it y M ode list .
Figure 23 Wireless > General: More Secure: WPA( 2) - PSK
The following t able describes t he labels in t his screen.
Table 10 Wireless > General: WPA( 2) - PSK
LABEL
DESCRIPTION
Securit y Level
Select M or e Se cur e t o enable WPA( 2) - PSK dat a encrypt ion.
Securit y Mode
Select W PA- PSK or W PA2 - PSK from t he drop- down list box.
Pre- Shared Key
The encrypt ion m echanism s used for W PA/ W PA2 and W PA- PSK/ W PA2 - PSK
are t he sam e. The only difference bet ween t he t w o is t hat W PA- PSK/ W PA2 PSK uses a sim ple com m on password, inst ead of user- specific credent ials.
Type a pre- shared key from 8 t o 63 case- sensit ive ASCI I charact ers or 64
hexidecim al digit s.
m ore.../ hide
m ore
B222s User’s Guide
Click m or e ... t o show m ore fields in t his sect ion. Click hide m or e t o hide t hem .
49
Chapter 5 Wireless
Table 10 Wireless > General: WPA( 2) - PSK ( cont inued)
LABEL
DESCRIPTION
WPA- PSK
Com pat ible
This field appears when you choose W PA- PSK2 as t he Se cur it y M ode .
Encrypt ion
Check t his field t o allow wireless devices using W PA- PSK securit y m ode t o
connect t o your LTE Device. The LTE Device support s WPA- PSK and WPA2- PSK
sim ult aneously.
I f t he securit y m ode is W PA- PSK, t he encrypt ion m ode is set t o TKI P t o enable
Tem poral Key I nt egrit y Prot ocol ( TKI P) securit y on your wireless net work.
I f t he securit y m ode is W PA- PSK2 and W PA- PSK Com pa t ible is disabled, t he
encrypt ion m ode is set t o AES t o enable Advanced Encrypt ion Syst em ( AES)
securit y on your wireless net work. AES provides superior securit y t o TKI P.
I f t he securit y m ode is W PA- PSK2 and W PA- PSK Com pa t ible is enabled, t he
encrypt ion m ode is set t o TKI PAES M I X t o allow bot h TKI P and AES t ypes of
securit y in your wireless net work.
5.2.4 WPA(2) Authentication
The WPA2 securit y m ode is current ly t he m ost robust form of encrypt ion for wireless net works. I t
requires a RADI US server t o aut hent icat e user credent ials and is a full im plem ent at ion t he securit y
prot ocol. Use t his securit y opt ion for m axim um prot ect ion of your net work. However, it is t he least
backwards com pat ible wit h older devices.
The WPA securit y m ode is a securit y subset of WPA2. I t requires t he presence of a RADI US server
on your net work in order t o validat e user credent ials. This encrypt ion st andard is slight ly older t han
WPA2 and t herefore is m ore com pat ible wit h older devices.
Click N e t w or k Se t t in gs > W ir e le ss t o display t he Ge n e r a l screen. Select M or e Se cur e as t he
securit y level. Then select W PA or W PA2 from t he Se cur it y M ode list .
Figure 24 Wireless > General: More Secure: WPA( 2)
50
B222s User’s Guide
Chapter 5 Wireless
The following t able describes t he labels in t his screen.
Table 11 Wireless > General: More Secure: WPA( 2)
LABEL
DESCRIPTION
Securit y Level
Select M or e Se cur e t o enable WPA( 2) - PSK dat a encrypt ion.
Securit y Mode
Choose W PA or W PA2 from t he drop- down list box.
Aut hent icat ion Server
I P Address
Ent er t he I P address of t he ext ernal aut hent icat ion server in dot t ed decim al
not at ion.
Port Num ber
Ent er t he port num ber of t he ext ernal aut hent icat ion server. The default port
num ber is 1 8 1 2 .
You need not change t his value unless your net work adm inist rat or inst ruct s you
t o do so wit h addit ional inform at ion.
Shared Secret
Ent er a password ( up t o 128 alphanum eric charact ers) as t he key t o be shared
bet ween t he ext ernal aut hent icat ion server and t he LTE Device.
The key m ust be t he sam e on t he ext ernal aut hent icat ion server and your LTE
Device. The key is not sent over t he net work.
m ore.../ hide m ore
Click m or e ... t o show m ore fields in t his sect ion. Click hide m or e t o hide
t hem .
WPA Com pat ible
This field is only available for WPA2. Select t his if you want t he LTE Device t o
support WPA and WPA2 sim ult aneously.
Group Key Updat e
Tim er
The Gr ou p Ke y Upda t e Tim e r is t he rat e at which t he RADI US server sends a
new group key out t o all client s.
I f t he value is set t o “ 0”, t he updat e t im er funct ion is disabled.
Encrypt ion
I f t he securit y m ode is W PA, t he encrypt ion m ode is set t o TKI P t o enable
Tem poral Key I nt egrit y Prot ocol ( TKI P) securit y on your wireless net work.
I f t he securit y m ode is W PA2 , t he encrypt ion m ode is set t o AES t o enable
Advanced Encrypt ion Syst em ( AES) securit y on your wireless net work. AES
provides superior securit y t o TKI P.
5.3 The More AP Screen
The LTE Device can broadcast up t o four wireless net work nam es at t he sam e t im e. This m eans t hat
users can connect t o t he LTE Device using different SSI Ds. You can secure t he connect ion on each
SSI D profile so t hat wireless client s connect ing t o t he LTE Device using different SSI Ds cannot
com m unicat e wit h each ot her.
This screen allows you t o enable and configure m ult iple Basic Service Set s ( BSSs) on t he LTE
Device.
Click N e t w or k Se t t ings > W ir e le ss > M or e AP. The following screen displays.
Figure 25 Net work Set t ings > Wireless > More AP
B222s User’s Guide
51
Chapter 5 Wireless
The following t able describes t he labels in t his screen.
Table 12 Net work Set t ings > Wireless > More AP
LABEL
DESCRIPTION
This is t he index num ber of t he ent ry.
Act ive
This field indicat es whet her t his SSI D is act ive. A yellow bulb signifies t hat t his
SSI D is act ive. A gray bulb signifies t hat t his SSI D is not act ive.
SSI D
An SSI D profile is t he set of param et ers relat ing t o one of t he LTE Device’s BSSs.
The SSI D ( Service Set I Dent ifier) ident ifies t he Service Set wit h which a wireless
device is associat ed.
This field displays t he nam e of t he wireless profile on t he net work. When a
wireless client scans for an AP t o associat e wit h, t his is t he nam e t hat is broadcast
and seen in t he wireless client ut ilit y.
Securit y
This field indicat es t he securit y m ode of t he SSI D profile.
Modify
Click t he Edit icon t o configure t he SSI D profile.
5.3.1 Edit More AP
Use t his screen t o edit an SSI D profile. Click t he Edit icon next t o an SSI D in t he M or e AP screen.
The following screen displays.
Figure 26 Wireless > More AP: Edit
The following t able describes t he fields in t his screen.
Table 13 Wireless > More AP: Edit
LABEL
DESCRIPTION
Wireless Net work Set up
Wireless
Select t he En a ble W ir e le ss LAN check box t o act ivat e t he wireless LAN.
Wireless Net work Set t ings
52
B222s User’s Guide
Chapter 5 Wireless
Table 13 Wireless > More AP: Edit ( cont inued)
LABEL
DESCRIPTION
Wireless Net work
Nam e ( SSI D)
The SSI D ( Service Set I Dent it y) ident ifies t he service set wit h which a
wireless device is associat ed. Wireless devices associat ing t o t he access
point ( AP) m ust have t he sam e SSI D.
Ent er a descript ive nam e ( up t o 32 English keyboard charact ers) for t he
wireless LAN.
Hide SSI D
Select t his check box t o hide t he SSI D in t he out going beacon fram e so a
st at ion cannot obt ain t he SSI D t hrough scanning using a sit e survey t ool.
BSSI D
This shows t he MAC address of t he wireless int erface on t he LTE Device
when wireless LAN is enabled.
Securit y Level
Securit y Mode
Select Ba sic ( W EP) or M or e Se cu r e ( W PA( 2 ) - PSK, W PA( 2 ) ) t o add
securit y on t his wireless net work. The wireless client s which want t o
associat e t o t his net work m ust have sam e wireless securit y set t ings as t he
LTE Device. Aft er you select t o use a securit y, addit ional opt ions appears in
t his screen.
Or you can select N o Se cur it y t o allow any client t o associat e t his net work
wit hout any dat a encrypt ion or aut hent icat ion.
See Sect ion 5.2.1 on page 47 for m ore det ails about t his field.
Apply
Click Apply t o save your changes.
Back
Click Ba ck t o exit t his screen wit hout saving.
5.4 The WPS Screen
Use t his screen t o configure WiFi Prot ect ed Set up ( WPS) on your LTE Device.
WPS allows you t o quickly set up a wireless net work wit h st rong securit y, wit hout having t o
configure securit y set t ings m anually. Set up each WPS connect ion bet ween t wo devices. Bot h
devices m ust support WPS. See Sect ion 5.7.6.3 on page 64 for m ore inform at ion about WPS.
Not e: The LTE Device applies t he securit y set t ings of t he SSI D 1 profile ( see Sect ion 5.2
on page 45) . I f you want t o use t he WPS feat ure, m ake sure you have set t he
securit y m ode of SSI D 1 t o W PA- PSK, W PA2 - PSK or N o Se cu r it y.
B222s User’s Guide
53
Chapter 5 Wireless
Click N e t w or k Se t t ing > W ir e le ss > W PS. The following screen displays. Select Ena ble and click
Apply t o act ivat e t he WPS funct ion. Then you can configure t he WPS set t ings in t his screen.
Figure 27 Net work Set t ing > Wireless > WPS
The following t able describes t he labels in t his screen.
Table 14 Net work Set t ing > Wireless > WPS
LABEL
DESCRIPTION
Enable WPS
Select En a ble t o act ivat e WPS on t he LTE Device.
Add a new device w it h WPS Met hod
Met hod 1 PBC
WPS
Use t his sect ion t o set up a WPS wireless net work using Push But t on
Configurat ion ( PBC) .
Click t his but t on t o add anot her WPS- enabled wireless device ( wit hin wireless
range of t he LTE Device) t o your wireless net work. This but t on m ay eit her be a
physical but t on on t he out side of device, or a m enu but t on sim ilar t o t he W PS
but t on on t his screen.
Note: You must press the other wireless device’s WPS button within two minutes
of pressing this button.
Met hod 2 PI N
54
Use t his sect ion t o set up a WPS wireless net work by ent ering t he PI N ( Personal
I dent ificat ion Num ber) of t he client int o t he LTE Device.
B222s User’s Guide
Chapter 5 Wireless
Table 14 Net work Set t ing > Wireless > WPS ( cont inued)
LABEL
Regist er
DESCRIPTION
Ent er t he PI N of t he device t hat you are set t ing up a WPS connect ion wit h and
click Re gist e r t o aut hent icat e and add t he wireless device t o your wireless
net work.
You can find t he PI N eit her on t he out side of t he device, or by checking t he
device’s set t ings.
Note: You must also activate WPS on that device within two minutes to have it
present its PIN to the LTE Device.
WPS Configurat ion Sum m ary
AP PI N
The PI N of t he LTE Device is shown here. Ent er t his PI N in t he configurat ion
ut ilit y of t he device you want t o connect t o using WPS.
The PI N is not necessary when you use WPS push- but t on m et hod.
Click t he Ge ne r a t e N e w PI N but t on t o have t he LTE Device creat e a new PI N.
St at us
This displays Con figu r e d when t he LTE Device has connect ed t o a wireless
net work using WPS or En a ble W PS is select ed and wireless or wireless securit y
set t ings have been changed. The current wireless and wireless securit y set t ings
also appear in t he screen.
This displays N ot Con figu r e d when t here is no wireless or wireless securit y
changes on t he LTE Device or you click Re le a se Con figu r a t ion t o rem ove t he
configured wireless and wireless securit y set t ings.
Release
Configurat ion
This but t on is available when t he WPS st at us is Con figu r e d.
Click t his but t on t o rem ove all configured wireless and wireless securit y set t ings
for WPS connect ions on t he LTE Device.
802.11 Mode
This is t he 802.11 m ode used. Only com pliant WLAN devices can associat e wit h
t he LTE Device.
SSI D
This is t he nam e of t he wireless net work.
Securit y
This is t he t ype of wireless securit y em ployed by t he net work.
Apply
Click Apply t o save your changes.
5.5 The WMM Screen
Use t his screen t o enable or disable Wi- Fi Mult iMedia ( WMM) wireless net works for m ult im edia
applicat ions.
B222s User’s Guide
55
Chapter 5 Wireless
Click N e t w or k Se t t ing > W ir e le ss > W M M . The following screen displays.
Figure 28 Net work Set t ing > Wireless > WMM
The following t able describes t he labels in t his screen.
Table 15 Net work Set t ing > Wireless > WMM
56
LABEL
DESCRIPTION
Enable WMM of
SSI D1~ 4
This enables t he LTE Device t o aut om at ically give a service a priorit y level
according t o t he ToS value in t he I P header of packet s it sends. WMM QoS ( Wifi
Mult iMedia Qualit y of Service) gives high priorit y t o voice and video, which m akes
t hem run m ore sm oot hly.
Enable WMM
Aut om at ic Power
Save Deliver
( APSD)
Click t his t o increase bat t ery life for bat t ery- powered wireless client s. APSD uses
a longer beacon int erval when t ransm it t ing t raffic t hat does not require a short
packet exchange int erval.
Apply
Click Apply t o save your changes.
Cancel
Click Ca n ce l t o rest ore your previously saved set t ings.
B222s User’s Guide
Chapter 5 Wireless
5.6 Scheduling Screen
Click N e t w or k Se t t ing > W ir e le ss > Sche duling t o open t he W ir e le ss LAN Sche duling screen.
Use t his screen t o configure when t he LTE Device enables or disables t he wireless LAN.
Figure 29 Net work Set t ing > Wireless > Scheduling
The following t able describes t he labels in t his screen.
Table 16 Net work Set t ing > Wireless > Scheduling
LABEL
DESCRIPTION
Wireless LAN
Scheduling
Select Ena ble t o act ivat e wireless LAN scheduling on your LTE Device.
WLAN st at us
Select On or Off t o enable or disable t he wireless LAN.
Day
Select t he day( s) you want t o t urn t he wireless LAN on or off.
Bet ween t he
following t im es
Specify t he t im e period during which t o apply t he schedule.
For exam ple, you want t he wireless net work t o be only available during work
hours. Check Mon ~ Fri in t he day colum n, and specify 8: 00 ~ 18: 00 in t he t im e
t able.
Apply
Click Apply t o save your changes.
Cancel
Click Ca n ce l t o rest ore your previously saved set t ings.
5.7 Technical Reference
This sect ion discusses wireless LANs in dept h. For m ore inform at ion, see t he appendix.
B222s User’s Guide
57
Chapter 5 Wireless
5.7.1 Additional Wireless Terms
The following t able describes som e wireless net work t erm s and acronym s used in t he LTE Device’s
web configurat or.
Table 17 Addit ional Wireless Term s
TERM
DESCRIPTION
RTS/ CTS Threshold
I n a wireless net work which covers a large area, wireless devices are
som et im es not aware of each ot her ’s presence. This m ay cause t hem t o
send inform at ion t o t he AP at t he sam e t im e and result in inform at ion
colliding and not get t ing t hrough.
By set t ing t his value lower t han t he default value, t he wireless devices m ust
som et im es get perm ission t o send inform at ion t o t he LTE Device. The lower
t he value, t he m ore oft en t he devices m ust get perm ission.
I f t his value is great er t han t he fragm ent at ion t hreshold value ( see below) ,
t hen wireless devices never have t o get perm ission t o send inform at ion t o
t he LTE Device.
Pream ble
A pream ble affect s t he t im ing in your wireless net work. There are t wo
pream ble m odes: long and short . I f a device uses a different pream ble m ode
t han t he LTE Device does, it cannot com m unicat e wit h t he LTE Device.
Aut hent icat ion
The process of verifying whet her a wireless device is allowed t o use t he
wireless net work.
Fragm ent at ion
Threshold
A sm all fragm ent at ion t hreshold is recom m ended for busy net works, while a
larger t hreshold provides fast er perform ance if t he net work is not very busy.
5.7.2 Wireless Security Overview
By t heir nat ure, radio com m unicat ions are sim ple t o int ercept . For wireless dat a net works, t his
m eans t hat anyone wit hin range of a wireless net work wit hout securit y can not only read t he dat a
passing over t he airwaves, but also j oin t he net work. Once an unaut horized person has access t o
t he net work, he or she can st eal inform at ion or int roduce m alware ( m alicious soft ware) int ended t o
com prom ise t he net work. For t hese reasons, a variet y of securit y syst em s have been developed t o
ensure t hat only aut horized people can use a wireless dat a net work, or underst and t he dat a carried
on it .
These securit y st andards do t wo t hings. First , t hey aut hent icat e. This m eans t hat only people
present ing t he right credent ials ( oft en a usernam e and password, or a “ key” phrase) can access t he
net work. Second, t hey encrypt . This m eans t hat t he inform at ion sent over t he air is encoded. Only
people wit h t he code key can underst and t he inform at ion, and only people who have been
aut hent icat ed are given t he code key.
These securit y st andards vary in effect iveness. Som e can be broken, such as t he old Wired
Equivalent Prot ocol ( WEP) . Using WEP is bet t er t han using no securit y at all, but it will not keep a
det erm ined at t acker out . Ot her securit y st andards are secure in t hem selves but can be broken if a
user does not use t hem properly. For exam ple, t he WPA- PSK securit y st andard is very secure if you
use a long key which is difficult for an at t acker ’s soft ware t o guess - for exam ple, a t went y- let t er
long st ring of apparent ly random num bers and let t ers - but it is not very secure if you use a short
key which is very easy t o guess - for exam ple, a t hree- let t er word from t he dict ionary.
Because of t he dam age t hat can be done by a m alicious at t acker, it ’s not j ust people who have
sensit ive inform at ion on t heir net work who should use securit y. Everybody who uses any wireless
net work should ensure t hat effect ive securit y is in place.
58
B222s User’s Guide
Chapter 5 Wireless
A good way t o com e up wit h effect ive securit y keys, passwords and so on is t o use obscure
inform at ion t hat you personally will easily rem em ber, and t o ent er it in a way t hat appears random
and does not include real words. For exam ple, if your m ot her owns a 1970 Dodge Challenger and
her favorit e m ovie is Vanishing Point ( which you know was m ade in 1971) you could use
“ 70dodchal71vanpoi” as your securit y key.
The following sect ions int roduce different t ypes of wireless securit y you can set up in t he wireless
net work.
5.7.2.1 SSID
Norm ally, t he LTE Device act s like a beacon and regularly broadcast s t he SSI D in t he area. You can
hide t he SSI D inst ead, in which case t he LTE Device does not broadcast t he SSI D. I n addit ion, you
should change t he default SSI D t o som et hing t hat is difficult t o guess.
This t ype of securit y is fairly weak, however, because t here are ways for unaut horized wireless
devices t o get t he SSI D. I n addit ion, unaut horized wireless devices can st ill see t he inform at ion t hat
is sent in t he wireless net work.
5.7.2.2 MAC Address Filter
Every device t hat can use a wireless net work has a unique ident ificat ion num ber, called a MAC
address. 1 A MAC address is usually writ t en using t welve hexadecim al charact ers2 ; for exam ple,
00A0C5000002 or 00: A0: C5: 00: 00: 02. To get t he MAC address for each device in t he wireless
net work, see t he device’s User ’s Guide or ot her docum ent at ion.
You can use t he MAC address filt er t o t ell t he LTE Device which devices are allowed or not allowed
t o use t he wireless net work. I f a device is allowed t o use t he wireless net work, it st ill has t o have
t he correct inform at ion ( SSI D, channel, and securit y) . I f a device is not allowed t o use t he wireless
net work, it does not m at t er if it has t he correct inform at ion.
This t ype of securit y does not prot ect t he inform at ion t hat is sent in t he wireless net work.
Furt herm ore, t here are ways for unaut horized wireless devices t o get t he MAC address of an
aut horized device. Then, t hey can use t hat MAC address t o use t he wireless net work.
5.7.2.3 User Authentication
Aut hent icat ion is t he process of verifying whet her a wireless device is allowed t o use t he wireless
net work. You can m ake every user log in t o t he wireless net work before using it . However, every
device in t he wireless net work has t o support I EEE 802.1x t o do t his.
For wireless net works, you can st ore t he user nam es and passwords for each user in a RADI US
server. This is a server used in businesses m ore t han in hom es. I f you do not have a RADI US server,
you cannot set up user nam es and passwords for your users.
Unaut horized wireless devices can st ill see t he inform at ion t hat is sent in t he wireless net work,
even if t hey cannot use t he wireless net work. Furt herm ore, t here are ways for unaut horized
wireless users t o get a valid user nam e and password. Then, t hey can use t hat user nam e and
password t o use t he wireless net work.
1.
Some wireless devices, such as scanners, can detect wireless networks but cannot use wireless networks. These kinds
of wireless devices might not have MAC addresses.
2.
Hexadecimal characters are 0, 1, 2, 3, 4, 5, 6, 7, 8, 9, A, B, C, D, E, and F.
B222s User’s Guide
59
Chapter 5 Wireless
5.7.2.4 Encryption
Wireless net works can use encrypt ion t o prot ect t he inform at ion t hat is sent in t he wireless
net work. Encrypt ion is like a secret code. I f you do not know t he secret code, you cannot
underst and t he m essage.
The t ypes of encrypt ion you can choose depend on t he t ype of aut hent icat ion. ( See Sect ion 5.7.2.3
on page 59 for inform at ion about t his.)
Table 18 Types of Encrypt ion for Each Type of Aut hent icat ion
W e a k e st
NO AUTHENTICATION
RADIUS SERVER
No Securit y
WPA
St at ic WEP
WPA- PSK
St r on ge st
WPA2- PSK
WPA2
For exam ple, if t he wireless net work has a RADI US server, you can choose W PA or W PA2 . I f users
do not log in t o t he wireless net work, you can choose no encrypt ion, St a t ic W EP, W PA- PSK, or
W PA2 - PSK.
Usually, you should set up t he st rongest encrypt ion t hat every device in t he wireless net work
support s. For exam ple, suppose you have a wireless net work wit h t he LTE Device and you do not
have a RADI US server. Therefore, t here is no aut hent icat ion. Suppose t he wireless net work has t wo
devices. Device A only support s WEP, and device B support s WEP and WPA. Therefore, you should
set up St a t ic W EP in t he wireless net work.
Not e: I t is recom m ended t hat w ireless net works use W PA- PSK, W PA, or st ronger
encrypt ion. The ot her t ypes of encrypt ion are bet t er t han none at all, but it is st ill
possible for unaut horized wireless devices t o figure out t he original inform at ion
pret t y quickly.
When you select W PA2 or W PA2 - PSK in your LTE Device, you can also select an opt ion (W PA
com pa t ible ) t o support WPA as well. I n t his case, if som e of t he devices support WPA and som e
support WPA2, you should set up W PA2 - PSK or W PA2 ( depending on t he t ype of wireless net work
login) and select t he W PA com pa t ible opt ion in t he LTE Device.
Many t ypes of encrypt ion use a key t o prot ect t he inform at ion in t he wireless net work. The longer
t he key, t he st ronger t he encrypt ion. Every device in t he wireless net work m ust have t he sam e key.
5.7.3 Signal Problems
Because wireless net works are radio net works, t heir signals are subj ect t o lim it at ions of dist ance,
int erference and absorpt ion.
Problem s wit h dist ance occur when t he t wo radios are t oo far apart . Problem s wit h int erference
occur when ot her radio waves int errupt t he dat a signal. I nt erference m ay com e from ot her radio
t ransm issions, such as m ilit ary or air t raffic cont rol com m unicat ions, or from m achines t hat are
coincident al em it t ers such as elect ric m ot ors or m icrowaves. Problem s wit h absorpt ion occur when
physical obj ect s ( such as t hick walls) are bet ween t he t wo radios, m uffling t he signal.
60
B222s User’s Guide
Chapter 5 Wireless
5.7.4 BSS
A Basic Service Set ( BSS) exist s when all com m unicat ions bet ween wireless st at ions or bet ween a
wireless st at ion and a wired net work client go t hrough one access point ( AP) .
I nt ra- BSS t raffic is t raffic bet ween wireless st at ions in t he BSS. When I nt ra- BSS t raffic blocking is
disabled, wireless st at ion A and B can access t he wired net work and com m unicat e wit h each ot her.
When I nt ra- BSS t raffic blocking is enabled, wireless st at ion A and B can st ill access t he wired
net work but cannot com m unicat e wit h each ot her.
Figure 30 Basic Service set
5.7.5 MBSSID
Tradit ionally, you need t o use different APs t o configure different Basic Service Set s ( BSSs) . As well
as t he cost of buying ext ra APs, t here is also t he possibilit y of channel int erference. The LTE
Device’s MBSSI D ( Mult iple Basic Service Set I Dent ifier) funct ion allows you t o use one access point
t o provide several BSSs sim ult aneously. You can t hen assign varying QoS priorit ies and/ or securit y
m odes t o different SSI Ds.
Wireless devices can use different BSSI Ds t o associat e wit h t he sam e AP.
5.7.5.1 Notes on Multiple BSSs
• A m axim um of eight BSSs are allowed on one AP sim ult aneously.
• You m ust use different keys for different BSSs. I f t wo wireless devices have different BSSI Ds
( t hey are in different BSSs) , but have t he sam e keys, t hey m ay hear each ot her ’s
com m unicat ions ( but not com m unicat e wit h each ot her) .
• MBSSI D should not replace but rat her be used in conj unct ion wit h 802.1x securit y.
B222s User’s Guide
61
Chapter 5 Wireless
5.7.6 WiFi Protected Setup (WPS)
Your LTE Device support s WiFi Prot ect ed Set up ( WPS) , which is an easy way t o set up a secure
wireless net work. WPS is an indust ry st andard specificat ion, defined by t he WiFi Alliance.
WPS allows you t o quickly set up a wireless net work wit h st rong securit y, wit hout having t o
configure securit y set t ings m anually. Each WPS connect ion works bet ween t wo devices. Bot h
devices m ust support WPS ( check each device’s docum ent at ion t o m ake sure) .
Depending on t he devices you have, you can eit her press a but t on ( on t he device it self, or in it s
configurat ion ut ilit y) or ent er a PI N ( a unique Personal I dent ificat ion Num ber t hat allows one device
t o aut hent icat e t he ot her) in each of t he t wo devices. When WPS is act ivat ed on a device, it has t wo
m inut es t o find anot her device t hat also has WPS act ivat ed. Then, t he t wo devices connect and set
up a secure net work by t hem selves.
5.7.6.1 Push Button Configuration
WPS Push But t on Configurat ion ( PBC) is init iat ed by pressing a but t on on each WPS- enabled
device, and allowing t hem t o connect aut om at ically. You do not need t o ent er any inform at ion.
Not every WPS- enabled device has a physical WPS but t on. Som e m ay have a WPS PBC but t on in
t heir configurat ion ut ilit ies inst ead of or in addit ion t o t he physical but t on.
Take t he following st eps t o set up WPS using t he but t on.
Ensure t hat t he t wo devices you want t o set up are wit hin wireless range of one anot her.
Look for a WPS but t on on each device. I f t he device does not have one, log int o it s configurat ion
ut ilit y and locat e t he but t on ( see t he device’s User ’s Guide for how t o do t his - for t he LTE Device,
see Sect ion 5.4 on page 53) .
Press t he but t on on one of t he devices ( it doesn’t m at t er which) . For t he LTE Device you m ust press
t he WPS but t on for m ore t han t hree seconds.
Wit hin t wo m inut es, press t he but t on on t he ot her device. The regist rar sends t he net work nam e
( SSI D) and securit y key t hrough an secure connect ion t o t he enrollee.
I f you need t o m ake sure t hat WPS worked, check t he list of associat ed wireless client s in t he AP’s
configurat ion ut ilit y. I f you see t he wireless client in t he list , WPS was successful.
5.7.6.2 PIN Configuration
Each WPS- enabled device has it s own PI N ( Personal I dent ificat ion Num ber) . This m ay eit her be
st at ic ( it cannot be changed) or dynam ic ( in som e devices you can generat e a new PI N by clicking
on a but t on in t he configurat ion int erface) .
Use t he PI N m et hod inst ead of t he push- but t on configurat ion ( PBC) m et hod if you want t o ensure
t hat t he connect ion is est ablished bet ween t he devices you specify, not j ust t he first t wo devices t o
act ivat e WPS in range of each ot her. However, you need t o log int o t he configurat ion int erfaces of
bot h devices t o use t he PI N m et hod.
When you use t he PI N m et hod, you m ust ent er t he PI N from one device ( usually t he wireless client )
int o t he second device ( usually t he Access Point or wireless rout er) . Then, when WPS is act ivat ed
62
B222s User’s Guide
Chapter 5 Wireless
on t he first device, it present s it s PI N t o t he second device. I f t he PI N m at ches, one device sends
t he net work and securit y inform at ion t o t he ot her, allowing it t o j oin t he net work.
Take t he following st eps t o set up a WPS connection bet ween an access point or wireless rout er
( referred t o here as t he AP) and a client device using t he PI N m et hod.
Ensure WPS is enabled on bot h devices.
Access t he WPS sect ion of t he AP’s configurat ion int erface. See t he device’s User ’s Guide for how t o
do t his.
Look for t he client ’s WPS PI N; it will be displayed eit her on t he device, or in t he WPS sect ion of t he
client ’s configurat ion int erface ( see t he device’s User ’s Guide for how t o find t he WPS PI N - for t he
LTE Device, see Sect ion 5.4 on page 53) .
Ent er t he client ’s PI N in t he AP’s configurat ion int erface.
I f t he client device’s configurat ion int erface has an area for ent ering anot her device’s PI N, you can
eit her ent er t he client ’s PI N in t he AP, or ent er t he AP’s PI N in t he client - it does not m at t er which.
St art WPS on bot h devices wit hin t wo m inut es.
Use t he configurat ion ut ilit y t o act ivat e WPS, not t he push- but t on on t he device it self.
On a com put er connect ed t o t he wireless client , t ry t o connect t o t he I nt ernet . I f you can connect ,
WPS was successful.
I f you cannot connect , check t he list of associat ed wireless client s in t he AP’s configurat ion ut ilit y. I f
you see t he wireless client in t he list , WPS was successful.
B222s User’s Guide
63
Chapter 5 Wireless
The following figure shows a WPS- enabled wireless client ( inst alled in a not ebook com put er)
connect ing t o t he WPS- enabled AP via t he PI N m et hod.
Figure 31 Exam ple WPS Process: PI N Met hod
ENROLLEE
REGISTRAR
WPS
This device’s
WPS PIN: 123456
WPS
Enter WPS PIN
from other device:
WPS
START
WPS
START
WITHIN 2 MINUTES
SECURE EAP TUNNEL
SSID
WPA(2)-PSK
COMMUNICATION
5.7.6.3 How WPS Works
When t wo WPS- enabled devices connect , each device m ust assum e a specific role. One device act s
as t he regist rar ( t he device t hat supplies net work and securit y set t ings) and t he ot her device act s
as t he enrollee ( t he device t hat receives net work and securit y set t ings. The regist rar creat es a
secure EAP ( Ext ensible Aut hent icat ion Prot ocol) t unnel and sends t he net work nam e ( SSI D) and t he
WPA- PSK or WPA2- PSK pre- shared key t o t he enrollee. Whet her WPA- PSK or WPA2- PSK is used
depends on t he st andards support ed by t he devices. I f t he regist rar is already part of a net work, it
sends t he exist ing inform at ion. I f not , it generat es t he SSI D and WPA( 2) - PSK random ly.
64
B222s User’s Guide
Chapter 5 Wireless
The following figure shows a WPS- enabled client ( inst alled in a not ebook com put er) connect ing t o a
WPS- enabled access point .
Figure 32 How WPS works
ACTIVATE
WPS
ACTIVATE
WPS
WITHIN 2 MINUTES
WPS HANDSHAKE
ENROLLEE
REGISTRAR
SECURE TUNNEL
SECURITY INFO
COMMUNICATION
The roles of regist rar and enrollee last only as long as t he WPS set up process is act ive ( t wo
m inut es) . The next t im e you use WPS, a different device can be t he regist rar if necessary.
The WPS connect ion process is like a handshake; only t wo devices part icipat e in each WPS
t ransact ion. I f you want t o add m ore devices you should repeat t he process wit h one of t he exist ing
net worked devices and t he new device.
Not e t hat t he access point ( AP) is not always t he regist rar, and t he wireless client is not always t he
enrollee. All WPS- cert ified APs can be a regist rar, and so can som e WPS- enabled wireless client s.
By default , a WPS devices is “ unconfigured”. This m eans t hat it is not part of an exist ing net work
and can act as eit her enrollee or regist rar ( if it support s bot h funct ions) . I f t he regist rar is
unconfigured, t he securit y set t ings it t ransm it s t o t he enrollee are random ly- generat ed. Once a
WPS- enabled device has connect ed t o anot her device using WPS, it becom es “ configured”. A
configured wireless client can st ill act as enrollee or regist rar in subsequent WPS connect ions, but a
configured access point can no longer act as enrollee. I t will be t he regist rar in all subsequent WPS
connect ions in which it is involved. I f you want a configured AP t o act as an enrollee, you m ust reset
it t o it s fact ory default s.
5.7.6.4 Example WPS Network Setup
This sect ion shows how securit y set t ings are dist ribut ed in an exam ple WPS set up.
The following figure shows an exam ple net work. I n st ep 1 , bot h AP1 and Clie nt 1 are
unconfigured. When WPS is act ivat ed on bot h, t hey perform t he handshake. I n t his exam ple, AP1
B222s User’s Guide
65
Chapter 5 Wireless
is t he regist rar, and Clie nt 1 is t he enrollee. The regist rar random ly generat es t he securit y
inform at ion t o set up t he net work, since it is unconfigured and has no exist ing inform at ion.
Figure 33 WPS: Exam ple Net work St ep 1
ENROLLEE
REGISTRAR
SECURITY INFO
AP1
CLIENT 1
I n st ep 2 , you add anot her wireless client t o t he net work. You know t hat Clie nt 1 support s regist rar
m ode, but it is bet t er t o use AP1 for t he WPS handshake wit h t he new client since you m ust
connect t o t he access point anyway in order t o use t he net work. I n t his case, AP1 m ust be t he
regist rar, since it is configured ( it already has securit y inform at ion for t he net work) . AP1 supplies
t he exist ing securit y inform at ion t o Clie nt 2 .
Figure 34 WPS: Exam ple Net work St ep 2
REGISTRAR
EXISTING CONNECTION
AP1
CLIENT 1
ENROLLEE
NF
YI
CU
SE
CLIENT 2
66
B222s User’s Guide
Chapter 5 Wireless
I n st ep 3, you add anot her access point ( AP2 ) t o your net work. AP2 is out of range of AP1 , so you
cannot use AP1 for t he WPS handshake wit h t he new access point . However, you know t hat Clie nt
2 support s t he regist rar funct ion, so you use it t o perform t he WPS handshake inst ead.
Figure 35 WPS: Exam ple Net work St ep 3
EXISTING CONNECTION
CLIENT 1
IS
EX
GC
TIN
ION
CT
NN
AP1
REGISTRAR
CLIENT 2
SE
CU
RIT
ENROLLEE
INF
AP2
5.7.6.5 Limitations of WPS
WPS has som e lim it at ions of which you should be aware.
• WPS works in I nfrast ruct ure net works only ( where an AP and a wireless client com m unicat e) . I t
does not work in Ad- Hoc net works ( where t here is no AP) .
• When you use WPS, it works bet ween t wo devices only. You cannot enroll m ult iple devices
sim ult aneously, you m ust enroll one aft er t he ot her.
For inst ance, if you have t wo enrollees and one regist rar you m ust set up t he first enrollee ( by
pressing t he WPS but t on on t he regist rar and t he first enrollee, for exam ple) , t hen check t hat it
successfully enrolled, t hen set up t he second device in t he sam e way.
• WPS works only wit h ot her WPS- enabled devices. However, you can st ill add non-WPS devices t o
a net work you already set up using WPS.
WPS works by aut om at ically issuing a random ly- generat ed WPA- PSK or WPA2- PSK pre- shared
key from t he regist rar device t o t he enrollee devices. Whet her t he net work uses WPA- PSK or
WPA2- PSK depends on t he device. You can check t he configurat ion int erface of t he regist rar
device t o discover t he key t he net work is using ( if t he device support s t his feat ure) . Then, you
can ent er t he key int o t he non-WPS device and j oin t he net work as norm al ( t he non-WPS device
m ust also support WPA- PSK or WPA2- PSK) .
B222s User’s Guide
67
Chapter 5 Wireless
• When you use t he PBC m et hod, t here is a short period ( from t he m om ent you press t he but t on
on one device t o t he m om ent you press t he but t on on t he ot her device) when any WPS- enabled
device could j oin t he net work. This is because t he regist rar has no way of ident ifying t he
“ correct ” enrollee, and cannot different iat e bet ween your enrollee and a rogue device. This is a
possible way for a hacker t o gain access t o a net work.
You can easily check t o see if t his has happened. WPS works bet ween only t wo devices
sim ult aneously, so if anot her device has enrolled your device will be unable t o enroll, and will not
have access t o t he net work. I f t his happens, open t he access point ’s configurat ion int erface and
look at t he list of associat ed client s ( usually displayed by MAC address) . I t does not m at t er if t he
access point is t he WPS regist rar, t he enrollee, or was not involved in t he WPS handshake; a
rogue device m ust st ill associat e wit h t he access point t o gain access t o t he net work. Check t he
MAC addresses of your wireless client s ( usually print ed on a label on t he bot t om of t he device) . I f
t here is an unknown MAC address you can rem ove it or reset t he AP.
68
B222s User’s Guide
C HAPT ER
Home Networking
6.1 Overview
A Local Area Net work ( LAN) is a shared com m unicat ion syst em t o which m any com put ers are
at t ached. A LAN is usually locat ed in one im m ediat e area such as a building or floor of a building.
The LAN screens can help you configure a LAN DHCP server and m anage I P addresses.
LAN
WAN
6.1.1 What You Can Do in this Chapter
• Use t he LAN Se t u p screen t o set t he LAN I P address, subnet m ask, and DHCP set t ings ( Sect ion
6.2 on page 71) .
• Use t he St a t ic D H CP screen t o assign I P addresses on t he LAN t o specific individual com put ers
based on t heir MAC Addresses ( Sect ion 6.3 on page 72) .
• Use t he UPnP screen t o enable UPnP ( Sect ion 6.4 on page 73) .
6.1.2 What You Need To Know
The following t erm s and concept s m ay help as you read t his chapt er.
6.1.2.1 About LAN
IP Address
Sim ilar t o t he way houses on a st reet share a com m on st reet nam e, so t oo do com put ers on a LAN
share one com m on net work num ber. This is known as an I nt ernet Prot ocol address.
B222s User’s Guide
69
Chapter 6 Home Networking
Subnet Mask
The subnet m ask specifies t he net work num ber port ion of an I P address. Your LTE Device will
com put e t he subnet m ask aut om at ically based on t he I P address t hat you ent ered. You don't need
t o change t he subnet m ask com put ed by t he LTE Device unless you are inst ruct ed t o do ot herwise.
DHCP
DHCP ( Dynam ic Host Configurat ion Prot ocol) allows client s t o obt ain TCP/ I P configurat ion at st artup from a server. This LTE Device has a built- in DHCP server capabilit y t hat assigns I P addresses
and DNS servers t o syst em s t hat support DHCP client capabilit y.
DNS
DNS ( Dom ain Nam e Syst em ) m aps a dom ain nam e t o it s corresponding I P address and vice versa.
The DNS server is ext rem ely im port ant because wit hout it , you m ust know t he I P address of a
com put er before you can access it . The DNS server addresses you ent er when you set up DHCP are
passed t o t he client m achines along wit h t he assigned I P address and subnet m ask.
6.1.2.2 About UPnP
How do I know if I'm using UPnP?
UPnP hardware is ident ified as an icon in t he Net work Connect ions folder ( Windows XP) . Each UPnP
com pat ible device inst alled on your net work will appear as a separat e icon. Select ing t he icon of a
UPnP device will allow you t o access t he inform at ion and propert ies of t hat device.
Cautions with UPnP
The aut om at ed nat ure of NAT t raversal applicat ions in est ablishing t heir own services and opening
firewall port s m ay present net work securit y issues. Net work inform at ion and configurat ion m ay also
be obt ained and m odified by users in som e net work environm ent s.
When a UPnP device j oins a net work, it announces it s presence wit h a m ult icast m essage. For
securit y reasons, t he LTE Device allows m ult icast m essages on t he LAN only.
All UPnP- enabled devices m ay com m unicat e freely wit h each ot her wit hout addit ional configurat ion.
Disable UPnP if t his is not your int ent ion.
70
B222s User’s Guide
Chapter 6 Home Networking
6.2 The LAN Setup Screen
Click N e t w or k Se t t in g > H om e N e t w or k ing t o open t he LAN Se t up screen. Use t his screen t o
set t he Local Area Net work I P address and subnet m ask of your LTE Device and configure t he DNS
server inform at ion t hat t he LTE Device sends t o t he DHCP client devices on t he LAN.
Figure 36 Net work Set t ing > Hom e Net working > LAN Set up
The following t able describes t he fields in t his screen.
Table 19 Net work Set t ing > Hom e Net working > LAN Set up
LABEL
DESCRIPTION
LAN I P Set up
I P Address
Ent er t he LAN I P address you want t o assign t o your LTE Device in dot t ed decim al
not at ion, for exam ple, 192.168.1.1 ( fact ory default ) .
I P Subnet Mask
Type t he subnet m ask of your net work in dot t ed decim al not at ion, for exam ple
255.255.255.0 ( fact ory default ) . Your LTE Device aut om at ically com put es t he subnet
m ask based on t he I P address you ent er, so do not change t his field unless you are
inst ruct ed t o do so.
DHCP Server St at e
DHCP
Select En a ble t o have your LTE Device assign I P addresses, an I P default gat eway and
DNS servers t o LAN com put ers and ot her devices t hat are DHCP client s.
I f you select D isa ble , you need t o m anually configure t he I P addresses of t he
com put ers and ot her devices on your LAN.
When DHCP is used, t he following fields need t o be set .
I P Addressing Values
I P Pool St art ing
Address
This field specifies t he first of t he cont iguous addresses in t he I P address pool.
Pool Size
This field specifies t he size, or count of t he I P address pool.
DNS Values
B222s User’s Guide
71
Chapter 6 Home Networking
Table 19 Net work Set t ing > Hom e Net working > LAN Set up ( cont inued)
LABEL
DESCRIPTION
DNS Server 1- 3
Select Fr om I SP if your I SP dynam ically assigns DNS server inform at ion ( and t he LTE
Device's WAN I P address) .
Select D N S- Pr ox y if
Select Use r - D e fin e d if you have t he I P address of a DNS server. Ent er t he DNS server's
I P address in t he field t o t he right . I f you chose Use r - D e fin e d, but leave t he I P address
set t o 0.0.0.0, Use r - D e fin e d changes t o N on e aft er you click Apply. I f you set a
second choice t o Use r - D e fin e d, and ent er t he sam e I P address, t he second Use r D e fine d changes t o N on e aft er you click Apply.
Select N on e if you do not want t o configure DNS servers. You m ust have anot her DHCP
sever on your LAN, or else t he com put ers m ust have t heir DNS server addresses
m anually configured. I f you do not configure a DNS server, you m ust know t he I P
address of a com put er in order t o access it .
Apply
Click Apply t o save your changes.
Cancel
Click Ca n ce l t o rest ore your previously saved set t ings.
6.3 The Static DHCP Screen
This t able allows you t o assign I P addresses on t he LAN t o specific individual com put ers based on
t heir MAC Addresses.
Every Et hernet device has a unique MAC ( Media Access Cont rol) address. The MAC address is
assigned at t he fact ory and consist s of six pairs of hexadecim al charact ers, for exam ple,
00: A0: C5: 00: 00: 02.
6.3.1 Before You Begin
Find out t he MAC addresses of your net work devices if you int end t o add t hem t o t he St a t ic D H CP
screen.
Use t his screen t o change your LTE Device’s st at ic DHCP set t ings. Click N e t w or k Se t t in g > H om e
N e t w or k in g > St a t ic D H CP t o open t he following screen.
Figure 37 Net work Set t ing > Hom e Net working > St at ic DHCP
The following t able describes t he labels in t his screen.
Table 20 Net work Set t ing > Hom e Net working > St at ic DHCP
72
LABEL
DESCRIPTION
Add new st at ic
lease
Click t his t o add a new st at ic DHCP ent ry.
This is t he index num ber of t he ent ry.
St at us
This field displays whet her t he client is connect ed t o t he LTE Device.
B222s User’s Guide
Chapter 6 Home Networking
Table 20 Net work Set t ing > Hom e Net working > St at ic DHCP ( cont inued)
LABEL
DESCRIPTION
Host Nam e
This field displays t he client host nam e.
MAC Address
The MAC ( Media Access Cont rol) or Et hernet address on a LAN ( Local Area Net work) is
unique t o your com put er ( six pairs of hexadecim al not at ion) .
A net work int erface card such as an Et hernet adapt er has a hardwired address t hat is
assigned at t he fact ory. This address follows an indust ry st andard t hat ensures no ot her
adapt er has a sim ilar address.
I P Address
This field displays t he I P address relat ive t o t he # field list ed above.
Reserve
Select t he check box in t he heading row t o aut om at ically select all check boxes or select
t he check box( es) in each ent ry t o have t he LTE Device always assign t he select ed
ent ry( ies) ’s I P address( es) t o t he corresponding MAC address( es) ( and host nam e( s) ) . You
can select up t o 128 ent ries in t his t able.
Apply
Click Apply t o save your changes.
Cancel
Click Ca nce l t o rest ore your previously saved set t ings.
Refresh
Click Re fr e sh t o reload t he DHCP t able.
I f you click Add ne w st a t ic le a se in t he St a t ic D H CP screen, t he following screen displays.
Figure 38 St at ic DHCP: Add
The following t able describes t he labels in t his screen.
Table 21 St at ic DHCP: Add
LABEL
DESCRIPTION
MAC Address
Ent er t he MAC address of a com put er on your LAN.
I P Address
Ent er t he I P address t hat you want t o assign t o t he com put er on your LAN wit h
t he MAC address t hat you w ill also specify.
Apply
Click Apply t o save your changes.
Back
Click Ba ck t o exit t his screen wit hout saving.
6.4 The UPnP Screen
Universal Plug and Play ( UPnP) is a dist ribut ed, open net working st andard t hat uses TCP/ I P for
sim ple peer- t o- peer net work connect ivit y bet ween devices. A UPnP device can dynam ically j oin a
net work, obt ain an I P address, convey it s capabilit ies and learn about ot her devices on t he net work.
I n t urn, a device can leave a net work sm oot hly and aut om at ically when it is no longer in use.
See page 74 for m ore inform at ion on UPnP.
B222s User’s Guide
73
Chapter 6 Home Networking
Use t he following screen t o configure t he UPnP set t ings on your LTE Device. Click N e t w or k Se t t ing
> H om e N e t w or k ing > St a t ic D H CP > UPn P t o display t he screen shown next .
Figure 39 Net work Set t ing > Hom e Net working > UPnP
The following t able describes t he labels in t his screen.
Table 22 Net work Set t ings > Hom e Net working > UPnP
74
LABEL
DESCRIPTION
UPnP
Select En a ble t o act ivat e UPnP. Be aware t hat anyone could use a UPnP applicat ion t o open t he
web configurat or's login screen wit hout ent ering t he LTE Device's I P address ( alt hough you m ust
st ill ent er t he password t o access t he web configurat or) .
Apply
Click Apply t o save your changes.
B222s User’s Guide
C HAPT ER
Routing
7.1 Overview
The LTE Device usually uses t he default gat eway t o rout e out bound t raffic from com put ers on t he
LAN t o t he I nt ernet . To have t he LTE Device send dat a t o devices not reachable t hrough t he default
gat eway, use st at ic rout es.
For exam ple, t he next figure shows a com put er ( A) connect ed t o t he LTE Device’s LAN int erface.
The LTE Device rout es m ost t raffic from A t o t he I nt ernet t hrough t he LTE Device’s default gat eway
( R1 ) . You creat e one st at ic rout e t o connect t o services offered by your I SP behind rout er R2 . You
creat e anot her st at ic rout e t o com m unicat e wit h a separat e net work behind a rout er R3 connect ed
t o t he LAN.
Figure 40 Exam ple of St at ic Rout ing Topology
R1
LAN
WAN
R3
R2
B222s User’s Guide
75
Chapter 7 Routing
7.2 Configuring Static Route
Use t his screen t o view and configure I P st at ic rout es on t he LTE Device. Click N e t w or k Se t t in g >
St a t ic Rou t e t o open t he following screen.
Figure 41 Net work Set t ing > St at ic Rout e
The following t able describes t he labels in t his screen.
Table 23 Net work Set t ing > St at ic Rout e
LABEL
DESCRIPTION
Add New St at ic
Rout e
Click t his t o set up a new st at ic rout e on t he LTE Device.
This is t he num ber of an individual st at ic rout e.
Act ive
This indicat es whet her t he rule is act ive or not .
A yellow bulb signifies t hat t his st at ic rout e is act ive. A gray bulb signifies t hat t his st at ic
rout e is not act ive.
St at us
This shows whet her t he st at ic rout e is current ly in use or not . A yellow bulb signifies t hat
t his st at ic rout e is in use. A gray bulb signifies t hat t his st at ic rout e is not in use.
Nam e
This is t he nam e t hat describes or ident ifies t his rout e.
Dest inat ion I P
This param et er specifies t he I P net work address of t he final dest inat ion. Rout ing is always
based on net work num ber.
Gat eway
This is t he I P address of t he gat eway. The gat eway is a rout er or swit ch on t he sam e
net work segm ent as t he device's LAN or WAN port . The gat eway helps forward packet s t o
t heir dest inat ions.
Subnet Mask
This param et er specifies t he I P net work subnet m ask of t he final dest inat ion.
I nt erface
This indicat es which int erface handles t he t raffic forwarded by t his rout e.
Modify
Click t he Edit icon t o go t o t he screen where you can set up a st at ic rout e on t he LTE
Device.
Click t he D e le t e icon t o rem ove a st at ic rout e from t he LTE Device.
76
B222s User’s Guide
Chapter 7 Routing
7.2.1 Add/Edit Static Route
Click a dd ne w St a t ic Rout e in t he Rou t in g screen or click t he Edit icon next t o a rule. The
following screen appears. Use t his screen t o configure t he required inform at ion for a st at ic rout e.
Figure 42 Rout ing: Add/ Edit
The following t able describes t he labels in t his screen.
Table 24 Rout ing: Add/ Edit
LABEL
DESCRIPTION
Act ive
Click t his t o act ivat e t his st at ic rout e.
Rout e Nam e
Ent er t he nam e of t he I P st at ic rout e. Leave t his field blank t o delet e t his st at ic rout e.
Dest inat ion I P
Address
This param et er specifies t he I P net work address of t he final dest inat ion. Rout ing is always
based on net work num ber. I f you need t o specify a rout e t o a single host , use a subnet
m ask of 255.255.255.255 in t he subnet m ask field t o force t he net work num ber t o be
ident ical t o t he host I D.
I P Subnet Mask
Ent er t he I P subnet m ask here.
Gat eway I P
Address
You can decide if you want t o forward packet s t o a gat eway I P address or a bound
int erface.
I f you want t o configure Ga t e w a y I P Addr e ss, ent er t he I P address of t he next- hop
gat eway. The gat eway is a rout er or swit ch on t he sam e net work segm ent as t he device's
LAN or WAN port . The gat eway helps forward packet s t o t heir dest inat ions.
Bound I nt erface
You can decide if you want t o forward packet s t o a gat eway I P address or a bound
int erface.
I f you want t o configure Bou n d I n t e r fa ce , select t he check box and choose an int erface
t hrough which t he t raffic is sent .
Apply
Click Apply t o save your changes.
Back
Click Ba ck t o exit t his screen wit hout saving.
B222s User’s Guide
77
Chapter 7 Routing
78
B222s User’s Guide
C HAPT ER
DNS Route
8.1 Overview
DNS ( Dom ain Nam e Syst em ) is for m apping a dom ain nam e t o it s corresponding I P address and
vice versa. The DNS server is ext rem ely im port ant because wit hout it , you m ust know t he I P
address of a m achine before you can access it .
I n addit ion t o t he syst em DNS server( s) , each WAN int erface ( service) is set t o have it s own st at ic
or dynam ic DNS server list . You can configure a DNS st at ic rout e t o forward DNS queries for cert ain
dom ain nam es t hrough a specific WAN int erface t o it s DNS server( s) . The LTE Device uses a syst em
DNS server ( in t he order you specify in t he Br oa dba n d screen) t o resolve dom ain nam es t hat do
not m at ch any DNS rout ing ent ry. Aft er t he LTE Device receives a DNS reply from a DNS server, it
creat es a new ent ry for t he resolved I P address in t he rout ing t able.
I n t he following exam ple, t he DNS server 168.92.5.1 obt ained from t he WAN int erface at m 0.100 is
set t o be t he syst em DNS server. The DNS server 10.10.23.7 is obt ained from t he WAN int erface
ppp1.123. You configure a DNS rout e for * exam ple.com t o have t he LTE Device forward DNS
request s for t he dom ain nam e m ail.exam ple.com t hrough t he WAN int erface ppp1.123 t o t he DNS
server 10.10.23.7.
Figure 43 Exam ple of DNS Rout ing Topology
LAN
WAN
at m 0.100
DNS: 168.92.5.1
( Default )
sip.service.com
ppp1.123
m ail.exam ple.com
DNS: 10.10.23.7
8.1.1 What You Can Do in this Chapter
The D N S Rout e screens let you view and configure DNS rout es on t he LTE Device ( Sect ion 8.2 on
page 80) .
B222s User’s Guide
79
Chapter 8 DNS Route
8.2 The DNS Route Screen
The D N S Rout e screens let you view and configure DNS rout es on t he LTE Device. Click N e t w or k
Se t t ing > D N S Rout e t o open t he D N S Rout e screen.
Figure 44 Net work Set t ing > DNS Rout e
The following t able describes t he labels in t his screen.
Table 25 Net work Set t ing > DNS Rout e
LABEL
DESCRIPTION
Add new DNS
rout e
Click t his t o creat e a new ent ry.
This is t he num ber of an individual DNS rout e.
St at us
This shows whet her t he DNS rout e is current ly in use or not .
A yellow bulb signifies t hat t his DNS rout e is in use. A gray bulb signifies t hat t his DNS
rout e is not in use.
Dom ain Nam e
This is t he dom ain nam e t o which t he DNS rout e applies.
WAN I nt erface
This is t he WAN int erface t hrough which t he m at ched DNS request is rout ed.
Modify
Click t he Edit icon t o configure a DNS rout e on t he LTE Device.
Click t he D e le t e icon t o rem ove a DNS rout e from t he LTE Device.
8.2.1 Add/Edit DNS Route Edit
Click Add ne w D N S r out e in t he D N S Rout e screen or t he Edit icon next t o an exist ing DNS
rout e. Use t his screen t o configure t he required inform at ion for a DNS rout e.
Figure 45 DNS Rout e: Add/ Edit
80
B222s User’s Guide
Chapter 8 DNS Route
The following t able describes t he labels in t his screen.
Table 26 DNS Rout e: Add/ Edit
LABEL
DESCRIPTION
Act ive
Select t his t o act ivat e t his DNS rout e.
Dom ain Nam e
Ent er t he dom ain nam e you want t o resolve.
You can use t he wildcard charact er, an “ * ” ( ast erisk) as t he left m ost part of a dom ain nam e,
such as * .exam ple.com . The LTE Device forwards DNS queries for any dom ain nam e ending
in exam ple.com t o t he WAN int erface specified in t his rout e.
WAN I nt erface
Select a WAN int erface t hrough which t he m at ched DNS query is sent . You m ust have t he
WAN int erface( s) already configured in t he Br oa dba nd screen.
Apply
Click Apply t o save your changes.
Back
Click Ba ck t o exit t his screen wit hout saving.
B222s User’s Guide
81
Chapter 8 DNS Route
82
B222s User’s Guide
C HAPT ER
Quality of Service (QoS)
9.1 Overview
This chapt er discusses t he LTE Device’s QoS screens. Use t hese screens t o set up your LTE Device
t o use QoS for t raffic m anagem ent .
Qualit y of Service ( QoS) refers t o bot h a net work’s abilit y t o deliver dat a wit h m inim um delay, and
t he net working m et hods used t o cont rol t he use of bandwidt h. QoS allows t he LTE Device t o group
and priorit ize applicat ion t raffic and fine- t une net work perform ance.
Wit hout QoS, all t raffic dat a is equally likely t o be dropped when t he net work is congest ed. This can
cause a reduct ion in net work perform ance and m ake t he net work inadequat e for t im e- crit ical
applicat ion such as video- on- dem and.
The LTE Device assigns each packet a priorit y and t hen queues t he packet accordingly. Packet s
assigned a high priorit y are processed m ore quickly t han t hose wit h low priorit y if t here is
congest ion, allowing t im e- sensit ive applicat ions t o flow m ore sm oot hly. Tim e- sensit ive applicat ions
include bot h t hose t hat require a low level of lat ency ( delay) and a low level of j it t er ( variat ions in
delay) such as I nt ernet gam ing, and t hose for which j it t er alone is a problem such as I nt ernet radio
or st ream ing video.
Not e: The LTE Device has built - in configurat ions for Voice over I P ( I P) . The Qualit y of
Service ( QoS) feat ure does not affect VoI P t raffic.
• See Sect ion 9.6 on page 92 for advanced t echnical inform at ion on SI P.
9.1.1 What You Can Do in this Chapter
• Use t he Ge n e r a l screen t o enable QoS, set t he bandwidt h, and allow t he LTE Device t o
aut om at ically assign priorit y t o upst ream t raffic according t o t he I EEE 802.1p priorit y level, I P
precedence or packet lengt h ( Sect ion 9.2 on page 84) .
• Use t he Que ue Se t u p screen t o configure QoS queue assignm ent ( Sect ion 9.3 on page 86) .
• Use t he Cla ss Se t u p screen t o set up classifiers t o sort t raffic int o different flows and assign
priorit y and define act ions t o be perform ed for a classified t raffic flow ( Sect ion 9.4 on page 87) .
• Use t he M on it or screen t o view t he LTE Device’s QoS- relat ed packet st at ist ics ( Sect ion 9.5 on
page 92) .
9.1.2 What You Need to Know
The following t erm s and concept s m ay help as you read t his chapt er.
B222s User’s Guide
83
Chapter 9 Quality of Service (QoS)
QoS versus Cos
QoS is used t o priorit ize source- t o- dest inat ion t raffic flows. All packet s in t he sam e flow are given
t he sam e priorit y. CoS ( class of service) is a way of m anaging t raffic in a net work by grouping
sim ilar t ypes of t raffic t oget her and t reat ing each t ype as a class. You can use CoS t o give different
priorit ies t o different packet t ypes.
CoS t echnologies include I EEE 802.1p layer 2 t agging and DiffServ ( Different iat ed Services or DS) .
I EEE 802.1p t agging m akes use of t hree bit s in t he packet header, while DiffServ is a new prot ocol
and defines a new DS field, which replaces t he eight- bit ToS ( Type of Service) field in t he I P header.
Tagging and Marking
I n a QoS class, you can configure whet her t o add or change t he DSCP ( DiffServ Code Point ) value
and I EEE 802.1p priorit y level in a m at ched packet . When t he packet passes t hrough a com pat ible
net work, t he net working device, such as a backbone swit ch, can provide specific t reat m ent or
service based on t he t ag or m arker.
9.2 The QoS General Screen
Use t his screen t o enable or disable QoS, set t he bandwidt h, and select t o have t he LTE Device
aut om at ically assign priorit y t o upst ream t raffic according t o t he I EEE 802.1p priorit y level, I P
precedence or packet lengt h.
Click N e t w or k Se t t in g > QoS t o open t he Ge n e r a l screen.
Figure 46 Net work Set t ing > QoS > General
84
B222s User’s Guide
Chapter 9 Quality of Service (QoS)
The following t able describes t he labels in t his screen.
Table 27 Net work Set t ing > QoS > General
LABEL
DESCRIPTION
Act ive QoS
Select t he check box t o t urn on QoS t o im prove your net work perform ance.
You can give priorit y t o t raffic t hat t he LTE Device forwards out t hrough t he WAN
int erface. Give high priorit y t o voice and video t o m ake t hem run m ore sm oot hly.
Sim ilarly, give low priorit y t o m any large file downloads so t hat t hey do not reduce
t he qualit y of ot her applicat ions.
WAN Managed
Upst ream
Bandw idt h
Ent er t he am ount of bandwidt h for t he WAN int erface t hat you want t o allocat e
using QoS.
The recom m endat ion is t o set t his speed t o m at ch t he int erface’s act ual
t ransm ission speed. For exam ple, set t he WAN int erface speed t o 1000 kbps if
your I nt ernet connect ion has an upst ream t ransm ission speed of 1 Mbps.
Set t ing t his num ber higher t han t he int erface’s act ual t ransm ission speed will st op
lower priorit y t raffic from being sent if higher priorit y t raffic uses all of t he act ual
bandwidt h.
I f you set t his num ber lower t han t he int erface’s act ual t ransm ission speed, t he
LTE Device will not use som e of t he int erface’s available bandwidt h.
Leave t his field blank t o have t he LTE Device set t his value aut om at ically.
Traffic priorit y
w ill be
aut om at ically
assigned by
These fields are ignored if upst ream t raffic m at ches a class you configured in t he
Cla ss Se t u p screen.
I f you select Et h e r n e t Pr ior it y, I P Pr e ce de nce or Pa ck e t Le n gt h and t raffic
does not m at ch a class configured in t he Cla ss Se t u p screen, t he LTE Device
assigns priorit y t o unm at ched t raffic based on t he I EEE 802.1p priorit y level, I P
precedence or packet lengt h.
See Sect ion 9.6.1 on page 93 for m ore inform at ion.
Act ive upst ream
hardware Queue
if available
??
Apply
Click Apply t o save your changes.
Cancel
Click Ca n ce l t o rest ore your previously saved set t ings.
B222s User’s Guide
85
Chapter 9 Quality of Service (QoS)
9.3 The Queue Setup Screen
Use t his screen t o configure QoS queue assignm ent . Click N e t w or k Se t t in g > QoS > Que ue
Se t up t o open t he screen as shown next .
Figure 47 Net work Set t ing > QoS > Queue Set up
The following t able describes t he labels in t his screen.
Table 28 Net work Set t ing > QoS > Queue Set up
LABEL
DESCRIPTION
Add new
Queue
Click t his t o creat e a new ent ry.
This is t he index num ber of t his ent ry.
St at us
This indicat es whet her t he queue is act ive or not .
A yellow bulb signifies t hat t his queue is act ive. A gray bulb signifies t hat t his queue
is not act ive.
Nam e
This shows t he descript ive nam e of t his queue.
I nt erface
This shows t he nam e of t he LTE Device’s int erface t hrough which t raffic in t his
queue passes.
Priorit y
This shows t he priorit y of t his queue.
Weight
This shows t he weight of t his queue.
Buffer
Managem ent
This shows t he queue m anagem ent algorit hm used by t he LTE Device.
Rat e Lim it
( kbps)
This shows t he m axim um t ransm ission rat e allowed for t raffic on t his queue.
Modify
Click t he Edit icon t o edit t he queue.
Click t he D e le t e icon t o delet e an exist ing queue. Not e t hat subsequent rules m ove
up by one when you t ake t his act ion.
86
B222s User’s Guide
Chapter 9 Quality of Service (QoS)
9.3.1 Add/Edit a QoS Queue
Use t his screen t o configure a queue. Click Add n e w qu e u e in t he Que ue Se t u p screen or t he
Edit icon next t o an exist ing queue.
Figure 48 Queue Set up: Add/ Edit
The following t able describes t he labels in t his screen.
Table 29 Queue Set up: Add/ Edit
LABEL
DESCRIPTION
Act ive
Select t o enable or disable t his queue.
Nam e
Ent er t he descript ive nam e of t his queue.
I nt erface
This shows t he int erface of t his queue.
Priorit y
Select t he priorit y level ( from 1 t o 7) of t his queue.
The larger t he num ber, t he higher t he priorit y level. Traffic assigned t o higher
priorit y queues get s t hrough fast er while t raffic in lower priorit y queues is dropped
if t he net work is congest ed.
Weight
Select t he weight ( from 1 t o 15) of t his queue.
I f t wo queues have t he sam e priorit y level, t he LTE Device divides t he bandwidt h
across t he queues according t o t heir weight s. Queues wit h larger weight s get m ore
bandwidt h t han queues wit h sm aller weight s.
Rat e Lim it
Specify t he m axim um t ransm ission rat e ( in Kbps) allowed for t raffic on t his queue.
Apply
Click Apply t o save your changes.
Back
Click Ba ck t o ret urn t o t he previous screen wit hout saving.
9.4 The Class Setup Screen
Use t his screen t o add, edit or delet e QoS classifiers. A classifier groups t raffic int o dat a flows
according t o specific crit eria such as t he source address, dest inat ion address, source port num ber,
dest inat ion port num ber or incom ing int erface. For exam ple, you can configure a classifier t o select
t raffic from t he sam e prot ocol port ( such as Telnet ) t o form a flow.
You can give different priorit ies t o t raffic t hat t he LTE Device forwards out t hrough t he WAN
int erface. Give high priorit y t o voice and video t o m ake t hem run m ore sm oot hly. Sim ilarly, give low
priorit y t o m any large file downloads so t hat t hey do not reduce t he qualit y of ot her applicat ions.
B222s User’s Guide
87
Chapter 9 Quality of Service (QoS)
Click N e t w or k Se t t in g > QoS > Cla ss Se t u p t o open t he following screen.
Figure 49 Net work Set t ing > QoS > Class Set up
The following t able describes t he labels in t his screen.
Table 30 Net work Set t ing > QoS > Class Set up
LABEL
DESCRIPTION
Add new Classifier
Click t his t o creat e a new classifier.
Order
This field displays t he order num ber of t he classifier.
St at us
This indicat es whet her t he classifier is act ive or not .
A yellow bulb signifies t hat t his classifier is act ive. A gray bulb signifies t hat t his
classifier is not act ive.
Class Nam e
This is t he nam e of t he classifier.
Classificat ion
Crit eria
This shows crit eria specified in t his classifier, for exam ple t he int erface from
which t raffic of t his class should com e and t he source MAC address of t raffic
t hat m at ches t his classifier.
Forward t o
This is t he int erface t hrough which t raffic t hat m at ches t his classifier is
forwarded out .
DSCP Mark
This is t he DSCP num ber added t o t raffic of t his classifier.
802.1p Mark
This is t he I EEE 802.1p priorit y level assigned t o t raffic of t his classifier.
To Queue
This is t he nam e of t he queue in which t raffic of t his classifier is put .
Modify
Click t he Edit icon t o edit t he classifier.
Click t he D e le t e icon t o delet e an exist ing classifier. Not e t hat subsequent
rules m ove up by one when you t ake t his act ion.
88
B222s User’s Guide
Chapter 9 Quality of Service (QoS)
9.4.1 Add/Edit QoS Class
Click Add n e w Cla ssifie r in t he Cla ss Se t u p screen or t he Edit icon next t o an exist ing classifier
t o configure it .
Figure 50 Class Set up: Add/ Edit
The following t able describes t he labels in t his screen.
Table 31 Class Set up: Add/ Edit
LABEL
DESCRIPTION
Class Configurat ion
Act ive
Select t o enable t his classifier.
Class Nam e
Ent er a descript ive nam e of up t o 32 print able English keyboard charact ers, including
spaces.
Classificat ion Order
Select an exist ing num ber for where you want t o put t his classifier t o m ove t he classifier
t o t he num ber you select ed aft er clicking Apply.
Select La st t o put t his rule in t he back of t he classifier list .
B222s User’s Guide
89
Chapter 9 Quality of Service (QoS)
Table 31 Class Set up: Add/ Edit ( cont inued)
LABEL
DESCRIPTION
Forward t o
I nt erface
Select a WAN int erface t hrough which t raffic of t his class will be forwarded out . I f you
select Un ch a nge , t he LTE Device forward t raffic of t his class according t o t he default
rout ing t able.
DSCP Mark
This field is available only when you select t he Et h e r Type check box in Cr it e r ia
Configu r a t ion - Ba sic sect ion.
I f you select M a r k , ent er a DSCP value wit h which t he LTE Device replaces t he DSCP
field in t he packet s.
I f you select Un ch a n ge , t he LTE Device keep t he DSCP field in t he packet s.
802.1p Mark
Select a priorit y level wit h which t he LTE Device replaces t he I EEE 802.1p priorit y field in
t he packet s.
I f you select Un ch a n ge , t he LTE Device keep t he 802.1p priorit y field in t he packet s.
To Queue
Select a queue t hat applies t o t his class.
You should have configured a queue in t he Qu e ue Se t u p screen already.
Crit eria Configurat ion
Use t he following fields t o configure t he crit eria for t raffic classificat ion.
Basic
From I nt erface
Select whet her t he t raffic class com es from t he LAN or a wireless int erface.
Et her Type
Select a predefined applicat ion t o configure a class for t he m at ched t raffic.
I f you select I P, you also need t o configure source or dest inat ion MAC address, I P
address, DHCP opt ions, DSCP value or t he prot ocol t ype.
I f you select 8 0 2 1 Q, you can configure an 802.1p priorit y level in t he Ot h e r s sect ion.
Source
MAC Address
Select t he check box and ent er t he source MAC address of t he packet .
MAC Mask
Type t he m ask for t he specified MAC address t o det erm ine which bit s a packet ’s MAC
address should m at ch.
Ent er “ f” for each bit of t he specified source MAC address t hat t he t raffic’s MAC address
should m at ch. Ent er “ 0“ for t he bit ( s) of t he m at ched t raffic’s MAC address, which can
be of any hexadecim al charact er( s) . For exam ple, if you set t he MAC address t o
00: 13: 49: 00: 00: 00 and t he m ask t o ff: ff: ff: 00: 00: 00, a packet wit h a MAC address of
00: 13: 49: 12: 34: 56 m at ches t his crit eria.
I P Address
Select t he check box and ent er t he source I P address in dot t ed decim al not at ion. A
blank source I P address m eans any source I P address.
I P Subnet Mask
Ent er t he source subnet m ask.
Port Range
I f you select TCP or UD P in t he I P Pr ot ocol field, select t he check box and ent er t he
port num ber( s) of t he source.
Exclude
Select t his opt ion t o exclude t he packet s t hat m at ch t he specified crit eria from t his
classifier.
Dest inat ion
MAC Address
Select t he check box and ent er t he dest inat ion MAC address of t he packet .
MAC Mask
Type t he m ask for t he specified MAC address t o det erm ine which bit s a packet ’s MAC
address should m at ch.
Ent er “ f” for each bit of t he specified source MAC address t hat t he t raffic’s MAC address
should m at ch. Ent er “ 0“ for t he bit ( s) of t he m at ched t raffic’s MAC address, which can
be of any hexadecim al charact er( s) . For exam ple, if you set t he MAC address t o
00: 13: 49: 00: 00: 00 and t he m ask t o ff: ff: ff: 00: 00: 00, a packet wit h a MAC address of
00: 13: 49: 12: 34: 56 m at ches t his crit eria.
90
B222s User’s Guide
Chapter 9 Quality of Service (QoS)
Table 31 Class Set up: Add/ Edit ( cont inued)
LABEL
DESCRIPTION
I P Address
Select t he check box and ent er t he dest inat ion I P address in dot t ed decim al not at ion. A
blank source I P address m eans any source I P address.
I P Subnet Mask
Ent er t he dest inat ion subnet m ask.
Port Range
I f you select TCP or UD P in t he I P Pr ot ocol field, select t he check box and ent er t he
port num ber( s) of t he source.
Exclude
Select t his opt ion t o exclude t he packet s t hat m at ch t he specified crit eria from t his
classifier.
Ot hers
802.1p
This field is available only when you select 8 0 2 .1 Q in t he Et he r Type field.
Select t his opt ion and select a priorit y level ( bet ween 0 and 7) from t he drop down list
box." 0" is t he lowest priorit y level and " 7" is t he highest .
I P Prot ocol
This field is available only when you select I P in t he Et he r Type field.
Select t his opt ion and select t he prot ocol ( service t ype) from TCP or UD P. I f you select
Use r de fine d, ent er t he prot ocol ( service t ype) num ber.
I P Packet
Lengt h
This field is available only when you select I P in t he Et he r Type field.
Select t his opt ion and ent er t he m inim um and m axim um packet lengt h ( from 46 t o
1504) in t he fields provided.
DSCP
This field is available only when you select I P in t he Et he r Type field.
Select t his opt ion and specify a DSCP ( DiffServ Code Point ) num ber bet ween 0 and 63 in
t he field provided.
TCP ACK
This field is available only when you select I P in t he Et he r Type field.
I f you select t his opt ion, t he m at ched TCP packet s m ust cont ain t he ACK ( Acknowledge)
flag.
DHCP
This field is available only when you select I P in t he Et he r Type field, and UD P in t he
I P Pr ot ocol field.
Select t his opt ion and select a DHCP opt ion.
I f you select V e n dor Cla ss I D ( D H CP Opt ion 6 0 ) , ent er t he Cla ss I D of t he m at ched
t raffic, such as t he t ype of t he hardware or firm ware.
I f you select Clie n t I D ( D H CP Opt ion 6 1 ) , ent er t he Type of t he m at ched t raffic and
Clie n t I D of t he DHCP client .
I f you select Use r Cla ss I D ( D H CP Opt ion 7 7 ) , ent er t he Use r Cla ss D a t a , which is a
st ring t hat ident ifies t he user ’s cat egory or applicat ion t ype in t he m at ched DHCP
packet s.
I f you select Ve n dor Spe cificI n t r o ( D H CP Opt ion 1 2 5 ) , ent er t he En t e r pr ise
N u m be r of t he soft ware of t he m at ched t raffic and Ve n dor Cla ss D a t a used by all t he
DHCP client s.
Service
Select t he service classificat ion of t he t raffic.
Exclude
Select t his opt ion t o exclude t he packet s t hat m at ch t he specified crit eria from t his
classifier.
Apply
Click Apply t o save your changes.
Back
Click Ba ck t o ret urn t o t he previous screen wit hout saving.
B222s User’s Guide
91
Chapter 9 Quality of Service (QoS)
9.5 The QoS Monitor Screen
To view t he LTE Device’s QoS packet st at ist ics, click N e t w or k Se t t in g > QoS > M on it or. The
screen appears as shown.
Figure 51 Net work Set t ing > QoS > Monit or
The following t able describes t he labels in t his screen.
Table 32 Net work Set t ing > QoS > Monit or
LABEL
DESCRIPTION
Monit or
Refresh I nt erval
Select how oft en you want t he LTE Device t o updat e t his screen. Select N o
Re fr e sh t o st op refreshing st at ist ics.
St at us
This is t he index num ber of t he ent ry.
Nam e
This shows t he nam e of t he WAN int erface on t he LTE Device.
Pass Rat e ( bps)
This shows how m uch t raffic ( bps) forwarded t o t his int erface are t ransm it t ed
successfully.
Queue Monit or
This is t he index num ber of t he ent ry.
Nam e
This shows t he nam e of t he queue.
Pass Rat e ( bps)
This shows how m uch t raffic ( bps) assigned t o t his queue are t ransm it t ed
successfully.
Drop Rat e ( bps)
This shows how m uch t raffic ( bps) assigned t o t his queue are dropped.
9.6 QoS Technical Reference
This sect ion provides som e t echnical background inform at ion about t he t opics covered in t his
chapt er.
92
B222s User’s Guide
Chapter 9 Quality of Service (QoS)
9.6.1 IEEE 802.1p
I EEE 802.1p specifies t he user priorit y field and defines up t o eight separat e t raffic t ypes. The
following t able describes t he t raffic t ypes defined in t he I EEE 802.1d st andard ( which incorporat es
t he 802.1p) .
Table 33 I EEE 802.1p Priorit y Level and Traffic Type
PRIORITY
LEVEL
TRAFFIC TYPE
Level 7
Typically used for net work cont rol t raffic such as rout er configurat ion m essages.
Level 6
Typically used for voice t raffic t hat is especially sensit ive t o j it t er ( j it t er is t he
variat ions in delay) .
Level 5
Typically used for video t hat consum es high bandwidt h and is sensit ive t o j it t er.
Level 4
Typically used for cont rolled load, lat ency- sensit ive t raffic such as SNA ( Syst em s
Net work Archit ect ure) t ransact ions.
Level 3
Typically used for “ excellent effort ” or bet t er t han best effort and would include
im port ant business t raffic t hat can t olerat e som e delay.
Level 2
This is for “ spare bandwidt h”.
Level 1
This is t ypically used for non- crit ical “ background” t raffic such as bulk t ransfers t hat
are allowed but t hat should not affect ot her applicat ions and users.
Level 0
Typically used for best- effort t raffic.
9.6.2 IP Precedence
Sim ilar t o I EEE 802.1p priorit izat ion at layer- 2, you can use I P precedence t o priorit ize packet s in a
layer- 3 net work. I P precedence uses t hree bit s of t he eight- bit ToS ( Type of Service) field in t he I P
header. There are eight classes of services ( ranging from zero t o seven) in I P precedence. Zero is
t he lowest priorit y level and seven is t he highest .
9.6.3 DiffServ
QoS is used t o priorit ize source- t o- dest inat ion t raffic flows. All packet s in t he flow are given t he
sam e priorit y. You can use CoS ( class of service) t o give different priorit ies t o different packet
t ypes.
DiffServ ( Different iat ed Services) is a class of service ( CoS) m odel t hat m arks packet s so t hat t hey
receive specific per- hop t reat m ent at DiffServ- com pliant net work devices along t he rout e based on
t he applicat ion t ypes and t raffic flow. Packet s are m arked wit h DiffServ Code Point s ( DSCPs)
indicat ing t he level of service desired. This allows t he int erm ediary DiffServ- com pliant net work
devices t o handle t he packet s different ly depending on t he code point s wit hout t he need t o
negot iat e pat hs or rem em ber st at e inform at ion for every flow. I n addit ion, applicat ions do not have
t o request a part icular service or give advanced not ice of where t he t raffic is going.
DSCP and Per-Hop Behavior
DiffServ defines a new DS ( Different iat ed Services) field t o replace t he Type of Service ( TOS) field
in t he I P header. The DS field cont ains a 2- bit unused field and a 6- bit DSCP field which can define
up t o 64 service levels. The following figure illust rat es t he DS field.
B222s User’s Guide
93
Chapter 9 Quality of Service (QoS)
DSCP is backward com pat ible wit h t he t hree precedence bit s in t he ToS oct et so t hat non- DiffServ
com pliant , ToS- enabled net work device will not conflict wit h t he DSCP m apping.
DSCP ( 6 bit s)
Unused ( 2 bit s)
The DSCP value det erm ines t he forwarding behavior, t he PHB ( Per- Hop Behavior) , t hat each packet
get s across t he DiffServ net work. Based on t he m arking rule, different kinds of t raffic can be
m arked for different kinds of forwarding. Resources can t hen be allocat ed according t o t he DSCP
values and t he configured policies.
94
B222s User’s Guide
C HAPTER
10
Network Address Translation (NAT)
10.1 Overview
NAT ( Net work Address Translat ion - NAT, RFC 1631) is t he t ranslat ion of t he I P address of a host in
a packet , for exam ple, t he source address of an out going packet , used wit hin one net work t o a
different I P address known wit hin anot her net work.
10.1.1 What You Can Do in this Chapter
• Use t he Por t For w a r ding screen t o configure forward incom ing service request s t o t he server( s)
on your local net work ( Sect ion 10.2 on page 96) .
• Use t he D M Z screen t o vieiw and configure t he I P address of your net work DMZ. (Sect ion 10.3
on page 99) .
• Use t he Se ssion s screen t o lim it t he num ber of concurrent NAT sessions each client can use
( Sect ion 10.4 on page 99) .
10.1.2 What You Need To Know
The following t erm s and concept s m ay help as you read t his chapt er.
Inside/Outside and Global/Local
I nside/ out side denot es where a host is locat ed relat ive t o t he LTE Device, for exam ple, t he
com put ers of your subscribers are t he inside host s, while t he web servers on t he I nt ernet are t he
out side host s.
Global/ local denot es t he I P address of a host in a packet as t he packet t raverses a rout er, for
exam ple, t he local address refers t o t he I P address of a host when t he packet is in t he local
net work, while t he global address refers t o t he I P address of t he host when t he sam e packet is
t raveling in t he WAN side.
NAT
I n t he sim plest form , NAT changes t he source I P address in a packet received from a subscriber
( t he inside local address) t o anot her ( t he inside global address) before forwarding t he packet t o t he
WAN side. When t he response com es back, NAT t ranslat es t he dest inat ion address ( t he inside
global address) back t o t he inside local address before forwarding it t o t he original inside host .
B222s User’s Guide
95
Chapter 10 Network Address Translation (NAT)
Port Forwarding
A port forwarding set is a list of inside ( behind NAT on t he LAN) servers, for exam ple, web or FTP,
t hat you can m ake visible t o t he out side world even t hough NAT m akes your whole inside net work
appear as a single com put er t o t he out side world.
Finding Out More
See Sect ion 10.5 on page 100 for advanced t echnical inform at ion on NAT.
10.2 The Port Forwarding Screen
Use t he Por t For w a r din g screen t o forward incom ing service request s t o t he server( s) on your
local net work.
You m ay ent er a single port num ber or a range of port num bers t o be forwarded, and t he local I P
address of t he desired server. The port num ber ident ifies a service; for exam ple, web service is on
port 80 and FTP on port 21. I n som e cases, such as for unknown services or where one server can
support m ore t han one service ( for exam ple bot h FTP and web service) , it m ight be bet t er t o
specify a range of port num bers. You can allocat e a server I P address t hat corresponds t o a port or
a range of port s.
The m ost oft en used port num bers and services are shown in Appendix E on page 249. Please refer
t o RFC 1700 for furt her inform at ion about port num bers.
Not e: Many resident ial broadband I SP account s do not allow you t o run any server
processes ( such as a Web or FTP server) from your locat ion. Your I SP m ay
periodically check for servers and m ay suspend your account if it discovers any
act ive services at your locat ion. I f you are unsure, refer t o your I SP.
Configuring Servers Behind Port Forwarding (Example)
Let 's say you want t o assign port s 21- 25 t o one FTP, Telnet and SMTP server (A in t he exam ple) ,
port 80 t o anot her ( B in t he exam ple) and assign a default server I P address of 10.0.0.35 t o a t hird
( C in t he exam ple) . You assign t he LAN I P addresses and t he I SP assigns t he WAN I P address. The
NAT net work appears as a single host on t he I nt ernet .
Figure 52 Mult iple Servers Behind NAT Exam ple
A=10.0.0.33
LAN
WAN
B=10.0.0.34
10.0.0.1
C=10.0.0.35
96
IP Address assigned by ISP
D=10.0.0.36
B222s User’s Guide
Chapter 10 Network Address Translation (NAT)
10.2.1 The Port Forwarding Screen
Click N e t w or k Se t t in g > N AT t o open t he Por t For w a r ding screen.
See Appendix E on page 249 for port num bers com m only used for part icular services.
Figure 53 Net work Set t ing > NAT > Port Forwarding
The following t able describes t he fields in t his screen.
Table 34 Net work Set t ing > NAT > Port Forwarding
LABEL
DESCRIPTION
Add new rule
Click t his t o add a new port forwarding rule.
This is t he index num ber of t he ent ry.
St at us
This field indicat es whet her t he rule is act ive or not .
A yellow bulb signifies t hat t his rule is act ive. A gray bulb signifies t hat t his rule is not
act ive.
Service Nam e
This is t he service’s nam e. This shows Use r D e fin e d if you m anually added a service. You
can change t his by clicking t he edit icon.
WAN I nt erface
This shows t he WAN int erface t hrough which t he service is forwarded.
St art Port
This is t he first ext ernal port num ber t hat ident ifies a service.
End Port
This is t he last ext ernal port num ber t hat ident ifies a service.
Translat ion St art
Port
This is t he first int ernal port num ber t hat ident ifies a service.
Translat ion End
Port
This is t he last int ernal port num ber t hat ident ifies a service.
Server I P Address
This is t he server ’s I P address.
Prot ocol
This shows t he I P prot ocol support ed by t his virt ual server, whet her it is TCP, UD P, or
TCP/ UD P.
Modify
Click t he Edit icon t o edit t he port forwarding rule.
Click t he D e le t e icon t o delet e an exist ing port forwarding rule. Not e t hat subsequent
address m apping rules m ove up by one when you t ake t his act ion.
Apply
Click Apply t o save your changes.
Cancel
Click Ca n ce l t o rest ore your previously saved set t ings.
B222s User’s Guide
97
Chapter 10 Network Address Translation (NAT)
10.2.2 The Port Forwarding Edit Screen
This screen let s you creat e or edit a port forwarding rule. Click Add n e w r ule in t he Por t
For w a r ding screen or t he Edit icon next t o an exist ing rule t o open t he following screen.
Figure 54 Port Forwarding: Add/ Edit
The following t able describes t he labels in t his screen.
Table 35 Port Forwarding: Add/ Edit
LABEL
DESCRIPTION
Service Nam e
Ent er a nam e t o ident ify t his rule using keyboard charact ers ( A- Z, a- z, 1- 2 and so on) .
WAN I nt erface
Select t he WAN int erface t hrough which t he service is forwarded.
St art Port
Ent er t he original dest inat ion port for t he packet s.
To forward only one port , ent er t he port num ber again in t he Ex t e r n a l En d Por t field.
To forward a series of port s, ent er t he st art port num ber here and t he end port num ber in
t he Ex t e r n a l En d Por t field.
End Port
Ent er t he last port of t he original dest inat ion port range.
To forward only one port , ent er t he port num ber in t he Ex t e r n a l St a r t Por t field above
and t hen ent er it again in t his field.
To forward a series of port s, ent er t he last port num ber in a series t hat begins wit h t he
port num ber in t he Ex t e r n a l St a r t Por t field above.
98
Translat ion St art
Port
This shows t he port num ber t o which you want t he LTE Device t o t ranslat e t he incom ing
port . For a range of port s, ent er t he first num ber of t he range t o which you want t he
incom ing port s t ranslat ed.
Translat ion End
Port
This shows t he last port of t he t ranslat ed port range.
Server I P
Address
Ent er t he inside I P address of t he virt ual server here.
Prot ocol Type
Select t he prot ocol support ed by t his virt ual server. Choices are TCP, UD P, or TCP/ UD P.
Apply
Click Apply t o save your changes.
Back
Click Ba ck t o ret urn t o t he previous screen wit hout saving.
B222s User’s Guide
Chapter 10 Network Address Translation (NAT)
10.3 The DMZ Screen
Use t his page t o set t he I P address of your net work DMZ ( if you have one) for t he LTE Device. All
incom ing packet s received by t his LTE Device’s WAN int erface will be forwarded t o t he default
server you set .
Click N e t w or k Se t t in g > N AT > D M Z t o display t he following screen.
Not e: The configurat ion you set in t his screen t akes pr iorit y t han t he N e t w or k Se t t in g >
N AT > Por t For w a r din g screen.
Figure 55 Net work Set t ing > NAT > DMZ
The following t able describes t he fields in t his screen.
Table 36 Net work Set t ing > NAT > DMZ
LABEL
DESCRIPTION
Default Server
Address
Ent er t he I P address of your net work DMZ host , if you have one. 0 .0 .0 .0 m eans
t his feat ure is disabled.
Apply
Click Apply t o save your changes.
Cancel
Click Ca n ce l t o rest ore your previously saved set t ings.
10.4 The Sessions Screen
Use t he Se ssion s screen t o lim it t he num ber of concurrent NAT sessions each client can use.
Click N e t w or k Se t t in g > N AT > Se ssion s t o display t he following screen.
Figure 56 Net work Set t ing > NAT > Sessions
B222s User’s Guide
99
Chapter 10 Network Address Translation (NAT)
The following t able describes t he fields in t his screen.
Table 37 Net work Set t ing > NAT > Sessions
LABEL
DESCRIPTION
MAX NAT Session
Use t his field t o set a com m on lim it t o t he num ber of concurrent NAT sessions
each client com put er can have.
I f only a few client s use peer t o peer applicat ions, you can raise t his num ber t o
im prove t heir perform ance. Wit h heavy peer t o peer applicat ion use, lower t his
num ber t o ensure no single client uses t oo m any of t he available NAT sessions.
Apply
Click Apply t o save your changes.
Cancel
Click Ca n ce l t o rest ore your previously saved set t ings.
10.5 Technical Reference
This sect ion provides som e t echnical background inform at ion about t he t opics covered in t his
chapt er.
10.5.1 NAT Definitions
I nside/ out side denot es where a host is locat ed relat ive t o t he LTE Device, for exam ple, t he
com put ers of your subscribers are t he inside host s, while t he web servers on t he I nt ernet are t he
out side host s.
Global/ local denot es t he I P address of a host in a packet as t he packet t raverses a rout er, for
exam ple, t he local address refers t o t he I P address of a host when t he packet is in t he local
net work, while t he global address refers t o t he I P address of t he host when t he sam e packet is
t raveling in t he WAN side.
Not e t hat inside/ out side refers t o t he locat ion of a host , while global/ local refers t o t he I P address
of a host used in a packet . Thus, an inside local address ( I LA) is t he I P address of an inside host in
a packet when t he packet is st ill in t he local net work, while an inside global address ( I GA) is t he I P
address of t he sam e inside host when t he packet is on t he WAN side. The following t able
sum m arizes t his inform at ion.
Table 38 NAT Definit ions
ITEM
DESCRIPTION
I nside
This refers t o t he host on t he LAN.
Out side
This refers t o t he host on t he WAN.
Local
This refers t o t he packet address ( source or dest inat ion) as t he packet t ravels on t he
LAN.
Global
This refers t o t he packet address ( source or dest inat ion) as t he packet t ravels on t he
WAN.
NAT never changes t he I P address ( eit her local or global) of an out side host .
100
B222s User’s Guide
Chapter 10 Network Address Translation (NAT)
10.5.2 What NAT Does
I n t he sim plest form , NAT changes t he source I P address in a packet received from a subscriber
( t he inside local address) t o anot her ( t he inside global address) before forwarding t he packet t o t he
WAN side. When t he response com es back, NAT t ranslat es t he dest inat ion address ( t he inside
global address) back t o t he inside local address before forwarding it t o t he original inside host . Not e
t hat t he I P address ( eit her local or global) of an out side host is never changed.
The global I P addresses for t he inside host s can be eit her st at ic or dynam ically assigned by t he I SP.
I n addit ion, you can designat e servers, for exam ple, a web server and a Telnet server, on your local
net work and m ake t hem accessible t o t he out side world. I f you do not define any servers, NAT
offers t he addit ional benefit of firewall prot ect ion. Wit h no servers defined, your LTE Device filt ers
out all incom ing inquiries, t hus prevent ing int ruders from probing your net work. For m ore
inform at ion on I P address t ranslat ion, refer t o RFC 1631, The I P Net work Address Translat or ( NAT) .
10.5.3 How NAT Works
Each packet has t wo addresses – a source address and a dest inat ion address. For out going packet s,
t he I LA ( I nside Local Address) is t he source address on t he LAN, and t he I GA ( I nside Global
Address) is t he source address on t he WAN. For incom ing packet s, t he I LA is t he dest inat ion
address on t he LAN, and t he I GA is t he dest inat ion address on t he WAN. NAT m aps privat e ( local)
I P addresses t o globally unique ones required for com m unicat ion wit h host s on ot her net works. I t
replaces t he original I P source address ( and TCP or UDP source port num bers for Many- t o- One and
Many- t o- Many Overload NAT m apping) in each packet and t hen forwards it t o t he I nt ernet . The LTE
Device keeps t rack of t he original addresses and port num bers so incom ing reply packet s can have
t heir original values rest ored. The following figure illust rat es t his.
Figure 57 How NAT Works
NAT Table
LAN
Inside Local
IP Address
192.168.1.10
192.168.1.11
192.168.1.12
192.168.1.13
192.168.1.13
192.168.1.12
SA
SA
192.168.1.10
IGA1
Inside Local
Address (ILA)
192.168.1.11
B222s User’s Guide
Inside Global
IP Address
IGA 1
IGA 2
IGA 3
IGA 4
WAN
Inside Global
Address (IGA)
192.168.1.10
101
Chapter 10 Network Address Translation (NAT)
102
B222s User’s Guide
C HAPTER
11
Dynamic DNS
11.1 Overview
This chapt er discusses how t o configure your LTE Device t o use Dynam ic DNS.
Dynam ic DNS allows you t o updat e your current dynam ic I P address wit h one or m any dynam ic
DNS services so t hat anyone can cont act you ( in applicat ions such as Net Meet ing and CU- SeeMe) .
You can also access your FTP server or Web sit e on your own com put er using a dom ain nam e ( for
inst ance m yhost .dhs.org, where m yhost is a nam e of your choice) t hat will never change inst ead of
using an I P address t hat changes each t im e you reconnect . Your friends or relat ives will always be
able t o call you even if t hey don't know your I P address.
First of all, you need t o have regist ered a dynam ic DNS account wit h www.dyndns.org. This is for
people wit h a dynam ic I P from t heir I SP or DHCP server t hat would st ill like t o have a dom ain nam e.
The Dynam ic DNS service provider will give you a password or key.
11.1.1 What You Need To Know
DYNDNS Wildcard
Enabling t he wildcard feat ure for your host causes * .yourhost .dyndns.org t o be aliased t o t he sam e
I P address as yourhost .dyndns.org. This feat ure is useful if you want t o be able t o use, for exam ple,
www.yourhost .dyndns.org and st ill reach your host nam e.
I f you have a privat e WAN I P address, t hen you cannot use Dynam ic DNS.
B222s User’s Guide
103
Chapter 11 Dynamic DNS
11.2 The Dynamic DNS Screen
Use t he D yna m ic D N S screen t o enable DDNS and configure t he DDNS set t ings on t he LTE Device.
To change your LTE Device’s DDNS, click N e t w or k Se t t ing > D yna m ic D N S. The screen appears
as shown.
Figure 58 Net work Set t ing > Dynam ic DNS
The following t able describes t he fields in t his screen.
Table 39 Net work Set t ing > DNS
LABEL
DESCRIPTION
Dynam ic DNS Configurat ion
Act ive Dynam ic
DNS
Select t his check box t o use dynam ic DNS.
Service Provider
Select t he nam e of your Dynam ic DNS service provider.
Dynam ic DNS
Type
Select t he t ype of service t hat you are regist ered for from your Dynam ic DNS
service provider.
Host Nam e
Type t he dom ain nam e assigned t o your LTE Device by your Dynam ic DNS
provider.
You can specify up t o t wo host nam es in t he field separat ed by a com m a ( " ," ) .
104
User Nam e
Type your user nam e.
Password
Type t he password assigned t o you.
Apply
Click Apply t o save your changes.
Cancel
Click Ca n ce l t o rest ore your previously saved set t ings.
B222s User’s Guide
C HAPTER
12
Firewall
12.1 Overview
Use t he LTE Device firewall screens t o enable and configure t he firewall t hat prot ect s your LTE
Device and net work from at t acks by hackers on t he I nt ernet and cont rol access t o it . By default t he
firewall:
• Allows t raffic t hat originat es from your LAN and WLAN com put ers t o go t o all ot her net works.
• Blocks t raffic t hat originat es on ot her net works from going t o t he LAN and WLAN.
The following figure illust rat es t he default firewall act ion. User A can init iat e an I M ( I nst ant
Messaging) session from t he LAN t o t he WAN ( 1 ) . Ret urn t raffic for t his session is also allowed ( 2 ) .
However ot her t raffic init iat ed from t he WAN is blocked ( 3 and 4 ) .
Figure 59 Default Firewall Act ion
WAN
LAN
12.1.1 What You Can Do in this Chapter
• Use t he Ge n e r a l screen t o enable or disable t he LTE Device’s firewall ( Sect ion 12.2 on page
107) .
• Use t he Se r vice s screen t o view t he configured firewall rules and add, edit or rem ove a firewall
rule ( Sect ion 12.3 on page 108) .
• Use t he Acce ss Cont r ol screen t o view and configure incom ing/ out going filt ering rules ( Sect ion
12.4 on page 109) .
• Use t he D oS screen t o enable or disable Denial of Service ( DoS) prot ect ion ( Sect ion 12.4 on
page 109) .
B222s User’s Guide
105
Chapter 12 Firewall
12.1.2 What You Need to Know
DoS
Denials of Service ( DoS) at t acks are aim ed at devices and net works wit h a connect ion t o t he
I nt ernet . Their goal is not t o st eal inform at ion, but t o disable a device or net work so users no longer
have access t o net work resources. The ZyXEL Device is pre- configured t o aut om at ically det ect and
t hwart all known DoS at t acks.
Firewall
The LTE Device’s firewall feat ure physically separat es t he LAN/ WLAN and t he WAN and act s as a
secure gat eway for all dat a passing bet ween t he net works.
I t is designed t o prot ect against Denial of Service ( DoS) at t acks when act ivat ed. The LTE Device's
purpose is t o allow a privat e Local Area Net work ( LAN) t o be securely connect ed t o t he I nt ernet .
The LTE Device can be used t o prevent t heft , dest ruct ion and m odificat ion of dat a, as well as log
event s, which m ay be im port ant t o t he securit y of your net work.
The LTE Device is inst alled bet ween t he LAN/ WLAN and a broadband m odem connect ing t o t he
I nt ernet . This allows it t o act as a secure gat eway for all dat a passing bet ween t he I nt ernet and t he
LAN.
The LTE Device has one Et hernet WAN port and four Et hernet LAN port s, which are used t o
physically separat e t he net work int o t wo areas.The WAN ( Wide Area Net work) port at t aches t o t he
broadband ( cable or DSL) m odem t o t he I nt ernet .
The LAN ( Local Area Net work) port at t aches t o a net work of com put ers, which needs securit y from
t he out side world. These com put ers will have access t o I nt ernet services such as e- m ail, FTP and
t he World Wide Web. However, "inbound access" is not allowed ( by default ) unless t he rem ot e host
is aut horized t o use a specific service.
ICMP
I nt ernet Cont rol Message Prot ocol ( I CMP) is a m essage cont rol and error- report ing prot ocol
bet ween a host server and a gat eway t o t he I nt ernet . I CMP uses I nt ernet Prot ocol ( I P) dat agram s,
but t he m essages are processed by t he TCP/ I P soft ware and direct ly apparent t o t he applicat ion
user.
Finding Out More
See Sect ion 12.6 on page 112 for advanced t echnical inform at ion on firewall.
106
B222s User’s Guide
Chapter 12 Firewall
12.2 The General Screen
Use t his screen t o enable or disable t he LTE Device’s firewall. Click Se cu r it y > Fir e w a ll t o open t he
Ge ne r a l screen.
Figure 60 Securit y > Firewall > General
The following t able describes t he labels in t his screen.
Table 40 Securit y > Firewall > General
LABEL
DESCRIPTION
Firewall
Select En a ble t o act ivat e t he firewall. The LTE Device perform s access cont rol and
prot ect s against Denial of Service ( DoS) at t acks when t he firewall is act ivat ed.
Easy, Medium ,
High
Select Ea sy t o have t he firewall allow bot h LAN- t o-WAN and WAN- t o- LAN t raffic t o flow
t hrough t he LTE Device.
Select M e diu m t o have t he firewall only allow t raffic sent from t he LAN t o t he WAN. All
t raffic sent or access from t he WAN will be blocked.
Select H igh t o have t he firewall only allow Telnet , FTP, HTTP, HTTPS, DNS, POP3, and
SMTP t raffic sent from t he LAN t o t he WAN. Ot her t raffic will be blocked.
Apply
Click Apply t o save your changes.
Cancel
Click Ca n ce l t o rest ore your previously saved set t ings.
B222s User’s Guide
107
Chapter 12 Firewall
12.3 The Services Screen
Use t his screen t o view t he configured service list . To access t his screen, click Se cur it y > Fir e w a ll
> Se r vice s. You have t o configure at least one service in t his screen before configuring t he
Se cur it y > Fir e w a ll > Acce ss Con t r ol > Add N e w ACL Rule / Edit screen.
Figure 61 Securit y > Firewall > Services
Each field is described in t he following t able.
Table 41 Securit y > Firewall > Services
LABEL
DESCRIPTION
Add New Service
Ent ry
Click t his t o define a new service.
Nam e
This is t he nam e of a configured service.
Type
This is t he prot ocol t ype ( TCP, UD P, I CM P or Ot he r s) of t he service.
Port Num ber
This displays a range of port num bers t hat defines t he service.
Modify
Click t he Edit icon t o edit t he service.
Click t he D e le t e icon t o delet e t he service. Not e t hat subsequent rules m ove up by one
when you t ake t his act ion. Delet ing a service rule also delet es t he relat ed ACL rules which
are configured in t he Se cu r it y > Fir e w a ll > Acce ss Con t r ol screen.
12.3.1 The Add New Services Entry Screen
Use t his screen t o configure a service t hat you want t o use in an ACL rule in t he Se cur it y >
Fir e w a ll > Acce ss Cont r ol > Add N e w ACL Rule / Edit screen. To access t his screen, click
Se cur it y > Fir e w a ll > Se r vice s and t hen t he Add N e w Se r viice En t r y but t on.
Figure 62 Securit y > Firewall > Services > Add New Service Ent ry
108
B222s User’s Guide
Chapter 12 Firewall
Each field is described in t he following t able.
Table 42 Securit y > Firewall > Services > Add New Service Ent ry
LABEL
DESCRIPTION
Nam e
Type a descript ive nam e for t he service.
Type
Select t he prot ocol t ype ( TCP, UD P or I CM P or Ot h e r s) of t he service.
Prot ocol Num ber
Ent er t he prot ocol num ber of t he service t ype.
Source Port ,
Dest inat ion Port
The source port defines from which port num ber( s) t he service t raffic is sent .
The dest inat ion port defines t he port num ber( s) t he dest inat ion host s use t o
receive t he service t raffic.
Select Sin gle if t he service uses one and only one source or dest inat ion port ,
t hen ent er t he port num ber.
Select M u lt iple if t he service uses t wo or m ore source or dest inat ion port s, t hen
ent er a port range. For exam ple, suppose you want t o define t he Gnut ella
service. Select TCP t ype and ent er a port range of 6 3 4 5 - 6 3 4 9 .
Apply
Click Apply t o save your changes.
Back
Click Ba ck t o exit t his screen wit hout saving your changes.
12.4 The Access Control Screen
Click Se cur it y > Fir e w a ll > Acce ss Cont r ol t o display t he following screen. This screen displays a
list of t he configured incom ing or out going filt ering rules.
Figure 63 Securit y > Firewall > Access Cont rol
Each field is described in t he following t able.
Table 43 Securit y > Firewall > Access Cont rol
LABEL
DESCRIPTION
Rules St orage
Space usage( % )
This bar shows t he percent age of t he LTE Device’s space has been used. I f t he usage is
alm ost full, you m ay need t o rem ove an exist ing filt er rule before you creat e a new one.
Add new ACL rule
Click t his t o go t o add a filt er rule for incom ing or out going I P t raffic.
Nam e
This displays t he nam e of t he rule.
Src I P
This displays t he source I P addresses t o which t his rule applies. Please not e t hat a blank
source address is equivalent t o An y.
Dst I P
This displays t he dest inat ion I P addresses t o which t his rule applies. Please not e t hat a
blank dest inat ion address is equivalent t o An y.
Services
This displays t he prot ocol t ype and a port range t hat define t he service t o which t his rule
applies.
B222s User’s Guide
109
Chapter 12 Firewall
Table 43 Securit y > Firewall > Access Cont rol ( cont inued)
LABEL
DESCRIPTION
Policy
This field displays whet her t he rule silent ly discards packet s ( D ROP) , discards packet s
and sends a TCP reset packet or an I CMP dest inat ion- unreachable m essage t o t he sender
( REJECT) or allows t he passage of packet s ( PERM I T) .
Modify
Click t he Edit icon t o edit t he rule.
Click t he D e le t e icon t o delet e an exist ing rule. Not e t hat subsequent rules m ove up by
one when you t ake t his act ion.
12.4.1 The Add New ACL Rule/Edit Screen
Click Add N e w ACL Ru le or t he Edit icon next t o an exist ing ACL rule in t he Acce ss Cont r ol
screen. The following screen displays.
Figure 64 Securit y > Firewall > Access Cont rol > Add New ACL Rule/ Edit
Each field is described in t he following t able.
Table 44 Securit y > Firewall > Access Cont rol > Add New ACL Rule/ Edit
LABEL
DESCRIPTION
Filt er Nam e
Ent er a descript ive nam e of up t o 16 alphanum eric charact ers, not including spaces,
underscores, and dashes.
You m ust ent er t he filt er nam e t o add an ACL rule. This field is read- only if you are edit ing
t he ACL rule.
110
Source Address
Type
Select Sin gle or Ra n ge depending on whet her you want t o ent er a single or a range of
source I P address( es) t o which t he ACL rule applies. Select An y t o indicat e any source I P
address.
Source I P Address
St art
Ent er an I P address or t he st art ing I P address of t he source I P range.
Source I P Address
End
Ent er t he ending I P address of t he source I P range.
Dest inat ion
Address Type
Select Sin gle or Ra n ge depending on whet her you want t o ent er a single or a range of
dest inat ion I P address( es) t o which t he ACL rule applies. Select An y t o indicat e any
dest inat ion I P address.
B222s User’s Guide
Chapter 12 Firewall
Table 44 Securit y > Firewall > Access Cont rol > Add New ACL Rule/ Edit ( cont inued)
LABEL
DESCRIPTION
Dest inat ion I P
Address St art
Ent er an I P address or t he st art ing I P address of t he dest inat ion I P range.
Dest inat ion I P
Address End
Ent er t he ending I P address of t he dest inat ion I P range.
Select Prot ocol
Select t he nam e of a configured service or select Se le ct Se r vice t o define a new service
in t his screen.
Prot ocol
This field is available when you select Se le ct Se r vice in Se le ct Pr ot ocol.
Choose t he prot ocol t ype ( TCP, UD P, I CM P or Ot h e r s) of t he service.
Prot ocol Num ber
This field is available when you select Ot h e r s in Pr ot ocol.
Ent er t he prot ocol num ber of t he service t ype t o which t his ACL rule applies.
Source Port
This field is displayed only when you select Se le ct Se r vice in Se le ct Pr ot ocol and TCP
or UD P in Pr ot ocol.
Select Sin gle or Ra n ge and t hen ent er a single port num ber or t he range of port
num bers of t he source. Select An y t o indicat e any source port .
Dest inat ion Port
This field is displayed only when you select Se le ct Se r vice in Se le ct Pr ot ocol and TCP
or UD P in Pr ot ocol.
Select Sin gle or Ra n ge and t hen ent er a single port num ber or t he range of port
num bers of t he dest inat ion. Select An y t o indicat e any dest inat ion port .
Policy
Use t he drop- down list box t o select whet her t o silent ly discard ( D ROP) , deny and send
an I CMP dest inat ion- unreachable m essage t o t he sender of ( REJECT) or allow t he
passage of ( PERM I T) packet s t hat m at ch t his rule.
Direct ion
Use t he drop- down list box t o select t he direct ion of t raffic t o which t his rule applies. The
possible opt ions are LAN t o D EV I CE, LAN t o W AN , W AN t o LAN , and W AN t o
D EV I CE.
Apply
Click Apply t o save your changes.
Back
Click Ba ck t o exit t his screen wit hout saving your changes.
12.5 The DoS Screen
Click Se cur it y > Fir e w a ll > D oS t o display t he following screen. Use t his screen t o enable or
disable Denial of Service ( DoS) prot ect ion.
Figure 65 Securit y > Firewall > DoS
B222s User’s Guide
111
Chapter 12 Firewall
Each field is described in t he following t able.
Table 45 Securit y > Firewall > DoS
LABEL
DESCRIPTION
DoS Prot ect ion
Blocking
DoS ( Denial of Service) at t acks can flood your I nt ernet connect ion wit h invalid packet s
and connect ion request s, using so m uch bandwidt h and so m any resources t hat I nt ernet
access becom es unavailable.
Select En a ble t o enable prot ect ion against DoS at t acks or D isa ble t o disable it .
Apply
Click Apply t o save t he DoS Prot ect ion set t ings.
Cancel
Click Ca n ce l t o rest ore your previously saved set t ings.
12.6 Firewall Technical Reference
This sect ion provides som e t echnical background inform at ion about t he t opics covered in t his
chapt er.
12.6.1 Guidelines For Enhancing Security With Your Firewall
Change t he default password via web configurat or.
Think about access cont rol before you connect t o t he net work in any way.
Lim it who can access your LTE Device.
Don't enable any local service ( such as Telnet or FTP) t hat you don't use. Any enabled service could
present a pot ent ial securit y risk. A det erm ined hacker m ight be able t o find creat ive ways t o m isuse
t he enabled services t o access t he firewall or t he net work.
For local services t hat are enabled, prot ect against m isuse. Prot ect by configuring t he services t o
com m unicat e only wit h specific peers, and prot ect by configuring rules t o block packet s for t he
services at specific int erfaces.
Keep t he firewall in a secured ( locked) room .
12.6.2 Security Considerations
Not e: I ncorrect ly configuring t he firewall m ay block valid access or int r oduce securit y
risks t o t he LTE Device and your pr ot ect ed net wor k. Use caut ion when creat ing or
delet ing firewall rules and t est your rules aft er you configur e t hem .
Consider t hese securit y ram ificat ions before creat ing a rule:
112
Does t his rule st op LAN users from accessing crit ical resources on t he I nt ernet ? For exam ple, if I RC
is blocked, are t here users t hat require t his service?
I s it possible t o m odify t he rule t o be m ore specific? For exam ple, if I RC is blocked for all users, will
a rule t hat blocks j ust cert ain users be m ore effect ive?
B222s User’s Guide
Chapter 12 Firewall
Does a rule t hat allows I nt ernet users access t o resources on t he LAN creat e a securit y
vulnerabilit y? For exam ple, if FTP port s ( TCP 20, 21) are allowed from t he I nt ernet t o t he LAN,
I nt ernet users m ay be able t o connect t o com put ers wit h running FTP servers.
Does t his rule conflict wit h any exist ing rules?
Once t hese quest ions have been answered, adding rules is sim ply a m at t er of ent ering t he
inform at ion int o t he correct fields in t he web configurat or screens.
B222s User’s Guide
113
Chapter 12 Firewall
114
B222s User’s Guide
C HAPTER
13
MAC Filter
13.1 Overview
This chapt er discusses MAC address filt ering.
You can configure t he LTE Device t o perm it access t o client s based on t heir MAC addresses in t he
M AC Filt e r screen. This applies t o wired and wireless connect ions.
13.1.1 What You Need to Know
Every Et hernet device has a unique MAC ( Media Access Cont rol) address. The MAC address is
assigned at t he fact ory and consist s of six pairs of hexadecim al charact ers, for exam ple,
00: A0: C5: 00: 00: 02. You need t o know t he MAC address of t he devices t o configure t his screen.
13.2 The MAC Filter Screen
Use t he M AC Filt e r screen t o allow wireless and LAN client s access t o t he LTE Device. To change
your LTE Device’s MAC filt er set t ings, click Se cu r it y > M AC Filt e r. The screen appears as shown.
Figure 66 Securit y > MAC Filt er
B222s User’s Guide
115
Chapter 13 MAC Filter
The following t able describes t he labels in t his m enu.
Table 46 Securit y > MAC Filt er
LABEL
DESCRIPTION
MAC Address
Filt er
Select En a ble t o act ivat e MAC address filt ering.
Set
This is t he index num ber of t he MAC address.
Allow
Select Allow t o perm it access t o t he LTE Device. MAC addresses not list ed will be
denied access t o t he LTE Device.
I f you clear t his, t he M AC Addr e ss field for t his set clears.
116
MAC Address
Ent er t he MAC addresses of t he wireless st at ion and LAN devices t hat are allowed
access t o t he LTE Device in t hese address fields. Ent er t he MAC addresses in a valid
MAC address form at , t hat is, six hexadecim al charact er pairs, for exam ple,
12: 34: 56: 78: 9a: bc.
Apply
Click Apply t o save your changes.
Cancel
Click Ca n ce l t o rest ore your previously saved set t ings.
B222s User’s Guide
C HAPTER
14
Parental Control
14.1 Overview
Parent al cont rol allows you t o block web sit es wit h t he specific URL. You can also define t im e
periods and days during which t he LTE Device perform s parent al cont rol on a specific user.
14.2 The Parental Control Screen
Use t his screen t o enable parent al cont rol, view t he parent al cont rol rules and schedules.
Click Se cur it y > Pa r e n t a l Con t r ol t o open t he following screen.
Figure 67 Securit y > Parent al Cont rol
The following t able describes t he fields in t his screen.
Table 47 Parent al Cont rol > Parent al Cont rol
LABEL
DESCRIPTION
Parent al Cont rol
Select En a ble t o act ivat e parent al cont rol.
Add new PCP
Click t his if you want t o configure a new parent al cont rol rule.
This shows t he index num ber of t he rule.
St at us
This indicat es whet her t he rule is act ive or not .
A yellow bulb signifies t hat t his rule is act ive. A gray bulb signifies t hat t his rule is not
act ive.
PCP Nam e
This shows t he nam e of t he rule.
Hom e Net work
User ( MAC)
This shows t he MAC address of t he LAN user ’s com put er t o which t his rule applies.
I nt ernet Access
Schedule
This shows t he day( s) and t im e on which parent al cont rol is enabled.
Net work Service
This shows whet her t he net work service is configured. I f not , N on e will be shown.
Websit e Block
This shows whet her t he websit e block is configured. I f not , N on e will be shown.
B222s User’s Guide
117
Chapter 14 Parental Control
Table 47 Parent al Cont rol > Parent al Cont rol ( cont inued)
LABEL
DESCRIPTION
Modify
Click t he Edit icon t o go t o t he screen where you can edit t he rule.
Click t he D e le t e icon t o delet e an exist ing rule.
Add
Click Add t o creat e a new schedule.
Apply
Click Apply t o save your changes back t o t he LTE Device.
14.2.1 Add/Edit a Parental Control Rule
Click Add n e w PCP in t he Pa r e nt a l Cont r ol screen t o add a new rule or click t he Edit icon next t o
an exist ing rule t o edit it . Use t his screen t o configure a rest rict ed access schedule and/ or URL
filt ering set t ings t o block t he users on your net work from accessing cert ain web sit es.
Figure 68 Add/ Edit Parent al Cont rol Rule
The following t able describes t he fields in t his screen.
Table 48 Add/ Edit Parent al Cont rol Rule
LABEL
DESCRIPTION
General
118
Act ive
Select t he checkbox t o act ivat e t his parent al cont rol rule.
Parent al Cont rol
Profile Nam e
Ent er a descript ive nam e for t he rule.
B222s User’s Guide
Chapter 14 Parental Control
Table 48 Add/ Edit Parent al Cont rol Rule ( cont inued)
LABEL
DESCRIPTION
Hom e Net work
User
Select t he LAN user t hat you want t o apply t his rule t o from t he drop- down list box. I f
you select Cu st om , ent er t he LAN user ’s MAC address. I f you select All, t he rule applies
t o all LAN users.
I nt ernet Access Schedule
Day
Select check boxes for t he days t hat you want t he LTE Device t o perform parent al
cont rol.
St art Blocking Tim e
End Blocking Tim e
Ent er t he t im e period of each day, in 24- hour form at , during which parent al cont rol will
be enforced.
Tim e
Drag t he t im e bar t o define t he t im e t hat t he LAN user is allowed access.
Net work Service
Net work Service
Set t ing
I f you select Block , t he LTE Device prohibit s t he users from viewing t he Web sit es wit h
t he URLs list ed below.
I f you select Acce ss, t he LTE Device blocks access t o all URLs except ones list ed below.
Add new service
Click t his t o show a screen in which you can add a new service rule. You can configure
t he Se r vice N a m e , Pr ot ocol, and N a m e of t he new rule.
This shows t he index num ber of t he rule. Select t he checkbox next t o t he rule t o act ivat e
it .
Service Nam e
This shows t he nam e of t he rule.
Prot ocol: Port
This shows t he prot ocol and t he port of t he rule.
Modify
Click t he Edit icon t o go t o t he screen where you can edit t he rule.
Click t he D e le t e icon t o delet e an exist ing rule.
Blocked Sit e/ URL
Keyword
Click Add t o show a screen t o ent er t he URL of web sit e or URL keyword t o which t he
LTE Device blocks access. Click D e le t e t o rem ove it .
Apply
Click t his but t on t o save your set t ings back t o t he LTE Device.
Back
Click t his but t on t o ret urn t o t he previous screen wit hout saving any changes.
B222s User’s Guide
119
Chapter 14 Parental Control
120
B222s User’s Guide
C HAPTER
15
VoIP
15.1 Overview
Use t his chapt er t o:
• Connect an analog phone t o t he LTE Device.
• Make phone calls over t he I nt ernet , as well as t he regular phone net work.
• Configure set t ings such as speed dial.
• Configure net work set t ings t o opt im ize t he voice qualit y of your phone calls.
15.1.1 What You Can Do in this Chapter
These screens allow you t o configure your LTE Device t o m ake phone calls over t he I nt ernet and
your regular phone line, and t o set up t he phones you connect t o t he LTE Device.
• Use t he SI P Se r vice Pr ovide r screen t o configure t he SI P server inform at ion, QoS for VoI P
calls, t he num bers for cert ain phone funct ions ( Sect ion 15.2 on page 123) .
• Use t he SI P Account screen t o set up inform at ion about your SI P account , cont rol which SI P
account s t he phones connect ed t o t he LTE Device use and configure audio set t ings such as
volum e levels for t he phones connect ed t o t he LTE Device ( Sect ion 15.3 on page 129) .
• Use t he Ph one D e vice screen t o cont rol which SI P account s t he phones connect ed t o t he LTE
Device use ( Sect ion 15.5 on page 133) .
• Use t he Re gion screen t o change set t ings t hat depend on t he count ry you are in ( Sect ion 15.6
on page 134) .
• Use t he Ca ll Rule screen t o set up short cut s for dialing frequent ly- used ( VoI P) phone num bers
( Sect ion 15.7 on page 134) .
You don’t necessarily need t o use all t hese screens t o set up your account . I n fact , if your service
provider did not supply inform at ion on a part icular field in a screen, it is usually best t o leave it at
it s default set t ing.
15.1.2 What You Need to Know
The following t erm s and concept s m ay help as you read t his chapt er.
VoIP
VoI P st ands for Voice over I P. I P is t he I nt ernet Prot ocol, which is t he m essage- carrying st andard
t he I nt ernet runs on. So, Voice over I P is t he sending of voice signals ( speech) over t he I nt ernet ( or
anot her net work t hat uses t he I nt ernet Prot ocol) .
B222s User’s Guide
121
Chapter 15 VoIP
SIP
SI P st ands for Session I nit iat ion Prot ocol. SI P is a signalling st andard t hat let s one net work device
( like a com put er or t he LTE Device) send m essages t o anot her. I n VoI P, t hese m essages are about
phone calls over t he net work. For exam ple, when you dial a num ber on your LTE Device, it sends a
SI P m essage over t he net work asking t he ot her device ( t he num ber you dialed) t o t ake part in t he
call.
SIP Accounts
A SI P account is a t ype of VoI P account . I t is an arrangem ent wit h a service provider t hat let s you
m ake phone calls over t he I nt ernet . When you set t he LTE Device t o use your SI P account t o m ake
calls, t he LTE Device is able t o send all t he inform at ion about t he phone call t o your service provider
on t he I nt ernet .
St rict ly speaking, you don’t need a SI P account . I t is possible for one SI P device ( like t he LTE
Device) t o call anot her wit hout involving a SI P service provider. However, t he net working difficult ies
involved in doing t his m ake it t rem endously im pract ical under norm al circum st ances. Your SI P
account provider rem oves t hese difficult ies by t aking care of t he call rout ing and set up - figuring
out how t o get your call t o t he right place in a way t hat you and t he ot her person can t alk t o one
anot her.
Voice Activity Detection/Silence Suppression
Voice Act ivit y Det ect ion ( VAD) det ect s whet her or not speech is present . This let s t he LTE Device
reduce t he bandwidt h t hat a call uses by not t ransm it t ing “ silent packet s” when you are not
speaking.
Comfort Noise Generation
When using VAD, t he LTE Device generat es com fort noise when t he ot her part y is not speaking. The
com fort noise let s you know t hat t he line is st ill connect ed as t ot al silence could easily be m ist aken
for a lost connect ion.
Echo Cancellation
G.168 is an I TU-T st andard for elim inat ing t he echo caused by t he sound of your voice
reverberat ing in t he t elephone receiver while you t alk.
Use t his screen t o m aint ain basic inform at ion about each SI P account . You can also enable and
disable each SI P account , configure t he volum e, echo cancellat ion and VAD ( Voice Act ivit y
Det ect ion) set t ings for each individual phone port on t he LTE Device.
How to Find Out More
See Chapt er 3 on page 33 for a t ut orial showing how t o set up t hese screens in an exam ple
scenario.
See Sect ion on page 135 for advanced t echnical inform at ion on SI P.
122
B222s User’s Guide
Chapter 15 VoIP
15.1.3 Before You Begin
• Before you can use t hese screens, you need t o have a VoI P account already set up. I f you don’t
have one yet , you can sign up wit h a VoI P service provider over t he I nt ernet .
• You should have t he inform at ion your VoI P service provider gave you ready, before you st art t o
configure t he LTE Device.
15.2 The SIP Service Provider Screen
Use t his screen t o configure t he SI P server inform at ion, QoS for VoI P calls, t he num bers for cert ain
phone funct ions and dialing plan. Click VoI P > SI P t o open t he SI P Se r vice Pr ovide r screen.
B222s User’s Guide
123
Chapter 15 VoIP
Not e: Click m or e ... t o see all t he fields in t he screen. You don’t necessar ily need t o use
all t hese fields t o set up your account . Click h ide m or e t o see and configure only
t he fields needed for t his feat ure.
Figure 69 VoI P > SI P > SI P Service Provider
124
B222s User’s Guide
Chapter 15 VoIP
B222s User’s Guide
125
Chapter 15 VoIP
The following t able describes t he labels in t his screen.
Table 49 VoI P > SI P > SI P Service Provider
LABEL
DESCRIPTION
SI P Service Provider Select ion
Service Provider
Select ion
Select t he SI P service provider profile you want t o use for t he SI P account you configure
in t his screen. I f you change t his field, t he screen aut om at ically refreshes.
General
SI P Service
Provider
Select t his if you want t he LTE Device t o use t his SI P provider. Clear it if you do not want
t he LTE Device t o use t his SI P provider.
SI P Service
Provider Nam e
Ent er t he nam e of your SI P service provider.
SI P Local Port
Ent er t he LTE Device’s list ening port num ber, if your VoI P service provider gave you one.
Ot herwise, keep t he default value.
Main SI P Server
Address
Ent er t he I P address or dom ain nam e of t he SI P server provided by your VoI P service
provider. You can use up t o 95 print able ASCI I charact ers. I t does not m at t er whet her t he
SI P server is a proxy, redirect or regist er server.
SI P Server Port
Ent er t he SI P server ’s list ening port num ber, if your VoI P service provider gave you one.
Ot herwise, keep t he default value.
REGI STER Server
Address
Ent er t he I P address or dom ain nam e of t he SI P regist er server, if your VoI P service
provider gave you one. Ot herwise, ent er t he sam e address you ent ered in t he SI P Se r ve r
Addr e ss field. You can use up t o 95 print able ASCI I charact ers.
REGI STER Server
Port
Ent er t he SI P regist er server ’s list ening port num ber, if your VoI P service provider gave
you one. Ot herwise, ent er t he sam e port num ber you ent ered in t he SI P Se r ve r Por t
field.
SI P Service
Dom ain
Ent er t he SI P service dom ain nam e. I n t he full SI P URI , t his is t he part aft er t he @
sym bol. You can use up t o 127 print able ASCI I Ext ended set charact ers.
RFC Support
PRACK ( RFC
3262)
RFC 3262 defines a m echanism t o provide reliable t ransm ission of SI P provisional
response m essages, which convey inform at ion on t he processing progress of t he request .
This uses t he opt ion t ag 100rel and t he Provisional Response ACKnowledgem ent ( PRACK)
m et hod.
Select Suppor t e d or Re qu ir e d t o have t he LTE Device include a SI P Require/ Support ed
header field wit h t he opt ion t ag 100rel in all I NVI TE request s. When t he LTE Device
receives a SI P response m essage indicat ing t hat t he phone it called is ringing, t he LTE
Device sends a PRACK m essage t o have bot h sides confirm t he m essage is received.
I f you select Suppor t e d, t he peer device support s t he opt ion t ag 100rel t o send
provisional responses reliably.
I f you select Re qu ir e d, t he peer device requires t he opt ion t ag 100rel t o send provisional
responses reliably.
Select D isa ble d t o t urn off t his funct ion.
DNS SRV Enabled
( RFC 3263)
Select t his opt ion t o have t he LTE Device use DNS procedures t o resolve t he SI P dom ain
and find t he SI P server ’s I P address, port num ber and support ed t ransport prot ocol( s) .
The LTE Device first uses DNS Nam e Aut horit y Point er ( NAPTR) records t o det erm ine t he
t ransport prot ocols support ed by t he SI P server. I t t hen perform s DNS Service ( SRV)
query t o det erm ine t he port num ber for t he prot ocol. The LTE Device resolves t he SI P
server ’s I P address by a st andard DNS address record lookup.
Session Tim er
( RFC 4028)
Select t his t o have t he LTE Device support RFC 4028.
This m akes sure t hat SI P sessions do not hang and t he SI P line can always be available
for use.
RTP Port Range
126
B222s User’s Guide
Chapter 15 VoIP
Table 49 VoI P > SI P > SI P Service Provider ( cont inued)
LABEL
DESCRIPTION
St art Port
Ent er t he list ening port num ber( s) for RTP t raffic, if your VoI P service provider gave you
t his inform at ion. Ot herwise, keep t he default values.
End Port
To ent er one port num ber, ent er t he port num ber in t he St a r t Por t and En d Por t fields.
To ent er a range of port s,
•
•
DTMF Mode
ent er t he port num ber at t he beginning of t he range in t he St a r t Por t field.
ent er t he port num ber at t he end of t he range in t he En d Por t field.
Cont rol how t he LTE Device handles t he t ones t hat your t elephone m akes when you push
it s but t ons. You should use t he sam e m ode your VoI P service provider uses.
RFC2 8 3 3 - send t he DTMF t ones in RTP packet s.
PCM - send t he DTMF t ones in t he voice dat a st ream . This m et hod works best when you
are using a codec t hat does not use com pression ( like G.711) . Codecs t hat use
com pression ( like G.729 and G.726) can dist ort t he t ones.
SI P I N FO - send t he DTMF t ones in SI P m essages.
Transport Type
Transport Type
Select t he t ransport layer prot ocol UD P or TCP ( usually UDP) used for SI P.
FAX Opt ion
This field cont rols how t he LTE Device handles fax m essages.
G711 Fax
Passt hrough
Select t his if t he LTE Device should use G.711 t o send fax m essages. The peer devices
m ust also use G.711.
T38 Fax Relay
Select t his if t he LTE Device should send fax m essages as UDP or TCP/ I P packet s t hrough
I P net works. This provides bet t er qualit y, but it m ay have int er- operabilit y problem s. The
peer devices m ust also use T.38.
Out bound Proxy
Enable
Select t his if your VoI P service provider has a SI P out bound server t o handle voice calls.
This allows t he LTE Device t o work wit h any t ype of NAT rout er and elim inat es t he need
for STUN or a SI P ALG. Turn off any SI P ALG on a NAT rout er in front of t he LTE Device t o
keep it from re- t ranslat ing t he I P address ( since t his is already handled by t he out bound
proxy server) .
Server Address
Ent er t he I P address or dom ain nam e of t he SI P out bound proxy server.
Server Port
Ent er t he SI P out bound proxy server ’s list ening port , if your VoI P service provider gave
you one. Ot herwise, keep t he default value.
QoS Tag
SI P TOS Priorit y
Set t ing
Ent er t he DSCP ( DiffServ Code Point ) num ber for SI P m essage t ransm issions. The LTE
Device creat es Class of Service ( CoS) priorit y t ags wit h t his num ber t o SI P t raffic t hat it
t ransm it s.
RTP TOS Priorit y
Set t ing
Ent er t he DSCP ( DiffServ Code Point ) num ber for RTP voice t ransm issions. The LTE Device
creat es Class of Service ( CoS) priorit y t ags wit h t his num ber t o RTP t raffic t hat it
t ransm it s.
Tim er Set t ing
Expirat ion
Durat ion
Ent er t he num ber of seconds your SI P account is regist ered wit h t he SI P regist er server
before it is delet ed. The LTE Device aut om at ically t ries t o re- regist er your SI P account
when one- half of t his t im e has passed. ( The SI P regist er server m ight have a different
expirat ion.)
Regist er Re- send
t im er
Ent er t he num ber of seconds t he LTE Device wait s before it t ries again t o regist er t he SI P
account , if t he first t ry failed or if t here is no response.
Session Expires
Ent er t he num ber of seconds t he LTE Device let s a SI P session rem ain idle ( wit hout t raffic)
before it aut om at ically disconnect s t he session.
B222s User’s Guide
127
Chapter 15 VoIP
Table 49 VoI P > SI P > SI P Service Provider ( cont inued)
LABEL
DESCRIPTION
Min- SE
Ent er t he m inim um num ber of seconds t he LTE Device let s a SI P session rem ain idle
( wit hout t raffic) before it aut om at ically disconnect s t he session. When t wo SI P devices
st art a SI P session, t hey m ust agree on an expirat ion t im e for idle sessions. This field is
t he short est expirat ion t im e t hat t he LTE Device accept s.
Dialing I nt erval Select ion
Dialing I nt erval
Select ion
Ent er t he num ber of seconds t he LTE Device should wait aft er you st op dialing num bers
before it m akes t he phone call. The value depends on how quickly you dial phone
num bers.
Phone Key Config
Use t his sect ion t o cust om ize t he phone keypad com binat ions you use t o access cert ain feat ures on t he LTE
Device.
128
Call Ret urn
This code is used t o t urn t he call ret urn feat ure on. Wit h call ret urn, you can place a call t o
t he last num ber t hat called you ( eit her answered or m issed) .
Caller Display Call
This code is used t o display t he caller I D for out going calls.
Caller Hidden Call
This code is used t o hide t he caller I D for out going calls.
One Shot Caller
Display Call
This code is used t o display t he caller I D only for t he phone call your are going t o m ake.
One Shot Caller
Hidden Call
This code is used t o hide t he caller I D only for t he phone call your are going t o m ake.
Call Wait ing
Enable
This code is used t o t urn t he Call Wait ing feat ure on. Wit h call wait ing, you hear a special
beep not ifying anot her incom ing call while you are answering a call. I t allows you t o place
t he first incom ing call on hold and answer t he second call so t hat you won’t m iss any
im port ant calls.
Call Wait ing
Disable
This code is used t o t urn t he Call Wait ing feat ure off.
One Shot Call
Wait ing Enable
This code is used t o enable call wait ing only for t he phone call your are going t o m ake.
See t he descript ion for t he Call Wait ing Enable field for m ore inform at ion.
One Shot Call
Wait ing Disable
This code is used t o disable one shot call wait ing.
I nt ernal Call
This code is used t o enable int ernal calls t hat allows you t o call from one phone t o anot her
phone connect ed t o t he LTE Device.
Call Transfer
This code is used t o enable call t ransfer t hat allows you t o t ransfer an incom ing call ( t hat
you have answered) t o anot her phone.
Uncondit ional Call
Forward Enable
This code is used t o enable uncondit ional call forwarding. I ncom ing calls are always
forwarded t o a specified num ber wit hout any condit ion.
Uncondit ional Call
Forward Disable
This code is used t o disable uncondit ional call forwarding.
No Answer Call
Forward Enable
This code is used t o enable call forwarding when t here is no answer at a SI P num ber.
No Answer Call
Forward Disable
This code is used t o disable call forwarding when t here is no answer at a SI P num ber.
Call Forward
When Busy
Enable
This code is used t o enable call forwarding when t he phone is busy.
Call Forward
When Busy
Disable
This code is used t o disable call forwarding when t he phone is busy.
Do Not Dist urb
Enable
This code is used t o t urn t he Do Not Dist urb feat ure on. This has t he LTE Device not
forward calls t o t he phone line.
B222s User’s Guide
Chapter 15 VoIP
Table 49 VoI P > SI P > SI P Service Provider ( cont inued)
LABEL
DESCRIPTION
Do Not Dist urb
Disable
This code is used t o t urn t he Do Not Dist urb feat ure off.
Apply
Click Apply t o save your changes.
Cancel
Click Ca n ce l t o rest ore your previously saved set t ings.
15.3 The SIP Account Screen
The LTE Device uses a SI P account t o m ake out going VoI P calls and check if an incom ing call’s
dest inat ion num ber m at ches your SI P account ’s SI P num ber. I n order t o m ake or receive a VoI P
call, you need t o enable and configure a SI P account , and m ap it t o a phone port . The SI P account
cont ains inform at ion t hat allows your LTE Device t o connect t o your VoI P service provider.
See Sect ion 15.3 on page 129 for how t o m ap a SI P account t o a phone port .
To access t he following screen, click VoI P > SI P > SI P Accou n t .
Figure 70 VoI P > SI P > SI P Account
The following t able describes t he labels in t his screen.
Table 50 VoI P > SI P > SI P Account
LABEL
DESCRIPTION
This is t he index num ber of t he ent ry.
Act ive
This shows whet her t he SI P account is act ivat ed or not .
A yellow bulb signifies t hat t his SI P account is act ivat ed. A gray bulb signifies t hat t his SI P
account is act ivat ed.
SI P Account
This shows t he nam e of t he SI P account .
SI P Service
Provider
This shows t he nam e of t he SI P service provider.
Account No.
This shows t he SI P num ber.
Modify
Click t he Edit icon t o configure t he SI P account .
Click t he D e le t e icon t o delet e t his SI P account from t he LTE Device.
B222s User’s Guide
129
Chapter 15 VoIP
15.3.1 Add/Edit SIP Account
You can configure a new SI P account or edit one. To access t his screen, click Add ne w SI P
Account in t he SI P Account screen or Edit icon next t o an exist ing account .
Figure 71 SI P Account : Add/ Edit
130
B222s User’s Guide
Chapter 15 VoIP
Each field is described in t he following t able.
Table 51 SI P Account : Edit
LABEL
DESCRIPTION
SI P Service Provider Select ion
Service Provider
Select ion
Select t he SI P service provider profile you want t o use for t he SI P account you configure
in t his screen.
This field is view- only if you are edit ing t he SI P account .
SI P Account Select ion
SI P Account
Select ion
This shows t he SI P account you are configuring.
General
SI P Account
Select t he Act ive SI P Accou n t check box if you want t o use t his account . Clear it if you
do not want t o use t his account .
SI P Account
Num ber
Ent er your SI P num ber. I n t he full SI P URI , t his is t he part before t he @ sym bol. You can
use up t o 127 print able ASCI I charact ers.
Aut hent icat ion
Usernam e
Ent er t he user nam e for regist ering t his SI P account , exact ly as it was given t o you. You
can use up t o 95 print able ASCI I charact ers.
Password
Ent er t he password for regist ering t his SI P account , exact ly as it was given t o you. You
can use up t o 95 print able ASCI I charact ers.
URL Type
URL Type
Select whet her or not t o include t he SI P service dom ain nam e when t he LTE Device sends
t he SI P num ber.
SI P - include t he SI P service dom ain nam e.
TEL - do not include t he SI P service dom ain nam e.
Voice Feat ures
Prim ary
Com pression Type
Select t he t ype of voice coder/ decoder ( codec) t hat you want t he LTE Device t o use.
G.711 provides higher voice qualit y but requires m ore bandwidt h ( 64 kbps) .
Secondary
Com pression Type
•
•
•
•
•
Third
Com pression Type
G.7 1 1 M u La w is t ypically used in Nort h Am erica and Japan.
G.7 1 1 ALa w is t ypically used in Europe.
G.7 2 9 only requires 8 kbps.
G.7 2 6 - 3 2 operat es at 16, 24, 32 or 40 kbps.
G.7 2 2 operat es at 48, 56 and 64 kbps.The LTE Device m ust use t he sam e codec as
t he peer. When t wo SI P devices st art a SI P session, t hey m ust agree on a codec.
Select t he LTE Device’s first choice for voice coder/ decoder.
Select t he LTE Device’s second choice for voice coder/ decoder. Select N on e if you only
want t he LTE Device t o accept t he first choice.
Select t he LTE Device’s t hird choice for voice coder/ decoder. Select N on e if you only want
t he LTE Device t o accept t he first or second choice.
Speaking
Volum e
Cont rol
Ent er t he loudness t hat t he LTE Device uses for speech t hat it sends t o t he peer device.
List ening
Volum e
Cont rol
Ent er t he loudness t hat t he LTE Device uses for speech t hat it receives from t he peer
device.
M in im u m is t he quiet est , and M a x im u m is t he loudest .
M in im u m is t he quiet est , and M a x im u m is t he loudest .
Act ive G.168
( Echo
Cancellat ion)
B222s User’s Guide
Select t his if you want t o elim inat e t he echo caused by t he sound of your voice
reverberat ing in t he t elephone receiver while you t alk.
131
Chapter 15 VoIP
Table 51 SI P Account : Edit ( cont inued)
LABEL
DESCRIPTION
Act ive VAD
( Voice Act ive
Det ect or)
Select t his if t he LTE Device should st op t ransm it t ing when you are not speaking. This
reduces t he bandwidt h t he LTE Device uses.
Call Feat ures
Send Caller I D
Select t his if you want t o send ident ificat ion when you m ake VoI P phone calls. Clear t his if
you do not want t o send ident ificat ion.
Act ive Call
Transfer
Select t his t o enable call t ransfer on t he LTE Device. This allows you t o t ransfer an
incom ing call ( t hat you have answered) t o anot her phone.
Act ive Call
Wait ing
Select t his t o enable call wait ing on t he LTE Device. This allows you t o place a call on hold
while you answer anot her incom ing call on t he sam e t elephone ( direct ory) num ber.
Act ive Call
Wait ing Rej ect
Tim e
Specify a t im e of seconds t hat t he LTE Device wait s before rej ect ing t he second call if you
do not answer it .
Act ive
Uncondit ional
Forward
Select t his if you want t he LTE Device t o forward all incom ing calls t o t he specified phone
num ber.
Act ive Busy
Forward
Select t his if you want t he LTE Device t o forward incom ing calls t o t he specified phone
num ber if t he phone port is busy.
Specify t he phone num ber in t he To N u m be r field on t he right .
Specify t he phone num ber in t he To N u m be r field on t he right .
I f you have call wait ing, t he incom ing call is forwarded t o t he specified phone num ber if
you rej ect or ignore t he second incom ing call.
Act ive No Answ er
Forward
Select t his if you want t he LTE Device t o forward incom ing calls t o t he specified phone
num ber if t he call is unanswered. ( See N o An sw e r Tim e .)
Specify t he phone num ber in t he To N u m be r field on t he right .
No Answer Ring
Tim e
Hot Line/ Warm
Line Enable
This field is used by t he Act ive N o Answ e r For w a r d feat ure.
Ent er t he num ber of seconds t he LTE Device should wait for you t o answer an incom ing
call before it considers t he call is unanswered.
Enable W a r m Lin e or H ot Line feat ure on t he LTE Device. A hot line or warm line
num ber is a phone num ber.
Hot Line/
Warm Line
num ber
Ent er t he num ber t o be dialed once t he phone is off t he hook im m ediat ely ( Hot Line) or
aft er t he t im e t he phone rem ains off t he hook has surpassed t he delay period ( Warm
Line) .
Warm Line
Tim er ( sec)
Ent er t he durat ion t he phone can rem ain off t he hook before aut om at ically dialing t he
warm line num ber. You can set t he delay from 1 t o 15 seconds.
Act ive
Anonym ous Call
Block
Select t his if you do not want t he phone t o ring when som eone t ries t o call you wit h caller
I D deact ivat ed.
Apply
Click Apply t o save your changes.
Back
Click Ba ck t o ret urn t o t he previous screen wit hout saving.
15.4 Multiple SIP Accounts
You can set up t wo SI P account s on your LTE Device and your LTE Device is equipped wit h t wo
phone port s. By default , SI P1 of t he LTE Device m aps t o phone port 1 for incom ing and out going,
and SI P2 m aps t o phone port 2 for incom ing and out going.
132
B222s User’s Guide
Chapter 15 VoIP
15.5 Phone Screen
Use t his screen t o cont rol which SI P account s t he phone uses. Click VoI P > Ph on e t o access t he
Phone D e vice screen.
Figure 72 VoI P > Phone > Phone Device
The following t able describes t he labels in t his screen.
Table 52 VoI P > Phone > Phone Device
LABEL
DESCRIPTION
This is t he index num ber of t he ent ry.
Phone I D
This is t he phone device num ber.
Out going SI P
Num ber
This is t he out going SI P num ber of t he phone device.
Modify
Click t he Edit icon t o configure t he SI P account .
15.5.1 Edit Phone Device
You can decide which SI P account s t he phone connect ed t o t he LTE Device use by clicking t he Edit
icon next t o a Phone I D. The following screen displays.
You cannot edit t he account if it is not act ivat ed. Go t o VoI P > SI P > SI P Accou nt > Edit t o
act ivat e a SI P account ( see Sect ion 15.3 on page 129 for m ore inform at ion) .
Figure 73 Phone Device: Edit
The following t able describes t he labels in t his screen.
Table 53 Phone Device: Edit
LABEL
DESCRIPTION
SI P Account t o Make Out going Call
SI P Account
Select t he SI P account you want t o use when m aking out going calls wit h t he analog
phone connect ed t o t his phone port .
SI P Num ber
This shows t he SI P account num ber.
SI P Account ( s) t o Receive I ncom ing Call
B222s User’s Guide
133
Chapter 15 VoIP
Table 53 Phone Device: Edit ( cont inued)
LABEL
DESCRIPTION
SI P Account
Select a SI P account if you want t o receive phone calls for t he select ed SI P account on
t his phone port .
I f you select m ore t han one SI P account for incom ing calls, t here is no way t o dist inguish
bet ween t hem when you receive phone calls. I f you do not select a source for incom ing
calls, you cannot receive any calls on t his phone port .
SI P Num ber
This shows t he SI P account num ber.
Apply
Click Apply t o save your changes.
Back
Click Ba ck t o ret urn t o t he previous screen wit hout saving.
15.6 The Phone Region Screen
Use t his screen t o m aint ain set t ings t hat depend on which region of t he world t he LTE Device is in.
To access t his screen, click VoI P > Ph one > Re gion .
Figure 74 VoI P > Phone > Region
Each field is described in t he following t able.
Table 54 VoI P > Phone > Region
LABEL
DESCRIPTION
Region Set t ings
Select t he place in which t he LTE Device is locat ed.
Call Service Mode
Select t he m ode for supplem ent ary phone services ( call hold, call wait ing, call t ransfer
and t hree- way conference calls) t hat your VoI P service provider support s.
•
•
Eu r ope Type - use supplem ent ary phone services in European m ode.
USA Ty pe - use supplem ent ary phone services Am erican m ode.
You m ight have t o subscribe t o t hese services t o use t hem . Cont act your VoI P service
provider.
Apply
Click t his t o save your changes and t o apply t hem t o t he LTE Device.
Cancel
Click t his t o set every field in t his screen t o it s last- saved value.
15.7 The Call Rule Screen
Use t his screen t o add, edit , or rem ove speed- dial num bers for out going calls. Speed dial provides
short cut s for dialing frequent ly- used ( VoI P) phone num bers. You also have t o creat e speed- dial
ent ries if you want t o call SI P num bers t hat cont ain let t ers. Once you have configured a speed dial
134
B222s User’s Guide
Chapter 15 VoIP
rule, you can use a short cut ( t he speed dial num ber, # 01 for exam ple) on your phone's keypad t o
call t he phone num ber.
To access t his screen, click VoI P > Ca ll Ru le .
Figure 75 VoI P > Call Rule
Each field is described in t he following t able.
Table 55 VoI P > Call Rule
LABEL
DESCRIPTION
Speed Dial
Use t his sect ion t o creat e or edit speed- dial ent ries.
Select t he speed- dial num ber you want t o use for t his phone num ber.
Num ber
Ent er t he SI P num ber you want t he LTE Device t o call w hen you dial t he speed- dial num ber.
Descript ion
Ent er a short descript ion t o ident ify t he part y you call when you dial t he speed- dial num ber.
You can use up t o 127 print able ASCI I charact ers.
Add
Click t his t o use t he inform at ion in t he Spe e d D ia l sect ion t o updat e t he Spe e d D ia l Phon e
Book sect ion.
Phone Book
Use t his sect ion t o look at all t he speed- dial ent ries and t o erase t hem .
This field displays t he speed- dial num ber you should dial t o use t his ent ry.
Num ber
This field displays t he SI P num ber t he LTE Device calls when you dial t he speed- dial num ber.
Descript ion
This field displays a short descript ion of t he part y you call when you dial t he speed- dial num ber.
Modify
Use t his field t o edit or erase t he speed- dial ent ry.
Click t he Edit icon t o copy t he inform at ion for t his speed- dial ent ry int o t he Spe e d D ia l
sect ion, where you can change it . Click Add when you finish edit ing t o change t he
configurat ions.
Click t he D e le t e icon t o erase t his speed- dial ent ry.
Clear
Click t his t o erase all t he speed- dial ent ries.
Cancel
Click t his t o set every field in t his screen t o it s last- saved value.
B222s User’s Guide
135
Chapter 15 VoIP
15.8 Technical Reference
This sect ion cont ains background m at erial relevant t o t he VoI P screens.
15.8.1 VoIP
VoI P is t he sending of voice signals over I nt ernet Prot ocol. This allows you t o m ake phone calls and
send faxes over t he I nt ernet at a fract ion of t he cost of using t he t radit ional circuit- swit ched
t elephone net work. You can also use servers t o run t elephone service applicat ions like PBX services
and voice m ail. I nt ernet Telephony Service Provider ( I TSP) com panies provide VoI P service.
Circuit- swit ched t elephone net works require 64 kilobit s per second ( Kbps) in each direct ion t o
handle a t elephone call. VoI P can use advanced voice coding t echniques wit h com pression t o reduce
t he required bandwidt h.
15.8.2 SIP
The Session I nit iat ion Prot ocol ( SI P) is an applicat ion- layer cont rol ( signaling) prot ocol t hat handles
t he set t ing up, alt ering and t earing down of voice and m ult im edia sessions over t he I nt ernet .
SI P signaling is separat e from t he m edia for which it handles sessions. The m edia t hat is exchanged
during t he session can use a different pat h from t hat of t he signaling. SI P handles t elephone calls
and can int erface wit h t radit ional circuit- swit ched t elephone net works.
SIP Identities
A SI P account uses an ident it y ( som et im es referred t o as a SI P address) . A com plet e SI P ident it y is
called a SI P URI ( Uniform Resource I dent ifier) . A SI P account 's URI ident ifies t he SI P account in a
way sim ilar t o t he way an e- m ail address ident ifies an e- m ail account . The form at of a SI P ident it y
is SI P- Num ber@SI P- Service- Dom ain.
SIP Number
The SI P num ber is t he part of t he SI P URI t hat com es before t he “ @” sym bol. A SI P num ber can
use let t ers like in an e- m ail address ( j ohndoe@your- I TSP.com for exam ple) or num bers like a
t elephone num ber ( 1122334455@VoI P- provider.com for exam ple) .
SIP Service Domain
The SI P service dom ain of t he VoI P service provider is t he dom ain nam e in a SI P URI . For exam ple,
if t he SI P address is 1122334455@VoI P- provider.com , t hen “ VoI P- provider.com ” is t he SI P service
dom ain.
SIP Registration
Each LTE Device is an individual SI P User Agent ( UA) . To provide voice service, it has a public I P
address for SI P and RTP prot ocols t o com m unicat e wit h ot her servers.
A SI P user agent has t o regist er wit h t he SI P regist rar and m ust provide inform at ion about t he
users it represent s, as well as it s current I P address ( for t he rout ing of incom ing SI P request s) .
136
B222s User’s Guide
Chapter 15 VoIP
Aft er successful regist rat ion, t he SI P server knows t hat t he users ( ident ified by t heir dedicat ed SI P
URI s) are represent ed by t he UA, and knows t he I P address t o which t he SI P request s and
responses should be sent .
Regist rat ion is init iat ed by t he User Agent Client ( UAC) running in t he VoI P gat eway ( t he LTE
Device) . The gat eway m ust be configured wit h inform at ion let t ing it know where t o send t he
REGI STER m essage, as well as t he relevant user and aut horizat ion dat a.
A SI P regist rat ion has a lim it ed lifespan. The User Agent Client m ust renew it s regist rat ion wit hin
t his lifespan. I f it does not do so, t he regist rat ion dat a will be delet ed from t he SI P regist rar's
dat abase and t he connect ion broken.
The LTE Device at t em pt s t o regist er all enabled subscriber port s when it is swit ched on. When you
enable a subscriber port t hat was previously disabled, t he LTE Device at t em pt s t o regist er t he port
im m ediat ely.
Authorization Requirements
SI P regist rat ions ( and subsequent SI P request s) require a usernam e and password for
aut horizat ion. These credent ials are validat ed via a challenge / response syst em using t he HTTP
digest m echanism ( as det ailed in RFC3261, " SI P: Session I nit iat ion Prot ocol" ) .
SIP Servers
SI P is a client- server prot ocol. A SI P client is an applicat ion program or device t hat sends SI P
request s. A SI P server responds t o t he SI P request s.
When you use SI P t o m ake a VoI P call, it originat es at a client and t erm inat es at a server. A SI P
client could be a com put er or a SI P phone. One device can act as bot h a SI P client and a SI P server.
SIP User Agent
A SI P user agent can m ake and receive VoI P t elephone calls. This m eans t hat SI P can be used for
peer- t o- peer com m unicat ions even t hough it is a client- server prot ocol. I n t he following figure,
eit her A or B can act as a SI P user agent client t o init iat e a call. A and B can also bot h act as a SI P
user agent t o receive t he call.
Figure 76 SI P User Agent
SIP Proxy Server
A SI P proxy server receives request s from client s and forwards t hem t o anot her server.
I n t he following exam ple, you want t o use client device A t o call som eone who is using client device
C.
The client device ( A in t he figure) sends a call invit at ion t o t he SI P proxy server B.
B222s User’s Guide
137
Chapter 15 VoIP
The SI P proxy server forwards t he call invit at ion t o C.
Figure 77 SI P Proxy Server
SIP Redirect Server
A SI P redirect server accept s SI P request s, t ranslat es t he dest inat ion address t o an I P address and
sends t he t ranslat ed I P address back t o t he device t hat sent t he request . Then t he client device t hat
originally sent t he request can send request s t o t he I P address t hat it received back from t he
redirect server. Redirect servers do not init iat e SI P request s.
I n t he following exam ple, you want t o use client device A t o call som eone who is using client device
C.
138
Client device A sends a call invit at ion for C t o t he SI P redirect server B.
The SI P redirect server sends t he invit at ion back t o A wit h C’s I P address ( or dom ain nam e) .
B222s User’s Guide
Chapter 15 VoIP
Client device A t hen sends t he call invit at ion t o client device C.
Figure 78 SI P Redirect Server
SIP Register Server
A SI P regist er server m aint ains a dat abase of SI P ident it y- t o- I P address ( or dom ain nam e)
m apping. The regist er server checks your user nam e and password when you regist er.
RTP
When you m ake a VoI P call using SI P, t he RTP ( Real t im e Transport Prot ocol) is used t o handle voice
dat a t ransfer. See RFC 3550 for det ails on RTP.
Pulse Code Modulation
Pulse Code Modulat ion ( PCM) m easures analog signal am plit udes at regular t im e int ervals and
convert s t hem int o bit s.
SIP Call Progression
The following figure displays t he basic st eps in t he set up and t ear down of a SI P call. A calls B.
Table 56 SI P Call Progression
1. I NVI TE
2. Ringing
3. OK
4. ACK
5.Dialogue ( voice t raffic)
6. BYE
7. OK
B222s User’s Guide
139
Chapter 15 VoIP
A sends a SI P I NVI TE request t o B. This m essage is an invit at ion for B t o part icipat e in a SI P
t elephone call.
B sends a response indicat ing t hat t he t elephone is ringing.
B sends an OK response aft er t he call is answered.
A t hen sends an ACK m essage t o acknowledge t hat B has answered t he call.
Now A and B exchange voice m edia ( t alk) .
Aft er t alking, A hangs up and sends a BYE request .
B replies wit h an OK response confirm ing receipt of t he BYE request and t he call is t erm inat ed.
Voice Coding
A codec ( coder/ decoder) codes analog voice signals int o digit al signals and decodes t he digit al
signals back int o analog voice signals. The LTE Device support s t he following codecs.
• G.711 is a Pulse Code Modulat ion ( PCM) waveform codec. PCM m easures analog signal
am plit udes at regular t im e int ervals and convert s t hem int o digit al sam ples. G.711 provides very
good sound qualit y but requires 64 kbps of bandwidt h.
• G.726 is an Adapt ive Different ial PCM ( ADPCM) waveform codec t hat uses a lower bit rat e t han
st andard PCM conversion. ADPCM convert s analog audio int o digit al signals based on t he
difference bet ween each audio sam ple and a predict ion based on previous sam ples. The m ore
sim ilar t he audio sam ple is t o t he predict ion, t he less space needed t o describe it . G.726 operat es
at 16, 24, 32 or 40 kbps.
• G.729 is an Analysis- by- Synt hesis ( AbS) hybrid waveform codec t hat uses a filt er based on
inform at ion about how t he hum an vocal t ract produces sounds. G.729 provides good sound
qualit y and reduces t he required bandwidt h t o 8 kbps.
MWI (Message Waiting Indication)
Enable Message Wait ing I ndicat ion ( MWI ) enables your phone t o give you a m essage–wait ing
( beeping) dial t one when you have a voice m essage( s) . Your VoI P service provider m ust have a
m essaging syst em t hat sends m essage wait ing st at us SI P packet s as defined in RFC 3842.
15.8.3 Quality of Service (QoS)
Qualit y of Service ( QoS) refers t o bot h a net work's abilit y t o deliver dat a wit h m inim um delay, and
t he net working m et hods used t o provide bandwidt h for real- t im e m ult im edia applicat ions.
Type of Service (ToS)
Net work t raffic can be classified by set t ing t he ToS ( Type of Service) values at t he dat a source ( for
exam ple, at t he LTE Device) so a server can decide t he best m et hod of delivery, t hat is t he least
cost , fast est rout e and so on.
140
B222s User’s Guide
Chapter 15 VoIP
DiffServ
DiffServ is a class of service ( CoS) m odel t hat m arks packet s so t hat t hey receive specific per- hop
t reat m ent at DiffServ- com pliant net work devices along t he rout e based on t he applicat ion t ypes
and t raffic flow. Packet s are m arked wit h DiffServ Code Point s ( DSCP) indicat ing t he level of service
desired. This allows t he int erm ediary DiffServ- com pliant net work devices t o handle t he packet s
different ly depending on t he code point s wit hout t he need t o negot iat e pat hs or rem em ber st at e
inform at ion for every flow. I n addit ion, applicat ions do not have t o request a part icular service or
give advanced not ice of where t he t raffic is going. 3
DSCP and Per-Hop Behavior
DiffServ defines a new DS ( Different iat ed Services) field t o replace t he Type of Service ( TOS) field
in t he I P header. The DS field cont ains a 2- bit unused field and a 6- bit DSCP field which can define
up t o 64 service levels. The following figure illust rat es t he DS field.
DSCP is backward com pat ible wit h t he t hree precedence bit s in t he ToS oct et so t hat non- DiffServ
com pliant , ToS- enabled net work device will not conflict wit h t he DSCP m apping.
Figure 79 DiffServ: Different iat ed Service Field
DSCP
Unused
( 6- bit )
(2-bit)
The DSCP value det erm ines t he forwarding behavior, t he PHB ( Per- Hop Behavior) , t hat each packet
get s across t he DiffServ net work. Based on t he m arking rule, different kinds of t raffic can be
m arked for different priorit ies of forwarding. Resources can t hen be allocat ed according t o t he DSCP
values and t he configured policies.
15.8.4 Phone Services Overview
Supplem ent ary services such as call hold, call wait ing, and call t ransfer. are generally available from
your VoI P service provider. The LTE Device support s t he following services:
• Call Hold
• Call Wait ing
• Making a Second Call
• Call Transfer
• Three- Way Conference
• I nt ernal Calls
• Do not Dist urb
Not e: To t ake full advant age of t he supplem ent ary phone services available t hrough t he
LTE Device's phone port s, you m ay need t o subscribe t o t he services from your VoI P
service provider.
3.
The LTE Device does not support DiffServ at the time of writing.
B222s User’s Guide
141
Chapter 15 VoIP
The Flash Key
Flashing m eans t o press t he hook for a short period of t im e ( a few hundred m illiseconds) before
releasing it . On newer t elephones, t here should be a " flash" key ( but t on) t hat generat es t he signal
elect ronically. I f t he flash key is not available, you can t ap ( press and im m ediat ely release) t he
hook by hand t o achieve t he sam e effect . However, using t he flash key is preferred since t he t im ing
is m uch m ore precise. Wit h m anual t apping, if t he durat ion is t oo long, it m ay be int erpret ed as
hanging up by t he LTE Device.
You can invoke all t he supplem ent ary services by using t he flash key.
Europe Type Supplementary Phone Services
This sect ion describes how t o use supplem ent ary phone services wit h t he Eur ope Type Ca ll
Se r vice M ode . Com m ands for supplem ent ary services are list ed in t he t able below.
Aft er pressing t he flash key, if you do not issue t he sub- com m and before t he default sub- com m and
t im e- out ( 2 seconds) expires or issue an invalid sub- com m and, t he current operat ion will be
abort ed.
Table 57 European Flash Key Com m ands
COMMAND
SUB-COMMAND
Flash
DESCRIPTION
Put a current call on hold t o place a second call.
Swit ch back t o t he call ( if t here is no second call) .
Flash
Drop t he call present ly on hold or rej ect an incom ing call which is wait ing
for answer.
Flash
Disconnect t he current phone connect ion and answer t he incom ing call or
resum e wit h caller present ly on hold.
Flash
1. Swit ch back and fort h bet ween t wo calls.
2. Put a current call on hold t o answer an incom ing call.
3. Separat e t he current t hree- way conference call int o t wo individual calls
( one is on- line, t he ot her is on hold) .
Flash
Creat e t hree- way conference connect ion.
Flash
* 98#
Transfer t he call t o anot her phone.
European Call Hold
Call hold allows you t o put a call ( A) on hold by pressing t he flash key.
I f you have anot her call, press t he flash key and t hen “ 2” t o swit ch back and fort h bet ween caller A
and B by put t ing eit her one on hold.
Press t he flash key and t hen “ 0” t o disconnect t he call present ly on hold and keep t he current call
on line.
Press t he flash key and t hen “ 1” t o disconnect t he current call and resum e t he call on hold.
I f you hang up t he phone but a caller is st ill on hold, t here will be a rem ind ring.
142
B222s User’s Guide
Chapter 15 VoIP
European Call Waiting
This allows you t o place a call on hold while you answer anot her incom ing call on t he sam e
t elephone ( direct ory) num ber.
I f t here is a second call t o a t elephone num ber, you will hear a call wait ing t one. Take one of t he
following act ions.
• Rej ect t he second call.
Press t he flash key and t hen press “ 0”.
• Disconnect t he first call and answer t he second call.
Eit her press t he flash key and press “ 1”, or j ust hang up t he phone and t hen answer t he phone
aft er it rings.
• Put t he first call on hold and answer t he second call.
Press t he flash key and t hen “ 2”.
European Call Transfer
Do t he following t o t ransfer a call ( t hat you have answered) t o anot her phone num ber.
Press t he flash key t o put t he caller on hold.
When you hear t he dial t one, dial “ * 98# ” followed by t he num ber t o which you want t o t ransfer t he
call. t o operat e t he I nt ercom .
Aft er you hear t he ring signal or t he second part y answers it , hang up t he phone.
European Three-Way Conference
Use t he following st eps t o m ake t hree- way conference calls.
When you are on t he phone t alking t o som eone, press t he flash key t o put t he call on hold and get
a dial t one.
Dial a phone num ber direct ly t o m ake anot her call.
When t he second call is answered, press t he flash key and press “ 3” t o creat e a t hree- way
conversat ion.
Hang up t he phone t o drop t he connect ion.
I f you want t o separat e t he act ivat ed t hree- way conference int o t wo individual connect ions ( one is
on- line, t he ot her is on hold) , press t he flash key and press “ 2”.
B222s User’s Guide
143
Chapter 15 VoIP
144
B222s User’s Guide
C HAPTER
16
Logs
16.1 Overview
The web configurat or allows you t o choose which cat egories of event s and/ or alert s t o have t he LTE
Device log and t hen display t he logs or have t he LTE Device send t hem t o an adm inist rat or ( as em ail) or t o a syslog server.
16.1.1 What You Can Do in this Chapter
• Use t he Syst e m Log screen t o see t he syst em logs for t he cat egories t hat you select ( Sect ion
16.2 on page 146) .
• Use t he Ph one Log screen t o view phone logs and alert m essages ( Sect ion 16.3 on page 147) .
• Use The VoI P Ca ll H ist or y screen t o view t he det ails of t he calls perform ed on t he LTE Device
( Sect ion 16.4 on page 147) .
16.1.2 What You Need To Know
The following t erm s and concept s m ay help as you read t his chapt er.
Alerts and Logs
An alert is a t ype of log t hat warrant s m ore serious at t ent ion. They include syst em errors, at t acks
( access cont rol) and at t em pt ed access t o blocked web sit es. Som e cat egories such as Syst e m
Er r or s consist of bot h logs and alert s. You m ay different iat e t hem by t heir color in t he Vie w Log
screen. Alert s display in red and logs display in black.
Syslog Overview
The syslog prot ocol allows devices t o send event not ificat ion m essages across an I P net work t o
syslog servers t hat collect t he event m essages. A syslog- enabled device can generat e a syslog
m essage and send it t o a syslog server.
Syslog is defined in RFC 3164. The RFC defines t he packet form at , cont ent and syst em log relat ed
inform at ion of syslog m essages. Each syslog m essage has a facilit y and severit y level. The syslog
facilit y ident ifies a file in t he syslog server. Refer t o t he docum ent at ion of your syslog program for
det ails. The following t able describes t he syslog severit y levels.
Table 58 Syslog Severit y Levels
CODE
SEVERITY
Em ergency ( EMERG) : The syst em is unusable.
Alert ( ALERT) : Act ion m ust be t aken im m ediat ely.
Crit ical ( CRI T) : The syst em condit ion is crit ical.
B222s User’s Guide
145
Chapter 16 Logs
Table 58 Syslog Severit y Levels
CODE
SEVERITY
Error ( ERROR) : There is an error condit ion on t he syst em .
Warning ( WARNI NG) : There is a warning condit ion on t he syst em .
Not ice ( NOTI CE) : There is a norm al but significant condit ion on t he syst em .
I nform at ional ( I NFO) : The syslog cont ains an inform at ional m essage.
Debug ( DEBUG) : The m essage is int ended for debug- level purposes.
16.2 The System Log Screen
Click Syst e m M onit or > Log t o open t he Syst e m Log screen. Use t he Syst e m Log screen t o see
t he syst em logs for t he cat egories t hat you select in t he upper left drop- down list box.
Figure 80 Syst em Monit or > Log > Syst em Log
The following t able describes t he fields in t his screen.
Table 59 Syst em Monit or > Log > Syst em Log
LABEL
DESCRIPTION
Select t he t ype of t he logs t hat you want t o search in t he first drop- down list box.
146
Level
Select a severit y level from t his drop- down list box. This filt ers search result s according t o
t he severit y level you have select ed. When you select a severit y, t he LTE Device searches
t hrough all logs of t hat severit y or higher. See Table 58 on page 145 for m ore inform at ion
about severit y levels.
Refresh
Click t his t o renew t he log screen.
Clear Logs
Click t his t o delet e all t he logs.
This field is a sequent ial value and is not associat ed w it h a specific ent ry.
Tim e
This field displays t he dat e and t im e t he log was recorded.
Level
This field displays t he severit y level of t he logs t hat t he device is t o send t o t his syslog
server.
Message
This field st at es t he reason for t he log.
B222s User’s Guide
Chapter 16 Logs
16.3 The Phone Log Screen
Click Syst e m M onit or > Log t o open t he Ph one Log screen. Use t his screen t o view phone logs
and alert m essages. You can select t he t ype of log and level of severit y t o display.
Figure 81 Syst em Monit or > Log > Phone Log
The following t able describes t he fields in t his screen.
Table 60 Syst em Monit or > Log > Phone Log
LABEL
DESCRIPTION
Select a cat egory of logs t o view from t he drop- down list box. select All Logs t o view all logs.
Level
Select t he severit y level t hat you want t o view.
Refresh
Click t his t o renew t he log screen.
Clear Logs
Click t his t o delet e all t he logs.
This field is a sequent ial value and is not associat ed wit h a specific ent ry.
Tim e
This field displays t he t im e t he log was recorded.
Level
This field displays t he severit y level of t he logs t hat t he device is t o send t o t his syslog server.
Message
This field st at es t he reason for t he log.
16.4 The VoIP Call History Screen
Click Syst e m M on it or > Log > VoI P Ca ll H ist or y t o open t he VoI P Ca ll H ist or y screen.
Use t his screen t o see t he det ails of t he calls perform ed on t he LTE Device.
Figure 82 Syst em Monit or > Log > VoI P Call Hist ory
B222s User’s Guide
147
Chapter 16 Logs
The following t able describes t he fields in t his screen.
Table 61 Syst em Monit or > Log > VoI P Call Hist ory
LABEL
DESCRIPTION
Select a cat egory of call records t o view from t he drop- down list box. select All Ca ll
H ist or y t o view all call records.
148
Refresh
Click t his t o renew t he log screen.
Clear Logs
Click t his t o delet e all t he logs.
This field is a sequent ial value and is not associat ed wit h a specific ent ry.
Tim e
This field displays t he t im e t he call was recorded.
Local Num ber
This field displays t he phone num ber you used t o m ake or receive t his call.
Peer Num ber
This field displays t he phone num ber you called or from which t his call is m ade.
I nt erface
This field displays t he t ype of t he call.
Durat ion
This field displays how long t he call last ed.
B222s User’s Guide
C HAPTER
17
Traffic Status
17.1 Overview
Use t he Tr a ffic St a t us screens t o look at net work t raffic st at us and st at ist ics of t he WAN, LAN
int erfaces and NAT.
17.1.1 What You Can Do in this Chapter
• Use t he W AN screen t o view t he WAN t raffic st at ist ics ( Sect ion 17.2 on page 149) .
• Use t he LAN screen t o view t he LAN t raffic st at ist ics ( Sect ion 17.3 on page 150) .
• Use t he N AT screen t o view t he NAT st at us of t he LTE Device’s client ( s) ( Sect ion 17.4 on page
151) .
• Use t he VoI P St a t us screen t o view t he VoI P t raffic st at ist ics ( Sect ion 17.5 on page 152) .
17.2 The WAN Status Screen
Click Syst e m M onit or > Tr a ffic St a t us t o open t he W AN screen. You can view t he WAN t raffic
st at ist ics in t his screen.
Figure 83 Syst em Monit or > Traffic St at us > WAN
The following t able describes t he fields in t his screen.
Table 62 Syst em Monit or > Traffic St at us > WAN
LABEL
DESCRIPTION
St at us
This shows t he num ber of byt es received and sent t hrough t he WAN int erface of
t he LTE Device.
Refresh I nt erval
Select how oft en you want t he LTE Device t o updat e t his screen from t he dropdown list box.
B222s User’s Guide
149
Chapter 17 Traffic Status
Table 62 Syst em Monit or > Traffic St at us > WAN ( cont inued)
LABEL
DESCRIPTION
Connect ed
I nt erface
This shows t he nam e of t he WAN int erface t hat is current ly connect ed.
Packet s Sent
Dat a
This indicat es t he num ber of t ransm it t ed packet s on t his int erface.
Error
This indicat es t he num ber of fram es wit h errors t ransm it t ed on t his int erface.
Drop
This indicat es t he num ber of out going packet s dropped on t his int erface.
Packet s Received
Dat a
This indicat es t he num ber of received packet s on t his int erface.
Error
This indicat es t he num ber of fram es wit h errors received on t his int erface.
Drop
This indicat es t he num ber of received packet s dropped on t his int erface.
17.3 The LAN Status Screen
Click Syst e m M on it or > Tr a ffic St a t u s > LAN t o open t he following screen. You can view t he LAN
t raffic st at ist ics in t his screen.
Figure 84 Syst em Monit or > Traffic St at us > LAN
The following t able describes t he fields in t his screen.
Table 63 Syst em Monit or > Traffic St at us > LAN
LABEL
DESCRIPTION
Refresh I nt erval
Select how oft en you want t he LTE Device t o updat e t his screen from t he dropdown list box.
I nt erface
This shows t he LAN or WLAN int erface.
Byt es Sent
This indicat es t he num ber of byt es t ransm it t ed on t his int erface.
Byt es Received
This indicat es t he num ber of byt es received on t his int erface.
I nt erface
This shows t he LAN or WLAN int erface.
Sent ( Packet )
150
Dat a
This indicat es t he num ber of t ransm it t ed packet s on t his int erface.
Error
This indicat es t he num ber of fram es wit h errors t ransm it t ed on t his int erface.
B222s User’s Guide
Chapter 17 Traffic Status
Table 63 Syst em Monit or > Traffic St at us > LAN ( cont inued)
LABEL
Drop
DESCRIPTION
This indicat es t he num ber of out going packet s dropped on t his int erface.
Received ( Packet )
Dat a
This indicat es t he num ber of received packet s on t his int erface.
Error
This indicat es t he num ber of fram es wit h errors received on t his int erface.
Drop
This indicat es t he num ber of received packet s dropped on t his int erface.
17.4 The NAT Status Screen
Click Syst e m M onit or > Tr a ffic St a t us > N AT t o open t he following screen. You can view t he NAT
st at us of t he LTE Device’s client ( s) in t his screen.
Figure 85 Syst em Monit or > Traffic St at us > NAT
The following t able describes t he fields in t his screen.
Table 64 Syst em Monit or > Traffic St at us > NAT
LABEL
DESCRIPTION
Refresh I nt erval
Select how oft en you want t he LTE Device t o updat e t his screen from t he dropdown list box.
Device Nam e
This shows t he nam e of t he client .
I P Address
This shows t he I P address of t he client .
MAC Address
This shows t he MAC address of t he client .
No. of Open
Session
This shows t he num ber of NAT sessions used by t he client .
B222s User’s Guide
151
Chapter 17 Traffic Status
17.5 The VoIP Status Screen
Click Syst e m M onit or > VoI P St a t us t o open t he following screen. You can view t he VoI P t raffic
st at ist ics in t his screen.
Figure 86 Syst em Monit or > VoI P St at us
The following t able describes t he fields in t his screen.
Table 65 Syst em Monit or > VoI P St at us
LABEL
DESCRIPTION
Refresh I nt erval
Select how oft en you want t he LTE Device t o updat e t his screen from t he drop- down list
box.
SI P St at us
Account
This colum n displays each SI P account in t he LTE Device.
Regist rat ion
This field displays t he current regist rat ion st at us of t he SI P account . You can change t his in
t he St a t u s screen.
Re gist e r e d - The SI P account is regist ered wit h a SI P server.
N ot Re gist e r e d - The last t im e t he LTE Device t ried t o regist er t he SI P account wit h t he
SI P server, t he at t em pt failed. The LTE Device aut om at ically t ries t o regist er t he SI P
account when you t urn on t he LTE Device or when you act ivat e it .
I n a ct ive - The SI P account is not act ive. You can act ivat e it in V oI P > SI P > SI P
Accou n t .
Last
Regist rat ion
This field displays t he last t im e you successfully regist ered t he SI P account . The field is
blank if you never successfully regist ered t his account .
URI
This field displays t he account num ber and service dom ain of t he SI P account . You can
change t hese in t he V oI P > SI P screens.
Message Wait ing
This field indicat es whet her or not t here are any m essages wait ing for t he SI P account .
Last I ncom ing
Num ber
This field displays t he last num ber t hat called t he SI P account . The field is blank if no
num ber has ever dialed t he SI P account .
Last Out going
Num ber
This field displays t he last num ber t he SI P account called. The field is blank if t he SI P
account has never dialed a num ber.
Call St at us
152
Account
This colum n displays t he SI P account in t he LTE Device.
Durat ion
This field displays how long t he current call has last ed.
B222s User’s Guide
Chapter 17 Traffic Status
Table 65 Syst em Monit or > VoI P St at us ( cont inued)
LABEL
DESCRIPTION
St at us
This field displays t he current st at e of t he phone call.
I dle - There are no current VoI P calls, incom ing calls or out going calls being m ade.
D ia l - The callee’s phone is ringing.
Rin g - The phone is ringing for an incom ing VoI P call.
Pr oce ss - There is a VoI P call in progress.
D I SC - The callee’s line is busy, t he callee hung up or your phone was left off t he hook.
Codec
This field displays what voice codec is being used for a current VoI P call t hrough a phone
port .
Peer Num ber
This field displays t he SI P num ber of t he part y t hat is current ly engaged in a VoI P call
t hrough a phone port .
Phone St at us
Account
This field displays t he phone account s of t he LTE Device.
Out going
Num ber
This field displays t he SI P num ber t hat you use t o m ake calls on t his phone port .
I ncom ing
Num ber
This field displays t he SI P num ber t hat you use t o receive calls on t his phone port .
Phone St at e
This field shows whet her or t he phone connect ed t o t he subscriber port is on- hook
ON H OOK) or off- hook ( OFFH OOK) .
B222s User’s Guide
153
Chapter 17 Traffic Status
154
B222s User’s Guide
C HAPTER
18
User Account
18.1 Overview
You can configure syst em password for different user account s in t he Use r Account screen.
18.2 The User Account Screen
Use t he Use r Accou n t screen t o configure syst em password.
Click M a in t e na n ce > Use r Accoun t t o open t he following screen.
Figure 87 Maint enance > User Account
The following t able describes t he labels in t his screen.
Table 66 Maint enance > User Account
LABEL
DESCRIPTION
User Nam e
You can configure t he password for t he Pow e r Use r and Adm in account s.
Old Password
Type t he default password or t he exist ing password you use t o access t he syst em
in t his field.
New Password
Type your new syst em password ( up t o 30 charact ers) . Not e t hat as you t ype a
password, t he screen displays a ( * ) for each charact er you t ype. Aft er you change
t he password, use t he new password t o access t he LTE Device.
Ret ype t o
Confirm
Type t he new password again for confirm at ion.
Apply
Click Apply t o save your changes.
Cancel
Click Ca nce l t o rest ore your previously saved set t ings.
B222s User’s Guide
155
Chapter 18 User Account
156
B222s User’s Guide
C HAPTER
19
Remote MGMT
19.1 Overview
Re m ot e M GM T allows you t o m anage your LTE Device from a rem ot e locat ion t hrough t he
following int erfaces:
• LAN and WLAN
• WAN only
Not e: The LTE Device is m anaged using t he web configurat or.
19.1.1 What You Need to Know
The following t erm s and concept s m ay help as you read t his chapt er
19.2 The Remote MGMT Screen
Use t his screen t o decide what services you m ay use t o access which LTE Device int erface. Click
M a int e na nce > Re m ot e M GM T t o open t he following screen.
Figure 88 Maint enance > Rem ot e MGMT
The following t able describes t he fields in t his screen.
Table 67 Maint enance > Rem ot e MGMT
LABEL
DESCRIPTION
Services
This is t he service you m ay use t o access t he LTE Device.
LAN/ WLAN
Select t he En a ble check box for t he corresponding services t hat you want t o allow access t o
t he LTE Device from t he LAN and WLAN.
WAN
Select t he En a ble check box for t he corresponding services t hat you want t o allow access t o
t he LTE Device from t he WAN.
Port
You m ay change t he server port num ber for a service if needed, however you m ust use t he
sam e port num ber in order t o use t hat service for rem ot e m anagem ent .
B222s User’s Guide
157
Chapter 19 Remote MGMT
Table 67 Maint enance > Rem ot e MGMT ( cont inued)
LABEL
158
DESCRIPTION
Apply
Click Apply t o save your changes.
Cancel
Click Ca nce l t o rest ore your previously saved set t ings.
B222s User’s Guide
C HAPTER
20
System
20.1 Overview
You can configure syst em set t ings, including t he host nam e, dom ain nam e and t he inact ivit y t im eout int erval in t he Syst e m screen.
20.1.1 What You Need to Know
The following t erm s and concept s m ay help as you read t his chapt er.
Domain Name
This is a net work address t hat ident ifies t he owner of a net work connect ion. For exam ple, in t he
net work address “ www.exam ple.com / support / files”, t he dom ain nam e is “ www.exam ple.com ”.
20.2 The System Screen
Use t he Syst e m screen t o configure t he syst em ’s host nam e, dom ain nam e, and inact ivit y t im e- out
int erval.
The H ost N a m e is for ident ificat ion purposes. However, because som e I SPs check t his nam e you
should ent er your com put er's "Com put er Nam e" . Find t he syst em nam e of your Windows com put er.
I n Windows XP, click st a r t , M y Com put e r, Vie w syst e m infor m a t ion and t hen click t he
Com pu t e r N a m e t ab. Not e t he ent ry in t he Full com put e r na m e field and ent er it as t he LTE
Device Syst e m N a m e .
Click M a in t e n a n ce > Syst e m t o open t he following screen.
Figure 89 Maint enance > Syst em
B222s User’s Guide
159
Chapter 20 System
The following t able describes t he labels in t his screen.
Table 68 Maint enance > Syst em
LABEL
DESCRIPTION
Host Nam e
Choose a descript ive nam e for ident ificat ion purposes. I t is recom m ended you
ent er your com put er ’s “ Com put er nam e” in t his field. This nam e can be up t o 30
alphanum eric charact ers long. Spaces are not allowed, but dashes “ - ” and
underscores " _" are accept ed.
Dom ain Nam e
Ent er t he dom ain nam e ( if you know it ) here. I f you leave t his field blank, t he I SP
m ay assign a dom ain nam e via DHCP.
The dom ain nam e ent ered by you is given priorit y over t he I SP assigned dom ain
nam e.
160
Adm inist rat or
I nact ivit y Tim er
Type how m any m inut es a m anagem ent session ( eit her via t he web configurat or)
can be left idle before t he session t im es out . The default is 5 m inut es. Aft er it
t im es out you have t o log in wit h your password again. Very long idle t im eout s
m ay have securit y risks. A value of " 0" m eans a m anagem ent session never t im es
out , no m at t er how long it has been left idle ( not recom m ended) .
Apply
Click t his t o save your changes back t o t he LTE Device.
Cancel
Click t his t o begin configuring t his screen afresh.
B222s User’s Guide
C HAPTER
21
Time Setting
21.1 Overview
You can configure t he syst em ’s t im e and dat e in t he Tim e Se t t ing screen.
21.2 The Time Setting Screen
To change your LTE Device’s t im e and dat e, click M a int e na nce > Tim e . The screen appears as
shown. Use t his screen t o configure t he LTE Device’s t im e based on your local t im e zone.
Figure 90 Maint enance > Tim e Set t ing
The following t able describes t he fields in t his screen.
Table 69 Maint enance > Syst em > Tim e Set t ing
LABEL
DESCRIPTION
Current Dat e/ Tim e
Current Tim e
This field displays t he t im e of your LTE Device.
Current Dat e
This field displays t he dat e of your LTE Device.
Tim e and Dat e Set up
Tim e Prot ocol
This shows t he t im e service prot ocol t hat your t im e server sends when you t urn on t he
LTE Device.
Tim e Server
Address
Ent er t he I P address or URL ( up t o 31 ext ended ASCI I charact ers in lengt h) of your t im e
server. Check wit h your I SP/ net work adm inist rat or if you are unsure of t his inform at ion.
Tim e Zone
Choose t he t im e zone of your locat ion. This will set t he t im e difference bet ween your t im e
zone and Greenwich Mean Tim e ( GMT) .
B222s User’s Guide
161
Chapter 21 Time Setting
Table 69 Maint enance > Syst em > Tim e Set t ing ( cont inued)
LABEL
DESCRIPTION
Daylight Savings
Daylight saving is a period from lat e spring t o early fall when m any count ries set t heir
clocks ahead of norm al local t im e by one hour t o give m ore dayt im e light in t he
evening.Select t his opt ion if you use Daylight Saving Tim e.
St art Dat e
Configure t he day and t im e when Daylight Saving Tim e st art s if you select ed D a yligh t
Sa vin gs. The o'clock field uses t he 24 hour form at . Here are a couple of exam ples:
Daylight Saving Tim e st art s in m ost part s of t he Unit ed St at es on t he second Sunday of
March. Each t im e zone in t he Unit ed St at es st art s using Daylight Saving Tim e at 2 A.M.
local t im e. So in t he Unit ed St at es you would select Se cond, Su n da y, M a r ch and t ype 2
in t he o'clock field.
Daylight Saving Tim e st art s in t he European Union on t he last Sunday of March. All of t he
t im e zones in t he European Union st art using Daylight Saving Tim e at t he sam e m om ent
( 1 A.M. GMT or UTC) . So in t he European Union you would select La st , Su n da y, M a r ch .
The t im e you t ype in t he o' clock field depends on your t im e zone. I n Germ any for
inst ance, you would t ype 2 because Germ any's t im e zone is one hour ahead of GMT or
UTC ( GMT+ 1) .
End Dat e
Configure t he day and t im e when Daylight Saving Tim e ends if you select ed D a yligh t
Sa vin gs. The o'clock field uses t he 24 hour form at . Here are a couple of exam ples:
Daylight Saving Tim e ends in t he Unit ed St at es on t he first Sunday of Novem ber. Each
t im e zone in t he Unit ed St at es st ops using Daylight Saving Tim e at 2 A.M. local t im e. So
in t he Unit ed St at es you would select Fir st , Su n da y, N ove m be r and t ype 2 in t he
o'clock field.
Daylight Saving Tim e ends in t he European Union on t he last Sunday of Oct ober. All of
t he t im e zones in t he European Union st op using Daylight Saving Tim e at t he sam e
m om ent ( 1 A.M. GMT or UTC) . So in t he European Union you would select La st , Su n da y,
Oct obe r. The t im e you t ype in t he o' clock field depends on your t im e zone. I n Germ any
for inst ance, you would t ype 2 because Germ any's t im e zone is one hour ahead of GMT
or UTC ( GMT+ 1) .
162
Apply
Click Apply t o save your changes.
Reset
Click Re se t t o begin configuring t his screen afresh.
B222s User’s Guide
C HAPTER
22
Log Setting
22.1 Overview
You can configure where t he LTE Device sends logs and which logs and/ or im m ediat e alert s t he LTE
Device records in t he Log Se t t in g screen.
22.2 The Log Setting Screen
To change your LTE Device’s log set t ings, click M a int e n a n ce > Log Se t t in g. The screen appears
as shown.
Figure 91 Maint enance > Log Set t ing
B222s User’s Guide
163
Chapter 22 Log Setting
The following t able describes t he fields in t his screen.
Table 70 Maint enance > Log Set t ing
LABEL
DESCRIPTION
Syslog Set t ing
Syslog Logging
The LTE Device sends a log t o an ext ernal syslog server. Select t he En a ble check box t o
enable syslog logging.
Syslog Server
Ent er t he server nam e or I P address of t he syslog server t hat will log t he select ed
cat egories of logs.
UDP Port
Ent er t he port num ber used by t he syslog server.
Act ive Log and Select Level
164
Log Cat egory
Select t he cat egories of logs t hat you want t o record.
Log Level
Select t he severit y level of logs t hat you want t o record. I f you want t o record all logs,
select ALL.
Apply
Click Apply t o save your changes.
Cancel
Click Ca n ce l t o rest ore your previously saved set t ings.
B222s User’s Guide
C HAPTER
23
Firmware Upgrade
23.1 Overview
This chapt er explains how t o upload new firm ware t o your LTE Device. You can download new
firm ware releases from your nearest Huawei FTP sit e ( or www.huawei.com ) t o use t o upgrade your
device’s perform ance.
Only use firmware for your device’s specific model. Refer to the label on
the bottom of your LTE Device.
23.2 The Firmware Upgrade Screen
Click M a int e na nce > Fir m w a r e Upgr a de t o open t he following screen. The upload process uses
HTTP ( Hypert ext Transfer Prot ocol) and m ay t ake up t o t hree m inut es. Aft er a successful upload,
t he syst em will reboot .
Do NOT turn off the LTE Device while firmware upload is in progress!
Figure 92 Maint enance > Firm ware Upgrade
The following t able describes t he labels in t his screen.
Table 71 Maint enance > Firm ware Upgrade
LABEL
DESCRIPTION
Current Firm ware
Version
This is t he present Firm ware version.
File Pat h
Type in t he locat ion of t he file you want t o upload in t his field or click Br ow se ... t o find it .
Browse...
Click t his t o find t he .bin file you want t o upload. Rem em ber t hat you m ust decom press
com pressed ( .zip) files before you can upload t hem .
Upload
Click t his t o begin t he upload process. This process m ay t ake up t o t hree m inut es.
B222s User’s Guide
165
Chapter 23 Firmware Upgrade
Aft er you see t he firm ware updat ing screen, wait a few m inut es before logging int o t he LTE Device
again.
Figure 93 Firm ware Uploading
The LTE Device aut om at ically rest art s in t his t im e causing a t em porary net work disconnect . I n
som e operat ing syst em s, you m ay see t he following icon on your deskt op.
Figure 94 Net work Tem porarily Disconnect ed
Aft er t wo m inut es, log in again and check your new firm ware version in t he St a t us screen.
I f t he upload was not successful, an error screen will appear. Click OK t o go back t o t he Fir m w a r e
Upgr a de screen.
Figure 95 Error Message
166
B222s User’s Guide
C HAPTER
24
Backup/Restore
24.1 Overview
The Ba ck up/ Re st or e screen allows you t o backup and rest ore device configurat ions. You can also
reset your device set t ings back t o t he fact ory default .
24.2 The Backup/Restore Screen
Click M a int e na nce > Ba ck u p/ Re st or e. I nform at ion relat ed t o fact ory default s, backup
configurat ion, and rest oring configurat ion appears in t his screen, as shown next .
Figure 96 Maint enance > Backup/ Rest ore
Backup Configuration
Backup Configurat ion allows you t o back up ( save) t he LTE Device’s current configurat ion t o a file
on your com put er. Once your LTE Device is configured and funct ioning properly, it is highly
recom m ended t hat you back up your configurat ion file before m aking configurat ion changes. The
backup configurat ion file will be useful in case you need t o ret urn t o your previous set t ings.
Click Ba ck up t o save t he LTE Device’s current configurat ion t o your com put er.
B222s User’s Guide
167
Chapter 24 Backup/Restore
Restore Configuration
Rest ore Configurat ion allows you t o upload a new or previously saved configurat ion file from your
com put er t o your LTE Device.
Table 72 Rest ore Configurat ion
LABEL
DESCRIPTION
File Pat h
Type in t he locat ion of t he file you want t o upload in t his field or click Br ow se ... t o
find it .
Browse...
Click t his t o find t he file you want t o upload. Rem em ber t hat you m ust decom press
com pressed ( .ZI P) files before you can upload t hem .
Upload
Click t his t o begin t he upload process.
Reset
Click t his t o reset your device set t ings back t o t he fact ory default .
Do not turn off the LTE Device while configuration file upload is in
progress.
Aft er t he LTE Device configurat ion has been restored successfully, t he login screen appears. Login
again t o rest art t he LTE Device.
The LTE Device aut om at ically rest art s in t his t im e causing a t em porary net work disconnect . I n
som e operat ing syst em s, you m ay see t he following icon on your deskt op.
Figure 97 Net work Tem porarily Disconnect ed
I f you rest ore t he default configurat ion, you m ay need t o change t he I P address of your com put er
t o be in t he sam e subnet as t hat of t he default device I P address ( 192.168.1.1) . See Appendix B on
page 189 for det ails on how t o set up your com put er ’s I P address.
I f t he upload was not successful, an error screen will appear. Click OK t o go back t o t he
Con figu r a t ion screen.
168
B222s User’s Guide
Chapter 24 Backup/Restore
Reset to Factory Defaults
Click t he Re se t but t on t o clear all user- ent ered configurat ion inform at ion and ret urn t he LTE Device
t o it s fact ory default s. The following warning screen appears.
Figure 98 Reset Warning Message
Figure 99 Reset I n Process Message
You can also press t he RESET but t on on t he back panel t o reset t he fact ory default s of your LTE
Device. Refer t o Sect ion 1.7 on page 20 for m ore inform at ion on t he RESET but t on.
24.3 The Reboot Screen
Syst em rest art allows you t o reboot t he LTE Device rem ot ely wit hout t urning t he power off. You
m ay need t o do t his if t he LTE Device hangs, for exam ple.
Click M a in t e n a n ce > Re boot . Click t he Re boot but t on t o have t he LTE Device reboot . This does
not affect t he LTE Device's configurat ion.
B222s User’s Guide
169
Chapter 24 Backup/Restore
170
B222s User’s Guide
C HAPTER
25
Diagnostic
25.1 Overview
You can use different diagnost ic m et hods t o t est a connect ion and see t he det ailed inform at ion.
These read- only screens display inform at ion t o help you ident ify problem s wit h t he LTE Device.
25.2 The Ping/TraceRoute Screen
Ping and t racerout e help check availabilit y of rem ot e host s and also help t roubleshoot net work or
I nt ernet connect ions. Click M a int e na nce > D ia gnost ic t o open t he Ping/ Tr a ce Rou t e screen
shown next .
Figure 100 Maint enance > Diagnost ic > Ping/ TraceRout e
The following t able describes t he fields in t his screen.
Table 73 Maint enance > Diagnost ic > Ping/ TraceRout e
LABEL
DESCRIPTION
Ping
Type t he I P address of a com put er t hat you want t o ping in order t o t est a
connect ion. Click Pin g and t he ping st at ist ics will show in t he diagnost ic .
TraceRout e
Click t his but t on t o perform t he t racerout e funct ion. This det erm ines t he pat h a
packet t akes t o t he specified host .
B222s User’s Guide
171
Chapter 25 Diagnostic
172
B222s User’s Guide
C HAPTER
26
Troubleshooting
26.1 Overview
This chapt er offers som e suggest ions t o solve problem s you m ight encount er. The pot ent ial
problem s are divided int o t he following cat egories.
• Power, Hardware Connect ions, and LEDs
• LTE Device Access and Login
• I nt ernet Access
• Wireless I nt ernet Access
• Phone Calls and VoI P
• UPnP
26.2 Power, Hardware Connections, and LEDs
The LTE Device does not t urn on. None of t he LEDs t urn on.
Make sure t he LTE Device is t urned on.
Make sure you are using t he power adapt or or cord included wit h t he LTE Device.
Make sure t he power adapt or or cord is connect ed t o t he LTE Device and plugged in t o an
appropriat e power source. Make sure t he power source is t urned on.
Turn t he LTE Device off and on.
I f t he problem cont inues, cont act t he vendor.
One of t he LEDs does not behave as expect ed.
Make sure you underst and t he norm al behavior of t he LED. See Sect ion 1.6 on page 18.
Check t he hardware connect ions. See t he Quick St art Guide.
I nspect your cables for dam age. Cont act t he vendor t o replace any dam aged cables.
B222s User’s Guide
173
Chapter 26 Troubleshooting
Turn t he LTE Device off and on.
I f t he problem cont inues, cont act t he vendor.
26.3 LTE Device Access and Login
I forgot t he I P address for t he LTE Device.
The default I P address is 192.168.1.1.
I f you changed t he I P address and have forgot t en it , you m ight get t he I P address of t he LTE Device
by looking up t he I P address of t he default gat eway for your com put er. To do t his in m ost Windows
com put ers, click St a r t > Run , ent er cm d, and t hen ent er ipconfig. The I P address of t he D e fa ult
Ga t e w a y m ight be t he I P address of t he LTE Device ( it depends on t he net work) , so ent er t his I P
address in your I nt ernet browser.
I f t his does not work, you have t o reset t he device t o it s fact ory default s. See Sect ion 1.7 on page
20.
I forgot t he passwor d.
The default adm in password is 1 2 3 4 and t he default user password is 1 2 3 4 .
I f you can’t rem em ber t he password, you have t o reset t he device t o it s fact ory default s. See
Sect ion 1.7 on page 20.
I cannot see or access t he Login screen in t he web configurat or.
Make sure you are using t he correct I P address.
• The default I P address is 192.168.1.1.
• I f you changed t he I P address, use t he new I P address.
• I f you changed t he I P address and have forgot t en it , see t he t roubleshoot ing suggest ions for I
forgot t he I P address for t he LTE Device.
174
Check t he hardware connect ions, and m ake sure t he LEDs are behaving as expect ed. See t he Quick
St art Guide.
Make sure your I nt ernet browser does not block pop- up windows and has JavaScript and Java
enabled. See Appendix C on page 219.
B222s User’s Guide
Chapter 26 Troubleshooting
Reset t he device t o it s fact ory default s, and t ry t o access t he LTE Device wit h t he default I P
address. See Sect ion 1.7 on page 20.
I f t he problem cont inues, cont act t he net work adm inist rat or or vendor, or t ry one of t he advanced
suggest ions.
Adva n ce d Sugge st ions
• Try t o access t he LTE Device using anot her service, such as Telnet . I f you can access t he LTE
Device, check t he rem ot e m anagem ent set t ings and firewall rules t o find out why t he LTE Device
does not respond t o HTTP.
• I f your com put er is connect ed t o t he W AN port or is connect ed wirelessly, use a com put er t hat is
connect ed t o a ETH ERN ET port .
I can see t he Login screen, but I cannot log in t o t he LTE Device.
Make sure you have ent ered t he user nam e and password correct ly. The default user nam e is
a dm in . These fields are case- sensit ive, so m ake sure [ Caps Lock] is not on.
You cannot log in t o t he web configurat or while som eone is using Telnet t o access t he LTE Device.
Log out of t he LTE Device in t he ot her session, or ask t he person who is logged in t o log out .
Turn t he LTE Device off and on.
I f t his does not work, you have t o reset t he device t o it s fact ory default s. See Sect ion 26.2 on page
173.
26.4 Internet Access
I cannot access t he I nt er net .
Check t he hardware connect ions, and m ake sure t he LEDs are behaving as expect ed. See t he Quick
St art Guide and Sect ion 1.6 on page 18.
Make sure you ent ered your service provider ’s LTE APN inform at ion correct ly.
I f you are t rying t o access t he I nt ernet wirelessly, m ake sure t he wireless set t ings in t he wireless
client are t he sam e as t he set t ings in t he AP.
I f you are t rying t o access t he I nt ernet wirelessly, m ake sure you have enabled t he wireless LAN by
t he W PS/ W LAN but t on or t he N e t w or k Se t t in g > W ir e le ss > Ge n e r a l screen.
Disconnect all t he cables from your device, and follow t he direct ions in t he Quick St art Guide again.
I f t he problem cont inues, cont act your I SP.
B222s User’s Guide
175
Chapter 26 Troubleshooting
I cannot access t he I nt ernet anym ore. I had access t o t he I nt ernet ( wit h t he LTE Device) , but
m y I nt ernet connect ion is not available anym ore.
Check t he hardware connect ions, and m ake sure t he LEDs are behaving as expect ed. See t he Quick
St art Guide and Sect ion 1.6 on page 18.
Turn t he LTE Device off and on.
I f t he problem cont inues, cont act your I SP.
The I nt ernet connect ion is slow or int erm it t ent .
There m ight be a lot of t raffic on t he net work. Look at t he LEDs, and check Sect ion 1.6 on page 18.
I f t he LTE Device is sending or receiving a lot of inform at ion, t ry closing som e program s t hat use
t he I nt ernet , especially peer- t o- peer applicat ions.
Turn t he LTE Device off and on.
I f t he problem cont inues, cont act t he net work adm inist rat or or vendor, or t ry one of t he advanced
suggest ions.
Adva n ce d Sugge st ions
• Check t he set t ings for QoS. I f it is disabled, you m ight consider act ivat ing it . I f it is enabled, you
m ight consider raising or lowering t he priorit y for som e applicat ions.
26.5 Wireless Internet Access
What fact ors m ay cause int erm it t ent or unst abled wireless connect ion? How can I solve t his
problem ?
The following fact ors m ay cause int erference:
• Obst acles: walls, ceilings, furnit ure, and so on.
• Building Mat erials: m et al doors, alum inum st uds.
• Elect rical devices: m icrowaves, m onit ors, elect ric m ot ors, cordless phones, and ot her wireless
devices.
To opt im ize t he speed and qualit y of your wireless connect ion, you can:
• Move your wireless device closer t o t he AP if t he signal st rengt h is low.
176
B222s User’s Guide
Chapter 26 Troubleshooting
• Reduce wireless int erference t hat m ay be caused by ot her wireless net works or surrounding
wireless elect ronics such as cordless phones.
• Place t he AP where t here are m inim um obst acles ( such as walls and ceilings) bet ween t he AP and
t he wireless client .
• Reduce t he num ber of wireless client s connect ing t o t he sam e AP sim ult aneously, or add
addit ional APs if necessary.
• Try closing som e program s t hat use t he I nt ernet , especially peer- t o- peer applicat ions. I f t he
wireless client is sending or receiving a lot of inform at ion, it m ay have t oo m any program s open
t hat use t he I nt ernet .
What wireless securit y m odes does m y LTE Device support ?
Wireless securit y is vit al t o your net work. I t prot ect s com m unicat ions bet ween wireless st at ions,
access point s and t he wired net work.
The available securit y m odes in your device are as follows:
• W PA2 - PSK: ( recom m ended) This uses a pre- shared key wit h t he WPA2 st andard.
• W PA- PSK: This has t he device use eit her WPA- PSK or WPA2- PSK depending on which securit y
m ode t he wireless client uses.
• W PA2 : WPA2 ( I EEE 802.11i) is a wireless securit y st andard t hat defines st ronger encrypt ion,
aut hent icat ion and key m anagem ent t han WPA. I t requires t he use of a RADI US server and is
m ost ly used in business net works.
• W PA: Wi- Fi Prot ect ed Access ( WPA) is a subset of t he I EEE 802.11i st andard. I t requires t he use
of a RADI US server and is m ost ly used in business net works.
• W EP: Wired Equivalent Privacy ( WEP) encrypt ion scram bles t he dat a t ransm it t ed bet ween t he
wireless st at ions and t he access point s t o keep net work com m unicat ions privat e.
26.6 Phone Calls and VoIP
The t elephone port won’t work or t he t elephone lacks a dial t one.
Check t he t elephone connect ion and t elephone wire.
I can access t he I nt ernet , but cannot m ake VoI P calls.
The PH ON E light should com e on. Make sure t hat your t elephone is connect ed t o t he PH ON E port .
You can also check t he VoI P st at us in t he Syst e m I nfo screen.
B222s User’s Guide
177
Chapter 26 Troubleshooting
I f t he VoI P set t ings are correct , use speed dial t o m ake peer- t o- peer calls. I f you can m ake a call
using speed dial, t here m ay be som et hing wrong wit h t he SI P server, cont act your VoI P service
provider.
26.7 UPnP
When using UPnP and t he LTE Device reboot s, m y com put er cannot det ect UPnP and refresh
M y N e t w or k Pla ce s > Loca l N e t w or k .
Disconnect t he Et hernet cable from t he LTE Device’s LAN port or from your com put er.
Re- connect t he Et hernet cable.
The Loca l Ar e a Con n e ct ion icon for UPnP disappears in t he screen.
Rest art your com put er.
I cannot open special applicat ions such as whit e board, file t ransfer and video when I use t he
MSN m essenger.
178
Wait m ore t han t hree m inut es.
Rest art t he applicat ions.
B222s User’s Guide
A PPENDIX
IP Addresses and Subnetting
This appendix int roduces I P addresses and subnet m asks.
I P addresses ident ify individual devices on a net work. Every net working device ( such as com put ers,
servers, rout ers, and print ers) needs an I P address t o com m unicat e across t he net work. These
net working devices are also known as host s.
Subnet m asks det erm ine t he m axim um num ber of possible host s on a net work. You can also use
subnet m asks t o divide one net work int o m ult iple sub- net works.
Introduction to IP Addresses
One part of t he I P address is t he net work num ber, and t he ot her part is t he host I D. I n t he sam e
way t hat houses on a st reet share a com m on st reet nam e, t he host s on a net work share a com m on
net work num ber. Sim ilarly, as each house has it s own house num ber, each host on t he net work has
it s own unique ident ifying num ber - t he host I D. Rout ers use t he net work num ber t o send packet s
t o t he correct net work, while t he host I D det erm ines t o which host on t he net work t he packet s are
delivered.
Structure
An I P address is m ade up of four part s, writ t en in dot t ed decim al not at ion ( for exam ple,
192.168.1.1) . Each of t hese four part s is known as an oct et . An oct et is an eight- digit binary
num ber ( for exam ple 11000000, which is 192 in decim al not at ion) .
Therefore, each oct et has a possible range of 00000000 t o 11111111 in binary, or 0 t o 255 in
decim al.
B222s User’s Guide
179
Appendix A IP Addresses and Subnetting
The following figure shows an exam ple I P address in which t he first t hree oct et s ( 192.168.1) are
t he net work num ber, and t he fourt h oct et ( 16) is t he host I D.
Figure 101 Net work Num ber and Host I D
How m uch of t he I P address is t he net work num ber and how m uch is t he host I D varies according
t o t he subnet m ask.
Subnet Masks
A subnet m ask is used t o det erm ine which bit s are part of t he net work num ber, and which bit s are
part of t he host I D ( using a logical AND operat ion) . The t erm “ subnet ” is short for “ sub- net work”.
A subnet m ask has 32 bit s. I f a bit in t he subnet m ask is a “ 1” t hen t he corresponding bit in t he I P
address is part of t he net work num ber. I f a bit in t he subnet m ask is “ 0” t hen t he corresponding bit
in t he I P address is part of t he host I D.
The following exam ple shows a subnet m ask ident ifying t he net work num ber ( in bold t ext ) and host
I D of an I P address ( 192.168.1.2 in decim al) .
Table 74 I P Address Net work Num ber and Host I D Exam ple
1ST OCTET: 2ND
OCTET:
(192)
(168)
3RD
OCTET:
4TH OCTET
(1)
(2)
I P Address ( Binary)
11000000
10101000
00000001
00000010
Subnet Mask ( Binary)
11111111
11111111
11111111
00000000
Net work Num ber
11000000
10101000
00000001
Host I D
00000010
By convent ion, subnet m asks always consist of a cont inuous sequence of ones beginning from t he
left m ost bit of t he m ask, followed by a cont inuous sequence of zeros, for a t ot al num ber of 32 bit s.
180
B222s User’s Guide
Appendix A IP Addresses and Subnetting
Subnet m asks can be referred t o by t he size of t he net work num ber part ( t he bit s wit h a “ 1” value) .
For exam ple, an “ 8- bit m ask” m eans t hat t he first 8 bit s of t he m ask are ones and t he rem aining 24
bit s are zeroes.
Subnet m asks are expressed in dot t ed decim al not at ion j ust like I P addresses. The following
exam ples show t he binary and decim al not at ion for 8- bit , 16- bit , 24- bit and 29- bit subnet m asks.
Table 75 Subnet Masks
BINARY
DECIMAL
1ST OCTET
2ND OCTET 3RD OCTET
4TH OCTET
8- bit m ask
11111111
00000000
00000000
00000000
255.0.0.0
16- bit m ask
11111111
11111111
00000000
00000000
255.255.0.0
24- bit m ask
11111111
11111111
11111111
00000000
255.255.255.0
29- bit m ask
11111111
11111111
11111111
11111000
255.255.255.248
Network Size
The size of t he net work num ber det erm ines t he m axim um num ber of possible host s you can have
on your net work. The larger t he num ber of net work num ber bit s, t he sm aller t he num ber of
rem aining host I D bit s.
An I P address wit h host I Ds of all zeros is t he I P address of t he net work ( 192.168.1.0 wit h a 24- bit
subnet m ask, for exam ple) . An I P address wit h host I Ds of all ones is t he broadcast address for t hat
net work ( 192.168.1.255 wit h a 24- bit subnet m ask, for exam ple) .
As t hese t wo I P addresses cannot be used for individual host s, calculat e t he m axim um num ber of
possible host s in a net work as follows:
Table 76 Maxim um Host Num bers
MAXIMUM NUMBER OF
HOSTS
SUBNET MASK
HOST ID SIZE
8 bit s
255.0.0.0
24 bit s
2 24 – 2
16777214
16 bit s
255.255.0.0
16 bit s
2 16 – 2
65534
24 bit s
255.255.255.0
8 bit s
28 – 2
254
29 bit s
255.255.255.248
3 bit s
2 – 2
Notation
Since t he m ask is always a cont inuous num ber of ones beginning from t he left , followed by a
cont inuous num ber of zeros for t he rem ainder of t he 32 bit m ask, you can sim ply specify t he
num ber of ones inst ead of writ ing t he value of each oct et . This is usually specified by writ ing a “ / ”
followed by t he num ber of bit s in t he m ask aft er t he address.
For exam ple, 192.1.1.0 / 25 is equivalent t o saying 192.1.1.0 wit h subnet m ask 255.255.255.128.
B222s User’s Guide
181
Appendix A IP Addresses and Subnetting
The following t able shows som e possible subnet m asks using bot h not at ions.
Table 77 Alt ernat ive Subnet Mask Not at ion
SUBNET MASK
ALTERNATIVE
NOTATION
LAST OCTET
(BINARY)
LAST OCTET
(DECIMAL)
255.255.255.0
/ 24
0000 0000
255.255.255.128
/ 25
1000 0000
128
255.255.255.192
/ 26
1100 0000
192
255.255.255.224
/ 27
1110 0000
224
255.255.255.240
/ 28
1111 0000
240
255.255.255.248
/ 29
1111 1000
248
255.255.255.252
/ 30
1111 1100
252
Subnetting
You can use subnet t ing t o divide one net work int o m ult iple sub- net works. I n t he following exam ple
a net work adm inist rat or creat es t wo sub- net works t o isolat e a group of servers from t he rest of t he
com pany net work for securit y reasons.
I n t his exam ple, t he com pany net work address is 192.168.1.0. The first t hree oct et s of t he address
( 192.168.1) are t he net work num ber, and t he rem aining oct et is t he host I D, allowing a m axim um
of 2 8 – 2 or 254 possible host s.
The following figure shows t he com pany net work before subnet t ing.
Figure 102 Subnet t ing Exam ple: Before Subnet t ing
You can “ borrow” one of t he host I D bit s t o divide t he net work 192.168.1.0 int o t wo separat e subnet works. The subnet m ask is now 25 bit s ( 255.255.255.128 or / 25) .
The “ borrowed” host I D bit can have a value of eit her 0 or 1, allowing t wo subnet s; 192.168.1.0 / 25
and 192.168.1.128 / 25.
182
B222s User’s Guide
Appendix A IP Addresses and Subnetting
The following figure shows t he com pany net work aft er subnet t ing. There are now t wo subnet works, A and B.
Figure 103 Subnet t ing Exam ple: Aft er Subnet t ing
I n a 25- bit subnet t he host I D has 7 bit s, so each sub- net work has a m axim um of 2 7 – 2 or 126
possible host s ( a host I D of all zeroes is t he subnet ’s address it self, all ones is t he subnet ’s
broadcast address) .
192.168.1.0 wit h m ask 255.255.255.128 is subnet A it self, and 192.168.1.127 wit h m ask
255.255.255.128 is it s broadcast address. Therefore, t he lowest I P address t hat can be assigned t o
an act ual host for subnet A is 192.168.1.1 and t he highest is 192.168.1.126.
Sim ilarly, t he host I D range for subnet B is 192.168.1.129 t o 192.168.1.254.
Example: Four Subnets
The previous exam ple illust rat ed using a 25- bit subnet m ask t o divide a 24- bit address int o t wo
subnet s. Sim ilarly, t o divide a 24- bit address int o four subnet s, you need t o “ borrow” t wo host I D
bit s t o give four possible com binat ions ( 00, 01, 10 and 11) . The subnet m ask is 26 bit s
( 11111111.11111111.11111111.1 1 000000) or 255.255.255.192.
Each subnet cont ains 6 host I D bit s, giving 2 6 - 2 or 62 host s for each subnet ( a host I D of all
zeroes is t he subnet it self, all ones is t he subnet ’s broadcast address) .
Table 78 Subnet 1
IP/SUBNET MASK
NETWORK NUMBER
LAST OCTET BIT
VALUE
I P Address ( Decim al)
192.168.1.
I P Address ( Binary)
11000000.10101000.00000001.
0 0 000000
Subnet Mask ( Binary)
11111111.11111111.11111111.
1 1 000000
B222s User’s Guide
183
Appendix A IP Addresses and Subnetting
Table 78 Subnet 1 ( cont inued)
IP/SUBNET MASK
NETWORK NUMBER
Subnet Address:
192.168.1.0
Lowest Host I D: 192.168.1.1
Broadcast Address:
192.168.1.63
Highest Host I D: 192.168.1.62
LAST OCTET BIT
VALUE
Table 79 Subnet 2
IP/SUBNET MASK
NETWORK NUMBER
LAST OCTET BIT
VALUE
I P Address
192.168.1.
64
I P Address ( Binary)
11000000.10101000.00000001.
0 1 000000
Subnet Mask ( Binary)
11111111.11111111.11111111.
1 1 000000
Subnet Address:
192.168.1.64
Lowest Host I D: 192.168.1.65
Broadcast Address:
192.168.1.127
Highest Host I D: 192.168.1.126
Table 80 Subnet 3
IP/SUBNET MASK
NETWORK NUMBER
LAST OCTET BIT
VALUE
I P Address
192.168.1.
128
I P Address ( Binary)
11000000.10101000.00000001.
1 0 000000
Subnet Mask ( Binary)
11111111.11111111.11111111.
1 1 000000
Subnet Address:
192.168.1.128
Lowest Host I D: 192.168.1.129
Broadcast Address:
192.168.1.191
Highest Host I D: 192.168.1.190
Table 81 Subnet 4
IP/SUBNET MASK
NETWORK NUMBER
LAST OCTET BIT
VALUE
I P Address
192.168.1.
192
I P Address ( Binary)
11000000.10101000.00000001.
1 1 000000
Subnet Mask ( Binary)
11111111.11111111.11111111.
1 1 000000
Subnet Address:
192.168.1.192
Lowest Host I D: 192.168.1.193
Broadcast Address:
192.168.1.255
Highest Host I D: 192.168.1.254
Example: Eight Subnets
Sim ilarly, use a 27- bit m ask t o creat e eight subnet s ( 000, 001, 010, 011, 100, 101, 110 and 111) .
184
B222s User’s Guide
Appendix A IP Addresses and Subnetting
The following t able shows I P address last oct et values for each subnet .
Table 82 Eight Subnet s
SUBNET
SUBNET
ADDRESS
FIRST ADDRESS
LAST
ADDRESS
BROADCAST
ADDRESS
30
31
32
33
62
63
64
65
94
95
96
97
126
127
128
129
158
159
160
161
190
191
192
193
222
223
224
225
254
255
Subnet Planning
The following t able is a sum m ary for subnet planning on a net work wit h a 24- bit net work num ber.
Table 83 24- bit Net work Num ber Subnet Planning
NO. “BORROWED”
HOST BITS
SUBNET MASK
NO. SUBNETS
NO. HOSTS PER
SUBNET
255.255.255.128 ( / 25)
126
255.255.255.192 ( / 26)
62
255.255.255.224 ( / 27)
30
255.255.255.240 ( / 28)
16
14
255.255.255.248 ( / 29)
32
255.255.255.252 ( / 30)
64
255.255.255.254 ( / 31)
128
The following t able is a sum m ary for subnet planning on a net work wit h a 16- bit net work num ber.
Table 84 16- bit Net work Num ber Subnet Planning
NO. “BORROWED”
HOST BITS
SUBNET MASK
NO. SUBNETS
NO. HOSTS PER
SUBNET
255.255.128.0 ( / 17)
32766
255.255.192.0 ( / 18)
16382
255.255.224.0 ( / 19)
8190
255.255.240.0 ( / 20)
16
4094
255.255.248.0 ( / 21)
32
2046
255.255.252.0 ( / 22)
64
1022
255.255.254.0 ( / 23)
128
510
255.255.255.0 ( / 24)
256
254
255.255.255.128 ( / 25)
512
126
10
255.255.255.192 ( / 26)
1024
62
11
255.255.255.224 ( / 27)
2048
30
12
255.255.255.240 ( / 28)
4096
14
B222s User’s Guide
185
Appendix A IP Addresses and Subnetting
Table 84 16- bit Net work Num ber Subnet Planning ( cont inued)
NO. “BORROWED”
HOST BITS
SUBNET MASK
NO. SUBNETS
NO. HOSTS PER
SUBNET
13
255.255.255.248 ( / 29)
8192
14
255.255.255.252 ( / 30)
16384
15
255.255.255.254 ( / 31)
32768
Configuring IP Addresses
Where you obt ain your net work num ber depends on your part icular sit uat ion. I f t he I SP or your
net work adm inist rat or assigns you a block of regist ered I P addresses, follow t heir inst ruct ions in
select ing t he I P addresses and t he subnet m ask.
I f t he I SP did not explicit ly give you an I P net work num ber, t hen m ost likely you have a single user
account and t he I SP will assign you a dynam ic I P address when t he connect ion is est ablished. I f t his
is t he case, it is recom m ended t hat you select a net work num ber from 192.168.0.0 t o
192.168.255.0. The I nt ernet Assigned Num ber Aut horit y ( I ANA) reserved t his block of addresses
specifically for privat e use; please do not use any ot her num ber unless you are t old ot herwise. You
m ust also enable Net work Address Translat ion ( NAT) on t he LTE Device.
Once you have decided on t he net work num ber, pick an I P address for your LTE Device t hat is easy
t o rem em ber ( for inst ance, 192.168.1.1) but m ake sure t hat no ot her device on your net work is
using t hat I P address.
The subnet m ask specifies t he net work num ber port ion of an I P address. Your LTE Device will
com put e t he subnet m ask aut om at ically based on t he I P address t hat you ent ered. You don't need
t o change t he subnet m ask com put ed by t he LTE Device unless you are inst ruct ed t o do ot herwise.
Private IP Addresses
Every m achine on t he I nt ernet m ust have a unique address. I f your net works are isolat ed from t he
I nt ernet ( running only bet ween t wo branch offices, for exam ple) you can assign any I P addresses t o
t he host s wit hout problem s. However, t he I nt ernet Assigned Num bers Aut horit y ( I ANA) has
reserved t he following t hree blocks of I P addresses specifically for privat e net works:
• 10.0.0.0
• 172.16.0.0
— 10.255.255.255
— 172.31.255.255
• 192.168.0.0 — 192.168.255.255
You can obt ain your I P address from t he I ANA, from an I SP, or it can be assigned from a privat e
net work. I f you belong t o a sm all organizat ion and your I nt ernet access is t hrough an I SP, t he I SP
can provide you wit h t he I nt ernet addresses for your local net works. On t he ot her hand, if you are
part of a m uch larger organizat ion, you should consult your net work adm inist rat or for t he
appropriat e I P addresses.
Regardless of your part icular sit uat ion, do not creat e an arbit rary I P address; always follow t he
guidelines above. For m ore inform at ion on address assignm ent , please refer t o RFC 1597, Address
Allocat ion for Privat e I nt ernet s and RFC 1466, Guidelines for Managem ent of I P Address Space.
186
B222s User’s Guide
Appendix A IP Addresses and Subnetting
IP Address Conflicts
Each device on a net work m ust have a unique I P address. Devices wit h duplicat e I P addresses on
t he sam e net work will not be able t o access t he I nt ernet or ot her resources. The devices m ay also
be unreachable t hrough t he net work.
Conflicting Computer IP Addresses Example
More t han one device can not use t he sam e I P address. I n t he following exam ple com put er A has a
st at ic ( or fixed) I P address t hat is t he sam e as t he I P address t hat a DHCP server assigns t o
com put er B which is a DHCP client . Neit her can access t he I nt ernet . This problem can be solved by
assigning a different st at ic I P address t o com put er A or set t ing com put er A t o obt ain an I P address
aut om at ically.
Figure 104 Conflict ing Com put er I P Addresses Exam ple
Conflicting Router IP Addresses Example
Since a rout er connect s different net works, it m ust have int erfaces using different net work
num bers. For exam ple, if a rout er is set bet ween a LAN and t he I nt ernet ( WAN) , t he rout er ’s LAN
and WAN addresses m ust be on different subnet s. I n t he following exam ple, t he LAN and WAN are
on t he sam e subnet . The LAN com put ers cannot access t he I nt ernet because t he rout er cannot
rout e bet ween net works.
Figure 105 Conflict ing Com put er I P Addresses Exam ple
B222s User’s Guide
187
Appendix A IP Addresses and Subnetting
Conflicting Computer and Router IP Addresses Example
More t han one device can not use t he sam e I P address. I n t he following exam ple, t he com put er and
t he rout er ’s LAN port bot h use 192.168.1.1 as t he I P address. The com put er cannot access t he
I nt ernet . This problem can be solved by assigning a different I P address t o t he com put er or t he
rout er ’s LAN port .
Figure 106 Conflict ing Com put er and Rout er I P Addresses Exam ple
188
B222s User’s Guide
A PPENDIX
Setting Up Your Computer’s IP Address
Not e: Your specific LTE Device m ay not support all of t he operat ing syst em s described in
t his appendix. See t he product specificat ions for m ore inform at ion about which
operat ing syst em s are support ed.
This appendix shows you how t o configure t he I P set t ings on your com put er in order for it t o be
able t o com m unicat e wit h t he ot her devices on your net work. Windows Vist a/ XP/ 2000, Mac OS 9/
OS X, and all versions of UNI X/ LI NUX include t he soft ware com ponent s you need t o use TCP/ I P on
your com put er.
I f you m anually assign I P inform at ion inst ead of using a dynam ic I P, m ake sure t hat your net work’s
com put ers have I P addresses t hat place t hem in t he sam e subnet .
I n t his appendix, you can set up an I P address for:
• Windows XP/ NT/ 2000 on page 189
• Windows Vist a on page 193
• Windows 7 on page 197
• Mac OS X: 10.3 and 10.4 on page 201
• Mac OS X: 10.5 on page 204
• Linux: Ubunt u 8 ( GNOME) on page 208
• Linux: openSUSE 10.3 ( KDE) on page 212
Windows XP/NT/2000
The following exam ple uses t he default Windows XP display t hem e but can also apply t o Windows
2000 and Windows NT.
B222s User’s Guide
189
Appendix B Setting Up Your Computer’s IP Address
Click St a r t > Con t r ol Pa n e l.
Figure 107 Windows XP: St art Menu
I n t he Cont r ol Pa n e l, click t he N e t w or k Con ne ct ion s icon.
Figure 108 Windows XP: Cont rol Panel
190
B222s User’s Guide
Appendix B Setting Up Your Computer’s IP Address
Right- click Loca l Ar e a Conne ct ion and t hen select Pr ope r t ie s.
Figure 109 Windows XP: Cont rol Panel > Net work Connect ions > Propert ies
On t he Ge n e r a l t ab, select I n t e r n e t Pr ot ocol ( TCP/ I P) and t hen click Pr ope r t ie s.
Figure 110 Windows XP: Local Area Connect ion Propert ies
B222s User’s Guide
191
Appendix B Setting Up Your Computer’s IP Address
The I nt e r ne t Pr ot ocol TCP/ I P Pr ope r t ie s window opens.
Figure 111 Windows XP: I nt ernet Prot ocol ( TCP/ I P) Propert ies
Select Obt a in a n I P a ddr e ss a ut om a t ica lly if your net work adm inist rat or or I SP assigns your I P
address dynam ically.
Select Use t h e follow in g I P Addr e ss and fill in t he I P a ddr e ss, Subn e t m a sk , and D e fa ult
ga t e w a y fields if you have a st at ic I P address t hat was assigned t o you by your net work
adm inist rat or or I SP. You m ay also have t o ent er a Pr e fe r r e d D N S se r ve r and an Alt e r na t e D N S
se r ve r , if t hat inform at ion was provided.
Click OK t o close t he I n t e r ne t Pr ot ocol ( TCP/ I P) Pr ope r t ie s window.
Click OK t o close t he Loca l Ar e a Con n e ct ion Pr ope r t ie s window.
Verifying Settings
Click St a r t > All Pr ogr a m s > Acce ssor ie s > Com m a nd Pr om pt .
I n t he Com m a nd Pr om pt window, t ype " ipconfig" and t hen press [ ENTER] .
You can also go t o St a r t > Con t r ol Pa n e l > N e t w or k Con n e ct ions, right- click a net work
connect ion, click St a t u s and t hen click t he Suppor t t ab t o view your I P address and connect ion
inform at ion.
192
B222s User’s Guide
Appendix B Setting Up Your Computer’s IP Address
Windows Vista
This sect ion shows screens from Windows Vist a Professional.
Click St a r t > Cont r ol Pa n e l.
Figure 112 Windows Vist a: St art Menu
I n t he Cont r ol Pa n e l, click t he N e t w or k a nd I n t e r n e t icon.
Figure 113 Windows Vist a: Cont rol Panel
Click t he N e t w or k a n d Sh a r ing Ce n t e r icon.
Figure 114 Windows Vist a: Net work And I nt ernet
B222s User’s Guide
193
Appendix B Setting Up Your Computer’s IP Address
Click M a n a ge n e t w or k con n e ct ions.
Figure 115 Windows Vist a: Net work and Sharing Cent er
Right- click Loca l Ar e a Conne ct ion and t hen select Pr ope r t ie s.
Figure 116 Windows Vist a: Net work and Sharing Cent er
Not e: During t his procedure, click Con t inu e whenever Windows displays a screen saying
t hat it needs your perm ission t o cont inue.
194
B222s User’s Guide
Appendix B Setting Up Your Computer’s IP Address
Select I n t e r n e t Pr ot ocol Ve r sion 4 ( TCP/ I Pv4 ) and t hen select Pr ope r t ie s.
Figure 117 Windows Vist a: Local Area Connect ion Propert ies
B222s User’s Guide
195
Appendix B Setting Up Your Computer’s IP Address
The I nt e r ne t Pr ot ocol Ve r sion 4 ( TCP/ I Pv4 ) Pr ope r t ie s window opens.
Figure 118 Windows Vist a: I nt ernet Prot ocol Version 4 ( TCP/ I Pv4) Propert ies
Select Obt a in a n I P a ddr e ss a ut om a t ica lly if your net work adm inist rat or or I SP assigns your I P
address dynam ically.
Select Use t h e follow in g I P Addr e ss and fill in t he I P a ddr e ss, Subn e t m a sk , and D e fa ult
ga t e w a y fields if you have a st at ic I P address t hat was assigned t o you by your net work
adm inist rat or or I SP. You m ay also have t o ent er a Pr e fe r r e d D N S se r ve r and an Alt e r na t e D N S
se r ve r , if t hat inform at ion was provided.Click Adva nce d.
Click OK t o close t he I n t e r ne t Pr ot ocol ( TCP/ I P) Pr ope r t ie s window.
10 Click OK t o close t he Loca l Ar e a Con n e ct ion Pr ope r t ie s window.
Verifying Settings
Click St a r t > All Pr ogr a m s > Acce ssor ie s > Com m a nd Pr om pt .
I n t he Com m a nd Pr om pt window, t ype " ipconfig" and t hen press [ ENTER] .
You can also go t o St a r t > Con t r ol Pa n e l > N e t w or k Con n e ct ions, right- click a net work
connect ion, click St a t u s and t hen click t he Suppor t t ab t o view your I P address and connect ion
inform at ion.
196
B222s User’s Guide
Appendix B Setting Up Your Computer’s IP Address
Windows 7
This sect ion shows screens from Windows 7 Ent erprise.
Click St a r t > Cont r ol Pa n e l.
Figure 119 Windows 7: St art Menu
I n t he Cont r ol Pa n e l, click Vie w ne t w or k st a t us a nd t a sk s under t he N e t w or k a n d I n t e r n e t
cat egory.
Figure 120 Windows 7: Cont rol Panel
Click Ch a n ge a da pt e r se t t in gs.
Figure 121 Windows 7: Net work And Sharing Cent er
B222s User’s Guide
197
Appendix B Setting Up Your Computer’s IP Address
Double click Loca l Ar e a Conne ct ion and t hen select Pr ope r t ie s.
Figure 122 Windows 7: Local Area Connect ion St at us
Not e: During t his procedure, click Con t inu e whenever Windows displays a screen saying
t hat it needs your perm ission t o cont inue.
198
B222s User’s Guide
Appendix B Setting Up Your Computer’s IP Address
Select I n t e r n e t Pr ot ocol Ve r sion 4 ( TCP/ I Pv4 ) and t hen select Pr ope r t ie s.
Figure 123 Windows 7: Local Area Connect ion Propert ies
B222s User’s Guide
199
Appendix B Setting Up Your Computer’s IP Address
The I nt e r ne t Pr ot ocol Ve r sion 4 ( TCP/ I Pv4 ) Pr ope r t ie s window opens.
Figure 124 Windows 7: I nt ernet Prot ocol Version 4 ( TCP/ I Pv4) Propert ies
Select Obt a in a n I P a ddr e ss a ut om a t ica lly if your net work adm inist rat or or I SP assigns your I P
address dynam ically.
Select Use t h e follow in g I P Addr e ss and fill in t he I P a ddr e ss, Subn e t m a sk , and D e fa ult
ga t e w a y fields if you have a st at ic I P address t hat was assigned t o you by your net work
adm inist rat or or I SP. You m ay also have t o ent er a Pr e fe r r e d D N S se r ve r and an Alt e r na t e D N S
se r ve r , if t hat inform at ion was provided. Click Adva nce d if you want t o configure advanced
set t ings for I P, DNS and WI NS.
Click OK t o close t he I n t e r ne t Pr ot ocol ( TCP/ I P) Pr ope r t ie s window.
Click OK t o close t he Loca l Ar e a Con n e ct ion Pr ope r t ie s window.
Verifying Settings
200
Click St a r t > All Pr ogr a m s > Acce ssor ie s > Com m a nd Pr om pt .
I n t he Com m a nd Pr om pt window, t ype " ipconfig" and t hen press [ ENTER] .
B222s User’s Guide
Appendix B Setting Up Your Computer’s IP Address
The I P set t ings are displayed as follows.
Figure 125 Windows 7: I nt ernet Prot ocol Version 4 ( TCP/ I Pv4) Propert ies
Mac OS X: 10.3 and 10.4
The screens in t his sect ion are from Mac OS X 10.4 but can also apply t o 10.3.
Click Apple > Syst e m Pr e fe r e nce s.
Figure 126 Mac OS X 10.4: Apple Menu
B222s User’s Guide
201
Appendix B Setting Up Your Computer’s IP Address
I n t he Syst e m Pr e fe r e nce s window, click t he N e t w or k icon.
Figure 127 Mac OS X 10.4: Syst em Preferences
When t he N e t w or k preferences pane opens, select Built - in Et he r ne t from t he net work
connect ion t ype list , and t hen click Configu r e .
Figure 128 Mac OS X 10.4: Net work Preferences
202
B222s User’s Guide
Appendix B Setting Up Your Computer’s IP Address
For dynam ically assigned set t ings, select Usin g D H CP from t he Configu r e I Pv4 list in t he TCP/ I P
t ab.
Figure 129 Mac OS X 10.4: Net work Preferences > TCP/ I P Tab.
For st at ically assigned set t ings, do t he following:
• From t he Configu r e I Pv4 list , select M a nua lly.
• I n t he I P Addr e ss field, t ype your I P address.
• I n t he Subn e t M a sk field, t ype your subnet m ask.
B222s User’s Guide
203
Appendix B Setting Up Your Computer’s IP Address
• I n t he Rou t e r field, t ype t he I P address of your device.
Figure 130 Mac OS X 10.4: Net work Preferences > Et hernet
Click Apply N ow and close t he window.
Verifying Settings
Check your TCP/ I P propert ies by clicking Applica t ions > Ut ilit ie s > N e t w or k Ut ilit ie s, and t hen
select ing t he appropriat e N e t w or k I nt e r fa ce from t he I n fo t ab.
Figure 131 Mac OS X 10.4: Net work Ut ilit y
Mac OS X: 10.5
The screens in t his sect ion are from Mac OS X 10.5.
204
B222s User’s Guide
Appendix B Setting Up Your Computer’s IP Address
Click Apple > Syst e m Pr e fe r e nce s.
Figure 132 Mac OS X 10.5: Apple Menu
I n Syst e m Pr e fe r e n ce s, click t he N e t w or k icon.
Figure 133 Mac OS X 10.5: Syst em s Preferences
B222s User’s Guide
205
Appendix B Setting Up Your Computer’s IP Address
When t he N e t w or k preferences pane opens, select Et he r ne t from t he list of available connect ion
t ypes.
Figure 134 Mac OS X 10.5: Net work Preferences > Et hernet
From t he Configu r e list , select Usin g D H CP for dynam ically assigned set t ings.
For st at ically assigned set t ings, do t he following:
• From t he Configu r e list , select M a nua lly.
• I n t he I P Addr e ss field, ent er your I P address.
• I n t he Subn e t M a sk field, ent er your subnet m ask.
206
B222s User’s Guide
Appendix B Setting Up Your Computer’s IP Address
• I n t he Rou t e r field, ent er t he I P address of your LTE Device.
Figure 135 Mac OS X 10.5: Net work Preferences > Et hernet
Click Apply and close t he window.
B222s User’s Guide
207
Appendix B Setting Up Your Computer’s IP Address
Verifying Settings
Check your TCP/ I P propert ies by clicking Applica t ions > Ut ilit ie s > N e t w or k Ut ilit ie s, and t hen
select ing t he appropriat e N e t w or k int e r fa ce from t he I nfo t ab.
Figure 136 Mac OS X 10.5: Net work Ut ilit y
Linux: Ubuntu 8 (GNOME)
This sect ion shows you how t o configure your com put er ’s TCP/ I P set t ings in t he GNU Obj ect Model
Environm ent ( GNOME) using t he Ubunt u 8 Linux dist ribut ion. The procedure, screens and file
locat ions m ay vary depending on your specific dist ribut ion, release version, and individual
configurat ion. The following screens use t he default Ubunt u 8 inst allat ion.
Not e: Make sur e you are logged in as t he root adm inist rat or.
Follow t he st eps below t o configure your com put er I P address in GNOME:
Click Syst e m > Adm in ist r a t ion > N e t w or k .
Figure 137 Ubunt u 8: Syst em > Adm inist rat ion Menu
208
B222s User’s Guide
Appendix B Setting Up Your Computer’s IP Address
When t he N e t w or k Se t t in gs window opens, click Un lock t o open t he Aut he nt ica t e window. ( By
default , t he Unlock but t on is greyed out unt il clicked.) You cannot m ake changes t o your
configurat ion unless you first ent er your adm in password.
Figure 138 Ubunt u 8: Net work Set t ings > Connect ions
I n t he Aut he nt ica t e window, ent er your adm in account nam e and password t hen click t he
Aut he nt ica t e but t on.
Figure 139 Ubunt u 8: Adm inist rat or Account Aut hent icat ion
B222s User’s Guide
209
Appendix B Setting Up Your Computer’s IP Address
I n t he N e t w or k Se t t ings window, select t he connect ion t hat you want t o configure, t hen click
Pr ope r t ie s.
Figure 140 Ubunt u 8: Net work Set t ings > Connect ions
The Pr ope r t ie s dialog box opens.
Figure 141 Ubunt u 8: Net work Set t ings > Propert ies
• I n t he Configu r a t ion list , select Au t om a t ic Con figu r a t ion ( D H CP) if you have a dynam ic I P
address.
• I n t he Configur a t ion list , select St a t ic I P a ddr e ss if you have a st at ic I P address. Fill in t he
I P a ddr e ss, Subne t m a sk , and Ga t e w a y a ddr e ss fields.
210
Click OK t o save t he changes and close t he Pr ope r t ie s dialog box and ret urn t o t he N e t w or k
Se t t in gs screen.
B222s User’s Guide
Appendix B Setting Up Your Computer’s IP Address
I f you know your DNS server I P address( es) , click t he D N S t ab in t he N e t w or k Se t t in gs window
and t hen ent er t he DNS server inform at ion in t he fields provided.
Figure 142 Ubunt u 8: Net work Set t ings > DNS
Click t he Close but t on t o apply t he changes.
B222s User’s Guide
211
Appendix B Setting Up Your Computer’s IP Address
Verifying Settings
Check your TCP/ I P propert ies by clicking Syst e m > Adm in ist r a t ion > N e t w or k Tools, and t hen
select ing t he appropriat e N e t w or k de vice from t he D e vice s t ab. The I n t e r fa ce St a t ist ics
colum n shows dat a if your connect ion is working properly.
Figure 143 Ubunt u 8: Net work Tools
Linux: openSUSE 10.3 (KDE)
This sect ion shows you how t o configure your com put er ’s TCP/ I P set t ings in t he K Deskt op
Environm ent ( KDE) using t he openSUSE 10.3 Linux dist ribut ion. The procedure, screens and file
locat ions m ay vary depending on your specific dist ribut ion, release version, and individual
configurat ion. The following screens use t he default openSUSE 10.3 inst allat ion.
Not e: Make sur e you are logged in as t he root adm inist rat or.
Follow t he st eps below t o configure your com put er I P address in t he KDE:
212
B222s User’s Guide
Appendix B Setting Up Your Computer’s IP Address
Click K M e n u > Com pu t e r > Adm in ist r a t or Se t t in gs ( Ya ST) .
Figure 144 openSUSE 10.3: K Menu > Com put er Menu
When t he Run a s Root - KD E su dialog opens, ent er t he adm in password and click OK.
Figure 145 openSUSE 10.3: K Menu > Com put er Menu
B222s User’s Guide
213
Appendix B Setting Up Your Computer’s IP Address
When t he Ya ST Cont r ol Ce nt e r window opens, select N e t w or k D e vice s and t hen click t he
N e t w or k Ca r d icon.
Figure 146 openSUSE 10.3: YaST Cont rol Cent er
When t he N e t w or k Se t t in gs window opens, click t he Ove r vie w t ab, select t he appropriat e
connect ion N a m e from t he list , and t hen click t he Configu r e but t on.
Figure 147 openSUSE 10.3: Net work Set t ings
214
B222s User’s Guide
Appendix B Setting Up Your Computer’s IP Address
When t he N e t w or k Ca r d Se t u p window opens, click t he Addr e ss t ab
Figure 148 openSUSE 10.3: Net work Card Set up
Select D yna m ic Addr e ss ( D H CP) if you have a dynam ic I P address.
Select St a t ica lly a ssign e d I P Addr e ss if you have a st at ic I P address. Fill in t he I P a ddr e ss,
Subne t m a sk , and H ost na m e fields.
Click N e x t t o save t he changes and close t he N e t w or k Ca r d Se t up window.
B222s User’s Guide
215
Appendix B Setting Up Your Computer’s IP Address
I f you know your DNS server I P address( es) , click t he H ost na m e / D N S t ab in N e t w or k Se t t in gs
and t hen ent er t he DNS server inform at ion in t he fields provided.
Figure 149 openSUSE 10.3: Net work Set t ings
Click Finish t o save your set t ings and close t he window.
Verifying Settings
Click t he KN e t w or k M a na ge r icon on t he Ta sk ba r t o check your TCP/ I P propert ies. From t he
Opt ion s sub- m enu, select Sh ow Con n e ct ion I n for m a t ion.
Figure 150 openSUSE 10.3: KNet work Manager
216
B222s User’s Guide
Appendix B Setting Up Your Computer’s IP Address
When t he Conn e ct ion St a t u s - KN e t w or k M a n a ge r window opens, click t he St a t ist ics t a b t o
see if your connect ion is working properly.
Figure 151 openSUSE: Connect ion St at us - KNet work Manager
B222s User’s Guide
217
Appendix B Setting Up Your Computer’s IP Address
218
B222s User’s Guide
A PPENDIX
Pop-up Windows, JavaScript and Java
Permissions
I n order t o use t he web configurat or you need t o allow:
• Web browser pop- up windows from your device.
• JavaScript ( enabled by default ) .
• Java perm issions ( enabled by default ) .
Not e: I nt ernet Explorer 6 screens are used here. Screens for ot her I nt ernet Explorer
ver sions m ay vary.
Internet Explorer Pop-up Blockers
You m ay have t o disable pop- up blocking t o log int o your device.
Eit her disable pop- up blocking ( enabled by default in Windows XP SP ( Service Pack) 2) or allow
pop- up blocking and creat e an except ion for your device’s I P address.
Disable Pop-up Blockers
I n I nt ernet Explorer, select Tools, Pop- u p Block e r and t hen select Tur n Off Pop- up Block e r.
Figure 152 Pop- up Blocker
You can also check if pop- up blocking is disabled in t he Pop- u p Block e r sect ion in t he Pr iva cy t ab.
I n I nt ernet Explorer, select Tools, I nt e r ne t Opt ions, Pr iva cy.
B222s User’s Guide
219
Appendix C Pop-up Windows, JavaScript and Java Permissions
Clear t he Block pop- ups check box in t he Pop- u p Block e r sect ion of t he screen. This disables any
web pop- up blockers you m ay have enabled.
Figure 153 I nt ernet Opt ions: Privacy
Click Apply t o save t his set t ing.
Enable Pop-up Blockers with Exceptions
Alt ernat ively, if you only want t o allow pop- up windows from your device, see t he following st eps.
220
I n I nt ernet Explorer, select Tools, I nt e r ne t Opt ions and t hen t he Pr iva cy t ab.
B222s User’s Guide
Appendix C Pop-up Windows, JavaScript and Java Permissions
Select Se t t ings…t o open t he Pop- up Block e r Se t t ings screen.
Figure 154 I nt ernet Opt ions: Privacy
Type t he I P address of your device ( t he web page t hat you do not want t o have blocked) wit h t he
prefix “ ht t p: / / ”. For exam ple, ht t p: / / 192.168.167.1.
B222s User’s Guide
221
Appendix C Pop-up Windows, JavaScript and Java Permissions
Click Add t o m ove t he I P address t o t he list of Allow e d sit e s.
Figure 155 Pop- up Blocker Set t ings
Click Close t o ret urn t o t he Pr iva cy screen.
Click Apply t o save t his set t ing.
JavaScript
I f pages of t he web configurat or do not display properly in I nt ernet Explorer, check t hat JavaScript
are allowed.
222
B222s User’s Guide
Appendix C Pop-up Windows, JavaScript and Java Permissions
I n I nt ernet Explorer, click Tools, I n t e r ne t Opt ion s and t hen t he Se cur it y t ab.
Figure 156 I nt ernet Opt ions: Securit y
Click t he Cu st om Le ve l... but t on.
Scroll down t o Scr ipt ing.
Under Act ive scr ipt ing m ake sure t hat Ena ble is select ed ( t he default ) .
Under Scr ipt ing of Ja va a pple t s m ake sure t hat Ena ble is select ed ( t he default ) .
B222s User’s Guide
223
Appendix C Pop-up Windows, JavaScript and Java Permissions
Click OK t o close t he window.
Figure 157 Securit y Set t ings - Java Script ing
Java Permissions
224
From I nt ernet Explorer, click Tools, I nt e r ne t Opt ions and t hen t he Se cu r it y t ab.
Click t he Cu st om Le ve l... but t on.
Scroll down t o M icr osoft VM .
Under Ja va pe r m issions m ake sure t hat a safet y level is select ed.
B222s User’s Guide
Appendix C Pop-up Windows, JavaScript and Java Permissions
Click OK t o close t he window.
Figure 158 Securit y Set t ings - Java
JAVA (Sun)
From I nt ernet Explorer, click Tools, I nt e r ne t Opt ions and t hen t he Adva n ce d t ab.
Make sure t hat Use Ja va 2 for < a pple t > under Ja va ( Sun) is select ed.
B222s User’s Guide
225
Appendix C Pop-up Windows, JavaScript and Java Permissions
Click OK t o close t he window.
Figure 159 Java ( Sun)
Mozilla Firefox
Mozilla Firefox 2.0 screens are used here. Screens for ot her versions m ay vary.
You can enable Java, JavaScript and pop- ups in one screen. Click Tools, t hen click Opt ion s in t he
screen t hat appears.
Figure 160 Mozilla Firefox: Tools > Opt ions
226
B222s User’s Guide
Appendix C Pop-up Windows, JavaScript and Java Permissions
Click Cont e n t .t o show t he screen below. Select t he check boxes as shown in t he following screen.
Figure 161 Mozilla Firefox Cont ent Securit y
B222s User’s Guide
227
Appendix C Pop-up Windows, JavaScript and Java Permissions
228
B222s User’s Guide
A PPENDIX
Wireless LANs
Wireless LAN Topologies
This sect ion discusses ad- hoc and infrast ruct ure wireless LAN t opologies.
Ad-hoc Wireless LAN Configuration
The sim plest WLAN configurat ion is an independent ( Ad- hoc) WLAN t hat connect s a set of
com put ers wit h wireless adapt ers ( A, B, C) . Any t im e t wo or m ore wireless adapt ers are wit hin
range of each ot her, t hey can set up an independent net work, which is com m only referred t o as an
ad- hoc net work or I ndependent Basic Service Set ( I BSS) . The following diagram shows an exam ple
of not ebook com put ers using wireless adapt ers t o form an ad- hoc wireless LAN.
Figure 162 Peer- t o- Peer Com m unicat ion in an Ad- hoc Net work
BSS
A Basic Service Set ( BSS) exist s when all com m unicat ions bet ween wireless client s or bet ween a
wireless client and a wired net work client go t hrough one access point ( AP) .
I nt ra- BSS t raffic is t raffic bet ween wireless client s in t he BSS. When I nt ra- BSS is enabled, wireless
client A and B can access t he wired net work and com m unicat e wit h each ot her. When I nt ra- BSS is
B222s User’s Guide
229
Appendix D Wireless LANs
disabled, wireless client A and B can st ill access t he wired net work but cannot com m unicat e wit h
each ot her.
Figure 163 Basic Service Set
ESS
An Ext ended Service Set ( ESS) consist s of a series of overlapping BSSs, each cont aining an access
point , wit h each access point connect ed t oget her by a wired net work. This wired connect ion
bet ween APs is called a Dist ribut ion Syst em ( DS) .
This t ype of wireless LAN t opology is called an I nfrast ruct ure WLAN. The Access Point s not only
provide com m unicat ion wit h t he wired net work but also m ediat e wireless net work t raffic in t he
im m ediat e neighborhood.
230
B222s User’s Guide
Appendix D Wireless LANs
An ESSI D ( ESS I Dent ificat ion) uniquely ident ifies each ESS. All access point s and t heir associat ed
wireless client s wit hin t he sam e ESS m ust have t he sam e ESSI D in order t o com m unicat e.
Figure 164 I nfrast ruct ure WLAN
Channel
A channel is t he radio frequency( ies) used by wireless devices t o t ransm it and receive dat a.
Channels available depend on your geographical area. You m ay have a choice of channels ( for your
region) so you should use a channel different from an adj acent AP ( access point ) t o reduce
int erference. I nt erference occurs when radio signals from different access point s overlap causing
int erference and degrading perform ance.
Adj acent channels part ially overlap however. To avoid int erference due t o overlap, your AP should
be on a channel at least five channels away from a channel t hat an adj acent AP is using. For
exam ple, if your region has 11 channels and an adj acent AP is using channel 1, t hen you need t o
select a channel bet ween 6 or 11.
RTS/CTS
A hidden node occurs when t wo st at ions are wit hin range of t he sam e access point , but are not
wit hin range of each ot her. The following figure illust rat es a hidden node. Bot h st at ions ( STA) are
wit hin range of t he access point ( AP) or wireless gat eway, but out- of- range of each ot her, so t hey
B222s User’s Guide
231
Appendix D Wireless LANs
cannot " hear" each ot her, t hat is t hey do not know if t he channel is current ly being used. Therefore,
t hey are considered hidden from each ot her.
Figure 165
RTS/ CTS
When st at ion A sends dat a t o t he AP, it m ight not know t hat t he st at ion B is already using t he
channel. I f t hese t wo st at ions send dat a at t he sam e t im e, collisions m ay occur when bot h set s of
dat a arrive at t he AP at t he sam e t im e, result ing in a loss of m essages for bot h st at ions.
RTS/ CTS is designed t o prevent collisions due t o hidden nodes. An RTS/ CTS defines t he biggest
size dat a fram e you can send before an RTS ( Request To Send) / CTS ( Clear t o Send) handshake is
invoked.
When a dat a fram e exceeds t he RTS/ CTS value you set ( bet ween 0 t o 2432 byt es) , t he st at ion
t hat want s t o t ransm it t his fram e m ust first send an RTS ( Request To Send) m essage t o t he AP for
perm ission t o send it . The AP t hen responds wit h a CTS ( Clear t o Send) m essage t o all ot her
st at ions wit hin it s range t o not ify t hem t o defer t heir t ransm ission. I t also reserves and confirm s
wit h t he request ing st at ion t he t im e fram e for t he request ed t ransm ission.
St at ions can send fram es sm aller t han t he specified RTS/ CTS direct ly t o t he AP wit hout t he RTS
( Request To Send) / CTS ( Clear t o Send) handshake.
You should only configure RTS/ CTS if t he possibilit y of hidden nodes exist s on your net work and
t he " cost " of resending large fram es is m ore t han t he ext ra net work overhead involved in t he RTS
( Request To Send) / CTS ( Clear t o Send) handshake.
I f t he RTS/ CTS value is great er t han t he Fr a gm e nt a t ion Thr e sh old value ( see next ) , t hen t he
RTS ( Request To Send) / CTS ( Clear t o Send) handshake will never occur as dat a fram es will be
fragm ent ed before t hey reach RTS/ CTS size.
Not e: Enabling t he RTS Threshold causes redundant net w ork overhead t hat could
negat ively affect t he t hroughput perfor m ance inst ead of pr oviding a rem edy.
Fragmentation Threshold
A Fr a gm e nt a t ion Thr e sh old is t he m axim um dat a fragm ent size ( bet ween 256 and 2432 byt es)
t hat can be sent in t he wireless net work before t he AP will fragm ent t he packet int o sm aller dat a
fram es.
A large Fr a gm e n t a t ion Th r e sh old is recom m ended for net works not prone t o int erference while
you should set a sm aller t hreshold for busy net works or net works t hat are prone t o int erference.
232
B222s User’s Guide
Appendix D Wireless LANs
I f t he Fr a gm e nt a t ion Thr e shold value is sm aller t han t he RTS/ CTS value ( see previously) you
set t hen t he RTS ( Request To Send) / CTS ( Clear t o Send) handshake will never occur as dat a fram es
will be fragm ent ed before t hey reach RTS/ CTS size.
Preamble Type
Pream ble is used t o signal t hat dat a is com ing t o t he receiver. Short and long refer t o t he lengt h of
t he synchronizat ion field in a packet .
Short pream ble increases perform ance as less t im e sending pream ble m eans m ore t im e for sending
dat a. All I EEE 802.11 com pliant wireless adapt ers support long pream ble, but not all support short
pream ble.
Use long pream ble if you are unsure what pream ble m ode ot her wireless devices on t he net work
support , and t o provide m ore reliable com m unicat ions in busy wireless net works.
Use short pream ble if you are sure all wireless devices on t he net work support it , and t o provide
m ore efficient com m unicat ions.
Use t he dynam ic set t ing t o aut om at ically use short pream ble when all wireless devices on t he
net work support it , ot herwise t he LTE Device uses long pream ble.
Not e: The wireless devices MUST use t he sam e pream ble m ode in order t o com m unicat e.
IEEE 802.11g Wireless LAN
I EEE 802.11g is fully com pat ible wit h t he I EEE 802.11b st andard. This m eans an I EEE 802.11b
adapt er can int erface direct ly wit h an I EEE 802.11g access point ( and vice versa) at 11 Mbps or
lower depending on range. I EEE 802.11g has several int erm ediat e rat e st eps bet ween t he
m axim um and m inim um dat a rat es. The I EEE 802.11g dat a rat e and m odulat ion are as follows:
Table 85 I EEE 802.11g
DATA RATE (MBPS)
MODULATION
DBPSK ( Different ial Binary Phase Shift Keyed)
DQPSK ( Different ial Quadrat ure Phase Shift Keying)
5.5 / 11
CCK ( Com plem ent ary Code Keying)
6/ 9/ 12/ 18/ 24/ 36/ 48/
54
OFDM ( Ort hogonal Frequency Division Mult iplexing)
Wireless Security Overview
Wireless securit y is vit al t o your net work t o prot ect wireless com m unicat ion bet ween wireless
client s, access point s and t he wired net work.
Wireless securit y m et hods available on t he LTE Device are dat a encrypt ion, wireless client
aut hent icat ion, rest rict ing access by device MAC address and hiding t he LTE Device ident it y.
B222s User’s Guide
233
Appendix D Wireless LANs
The following figure shows t he relat ive effect iveness of t hese wireless securit y m et hods available on
your LTE Device.
Table 86 Wireless Securit y Levels
SECURITY
LEVEL
Least
Secure
SECURITY TYPE
Unique SSI D ( Default )
Unique SSI D wit h Hide SSI D Enabled
MAC Address Filt ering
WEP Encrypt ion
I EEE802.1x EAP wit h RADI US Server Aut hent icat ion
Wi- Fi Prot ect ed Access ( WPA)
WPA2
Most Secure
Not e: You m ust enable t he sam e wireless securit y set t ings on t he LTE Device and on all
wireless client s t hat you want t o associat e wit h it .
IEEE 802.1x
I n June 2001, t he I EEE 802.1x st andard was designed t o ext end t he feat ures of I EEE 802.11 t o
support ext ended aut hent icat ion as well as providing addit ional account ing and cont rol feat ures. I t
is support ed by Windows XP and a num ber of net work devices. Som e advant ages of I EEE 802.1x
are:
• User based ident ificat ion t hat allows for roam ing.
• Support for RADI US ( Rem ot e Aut hent icat ion Dial I n User Service, RFC 2138, 2139) for
cent ralized user profile and account ing m anagem ent on a net work RADI US server.
• Support for EAP ( Ext ensible Aut hent icat ion Prot ocol, RFC 2486) t hat allows addit ional
aut hent icat ion m et hods t o be deployed wit h no changes t o t he access point or t he wireless
client s.
RADIUS
RADI US is based on a client- server m odel t hat support s aut hent icat ion, aut horizat ion and
account ing. The access point is t he client and t he server is t he RADI US server. The RADI US server
handles t he following t asks:
• Aut hent icat ion
Det erm ines t he ident it y of t he users.
• Aut horizat ion
Det erm ines t he net work services available t o aut hent icat ed users once t hey are connect ed t o t he
net work.
• Account ing
Keeps t rack of t he client ’s net work act ivit y.
234
B222s User’s Guide
Appendix D Wireless LANs
RADI US is a sim ple package exchange in which your AP act s as a m essage relay bet ween t he
wireless client and t he net work RADI US server.
Types of RADIUS Messages
The following t ypes of RADI US m essages are exchanged bet ween t he access point and t he RADI US
server for user aut hent icat ion:
• Access- Request
Sent by an access point request ing aut hent icat ion.
• Access- Rej ect
Sent by a RADI US server rej ect ing access.
• Access-Accept
Sent by a RADI US server allowing access.
• Access- Challenge
Sent by a RADI US server request ing m ore inform at ion in order t o allow access. The access point
sends a proper response from t he user and t hen sends anot her Access- Request m essage.
The following t ypes of RADI US m essages are exchanged bet ween t he access point and t he RADI US
server for user account ing:
• Account ing- Request
Sent by t he access point request ing account ing.
• Account ing- Response
Sent by t he RADI US server t o indicat e t hat it has st art ed or st opped account ing.
I n order t o ensure net work securit y, t he access point and t he RADI US server use a shared secret
key, which is a password, t hey bot h know. The key is not sent over t he net work. I n addit ion t o t he
shared key, password inform at ion exchanged is also encrypt ed t o prot ect t he net work from
unaut horized access.
Types of EAP Authentication
This sect ion discusses som e popular aut hent icat ion t ypes: EAP- MD5, EAP-TLS, EAP-TTLS, PEAP and
LEAP. Your wireless LAN device m ay not support all aut hent icat ion t ypes.
EAP ( Ext ensible Aut hent icat ion Prot ocol) is an aut hent icat ion prot ocol t hat runs on t op of t he I EEE
802.1x t ransport m echanism in order t o support m ult iple t ypes of user aut hent icat ion. By using EAP
t o int eract wit h an EAP- com pat ible RADI US server, an access point helps a wireless st at ion and a
RADI US server perform aut hent icat ion.
The t ype of aut hent icat ion you use depends on t he RADI US server and an int erm ediary AP( s) t hat
support s I EEE 802.1x. .
For EAP-TLS aut hent icat ion t ype, you m ust first have a wired connect ion t o t he net work and obt ain
t he cert ificat e( s) from a cert ificat e aut horit y ( CA) . A cert ificat e ( also called digit al I Ds) can be used
t o aut hent icat e users and a CA issues cert ificat es and guarant ees t he ident it y of each cert ificat e
owner.
B222s User’s Guide
235
Appendix D Wireless LANs
EAP-MD5 (Message-Digest Algorithm 5)
MD5 aut hent icat ion is t he sim plest one- way aut hent icat ion m et hod. The aut hent icat ion server
sends a challenge t o t he wireless client . The wireless client ‘proves’ t hat it knows t he password by
encrypt ing t he password wit h t he challenge and sends back t he inform at ion. Password is not sent in
plain t ext .
However, MD5 aut hent icat ion has som e weaknesses. Since t he aut hent icat ion server needs t o get
t he plaint ext passwords, t he passwords m ust be st ored. Thus som eone ot her t han t he
aut hent icat ion server m ay access t he password file. I n addit ion, it is possible t o im personat e an
aut hent icat ion server as MD5 aut hent icat ion m et hod does not perform m ut ual aut hent icat ion.
Finally, MD5 aut hent icat ion m et hod does not support dat a encrypt ion wit h dynam ic session key. You
m ust configure WEP encrypt ion keys for dat a encrypt ion.
EAP-TLS (Transport Layer Security)
Wit h EAP-TLS, digit al cert ificat ions are needed by bot h t he server and t he wireless client s for
m ut ual aut hent icat ion. The server present s a cert ificat e t o t he client . Aft er validat ing t he ident it y of
t he server, t he client sends a different cert ificat e t o t he server. The exchange of cert ificat es is done
in t he open before a secured t unnel is creat ed. This m akes user ident it y vulnerable t o passive
at t acks. A digit al cert ificat e is an elect ronic I D card t hat aut hent icat es t he sender ’s ident it y.
However, t o im plem ent EAP-TLS, you need a Cert ificat e Aut horit y ( CA) t o handle cert ificat es, which
im poses a m anagem ent overhead.
EAP-TTLS (Tunneled Transport Layer Service)
EAP-TTLS is an ext ension of t he EAP-TLS aut hent icat ion t hat uses cert ificat es for only t he serverside aut hent icat ions t o est ablish a secure connect ion. Client aut hent icat ion is t hen done by sending
usernam e and password t hrough t he secure connect ion, t hus client ident it y is prot ect ed. For client
aut hent icat ion, EAP-TTLS support s EAP m et hods and legacy aut hent icat ion m et hods such as PAP,
CHAP, MS- CHAP and MS- CHAP v2.
PEAP (Protected EAP)
Like EAP-TTLS, server- side cert ificat e aut hent icat ion is used t o est ablish a secure connect ion, t hen
use sim ple usernam e and password m et hods t hrough t he secured connect ion t o aut hent icat e t he
client s, t hus hiding client ident it y. However, PEAP only support s EAP m et hods, such as EAP- MD5,
EAP- MSCHAPv2 and EAP- GTC ( EAP- Generic Token Card) , for client aut hent icat ion. EAP- GTC is
im plem ent ed only by Cisco.
LEAP
LEAP ( Light weight Ext ensible Aut hent icat ion Prot ocol) is a Cisco im plem ent at ion of I EEE 802.1x.
Dynamic WEP Key Exchange
The AP m aps a unique key t hat is generat ed wit h t he RADI US server. This key expires when t he
wireless connect ion t im es out , disconnect s or reaut hent icat ion t im es out . A new WEP key is
generat ed each t im e reaut hent icat ion is perform ed.
236
B222s User’s Guide
Appendix D Wireless LANs
I f t his feat ure is enabled, it is not necessary t o configure a default encrypt ion key in t he wireless
securit y configurat ion screen. You m ay st ill configure and st ore keys, but t hey will not be used while
dynam ic WEP is enabled.
Not e: EAP- MD5 cannot be used wit h Dynam ic WEP Key Exchange
For added securit y, cert ificat e- based aut hent icat ions ( EAP-TLS, EAP-TTLS and PEAP) use dynam ic
keys for dat a encrypt ion. They are oft en deployed in corporat e environm ent s, but for public
deploym ent , a sim ple user nam e and password pair is m ore pract ical. The following t able is a
com parison of t he feat ures of aut hent icat ion t ypes.
Table 87 Com parison of EAP Aut hent icat ion Types
EAP-MD5
EAP-TLS
EAP-TTLS
PEAP
LEAP
Mut ual Aut hent icat ion
No
Yes
Yes
Yes
Yes
Cert ificat e – Client
No
Yes
Opt ional
Opt ional
No
Cert ificat e – Server
No
Yes
Yes
Yes
No
Dynam ic Key Exchange
No
Yes
Yes
Yes
Yes
Credent ial I nt egrit y
None
St rong
St rong
St rong
Moderat e
Deploym ent Difficult y
Easy
Hard
Moderat e
Moderat e
Moderat e
Client I dent it y Prot ect ion
No
No
Yes
Yes
No
WPA and WPA2
Wi- Fi Prot ect ed Access ( WPA) is a subset of t he I EEE 802.11i st andard. WPA2 ( I EEE 802.11i) is a
wireless securit y st andard t hat defines st ronger encrypt ion, aut hent icat ion and key m anagem ent
t han WPA.
Key differences bet ween WPA or WPA2 and WEP are im proved dat a encrypt ion and user
aut hent icat ion.
I f bot h an AP and t he wireless client s support WPA2 and you have an ext ernal RADI US server, use
WPA2 for st ronger dat a encrypt ion. I f you don't have an ext ernal RADI US server, you should use
WPA2- PSK ( WPA2- Pre- Shared Key) t hat only requires a single ( ident ical) password ent ered int o
each access point , wireless gat eway and wireless client . As long as t he passwords m at ch, a wireless
client will be grant ed access t o a WLAN.
I f t he AP or t he wireless client s do not support WPA2, j ust use WPA or WPA- PSK depending on
whet her you have an ext ernal RADI US server or not .
Select WEP only when t he AP and/ or wireless client s do not support WPA or WPA2. WEP is less
secure t han WPA or WPA2.
Encryption
Bot h WPA and WPA2 im prove dat a encrypt ion by using Tem poral Key I nt egrit y Prot ocol ( TKI P) ,
Message I nt egrit y Check ( MI C) and I EEE 802.1x. WPA and WPA2 use Advanced Encrypt ion
St andard ( AES) in t he Count er m ode wit h Cipher block chaining Message aut hent icat ion code
Prot ocol ( CCMP) t o offer st ronger encrypt ion t han TKI P.
TKI P uses 128- bit keys t hat are dynam ically generat ed and dist ribut ed by t he aut hent icat ion server.
AES ( Advanced Encrypt ion St andard) is a block cipher t hat uses a 256- bit m at hem at ical algorit hm
B222s User’s Guide
237
Appendix D Wireless LANs
called Rij ndael. They bot h include a per- packet key m ixing funct ion, a Message I nt egrit y Check
( MI C) nam ed Michael, an ext ended init ializat ion vect or ( I V) wit h sequencing rules, and a re- keying
m echanism .
WPA and WPA2 regularly change and rot at e t he encrypt ion keys so t hat t he sam e encrypt ion key is
never used t wice.
The RADI US server dist ribut es a Pairwise Mast er Key ( PMK) key t o t he AP t hat t hen set s up a key
hierarchy and m anagem ent syst em , using t he PMK t o dynam ically generat e unique dat a encrypt ion
keys t o encrypt every dat a packet t hat is wirelessly com m unicat ed bet ween t he AP and t he wireless
client s. This all happens in t he background aut om at ically.
The Message I nt egrit y Check ( MI C) is designed t o prevent an at t acker from capt uring dat a packet s,
alt ering t hem and resending t hem . The MI C provides a st rong m at hem at ical funct ion in which t he
receiver and t he t ransm it t er each com put e and t hen com pare t he MI C. I f t hey do not m at ch, it is
assum ed t hat t he dat a has been t am pered wit h and t he packet is dropped.
By generat ing unique dat a encrypt ion keys for every dat a packet and by creat ing an int egrit y
checking m echanism ( MI C) , wit h TKI P and AES it is m ore difficult t o decrypt dat a on a Wi- Fi
net work t han WEP and difficult for an int ruder t o break int o t he net work.
The encrypt ion m echanism s used for WPA( 2) and WPA( 2) - PSK are t he sam e. The only difference
bet ween t he t wo is t hat WPA( 2) - PSK uses a sim ple com m on password, inst ead of user- specific
credent ials. The com m on- password approach m akes WPA( 2) - PSK suscept ible t o brut e- force
password- guessing at t acks but it ’s st ill an im provem ent over WEP as it em ploys a consist ent ,
single, alphanum eric password t o derive a PMK which is used t o generat e unique t em poral
encrypt ion keys. This prevent all wireless devices sharing t he sam e encrypt ion keys. ( a weakness of
WEP)
User Authentication
WPA and WPA2 apply I EEE 802.1x and Ext ensible Aut hent icat ion Prot ocol ( EAP) t o aut hent icat e
wireless client s using an ext ernal RADI US dat abase. WPA2 reduces t he num ber of key exchange
m essages from six t o four ( CCMP 4- way handshake) and short ens t he t im e required t o connect t o a
net work. Ot her WPA2 aut hent icat ion feat ures t hat are different from WPA include key caching and
pre- aut hent icat ion. These t wo feat ures are opt ional and m ay not be support ed in all wireless
devices.
Key caching allows a wireless client t o st ore t he PMK it derived t hrough a successful aut hent icat ion
wit h an AP. The wireless client uses t he PMK when it t ries t o connect t o t he sam e AP and does not
need t o go wit h t he aut hent icat ion process again.
Pre- aut hent icat ion enables fast roam ing by allowing t he wireless client ( already connect ing t o an
AP) t o perform I EEE 802.1x aut hent icat ion wit h anot her AP before connect ing t o it .
Wireless Client WPA Supplicants
A wireless client supplicant is t he soft ware t hat runs on an operat ing syst em inst ruct ing t he wireless
client how t o use WPA. At t he t im e of writ ing, t he m ost widely available supplicant is t he WPA pat ch
for Windows XP, Funk Soft ware's Odyssey client .
The Windows XP pat ch is a free download t hat adds WPA capabilit y t o Windows XP's built- in " Zero
Configurat ion" wireless client . However, you m ust run Windows XP t o use it .
238
B222s User’s Guide
Appendix D Wireless LANs
WPA(2) with RADIUS Application Example
To set up WPA( 2) , you need t he I P address of t he RADI US server, it s port num ber ( default is 1812) ,
and t he RADI US shared secret . A WPA( 2) applicat ion exam ple wit h an ext ernal RADI US server
looks as follows. " A" is t he RADI US server. " DS" is t he dist ribut ion syst em .
The AP passes t he wireless client 's aut hent icat ion request t o t he RADI US server.
The RADI US server t hen checks t he user's ident ificat ion against it s dat abase and grant s or denies
net work access accordingly.
A 256- bit Pairwise Mast er Key ( PMK) is derived from t he aut hent icat ion process by t he RADI US
server and t he client .
The RADI US server dist ribut es t he PMK t o t he AP. The AP t hen set s up a key hierarchy and
m anagem ent syst em , using t he PMK t o dynam ically generat e unique dat a encrypt ion keys. The
keys are used t o encrypt every dat a packet t hat is wirelessly com m unicat ed bet ween t he AP and
t he wireless client s.
Figure 166 WPA( 2) wit h RADI US Applicat ion Exam ple
WPA(2)-PSK Application Example
A WPA( 2) - PSK applicat ion looks as follows.
First ent er ident ical passwords int o t he AP and all wireless client s. The Pre- Shared Key ( PSK) m ust
consist of bet ween 8 and 63 ASCI I charact ers or 64 hexadecim al charact ers ( including spaces and
sym bols) .
The AP checks each wireless client 's password and allows it t o j oin t he net work only if t he password
m at ches.
The AP and wireless client s generat e a com m on PMK ( Pairwise Mast er Key) . The key it self is not
sent over t he net work, but is derived from t he PSK and t he SSI D.
B222s User’s Guide
239
Appendix D Wireless LANs
The AP and wireless client s use t he TKI P or AES encrypt ion process, t he PMK and inform at ion
exchanged in a handshake t o creat e t em poral encrypt ion keys. They use t hese keys t o encrypt dat a
exchanged bet ween t hem .
Figure 167 WPA( 2) - PSK Aut hent icat ion
Security Parameters Summary
Refer t o t his t able t o see what ot her securit y param et ers you should configure for each
aut hent icat ion m et hod or key m anagem ent prot ocol t ype. MAC address filt ers are not dependent on
how you configure t hese securit y feat ures.
Table 88 Wireless Securit y Relat ional Mat rix
AUTHENTICATION
ENCRYPTIO
METHOD/ KEY
MANAGEMENT PROTOCOL N METHOD
ENTER
MANUAL KEY
Open
No
None
IEEE 802.1X
Disable
Enable wit hout Dynam ic WEP Key
Open
Shared
WEP
WEP
No
Enable wit h Dynam ic WEP Key
Yes
Enable wit hout Dynam ic WEP Key
Yes
Disable
No
Enable wit h Dynam ic WEP Key
Yes
Enable wit hout Dynam ic WEP Key
Yes
Disable
WPA
TKI P/ AES
No
Enable
WPA- PSK
TKI P/ AES
Yes
Disable
WPA2
TKI P/ AES
No
Enable
WPA2- PSK
TKI P/ AES
Yes
Disable
Antenna Overview
An ant enna couples RF signals ont o air. A t ransm it t er wit hin a wireless device sends an RF signal t o
t he ant enna, which propagat es t he signal t hrough t he air. The ant enna also operat es in reverse by
capt uring RF signals from t he air.
Posit ioning t he ant ennas properly increases t he range and coverage area of a wireless LAN.
240
B222s User’s Guide
Appendix D Wireless LANs
Antenna Characteristics
Frequency
An ant enna in t he frequency of 2.4GHz ( I EEE 802.11b and I EEE 802.11g) or 5GHz ( I EEE 802.11a)
is needed t o com m unicat e efficient ly in a wireless LAN
Radiation Pattern
A radiat ion pat t ern is a diagram t hat allows you t o visualize t he shape of t he ant enna’s coverage
area.
Antenna Gain
Ant enna gain, m easured in dB ( decibel) , is t he increase in coverage wit hin t he RF beam widt h.
Higher ant enna gain im proves t he range of t he signal for bet t er com m unicat ions.
For an indoor sit e, each 1 dB increase in ant enna gain result s in a range increase of approxim at ely
2.5% . For an unobst ruct ed out door sit e, each 1dB increase in gain result s in a range increase of
approxim at ely 5% . Act ual result s m ay vary depending on t he net work environm ent .
Ant enna gain is som et im es specified in dBi, which is how m uch t he ant enna increases t he signal
power com pared t o using an isot ropic ant enna. An isot ropic ant enna is a t heoret ical perfect ant enna
t hat sends out radio signals equally well in all direct ions. dBi represent s t he t rue gain t hat t he
ant enna provides.
Types of Antennas for WLAN
There are t wo t ypes of ant ennas used for wireless LAN applicat ions.
• Om ni- direct ional ant ennas send t he RF signal out in all direct ions on a horizont al plane. The
coverage area is t orus- shaped ( like a donut ) which m akes t hese ant ennas ideal for a room
environm ent . Wit h a wide coverage area, it is possible t o m ake circular overlapping coverage
areas wit h m ult iple access point s.
• Direct ional ant ennas concent rat e t he RF signal in a beam , like a flashlight does wit h t he light
from it s bulb. The angle of t he beam det erm ines t he widt h of t he coverage pat t ern. Angles
t ypically range from 20 degrees ( very direct ional) t o 120 degrees ( less direct ional) . Direct ional
ant ennas are ideal for hallways and out door point- t o- point applicat ions.
Positioning Antennas
I n general, ant ennas should be m ount ed as high as pract ically possible and free of obst ruct ions. I n
point- t o–point applicat ion, posit ion bot h ant ennas at t he sam e height and in a direct line of sight t o
each ot her t o at t ain t he best perform ance.
For om ni- direct ional ant ennas m ount ed on a t able, desk, and so on, point t he ant enna up. For
om ni- direct ional ant ennas m ount ed on a wall or ceiling, point t he ant enna down. For a single AP
applicat ion, place om ni- direct ional ant ennas as close t o t he cent er of t he coverage area as possible.
For direct ional ant ennas, point t he ant enna in t he direct ion of t he desired coverage area.
B222s User’s Guide
241
Appendix D Wireless LANs
WiFi Protected Setup
Your LTE Device support s WiFi Prot ect ed Set up ( WPS) , which is an easy way t o set up a secure
wireless net work. WPS is an indust ry st andard specificat ion, defined by t he WiFi Alliance.
WPS allows you t o quickly set up a wireless net work wit h st rong securit y, wit hout having t o
configure securit y set t ings m anually. Each WPS connect ion works bet ween t wo devices. Bot h
devices m ust support WPS ( check each device’s docum ent at ion t o m ake sure) .
Depending on t he devices you have, you can eit her press a but t on ( on t he device it self, or in it s
configurat ion ut ilit y) or ent er a PI N ( a unique Personal I dent ificat ion Num ber t hat allows one device
t o aut hent icat e t he ot her) in each of t he t wo devices. When WPS is act ivat ed on a device, it has t wo
m inut es t o find anot her device t hat also has WPS act ivat ed. Then, t he t wo devices connect and set
up a secure net work by t hem selves.
Push Button Configuration
WPS Push But t on Configurat ion ( PBC) is init iat ed by pressing a but t on on each WPS- enabled
device, and allowing t hem t o connect aut om at ically. You do not need t o ent er any inform at ion.
Not every WPS- enabled device has a physical WPS but t on. Som e m ay have a WPS PBC but t on in
t heir configurat ion ut ilit ies inst ead of or in addit ion t o t he physical but t on.
Take t he following st eps t o set up WPS using t he but t on.
Ensure t hat t he t wo devices you want t o set up are wit hin wireless range of one anot her.
Look for a WPS but t on on each device. I f t he device does not have one, log int o it s configurat ion
ut ilit y and locat e t he but t on ( see t he device’s User ’s Guide for how t o do t his - for t he LTE Device,
see Sect ion 5.4 on page 53) .
Press t he but t on on one of t he devices ( it doesn’t m at t er which) .
Wit hin t wo m inut es, press t he but t on on t he ot her device. The regist rar sends t he net work nam e
( SSI D) and securit y key t hrough an secure connect ion t o t he enrollee.
I f you need t o m ake sure t hat WPS worked, check t he list of associat ed wireless client s in t he AP’s
configurat ion ut ilit y. I f you see t he wireless client in t he list , WPS was successful.
PIN Configuration
Each WPS- enabled device has it s own PI N ( Personal I dent ificat ion Num ber) . This m ay eit her be
st at ic ( it cannot be changed) or dynam ic ( you can change it t o a new random num ber by clicking on
a but t on in t he configurat ion int erface) .
When you use t he PI N m et hod, you m ust ent er t he enrollee’s PI N int o t he regist rar. Then, when
WPS is act ivat ed on t he enrollee, it present s it s PI N t o t he regist rar. I f t he PI N m at ches, t he
regist rar sends t he net work and securit y inform at ion t o t he enrollee, allowing it t o j oin t he net work.
The advant age of using t he PI N m et hod rat her t han t he PBC m et hod is t hat you can ensure t hat t he
connect ion is est ablished bet ween t he devices you specify, not j ust t he first t wo devices t o act ivat e
WPS in t he area. However, you need t o log int o t he configurat ion int erfaces of bot h devices.
Take t he following st eps t o set up WPS using t he PI N m et hod.
242
B222s User’s Guide
Appendix D Wireless LANs
Decide which device you want t o be t he regist rar ( usually t he AP) and which you want t o be t he
enrollee ( usually t he client ) .
Look for t he enrollee’s WPS PI N; it m ay be displayed on t he device. I f you don’t see it , log int o t he
enrollee’s configurat ion int erface and locat e t he PI N. Select t he PI N connect ion m ode ( not PBC
connect ion m ode) . See t he device’s User ’s Guide for how t o do t his - for t he LTE Device, see Sect ion
5.4 on page 53.
Log int o t he configurat ion ut ilit y of t he regist rar. Select t he PI N connect ion m ode ( not t he PBC
connect ion m ode) . Locat e t he place where you can ent er t he enrollee’s PI N ( if you are using t he LTE
Device, see Sect ion 5.4 on page 53) . Ent er t he PI N from t he enrollee device.
Act ivat e WPS on bot h devices wit hin t wo m inut es.
Not e: Use t he configurat ion ut ilit y t o act ivat e WPS, not t he push- but t on on t he device
it self.
On a com put er connect ed t o t he wireless client , t ry t o connect t o t he I nt ernet . I f you can connect ,
WPS was successful.
I f you cannot connect , check t he list of associat ed wireless client s in t he AP’s configurat ion ut ilit y. I f
you see t he wireless client in t he list , WPS was successful.
B222s User’s Guide
243
Appendix D Wireless LANs
The following figure shows a WPS- enabled wireless client ( inst alled in a not ebook com put er)
connect ing t o t he WPS- enabled AP via t he PI N m et hod.
Figure 168 Exam ple WPS Process: PI N Met hod
ENROLLEE
REGISTRAR
WPS
This device’s
WPS PIN: 123456
WPS
Enter WPS PIN
from other device:
WPS
START
WPS
START
WITHIN 2 MINUTES
SECURE EAP TUNNEL
SSID
WPA(2)-PSK
COMMUNICATION
How WPS Works
When t wo WPS- enabled devices connect , each device m ust assum e a specific role. One device act s
as t he regist rar ( t he device t hat supplies net work and securit y set t ings) and t he ot her device act s
as t he enrollee ( t he device t hat receives net work and securit y set t ings. The regist rar creat es a
secure EAP ( Ext ensible Aut hent icat ion Prot ocol) t unnel and sends t he net work nam e ( SSI D) and t he
WPA- PSK or WPA2- PSK pre- shared key t o t he enrollee. Whet her WPA- PSK or WPA2- PSK is used
depends on t he st andards support ed by t he devices. I f t he regist rar is already part of a net work, it
sends t he exist ing inform at ion. I f not , it generat es t he SSI D and WPA( 2) - PSK random ly.
244
B222s User’s Guide
Appendix D Wireless LANs
The following figure shows a WPS- enabled client ( inst alled in a not ebook com put er) connect ing t o a
WPS- enabled access point .
Figure 169 How WPS works
ACTIVATE
WPS
ACTIVATE
WPS
WITHIN 2 MINUTES
WPS HANDSHAKE
ENROLLEE
REGISTRAR
SECURE TUNNEL
SECURITY INFO
COMMUNICATION
The roles of regist rar and enrollee last only as long as t he WPS set up process is act ive ( t wo
m inut es) . The next t im e you use WPS, a different device can be t he regist rar if necessary.
The WPS connect ion process is like a handshake; only t wo devices part icipat e in each WPS
t ransact ion. I f you want t o add m ore devices you should repeat t he process wit h one of t he exist ing
net worked devices and t he new device.
Not e t hat t he access point ( AP) is not always t he regist rar, and t he wireless client is not always t he
enrollee. All WPS- cert ified APs can be a regist rar, and so can som e WPS- enabled wireless client s.
By default , a WPS devices is “ unconfigured”. This m eans t hat it is not part of an exist ing net work
and can act as eit her enrollee or regist rar ( if it support s bot h funct ions) . I f t he regist rar is
unconfigured, t he securit y set t ings it t ransm it s t o t he enrollee are random ly- generat ed. Once a
WPS- enabled device has connect ed t o anot her device using WPS, it becom es “ configured”. A
configured wireless client can st ill act as enrollee or regist rar in subsequent WPS connect ions, but a
configured access point can no longer act as enrollee. I t will be t he regist rar in all subsequent WPS
connect ions in which it is involved. I f you want a configured AP t o act as an enrollee, you m ust reset
it t o it s fact ory default s.
Example WPS Network Setup
This sect ion shows how securit y set t ings are dist ribut ed in an exam ple WPS set up.
The following figure shows an exam ple net work. I n st ep 1 , bot h AP1 and Clie nt 1 are
unconfigured. When WPS is act ivat ed on bot h, t hey perform t he handshake. I n t his exam ple, AP1
B222s User’s Guide
245
Appendix D Wireless LANs
is t he regist rar, and Clie nt 1 is t he enrollee. The regist rar random ly generat es t he securit y
inform at ion t o set up t he net work, since it is unconfigured and has no exist ing inform at ion.
Figure 170 WPS: Exam ple Net work St ep 1
ENROLLEE
REGISTRAR
SECURITY INFO
AP1
CLIENT 1
I n st ep 2 , you add anot her wireless client t o t he net work. You know t hat Clie nt 1 support s regist rar
m ode, but it is bet t er t o use AP1 for t he WPS handshake wit h t he new client since you m ust
connect t o t he access point anyway in order t o use t he net work. I n t his case, AP1 m ust be t he
regist rar, since it is configured ( it already has securit y inform at ion for t he net work) . AP1 supplies
t he exist ing securit y inform at ion t o Clie nt 2 .
Figure 171 WPS: Exam ple Net work St ep 2
REGISTRAR
EXISTING CONNECTION
AP1
CLIENT 1
ENROLLEE
INF
RI
CU
SE
CLIENT 2
246
B222s User’s Guide
Appendix D Wireless LANs
I n st ep 3, you add anot her access point ( AP2 ) t o your net work. AP2 is out of range of AP1 , so you
cannot use AP1 for t he WPS handshake wit h t he new access point . However, you know t hat Clie nt
2 support s t he regist rar funct ion, so you use it t o perform t he WPS handshake inst ead.
Figure 172 WPS: Exam ple Net work St ep 3
EXISTING CONNECTION
CLIENT 1
IS
EX
GC
TIN
ION
CT
NN
AP1
REGISTRAR
CLIENT 2
SE
CU
RIT
ENROLLEE
INF
AP1
Limitations of WPS
WPS has som e lim it at ions of which you should be aware.
• WPS works in I nfrast ruct ure net works only ( where an AP and a wireless client com m unicat e) . I t
does not work in Ad- Hoc net works ( where t here is no AP) .
• When you use WPS, it works bet ween t wo devices only. You cannot enroll m ult iple devices
sim ult aneously, you m ust enroll one aft er t he ot her.
For inst ance, if you have t wo enrollees and one regist rar you m ust set up t he first enrollee ( by
pressing t he WPS but t on on t he regist rar and t he first enrollee, for exam ple) , t hen check t hat it
successfully enrolled, t hen set up t he second device in t he sam e way.
• WPS works only wit h ot her WPS- enabled devices. However, you can st ill add non-WPS devices t o
a net work you already set up using WPS.
WPS works by aut om at ically issuing a random ly- generat ed WPA- PSK or WPA2- PSK pre- shared
key from t he regist rar device t o t he enrollee devices. Whet her t he net work uses WPA- PSK or
WPA2- PSK depends on t he device. You can check t he configurat ion int erface of t he regist rar
device t o discover t he key t he net work is using ( if t he device support s t his feat ure) . Then, you
can ent er t he key int o t he non-WPS device and j oin t he net work as norm al ( t he non-WPS device
m ust also support WPA- PSK or WPA2- PSK) .
B222s User’s Guide
247
Appendix D Wireless LANs
• When you use t he PBC m et hod, t here is a short period ( from t he m om ent you press t he but t on
on one device t o t he m om ent you press t he but t on on t he ot her device) when any WPS- enabled
device could j oin t he net work. This is because t he regist rar has no way of ident ifying t he
“ correct ” enrollee, and cannot different iat e bet ween your enrollee and a rogue device. This is a
possible way for a hacker t o gain access t o a net work.
You can easily check t o see if t his has happened. WPS works bet ween only t wo devices
sim ult aneously, so if anot her device has enrolled your device will be unable t o enroll, and will not
have access t o t he net work. I f t his happens, open t he access point ’s configurat ion int erface and
look at t he list of associat ed client s ( usually displayed by MAC address) . I t does not m at t er if t he
access point is t he WPS regist rar, t he enrollee, or was not involved in t he WPS handshake; a
rogue device m ust st ill associat e wit h t he access point t o gain access t o t he net work. Check t he
MAC addresses of your wireless client s ( usually print ed on a label on t he bot t om of t he device) . I f
t here is an unknown MAC address you can rem ove it or reset t he AP.
248
B222s User’s Guide
A PPENDIX
Common Services
The following t able list s som e com m only- used services and t heir associat ed prot ocols and port
num bers. For a com prehensive list of port num bers, I CMP t ype/ code num bers and services, visit
t he I ANA ( I nt ernet Assigned Num ber Aut horit y) web sit e.
• N a m e : This is a short , descript ive nam e for t he service. You can use t his one or creat e a
different one, if you like.
• Pr ot ocol: This is t he t ype of I P prot ocol used by t he service. I f t his is TCP/ UD P, t hen t he service
uses t he sam e port num ber wit h TCP and UDP. I f t his is USER- D EFI N ED, t he Por t ( s) is t he I P
prot ocol num ber, not t he port num ber.
• Por t ( s) : This value depends on t he Pr ot ocol. Please refer t o RFC 1700 for furt her inform at ion
about port num bers.
• I f t he Pr ot ocol is TCP, UD P, or TCP/ UD P, t his is t he I P port num ber.
• I f t he Pr ot ocol is USER, t his is t he I P prot ocol num ber.
• D e scr ipt ion : This is a brief explanat ion of t he applicat ions t hat use t his service or t he sit uat ions
in which t his service is used.
Table 89 Com m only Used Services
NAME
PROTOCOL
PORT(S)
DESCRIPTION
AH
( I PSEC_TUNNEL)
User- Defined
51
The I PSEC AH ( Aut hent icat ion Header) t unneling prot ocol
uses t his service.
AI M/ New- I CQ
TCP
5190
AOL’s I nt ernet Messenger service. I t is also used as a
list ening port by I CQ.
AUTH
TCP
113
Aut hent icat ion prot ocol used by som e servers.
BGP
TCP
179
Border Gat eway Prot ocol.
BOOTP_CLI ENT
UDP
68
DHCP Client .
BOOTP_SERVER
UDP
67
DHCP Server.
CU- SEEME
TCP
7648
UDP
24032
A popular videoconferencing solut ion from Whit e Pines
Soft ware.
DNS
TCP/ UDP
53
Dom ain Nam e Server, a service t hat m at ches web nam es
( for exam ple www.exam ple.com ) t o I P num bers.
ESP
( I PSEC_TUNNEL)
User- Defined
50
The I PSEC ESP ( Encapsulat ion Securit y Prot ocol)
t unneling prot ocol uses t his service.
FI NGER
TCP
79
Finger is a UNI X or I nt ernet relat ed com m and t hat can be
used t o find out if a user is logged on.
FTP
TCP
20
TCP
21
File Transfer Program , a program t o enable fast t ransfer of
files, including large files t hat m ay not be possible by em ail.
H.323
TCP
1720
Net Meet ing uses t his prot ocol.
HTTP
TCP
80
Hyper Text Transfer Prot ocol - a client / server prot ocol for
t he world wide web.
HTTPS
TCP
443
HTTPS is a secured ht t p session oft en used in ecom m erce.
B222s User’s Guide
249
Appendix E Common Services
Table 89 Com m only Used Services ( cont inued)
250
NAME
PROTOCOL
PORT(S)
DESCRIPTION
I CMP
User- Defined
I nt ernet Cont rol Message Prot ocol is oft en used for
diagnost ic or rout ing purposes.
I CQ
UDP
4000
This is a popular I nt ernet chat program .
I GMP ( MULTI CAST)
User- Defined
I nt ernet Group Managem ent Prot ocol is used when
sending packet s t o a specific group of host s.
I KE
UDP
500
The I nt ernet Key Exchange algorit hm is used for key
dist ribut ion and m anagem ent .
I RC
TCP/ UDP
6667
This is anot her popular I nt ernet chat program .
MSN Messenger
TCP
1863
Microsoft Net works’ m essenger service uses t his prot ocol.
NEW- I CQ
TCP
5190
An I nt ernet chat program .
NEWS
TCP
144
A prot ocol for news groups.
NFS
UDP
2049
Net work File Syst em - NFS is a client / server dist ribut ed
file service t hat provides t ransparent file sharing for
net work environm ent s.
NNTP
TCP
119
Net work News Transport Prot ocol is t he delivery
m echanism for t he USENET newsgroup service.
PI NG
User- Defined
Packet I Nt ernet Groper is a prot ocol t hat sends out I CMP
echo request s t o t est whet her or not a rem ot e host is
reachable.
POP3
TCP
110
Post Office Prot ocol version 3 let s a client com put er get em ail from a POP3 server t hrough a t em porary connect ion
( TCP/ I P or ot her) .
PPTP
TCP
1723
Point- t o- Point Tunneling Prot ocol enables secure t ransfer
of dat a over public net works. This is t he cont rol channel.
PPTP_TUNNEL
( GRE)
User- Defined
47
PPTP ( Point- t o- Point Tunneling Prot ocol) enables secure
t ransfer of dat a over public net works. This is t he dat a
channel.
RCMD
TCP
512
Rem ot e Com m and Service.
REAL_AUDI O
TCP
7070
A st ream ing audio service t hat enables real t im e sound
over t he web.
REXEC
TCP
514
Rem ot e Execut ion Daem on.
RLOGI N
TCP
513
Rem ot e Login.
RTELNET
TCP
107
Rem ot e Telnet .
RTSP
TCP/ UDP
554
The Real Tim e St ream ing ( m edia cont rol) Prot ocol ( RTSP)
is a rem ot e cont rol for m ult im edia on t he I nt ernet .
SFTP
TCP
115
Sim ple File Transfer Prot ocol.
SMTP
TCP
25
Sim ple Mail Transfer Prot ocol is t he m essage- exchange
st andard for t he I nt ernet . SMTP enables you t o m ove
m essages from one e- m ail server t o anot her.
SNMP
TCP/ UDP
161
Sim ple Net work Managem ent Program .
SNMP-TRAPS
TCP/ UDP
162
Traps for use wit h t he SNMP ( RFC: 1215) .
SQL- NET
TCP
1521
St ruct ured Query Language is an int erface t o access dat a
on m any different t ypes of dat abase syst em s, including
m ainfram es, m idrange syst em s, UNI X syst em s and
net work servers.
SSH
TCP/ UDP
22
Secure Shell Rem ot e Login Program .
STRM WORKS
UDP
1558
St ream Works Prot ocol.
SYSLOG
UDP
514
Syslog allows you t o send syst em logs t o a UNI X server.
B222s User’s Guide
Appendix E Common Services
Table 89 Com m only Used Services ( cont inued)
NAME
PROTOCOL
PORT(S)
DESCRIPTION
TACACS
UDP
49
Login Host Prot ocol used for ( Term inal Access Cont roller
Access Cont rol Syst em ) .
TELNET
TCP
23
Telnet is t he login and t erm inal em ulat ion prot ocol
com m on on t he I nt ernet and in UNI X environm ent s. I t
operat es over TCP/ I P net works. I t s prim ary funct ion is t o
allow users t o log int o rem ot e host syst em s.
TFTP
UDP
69
Trivial File Transfer Prot ocol is an I nt ernet file t ransfer
prot ocol sim ilar t o FTP, but uses t he UDP ( User Dat agram
Prot ocol) rat her t han TCP ( Transm ission Cont rol Prot ocol) .
VDOLI VE
TCP
7000
Anot her videoconferencing solut ion.
B222s User’s Guide
251
Appendix E Common Services
252
B222s User’s Guide
A PPENDIX
Legal Information
L'ut ilisat ion de cet equipem ent ( 2.4GHz wireless LAN) est soum ise à cert aines rest rict ions: cet
equipem ent peut êt re ut ilisé à l'int erieur d'un bat im ent en ut ilisant t out es les frequences de 2400 a
2483.5MHz ( Chaine 1- 13) . Pour une ut ilisat ion en environem ent ext erieur, les frequences
com prises ent re 2400- 2454 MHz peuvent êt re ut ilisé. Pour les dernières rest rict ions, voir ht t p: / /
www.art- t elecom .fr.
For 2.4- GHz wireless LAN operat ion of t his product , cert ain rest rict ions apply. This equipm ent m ay
use t he ent ire- 2400- MHz t o 2483.5- MHz frequency band ( channels 1 t hrough 13) for indoor
applicat ions. For out door use, only 2400- 2454 MHz frequency band m ay be used. For t he lat est
requirem ent s, see ht t p: / / www.art- t elecom .fr.
Certifications (Class B)
Federal Communications Commission (FCC) Interference Statement
The device com plies wit h Part 15 of FCC rules. Operat ion is subj ect t o t he following t w o condit ions:
• This device m ay not cause harm ful int erference.
• This device m ust accept any int erfer ence received, including int erference t hat m ay cause undesired operat ions.
This device has been t est ed and found t o com ply wit h t he lim it s for a Class B digit al device pursuant t o Part 15 of t he FCC Rules. These
lim it s are designed t o provide reasonable prot ect ion against harm ful int erfer ence in a resident ial inst allat ion. This device generat es, uses,
and can radiat e radio frequency ener gy, and if not inst alled and used in accordance wit h t he inst ruct ions, m ay cause harm ful int erference
t o radio com m unicat ions. However, t her e is no guarant ee t hat int erference will not occur in a part icular inst allat ion.
I f t his device does cause harm ful int erference t o radio/ t elevision recept ion, w hich can be det erm ined by t urning t he device off and on, t he
user is encouraged t o t r y t o correct t he int erference by one or m ore of t he following m easures:
Reor ient or relocat e t he receiving ant enna.
I ncrease t he separat ion bet ween t he equipm ent and t he receiver.
Connect t he equipm ent int o an out let on a circuit different from t hat t o w hich t he receiver is connect ed.
Consult t he dealer or an experienced radio/ TV t echnician for help.
FCC Caut ion: Any changes or m odificat ions not expressly approved by t he part y responsible for com pliance could void t he user's aut horit y
t o operat e t his equipm ent .
FCC Radiation Exposure Statement
•
•
•
•
•
•
The ODU m ust be fixed- m ount ed on out door perm anent st ruct ures t o sat isfy RF exposure requirem ent s.
This device m eet s t he governm ent 's requirem ent s for exposure t o radio waves.
This device is designed and m anufact ured not t o exceed t he em ission lim it s for exposure t o radio frequency ( RF) energy set by t he
Federal Com m unicat ions Com m ission of t he U.S. Governm ent .
This device com plies wit h FCC radiat ion exposure lim it s set fort h for an uncont rolled environm ent . I n order t o avoid t he possibilit y of
exceeding t he FCC radio frequency exposure lim it s, hum an proxim it y t o t he indoor device ( I DU) ant enna shall not be less t han 20cm ;
t o t he out door device ( ODU) ant enna shall not be less t han 35cm during norm al operat ion.
This t ransm it t er m ust not be co- locat ed or operat ing in conj unct ion w it h any ot her ant enna or t ransm it t er.
I EEE 802.11b, 802.11g or 802.11n( 20MHz) operat ion of t his product in t he U.S.A. is firm ware- lim it ed t o channels 1 t hrough 11. I EEE
802.11n( 40MHz) operat ion of t his product in t he U.S.A. is fir m ware- lim it ed t o channels 3 t hrough 9.
I EEE 802.11b or 802.11g operat ion of t his product in t he U.S.A. is fir m war e- lim it ed t o channels 1 t hrough 11.
B222s User’s Guide
253
Appendix F Legal Information
本機限在不干擾合法電臺與不受被干擾保障條件下於室
減少電磁波影響，請妥適使用
使用
Notices
Changes or m odificat ions not expressly approved by t he part y responsible for com pliance could void t he user's aut horit y t o operat e t he
equipm ent .
This device is designed for t he WLAN 2.4 GHz and/ or 5 GHz net works t hroughout t he EC region and Sw it zer land, w it h rest rict ions in
France.
Ce produit est conçu pour les bandes de fréquences 2,4 GHz et / ou 5 GHz conform ém ent à la législat ion Européenne. En France
m ét ropolit aine, suivant les décisions n° 03- 908 et 03- 909 de l’ARCEP, la puissance d’ém ission ne devra pas dépasser 10 m W ( 10 dB) dans
le cadre d’une inst allat ion WiFi en ext érieur pour les fréquences com pr ises ent re 2454 MHz et 2483,5 MHz.
This Class B digit al apparat us com plies w it h Canadian I CES- 003.
Cet appareil num érique de la classe B est conform e à la norm e NMB- 003 du Canada.
Safety Warnings
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
Do NOT use t his product near wat er, for exam ple, in a wet basem ent or near a swim m ing pool.
Do NOT expose your device t o dam pness, dust or corrosive liquids.
Do NOT st ore t hings on t he device.
Do NOT inst all, use, or ser vice t his device during a t hunderst orm . There is a r em ot e risk of elect ric shock from light ning.
Connect ONLY suit able accessories t o t he device.
Do NOT open t he device or unit . Opening or rem oving covers can expose you t o dangerous high volt age point s or ot her risks. ONLY
qualified service personnel should service or disassem ble t his device. Please cont act your vendor for furt her inform at ion.
Make sure t o connect t he cables t o t he correct port s.
Place connect ing cables carefully so t hat no one will st ep on t hem or st um ble over t hem .
Always disconnect all cables from t his device befor e servicing or disassem bling.
Use ONLY an appropriat e power adapt or or cord for your device.
Connect t he power adapt or or cord t o t he right supply volt age ( for exam ple, 110V AC in Nort h Am er ica or 230V AC in Europe) .
Do NOT rem ove t he plug and connect it t o a pow er out let by it self; always at t ach t he plug t o t he power adapt or first before connect ing
it t o a power out let .
Do NOT allow anyt hing t o rest on t he power adapt or or cord and do NOT place t he product where anyone can walk on t he power
adapt or or cord.
Do NOT use t he device if t he power adapt or or cor d is dam aged as it m ight cause elect rocut ion.
I f t he power adapt or or cord is dam aged, rem ove it fr om t he device and t he pow er source.
Do NOT at t em pt t o repair t he power adapt or or cord. Cont act your local vendor t o order a new one.
Do not use t he indoor device ( I DU) out side, and m ake sure all t he connect ions are indoors. There is a r em ot e risk of elect ric shock
from light ning.
Do NOT obst ruct t he device vent ilat ion slot s, as insufficient airflow m ay harm your device.
Use only No. 26 AWG ( Am er ican Wir e Gauge) or lar ger t elecom m unicat ion line cord.
I f you wall m ount your device, m ake sure t hat no elect rical lines, gas or wat er pipes w ill be dam aged.
Your product is m arked w it h t his sym bol, which is know n as t he WEEE m ark. WEEE st ands for Wast e Elect ronics and Elect rical
Equipm ent . I t m eans t hat used elect rical and elect ronic product s should not be m ixed w it h general wast e. Used elect rical and
elect ronic equipm ent should be t reat ed separat ely.
254
B222s User’s Guide
Index
Index
call hold 142
call rule 134
ACK m essage 140
call service m ode 142
act ivat ion
SSI D 52
wireless LAN
scheduling 57
call t ransfer 143
adm inist rat or password 21
Advanced Encrypt ion St andard, see AES
AES 237
alt ernat ive subnet m ask not at ion 182
ant enna
direct ional 241
gain 241
om ni- direct ional 241
AP ( Access Point ) 231
applicat ions
I nt ernet access 15
VoI P 16
aut hent icat ion 58, 59
RADI US server 59
aut om at ic logout 21
call wait ing 143
CAPWAP 36, 38
Cert ificat e Aut horit y, see CA
cert ificat ions 253
not ices 254
channel 231
int erference 231
channel scan 47
channel, wireless LAN 44
Class of Service 141
Class of Service, see CoS
client list 72
client- server prot ocol 137
com fort noise generat ion 122
configurat ion
backup 167
reset 169
rest oring 168
Cont rol and Provisioning of Wireless Access Point s
See CAPWAP
copyright 253
CoS 93, 141
backup
configurat ion 167
CTS ( Clear t o Send) 232
CTS t hreshold 58
bandwidt h m anagem ent 83
Basic Service Set , see BSS
blinking LEDs 18
Broadband 35
BSS 61, 229
exam ple 61
BYE request 140
dat a fragm ent t hreshold 58
default LAN I P address 21
Denials of Service, see DoS
DHCP 32, 70, 103
CA 236
B222s User’s Guide
diagnost ic 171
different iat ed services 141
Different iat ed Services, see DiffServ
255
Index
DiffServ ( Different iat ed Services) 141
code point s 141
m arking rule 94, 141
flashing 142
fragm ent at ion t hreshold 58, 232
FTP 96
DNS 70, 79
DNS server address assignm ent 41
docum ent at ion
relat ed 2
dom ain nam e syst em , see DNS
Dom ain Nam e Syst em . See DNS.
DoS 106
G.168 122
Guide
Quick St art 2
DS ( Different iat ed Services) 93
DS field 93, 141
DSCP 93, 141
DTLS 36
dynam ic DNS 103
Dynam ic Host Configurat ion Prot ocol, see DHCP
dynam ic WEP key exchange 236
hidden node 231
host 155
host nam e 31
DYNDNS wildcard 103
I ANA 186
EAP Aut hent icat ion 235
echo cancellat ion 122
Encapsulat ion 41
encapsulat ion 35
encrypt ion 60, 237
ESS 230
Europe t ype call service m ode 142
Ext ended Service Set I Dent ificat ion 46, 53
Ext ended Service Set , see ESS
I BSS 229
I EEE 802.11g 233
I ndependent Basic Service Set , see I BSS
init ializat ion vect or ( I V) 238
I nt ernet access 15
I nt ernet Assigned Num bers Aut horit y, see I ANA
I nt ernet Service Provider, see I SP
I P address 32
default 21
WAN 36
I P Address Assignm ent 41
I P pool 71
I SP 35
FCC int erference st at em ent 253
I TU-T 122
filt ers
MAC address 59
firewalls 105
configurat ion 108
DoS 106
securit y 112
firm ware 165
flash key 142
256
LAN 69
client list 72
MAC address 73
lim it at ions
B222s User’s Guide
Index
wireless LAN 60
WPS 67
list ening port 127
OK response 140
Local Area Net work, see LAN
ot her docum ent at ion 2
login
passwords 21
logout 21
aut om at ic 21
logs 145, 163
Pairwise Mast er Key ( PMK) 238, 239
passphrase 48
MAC 31, 115
MAC address 73
filt er 59
MAC address filt ering 115
MAC filt er 115
Managem ent Mode
CAPWAP and DHCP 37
CAPWAP and I P Subnet s 37
m anaged AP 36
passwords 21
PBC 62
peer- t o- peer calls 134
Per- Hop Behavior, see PHB
PHB 94, 141
phone book
speed dial 134
PI N, WPS 62
exam ple 64
port s 18
PPP over Et hernet , see PPPoE
m anaging t he device
good habit s 18
using FTP. See FTP.
PPPoE 35
MBSSI D 61
prot ocol 35
Media access cont rol 115
PSK 238
Media Access Cont rol, see MAC Address
Push But t on Configurat ion, see PBC
Message I nt egrit y Check, see MI C
push but t on, WPS 62
pream ble 58
pream ble m ode 233
MI C 237
m odel nam e 31
m ult im edia 136
Mult iple BSS, see MBSSI D
QoS 83, 84, 93, 140
Qualit y of Service, see QoS
Quick St art Guide 2, 21
NAT 96, 186
definit ions 100
how it works 101
what it does 101
Net work Address Translat ion, see NAT
net work m ap 24
non- proxy calls 134
RADI US 234
m essage t ypes 235
m essages 235
shared secret key 235
RADI US server 59
B222s User’s Guide
257
Index
Request To Send, see RTS
SSI D 59
act ivat ion 52
MBSSI D 61
reset 169
st at ic rout e 75
RESET but t on 20
st at us 29
rest art 169
st at us indicat ors 18
rest oring configurat ion 168
subnet 179
RFC 1631 95
subnet m ask 180
RFC 1889 139
subnet t ing 182
RFC 3164 145
supplem ent ary services 141
rout er feat ures 15
syslog
prot ocol 145
severit y levels 145
Real t im e Transport Prot ocol, see RTP
relat ed docum ent at ion 2
RTP 139
RTS ( Request To Send) 232
t hreshold 231, 232
RTS t hreshold 58
syst em
firm ware 165
passwords 21
st at us 29
Syst em I nfo 31
syst em nam e 31, 160
safet y warnings 254
scan 47
scheduling
wireless LAN 57
securit y
wireless LAN 58
securit y, net work 112
Tem poral Key I nt egrit y Prot ocol, see TKI P
The 36
t hree- way conference 143
Service Set 46, 53
t hresholds
dat a fragm ent 58
RTS/ CTS 58
Session I nit iat ion Prot ocol, see SI P
TKI P 237
silence suppression 122
ToS 140
SI P 136
account 136
call progression 139
client 137
ident it ies 136
I NVI TE request 140
num ber 136
proxy server 137
redirect server 138
regist er server 139
servers 137
service dom ain 136
URI 136
user agent 137
Type of Service, see ToS
service access cont rol 157
Uniform Resource I dent ifier 136
Universal Plug and Play, see UPnP
upgrading firm ware 165
UPnP 73
securit y issues 70
speed dial 134
258
B222s User’s Guide
Index
VAD 122
version
firm ware
version 32
voice act ivit y det ect ion 122
voice coding 140
act ivat ion 52
WEP 60
WPA 60
WPA- PSK 60
WPS 62, 64
exam ple 65
lim it at ions 67
PI N 62
push but t on 62
VoI P 136
feat ures 16
peer- t o- peer calls 134
wireless net work
exam ple 43
VoI P feat ures 16
WLAN 43
aut o- scan channel 47
int erference 231
passphrase 48
scheduling 57
securit y param et ers 240
see also wireless.
WEP 48
VoI P st at us 152
WAN
Wide Area Net work, see WAN 35
warnings 254
Web Configurat or 21
web configurat or
passwords 21
WEP 48, 60
WEP Encrypt ion 49
Wi- Fi Prot ect ed Access, see WPA
wireless
securit y 233
wireless client WPA supplicant s 238
wireless LAN 43
aut hent icat ion 58, 59
BSS 61
exam ple 61
channel 44
encrypt ion 60
exam ple 44
fragm ent at ion t hreshold 58
lim it at ions 60
MAC address filt er 59
MBSSI D 61
pream ble 58
RADI US server 59
RTS/ CTS t hreshold 58
scheduling 57
securit y 58
SSI D 59
B222s User’s Guide
wireless securit y 233
WLAN but t on 17
WPA 60, 237
key caching 238
pre- aut hent icat ion 238
user aut hent icat ion 238
vs WPA- PSK 238
wireless client supplicant 238
wit h RADI US applicat ion exam ple 239
WPA2 237
user aut hent icat ion 238
vs WPA2- PSK 238
wireless client supplicant 238
wit h RADI US applicat ion exam ple 239
WPA2- Pre- Shared Key, see WPA2- PSK
WPA2- PSK 237, 238
applicat ion exam ple 239
WPA- PSK 60, 237, 238
applicat ion exam ple 239
WPS 62, 64
exam ple 65
lim it at ions 67
PI N 62
exam ple 64
push but t on 62
259

---

Source Exif Data:

File Type                       : PDF
File Type Extension             : pdf
MIME Type                       : application/pdf
PDF Version                     : 1.7
Linearized                      : Yes
Encryption                      : Standard V4.4 (128-bit)
User Access                     : Print, Extract, Print high-res
Create Date                     : 2012:06:25 14:28:09+08:00
Modify Date                     : 2012:06:25 16:26:49+08:00
Has XFA                         : No
XMP Toolkit                     : Adobe XMP Core 4.2.1-c043 52.372728, 2009/01/18-15:08:04
Metadata Date                   : 2012:06:25 16:26:49+08:00
Producer                        : iTextSharp 5.0.4 (c) 1T3XT BVBA
Format                          : application/pdf
Document ID                     : uuid:5c64c747-6d0e-444d-8d7b-5df7313e5187
Instance ID                     : uuid:8d82ec3c-3996-4852-b59c-1c1f131ec0eb
Page Count                      : 259

EXIF Metadata provided by EXIF.tools