ZyXEL Communications P660NT1A 802.11n Wireless ADSL2+ Gateway User Manual SMG 700 User s Guide V1 00 Nov 2004

Download:
Mirror Download [FCC.gov]
Document ID	1315612
Application ID	lS8ZBEueEQcV0f4AA8ktug==
Document Description	user manual 2
Short Term Confidential	No
Permanent Confidential	No
Supercede	No
Document Type	User Manual
Display Format	Adobe Acrobat PDF - pdf
Filesize	309.11kB (3863854 bits)
Date Submitted	2010-07-21 00:00:00
Date Available	2010-07-22 00:00:00
Creation Date	2010-07-14 11:02:42
Producing Software	Acrobat Distiller 9.3.2 (Windows)
Document Lastmod	2010-07-21 09:39:03
Document Title	SMG-700 User’s Guide V1.00 (Nov 2004)
Document Creator	FrameMaker 7.1
Document Author:	Cindy Yang

Chapter 21 Tools
Backup Configuration
Backup Configuration allows you to back up (save) the ZyXEL Device’s current
configuration to a file on your computer. Once your ZyXEL Device is configured
and functioning properly, it is highly recommended that you back up your
configuration file before making configuration changes. The backup configuration
file will be useful in case you need to return to your previous settings.
Click Backup to save the ZyXEL Device’s current configuration to your computer.
Restore Configuration
Restore Configuration allows you to upload a new or previously saved
configuration file from your computer to your ZyXEL Device.
Table 90 Restore Configuration
LABEL
DESCRIPTION
File Path
Type in the location of the file you want to upload in this field or click
Browse ... to find it.
Browse...
Click this to find the file you want to upload. Remember that you must
decompress compressed (.ZIP) files before you can upload them.
Upload
Click this to begin the upload process.
Do not turn off the ZyXEL Device while configuration file upload is
in progress.
After you see a “restore configuration successful” screen, you must then wait one
minute before logging into the ZyXEL Device again.
Figure 107 Configuration Upload Successful
P-660N-T1A User’s Guide
221
Chapter 21 Tools
The ZyXEL Device automatically restarts in this time causing a temporary network
disconnect. In some operating systems, you may see the following icon on your
desktop.
Figure 108 Network Temporarily Disconnected
If you uploaded the default configuration file you may need to change the IP
address of your computer to be in the same subnet as that of the default device IP
address (192.168.1.1). See Appendix A on page 243 for details on how to set up
your computer’s IP address.
If the upload was not successful, the following screen will appear. Click Return to
go back to the Configuration screen.
Figure 109 Configuration Upload Error
222
P-660N-T1A User’s Guide
Chapter 21 Tools
Reset to Factory Defaults
Click the Reset button to clear all user-entered configuration information and
return the ZyXEL Device to its factory defaults. The following warning screen
appears.
Figure 110 Reset Warning Message
Figure 111 Reset In Process Message
You can also press the RESET button on the rear panel to reset the factory
defaults of your ZyXEL Device. Refer to Section 1.6 on page 26 for more
information on the RESET button.
21.4 The Restart Screen
System restart allows you to reboot the ZyXEL Device remotely without turning
the power off. You may need to do this if the ZyXEL Device hangs, for example.
Click Maintenance > Tools > Restart. Click Restart to have the ZyXEL Device
reboot. This does not affect the ZyXEL Device's configuration.
Figure 112 Maintenance > Tools >Restart
P-660N-T1A User’s Guide
223
Chapter 21 Tools
224
P-660N-T1A User’s Guide
CHAPTER
22
Diagnostic
22.1 Overview
These read-only screens display information to help you identify problems with the
ZyXEL Device.
22.1.1 What You Can Do in the Diagnostic Screens
• Use the General Diagnostic screen (Section 22.2 on page 225) to ping an IP
address.
• Use the DSL Line Diagnostic screen (Section 22.3 on page 226) to view the
DSL line statistics and reset the ADSL line.
22.2 The General Diagnostic Screen
Use this screen to ping an IP address. Click Maintenance > Diagnostic to open
the screen shown next.
Figure 113 Maintenance > Diagnostic > General
P-660N-T1A User’s Guide
225
Chapter 22 Diagnostic
The following table describes the fields in this screen.
Table 91 Maintenance > Diagnostic > General
LABEL
DESCRIPTION
TCP/IP
Address
Type the IP address of a computer that you want to ping in order to test a
connection.
Ping
Click this to ping the IP address that you entered.
22.3 The DSL Line Diagnostic Screen
Use this screen to view the DSL line statistics and reset the ADSL line. Click
Maintenance > Diagnostic > DSL Line to open the screen shown next.
Figure 114 Maintenance > Diagnostic > DSL Line
226
P-660N-T1A User’s Guide
Chapter 22 Diagnostic
The following table describes the fields in this screen.
Table 92 Maintenance > Diagnostic > DSL Line
LABEL
DESCRIPTION
ATM Status
Click this to view your DSL connection’s Asynchronous Transfer Mode
(ATM) statistics. ATM is a networking technology that provides highspeed data transfer. ATM uses fixed-size packets of information called
cells. With ATM, a high QoS (Quality of Service) can be guaranteed.
The (Segmentation and Reassembly) SAR driver translates packets into
ATM cells. It also receives ATM cells and reassembles them into packets.
These counters are set back to zero whenever the device starts up.
inPkts is the number of good ATM cells that have been received.
inDiscards is the number of received ATM cells that were rejected.
outPkts is the number of ATM cells that have been sent.
outDiscards is the number of ATM cells sent that were rejected.
inF4Pkts is the number of ATM Operations, Administration, and
Management (OAM) F4 cells that have been received. See ITU
recommendation I.610 for more on OAM for ATM.
outF4Pkts is the number of ATM OAM F4 cells that have been sent.
inF5Pkts is the number of ATM OAM F5 cells that have been received.
outF5Pkts is the number of ATM OAM F5 cells that have been sent.
openChan is the number of times that the ZyXEL Device has opened a
logical DSL channel.
closeChan is the number of times that the ZyXEL Device has closed a
logical DSL channel.
txRate is the number of bytes transmitted per second.
rxRate is the number of bytes received per second.
ATM Loopback
Test
P-660N-T1A User’s Guide
Click this to start the ATM loopback test. Make sure you have configured
at least one PVC with proper VPIs/VCIs before you begin this test. The
ZyXEL Device sends an OAM F5 packet to the DSLAM/ATM switch and
then returns it (loops it back) to the ZyXEL Device. The ATM loopback
test is useful for troubleshooting problems with the DSLAM and ATM
network.
227
Chapter 22 Diagnostic
Table 92 Maintenance > Diagnostic > DSL Line (continued)
LABEL
DESCRIPTION
DSL Line
Status
Click this to view statistics about the DSL connections.
noise margin downstream is the signal to noise ratio for the
downstream part of the connection (coming into the ZyXEL Device from
the ISP). It is measured in decibels. The higher the number the more
signal and less noise there is.
output power upstream is the amount of power (in decibels) that the
ZyXEL Device is using to transmit to the ISP.
attenuation downstream is the reduction in amplitude (in decibels) of
the DSL signal coming into the ZyXEL Device from the ISP.
Discrete Multi-Tone (DMT) modulation divides up a line’s bandwidth into
sub-carriers (sub-channels) of 4.3125 KHz each called tones. The rest of
the display is the line’s bit allocation. This is displayed as the number (in
hexadecimal format) of bits transmitted for each tone. This can be used
to determine the quality of the connection, whether a given sub-carrier
loop has sufficient margins to support certain ADSL transmission rates,
and possibly to determine whether particular specific types of
interference or line attenuation exist. Refer to the ITU-T G.992.1
recommendation for more information on DMT.
The better (or shorter) the line, the higher the number of bits transmitted
for a DMT tone. The maximum number of bits that can be transmitted per
DMT tone is 15. There will be some tones without any bits as there has to
be space between the upstream and downstream channels.
Reset ADSL
Line
Click this to reinitialize the ADSL line. The large text box above then
displays the progress and results of this operation, for example:
"Start to reset ADSL
Loading ADSL modem F/W...
Reset ADSL Line Successfully!"
Capture All
Logs
228
Click this to display information and statistics about your ZyXEL Device’s
ATM statistics, DSL connection statistics, DHCP settings, firmware
version, WAN and gateway IP address, VPI/VCI and LAN IP address.
P-660N-T1A User’s Guide
CHAPTER
23
Troubleshooting
This chapter offers some suggestions to solve problems you might encounter. The
potential problems are divided into the following categories.
• Power, Hardware Connections, and LEDs
• ZyXEL Device Access and Login
• Internet Access
23.1 Power, Hardware Connections, and LEDs
The ZyXEL Device does not turn on. None of the LEDs turn on.
Make sure the ZyXEL Device is turned on.
Make sure you are using the power adaptor or cord included with the ZyXEL
Device.
Make sure the power adaptor or cord is connected to the ZyXEL Device and
plugged in to an appropriate power source. Make sure the power source is turned
on.
Turn the ZyXEL Device off and on.
If the problem continues, contact the vendor.
One of the LEDs does not behave as expected.
Make sure you understand the normal behavior of the LED. See Section 1.5 on
page 25.
P-660N-T1A User’s Guide
229
Chapter 23 Troubleshooting
Check the hardware connections.
Inspect your cables for damage. Contact the vendor to replace any damaged
cables.
Turn the ZyXEL Device off and on.
If the problem continues, contact the vendor.
23.2 ZyXEL Device Access and Login
I forgot the IP address for the ZyXEL Device.
The default IP address is 192.168.1.1.
If you changed the IP address and have forgotten it, you might get the IP address
of the ZyXEL Device by looking up the IP address of the default gateway for your
computer. To do this in most Windows computers, click Start > Run, enter cmd,
and then enter ipconfig. The IP address of the Default Gateway might be the IP
address of the ZyXEL Device (it depends on the network), so enter this IP address
in your Internet browser.
If this does not work, you have to reset the device to its factory defaults. See
Section 1.6 on page 26.
I forgot the password.
The default admin password is 1234.
If this does not work, you have to reset the device to its factory defaults. See
Section 1.6 on page 26.
I cannot see or access the Login screen in the web configurator.
Make sure you are using the correct IP address.
• The default IP address is 192.168.1.1.
230
P-660N-T1A User’s Guide
Chapter 23 Troubleshooting
• If you changed the IP address (Section 7.2 on page 87), use the new IP
address.
• If you changed the IP address and have forgotten it, see the troubleshooting
suggestions for I forgot the IP address for the ZyXEL Device.
Check the hardware connections, and make sure the LEDs are behaving as
expected. See the Quick Start Guide.
Make sure your Internet browser does not block pop-up windows and has
JavaScripts and Java enabled. See Appendix C on page 281.
Make sure your computer is in the same subnet as the ZyXEL Device. (If there are
routers between your computer and the ZyXEL Device, skip this step.)
• If there is a DHCP server on your network, make sure your computer is using
a dynamic IP address. See Appendix A on page 243. Your ZyXEL Device is a
DHCP server by default.
• If there is no DHCP server on your network, make sure your computer’s IP
address is in the same subnet as the ZyXEL Device. See Appendix A on page
243.
Reset the device to its factory defaults, and try to access the ZyXEL Device with
the default IP address. See Section 1.6 on page 26.
If the problem continues, contact the network administrator or vendor, or try one
of the advanced suggestions.
Advanced Suggestions
• Try to access the ZyXEL Device using another service, such as Telnet. If you can
access the ZyXEL Device, check the remote management settings and firewall
rules to find out why the ZyXEL Device does not respond to HTTP.
• If your computer is connected to the WAN port or is connected wirelessly, use a
computer that is connected to a ETHERNET port.
I can see the Login screen, but I cannot log in to the ZyXEL Device.
Make sure you have entered the password correctly. The default admin password
is 1234. The field is case-sensitive, so make sure [Caps Lock] is not on.
You cannot log in to the web configurator while someone is using Telnet to access
the ZyXEL Device. Log out of the ZyXEL Device in the other session, or ask the
person who is logged in to log out.
Turn the ZyXEL Device off and on.
P-660N-T1A User’s Guide
231
Chapter 23 Troubleshooting
If this does not work, you have to reset the device to its factory defaults. See
Section 23.1 on page 229.
I cannot Telnet to the ZyXEL Device.
See the troubleshooting suggestions for I cannot see or access the Login screen in
the web configurator. Ignore the suggestions about your browser.
I cannot use FTP to upload / download the configuration file. / I cannot use FTP to
upload new firmware.
See the troubleshooting suggestions for I cannot see or access the Login screen in
the web configurator. Ignore the suggestions about your browser.
23.3 Internet Access
I cannot access the Internet.
232
Check the hardware connections, and make sure the LEDs are behaving as
expected. See the Quick Start Guide and Section 1.5 on page 25.
Make sure you entered your ISP account information correctly in the wizard. These
fields are case-sensitive, so make sure [Caps Lock] is not on.
If you are trying to access the Internet wirelessly, make sure the wireless settings
in the wireless client are the same as the settings in the AP.
If you are trying to access the Internet wirelessly, make sure you enabled the
wireless LAN and have selected the correct country and channel in which your
ZyXEL Device operates in the Wireless LAN > AP screen.
Disconnect all the cables from your device, and follow the directions in the Quick
Start Guide again.
If the problem continues, contact your ISP.
P-660N-T1A User’s Guide
Chapter 23 Troubleshooting
I cannot access the Internet anymore. I had access to the Internet (with the ZyXEL
Device), but my Internet connection is not available anymore.
Check the hardware connections, and make sure the LEDs are behaving as
expected. See the Quick Start Guide and Section 1.5 on page 25.
Turn the ZyXEL Device off and on.
If the problem continues, contact your ISP.
The Internet connection is slow or intermittent.
There might be a lot of traffic on the network. Look at the LEDs, and check Section
1.5 on page 25. If the ZyXEL Device is sending or receiving a lot of information,
try closing some programs that use the Internet, especially peer-to-peer
applications.
Check the signal strength. If the signal strength is low, try moving your computer
closer to the ZyXEL Device if possible, and look around to see if there are any
devices that might be interfering with the wireless network (for example,
microwaves, other wireless networks, and so on).
Turn the ZyXEL Device off and on.
If the problem continues, contact the network administrator or vendor, or try one
of the advanced suggestions.
Advanced Suggestions
• Check the settings for QoS. If it is disabled, you might consider activating it. If it
is enabled, you might consider raising or lowering the priority for some
applications.
P-660N-T1A User’s Guide
233
Chapter 23 Troubleshooting
234
P-660N-T1A User’s Guide
CHAPTER
24
Product Specifications
The following tables summarize the ZyXEL Device’s hardware and firmware
features.
24.1 Hardware Specifications
The following table summarizes the ZyXEL Device’s hardware features.
Table 93 Hardware Specifications
Dimensions
133mm (L) x 61mm (W) x 163mm (H)
Weight
200g
Power Specification
12VDC 1A
LAN Ethernet Port
One auto-negotiating, auto MDI/MDI-X 10/100 Mbps RJ-45
Ethernet port
ADSL Port
1 RJ-11 for Annex A
802.11n Wireless
LAN Access
On-board WLAN module
RESET Button
Press for 10 seconds to restore factory defaults
Antenna
1 internal antenna, 3.5dBi
WPS Button
1 second: turn on or off WLAN
5 seconds: enable WPS (Wi-Fi Protected Setup)
Operation
Temperature
0º C ~ 40º C
Storage Temperature
-20º ~ 60º C
Operation Humidity
20% ~ 90% RH
Storage Humidity
20% ~ 90% RH
P-660N-T1A User’s Guide
235
Chapter 24 Product Specifications
Table 93 Hardware Specifications
Compliance and
Certifications
EANSI/UL-60950-1
CSA 60950-1
EN60950-1 (1992+A1+A2+A3+A4+A11)
IEC 60950-1
FCC Part 15 Class B
EN55022 Class B
EN61000-3-2
EN61000-3-3
EN61000-4-2
EN61000-4-3
EN61000-4-4
EN61000-4-5
EN61000-4-6
EN61000-4-8
EN61000-4-11
K.21 4KV
Power Adaptor Safety
Approvals
ANSI/UL 60950-1
CSA 60950-1
CE mark
GS mark or TUV certificate
EN60950-1
24.2 Firmware Specifications
The following table summarizes the ZyXEL Device’s firmware features.
Table 94 Firmware Specifications
Basic Features
236
Default IP
Address
192.168.1.1
Default Subnet
Mask
255.255.255.0 (24 bits)
Default Admin
Password
1234
P-660N-T1A User’s Guide
Chapter 24 Product Specifications
Table 94 Firmware Specifications (continued)
ADSL Standard
Compliance
Support Multi-Mode standard (ANSI T1.413, Issue 2; G.dmt
(G.992.1); G.lite (G992.2)).
EOC specified in ITU-T G.992.1
ADSL2 G.dmt.bis (G.992.3)
ADSL2 G.lite.bis (G.992.4)
ADSL2+ (G.992.5)
Reach Extended ADSL (RE ADSL)
SRA (Seamless Rate Adaptation)
Auto-negotiating rate adaptation
ADSL physical connection ATM AAL5 (ATM Adaptation Layer type
5)
Support multi-protocol over AAL5 (RFC2684/1483)
Support PPP over ATM AAL5 (RFC2364)
PPP over Ethernet support for DSL connection (RFC 2516)
Support VC-based and LLC-based multiplexing
Support up to 8 PVCs
I.610 F4/F5 OAM
TR-067/TR-100 supported
Annex A,B,I, J,L,M
Bit swapping
P-660N-T1A User’s Guide
237
Chapter 24 Product Specifications
Table 94 Firmware Specifications (continued)
Wireless LAN
Features
WDS(wireless client: TBD)
IEEE 802.11n Compliance
Frequency Range:2.4 GHz
Advanced Orthogonal Frequency Division Multiplexing (OFDM)
Data Rates:150Mbps and Auto Fallback
Wired Equivalent Privacy (WEP) Data Encryption 64/128
WLAN bridge to LAN
32 MAC Address filter
WPA, WPA-PSK,
WPA2, WPA2-PSK
WPS
IEEE 802.1x (EAP-MD5, TLS and TTLS)
WMM
Multi BSSID (4 BSSIDs)
Wireless Scheduling
Firewall
DoS
Protocol and Generic Packet Filter
Stateful Inspection
Access Control List (ACL) between LAN, WAN
Real time alert via e-mail
Report and logs
20 ACL rules
Content Filtering
URL Keyword Blocking
NAT
Muti-NAT & Port Address Translation (PAT)
2048 NAT session
Cone NAT
Multimedia applications support (NetMeeting, CuSeeMe, ICQ,
…etc)
Microsoft PPTP under NAT/SUA
Multiple VPN (IPSec/PPTP/L2TP) pass-through
NAT loopback
12 NAT port forwarding
238
P-660N-T1A User’s Guide
Chapter 24 Product Specifications
Table 94 Firmware Specifications (continued)
UPnP
UPnP DCP
UPnP protocols
NAT traversal
Protocol Support
SIP pass-through
DNS Proxy
Dynamic DNS (www.dyndns.org)
IP Alias
DHCP client/server/relay
RIP I/ RIP II supported
Support 16 IP Static routes by Gateway
IGMP v1 and v2, v3
IP Policy Routing
UPnP support
Transparent bridging, VLAN-tagging pass-through bridge mode
Static DHCP
802.1Q
TR-098 complied QoS
Management
Embedded Web Configurator
SNMP v1 & v2 with MIB II
TR-064 support(Need to support ZyXEL"easy install utility")
TR-111
ADSL mode selectable on GUI
Embedded FTP/TFTP Server for f/w upgrade and romfile backup
and restore
Remote Management Control: Telnet, FTP, and Web.
TR-069 HTTPS(with motive certification)
MTU adjustable on WebGUI
WAN Backup
Traffic redirect
Other features
rom-t
Support IGMP Proxy
P-660N-T1A User’s Guide
239
Chapter 24 Product Specifications
24.3 Standards Support
The following list, which is not exhaustive, illustrates the standards supported in
the ZyXEL Device.
Table 95 Standards Supported
STANDARD
240
DESCRIPTION
RFC 867
Daytime Protocol
RFC 868
Time Protocol.
RFC 1058
RIP-1 (Routing Information Protocol)
RFC 1112
IGMP v1
RFC 1305
Network Time Protocol (NTP version 3)
RFC 1483
Multiprotocol Encapsulation over ATM Adaptation Layer 5
RFC 1631
IP Network Address Translator (NAT)
RFC 1661
The Point-to-Point Protocol (PPP)
RFC 1723
RIP-2 (Routing Information Protocol)
RFC 2236
Internet Group Management Protocol, Version 2.
RFC 2364
PPP over AAL5 (PPP over ATM over ADSL)
RFC 2408
Internet Security Association and Key Management Protocol
(ISAKMP)
RFC 2516
A Method for Transmitting PPP Over Ethernet (PPPoE)
RFC 2684
Multiprotocol Encapsulation over ATM Adaptation Layer 5.
RFC 2766
Network Address Translation - Protocol
IEEE 802.11
Also known by the brand Wi-Fi, denotes a set of Wireless LAN/
WLAN standards developed by working group 11 of the IEEE
LAN/MAN Standards Committee (IEEE 802).
IEEE 802.11b
Uses the 2.4 gigahertz (GHz) band
IEEE 802.11g
Uses the 2.4 gigahertz (GHz) band
IEEE 802.11n
Uses the 2.4 gigahertz (GHz) band
IEEE 802.11d
Standard for Local and Metropolitan Area Networks: Media
Access Control (MAC) Bridges
IEEE 802.11x
Port Based Network Access Control.
IEEE 802.11e QoS
IEEE 802.11 e Wireless LAN for Quality of Service
ANSI T1.413, Issue 2
Asymmetric Digital Subscriber Line (ADSL) standard.
G dmt(G.992.1)
G.992.1 Asymmetrical Digital Subscriber Line (ADSL)
Transceivers
ITU G.992.1 (G.DMT)
ITU standard for ADSL using discrete multitone modulation.
ITU G.992.2 (G. Lite)
ITU standard for ADSL using discrete multitone modulation.
ITU G.992.3
(G.dmt.bis)
ITU standard (also referred to as ADSL2) that extends the
capability of basic ADSL in data rates.
ITU G.992.4
(G.lite.bis)
ITU standard (also referred to as ADSL2) that extends the
capability of basic ADSL in data rates.
P-660N-T1A User’s Guide
Chapter 24 Product Specifications
Table 95 Standards Supported (continued)
STANDARD
DESCRIPTION
ITU G.992.5 (ADSL2+) ITU standard (also referred to as ADSL2+) that extends the
capability of basic ADSL by doubling the number of downstream
bits.
Microsoft PPTP
MS PPTP (Microsoft's implementation of Point to Point Tunneling
Protocol)
MBM v2
Media Bandwidth Management v2
RFC 2383
ST2+ over ATM Protocol Specification - UNI 3.1 Version
TR-069
TR-069 DSL Forum Standard for CPE Wan Management.
1.363.5
Compliant AAL5 SAR (Segmentation And Re-assembly)
P-660N-T1A User’s Guide
241
Chapter 24 Product Specifications
242
P-660N-T1A User’s Guide
APPENDIX
Setting Up Your Computer’s IP
Address
Note: Your specific ZyXEL Device may not support all of the operating systems
described in this appendix. See the product specifications for more information
about which operating systems are supported.
This appendix shows you how to configure the IP settings on your computer in
order for it to be able to communicate with the other devices on your network.
Windows Vista/XP/2000, Mac OS 9/OS X, and all versions of UNIX/LINUX include
the software components you need to use TCP/IP on your computer.
If you manually assign IP information instead of using a dynamic IP, make sure
that your network’s computers have IP addresses that place them in the same
subnet.
In this appendix, you can set up an IP address for:
• Windows XP/NT/2000 on page 244
• Windows Vista on page 247
• Windows 7 on page 251
• Mac OS X: 10.3 and 10.4 on page 255
• Mac OS X: 10.5 and 10.6 on page 258
• Linux: Ubuntu 8 (GNOME) on page 261
• Linux: openSUSE 10.3 (KDE) on page 266
P-660N-T1A User’s Guide
243
Appendix A Setting Up Your Computer’s IP Address
Windows XP/NT/2000
The following example uses the default Windows XP display theme but can also
apply to Windows 2000 and Windows NT.
244
Click Start > Control Panel.
In the Control Panel, click the Network Connections icon.
P-660N-T1A User’s Guide
Appendix A Setting Up Your Computer’s IP Address
Right-click Local Area Connection and then select Properties.
On the General tab, select Internet Protocol (TCP/IP) and then click
Properties.
P-660N-T1A User’s Guide
245
Appendix A Setting Up Your Computer’s IP Address
The Internet Protocol TCP/IP Properties window opens.
Select Obtain an IP address automatically if your network administrator or ISP
assigns your IP address dynamically.
Select Use the following IP Address and fill in the IP address, Subnet mask,
and Default gateway fields if you have a static IP address that was assigned to
you by your network administrator or ISP. You may also have to enter a Preferred
DNS server and an Alternate DNS server, if that information was provided.
Click OK to close the Internet Protocol (TCP/IP) Properties window.
Click OK to close the Local Area Connection Properties window.
Verifying Settings
Click Start > All Programs > Accessories > Command Prompt.
In the Command Prompt window, type "ipconfig" and then press [ENTER].
You can also go to Start > Control Panel > Network Connections, right-click a
network connection, click Status and then click the Support tab to view your IP
address and connection information.
246
P-660N-T1A User’s Guide
Appendix A Setting Up Your Computer’s IP Address
Windows Vista
This section shows screens from Windows Vista Professional.
Click Start > Control Panel.
In the Control Panel, click the Network and Internet icon.
Click the Network and Sharing Center icon.
P-660N-T1A User’s Guide
247
Appendix A Setting Up Your Computer’s IP Address
Click Manage network connections.
Right-click Local Area Connection and then select Properties.
Note: During this procedure, click Continue whenever Windows displays a screen
saying that it needs your permission to continue.
248
P-660N-T1A User’s Guide
Appendix A Setting Up Your Computer’s IP Address
Select Internet Protocol Version 4 (TCP/IPv4) and then select Properties.
P-660N-T1A User’s Guide
249
Appendix A Setting Up Your Computer’s IP Address
The Internet Protocol Version 4 (TCP/IPv4) Properties window opens.
Select Obtain an IP address automatically if your network administrator or ISP
assigns your IP address dynamically.
Select Use the following IP Address and fill in the IP address, Subnet mask,
and Default gateway fields if you have a static IP address that was assigned to
you by your network administrator or ISP. You may also have to enter a Preferred
DNS server and an Alternate DNS server, if that information was
provided.Click Advanced.
Click OK to close the Internet Protocol (TCP/IP) Properties window.
10 Click OK to close the Local Area Connection Properties window.
250
P-660N-T1A User’s Guide
Appendix A Setting Up Your Computer’s IP Address
Verifying Settings
Click Start > All Programs > Accessories > Command Prompt.
In the Command Prompt window, type "ipconfig" and then press [ENTER].
You can also go to Start > Control Panel > Network Connections, right-click a
network connection, click Status and then click the Support tab to view your IP
address and connection information.
Windows 7
This section shows screens from Windows 7 Enterprise.
Click Start > Control Panel.
In the Control Panel, click View network status and tasks under the
Network and Internet category.
P-660N-T1A User’s Guide
251
Appendix A Setting Up Your Computer’s IP Address
Click Change adapter settings.
Double click Local Area Connection and then select Properties.
Note: During this procedure, click Continue whenever Windows displays a screen
saying that it needs your permission to continue.
252
P-660N-T1A User’s Guide
Appendix A Setting Up Your Computer’s IP Address
Select Internet Protocol Version 4 (TCP/IPv4) and then select Properties.
P-660N-T1A User’s Guide
253
Appendix A Setting Up Your Computer’s IP Address
The Internet Protocol Version 4 (TCP/IPv4) Properties window opens.
Select Obtain an IP address automatically if your network administrator or ISP
assigns your IP address dynamically.
Select Use the following IP Address and fill in the IP address, Subnet mask,
and Default gateway fields if you have a static IP address that was assigned to
you by your network administrator or ISP. You may also have to enter a Preferred
DNS server and an Alternate DNS server, if that information was provided.
Click Advanced if you want to configure advanced settings for IP, DNS and WINS.
254
Click OK to close the Internet Protocol (TCP/IP) Properties window.
Click OK to close the Local Area Connection Properties window.
P-660N-T1A User’s Guide
Appendix A Setting Up Your Computer’s IP Address
Verifying Settings
Click Start > All Programs > Accessories > Command Prompt.
In the Command Prompt window, type "ipconfig" and then press [ENTER].
The IP settings are displayed as follows.
Mac OS X: 10.3 and 10.4
The screens in this section are from Mac OS X 10.4 but can also apply to 10.3.
Click Apple > System Preferences.
P-660N-T1A User’s Guide
255
Appendix A Setting Up Your Computer’s IP Address
256
In the System Preferences window, click the Network icon.
When the Network preferences pane opens, select Built-in Ethernet from the
network connection type list, and then click Configure.
P-660N-T1A User’s Guide
Appendix A Setting Up Your Computer’s IP Address
For dynamically assigned settings, select Using DHCP from the Configure IPv4
list in the TCP/IP tab.
For statically assigned settings, do the following:
• From the Configure IPv4 list, select Manually.
• In the IP Address field, type your IP address.
• In the Subnet Mask field, type your subnet mask.
• In the Router field, type the IP address of your device.
Click Apply Now and close the window.
P-660N-T1A User’s Guide
257
Appendix A Setting Up Your Computer’s IP Address
Verifying Settings
Check your TCP/IP properties by clicking Applications > Utilities > Network
Utilities, and then selecting the appropriate Network Interface from the Info
tab.
Figure 115 Mac OS X 10.4: Network Utility
Mac OS X: 10.5 and 10.6
The screens in this section are from Mac OS X 10.5 but can also apply to 10.6.
258
Click Apple > System Preferences.
P-660N-T1A User’s Guide
Appendix A Setting Up Your Computer’s IP Address
In System Preferences, click the Network icon.
When the Network preferences pane opens, select Ethernet from the list of
available connection types.
From the Configure list, select Using DHCP for dynamically assigned settings.
P-660N-T1A User’s Guide
259
Appendix A Setting Up Your Computer’s IP Address
For statically assigned settings, do the following:
• From the Configure list, select Manually.
• In the IP Address field, enter your IP address.
• In the Subnet Mask field, enter your subnet mask.
• In the Router field, enter the IP address of your ZyXEL Device.
260
Click Apply and close the window.
P-660N-T1A User’s Guide
Appendix A Setting Up Your Computer’s IP Address
Verifying Settings
Check your TCP/IP properties by clicking Applications > Utilities > Network
Utilities, and then selecting the appropriate Network interface from the Info
tab.
Figure 116 Mac OS X 10.5: Network Utility
Linux: Ubuntu 8 (GNOME)
This section shows you how to configure your computer’s TCP/IP settings in the
GNU Object Model Environment (GNOME) using the Ubuntu 8 Linux distribution.
The procedure, screens and file locations may vary depending on your specific
distribution, release version, and individual configuration. The following screens
use the default Ubuntu 8 installation.
Note: Make sure you are logged in as the root administrator.
P-660N-T1A User’s Guide
261
Appendix A Setting Up Your Computer’s IP Address
Follow the steps below to configure your computer IP address in GNOME:
262
Click System > Administration > Network.
When the Network Settings window opens, click Unlock to open the
Authenticate window. (By default, the Unlock button is greyed out until clicked.)
You cannot make changes to your configuration unless you first enter your admin
password.
P-660N-T1A User’s Guide
Appendix A Setting Up Your Computer’s IP Address
In the Authenticate window, enter your admin account name and password then
click the Authenticate button.
In the Network Settings window, select the connection that you want to
configure, then click Properties.
P-660N-T1A User’s Guide
263
Appendix A Setting Up Your Computer’s IP Address
The Properties dialog box opens.
• In the Configuration list, select Automatic Configuration (DHCP) if you
have a dynamic IP address.
• In the Configuration list, select Static IP address if you have a static IP
address. Fill in the IP address, Subnet mask, and Gateway address fields.
264
Click OK to save the changes and close the Properties dialog box and return to
the Network Settings screen.
If you know your DNS server IP address(es), click the DNS tab in the Network
Settings window and then enter the DNS server information in the fields
provided.
Click the Close button to apply the changes.
P-660N-T1A User’s Guide
Appendix A Setting Up Your Computer’s IP Address
Verifying Settings
Check your TCP/IP properties by clicking System > Administration > Network
Tools, and then selecting the appropriate Network device from the Devices
tab. The Interface Statistics column shows data if your connection is working
properly.
Figure 117 Ubuntu 8: Network Tools
P-660N-T1A User’s Guide
265
Appendix A Setting Up Your Computer’s IP Address
Linux: openSUSE 10.3 (KDE)
This section shows you how to configure your computer’s TCP/IP settings in the K
Desktop Environment (KDE) using the openSUSE 10.3 Linux distribution. The
procedure, screens and file locations may vary depending on your specific
distribution, release version, and individual configuration. The following screens
use the default openSUSE 10.3 installation.
Note: Make sure you are logged in as the root administrator.
Follow the steps below to configure your computer IP address in the KDE:
266
Click K Menu > Computer > Administrator Settings (YaST).
When the Run as Root - KDE su dialog opens, enter the admin password and
click OK.
P-660N-T1A User’s Guide
Appendix A Setting Up Your Computer’s IP Address
When the YaST Control Center window opens, select Network Devices and
then click the Network Card icon.
When the Network Settings window opens, click the Overview tab, select the
appropriate connection Name from the list, and then click the Configure button.
P-660N-T1A User’s Guide
267
Appendix A Setting Up Your Computer’s IP Address
When the Network Card Setup window opens, click the Address tab
Figure 118 openSUSE 10.3: Network Card Setup
Select Dynamic Address (DHCP) if you have a dynamic IP address.
Select Statically assigned IP Address if you have a static IP address. Fill in the
IP address, Subnet mask, and Hostname fields.
268
Click Next to save the changes and close the Network Card Setup window.
P-660N-T1A User’s Guide
Appendix A Setting Up Your Computer’s IP Address
If you know your DNS server IP address(es), click the Hostname/DNS tab in
Network Settings and then enter the DNS server information in the fields
provided.
Click Finish to save your settings and close the window.
Verifying Settings
Click the KNetwork Manager icon on the Task bar to check your TCP/IP
properties. From the Options sub-menu, select Show Connection Information.
Figure 119 openSUSE 10.3: KNetwork Manager
P-660N-T1A User’s Guide
269
Appendix A Setting Up Your Computer’s IP Address
When the Connection Status - KNetwork Manager window opens, click the
Statistics tab to see if your connection is working properly.
Figure 120 openSUSE: Connection Status - KNetwork Manager
270
P-660N-T1A User’s Guide
APPENDIX
IP Addresses and Subnetting
This appendix introduces IP addresses and subnet masks.
IP addresses identify individual devices on a network. Every networking device
(including computers, servers, routers, printers, etc.) needs an IP address to
communicate across the network. These networking devices are also known as
hosts.
Subnet masks determine the maximum number of possible hosts on a network.
You can also use subnet masks to divide one network into multiple sub-networks.
Introduction to IP Addresses
One part of the IP address is the network number, and the other part is the host
ID. In the same way that houses on a street share a common street name, the
hosts on a network share a common network number. Similarly, as each house
has its own house number, each host on the network has its own unique
identifying number - the host ID. Routers use the network number to send packets
to the correct network, while the host ID determines to which host on the network
the packets are delivered.
Structure
An IP address is made up of four parts, written in dotted decimal notation (for
example, 192.168.1.1). Each of these four parts is known as an octet. An octet is
an eight-digit binary number (for example 11000000, which is 192 in decimal
notation).
Therefore, each octet has a possible range of 00000000 to 11111111 in binary, or
0 to 255 in decimal.
P-660N-T1A User’s Guide
271
Appendix B IP Addresses and Subnetting
The following figure shows an example IP address in which the first three octets
(192.168.1) are the network number, and the fourth octet (16) is the host ID.
Figure 121 Network Number and Host ID
How much of the IP address is the network number and how much is the host ID
varies according to the subnet mask.
Subnet Masks
A subnet mask is used to determine which bits are part of the network number,
and which bits are part of the host ID (using a logical AND operation). The term
“subnet” is short for “sub-network”.
A subnet mask has 32 bits. If a bit in the subnet mask is a “1” then the
corresponding bit in the IP address is part of the network number. If a bit in the
subnet mask is “0” then the corresponding bit in the IP address is part of the host
ID.
The following example shows a subnet mask identifying the network number (in
bold text) and host ID of an IP address (192.168.1.2 in decimal).
Table 96 Subnet Masks
1ST
OCTET:
2ND
OCTET:
3RD
OCTET:
4TH
OCTET
(192)
(168)
(1)
(2)
IP Address (Binary)
11000000
10101000
00000001
00000010
Subnet Mask (Binary)
11111111
11111111
11111111
00000000
Network Number
11000000
10101000
00000001
Host ID
272
00000010
P-660N-T1A User’s Guide
Appendix B IP Addresses and Subnetting
By convention, subnet masks always consist of a continuous sequence of ones
beginning from the leftmost bit of the mask, followed by a continuous sequence of
zeros, for a total number of 32 bits.
Subnet masks can be referred to by the size of the network number part (the bits
with a “1” value). For example, an “8-bit mask” means that the first 8 bits of the
mask are ones and the remaining 24 bits are zeroes.
Subnet masks are expressed in dotted decimal notation just like IP addresses. The
following examples show the binary and decimal notation for 8-bit, 16-bit, 24-bit
and 29-bit subnet masks.
Table 97 Subnet Masks
BINARY
1ST
OCTET
2ND
OCTET
3RD
OCTET
4TH
OCTET
DECIMAL
8-bit mask
11111111
00000000
00000000
00000000
255.0.0.0
16-bit
mask
11111111
11111111
00000000
00000000
255.255.0.0
24-bit
mask
11111111
11111111
11111111
00000000
255.255.255.0
29-bit
mask
11111111
11111111
11111111
11111000
255.255.255.24
Network Size
The size of the network number determines the maximum number of possible
hosts you can have on your network. The larger the number of network number
bits, the smaller the number of remaining host ID bits.
An IP address with host IDs of all zeros is the IP address of the network
(192.168.1.0 with a 24-bit subnet mask, for example). An IP address with host
IDs of all ones is the broadcast address for that network (192.168.1.255 with a
24-bit subnet mask, for example).
As these two IP addresses cannot be used for individual hosts, calculate the
maximum number of possible hosts in a network as follows:
Table 98 Maximum Host Numbers
MAXIMUM NUMBER OF
HOSTS
SUBNET MASK
HOST ID SIZE
8 bits
24 bits
224 – 2
16777214
16 bits
216
65534
255.0.0.0
16 bits 255.255.0.0
–2
24 bits 255.255.255.0
8 bits
2 –2
254
29 bits 255.255.255.2
48
3 bits
23 – 2
P-660N-T1A User’s Guide
273
Appendix B IP Addresses and Subnetting
Notation
Since the mask is always a continuous number of ones beginning from the left,
followed by a continuous number of zeros for the remainder of the 32 bit mask,
you can simply specify the number of ones instead of writing the value of each
octet. This is usually specified by writing a “/” followed by the number of bits in
the mask after the address.
For example, 192.1.1.0 /25 is equivalent to saying 192.1.1.0 with subnet mask
255.255.255.128.
The following table shows some possible subnet masks using both notations.
Table 99 Alternative Subnet Mask Notation
SUBNET MASK
ALTERNATIVE
NOTATION
LAST OCTET
(BINARY)
LAST OCTET
(DECIMAL)
255.255.255.0
/24
0000 0000
255.255.255.128
/25
1000 0000
128
255.255.255.192
/26
1100 0000
192
255.255.255.224
/27
1110 0000
224
255.255.255.240
/28
1111 0000
240
255.255.255.248
/29
1111 1000
248
255.255.255.252
/30
1111 1100
252
Subnetting
You can use subnetting to divide one network into multiple sub-networks. In the
following example a network administrator creates two sub-networks to isolate a
group of servers from the rest of the company network for security reasons.
In this example, the company network address is 192.168.1.0. The first three
octets of the address (192.168.1) are the network number, and the remaining
octet is the host ID, allowing a maximum of 28 – 2 or 254 possible hosts.
274
P-660N-T1A User’s Guide
Appendix B IP Addresses and Subnetting
The following figure shows the company network before subnetting.
Figure 122 Subnetting Example: Before Subnetting
You can “borrow” one of the host ID bits to divide the network 192.168.1.0 into
two separate sub-networks. The subnet mask is now 25 bits (255.255.255.128 or
/25).
The “borrowed” host ID bit can have a value of either 0 or 1, allowing two
subnets; 192.168.1.0 /25 and 192.168.1.128 /25.
The following figure shows the company network after subnetting. There are now
two sub-networks, A and B.
Figure 123 Subnetting Example: After Subnetting
P-660N-T1A User’s Guide
275
Appendix B IP Addresses and Subnetting
In a 25-bit subnet the host ID has 7 bits, so each sub-network has a maximum of
27 – 2 or 126 possible hosts (a host ID of all zeroes is the subnet’s address itself,
all ones is the subnet’s broadcast address).
192.168.1.0 with mask 255.255.255.128 is subnet A itself, and 192.168.1.127
with mask 255.255.255.128 is its broadcast address. Therefore, the lowest IP
address that can be assigned to an actual host for subnet A is 192.168.1.1 and
the highest is 192.168.1.126.
Similarly, the host ID range for subnet B is 192.168.1.129 to 192.168.1.254.
Example: Four Subnets
The previous example illustrated using a 25-bit subnet mask to divide a 24-bit
address into two subnets. Similarly, to divide a 24-bit address into four subnets,
you need to “borrow” two host ID bits to give four possible combinations (00, 01,
10 and 11). The subnet mask is 26 bits
(11111111.11111111.11111111.11000000) or 255.255.255.192.
Each subnet contains 6 host ID bits, giving 26 - 2 or 62 hosts for each subnet (a
host ID of all zeroes is the subnet itself, all ones is the subnet’s broadcast
address).
Table 100 Subnet 1
IP/SUBNET MASK
NETWORK NUMBER
LAST OCTET BIT
VALUE
IP Address (Decimal)
192.168.1.
IP Address (Binary)
11000000.10101000.00000001.
00000000
Subnet Mask (Binary)
11111111.11111111.11111111.
11000000
Subnet Address:
192.168.1.0
Lowest Host ID: 192.168.1.1
Broadcast Address:
192.168.1.63
Highest Host ID: 192.168.1.62
Table 101 Subnet 2
276
IP/SUBNET MASK
NETWORK NUMBER
LAST OCTET BIT
VALUE
IP Address
192.168.1.
64
IP Address (Binary)
11000000.10101000.00000001.
01000000
Subnet Mask (Binary)
11111111.11111111.11111111.
11000000
Subnet Address:
192.168.1.64
Lowest Host ID: 192.168.1.65
Broadcast Address:
192.168.1.127
Highest Host ID: 192.168.1.126
P-660N-T1A User’s Guide
Appendix B IP Addresses and Subnetting
Table 102 Subnet 3
IP/SUBNET MASK
NETWORK NUMBER
LAST OCTET BIT VALUE
IP Address
192.168.1.
128
IP Address (Binary)
11000000.10101000.00000001.
10000000
Subnet Mask (Binary)
11111111.11111111.11111111.
11000000
Subnet Address:
192.168.1.128
Lowest Host ID: 192.168.1.129
Broadcast Address:
192.168.1.191
Highest Host ID: 192.168.1.190
Table 103 Subnet 4
IP/SUBNET MASK
NETWORK NUMBER
LAST OCTET BIT VALUE
IP Address
192.168.1.
192
IP Address (Binary)
11000000.10101000.00000001.
11000000
Subnet Mask (Binary)
11111111.11111111.11111111.
11000000
Subnet Address:
192.168.1.192
Lowest Host ID: 192.168.1.193
Broadcast Address:
192.168.1.255
Highest Host ID: 192.168.1.254
Example: Eight Subnets
Similarly, use a 27-bit mask to create eight subnets (000, 001, 010, 011, 100,
101, 110 and 111).
The following table shows IP address last octet values for each subnet.
Table 104 Eight Subnets
SUBNET
SUBNET
ADDRESS
FIRST ADDRESS
LAST
ADDRESS
BROADCAST
ADDRESS
30
31
32
33
62
63
64
65
94
95
96
97
126
127
128
129
158
159
160
161
190
191
192
193
222
223
224
225
254
255
P-660N-T1A User’s Guide
277
Appendix B IP Addresses and Subnetting
Subnet Planning
The following table is a summary for subnet planning on a network with a 24-bit
network number.
Table 105 24-bit Network Number Subnet Planning
NO. “BORROWED”
HOST BITS
SUBNET MASK
NO. SUBNETS NO. HOSTS PER
SUBNET
255.255.255.128 (/25)
126
255.255.255.192 (/26)
62
255.255.255.224 (/27)
30
255.255.255.240 (/28)
16
14
255.255.255.248 (/29)
32
255.255.255.252 (/30)
64
255.255.255.254 (/31)
128
The following table is a summary for subnet planning on a network with a 16-bit
network number.
Table 106 16-bit Network Number Subnet Planning
NO. “BORROWED”
HOST BITS
SUBNET MASK
NO. SUBNETS
NO. HOSTS PER
SUBNET
255.255.128.0 (/17)
32766
255.255.192.0 (/18)
16382
255.255.224.0 (/19)
8190
255.255.240.0 (/20)
16
4094
255.255.248.0 (/21)
32
2046
255.255.252.0 (/22)
64
1022
255.255.254.0 (/23)
128
510
255.255.255.0 (/24)
256
254
255.255.255.128 (/25)
512
126
10
255.255.255.192 (/26)
1024
62
11
255.255.255.224 (/27)
2048
30
12
255.255.255.240 (/28)
4096
14
13
255.255.255.248 (/29)
8192
14
255.255.255.252 (/30)
16384
15
255.255.255.254 (/31)
32768
Configuring IP Addresses
Where you obtain your network number depends on your particular situation. If
the ISP or your network administrator assigns you a block of registered IP
278
P-660N-T1A User’s Guide
Appendix B IP Addresses and Subnetting
addresses, follow their instructions in selecting the IP addresses and the subnet
mask.
If the ISP did not explicitly give you an IP network number, then most likely you
have a single user account and the ISP will assign you a dynamic IP address when
the connection is established. If this is the case, it is recommended that you select
a network number from 192.168.0.0 to 192.168.255.0. The Internet Assigned
Number Authority (IANA) reserved this block of addresses specifically for private
use; please do not use any other number unless you are told otherwise. You must
also enable Network Address Translation (NAT) on the ZyXEL Device.
Once you have decided on the network number, pick an IP address for your ZyXEL
Device that is easy to remember (for instance, 192.168.1.1) but make sure that
no other device on your network is using that IP address.
The subnet mask specifies the network number portion of an IP address. Your
ZyXEL Device will compute the subnet mask automatically based on the IP
address that you entered. You don't need to change the subnet mask computed by
the ZyXEL Device unless you are instructed to do otherwise.
Private IP Addresses
Every machine on the Internet must have a unique address. If your networks are
isolated from the Internet (running only between two branch offices, for example)
you can assign IP addresses to the hosts without problems. However, the Internet
Assigned Numbers Authority (IANA) has reserved the following three blocks of IP
addresses specifically for private networks:
• 10.0.0.0
• 172.16.0.0
— 10.255.255.255
— 172.31.255.255
• 192.168.0.0 — 192.168.255.255
You can obtain your IP address from the IANA, from an ISP, or it can be assigned
from a private network. If you belong to a small organization and your Internet
access is through an ISP, the ISP can provide you with the Internet addresses for
your local networks. On the other hand, if you are part of a much larger
organization, you should consult your network administrator for the appropriate IP
addresses.
Regardless of your particular situation, do not create an arbitrary IP address;
always follow the guidelines above. For more information on address assignment,
please refer to RFC 1597, Address Allocation for Private Internets and RFC 1466,
Guidelines for Management of IP Address Space.
P-660N-T1A User’s Guide
279
Appendix B IP Addresses and Subnetting
280
P-660N-T1A User’s Guide
APPENDIX
Pop-up Windows, JavaScripts
and Java Permissions
In order to use the web configurator you need to allow:
• Web browser pop-up windows from your device.
• JavaScripts (enabled by default).
• Java permissions (enabled by default).
Note: Internet Explorer 6 screens are used here. Screens for other Internet Explorer
versions may vary.
Internet Explorer Pop-up Blockers
You may have to disable pop-up blocking to log into your device.
Either disable pop-up blocking (enabled by default in Windows XP SP (Service
Pack) 2) or allow pop-up blocking and create an exception for your device’s IP
address.
Disable Pop-up Blockers
In Internet Explorer, select Tools, Pop-up Blocker and then select Turn Off
Pop-up Blocker.
Figure 124 Pop-up Blocker
You can also check if pop-up blocking is disabled in the Pop-up Blocker section in
the Privacy tab.
P-660N-T1A User’s Guide
281
Appendix C Pop-up Windows, JavaScripts and Java Permissions
In Internet Explorer, select Tools, Internet Options, Privacy.
Clear the Block pop-ups check box in the Pop-up Blocker section of the screen.
This disables any web pop-up blockers you may have enabled.
Figure 125 Internet Options: Privacy
Click Apply to save this setting.
Enable Pop-up Blockers with Exceptions
Alternatively, if you only want to allow pop-up windows from your device, see the
following steps.
282
In Internet Explorer, select Tools, Internet Options and then the Privacy tab.
P-660N-T1A User’s Guide
Appendix C Pop-up Windows, JavaScripts and Java Permissions
Select Settings…to open the Pop-up Blocker Settings screen.
Figure 126 Internet Options: Privacy
Type the IP address of your device (the web page that you do not want to have
blocked) with the prefix “http://”. For example, http://192.168.167.1.
P-660N-T1A User’s Guide
283
Appendix C Pop-up Windows, JavaScripts and Java Permissions
Click Add to move the IP address to the list of Allowed sites.
Figure 127 Pop-up Blocker Settings
Click Close to return to the Privacy screen.
Click Apply to save this setting.
JavaScripts
If pages of the web configurator do not display properly in Internet Explorer, check
that JavaScripts are allowed.
284
P-660N-T1A User’s Guide
Appendix C Pop-up Windows, JavaScripts and Java Permissions
In Internet Explorer, click Tools, Internet Options and then the Security tab.
Figure 128 Internet Options: Security
Click the Custom Level... button.
Scroll down to Scripting.
Under Active scripting make sure that Enable is selected (the default).
Under Scripting of Java applets make sure that Enable is selected (the
default).
P-660N-T1A User’s Guide
285
Appendix C Pop-up Windows, JavaScripts and Java Permissions
Click OK to close the window.
Figure 129 Security Settings - Java Scripting
Java Permissions
286
From Internet Explorer, click Tools, Internet Options and then the Security
tab.
Click the Custom Level... button.
Scroll down to Microsoft VM.
Under Java permissions make sure that a safety level is selected.
P-660N-T1A User’s Guide
Appendix C Pop-up Windows, JavaScripts and Java Permissions
Click OK to close the window.
Figure 130 Security Settings - Java
JAVA (Sun)
From Internet Explorer, click Tools, Internet Options and then the Advanced
tab.
Make sure that Use Java 2 for  under Java (Sun) is selected.
P-660N-T1A User’s Guide
287
Appendix C Pop-up Windows, JavaScripts and Java Permissions
Click OK to close the window.
Figure 131 Java (Sun)
Mozilla Firefox
Mozilla Firefox 2.0 screens are used here. Screens for other versions may vary.
You can enable Java, Javascripts and pop-ups in one screen. Click Tools, then
click Options in the screen that appears.
Figure 132 Mozilla Firefox: Tools > Options
288
P-660N-T1A User’s Guide
Appendix C Pop-up Windows, JavaScripts and Java Permissions
Click Content.to show the screen below. Select the check boxes as shown in the
following screen.
Figure 133 Mozilla Firefox Content Security
P-660N-T1A User’s Guide
289
Appendix C Pop-up Windows, JavaScripts and Java Permissions
290
P-660N-T1A User’s Guide
APPENDIX
Wireless LANs
Wireless LAN Topologies
This section discusses ad-hoc and infrastructure wireless LAN topologies.
Ad-hoc Wireless LAN Configuration
The simplest WLAN configuration is an independent (Ad-hoc) WLAN that connects
a set of computers with wireless adapters (A, B, C). Any time two or more wireless
adapters are within range of each other, they can set up an independent network,
which is commonly referred to as an ad-hoc network or Independent Basic Service
Set (IBSS). The following diagram shows an example of notebook computers
using wireless adapters to form an ad-hoc wireless LAN.
Figure 134 Peer-to-Peer Communication in an Ad-hoc Network
BSS
A Basic Service Set (BSS) exists when all communications between wireless
clients or between a wireless client and a wired network client go through one
access point (AP).
Intra-BSS traffic is traffic between wireless clients in the BSS. When Intra-BSS is
enabled, wireless client A and B can access the wired network and communicate
P-660N-T1A User’s Guide
291
Appendix D Wireless LANs
with each other. When Intra-BSS is disabled, wireless client A and B can still
access the wired network but cannot communicate with each other.
Figure 135 Basic Service Set
ESS
An Extended Service Set (ESS) consists of a series of overlapping BSSs, each
containing an access point, with each access point connected together by a wired
network. This wired connection between APs is called a Distribution System (DS).
This type of wireless LAN topology is called an Infrastructure WLAN. The Access
Points not only provide communication with the wired network but also mediate
wireless network traffic in the immediate neighborhood.
292
P-660N-T1A User’s Guide
Appendix D Wireless LANs
An ESSID (ESS IDentification) uniquely identifies each ESS. All access points and
their associated wireless clients within the same ESS must have the same ESSID
in order to communicate.
Figure 136 Infrastructure WLAN
Channel
A channel is the radio frequency(ies) used by wireless devices to transmit and
receive data. Channels available depend on your geographical area. You may have
a choice of channels (for your region) so you should use a channel different from
an adjacent AP (access point) to reduce interference. Interference occurs when
radio signals from different access points overlap causing interference and
degrading performance.
Adjacent channels partially overlap however. To avoid interference due to overlap,
your AP should be on a channel at least five channels away from a channel that an
adjacent AP is using. For example, if your region has 11 channels and an adjacent
AP is using channel 1, then you need to select a channel between 6 or 11.
RTS/CTS
A hidden node occurs when two stations are within range of the same access
point, but are not within range of each other. The following figure illustrates a
P-660N-T1A User’s Guide
293
Appendix D Wireless LANs
hidden node. Both stations (STA) are within range of the access point (AP) or
wireless gateway, but out-of-range of each other, so they cannot "hear" each
other, that is they do not know if the channel is currently being used. Therefore,
they are considered hidden from each other.
Figure 137
RTS/CTS
When station A sends data to the AP, it might not know that the station B is
already using the channel. If these two stations send data at the same time,
collisions may occur when both sets of data arrive at the AP at the same time,
resulting in a loss of messages for both stations.
RTS/CTS is designed to prevent collisions due to hidden nodes. An RTS/CTS
defines the biggest size data frame you can send before an RTS (Request To
Send)/CTS (Clear to Send) handshake is invoked.
When a data frame exceeds the RTS/CTS value you set (between 0 to 2432
bytes), the station that wants to transmit this frame must first send an RTS
(Request To Send) message to the AP for permission to send it. The AP then
responds with a CTS (Clear to Send) message to all other stations within its range
to notify them to defer their transmission. It also reserves and confirms with the
requesting station the time frame for the requested transmission.
Stations can send frames smaller than the specified RTS/CTS directly to the AP
without the RTS (Request To Send)/CTS (Clear to Send) handshake.
You should only configure RTS/CTS if the possibility of hidden nodes exists on
your network and the "cost" of resending large frames is more than the extra
network overhead involved in the RTS (Request To Send)/CTS (Clear to Send)
handshake.
If the RTS/CTS value is greater than the Fragmentation Threshold value (see
next), then the RTS (Request To Send)/CTS (Clear to Send) handshake will never
occur as data frames will be fragmented before they reach RTS/CTS size.
Note: Enabling the RTS Threshold causes redundant network overhead that could
negatively affect the throughput performance instead of providing a remedy.
294
P-660N-T1A User’s Guide
Appendix D Wireless LANs
Fragmentation Threshold
A Fragmentation Threshold is the maximum data fragment size (between 256
and 2432 bytes) that can be sent in the wireless network before the AP will
fragment the packet into smaller data frames.
A large Fragmentation Threshold is recommended for networks not prone to
interference while you should set a smaller threshold for busy networks or
networks that are prone to interference.
If the Fragmentation Threshold value is smaller than the RTS/CTS value (see
previously) you set then the RTS (Request To Send)/CTS (Clear to Send)
handshake will never occur as data frames will be fragmented before they reach
RTS/CTS size.
Preamble Type
Preamble is used to signal that data is coming to the receiver. Short and long refer
to the length of the synchronization field in a packet.
Short preamble increases performance as less time sending preamble means
more time for sending data. All IEEE 802.11 compliant wireless adapters support
long preamble, but not all support short preamble.
Use long preamble if you are unsure what preamble mode other wireless devices
on the network support, and to provide more reliable communications in busy
wireless networks.
Use short preamble if you are sure all wireless devices on the network support it,
and to provide more efficient communications.
Use the dynamic setting to automatically use short preamble when all wireless
devices on the network support it, otherwise the ZyXEL Device uses long
preamble.
Note: The wireless devices MUST use the same preamble mode in order to
communicate.
IEEE 802.11g Wireless LAN
IEEE 802.11g is fully compatible with the IEEE 802.11b standard. This means an
IEEE 802.11b adapter can interface directly with an IEEE 802.11g access point
(and vice versa) at 11 Mbps or lower depending on range. IEEE 802.11g has
P-660N-T1A User’s Guide
295
Appendix D Wireless LANs
several intermediate rate steps between the maximum and minimum data rates.
The IEEE 802.11g data rate and modulation are as follows:
Table 107 IEEE 802.11g
DATA RATE
(MBPS)
MODULATION
DBPSK (Differential Binary Phase Shift Keyed)
DQPSK (Differential Quadrature Phase Shift Keying)
5.5 / 11
CCK (Complementary Code Keying)
6/9/12/18/24/36/
48/54
OFDM (Orthogonal Frequency Division Multiplexing)
Wireless Security Overview
Wireless security is vital to your network to protect wireless communication
between wireless clients, access points and the wired network.
Wireless security methods available on the ZyXEL Device are data encryption,
wireless client authentication, restricting access by device MAC address and hiding
the ZyXEL Device identity.
The following figure shows the relative effectiveness of these wireless security
methods available on your ZyXEL Device.
Table 108 Wireless Security Levels
SECURITY
LEVEL
Least
Secure
SECURITY TYPE
Unique SSID (Default)
Unique SSID with Hide SSID Enabled
MAC Address Filtering
WEP Encryption
IEEE802.1x EAP with RADIUS Server
Authentication
Wi-Fi Protected Access (WPA)
WPA2
Most Secure
Note: You must enable the same wireless security settings on the ZyXEL Device and
on all wireless clients that you want to associate with it.
296
P-660N-T1A User’s Guide
Appendix D Wireless LANs
IEEE 802.1x
In June 2001, the IEEE 802.1x standard was designed to extend the features of
IEEE 802.11 to support extended authentication as well as providing additional
accounting and control features. It is supported by Windows XP and a number of
network devices. Some advantages of IEEE 802.1x are:
• User based identification that allows for roaming.
• Support for RADIUS (Remote Authentication Dial In User Service, RFC 2138,
2139) for centralized user profile and accounting management on a network
RADIUS server.
• Support for EAP (Extensible Authentication Protocol, RFC 2486) that allows
additional authentication methods to be deployed with no changes to the access
point or the wireless clients.
RADIUS
RADIUS is based on a client-server model that supports authentication,
authorization and accounting. The access point is the client and the server is the
RADIUS server. The RADIUS server handles the following tasks:
• Authentication
Determines the identity of the users.
• Authorization
Determines the network services available to authenticated users once they are
connected to the network.
• Accounting
Keeps track of the client’s network activity.
RADIUS is a simple package exchange in which your AP acts as a message relay
between the wireless client and the network RADIUS server.
Types of RADIUS Messages
The following types of RADIUS messages are exchanged between the access point
and the RADIUS server for user authentication:
• Access-Request
Sent by an access point requesting authentication.
• Access-Reject
Sent by a RADIUS server rejecting access.
• Access-Accept
Sent by a RADIUS server allowing access.
P-660N-T1A User’s Guide
297
Appendix D Wireless LANs
• Access-Challenge
Sent by a RADIUS server requesting more information in order to allow access.
The access point sends a proper response from the user and then sends another
Access-Request message.
The following types of RADIUS messages are exchanged between the access point
and the RADIUS server for user accounting:
• Accounting-Request
Sent by the access point requesting accounting.
• Accounting-Response
Sent by the RADIUS server to indicate that it has started or stopped accounting.
In order to ensure network security, the access point and the RADIUS server use a
shared secret key, which is a password, they both know. The key is not sent over
the network. In addition to the shared key, password information exchanged is
also encrypted to protect the network from unauthorized access.
Types of EAP Authentication
This section discusses some popular authentication types: EAP-MD5, EAP-TLS,
EAP-TTLS, PEAP and LEAP. Your wireless LAN device may not support all
authentication types.
EAP (Extensible Authentication Protocol) is an authentication protocol that runs on
top of the IEEE 802.1x transport mechanism in order to support multiple types of
user authentication. By using EAP to interact with an EAP-compatible RADIUS
server, an access point helps a wireless station and a RADIUS server perform
authentication.
The type of authentication you use depends on the RADIUS server and an
intermediary AP(s) that supports IEEE 802.1x. .
For EAP-TLS authentication type, you must first have a wired connection to the
network and obtain the certificate(s) from a certificate authority (CA). A certificate
(also called digital IDs) can be used to authenticate users and a CA issues
certificates and guarantees the identity of each certificate owner.
EAP-MD5 (Message-Digest Algorithm 5)
MD5 authentication is the simplest one-way authentication method. The
authentication server sends a challenge to the wireless client. The wireless client
‘proves’ that it knows the password by encrypting the password with the challenge
and sends back the information. Password is not sent in plain text.
298
P-660N-T1A User’s Guide
Appendix D Wireless LANs
However, MD5 authentication has some weaknesses. Since the authentication
server needs to get the plaintext passwords, the passwords must be stored. Thus
someone other than the authentication server may access the password file. In
addition, it is possible to impersonate an authentication server as MD5
authentication method does not perform mutual authentication. Finally, MD5
authentication method does not support data encryption with dynamic session
key. You must configure WEP encryption keys for data encryption.
EAP-TLS (Transport Layer Security)
With EAP-TLS, digital certifications are needed by both the server and the wireless
clients for mutual authentication. The server presents a certificate to the client.
After validating the identity of the server, the client sends a different certificate to
the server. The exchange of certificates is done in the open before a secured
tunnel is created. This makes user identity vulnerable to passive attacks. A digital
certificate is an electronic ID card that authenticates the sender’s identity.
However, to implement EAP-TLS, you need a Certificate Authority (CA) to handle
certificates, which imposes a management overhead.
EAP-TTLS (Tunneled Transport Layer Service)
EAP-TTLS is an extension of the EAP-TLS authentication that uses certificates for
only the server-side authentications to establish a secure connection. Client
authentication is then done by sending username and password through the
secure connection, thus client identity is protected. For client authentication, EAPTTLS supports EAP methods and legacy authentication methods such as PAP,
CHAP, MS-CHAP and MS-CHAP v2.
PEAP (Protected EAP)
Like EAP-TTLS, server-side certificate authentication is used to establish a secure
connection, then use simple username and password methods through the
secured connection to authenticate the clients, thus hiding client identity.
However, PEAP only supports EAP methods, such as EAP-MD5, EAP-MSCHAPv2
and EAP-GTC (EAP-Generic Token Card), for client authentication. EAP-GTC is
implemented only by Cisco.
LEAP
LEAP (Lightweight Extensible Authentication Protocol) is a Cisco implementation of
IEEE 802.1x.
P-660N-T1A User’s Guide
299
Appendix D Wireless LANs
Dynamic WEP Key Exchange
The AP maps a unique key that is generated with the RADIUS server. This key
expires when the wireless connection times out, disconnects or reauthentication
times out. A new WEP key is generated each time reauthentication is performed.
If this feature is enabled, it is not necessary to configure a default encryption key
in the wireless security configuration screen. You may still configure and store
keys, but they will not be used while dynamic WEP is enabled.
Note: EAP-MD5 cannot be used with Dynamic WEP Key Exchange
For added security, certificate-based authentications (EAP-TLS, EAP-TTLS and
PEAP) use dynamic keys for data encryption. They are often deployed in corporate
environments, but for public deployment, a simple user name and password pair
is more practical. The following table is a comparison of the features of
authentication types.
Table 109 Comparison of EAP Authentication Types
EAP-MD5
EAP-TLS
EAP-TTLS
PEAP
LEAP
Mutual Authentication
No
Yes
Yes
Yes
Yes
Certificate – Client
No
Yes
Optional
Optional
No
Certificate – Server
No
Yes
Yes
Yes
No
Dynamic Key Exchange
No
Yes
Yes
Yes
Yes
Credential Integrity
None
Strong
Strong
Strong
Moderate
Deployment Difficulty
Easy
Hard
Moderate
Moderate
Moderate
Client Identity
Protection
No
No
Yes
Yes
No
WPA and WPA2
Wi-Fi Protected Access (WPA) is a subset of the IEEE 802.11i standard. WPA2
(IEEE 802.11i) is a wireless security standard that defines stronger encryption,
authentication and key management than WPA.
Key differences between WPA or WPA2 and WEP are improved data encryption and
user authentication.
If both an AP and the wireless clients support WPA2 and you have an external
RADIUS server, use WPA2 for stronger data encryption. If you don't have an
external RADIUS server, you should use WPA2-PSK (WPA2-Pre-Shared Key) that
only requires a single (identical) password entered into each access point, wireless
gateway and wireless client. As long as the passwords match, a wireless client will
be granted access to a WLAN.
300
P-660N-T1A User’s Guide
Appendix D Wireless LANs
If the AP or the wireless clients do not support WPA2, just use WPA or WPA-PSK
depending on whether you have an external RADIUS server or not.
Select WEP only when the AP and/or wireless clients do not support WPA or WPA2.
WEP is less secure than WPA or WPA2.
Encryption
WPA improves data encryption by using Temporal Key Integrity Protocol (TKIP),
Message Integrity Check (MIC) and IEEE 802.1x. WPA2 also uses TKIP when
required for compatibility reasons, but offers stronger encryption than TKIP with
Advanced Encryption Standard (AES) in the Counter mode with Cipher block
chaining Message authentication code Protocol (CCMP).
TKIP uses 128-bit keys that are dynamically generated and distributed by the
authentication server. AES (Advanced Encryption Standard) is a block cipher that
uses a 256-bit mathematical algorithm called Rijndael. They both include a perpacket key mixing function, a Message Integrity Check (MIC) named Michael, an
extended initialization vector (IV) with sequencing rules, and a re-keying
mechanism.
WPA and WPA2 regularly change and rotate the encryption keys so that the same
encryption key is never used twice.
The RADIUS server distributes a Pairwise Master Key (PMK) key to the AP that
then sets up a key hierarchy and management system, using the PMK to
dynamically generate unique data encryption keys to encrypt every data packet
that is wirelessly communicated between the AP and the wireless clients. This all
happens in the background automatically.
The Message Integrity Check (MIC) is designed to prevent an attacker from
capturing data packets, altering them and resending them. The MIC provides a
strong mathematical function in which the receiver and the transmitter each
compute and then compare the MIC. If they do not match, it is assumed that the
data has been tampered with and the packet is dropped.
By generating unique data encryption keys for every data packet and by creating
an integrity checking mechanism (MIC), with TKIP and AES it is more difficult to
decrypt data on a Wi-Fi network than WEP and difficult for an intruder to break
into the network.
The encryption mechanisms used for WPA(2) and WPA(2)-PSK are the same. The
only difference between the two is that WPA(2)-PSK uses a simple common
password, instead of user-specific credentials. The common-password approach
makes WPA(2)-PSK susceptible to brute-force password-guessing attacks but it’s
still an improvement over WEP as it employs a consistent, single, alphanumeric
password to derive a PMK which is used to generate unique temporal encryption
P-660N-T1A User’s Guide
301
Appendix D Wireless LANs
keys. This prevent all wireless devices sharing the same encryption keys. (a
weakness of WEP)
User Authentication
WPA and WPA2 apply IEEE 802.1x and Extensible Authentication Protocol (EAP) to
authenticate wireless clients using an external RADIUS database. WPA2 reduces
the number of key exchange messages from six to four (CCMP 4-way handshake)
and shortens the time required to connect to a network. Other WPA2
authentication features that are different from WPA include key caching and preauthentication. These two features are optional and may not be supported in all
wireless devices.
Key caching allows a wireless client to store the PMK it derived through a
successful authentication with an AP. The wireless client uses the PMK when it tries
to connect to the same AP and does not need to go with the authentication
process again.
Pre-authentication enables fast roaming by allowing the wireless client (already
connecting to an AP) to perform IEEE 802.1x authentication with another AP
before connecting to it.
Wireless Client WPA Supplicants
A wireless client supplicant is the software that runs on an operating system
instructing the wireless client how to use WPA. At the time of writing, the most
widely available supplicant is the WPA patch for Windows XP, Funk Software's
Odyssey client.
The Windows XP patch is a free download that adds WPA capability to Windows
XP's built-in "Zero Configuration" wireless client. However, you must run Windows
XP to use it.
WPA(2) with RADIUS Application Example
To set up WPA(2), you need the IP address of the RADIUS server, its port number
(default is 1812), and the RADIUS shared secret. A WPA(2) application example
with an external RADIUS server looks as follows. "A" is the RADIUS server. "DS" is
the distribution system.
302
The AP passes the wireless client's authentication request to the RADIUS server.
The RADIUS server then checks the user's identification against its database and
grants or denies network access accordingly.
A 256-bit Pairwise Master Key (PMK) is derived from the authentication process by
the RADIUS server and the client.
P-660N-T1A User’s Guide
Appendix D Wireless LANs
The RADIUS server distributes the PMK to the AP. The AP then sets up a key
hierarchy and management system, using the PMK to dynamically generate
unique data encryption keys. The keys are used to encrypt every data packet that
is wirelessly communicated between the AP and the wireless clients.
Figure 138 WPA(2) with RADIUS Application Example
WPA(2)-PSK Application Example
A WPA(2)-PSK application looks as follows.
First enter identical passwords into the AP and all wireless clients. The Pre-Shared
Key (PSK) must consist of between 8 and 63 ASCII characters or 64 hexadecimal
characters (including spaces and symbols).
The AP checks each wireless client's password and allows it to join the network
only if the password matches.
The AP and wireless clients generate a common PMK (Pairwise Master Key). The
key itself is not sent over the network, but is derived from the PSK and the SSID.
P-660N-T1A User’s Guide
303
Appendix D Wireless LANs
The AP and wireless clients use the TKIP or AES encryption process, the PMK and
information exchanged in a handshake to create temporal encryption keys. They
use these keys to encrypt data exchanged between them.
Figure 139 WPA(2)-PSK Authentication
Security Parameters Summary
Refer to this table to see what other security parameters you should configure for
each authentication method or key management protocol type. MAC address
filters are not dependent on how you configure these security features.
Table 110 Wireless Security Relational Matrix
AUTHENTICATION
METHOD/ KEY
MANAGEMENT
PROTOCOL
ENCRYPTIO ENTER
IEEE 802.1X
N METHOD MANUAL KEY
Open
None
No
Disable
Enable without Dynamic WEP
Key
Open
Shared
304
WEP
WEP
No
Enable with Dynamic WEP Key
Yes
Enable without Dynamic WEP
Key
Yes
Disable
No
Enable with Dynamic WEP Key
Yes
Enable without Dynamic WEP
Key
Yes
Disable
WPA
TKIP/AES
No
Enable
WPA-PSK
TKIP/AES
Yes
Disable
WPA2
TKIP/AES
No
Enable
WPA2-PSK
TKIP/AES
Yes
Disable
P-660N-T1A User’s Guide
Appendix D Wireless LANs
Antenna Overview
An antenna couples RF signals onto air. A transmitter within a wireless device
sends an RF signal to the antenna, which propagates the signal through the air.
The antenna also operates in reverse by capturing RF signals from the air.
Positioning the antennas properly increases the range and coverage area of a
wireless LAN.
Antenna Characteristics
Frequency
An antenna in the frequency of 2.4GHz (IEEE 802.11b and IEEE 802.11g) or 5GHz
(IEEE 802.11a) is needed to communicate efficiently in a wireless LAN
Radiation Pattern
A radiation pattern is a diagram that allows you to visualize the shape of the
antenna’s coverage area.
Antenna Gain
Antenna gain, measured in dB (decibel), is the increase in coverage within the RF
beam width. Higher antenna gain improves the range of the signal for better
communications.
For an indoor site, each 1 dB increase in antenna gain results in a range increase
of approximately 2.5%. For an unobstructed outdoor site, each 1dB increase in
gain results in a range increase of approximately 5%. Actual results may vary
depending on the network environment.
Antenna gain is sometimes specified in dBi, which is how much the antenna
increases the signal power compared to using an isotropic antenna. An isotropic
antenna is a theoretical perfect antenna that sends out radio signals equally well
in all directions. dBi represents the true gain that the antenna provides.
Types of Antennas for WLAN
There are two types of antennas used for wireless LAN applications.
P-660N-T1A User’s Guide
305
Appendix D Wireless LANs
• Omni-directional antennas send the RF signal out in all directions on a horizontal
plane. The coverage area is torus-shaped (like a donut) which makes these
antennas ideal for a room environment. With a wide coverage area, it is possible
to make circular overlapping coverage areas with multiple access points.
• Directional antennas concentrate the RF signal in a beam, like a flashlight does
with the light from its bulb. The angle of the beam determines the width of the
coverage pattern. Angles typically range from 20 degrees (very directional) to
120 degrees (less directional). Directional antennas are ideal for hallways and
outdoor point-to-point applications.
Positioning Antennas
In general, antennas should be mounted as high as practically possible and free of
obstructions. In point-to–point application, position both antennas at the same
height and in a direct line of sight to each other to attain the best performance.
For omni-directional antennas mounted on a table, desk, and so on, point the
antenna up. For omni-directional antennas mounted on a wall or ceiling, point the
antenna down. For a single AP application, place omni-directional antennas as
close to the center of the coverage area as possible.
For directional antennas, point the antenna in the direction of the desired
coverage area.
306
P-660N-T1A User’s Guide
APPENDIX
Services
The following table lists some commonly-used services and their associated
protocols and port numbers.
• Name: This is a short, descriptive name for the service. You can use this one or
create a different one, if you like.
• Protocol: This is the type of IP protocol used by the service. If this is TCP/
UDP, then the service uses the same port number with TCP and UDP. If this is
USER-DEFINED, the Port(s) is the IP protocol number, not the port number.
• Port(s): This value depends on the Protocol.
• If the Protocol is TCP, UDP, or TCP/UDP, this is the IP port number.
• If the Protocol is USER, this is the IP protocol number.
• Description: This is a brief explanation of the applications that use this service
or the situations in which this service is used.
P-660N-T1A User’s Guide
307
Appendix E Services
Table 111 Examples of Services
308
NAME
PROTOCOL
PORT(S)
DESCRIPTION
AH
(IPSEC_TUNNEL)
User-Defined
51
The IPSEC AH (Authentication Header)
tunneling protocol uses this service.
AIM
TCP
5190
AOL’s Internet Messenger service.
AUTH
TCP
113
Authentication protocol used by some
servers.
BGP
TCP
179
Border Gateway Protocol.
BOOTP_CLIENT
UDP
68
DHCP Client.
BOOTP_SERVER
UDP
67
DHCP Server.
CU-SEEME
TCP/UDP
7648
A popular videoconferencing solution
from White Pines Software.
TCP/UDP
24032
DNS
TCP/UDP
53
Domain Name Server, a service that
matches web names (for instance
www.zyxel.com) to IP numbers.
ESP
(IPSEC_TUNNEL)
User-Defined
50
The IPSEC ESP (Encapsulation
Security Protocol) tunneling protocol
uses this service.
FINGER
TCP
79
Finger is a UNIX or Internet related
command that can be used to find out
if a user is logged on.
FTP
TCP
20
TCP
21
File Transfer Protocol, a program to
enable fast transfer of files, including
large files that may not be possible by
e-mail.
H.323
TCP
1720
NetMeeting uses this protocol.
HTTP
TCP
80
Hyper Text Transfer Protocol - a client/
server protocol for the world wide
web.
HTTPS
TCP
443
HTTPS is a secured http session often
used in e-commerce.
ICMP
User-Defined
Internet Control Message Protocol is
often used for diagnostic purposes.
ICQ
UDP
4000
This is a popular Internet chat
program.
IGMP
(MULTICAST)
User-Defined
Internet Group Multicast Protocol is
used when sending packets to a
specific group of hosts.
IKE
UDP
500
The Internet Key Exchange algorithm
is used for key distribution and
management.
IMAP4
TCP
143
The Internet Message Access Protocol
is used for e-mail.
IMAP4S
TCP
993
This is a more secure version of IMAP4
that runs over SSL.
IRC
TCP/UDP
6667
This is another popular Internet chat
program.
P-660N-T1A User’s Guide
Appendix E Services
Table 111 Examples of Services (continued)
NAME
PROTOCOL
PORT(S)
DESCRIPTION
MSN Messenger
TCP
1863
Microsoft Networks’ messenger
service uses this protocol.
NetBIOS
TCP/UDP
137
TCP/UDP
138
The Network Basic Input/Output
System is used for communication
between computers in a LAN.
TCP/UDP
139
TCP/UDP
445
NEW-ICQ
TCP
5190
An Internet chat program.
NEWS
TCP
144
A protocol for news groups.
NFS
UDP
2049
Network File System - NFS is a client/
server distributed file service that
provides transparent file sharing for
network environments.
NNTP
TCP
119
Network News Transport Protocol is
the delivery mechanism for the
USENET newsgroup service.
PING
User-Defined
Packet INternet Groper is a protocol
that sends out ICMP echo requests to
test whether or not a remote host is
reachable.
POP3
TCP
110
Post Office Protocol version 3 lets a
client computer get e-mail from a
POP3 server through a temporary
connection (TCP/IP or other).
POP3S
TCP
995
This is a more secure version of POP3
that runs over SSL.
PPTP
TCP
1723
Point-to-Point Tunneling Protocol
enables secure transfer of data over
public networks. This is the control
channel.
PPTP_TUNNEL
(GRE)
User-Defined
47
PPTP (Point-to-Point Tunneling
Protocol) enables secure transfer of
data over public networks. This is the
data channel.
RCMD
TCP
512
Remote Command Service.
REAL_AUDIO
TCP
7070
A streaming audio service that
enables real time sound over the web.
REXEC
TCP
514
Remote Execution Daemon.
RLOGIN
TCP
513
Remote Login.
ROADRUNNER
TCP/UDP
1026
This is an ISP that provides services
mainly for cable modems.
RTELNET
TCP
107
Remote Telnet.
RTSP
TCP/UDP
554
The Real Time Streaming (media
control) Protocol (RTSP) is a remote
control for multimedia on the
Internet.
P-660N-T1A User’s Guide
309
Appendix E Services
Table 111 Examples of Services (continued)
310
NAME
PROTOCOL
PORT(S)
DESCRIPTION
SFTP
TCP
115
The Simple File Transfer Protocol is an
old way of transferring files between
computers.
SMTP
TCP
25
Simple Mail Transfer Protocol is the
message-exchange standard for the
Internet. SMTP enables you to move
messages from one e-mail server to
another.
SMTPS
TCP
465
This is a more secure version of SMTP
that runs over SSL.
SNMP
TCP/UDP
161
Simple Network Management
Program.
SNMP-TRAPS
TCP/UDP
162
Traps for use with the SNMP
(RFC:1215).
SQL-NET
TCP
1521
Structured Query Language is an
interface to access data on many
different types of database systems,
including mainframes, midrange
systems, UNIX systems and network
servers.
SSDP
UDP
1900
The Simple Service Discovery Protocol
supports Universal Plug-and-Play
(UPnP).
SSH
TCP/UDP
22
Secure Shell Remote Login Program.
STRM WORKS
UDP
1558
Stream Works Protocol.
SYSLOG
UDP
514
Syslog allows you to send system logs
to a UNIX server.
TACACS
UDP
49
Login Host Protocol used for (Terminal
Access Controller Access Control
System).
TELNET
TCP
23
Telnet is the login and terminal
emulation protocol common on the
Internet and in UNIX environments. It
operates over TCP/IP networks. Its
primary function is to allow users to
log into remote host systems.
TFTP
UDP
69
Trivial File Transfer Protocol is an
Internet file transfer protocol similar
to FTP, but uses the UDP (User
Datagram Protocol) rather than TCP
(Transmission Control Protocol).
VDOLIVE
TCP
7000
UDP
userdefined
A videoconferencing solution. The UDP
port number is specified in the
application.
P-660N-T1A User’s Guide
APPENDIX
Legal Information
Copyright
Copyright © 2010 by ZyXEL Communications Corporation.
The contents of this publication may not be reproduced in any part or as a whole,
transcribed, stored in a retrieval system, translated into any language, or
transmitted in any form or by any means, electronic, mechanical, magnetic,
optical, chemical, photocopying, manual, or otherwise, without the prior written
permission of ZyXEL Communications Corporation.
Published by ZyXEL Communications Corporation. All rights reserved.
Disclaimer
ZyXEL does not assume any liability arising out of the application or use of any
products, or software described herein. Neither does it convey any license under
its patent rights nor the patent rights of others. ZyXEL further reserves the right
to make changes in any products described herein without notice. This publication
is subject to change without notice.
Trademarks
ZyNOS (ZyXEL Network Operating System) is a registered trademark of ZyXEL
Communications, Inc. Other trademarks mentioned in this publication are used for
identification purposes only and may be properties of their respective owners.
Certifications
Federal Communications Commission (FCC) Interference Statement
The device complies with Part 15 of FCC rules. Operation is subject to the
following two conditions:
• This device may not cause harmful interference.
P-660N-T1A User’s Guide
311
Appendix F Legal Information
• This device must accept any interference received, including interference that
may cause undesired operations.
This device has been tested and found to comply with the limits for a Class B
digital device pursuant to Part 15 of the FCC Rules. These limits are designed to
provide reasonable protection against harmful interference in a residential
installation. This device generates, uses, and can radiate radio frequency energy,
and if not installed and used in accordance with the instructions, may cause
harmful interference to radio communications. However, there is no guarantee
that interference will not occur in a particular installation.
If this device does cause harmful interference to radio/television reception, which
can be determined by turning the device off and on, the user is encouraged to try
to correct the interference by one or more of the following measures:
Reorient or relocate the receiving antenna.
Increase the separation between the equipment and the receiver.
Connect the equipment into an outlet on a circuit different from that to which the
receiver is connected.
Consult the dealer or an experienced radio/TV technician for help.
FCC Radiation Exposure Statement
• This transmitter must not be co-located or operating in conjunction with any
other antenna or transmitter.
• IEEE 802.11b or 802.11g operation of this product in the U.S.A. is firmwarelimited to channels 1 through 11.
• To comply with FCC RF exposure compliance requirements, a separation
distance of at least 20 cm must be maintained between the antenna of this
device and all persons.
注意 !
依據
低功率電波輻射性電機管理辦法
第十二條 經型式認證合格之低功率射頻電機，非經許可，公司、商號或使用
者均不得擅自變更頻率、加大功率或變更原設計之特性及功能。
第十四條 低功率射頻電機之使用不得影響飛航安全及干擾合法通信；經發現
有干擾現象時，應立即停用，並改善至無干擾時方得繼續使用。
前項合法通信，指依電信規定作業之無線電信。低功率射頻電機須忍
受合法通信或工業、科學及醫療用電波輻射性電機設備之干擾。
312
P-660N-T1A User’s Guide
Appendix F Legal Information
本機限在不干擾合法電臺與不受被干擾保障條件下於室內使用。
減少電磁波影響，請妥適使用。
Notices
Changes or modifications not expressly approved by the party responsible for
compliance could void the user's authority to operate the equipment.
This device has been designed for the WLAN 2.4 GHz network throughout the EC
region and Switzerland, with restrictions in France.
This Class B digital apparatus complies with Canadian ICES-003.
Cet appareil numérique de la classe B est conforme à la norme NMB-003 du
Canada.
Viewing Certifications
Go to http://www.zyxel.com.
Select your product on the ZyXEL home page to go to that product's page.
Select the certification you wish to view from this page.
ZyXEL Limited Warranty
ZyXEL warrants to the original end user (purchaser) that this product is free from
any defects in materials or workmanship for a period of up to two years from the
date of purchase. During the warranty period, and upon proof of purchase, should
the product have indications of failure due to faulty workmanship and/or
materials, ZyXEL will, at its discretion, repair or replace the defective products or
components without charge for either parts or labor, and to whatever extent it
shall deem necessary to restore the product or components to proper operating
condition. Any replacement will consist of a new or re-manufactured functionally
equivalent product of equal or higher value, and will be solely at the discretion of
ZyXEL. This warranty shall not apply if the product has been modified, misused,
tampered with, damaged by an act of God, or subjected to abnormal working
conditions.
Note
Repair or replacement, as provided under this warranty, is the exclusive remedy of
the purchaser. This warranty is in lieu of all other warranties, express or implied,
including any implied warranty of merchantability or fitness for a particular use or
P-660N-T1A User’s Guide
313
Appendix F Legal Information
purpose. ZyXEL shall in no event be held liable for indirect or consequential
damages of any kind to the purchaser.
To obtain the services of this warranty, contact ZyXEL's Service Center for your
Return Material Authorization number (RMA). Products must be returned Postage
Prepaid. It is recommended that the unit be insured when shipped. Any returned
products without proof of purchase or those with an out-dated warranty will be
repaired or replaced (at the discretion of ZyXEL) and the customer will be billed
for parts and labor. All repaired or replaced products will be shipped by ZyXEL to
the corresponding return address, Postage Paid. This warranty gives you specific
legal rights, and you may also have other rights that vary from country to country.
Registration
Register your product online to receive e-mail notices of firmware upgrades and
information at www.zyxel.com for global products, or at www.us.zyxel.com for
North American products.
314
P-660N-T1A User’s Guide
Index
Index
Numerics
application filter 155
802.1p 173, 174
Asynchronous Transfer Mode, see ATM
802.1Q/1P 163
activation 165
group settings 166
port settings 168
priority 163
PVC 164
PVID 168
tagging frames 164, 167
ATM 227
MBS 73, 78
PCR 73, 78
QoS 73, 78, 82
SCR 73, 78
status 227
applications, NAT 146
authentication 119, 121
RADIUS server 121
WPA 107
activation
802.1Q/1P 165
CWMP 200
dynamic DNS 178
DYNDNS wildcard 178
firewalls 151
MAC address filter 109
NAT 135
port forwarding 139
QoS 171, 172
SIP ALG 143
SPI 151
UPnP 191
wireless LAN 102
scheduling 116
WPS 112
address mapping 140
rules 142
types 141, 142, 146
administrator password 28, 204
alerts 207
alternative subnet mask notation 274
antenna
directional 306
gain 305
omni-directional 306
AP (access point) 293
P-660N-T1A User’s Guide
backup
configuration 221
Basic Service Set, See BSS 291
Basic Service Set, see BSS
broadcast 68
BSS 122, 291
example 123
CA 299
CBR 73, 78, 82
Certificate Authority
See CA.
certifications 311
notices 313
viewing 313
channel 293
interference 293
channel, wireless LAN 118
CLI 21
client list 90
Command Line Interface, see CLI
315
Index
compatibility, WDS 114
configuration
backup 221
CWMP 200
DHCP 89
file 218
firewalls 151
IP alias 92
IP precedence 172
IP/MAC filter 157
logs 207
port forwarding 137
reset 223
restoring 221
static route 161
WAN 69
wireless LAN 101
wizard 56
connection
nailed-up 76, 81
on demand 76
copyright 311
CPE WAN Management Protocol, see CWMP
CTS (Clear to Send) 294
CTS threshold 107, 119
CWMP 199
activation 200
configuration 200
activation 178
wildcard 177
activation 178
Dynamic Host Configuration Protocol, see DHCP
dynamic WEP key exchange 300
DYNDNS wildcard 177
activation 178
EAP Authentication 298
encapsulation 67, 70, 76
ENET ENCAP 79
PPPoA 79
PPPoE 79
RFC 1483 79
encryption 102, 121, 301
WEP 103
key 104
WPA 106
authentication 107
reauthentication 106
WPA-PSK 105
pre-shared key 105
ENET ENCAP 70, 76, 79
ESS 292
Extended Service Set, See ESS 292
data fragment threshold 107, 119
DDoS 150
FCC interference statement 311
default server, NAT 136, 138
filters 153
application 155
IP/MAC 156
structure 153
IP/MAC filter
configuration 157
MAC address 109, 120
activation 109
URL 153, 154
Denials of Service, see DoS
DHCP 86, 89, 94
diagnostic 225
DiffServ Code Point, see DSCP
disclaimer 311
DNS 86, 90, 94, 186
Domain Name System, see DNS
DoS 150
DSCP 172
DSL connections, status 228
dynamic DNS 177
316
firewalls 149
configuration 151
DDoS 150
DoS 150
P-660N-T1A User’s Guide
Index
LAND attack 150
Ping of Death 150
status 37
SYN attack 149
configuration 172
IP/MAC filter 156
configuration 157
structure 153
firmware 218
version 36
forwarding ports 134, 136
activation 139
configuration 137
example 137
rules 139
fragmentation threshold 107, 119, 295
FTP 21, 183
hidden node 293
LAN 85
client list 90
DHCP 86, 89, 94
DNS 86, 90, 94
IGMP 86, 97
IP address 86, 87, 95
IP alias 91
configuration 92
MAC address 91
multicast 86, 88, 97
RIP 86, 88, 93, 96
status 36
subnet mask 86, 87, 95
LAND attack 150
LEDs 25
IANA 279
Internet Assigned Numbers Authority
see IANA
limitations
wireless LAN 122
WPS 130
IBSS 291
Local Area Network, see LAN
ICMP 187
login 27
passwords 28
IEEE 802.11g 295
IGA 144
IGMP 68, 86, 88, 97
ILA 144
logs 207
alerts 207
settings 207
Independent Basic Service Set
See IBSS 291
initialization vector (IV) 301
Inside Global Address, see IGA
Inside Local Address, see ILA
Internet Group Multicast Protocol, see IGMP
IP address 68, 71, 76, 80, 86, 95
default server 136, 138
ping 225
private 96
IP alias 91
configuration 92
NAT applications 146
IP precedence 173, 175
P-660N-T1A User’s Guide
MAC address 91, 109
filter 100, 102, 109, 120
MAC address filter
activation 109
Management Information Base (MIB) 185
mapping address 140
rules 142
types 141, 142, 146
Maximum Burst Size, see MBS
Maximum Transmission Unit, see MTU
317
Index
MBS 73, 78, 82
MBSSID 123
MTU 73, 78
P2P 135
multicast 68, 73, 86, 88, 97
IGMPInternet Group Multicast Protocol, see
IGMP
Pairwise Master Key (PMK) 301, 303
Multiple BSS, see MBSSID
multiplexing 70, 76, 80
LLC-based 80
VC-based 80
nailed-up connection 71, 76, 81
NAT 77, 133, 134, 144, 279
activation 135
address mapping 140
rules 142
types 141, 142, 146
applications 146
IP alias 146
default server IP address 136, 138
example 145
global 144
IGA 144
ILA 144
inside 144
local 144
outside 144
P2P 135
port forwarding 134, 136
activation 139
configuration 137
example 137
rules 139
remote management 181
SIP ALG 143
activation 143
SUA 134, 135
Network Address Translation
see NAT
Network Address Translation, see NAT
passwords 28
administrator 204
PBC 125
PCR 73, 78, 81
Peak Cell Rate, see PCR
PIN, WPS 113, 114, 125
example 127
Ping of Death 150
port forwarding 134, 136
activation 139
configuration 137
example 137
rules 139
PPPoA 70, 76, 79
PPPoE 70, 76, 79
preamble 108, 119
preamble mode 295
pre-shared key 105
private IP address 96
product registration 314
PSK 301
push button 114
Push Button Configuration, see PBC
push button, WPS 125
PVC 164
PVID 168
QoS 169
802.1p 173, 174
activation 171, 172
DSCP 172
example 169
IP precedence 173, 175
priority queue 175
Quality of Service, see QoS
318
P-660N-T1A User’s Guide
Index
RADIUS 297
message types 297
messages 297
shared secret key 298
RADIUS server 121
reauthentication, WPA 106
registration
product 314
related documentation 3
remote management 179
DNS 186
FTP 183
ICMP 187
limitations 180
NAT 181
Telnet 182
WWW 181
reset 26, 223
restart 223
restoring configuration 221
RFC 1483 70, 76, 79
RIP 72, 86, 88, 93, 96
Routing Information Protocol, see RIP
RTS (Request To Send) 294
threshold 293, 294
RTS threshold 107, 119
rules, port forwarding 139
safety warnings 7
schedules
wireless LAN 116
SCR 73, 78, 82
security
wireless LAN 102, 119
IP precedenceQoS
IP precedence 172
IP/MAC filter 157
logs 207
port forwarding 137
static route 161
WAN 69
wireless LAN 101
wizard 56
shaping traffic 81, 82
Simple Network Management Protocol, see
SNMP
Single User Account, see SUA
SIP ALG 143
activation 143
SNMP 184
agents 185
Manager 185
managers 185
MIB 185
network components 185
traps 185
versions 184
SPI 150
activation 151
SSID 100, 102, 111, 120
MBSSID 123
static route 159
configuration 161
example 159
status 31, 35, 38
ATM 227
DSL connections 228
firewalls 37
firmware version 36
LAN 36
WAN 36
wireless LAN 36
WPS 113
SUA 134, 135
subnet 271
Security Parameter Index, see SPI
subnet mask 86, 95, 272
Service Set IDentifier, see SSID
subnetting 274
setup
DHCP 89
firewalls 151
IP alias 92
Sustain Cell Rate, see SCR
P-660N-T1A User’s Guide
SYN attack 149
syntax conventions 5
system 203
319
Index
firmware 218
version 36
LED 25
passwords 28
administrator 204
reset 26
status 31, 35
firewalls 37
LAN 36
WAN 36
wireless LAN 36
time 204
tagging frames 164, 167
Telnet 182
thresholds
data fragment 107, 119
RTS/CTS 107, 119
time 204
VBR 82
VBR-nRT 73, 78, 83
VBR-RT 73, 78, 83
VCI 70, 76, 80
Virtual Channel Identifier, see VCI
Virtual Local Area Network, see VLAN
Virtual Path Identifier, see VPI
VLAN 163
802.1P priority 163
activation 165
group settings 166
port settings 168
PVC 164
PVID 168
tagging frames 164, 167
VPI 70, 76, 80
TR-069 21
trademarks 311
traffic priority 163
traffic shaping 81
example 82
UBR 73, 78, 83
unicast 68
Universal Plug and Play, see UPnP
upgrading firmware 218
UPnP 189
activation 191
cautions 190
NAT traversal 189
URL 153
URL filter 154
URL 153
WAN 67
ATM QoS 73, 78, 82
encapsulation 67, 70, 76
IGMP 68
IP address 68, 71, 76, 80
mode 70, 75
MTU 73, 78
multicast 68, 73
multiplexing 70, 76, 80
nailed-up connection 71, 76, 81
NAT 77
RIP 72
setup 69
status 36
traffic shaping 81
example 82
VCI 70, 76, 80
VPI 70, 76, 80
warranty 313
note 313
WDS 114, 124
compatibility 114
example 124
web configurator 21, 27
login 27
320
P-660N-T1A User’s Guide
Index
passwords 28
WEP 103, 122
key 104
Wide Area Network, see WAN
Wi-Fi Protected Access 300
WiFi Protected Setup, see WPS
wireless client WPA supplicants 302
Wireless Distribution System, see WDS
wireless LAN 99, 117
activation 102
authentication 119, 121
BSS 122
example 123
channel 118
configuration 101
encryption 102, 121
example 117
fragmentation threshold 107, 119
limitations 122
MAC address filter 100, 102, 109, 120
MBSSID 123
preamble 108, 119
RADIUS server 121
RTS/CTS threshold 107, 119
scheduling 116
security 119
SSID 100, 102, 111, 120
status 36
WDS 114, 124
compatibility 114
example 124
WEP 103, 122
key 104
wizard 62
WPA 106, 122
authentication 107
reauthentication 106
WPA-PSK 105, 122
pre-shared key 105
WPS 112, 124, 127
activation 112
adding stations 114
example 129
limitations 130
PIN 113, 114, 125
push button 114, 125
status 113
Wireless tutorial 41
wizard 53
configuration 56
wireless LAN 62
WLAN
interference 293
security parameters 304
WPA 106, 122, 300
authentication 107
key caching 302
pre-authentication 302
reauthentication 106
user authentication 302
vs WPA-PSK 301
wireless client supplicant 302
with RADIUS application example 302
WPA2 300
user authentication 302
vs WPA2-PSK 301
wireless client supplicant 302
with RADIUS application example 302
WPA2-Pre-Shared Key 300
WPA2-PSK 300, 301
application example 303
WPA-PSK 105, 122, 301
application example 303
pre-shared key 105
WPS 112, 124, 127
activation 112
adding stations 114
example 129
limitations 130
PIN 113, 114, 125
example 127
push button 114, 125
status 113
wireless security 296
P-660N-T1A User’s Guide
321
Index
322
P-660N-T1A User’s Guide
Index
P-660N-T1A User’s Guide
323
Index
324
P-660N-T1A User’s Guide
Source Exif Data: 
File Type                       : PDF
File Type Extension             : pdf
MIME Type                       : application/pdf
PDF Version                     : 1.5
Linearized                      : No
Page Count                      : 104
XMP Toolkit                     : XMP toolkit 2.9.1-13, framework 1.6
About                           : uuid:23c7853e-7035-4166-a629-5fb802702c9c
Modify Date                     : 2010:07:21 09:39:03+08:00
Create Date                     : 2010:07:14 11:02:42+08:00
Metadata Date                   : 2010:07:21 09:39:03+08:00
Document ID                     : uuid:e2b9ae02-6a2f-4688-9870-a0eae58ce1de
Format                          : application/pdf
Title                           : SMG-700 User’s Guide V1.00 (Nov 2004)
Creator                         : FrameMaker 7.1
Author                          : Cindy Yang
Producer                        : Acrobat Distiller 9.3.2 (Windows)

EXIF Metadata provided by EXIF.tools
FCC ID Filing: I88P660NT1A
 




Navigation menu