Residential Gateway Family User’s Guide Configuring Advanced Features IP Network The Gateway provides the flexibility to use different ranges of IP addresses to be assigned by the DHCP Server housed in the Gateway. DHCP (Dynamic Host Configuration Protocol) allows computers to obtain either permanent or temporary IP addresses from a central server. To configure the IP network option: 1. Click the Configure the local SpeedStream Gateway IP Network hyperlink.
Residential Gateway Family User’s Guide Configuring Advanced Features Server Ports Common applications such as HTTP (Web site traffic), FTP, and Telnet use pre-defined incoming port numbers for compatibility with other services. If you wish to change the ports used by these applications you may do so using this option. This feature is recommended for use by advanced users only. To configure the server port option: 1. Click the Configure the Local SpeedStream Gateway Server Ports hyperlink.
Residential Gateway Family User’s Guide Configuring Advanced Features LAN/WAN Port If your Gateway contains four Ethernet ports, Ethernet port #4 can be used as either a LAN (network) port or as a WAN (Internet connection) port. Select the appropriate option to define whether the port is used as a fourth local network port or as a connection for another broadband device.
Residential Gateway Family User’s Guide Configuring Advanced Features Wireless Network Configure the wireless network using this option. The wireless settings on the Gateway must match those of any wireless clients on your network. To configure the wireless network: 1. Click the Configure the Local SpeedStream Gateway Wireless Network hyperlink. This displays the “Wireless Summary” window. 2. Click Begin Wireless Wizard. This displays the “Wireless Setup Configuration” window. 3.
Residential Gateway Family User’s Guide Configuring Advanced Features Set the wireless security level from the “Wireless Security Configuration” window. All wireless devices attached to the Gateway MUST have the same wireless security settings for your network to have proper communications and security. 7. From the Security Mode drop-down menu, select one of the following options: • WEP 64-bits Wireless Equivalency Privacy.
Residential Gateway Family User’s Guide Configuring Advanced Features Wireless Setup WEP 64-Bit Option (Advanced Home Network) WEP security offers the same security offered by a wired LAN with encrypted packets. This section assumes you currently have the “Wireless Security Configuration” window displayed on your computer. To use the WEP 64-bit option: 1. From the “Wireless Security Configuration” window, select WEP 64-bits from the Security Mode drop-down menu. 2. Click Next.
Residential Gateway Family User’s Guide Configuring Advanced Features Wireless Setup WEP 128-Bit Option (Advanced Home Network) WEP security offers the same security offered by a wired LAN with encrypted packets. This option offers 128-bit encryption, which is the most secure WEP option. This section assumes you currently have the “Wireless Security Configuration” window displayed on your computer. To use the WEP 128-bit option: 1.
Residential Gateway Family User’s Guide Configuring Advanced Features Wireless Setup WPA PSK Option (Advanced Home Network) WPA security changes encryption keys after a specified amount of time. This is the most secure option for wireless networks. This section assumes you currently have the “Wireless Security Configuration” window displayed on your computer. To use the WPA option: 1. From the “Wireless Security Configuration” window, select WPA PSK from the Security Mode dropdown menu. 2. Click Next.
Residential Gateway Family User’s Guide Configuring Advanced Features Wireless Filter and Options Configuration Control access to the Gateway of wireless devices based on the MAC address of the device using the “Wireless Filter Configuration” window. A MAC (Media Access Control) address refers to a hardware address that uniquely identifies each device of a network. Refer to the user documentation for each device you wish to deny or allow access for a particular MAC address.
Residential Gateway Family User’s Guide 5. Configuring Advanced Features Optionally, configure the following items: • Data Transfer Rate If a particular wireless client is unable to auto-negotiate a connection to the Gateway, the data transfer rate may be set to a specific data rate such as 11 Mbps for 802.11b wireless clients. • RTS/CTS Threshold A group of wireless clients may experience difficulty communicating with the Gateway without interrupting each other’s communications.
Residential Gateway Family User’s Guide Configuring Advanced Features Powerline Security Configuration If you have a Powerline enabled Gateway, you have the option of configuring security for the Powerline connection. To configure powerline security: 1. Select one of the following Powerline Interface options: • Enable Enables a powerline connection. • Disable Disables a powerline connection. Click Next. This displays the “Finish” window. 2.
Residential Gateway Family User’s Guide 5. Configuring Advanced Features Select one of the following Powerline Filter options: • Enable Enables powerline filtering. • Disable Disables powerline filtering. If powerline filtering is disabled, all devices have access to the Gateway. 6. If powerline filtering is enabled, select one of the following Filter Mode options: • Allow Permits access to all the MAC addresses entered in the table.
Residential Gateway Family User’s Guide Configuring Advanced Features UPnP (Universal Plug and Play) Microsoft UPnP allows the Gateway to communicate directly with certain Windows operating systems to trade information about the special needs of certain applications (such as messaging programs and interactive games) as well as provide information about other devices on the network.
Residential Gateway Family User’s Guide 7. Configuring Advanced Features Double-click the icon. The Gateway will open another Web page for UPnP functions. Now, NAT functionality is available. The Gateway will create virtual servers automatically when it detects the computer running Internet applications that require this configuration. Now you can configure the Gateway for UPnP. To configure UPnP on the Gateway: 1.
Residential Gateway Family User’s Guide Configuring Advanced Features Security Your Gateway provides broad security measures against unwanted users. Security also allows for the configuration of the Gateway firewall, administrator password, (NAT) Network Address Translation, and DMZ (Demilitarized Zone) configuration. To use the security option, click the Security button on the Gateway Options pane. This displays the “Security Options” window containing icons to access the security features.
Residential Gateway Family User’s Guide Configuring Advanced Features Firewall Settings A firewall is a system designed to prevent unauthorized access to or from a private network. The firewall window provides a listing of options to be enabled or disabled as well as links to configure the more complex details of each feature. To configure the firewall: 1. From the “Security Options” window, click Firewall Settings. This displays the "Firewall Settings" window. 2.
Residential Gateway Family User’s Guide Configuring Advanced Features Security Level Security level refers to how much access is permitted from your Gateway to the Internet or other networks. To enable and configure the security level feature: 1. Select Level from the “Firewall Settings” window. 2. Click the Configure hyperlink next to Level. This displays the “Firewall Level Configuration” window. 3. Select the firewall security level from the Select Firewall Level drop-down menu.
Residential Gateway Family User’s Guide Configuring Advanced Features Attack Detection If the Attack Detection System is enabled, the Gateway provides protection against the most common hacker attacks that attempt to access your computer/network from the Internet. Intrusion attempts can also be logged to provide a record of attempts and their source (when available). To enable and configure the attack detection feature: 1. Select Attack Detection from the “Firewall Settings” window. 2.
Residential Gateway Family User’s Guide Configuring Advanced Features • TCP FIN An outside device can send an attack using TCP FIN. This attack never allows a data packet to finish transmitting and brings down your system. • TCP XMAS An outside device can send an attack using TCP packets with all the flags set. This causes your system to slow to a halt. • Fragmented TCP Packet An outside device can send an attack using fragmented packets to allow an outside user Telnet access to a device on your network.
Residential Gateway Family User’s Guide Configuring Advanced Features IP Filtering Define inbound and outbound IP filter rules using this procedure. IP filtering rules can only be defined if the Firewall Level setting is Custom. This method of firewall protection is recommended for advanced users only. To define IP filtering rules: 1. Click the Configuration hyperlink next to the IP Filter option on the “Firewall Settings” window. This displays the “Firewall IP Filter Configuration Wizard” window. 2.
Residential Gateway Family User’s Guide Configuring Advanced Features Add New IP Filter Rules The “Basic Rule Definition” window is displayed when you select Add New IP Filter Rule from the “Firewall IP Configuration Wizard” window. Using this option, you can define both inbound and outbound rules. Each rule defined is added to the Rule Definition table. To add a new rule: 1. Type up to a five digit numeric value in Rule No to uniquely identify the rule. 2.
Residential Gateway Family User’s Guide 9. Configuring Advanced Features If you selected This IP Address, enter an IP address in the IP Address field and do one of the following: • Enter a netmask in the Netmask field. • Select or Host to use your Gateway netmask as the source netmask. 10. Under the Destination heading, select a network connection from the Network Interface drop-down menu. 11.
Residential Gateway Family User’s Guide Configuring Advanced Features TCP/UDP Options Window The “TCP/UDP Options” window is displayed if you select TCP or UDP protocol from the “Protocol Definition” window. If you selected either of these protocol types, you must identify the source and destination ports. 1. Select one of the following options from the Source Port Operator drop-down menu and the Destination Port Operator drop-down menu: • any Any port is acceptable as the source/destination port.
Residential Gateway Family User’s Guide Configuring Advanced Features ICMP Options Window The “ICMP Options” window is displayed if you select ICMP protocol from the “Protocol Definition” window. 1. Do one of the following: • Select any of the ICMP options you wish to filter. • Select All Types to filter all options. 2. Click Next. 3. Click Finish.
Residential Gateway Family User’s Guide Configuring Advanced Features Clone IP Filter Rules The “Clone Rule Definitions” window is displayed when you select Clone IP Filter Level from the “Firewall IP Configuration Wizard” window. Using this option, you can clone either high or low level rules and modify them according to your needs. If you choose to clone IP filter rules, the rules already defined in the Rule Definition table are discarded. To clone IP filter rules: 1.
Residential Gateway Family User’s Guide Configuring Advanced Features DMZ The DMZ feature allows a computer on your home network to circumvent the firewall and have direct access to the internet. This feature is primarily used for gaming. The Gateway allows you to configure a temporary or permanent DMZ (Demilitarized Zone) to bypass the firewall for network or Internet gaming. If the DMZ feature is enabled, you must select the computer to be used as the DMZ computer/host.
Residential Gateway Family User’s Guide Configuring Advanced Features Firewall Snooze Control The snooze feature allows you to bypass the firewall for a set amount of time so outside support personnel can access your Gateway or network, or so you can run an application that conflicts with the firewall. This function is recommended for use only when you require this special level of unrestricted access as it leaves your Gateway and network exposed to the Internet with no firewall protection.
Residential Gateway Family User’s Guide Configuring Advanced Features Administrator Password You may change the Gateway administrator password at any time if you have administrative rights to the Gateway. To change the administrator password: 1. From the “Security Options” window, click the Admin Password button. This displays the “Enter Network Password” window. 2. Provide the administrator log on ID and password, then click OK. This displays the Gateway Administrator Setup window. 3.
Residential Gateway Family User’s Guide Configuring Advanced Features Address Translation The Address Translation feature provides different methods of keeping individual users/computers hidden behind a single outward-facing address, while still allowing them to access the Internet and related applications. If you have more than one available Internet connection interface, they will all be displayed in the drop-down menu for ease of selection. To enable and configure the address translation feature: 1.
Residential Gateway Family User’s Guide Configuring Advanced Features Address Translation With NAT Network Address Translation (NAT) translates an IP address from your home network to an address on the Internet. It allows only one machine to access the Internet. To enable and configure NAT address translation: 1. Select Address Translation (NAT) from the “Address Translation (NAT/NAPT)” window. 2. Click the Configure hyperlink next to Address Translation (NAT).
Residential Gateway Family User’s Guide Configuring Advanced Features Address Translation With NAPT Many applications require special port access to the Internet in order to function. By enabling Network Address Port Translation (NAPT), multiple computers in your home network have access to the Internet by translating port addresses to an Internet IP address while masking their IP addresses from outside users. Only TCP, UDP, and ICMP protocols support NAPT.
Residential Gateway Family User’s Guide 5. Configuring Advanced Features Do one of the following: • Select one of the following services from the Select service by name drop-down menu. − Telnet Telnet is a program that allows you to connect to other computers over the Internet. This options uses port 23. − FTP (File Transfer Protocol) FTP is used to transfer files in both ASCI and Binary format between local and remote devices. This option uses port 21.
Residential Gateway Family User’s Guide Chapter 7 Monitoring Gateway Health 7 This chapter explains how to monitor the health of the Gateway. This chapter describes how to monitor the health of the Gateway. The Gateway health options are used to gauge the various measures of Gateway’s health. To use the Gateway health options, click the Gateway Health button from the Gateway Options pane. This displays the “Gateway Health” window.
Residential Gateway Family User’s Guide Monitoring Gateway Health Statistics You can display statistics for the Internet, Home Networking, Security, and Logging. To display any of these statistics, click the Statistics button from the “Gateway Health” window. This displays the “SpeedStream Gateway Statistics” window. Click the hyperlink for the type of statistics you wish to view.
Residential Gateway Family User’s Guide Monitoring Gateway Health Internet Stats Internet statistics are commonly used by your Internet Service provider to diagnose service-related issues. Internet statistics include either ATM or DSL statistics. ATM Statistics View status and statistical information for the WAN-side Asynchronous Transfer Mode (ATM) network connection. WAN-side connection to the service provider is based on an Asynchronous Transfer Mode (ATM) network connection.
Residential Gateway Family User’s Guide Monitoring Gateway Health Home Networking Stats Home Networking statistics are helpful for troubleshooting issues on your home network. These statistics are displayed for each physical interface connected to the Gateway. They are separated into Ethernet, USB, Powerline, or Wireless statistics. Ethernet Statistics View status and statistical information for LAN-side Ethernet connectivity.
Residential Gateway Family User’s Guide Monitoring Gateway Health Logging Extensive activity logs are provided for advanced troubleshooting and administrative use. The following types of logs are available: System, Firewall, and User Access. System Logging System logging displays Gateway status, user login, interfaces accessed, etc. Activity displayed in the system log is defined using the checkboxes provided at the bottom of the window. Click Apply after making any changes.
Residential Gateway Family User’s Guide Monitoring Gateway Health Update Firmware This feature updates the firmware of your Gateway through the Internet or from a device connected to your Gateway. This option may not be available on your Gateway configuration. If available, you must be logged in as the Gateway Administrator to access the utility. To access this feature, click the Update Firmware button from your “Gateway Health” window. This displays the “System Update” window.
Residential Gateway Family User’s Guide Monitoring Gateway Health Diagnostics The Gateway provides diagnostic tests and data for each interface. This data is commonly requested by technical support to assist in troubleshooting. To access this feature, click the Diagnostics button from your “Gateway Health” window. This displays the “Diagnostics” window. To use the diagnostic option: 1. Select a connection to test from the Connection to Test drop-down menu.
Residential Gateway Family User’s Guide Chapter 8 Miscellaneous Gateway Options 8 This chapter explains how to customize the appearance of the configuration program and to reboot the Gateway. This chapter is organized into parts that correspond to the following buttons shown in the Gateway Options pane. Customize the Gateway’s display. Reboot the Gateway. Customize You are able to control the background color, language, and time zone settings of your Gateway using customization options.
Residential Gateway Family User’s Guide Miscellaneous Gateway Options Color Palette Multiple color selections are available to customize the appearance of the configuration interface/program. To configure the color palette: 1. From the “Customized Settings” window, click the Color Palette button. This displays the “Customized Colors” window. 2. Using the color drop-down menus from the different display options, select the colors you wish to use in the system. 3.
Residential Gateway Family User’s Guide Miscellaneous Gateway Options Language Multiple languages may be available for displaying text in the configuration interface/program. This option may not be available on your Gateway configuration. To set the language used on the Gateway windows: 1. From the “Customized Settings” window, click the Language button. This displays the “Customized Language” window. 2. Select your desired language. 3. Click Apply.
Residential Gateway Family User’s Guide Miscellaneous Gateway Options Time Zone Using this option, you can configure the time parameters to automatically synchronize the Gateway’s internal date and time settings with those of your selected time zone. This time will be used to control time restrictions you may set for users as well as in entries in the system log. To enable and configure the time zone feature: 1. From the “Customized Settings” window, click the Time Zone button.
Residential Gateway Family User’s Guide Miscellaneous Gateway Options Reboot You can reboot the Gateway using the Reboot option, or you can reset the Gateway to factory defaults using the reset option. Reboot should be used when the Gateway needs to be restarted. The Gateway can also be rebooted using the power switch on the rear panel of the Gateway. This option can be used at either the user or administrator level. To reboot or reset factory defaults on the Gateway: 1.
Residential Gateway Family User’s Guide A Appendix A Troubleshooting Overview This chapter covers some common problems that may be encountered while using the Wireless DSL Gateway and some possible solutions to them. If you follow the suggested steps and the Gateway still does not function properly, contact your Internet Service Provider or Technical Support for assistance. General Issues Problem: Can't connect to the Gateway to configure it.
Residential Gateway Family User’s Guide Appendix A - Troubleshooting firewall to allow the application to function unimpeded. Contacting Technical Support Before contacting technical support, please refer to the previous troubleshooting information. For issues concerning DSL service or connectivity, contact your Internet Service Provider (ISP) directly.
Residential Gateway Family User’s Guide B Appendix B Specifications Media Interface: RJ-11 DSL WAN connection (5) 10/100Base-T RJ-45 Ethernet LAN connections (Auto-MDI/MDI-X) USB Type B connection DB-9 RS-232 Serial console port Diagnostic LEDs: Power, Status, Link and Activity for DSL, Ethernet, USB (optional), and Wireless Management: Intuitive, Web-based management Comprehensive hardware diagnostics SNMPv1 support UPnP IGD-NAT traversal support XML Management Scheme, DSL Forum 2002-281 Security:
Residential Gateway Family User’s Guide Routing: Appendix B Specifications DHCP server and DNS agent Network Address Port Translation (NAPT) Network Address Translation (NAT) Packet filtering RFC 2364 Point-to-Point Protocol over ATM PVCs (PPPoA) RFC 2516 Point-to-Point Protocol over Ethernet (PPPoE) RFC 2684 (formerly 1483) Bridged Ethernet and routed encapsulation RFC 2225 (formerly 1577) Classical IP over ATM PPPoE Relay/Bridging Configurable PAP and CHAP authentication TCP/IP with RIP1 and RIP2 or st
Siemens Subscriber Network 4849 Alpha Road Dallas, TX 75244 USA (972) 852-1000 Tel (972) 852-1001 Fax info.ssn@siemens.com http://www.icn.siemens.