® Netopia R2121 Dual Analog Router User’s Reference Guide
Copyright Copyright 1998, Netopia, Inc. v.1298 All rights reserved. Printed in the U.S.A. This manual and any associated artwork, software and product designs are copyrighted with all rights reserved. Under the copyright laws such materials may not be copied, in whole or part, without the prior written consent of Netopia, Inc. Under the law, copying includes translation to another language or format. Netopia, Inc. 2470 Mariner Square Loop Alameda, CA 94501-1010 U.S.A.
Contents Welcome to the Netopia R2121 User’s Reference Guide. This guide is designed to be your single source for information about your Netopia R2121 Dual Analog Router. It is intended to be viewed on-line, using the powerful features of the Adobe Acrobat Reader. The information display has been deliberately designed to present the maximum information in the minimum space on your screen.
ii User’s Reference Guide Configuring TCP/IP on Windows 95, 98, or NT computers ........................................................... 3-9 Configuring TCP/IP on Macintosh computers ........ 3-13 Chapter 4 — Monitoring with SmartView ...................................4-1 SmartView overview ...................................................... 4-1 Navigating SmartView .................................................... 4-2 General Machine Information page ........................
Contents iii Easy Setup Security.............................................. 7-6 Chapter 8 — WAN and System Configuration .............................8-1 Creating a new Connection Profile ................................... 8-2 Viewing or editing connection profiles .................... 8-6 Deleting connection profiles .................................. 8-7 System Configuration screens ........................................ 8-8 Navigating through the System Configuration screens.......
iv User’s Reference Guide Network Address Translation guidelines ............... 10-5 IP setup ...................................................................... 10-6 IP subnets ....................................................... 10-10 Static routes.................................................... 10-12 IP address serving ..................................................... 10-16 DHCP NetBIOS Options..................................... 10-18 MacIP (Kip Forwarding) Options.....................
Contents v Chapter 13 — Monitoring Tools ...............................................13-1 Quick View status overview .......................................... 13-1 General Status................................................... 13-2 Current Status ................................................... 13-3 Status lights ..................................................... 13-3 Statistics & Logs ......................................................... 13-4 General Statistics ..........................
vi User’s Reference Guide IPX packet filters .............................................. IPX packet filter sets ........................................ IPX SAP filters .................................................. IPX SAP filter sets ............................................ Firewall tutorial .......................................................... General Firewall Terms ..................................... Basic IP Packet Components............................. Basic Protocol Types .......
Contents vii Uploading configuration files ............................. 15-12 Restarting the system................................................ 15-13 Part III: Appendixes Appendix A — Troubleshooting..................................................A-1 Configuration problems .................................................. A-1 SmartStart Troubleshooting .................................. A-2 Console connection problems ............................... A-2 Network problems ..........................
viii User’s Reference Guide Example: Working with a Class C subnet ................ C-5 Distributing IP addresses ............................................... C-5 Technical note on subnet masking......................... C-6 Configuration ....................................................... C-7 Manually distributing IP addresses ........................ C-8 Using address serving .......................................... C-8 Tips and rules for distributing IP addresses............
Contents ix Index ..................................................................................Index-1 Limited Warranty and Limitation of Remedies ................................
x User’s Reference Guide
Configuration options for your Netopia R2121 Dual Analog Router The Netopia R2121 can be used in different ways depending on your needs. In general, you will probably want to use it in one or more of the following ways: (Click on one of these links) ■ “1. Small Office connection to the Internet” with several computers in your office sharing a single IP address (Network Address Translation enabled) ■ “2.
1. Small Office connection to the Internet For Small Office connections to the Internet, using a single dynamic IP address with Network Address Translation (NAT) enabled, you should use the following configuration option: ■ the SmartStart™ Wizard, included on your Netopia R2121 CD. This is the fastest and simplest way to get you up and running with the minimum difficulty. For instructions on this option, see “Setting up your Router with the SmartStart Wizard” on page 3-3.
2. Small Office connection to the Internet For Small Office connections to the Internet, using a block of IP addresses (Network Address Translation disabled), you should use the following configuration tool: ■ Easy Setup configuration using console-based management. This option allows maximum flexibility for experienced users and administrators. For instructions on this option, see “Console-based Management” on page 6-1 and “Easy Setup” on page 7-1.
3. Direct Connection to a Corporate Office (Telecommuter) For direct connections to a Corporate Office, you can use either one of two configuration options: ■ If you will be using Network Address Translation, use the SmartStart™ Wizard, included on your Netopia R2121 CD. For instructions on this option, see “Setting up your Router with the SmartStart Wizard” on page 3-3. ■ If your corporate office assigns you a static IP address, use Easy Setup under console-based management.
4. Configured to accept incoming dial-up connections To configure the Netopia R2121 to accept incoming dial-up connections, you should use the following configuration method: ■ To create one or more dial-in Connection Profiles for each dial-in user, see “Creating a new Connection Profile” on page 8-2. You do this using console-based management.
5. Configured for two onboard and one external modem on the Auxiliary port To configure the Netopia R2121 to use the two onboard modems and a third external modem on the Auxiliary serial port, you should use the following configuration options. This might be done to allow three separate simultaneous dial-in/dial-out connections or one or two aggregated dial-in/dial-out calls using Multilink PPP. ■ Install the special optional modem cable available from your reseller or directly from Netopia.
Part I: Getting Started
User’s Reference Guide
Introduction 1-1 Chapter 1 Introduction Overview The Netopia R2121 Dual Analog Router is a full-featured, stand-alone, multiprotocol router for connecting diverse local area networks (LANs) to the Internet and other remote networks. The Netopia R2121 Dual Analog Router uses two 56Kbps modems communicating over standard analog telephone lines to provide your whole network with a high-speed connection to the outside world.
1-2 User’s Reference Guide network by using Network Address Translation and a single IP address. ■ SmartPhone™ allows the router to share telephone lines with analog telephones or facsimile machines, saving the cost of adding separate telephone lines for these devices. More than Plain Old Telephone Service (POTS), SmartPhone adds distinctive ringing and CallerID capabilities.
Making the Physical Connections 2-1 Chapter 2 Making the Physical Connections This section tells you how to make the physical connections to your Netopia R2121 Dual Analog Router.
2-2 User’s Reference Guide Windows and Macintosh, ZTerm terminal emulator software and NCSA Telnet 2.6 for Macintosh You will need: ■ A Windows 95-based PC or a Macintosh with Ethernet connectivity for configuring the Netopia R2121. This may be built-in Ethernet or an add-on card, with TCP/IP installed and configured. See “Before running SmartStart” on page 3-1. ■ Two telephone lines, each with its own jack, or a single jack wired for two phone lines.
Making the Physical Connections 2-3 If you have two phone lines on a single wall outlet, this is the only Telco connection you need to make. The pinout configuration for the lines on the Telco 1 port is shown in the following diagram: 1 2 3 4 5 6 7 8 Telco 1 Telco 2 Your first Telco number is carried on the inner pair and the second number on the outer pair. 3.
2-4 User’s Reference Guide Netopia R2121 Dual Analog Router Back Panel Ports The figure below displays the back of the Netopia R2121 with Dual Analog.
Making the Physical Connections 2-5 The following table describes all the Netopia R2121 Dual Analog Router back panel ports. Port Description Power port a mini-DIN8 power adapter cable connection. Telco 1 port a red RJ-11 telephone jack labelled “Telco 1". Console port a DE-9 Console port for a direct serial connection to the console screens. You may use this if you are an experienced user and choose not to use SmartStart. See “Connecting a local terminal console cable to your router” on page 6-3.
2-6 User’s Reference Guide Netopia R2121 Dual Analog Router Status Lights The figure below represents the Netopia R2121 status light (LED) panel.
Making the Physical Connections 2-7 When this happens... the LEDs... when link is detected 14 though 21 are solid green.
2-8 User’s Reference Guide
Setting up your Router with the SmartStart Wizard 3-1 Chapter 3 Setting up your Router with the SmartStart Wizard Once you’ve connected your router to your computer and your telecommunications line and installed a web browser, you’re ready to run the Netopia SmartStart™ Wizard. The SmartStart Wizard will help you set up the router and share the connection.
3-2 User’s Reference Guide PC Macintosh Notes: • The computer running SmartStart must be on the same Ethernet cable segment as the Netopia R2121. Repeaters, such as 10Base-T hubs between your computer and the Netopia R2121, are acceptable, but devices such as switches or other routers are not. • SmartStart for the PC will set your TCP/IP control panel to “Obtain an IP address automatically” if it is not already set this way. This will cause your computer to reboot.
Setting up your Router with the SmartStart Wizard 3-3 Setting up your Router with the SmartStart Wizard The SmartStart Wizard is tailored for your platform, but it works the same way on either a PC or a Macintosh. Insert the Netopia CD, and in the desktop navigation screen that appears, launch the SmartStart Wizard application. SmartStart Wizard configuration screens The screens described in this section are the default screens shipped on the Netopia CD. They derive from two initialization (.
3-4 User’s Reference Guide Easy or Advanced options screen. You can choose either Easy or Advanced setup. ■ If you choose Easy, SmartStart automatically uses the preconfigured IP addressing setup built into your router. This is the best choice if you are creating a new network or don’t already have an IP addressing scheme on your new network. If you choose Easy, you will see a “Connection Test screen,” like the one shown below while SmartStart checks the connection to your router.
Setting up your Router with the SmartStart Wizard 3-5 When the test is successful, you will see the “Manual or Automated Connection Profile screen,” shown below. Manual or Automated Connection Profile screen. The SmartStart Wizard asks you to select a method of creating a connection profile. The connection profile tells your router how to communicate with your ISP or other remote site, such as your corporate office. You can select either ISP Automation or Manual Entry. Options are explained below.
3-6 User’s Reference Guide with: ■ Your dial-up number, sometimes referred to as an ISP POP number ■ Your Login name and Password. (These are case-sensitive.) Note: Your ISP may provide you with additional values such as “Remote IP Gateway” or “Subnet Mask.” These entries are not required for the SmartStart Wizard to configure your router. If you have a PBX or Centrex phone system, you may need a dialing prefix (such as “9” for an outside line).
Setting up your Router with the SmartStart Wizard 3-7 Connection Profile Test screen. SmartStart tests your connection profile by attempting to connect to your ISP. To test the connection profile with your ISP, click Next. While the test is running, SmartStart reports its progress in a brief succession of dialog boxes as described below. Available Line Test Progress screen. SmartStart tests to see if the router can place calls on your telephone line.
3-8 User’s Reference Guide Advanced option Router IP Address screen. If you selected the Advanced option in the “Easy or Advanced options screen” on page 3-4, SmartStart asks you to choose between entering the router’s current IP address and assigning an IP address to the router. If the router has already been assigned an IP address, select the first radio button. If you do this, the “Known IP Address screen,” appears (shown below.
Setting up your Router with the SmartStart Wizard 3-9 New IP Address screen. If you want to change the router’s IP address, you enter the new IP address, the subnet mask, and the router’s serial number in this screen. Remember, the serial number is on the bottom of the router. It is also found in your documentation folio.
3-10 User’s Reference Guide Dynamic configuration (recommended) If you configure your Netopia R2121 using SmartStart, you can accept the dynamic IP address assigned by your router. The Dynamic Host Configuration Protocol (DHCP) server, which enables dynamic addressing, is enabled by default in the router. If your PC is not set for dynamic addressing, SmartStart will offer to do this for you when you launch it. In that case, you will have to restart your PC and relaunch SmartStart.
Setting up your Router with the SmartStart Wizard 3-11 Static configuration (optional) If you are manually configuring for a fixed or static IP address, perform the following: 1. Go to Start Menu/Settings/Control Panels and double click the Network icon. From the Network components list, select the Configuration tab. 2. Select TCP/IP-->Your Network Card. Then select Properties. In the TCP/IP Properties screen (shown below), select the IP Address tab. Click “Specify an IP Address.
3. Click on the Gateway tab (shown below). Under “New gateway,” enter 192.168.1.1. Click Add. This is the Netopia R2121’s pre-assigned IP address. Click on the DNS Configuration tab. Click Enable DNS. Enter the following information: Host: Type the name you want to give to this computer. Domain: Type your domain name. If you don't have a domain name, type your ISP's domain name; for example, netopia.com. DNS Server Search Order: Type the primary DNS IP address given to you by your ISP. Click Add.
Setting up your Router with the SmartStart Wizard 3-13 Configuring TCP/IP on Macintosh computers The following is a quick guide to configuring TCP/IP for MacOS computers. Configuring TCP/IP in a Macintosh computer requires the following: You must have either Open Transport or Classic Networking (MacTCP) installed.
3-14 User’s Reference Guide Static configuration (optional) If you are manually configuring for a fixed or static IP address, perform the following: 1. Go to the Apple menu. Select Control Panels and then TCP/IP or MacTCP. 2. With the TCP/IP window open, go to the Edit menu and select User Mode. Choose Advanced and click OK. Or, in the MacTCP window, select Ethernet and click the More button. 3.
Setting up your Router with the SmartStart Wizard 3-15 Dynamic configuration using MacIP (optional) If you want to use MacIP to dynamically assign IP addresses to the Macintosh computers on your network you must install the optional AppleTalk feature set kit. Note: You cannot use MacIP dynamic configuration to configure your Netopia R2121 Dual Analog Router because you must first configure the router in order to enable AppleTalk.
3-16 User’s Reference Guide Using Classic Networking (MacTCP) 1. Go to the Apple Menu. Select Control Panels and then Network. 2. In the Network window, select EtherTalk. 3. Go back to the Apple menu. Select Control Panels and then MacTCP. 4. Select EtherTalk. From the pull-down menu under EtherTalk, select an available zone; then click the More button. In the MacTCP/More window select the Server radio button.
Monitoring with SmartView 4-1 Chapter 4 Monitoring with SmartView This chapter discusses SmartView, the Netopia R2121’s device and network web-based monitoring tool. This tool can provide statistical information, report on current network status, record events, and help in diagnosing and locating problems.
4-2 User’s Reference Guide Navigating SmartView You access the SmartView monitor by launching your web browser and entering the URL: “http://router_IP_Address/smartview.html” where router_IP_address is the address of your router. Once you have invoked the SmartView pages, you should bookmark SmartView in your browser for easy access. SmartView uses a tabbed view to categorize information and reduce the amount of information displayed at once.
Monitoring with SmartView 4-3 Connection Profiles page The Connection Profiles page displays the currently active Connection Profile, and any alternate profiles you may have created. You can switch from one Connection Profile to another by disconnecting from one, and connecting to another. ■ To hang up the current connection, and establish the one you select, click the Disconnect button for the currently active Connection Profile. ■ Click the tab for the Connection Profile you want to activate.
4-4 User’s Reference Guide Device Event History page WAN Event History page
Monitoring with SmartView 4-5 Standard HTML Web-based monitoring pages You can also view Connection Profile information and Event Histories in the web-based monitoring pages. These pages are provided for users without Java-enabled browsers. Unlike the SmartView pages, they are not dynamically updated. You access the web-based monitoring pages by launching your web browser and entering the URL: “http://router_IP_Address” where router_IP_address is the address of your router.
4-6 User’s Reference Guide
Connecting Your Local Area Network 5-1 Chapter 5 Connecting Your Local Area Network This chapter describes how physically to connect the Netopia R2121 to your local area network (LAN). Before you proceed, make sure the Netopia R2121 is properly configured. You can customize the Router’s configuration for your particular LAN requirements using Console-based Management (see “Console-based Management” on page 6-1).
5-2 User’s Reference Guide Application software TCP/IP stack Ethernet/EtherTalk/LocalTalk Driver Your PC or Macintosh computer To the Netopia R2121 Application software: This is the software you use to send e-mail, browse the World Wide Web, read newsgroups, etc. These applications may require some configuration. Examples include the Eudora e-mail client, and the web browsers Microsoft Internet Explorer and Netscape Navigator.
Connecting Your Local Area Network 5-3 Connecting to an Ethernet network The Netopia R2121 supports Ethernet connections through its eight Ethernet ports. The Router automatically detects which Ethernet port is in use. You can connect either 10Base-T or EtherWave Ethernet networks to the Netopia R2121. The following table displays some important attributes of these types of Ethernet. Attribute EtherWave 10Base-T Max.
5-4 User’s Reference Guide 10Base-T You can connect a standard 10Base-T Ethernet network to the Netopia R2121 using any of its available Ethernet ports. Netopia R2121 back panel Ethernet 8 7 6 5 4 3 2 1 Phone 2 Auxiliary Telco 2 Phone 1 Console Telco 1 Power Normal/Uplink 1 The Netopia R2121 in a 10Base-T network Ethernet 8 4 Normal/ 1 To connect your 10Base-T network to the Netopia R2121 through an Ethernet port, use a 10Base-T cable with RJ-45 connectors.
Connecting Your Local Area Network 5-5 ■ If you add devices connected through a hub, connect the hub to Ethernet port number 1 on the Netopia R2121 and set the Normal/Uplink switch to Uplink. When there are no more free ports on the 10Base-T hub, the network can be extended using EtherWave, a daisy-chainable Ethernet solution from Farallon.
5-6 User’s Reference Guide For pinout information on the HD-15 to DB-25 modem cable, see “Pinouts for Auxiliary Port Modem Cable,” in Appendix G, “Technical Specifications and Safety Information.” Connecting to a LocalTalk network If you have purchased the AppleTalk feature expansion kit, you can also connect the Router to an AppleTalk network that uses either Ethernet or LocalTalk. Refer to the sheet of optional feature set add-ons in your Netopia R2121 documentation folio.
Connecting Your Local Area Network 5-7 Wiring guidelines for PhoneNET cabling Topology 22 gauge .642 mm 24 gauge .510 mm daisy chain n/a n/a backbone 4500 ft. 1372 m 1125 ft. 343 m 3000 ft. 914 m 3000 ft. 229 m 750 ft. 229 m 2000 ft. 610 m 4-branch passive star* LocalTalk StarController 12-branch active star * distance is per branch 26 gauge .403 mm 1800 ft. 549 m 1800 ft. 549 m 450 ft. 137 m 1200 ft.
5-8 User’s Reference Guide
Part II: Advanced Configuration
User’s Reference Guide
Console-based Management 6-1 Chapter 6 Console-based Management Console-based management is a menu-driven interface for the capabilities built in to the Netopia R2121. Console-based management provides access to a wide variety of features that the router supports. You can customize these features for your individual setup. This chapter describes how to access and navigate the console-based management screens.
6-2 User’s Reference Guide using the router to connect to more than one service provider or remote site. ■ The System Configuration menus display and permit changing: ■ Network Protocols Setup. See “IP Setup, SmartIP and Network Address Translation” on page 10-1. ■ Filter Sets (Firewalls). See “Security” on page 14-1. ■ IP Address Serving. See “IP address serving” on page 10-16. ■ Date and Time. See “Date and Time” on page 8-11. ■ Console Configuration.
Console-based Management 6-3 Configuring Telnet software If you are configuring your router using a Telnet session, your computer must be running a Telnet software program. ■ If you connect a PC with Microsoft Windows, you can use a Windows Telnet application or simply run Telnet from the Start menu. ■ If you connect a Macintosh computer, you can use the NCSA Telnet program supplied on the Netopia R2121 CD. You install NCSA Telnet by simply dragging the application from the CD to your hard disk.
6-4 User’s Reference Guide Launch your terminal emulation software and configure the communications software for the following values. These are the default communication parameters that the Netopia R2121 uses. Parameter Suggested Value Terminal type PC: ANSI-BBS Mac: ANSI, VT-100, or VT-200 Data bits 8 Parity None Stop bits 1 Speed Options are: 9600, 19200, 38400, or 57600 bits per second Flow Control None Note: The router firmware contains an autobaud detection feature.
Easy Setup 7-1 Chapter 7 Easy Setup This chapter describes how to use the Easy Setup console screens on your Netopia R2121 Dual Analog Router. The Easy Setup console screens provide an alternate method for experienced users to set up their router’s Connection Profiles without using SmartStart. After completing the Easy Setup console screens, your router will be ready to connect to the Internet or another remote site.
7-2 User’s Reference Guide A screen similar to the following appears: Netopia R2121 v4.3 Easy Setup... WAN Configuration... System Configuration... Utilities & Diagnostics... Statistics & Logs... Quick Menus... Quick View... Return/Enter goes to Easy Setup -- minimal configuration. You always start from this main screen.
Easy Setup 7-3 Beginning Easy Setup To begin Easy Setup, select Easy Setup in the Main Menu, then press Return. The Easy Setup Profile screen appears. Connection Profile 1: Easy Setup Profile Number to Dial: 12345678901234567890 Address Translation Enabled: Yes Local WAN IP Address: 0.0.0.0 Remote IP Address: Remote IP Mask: 127.0.0.2 255.0.0.0 PPP Authentication... Send User Name: Send Password: PAP PREVIOUS SCREEN NEXT SCREEN Enter the directory number for the remote network connection.
7-4 User’s Reference Guide The default address is 0.0.0.0, which allows for dynamic addressing, when your ISP assigns an address each time you connect. However, you may enter another address if you want to use static addressing. ■ When using numbered interfaces, the Netopia Router will use its local WAN IP address and subnet mask to send packets to the remote router. Both routers have WAN IP addresses and subnet masks associated with the connection.
Easy Setup 7-5 IP Easy Setup Ethernet IP Address: Ethernet Subnet Mask: 192.168.1.1 255.255.255.0 Domain Name: Primary Domain Name Server: 0.0.0.0 Default IP Gateway: 0.0.0.0 IP Address Serving: On Number of Client IP Addresses: 1st Client Address: 100 192.168.1.100 PREVIOUS SCREEN NEXT SCREEN Enter an IP address in decimal and dot form (xxx.xxx.xxx.xxx). Set up the basic IP & IPX attributes of your Netopia in this screen. 1.
7-6 User’s Reference Guide 7. If IP Address Serving is On, select Number of Client IP Addresses. Then enter the number of available host addresses for the Netopia R2121 Dual Analog Router to allocate to the client computers on your network. This number defaults to the balance of the subnet addresses above the Netopia Router’s address. 8. If IP Address Serving is On, select 1st Client Address and enter the first IP address in the set of allocated served IP addresses. 9. Press Return.
WAN and System Configuration 8-1 Chapter 8 WAN and System Configuration This chapter describes how to use the console-based management screens to access and configure advanced features of your Netopia R2121 Dual Analog Router. You can customize these features for your individual setup. These menus provide a powerful method for experienced users to set up their router’s connection profiles and system configuration.
8-2 User’s Reference Guide Creating a new Connection Profile Connection Profiles define the telephone and networking protocols necessary for the router to make a remote connection. A Connection Profile is like an address book entry describing how the router is to get to a remote site, or how to recognize and authenticate a remote user dialing in to the router. For example, to create a new Connection Profile, you navigate to the WAN Configuration screen from the Main Menu, and select Add Connection Profile.
WAN and System Configuration 8-3 IP Profile Parameters Address Translation Enabled: Yes Local WAN IP Address: 0.0.0.0 Remote IP Address: Remote IP Mask: 0.0.0.0 0.0.0.0 Filter Set... Remove Filter Set Receive RIP: Both Toggle to Yes if this is a single IP address ISP account. Configure IP requirements for a remote network connection here. 4. Toggle or enter any IP Parameters you require and return to the Add Connection Profile screen by pressing Escape.
8-4 User’s Reference Guide 7. Select Datalink Options and press Return. The Datalink Options screen appears. Datalink (PPP/MP) Options Data Compression... Ascend LZS Send Authentication... PAP Send User Name: Send Password: Receive User Name: Receive Password: Channel Usage... Dynamic Bandwidth Allocation... BAP Maximum Packet Size: 1500 In this Screen you will configure the PPP/MP specific connection params. You can accept the defaults, or change them if you wish.
WAN and System Configuration 8-5 The Channel Usage pop-up menu allows you to choose how many lines your connections may use, and whether or not they are preemptable.
8-6 User’s Reference Guide ■ add an alternate number to use if the first number fails to connect ■ change any of the default parameter settings When you are finished with these entries, press Escape to return to the Add Connection Profile screen. 9. Select ADD PROFILE NOW and press Return. Your new Connection Profile will be added.
WAN and System Configuration 8-7 Select the connection profile you want to view or edit and press Return. The profile is displayed, and you can change any of the parameters. Changes take effect immediately without rebooting the router. Change Connection Profile Profile Name: Profile Enabled: Profile 02 Yes IP Enabled: IP Profile Parameters... Yes IPX Enabled: No Data Link Encapsulation is Data Link Options... PPP Telco Options...
8-8 User’s Reference Guide System Configuration screens You can connect to the Netopia R2121’s System Configuration screens: ■ Using Telnet with the Router’s Ethernet port IP address ■ Through the console port, using a local terminal (see “Connecting a local terminal console cable to your router” on page 6-3) You can also retrieve the Netopia R2121’s configuration information and remotely set its parameters using the Simple Network Management Protocol (see “SNMP” on page 13-13).
WAN and System Configuration 8-9 2. Select the Network Protocols item in the System Configuration screen and press Return. 3. Select the IP Setup item in the Network Protocols Setup screen and press Return. To go back in this sequence of screens, use the Escape key. System Configuration features SmartStart may be all you need to configure your Netopia R2121. Some users, however, require advanced settings or prefer manual control over the default selections that SmartStart automatically chooses.
8-10 User’s Reference Guide Layer Category Datalink Layer Physical Layer Parameter Type PPP/MP Parameters Telco Parameters Options Default settings Data Compression: Ascend LZS Send Authentication: PAP Channel Usage: Dynamic Bandwidth Allocation: BAP Maximum Packet Size: 1500 Dial is set to: Dial In/Out Dial On Demand is set to: Yes Callback is set to: No Idle Time-out is set for: 300 seconds To access the System Configuration screens, select System Configuration in the Main Menu, th
WAN and System Configuration 8-11 Network Protocols Setup These screens allow you to configure your network’s use of the standard networking protocols: ■ IP: details are given in “IP Setup, SmartIP and Network Address Translation” on page 10-1. ■ IPX: details are given in “IPX Setup” on page 11-1. ■ AppleTalk: details are given in “AppleTalk Setup” on page 12-1. Note: AppleTalk requires the optional AppleTalk feature expansion kit.
8-12 User’s Reference Guide 1. Select Current Date and enter the date in the appropriate format. Use one- or two-digit numbers for the month and day, and the last two digits of the current year. The date’s numbers must be separated by forward slashes (/). 2. Select Current Time and enter the time in the format HH:MM, where HH is the hour (using either the 12-hour or 24-hour clock) and MM is the minutes. 3. Select AM or PM and choose AM or PM.
WAN and System Configuration 8-13 SNMP (Simple Network Management Protocol) These screens allow you to monitor and configure your network by means of a standard Simple Network Management Protocol (SNMP) agent. ■ Details are given in “SNMP” on page 13-13. Security These screens allow you to add users and define passwords on your network. ■ Details are given in “Security” on page 14-1.
8-14 User’s Reference Guide By default, all events are logged in the event history. ■ By toggling each event descriptor either Yes or No, you can determine which ones are logged and which are ignored. ■ You can enable or disable the syslog client dynamically. When enabled, it will report any appropriate and previously unreported events. ■ You can specify the syslog server’s address either in dotted decimal format or as a DNS name up to 63 characters.
WAN and System Configuration 8-15 The following screen shows a sample syslog dump of WAN events: Nov 5 10:14:06 tsnext.farallon.com Link 1 down: PPP PAP failure Nov 5 10:14:06 tsnext.farallon.com >>Issued Speech Setup Request from our DN: 5108645534 Nov 5 10:14:06 tsnext.farallon.com Requested Disc. from DN: 917143652500 Nov 5 10:14:06 tsnext.farallon.com Received Clear Confirm for our DN: 5108645534 Nov 5 10:14:06 tsnext.farallon.com Link 1 down: Manual disconnect Nov 5 10:14:06 tsnext.farallon.
8-16 User’s Reference Guide
Managing Voice and Data Calls 9-1 Chapter 9 Managing Voice and Data Calls You can set a Netopia Router to make scheduled connections using designated connection profiles. This is useful for creating and controlling regularly scheduled periods when the router can be used by hosts on your network. It is also useful for once-only connections that you want to schedule in advance. The Netopia R2121 Dual Analog Router can answer calls as well as initiate them.
9-2 User’s Reference Guide Specifying telephone connections You can configure telephone connections in the WAN Configuration screen under the Main Menu. Select WAN (Wide Area Network) Setup. WAN Configuration WAN (Wide Area Network) Setup... Display/Change Connection Profile... Add Connection Profile... Delete Connection Profile... Default Answer Profile... Scheduled Connections... Call Accounting Configuration... Establish WAN Connection... Disconnect WAN Connection...
Managing Voice and Data Calls 9-3 require a prefix for an outside line. ■ Enter the optional telephone or Directory Numbers for the two onboard modems to provide the Netopia R2121 with the information needed to establish a two-channel call using MP or BAP. This will advise the remote side of an inbound data call how to connect to a second channel.
9-4 User’s Reference Guide information on how to use the optional AppleTalk feature set. Netopia R2121 back panel Ethernet 8 7 6 5 4 3 2 1 Telco 2 Phone 2 Auxiliary Phone 1 Console Telco 1 Power Normal/Uplink 1 Auxiliary serial port HD-15 (female) For external modem applications, the Data Rate pop-up offers a variety of clock rates from 9600 to 230 Kbps. The default is 57.6 kbps.
Managing Voice and Data Calls 9-5 If an incoming call is not required to match a connection profile, and fails to do so, it is accepted as a standard IP connection. Accepted, unmatched calls adopt the call parameter values set in the Default Answer Profile. To determine the call parameter values that unmatched calls will adopt, customize the Default Answer Profile parameters in the Default Answer Profile screen.
9-6 User’s Reference Guide CNA works by checking the calling number that the Netopia Router receives during the initial setup phase of an incoming call against a set of stored numbers. Each number in the stored set is defined in a specific connection profile. When a match occurs, the incoming call is handled by the connection profile containing the matched number. Using CNA can also provide cost savings because calls are not billed during the CNA phase.
Managing Voice and Data Calls 9-7 Call acceptance scenarios The following are a few common call acceptance scenarios and information on how to configure the Netopia R2121 for those purposes. ■ To accept all calls, regardless of whether they match a connection profile: ■ ■ Toggle Must Match a Defined Profile to No. To only accept calls that match a connection profile through use of a name and password (or secret): ■ Toggle Must Match a Defined Profile to Yes, and ■ Set Authentication to PAP or CHAP.
9-8 User’s Reference Guide Scheduled Connections Display/Change Scheduled Connection... Add Scheduled Connection... Delete Scheduled Connection... Navigate from here to add/modify/change/delete Scheduled Connections. Viewing scheduled connections To display a table of view-only scheduled connections, select Display/Change Scheduled Connection in the Scheduled Connections screen. Each scheduled connection occupies one row of the table. Scheduled Connections +-Days----Begin At---HH:MM---When----Conn.
Managing Voice and Data Calls 9-9 The other columns show: ■ The time of day that the connection will Begin At ■ The duration of the connection (HH:MM) ■ Whether it’s a recurring Weekly connection or used Once Only ■ Which connection profile (Conn. Prof.) is used to connect ■ Whether the scheduled connection is currently Enabled The router checks the date and time set in scheduled connections against the system date and time.
9-10 User’s Reference Guide Only from the pop-up menu. ■ The Schedule Type item directly below How Often allows you to set the type of schedule. Options are:.
Managing Voice and Data Calls 9-11 1:3 (or 1:03) would be accepted as 3 minutes after one o’clock. The entry 7:0 (or 7:00) would be accepted as seven o’clock, exactly. The entries 44, :5, and 2: would be rejected. ■ Select AM or PM and choose AM or PM from the pop-up menu. ■ Select Scheduled Window Duration Per Day and enter the maximum duration allowed for this scheduled connection, per call. ■ If you selected Periodic as your Schedule Type in the previous screen, an additional item “Every...
9-12 User’s Reference Guide connection. Use the same format restrictions noted above. You are finished configuring the once-only options. Return to the Add Scheduled Connection screen to continue. ■ In the Add Scheduled Connection screen, select Use Connection Profile and choose from the list of connection profiles you have already created. A scheduled connection must be associated with a connection profile to be useful.
Managing Voice and Data Calls 9-13 Call Accounting Configuration Enable Call Accounting: On Day for auto-reset of timers: 12 Maximum Aggregate connect time: 12:00 To enable call accounting, follow these steps: 1. Select Enable Call Accounting and toggle it to On. 2. Select Day for auto-reset of timers and enter the day of the month for the Router to reset the Call Accounting Statistics. 3.
9-14 User’s Reference Guide Once you have enabled Call Accounting, you can specify per-connection profile limits in the Telco Options for each profile. Go to: Main Menu WAN Configuration Display/Change Connection Profile Telco Options Telco Options Dial...
Managing Voice and Data Calls 9-15 The Call Accounting Statistics screen appears. Call Accounting Statistics Aggregate Statistics... Profile Statistics... If you select Aggregate Statistics, the following screen appears. Call Accounting Aggregate Statistics Total First Minutes: Total Additional Time (HH:MM): 0 0:00 Remaining Time (HH:MM): 12:00 RESET AGGREGATE MINUTE COUNTERS Trigger Date(MDY): 11/12/98 Hit Return or Enter to reset Total First/Additional Time.
9-16 User’s Reference Guide enabled, the message will read, Aggregate Not Enforced. ■ Trigger Date (MDY) displays the date, in month, day, year format, when the call accounting begins. ■ You can reset the counters by selecting RESET AGGREGATE MINUTE COUNTERS. A dialog box will ask you to confirm the reset. Select CONTINUE to reset the counters or CANCEL to leave them as is. If you select Profile Statistics, the following screen appears.
IP Setup, SmartIP and Network Address Translation 10-1 Chapter 10 IP Setup, SmartIP and Network Address Translation The Netopia R2121 uses Internet Protocol (IP) to communicate both locally and with remote networks. This chapter shows you how to configure the Router to route IP traffic. You also learn how to configure the Router to serve IP addresses to hosts on your local network. Netopia’s SmartIP features IP address serving and Network Address Translation.
10-2 User’s Reference Guide Network Address Translation works by remapping the source IP address of traffic from the LAN to a single static or dynamically assigned IP address shown to the remote side of the router. HOW NAT WORKS With NAT 192.168.1.100 ISP* 192.168.1.102 192.168.1.103 163.167.132.1 192.168.1.104 192.168.1.105 192.168.1.106 Without NAT 163.167.132.1 163.167.132.1 163.167.132.2 163.167.132.3 163.167.132.4 163.167.132.5 163.167.132.6 163.167.132.2 163.167.132.3 163.167.132.4 163.167.132.
IP Setup, SmartIP and Network Address Translation 10-3 Using Network Address Translation The following procedure describes how to use Network Address Translation. 1. Pick a network number for your local network (referred to as the internal network). This can be any IP address range you want. The Netopia R2121 Dual Analog Router has a default IP address of 192.168.1.1. You may choose to change this address to match a pre-existing addressing scheme. For this example, we will use 10.0.0.0.
10-4 User’s Reference Guide Profile screen. You access the Address Translation option from the IP Profile Parameters menu. IP Profile Parameters Address Translation Enabled: Yes Local WAN IP Address: 0.0.0.0 Remote IP Address: Remote IP Mask: 0.0.0.0 255.0.0.0 Filter Set... Remove Filter Set Receive RIP: Both Configure IP requirements for a remote network connection here. Select the Local WAN IP Address field. The default address is 0.0.0.
IP Setup, SmartIP and Network Address Translation 10-5 Internal users can access the Internet as they always do; the external Internet, however, views all traffic from the internal network as originating from 192.163.100.6. Similarly, all traffic your network receives is addressed to 192.163.100.6.
10-6 User’s Reference Guide exported, you can have Web servers on two different IP hosts. ■ If you will be using multiple Connection Profiles, define the remote IP address of the most accessible profile, such as that for your ISP, to the default IP gateway in the TCP/IP settings on users’ workstations. That way, IP traffic not intended specifically for any of the remote networks will be routed through this “preferred” profile.
IP Setup, SmartIP and Network Address Translation 10-7 Follow these steps to configure IP Setup for your Netopia R2121: ■ Select Ethernet IP Address and enter the IP address for the Netopia R2121’s Ethernet port. ■ Select Ethernet Subnet Mask and enter the subnet mask for the Ethernet IP Address that you entered in the last step. ■ Select Default IP Gateway and enter the IP address for a default gateway. This can be the address of any major router accessible to the Netopia R2121.
10-8 User’s Reference Guide ■ Select Add Export. The Add Exported Service screen appears. Add Exported Service Service... ■ Local Server's IP Address: 0.0.0.0 ADD EXPORT NOW CANCEL Select Service. A pop-up menu of services and ports appears. Add Exported Service +-Type------Port--+ +-----------------+ Service...
IP Setup, SmartIP and Network Address Translation 10-9 Press the Escape key when you are finished configuring Exported Services to go back to the IP Setup screen. IP Setup Ethernet IP Address: Ethernet Subnet Mask: 192.168.6.137 255.255.255.248 Default IP Gateway: 0.0.0.0 DNS Server: Secondary DNS Server: Domain Name: 0.0.0.0 0.0.0.0 Receive RIP: Transmit RIP: Both Off Static Routes... Set up the basic IP attributes of your Netopia in this screen.
10-10 User’s Reference Guide v2 routers. ■ If you want the Netopia R2121 to advertise its routing table to other routers via RIP, select Transmit RIP and select v1, v2 (broadcast), or v2 (multicast) from the popup menu. With Transmit RIP v1 selected, the Netopia R2121 will generate RIP packets only to other RIP v1 routers. With Transmit RIP v2 (broadcast) selected, the Netopia R2121 will generate RIP packets to all other hosts on the network.
IP Setup, SmartIP and Network Address Translation 10-11 particular row and the subnet mask for the subnet in the Subnet Mask field in that row. For example: IP Subnets #1: IP Address ---------------192.128.117.162 Subnet Mask --------------255.255.255.0 #2: 192.128.152.162 255.255.0.0 #3: 0.0.0.0 0.0.0.0 #4: #5: #6: #7: #8: ■ To delete a configured subnet, set both the IP address and subnet mask values to 0.0.0.
10-12 User’s Reference Guide If you have configured multiple Ethernet IP subnets, the IP Setup screen changes slightly: IP Setup Subnet Configuration... Default IP Gateway: 192.128.117.163 Primary Domain Name Server: Secondary Domain Name Server: Domain Name: 0.0.0.0 0.0.0.0 Receive RIP: Transmit RIP: Static Routes... Both v2 (multicast) Address Serving Setup... Exported Services... Filter Sets... The IP address and Subnet mask items are hidden, and the “Define Additional Subnets...
IP Setup, SmartIP and Network Address Translation 10-13 Static Routes Display/Change Static Route... Add Static Route... Delete Static Route... Configure/View/Delete Static Routes from this and the following Screens. Viewing static routes To display a view-only table of static routes, select Display/Change Static Route in the Static Routes screen. +-Dest. Network---Subnet Mask-----Next Gateway----Priority-Enabled-+ +------------------------------------------------------------------+ | 0.0.0.0 0.0.0.
10-14 User’s Reference Guide Priority: An indication whether the Netopia R2121 will use the static route when it conflicts with information received from RIP packets. Enabled: An indication whether the static route should be installed in the IP routing table. Adding a static route To add a new static route, select Add Static Route in the Static Routes screen and go to the Add Static Route screen. Add Static Route Static Route Enabled: Yes Destination Network IP Address: 0.0.0.
IP Setup, SmartIP and Network Address Translation 10-15 Metric appears below Advertise Route Via RIP. With RIP Metric you set the number of routers, from 1 to 15, between the sending router and the destination router. The maximum number of routers on a packet’s route is 15. Setting RIP Metric to 1 means that a route can involve 15 routers, while setting it to 15 means a route can only involve one router.
10-16 User’s Reference Guide IP address serving Main Menu System Configuration IP Address Serving • • • • Serve Serve Serve Serve DHCP Clients BootP Clients Dynamic WAN Clients Mac IP/KIP Clients In addition to being a router, the Netopia R2121 is also an IP address server. There are four protocols it can use to distribute IP addresses.
IP Setup, SmartIP and Network Address Translation 10-17 To go to the IP Address Serving screen, select IP Address Serving in the System Configuration screen and press Return. IP Address Serving Number of Client IP Addresses: 1st Client Address: Client Default Gateway... 5 192.168.6.138 192.168.6.137 Serve DHCP Clients: DHCP NetBios Options... Yes Serve BOOTP Clients: Yes Serve Dynamic WAN Clients Yes Serve MacIP/KIP Clients: MacIP/KIP Static Options...
10-18 User’s Reference Guide DHCP NetBIOS Options If your network uses NetBIOS, you can enable the Netopia R2121 to use DHCP to distribute NetBIOS information. NetBIOS stands for Network Basic Input/Output System. It is a layer of software originally developed by IBM and Sytek to link a network operating system with specific hardware. NetBIOS has been adopted as an industry standard. It offers LAN applications, a variety of “hooks” to carry out inter-application communications and data transfer.
IP Setup, SmartIP and Network Address Translation 10-19 toggle it to Yes. ■ From the NetBIOS Type pop-up menu, select the type of NetBIOS used on your network. DHCP NetBios Options Serve NetBios Type: NetBios Type... Serve NetBios Scope: NetBios Scope: Serve NetBios Name Server: NetBios Name Server IP Addr: ■ +--------+ +--------+ | Type B | | Type P | | Type M | | Type H | +--------+ No 0.0.0.0 To serve DHCP clients with the NetBIOS scope, select Serve NetBIOS Scope and toggle it to Yes.
10-20 User’s Reference Guide The Served IP Addresses screen appears. Served IP Addresses -IP Address-------Type----Expires--Client Identifier-----------------------------------------------------------SCROLL UP----------------------------------192.168.1.100 DHCP 00:59 EN: 08-00-07-16-0c-85 192.168.1.101 192.168.1.102 192.168.1.103 192.168.1.104 BOOTP 00:44 EN: 00-00-c5-4a-1f-ea 192.168.1.105 192.168.1.106 192.168.1.107 192.168.1.108 192.168.1.109 192.168.1.110 192.168.1.111 192.168.1.112 192.168.1.
IP Setup, SmartIP and Network Address Translation 10-21 MacIP (Kip Forwarding) Options When hosts using AppleTalk (typically those using LocalTalk) are not directly connected to an IP network (usually an Ethernet), they must use a MacIP (AppleTalk-IP) gateway. The optional Netopia AppleTalk feature enhancement kit provides for this service. A MacIP gateway converts network traffic into the correct format for AppleTalk or IP, depending on the traffic’s destination.
10-22 User’s Reference Guide
IPX Setup 11-1 Chapter 11 IPX Setup Internetwork Packet Exchange (IPX) is the network protocol used by Novell NetWare networks. This chapter shows you how to configure the Netopia R2121 for routing data using IPX. You also learn how to configure the router to serve IPX network addresses.
11-2 User’s Reference Guide IPX address An IPX address consists of a network number, a node number, and a socket number. An IPX network number is composed of eight hexadecimal digits. The network number must be the same for all nodes on a particular physical network segment. The node number is composed of twelve hexadecimal digits and is usually the hardware address of the interface card. The node number must be unique inside the particular IPX network.
IPX Setup 11-3 The following is a list of common SAP server types: Unknown 0000h Print Queue 0003h File Server 0004h Job Server 0005h Print Server 0007h Archive Server 0009h Remote Bridge Server 0024h Advertising Print Server 0047h Reserved Up To 8000h NetBIOS NetBIOS is a protocol that performs tasks related to the Transport and Session layers of the OSI model. It can operate over IPX, using a special broadcast packet known as “IPX Packet type 20” to communicate with IPX NetBIOS servers.
11-4 User’s Reference Guide To go to the IPX Setup screen, from the Main Menu select System Configuration and then select Network Protocols Setup and then select IPX Setup. Note: If you have completed Easy Setup, the information you have already entered will appear in the IP Setup options screen. IPX Setup IPX Routing: On Ethernet Encapsulation... Ethernet Network Address: 802.3 00000000 Ethernet Path Delay: Ethernet NetBios Forwarding: Ethernet Inbound SAP Filter Set...
IPX Setup 11-5 7. Select Default Gateway Address, and enter the network address of the IPX network to which all packets of unknown destination address should be routed. Note: The Default Gateway Address is usually set up to match the IPX Address in your network Connection Profile. 8. To configure filters and filter sets, select Filters and Filter Sets and go to the IPX filters and filter sets screens. For information on how to configure IPX filters and filter sets, see “IPX filters” on page 14-22. 9.
11-6 User’s Reference Guide To configure IPX routing in the answer profile, select IPX Parameters and go to the IPX Parameters (Default Answer Profile) screen. The items in this screen are similar to the IPX Profile Parameters items of the same name (see page 11-5). IPX Parameters (Default Answer Profile) NetBios Packet Forwarding: Incoming Outgoing Incoming Outgoing Off Packet Filter Set... Packet Filter Set... SAP Filter Set... SAP Filter Set... Detach Filter Sets...
IPX Setup 11-7 IPX routing tables Main Menu Statistics & Logs • IPX Routing Table • IPX SAP Bindery Table IPX routing tables provide information on current IPX routes and services. To go to the IPX Routing Table screen, select IPX Routing Table in the Routing Tables screen. This table shows detailed information about current IPX network routes.
11-8 User’s Reference Guide
AppleTalk Setup 12-1 Chapter 12 AppleTalk Setup This chapter discusses the concept of AppleTalk routing and how to configure AppleTalk Setup for a Netopia R2121 with the AppleTalk kit installed. AppleTalk support is available as a separate kit for the Netopia R2121 Dual Analog Router. Skip this chapter if you do not have the AppleTalk kit.
12-2 User’s Reference Guide If the cabling of your network were a street system, then a node address would correspond to a building’s street address. Node addresses are not permanent. Each AppleTalk device determines its node address at startup. Although a Macintosh that is starting up will try to use its previous address, the address will often be different upon restart.
AppleTalk Setup 12-3 MacIP When Macintosh computers encapsulate TCP/IP packets in AppleTalk, either because they are on LocalTalk or they are on EtherTalk for administrative reasons, they must use the services of a MacIP gateway. This gateway converts network traffic into the correct format for AppleTalk or IP, depending on the traffic’s destination. Setting up MacIP involves enabling the feature and optionally setting up a range of addresses to be static.
12-4 User’s Reference Guide You should set the Netopia R2121’s seeding action to work best in your particular network environment. These scenarios may guide you in deciding how to set the router’s seeding: ■ If the Netopia R2121 is the only router on your network, you must set it to either hard seeding or soft seeding. The default is soft seeding.
AppleTalk Setup 12-5 Main Menu System Configuration Upgrade Feature Set The Netopia Feature Set Upgrade screen appears. Netopia Feature Set Upgrade You may be able to extend the features of your Netopia by purchasing a 'Software Upgrade'. For a list of available upgrades, please see the release notes that came with your Netopia or visit the Netopia Communications web site at www.netopia.com.
12-6 User’s Reference Guide Configuring AppleTalk AppleTalk setup for Netopia R2121s consists of configuring EtherTalk, LocalTalk, and AURP. EtherTalk Setup To go to the EtherTalk Setup options screen, select Network Protocols Setup and then select AppleTalk Setup in the System Configuration screen. Select EtherTalk Phase ll Setup and press Return. EtherTalk Phase II Setup EtherTalk Phase II Enabled: Show Zones... Enter New Zone Name: Delete Zone Name... Set Default Zone... Net Low: Net Hi: Seeding...
AppleTalk Setup 12-7 EtherTalk Phase II port is visible to other AppleTalk nodes. The default zone is also where new AppleTalk nodes will appear. If you do not set a default zone, the first zone you create will be the default zone. ■ You can also set the range of EtherTalk Phase II network numbers. Select Net Low and enter the lower limit of the network number range. Select Net High and enter the upper limit of the range.
12-8 User’s Reference Guide As an alternative, you can set LocalTalk seeding to soft seeding and let the Netopia R2121 receive the zone name and network number from the other router. ■ Select LocalTalk Network Number and enter the desired network number. ■ Select Seeding. From the pop-up menu, choose the type of seeding for the Netopia R2121’s LocalTalk port to use (see “Routers and seeding” on page 12-3). You have finished configuring LocalTalk.
AppleTalk Setup 12-9 Site A has an AURP tunnel to site B. Both sides have multiple zones defined on the EtherTalk port and a unique zone on their LocalTalk ports. If side A has indicated one of its EtherTalk zones is the Free Trade Zone and has opted to use the Free Trade Zone option for its tunnel to B, then only this Free Trade Zone will show up on side B and only those machines or services in the Free Trade Zone will be accessible to side B. All of side A will be able to see all of side B.
12-10 User’s Reference Guide Deleting an AURP partner ■ To delete an AURP partner, select Delete Partner in the AURP Setup screen and press Return to display a table of existing partners. Use the Up and Down Arrow keys to select an AURP partner, then press Return to delete it. Press the Escape key to exit without deleting a partner.
AppleTalk Setup 12-11 Raising the tickle packet interval does not ensure that the AURP tunnel is dropped or not brought up. If any application on the local network generates AppleTalk traffic destined for the network at the remote end of the AURP tunnel, the tunnel remains up. For example, if a host on the local network connects to a host on the remote network using remote access software, the AURP tunnel remains up.
12-12 User’s Reference Guide
Monitoring Tools 13-1 Chapter 13 Monitoring Tools This chapter discusses the Netopia R2121’s device and network monitoring tools. These tools can provide statistical information, report on current network status, record events, and help in diagnosing and locating problems.
13-2 User’s Reference Guide General Status Quick View Default IP Gateway: 0.0.0.0 Domain Name Server: 0.0.0.0 Domain Name: None Provided 11/16/1998 04:40:47 PM CPU Load: 10% Unused Memory: 541 KB Call Acct: Disabled LocalTalk Address: 34448:149 ----------------MAC Address--------IP Address-------IPX Address---EtherTalk Ethernet Hub: 00-00-c5-70-03-48 192.163.1.1 34449: 150 Current WAN Connection Status Profile Name----------State-%Use-Remote Address-----Est.-More Info-------------ISP P1 10% IP 92.163.
Monitoring Tools 13-3 Current Status The current status section is a table showing the current status of the WAN. For example: WAN Status Current WAN Connection Status ---Profile Name------State---%Use-Remote Address----Est.-More Info---------ISP P1 10 IP 92.163.4.1 Lcl NAT 192.163.100.6 Profile Name: Lists the name of the connection profile being used, if any. This field will also indicate if the line is in use for a POTS call. State: Lists the ports in use for this connection.
13-4 User’s Reference Guide Statistics & Logs Main Menu Statistics & Logs • General Statistics When you are troubleshooting your Netopia R2121, the Statistics screens provide insight into the recent event activities of the Router. From the Main Menu go to Statistics & Logs and select one of the options described in the sections below. General Statistics To go to the General Statistics screen, select General Statistics in the Statistics & Logs screen.
Monitoring Tools 13-5 installed ■ LT (LocalTalk on the PhoneNET) if the optional AppleTalk feature set is installed The right side of the table lists the total number of occurrences of each of five types of communication statistics: EN Rx Packets: The number of Ethernet packets received. EN Rx Errors: The number of bad Ethernet packets received. EN Collisions: An error occurring when Ethernet packets are transmitted simultaneously by nodes on the LAN.
13-6 User’s Reference Guide Statistics & Logs WAN Event History... Device Event History... IP Routing Table... IPX Routing Table... IPX SAP Bindery Table... AppleTalk Routing Table... Served IP Addresses... General Statistics... System Information... WAN Event History The WAN Event History screen lists a total of 128 events on the WAN. The most recent events appear at the top. To go to the WAN Event History screen, select WAN Event History in the Statistics & Logs screen.
Monitoring Tools 13-7 Date: Date of the event. Event: A brief description of the event. Ch.: The channel involved in the event. Dir. Number: The directory number (number dialed) involved in the event. The first event in each call sequence is marked with double arrows (>>). Failures are marked with an asterisk (*). If the event history exceeds the size of the screen, you can scroll through it by using the SCROLL UP and SCROLL DOWN items.
13-8 User’s Reference Guide To obtain more information about any event listed in the Device Event History, select the event and then press Return. A dialog box containing more information about the selected event will appear. Press Return or the Escape key to dismiss the dialog box. To clear the Device Event History, select Clear Device Event History in the Event Histories screen and press Return.
Monitoring Tools 13-9 IP routing table The IP routing table displays all of the IP routes currently known to the Netopia R2121. To display the IP Routing Table screen, select IP Routing Table in the Statistics & Logs screen and press Return. IP Routing Table Network Address-Subnet Mask-----via Router------Port------------------Type-------------------------------------SCROLL UP----------------------------------0.0.0.0 255.0.0.0 0.0.0.0 -Other 127.0.0.1 255.255.255.255 127.0.0.1 Loopback Local 192.168.1.
13-10 User’s Reference Guide To display the AppleTalk Routing Table screen, select AppleTalk Routing Table in the Statistics & Logs screen and press Return. AT Routing Table -Net---Range--Def Zone Name----------Hops-State-Next Rtr Addr.--Pkts Fwded ----------------------------------SCROLL UP-------------------------1 -Admin 2 Good 46.131 0 2 -AdMan 2 Good 46.131 0 3 -Aspirations 2 Good 46.131 0 4 -Sales 2 Good 46.131 0 5 -Marketing 2 Good 46.131 0 6 -Molluscs 2 Good 46.131 1 7 -Customer Service 2 Good 46.
Monitoring Tools 13-11 Pkts Fwded: The number of packets sent to the router shown. Served IP Addresses You can view all of the IP addresses currently being served by the Netopia R2121 Dual Analog Router from the Served IP Addresses screen. From the Statistics & Logs menu, select Served IP Addresses. The Served IP Addresses screen appears.
13-12 User’s Reference Guide The IP Address Lease Management screen appears. IP Address Lease Management Reset All Leases Release BootP Leases Reclaim Declined Addresses Hit RETURN/ENTER, you will return to the previous screen.
Monitoring Tools 13-13 System Information The System Information screen gives a summary view of the general system level values in the Netopia R2121 Dual Analog Router. From the Statistics & Logs menu select System Information. The System Information screen appears. System Information Serial Number Firmware Version 7340872 4.
13-14 User’s Reference Guide The SNMP Setup screen To go to the SNMP Setup screen from the Main Menu, select SNMP in the System Configuration screen and press Return. Main Menu System Configuration SNMP SNMP Setup System Name: System Location: System Contact: Read-Only Community String: Read/Write Community String: public private Authentication Traps Enable: Off IP Trap Receivers... Configure optional SNMP parameters from here.
Monitoring Tools 13-15 By default, the read-only and read/write community strings are set to “public” and “private,” respectively. You should change both of the default community strings to values known only to you and trusted system administrators. To change a community string, select it and enter a new value. Starting with the version 4.3 firmware, setting the Read-Only and Read-Write community strings to the empty string will block all SNMP requests to the router.
13-16 User’s Reference Guide IP Trap Receivers Display/Change IP Trap Receiver... Add IP Trap Receiver... Delete IP Trap Receiver... Return/Enter to modify an existing Trap Receiver. Navigate from here to view, add, modify and delete IP Trap Receivers. Setting the IP trap receivers 1. Select Add IP Trap Receiver. 2. Select Receiver IP Address or Domain Name. Enter the IP address or domain name of the SNMP manager you want to receive the trap. 3.
Security 14-1 Chapter 14 Security The Netopia R2121 provides a number of security features to help protect its configuration screens and your local network from unauthorized access. Although these features are optional, it is strongly recommended that you use them. This section covers the following topics: ■ “Suggested security measures” on page 14-1, lists actions for blocking potential security holes.
14-2 User’s Reference Guide User accounts When you first set up and configure the Netopia R2121, no passwords are required to access the configuration screens. Anyone could tamper with the router’s configuration by simply connecting it to a console. However, by adding user accounts, you can protect the most sensitive screens from unauthorized access. User accounts are composed of name/password combinations that can be given to authorized users.
Security 14-3 To display a view-only list of user accounts, select Show Users in the Security Options screen. To add a new user account, select Add User in the Security Options screen and press Return to go to the Add Name With Write Access screen. Add Name With Write Access Enter Name: Enter Password (11 characters max): ADD NAME/PASSWORD NOW CANCEL Follow these steps to configure the new account: 1. Select Enter Name and enter a descriptive name (for example, the user’s first name). 2.
14-4 User’s Reference Guide Enable SmartStart/SmartView/Web Server You may wish to restrict access to the web-based screens to prevent inadvertent switching or connecting and disconnecting of Connection Profiles. Since SmartStart can be used to reconfigure the router, you may wish to block inadvertent damage resulting from unauthorized use of SmartStart. To prevent access to these features toggle this option to “No”.
Security 14-5 How filter sets work A filter set acts like a team of customs inspectors. Each filter is an inspector through which incoming and outgoing packages must pass. The inspectors work as a team, but each inspects every package individually. Each inspector has a specific task. One inspector’s task may be to examine the destination address of all outgoing packages.
14-6 User’s Reference Guide packet first filter match? no send to next filter yes pass or discard? discard (delete) pass to network If the package does not match the first inspector’s criteria, it goes to the second inspector, and so on. You can see that the order of the inspectors in the line is very important. For example, let’s say the first inspector’s orders are to send along all packages that come from Rome, and the second inspector’s orders are to reject all packages that come from France.
Security 14-7 How individual filters work As described above, a filter applies criteria to an IP packet and then takes one of three actions: A filter’s actions ■ Passes the packet to the local or remote network ■ Blocks (discards) the packet ■ Ignores the packet A filter passes or blocks a packet only if it finds a match after applying its criteria. When no match occurs, the filter ignores the packet. The criteria are based on information contained in the packets.
14-8 User’s Reference Guide Port numbers A filter can also match a packet’s port number attributes, but only if the filter’s protocol type is set to TCP or UDP, since only those protocols use port numbers.
Security 14-9 Greater Than or Equal: For the filter to match, the packet’s port number must be greater than or equal to the port number specified in the filter. Other filter attributes There are three other attributes to each filter: ■ The filter’s order (i.e.
14-10 User’s Reference Guide Protocol UDP Number to use 17 Full name User Datagram Protocol Src. Port: The source port to match. This is the port on the sending host that originated the packet. D. Port: The destination port to match. This is the port on the receiving host for which the packet is intended. On?: Displays Yes when the filter is in effect or No when it is not. Fwd: Shows whether the filter forwards (Yes) a packet or discards (No) it when there’s a match.
Security 14-11 This four-step process is how we produced the following filter from the original rule: +-#---Source IP Addr---Dest IP Addr-----Proto-Src.Port-D.Port--On?-Fwd-+ +----------------------------------------------------------------------+ | 1 192.211.211.17 0.0.0.0 TCP 0 23 Yes No | | | +----------------------------------------------------------------------+ Filtering example #2 Suppose a filter is configured to block all incoming IP packets with the source IP address of 200.233.14.
14-12 User’s Reference Guide Disadvantages of filters Although using filter sets can greatly enhance network security, there are disadvantages: ■ Filters are complex. Combining them in filter sets introduces subtle interactions, increasing the likelihood of implementation errors. ■ Enabling a large number of filters can have a negative impact on performance. Processing of packets will take longer if they have to go through many checkpoints.
Security 14-13 IP Filter Sets Display/Change IP Filter Set... Add IP Filter Set... Delete IP Filter Set... Return/Enter to configure and add a new Filter Set Set Up IP Filter Sets (Firewalls) from this and the following Menus. The procedure for creating and maintaining filter sets is as follows: 1. Add a new filter set. 2. Create the filters for the new filter set. 3. View, change, or delete individual filters and filter sets. The sections below explain how to execute these steps.
14-14 User’s Reference Guide Add IP Filter Set Filter Set Name: Filter Set 2 Display/Change Input Filter... Add Input Filter... Delete Input Filter... Display/Change Output Filter... Add Output Filter... Delete Output Filter... ADD FILTER SET CANCEL Configure the Filter Set name and its associated Filters. Naming a new filter set All new filter sets have a default name. The first filter set you add will be called Filter Set 1, the next filter will be Filter Set 2, and so on.
Security 14-15 Input and output filters—source and destination There are two kinds of filters you can add to a filter set: input and output. Input filters check packets received from the Internet, destined for your network. Output filters check packets transmitted from your network to the Internet.
14-16 User’s Reference Guide Add Filter Enabled: Forward: No No Source IP Address: Source IP Address Mask: 0.0.0.0 0.0.0.0 Dest. IP Address: Dest. IP Address Mask: 0.0.0.0 0.0.0.0 Protocol Type: 0 Source Port Compare... Source Port ID: Dest. Port Compare... Dest. Port ID: No Compare 0 No Compare 0 ADD THIS FILTER NOW CANCEL Enter the IP specific information for this filter. 1. To make the filter active in the filter set, select Enabled and toggle it to Yes.
Security 14-17 10. When you are finished configuring the filter, select ADD THIS FILTER NOW to save the filter in the filter set. Select CANCEL to discard the filter. Viewing filters To display a view-only table of input (output) filters, select Display/Change Input Filters (Display/Change Output Filters) in the Add IP Filter Set screen. Modifying filters To modify a filter, select Display/Change Input Filter (Display/ Change Output Filter) in the Add IP Filter Set screen to display a table of filters.
14-18 User’s Reference Guide Modifying filter sets To modify a filter set, select Display/Change Filter Set in the Filter Sets screen to display a list of filter sets. Select a filter set from the list and press Return to go to the Change IP Filter Set screen. The items in this screen are the same as the ones in the Add Filter screen (see “Adding filters to a filter set” on page 14-15). Change IP Filter Set Filter Set Name: Basic Firewall Display/Change Input Filter... Add Input Filter...
Security 14-19 The five input filters and one output filter that make up Basic Firewall are shown in the table below. Setting Input filter 1 Input filter 2 Input filter 3 Input filter 4 Input filter 5 Output filter 1 Enabled Yes Yes Yes Yes Yes Yes Forward No No Yes Yes Yes Yes Source IP address 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 Source IP address mask 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 Dest. IP address 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.
14-20 User’s Reference Guide Basic Firewall is suitable for a LAN containing only client hosts that wish to access servers on the WAN, not for a LAN containing servers providing services to clients on the WAN. Basic Firewall’s general strategy is to explicitly pass WAN-originated TCP and UDP traffic to ports greater than 1023. Ports lower than 1024 are the service origination ports for various Internet services such as FTP, Telnet, and the World Wide Web (WWW).
Security 14-21 FTP sessions. To allow WAN-originated FTP sessions to a LAN-based FTP server with the IP address a.b.c.d (corresponding to a numbered IP address such as 163.176.8.243), insert the following input filter ahead of the current input filter 1: ■ Enabled: Yes ■ Forward: Yes ■ Source IP Address: 0.0.0.0 ■ Source IP Address Mask: 0.0.0.0 ■ Dest. IP Address: a.b.c.d ■ Dest. IP Address Mask: 255.255.255.
14-22 User’s Reference Guide IPX filters Main Menu System Configuration Filter Sets (Firewalls) IPX Filters and Filter Sets IPX packet filters work very similarly to IP packet filters. They filter data traffic coming from or going to remote IPX networks. IPX filters can be set up to pass or discard IPX packets based on a number of user-defined criteria. Like IP filters, IPX filters must be grouped in sets that are applied to the answer profile or to connection profiles.
Security 14-23 The items in the IPX Filters and Filter Sets screen are grouped into four areas: ■ IPX packet filters ■ IPX packet filter sets ■ IPX SAP filters ■ IPX SAP filter sets The following sections explain the items in each of these areas. IPX packet filters For each IPX packet filter, you can configure a set of parameters to match on the source or destination attributes of IPX data packets coming from or going to the WAN.
14-24 User’s Reference Guide 1. Select Filter Name and enter a descriptive name for the filter. 2. To specify a source network for the filter to match on, select Source Network and enter an IPX network address. 3. To specify a source node for the filter to match on, select Source Node Address and enter an IPX node address. 4. To specify a source socket for the filter to match on, select Source Socket and enter an IPX source socket number. 5.
Security 14-25 Add Packet Filter Set Filter Set Name: Show Filters/Change Action on Match... Append Filter... Remove Filter... ADD FILTER SET NOW CANCEL Configure an IPX Filter Set here. You must ADD FILTER SET NOW to save. Follow these steps to configure the new packet filter set: 1. Select Filter Set Name and enter a descriptive name for the filter set. 2.
14-26 User’s Reference Guide 3. To add a filter to the filter set, select Append Filter to display a table of filters. Select a filter from the table and press Return to add it to the filter set. The default action of newly added filters is to not forward packets that match their criteria. To exit the table without adding the filter, press the Escape key. 4. To remove a filter from the filter set, select Detach Filter to display a table of appended filters.
Security 14-27 Adding a SAP filter To add a new IPX SAP filter, select Add IPX SAP Filter in the IPX Filters and Filter Sets screen and press Return to go to the Add SAP Filter screen. Add Sap Filter Filter Name: Server Name: Socket: 0000 Type: 0000 IPX Network: IPX Node Address: 00000000 000000000000 ADD FILTER NOW CANCEL Configure a new IPX SAP Filter. Finished? ADD or CANCEL to exit. By default, the filter’s socket and type numbers and network and node addresses are null (all zeros).
14-28 User’s Reference Guide Deleting a SAP filter To delete a SAP filter, select Delete IPX SAP filter in the IPX Filters and Filter Sets screen to display a table of filters. Select a filter from the table and press Return to delete it. Press the Escape key to exit the table without deleting the filter. IPX SAP filter sets Before IPX SAP filters can be used, they must be grouped into sets. A SAP filter can be part of more than one filter set.
Security 14-29 Show Filters/Change Actions on Match Filter Name---------------------Forward Filter 1 No Filter 2 No <> Yes Set whether filters forward or drop matching packets here. Select a filter and toggle the entry forwarding action to Yes (pass) or No (discard). 3. To add a filter to the filter set, select Append Filter to display a table of filters. Select a filter from the table and press Return to add it to the filter set.
14-30 User’s Reference Guide Firewall tutorial General Firewall Terms Firewall: a component or set of components that restrict access between a protected network and the Internet, or between two networks. Host: A workstation on the Network. Packet: Unit of communication on the Internet. Packet Filter: Packet filters allow or deny packets based on source or destination IP addresses, TCP or UDP ports, or the TCP ACK bit. Port: A number that defines a particular type of service.
Security 14-31 Example TCP/UDP Ports TCP Port Service UDP Port Service 20/21 FTP 161 SNMP 23 Telnet 69 TFTP 25 SMTP 387 AURP 80 WWW 144 News Firewall design rules There are two basic rules to firewall design: ■ “What is not explicitly allowed is denied...” and ■ “What is not explicitly denied is allowed...” The first rule is far more secure, and is the best approach to firewall design.
14-32 User’s Reference Guide and a packet goes through these rules destined for FTP, the packet would pass through the first filter rule (WWW), match the second rule (FTP) and the packet is allowed through. Even though the next rule is to deny all FTP traffic, the FTP packet will never make it to this rule. Binary Representation It is easiest when doing filtering to convert the IP address and mask in question to binary.
Security 14-33 Established Connections The TCP header contains one bit called the ACK Bit (or TCP Ack bit). This ACK Bit only appears with TCP, not UDP. The ACK bit is part of the TCP mechanism that guaranteed the delivery of data. The ACK bit is set whenever one side of a connection has received data from the other side. Only the first TCP packet will not have the ACK bit set, once the TCP connection is in place the remainder of the TCP packets with have the ACK bit set.
14-34 User’s Reference Guide Less Than Or Equal Any port less than or equal to the port defined Equal Matches only the port defined Greater Than or Equal Matches the port or any port greater Greater Than Matches anything greater than the port defined. Example Network Incoming Packet Filter Netopia Internet IP: 200.1.1.?? DATA Example Filters Example 1 Filter Rule: 200.1.1.0 (Source IP Network Address) 255.255.255.
Security 14-35 This incoming IP packet has a source IP address that matches the network address in the Source IP Address field (00000000) in the Netopia R2121. This will NOT forward this packet. Example 2 Filter Rule: 200.1.1.0 (Source IP Network Address) 255.255.255.128 (Source IP Mask) Forward = No (What happens on match) Incoming packet has the source address of 200.1.1.184 IP Address Binary Representation 200.1.1.
14-36 User’s Reference Guide Since the Source IP Network Address in the Netopia R2121 is 01100000, and the source IP address after the logical AND is 1011000, this rule does NOT match and this packet will be passed. Example 4 Filter Rule: 200.1.1.96 (Source IP Network Address) 255.255.255.240 (Source IP Mask) Forward = No (What happens on match) Incoming packet has the source address of 200.1.1.104 IP Address Binary Representation 200.1.1.
Security 14-37 Since the Source IP Network Address in the Netopia R2121 is 01100000, and the source IP address after the logical AND is 01100000, this rule DOES match and this packet will NOT be passed. This rule masks off a SINGLE IP address. Token Security Authentication This section discusses how to configure and use security authentication on the Netopia R2121.
14-38 User’s Reference Guide The Netopia R2121 supports the following user configurations for security authentication: ■ Single user, calling a single destination (single session) ■ Single user, calling multiple destinations (two simultaneous and separate sessions) ■ Multiple users, calling a single destination (single session) ■ Multiple users, calling multiple destinations (two simultaneous and separate sessions Security authentication components To properly identify and authenticate an authorized
Security 14-39 Datalink (PPP/MP) Options Data Compression... Ascend LZS Send Authentication... PAP-TOKEN Send User Name: Receive User Name: Receive Password: Channel Usage... Dynamic Bandwidth Allocation... Auto Maximum Packet Size: 1500 In this Screen you will configure the PPP/MP specific connection params. 2. Select Send Authentication and press Return. From the pop-up menu, highlight PAP-TOKEN or CACHE-TOKEN.
14-40 User’s Reference Guide Utilities & Diagnostics Ping... Trace Route... Telnet... Secure Authentication Monitor... Trivial File Transfer Protocol (TFTP)... X-Modem File Transfer... Revert to Factory Defaults... Restart System... 1. Select Secure Authentication Monitor and press Return. The Secure Authentication Monitor screen appears. 2. Wait for the call to initiate. Secure Authentication Monitor Current Connection Status Profile Name---State---%Use---Remote Address---Est.
Security 14-41 Note: When using CACHE-TOKEN, your passcode is valid for a time interval determined by the network administrator. When this time interval expires, you must provide a new passcode for the call negotiation. When using PAP-TOKEN, your passcode is valid for one call negotiation. For a second call negotiation, you must enter the next passcode provided by the security authentication token card every 60 seconds.
14-42 User’s Reference Guide
Utilities and Diagnostics 15-1 Chapter 15 Utilities and Diagnostics A number of utilities and tests are available for system diagnostic and control purposes: ■ “Ping” on page 15-2 ■ “Trace Route” on page 15-4 ■ “Telnet client” on page 15-5 ■ “Secure Authentication Monitor” on page 15-6 ■ “Disconnect Telnet Console Session” on page 15-7 ■ “Transferring configuration and firmware files with TFTP” on page 15-7 ■ “Transferring configuration and firmware files with XMODEM” on page 15-10 ■ “Factor
15-2 User’s Reference Guide Ping The Netopia R2121 includes a standard Ping test utility. A Ping test generates IP packets destined for a particular (Ping-capable) IP host. Each time the target host receives a Ping packet, it returns a packet to the original sender. Ping allows you to see whether a particular IP destination is reachable from the Netopia R2121. You can also ascertain the quality and reliability of the connection to the desired destination by studying the Ping test’s statistics.
Utilities and Diagnostics 15-3 While the Ping test is running, and when it is over, a status field and a number of statistical items are active on the screen. These are described below. Status: The current status of the Ping test.
15-4 User’s Reference Guide time send Ping packet 1 Netopia receive Ping packet 1 send return Ping packet 1 Netopia Netopia send Ping packet 2 send return Ping packet 2 Netopia send Ping packet 3 host host receive return Ping packet 2 receive Ping packet 3 send return Ping packet 3 Netopia host receive return Ping packet 1 receive Ping packet 2 Netopia host host host receive return Ping packet 3 Packets Lost: The number of packets unaccounted for, shown in total and as a percentage of total
Utilities and Diagnostics 15-5 Trace Route Host Name or IP Address: Maximum Hops: Timeout (seconds): 30 5 Use Reverse DNS: Yes START TRACE ROUTE Enter the IP Address/Domain Name of a host. Trace route to a network host. To trace a route, follow these steps: 1. Select Host Name or IP Address and enter the name or address of the destination you want to trace. 2. Select Maximum hops (1..
15-6 User’s Reference Guide The Telnet client screen appears. Telnet Host Name or IP Address: Control Character to Suspend: Q START A TELNET SESSION Enter the IP Address/Domain Name of a host. ■ Enter the host name or the IP address in dotted decimal format of the machine you want to telnet into and press Return. ■ Either accept the default control character "Q" used to suspend the Telnet session, or type a different one. ■ START A TELNET SESSION becomes highlighted.
Utilities and Diagnostics 15-7 Disconnect Telnet Console Session If you want to close your Telnet Console session, select Disconnect Telnet Console Session and press Return. A dialog box appears asking you to cancel or continue your selection.
15-8 User’s Reference Guide Trivial File Transfer Protocol (TFTP) TFTP Server Name: Firmware File Name: GET FIRMWARE FROM SERVER... GET MODEM FIRMWARE FROM SERVER... Config File Name: GET CONFIG FROM SERVER... SEND CONFIG TO SERVER... TFTP Transfer State -- Idle TFTP Current Transfer Bytes -- 0 The sections below describe how to update the Router’s firmware and how to download and upload configuration files.
Utilities and Diagnostics 15-9 name (for example, bigroot/config/myfile). ■ Select Send Firmware to Netopia from TFTP Server and press Return. You will see the following dialog box: +-----------------------------------------------------------+ +-----------------------------------------------------------+ | | | Are you sure you want to read the firmware now? | | The device will reset when the transfer is complete.
15-10 User’s Reference Guide example, bigroot/config/myfile). ■ Select Read Config Now and press Return. You will see the following dialog box: +-----------------------------------------------------------+ +-----------------------------------------------------------+ | | | Are you sure you want to read the configuration now? | | The device will reset when the transfer is complete.
Utilities and Diagnostics 15-11 X-Modem File Transfer Send Firmware to Netopia... Send Config to Netopia... Receive Config from Netopia... Send Firmware to Netopia Internal modem... Modem Firmware Status: IDLE Updating firmware Firmware updates may be available periodically from Netopia or from a site maintained by your organization’s network administration. The procedure below applies whether you are using the console or the built-in modems. Follow these steps to update the Netopia R2121’s firmware: 1.
15-12 User’s Reference Guide The system will reset at the end of a successful file transfer to put the new firmware into effect. While the system resets, the LEDs will blink on and off. Caution! Do not manually power down or reset the Netopia R2121 while it is automatically resetting or it could be damaged. Downloading configuration files The Netopia R2121 can be configured by downloading a configuration file. The downloaded file reconfigures all of the Router’s parameters.
Utilities and Diagnostics 15-13 1. Decide on a name for the file and a path for saving it. 2. Select Receive Config from Netopia and press Return. The following dialog box appears: +--------------------------------------------------------------------+ | | | Are you sure you want to save your current Netopia configuration? | | If so, when you hit Return/Enter on the CONTINUE button, you will | | have 10 seconds to begin the transfer from your terminal program.
15-14 User’s Reference Guide
Part III: Appendixes
User’s Reference Guide
Troubleshooting A-1 Appendix A Troubleshooting This appendix is intended to help you troubleshoot problems you may encounter while setting up and using the Netopia R2121. It also includes information on how to contact Netopia Technical Support. Important information on these problems may be found in the event histories kept by the Netopia R2121. These event histories can be accessed in the Statistics, Utilities, Tests screen.
A-2 User’s Reference Guide SmartStart Troubleshooting The Status field of the SmartStart application will display information and indicate problems as they are detected. Console connection problems Can’t see the configuration screens (nothing appears) ■ Check the cable connection from the Netopia R2121’s console port to the computer being used as a console. ■ Check that the terminal emulation software is accessing the correct port on the computer that’s being used as a console.
Troubleshooting A-3 Power outages If you suspect that power was restored after a power outage, and the Netopia R2121 is connected to a remote site, you may need to switch the Netopia R2121 off and then back on again. After temporary power outages, a connection that still seems to be up may actually be disconnected. Rebooting the Router should reestablish the connection. Technical support Netopia, Inc.
A-4 User’s Reference Guide Phone: 1 800-782-6449 Fax: 1 510-814-5023 Netopia, Inc. Customer Service 2470 Mariner Square Loop Alameda, California 94501 USA Netopia Bulletin Board Service: 1 510-865-1321 Online product information Product information can be found in the following: Netopia World Wide Web server via http://www.netopia.com Internet via anonymous FTP to ftp.netopia.
Setting Up Internet Services B-1 Appendix B Setting Up Internet Services This chapter describes how to obtain and set up Internet Services. This section covers the following topics: ■ “Finding an Internet service provider” on page B-1 ■ “Deciding on an ISP account” on page B-2 ■ “Obtaining information from the ISP” on page B-3 Note: Some companies act as their own ISP.
B-2 User’s Reference Guide Unique requirements Make sure the ISP can meet any unique requirements you may have. Potential requirements include: ■ Dynamic or static IP addressing ■ Class C IP address ■ Custom domain name ■ Multiple email addresses ■ Web site hosting ■ Call back for web site hosting at your site Pricing and support Compare pricing, service, and technical support service among various ISPs.
Setting Up Internet Services B-3 Consider expected growth in your network when deciding on the number of addresses to obtain. Alternatively, you may use the Network Address Translation feature of SmartIP. SmartIP™ The Netopia R2121 with Dual Analog supports the SmartIP™ feature which includes Network Address Translation. Network Address Translation provides Internet access to the network connected to the Netopia R2121 using only a single IP address.
B-4 User’s Reference Guide in the address block ■ The Ethernet IP address for your Netopia R2121 ■ The Ethernet IP subnet mask address for your Netopia R2121 ■ The Default Gateway IP Address (same as Remote IP Address in most cases) ■ Primary and Secondary Domain Name Server IP Addresses ■ Domain Name (usually the same as the ISP’s domain name unless you have registered for your own individual domain name) Note: If you are not using Network Address Translation, you will need to obtain all of the L
Understanding IP Addressing C-1 Appendix C Understanding IP Addressing This appendix is a brief general introduction to IP addressing. A basic understanding of IP will help you in configuring the Netopia R2121 and using some of its powerful features, such as static routes and packet filtering. In packets, a header is part of the envelope information that surrounds the actual data being transmitted. In e-mail, a header is usually the address and routing information found at the top of messages.
C-2 User’s Reference Guide IP addresses indicate both the identity of the network and the identity of the individual host on the network. The number of bits used for the network number and the number of bits used for the host number can vary, as long as certain rules are followed. The local network manager assigns IP host numbers to individual machines. IP addresses are maintained and assigned by the InterNIC, a quasi-governmental organization now increasingly under the auspices of private industry.
Understanding IP Addressing C-3 Subnet masks To create subnets, the network manager must define a subnet mask, a 32-bit number that indicates which bits in an IP address are used for network and subnetwork addresses, and which are used for host addresses. One subnet mask should apply to all IP networks that are physically connected together and share a single assigned network number.
C-4 User’s Reference Guide Network configuration Below is a diagram of a simple network configuration. The ISP is providing a Class C address to the customer site, and both networks A and B want to gain Internet access through this address. Netopia R2121 B connects to Netopia R2121 A and is provided Internet access through Routers A and B. Customer Site A PC 1: IP Address: 192.168.1.3 Subnet Mask: 255.255.255.128 Gateway: 192.168.1.1 Router B: ISP Network Router A: IP Address: 10.0.0.1 Subnet Mask: 255.
Understanding IP Addressing C-5 Background The IP Addresses and routing configurations for the devices shown in the diagram are outlined below. In addition, each individual field and its meaning are described. The “IP Address” and “Subnet Mask” fields define the IP Address and Subnet Mask of the device's Ethernet connection to the network while the “Remote IP” and “Remote Sub” fields describe the IP Address and Subnet mask of the remote router.
C-6 User’s Reference Guide There are two schemes for distributing the remaining IP addresses: ■ Manually give each computer an address ■ Let the Netopia R2121 automatically distribute the addresses These two methods are not mutually exclusive; you can manually issue some of the addresses while the rest are distributed by the Netopia R2121. Using the Router in this way allows it to function as an address server.
Understanding IP Addressing C-7 Number of Devices (other than Netopia R2121) on Local Network Largest Possible Ethernet Subnet Mask 30-61 255.255.255.192 62-125 255.255.255.128 125-259 255.255.255.0 Configuration This section describes the specific IP address lease, renew, and release mechanisms for both the Mac and PC, with either DHCP or MacIP address serving. DHCP Address Serving Windows 95 Workstation: ■ The Win95 workstation requests and renews its lease every half hour.
C-8 User’s Reference Guide one hour after the last heard lease request as some other DHCP implementations may hold on to the lease for an additional time after the lease expired, to act as a buffer for variances in clocks between the client and server. MacIP Serving Macintosh Workstation (MacTCP or Open Transport): Once the Mac workstation requests and receives a valid address, the Netopia R2121 will actively check for the workstation’s existence once every minute.
Understanding IP Addressing C-9 In any situation where a device is dialing into a Netopia router, the router may need to be configured to serve IP via the WAN interface. This is only a requirement if the calling device has not been configured locally to know what its address(es) are. So when a client, dialing into a Netopia router's WAN interface, is expecting addresses to be served by the answering router, you must set the answering Netopia router to serve IP via its WAN interface.
C-10 User’s Reference Guide 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 Block of IP host addresses (derived from network IP address + mask issued by ISP) 1 Distributed to the Netopia R2121 (Ethernet IP address) 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 Manually distributed (static) Pool of Addresses Distributed by MacIP and DHCP The figure above shows an example of a block of IP addresses being distributed correctly.
Understanding IP Addressing C-11 Nested IP subnets Under certain situations, you may wish to create remote subnets from the limited number of IP addresses issued by your ISP or other authority. You can do this using connection profiles. These subnets can be nested within the range of IP addresses available to your network. For example, suppose that you obtain the Class C network address a.b.c.0 to be distributed among three networks.
C-12 User’s Reference Guide Routers B and C (which could also be Netopia R2121s) serve the two remote networks that are subnets of a.b.c.0. The subnetting is accomplished by configuring the Netopia R2121 with connection profiles for Routers B and C (see the following table). Connection profile Remote IP address Remote IP mask Bits available for host address for Router B a.b.c.128 255.255.255.192 7 for Router C a.b.c.248 255.255.255.
Understanding IP Addressing C-13 The following diagram illustrates the IP address space taken up by the two remote IP subnets. You can see from the diagram why the term nested is appropriate for describing these subnets. 1 Address range available to a.b.c.0, less the two nested subnets 129 valid addresses used by a.b.c.128 190 valid addresses used by a.b.c.248 249 254 Broadcasts As mentioned earlier, binary IP host or subnet addresses composed entirely of ones or zeros are reserved for broadcasting.
C-14 User’s Reference Guide
Understanding Netopia NAT Behavior D-1 Appendix D Understanding Netopia NAT Behavior This appendix describes how Network Address Translation works within the Netopia R2121. The Netopia R2121 implements a powerful feature called Network Address Translation (NAT) as specified in RFC 1631. NAT is used for IP address conservation and for security purposes since there will only be a single IP “presence” on the WAN.
D-2 User’s Reference Guide When the Netopia R2121 establishes a connection over its WAN interface with another router it uses the Point to Point Protocol (PPP). Within PPP there is a Network Control Protocol (NCP) called Internet Protocol Control Protocol (IPCP) which handles the negotiation of IP addresses between the two routers, in this case the Netopia R2121 at the customer site above and the Router at the Internet Service Provider (ISP).
Understanding Netopia NAT Behavior D-3 When the Netopia R2121 receives this IP packet, it can not simply forward it to the WAN interface and the Internet since the IP addresses on the LAN interface are not valid or globally unique for the Internet. Instead the Netopia R2121 has to change the IP packet to reflect the IP address that was acquired on the WAN interface from the ISP.
D-4 User’s Reference Guide WWW Server 163.176.4.32 ISP Router 200.1.1.1 Netopia Router LAN: 192.168.5.1 WAN: 200.1.1.40 Router Netopia ISP Router to WWW Src IP: 200.1.1.40 Dst IP: 163.176.4.32 Src Port:: 5001 Dst Port:: 80 ISP Router to WWW Src IP: 200.1.1.40 Dst IP: 163.176.4.32 Src Port:: 5002 Dst Port:: 80 WWW to ISP Router Src IP: 163.176.4.32 Dst IP: 200.1.1.40 Src Port:: 80 Dst Port:: 5002 WWW to ISP Router Src IP: 163.176.4.32 Dst IP: 200.1.1.
Understanding Netopia NAT Behavior D-5 Source LAN IP 192.168.5.2 192.168.5.3 Source LAN Port TCP 400 TCP 400 Remapped LAN Port TCP 5001 TCP 5002 With this information the Netopia R2121 can determine the appropriate routing for an IP response from the Internet. In this case when the WWW Server responds with a destination port of 5001, the Netopia R2121 can see that this packet's destination on the local LAN interface is actually Workstation A at IP address 192.168.5.2.
D-6 User’s Reference Guide Important notes Even with the advantages of NAT, there are several things you should note carefully: ■ There is no formally agreed upon method among router vendors to handle an all-zeros IPCP request. The majority of router vendors use the all-zeros IPCP request to determine when a dial-in host wants to be assigned an IP address. Some vendors however attempt to negotiate and establish routing with an all-zeros IP address.
Understanding Netopia NAT Behavior D-7 IP Profile Parameters Remote IP Address: Remote IP Mask: 127.0.0.2 255.255.255.0 Address Translation Enabled: Yes Filter Set... Remove Filter Set Receive RIP: No Enter the remote IP network's IP address (form xxx.xxx.xxx.xxx decimal). Configure IP requirements for a remote network connection here.
D-8 User’s Reference Guide Add Exported Service +-Type------Port--+ +-----------------+ Service... | ftp 21 | | telnet 23 | | smtp 25 | Local Server's IP Address: | tftp 69 | | gopher 70 | | finger 79 | | www-http 80 | | pop2 109 | | pop3 110 | | snmp 161 | | timbuktu 407 | | pptp 1723 | | irc 6667 | | Other...
Binary Conversion Table E-1 Appendix E Binary Conversion Table This table is provided to help you choose subnet numbers and host numbers for IP and MacIP networks that use subnetting for IP addresses.
E-2 User’s Reference Guide Decimal Binary Decimal Binary Decimal Binary Decimal Binary 128 10000000 160 10100000 192 11000000 224 11100000 129 10000001 161 10100001 193 11000001 225 11100001 130 10000010 162 10100010 194 11000010 226 11100010 131 10000011 163 10100011 195 11000011 227 11100011 132 10000100 164 10100100 196 11000100 228 11100100 133 10000101 165 10100101 197 11000101 229 11100101 134 10000110 166 10100110 198 11000110 230 111001
Further Reading F-1 Appendix F Further Reading Angell, David. ISDN for Dummies, Foster City, CA: IDG Books Worldwide, 1995. Thorough introduction to ISDN for beginners. Apple Computer, Inc. AppleTalk Network System Overview. Reading, Massachusetts: Addison-Wesley Publishing Company, Inc.; 1989. Apple Computer, Inc. Planning and Managing AppleTalk Networks. Reading, Massachusetts: Addison-Wesley Publishing Company, Inc.; 1991. Black, U. Data Networks: Concepts, Theory and Practice.
F-2 User’s Reference Guide Hares, S. "Components of OSI: Inter-Domain Routing Protocol (IDRP)." ConneXions: The Interoperability Report, Vol. 6, No. 5: May 1992. Jones, N.E.H. and D. Kosiur. Macworld Networking Handbook. San Mateo, California: IDG Books Worldwide, Inc.; 1992. Joyce, S.T. and J.Q. Walker II. "Advanced Peer-to-Peer Networking (APPN): An Overview." ConneXions: The Interoperability Report, Vol. 6, No. 10: October 1992. Kousky, K. "Bridging the Network Gap." LAN Technology, Vol. 6, No.
Further Reading F-3 Rose, M.T. The Open Book: A Practical Perspective on OSI. Englewood Cliffs, New Jersey: Prentice Hall; 1990. Rose, M.T. The Simple Book: An Introduction to Management of TCP/IP-based Internets. Englewood Cliffs, New Jersey: Prentice Hall; 1991. Ross, F.E. "FDDI--A Tutorial." IEEE Communications Magazine, Vol. 24, No. 5: May 1986. Schlar, S.K. Inside X.25: A Manager's Guide. New York, New York: McGraw-Hill, Inc.; 1990. Schwartz, M.
F-4 User’s Reference Guide
Technical Specifications and Safety Information G-1 Appendix G Technical Specifications and Safety Information Pinouts for Auxiliary Port Modem Cable 1300 ohms 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 Shield 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 Shield BRAID HD-15 DB-25 Pin 1 Ground Pin 1 (not used) Pin 2 TDA Pin 2 TD Pin 3 TDB Pin 3 RD Pin 4 RDA Pin 4 RTS Pin 5 RDB Pin 5 CTS Pin 6 (not used) Pin 6 DCE Ready Pin 7 DTR Pin 7 Ground Pin 8 CTS Pin 8
G-2 User’s Reference Guide HD-15 DB-25 Pin 9 DSR Pin 9 -RSET (EIA-530) Pin 10 DCD Pin 10 (not used) Pin 11 (not used) Pin 11 -TSET (EIA-530) Pin 12 TCA Pin 12 (not used) Pin 13 TCB Pin 13 (not used) Pin 14 RCA Pin 14 -TD (EIA-530) STD (EIA-232) Pin 15 RCB Pin 15 (not used) Pin 16 -RD (EIA-530) SRD (EIA-232) Pin 17 RSET Pin 18 (not used) Pin 19 -RTS (EIA-530) SRTS (EIA-232) Pin 20 DTE Ready Pin 21 (not used) Pin 22 (not used) Pin 23 Ground Pin 24 TSET Pin 25 (
Technical Specifications and Safety Information G-3 Software and protocols Software media: Software preloaded on internal flash memory; field upgrades done via download to internal flash memory via XMODEM or TFTP Routing: TCP/IP Internet Protocol Suite, RIP, AppleTalk*, LocalTalk-to-Ethernet routing*, AURP tunneling*, MacIP*, IPX * optional add-on feature WAN support: PPP, MP, HDLC Security: PAP, CHAP, PAP-TOKEN, CACHE-TOKEN, callback, SecurID, IP/IPX firewalls, UI password security, and CallerID SNMP netw
G-4 User’s Reference Guide If this device is malfunctioning, it may also be causing harm to the telephone network; this device should be disconnected until the source of the problem can be determined and until repair has been made. If this is not done, the telephone company may temporarily disconnect service.
Technical Specifications and Safety Information G-5 Users should ensure for their own protection that the electrical ground connections of the power utility, telephone lines and internal metallic water pipe system, if present, are connected together. This precaution may be particularly important in rural areas. Caution Users should not attempt to make such connections themselves, but should contact the appropriate electric inspection authority, or electrician, as appropriate.
G-6 User’s Reference Guide
About 56K Line Access H-1 Appendix H About 56K Line Access The Netopia R2121 with Dual Analog is capable of 56Kbps per line connections. This means that if you use both onboard modems, you can achieve inbound data transfer rates of up to 112Kbps. Using a third modem bumps the theoretical speed limit to 168Kbps. This section describes some practical limitations on the previous statements.
H-2 User’s Reference Guide These new techniques treat the phone system as a mostly digital network that just happens to have an analog portion. There are several consequences to the reliance on a half-digital connection. Your Internet Service Provider must have digital phone lines to the public switched telephone network (PSTN). That's the easy part: if your ISP offers 56Kbps, they have the digital lines.
Glossary 1 Glossary Access Line: A telephone line reaching from the telephone company central office to a point usually on your premises. Beyond this point the wire is considered inside wiring. See also Trunk Line. analog: In telecommunications, telephone transmission and/or switching that is not digital. An analog phone transmission is one that was originally intended to carry speech or voice, but may with appropriate modifications be used to carry data of other types.
2 User’s Reference Guide byte: A group of bits, normally eight, which represent one data character. CallerID: See CND. CCITT (Comite Consultatif International Telegraphique et Telephonique): International Consultative Committee for Telegraphy and Telephony, a standards organization that devises and proposes recommendations for international communications. See also ANSI (American National Standards Institute).
Glossary 3 DNS (Domain Name Service): A TCP/IP protocol for discovering and maintaining network resource information distributed among different servers. download: The process of transferring a file from a server to a client. EIA (Electronic Industry Association): A North American standards association. Ethernet: A networking protocol that defines a type of LAN characterized by a 10 Mbps (megabits per second) data rate. Ethernet is used in many mainframe, PC, and UNIX networks, as well as for EtherTalk.
4 User’s Reference Guide internet: A set of networks connected together by routers. This is a general term, not to be confused with the large, multi-organizational collection of IP networks known as the Internet. An internet is sometimes also known as an internetwork. internet address, IP address: Any computing device that uses the Internet Protocol (IP) must be assigned an internet or IP address.
Glossary 5 NAT (Network Address Translation): A feature that allows communication between the LAN connected to the Netopia ISDN Router and the Internet using a single IP address, instead of having a separate IP address for each computer on the network. NetBIOS: A network communications protocol used on PC LANs. network: A group of computer systems and other computer devices that communicate with one another.
6 User’s Reference Guide remapping: See network number remapping. RFC (Request for Comment): A series of documents used to exchange information and standards about the Internet. RIP (Routing Information Protocol): A protocol used for the transmission of IP routing information. RJ-11: A telephone-industry standard connector type, usually containing four pins. RJ-45: A telephone-industry standard connector type usually containing eight pins. router: A device that supports network communications.
Glossary 7 TCP/IP (Transmission Control Protocol/Internet Protocol): An open network standard that defines how devices from different manufacturers communicate with each other over one or more interconnected networks. TCP/IP protocols are the foundation of the Internet, a worldwide network of networks connecting businesses, governments, researchers, and educators. telephone wall cable: 2-pair, 4-pair, or 8-pair, 22- or 24-gauge solid copper wire cable.
8 User’s Reference Guide
Index-1 Index Numerics 10Base-T 5-4 10Base-T, connecting 5-4 A Add Static Route 10-14 Adding a filter set 14-13 advanced configuration features 8-9 answer profile call acceptance scenarios 9-7 defined 9-4 answering calls 9-4 AppleTalk 1-2 configuring LocalTalk 12-7 routing table 13-9 tunneling (AURP) 12-3, 12-8 zones 12-6, 12-7 AppleTalk routing table 13-9 AppleTalk setup 12-1 AppleTalk Update-Based Routing Protocol, see AURP Application software 5-2 AURP adding a partner 12-9 configuration 12-10 connectin
Index-2 connection profiles defined 7-3 scheduling 9-1, 9-7 console configuring 8-12 screens, connecting to 8-8 Console Configuration 8-12 Console connection problems A-2 console-based management configuring with 6-1, 7-1, 8-1 D D.
Index-3 finding an ISP B-1 firewall 14-18 firmware files updating with TFTP 15-8 updating with XMODEM 15-11 FTP sessions 14-21 further reading F-1 G General Statistics 13-4 Glossary GL-1 H hard seeding 12-3 Hops 13-10 how to reach us A-3 I Input filter 3 14-19 Input filters 1 and 2 14-19 Input filters 4 and 5 14-19 Internet addresses, see IP addresses Internet Protocol (IP) 10-1 Internetwork Packet Exchange (IPX) 11-1 IP address serving 10-16 IP addresses about C-1 distribution rules C-10 static C-8 IP add
Index-4 monitoring 13-1 security 14-1 system utilities and tests 15-1 Network Address Translation see NAT 10-1 Network problems A-2 network status overview 13-1 Next 13-10 Next Router Address 13-10 non-seeding 12-3 O Output filter 1 14-19 overview 1-1 P packet header C-13 PAP and answer profile 9-6 Parts of a filter 14-7 password to protect security screen 14-2 user accounts 14-2 Ping 15-2 ping test, configuring and initiating 15-2 Pkts Fwded 13-11 Plain Old Telephone Services see POTS 9-1 Port number comp
Index-5 PC 3-1 troubleshooting Macintosh A-2 PC A-1 Windows 95 3-3 SmartView 4-1 launching SmartView 4-1 SNMP community strings 13-14 MIBs supported 13-13 traps 13-15 SNMP Setup screen 13-14 SNMP traps 13-15 Socket 11-2 soft seeding 12-3 Src.
Index-6 WAN configuration 9-2, 10-3 WAN event history 13-6 WAN statistics 13-4, 13-5 Windows 95 SmartStart 3-3 X XMODEM 15-10 XMODEM file transfers downloading configuration files 15-12 updating firmware 15-11 uploading configuration files 15-12 Z Zone Name 13-10
Limited Warranty and Limitation of Remedies 1 Limited Warranty and Limitation of Remedies Netopia warrants to you, the end user, that the Netopia™ Router with Dual Analog (the “Product”) will be free from defects in materials and workmanship under normal use for a period of one (1) year from date of purchase.
2 User’s Reference Guide
