ZyNOS is ZyXEL's proprietary Network Operating System. It is the platform on all
Prestige routers that delivers network services and applications. It is designed in a modular
fashion so it is easy for developers to add new features. New ZyNOS software upgrades can
be easily downloaded from our FTP sites as they become available.
2. How do I access the Prestige SMT menu?
The SMT interface is a menu driven interface, which can be accessed via a RS232 console or a Telnet connection. To access the Prestige via SMT console port, a computer equipped with communication software such as HyperTerminal must be configured with the following parameters.
The default console port baud rate is 9600bps, you can change it to 115200bps in Menu
24.2.2 to speed up the SMT access.
3. What is the default console port baud rate?
Moreover, how do I change it?
The default console port baud rate is 9600bps. When configuring the SMT, please make
sure the terminal baud rate is also 9600bps. You can change the console baud rate from
9600bps to 115200bps in SMT menu 24.2.2.
4. How do I upload the ZyNOS firmware code via
console?
The procedure for uploading Prestige via console is as follows.
5. How do I upgrade/backup the ZyNOS firmware by using TFTP client program via LAN?
The Prestige allows you to transfer the firmware from/to Prestige by using TFTP program via LAN. The procedure for uploading ZyNOS via TFTP is as follows.
6. How do I upload ROMFILE via console port?
In some situations, you may need to upload the ROMFILE, such as losing the system password, or the need of resetting SMT to factory default.
The procedure for uploading ROMFILE via the console port is as follows.
7. How do I backup/restore SMT configurations by using TFTP client program via LAN?
8. Why can't I make Telnet to Prestige from WAN?
There are three reasons that Telnet from WAN is blocked.
Source IP= Telnet host
Destination IP= Prestige's WAN IP
Service= TCP/23
Action=Forward
9. What should I do if I forget the system
password?
In case you forget the system password, you need to upload ROMFILE to reset the SMT to
factory default. After uploading ROMFILE, the default system password is '1234'.
10. What is SUA? When should I use SUA?
SUA (Single User Account) is a unique feature supported by Prestige router which allows multiple people to access Internet concurrently for the cost of a single user account.
When Prestige acting as SUA receives a packet from a local client destined for the outside Internet, it replaces the source address in the IP packet header with its own address and the source port in the TCP or UDP header with another value chosen out of a local pool. It then recomputes the appropriate header checksums and forwards the packet to the Internet as if it is originated from Prestige using the IP address assigned by ISP. When reply packets from the external Internet are received by Prestige, the original IP source address and TCP/UDP source port numbers are written into the destination fields of the packet (since it is now moving in the opposite direction), the checksums are recomputed, and the packet is delivered to its true destination. This is because SUA keeps a table of the IP addresses and port numbers of the local systems currently using it.
11. What is the difference between NAT and SUA?
NAT is a generic name defined in RFC 1631 'The IP Network Address Translator (NAT)'.
SUA (Internet Single User Account) is ZyXEL's implementation and trade name for
functioning PAT which is a specific type of NAT. SUA( or PAT for NAT) translates address
into port mapping.
The primary motivation for RFC 1631 is that there is not enough IP address to go around. In addition, many corporations simply did not bother to obtain legal (globally unique) IP addresses for their networks and now finding themselves unable to connect to the Internet.
Basically, NAT is a process of translating one address to another. A NAT implementation can be as simple as substituting an IP address with another. This allows a network to rectify the illegal address problem mentioned above without going through each and every host.
The design goal of ZyXEL's SUA is to minimize the Internet access cost in a small
office environment by using a single IP address to represent the multiple hosts inside. It
does more than IP address translation, so that multiple hosts on the LAN can access the
Internet at the same time.
12. How many network users can the SUA/NAT
support?
The Prestige does not limit the number of the users but the number of the sessions. The
Prestige 334w supports 2048 sessions that you can use the 'ip nat iface
enif1'
command in menu 24.8 to view the current active sessions.
13. What are Device filters and Protocol
filters?
In ZyNOS, the filters have been separated into two groups. One group is called
'device filter group', and the other is called 'protocol filter group'. Generic
filters belong to the 'device filter group', TCP/IP and IPX filters belong to the
'protocol filter group'.
14. Why can't I configure device filters
or protocol filters?
In ZyNOS, you can not mix different filter groups in the same filter set.
15. How can I protect against IP spoofing
attacks?
The P334w's firewall will automatically detect the IP spoofing and drop it if the firewall is turned on. If the firewall is not turned on we can configure a filter set to block the IP spoofing attacks. The basic scheme is as follows:
For the input data filter:
Filter rule setup:
Where a.b.c.d is an IP address on your local network and w.x.y.z is your netmask:
For the output data filters:
Filter rule setup:
Where a.b.c.d is an IP address on your local network and w.x.y.z is your netmask.
All contents copyright (c) 2004 ZyXEL Communications Corporation.