1. Home
    2. /
  2. Manuals
    3. /
  3. Motorola
    4. /
  4. Netopia-3000
    5. /
  5. 68
Page 336 / 351 Scroll up to view Page 331 - 335
336
Wide Area Network Termination
PPPoE/PPPoA (Point-to-Point Protocol over Ethernet/ATM)
The PPPoE specification, incorporating the PPP and Ethernet standards, allows your com-
puter(s) to connect to your Service Provider’s network through your Ethernet WAN connec-
tion. The Netopia-series Gateway supports PPPoE, eliminating the need to install PPPoE
client software on any LAN computers.
Service Providers may require the use of PPP authentication protocols such as Challenge
Handshake Authentication Protocol (CHAP) or Password Authentication Protocol (PAP).
CHAP and PAP use a username and password pair to authenticate users with a PPP server.
A CHAP authentication process works as follows:
1.
The password is used to scramble a challenge string.
2.
The password is a shared secret, known by both peers.
3.
The unit sends the scrambled challenge back to the peer.
PAP, a less robust method of authentication, sends a username and password to a PPP
server to be authenticated. PAP’s username and password pair are not encrypted, and are
therefore sent “unscrambled”.
Instant-On PPP
You can configure your Gateway for one of two types of Internet connections:
Always On
Instant On
These selections provide either an uninterrupted Internet connection or an as-needed con-
nection.
While an Always On connection is convenient, it does leave your network permanently con-
nected to the Internet, and therefore potentially vulnerable to attacks.
Netopia's Instant On technology furnishes almost all the benefits of an Always-On connec-
tion while providing two additional security benefits:
Your network cannot be attacked when it is not connected.
Page 337 / 351
337
Simplified Local Area Network Setup
Your network may change address with each connection making it more difficult to
attack.
When you configure Instant On access, you can also configure an idle time-out value. Your
Gateway monitors traffic over the Internet link and when there has been no traffic for the
configured number of seconds, it disconnects the link.
When new traffic that is destined for the Internet arrives at the Gateway, the Gateway will
instantly re-establish the link.
Your service provider may be using a system that assigns the Internet address of your
Gateway out of a pool of many possible Internet addresses. The address assigned varies
with each connection attempt, which makes your network a moving target for any attacker.
Simplified Local Area Network Setup
DHCP (Dynamic Host Configuration Protocol) Server
DHCP Server functionality enables the Gateway to assign to your LAN computer(s) a “pri-
vate” IP address and other parameters that allow network communication. The default
DHCP Server configuration of the Gateway supports up to 253 LAN IP addresses.
This feature simplifies network administration because the Gateway maintains a list of IP
address assignments. Additional computers can be added to your LAN without the hassle
of configuring an IP address.
DNS Proxy
Domain Name System (DNS) provides end users with the ability to look for devices or web
sites by typing their names, rather than IP addresses. For web surfers, this technology
allows you to enter the URL (Universal Resource Locator) as text to surf to a desired web-
site.
The Netopia DNS Proxy feature allows the LAN-side IP address of the Gateway to be used
for proxying DNS requests from hosts on the LAN to the DNS Servers configured in the
gateway. This is accomplished by having the Gateway's LAN address handed out as the
“DNS Server” to the DHCP clients on the LAN.
Page 338 / 351
338
NOTE:
The Netopia DNS Proxy only proxies UDP DNS queries, not TCP DNS queries.
Management
Embedded Web Server
There is no specialized software to install on your PC to configure, manage, or maintain
your Netopia Gateway. Web pages embedded in the operating system provide access to
the following Gateway operations:
Setup
System and security logs
Diagnostics functions
Once you have removed your Netopia Gateway from its packing container and powered the
unit up, use any LAN attached PC or workstation running a common web browser applica-
tion to configure and monitor the Gateway.
Diagnostics
In addition to the Gateway’s visual LED indicator lights, you can run an extensive set of
diagnostic tools from your Web browser.
Two of the facilities are:
Automated “Multi-Layer” Test
The
Run Dia
gnostics
link initiates a sequence of tests. They examine the entire
functionality of the Gateway, from the physical connections to the data traffic.
Network Test Tools
Three test tools to determine network reachability are available:
Ping
- tests the “reachability” of a particular network destination by sending an ICMP
echo request and waiting for a reply.
NSLookup
- converts a domain name to its IP address and vice versa.
Page 339 / 351
339
Security
TraceRoute
- displays the path to a destination by showing the number of hops and the
router addresses of these hops.
The system log also provides diagnostic information.
NOTE:
Your Service Provider may request information that you acquire from these var-
ious diagnostic tools. Individual tests may be performed at the command line.
(
See “Command Line Interface” on page 221.
).
Security
Remote Access Control
You can determine whether or not an administrator or other authorized person has access
to configuring your Gateway. This access can be turned on or off in the Web interface.
Password Protection
Access to your Netopia device can be controlled through two access control accounts,
Admin
or
User
.
The
Admin
, or administrative user, performs all configuration, management or mainte-
nance operations on the Gateway.
The
User
account provides monitor capability
only
.
A user may
NOT
change the configuration, perform upgrades or invoke maintenance
functions.
Account usernames can now be changed for the
Admin
and
User
accounts.
Network Address Translation (NAT)
The Netopia Gateway Network Address Translation (NAT) security feature lets you conceal
the topology of a hard-wired Ethernet or wireless network connected to its LAN interface
Page 340 / 351
340
from routers on networks connected to its WAN interface. In other words, the end com-
puter stations on your LAN are
invisible
from the Internet.
Only a
single WAN IP address
is required to provide this security support for your entire
LAN.
LAN sites that communicate through an Internet Service Provider typically enable NAT,
since they usually purchase only one IP address from the ISP.
When NAT is
ON
, the Netopia Gateway “proxies” for the end computer stations on your
network by pretending to be the originating host for network communications from non-
originating networks. The WAN interface address is the only IP address exposed.
The Netopia Gateway tracks which local hosts are communicating with which remote
hosts. It routes packets received from remote networks to the correct computer on the
LAN (Ethernet) interface.
When NAT is
OFF
, a Netopia Gateway acts as a traditional TCP/IP router, all LAN com-
puters/devices are exposed to the Internet.
A diagram of a typical NAT-enabled LAN follows:
WAN
Interface
LAN
Ethernet
Interface
Netopia Gateway
NAT
Internet
Embedded Admin Services:
HTTP-Web Server and Telnet Server Port
NAT-protected
LAN stations
Ethernet

Rate

4.7 / 5 based on 3 votes.

Popular Motorola Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top