1. Home
    2. /
  2. Manuals
    3. /
  3. Motorola
    4. /
  4. NVG589
    5. /
  5. 32
Page 156 / 216 Scroll up to view Page 151 - 155
Administrator’s Handbook
156
set physical wireless ssid 3 enable [ off | on ]
Enables or disables the third available SSID.
set physical wireless ssid 4 enable [ off | on ]
Enables or disables the fourth available SSID.
set physical wireless wps [ on | off ]
Enables or disables Wi-Fi Protected Setup (WPS) for simplified security configuration with Wi-Fi clients that sup-
port it.
set physical wireless wmm enable [ off | on ]
Enables or disables Wi-Fi Multimedia settings for multimedia queueing characteristics.
set physical wireless wmm power-save [ off | on ]
Turns power saving mode
off
or
on
for wireless multimedia when
wmm enable
is
on
. Default is
on
.
set physical wireless power-save enable [ off | on ]
Turns power saving mode
off
or
on
for all wireless services. Default is
off
.
PPPoE relay commands
set pppoe-relay enable [ on | off ]
Allows the Gateway to forward PPPoE packets. Default is
on
.
set pppoe-relay max-sessions [ 0... 4 ]
Specifies the maximum number of PPPoE relay sessions. Default is
4
.
Page 157 / 216
157
NAT Pinhole commands
NAT pinholes let you pass specific types of network traffic through the NAT interfaces on the Motorola Gateway.
NAT pinholes allow you to route selected types of network traffic, such as FTP requests or HTTP (Web) connec-
tions, to a specific host behind the Motorola Gateway transparently.
To set up NAT pinholes, you identify the type(s) of traffic you want to redirect by port number, and you specify the
internal host to which each specified type of traffic should be directed.
The following list identifies protocol type and port number for common TCP/IP protocols:
FTP (TCP 21)
telnet (TCP 23)
SMTP (TCP 25),
TFTP (UDP 69)
set pinhole name
name
protocol [ tcp | udp ]
Specifies the identifier for the entry in the Gateway's pinhole table. You can name pinhole table entries sequen-
tially (1, 2, 3), by port number (21, 80, 23), by protocol, or by some other naming scheme. Specifies the type of
protocol being redirected.
set pinhole name
name
ext-port-range [ 0 - 49151 ]
Specifies the first and last port number in the range being translated.
set pinhole name
name
int-addr
ipaddr
Specifies the IP address of the internal host to which traffic of the specified type should be transferred.
set pinhole name
name
int-start-port [ 0 - 65535 ]
Specifies the port number your Motorola Gateway should use when forwarding traffic of the specified type. Under
most circumstances, you would use the same number for the external and internal port.
Security Stateful Packet Inspection (SPI) commands
set security firewall-level [ low | high | off ]
All computer operating systems are vulnerable to attack from outside sources, typically at the operating system or
Internet Protocol (IP) layers. Stateful Inspection firewalls intercept and analyze incoming data packets to deter-
mine whether they should be admitted to your private LAN, based on multiple criteria, or blocked. Stateful inspec-
tion improves security by tracking data packets over a period of time, examining incoming and outgoing packets.
Outgoing packets that request specific types of incoming packets are tracked; only those incoming packets consti-
tuting a proper response are allowed through the firewall.
The
high
setting is recommended, but for special circumstances, a
low
level of firewall protection is available. You
can also turn all firewall protection
off
. Defaults to
low
.
set security spi ip4 invalid-addr-drop [ on | off ]
Enables or disables whether Broadband packets with invalid source or destination addresses should be dropped.
Default is
on
.
set security spi ip4 private-addr-drop [ on | off ]
Enables or disables whether Broadband packets with private source or destination addresses should be dropped.
Default is
off
.
Page 158 / 216
Administrator’s Handbook
158
set security spi unknown-ethertypes-drop [ on | off ]
Enables or disables whether packets with unknown ether types are to be dropped. Default is
on
.
set security spi portscan-protect [ on | off ]
Enables or disables whether to detect and drop port scans. Default is
on
.
set security spi invalid-tcp-flags-drop [ on | off ]
Enables or disables whether packets with invalid TCP flag settings (NULL, FIN, Xmas, etc.) are to be dropped.
Default is
on
.
set security spi ip4 invalid-addr-drop [ on | off ]
Broad sets of addresses exist that should not be used as one or both of source or destination addresses. These
include the following:
The default is
on
.
set security spi ip4 private-addr-drop [ off | on ]
Drops packets sourced or destined for private IPv4 addresses. The default is
off
.
set security spi flood-limit enable [ on | off ]
Enables or disables whether packet flooding should be detected and offending packets be dropped. Default is
on
.
set security spi flood-limit limit
pps_value
Sets a maximum Packets Per Second (PPS) value for packet flood criterion. Defaults to
4
.
set security spi flood-limit burst-limit
max_value
Sets a maximum value in a packet-burst for packet flood criterion. Defaults to
8
.
set security spi flood-limit icmp enable [ on | off ]
Enables or disables whether ICMP packet flooding should be detected and offending packets be dropped.
Defaults to
on
.
IP address/mask
Source or destination
10.0.0.0/8
source
192.168.0.0.0/16
source
169.254.0.0/16
source
172.16.0.0/12
source
224.0.0.0/4
Source / destination
224.0.0.0/5
Source / destination
0.0.0.0/8
Source / destination
255.255.255.255
destination
Page 159 / 216
159
set security spi flood-limit udp enable [ off | on ]
Enables or disables whether UDP packet flooding should be detected and offending packets be dropped. Defaults
to
off
.
set security spi flood-limit tcp enable [ off | on ]
Enables or disables whether TCP packet flooding should be detected and offending packets be dropped. Defaults
to
off
.
set security spi flood-limit tcp syn-cookie [ on | off ]
Allows TCP SYN cookies flooding to be excluded. Defaults to
on
.
Reflexive ACL
set security spi ip6 allow-inbound [ on | off ]
Turns reflexive ACL on or off for IPv6.
Reflexive
Access Control Lists (ACL) provide that layer 4 Session information is used to make decisions about
what packets to route. Reflexive ACL reduces exposure to spoofing and denial-of-service attacks, because
desired inbound packet flows are usually in response to outbound traffic.
Motorola 9.x DSL Gateways use the relevant session information about whether the packet flow was initiated from
the LAN side (upstream) or WAN side (downstream). If the parameter security.
spi.ip6.allow-inbound
is set to
off
,
then sessions which are initiated from the WAN side are disallowed. Upstream sessions are never precluded
because of reflexive ACL. (Of course there may be other reasons that particular packets are dropped.)
For IPv4, NAT is generally enabled, so reflexive ACL is usually not an issue.
VoIP commands
(supported models only}
Voice-over-IP (VoIP) refers to the ability to make voice telephone calls over the Internet. This differs from tradi-
tional phone calls that use the Public Switched Telephone Network (PSTN). VoIP calls use an Internet protocol,
Session Initiation Protocol (SIP), to transmit sound over a network or the Internet in the form of data packets. Cer-
tain Motorola Gateway models have one or more voice ports for connecting telephone handsets. These models
support VoIP. If your Gateway is a VoIP model, you can configure the VoIP features.
set voip phone
n
sip-option [ off | on ]
Turns SIP on or off for the phone specified by
n
, usually
1
or
2
, depending on your Gateway’s number of physical
voice ports. Default is
off
.
set voip phone
n
sip-proxy-server
[
server_name
|
ip_address
]
Specifies the SIP proxy server for the specified phone by fully qualified server name or IP address.
set voip phone
n
sip-proxy-server-port [ 1 - 65535 ]
Specifies the SIP proxy server port number for the specified phone. Default is
5060
.
set voip phone
n
sip-proxy-server-transport [ udp | tcp ]
Specifies the SIP proxy server transport protocol for the specified phone. Default is
UDP
.
Page 160 / 216
Administrator’s Handbook
160
set voip phone
n
sip-registrar-server
[
server_name
|
ip_address
]
Specifies the SIP registration server for the specified phone by fully qualified server name or IP address.
set voip phone
n
sip-registrar-server-port [ 1 - 65535 ]
Specifies the SIP registration server port number for the specified phone. Default is
5060
.
set voip phone
n
sip-registrar-server-transport [ udp | tcp ]
Specifies the SIP registration server transport protocol for the specified phone. Default is
UDP
.
set voip phone
n
sip-expires-time [ 5 - 65535 ]
Specifies the SIP registration server time-out duration from 0 – 65535 seconds for the specified phone. Default is
3600
(1 hour).
set voip phone
n
sip-outproxy-server
[
server_name
|
ip_address
]
Specifies the SIP outbound proxy server for the specified phone by fully qualified server name or IP address.
set voip phone
n
sip-outproxy-server-port [ 1 - 65535 ]
Specifies the SIP outbound proxy server port for the specified phone. Default is
5060
.
set voip phone
n
sip-user-display-name
name
Specifies the user name that is displayed on the web UI Home page, or other caller-id displays for the specified
phone.
set voip phone
n
sip-user-name
username
Specifies the user name that authenticates the user to SIP for the specified phone.
set voip phone
n
sip-user-password
password
Specifies the password that authenticates the user to SIP for the specified phone.
set voip phone
n
auth-id
string
Specifies the authorization ID that authenticates the user to SIP for the specified phone. Most SIP Servers expect
this to be the username itself but some may use
auth-id
.
set voip phone
n
sip-user-port [ 1 - 65535 ]
Specifies the SIP user port for the specified phone, Default is
5060
.
set voip phone
n
codec G711U priority [ 1 | 2 | 3 | 4 | 5 | 6 | 7 | none ]
Assigns a priority to the
ulaw
codec, the common analog voice encoding method used in North America.
set voip phone
n
codec G711A priority [ 1 | 2 | 3 | 4 | 5 | 6 | 7 | none ]
Assigns a priority to the
alaw
codec, the common analog voice encoding method used outside North America.

Rate

4 / 5 based on 3 votes.

Popular Motorola Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top