General FAQ
Advanced FAQ
1. What is the ZyAIR G-2000P Internet Access Sharing Router?
The ZyAIR G-2000P Internet Access Sharing Router is a robust solution complete with everything needed for providing Internet access to multiple workstations through your cable or ADSL modem. The router equipped with 1 auto-MDI/MDIX 10/100Mbps Ethernet WAN port and 4 auto-MDI/MDIX 10/100Mbps Ethernet LAN port and 802.11b wireless capability. It is the simplest and affordable solution for multiple and instant broadband Internet access router with 802.11 wireless support.
Virtually all-popular applications over Internet, such as Web, E-Mail, FTP, Telnet, Gopher, are supported. The ZyAIR G-2000P is designed for SOHO, branch offices, workgroups, and educational users.
2. Which Internet Applications can I use with the ZyAIR G-2000P ?
Most common applications include MIRC, PPTP, ICQ, Cu- SeeMe, NetMeeting, IP/TV, RealPlayer, VDOLive, Quake, Quake11, Quake111, StarCraft, & Quick Time.
3. What are the capability and difference of ZyAIR G-2000P to ZyAIR B-2000?
ZyAIR G-2000P comply with 802.11g standard and is equipped with 2 interchangeable Omni directional 2dBi gain antenna which gives you faster connection compare to ZyAIR B-2000 if 802.11g client is used, further more ZyAIR G-2000P supports embedded 802.1x MD5/CHAP authentication of 32 client and WPA/WPA-PSK is supported..
4. What is the coverage range of ZyAIR G-2000P?
The coverage range typically is 50m~80m indoor, 150m~300m outdoor. The actual range and link speed will depends on environment, as to obstacles and walls, RF interference, etc, in the environment.
5. What is the range coverage of ZyAIR B-100/B-200/B-300/B-400/G-100/G-200?
The coverage range typically is 50m~80m indoor, 150m~300m outdoor. The actual range depends on environment, as to obstacles and walls, RF interference, etc, in the environment.
6. What can I do if I lost the password for my ZyAIR G-2000P and can't access it's configuration any more?
If you have lost the password, thus gain no access to the device except to reset the device by pressing the reset button located beside the power jack.
7. How do I used the reset button? Moreover what field of parameter will be reset by reset button?
You can used a sharp pointed object to insert it into the little reset hole beside the power connector.
The procedures to reset the unit is as follows.
Note: When the reset button is pressed all parameters will be reset back to factory default including ESSID, password, IP address, WEP Keys.
The basic default configuration after reset is as follow.
8. Can I use ZyAIR G-2000P as a simple bridge? If so how do I connect it?
Yes, you can use G-2000P to act as a simple wireless bridge between your wired and
wireless network just like B-1000. There is no special configuration needed, To use
it as a simple wired to wireless bridge you just need configure the LAN port of ZyAIR
G-2000P with an IP in the same segment of your LAN to the 4 port switch switch of the ZyAIR
G-2000P.
Note: If you already have DHCP server in the wired LAN be sure to disable the
embedded DHCP server in G-2000P to avoid conflict.
9. Why can't I configure B-100/B-200/B-300/G-100/G-200 with the supplied utility in Windows XP?
This is because XP uses its default configuration for wireless adapter. You can disable it by entering Control Panel->Network and Dialup Connections->Wireless network connection->Advance and uncheck the use Windows to configure wireless configuration check box and click OK. Now you need to exit the supplied configuration utility in the Windows task bar and restart it again. Now you can use the supplied utility to configure your B-100.
10. What is the default user name and password to login the G-2000P via the browser?To restrict only the administrator can configure the router, there is a login procedure prompted for asking User Name and Password. The default User Name is 'admin' and the default password is the default SMT password, '1234'.
11. What do I need to use the ZyAIR G-2000P?
You need a ADSL modem or cable modem with an Ethernet port to use the ZyAIR G-2000P. The ZyAIR G-2000P has two types of Ethernet ports: LAN port and WAN port. You should connect the computer to the any of the 4 port LAN switch and connect the external modem to the WAN port. If the ISP uses PPPoE or RoadRunner Authentication you need the user account to enter in the ZyAIR G-2000P.
12. What is PPPoE?
PPPoE stands for Point-to-Point Protocol
Over Ethernet that is an IETF draft standard specifying
how a computer interacts with a broadband modem (i.e. xDSL, cable, wireless, etc.) to
achieve access to the high-speed data networks via a familiar PPP dialer such as 'Dial-Up
Networking' user interface. PPPoE supports a broad range of existing applications and
service including authentication, accounting, secure access and configuration management.
There are some service providers running of PPPoE today. Before configuring PPPoE in the
G-2000P, please make sure your ISP supports PPPoE.
13. Does the ZyAIR G-2000P support PPPoE?
Yes. The ZyAIR G-2000P supports PPPoE since ZyNOS 3.60.
14. How do I know I am using PPPoE?
PPPoE requires a user account to login to the provider's server. If you need to configure a user name and password on your computer to connect to the ISP you are probably using PPPoE. If you are simply connected to the Internet when you turn on your computer, you probably are not. You can also check your ISP or the information sheet given by the ISP. Please choose PPPoE as the encapsulation type in the ZyAIR G-2000P if the ISP uses PPPoE.
15. Why does my provider use PPPoE?
PPPoE emulates a familiar Dial-Up connection. It allows your ISP to provide services using their existing network configuration over the broadband connections. Besides, PPPoE supports a broad range of existing applications and service including authentication, accounting, secure access and configuration management.
16. How can I manage the ZyAIR G-2000P ?The ZyAIR G-2000P supports 4 port auto MDX/MDIX 10/100M Ethernet switch to connect to the computer and 10/100M Ethernet to connect to the external cable or ADSL modem..
18. What can we do with ZyAIR G-2000P ?
Browse the World Wide Web (WWW), send and receive individual e-mail, and download software. These are just a few of many benefits you can enjoy when you put the whole office on-line with the ZyAIR G-2000P Internet Access Sharing Router.
19. Does ZyAIR G-2000P support dynamic IP addressing?The ZyAIR G-2000P supports either a static or dynamic IP address from ISP.
20. What is BOOTP/DHCP?BOOTP stands for Bootstrap Protocol. DHCP stands for Dynamic Host Configuration Protocol. Both are mechanisms to dynamically assign an IP address for a TCP/IP client by the server. In this case, the ZyAIR G-2000P Internet Access Sharing Router is a BOOTP/DHCP server. Windows base clients use DHCP to request an internal IP address, while WFW and WinSock clients use BOOTP. TCP/IP clients may specify their own IP or utilize BOOTP/DHCP to request an IP address.
21. What is the difference between the internal IP and the real IP from my ISP?
Internal IPs are sometimes referred to as virtual IPs. They are a group of up to 255 IPs that are used and recognized internally on the local area network. They are not intended to be recognized on the Internet. The real IP from ISP, instead, can be recognized or pinged by another real IP. The ZyAIR G-2000P Internet Access Sharing Router works like an intelligent router that routes between the virtual IP and the real IP.
22. How does e-mail work through the ZyAIR G-2000P ?
It depends on what kind of IP you have: Static or Dynamic. If your company has a domain name, it means that you have a static IP address. Suppose your company's e-mail address is xxx@mycompany.com. Joe and Debbie will be able to send e-mail through ZyAIR G-2000P Internet Access Sharing Router using jane@mycompany.com and debbie@mycompany.com respectively as their e-mail addresses. They will be able to retrieve their individual private and secure e-mail, if they have been assigned the proper access right.
If your company does not have a domain name, it means that your ISP provides you with a dynamic IP address.
Suppose your company's e-mail address is mycompany@ispname.com. Jane and John will be able to send e-mail through ZyAIR G-2000P Internet Access Sharing Router using "jane"<mycompany@ispname.com> and "john"<mycompany@ispname.com> respectively as their e-mail addresses. Again, they will be able to retrieve their individual private and secured e-mail, if they have been assigned the proper access right.
23. What is the main difference between WinGate and the ZyAIR G-2000P ?
24. What is the difference between the 'Standard' and 'RoadRunner' service?
The US Road Runner service requires the user to "log in" to the service before it can send any packets to the outside network. This is apparently implemented in the TAS (Toshiba Authentication System) with a packet filtering firewall in the upstream direction. Before login, one can send ICMP packets (e.g., ping) to the outside Internet, but nearly all other upstream TCP and UDP packets are blocked. The user can only speak to the local DNS/login server. Downstream packets do not appear to be filtered or blocked at any time.
While Standard service means the cable services which have no login requirement. ZyAIR
G-2000P supports both Road Runner & Standard services in menu 4 for connecting to cable ISPs. For configuring
ZyAIR G-2000P to login Road Runner service, please refer to the Configuration Guide
for the details.
25. Is it possible to access a server running behind SUA from the outside Internet? If possible, how?
Yes, it is possible because ZyAIR G-2000P delivers the packet to the local
server by looking up to a SUA server table. Therefore, to make a local server accessible
to the outside users, the port number and the inside IP address of the server must be
configured in Menu 15 - SUA Server Setup.
26. What DHCP capability does the ZyAIR G-2000P support?
The ZyAIR G-2000P supports DHCP client on the WAN port and DHCP server on the LAN port. The ZyAIR G-2000P's DHCP client allows it to get the Internet IP address from ISP automatically. The ZyAIR G-2000P's DHCP server allows it to automatically assign IP and DNS addresses to the clients on the local LAN.
27. What is the maximum number of wireless client can associated with ZyAIR B2000 simultaneously?
We did not limit the number of wireless client can associated with ZyAIR B2000 simultaneously, the suggest number are no more than 32, a good number is under 10~20 to ensure the performance of each wireless client.
Advanced FAQ
1. What is the default antenna type and gain on ZyAIR G-2000P?
The ZyAIR G-2000P are equipped with 2 diversity omni directional antenna with 2 dBi Gains.
2. Can I change the antenna on ZyAIR G-2000P?
Yes, you can change the antenna on ZyAIR G-2000P to fit your implementation needs. To change antenna you must remove it first. You can remove the antenna by holding the outer ring of the antenna and turn it counter clock wise, and firmly remove the antenna from the ZyAIR G-2000P. To install it, simply reverse the removing procedure.
3. What are the connector type required on the replacement antenna?
ZyAIR G-2000P are equipped with Reverse Polarity SMA jack, so it will work with any 2.4GHz wireless antenna with Reverse Polarity SMA Plug.
4. What is the RF power output of ZyAIR G-2000P?
The output of ZyAIR G-2000P is 15dBm at 1/2/5.5/11 Mbps, 11dBm at 6/9/12/18/24/36/48/54 Mbps RF module.
5. What wireless security mechanism are supported by ZyAIR G-2000P?
ZyAIR G-2000P supports following security mechanisms.
6. What is the Open System and Shared Key Authentication?
Open
System:
The default authentication service that simply announces the desire to associate with
another station or access point. A station can authenticate with any other station or
access point using open system authentication if the receiving station designates open
system authentication.
Share
Key:
The optional authentication that involves a more rigorous exchange of frames, ensuring
that the requesting station is authentic. For a station to use shared key authentication,
it must implement WEP.
7. What Authentication Type does ZyAIR G-2000P support?
ZyAIR G-2000P supports null authentication when WEP is disabled as specified by IEEE 802.11b standard, and when WEP is enabled it is using shared key authentication and data are encrypted at the same time.
8. Why is the supplied utility for B-100/B-200/B-300/G-100/G-200 keep on prompting "Invalid WEP key length" when I try to save my WEP configuration and I am sure the configuration is correct?
Please make sure all 4 set of keys are with correct and WEP key length are also correct. Do not leave any key field blank.
Note: Please make sure all 4 set of keys are consistent with the 4 set of keys configured in AP.
9. I have problem associated with ZyAIR G-2000P with Symbol wireless PcMCIA card when WEP is enabled, why?
This is because when WEP is enabled in ZyAIR G-2000P it is authenticating using Shared key authentication. Symbol PcMCIA client do not support Shared key Authentication. In this case please change the authentication type in your wireless tab on Web GUI from shared to open or auto. The default configuration is 'auto' which the AP will auto detect it's client's mode and use the appropriated mode to communicate.
10. What are 802.1x authentication type and which authentication type does ZyAIR G-2000P 802.1x embedded server support.
802.1x specify the following authentication type, and the ZyAIR G-2000P's embedded 802.1x server only support MD5/CHAP authentication.
11. Why I can't use video conferencing with MSN 4.6?
This is because MSN 4.6 requires the support of UPnP (Universal plug n play). To be able to use MSN through ZyAIR G-2000P, you have to enable the UPnP feature under Advanced-> UPNP and Check the enable UPnP check box and press "Apply button" to make it active.
12. How can I access internal server via public IP address assigned on WAN?
You should be able to access your internal server via it's internal IP address when SUA is on, to access your internal server via the public IP address assigned on WAN, you can enter CI command "ip nat loopback on" in SMT Menu 24.8, To make the configuration permanently, you need to add this command to the system boot file (autoexec.net). You can refer to Product Support Note section on www.zyxel.com for configuration details.
13. How does the ZyAIR G-2000P support TFTP and FTP?
In addition to upload the firmware or configure via console or web GUI, you can also use TFTP or FTP to do so.
14. Can the ZyAIR G-2000P support TFTP and FTP over WAN?
Although TFTP and FTP should work over WAN as well, it is not recommended because of the potential data corruption problems.
15. How can I upload data to outside Internet over the one-way cable modem?
A workaround is to use an alternate path for your upstream path, such as a dialup connection to an Internet service provider. So, if you can find another way to get your upstream packets to the Internet you will still be able to receive downstream packets via ZyAIR G-2000P.
The speed of the cable modem is only one part of the equation. There are a combination of factors starting with how fast your PC can handle IP traffic, then how fast your PC to cable modem interface is, then how fast the cable modem system runs and how much congestion there is on the cable network, then how big a pipe there is at the head end to the rest of the Internet.Different models of PCs and Macs are able to handle IP traffic at varying speeds. Very few can handle it at 30 Mbps.
Ethernet (10baseT) is the most popular cable modem interface standard for the PC. This automatically limits the speed of the connection to under 10 Mbps even if the cable modem can receive at 30 Mbps. Most Local Area Networks use 10baseT Ethernet, and although they are 10 Mbps networks, it takes a LOT longer than one second to transmit 10 megabits (or 1.25 megabytes) of data from one terminal to another.
Cable modems on the same node share bandwidth, which means that congestion is created when too many people are on simultaneously. One user downloading large graphic or video files can use a significant portion of shared bandwidth, slowing down access for other users in the same neighborhood.
Most independent Internet Service Providers today connect to the Internet using a single 1.5 Mbps "T1" telephone line. All of their subscribers share that 1.5 Mbps pipeline. Cable head-ends connecting to the Internet backbone using a T1 limit their subscribers to an absolute maximum of 1.5 Mbps.
To create the appearance of faster network access, service companies plan to store or "cache" frequently requested web sites and Usenet newsgroups on a server at their head-end. Storing data locally will remove some of the bottleneck at the backbone connection.
How fast can they go? In a perfect world (or lab) they can receive data at speeds up to 30 Mbps. In the real world, with cost conscious cable companies running the systems, the speed will probably fall to about 1.5 Mbps.
17. My ZyAIR G-2000P can not get an IP address from the ISP to connect to the Internet, what can I do?Currently, there are various ways that ISPs control their users. That is, the WAN IP is provided only when the user is checked as an authorized user. The ISPs currently use three ways:
Check if the 'MAC address' is valid
Check if the 'Host Name' is valid, e.g., @home
Check if the 'User ID' is valid, e.g., RR-Toshiba Authentication Service, RR-Manager Authentication Service, RR Telstra
If you are not able to get the Internet IP from the ISP, check which authentication method your ISP uses and troubleshoot the problem as described below.
1. Your ISP checks the 'MAC address'
Some ISPs only provide an IP address to the user with an authorized MAC address. This authorized MAC can be the PC's MAC which is used by the ISP for the authentication. So, if a new network card is used or the ZyAIR G-2000P is attached to the cable modem directly, the ISP will reject the DHCP discovery from this MAC, thus no IP is assigned by the ISP.
The ZyAIR G-2000P supports to clone the MAC from the first PC the ISP installed to be its WAN MAC. To clone the MAC from the PC you need to enter that PC's IP in menu 2. Once the MAC is received by the ZyAIR G-2000P, the WAN MAC in menu 24.1 will be updated and used for the ISP's authentication.
|
Key settings:
Assigned By, Choose 'IP address attached on LAN'.
IP Address, Enter the IP address of the PC which is installed by the ISP at the first installation.
2. Your ISP checks the 'Host Name'
Some ISPs take advantage of the 'host name' message in a DHCP packet such as @home to do the authentication. When first installing, the ISP's tech people configure the host name as the 'Computer Name' of the PC in the 'Networking' settings. When the ZyAIR G-2000P is attached to the cable modem to connect to the ISP, we should configure this host name in the ZyAIR G-2000P's system (menu 1).
|
Key Setting:
System Name=, The system name must be the same as the PC's computer name.
3. Your ISP checks 'User ID'
This authentication type is used by RoadRunner ISP, currently they use RR-TAS(Toshiba Authentication Service) and RR-Manager authentications. You must configure the correct 'Service Type', username and password for your ISP in menu 4.
|
Key settings:
18. How do I make VPN client x work through my ZyAIR
G-2000P ?The only VPN known for certain to work through the ZyAIR
G-2000P
is Microsoft PPTP, IPSec.
19. What is DDNS?
The Dynamic DNS service allows you to alias a dynamic IP address to a static hostname, allowing your computer to be more easily accessed from various locations on the Internet. To use the service, you must first apply an account from several free Web servers such as WWW.DYNDNS.ORG.
Without DDNS, we always tell the users to use the WAN IP of the ZyAIR G-2000P to reach our internal server. It is inconvenient for the users if this IP is dynamic. With DDNS supported by the ZyAIR G-2000P, you apply a DNS name (e.g., www.zyxel.com.tw) for your server (e.g., Web server) from a DDNS server. The outside users can always access the web server using the www.zyxel.com.tw regardless of the WAN IP of the ZyAIR G-2000P.
When the ISP assigns the ZyAIR G-2000P a new IP, the ZyAIR G-2000P updates this IP to DDNS server so that the server can update its IP-to-DNS entry. Once the IP-to-DNS table in the DDNS server is updated, the DNS name for your web server (i.e., www.zyxel.com.tw) is still usable.
20. When do I need DDNS service?
When you want your internal server to be accessed by using DNS name rather than using the dynamic IP address we can use the DDNS service. The DDNS server allows to alias a dynamic IP address to a static hostname. Whenever the ISP assigns you a new IP, the ZyAIR G-2000P sends this IP to the DDNS server for its updates.
21. What DDNS servers does the ZyAIR
G-2000P support?The DDNS servers the ZyAIR G-2000P supports currently is WWW.DYNDNS.ORG where you apply the DNS from and update the WAN IP to.
Some DDNS servers support the wildcard feature which allows the hostname, *.yourhost.dyndns.org, to be aliased to the same IP address as yourhost.dyndns.org. This feature is useful when there are multiple servers inside and you want users to be able to use things such as www.yourhost.dyndns.org and still reach your hostname.
G-2000P support DDNS wildcard?Yes, the ZyAIR G-2000P supports DDNS wildcard that WWW.DynDNS.ORG supports. When using wildcard, you simply enter yourhost.dyndns.org in the Host field in Menu 1.1.
24. Can the ZyAIR G-2000P's SUA handle IPSec packets sent by the IPSec gateway?Yes, the ZyAIR G-2000P's SUA can handle IPSec ESP Tunneling mode. We know when packets go through SUA, SUA will change the source IP address and source port for the host. To pass IPSec packets, SUA must understand the ESP packet with protocol number 50, replace the source IP address of the IPSec gateway to the router's WAN IP address. However, SUA should not change the source port of the UDP packets which are used for key managements. Because the remote gateway checks this source port during connections, the port thus is not allowed to be changed.
25. How do I setup my G-2000P for routing IPSec packets over SUA? For outgoing IPSec tunnels, no extra setting is required. For forwarding the inbound IPSec ESP tunnel, A 'Default' server set in menu 15 is required. It is because SUA makes your LAN appear as a single machine to the outside world. LAN users are invisible to outside users. So, to make an internal server for outside access, we must specify the service port and the LAN IP of this server in Menu 15. Thus SUA is able to forward the incoming packets to the requested service behind SUA and the outside users access the server using the ZyAIR G-2000P's WAN IP address. So, we have to configure the internal IPSec as a default server (unspecified service port) in menu 15 when it acts a server gateway.26. Which 802.1x authentication software client can ZyAIR
G-2000P work with?ZyAIR B2000 can work with the below test 802.1x authentication software.
1. For embedded MD5/CHAP authentication server
- Windows XP embedded 802.1x client (Before SP1 patch)
- Meetinghouse AEGIS client
- Funk Software Odyssey client.
2. For external TLS authentication server (Odyssey server).
- Windows XP embedded 802.1x client
- Funk Software Odyssey client
3. For external TTLS authentication server (Odyssey server)
- Funk Software Odyssey client
Note:
Windows XP only supports MD5/CHAP and TLS before SP1 patch, after upgrade SP1, XP support only PEAT authentication.
When using external server ZyAIR G-2000P only act as a pass-through thus no extra setting are required.
All contents copyright © 2004 ZyXEL Communications Corporation.