® A Division of Cisco Systems, Inc. 2.4 GHz Wireless-G 802.11g ADSL Gateway WIRELESS User Guide Model No. WAG54G Wireless-G ADSL Gateway Copyright and Trademarks Specifications are subject to change without notice. Linksys is a registered trademark or trademark of Cisco Systems, Inc. and/or its affiliates in the U.S. and certain other countries. Copyright © 2003 Cisco Systems, Inc. All rights reserved. Other brands and product names are trademarks or registered trademarks of their respective holders. How to Use this Guide Your Guide to the Wireless-G ADSL Gateway has been designed to make understanding networking with the Gateway easier than ever. Look for the following items when reading this User Guide: This checkmark means there is a Note of interest and is something you should pay special attention to while using the Gateway. This exclamation point means there is a Caution or Warning and is something that could damage your property or the Gateway. This question mark provides you with a reminder about something you might need to do while using the Gateway. In addition to these symbols, there are definitions for technical terms that are presented like this: word: definition. Also, each figure (diagram, screenshot, or other image) is provided with a figure number and description, like this: Figure 0-1: Sample Figure Description Figure numbers and descriptions can also be found in the "List of Figures" section in the "Table of Contents". WAG54G-UG-31010NC BW Wireless-G ADSL Gateway Table of Contents Chapter 1: Introduction Welcome What's in this Guide? 1 1 2 Chapter 2: Planning your Network The Gateway's Functions IP Addresses Why do I need a VPN? What is a VPN? 4 4 4 5 6 Chapter 3: Getting to Know the Wireless-G ADSL Gateway The Back Panel The Front Panel 8 8 9 Chapter 4: Connecting the Wireless-G Broadband Gateway Overview Wired Connection to a Computer Wireless Connection to a Computer 10 10 11 11 Chapter 5: Configuring the Gateway Overview How to Access the Web-based Utility The Setup Tab The Wireless Tab The Security Tab The Access Restrictions Tab The Applications and Gaming Tab The Administration Tab The Status Tab 13 13 15 15 23 26 31 33 36 41 Appendix A: Troubleshooting Common Problems and Solutions Frequently Asked Questions 45 45 53 Appendix B: Wireless Security Appendix C: Configuring IPSec between a Windows 2000 or XP Computer and the Gateway Introduction 59 62 62 Wireless-G ADSL Gateway Environment How to Establish a Secure IPSec Tunnel Windows 98 or Me Instructions Windows 2000 or XP Instructions 62 63 73 74 Appendix D: Finding the MAC Address and IP Address for Your Ethernet Adapter 73 Appendix E: Upgrading Firmware Appendix F: Glossary Appendix G: Specifications Appendix H: Regulatory Information Appendix I: Warranty Information Appendix J: Contact Information 75 76 82 84 87 88 Wireless-G ADSL Gateway List of Figures Figure 2-1: Network Figure 2-2: VPN Gateway-to-VPN Gateway Figure 2-3: Computer-to-VPN Gateway Figure 3-1: Back Panel Figure 3-2: Front Panel Figure 4-1: LAN Connection Figure 4-2: ADSL Connection Figure 4-3: Power Connection Figure 5-1: Password Screen Figure 5-2: Basic Setup Tab Figure 5-3: Dynamic IP Figure 5-4: Static IP Figure 5-5: RFC 1483 Routed Figure 5-6: RFC 2516 PPPoE Figure 5-7: RFC 2364 PPoA Figure 5-8: Bridged Mode Only Figure 5-9: Optional Settings Figure 5-10: DynDNS.org Figure 5-11: Advanced Routing Figure 5-12: Routing Table Figure 5-13: 64-Bit WEP Encryption Figure 5-14: 128-Bit WEP Encryption Figure 5-15: Wireless Network Access Figure 5-16: Networked Computers Figure 5-17: Advanced Wireless Settings Figure 5-18: Firewall Figure 5-19: VPN Figure 5-20: Manual Key Management Figure 5-21: Advanced VPN Tunnel Setup Figure 5-22: Access Restriction 4 7 8 9 10 12 12 12 16 16 17 17 18 18 19 19 20 21 22 23 24 24 25 25 26 27 28 29 30 32 Wireless-G ADSL Gateway Figure 5-23: Internet Policy Summary Figure 5-24: List of PCs Figure 5-25: Port Services Figure 5-26: Single Port Forwarding Figure 5-27: Port Range Forwarding Figure 5-28: Port Triggering Figure 5-29: DMZ Figure 5-30: Management Figure 5-31: Reporting Figure 5-32: Ping Test Figure 5-33: Factory Defaults Figure 5-34: Firmware Upgrade Figure 5-35: Status Figure 5-36: Local Network Figure 5-37: DHCP Clients Table Figure 5-38: Wireless Figure 5-39: DSL Connection Figure C-1: Password Screen Figure C-2: Setup Tab Figure C-3: IP Filter List Tab Figure C-4: IP Filter List Figure C-5: Filters Properties Figure C-6: New Rule Properties Figure C-7: IP Filter List Figure C-8: Filters Properties Figure C-9: New Rule Properties Figure C-10: IP Filter List Tab Figure C-11: Filter Action Tab Figure C-12: Security Methods Tab Figure C-13: Authentication Methods Figure C-14: Preshared Key Figure C-15: New Preshared Key Figure C-16: Tunnel Setting Tab 32 33 33 34 35 35 36 37 39 40 40 41 42 43 43 44 45 64 64 64 65 65 65 66 66 66 67 67 67 68 68 68 69 Wireless-G ADSL Gateway Figure C-17: Connection Type Tab Figure C-18: Properties Screen Figure C-19: IP Filter List Tab Figure C-20: Filter Action Tab Figure C-21: Authentication Methods Tab Figure C-22: Preshared Key Figure C-23: New Preshared Key Figure C-24: Tunnel Seting Tab Figure C-25: Connection Type Figure C-26: Rules Figure C-27: Local Computer Figure D-1: IP Configuration Screen Figure D-2: MAC Address/Adapter Address Figure D-3: MAC Address/Physical Address Figure D-4: MAC Address Filter Figure D-5: MAC Address Clone Figure F-1: Upgrade Firmware 69 69 70 70 70 71 71 71 72 72 72 74 74 75 75 75 77 Wireless-G ADSL Gateway Chapter 1: Introduction Welcome The Linksys Wireless-G ADSL Gateway is the all-in-one solution for Internet connectivity in your home. The ADSL Modem function gives you a blazing fast connection to the Internet, far faster than a dial-up, and without tying up your phone line. Connect your computers to the Gateway via the built-in 4-port 10/100 Ethernet Switch to jump start your home network. You can share files, printers, hard drive space and other resources, or play head-to-head computer games. Attach four computers directly, or connect more hubs and switches to create as big a network as you need. The built-in Wireless-G (802.11g) Access Point allows up to 32 wireless devices to connect to your network at a blazing 54Mbps, without running cables through the house. It's also compatible with Wireless-B (802.11b) devices, at 11Mbps. The Gateway ties it all together and lets your whole network share that high-speed Internet connection. To protect your data and privacy, the Wireless-G ADSL Gateway features an advanced firewall to keep Internet intruders and attackers out. Wireless transmissions can be protected by powerful data encryption. Safeguard your family with Parental Control features like Internet Access Time Limits and Key Word Blocking. Configuration is a snap with any web browser. With the Linksys Wireless-G ADSL Gateway at the heart of your home network, you're connected to the future. Chapter 1: Introduction Welcome 1 Wireless-G ADSL Gateway What's in this Guide? This user guide covers the steps for setting up and using the Wireless-G ADSL Gateway. · Chapter 1: Introduction This chapter describes the Wireless-G ADSL Gateway Wireless-G ADSL Gateway applications and this User Guide. · Chapter 2: Planning your Network This chapter describes the basics of networking. · Chapter 3: Getting to Know the Wireless-G ADSL Gateway This chapter describes the physical features of the Gateway. · Chapter 4: Connecting the Wireless-G ADSL Gateway This chapter instructs you on how to connect the Gateway to your network. · Chapter 5: Configuring the Gateway This chapter explains how to use the Web-Based Utility to configure the settings on the Gateway. · Appendix A: Troubleshooting This appendix describes some problems and solutions, as well as frequently asked questions, regarding installation and use of the Wireless-G ADSL Gateway. · Appendix B: Wireless Security This appendix explains the risks of wireless networking and some solutions to reduce the risks. · Appendix C: Configuring IPSec between a Windows 2000 Computer and the Gateway This appendix instructs you on how to establish a secure IPSec tunnel using preshared keys to join a private network inside the VPN Gateway and a Windows 2000 or XP computer. · Appendix D: Upgrading Firmware This appendix instructs you on how to upgrade the firmware on your Gateway if you should need to do so. · Appendix E: Finding the MAC Address and IP Address for your Ethernet Adapter. This appendix describes how to find the MAC address for your computer's Ethenet adapter so you can use the MAC filtering and/or MAC address cloning feature of the Gateway. · Appendix F: Glossary This appendix gives a brief glossary of terms frequently used in networking. Chapter 1: Introduction What's in this Guide? 2 Wireless-G ADSL Gateway · Appendix G: Specifications This appendix provides the technical specifications for the Gateway. · Appendix H: Warranty Information This appendix supplies the warranty information for the Gateway. · Appendix I: Regulatory Information This appendix supplies the regulatory information regarding the Gateway. · Appendix J: Contact Information This appendix provides contact information for a variety of Linksys resources, including Technical Support. Chapter 1: Introduction What's in this Guide? 3 Wireless-G ADSL Gateway Chapter 2: Planning your Network The Gateway's Functions A Gateway is a network device that connects two networks together. In this instance, the Gateway connects your Local Area Network (LAN), or the group of computers in your home or office, to the Internet. The Gateway processes and regulates the data that travels between these two networks. The Gateway's NAT feature protects your network of computers so users on the public, Internet side cannot "see" your computers. This is how your network remains private. The Gateway protects your network by inspecting every packet coming in through the Internet port before delivery to the appropriate computer on your network. The Gateway inspects Internet port services like the web server, ftp server, or other Internet applications, and, if allowed, it will forward the packet to the appropriate computer on the LAN side. Remember that the Gateway's ports connect to two sides. The LAN ports connect to the LAN, and the ADSL port connects to the Internet. The LAN ports transmit data at 10/100Mbps. IP Addresses What's an IP Address? IP stands for Internet Protocol. Every device on an IP-based network, including computers, print servers, and Gateways, requires an IP address to identify its "location," or address, on the network. This applies to both the Internet and LAN connections. There are two ways of assigning an IP address to your network devices. You can assign static IP addresses or use the Gateway to assign IP addresses dynamically. Figure 2-1: Network LAN: the computers and networking products that make up your local network Static IP Addresses A static IP address is a fixed IP address that you assign manually to a computer or other device on the network. Since a static IP address remains valid until you disable it, static IP addressing ensures that the device assigned it will always have that same IP address until you change it. Static IP addresses must be unique and are commonly used with network devices such as server computers or print servers. NOTE: Since the Gateway is a device that connects two networks, it needs two IP addresses--one for the LAN, and one for the Internet. In this User Guide, you'll see references to the "Internet IP address" and the "LAN IP address." Since the Gateway uses NAT technology, the only IP address that can be seen from the Internet for your network is the Gateway's Internet IP address. However, even this Internet IP address can be blocked, so that the Gateway and network seem invisible to the Internet-- see the Block WAN Requests description under Security in "Chapter 5: Configuring the Gateway." 4 Chapter 2: Planning your Network The Gateway's Functions Wireless-G ADSL Gateway Since you use the Gateway to share your DSL Internet connection, contact your ISP to find out if they have assigned a static IP address to your account. If so, you will need that static IP address when configuring the Gateway. You can get that information from your ISP. Dynamic IP Addresses A dynamic IP address is automatically assigned to a device on the network, such as computers and print servers. These IP addresses are called "dynamic" because they are only temporarily assigned to the computer or device. After a certain time period, they expire and may change. If a computer logs onto the network (or the Internet) and its dynamic IP address has expired, the DHCP server will automatically assign it a new dynamic IP address. DHCP (Dynamic Host Configuration Protocol) Servers Computers and other network devices ...