Home » ZyXEL Manuals » Network Storage Servers » ZyXEL NSA320S » Manual Viewer

ZyXEL NSA320S User Guide - Page 170

UPnP and Security, The NSA's Services and UPnP

Add to My Manuals
Save this manual to your list of manuals

Page 170 highlights

Chapter 8 Network For example, if the NSA's IP address was 192.168.1.33 when you applied the UPnP Port Mapping screen's settings and the NSA later gets a new IP address of 192.168.1.34 through DHCP, WAN access stops working because the Internet gateway still tries to forward traffic to IP address 192.168.1.33. Since you can no longer access the NSA from the WAN, you would have to access the NSA from the LAN and re-apply your UPnP Port Mapping screen settings to update the Internet gateway's UPnP port mappings. Figure 67 UPnP Using the Wrong IP Address 192.168.1.34 a.b.c.d 192.168.1.33 8.5.2 UPnP and Security UPnP's automated nature makes it easier to use than manually configuring firewall and NAT rules, but it is also less secure. Using UPnP may make your network more susceptible to snooping and hacking attacks. 8.5.3 The NSA's Services and UPnP This section introduces the NSA's services which an Internet gateway can use UPnP to allow access to from the Internet. CIFS (Windows File Sharing) Common Internet File System (CIFS) is a standard protocol supported by most operating systems in order to share files across the network. Using UPnP port mapping for CIFS allows users to connect from the Internet and use programs like Windows Explorer to access the NSA's shares to copy files from the NSA, delete files on the NSA, or upload files to the NSA from the Internet. If you configure UPnP port mapping to allow CIFS access from the WAN but cannot get it to work, you may also have to configure the Internet gateway to also allow NetBIOS traffic. See Section 6.3 on page 141 for more on CIFS. FTP File Transfer Protocol is a standard file transfer service used on the Internet. Using UPnP port mapping for FTP allows remote users to use FTP from the Internet to access the NSA's shares. A user with read and write access to a share can copy files from the share, delete files from the share, or upload files to the share. See Section 9.4 on page 177 for more on FTP. If you use UPnP to allow FTP access from the WAN, you may want to use a different WAN port number (instead of the default of port 21) to make it more secure. Remember to tell the remote users to use the custom port number when using FTP to access the NSA. 170 Media Server User's Guide

Section	Page
Media Server	1
Contents Overview	3
Table of Contents	5
User’s Guide	15
Getting to Know Your NSA	17
1.1 Overview	17
1.1.1 Hard Disks for 2-Bay Models	18
1.1.2 Hard Disks for 1-Bay Models	18
1.1.3 COPY/SYNC Button	19
1.1.4 RESET Button	19
NAS Starter Utility	21
2.1 Overview	21
2.2 Starting the NAS Starter Utility	21
2.3 NAS Seeker Screen	21
2.4 Main NAS Starter Utility Screen	23
2.4.1 Directory of the NAS	24
2.5 Import Files or Folders with zPilot	25
2.6 Network Drive	26
2.7 Manage the Device	27
2.8 Configure System Settings	27
Web Configurator Basics	29
3.1 Overview	29
3.2 Accessing the NSA Web Configurator	29
3.2.1 Access the NSA Via NAS Starter Utility	30
3.2.2 Web Browser Access	30
3.3 Login	31
3.4 Home Screens	32
3.4.1 Now Playing (Music)	35
3.4.2 Exif and Google Maps (Photos)	35
3.4.3 Slideshow (Photos)	36
3.4.4 Favorite	37
3.4.5 File Browser	37
3.4.6 Share and Folder Names	41
3.4.7 Application Zone	42
3.4.8 System Settings	43
3.5 Administration Screens	44
3.5.1 Global Administration Icons	45
3.5.2 Navigation Panel	46
3.5.3 Main Window	48
3.5.4 Status Messages	48
3.5.5 Common Screen Icons	48
3.5.6 Session Example (Windows)	49
Tutorials	51
4.1 Overview	51
4.2 Windows 7 Network	51
4.2.1 If the NSA Icon Does Not Display	53
4.2.2 NSA Icon Right-click Options	54
4.3 Windows 7 Network Map	55
4.4 Playing Media Files in Windows 7	58
4.5 Windows 7 Devices and Printers	58
4.5.1 Windows 7 Desktop Shortcut	60
4.6 Creating a Volume in a 2-Bay NSA	61
4.6.1 Creating a RAID 1 Volume	61
4.6.2 Migrate Button	62
4.6.3 Create an Internal Volume Button	62
4.7 Creating a Volume in a 1-Bay NSA	63
4.7.1 Creating a RAID 1 Volume	64
4.7.2 Migrate Button	64
4.7.3 Create a SATA Volume Button	65
4.7.4 Creating a PC Compatible Volume	67
4.8 Deleting a Volume	70
4.9 File Sharing Tutorials	71
4.9.1 Creating a User Account	71
4.9.2 Creating a Share	73
4.9.3 Creating a Group	75
4.9.4 Accessing a Share From Windows Explorer	76
4.9.5 Accessing a Share Using FTP	78
4.9.6 Accessing a Share Through the Web Configurator	79
4.10 Download Service Tutorial	80
4.10.1 Copying/Pasting a Download Link	80
4.10.2 Installing the Link Capture Browser Plugin	83
4.10.3 Using the Link Capture Browser Plugin	88
4.10.4 Configuring the Download Service Preferences	90
4.10.5 Using Download Service Notification	92
4.11 Broadcatching Tutorial	95
4.12 Printer Server Tutorial	99
4.13 Copy and Flickr Auto Upload Tutorial	101
4.14 FTP Uploadr Tutorial	102
4.15 Web Configurator’s Security Sessions	105
4.15.1 Customizing the NSA’s Certificate	106
4.15.2 Downloading and Installing Customized Certificate	107
4.15.3 Turn on the NSA’s Web Security	111
4.16 Using FTPES to Connect to the NSA	118
4.17 Using a Mac to Access the NSA	119
4.17.1 Finder	120
4.17.2 Go Menu	121
4.18 How to Use the BackupPlanner	122
4.18.1 Creating an Archive Backup	122
4.18.2 Creating a Synchronization Backup	125
4.18.3 Restoring Archived Files by Backup Job	128
4.18.4 Restoring by Backup Files	131
Technical Reference	135
Status Screen	137
5.1 Overview	137
5.2 The Status Screen	137
System Setting	141
6.1 Overview	141
6.2 What You Can Do	141
6.3 What You Need to Know	141
6.4 The Firmware Upgrade Screen	143
6.5 Package Management Screen	143
6.5.1 Displaying the Package Information	146
6.6 The Server Name Screen	147
6.7 The Date/Time Screen	147
Storage	151
7.1 Overview	151
7.1.1 What You Need to Know About Storage	151
7.2 The Storage Screen	152
7.2.1 Disk Replacement Restrictions	152
7.2.2 Storage Screen	153
7.2.3 Volume Status	154
7.3 Creating an Internal (SATA) Volume	155
7.4 Editing a Volume	157
7.4.1 Scanning a Volume	158
7.5 Creating an External (USB) Volume	158
7.5.1 External Disks	159
7.6 Storage Technical Reference	160
7.6.1 Volumes and RAID	160
7.6.2 Choosing a Storage Method for a Volume	160
7.6.3 Storage Methods	161
Network	165
8.1 Overview	165
8.2 What You Can Do	165
8.3 What You Need to Know	165
8.4 The TCP/IP Screen	166
8.5 UPnP Port Mapping Screen	169
8.5.1 UPnP and the NSA’s IP Address	169
8.5.2 UPnP and Security	170
8.5.3 The NSA’s Services and UPnP	170
8.5.4 Configuring UPnP Port Mapping	171
8.6 The PPPoE Screen	172
8.7 Telnet Screen	173
Applications	175
9.1 Overview	175
9.2 What You Can Do	175
9.3 What You Need to Know	175
9.4 FTP Server	177
9.5 The Media Server Screens	178
9.5.1 The Media Server Share Publish Screen	179
9.5.2 The Media Server SqueezeCenter Screen	180
9.6 The iTunes Server Screen	180
9.7 The Download Service Screen	181
9.7.1 Adding a Download Task	184
9.7.2 Configuring General Download Settings	186
9.7.3 Configuring the P2P Download Settings	188
9.7.4 Edit IP Filter	190
9.7.5 Selecting Files to Download	191
9.7.6 Displaying the Task Information	192
9.8 The Web Publishing Screen	193
9.9 The Broadcatching Screen	194
9.9.1 Adding a Broadcatching Channel	196
9.9.2 Editing a Broadcatching Channel	199
9.10 The Print Server Screen	200
9.10.1 Print Server Rename	201
9.11 The Copy/Sync Button Screen	202
9.12 Technical Reference	203
9.12.1 Sharing Media Files on Your Network	203
9.12.2 Download Service	204
9.12.3 Link Capture Browser Plugin	205
9.12.4 Download Service Notification	205
9.12.5 P2P Download Security	206
9.12.6 Web Publishing Example	208
9.12.7 Web Publishing	209
9.12.8 Channel Guides for Broadcatching	210
9.12.9 Printer Sharing	211
9.12.10 Copying Files	211
9.12.11 Synchronizing Files	212
Packages	215
10.1 Overview	215
10.2 What You Can Do	215
10.3 SMART Screen	215
10.3.1 SMART Brief Summary	216
10.3.2 SMART Full Summary	217
10.4 DyDNS Screen	219
10.5 NFS Screen	220
10.5.1 Add/Edit NFS Share	221
10.5.2 NFS Session	222
10.6 Syslog Server Screen	223
10.7 TFTP Server Screen	225
10.8 eMule Screens	226
10.8.1 eMule Server Screen	226
10.8.2 Add Server	228
10.8.3 Edit Server	228
10.8.4 My Info	229
10.8.5 eMule Task Screen	230
10.8.6 Add Task	232
10.8.7 Preferences	233
10.8.8 Edit IP Filter	236
10.8.9 Share Browsing	236
10.8.10 Task Info	238
10.8.11 eMule Search Screen	239
10.9 pyLoad Screen	240
10.10 Polkast Setup	241
10.11 Protect Screens	245
10.12 Backup Screens	246
10.12.1 Backup: Step 1	247
10.12.2 Backup: Step 2	248
10.12.3 Backup: Step 3	250
10.12.4 Backup: Step 4	251
10.12.5 Edit Job Screen	252
10.12.6 Edit Job: Step 1	253
10.12.7 Edit Job: Step 2	254
10.12.8 Restore Archive Screen	255
10.12.9 Restore Archive: Step 1	255
10.12.10 Restore Archive: Step 2	256
10.12.11 Restore Archive: Step 3	257
10.13 Restore Screen	257
10.13.1 Restore: Step 1	258
10.13.2 Restore: Step 2	259
10.13.3 Restore: Step 3	260
10.13.4 Restore: Step 4	261
10.14 Technical Reference	261
10.14.1 S.M.A.R.T Attributes	262
Auto Upload	265
11.1 Overview	265
11.2 What You Can Do	265
11.3 What You Need to Know	265
11.4 The Flickr/YouTube Screen	265
11.4.1 Configuring the Flickr Settings	266
11.4.2 Configuring the YouTube Settings	271
11.5 The FTP Uploadr Screen	274
11.5.1 Adding or Editing an FTP Server Entry	275
11.5.2 The FTP Uploadr Preferences Screen	276
Dropbox	279
12.1 Overview	279
12.2 Dropbox Screen	279
12.3 How to Use Dropbox with the NSA	281
Using Time Machine with the NSA	283
13.1 Overview	283
13.2 Time Machine Screen	283
13.3 Using Time Machine	283
Users	287
14.1 Overview	287
14.2 What You Can Do	287
14.3 The Users Screen	287
14.3.1 User Icons	289
14.3.2 Adding or Editing an Account	289
14.3.3 Usernames	291
14.4 Displaying User Info	292
Groups	293
15.1 Overview	293
15.2 What You Can Do	293
15.3 The Groups Screen	293
15.3.1 Adding or Editing a Group	294
15.3.2 Group Names	295
Shares	297
16.1 Overview	297
16.2 What You Can Do	297
16.3 The Shares Screen	297
16.3.1 Adding or Editing Share	299
16.3.2 Configuring Advanced Share Access	300
16.3.3 Public and ANONYMOUS Share Access Rights	301
16.4 The Recycle Bin Configuration Screen	301
16.4.1 Recycle Bins	301
16.4.2 Configuring Recycle Bins	302
16.5 The Share Browser Screen	302
16.5.1 Moving or Copying Files	304
Maintenance Screens	305
17.1 Overview	305
17.2 What You Can Do	305
17.3 The Power Screen	305
17.3.1 Notes on NSA-310	305
17.3.2 Editing the Power Control Schedule Screen	308
17.4 The Log Screen	309
17.4.1 Report Config Screen	310
17.4.2 Email Setting	311
17.4.3 Report Setting	312
17.4.4 Syslog Server Setting	312
17.5 The Configuration Screen	313
17.6 SSL Certification	314
17.6.1 Modifying or Creating a Certificate	315
17.7 The Shutdown Screen	316
17.8 Technical Reference	317
17.8.1 Log Classes	317
17.8.2 Log Severity Levels	318
17.8.3 Log Messages	318
Protecting Your Data	325
18.1 Overview	325
18.2 Protection Methods	325
18.3 Configuration File Backup and Restoration	325
Troubleshooting	327
19.1 Troubleshooting Overview	327
19.2 Power, Hardware, Connections, and LEDs	327
19.3 NAS Starter Utility	329
19.4 NSA Login and Access	330
19.4.1 Enabling Scripting of Safe ActiveX Controls	332
19.5 I Cannot Access The NSA	334
19.6 Users Cannot Access the NSA	334
19.7 External USB Drives	336
19.8 Firmware	336
19.9 File Transfer	336
19.10 Networking	337
19.11 Some Features’ Screens Do Not Display	337
19.12 Media Server Functions	338
19.13 Download Service and Broadcatching Functions	340
19.14 Web Publishing	341
19.15 Auto Upload	342
19.16 Package Management	342
19.17 Backups	343
Product Specifications	345
20.1 LEDs	345
20.2 Supported Media Server Content Formats	346
20.3 Supported iTunes Server Content Formats	346
Legal Information	347

Match case Limit results 1 per page

Chapter 8 Network

Media Server User’s Guide

170

For example, if the NSA’s IP address was 192.168.1.33 when you applied the

UPnP Port Mapping

screen’s settings and the NSA later gets a new IP address of 192.168.1.34 through DHCP, WAN

access stops working because the Internet gateway still tries to forward traffic to IP address

192.168.1.33. Since you can no longer access the NSA from the WAN, you would have to access

the NSA from the LAN and re-apply your

UPnP Port Mapping

screen settings to update the

Internet gateway’s UPnP port mappings.

Figure 67

UPnP Using the Wrong IP Address

8.5.2

UPnP and Security

UPnP’s automated nature makes it easier to use than manually configuring firewall and NAT rules,

but it is also less secure. Using UPnP may make your network more susceptible to snooping and

hacking attacks.

8.5.3

The NSA’s Services and UPnP

This section introduces the NSA’s services which an Internet gateway can use UPnP to allow access

to from the Internet.

CIFS (Windows File Sharing)

Common Internet File System (CIFS) is a standard protocol supported by most operating systems

in order to share files across the network. Using UPnP port mapping for CIFS allows users to

connect from the Internet and use programs like Windows Explorer to access the NSA’s shares to

copy files from the NSA, delete files on the NSA, or upload files to the NSA from the Internet.

If you configure UPnP port mapping to allow CIFS access from the WAN but cannot get it to work,

you may also have to configure the Internet gateway to also allow NetBIOS traffic. See

Section 6.3

on page 141

for more on CIFS.

FTP

File Transfer Protocol is a standard file transfer service used on the Internet. Using UPnP port

mapping for FTP allows remote users to use FTP from the Internet to access the NSA’s shares. A

user with read and write access to a share can copy files from the share, delete files from the share,

or upload files to the share. See

Section 9.4 on page 177

for more on FTP. If you use UPnP to allow

FTP access from the WAN, you may want to use a different WAN port number (instead of the default

of port 21) to make it more secure. Remember to tell the remote users to use the custom port

number when using FTP to access the NSA.

192.168.1.34

a.b.c.d

192.168.1.33