Warning: this may not be very helpful. Yes, you can login to a VMG1312-B10A as supervisor, go to the unix shell, and ping eg. 8.8.8.8. At least, you can in my setup, which is a "two-wire" situation. You can even, at least temporarily, setup name resolution, so you can ping bbs.co.uk, or whatever. If you get in as supervisor, get into sh, and look at what the symlink /etc/resolv.conf points to, and setup it target to something appropriate (in my case 192.168.1.254, my router, running dsnmasq), you can use DNS names to wget or curl something interesting to you. This can be convenient, or at least amusing, but I have not found it useful. The DNS will disappear after a few hours (I don't know why), and the stuff you download, for example, in the hope of eg setting up ssh keys for login won't work (but, please, disabuse me).
The only way I have found to ssh into the VMG1312-B10A is by using the rather horrifying "ssh -o KexAlgorithms=+diffie-hellman-group1-sha1 -o ciphers=+3des-cbc supervisor@xxx.xxx.xxx.xxx" (I got this from the AAISP website). The only benefit of doing so, that I know, is that you can get into a faintly unix-like environment, that is half-way understandable.
As for NTP, somewhere in these forums is a post that explains how to use the Zyxel GUI to set NTP using a ip4 address for an NTP server so that the modem knows roughly what time it is.
There may be some clever way to mitigate some of these shortcomings. I don't know. It's interesting to poke around, see what's running, ports open, etc, but in my opinion, nothing of genuine practical use can be set up.
Sorry to be so vague (and forgetful).
If it is any help, on my B10A,
~ # route
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
192.168.2.0 * 255.255.255.0 U 0 0 0 br1
192.168.1.0 * 255.255.255.0 U 0 0 0 br0
default 192.168.1.254 0.0.0.0 UG 0 0 0 br0
~ #
Hank