TRENDnet TW100-BRV324 General Settings, Policy Name, Enable Policy, Allow NetBIOS, Transmission

Page 82
General Settings

Broadband VPN Gateway User Guide

General Settings

Policy Name

Enter a suitable name. This name is not supplied to the remote

 

VPN. It is used only to help you manage the policies.

 

 

Enable Policy

Enable or disable the policy as required. For each remote VPN,

 

only 1 policy can be enabled at any time.

 

 

Allow NetBIOS

Select the desired option if you require NetBIOS traffic to be

Transmission

transferred through the VPN tunnel. NetBIOS is used by Microsoft

 

(Windows) networking. This setting should not be enabled unless

 

necessary, because it increases traffic volume.

 

 

Bundle WAN Port

Select the desired WAN port as required.

 

 

Remote VPN

The Internet IP address of the remote VPN endpoint (Gateway or

 

client).

 

Dynamic IP. Select this if the Internet IP address is unknown.

 

In this case, only incoming connections are possible.

 

Fixed IP. Select this if the remote endpoint has a fixed Internet

 

IP address. If selected, enter the Internet IP address of the re-

 

mote endpoint.

 

Domain Name. Select this if the remote endpoint has a Do-

 

main Name associated with it. If selected, enter the Domain

 

Name of the remote endpoint.

 

 

Local IP Address

Any - no additional data is required. Any IP address is accept-

 

able.

 

For outgoing connections, this allows any PC on the LAN

 

to use the VPN tunnel.

 

For incoming connections, this allows any PC using the

 

remote endpoint to access any PC on your LAN.

 

Single address - enter an IP address in the "IP address" field.

 

Range address - enter the starting IP address in the "IP ad-

 

dress" field, and the finish IP address in the "Finish IP address"

 

field.

 

Subnet address - enter the desired IP address in the "IP

 

address" field, and the network mask in the "Subnet Mask"

 

field.

 

The remote VPN must have these IP addresses entered as it's

 

"Remote" addresses.

 

 

Remote IP Address

Single address - enter an IP address in the "IP address" field.

 

Range address - enter the starting IP address in the "IP ad-

 

dress" field, and the finish IP address in the "Finish IP address"

 

field.

 

Subnet address - enter the desired IP address in the "IP

 

address" field, and the network mask in the "Subnet Mask"

 

field.

 

The remote VPN should have these IP addresses entered as it's

 

"Local" addresses.

 

 

Authentication and Encryption

AH Authentication

AH (Authentication Header) specifies the authentication protocol for the VPN header, if used. (AH is often NOT used)

78

Page 81 Page 83
Image 82
Page 81 Page 83
Contents Page Page Table of Contents P/N 956YH10001 Copyright 2007. All Rights Reserved Document Version1.0Introduction Broadband VPN Gateway FeaturesInternet Access Features ChapterLAN Features Configuration & ManagementIPSec VPN Gateway Features Package ContentsSecurity Features Microsoft VPN Gateway SupportPhysical Details Front-mounted LEDsRear Panel Procedure InstallationRequirements 5. Check the LEDs The Power LED should be ONInstallation The WAN1 or WAN2 LED should be ONThis Chapter provides Setup details of the Broadband VPN Gateway SetupOverview To Do thisConfiguration Program PreparationFigure 5 Password Dialog If you cant connectHome Screen Navigation & Data InputStatic IP Settings WAN Port ConfigurationWAN Port Settings Data - WAN Port ScreenPPPoE Dial-up ButtonsPort Options Port Options ScreenData - Port Options Screen Also called Network Adapter Address or Physical Address. This is aPPPoE Connection Bind ServiceMTU Size Automatic Dial-upLAN Port Screen Data - LAN Port ScreenUsing another DHCP Server DHCPUsing the Broadband VPN Gateway s DHCP Server To Configure your PCs to use DHCPAdministration Load/Backup ScreenData - Load/Backup Screen Equilibrium Type has 2 optionsSetup TCP/IP Settings - Overview PC ConfigurationWindows Clients Using DHCP Checking TCP/IP Settings - Windows 9x/MEUsing Specify an IP Address Figure 13 Gateway Tab Win 95/98 Figure 14 DNS Tab Win 95/98Figure 15 Windows NT4.0 - TCP/IP Checking TCP/IP Settings - Windows NT4.0Figure 16 Windows NT4.0 - IP Address Specify an IP Address Obtain an IP address from a DHCP ServerFigure 17 - Windows NT4.0 - Add Gateway Figure 18 Windows NT4.0 - DNS 1. Select Control Panel - Network and Dial-up Connection Checking TCP/IP Settings - WindowsFigure 19 Network Configuration Win Figure 20 TCP/IP Properties WinUsing a fixed IP Address Use the following IP Address Figure 21 Network Configuration Windows XP Checking TCP/IP Settings - Windows XP1. Select Control Panel - Network Connection Figure 22 TCP/IP Properties Windows XP Checking TCP/IP Settings - Windows Vista PC Configuration 1. Select Start Menu - Settings - Control Panel - Internet Options Internet AccessAccessing AOL 2. Select Set up or change your Internet ConnectionOther Unix Systems Macintosh ClientsLinux Clients Fixed IP AddressOperation Operation and StatusStatus Screen Figure 23 General Status Screen Operation and StatusKernel WAN1/2Firewall SystemData - Port Status Screen Port StatusPort Status Data - Event Log Screen Event LogEvent Log Data - URL Log URL LogInternet Data - System Log Screen System LogSystem Log The following advanced features are provided Address List PC Database Internet FeaturesURL Filter Dynamic DNS Static Routing QoS Data - Address List Screen Address ListAddress List PC Database PC Database ScreenData - PC Database Screen dress, IP Address and CertifyData - URL Filter Screen URL FilterFilter Strings To add an entry to the list, enter it here, and click the Add button Dynamic DNS Dynamic DNS ScreenData - Dynamic DNS Screen Web Site ButtonStatic Routing Screen Static RoutingOverview Open Routing and Remote AccessData - Static Routing Screen Static RoutingLocal Router Configuring Other Routers on your LANOther Routers on the Local LAN For Router Bs Default Route Static Routing - ExampleFor Router As Default Route For the Broadband VPN Gateway s Routing Table192.168.1.80 Broadband VPN Gateway s local routerData - QoS Screen Based on QoS rules set below Rules Security ConfigurationRules Screen Data - Rules Screen Outbound/Inbound ConnectionDefine Firewall Rule Inbound/Outbound Data - Define Firewall Rule ScreenAdvanced Rule Log SettingDest IP Port Transfer ToSchedules Schedules ScreenData - Log Screen Firewall -- LogTime Zone Second Server Available Services ServicesData - Services Screen Add New Serviceif not required Data - Security Screen SecurityMAX 3D Engine Options Maximum Con Figure 41 Multi-DMZ E-Mail Alert E-MailData - E-Mail Screen E-Mail LogSelect the desired option for sending the log by E-mail IPSec VPN IPSecPolicies address VPN ConfigurationVPN Endpoint Traffic SelectorVPN Pass-through Common VPN SituationsClient PC to VPN Gateway Connecting 2 LANs via VPN Figure 45 Connecting 2 VPN GatewaysVPN List VPN ConfigurationPolicies Screen OperationsCopy Enable/DisableCheck Log Adding a New Policy Figure 47 VPN Wizard - Start Screen Allow NetBIOS General SettingsEnable Policy Authentication and EncryptionESP Encryption Authentication AlgorithmESP Authentication Manual Key EncryptionThis is required if either ESP Encryption or ESP Authentica tion is enabledESP SPI IKE Internet Key ExchangeExchange Mode AuthenticationEncryption IKE SA AggressiveSetting Example 1 Connecting 2 Broadband VPN GatewaysVPN Examples LAN A GateIPSec SA Parameters Broadband VPN Gateway Configuration Example 2 Windows 2000/XP Client to LANValue Figure 50 Windows 2000/XP - Local Security Settings Windows Client ConfigurationDeselect Activate the default response rule. Click Next Figure 51 Windows 2000/XP - Policy Properties Figure 52 IP Filter List8. Enter the Source IP address and the Destination IP address Figure 53 Filter Properties AddressingFigure 54 New Rule Properties IP Filter List Figure 56 Require Security Properties Figure 55 New Rule Properties Filter Action12. Select Negotiate security this selects IKE, then click Add Figure 57 Modify Security Method VPN SettingWindows Setting Figure 58 Require Security PropertiesFigure 59 Tunnel Setting Figure 60 Authentication MethodFigure 61 Windows 2000/XP Client to Broadband VPN Gateway Figure 62 Windows 2000/XP Client to Broadband VPN Gateway22. Click OK to save your changes, then Close Figure 63 Filter Properties AddressingFigure 64 Filter List Figure 65 Filter Action Figure 66 Security MethodsFigure 68 Tunnel Setting Figure 67 Modify Security MethodFigure 69 Authentication Method Figure 70 DUT to Win2K Properties32. Click the Advanced button to see the screen below Figure 72 Key Exchange SettingsFigure 71 Properties - General Tab 33. Click the Methods button to see the screen belowFigure 75 Windows 2000/XP Client to Broadband VPN Gateway Example 3 Windows 2000 Server to VPN GatewayFigure 74 IKE Security Algorithms Figure 76 Broadband VPN Gateway to Windows 2000 ServerFor a single client, this is the same as the Gateway address Remote IP addressesSubnet address 11.5.0.0 Address range used on the remote LAN Windows 2000 Server Configuration Figure 77 Windows 2000 Server - AddressingRequesting a Trusted Certificate CertificatesTrusted Certificates Trusted CertificatesPrivate Certificate Private CertificateData - Private Certificate Screen Private Certificate RequestsNew Request Requesting a Private CertificateUpload Button ButtonSelect the desired option. RSA is recommended To add a New CRL Data - VPN Status Screen VPN StatusVPN Status Server Setup Microsoft VPNPPTP Service UserData - VPN Adapter Screen Properties Data - User ScreenExisting Users ButtonData - Status Log Screen Status Log ScreenService Log Status Log1. Click Start - Settings - Dial-up Networking Windows Client SetupWindows 98/ME 2. Select Make New ConnectionTo establish a connection 2. Select Start - Settings - Dial-up NetworkingWindows ME VPN Dialing Properties Figure 92 Windows 2000 Network Connection WindowsFigure 93 Windows 2000 Public Network Figure 94 Windows 2000 VPN Host Figure 95 Windows 2000 Connection AvailabilityFigure 96 Windows 2000 Finish Wizard Figure 97 Windows XP Network Connection Type Windows XPFigure 98 Windows XP Network Connection Figure 100 Windows XP Public Network Figure 99 Windows XP Connection NameFigure 101 Windows XP VPN Server Figure 102 Windows XP Connection Availability Other Features & Settings Ping DiagnosticsData - Diagnostics Screen DNS LookupSearch Button Password Password ScreenData - Account Management Screen Settings Web ManagementData - Web Management Screen To connect from a remote PC via the Internet HTTPS//123.123.123.1238080To perform the Firmware Upgrade Firmware UpgradeData - Firmware Upgrade Screen Firmware UpgradeBackup/Restore Data - Backup/Restore ScreenDefault Configu- ration This will delete ALL of the existing settingsInternet Access TroubleshootingGeneral Problems Appendix AIt is a security risk, since the firewall is disabled FCC Statement Appendix B SpecificationsBroadband VPN Gateway FCC Radiation Exposure StatementCE Marking Warning CE StandardsAppendix B - Specifications Broadband VPN Gateway User Guide
Related manuals
Manual 8 pages 5.73 Kb

TW100-BRV324 specifications

The TRENDnet TW100-BRV324 is a versatile broadband router designed to provide small to medium-sized businesses with reliable networking capabilities. One of its key features is its built-in firewall security, which ensures robust protection against unauthorized access and threats from the internet. This appliance uses Stateful Packet Inspection (SPI), providing a comprehensive barrier against a variety of cyber threats.

Equipped with a DHCP server, the TW100-BRV324 simplifies IP address assignment, allowing administrators to manage network resources efficiently. The device supports both DHCP and static IP configurations, making it flexible for various network setups. Additionally, it offers VPN pass-through capabilities, allowing secure remote access for users needing to connect to the corporate network from outside.

The TW100-BRV324 is noted for its impressive NAT (Network Address Translation) capabilities, which enable multiple devices on a local network to access the internet through a single public IP address. This feature is particularly beneficial in saving costs related to IP addresses while enhancing network management. Furthermore, it boasts an integrated 4-port switch, facilitating wired connections for several devices in a local area network (LAN).

In terms of connectivity, the router supports 10/100 Mbps Ethernet, providing sufficient bandwidth for most small business applications. The device is also easy to set up, thanks to its user-friendly web-based interface, which guides users through the configuration process. This simplicity makes it suitable for individuals with varying levels of networking expertise.

The TW100-BRV324 supports multiple connection types, including DSL and cable internet, ensuring compatibility with various ISPs. Additionally, it embeds Quality of Service (QoS) features, allowing network administrators to prioritize traffic. This is crucial for ensuring that bandwidth-intensive applications, such as video conferencing and VoIP, receive the necessary resources for optimal performance.

In summary, the TRENDnet TW100-BRV324 is a robust and feature-rich router well-suited for small to medium-sized businesses. With its combination of security features, flexible configurations, and user-friendly management tools, it offers a powerful solution for those seeking reliable network performance without the need for extensive technical knowledge.
Top Page Image Contents