TRENDnet TW100-BRV324 manual Modify Security Method, Require Security Properties, VPN Setting

Page 93
Figure 57: Modify Security Method

Microsoft VPN

Figure 57: Modify Security Method

13.On the resulting screen (above), select High [ESP] then click "OK" to save your changes and return to the Require Security Properties screen.

0

Figure 58: Require Security Properties

14. Ensure the following settings are correct, then click "OK" to return to the Filter Action tab of the Edit Rule Properties screen.

VPN Setting

Windows Setting

 

 

IKE enabled

Negotiate security

 

 

AH disabled

AH Integrity: <None>

 

 

ESP encryption: Enable/DES

ESP Confidentially: DES

 

 

ESP authentication: Enable/MD5

ESP Integrity: MD5

 

 

15.Click the Tunnel Setting tab, then select The tunnel endpoint is specified by this IP address. Enter the WAN (Internet) IP address of the Broadband VPN Gateway, as shown below.

89

Image 93
Contents Page Page Table of Contents Document Version1.0 P/N 956YH10001 Copyright 2007. All Rights ReservedInternet Access Features Broadband VPN Gateway FeaturesIntroduction ChapterConfiguration & Management LAN FeaturesSecurity Features Package ContentsIPSec VPN Gateway Features Microsoft VPN Gateway SupportFront-mounted LEDs Physical DetailsRear Panel Installation ProcedureRequirements Installation The Power LED should be ON5. Check the LEDs The WAN1 or WAN2 LED should be ONOverview SetupThis Chapter provides Setup details of the Broadband VPN Gateway To Do thisPreparation Configuration ProgramIf you cant connect Figure 5 Password DialogNavigation & Data Input Home ScreenWAN Port Settings WAN Port ConfigurationStatic IP Settings Data - WAN Port ScreenButtons PPPoE Dial-upData - Port Options Screen Port Options ScreenPort Options Also called Network Adapter Address or Physical Address. This is aMTU Size Bind ServicePPPoE Connection Automatic Dial-upData - LAN Port Screen LAN Port ScreenUsing the Broadband VPN Gateway s DHCP Server DHCPUsing another DHCP Server To Configure your PCs to use DHCPData - Load/Backup Screen Load/Backup ScreenAdministration Equilibrium Type has 2 optionsSetup PC Configuration TCP/IP Settings - OverviewWindows Clients Checking TCP/IP Settings - Windows 9x/ME Using DHCPUsing Specify an IP Address Figure 14 DNS Tab Win 95/98 Figure 13 Gateway Tab Win 95/98Checking TCP/IP Settings - Windows NT4.0 Figure 15 Windows NT4.0 - TCP/IPFigure 16 Windows NT4.0 - IP Address Obtain an IP address from a DHCP Server Specify an IP AddressFigure 17 - Windows NT4.0 - Add Gateway Figure 18 Windows NT4.0 - DNS Figure 19 Network Configuration Win Checking TCP/IP Settings - Windows1. Select Control Panel - Network and Dial-up Connection Figure 20 TCP/IP Properties WinUsing a fixed IP Address Use the following IP Address Checking TCP/IP Settings - Windows XP Figure 21 Network Configuration Windows XP1. Select Control Panel - Network Connection Figure 22 TCP/IP Properties Windows XP Checking TCP/IP Settings - Windows Vista PC Configuration Accessing AOL Internet Access1. Select Start Menu - Settings - Control Panel - Internet Options 2. Select Set up or change your Internet ConnectionLinux Clients Macintosh ClientsOther Unix Systems Fixed IP AddressOperation and Status OperationStatus Screen Operation and Status Figure 23 General Status ScreenFirewall WAN1/2Kernel SystemPort Status Data - Port Status ScreenPort Status Event Log Data - Event Log ScreenEvent Log URL Log Data - URL LogInternet System Log Data - System Log ScreenSystem Log Internet Features The following advanced features are provided Address List PC DatabaseURL Filter Dynamic DNS Static Routing QoS Address List Data - Address List ScreenAddress List PC Database Screen PC Databasedress, IP Address and Certify Data - PC Database ScreenURL Filter Data - URL Filter ScreenFilter Strings To add an entry to the list, enter it here, and click the Add button Dynamic DNS Screen Dynamic DNSWeb Site Button Data - Dynamic DNS ScreenOverview Static RoutingStatic Routing Screen Open Routing and Remote AccessStatic Routing Data - Static Routing ScreenConfiguring Other Routers on your LAN Local RouterOther Routers on the Local LAN For Router As Default Route Static Routing - ExampleFor Router Bs Default Route For the Broadband VPN Gateway s Routing Tablelocal router 192.168.1.80 Broadband VPN Gateway sData - QoS Screen Based on QoS rules set below Security Configuration RulesRules Screen Outbound/Inbound Connection Data - Rules ScreenData - Define Firewall Rule Screen Define Firewall Rule Inbound/OutboundDest IP Log SettingAdvanced Rule Port Transfer ToSchedules Screen SchedulesFirewall -- Log Data - Log ScreenTime Zone Second Server Data - Services Screen ServicesAvailable Services Add New Serviceif not required Security Data - Security ScreenMAX 3D Engine Options Maximum Con Figure 41 Multi-DMZ Data - E-Mail Screen E-MailE-Mail Alert E-Mail LogSelect the desired option for sending the log by E-mail VPN IPSec IPSecPolicies VPN Endpoint VPN Configurationaddress Traffic SelectorCommon VPN Situations VPN Pass-throughClient PC to VPN Gateway Figure 45 Connecting 2 VPN Gateways Connecting 2 LANs via VPNPolicies Screen VPN ConfigurationVPN List OperationsEnable/Disable CopyCheck Log Adding a New Policy Figure 47 VPN Wizard - Start Screen Enable Policy General SettingsAllow NetBIOS Authentication and EncryptionESP Authentication Authentication AlgorithmESP Encryption Manual Key EncryptionESP SPI tion is enabledThis is required if either ESP Encryption or ESP Authentica IKE Internet Key ExchangeEncryption AuthenticationExchange Mode IKE SA AggressiveVPN Examples Example 1 Connecting 2 Broadband VPN GatewaysSetting LAN A GateIPSec SA Parameters Example 2 Windows 2000/XP Client to LAN Broadband VPN Gateway ConfigurationValue Windows Client Configuration Figure 50 Windows 2000/XP - Local Security SettingsDeselect Activate the default response rule. Click Next Figure 52 IP Filter List Figure 51 Windows 2000/XP - Policy PropertiesFigure 53 Filter Properties Addressing 8. Enter the Source IP address and the Destination IP addressFigure 54 New Rule Properties IP Filter List Figure 55 New Rule Properties Filter Action Figure 56 Require Security Properties12. Select Negotiate security this selects IKE, then click Add Windows Setting VPN SettingFigure 57 Modify Security Method Figure 58 Require Security PropertiesFigure 60 Authentication Method Figure 59 Tunnel SettingFigure 62 Windows 2000/XP Client to Broadband VPN Gateway Figure 61 Windows 2000/XP Client to Broadband VPN GatewayFigure 63 Filter Properties Addressing 22. Click OK to save your changes, then CloseFigure 64 Filter List Figure 66 Security Methods Figure 65 Filter ActionFigure 67 Modify Security Method Figure 68 Tunnel SettingFigure 70 DUT to Win2K Properties Figure 69 Authentication MethodFigure 71 Properties - General Tab Figure 72 Key Exchange Settings32. Click the Advanced button to see the screen below 33. Click the Methods button to see the screen belowFigure 74 IKE Security Algorithms Example 3 Windows 2000 Server to VPN GatewayFigure 75 Windows 2000/XP Client to Broadband VPN Gateway Figure 76 Broadband VPN Gateway to Windows 2000 ServerRemote IP addresses For a single client, this is the same as the Gateway addressSubnet address 11.5.0.0 Address range used on the remote LAN Figure 77 Windows 2000 Server - Addressing Windows 2000 Server ConfigurationTrusted Certificates CertificatesRequesting a Trusted Certificate Trusted CertificatesData - Private Certificate Screen Private CertificatePrivate Certificate Private Certificate RequestsUpload Button Requesting a Private CertificateNew Request ButtonSelect the desired option. RSA is recommended To add a New CRL VPN Status Data - VPN Status ScreenVPN Status Microsoft VPN Server SetupUser PPTP ServiceData - VPN Adapter Screen Existing Users Data - User ScreenProperties ButtonService Log Status Log ScreenData - Status Log Screen Status LogWindows 98/ME Windows Client Setup1. Click Start - Settings - Dial-up Networking 2. Select Make New Connection2. Select Start - Settings - Dial-up Networking To establish a connectionWindows ME VPN Dialing Properties Windows Figure 92 Windows 2000 Network ConnectionFigure 93 Windows 2000 Public Network Figure 95 Windows 2000 Connection Availability Figure 94 Windows 2000 VPN HostFigure 96 Windows 2000 Finish Wizard Windows XP Figure 97 Windows XP Network Connection TypeFigure 98 Windows XP Network Connection Figure 99 Windows XP Connection Name Figure 100 Windows XP Public NetworkFigure 101 Windows XP VPN Server Figure 102 Windows XP Connection Availability Other Features & Settings Data - Diagnostics Screen DiagnosticsPing DNS LookupSearch Button Password Screen PasswordData - Account Management Screen Web Management SettingsData - Web Management Screen HTTPS//123.123.123.1238080 To connect from a remote PC via the InternetData - Firmware Upgrade Screen Firmware UpgradeTo perform the Firmware Upgrade Firmware UpgradeData - Backup/Restore Screen Backup/RestoreThis will delete ALL of the existing settings Default Configu- rationGeneral Problems TroubleshootingInternet Access Appendix AIt is a security risk, since the firewall is disabled Broadband VPN Gateway Appendix B SpecificationsFCC Statement FCC Radiation Exposure StatementCE Standards CE Marking WarningAppendix B - Specifications Broadband VPN Gateway User Guide
Related manuals
Manual 8 pages 5.73 Kb

TW100-BRV324 specifications

The TRENDnet TW100-BRV324 is a versatile broadband router designed to provide small to medium-sized businesses with reliable networking capabilities. One of its key features is its built-in firewall security, which ensures robust protection against unauthorized access and threats from the internet. This appliance uses Stateful Packet Inspection (SPI), providing a comprehensive barrier against a variety of cyber threats.

Equipped with a DHCP server, the TW100-BRV324 simplifies IP address assignment, allowing administrators to manage network resources efficiently. The device supports both DHCP and static IP configurations, making it flexible for various network setups. Additionally, it offers VPN pass-through capabilities, allowing secure remote access for users needing to connect to the corporate network from outside.

The TW100-BRV324 is noted for its impressive NAT (Network Address Translation) capabilities, which enable multiple devices on a local network to access the internet through a single public IP address. This feature is particularly beneficial in saving costs related to IP addresses while enhancing network management. Furthermore, it boasts an integrated 4-port switch, facilitating wired connections for several devices in a local area network (LAN).

In terms of connectivity, the router supports 10/100 Mbps Ethernet, providing sufficient bandwidth for most small business applications. The device is also easy to set up, thanks to its user-friendly web-based interface, which guides users through the configuration process. This simplicity makes it suitable for individuals with varying levels of networking expertise.

The TW100-BRV324 supports multiple connection types, including DSL and cable internet, ensuring compatibility with various ISPs. Additionally, it embeds Quality of Service (QoS) features, allowing network administrators to prioritize traffic. This is crucial for ensuring that bandwidth-intensive applications, such as video conferencing and VoIP, receive the necessary resources for optimal performance.

In summary, the TRENDnet TW100-BRV324 is a robust and feature-rich router well-suited for small to medium-sized businesses. With its combination of security features, flexible configurations, and user-friendly management tools, it offers a powerful solution for those seeking reliable network performance without the need for extensive technical knowledge.