SMC Networks SMCBR 18VPN, BR14VPN manual

Page 40

VPN: VPN protects network information from intruders. However, it greatly decreases network throughput. Enable it only when a security tunnel is absolutely necessary. This feature is disabled by default.

Max. Number of Tunnels: Set the number of tunnels that are allowed to be in operation simultaneously.

Tunnel name: Lists the monitored tunnel.

Method: IPSec VPN supports two kinds of key-exchange methods: manual key exchange and the automatic key exchange. The manual key exchange method indicates that the authenticator and the encryption key of the two end VPN gateways are setup manually by the system managers. However, the IKE method performs an automatic Internet key exchange. The system managers of both end gateways only need to set the same pre-shared key.

“More” button: Click the “More” button to setup detailed configuration for Manual key or IKE methods.

There are three settings that must be configured to enable IKE for a dedicated tunnel:

Basic setup

IKE proposal setup

IPSec proposal setup

Basic Setup

Local Subnet: The subnet of the local VPN gateway’s LAN site. The subnet can be a host, a partial subnet, or the whole subnet of the local gateway’s LAN site.

Local netmask: The local netmask combined with the local subnet forms a subnet domain.

Remote subnet: The subnet of a remote VPN gateway’s LAN site. The subnet can be a host, a partial subnet, or the whole subnet of the remote gateway’s LAN site.

Remote netmask: The remote netmask combined with the remote subnet forms a subnet domain.

Remote gateway: The IP address of the remote gateway.

Pre-shared key: The first key that supports the IKE mechanism of both VPN gateways to negotiate further security keys. The pre-shared key must be the same for both end gateways.

34

Page 39 Page 41
Image 40
Page 39 Page 41
Contents Page Copyright TrademarksIii CompliancesImportant Safety Notices EC Conformance Declaration Class BConfiguring Your Broadband VPN Router Ipsec Settings Guide for REFERENCE/EXAMPLE only Questions and AwnsersEquipment Checklist System RequirementsFunctions and Features Panel Layout Function Color Status DescriptionHardware Installation Network Settings and Software InstallationDefault Settings Port Type DescriptionSetting up TCP/IP Windows 95/98/Me Installing TCP/IP Windows 95/98/MeWindows 2000/XP Windows NT Obtaining an IP Address Windows 95/98/MePing Pinging 192.168.2.1 with 32 bytes of data Request timed outConfiguring Your Broadband VPN Router Browser ConfigurationInternet Explorer 5 or above For Windows Internet Explorer For MacintoshSetup Wizard Time Zone Broadband TypeCable Modem Fixed-IP xDSL PPPoE xDSLPptp BigPond L2TPDial-Up Page Advanced Setup System Time Zone Password Settings Remote ManagementSyslog Server Advanced Setup WAN Dynamic IP PPPoE Static IP L2TP Dial Up Advanced Setup LAN Page Virtual Server Service Port Server IP Enable Special ApplicationsVirtual Computer Network FiltersURL Blocking MAC Filter Schedule Rule Advanced DMZ Advanced Setup VPNIPSec Tunnel Page IKE Proposal IPSec Proposal Page Dynamic VPN PPTP/L2TP Server Advanced Setup Snmp Advanced Setup Routing Advanced Setup Miscellaneous Advanced Setup Display Status UPnP Universal Plug-and-Play Status Page Settings for Router IPSec Settings Guide For Reference/Example OnlyTunnel between two SMCBR14VPN VPN Settings for router VPN Page Common Settings for both routers SHA1ESP Pptp Page Troubleshooting IPSec VPN Configuration Am having problems establishing a PPPoE xDSL WAN connectionCan I use this router with AOL DSL? No Ipsec connect button? Forgot my password and can no longer log into the routerL2TP won’t work How many tunnels can be configured? Do I need two routers to establish a VPN connection?Can the SMCBR14VPN act as a Pptp client? Can I use domain names and dynamic VPNs?Technical Specifications Input Power Operating TemperatureTerminology Page Page Page
Top Page Image Contents