Lancom Systems 7111 VPN, 8011 VPN manual What does a router do?, Denial-of-Service Protection

Page 13

LANCOM 7111 VPN – LANCOM 8011 VPN

Chapter 1: Introduction

Denial-of-Service Protection

Attacks from the Internet can be break-in attempts as well as attacks with the aim of blocking the accessibility and functionality of individual services. Therefore a LANCOM Wireless DSL is equipped with appropriate protective mechanisms, which recognize well-known hacker attacks and which guarantee the functionality.

Quality-of-Service / Traffic management

The generic term Quality-of-Service (brief: QoS) summarizes the functions of the LANCOM which guarantee certain service qualities. The advantage is that the QoS functions can take place by means of the existing powerful classification methods of the Firewall (e.g. limitation of subnetworks, single workstations or certain services).

Guaranteed minimum bandwidths give priority to enterprise critical appli- cations, VoIP PBX installations or certain user groups.

More details about the function of the Stateful Inspection Firewall of your LANCOM router can be found in the reference manual on the

LANCOM CD.

1.3What does a router do?

The following sections describe the functionality of routers in general. The functions supported by your device are listed in the table ’What can your LANCOM router do?’ page 15.

Routers connect LANs at different locations and individual PCs to form a Wide Area Network (WAN). With the appropriate rights, any computer in this WAN can access other computers and services of the complete WAN (as with 'PC 1' accessing 'Server A' in the remote LAN in the diagram).

PC 1

server A

 

 

WAN connection

router

router

LAN 1

LAN 2

EN

13

Page 12 Page 14
Image 13
Page 12 Page 14
Contents Lancom 7111 VPN Lancom 8011 VPN Lancom Systems GmbH, Wuerselen Germany. All rights reserved Preface Security settingsModel variants Info@lancom.de This documentation was compiled …Contents Linking two networks Providing dial-up accessSending faxes with Lancapi Appendix TroubleshootingWhich use does VPN offer? IntroductionIsdn Conventional network infrastructureNetworking via the Internet Firewall Quality-of-Service / Traffic management Denial-of-Service ProtectionWhat does a router do? Bridgehead to the WAN Internet access for a LAN e.g. via DSL or IsdnAreas of deployment for routers LAN to LAN coupling via VPN or IsdnWhat can your Lancom router do? Remote access to the company network via VPN or IsdnConventional via Isdn Lancom Quality of Service Package contents InstallationSystem preconditions Introducing Lancom router Access to the LAN via the TCP/IP protocolStatus displays Front sideOnline LED indicates the overall status of all WAN ports LED remains lit greenLancom Flashing Power LED but no connection?Data traffic via the WAN connection Connection status of the WAN connectionConnection status of Isdn S0 connection 7111 VPN, for both Isdn B channels with Lancom 8011 VPN Connection status of the serial configuration portLCD display Back of the unit Hardware installationInstallation Starting Lancom setup Software installationWhich software should you install? 1 TCP/IP settings Basic configurationWhich information is necessary? Configure manually nevertheless? New LAN-fully automatic configuration possibleInformation required for manual TCP/IP configuration IP address and netmask for the Lancom routerSettings for the DSL connection Configuration protectionSettings for the Isdn connection Enable Dhcp server?Start up LANconfig by clicking Start Programs Lancom Instructions for LANconfigLANconfig Connect charge protectionComplete the configuration with Finish Network without Dhcp server Instructions for WEBconfigNetwork with Dhcp server Starting the wizards in WEBconfigOr with a name as discribed above WEBconfig main menu will be displayed Entering the password in the web browser IP address assignment via the Lancom router default TCP/IP settings to workstation PCsManual IP address assignment IP address assignment via a separate Dhcp serverDoes the setup wizard know your Internet provider? Setting up Internet accessUser name and password Additional information for unknown Internet providersAdditional connection options Isdn dial-in number User name and passwordDynamic channel bundling Isdn only Complete the configuration with Apply LANconfig Quick access to the setup wizardsLinking two networks Always configure both sidesSecurity aspects General information What information is necessary?Name of the remote station is needed for its identification Settings for the TCP/IP router DNS access to the remote LAN Settings for the IPX routerExtranet VPN Settings for NetBIOS routing Perform the configuration on both routers, one at a time Ping quick testing for TCP/IP connections Which information is required? Providing dial-up accessCoupling Entry Isdn calling line identity CLISettings for IPX Settings for TCP/IPWAN Dial-up via VPN Settings for the dial-in computerDial-up via Isdn Instructions for LANconfig Providing dial- up access Sending faxes with Lancapi Installation of the Lancom Capi fax modem Select the option Printers and Faxes from the control panel Installation of the MS Windows fax serviceSending a fax Send a fax with the MS Windows fax serviceSend a fax with any given office application Sending faxes with Lancapi Security settings wizard Security settingsWizard for LANconfig Firewall wizard Wizard for WEBconfigConfiguration under WEBconfig Security checklistRules Have you permitted remote configuration? Have you assigned a password for the configuration?Have you activated the Firewall? Do you make use of a ’Deny All’ Firewall strategy?Have you closed critical ports with filters? Problems with the cabling? TroubleshootingNo WAN connection is established DSL data transfer is slowUnwanted connections under Windows XP Cable testingIncreasing the TCP/IP window size under Windows LAN statisticsTroubleshooting Appendix Performance data and specificationsRights for up to 16 administrators DSL interface Contact assignmentISDN-S0interface Pin RJ45 socketCE declaration of conformity Configuration interface OutbandEthernet interfaces 10/100Base-T Pin mini-DIN socketNumerics IPX conventions IPX router Settings InstallationConnector cable Channel Data compression Dial-innumber Connector cable LAN to LAN coupling 14, 15, 30Package contents Packet size adaption Password NetBIOS NetBIOS proxy Netmask Network segmentNetBIOS Security aspects Server Setup Specify MSNTemperature Time WEBconfig Settings 28 , 32Check connection
Top Page Image Contents