Multitech RF820-AP, RF830-AP manual Feature Details

Page 5

Chapter 1 – Introduction and Description

Feature Details

Secure VPN Connections. The RouteFinder SOHO security appliance uses the IPSec or PPTP industry standard protocol, data encryption, and the Internet to provide high-performance, secure VPN connections. For LAN connectivity, the RouteFinder SOHO security appliance utilizes the IPSec protocol to provide up to 15 tunnels with strong 3DES or AES encryption using IKE and PSK key management. For Client-to-LAN connectivity, Multi-Tech provides optional IPSec client software allowing road warriors secure access to the company’s internal network.

This RouteFinder also supports remote users who want to use the PPTP VPN client built into the Windows operating system. This provides 40-bit or 128-bit encryption, user name and password authentication.

Connect Multiple Users to the Internet with Broadband Speed. With the RouteFinder SOHO security appliance, multiple users can share access to the Internet with only one IP account. The WAN Ethernet port(s) support DSL or cable speeds of up to 20M bps.

Built-in 10/100 Switch. The integrated 4-port 10/100M bps switch eliminates the need for an additional hub or switch to connect users not on a LAN. It ensures high-speed transmission and can serve as a completely dedicated full duplex backbone.

Network Security. The RouteFinder SOHO appliance provides network layer security utilizing Stateful Packet Inspection, the sophisticated firewall technology found in large enterprise firewalls, to protect the network against intruders and Denial of Service (DoS) attacks. It also uses Network Address Translation (NAT) to hide internal, non-routable IP addresses and allows internal hosts with unregistered IP addresses to function as Internet-reachable servers.

Dual WAN Load Balancing, Internet and VPN Failover. The RouteFinder SOHO security appliance model RF830/RF830-AP has a second WAN port for Internet access. This allows for two separate ISP connections giving administrators the ability to balance traffic by distributing it over the two links. In addition, if one port were to go down, the RouteFinder appliance would automatically re-route all Internet and VPN traffic to the other connection. The second WAN port greatly enhances performance and system uptime.

Automatic Dial Backup. The RouteFinder SOHO (RF820/RF820-AP) security appliance also provides an additional serial port that, when connected to a dial-up modem or ISDN terminal adaptor, can serve as a backup resource for Internet access if your cable or DSL service goes down. It can also serve as the primary connection if you do not have broadband connectivity yet in your area.

Virtual Server Support. In addition to providing shared Internet access, the RouteFinder SOHO security appliance can support a Web, FTP or other Internet servers. Once configured, it accepts only unsolicited IP packets addressed to the Web, FTP or other specified servers.

Dynamic DNS Client. The RouteFinder SOHO security appliance has a built-in Dynamic DNS client that is compatible with DynDNS.org. It automatically sends an update to the DynDNS.org update server if the WAN IP address changes. A registered Dynamic DNS account allows you to host your own Web site, mail server, or other services on the Internet without having to obtain a static IP address or keep track of a dynamic IP address. It also aids in creating static-to-dynamic or dynamic-to-dynamic IPSec VPN tunnels. In addition, with a Dynamic DNS account, you can establish a PPTP VPN tunnel behind the RouteFinder SOHO security appliance by configuring your PPTP client to connect to yourhostname.dydns.org instead of a dynamic IP address.

Fully Qualified Domain Name (FQDN) Feature. The FQDN featured on the RouteFinder SOHO security appliance allows you to utilize a static name in the IPSec VPN setup, like “branchof.ce.dyndns.org”, instead of a dynamic IP address, to create static-to-dynamic or dynamic-to-dynamic VPN IPSec tunnels. This allows all of the IPSec VPN connections to act like static-to-static connections. The RouteFinder SOHO security appliance checks the FQDN IPSec configuration every two minutes for IP address changes. If the IP address is different than the last time it checked, it drops the current tunnel and creates a new one. This helps to keep IPSec VPN tunnels readily available with minimal interruptions in data communication.

Optional VPN Client Software. Multi-Tech provides easy-to-use IPSec VPN client software that transparently secures Internet communications anytime, anywhere. VPN client software is ideal for business users who travel frequently or work from home providing secure remote access through the RouteFinder security appliance for applications such as remote access, file transfer, e-mail, Web browsing, messaging or IP telephony. Encryption and authentication operations are completely transparent to the end user. In general, IPSec provides stronger encryption than PPTP resulting in better overall security. A 30-day free trial CD is included with the RouteFinder SOHO security appliance.

Multi-Tech Systems, Inc. RouteFinder SOHO RF820/RF820-AP & RF830/RF830-AP User Guide (S000399E)

5

Page 4 Page 6
Image 5
Page 4 Page 6
Contents RouteFinder→ Soho Revision Date Description Warranty Trademarks Patents World HeadquartersContents Introduction Description Key FeaturesFeature Details RouteFinder Documentation RouteFinder Ship Kit ContentsRF820/RF820-AP Front Panel RF830/RF830-AP Front Panel Telecom Warnings for the ModemLEDs DescriptionRF820 RF820-AP RF830 RF830-AP ConnectorBack Panels Typical Applications VPN SpecificationsSpecifications RF820 and RF820-AP RF830 and RF830-AP RF8230AP and RF830AP Specifications for 802.11b/g InterfaceSpecifications Cabling Your RouteFinder InstallationRF820 RF820-APRF830-AP RF830Establish TCP/IP Communication Setting up a Workstation and Starting RouteFinderClick the Properties button To Set a Fixed IP AddressOpen a Web Browser Menu Bar Sub Other Options Screen Name Input Area Navigating the ScreensMenu Bar Network Setup WirelessSub-Menus Table of Menus and Sub-MenusAbout IPSec Configuring RouteFinderStart the RouteFinder Configuration RouteFinder Initial Configuration Using the Wizard Setup Screen to Configure Your RouteFinderScreen Notes Wizard SetupWAN 1 Static IP Choice ISP SettingsWAN 1 Dhcp Client Choice WAN 1 PPPoE Choice MTU Restart Important Note About Save and RestartSave to Flash Memory Administration Configuration Using Web Management SoftwareAdministration System Setup Administration System SetupEmail Address Auto Reboot TimerConfigure Email Notification Administrative Access Administration Administrative AccessAdministration Administrative Access Screen NoteAdministrative Access Http Port Change PasswordOld Password, New Password, Confirmation Web Interface Inactivity Time OutAdministration Remote Syslog Administration System LogsAdministration System Logs Administration Remote Syslog Remote SyslogSntp Configuration Administration Sntp ClientAdministration Sntp Client General ConfigurationDaylight Configuration Administration Sntp Client Time Zone ConfigurationDaylight Saving Start Time Daylight Saving End TimeAdministration Tools Administration ToolsReset Modem Administration Factory DefaultsReset to Factory Defaults Administration Tools Administration Factory DefaultsNetworks & Services Network Configuration Networks & ServicesNetworks & Services Network Configuration Network Configuration Fields RF830/RF830-AP Network Configuration ScreenHow to Confirm Your Entries Important Network NotesThis is an example of screen with the TCP protocol selected Networks & Services ServicesNetworks & Services Service Configuration Editing and Deleting User-Added Services Service ConfigurationTCP, UDP, and TCP& UDP AH and ESPNetwork Setup IP Settings Network SetupNetwork Setup IP Settings Default Gateway WAN Choice Dhcp Client DefaultWAN Choice Static IP WAN 1 & WAN 2 WAN 2 is for the RF830/RF830-AP onlyWAN Choice PPPoE Wlan Settings Network Setup Wireless LANSecurity Selection Disable Network Setup Wireless LAN Wlan SecurityWlan Security Select SecurityWPA-PSK/WPA2-PSK Key Network Setup Wireless LAN Wlan Security WEP KeyWEP Key to Index Group Key Rekeying Access Control List Network Setup Wireless LAN Wlan Client FilterNetwork Setup Advanced IP Settings PPP Client for Cellular/Analog Modem Backup Network Setup PPP Cellular/Analog BackupNetwork Setup PPP Cellular/Analog Backup Screen Note This screen applies to the RF820/RF820-AP onlyModem Initialization Strings Signal Strength only for Cellular ModemsSIM Initialization String only for Cellular Modems PPP Keep-Alive ParametersLoad Balancing Weight Configuration Network Setup Load BalancingLoad Balancing Keep Alive URL Configuration Network Setup Load BalancingDdns Failover for the RF830/RF830-AP only Network Setup Dynamic DNSNetwork Setup Dynamic DNS Custom DNS Use WildcardCheck IP Check IP ServerNetwork Setup IP Masquerading Network Setup Static RoutesService Network Setup SnatNetwork Setup Snat Network Setup Dnat Network Setup DnatAdd Dnat Definition WAN IPPacket Filter Packet Filter Rules Packet FiltersFrom Host/Networks ServicesTo Host/Networks ActionPacket Filters Advanced Filters Packet Filters Advanced FiltersPacket Filter Packet Filter Log Packet Filter IcmpIcmp Forwarding Icmp on FirewallVPN IPSec VPN Virtual Private NetworkVPN IPSec Add a New ConnectionAdd IKE Connection Add an IKE ConnectionVPN IPSec Add IKE Connection Key Life NetBIOS BroadcastNumber of Retries Left Next HopVPN IPSec Add Manual Connection Add a Manual ConnectionAdd Manual Connection Fqdn Pptp Status Pptp SettingsEncryption Strength Select Remote AddressAuthentication Type Select Radius User AuthenticationAuthentication Type Proxy Http Proxy ProxyHttp Status Http Allowed NetworksProxy Custom Filters DNS Proxy Proxy DNS ProxyProxy DNS Proxy LAN StatusDhcp Server LAN Subnet Settings Dhcp Server LAN Subnet SettingsDhcp Server Dhcp Server on LANAdd Fixed Address Dhcp Server Wlan Subnet Settings and Wlan Fixed AddressesAdd Fixed Address Utilities Firmware Upgrade Utilities BackupUtilities Backup Utilities Firmware Upgrade BackupStatistics & Logs System Information Statistics & LogsStatistics & Logs System Information RF820/RF820-AP Screen RF830/RF830-AP ScreenLog Access to Administrative Access Port All Access Requests to Firewall Violating Security PolicyStatistics & Logs Network Interface Details Statistics & Logs Packet Filter LogStatistics & Logs Dhcp Server Live Log Statistics & Logs IPSec Live LogStatistics & Logs Pptp Live Log Statistics & Logs Wlan Client Live Log Statistics & Logs PPP Cellular/Analog LogStatistics & Logs Log Traces Statistics & Logs Log TracesSystem Diagnostics as a Troubleshooting Tool TroubleshootingProblem #4 Frequently Asked Questions If all else fails in the installation, what can I do? How do I access the Router’s setup pages with a Mac?How will I be notified of new router firmware upgrades? Which modems are compatible with the router?Appendix a Table of Commonly Supported Subnet Addresses Network Number Hosts Available Broadcast Address Antenna Electrical Characteristics Appendix B Antenna for Wireless RouteFinderAntenna MechanicalWeee Appendix C Waste Electrical Electronic Equipment DirectiveAES GlossaryIKE Isdn TA Ssid PingPptp WEP TkipWPA-PSK Wlan Wireless Local Area NetworkData Encryption Standard DES Definition IndexNetwork Setup PPP Cellular/Analog Modem Stats & Logs Dhcp Server Live Log
Top Page Image Contents