HotBrick VPN 800/8 F manual Options, IPSec policy options

Page 51

HotBrick, Tel: 305 -398-0888, Fax: 305-398-5966

IPSec policy options

Tunnel Attribute – The defined attributes for the tunnel.

Dead Peer Detection - This setting allows you to use a WAN port for backup or for WAN failover in the event of a connection failure.

Check Method – You can choose ICMP, Heartbeat or DPD protocol. This detects if the remote end of the VPN tunnel is alive or not.

Options :

NetBIOS Broadcast- This is used to forward NetBIOS broadcasts across the Internet.

Auto Trigger–This helps keep the IPSec tunnel connection us so it can be re-established immediately, if a connection is dropped and detected.

Anti Replay – This keeps IP packet-level security in order.

Passive mode – This means that your PC establishes the data connection (if you enable passive mode).

Check ESP Pad – If enabled, ESP (Encapsulating Security Payload),it will check ESP padding.

Allow Full ECN – Enable will allow full Explicit Congestion Notification (ECN). ECN is a standard proposed by the IETF that will cut down on network congestion and routers dropping packets.

Copy DF Flag – When an IP packet is encapsulated as payload inside another IP packet, some of the outer header fields can be rewritten, and others are determined by the inner header. Among

these fields is the IP DF (don't fragment) flag. When the inner packet DF flag is clear, the outer packet may copy it or set it; however, when the inner DF flag is set, the outer header MUST copy it.

51

Image 51

Contents Users Guide Firewall VPN 800/8 FTable of Contents QOS Configuration 1Introduction  Supports all common Connection Methods Other Features Physical Details Package ContentsLED Action Condition Tftp Download Default SettingsHotBrick, Tel 305 -398-0888, Fax Overview Quick InstallationProcedure Configuring the Dual WAN VPN Firewall for your LANNo Response? LAN & Dhcp Setup Installing the Dual WAN VPN Firewall on your LAN Flex Ports Quick Installation LAN & Dhcp Dhcp IP address range LAN IP ConfigurationDhcp server configuration LAN Any IP SetupDhcp Client List Optional Address InfoLoaddbalancingB e Load Balancing LLoadbalancingB eConnection validation Advanced WAN Port options Traffic Management Transparant bridge optionWAN IP Account Advanced WAN PPPoEAdvanced WAN Advanced WAN PptpAdvanced Configuration Advanced configuration Host IPHost IP Host Network Identity Host network identity Host Network Binding Advanced configuration Routing Dynamic routingStatic routing Configuring Other Routers on your LAN Static Routing exampleDual WAN VPN Firewall Gateways Routing Table For Router Bs Default Router For Router As Default RouteVirtual Server Connecting to the Virtual Server Advanced configuration virtual server HotBrick, Tel 305 -398-0888, Fax Advanced configuration Special Application Advanced configuration Dynamic DNS To use the Dynamic DNS featureUsing a Special Application on your PC Dynamic DNS Service Additional settingsWAN Port Binding Advanced Configuration Multi DMZ Advanced Configuration UPnP Setup NAT Configuration Advanced Configuration NAT SettingExternal Filters Configuration Advanced Configuration Advanced FeatureSettings to correct the problem Security Management Security Management Access Filter Security Management Session Limit Security Management System Filter Exeption VPN Configuration VPN Configuration Tunnel to HotBrick Unit VPN Configuration Tunnel to HotBrick Client Action VPN Configuration Advanced settings Security level Key management  Action VPN Configuration Tunnel to 3rd PartyIPSec policy options OptionsVPN configuration VPN preset VPN Configuration SA VPN configuration SA VPN Configuration VPN Log Message StatusUndefined messages QoS Configuration QoS FeaturesIP TOS Type of Service Feature QoS Configuration Policy Configuration Policy Priority QoS Configuration QoS Setup QoS FeaturePolicy Priority Management Assistant Management assistant Admin PasswordManagement Assistant Email Alert Enable/Disable Email AlertEmail Alert Configuration  EmailSMTPServer Password This is the user passwordSystem Information Management Assistant SnmpSyslog Delivery Management Asssistant SyslogManagement Assistant Upgrade Firmware Device Status Device status System statusLAN Information Device Status WAN status NAT Statistics Data NAT Status LAN IP info Buttons Device information Device InformationDevice Information Device StatisticsHotBrick, Tel 305 -398-0888, Fax CE Marking Warning SpecificationsAppendix a FCC StatementWindows TCP/IP Setup Overview TCP/IP SettingsAppendix B Using Dhcp Using Specify an IP AddressStatistics Checking TCP/IP Settings Windows Using a fixed IP Address Use the following IP Address Using DhcpChecking TCP/IP Settings Windows XP Figure B-8 TCP/IP Properties Windows XP Appendix C TroubleshootingGeneral Problems Internet AccessVPN 800/8 F To 401VPNX2 or LB-2 HotBrick, Tel 305 -398-0888, Fax