Linksys WAG54G manual Why do I need a VPN?, VPN Gateway to VPN Gateway

Page 13

Wireless-G ADSL Gateway

telecommuters, and/or professionals on the road (travelers can connect to a VPN Gateway using any computer with VPN client software that supports IPSec, such as SSH Sentinel.)

There are two basic ways to create a VPN connection:

VPN Gateway to VPN Gateway

Computer (using VPN client software that supports IPSec) to VPN Gateway

The VPN Gateway creates a “tunnel” or channel between two endpoints, so that data transmissions between them are secure. A computer with VPN client software that supports IPSec can be one of the two endpoints. Any computer with the built-in IPSec Security Manager (Microsoft 2000 and XP) allows the VPN Gateway to create a VPN tunnel using IPSec (refer to “Appendix C: Configuring IPSec between a Windows 2000 or XP computer and the VPN Gateway”). Other versions of Microsoft operating systems require additional, third-party VPN client software applications that support IPSec to be installed.

Computer (using VPN client software that supports IPSec) to VPN Gateway

The following is an example of a computer-to-VPN Gateway VPN. (See Figure 2-2.) In her hotel room, a traveling businesswoman dials up her ISP. Her notebook computer has VPN client software that is configured with her office's VPN settings. She accesses the VPN client software that supports IPSec and connects to the VPN Gate- way at the central office. As VPNs utilize the Internet, distance is not a factor. Using the VPN, the businesswoman now has a secure connection to the central office's network, as if she were physically connected.

VPN Gateway to VPN Gateway

An example of a VPN Gateway-to-VPN Gateway VPN would be as follows. (See Figure 2-3.) At home, a telecommuter uses his VPN Gateway for his always-on Internet connection. His Gateway is configured with his office's VPN settings. When he connects to his office's Gateway, the two Gateways create a VPN tunnel, encrypting and decrypting data. As VPNs utilize the Internet, distance is not a factor. Using the VPN, the telecommuter now has a secure connection to the central office's network, as if he were physically connected.

For additional information and instructions about creating your own VPN, please visit Linksys’s international website at www.linksys.com/international or refer to “Appendix C: Configuring IPSec between a Windows 2000 or XP computer and the VPN Gateway.”

Why do I need a VPN?

Computer networking provides a flexibility not available when using a paper-based system. With this flexibility, however, comes an increased risk in security. This is why firewalls were first introduced. Firewalls help to

Chapter 2: Planning Your Network

Figure 2-2: Computer-to-VPN Gateway

IMPORTANT: You must have at least one VPN Gateway on one end of the VPN tunnel. At the other end of the VPN tunnel, you must have a second VPN Gateway or a computer with VPN client software that supports IPSec.

6

Why do I need a VPN?

Page 12 Page 14
Image 13
Page 12 Page 14
Contents Wireless- G Copyright and Trademarks How to Use this GuideWord definition Table of Contents Wireless-G Adsl Gateway Computer-to-VPN Gateway Network23 VPN Settings Summary Figure C-9 New Rule Properties Welcome IntroductionWhat’s in this Guide? Wireless-G Adsl Gateway Gateway’s Functions Planning Your NetworkIP Addresses What’s an IP Address?Dhcp Dynamic Host Configuration Protocol Servers What is a VPN?Dynamic IP Addresses VPN Gateway to VPN Gateway Why do I need a VPN?Data Sniffing MAC Address SpoofingBack Panel Getting to Know the Wireless-G Adsl GatewayIndication of any network activity Front PanelWhile establishing the Adsl connection InternetOverview Connecting the Wireless-G Adsl GatewayEthernet Connection Wired Connection to a ComputerWireless Connection to a Computer Setup Configuring the GatewayWireless SecurityAdministration Access RestrictionsApplications & Gaming StatusSetup Tab How to Access the Web-based UtilityInternet Setup Multiplexing Select LLC or VC , depending on your ISPStatic IP RFC 1483 Bridged Dynamic IPVirtual Circuit Enter the VPI and VCI ranges in the fields RFC 2516 PPPoE RFC 1483 RoutedRFC 2364 PPPoA Bridged Mode OnlyNetwork Setup Optional Settings Required by some ISPsDynDNS.org Ddns TabTZO.com Advanced Routing Advanced Routing Tab13 Routing Table Basic Wireless Settings Tab Wireless TabWireless Network 15 WPA Pre-Shared Key Wireless Security Tab17 WEP Wireless Network Access Wireless Access TabAdvanced Wireless Advanced Wireless Settings TabFirewall Security TabAdditional Filters 22 VPN Local Security Gateway24 Manual Key Management Manual26 Advanced VPN Tunnel Setup Advanced VPN Tunnel SetupConfiguring the Gateway Security Tab Internet Access Access Restrictions Tab29 List of PCs Single Port Forwarding Applications and Gaming TabPort Range Forwarding 33 Port Triggering Port TriggeringAdvanced QoS This setting allows you to specify traffic queue priorityApplication-based QoS Gateway Access Administration TabManagement UPnP ReportingEmail Alerts Backup&Restore DiagnosticsFactory Defaults Ping TestReboot Firmware UpgradeUpgrade from LAN Gateway Status TabGateway Information Internet Connections45 Local Network Local Network47 Wireless 49 DSL Connection DSL ConnectionCommon Problems and Solutions Appendix a TroubleshootingNeed to set a static IP address on a computer Want to test my Internet connection Wireless-G Adsl Gateway Wireless-G Adsl Gateway IP Address TCP UDPCan’t get the Internet game, server, or application to work Need to upgrade the firmware To start over, I need to set the Gateway to factory defaultFirmware upgrade failed, and/or the Power LED is flashing My DSL service’s PPPoE is always disconnectingPower LED flashes continuously Where is the Gateway installed on the network? Frequently Asked QuestionsIs IPSec Passthrough supported by the Gateway? Does the Gateway support IPX or AppleTalk?Does the Gateway support ICQ send file? What are the advanced features of the Gateway? What is DMZ Hosting?Will the Gateway function in a Macintosh environment? Is the Gateway cross-platform compatible?What Ieee 802.11b and 802.11g features are supported? What is the Ieee 802.11g standard?What is ad-hoc mode? What is infrastructure mode?What is Spread Spectrum? What is the ISM band?What is DSSS? What is FHSS? And what are their differences? What is a MAC Address? What is WEP?How do I reset the Gateway? How do I resolve issues with signal loss?Important Information for Wireless Products Appendix B Wireless SecurityWireless-G Adsl Gateway Wireless-G Adsl Gateway WAG54G EnvironmentCreate an IPSec Policy How to Establish a Secure IPSec TunnelBuild Filter Lists Filter List 1 win-RouterFigure C-4 IP Filter LIst Filter List 2 Router -winFigure C-7 IP Filter List Tunnel 1 win-Router Configure Individual Tunnel RulesFigure C-13 Authentication Methods Tunnel 2 Router-win Figure C-16 Tunnel Setting TabFigure C-19 IP Filter List Tab Figure C-22 Preshared Key Figure C-25 Connection Type Assign New IPSec PolicyFigure C-28 VPN Tab Create a Tunnel Through the Web-Based UtilityWindows 98 or Me Instructions Figure D-1 IP Configuration ScreenFigure D-3 MAC Address/Physical Address Windows 2000 or XP InstructionsAppendix E Upgrading Firmware Upgrade from WANAppendix F Glossary Wireless-G Adsl Gateway Wireless-G Adsl Gateway Wireless-G Adsl Gateway Wireless-G Adsl Gateway Wireless-G Adsl Gateway Standards Appendix G SpecificationsAnnex-B, WAG54G-DE UR-2 Operating Temp 0ºC to 40ºCStorage Humidity Storage Temp 20ºC to 70ºC Operating Humidity10% to 85% Non-Condensing FCC Statement Appendix H Regulatory InformationWireless-G Adsl Gateway Radio EN 300 EMC EN 301 489-1, EN 301 Safety EN Location Frequency Range MHz Power Eirp Applicable Power Levels in FranceBelgium Wireless-G Adsl Gateway Open the Wireless Network Connection window Appendix I Warranty Information Europe Mail Address Appendix J Contact InformationOutside of Europe Mail Address
Top Page Image Contents