Linksys WAG54G How to Establish a Secure IPSec Tunnel, Create an IPSec Policy, Build Filter Lists

Page 71

Wireless-G ADSL Gateway

How to Establish a Secure IPSec Tunnel

Step 1: Create an IPSec Policy

1.Click the Start button, select Run, and type secpol.msc in the Open field. The Local Security Setting screen will appear as shown in Figure C-1.

2.Right-click IP Security Policies on Local Computer (Win XP) or IP Security Policies on Local Machine (Win 2000), and click Create IP Security Policy.

3.Click the Next button, and then enter a name for your policy (for example, to_Router). Then, click Next.

4.Deselect the Activate the default response rule check box, and then click the Next button.

5.Click the Finish button, making sure the Edit check box is checked.

Figure C-1: Local Security Screen

NOTE: The references in this section to “win” are references to Windows 2000 and XP. Substitute the references to “Router” with “Gateway”. Also, the text on your screen may differ from the text in your instructions for “OK or Close”; click the appropriate button on your screen.

Step 2: Build Filter Lists

Filter List 1: win->Router

1.In the new policy’s properties screen, verify that the Rules tab is selected, as shown in Figure C-2. Deselect the Use Add Wizard check box, and click the Add button to create a new rule.

2.Make sure the IP Filter List tab is selected, and click the Add button. (See Figure C-3.)The IP Filter List screen should appear, as shown in Figure C-4. Enter an appropriate name, such as win->Router, for the filter list, and de-select the Use Add Wizard check box. Then, click the Add button.

Appendix C: Configuring IPSec between a Windows 2000 or XP Computer and the Gateway

Figure C-2: Rules Tab

Figure C-3: IP Filter List Tab

63

How to Establish a Secure IPSec Tunnel

Image 71
Contents Wireless- G Word definition How to Use this GuideCopyright and Trademarks Table of Contents Wireless-G Adsl Gateway Computer-to-VPN Gateway Network23 VPN Settings Summary Figure C-9 New Rule Properties Welcome IntroductionWhat’s in this Guide? Wireless-G Adsl Gateway What’s an IP Address? Planning Your NetworkGateway’s Functions IP AddressesDynamic IP Addresses What is a VPN?Dhcp Dynamic Host Configuration Protocol Servers VPN Gateway to VPN Gateway Why do I need a VPN?Data Sniffing MAC Address SpoofingBack Panel Getting to Know the Wireless-G Adsl GatewayInternet Front PanelIndication of any network activity While establishing the Adsl connectionOverview Connecting the Wireless-G Adsl GatewayEthernet Connection Wired Connection to a ComputerWireless Connection to a Computer Security Configuring the GatewaySetup WirelessStatus Access RestrictionsAdministration Applications & GamingMultiplexing Select LLC or VC , depending on your ISP How to Access the Web-based UtilitySetup Tab Internet SetupVirtual Circuit Enter the VPI and VCI ranges in the fields RFC 1483 Bridged Dynamic IPStatic IP RFC 2516 PPPoE RFC 1483 RoutedRFC 2364 PPPoA Bridged Mode OnlyNetwork Setup Optional Settings Required by some ISPsTZO.com Ddns TabDynDNS.org Advanced Routing Advanced Routing Tab13 Routing Table Wireless Network Wireless TabBasic Wireless Settings Tab 15 WPA Pre-Shared Key Wireless Security Tab17 WEP Wireless Network Access Wireless Access TabAdvanced Wireless Advanced Wireless Settings TabAdditional Filters Security TabFirewall 22 VPN Local Security Gateway24 Manual Key Management Manual26 Advanced VPN Tunnel Setup Advanced VPN Tunnel SetupConfiguring the Gateway Security Tab Internet Access Access Restrictions Tab29 List of PCs Port Range Forwarding Applications and Gaming TabSingle Port Forwarding 33 Port Triggering Port TriggeringApplication-based QoS This setting allows you to specify traffic queue priorityAdvanced QoS Management Administration TabGateway Access Email Alerts ReportingUPnP Ping Test DiagnosticsBackup&Restore Factory DefaultsUpgrade from LAN Firmware UpgradeReboot Internet Connections Status TabGateway Gateway Information45 Local Network Local Network47 Wireless 49 DSL Connection DSL ConnectionNeed to set a static IP address on a computer Appendix a TroubleshootingCommon Problems and Solutions Want to test my Internet connection Wireless-G Adsl Gateway Wireless-G Adsl Gateway IP Address TCP UDPCan’t get the Internet game, server, or application to work My DSL service’s PPPoE is always disconnecting To start over, I need to set the Gateway to factory defaultNeed to upgrade the firmware Firmware upgrade failed, and/or the Power LED is flashingPower LED flashes continuously Does the Gateway support IPX or AppleTalk? Frequently Asked QuestionsWhere is the Gateway installed on the network? Is IPSec Passthrough supported by the Gateway?Does the Gateway support ICQ send file? Is the Gateway cross-platform compatible? What is DMZ Hosting?What are the advanced features of the Gateway? Will the Gateway function in a Macintosh environment?What is infrastructure mode? What is the Ieee 802.11g standard?What Ieee 802.11b and 802.11g features are supported? What is ad-hoc mode?What is DSSS? What is FHSS? And what are their differences? What is the ISM band?What is Spread Spectrum? How do I resolve issues with signal loss? What is WEP?What is a MAC Address? How do I reset the Gateway?Important Information for Wireless Products Appendix B Wireless SecurityWireless-G Adsl Gateway Wireless-G Adsl Gateway WAG54G EnvironmentFilter List 1 win-Router How to Establish a Secure IPSec TunnelCreate an IPSec Policy Build Filter ListsFigure C-4 IP Filter LIst Filter List 2 Router -winFigure C-7 IP Filter List Tunnel 1 win-Router Configure Individual Tunnel RulesFigure C-13 Authentication Methods Tunnel 2 Router-win Figure C-16 Tunnel Setting TabFigure C-19 IP Filter List Tab Figure C-22 Preshared Key Figure C-25 Connection Type Assign New IPSec PolicyFigure C-28 VPN Tab Create a Tunnel Through the Web-Based UtilityWindows 98 or Me Instructions Figure D-1 IP Configuration ScreenFigure D-3 MAC Address/Physical Address Windows 2000 or XP InstructionsAppendix E Upgrading Firmware Upgrade from WANAppendix F Glossary Wireless-G Adsl Gateway Wireless-G Adsl Gateway Wireless-G Adsl Gateway Wireless-G Adsl Gateway Wireless-G Adsl Gateway Operating Temp 0ºC to 40ºC Appendix G SpecificationsStandards Annex-B, WAG54G-DE UR-210% to 85% Non-Condensing Storage Temp 20ºC to 70ºC Operating HumidityStorage Humidity FCC Statement Appendix H Regulatory InformationWireless-G Adsl Gateway Radio EN 300 EMC EN 301 489-1, EN 301 Safety EN Belgium Applicable Power Levels in FranceLocation Frequency Range MHz Power Eirp Wireless-G Adsl Gateway Open the Wireless Network Connection window Appendix I Warranty Information Outside of Europe Mail Address Appendix J Contact InformationEurope Mail Address