Linksys BEFSX41 Router’s Back Panel, Modem connection will not work from any other port, Ports

Page 8

Instant Broadband® Series

Important: You must have at least one Firewall Router on one end of the VPN tunnel. At the other end of the VPN tunnel, you must have a second Firewall Router or a computer with VPN client software that supports IPSec.

Computer (using VPN client software that supports IPSec) to Firewall Router

The following is an example of a computer-to-Firewall Router VPN. (See Figure 2-2.) In her hotel room, a traveling businesswoman dials up her ISP. Her notebook computer has VPN client software that is configured with her office's VPN settings. She accesses the VPN client software that supports IPSec and connects to the Firewall Router at the central office. As VPNs utilize the Internet, distance is not a factor. Using the VPN, the businesswoman now has a secure connection to the central office's network, as if she were physically connected.

Figure 2-2

For additional information and instructions about creating your own VPN, please visit Linksys’s website at www.linksys.com or refer to “Appendix C: Configuring IPSec between a Microsoft Windows 2000 or XP PC and the Firewall Router.”

EtherFast® Cable/DSL Firewall Router with 4-Port Switch/VPN Endpoint

Chapter 3: Getting to Know the EtherFast Cable/DSL Firewall Router

The Router’s Back Panel

The Router’s ports, shown in Figure 3-1, are where network cables are con- nected

 

Figure 3-1

WAN

The WAN (Wide Area Network) port is where you connect

 

your cable or DSL modem through an Ethernet cable. Your

 

modem connection will not work from any other port.

Ports 1-3

These three LAN (Local Area Network) ports are where you

 

will connect networked devices, such as PCs, print servers,

 

switches, and anything else you want to put on your network.

 

(These ports auto-detect crossover and straight-through

 

cables.)

Port 4/DMZ

Port 4/DMZ operates like a regular LAN port to connect with

 

network devices, unless DMZ is enabled through the

 

Cable/DSL Firewall Router’s web-based utility. Once DMZ is

 

enabled, this port will be accessible with NO PROTECTION

 

from the firewall. Be sure to disable the DMZ function through

 

the web-based utility if you want this port shielded by the

 

Cable/DSL Firewall Router’s firewall. (This port auto-detects

 

crossover and straight-through cables.)

Power

The Power port is where you will connect the power adapter.

8

9

Image 8
Contents User Guide Copyright & Trademarks Table of Contents Environmental 139 FeaturesIntroduction An Introduction to LANs and WANs IP AddressesYour Virtual Private Network VPN Network Setup OverviewWhy Do I Need a VPN? What is a Virtual Private Network? Firewall Router to Firewall RouterPower Router’s Back PanelModem connection will not work from any other port PortsProceed to Connect the Router WAN and LAN LEDsRouter’s Front Panel LEDs Connecting Your Hardware Together and Booting Up Router’s hardware installation is now completeConnect the Router OverviewConfigure the PCs Configuring Windows 95, 98, and Millennium PCsGo to Configure the Router Configuring Windows 2000 PCsConfiguring Windows XP PCs Configure the Router Obtain an IP Address Automatically Static IP AddressAdvanced Proxies. Click Direct Connection to the Internet Enter the Gateway AddressPPPoE RASQuick and Easy Router Administration Cable/DSL Firewall Router’s Web-based UtilitySetup User Name and Password Static IPWAN IP Firewall Remote Upgrade Block WAN RequestMulticast Pass Through IPSec Pass ThroughEstablishing a Tunnel VPNLocal Secure Group and Remote Secure Group Remote Security Gateway Key Management AuthenticationEncryption Instant Broadband Series Advanced Settings for Selected IPSec Tunnel PhaseOther Settings PasswordStatus Dhcp Log Help Advanced FiltersInstant Broadband Series Forwarding UPnP Forwarding Port Triggering Dynamic Routing Static RoutingDMZ Host Address DMZ HostDMZ Port Current DMZ Host MAC Address CloneDynDNS.org DdnsTZO.com Appendix a TroubleshootingCommon Problems and Solutions For Windows 95, 98, and Me For Windows NTFor Windows XP For Windows XP Am not able to access the Router’s web interface Setup Can’t get the Internet game, server, or application to work To start over, I need to set the Router to factory default Click the Advanced = Filter tab Need to use port triggeringFrequently Asked Questions TCP/IP is compatible with the Router Appendix B Maximizing VPN Security Introduction EnvironmentWindows 2000 or Windows XP Step One Create an IPSec PolicyIP Address Filter List 1 win-routerStep Two Build Filter Lists Filter List 2 router=win Figure C-6Step Three Configure Individual Tunnel Rules Tunnel 1 win-routerRespond Using IPSec XYZ12345. Click String to Protect Negotiate Security Key exchange preShared key, as shown AcceptTunnel 2 router-win Action Require Security This string to protect Key ExchangePreshared key, XYZ12345Figure C-24 Step Four Assign New IPSec PolicyStep Five Create a Tunnel Through the Web-based Utility Figure C-28Appendix E How to Ping Your ISP’s E-mail & Web Addresses Appendix D Snmp FunctionsFigure E-1 Appendix F Installing the TCP/IP Protocol TCP/IP installation is now completeFigure G-1 For Windows NT, 2000, and XPFigure G-5 Appendix H Glossary 129 131 133 135 137 Appendix I Specifications EnvironmentalAppendix J Warranty Information Appendix K Contact InformationSales Information Web FTP SiteCopyright 2003 Linksys, All Rights Reserved