Linksys AG300 manual VPN Settings Summary

Page 31

ADSL Gateway

Delete: Click this button to delete the selected tunnel.

Summary: Click this button to see a summary of your IPSec settings and the tunnels’ status.

IPSec VPN Tunnel: Click Enabled to enable the selected tunnel, or Disabled to disable it.

Tunnel Name: Click and type in this box to give the selected tunnel a name. A name is required, but is only for your reference and need not match the name used at the remote gateway or client.

Local Secure Group: To give an entire local network access to the tunnel, select Subnet and enter the network address and mask. To give a particular host access to the tunnel, select IP Address and enter the host’s address and mask.

Local Security Gateway: If you have multiple PVCs, open this list and select the PVC you wish to use for the VPN tunnel.

Remote Secure Group: Use this control to specify the remote device or devices that will be granted access to the tunnel. This can be the public IP address of a network or host; the IP address and mask of a remote subnet; Host, that is, identical to the Remote Security Gateway setting; or Any, which allows any device with permission from the remote security gateway to access the tunnel.

Remote Security Gateway: Use the controls in this section to specify the remote endpoint of the IPSec tunnel, whether it will be a gateway or a client. Select IP Address or FQDN (fully qualified domain name) and input the correct address or name; or select Any, which allows any machine with the correct IPSec settings to act as the remote endpoint of the tunnel.

Encryption: To have communication through the tunnel encrypted, select DES (Data Encryption Standard) or 3DES (Triple DES). To leave communication unencryped, select Disable.

Authentication: Authentication verifies the identity of the remote machine and the integrity of the data received. Set this control to MD5 (Message Digest 5) or SHA (Secure Hash Algorithm). SHA is newer, and generally considered more secure, than MD5.

Key Management: A key is a string of letters and/or numbers that is used for authentication or encryption. Key management can be automatic (performed by IKE, the Internet Key Exchange protocol) or manual.

To use automatic key management, select Auto.(IKE), enter the pre-shared key and the key lifetime, and enable or disable PFS (perfect forward secrecy). The key should be a string of 8 to 23 characters representing no dictionary word or numeric pattern. PFS enhances security by enabling automatic re- keying. The settings must exactly match those at the remote end of the tunnel.

Chapter 5: Configuring the ADSL Gateway

Figure 5-20: VPN Settings Summary

25

The Security Tab

Page 30 Page 32
Image 31
Page 30 Page 32
Contents Adsl Gateway Copyright and Trademarks How to Use this GuideWord definition Table of Contents Adsl Gateway Network Ports and Reset Button on Side Panel25 List of PCs Welcome IntroductionWhat’s in this User Guide? Adsl Gateway What’s an IP Address? Planning Your NetworkGateway’s Functions IP AddressesDynamic IP Addresses Dhcp Dynamic Host Configuration Protocol ServersGetting to Know the Adsl Gateway Ports and Reset Button on Side PanelLEDs on Side Panel PowerBottom Panel with Stand Closed Position Bottom PanelConnecting the Gateway to a Computer Connecting the Adsl GatewayOverview Connect a PC Setup Configuring the Adsl GatewayApplications & Gaming Access RestrictionsAdministration SecurityInternet Setup How to Access the Web-based UtilitySetup Tab Basic Setup TabStatic IP RFC 1483 Bridged Dynamic IPIPoA RFC 1483 RoutedRFC 2364 PPPoA RFC 2516 PPPoEOptional Settings required by some ISPs Bridged Mode OnlyNetwork Setup Ddns Ddns TabTZO.com DynDNS.orgAdvanced Routing Advanced Routing Tab15 Routing Table PVC Routing PolicyConfiguring the Adsl Gateway Setup Tab Additional Filters Security TabFirewall Tab FirewallVPN Passthrough VPN TabIPSec VPN Tunnel 20 VPN Settings Summary 21 Advanced VPN Settings Internet Access Tab Access Restriction Tab25 List of PCs Single Port Forwarding Tab Applications & Gaming TabSingle Port Forwarding 28 Port Range Forwarding Port Range Forwarding TabDMZ Tab Port Triggering TabPVC QoS Priority Edit list of QoS SettingsQoS Tab QoSConfiguring the Adsl Gateway Applications & Gaming Tab Gateway Access Administration TabManagement Tab IGMP-Proxy UPnPIGMP-Snooping Reporting Reporting TabEmail Alerts Restore Configuration Diagnostics TabBackup&Restore Tab Backup ConfigurationUpgrade from LAN Factory Defaults TabFirmware Upgrade Tab Reboot TabInternet Connection Status TabGateway Tab Gateway Information43 Local Network Local Network TabDSL Status DSL Connection TabPVC Connection Common Problems and Solutions Appendix a TroubleshootingNeed to set a static IP address on a computer Want to test my Internet connection Adsl Gateway Adsl Gateway TCP UDP Can’t get the Internet game, server, or application to work My DSL service’s PPPoE is always disconnecting To start over, I need to set the Gateway to factory defaultNeed to upgrade the firmware Firmware upgrade failed, and/or the Power LED is flashingPower LED flashes continuously Does the Gateway support IPX or AppleTalk? Frequently Asked QuestionsWhere is the Gateway installed on the network? Is IPSec Passthrough supported by the Gateway?Does the Gateway support ICQ send file? What is Network Address Translation and what is it used for?What is DMZ Hosting? Is the Gateway cross-platform compatible? What are the advanced features of the Gateway?What is a MAC Address? How do I reset the Gateway?Windows 98 or Me Instructions Figure B-1 IP Configuration ScreenFigure B-3 MAC Address/Physical Address Windows 2000 or XP InstructionsAppendix C Upgrading Firmware Figure C-1 Firmware UpgradeAppendix D Glossary Adsl Gateway Adsl Gateway Adsl Gateway Adsl Gateway Appendix E Specifications Storage Humidity Appendix F Warranty Information FCC Statement Appendix G Regulatory InformationAdsl Gateway Adsl Gateway Adsl Gateway Adsl Gateway Adsl Gateway Europe Mail Address Appendix H Contact Information
Top Page Image Contents