Linksys AG241 manual Advanced VPN Tunnel Setup, Manual

Page 30

ADSL2 Gateway with 4-Port Switch

Manual

Select Manual, then select the Encryption Algorithm from the drop-down menu. Enter the Encryption Key in the field (if you chose DES for your Encryption Algorithm, enter 16 hexadecimal characters, if you chose 3DES, enter 48 hexadecimal characters). Select the Authentication Algorithm from the drop-down menu. Enter the Authentication Key in the field (if you chose MD5 for your Authentication Algorithm, enter 32 hexadecimal characters, if you chose SHA1, enter 40 hexadecimal characters). Enter the Inbound and Outbound SPIs in the respective fields.

• Status. The status of the connection is shown.

Click the Connect button to connect your VPN tunnel. Click View Logs to view system, UPnP, VPN, firewall, access, or all logs.Click the Advanced Settings button and the Advanced IPSec VPN Tunnel Setup screen will appear.

When finished making your changes on this tab, click the Save Settings button to save these changes, or click the Cancel Changes button to undo your changes.

Advanced VPN Tunnel Setup

From the Advanced IPSec VPN Tunnel Setup screen you can adjust the settings for specific VPN tunnels.

Phase 1

Phase 1 is used to create a security association (SA), often called the IKE SA. After Phase 1 is completed, Phase 2 is used to create one or more IPSec SAs, which are then used to key IPSec sessions.

Operation Mode. There are two modes: Main and Aggressive, and they exchange the same IKE payloads in different sequences. Main mode is more common; however, some people prefer Aggressive mode because it is faster. Main mode is for normal usage and includes more authentication requirements than Aggressive mode. Main mode is recommended because it is more secure. No matter which mode is selected, the VPN Gateway will accept both Main and Aggressive requests from the remote VPN device.

Encryption. Select the length of the key used to encrypt/decrypt ESP packets. There are two choices: DES and 3DES. 3DES is recommended because it is more secure.

Authentication. Select the method used to authenticate ESP packets. There are two choices: MD5 and SHA. SHA is recommended because it is more secure.

Group. There are two Diffie-Hellman Groups to choose from: 768-bit and 1024-bit. Diffie-Hellman refers to a cryptographic technique that uses public and private keys for encryption and decryption.

Chapter 5: Configuring the Gateway

Figure 5-17: Manual Key Management

Figure 5-18: System Log

25

The Security Tab

Page 29 Page 31
Image 30
Page 29 Page 31
Contents ADSL2 Gateway How to Use this Guide Copyright and TrademarksWord definition Table of Contents Network 2Computer-to-VPN Gateway21 Internet Policy Summary Figure B-11 Filter Acton Tab Introduction WelcomeWhat’s in this Guide? ADSL2 Gateway with 4-Port Switch IP Addresses Planning Your NetworkGateway’s Functions What’s an IP Address?What is a VPN? Dhcp Dynamic Host Configuration Protocol ServersDynamic IP Addresses Why do I need a VPN? VPN Gateway to VPN GatewayVPN Gateway-to-VPN Gateway Getting to Know the ADSL2 Gateway with 4- Port Switch LineDSL Connecting the ADSL2 Gateway with 4-Port Switch OverviewConnection to a Computer Adsl Connection Access Restrictions Configuring the GatewaySetup SecurityAdministration Applications & GamingStatus Basic Setup Tab How to Access the Web-based UtilitySetup Tab Internet SetupRFC 1483 Bridged Dynamic IP Static IPIPoA RFC 2516 PPPoEBridged Mode Only RFC 2364 PPPoAOptional Settings Required by some ISPs Network SetupDdns Tab DynDNS.orgTZO.com Advanced Routing Tab Advanced RoutingSecurity Tab FirewallVPN 15 VPN Advanced VPN Tunnel Setup Manual19 Advanced VPN Tunnel Setup Access Restrictions Tab Internet Access22 List of PCs Applications and Gaming Tab Single Port ForwardingPort Range Forwarding Port Triggering DMZAdvanced QoS Application-based QoSAdministration Tab Gateway AccessManagement Reporting UPnPEmail Alerts Diagnostics Backup&RestorePing Test Factory Defaults Firmware UpgradeUpgrade from LAN Reboot 36 RebootGateway Information Status TabGateway Internet ConnectionsDSL Connection 40 DSL ConnectionAppendix a Troubleshooting Common Problems and SolutionsNeed to set a static IP address on a computer Want to test my Internet connection ADSL2 Gateway with 4-Port Switch ADSL2 Gateway with 4-Port Switch TCP UDP Can’t get the Internet game, server, or application to work Firmware upgrade failed, and/or the Power LED is flashing To start over, I need to set the Gateway to factory defaultNeed to upgrade the firmware My DSL service’s PPPoE is always disconnectingPower LED flashes continuously Is IPSec Passthrough supported by the Gateway? Frequently Asked QuestionsWhere is the Gateway installed on the network? Does the Gateway support IPX or AppleTalk?Does the Gateway support ICQ send file? Will the Gateway function in a Macintosh environment? What is DMZ Hosting?What are the advanced features of the Gateway? Is the Gateway cross-platform compatible?How do I get mIRC to work with the Gateway? What is a MAC Address?How do I reset the Gateway? Can the Gateway act as my Dhcp server?Environment WAG54GBuild Filter Lists How to Establish a Secure IPSec TunnelCreate an IPSec Policy Filter List 1 win-RouterFilter List 2 Router -win Figure B-4 IP Filter LIstFigure B-7 IP Filter List Configure Individual Tunnel Rules Tunnel 1 win-RouterFigure B-13 Authentication Methods Figure B-16 Tunnel Setting Tab Tunnel 2 Router-winFigure B-19 IP Filter List Tab Figure B-22 Preshared Key Assign New IPSec Policy Figure B-25 Connection TypeCreate a Tunnel Through the Web-Based Utility Figure B-28 VPN TabFigure C-1 IP Configuration Screen Windows 98 or Me InstructionsWindows 2000 or XP Instructions Figure C-3 MAC Address/Physical AddressFigure D-1 Upgrade Firmware Appendix D Upgrading FirmwareAppendix E Glossary ADSL2 Gateway with 4-Port Switch ADSL2 Gateway with 4-Port Switch ADSL2 Gateway with 4-Port Switch ADSL2 Gateway with 4-Port Switch ADSL2 Gateway with 4-Port Switch Appendix F Specifications ADSL2 Gateway with 4-Port Switch Appendix G Regulatory Information FCC StatementAppendix H Warranty Information Appendix I Contact Information Europe Mail AddressOutside of Europe Mail Address
Related manuals
Manual 41 pages 20.83 Kb
Top Page Image Contents