Linksys AG041 manual Introduction, Environment

Page 58

ADSL Gateway with 4-Port Switch

Appendix B: Configuring IPSec between a Windows 2000 or XP Computer and the Gateway

Introduction

This document demonstrates how to establish a secure IPSec tunnel using preshared keys to join a private network inside the Gateway and a Windows 2000 or XP computer. You can find detailed information on configuring the Windows 2000 server at the Microsoft website:

Microsoft KB Q252735 - How to Configure IPSec Tunneling in Windows 2000

http://support.microsoft.com/support/kb/articles/Q252/7/35.asp

Microsoft KB Q257225 - Basic IPSec Troubleshooting in Windows 2000

http://support.microsoft.com/support/kb/articles/Q257/2/25.asp

NOTE: Keep a record of any changes you make. Those changes will be identical in the Windows “secpol” application and the Router’s Web-Based Utility.

Environment

The IP addresses and other specifics mentioned in this appendix are for illustration purposes only.

Windows 2000 or Windows XP

IP Address: 140.111.1.2 <= User ISP provides IP Address; this is only an example.

Subnet Mask: 255.255.255.0

AG041

WAN IP Address: 140.111.1.1 <= User ISP provides IP Address; this is only an example.

Subnet Mask: 255.255.255.0

LAN IP Address: 192.168.1.1

Subnet Mask: 255.255.255.0

NOTE: This section’s instructions and figures refer to the Router. Substitute “Gateway” for “Router”. Also, the text on your screen may differ from the text in your instructions for “OK or Close”; click the appropriate button on your screen.

Appendix B: Configuring IPSec between a Windows 2000 or XP Computer and the Gateway

51

Introduction

Image 58

Contents Adsl Gateway Copyright and Trademarks How to Use this GuideWord definition Table of Contents Adsl Gateway with 4-Port Switch List of Figures A Network with the Gateway23 Applications & Gaming Port Triggering Figure B-23 New Preshared Key Introduction WelcomeWhat’s in this Guide? Adsl Gateway with 4-Port Switch IP Addresses Planning your NetworkGateway’s Functions What’s an IP Address?Dynamic IP Addresses What is a VPN?Dhcp Dynamic Host Configuration Protocol Servers Encryption encoding data transmitted in a networkWhy do I need a VPN? VPN Gateway to VPN GatewayVPN Gateway-to-VPN Gateway Getting to Know the Adsl Gateway Back PanelFront Panel DSLISP a company that provides access to the Internet Connecting the Adsl GatewayConnecting to a Computer OverviewConnect power Access Restrictions Configuring the Adsl GatewaySetup SecurityApplications & Gaming How to Access the Web-based UtilityAdministration StatusBasic Setup Setup TabInternet Setup RFC 1483 Bridged Dynamic IP Static IPRFC 1483 Routed RFC 2516 PPPoEBridged Mode Only RFC 2364 PPPoAOptional Settings Required by some ISPs Network SetupDdns DynDNS.orgAdvanced Routing Advanced RoutingStatic Routing 12 Routing Table Security Tab FirewallVPN Software instructions for the computer15 VPN with Manual Key Management Advanced VPN Tunnel Setup PhaseConfiguring the Adsl Gateway Security Tab Access Restrictions Tab Internet Access19 List of PCs Applications and Gaming Tab Single Port ForwardingPort Range Forwarding Port TriggeringDMZ Gateway Access Administration TabManagement UPnP Email Alerts ReportingLog Smtp the standard e-mail protocol on the InternetFactory Defaults DiagnosticsPing Test Ping Test Parameters Firmware Upgrade 29 Administration tab Firmware UpgradeGateway Information Status TabGateway Internet ConnectionsLocal Network DSL ConnectionCommon Problems and Solutions Appendix a TroubleshootingNeed to set a static IP address on a computer Want to test my Internet connection Open a command prompt. For Windows 98 and Me Adsl Gateway with 4-Port Switch TCP UDP VPN Ipsec Can’t get the Internet game, server, or application to workNeed to upgrade the firmware To start over, I need to set the Gateway to factory defaultFirmware upgrade failed, and/or the Power LED is flashing My DSL service’s PPPoE is always disconnecting Where is the Gateway installed on the network? Frequently Asked QuestionsPower LED flashes continuously Is IPSec Passthrough supported by the Gateway?What is Network Address Translation and what is it used for? Does the Gateway support ICQ send file?What is DMZ Hosting? How do I reset the Gateway? What are the advanced features of the Gateway?What is a MAC Address? Is the Gateway cross-platform compatible?Introduction EnvironmentBuild Filter Lists How to Establish a Secure IPSec TunnelCreate an IPSec Policy Filter List 1 win-RouterFilter List 2 Router -win Figure B-4 IP Filter LIstFigure B-7 IP Filter List Configure Individual Tunnel Rules Tunnel 1 win-RouterFigure B-13 Authentication Methods Figure B-16 Tunnel Setting Tab Tunnel 2 Router-winFigure B-19 IP Filter List Tab Figure B-22 Preshared Key Assign New IPSec Policy Figure B-25 Connection TypeCreate a Tunnel Through the Web-Based Utility Figure B-28 VPN TabFigure C-1 IP Configuration Screen Windows 98 or Me InstructionsWindows 2000 or XP Instructions Figure C-3 MAC Address/Physical AddressFigure D-1 Upgrade Firmware Appendix D Upgrading FirmwareShared Resources Appendix E Windows HelpNetwork Neighborhood/My Network Places Appendix F Glossary Adsl Gateway with 4-Port Switch Adsl Gateway with 4-Port Switch Adsl Gateway with 4-Port Switch Appendix G Specifications StandardsAppendix H Warranty Information Limited WarrantyAppendix I Regulatory Information FCC StatementEurope Mail Address Appendix J Contact InformationOutside of Europe Mail Address