Manuals / Billion Electric Company / Computer Equipment / Network Card

Billion Electric Company 30 Before Fail Over, After Fail Over, VPN Planning - Fail Over

Models: 30

1 209

Download 209 pages 59.73 Kb

Troubleshooting Specs Install Password Connecting Your Router Router Configuration RESET WAN2 WAN1 LAN Remote Access from Internet General VPN Setup Backup / Restore

Page 31

Image 31

Page 30 Page 32

Page 31

Image 31

Billion Electric Company 30 user manual Before Fail Over, After Fail Over, VPN Planning - Fail Over

Page 30 Page 32

Our partner
Обсуждение вопроса Что нужно для ввоза животных в страну? из чата Лондон чат для русскоговорящих, Лондон, Великобритания

Related pages Troubleshooting the modem connection for Teledyne 300M Cable/DSL Voice Router Specifications for Linksys BEFN2PS4 Error Codes for NEC NEAX2000IVS RPI-8 BIX wiring chart for Nortel Networks P0992639 01 When you are finished, touch e for Samsung 800P Dimensions Installation for EverFocus EQ700 Parts List Cutterhead Assembly for Powermatic 60B Language code List for LG Electronics BD560C How do I know when to schedule gas turbine maintenance instructions?

Contents

BiGuard Version Release 7.01 FW1.06piBusiness Security Gateway SMB User’s Manual Trademarks Updated March 28 Copyright InformationBiGuard 30 User’s Manual Disclaimer Safety Warnings 1.1 Overview 1.2 Product Highlights Table of Contents Chapter 1 Introduction1.3 Package Contents Chapter 2 Router Applications 3.5 Factory Default Settings Chapter 4 Router Configuration3.1 Overview 3.2 Before You Begin 3.3 Connecting Your Router 3.4 Configuring PCs for TCP/IP Networking 4.4.2.2 Bandwidth Settings 4.4.2.3 WAN IP Alias 4.4 Configuration4.3 Quick Start 4.4.2.1 ISP Settings 5.2 LAN Interface Chapter 5 Troubleshooting4.5 Save Configuration To Flash 4.6 Logout 5.1 Basic Functionality E.1 What is a VPN? Appendix A Product Specifications Appendix B Customer Support5.4 ISP Connection 5.5 Problems with Date and Time 5.6 Restoring Factory Defaults E.2.2 IPSec Modes E.2 What is IPSec?E.2.1.1 Authentication Header AH E.2.1 IPSec Security Components H.12 PPTP Remote Access by Windows XP Appendix H Router Setup ExamplesWhat is Quality of Service? H.7 VPN Configuration 1.1 Overview Chapter 1 Introduction1.2 Product Highlights BiGuard 30 iBusiness Security Gateway SMB WAN1 WAN2 Power Status1.3.2 Rear Panel RESET WAN2 WAN1 LAN 1.3.4 Cabling 2.2 Bandwidth Management with QoS 2.1 Overview2.2.1 QoS Technology VoIP Normal PCs Restricted PC 2.2.2 QoS Policies for Different Applications low network latencies to function properly. If bandwidth is being used by other applications such as an FTP server, users using VoIP will experience network lag and/or service interruptions during use. To avoid this scenario, this network has assigned VoIP with a guaranteed bandwidth and higher priority to ensure smooth communications. The FTP server, on the other hand, has been given a maximum bandwidth cap to make sure that regular service to both VoIP and normal Internet applications is uninterrupted policies for different PCs on the network. Policy based traffic shaping lets you better manage your bandwidth, providing reliable Internet and network service to your organization 2.2.7 DiffServ DSCP Marking 2.2.6 Management by IP or MAC address 2.3.1 Outbound Fail Over 2.2.8 DSCP Matching 192.168.2.3 1st ConnectionISP 2nd connection 192.168.2.2 2.4.1 Inbound Fail Over After Fail Over Before Fail Over2.4.2 Inbound Load Balancing Remote Access from Internet 2.5.1 DNS Inbound Fail Over ISP ISP Before Fail Over After Fail Over DNS Request Heavy load on WANDNS Reply In the example above, the client is making a DNS request. The request is sent to the DNS server of BiGuard 30 through WAN2 1. WAN2 will route this request to the embedded DNS server of BiGuard 30 2. BiGuard 30 will analyze the bandwidth of both WAN1 and WAN2 and decide which WAN IP to reply to the request 3. After the decision is made, BiGuard 30 will route the DNS reply to the user through WAN2 4. The user will receive the DNS reply with the IP address of WAN1 5. The browser will initiate an HTTP request to the WAN1 IP address 6. The HTTP request will be send to BiGuard 30’s URL Host Map 7. The Host Map will then redirect the HTTP request to the HTTP server 8. The HTTP server will reply 9. The URL Host Map will route the packet through WAN1 to the user 10. Finally, the client will receive an HTTP reply packet BiGuard Client 2.6.1 General VPN Setup 2.6.2 VPN Planning - Fail Over Before Fail Over BiGuard Before Fail Over 3.2 Before You Begin 3.1 Overview 3.3 Connecting Your Router 3.4.1 Overview 3.4.2 Windows XP 3.4.2.1 Configuring 1. Select Start Settings Network Connections 3. Select Internet Protocol TCP/IP and click Properties 5. Click OK to finish the configuration 2. In the Command Prompt window, type ipconfig and then press ENTER 3.4.2.2 Verifying SettingsTo verify your settings using a command prompt 1. Click Start Programs Accessories Command Prompt 1. Click Start Settings Network Connections To verify your settings using the Windows XP GUIAn IP address between 192.168.1.1 and A subnet mask of 3. Click the Support tab 3.4.3.1 Configuring 1. Select Start Settings Control Panel If you are using BiGuard 30’s default settings, your PC shouldHave an IP address between 192.168.1.1 and Have a subnet mask of Page 5. Select Internet Protocol TCP/IP and click Properties 4. In the Local Area Connection window, click PropertiesPage 3.4.3.2 Verifying Settings 7. Click OK to finish the configuration If you are using BiGuard 30’s default settings, your PC should have 3.4.4 Windows 98 / Me 3.4.4.1 Installing Components You must have the following installed An Ethernet adapter TCP/IP protocol Client for Microsoft Networks If you need to install a new Ethernet adapter, follow these stepsa. Click Add b. Select Adapter, then Add If you need TCP/IP a. Click Add b. Select Protocol, then click Add If you need Client for Microsoft Networks a. Click Add c. Select Microsoft. Æ TCP/IP, then OK b. Select Client, then click Add 3.4.4.2 Configuring 1. Select Start Settings Control Panel3. Restart your PC to apply your changes Page Page 6. Click OK to apply the configuration 1. Select Start Run 2. Type winipcfg, and then click OK To check the TCP/IP configuration, use the winipcfg.exe utility3. From the drop-down box, select your Ethernet adapter Web Interface Username admin Password admin LAN Device IP Settings A default gateway ofIP Address Subnet Mask DHCP server function IP addresses for distribution to PCs IP address Subnet MaskLAN Port WAN Port DHCP Static IP PPPoE PPTP Big Pond 2. Double-click the Network icon 1. Select Start Settings Control Panel 4. Select Internet Protocol TCP/IP and click Properties Page 7. Click OK to save your changes server address automatically radio button BiGuard 30 includes a Web Configuration Interface for easy administration via virtually any browser on your network. To access this interface, open your web browser, enter the IP address of your router, which by default is 192.168.1.254, and click Go. A user name and password window prompt will appear. Enter your user name and password the default user name and password are admin and admin to access the Web Configuration Interface 4.1 Overview 4.2.1 ARP Table 4.2 Status 4.2.2 Routing Table Sessions 4.2.5 IPSec Status 4.2.7 Traffic Statistics 4.2.6 PPTP Status 4.2.9 IPSec Log 4.2.8 System Log 4.3.1 DHCP 4.3.3 PPPoE 4.3.2 Static IP 4.3.5 Big Pond 4.3.4 PPTP 4.4 Configuration RIP RIP v2 Broadcast and RIP v2 Multicast. Check to enable RIP Subnet Mask Enter the subnet mask 255.255.255.0 by defaultAddress Mapping 4.4.1.1 Ethernet 4.4.1.2 DHCP Server WAN IP Alias 4.4.1.3 LAN Address Mapping Please click Create to create a LAN Address Mapping rule IP Alias 4.4.2.1 ISP Settings 4.4.2.1.1 DHCP 4.4.2.1.2 Static IP 4.4.2.1.3 PPPoE 4.4.2.1.4 PPTP Settings 4.4.2.1.5 Big Pond Settings 4.4.2.2 Bandwidth Settings 4.4.2.3 WAN IP Alias 4.4.3.1 General Settings 4.4.3.2 Outbound Load Balance Choose one by clicking the corresponding radio button 1. By session mechanism 2. By IP address hash mechanism 4.4.3.3 Inbound Load Balance Retry Interval The interval retries are done. Denoted in seconds Admin. Mail Box The administrator’s email account.e.gadmin@abc.comSerial Number It is the version number that keeps in the SOA record Refresh Interval The interval refreshes are done. Denoted in seconds Private IP Address The IP address of the local host To add a host mapping URL to the list, click CreateDomain Name The domain name of the local host Host URL The URL to be mapped 4.4.3.4 Protocol Binding All Destination IP Click it to specify all source IPs Interface Choose which WAN port to use WAN1, WAN2Source IP Range All Source IP Click it to specify all source IPs Destination IP Range 4.4.4.1 Time Zone 4.4.4.2 Remote Access Only the PC Please specify the IP Address that is allowed to access Allow Remote Access By4.4.4.3 Firmware Upgrade 4.4.4.4 Backup / Restore 4.4.4.5 Restart 4.4.4.6 Password Click Reset to reset to the default administration password admin 4.4.4.8 E-mail Alert 4.4.5.1 Packet Filter When the entry is upper, the priority is higher Destination IP Select Any, Subnet, IP Range or Single Address Source IP Select Any, Subnet, IP Range or Single Address4.4.5.2 URL Filter URL Filtering You can choose to Enable or Disable this feature Domains Filtering Click the top checkbox to enable this feature. You can also choose to disable all web traffic except for trusted sites by clicking the bottom checkbox. To edit the list of filtered domains, click Details 4.4.5.3 LAN MAC Filter 4.4.5.4 Block WAN Request 4.4.5.5 Intrusion Detection 4.4.6.1.1 IPSec Wizard You can find two items under the VPN section IPSec and PPTP Connection Name A user-defined name for the connection Back Back to the Previous page Next Go to the next page Back Back to the Previous page Next Go to the next page Next Go to the next page Done Click Done to apply the rule 4.4.6.1.2 IPSec Policy Configuring a New VPN Connection Connection Name A user-defined name for the connection interface if Auto is selected Any Local Address Will enable any local address on the network DPD Setting DPD, Dead Peer Detection 4.4.6.2 PPTP Click Create to create a new PPTP VPN connection accountPeer Encryption Mode Only Stateless or Allow Stateless and Stateful 4.4.7 QoS WAN1 Outbound Creating a New QoS Rule For IP Address Bandwidth Type For MAC Address 4.4.8 Virtual Server 4.4.8.1 DMZ 4.4.8.2 Port Forwarding Table 4.4.9 Advanced 4.4.9.1 Static Route 4.4.9.2 Dynamic DNS Wildcard Select this check box to enable the DYNDNS Wildcard Device Name Web Server SettingsSNMP Access Control 4.4.9.3 Device Management SNMP SNMP V1 and4.4.9.4 IGMP 4.4.9.5 VLAN Bridge 4.6 Logout 4.5 Save Configuration To Flash 5.1.2 LEDs Never Turn Off 5.1.1 Router Won’t Turn On5.1.3 LAN or Internet Port Not On 5.2.1 Can’t Access BiGuard 30 from the LAN 5.1.4 Forgot My Password Check the corresponding LAN LEDs on your PC’s Ethernet device are on 4. Click OK under Internet Options to close the dialogue 5.2.3.1 Pop-up Windows Disabling All Pop-upsEnabling Pop-up Blockers with Exceptions If you only want to allow pop-up windows with your BiGuard 4. Ensure that Scripting of Java applets is set to Enabled 4. Click OK to close the dialogue 5.4 ISP Connection If an IP address cannot be obtained If an IP address can be obtained, but your PC cannot load any web pages from the Internet 5.5 Problems with Date and Time Availability and Resilience Appendix A Product SpecificationsVirtual Private Network Firewall Content FilteringQuality of Service Control Network Protocols and Features Operating Environment Physical SpecificationsPower Requirement Physical Interface Contact Billion Appendix B Customer Support This device may not cause harmful interference D.1.1.1 Net mask 10.0.0.0 172.16.0.0 192.168.0.0 D.1.1.2 Subnet Addressing from these ranges Routers can vary in performance and scale, the types of physical WAN connection they support, and the number of routing protocols supported. BiGuard 30 offers a convenient and powerful way for small-to-medium businesses to connect their networks D.3.1.1 Stateful Packet Inspection D.3.1.2 Denial of Service DoS Attack With a LAN connected to the Internet through a router, there is a chance for hackers to access or disrupt your network. A simple NAT router provides a basic level of protection by shielding your network from the outside Internet. Still, there are ways for more dedicated hackers to either obtain information about your network or disrupt your network’s Internet access. Your BiGuard 30 provides an extra level of protection from such attacks with its built-in firewall VPNs are traditionally used three ways There are three major functions of IPSec ESP divides its fields into three components… SA is identified by 3 parameters TC Dat AH/EE.2.3 Tunnel Mode AH ESP Authentication Quick Mode Without PFS Main ModeAggressive Mode Quick Mode With PFS IKE Negotiate Packet Messages F.1 IPSec Log Event CategoriesF.2 IPSec Log Event Table encryption algorithm, hash algorithm, and authentication method Received the first response message of aggressive mode. Done to Sending the third message of main mode. Done for authenticationReceived the third message of main mode. Done for authentication Sending the first response message of aggressive mode. Done to IKE Negotiated Status Messages Rejected IKE Messages Main/Aggressive mode peer ID is identifier string Received Delete SA payload Deleting ISAKMP State integerISAKMP SA Established IPsec SA Established G.1 Overview G.2 What is Quality of Service?G.3 How Does QoS Work? G.4.1 Home Users G.4 Who Needs QoS? Data Ratio % ApplicationPriority H.1 Outbound Fail Over Page H.2 Outbound Load Balancing Step 2 Configure your WAN2 ISP settings and click Apply Step 6 Click Save Config to save all changes to flash memory General Settings. Select the Fail Over radio button H.3 Inbound Fail Over Step 2 Configure Fail Over options if necessary Step 5 Click Save Config to save all changes to flash memory Step 4 From the same menu, set the WAN2 DDNS settings 2 nd connection H.4 DNS Inbound Fail Over1st connection 2 connection Step 3 Input DNS Server 1 settings and click Apply Enable radio button and configure DNS Server 1 by clicking Edit 200.200.200.1 H.5 DNS Inbound Load BalancingDNS Request DNS Reply Balance radio button Step 3 Go to Configuration Dual WAN Inbound Load Balance Host URL Step 4 Next configure your HTTP mapping Mapping and configure your FTP mapping inbound and outbound bandwidth H.6 Dynamic DNS Inbound Load Balancing Step 2 Go to Configuration Dual WAN General Settings and enable Load Balance mode. You may then decide whether to enable Service Detection or not WAN1 Page H.7.1 LAN to LAN Remote Branch OfficeHead Office Local Single client H.7.2 Host to LANHead Office Proposal H.8 IP Sec Fail Over Gateway to GatewayPage Page Headquarter H.9 VPN ConcentratorBranch A Branch B and configure the and configure the Balancing radio button H.10 Protocol Binding Step 2 Go to Configuration Dual WAN Protocol Binding and configure settings for WAN1 Hacker H.11 Intrusion DetectionInternet Internet Step2 Click Create to create a PPTP Account ApplyStep3 Click Apply, you can see the account is successfully created Step5 In Windows XP, go Start Settings Network Connections Step4 Click Save Config to save all changes to flash memory Step7 Select Connect to the network at my workplace and press Next Step6 In Network Tasks, Click Create a new connection, and press Next Step9 Input the user-defined name for this connection and press Next Step8 Select Virtual Private Network connection and press Next Step11 Please press Finish Step10 Input PPTP Server Address and press Next Step12 Double click the connection, and input Username and Password that defined in BiGuard PPTP Account Settings BiGuard &PPTP Server InternetBranch Office 200.200.200.1 Step2 Click Create to create a PPTP Account Step6 Click Apply, and Save CONFIG