Authentication, Advanced Settings | Draytek 2750 specs

type, please specify the IP address and subnet mask for local network.

L2TP/IPSec –The range must not overlap the DHCP address range (if enabled), and must allow for at least one IP address. Example: 10.10.137.240-10.10.137.245. If you choose this type, please specify the IP address range for L2TP/IPSec mode.

Authentication	Shared secret – Type the shared secret manually and confirm it
	again. IPSec remote dial-in clients will use the given secret.
Advanced Settings	Phase 1 (IKE) - Negotiation of IKE parameters including
	encryption, hash, Diffie-Hellman parameter values, and lifetime
	to protect the following IKE exchange, authentication of both
	peers using either a Pre-Shared Key or Digital Signature (x.509).
	The peer that starts the negotiation proposes all its policies to
	the remote peer and then remote peer tries to find a
	highest-priority match with its policies.

Phase 2 (IPSec) - Negotiation IPSec security methods including Authentication Header (AH) or Encapsulating Security Payload (ESP) for the following IKE exchange and mutual examination of the secure tunnel establishment.

Vigor2750 Series User’s Guide

183

Image 193

Draytek 2750 manual Authentication, Advanced Settings

Contents

Page Vigor2750 Series High Speed VDSL2 Router User’s Guide Copyright Information Safety Instructions and Approval Regulatory Information European Community Declarations Table of Contents 101 119 249 243 259 Page Preface Web Configuration Buttons Explanation For Vigor2750 LED Indicators and Connectors PWR Wlan For Vigor2750n Interface Description Interface For Vigor2750Vn ON/OFF Hardware Installation Stand Installation Open Start-Settings- Printer and Faxes Printer Installation Vigor2750 Series User’s Guide Vigor2750 Series User’s Guide Vigor2750 Series User’s Guide Vigor2750 Series User’s Guide Two-Level Management Accessing Web Main screen for admin mode operation full configuration Changing Password Vigor2750 Series User’s Guide Quick Start Wizard Setting up the Time Zone Setting up the Password Static IP Setting up the Internet Connection Gateway EnablePrimary DNS Server Secondary DNS Server MTU Size PPPoE IP Address PPTP/L2TP Enable Wireless LAN Setting up the Wireless ConnectionSsid Broadcast Encryption Key1 to Key4 Authentication Mode WPA Algorithm TypeWPA Pre-shared Key Key you wish to use Destination Port Server IP AddressShared Secret WPS Online Status Saving the Wizard Configuration Saving Configuration Vdsl User Mode Operation Vdsl Status Vdsl SetupVDSL2 Profile Hs Carrier Set Basics of Internet Protocol IP Network WANWhat are Public IP Address and Private IP Address Get Your Public IP Address from ISP Internet Access Gateway IP Address Static IP mode Router Name Ping IPDomain Name Username Enable/DisableAlways On. Otherwise, choose Connect on Demand PPTP/L2TP 3G USB Modem SIM PIN code PPP PasswordModem Initial String1/2 APN Name LAN/NAT Multi-VLAN Bridge 1/2/3 VoIP WAN Setting for V model only 3 3G Backup Basics of LAN LAN What are Virtual LANs and Rate Control What is Routing Information Protocol RIP Vigor2750 Series User’s Guide General Setup Ports Disabled All power savings mechanisms disabled Power ControlActiPHY Link down power savings enabled PerfectReach Link up power savings enabled Static MAC Table Config Disable Automatic AgingMAC Address Table Age Time Vlan Monitor Port Enable Monitor PortMonitor Port Monitor ingress port Add Static Routes to Private and Public Networks Static Route Bind IP to MAC Strict Bind DisableARP Table Add and Edit Hardware NAT NATDelete Start Port Open PortsEnd Port optional Local Host DMZ Host Enable Check to enable the DMZ Host functionLocal Port optional PC to select one Bandwidth Management Default Session LimitSession Limit Limitation List Start IP Bandwidth LimitEnd IP Sessions Limit User-defined Bandwidth Smart Bandwidth LimitLimit QoS Control List Port Rate Control Vigor2750 Series User’s Guide QCE Type Adding a New QCEType Value Traffic Class TCP/UDP Port Vigor2750 Series User’s Guide Editing a QCE Ports PriorityMoving Up/Down a QCE Deleting a QCE QoS Statistics Rx Unicast Rx OctetsRx Broadcast Rx Pause Rx Normal Rx LowRx Medium Rx High Dynamic DNS ApplicationsTx High Tx Drops Schedule Weekday Acts Igmp Status Igmp Enable Upnp UPnP ConfigurationGroups Cant work with Firewall Software Wake On LANSecurity Considerations Basic Concepts Wireless LANWake by MAC Address Security Overview Show/Hide Wireless ModeIsolate Member Tx Power Wireless Security ConfigurationEnable Green AP Channel None Default KeyWEP Key1-Key4 Default value is 1812, based on RFC WPA ModeHexadecimal digits leading by 0x, such as 0x321253abcde WPS Filter Type Access Control Add a New Entry Station ListDisplay the Ssid that the stations connected through WMM Configuration Access Point DiscoverySignal Security Apsd Capable WMM CapableAifsn CWMin/CWMax AckPolicy 7 WDS Choose the mode for WDS setting. Disable mode will not Phy Mode USB General SettingsUSB Application Key FTP User Management Disk Status Access RuleDisk Shares Safely Remove Disk Share Name Access RightsComment Path IPv6 1 IPv6 WAN SetupLink-Local Only DHCPv6 Client Iana Static IPv6DHCPv6 Client Iapd Prefix Length Tunnel Broker Tspc 2 IPv6 LAN Setup Configuration Type Enable AutoconfigurationDHCPv6 Server Stateful Name Display the name of the rule Protocol 3 IPv6 Firewall Setup Source IP Adding a New RuleIP Type 4 IPv6 Routing 6 IPv6 Tspc Status 5 IPv6 NeighbourAuto-refresh Tunnel Information Connection StatusTunnel Status Activity 104 Ping/FTP/TELNET 7 IPv6 Management User User ConfigurationAdding a New User Editing/Deleting User Settings System MaintenanceSystem Status System 11.2 TR-069 ACS SettingsDevice Type Display the Ssid of the router User Password Backup the Configuration Configuration Backup Restore Configuration Syslog / Mail Alert Enable E-mail Alert Time and Date Access List Enable SnmpManagement Firmware Upgrade Reboot System This page is left blank Admin Mode Operation 120 121 122 Apply default DNS Server IP address 198.95.1.1 to this field Type in a name for the router e.g., Vigor2750. It must be 125 126 WAN IP Network Settings 128 Transmitted by NAT through WAN port VoIP WAN Setting SIM PIN code 132 133 What is Static Route Router will resolve the domain name immediately. Otherwise Auto Current 137 138 139 Go to LAN to open setting page and choose Static Route 141 142 Remove List 144 145 PC to specify a suitable one Firewall Denial of Service DoS DefenseDoS Defense Basics for Firewall Rate Ports ConfigurationRate Limiter ID Counter Rate Limiter ID Adding a New Access Control Profile Access Control ListACE Configuration Ethernet Type Filter Detailed Explanation for Frame Type Sender IP Filter Request/ReplyDefined in Sender IP Address and Sender IP Mask Sender IP Address Target IP Mask Target IP AddressARP Smac Match IP/Ethernet Length Source IP Address EthernetSource IP Mask Dest IP Mask Dest IP AddressIcmp Type Filter Icmp Type Value Source Port Filter Dest IP Source Port Range Source Port NoDest. Port Filter Dest IP Filter Dest. Port Range Dest. Port No TCP SYN IP Protocol Value When you choose Network as destination IP filter Default Sessions Limit Click this button to close the function of limit bandwidth Represent LAN or WAN interface 166 Display the class of the data transmission for the QCE 168 169 Wireless Port Queuing Mode Use the drop down list to choose suitable mode 172 Display the the counting number of the packet transmitted Enable Dynamic DNS Interval set here WiFi UP/DOWN Wireless Wi-Fi connection will be This page display current Igmp status Download Speed Port MembersUpload Speed 179 Type any one of the MAC address of the binded PCs Remote Access Control VPN and Remote Access IPSec Remote Dial-in Pptp Remote Dial-inYour LAN Mobile VPN Type Advanced Settings Authentication Remote Dial-in Status Name LAN to LANTx /Rx IKE phase 1 mode EnabledAdding a VPN Tunnel Always On Confirm Pre-Shared key IKE Phase 1 proposalLocal Identity Remote Identity 188 189 Choose the wireless mode for this router. At present, only 191 192 UDP port number that the Radius server is using 194 195 Allow List all the MAC address of wireless clients listed Refresh Click this button to refresh current Index Display the number of the connecting client IP Address 198 199 200 201 Htmix If 802.11b/g/n wireless mode is used, please Check this box to share the information on USB disk Check this box and then you can remove the USB diskette Update Click this button to refresh the disk status 11 IPv6 11.1 IPv6 WAN Setup 207 208 Tunnel Mode 11.2 IPv6 LAN Setup 11.3 IPv6 Firewall Setup 212 Example Open IPv6 IPv6 Firewall Setup and press Add New Rule 11.4 IPv6 Routing Welcome to the IPv6 Information You are using IPv4 from 11.6 IPv6 Tspc Status 11.5 IPv6 Neighbour 216 217 11.7 IPv6 Management Delete User Allow PptpAdd a New User 220 221 CPU Usage Http//IP address 13.2 TR-069 System Password 225 226 Syslog/Mail Alert Check Enable to activate function of mail alert 229 230 231 Ping DiagnosticsPing Size Start Routing Table Traffic Overview System Log Detailed Statistics Display the counting number of the received unicast Bad packets transmitted Vlan Computer Name Dhcp TableExpire Time TX rate kbps Data Flow MonitorRX rate kbps Hardware NAT rate Ports State 242 Application for Multi-VLAN Application and Examples 244 How to use QoS function in Vigor2750? 246 247 248 Checking If the Hardware Status Is OK or Not Trouble Shooting For Windows For Mac OS For Mac OS Terminal Pinging the Router from Your Computer Checking If the ISP Settings are OK or Not Run Router Tools Firmware Upgrade Utility 255 256 Software Reset Backing to Factory Default Setting If NecessaryHardware Reset Contacting Your Dealer Below shows several examples for your reference Appendix Basic Commands 260