VPN Gateway

peer ID (should be the same with the ID setting in dial-in

 

type) by checking the box. Enter Peer ISDN number if you

 

select ISDN above (This feature is useful for i model only.).

 

Also, you should further specify the corresponding security

 

methods on the right side.

 

If you uncheck the checkbox, the connection type you select

 

above will apply the authentication methods and security

 

methods in the general settings.

User Name

This field is applicable when you select ISDN, PPTP or L2TP

 

with or without IPSec policy above.

Password

This field is applicable when you select ISDN, PPTP or L2TP

 

with or without IPSec policy above.

VJ Compression

VJ Compression is used for TCP/IP protocol header

 

compression. This field is applicable when you select ISDN,

 

PPTP or L2TP with or without IPSec policy above.

IKE Authentication

This group of fields is applicable for IPSec Tunnels and L2TP

Method

with IPSec Policy when you specify the IP address of the

 

remote node. The only exception is Digital Signature (X.509)

 

can be set when you select IPSec tunnel either with or without

 

specify the IP address of the remote node.

 

Pre-Shared Key - Check the box of Pre-Shared Key to

 

invoke this function and type in the required characters (1-63)

 

as the pre-shared key.

 

Digital Signature (X.509) – Check the box of Digital

 

Signature to invoke this function and select one predefined in

 

the X.509 Peer ID Profiles (set from VPN and Remote

 

Access>>IPSec Peer Identity).

IPSec Security Method

This group of fields is a must for IPSec Tunnels and L2TP

 

with IPSec Policy when you specify the remote node.

 

Medium- Authentication Header (AH) means data will be

 

authenticated, but not be encrypted. By default, this option is

 

active.

 

High- Encapsulating Security Payload (ESP) means payload

 

(data) will be encrypted and authenticated. You may select

 

encryption algorithm from Data Encryption Standard (DES),

 

Triple DES (3DES), and AES.

Callback Function

The callback function provides a callback service only for the

 

ISDN LAN-to-LAN connection (this feature is useful for i

 

model only). The remote user will be charged the connection

 

fee by the telecom.

 

Check to enable Callback function-Enables the callback

 

function.

 

Callback number-The option is for extra security. Once

 

enabled, the router will ONLY call back to the specified

 

Callback Number.

 

Callback budget- By default, the callback function has

 

limitation of callback period. Once the callback budget is

 

exhausted, the function will be disabled automatically.

 

Callback Budget (Unit: minutes)- Specify the time budget

 

for the dial-in user. The budget will be decreased

112

Vigor2910 Series User’s Guide

Page 117 Page 119
Page 118
Image 118
Draytek 2910 manual VPN Gateway, Digital Signature X.509 Check the box of Digital, AccessIPSec Peer Identity
Page 117 Page 119

2910 specifications

The DrayTek 2910 is a versatile and robust router designed primarily for small to medium-sized businesses, offering a wide array of features that cater to various networking needs. With its advanced capabilities, it delivers superior performance and flexibility for organizations that demand reliable internet connectivity.

One of the defining characteristics of the DrayTek 2910 is its dual WAN capabilities. This allows users to connect two different internet service providers, ensuring that the network remains operational even if one connection fails. The router can automatically switch between the WANs, providing seamless failover and load balancing. This feature is essential for businesses that require constant uptime and reliability.

The DrayTek 2910 is equipped with multiple Ethernet ports, enabling it to support various devices and create a robust local area network (LAN). The router includes VLAN support, which allows for the segmentation of the network into different virtual networks, enhancing security and performance by isolating sensitive data traffic.

Another notable aspect of the DrayTek 2910 is its comprehensive security features. It includes a built-in firewall, which protects the network from external threats and unauthorized access. The router supports various protocols, including VPN (Virtual Private Network), allowing secure remote access to the network. This capability is particularly beneficial for businesses with remote workers or those needing secure connections for branch offices.

DrayTek has also integrated advanced Quality of Service (QoS) features in the 2910, which prioritize bandwidth allocation to critical applications, ensuring that essential services receive the needed resources. This is crucial for maintaining the performance of VoIP (Voice over Internet Protocol) calls and video conferencing tools, which are increasingly vital in today’s business environment.

In terms of management, the DrayTek 2910 offers easy configuration through a user-friendly web interface, allowing administrators to set up and monitor the network with minimal effort. The device also supports TR-069 for remote management, enabling service providers to configure and monitor the router without requiring an on-site visit.

Overall, the DrayTek 2910 stands out for its blend of reliability, security, and performance, making it an excellent choice for businesses looking to enhance their networking capabilities while ensuring a secure and efficient operation. With its rich set of features and technologies, the DrayTek 2910 continues to be a preferred router for many organizations worldwide.
Top Page Image Contents