Security Protocol, Local Certificate, Security Gateway | Epson 3300

Security Protocol	AH - Specify the IPSec protocol for the Authentication Header
	protocol. The data will be authenticated but not be encrypted.
	ESP - Specify the IPSec protocol for the Encapsulating Security
	Payload protocol. The data will be encrypted and authenticated.

NAT Traversal Click Enable to let multi IPSec tunnels passing through this router.

Click Disable to close this function.

WAN Interface The WAN interface to be used.

Local Certificate	The local certificate is active for authentication if the RSA
	Signature option is selected in the Authentication field. These
	options come from the user certificate file.
Security Gateway	The IP address of the local gateway's public-network interface.
	The keyword “default” can be used to represent the IP Address
	of the selected “WAN Interface”.
Network IP /	The subnet behind the local gateway.
Subnet Mask
Next Hop	The IP address of the next hop. The keyword default can be
	used to represent the gateway IP address of the selected WAN
	Interface.
Remote ID	The identification number for the remote gateway.
DHCP-over-IPSEC	Turns this function ON or OFF.
Security Gateway	The IP address of the remote client/gateway. This field is
	mandatory. The setting for 0.0.0.0 is used for the road-warrior
	with a dynamic IP address.
Network IP /	The subnet behind the remote gateway. If the remote gateway
Subnet Mask	IP address is 0.0.0.0, this field can be omitted, but you can
	specify it as 0.0.0.0/32 for clarity.

zFor Advanced Configuration

96	Vigor3300 Series User’s Guide

Image 100

Epson 3300 manual Security Protocol, Local Certificate, Security Gateway, Network IP, Subnet Mask Next Hop, Remote ID

Contents

Vigor 3300 Series Copyright Information Declarations Table of Contents Trouble Shooting 127 Appendix a Application for 802.1 Vlan 137 Preface LED Indicators and Connectors for Vigor3300V LED Indicators and ConnectionFactory Reset Interface Description LED Indicators and Connectors for Vigor3300 WAN WAN/DMZ WAN1 ~ WAN3 LED Indicators and Connectors for Vigor3300B+ Connecter Specification Auxiliary Type Connected to Remarks Cables Color Hardware Installation Detailed Explanation for the Connector RS232 ConnectorStandard 10/100 Base-T Ethernet Interface Connector Chassis Connections Desktop Type Installation Configuring Basic Settings Changing Password Vigor3300 Series User’s Guide Quick Setup Adjusting WAN Connection Mode Physical Mode Static Mode Start IP StatusEnd IP Dhcp Mode Default value is PAP PPPoEUse for clients in LAN Primary DNS Type the IP address for primary DNS Primary DNS Pptp IP Address Status System setupStatus, and WAN Status Basic Status LAN Status RX Packets High Available StatusTX Packets WAN Status Time Syslog Server IP SyslogSyslog Server Port Access Control Configuration Setup Push Backup Button File name is v3300.cfg Firmware Upgrade Setup Firmware Upgrade from a Console Port Tftp -i 192.168.1.1 PUT Vigor3300 image file name Vigor3300 Series User’s Guide Reboot Diagnostic Tools DestinationFlag s Interface Assigned IP Time Left Vigor3300 Series User’s Guide Network Setup WAN and Internet Access SetupBackup Load Balance IP Mode Default RouteWeight Backup-Master Static IP Setup Reset Host NameDomain Name Detect Type Dhcp Client Setup Request supported in the router PPPoE with a DSL Modem Setup Service NameUser Name Detect Interval Pptp with a DSL Modem Setup Pptp Local AddressPptp Subnet Mask Pptp Remote Address 2 LAN For LAN IP/DHCP For Dhcp Relay Agent WAN Interface For IP Routing LAN Interface Load Balance Policy ProtocolDest Port Start Dest Port End High Availability Delete/Delete AllSource IP/Subnet Mask Dest IP/Subnet Mask Vigor3300 Series User’s Guide Static Dhcp High AvailabilityGroup Number Role Advanced Setup Static Route Setup Edit the Static Route LAN , and WAN1~WAN4 Delete the Static RouteDestination IP NAT Setup Port Redirection Comment Public Port Range Private Port RangeUse IP Alias IP Alias Address Mapping DMZ Host Display the WAN interface chosen for this entry Radius Setup Configured in Network WAN interfaceCommon Ports List Alias addresses Enable/Disable Server IP AddressDestination Port Shared Secret Ddns Setup Port BlockIndex Port Number Interface should be any WAN port on V3300 series Login Name Login PasswordBackup MX Server Provider Call Schedule Setup Edit Call Schedule Up means to activate the Network Interface Delete Call ScheduleSelect some weekdays to apply Mirroring Port WAN Port Mirroring SetupMirrored Ports LAN Port Mirroring Setup LAN Vlan Setup P1 P4 For Port Base VlanVlan 0 Name For 802.1Q VlanMember Frame Tag Operation SnmpPort Valn ID Max Access Snmp CommunityCommunity Host/mask Vigor3300 Series User’s Guide Snmp Traps Trap ServerTrap Community Trap server port Vigor3300 Series User’s Guide General Setup Firewall SetupIP Filter Group Table Delete Source Port End Port Destination MaskDirection Fragments 2 DoS Further match or Pass if no further match of Block or Pass Value is Disable Enable Icmp FloodDoS Defense Defense URL Filter URL Access Control SurfControl, Restrict Web Feature and Filter Schedule SurfControl Restrict Web Feature Filter Schedule Always Block Quality of Service SetupBlock only at Vigor3300 Series User’s Guide Incoming/Outgoing Class Setup Disable/EnableIncoming/Outgoing Class Filter Class Name Priority Service Type StatusClass Port DiffServ CodePoint StatusBasic Only the DiffServ CodePoint Type field can be Advanced Only the DiffServ CodePoint field can be VPN and Remote Access Setup Configuration IPSecPolicy Table Delete All For Default Configuration Profile Status For Advanced Configuration Security ProtocolLocal Certificate Security Gateway Vigor3300 Series User’s Guide Delay Timeout Trust CA LogDate/Time User Certificate GenerateDownload Import Certification Name Name of the certification entry ID Type Domain Name Certificated by domain nameIP Certificated by IP address Email Certificated by email address 102 Status User Authentication Pptp AuthenticationPptp Encryption Authentication User Password192.168.1.224/28 Group Type username, password and choose proper group for this VoIP Setup Protocol For SIP Configuration For Mgcp Configuration Port Settings For Phone Number Port 1 FXS Hotline Codec VAD Enable or Disable VAD Voice Activity FXO Dtmf Mode For GroupCall Forwarding Call forwarding no answer after Range 1~10 rings Speed Dial Advanced Speed Dial PrefixStrip Length Append Miscellaneous Starting PortRedundancy Number Dialing Completion Tone Settings Region Caller ID Type Enable 7 QoSLink Fragmentation Interleaving Semi-auto, need to config NAT If you click this function NAT TraversalManually Input NAT IP Address Incoming Call Barring Set Allow List Deny List Call History Remote RTP Address Remote RTP PortRTP Statistic Codec Type 125 126 Trouble Shooting Checking If the Hardware Status Is OK or Not For Windows 129 For MacOs Pinging the Router from Your Computer For MacOs Terminal Checking If the ISP Settings Are OK or Not For PPPoE Mode For Static Mode For Dhcp Mode For Pptp Mode Backing to Factory Default Setting If NecessarySoftware Reset Hardware Reset Contacting Your Dealer Appendix a Application for 802.1 Vlan Block LAN-to-LAN Communication How to Check/Edit Vlan ID on Your PC? 139 140 141 142 143 144 Applications ProcedureFour VLANs for Different Departments in a Company 146 Two VLANs for Different Departments in a Company 148 Example for the Companies in the Same Building 150 Example for a Company and Guest 152 Example for Trunk Usage 154