Manuals / Lancom Systems / Computer Equipment / Network Router

Lancom Systems 821, 1711, 1621 manual Have you assigned a password for the configuration?

Models: 1621 1711 821

1 82

Download 82 pages 23.97 Kb

Page 69

Have you assigned a password for the configuration?

LANCOM 821 ADSL/ISDN – LANCOM 1621 ADSL/ISDN – LANCOM 1711 VPN

Chapter 8: Security settings

Have you assigned a password for the configuration?

The simplest option for the protection of the configuration is the estab- lishment of a password. As long as a password hasn't been set, anyone can change the configuration of the device. The field for entering the password is contained in LANconfig in the 'Management' configuration area on the 'Security' tab. It is particularly required to assign a password to the configuration if you want to allow remote configuration.

Have you permitted remote configuration?

If you do not require remote configuration, then deactivate it. If you require remote configuration, then be sure to assign a password protec- tion for the configuration (see previous section). The field for deactivating the remote configuration is also contained in LANconfig in the 'Manage- ment' configuration area on the 'Security' tab. Select here under 'Access rights - of remote networks' for all types of configuration the option 'not allowed'.

Have you provided the SNMP configuration with a password?

Also protect the SNMP configuration with a password. The field for pro- tection of the SNMP configuration with a password is also contained in LANconfig in the 'Management' configuration area on the 'Security' tab.

Have you activated the Firewall?

The Stateful Inspection Firewall of the LANCOM ensures that your local network cannot be attacked from the outside . The Firewall can be ena- bled in LANconfig under ’Firewall/QoS’ on the register card ’General’.

Do you make use of a ’Deny All’ Firewall strategy?

For maximum security and control you prevent at first any data transfer through the Firewall. Only those connections, which are explicitly desired have to allowed by the a dedicated Firewall rule then. Thus ’Trojans’ and certain Email viruses loose their communication way back. The Firewall rules are summarized in LANconfig under ’Firewall/Qos’ on the register card ’Rules’.

Have you activated the IP masquerading?

IP masquerading is the hiding place for all local computers for connection to the Internet. Only the router module of the unit and its IP address are visible on the Internet. The IP address can be fixed or assigned dynami- cally by the provider. The computers in the LAN then use the router as a gateway so that they themselves cannot be detected. The router separates Internet and intranet, as if by a wall. The use of IP masquerading is set

EN

69

Image 69

Lancom Systems 821, 1711 Have you assigned a password for the configuration?, Have you permitted remote configuration?

Contents

LANCOM 821 ADSL/ISDN - LANCOM 1621 ADSL/ISDN - LANCOM 1711 VPN 2005 LANCOM Systems GmbH, Wuerselen Germany. All rights reserved Preface Security settingsThank you for placing your trust in this LANCOM product User manual and reference manualModel variants This documentation was compiled …info@lancom.de Notes symbols Important instruction that should be followedAdditional instructions which can be helpful, but are not required Installation ContentsBasic configuration Setting up Internet accessLinking two networks Providing dial-up accessSending faxes with LANCAPI Security settingsAppendix TroubleshootingHow does ADSL work? IntroductionHigh speed via standard telephone lines would be possible when relying solely on the telephone networkIdeal for Internet surfers All services via a single cable-thanks to the splitterInternet ADSL providerCode ADSL-over-ISDN or ADSL-over-POTS?1.2 Which use does VPN offer? Conventional network infrastructure Networking via the Internet 1.3 Firewall Further important features of the Firewall are Intrusion DetectionInternet 1.4 What does a router do? Denial-of-Service ProtectionQuality-of-Service / Traffic management 1.4.2 Areas of deployment for routers 1.4.1 Bridgehead to the WANLANCOM 821 ADSL 1.5 What can your LANCOM do?LANCOM 1621 ADSL LANCOM 1711 DSLLANCOM 1621 ADSL LANCOM 821 ADSLLANCOM 1711 DSL WAN connectionLANCOM 821 ADSL ConfigurationLANCOM 1621 ADSL LANCOM 1711 DSL2 Installation 2.1 Package contents2.2 System preconditions 2.3 Introducing LANCOM 2.3.1 Status displaysFront side Meanings of the LEDs Top panelCompletely deactivate the lock that has been triggered set limit to Flashing Power LED but no connection?The Online LED indicates the overall status of all WAN ports LANCOMConnection status of the WAN connection Connection status of the ADSL linkData traffic via the ADSL link Data traffic via the DSL connectionStatus of the four LAN ports in the integrated switch Status of ISDN S0 connectionSeparate status display for both ISDN B channels Voltage switch Connection for the included power adapter Reset switch 2.3.2 The back of the unitSwitch with four 10/100Base-Tx connections Serial configuration port ISDN/S0 port ADSL port2.4 Hardware installation using the included power adapter ADSL connector cable transparent plugsConnect to power - Connect socket DSL - connect the WAN interface2.5.1 Starting LANCOM setup 2.5 Software installation2.5.2 Which software should you install? 3 Basic configuration 3.1.1 TCP/IP settings3.1 Which information is necessary? Configure manually nevertheless? New LAN-fully automatic configuration possibleInformation required for manual TCP/IP configuration IP address and netmask for the LANCOM3.1.3 Settings for the DSL connection 3.1.2 Configuration protection3.1.4 Settings for the ISDN connection Enable DHCP server?3.2 Instructions for LANconfig LANconfig3.1.5 Connect charge protection Complete the configuration with Finish Network without DHCP server 3.3 Instructions for WEBconfigNetwork with DHCP server Starting the wizards in WEBconfigIf you cannot access an unconfigured LANCOM, the problem may be due to the netmask of the LAN with less than 254 possible hosts net- mask 255.255.255.0, please ensure that the IP address x.x.x.254 is located in your own subnet Entering the password in the web browser IP address assignment via the LANCOM default 3.4 TCP/IP settings to workstation PCsIP address assignment via a separate DHCP server Manual IP address assignmentPage Does the setup wizard know your Internet provider? 4 Setting up Internet accessAdditional information for unknown Internet providers ADSLUser name and password Additional connection optionsProtocol PPPoE, PPTP or Plain Ethernet IPoE Dynamic channel bundling ISDN only4.2 Instructions for WEBconfig 4.1 Instructions for LANconfigTools Setup Wizard LANconfig Quick access to the setup wizardsAlways configure both sides 5 Linking two networksSecurity aspects 5.1.1 General information 5.1 What information is necessary?NetBIOS routing for access to remote net IPX routing for access to remote networkHide local stations for access to remote net TCP/IP routing for access to remote networkNetmask 5.1.2 Settings for the TCP/IP router5.1.3 Settings for the IPX router DNS access to the remote LANExtranet VPN 5.1.4 Settings for NetBIOS routing 5.3 Instructions for WEBconfig 5.2 Instructions for LANconfigPing - quick testing for TCP/IP connections 6 Providing dial-up access 6.1 Which information is required?Security aspects Notes to the individual values 6.1.1 General informationCoupling EntryThe ISDN calling line identity CLI 6.1.2 Settings for TCP/IP6.1.3 Settings for IPX 6.1.4 Settings for NetBIOS routingUser SAMPLE 6.2 Settings for the dial-in computer 6.2.1 Dial-up via VPN6.2.2 Dial-up via ISDN 6.3 Instructions for LANconfig 6.4 Instructions for WEBconfig ISDN 7 Sending faxes with LANCAPI7.1 Installation of the LANCOM CAPI fax modem Select the entry Install LANCOM software in the setup program of yourLANCOM CD Select the option Printers and Faxes from the control panel 7.2 Installation of the MS Windows fax service7.3.2 Send a fax with the MS Windows fax service 7.3 Sending a fax7.3.1 Send a fax with any given office application LANCOM 821 ADSL/ISDN - LANCOM 1621 ADSL/ISDN - LANCOM 1711 VPN 8 Security settings 8.1 The security settings wizard8.1.1 Wizard for LANconfig 8.1.2 Wizard for WEBconfig 8.2.1 Wizard for LANconfig8.2 The firewall wizard 8.3 The security checklist 8.2.2 Configuration under WEBconfigRules Have you permitted remote configuration? Have you assigned a password for the configuration?Have you activated the Firewall? Do you make use of a ’Deny All’ Firewall strategy?Have you excluded certain stations from access to the router? Is your saved LANCOM configuration stored in a safe place?Have you closed critical ports with filters? Problems with the cabling? 9 Troubleshooting9.1 No WAN connection is established 9.2 DSL data transfer is slow9.3 Unwanted connections under Windows XP 9.4 Cable testingIncreasing the TCP/IP window size under Windows LAN statisticsChange then to menu item Expert configuration Status LAN statis 10 Appendix 10.1 Performance data and specificationsLANCOM LANCOMLANCOM Temperature rangeLANCOM LANCOM10.2.1 ADSL interface 10.2 Contact assignmentConnector LANCOM10.2.3 ISDN-S0 interface 10.2.2 Ethernet WAN interface LANCOM 1711 VPNConnector Connector10.3 CE declaration of conformity 10.2.5 Configuration interface Outband10.2.4 Ethernet interfaces 10/100Base-T ConnectorNumerics IndexISDN leased line option 15, 17see status displays Setting up access to the InternetWide Area Network WAN Stateful Inspection Firewall