LANCOM 821 ADSL/ISDN – LANCOM 1621 ADSL/ISDN – LANCOM 1711 VPN

Chapter 8: Security settings

Have you assigned a password for the configuration?

The simplest option for the protection of the configuration is the estab- lishment of a password. As long as a password hasn't been set, anyone can change the configuration of the device. The field for entering the password is contained in LANconfig in the 'Management' configuration area on the 'Security' tab. It is particularly required to assign a password to the configuration if you want to allow remote configuration.

Have you permitted remote configuration?

If you do not require remote configuration, then deactivate it. If you require remote configuration, then be sure to assign a password protec- tion for the configuration (see previous section). The field for deactivating the remote configuration is also contained in LANconfig in the 'Manage- ment' configuration area on the 'Security' tab. Select here under 'Access rights - of remote networks' for all types of configuration the option 'not allowed'.

Have you provided the SNMP configuration with a password?

Also protect the SNMP configuration with a password. The field for pro- tection of the SNMP configuration with a password is also contained in LANconfig in the 'Management' configuration area on the 'Security' tab.

Have you activated the Firewall?

The Stateful Inspection Firewall of the LANCOM ensures that your local network cannot be attacked from the outside . The Firewall can be ena- bled in LANconfig under ’Firewall/QoS’ on the register card ’General’.

Do you make use of a ’Deny All’ Firewall strategy?

For maximum security and control you prevent at first any data transfer through the Firewall. Only those connections, which are explicitly desired have to allowed by the a dedicated Firewall rule then. Thus ’Trojans’ and certain Email viruses loose their communication way back. The Firewall rules are summarized in LANconfig under ’Firewall/Qos’ on the register card ’Rules’.

Have you activated the IP masquerading?

IP masquerading is the hiding place for all local computers for connection to the Internet. Only the router module of the unit and its IP address are visible on the Internet. The IP address can be fixed or assigned dynami- cally by the provider. The computers in the LAN then use the router as a gateway so that they themselves cannot be detected. The router separates Internet and intranet, as if by a wall. The use of IP masquerading is set

EN

69

Page 69
Image 69
Lancom Systems 821, 1711 Have you assigned a password for the configuration?, Have you permitted remote configuration?

1621, 1711, 821 specifications

Lancom Systems is a notable player in the networking solutions market, and its range of routers, specifically the 821, 1621, and 1711 models, showcases the company's commitment to delivering robust, high-quality products for various enterprise needs. Each model brings distinct features, making them suitable for different environments and operational demands.

The Lancom 821 is particularly designed for small to medium-sized enterprises (SMEs) requiring reliable internet connectivity and secure networking. This router supports various VPN technologies, ensuring secure data transmission across the organization. Equipped with advanced firewall capabilities, the 821 can handle multiple connections while protecting against potential cyber threats. Its support for IPv6 enhances compatibility with future networks, making it a long-term investment. The device’s manageable architecture allows for remote access and troubleshooting, reducing the need for on-site IT interventions.

On the other hand, the Lancom 1621 is tailored for larger organizations or those with more extensive networking demands. This model offers enhanced throughput and is capable of managing large volumes of traffic without compromising performance. It features a variety of WAN connection options, including DSL, LTE, and fiber, allowing businesses to choose the best solution for their requirements. The 1621 also incorporates sophisticated Quality of Service (QoS) settings, which prioritize critical applications to ensure optimal performance during peak times. Built-in redundancy features enhance reliability, making it an excellent choice for mission-critical applications.

The Lancom 1711 takes networking capabilities a step further, targeting enterprises with even more complex needs. It boasts advanced routing and switching features, making it suitable for enterprise-grade deployments. The 1711 supports enterprise WLAN management, allowing seamless integration with wireless access points. Its robust performance over WAN connections enables the deployment of various real-time applications, such as voice over IP (VoIP) and video conferencing, without latency issues. Security is a top priority, with features including an IPSec VPN and integrated threat detection to safeguard organizational data.

In summary, the Lancom 821, 1621, and 1711 routers serve as versatile tools for businesses, each designed with distinct capabilities to meet specific networking needs. Their strengths lie in their security features, support for various connection types, and reliable performance under heavy loads. With these devices, organizations can ensure that their network infrastructure not only meets current demands but is also poised for future growth.