Chapter 3

Advanced Configuration

VPN Tunnel

The Router creates a tunnel between two endpoints, so that the data traveling between these endpoints is secure.

Select Tunnel Entry  Select the tunnel you wish to create. It is possible to create up to 50 simultaneous tunnels.

Delete  To delete a tunnel, select it from the drop-down menu, and then click Delete.

Summary  To view summary information about a tunnel, select it from the drop-down menu, and then click Summary.

VPN Tunnel  To enable a tunnel, select it from the drop- down menu, and then click Enabled. To disable a tunnel, select Disabled.

Tunnel Name  Enter a name for this VPN tunnel, such as Los Angeles Office, Chicago Branch, or New York Division. This allows you to identify multiple tunnels and does not have to match the name used at the other end of the tunnel.

Interface  Select the appropriate WAN port, WAN1 or WAN2 (available if the Dual WAN feature is enabled).

Enable  Check this box to enable a VPN tunnel. (When you create a VPN tunnel, this check box will be disabled.)

Local Secure Group and Remote Secure Group

A Local Secure Group is a computer(s) on your network that can access the tunnel. A Remote Secure Group is a computer(s) on the remote end of the tunnel that can access the tunnel. For the Local Secure Group, select Subnet, IP Address, or IP Range. For the Remote Secure Group, select Subnet, IP Address, IP Range, Host, or Any.

NOTE:The Local Secure Group you select should match the Remote Secure Group selected on the VPN device at the other end of the tunnel.

Local and Remote Secure Group

Subnet

The default is Subnet. All computers on the local subnet will be able to access the tunnel.

IP and Mask  Enter the appropriate addresses. The default value of 0 should remain in the last fields of the IP and Mask settings.

IP Address

Only the computer with a specific IP address will be able to access the tunnel.

IP Addr.  Enter the appropriate address.

IP Range

This option is a combination of the Subnet and IP Address options.

IP Range  Specify a range of IP addresses within the subnet that will have access to the tunnel.

Host and Any are options for the Remote Secure Group only.

Host

The Remote Secure Group will be the same as the Remote Security Gateway Setting: IP Address, FQDN (Fully Qualified Domain Name), or Any.

Any

The local VPN Router will accept a request from any IP address. Select this option when the other endpoint is using DHCP or PPPoE on the Internet side.

Remote Security Gateway

The Remote Security Gateway is the VPN device, such as a second VPN Router, on the remote end of the VPN tunnel. Select IP Address, FQDN, or Any.

Remote Security Gateway

IP Address

IP Addr.  Enter the IP address of the VPN device on the other end of the tunnel. The remote VPN device can be another VPN Router, a VPN server, or a computer with VPN client software that supports IPSec. Make sure that you have entered the address correctly.

NOTE: Make sure you enter the IP address of the remote VPN device, NOT the local VPN Router.

FQDN

FQDN  Enter the Fully Qualified Domain Name (FQDN) of the VPN device at the other end of the tunnel. The remote VPN device can be another VPN Router, a VPN server, or a computer with VPN client software that supports IPSec. The FQDN is the host name and domain name

EtherFast Cable/DSL VPN Router with 4-Port Switch

10

Page 13 Page 15
Page 14
Image 14
Linksys BEFVP41 manual VPN Tunnel, Local Secure Group and Remote Secure Group, Remote Security Gateway
Page 13 Page 15

BEFVP41 specifications

The Linksys BEFVP41 is a sophisticated yet user-friendly VPN router designed primarily for small office and home office networks. Known for its robust performance and versatility, it stands out as a solid choice for users looking to enhance their network security and connectivity.

One of its key features is the built-in VPN support, which allows users to establish secure connections to remote networks or clients. The BEFVP41 supports up to 50 simultaneous VPN connections, making it an excellent option for small businesses that require secure remote access for their employees without compromising on speed or reliability.

The router employs advanced security protocols including IPsec, which is well-known for ensuring encrypted communication over the internet. This level of security enables users to safeguard sensitive data and maintain privacy while accessing their networks remotely, critical for businesses that handle confidential information.

In terms of connectivity, the BEFVP41 is equipped with four Ethernet ports that support 10/100 Mbps speeds, allowing for high-speed wired connections. It also features a WAN port for connection to a broadband modem, ensuring a fast and stable internet connection. The router supports various connection types, including DHCP, static IP, and PPPoE, making it versatile for different networking environments.

Additional features include a user-friendly web-based interface, which simplifies the setup and configuration process for users. This intuitive design is combined with powerful QoS (Quality of Service) capabilities, enabling prioritized bandwidth allocation to specific applications or users, ensuring that critical business applications have the necessary speeds and reliability.

The BEFVP41 also offers dynamic DNS support, which allows users to access their home or office network using a domain name instead of remembering an IP address. Moreover, it includes a DHCP server for automated IP address assignment, making network management more streamlined.

Overall, the Linksys BEFVP41 combines essential networking technologies and security features into a compact design suitable for any small business or home office environment. With its robust performance, extensive VPN capabilities, and user-friendly interface, it caters effectively to the diverse needs of modern network requirements. The BEFVP41 is a reliable solution for those looking to enhance their connectivity while maintaining security and ease of use.
Top Page Image Contents