Manuals / RCA / Computer Equipment / Network Router

RCA 620, 608WL, 605 SpeedTouch as VPN Server Configuration procedure, Select VPN VPN Server

Models: 620 608WL 605 608

1 208

Download 208 pages 17.1 Kb

Page 189

Chapter 5

Expert Configuration

5.7.3 VPN Server

The SpeedTouch™ as VPN Server

Configuration procedure

In a VPN client-server scenario, the VPN server is always the responder in the IKE negotiations. Various VPN clients can dial in to a VPN server, since it supports multiple simultaneous VPN connections. A VPN server does not know a priori which remote Security Gateway will attempt to set up a VPN connection. In time, new users may join the VPN. It is an advantage that the SpeedTouch™ VPN server requires no modifications to its configuration when new clients are added to the VPN. The SpeedTouch™ can establish a secure connection with any Remote Gateway that meets the VPN settings, regardless its location in the public network.

The use of the Extended Authentication protocol can optionally be configured. In this case, a list of authorized users is composed and stored in the SpeedTouch™.

Perform the following steps to configure your VPN server:

1Select VPN > VPN Server.

2Fill out the various parameter fields in the VPN Server web page.

3Select the IKE Authentication method. Either Preshared Key or Certificate Authentication can be selected.

4Click Apply to confirm the data and Save All to make the configuration permanent.

Optional: If you use the Extended Authentication protocol, you have to compose an authorized users list.

E-DOC-CTC-20051017-0151 v1.0	179

Image 189

RCA 620, 608WL, 605 manual SpeedTouch as VPN Server Configuration procedure, Select VPN VPN Server

Contents

SpeedTouch 605/608/608 WL/620 Page SpeedTouch 605/608 608 WL/620 Copyright TrademarksDocument Information Contents Basic Configuration Expert Configuration IP Router 121 Software Keys Contents About this User’s Guide Terminology Documentation and software updatesAbout this User’s Guide Getting to know your SpeedTouch SpeedTouch LED Behaviour Indicator Description Name Colour StateDSL Indicator Description Name LED StatusAccess Method Can be used to Accessing your SpeedTouchTo access the SpeedTouch via the Web interface Access via the Web InterfaceAccess via CLI To access the SpeedTouch via the Command Line Interface CLIFor more information, see Quote site command on To start a Telnet session Select All Programs Accessories Command PromptOpen a Command Prompt window Access via FTPUse Command Common FTP commandsFtp quote site ip iplist To access the SpeedTouch remotely To enable remote access To disable remote accessRemote Assistance Chapter Wired Ethernet Wireless Ethernet Local Network SetupFor more information, see Device settings on Wired EthernetIntroduction Wireless client requirements Wireless EthernetWireless Basics Chapter Connecting Wireless Clients for the First Time Wireless default settingsWireless Security on Click Connect Anyway First-time association exampleName Ssid Wireless SecuritySecurity disabled default Search for wireless devices taskWEP Wired-Equivalent Privacy WPA-PSK Wi-Fi Protected Access Pre-Shared KeySecurity issues Registering wireless clients Connecting Additional Wireless ClientsClick Configure Registering clients via Web pagesRegistering clients via the association button Wireless Distribution System WDS Extending the Range of Your Wirelstess NetworkChapter Chapter SpeedTouch Internet Connectivity Dial-In ClientsWeb Pages Internet GatewaySee 3.1 SpeedTouch Web Pages on page 31 to proceed If your computer runs You can useSpeedTouch Web Pages Introduction Starting an Internet sessionMonitoring your Internet connection Terminating an Internet session Internet Gateway Device Control Agent Internet connection status Terminating an Internet session Basic and Expert Mode SpeedTouch documentation Basic ConfigurationMenu Language Bar Navigation Bar Notification Area Tasks NavigationMenu items Collapsing and expanding the menu MenuLanguage Bar Navigation Bar Notification Area Tasks Home SpeedTouch homeSpeedTouch Broadband Connection Toolbox Office Network SpeedTouch Information Configuration Event Logs UpdateInformation SpeedTouch Easy Setup Restarting your RestartSpeedTouch Click Yes, restart my SpeedTouch. The SpeedTouch restartsConfiguration Accessing the Backup & Restore Back up & RestoreSaving your current configuration Restoring a previously saved configurationResetting the SpeedTouch factory defaults Reset to Factory DefaultsEvent Logs Indicator DescriptionUpdating the SpeedTouch system software UpdateDSL Connection Internet Services Broadband ConnectionBroadband Connection menu Connectivity Check Pick a task list, click Check connectivity to the InternetClick Check Connectivity DSL Connection Internet Services Internet Service Settings Accessing the Internet Service Settings OverviewBroadband Connection menu, click Internet Services Toolbox Username Password Enabling Remote AssistanceTerminating remote assistance Game & Application Sharing Chapter Defined Games & Applications Accessing the Defined Games & ApplicationsConfigure Under Accessing the Game or Application Definition OverviewGame or Application Definition Game or Application Name you canAdding a Port Translation rule Creating a new game or application New Game or ApplicationWeb Site Filtering Allow access to a specific Web site Deny access to a specific Web siteRedirect a Web site Proceed as follows Allow is selected under Action for Unknown SitesUnder Content Based Filtering you can Configure content based filtering settingsRedirecting all Web sites Click Redirect in the Action listWeb Filtering Activation Accessing this page Proceed as followsWeb Filtering Activation Standard license activation Click StandardAccessing the Content Level Content LevelToolbox menu, click Web Site Filtering Click Configure Icon DescriptionNew Content Level Accessing the New Content LevelContent level creation Proceed as follows Chapter High FirewallMedium StandardDetails of a security level Creating a new security level DisabledEditing a security level Proceed as follows LowDestination Interface and IP Address range Source Interface and IP Address rangeIntrusion Detection Dynamic DNS On the Dynamic DNS page, click ConfigureUser Privileges User ManagementChapter Edit User Editing a user account Proceed as followsToolbox menu, click User Management Change Default User Changing the default userChange Default User page appears Add User Office Network DevicesInterfaces Devices See 4.6.2 Device Settings on page 84 for more informationAccessing the device settings Overview Device SettingsOffice Network menu, click Devices Connection SharingChapter Assigning the public IP address to a device Assign Public IPWireless Device Settings Accessing the wirelessDevice settings Access Point Settings Accessing the AccessPoint settings Broadcast Network Name Allow multicast from Broadband NetworkAllow New Devices Encryption128 bit, Alphanumeric 64 bit, Hexadecimal128 bit, Hexadecimal Select Use WPA-PSK EncryptionFor more information, see Allowing new wireless on Access control on the SpeedTouchNew stations are allowed automatically New stations are allowed via registrationInformation, see 4.6.4 Wireless Device Settings on Click Configure Pick a task list, click Configure WDS Configuring WDSPick a task list, click Scan for wireless Access Points Establishing a WDS connectionInterfaces Assigning a new IP address to the SpeedTouch Interface SettingsDhcp Pool Accessing the Dhcp Pool Dhcp PoolOffice Network menu, click Interfaces Components of the Dhcp Pool Chapter Click Expert ConfigurationIP Router Connections100 101 Diagnostics Easy SetupSystem Update SpeedTouch ServicesEasy Setup See 5.2.6 System Update on page 110 for more information Diagnostics DSL Line Info Configuration SystemSystem Information If result is ThenSoftware Release Board Name Serial Number Product Code Product NameConnections If the status is Then DiagnosticsMessages Configuration SyslogFacility Severity 109 System Update System configuration System UpgradeSee Upload system files on page 110 for more information Manage configuration files Switchtoanothersystem software version Upload system software Proceed as followsSystem software version SpeedTouch Services View detailed SpeedTouch service informationEdit SpeedTouch service properties Service properties Edit SpeedTouch service propertiesType Indicates a SpeedTouch service that Sntp Client Manual SntpModify ping test properties 9 SLADelete the entry see Add/delete a traceroute test Modify traceroute test propertiesModify traceroute test Add/delete a traceroute testProperties Traceroute tests and resultsAdd-on IP Router IP Addresses Add/change an IP addressSelect Obtain an IP address automatically Expressions Interface ServiceRelated expression Interface Expressions Properties tableAdding an IP related expression Service Adding a service related expressionTCP Ack class ClassificationIndex ServiceName LabelAdding an IP route To add an IP route IP Routing5 RIP Configuration Interfaces Neighbours6 NAT Creating a NAT template MappingGroup TypeIP QoS Configuration Queues MeterDiscard WFQ queue WeightPriority WfqAckFilter PropagateDrop rate Mark rate# compliant # markedDrop action Mark actionRouted PPPoA Routed PPPoERouted PPPoI Bridged EthernetConnection Service Name 1 ATMPhonebook QoS Book Interfaces Identifiers VPI and VCI Upper layer protocol Routed PPPoE Creating a Routed PPPoE connection entryRouting Other Manually ModeAlways-On On-DemandIntroduction Creating a Routed PPPoA connection entry Routed PPPoA142 143 Availability Routed PPPoIIntroduction Creating a Routed145 146 Vlan Bridged Ethernet148 Vlan interface configuration Routed Ethernet Creating a new Routed Routed IPoAIPoA Ethernet Interface Generated IP routesPPTP-to-PPP Relay Virtual LAN Managed Switch WirelessLocal Networking Activate server DhcpActivate verify first Activate trust clientAddress Client IDPool UsedSecondary DNS Server Primary DNS ServerRelay Interfaces Relay ConfigRequesting InitSelecting Bound2 DNS Configuration Hostname TableOverview Managed Ethernet Switch Managed Switch162 Wireless Rate Interoperability ModeOnly stations with correct Network name Ssid can connect FrameburstingChannel Selection list, click auto Network Name broadcast Interoperability ModeClear wireless interface enabled Enable/disable the wireless interfaceSelect Wireless interface enabled Security Mode settings Access Control settingsBits, Alphanumeric Select Security Level 1 WEPBits, Hexadecimal Select Security Level 2 WPA-PSK WPA PersonalSelect Security Level 2 WPA Scan for Other Networks Expressions on PolicyLog Policy Buttons Click Reset Flags EnableClick Customize Destination Interface174 2 Log VPN Procedure ConfigurationLAN to LAN Remote Gateway Address Known as the starting page whenConfiguration procedure VPN ClientSelect VPN VPN Client SpeedTouch as VPN Server Configuration procedure VPN ServerSelect VPN VPN Server Certificates Advanced Browse to Expert mode VPN Debug Logging Browse again to Expert mode VPN Debug LoggingDebug SIP PBX General Location Service Call Logging Call Screening184 HowtoactivateaSoftware module Software Keys186 Troubleshooting SpeedTouch does not work SpeedTouch unreachable General SpeedTouch TroubleshootingPoor SpeedTouch PerformanceLANLEDdoesnotlightup Make sure that Wired Ethernet TroubleshootingNot able to connect wireless clients Wireless Ethernet TroubleshootingMessage Due to Upgrade TroubleshootingUPnP on Windows XP Systems Adding IGD Discovery and Control Software reset Hardware reset Resetting your SpeedTouch195 196 Page Need more help?