Manuals / TRENDnet / Computer Equipment / Network Router

TRENDnet TW100-BRV204, VPN Firewall Router manual Password Dialog, Security Configuration

Models: VPN Firewall Router TW100-BRV204

1 123

Download 123 pages 41.73 Kb

Page 56

Image 56

Security Configuration

Figure 35: Password Dialog

Enter the "User Name" and "Password" you set on the Admin Login screen above.

Page 56

Image 56

TRENDnet TW100-BRV204, VPN Firewall Router manual Password Dialog, Security Configuration

Contents

Users Guide Cable/DSL Internet Access 4-Port Switching HubTW100-BRV204 VPN Firewall Router Table of Contents P/N 9560KZ0101 Copyright  2003. All Rights Reserved Document Version TW100-BRV204 Features Internet Access FeaturesIntroduction ChapterLAN Features Configuration & ManagementSecurity Features Advanced Internet FunctionsPackage Contents VPN Gateway FeaturesPhysical Details Front-mounted LEDsRear Panel Installation ProcedureRequirements This Chapter covers the physical installation of the TW100-BRV2045. Check the LEDs 4. Power Up3. Connect WAN Cable Setup OverviewThis Chapter provides Setup details of the TW100-BRV204 ChapterConfiguration Program PreparationIf you cant connect Using your Web BrowserFigure 5 Password Dialog Setup Wizard Common Connection TypesType DetailsOther Modems e.g. Broadband Wireless Big Pond Cable AustraliaSingTel RAS TypeHome Screen Navigation & Data InputWAN Port Configuration Screen Data - WAN Port ScreenIdentification IP AddressLogin Internet Options screenAlso called Network Adapter Address or Physical Address. This is a MAC AddressMAC Address LAN Screen Data - LAN ScreenTCP/IP ButtonsDHCP Using the TW100-BRV204 s DHCP ServerUsing another DHCP Server To Configure your PCs to use DHCPPC Configuration TCP/IP Settings - OverviewWindows Clients ChapterUsing Specify an IP Address Checking TCP/IP Settings - Windows 9x/MEUsing DHCP Figure 12 DNS Tab Win 95/98 PC ConfigurationFigure 11 Gateway Tab Win 95/98 TW100-BRV204 User Guide Checking TCP/IP Settings - Windows NT4.0Figure 13 Windows NT4.0 - TCP/IP Figure 14 Windows NT4.0 - IP Address Obtain an IP address from a DHCP ServerSpecify an IP Address Figure 15 - Windows NT4.0 - Add Gateway PC Configuration Figure 16 Windows NT4.0 - DNS1. Select Control Panel - Network and Dial-up Connection Checking TCP/IP Settings - WindowsFigure 17 Network Configuration Win Figure 18 TCP/IP Properties Win 1. Select Control Panel - Network Connection Checking TCP/IP Settings - Windows XPFigure 19 Network Configuration Windows XP Figure 20 TCP/IP Properties Windows XP Using DHCPUsing a fixed IP Address Use the following IP Address Internet Access Accessing AOL1. Select Start Menu - Settings - Control Panel - Internet Options 2. Select Set up or change your Internet ConnectionMacintosh Clients Linux ClientsOther Unix Systems Fixed IP AddressOperation and Status OperationStatus Screen ChapterData - Status Screen InternetSystem ButtonsConnection Status - PPPoE Data - PPPoE ScreenConnection Connection LogConnection Log Messages ButtonsConnect DisconnectConnection Status - PPTP Data - PPTP ScreenConnection Connection LogConnection Connection Status - Telstra Big PondData - Telstra Big Pond Screen Connection Details - SingTel RAS Data - SingTel RAS ScreenConnection Log ButtonsNetwork Mask ButtonsConnection Details - Fixed/Dynamic IP Address Data - Fixed/Dynamic IP address ScreenInternet ButtonsRenew RefreshInternet Features Advanced Internet ScreenChapter OverviewCommunication Applications Special ApplicationsSpecial Applications Screen Communication ApplicationsUsing a Special Application Data - Special Applications ScreenFigure 28 Special Applications Screen CheckboxURL Filter URL Filter Screen Data - URL Filter ScreenFilter Strings ButtonsDDNS Service Dynamic DNS Domain Name ServerDynamic DNS Screen Password DDNS DataUser Name Domain NameVirtual Servers IP Address seen by Internet UsersConnecting to the Virtual Servers Virtual Servers ScreenDefining your own Virtual Servers ServersData - Options Screen OptionsBackup DNS Security Configuration Admin LoginFigure 34 Admin Login Screen ChapterFigure 35 Password Dialog Security ConfigurationAccess Control Access Control ScreenIf required, you can also define your own Services GroupInternet Access ServicesCancel Members ButtonAccess Control Log Group Members ScreenPCs not assigned to any group will be in the Default group PCs deleted from any other Group will be added to the Default groupRule List Firewall RulesFirewall Rules Screen For each rule, the following data is shown Define Firewall Rule Data - Define Firewall Rule ScreenAction ServicesDest IP Data - Logs Screen LogsEnable Logs Syslog Server TimezoneE-Mail Logs SPI Firewall Security OptionsData - Security Options Screen Options Respond toICMP Allow IPsecScheduling Define Schedule ScreenServices Data - Services ScreenAvailable Services Add New ServiceDelete the selected service from the list Add a new entry to the Service list, using the data shown in the AddNew Service area on screen Clear the Add New Service area, ready for entering data for a newOverview IPSecChapter VPN Configuration PoliciesRemote VPN address Traffic SelectorClient PC to VPN Gateway Common VPN SituationsVPN Pass-through Connecting 2 LANs via VPN Figure 46 Connecting 2 VPN GatewaysVPN Configuration VPN Policies ScreenVPN List OperationsAdding a New Policy Enable/DisableMove CopyGeneral Settings Local IP addresses Remote IP addresses Manual Key ExchangeESP Authentication tion is enabledManually assigned Keys KeysIKE Phase Figure 52 VPN Wizard - IKE PhaseIKE Phase 1 IKE SA AuthenticationFigure 53 VPN Wizard - IKE Phase IKE Phase 2 IPsec SAAH Authentication IKE SA Life TimeFor IKE, configuration is now complete Example 1 Connecting 2 TW100-BRV204s ExamplesSetting LAN A GateIPSec SA Parameters Example 2 Windows 2000/XP Client to LAN TW100-BRV204 ConfigurationSetting ValueWindows Client Configuration Figure 56 Windows 2000/XP - Local Security SettingsDeselect Activate the default response rule. Click Next IPSec SA ParametersFigure 57 Windows 2000/XP - Policy Properties Figure 58 IP Filter ListFigure 60 New Rule Properties IP Filter List Figure 59 Filter Properties Addressing8. Enter the Source IP address and the Destination IP address 12. Select Negotiate security this selects IKE, then click Add Figure 61 New Rule Properties Filter ActionFigure 62 Require Security Properties VPN Setting Windows SettingFigure 63 Modify Security Method Figure 64 Require Security PropertiesFigure 65 Tunnel Setting Figure 66 Authentication MethodFigure 67 Windows 2000/XP Client to Broadband VPN Gateway Figure 68 Windows 2000/XP Client to Broadband VPN GatewayFigure 70 Filter List Figure 69 Filter Properties Addressing22. Click OK to save your changes, then Close Figure 71 Filter Action Figure 72 Security MethodsFigure 74 Tunnel Setting Figure 73 Modify Security MethodFigure 75 Authentication Method Figure 76 DUT to Win2K Properties31. Select the General tab TW100-BRV204 User GuideFigure 78 Key Exchange Settings Figure 77 Properties - General Tab32. Click the Advanced button to see the screen below 33. Click the Methods button to see the screen belowConfiguration is now complete Figure 79 Key Exchange Security MethodsFigure 80 IKE Security Algorithms Figure 81 Windows 2000/XP Client to Broadband VPN GatewayExample 3 Windows 2000 Server to VPN Gateway SettingFigure 82 TW100-BRV204 to Windows 2000 Server Single ClientWindows 2000 Server Configuration Figure 83 Windows 2000 Server - AddressingSelf Certificates Using CertificatesTrusted Certificates Adding a Trusted Certificate Adding a Self CertificateSubject Name Hash AlgorithmSignature Algorithm Signature Key LengthCRLs To add a New CRLFigure 90 Upload CRL 4. Upload the CRL fileClick the Browse button, and locate the CRL file on your PC Select the file. The name will appear in the File to Upload fieldOverview Other Features and SettingsChapter Config File Data - Config File ScreenPC Database PC Database ScreenButtons Other Features and SettingsData - PC Database Screen PC Properties PC Database AdminData - PC Database Admin Screen IP Address ButtonsRemote Administration Data - Remote Administration ScreenRemote Administration To connect from a remote PC via the InternetRouting OverviewRouting Screen Open Routing and Remote AccessEnable RIP Data - Routing ScreenFigure 95 Routing Screen Static RoutingConfiguring Other Routers on your LAN Local RouterOther Routers on the Local LAN ButtonsStatic Routing - Example For Router As Default RouteFor Router Bs Default Route For the TW100-BRV204 s Routing TableUpgrade Firmware To perform the Firmware UpgradeUPNP Data - UPNP ScreenUPnP ertiesTroubleshooting General ProblemsInternet Access Appendix AIt is a security risk, since the firewall is disabled Appendix B Specifications TW100-BRV204FCC Statement CE Marking Warning FCC Radiation Exposure Statement