Proxicast LAN-Cell 2 User's Guide Page 209
- Page / 650
- Table of contents
- TROUBLESHOOTING
- BOOKMARKS
Rated. / 5. Based on customer reviews
LAN-Cell 2 User’s Guide
209
CHAPTER 10
IPSec VPN Config Screens
10.1 IPSec VPN Overview
A virtual private network (VPN) provides secure communications between sites without the
expense of leased site-to-site lines. A secure VPN is a combination of tunneling, encryption,
authentication, access control and auditing. It is used to transport traffic over the Internet or
any insecure network that uses TCP/IP for communication.
Internet Protocol Security (IPSec) is a standards-based VPN that offers flexible solutions for
secure data communications across a public network like the Internet. IPSec is built around a
number of standardized cryptographic techniques to provide confidentiality, data integrity and
authentication at the IP layer.
The following figure provides one perspective of a VPN tunnel.
Figure 123 VPN: Example
The VPN tunnel connects the LAN-Cell (X) and the remote IPSec router (Y). These routers
then connect the local network (A) and remote network (B).
10.1.1 What You Can Do in the IPSec VPN Screens
• Use the VPN Rules (IKE) screens (see Section 10.2 on page 212) to manage the LAN-
Cell’s list of VPN rules (tunnels) that use IKE SAs.
• Use the VPN Rules (Manual) screens (see Section 10.3 on page 227) to manage the
LAN-Cell’s list of VPN rules (tunnels) that use manual keys. You may want to configure a
VPN rule that uses manual key management if you are having problems with IKE key
management.
• Use the SA Monitor screen (see Section 10.5 on page 231) to display and manage active
VPN connections.
- LAN-Cell 2 1
- Contents Overview 3
- Chapter 6 7
- Chapter 7 7
- Chapter 8 8
- Chapter 9 8
- Chapter 10 9
- Chapter 11 9
- Table of Contents 18
- About This User's Guide 19
- Document Conventions 20
- Icons Used in Figures 21
- Safety Warnings 22
- Safety Warnings 23
- Introduction 25
- CHAPTER 1 27
- 1.4.1 3G WAN Applications 28
- 1.4.3 VPN Application 29
- 1.5 Front Panel Indicators 30
- 1.6 Rear Panel Connections 31
- 1.7 Card-Lock 32
- Figure 8 Card-Lock Step 3 33
- Figure 9 Card-Lock Step 4 33
- Figure 10 Card-Lock Step 5 34
- Figure 11 Card-Lock Step 6 34
- CHAPTER 2 35
- 2.3.1 Title Bar 37
- 2.3.2 Navigation Panel 38
- 2.3.3 Main Window 40
- 2.3.4 HOME Screen 41
- 2.3.5 Port Statistics 45
- 2.3.7 DHCP Table Screen 47
- 2.3.8 VPN Status 48
- 2.3.9 Bandwidth Monitor 49
- 2.3.10 Status Bar 50
- 2.4 Resetting the LAN-Cell 51
- CHAPTER 3 53
- Figure 24 Tutorial: Home 56
- 3.2 VPN Wizard Overview 57
- Policy icon 67
- Network & Wireless 75
- CHAPTER 4 77
- IP Address and Subnet Mask 78
- Private IP Addresses 78
- Chapter 4 LAN Screens 79
- 4.2 LAN Screen 80
- Figure 41 NETWORK > LAN 81
- Table 15 NETWORK > LAN 81
- Chapter 4 LAN Screens 82
- 4.3 LAN Static DHCP Screen 83
- 4.4 LAN IP Alias Screen 84
- 4.5 LAN Port Roles Screen 86
- Roles screens 87
- CHAPTER 5 89
- Primary WAN Interfaces 90
- Backup WAN Interfaces 90
- Load Balancing Introduction 92
- Load Balancing Algorithms 92
- TCP/IP Priority (Metric) 92
- Cellular routes 93
- WAN Continuity Check 93
- 5.2 WAN General Screen 94
- LAN-Cell 2 User’s Guide 100
- 5.2.2 WAN Connectivity Check 101
- 5.3 WAN Screen 103
- WAN MAC Address 104
- 5.3.2 PPPoE Encapsulation 107
- 5.3.3 PPTP Encapsulation 110
- (Section 21.3 on page 377) 119
- 5.5 Traffic Redirect Screen 120
- 5.6 Dial Backup Screen 122
- 5.6.1 Advanced Modem Setup 124
- CHAPTER 6 127
- IP Alias 128
- Port Roles 128
- 6.2 DMZ Screen 129
- DMZ are on separate subnets 130
- Chapter 6 DMZ Screens 131
- 6.3 DMZ Static DHCP Screen 132
- 6.4 DMZ IP Alias Screen 133
- Chapter 6 DMZ Screens 134
- 6.5 DMZ Port Roles 135
- CHAPTER 7 137
- 7.2 WLAN Screen 139
- 7.3 WLAN Static DHCP Screen 141
- 7.4 WLAN IP Alias Screen 142
- 7.5 WLAN Port Roles Screen 144
- 7.6.1 SSID 147
- 7.6.2 MAC Address Filter 147
- 7.6.3 User Authentication 147
- 7.6.4 Encryption 148
- 7.7.1 SSID Profile 152
- Figure 80 Configuring SSID 153
- Table 45 Configuring SSID 153
- Table 46 Security Modes 154
- 7.8.1 No Security 155
- 7.8.2 Static WEP 155
- 7.8.3 IEEE 802.1x Only 156
- 7.8.5 WPA, WPA2, WPA2-MIX 159
- 7.9 MAC Filter 161
- 7.10 Country Codes 162
- CHAPTER 8 163
- User Authentication 164
- Encryption 164
- Chapter 8 Wi-Fi Screens 165
- Chapter 8 Wi-Fi Screens 166
- 8.2.1 SSID Profile 168
- 8.3 Wireless Security Screen 169
- Table 58 Security Modes 170
- 8.3.1 No Security 171
- 8.3.2 Static WEP 171
- 8.3.3 IEEE 802.1x Only 173
- 8.3.5 WPA, WPA2, WPA2-MIX 175
- 8.4 MAC Filter Screen 177
- 8.5 Country Codes 178
- PART III 179
- CHAPTER 9 181
- 9.2 Firewall Rules Example 182
- Chapter 9 Firewall Screens 183
- 9.3 Firewall Default Rule 184
- Chapter 9 Firewall Screens 186
- Rule screen 188
- 9.5 Anti-Probing Screen 191
- 9.6 Threshold Screen 192
- 9.7 Service Screen 194
- 10.0.0.15 on the LAN 199
- Packet Direction Examples 200
- To VPN Packet Direction 201
- From VPN Packet Direction 203
- Asymmetrical Routes 206
- DoS Firewall Thresholds 206
- Threshold Values 207
- Security Considerations 207
- CHAPTER 10 209
- Gateway and Network Policies 210
- Negotiation Mode 211
- 10.2 VPN Rules (IKE) Screen 212
- Figure 133 VPN Dial 226
- 10.3 VPN Rules (Manual) 227
- 10.5 VPN SA Monitor Screen 231
- Dynamic VPN Rule 232
- 10.9 Hub-and-spoke VPN 238
- Figure 144 VPN Topologies 239
- 10.10 VPN Troubleshooting 241
- 10.10.1 IPSec Debug 242
- IKE SA Proposal 244
- Authentication 245
- Certificates 246
- Extended Authentication 247
- VPN, NAT, and NAT Traversal 248
- Additional IPSec VPN Topics 248
- IPSec SA Overview 250
- Virtual Address Mapping 251
- Active Protocol 252
- Encapsulation 252
- CHAPTER 11 255
- Advantages of Certificates 256
- Self-signed Certificates 256
- Verifying a Certificate 256
- 11.2 My Certificates Screen 257
- Certificate File Formats 263
- 11.6 Trusted CAs Screen 269
- CHAPTER 12 283
- 12.3 RADIUS Screen 285
- Advanced Menu 287
- CHAPTER 13 289
- 13.2 NAT Overview Screen 290
- 13.3 NAT Address Mapping 292
- 13.4 Port Forwarding 295
- NAT and Multiple WAN 297
- Port Translation 297
- 13.5 Port Triggering 300
- 13.6 NAT Technical Reference 302
- What NAT Does 302
- How NAT Works 303
- NAT Application 303
- Port Restricted Cone NAT 304
- CHAPTER 14 307
- DNS Servers 308
- Address Record 308
- DNS Wildcard 308
- Name Server Record 308
- Private DNS Server 308
- 14.2 System Screen 309
- Chapter 14 DNS Screens 310
- Chapter 14 DNS Screens 311
- 14.3 DNS Cache 313
- 14.4 Configure DNS Cache 313
- 14.5 Configuring DNS DHCP 315
- 14.6 DDNS Screen 316
- 14.7 Configuring Dynamic DNS 317
- CHAPTER 15 319
- Firewall Rules 320
- Remote Management Sessions 320
- Remote Management Limitations 320
- System Timeout 320
- 15.2.1 HTTPS Example 321
- 15.3 WWW 326
- REMOTE MGMT > WWW 329
- 15.6 The SSH Screen 330
- 15.8 Telnet Screen 331
- 15.9 FTP Screen 332
- 15.10 SNMP Screen 333
- Supported MIBs 334
- SNMP Traps 335
- 15.11 DNS Screen 336
- How SSH Works 337
- CHAPTER 16 339
- IP address 340
- CHAPTER 17 343
- CHAPTER 18 349
- Bandwidth Classes and Filters 350
- Scheduler 351
- Priority-based Scheduler 351
- Fairness-based Scheduler 351
- Maximize Bandwidth Usage 351
- 18.3 Class Setup Screen 356
- Bandwidth Borrowing 357
- Bandwidth Manager Monitor 362
- CHAPTER 19 365
- ALG and Multiple WAN 366
- H.323 ALG Details 366
- Chapter 19 ALG Screens 367
- SIP ALG Details 368
- 19.2 ALG Screen 369
- Chapter 19 ALG Screens 370
- Table 143 ADVANCED > ALG 370
- CHAPTER 20 371
- Table 144 ADVANCED > ALG 372
- Logs and 373
- Maintenance Menus 373
- CHAPTER 21 375
- Chapter 21 Logs Screens 376
- 21.3 Log Settings Screen 377
- Chapter 21 Logs Screens 379
- Log Descriptions 381
- Table 149 System Error Logs 382
- Table 151 TCP Reset Logs 383
- Table 156 Attack Logs 385
- Table 158 IPSec Logs 386
- Table 159 IKE Logs 387
- Table 160 PKI Logs 390
- Table 162 ACL Setting Notes 392
- Table 163 ICMP Notes 392
- Syslog Logs 394
- CHAPTER 22 397
- 22.3 Password Screen 398
- 22.4 Time and Date Screen 399
- Resetting the Time 400
- 22.5 F/W Upload Screen 403
- Backup Configuration 406
- Restore Configuration 406
- 22.7 Restart Screen 407
- 22.8 The Diagnostics Screen 408
- Management 411
- Terminal 411
- CHAPTER 23 413
- 23.2.2 Entering the Password 414
- 23.3.1 Main Menu 415
- Table 173 Main Menu Summary 416
- 23.3.2 SMT Menus Overview 417
- 23.5 Resetting the LAN-Cell 419
- CHAPTER 24 421
- Chapter 24 General Setup 422
- Chapter 24 General Setup 423
- CHAPTER 25 427
- 25.3 Dial Backup 428
- 25.3.2 Advanced WAN Setup 429
- [ENTER] 430
- Press [ENTER] 433
- 25.3.5 Editing Login Script 434
- 25.4 3G WAN 436
- CHAPTER 26 441
- Chapter 26 LAN Setup 442
- Chapter 26 LAN Setup 443
- 26.4.1 IP Alias Setup 445
- CHAPTER 27 447
- 27.5 Basic Setup Complete 451
- CHAPTER 28 453
- 28.3 TCP/IP Setup 454
- 28.3.2 IP Alias Setup 455
- Chapter 28 DMZ Setup 456
- CHAPTER 29 457
- 29.3 Traffic Redirect 458
- 29.4 Route Failover 459
- Chapter 29 Route Setup 460
- CHAPTER 30 461
- 30.1.2 IP Alias Setup 462
- Chapter 30 WLAN Setup 463
- Chapter 30 WLAN Setup 464
- CHAPTER 31 465
- Chapter 31 WAN ISP Setup 466
- 31.3.2 PPPoE Encapsulation 467
- 31.3.3 PPTP Encapsulation 468
- 31.4 Edit IP 469
- 31.5 Remote Node Filter 471
- CHAPTER 32 473
- CHAPTER 33 477
- 33.2 NAT Setup 479
- 33.2.1 Address Mapping Sets 480
- Menu 15.1.255 is read-only 481
- Menu 15.1.1.1 483
- 33.4 General NAT Examples 487
- Figure 307 NAT Example 2 488
- Figure 309 NAT Example 3 490
- 2 Enter 2 to go to menu 15.2 491
- Figure 314 NAT Example 4 492
- 33.5 Trigger Port Forwarding 494
- CHAPTER 34 497
- Chapter 34 Firewall Status 498
- CHAPTER 35 499
- 35.3 Example Filter 508
- 35.4 Filter Types and NAT 510
- 35.5 Firewall Versus Filters 510
- 35.6 Applying a Filter 511
- 35.6.1 Applying LAN Filters 512
- 35.6.2 Applying DMZ Filters 512
- HTTP connections 513
- CHAPTER 36 515
- 36.2 SNMP Traps 516
- CHAPTER 37 517
- 37.3.1 System Information 519
- 37.3.2 Console Port Speed 520
- 37.4 Log and Trace 521
- 37.4.2 Syslog Logging 522
- 2 Packet triggered 523
- 3 Filter log 523
- 4 PPP log 524
- 5 Firewall log 525
- 37.5 Diagnostic 526
- 37.5.1 WAN DHCP 527
- CHAPTER 38 529
- 38.3 Backup Configuration 530
- 38.3.4 GUI-based FTP Clients 532
- 38.3.7 TFTP Command Example 533
- 38.4 Restore Configuration 534
- 1 WARNING! 535
- 38.5.5 TFTP File Upload 539
- CHAPTER 39 543
- 39.1.2 Command Usage 544
- 39.2 Call Control Support 545
- 39.2.2 Call History 546
- 39.3 Time and Date Setting 547
- CHAPTER 40 551
- Chapter 40 Remote Management 552
- Chapter 40 Remote Management 553
- CHAPTER 41 555
- 41.2 IP Routing Policy Setup 556
- Chapter 41 IP Policy Routing 557
- (shown next) 558
- Chapter 41 IP Policy Routing 560
- CHAPTER 42 563
- Chapter 42 Call Scheduling 564
- Chapter 42 Call Scheduling 565
- PART VII 567
- CHAPTER 43 569
- V I forgot the password 570
- Chapter 43 Troubleshooting 571
- 43.3 Internet Access 572
- I cannot access the Internet 573
- Chapter 43 Troubleshooting 574
- CHAPTER 44 575
- Compatible 3G Cards 577
- 3G Card Installation 578
- Power Adapter Specifications 578
- Cable Pin Assignments 579
- PART VIII 581
- APPENDIX A 583
- Figure 386 Internet Options 585
- JavaScripts 586
- Java Permissions 587
- JAVA (Sun) 588
- APPENDIX B 589
- Installing Components 590
- Configuring 591
- Windows 2000/NT/XP 592
- Macintosh OS 8/9 597
- Macintosh OS X 599
- Verifying Settings 600
- Using Configuration Files 602
- APPENDIX C 605
- Subnet Masks 606
- Subnetting 607
- Example: Two Subnets 608
- Example: Four Subnets 609
- Example Eight Subnets 610
- APPENDIX D 613
- Appendix D Common Services 614
- Appendix D Common Services 615
- APPENDIX E 617
- Appendix E Wireless LANs 618
- Appendix E Wireless LANs 619
- Fragmentation Threshold 620
- Preamble Type 621
- IEEE 802.11g Wireless LAN 621
- Wireless Security Overview 621
- IEEE 802.1x 622
- Types of EAP Authentication 623
- PEAP (Protected EAP) 624
- Dynamic WEP Key Exchange 625
- WPA and WPA2 625
- Security Parameters Summary 628
- Requirements for Roaming 629
- Antenna Overview 630
- Antenna Characteristics 630
- Types of Antennas for WLAN 631
- Positioning Antennas 631
- Country Codes 631
- APPENDIX F 633
- APPENDIX G 635
- Proxicast Limited Warranty 636
- Appendix G Legal Information 637
- Appendix G Legal Information 638
- APPENDIX H 639
- Appendix H Customer Support 640
- Numerics 641
© 2020, manymanuals.com. All rights reserved. | 0.332 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comments to this Manuals