User Guide
Page 3
Table of Contents 4-Port SSL/IPSec VPN Router Chapter 1: Introduction 1 Introduction to the Router 1 Introduction to Virtual Private Networks (VPNs 1 VPN Router to VPN Router 1 Computer (using SSL VPN client software) to VPN Router 2 Chapter 2: Product Overview 3 Front Panel 3 Back Panel 3 Chapter 3: Installation 4 Physical ...Port Statistics 9 Network Setting Status 9 Firewall Setting Status 9 IPSec VPN Setting Status 9 SSL VPN Setting Status 9 Log Setting Status 9 Setup Tab > Network 10 Network 10 Setup > Password 12 Password 13 Setup > Time 13 Time 13 Setup > DMZ ...
Table of Contents 4-Port SSL/IPSec VPN Router Chapter 1: Introduction 1 Introduction to the Router 1 Introduction to Virtual Private Networks (VPNs 1 VPN Router to VPN Router 1 Computer (using SSL VPN client software) to VPN Router 2 Chapter 2: Product Overview 3 Front Panel 3 Back Panel 3 Chapter 3: Installation 4 Physical ...Port Statistics 9 Network Setting Status 9 Firewall Setting Status 9 IPSec VPN Setting Status 9 SSL VPN Setting Status 9 Log Setting Status 9 Setup Tab > Network 10 Network 10 Setup > Password 12 Password 13 Setup > Time 13 Time 13 Setup > DMZ ...
User Guide
Page 15
...window. (The ActiveX web cache control will prompt any user of the Router's web-based utility, launch your User Name and Password. Address Bar NOTE: If the Remote Management feature on the Setup > Password screen.) Then click Login. Netscape Communicator > Options > Site Controls .... 4-Port SSL/IPSec VPN Router Under Options, click Advanced. 13. Netscape Communicator > Options > Advanced > Security 15. After you have logged in, you for your web browser, and enter the Router's default IP address, 192.168.1.1, in the Password field. (You can change the Password on the ...
...window. (The ActiveX web cache control will prompt any user of the Router's web-based utility, launch your User Name and Password. Address Bar NOTE: If the Remote Management feature on the Setup > Password screen.) Then click Login. Netscape Communicator > Options > Site Controls .... 4-Port SSL/IPSec VPN Router Under Options, click Advanced. 13. Netscape Communicator > Options > Advanced > Security 15. After you have logged in, you for your web browser, and enter the Router's default IP address, 192.168.1.1, in the Password field. (You can change the Password on the ...
User Guide
Page 19
... ). DNS Server (Required) 1/2 If you select Use the Following DNS Server Addresses, enter your Internet connection. The maximum number of the Router. The default Max Idle Time is used . Multiple DNS server IP settings are common. To manually set a value, select Manual and enter...Address Enter the external IP address of characters is used . Default Gateway Address Enter the IP address of the Router. 4-Port SSL/IPSec VPN Router PPPoE User Name and Password Enter your Internet connection. If you have elapsed before your changes, or click Cancel Changes to see if ...
... ). DNS Server (Required) 1/2 If you select Use the Following DNS Server Addresses, enter your Internet connection. The maximum number of the Router. The default Max Idle Time is used . Multiple DNS server IP settings are common. To manually set a value, select Manual and enter...Address Enter the external IP address of characters is used . Default Gateway Address Enter the IP address of the Router. 4-Port SSL/IPSec VPN Router PPPoE User Name and Password Enter your Internet connection. If you have elapsed before your changes, or click Cancel Changes to see if ...
User Guide
Page 20
...password cannot be disconnected after the Redial Period. Keep Alive: Redial Period If you select the Keep Alive option, the Router will keep the connection alive by sending out a few data packets periodically, so your connection active indefinitely, even when it sits idle. Subnet Mask Enter the subnet mask of the Router. 4-Port SSL/IPSec VPN Router... Default Gateway Address Enter the IP address of the Router. Connect on Demand If you select the Connect on Demand enables the Router to undo them . If you ...
...password cannot be disconnected after the Redial Period. Keep Alive: Redial Period If you select the Keep Alive option, the Router will keep the connection alive by sending out a few data packets periodically, so your connection active indefinitely, even when it sits idle. Subnet Mask Enter the subnet mask of the Router. 4-Port SSL/IPSec VPN Router... Default Gateway Address Enter the IP address of the Router. Connect on Demand If you select the Connect on Demand enables the Router to undo them . If you ...
User Guide
Page 21
...New Password Enter a new password for other internal purposes. Setup > Time The Router uses the time settings to the Internet for use the daylight saving feature, select Enabled. Automatic Setup > Time > Manual Time Zone Select your time zone (the default Time Zone is Pacific Time). 4-Port SSL/IPSec VPN Router Setup ...> DMZ Host DMZ Host DMZ Private IP Address Enter the local IP address of the computer you first power up the Router. Month, Day, Year Enter the date. Setup > DMZ Host The...
...New Password Enter a new password for other internal purposes. Setup > Time The Router uses the time settings to the Internet for use the daylight saving feature, select Enabled. Automatic Setup > Time > Manual Time Zone Select your time zone (the default Time Zone is Pacific Time). 4-Port SSL/IPSec VPN Router Setup ...> DMZ Host DMZ Host DMZ Private IP Address Enter the local IP address of the computer you first power up the Router. Month, Day, Year Enter the date. Setup > DMZ Host The...
User Guide
Page 25
User Name and Password Enter your host name were myhouse. Click Save Settings, and the status of the DDNS function will change. Internet IP Address The Router's current Internet IP address is provided by default. If the status information indicates an error, make sure you can be updated....Address, and then enter the 12 digits of TCP/IP server in the three Host Name fields. Otherwise, select Disable. 4-Port SSL/IPSec VPN Router Setup > Advanced Routing Advanced Routing Dynamic Routing The Router's dynamic routing feature can host your own web, FTP or other type of your LAN.
User Name and Password Enter your host name were myhouse. Click Save Settings, and the status of the DDNS function will change. Internet IP Address The Router's current Internet IP address is provided by default. If the status information indicates an error, make sure you can be updated....Address, and then enter the 12 digits of TCP/IP server in the three Host Name fields. Otherwise, select Disable. 4-Port SSL/IPSec VPN Router Setup > Advanced Routing Advanced Routing Dynamic Routing The Router's dynamic routing feature can host your own web, FTP or other type of your LAN.
User Guide
Page 38
...password on the Setup > Password screen (this feature, the Router drops both unaccepted TCP request and ICMP packets from the WAN side. Firewall > General General Firewall The firewall is enabled. DoS (Denial of Service (ToS) octet to prioritize traffic. SPI (Stateful Packet Inspection) This option is enabled by default. 4-Port SSL/IPSec VPN Router 30 Remote Management/SSL VPN... This option is disabled by default. If Remote Management/SSL VPN is disabled, HTTPS is disabled by default....
...password on the Setup > Password screen (this feature, the Router drops both unaccepted TCP request and ICMP packets from the WAN side. Firewall > General General Firewall The firewall is enabled. DoS (Denial of Service (ToS) octet to prioritize traffic. SPI (Stateful Packet Inspection) This option is enabled by default. 4-Port SSL/IPSec VPN Router 30 Remote Management/SSL VPN... This option is disabled by default. If Remote Management/SSL VPN is disabled, HTTPS is disabled by default....
User Guide
Page 49
... which you want to store your client certificate as a file. MSCHAPV2 RADIUS - Secret Password If required by the RADIUS server, enter an authentication secret password. Proceed to use . Active Directory SSL VPN > User Management User Management Edit Group Authentication Type Select the type you can rename. ...Directory server. Import Certificate Specify where your certificate. CHAP, RADIUS - MSCHAPV2, NT Domain, Active Directory, 4-Port SSL/IPSec VPN Router Active Directory Server Address Enter the IP address or domain name of the RADIUS server. It will replace the...
... which you want to store your client certificate as a file. MSCHAPV2 RADIUS - Secret Password If required by the RADIUS server, enter an authentication secret password. Proceed to use . Active Directory SSL VPN > User Management User Management Edit Group Authentication Type Select the type you can rename. ...Directory server. Import Certificate Specify where your certificate. CHAP, RADIUS - MSCHAPV2, NT Domain, Active Directory, 4-Port SSL/IPSec VPN Router Active Directory Server Address Enter the IP address or domain name of the RADIUS server. It will replace the...
User Guide
Page 50
...maximum number of users is the name of a 15-minute time difference between the Active Directory server and the Router must be synchronized. Confirm Password For users with Local User Database authentication, select User or Administrator. Make sure yourWindows server is 10 minutes. ...authenticate clients, permits a maximum of the user. Config Click Edit to change the user's settings on the local network. 4-Port SSL/IPSec VPN Router 42 The default for LDAP queries. This is a software application that enables remote users to securely connect to a remote network,...
...maximum number of users is the name of a 15-minute time difference between the Active Directory server and the Router must be synchronized. Confirm Password For users with Local User Database authentication, select User or Administrator. Make sure yourWindows server is 10 minutes. ...authenticate clients, permits a maximum of the user. Config Click Edit to change the user's settings on the local network. 4-Port SSL/IPSec VPN Router 42 The default for LDAP queries. This is a software application that enables remote users to securely connect to a remote network,...
User Guide
Page 53
...the group can change the assigned SNMP view. To delete an entry, select it and click Delete. Password If MD5 or SHA1 Password is connect to the Router. 45 Key IfMD5orSHA1Keyisselected,thentheauthentication key and privacy key will be 16 bytes. The length of the SHA ... SNMPv3. Group Name Select a group for all IP addresses for the user. 4-Port SSL/IPSec VPN Router SNMP > Communities Communities SNMP Management Station Select the top option to undo them . Community String Enter the password used for authentication. the group cannot change the assigned SNMP view. Enter the...
...the group can change the assigned SNMP view. To delete an entry, select it and click Delete. Password If MD5 or SHA1 Password is connect to the Router. 45 Key IfMD5orSHA1Keyisselected,thentheauthentication key and privacy key will be 16 bytes. The length of the SHA ... SNMPv3. Group Name Select a group for all IP addresses for the user. 4-Port SSL/IPSec VPN Router SNMP > Communities Communities SNMP Management Station Select the top option to undo them . Community String Enter the password used for authentication. the group cannot change the assigned SNMP view. Enter the...
User Guide
Page 54
...select it and click Delete. The default is 3. The default is 15 seconds. Then configure the following: Community String Enter the password used to authenticate the management station to undo them. Notification Type Select the appropriate type, Trap or Inform. SNMPv1,2 Select this ...resend an inform request. Retries If you selected Inform as the Notification Type, then enter the number of the notifications. 4-Port SSL/IPSec VPN Router SNMP > Notification Recipient Notification Recipient Recipient IP Enter the IP address that will be available (v1 does not use a v1 or...
...select it and click Delete. The default is 3. The default is 15 seconds. Then configure the following: Community String Enter the password used to authenticate the management station to undo them. Notification Type Select the appropriate type, Trap or Inform. SNMPv1,2 Select this ...resend an inform request. Retries If you selected Inform as the Notification Type, then enter the number of the notifications. 4-Port SSL/IPSec VPN Router SNMP > Notification Recipient Notification Recipient Recipient IP Enter the IP address that will be available (v1 does not use a v1 or...
User Guide
Page 55
... address that will receive your changes, or click Cancel Changes to undo them. Password Enter the password for authentication. E-mail Log Sorting Logs have different severity levels. Log > System Log Configure the Router's log settings, so you can designate the length of the log that are ...there are listed. Log events with this information. To delete an entry, select it and click Delete. Log > System Log 4-Port SSL/IPSec VPN Router System Log Syslog Syslog is reached. The higher the severity level, the more than 50 log entries. SNMPv1,2 Table The SNMPv1,2 ...
... address that will receive your changes, or click Cancel Changes to undo them. Password Enter the password for authentication. E-mail Log Sorting Logs have different severity levels. Log > System Log Configure the Router's log settings, so you can designate the length of the log that are ...there are listed. Log events with this information. To delete an entry, select it and click Delete. Log > System Log 4-Port SSL/IPSec VPN Router System Log Syslog Syslog is reached. The higher the severity level, the more than 50 log entries. SNMPv1,2 Table The SNMPv1,2 ...
User Guide
Page 58
...screen. Click Previous if you want to use (you must enter at least one ). DNS Servers PPPoE Complete the User Name and Password fields with the settings provided by your ISP. Click Previous if you want to use the ISP's DNS server, select Use DNS Server... the appropriate screen will be disconnected after a specified period of minutes you have elapsed before 50 Static IP 4-Port SSL/IPSec VPN Router PPPoE Select Connect on Demand enables the Router to automatically re-establish your ISP. If you have been disconnected due to inactivity, Connect on demand or Keep alive...
...screen. Click Previous if you want to use (you must enter at least one ). DNS Servers PPPoE Complete the User Name and Password fields with the settings provided by your ISP. Click Previous if you want to use the ISP's DNS server, select Use DNS Server... the appropriate screen will be disconnected after a specified period of minutes you have elapsed before 50 Static IP 4-Port SSL/IPSec VPN Router PPPoE Select Connect on Demand enables the Router to automatically re-establish your ISP. If you have been disconnected due to inactivity, Connect on demand or Keep alive...
User Guide
Page 62
Chapter 4 session. (If you end the session, you will prompt you to log in and then manage the Router.) After you want to delete the History Item for the Router. (The Web Cache Cleaner will need to re-enter your User Name and Password to delete all temporary Internet files, cookies, and browser history during logout.) Click Yes. It will ask you to confirm that you click the Logout tab, a Warning screen appears. Logout Advanced Configuration 4-Port SSL/IPSec VPN Router 54
Chapter 4 session. (If you end the session, you will prompt you to log in and then manage the Router.) After you want to delete the History Item for the Router. (The Web Cache Cleaner will need to re-enter your User Name and Password to delete all temporary Internet files, cookies, and browser history during logout.) Click Yes. It will ask you to confirm that you click the Logout tab, a Warning screen appears. Logout Advanced Configuration 4-Port SSL/IPSec VPN Router 54
User Guide
Page 66
...install the Web Cache Cleaner. Enter your user name in , you can use Virtual Passage only. This will be asked to log in the Password field. 3. Then press the Enter key. 2. Before you begin, make sure you have to install the Virtual Passage Client on your user ... appears. Enter the IP address of the Router, https://, in your user type is Administrator, then you will be ignored by web browsers that do not support ActiveX.) Click the link to Install the Web Cache Cleaner 4-Port SSL/IPSec VPN Router 58 If your web browser. SSL VPN Portal Login Screen If your computer.
...install the Web Cache Cleaner. Enter your user name in , you can use Virtual Passage only. This will be asked to log in the Password field. 3. Then press the Enter key. 2. Before you begin, make sure you have to install the Virtual Passage Client on your user ... appears. Enter the IP address of the Router, https://, in your user type is Administrator, then you will be ignored by web browsers that do not support ActiveX.) Click the link to Install the Web Cache Cleaner 4-Port SSL/IPSec VPN Router 58 If your web browser. SSL VPN Portal Login Screen If your computer.
User Guide
Page 68
... the Unlock icon. Click Start. 2. Restart your computer. Installation of the Router, https://, in your password in the Password field. Click the Unlock Icon 4-Port SSL/IPSec VPN Router 60 Login for the SSL VPN Portal (Mac OS X) Follow these instructions: 1. A login screen appears. Appendix B Virtual Passage SSL VPN Client Windows Vista Usage If you can use Windows Vista to establish...
... the Unlock icon. Click Start. 2. Restart your computer. Installation of the Router, https://, in your password in the Password field. Click the Unlock Icon 4-Port SSL/IPSec VPN Router 60 Login for the SSL VPN Portal (Mac OS X) Follow these instructions: 1. A login screen appears. Appendix B Virtual Passage SSL VPN Client Windows Vista Usage If you can use Windows Vista to establish...
User Guide
Page 69
.... Click Run 4. Enter your web browser before switching to HTTPS. After the software is valid. SSL VPN Tunnel Established To end the SSL VPN connection, click Disconnect. 4-Port SSL/IPSec VPN Router Click OK 61 Click Continue. In the sentence, "Click here to Continue 3. Enter Your Password After the software is installed, you will be notified. Click to Uninstall...
.... Click Run 4. Enter your web browser before switching to HTTPS. After the software is valid. SSL VPN Tunnel Established To end the SSL VPN connection, click Disconnect. 4-Port SSL/IPSec VPN Router Click OK 61 Click Continue. In the sentence, "Click here to Continue 3. Enter Your Password After the software is installed, you will be notified. Click to Uninstall...
User Guide
Page 70
.... Click Run. If your user type is Administrator, then you have administrative rights on your computer. Installation of the Router, https://, in your password in : 1. If you do not install JRE, a warning message will appear, and you have to log in the...verified. Before you begin, make sure you can use Virtual Passage only. Warning Message Login for the SSL VPN Portal (Linux OS) Follow these instructions: 1. SSL VPN Portal Login Screen If your user type is User, then you have administrative rights on your computer. 4-Port SSL/IPSec VPN Router Click Yes 62
.... Click Run. If your user type is Administrator, then you have administrative rights on your computer. Installation of the Router, https://, in your password in : 1. If you do not install JRE, a warning message will appear, and you have to log in the...verified. Before you begin, make sure you can use Virtual Passage only. Warning Message Login for the SSL VPN Portal (Linux OS) Follow these instructions: 1. SSL VPN Portal Login Screen If your user type is User, then you have administrative rights on your computer. 4-Port SSL/IPSec VPN Router Click Yes 62
User Guide
Page 77
... by configuring DNS manually (Advanced), and then click Next. 19. Click Next. Click Next. Permissions 4-Port SSL/IPSec VPN Router Summary 21. Enter your Administrator password for the Active Directory server. Active Directory Installation Wizard 69 Select Permissions compatible only with Windows 2000 or Windows Server... 2003 operating systems. Then click Next. Directory Services Restore Mode Administrator Password 20. Appendix D Active Directory Server 17. Then enter it notifies you when the configuration is complete. DNS Registration Diagnostics 18...
... by configuring DNS manually (Advanced), and then click Next. 19. Click Next. Click Next. Permissions 4-Port SSL/IPSec VPN Router Summary 21. Enter your Administrator password for the Active Directory server. Active Directory Installation Wizard 69 Select Permissions compatible only with Windows 2000 or Windows Server... 2003 operating systems. Then click Next. Directory Services Restore Mode Administrator Password 20. Appendix D Active Directory Server 17. Then enter it notifies you when the configuration is complete. DNS Registration Diagnostics 18...
User Guide
Page 79
... and select the appropriate domain from the drop-down menu. Then click Next. Double-click Administrative Tools. 5. Enter the user password, and enter it again in the various name fields. Click Control Panel. 4. Then click Next. Click Active Directory Users and Computers... server feature. New Object > User > Name 8. Active Directory Users and Computers New Object > User > Password 4-Port SSL/IPSec VPN Router 71 Enter the user information in the Confirm password field. Appendix E User for the Active Directory Server Appendix E: User for Active Directory: 1. To create a...
... and select the appropriate domain from the drop-down menu. Then click Next. Double-click Administrative Tools. 5. Enter the user password, and enter it again in the various name fields. Click Control Panel. 4. Then click Next. Click Active Directory Users and Computers... server feature. New Object > User > Name 8. Active Directory Users and Computers New Object > User > Password 4-Port SSL/IPSec VPN Router 71 Enter the user information in the Confirm password field. Appendix E User for the Active Directory Server Appendix E: User for Active Directory: 1. To create a...