User Guide
Page 3
Table of Contents 4-Port SSL/IPSec VPN Router Chapter 1: Introduction 1 Introduction to the Router 1 Introduction to Virtual Private Networks (VPNs 1 VPN Router to VPN Router 1 Computer (using SSL VPN client software) to VPN Router 2 Chapter 2: Product Overview 3 Front Panel 3 Back Panel 3 Chapter 3: Installation 4 Physical... 9 IPSec VPN Setting Status 9 SSL VPN Setting Status 9 Log Setting Status 9 Setup Tab > Network 10 Network 10 Setup > Password 12 Password 13 Setup > Time 13 Time 13 Setup > DMZ Host 13 DMZ Host 13 Setup Tab > Forwarding 14 Forwarding 14 Setup >...
Table of Contents 4-Port SSL/IPSec VPN Router Chapter 1: Introduction 1 Introduction to the Router 1 Introduction to Virtual Private Networks (VPNs 1 VPN Router to VPN Router 1 Computer (using SSL VPN client software) to VPN Router 2 Chapter 2: Product Overview 3 Front Panel 3 Back Panel 3 Chapter 3: Installation 4 Physical... 9 IPSec VPN Setting Status 9 SSL VPN Setting Status 9 Log Setting Status 9 Setup Tab > Network 10 Network 10 Setup > Password 12 Password 13 Setup > Time 13 Time 13 Setup > DMZ Host 13 DMZ Host 13 Setup Tab > Forwarding 14 Forwarding 14 Setup >...
User Guide
Page 6
... Contents Wizard 49 Basic Setup 49 Access Rule Setup 51 Support 53 Manual 53 Linksys Web Site 53 Logout 53 Appendix A: Troubleshooting 55 Appendix B: Virtual Passage SSL VPN Client 56 Overview 56 Before You Begin (Windows OS 56 Internet Explorer 6.0 or Higher 56 Netscape Communicator 8.0 or Higher 57 Make the SSL VPN Portal a Trusted Site (Windows... 70 Appendix E: User for the Active Directory Server 71 Appendix F: Internet Authentication Service (IAS) Server 73 Appendix G: Lightweight Directory Access Protocol (LDAP) Server 79 4-Port SSL/IPSec VPN Router
... Contents Wizard 49 Basic Setup 49 Access Rule Setup 51 Support 53 Manual 53 Linksys Web Site 53 Logout 53 Appendix A: Troubleshooting 55 Appendix B: Virtual Passage SSL VPN Client 56 Overview 56 Before You Begin (Windows OS 56 Internet Explorer 6.0 or Higher 56 Netscape Communicator 8.0 or Higher 57 Make the SSL VPN Portal a Trusted Site (Windows... 70 Appendix E: User for the Active Directory Server 71 Appendix F: Internet Authentication Service (IAS) Server 73 Appendix G: Lightweight Directory Access Protocol (LDAP) Server 79 4-Port SSL/IPSec VPN Router
User Guide
Page 14
... explain all of the functions in a Windows environment. Click the Advanced tab. 5. Internet Explorer > Tools > Internet Options > Advanced 4-Port SSL/IPSec VPN Router 6. Click Custom Level. 9. Internet Explorer > Tools > Internet Options > Security 10. Internet Explorer > Tools > Internet Options > Privacy 14... available after you should enable them before configuring the Router. If the settings are disabled, you click one of the utility: System Summary, Setup, DHCP, System Management, Port Management, QoS, Firewall, IPSec VPN, SSL VPN, SNMP, Log, Wizard, Support, and Logout....
... explain all of the functions in a Windows environment. Click the Advanced tab. 5. Internet Explorer > Tools > Internet Options > Advanced 4-Port SSL/IPSec VPN Router 6. Click Custom Level. 9. Internet Explorer > Tools > Internet Options > Security 10. Internet Explorer > Tools > Internet Options > Privacy 14... available after you should enable them before configuring the Router. If the settings are disabled, you click one of the utility: System Summary, Setup, DHCP, System Management, Port Management, QoS, Firewall, IPSec VPN, SSL VPN, SNMP, Log, Wizard, Support, and Logout....
User Guide
Page 15
... screen has been enabled, then users with administrative privileges can change the Password on the Setup > Password screen.) Then click Login. A login screen prompts you for your web browser, and enter the Router's default IP address, 192.168.1.1, in the Address field. Enter admin in the User...-based utility, launch your User Name and Password. Click Advanced. 10. How to install the Web Cache Cleaner. 4-Port SSL/IPSec VPN Router After you will be asked to install the Web Cache Cleaner application. Netscape Communicator > Options > Site Controls > Web Features 11. Click ...
... screen has been enabled, then users with administrative privileges can change the Password on the Setup > Password screen.) Then click Login. A login screen prompts you for your web browser, and enter the Router's default IP address, 192.168.1.1, in the Address field. Enter admin in the User...-based utility, launch your User Name and Password. Click Advanced. 10. How to install the Web Cache Cleaner. 4-Port SSL/IPSec VPN Router After you will be asked to install the Web Cache Cleaner application. Netscape Communicator > Options > Site Controls > Web Features 11. Click ...
User Guide
Page 16
... When you click a hyperlink, the related setup screen will ask you to confirm that appears is the serial number of this screen and all of the utility's tabs. Click Yes. Then, click the desired tab. 4-Port SSL/IPSec VPN Router Site Map System Information Serial Number Displayed here... is the System Summary screen, which has links to the rest of the Router. Proceed to all other screens of the utility is hyperlinked to Install ...
... When you click a hyperlink, the related setup screen will ask you to confirm that appears is the serial number of this screen and all of the utility's tabs. Click Yes. Then, click the desired tab. 4-Port SSL/IPSec VPN Router Site Map System Information Serial Number Displayed here... is the System Summary screen, which has links to the rest of the Router. Proceed to all other screens of the utility is hyperlinked to Install ...
User Guide
Page 17
...release the IP address, and 4-Port SSL/IPSec VPN Router click Renew to the DDNS screen of the Setup tab. DDNS It shows the DDNS settings of the Router's WAN port and hyperlinks to update the DHCP Lease Time or get a new IP address. SSL VPN Setting Status SSL VPN Summary It hyperlinks to the DMZ ...Host screen of the Setup tab. If the port is...
...release the IP address, and 4-Port SSL/IPSec VPN Router click Renew to the DDNS screen of the Setup tab. DDNS It shows the DDNS settings of the Router's WAN port and hyperlinks to update the DHCP Lease Time or get a new IP address. SSL VPN Setting Status SSL VPN Summary It hyperlinks to the DMZ ...Host screen of the Setup tab. If the port is...
User Guide
Page 18
...have been configured and sent out normally," will be displayed. Some ISPs require these fields blank. 4-Port SSL/IPSec VPN Router LAN Setting The MAC Address of the Router's basic setup functions. Device IP Address and Subnet Mask The default values are four connection types available: Obtain an ...selected subnet. Obtain an IP Automatically If your ISP. The setup information is displayed. Click Exit to return to see various settings. Setup Tab > Network The Setup > Network screen shows all of the Router is provided by your ISP automatically assigns an IP address, select...
...have been configured and sent out normally," will be displayed. Some ISPs require these fields blank. 4-Port SSL/IPSec VPN Router LAN Setting The MAC Address of the Router's basic setup functions. Device IP Address and Subnet Mask The default values are four connection types available: Obtain an ...selected subnet. Obtain an IP Automatically If your ISP. The setup information is displayed. Click Exit to return to see various settings. Setup Tab > Network The Setup > Network screen shows all of the Router is provided by your ISP automatically assigns an IP address, select...
User Guide
Page 20
... Period is 5 times. Subnet Mask Enter the subnet mask of the Router. 4-Port SSL/IPSec VPN Router Default Gateway Address Enter the IP address of the Router. Connect on Demand If you select the Connect on Demand enables the Router to automatically re-establish your connection as soon as you attempt to select...that applies to its factory default settings; The default Max Idle Time is 30 seconds. The default Redial Period is 5 minutes. Setup > Password The Router's default User Name and Password is a service that the connection is lost or forgotten, you have to reset the...
... Period is 5 times. Subnet Mask Enter the subnet mask of the Router. 4-Port SSL/IPSec VPN Router Default Gateway Address Enter the IP address of the Router. Connect on Demand If you select the Connect on Demand enables the Router to automatically re-establish your connection as soon as you attempt to select...that applies to its factory default settings; The default Max Idle Time is 30 seconds. The default Redial Period is 5 minutes. Setup > Password The Router's default User Name and Password is a service that the connection is lost or forgotten, you have to reset the...
User Guide
Page 21
...4 Advanced Configuration Daylight Saving To use of a special-purpose service such as Internet gaming or videoconferencing. Manual Setup > Password Password The User Name is time.nist.gov. Setup > Time The Router uses the time settings to be changed. Time To set the local time, select Set the local time using...and then enter the Month and Day of 0 deactivates the DMZ Host. 13 The default is admin; The default is Pacific Time). 4-Port SSL/IPSec VPN Router Setup > DMZ Host DMZ Host DMZ Private IP Address Enter the local IP address of the NTP server. Your password must have 20 or fewer...
...4 Advanced Configuration Daylight Saving To use of a special-purpose service such as Internet gaming or videoconferencing. Manual Setup > Password Password The User Name is time.nist.gov. Setup > Time The Router uses the time settings to be changed. Time To set the local time, select Set the local time using...and then enter the Month and Day of 0 deactivates the DMZ Host. 13 The default is admin; The default is Pacific Time). 4-Port SSL/IPSec VPN Router Setup > DMZ Host DMZ Host DMZ Private IP Address Enter the local IP address of the NTP server. Your password must have 20 or fewer...
User Guide
Page 22
...they will not actually be forwarded to undo them. Service Select the Service you want to delete a service you want . 4-Port SSL/IPSec VPN Router Service Management Service Name Enter a name. The IP address of IP address and port mapping rules. 14 NOTE: You must disable the... Settings to save your changes, or click Cancel Changes to 192.168.1.2. Setup > Forwarding Forwarding Port Range Forwarding Port forwarding can be forwarded through the Router, the data is pulled back to the proper computer by the Router, so that you want to modify a service you enter a valid IP...
...they will not actually be forwarded to undo them. Service Select the Service you want to delete a service you want . 4-Port SSL/IPSec VPN Router Service Management Service Name Enter a name. The IP address of IP address and port mapping rules. 14 NOTE: You must disable the... Settings to save your changes, or click Cancel Changes to 192.168.1.2. Setup > Forwarding Forwarding Port Range Forwarding Port forwarding can be forwarded through the Router, the data is pulled back to the proper computer by the Router, so that you want to modify a service you enter a valid IP...
User Guide
Page 23
...Range Forwarding Table List appears. Service Select the Service you want . The Service Management screen appears. Port Triggering Select this service. Setup > UPnP 4-Port SSL/IPSec VPN Router Service Management Service Name Enter a name. Click Exit to return to the UPnP screen. Click Exit to return to List. The... Forwarding Table List Port Range Forwarding Select this screen and return to see the details of the trigger port range. Then the Router will forward the incoming packets to set up to add the new service. Otherwise, keep the default, No. Make changes. Incoming...
...Range Forwarding Table List appears. Service Select the Service you want . The Service Management screen appears. Port Triggering Select this service. Setup > UPnP 4-Port SSL/IPSec VPN Router Service Management Service Name Enter a name. Click Exit to return to the UPnP screen. Click Exit to return to List. The... Forwarding Table List Port Range Forwarding Select this screen and return to see the details of the trigger port range. Then the Router will forward the incoming packets to set up to add the new service. Otherwise, keep the default, No. Make changes. Incoming...
User Guide
Page 24
... the corresponding external valid IP address. To delete an entry, select it and click Delete selected range. NOTE: One-to update the on the LAN. Setup > MAC Clone Some ISPs require that maps valid external IP addresses to internal IP addresses hidden by the ISP. (Do not include the... with 209.19.28.16 used for which is used as you can assign or clone a MAC address. 4-Port SSL/IPSec VPN Router 16 For the WAN port, you would like, up to undo them . Click Close to 209.19.28.31, with an internal IP address may ...
... the corresponding external valid IP address. To delete an entry, select it and click Delete selected range. NOTE: One-to update the on the LAN. Setup > MAC Clone Some ISPs require that maps valid external IP addresses to internal IP addresses hidden by the ISP. (Do not include the... with 209.19.28.16 used for which is used as you can assign or clone a MAC address. 4-Port SSL/IPSec VPN Router 16 For the WAN port, you would like, up to undo them . Click Close to 209.19.28.31, with an internal IP address may ...
User Guide
Page 25
... indicates an error, make sure you are currently using to configure the Router, select MAC Address from this will automatically adjust to save your host name were myhouse. Otherwise, select Disable. 4-Port SSL/IPSec VPN Router Setup > Advanced Routing Advanced Routing Dynamic Routing The Router's dynamic routing feature can host your own web, FTP or other type...
... indicates an error, make sure you are currently using to configure the Router, select MAC Address from this will automatically adjust to save your host name were myhouse. Otherwise, select Disable. 4-Port SSL/IPSec VPN Router Setup > Advanced Routing Advanced Routing Dynamic Routing The Router's dynamic routing feature can host your own web, FTP or other type...
User Guide
Page 26
...the Router. All of your network routers should be 0. 4-Port SSL/IPSec VPN Router Subnet Mask Enter the subnet mask used as a switch, PC, or router. For a standard Class C IP domain, the network address is any computer connected to the Router will not be able to connect to the 4-Port SSL/IPSec VPN Router. A...use dynamic routing for communication of every computer on your network. Click Show Tables to a sub-network, select LAN. DHCP > Setup The Router can use dynamic routing for transmission of network data, select the protocol you want: None, RIPv1, RIPv2, or Both RIP ...
...the Router. All of your network routers should be 0. 4-Port SSL/IPSec VPN Router Subnet Mask Enter the subnet mask used as a switch, PC, or router. For a standard Class C IP domain, the network address is any computer connected to the Router will not be able to connect to the 4-Port SSL/IPSec VPN Router. A...use dynamic routing for communication of every computer on your network. Click Show Tables to a sub-network, select LAN. DHCP > Setup The Router can use dynamic routing for transmission of network data, select the protocol you want: None, RIPv1, RIPv2, or Both RIP ...
User Guide
Page 27
... Enable DHCP Server. This value must be "leased" this option. The Unknown MAC Address List appears. 4-Port SSL/IPSec VPN Router Unknown MAC Address List To add an IP address and MAC address set to the DHCP > Setup screen, click Close. To add all devices' IP addresses and corresponding MAC addresses. It prevents users from...
... Enable DHCP Server. This value must be "leased" this option. The Unknown MAC Address List appears. 4-Port SSL/IPSec VPN Router Unknown MAC Address List To add an IP address and MAC address set to the DHCP > Setup screen, click Close. To add all devices' IP addresses and corresponding MAC addresses. It prevents users from...
User Guide
Page 28
... this option and the multiple subnets and VLANs are configured on the Port Management > Create VLAN screen (by the DHCP server. 4-Port SSL/IPSec VPN Router DHCP > Multiple VLANs Multiple VLANs Enable Multiple VLANs Select this screen are part of dynamic IP addresses used. DHCP > Status Status For ...assigned are created. (If you enable this screen to support NetBIOS. Leased Time It displays the amount of VLAN 1, then use the Setup > Network screen 20 If you want to establish a relationship between multiple subnets and Virtual Local Area Networks (VLANs). They are created after...
... this option and the multiple subnets and VLANs are configured on the Port Management > Create VLAN screen (by the DHCP server. 4-Port SSL/IPSec VPN Router DHCP > Multiple VLANs Multiple VLANs Enable Multiple VLANs Select this screen are part of dynamic IP addresses used. DHCP > Status Status For ...assigned are created. (If you enable this screen to support NetBIOS. Leased Time It displays the amount of VLAN 1, then use the Setup > Network screen 20 If you want to establish a relationship between multiple subnets and Virtual Local Area Networks (VLANs). They are created after...
User Guide
Page 29
... for troubleshooting network problems. 4-Port SSL/IPSec VPN Router System Management > Diagnostic > DNS Name Lookup Look up to access Internet resources. The DNS Name Lookup tool will not work. If this tool make sure the IP address of the DNS server is entered on the Setup > Network screen.) • IP... two built-in DHCP server can also be routed between VLAN1 and VLAN2, but packets cannot be configured on the Setup > Network screen; NOTE: The Router's built-in tools, DNS Name Lookup and Ping, which are having problems accessing services on the Internet back to the ...
... for troubleshooting network problems. 4-Port SSL/IPSec VPN Router System Management > Diagnostic > DNS Name Lookup Look up to access Internet resources. The DNS Name Lookup tool will not work. If this tool make sure the IP address of the DNS server is entered on the Setup > Network screen.) • IP... two built-in DHCP server can also be routed between VLAN1 and VLAN2, but packets cannot be configured on the Setup > Network screen; NOTE: The Router's built-in tools, DNS Name Lookup and Ping, which are having problems accessing services on the Internet back to the ...
User Guide
Page 32
... port type is displayed. Port Status Summary For the selected port, the Summary table displays the following : 24 Port Management > Port Setup Configure the connection settings for a specific port, select its ID number or name. Chapter 4 Advanced Configuration System Management > IGMP Snooping ...interface type, LAN or WAN, is displayed. Disable To disable a port, select Disable. 4-Port SSL/IPSec VPN Router Speed Select the port speed, 10M or 100M. then you want the Router's ports to undo them . Click Save Settings to save your changes, or click Cancel Changes to...
... port type is displayed. Port Status Summary For the selected port, the Summary table displays the following : 24 Port Management > Port Setup Configure the connection settings for a specific port, select its ID number or name. Chapter 4 Advanced Configuration System Management > IGMP Snooping ...interface type, LAN or WAN, is displayed. Disable To disable a port, select Disable. 4-Port SSL/IPSec VPN Router Speed Select the port speed, 10M or 100M. then you want the Router's ports to undo them . Click Save Settings to save your changes, or click Cancel Changes to...
User Guide
Page 36
... a maximum of Service (CoS) settings. Make changes. Enable Select Enable to the Bandwidth Management screen, click Close. The Summary screen appears. 4-Port SSL/IPSec VPN Router Summary (Priority Selected) To change a rule, click Edit. Trust Mode Select the appropriate mode: None, CoS, or DSCP. Click Save Settings to .... If you would like, up to List. High priority services will share 60% of the Router's four LAN ports are displayed in this Priority rule. QoS > QoS Setup QoS Setup QoS Mode QoS Mode Select the appropriate mode, Disable or Basic. Port ID The ID numbers ...
... a maximum of Service (CoS) settings. Make changes. Enable Select Enable to the Bandwidth Management screen, click Close. The Summary screen appears. 4-Port SSL/IPSec VPN Router Summary (Priority Selected) To change a rule, click Edit. Trust Mode Select the appropriate mode: None, CoS, or DSCP. Click Save Settings to .... If you would like, up to List. High priority services will share 60% of the Router's four LAN ports are displayed in this Priority rule. QoS > QoS Setup QoS Setup QoS Mode QoS Mode Select the appropriate mode, Disable or Basic. Port ID The ID numbers ...
User Guide
Page 38
...Rules, and Content Filters will also be disabled, and the Remote Management feature will not find the Router by default. HTTPS If Remote Management/SSL VPN is enabled, HTTPS is enabled by default. 4-Port SSL/IPSec VPN Router 30 If priority bits are 1 for DSCP values 0-15, 2 for DSCP values 16-31,...This option is disabled by default. NOTE: SSL VPN has higher priority than Port Forwarding when HTTPS is disabled by pinging the WAN IP address. You can use SSL or manage this Router through a WAN connection, first change the password on the Setup > Password screen (this screen to undo ...
...Rules, and Content Filters will also be disabled, and the Remote Management feature will not find the Router by default. HTTPS If Remote Management/SSL VPN is enabled, HTTPS is enabled by default. 4-Port SSL/IPSec VPN Router 30 If priority bits are 1 for DSCP values 0-15, 2 for DSCP values 16-31,...This option is disabled by default. NOTE: SSL VPN has higher priority than Port Forwarding when HTTPS is disabled by pinging the WAN IP address. You can use SSL or manage this Router through a WAN connection, first change the password on the Setup > Password screen (this screen to undo ...