manualshive.com logo in svg

Geneko GWR Cellular Router Series, User Manual

The Geneko GWR Cellular Router Series offers reliable and secure connectivity for your network needs. Ensure smooth operations by referring to the User Manual available for free download from manualshive.com. Easily access installation instructions and troubleshooting guidelines to maximize the performance of your router.

Share
Download
background image

USER MANUAL

  

 

GWR Router Series

 

 

 

40 

OpenVPN

  

OpenVPN site to site allows connecting two remote networks via point-to-point encrypted tunnel. 

OpenVPN implementation offers a cost-effective simply configurable alternative to other VPN technologies. 

OpenVPN allows peers to authenticate each other using a pre-shared secret key, certificates, or 

username/password. When used in a multiclient-server configuration, it allows the server to release an 

authentication certificate for every client, using signature and Certificate authority. It uses the OpenSSL 

encryption library extensively, as well as the SSLv3/TLSv1 protocol, and contains many security and control 

features. The server and client have almost the same configuration. The difference in the client configuration 

is the remote endpoint IP or hostname field. Also the client can set up the keepalive settings. For successful 

tunnel creation a static key must be generated on one side and the same key must be uploaded on the 

opposite side.  

 

Figure 19 – OpenVPN example 

OpenVPN 

Label  

Description  

 

IP Filtering

 

Tunnel Number 

Automatically assigned number of the tunnel. 

Tunnel Name 

This field specifies tunnel name. 

Enable 

Check this setting in order to enable OpenVPN tunnel. 

 

Allow access from the following devices 

Interface Type 

There are  two modes of OpenVPN tunnel, routed and bridged mode. 

For

  

routed mode select option TUN, and for bridged TAP 

Authenticate Mode 

Choose one of the following options: 

- none (Select this option if you do not want to use any kind of authentication) 

- pre-shared secret (Select this option if you want to use PSK as a authentication 

method) 

-  username/password (Select this option if you want to use 

username/password along with CA Certificate as a authentication method) 

- X.509 cert. (client) (Select this option if you want to use X.509 certificates as a 

authentication method in client mode) 

- X.509 cert. (server) (Select this option if you want to use X.509 certificates as a 

authentication method in server mode) 

NOTE

: Depending on the options selected in the previous steps, some of the following options will be 

available for configuration. 

Protocol 

Selection between TCP in server or client mode and UDP protocol in connect or 

wait mode. 

www.4Gon.co.uk [email protected] Tel: +44 (0)1245 808295 Fax: +44 (0)1245 808299

Summary of Contents for GWR Cellular Router Series

Page 1: ...GWR Cellular Router Series User Manual version 4 0 date 02 04 2012 www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299...

Page 2: ...n Protocol RIP 28 RIP routing engine for the GWR Router 30 Settings VPN Settings 32 Generic Routing Encapsulation GRE 32 GRE Keepalive 33 Internet Protocol Security IPSec 34 OpenVPN 40 Settings IP Fil...

Page 3: ...GRE Tunnel configuration between GWR Router and third party router 72 IPSec Tunnel configuration between two GWR Routers 75 IPSec Tunnel configuration between GWR Router and Cisco Router 82 A How to A...

Page 4: ...igure 27 Serial Port configuration page 49 Figure 28 Modbus gateway configuration page 52 Figure 29 SMS remote control configuration 53 Figure 30 Device Identity Settings configuration page 54 Figure...

Page 5: ...age III for GWR Router 1 78 Figure 65 IPSec start stop page for GWR Router 1 78 Figure 66 Network configuration page for GWR Router 2 79 Figure 67 IPSEC configuration page I for GWR Router 2 80 Figure...

Page 6: ...11 IPSec Parameters 39 Table 12 OpenVPN parameters 41 Table 13 IP filtering parameters 44 Table 14 DynDNS parameters 47 Table 15 Ser2IP parameters 48 Table 16 Serial port parameters 50 Table 17 Modbus...

Page 7: ...sting land lines or satellite networks is now a simple task thanks to modern cellular networks Therefore no matter if the goal is to provide primary internet access or backup solution for already exis...

Page 8: ...ding machine Bank office supervision Security Traffic control Video Surveillance Solutions Other Remote Office Solution Remote Access Solution There are numerous variations of each and every one of ab...

Page 9: ...s B EDGE DL 236 8Kbps UL 236 8Kbps GPRS DL 85 6Kbps UL 85 6Kbps GWR352 GPRS EDGE UMTS HSPA UMTS HSDPA HSUPA Quad band 850 900 1900 2100MHz GSM GPRS EDGE Quad band 850 900 1800 1900MHz GPRS EDGE multi...

Page 10: ...Server support RIP The Routing Information Protocol is a dynamic routing protocol used in local and wide area networks Port forwarding IP TCP UDP packets from WAN to LAN DMZ support DMZ or De Militar...

Page 11: ...other VPN technologies IPSec IKE failover Feature that allows a user to specify number of unsuccessful retries to establish PPP connection before routers switches to another SIM IPSec tunnel failover...

Page 12: ...is having problem connecting to the Internet press and hold the reset button for a second using the tip of a pen Reset to Factory Defaults To restore the default settings of the GWR Router hold the R...

Page 13: ...supply and presence of GSM UMTS network as well as signal level is performed Figure 5 GWR Router top panel side LED Indicator Description 1 Reset red LED on the GWR Router reset state 2 Power status g...

Page 14: ...ndicated by blinks of the first and last Signal strength LED When signal quality is not known or not detectable there will be running LED indication Putting Into Operation Before putting the GWR Route...

Page 15: ...USER MANUAL GWR Router Series 15 Declaration of conformity Figure 6 Declaration of conformity www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299...

Page 16: ...eb application The GWR Router s web based utility allows you to set up the Router and perform advanced configuration and troubleshooting This chapter will explain all of the functions in this utility...

Page 17: ...will be loaded in the form Status Information The GWR Router s Status menu provides general information about router as well as real time network information Status information is divided into follow...

Page 18: ...us WAN Information WAN Information Tab provides information about GPRS EDGE HSPA HSPA LTE connection and traffic statistics WAN information menu has three submenus which provide information about GPRS...

Page 19: ...USER MANUAL GWR Router Series 19 Figure 9 Network Information Figure 10 WAN Information www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299...

Page 20: ...et mask specifies the network number portion of an IP address The GWR Router support sub netting You must specified subnet mask for your LAN TCP IP settings Local DNS Type the IP address of your local...

Page 21: ...ses in the IP address pool IP Ending Address To This field specifies last of the contiguous addresses in the IP address pool Lease Duration This field specifies DHCP session duration time Primary DNS...

Page 22: ...USER MANUAL GWR Router Series 22 Figure 12 DHCP Server configuration page www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299...

Page 23: ...you specific password for each SIM card APN This field specifies APN Dial String This field specifies Dial String for GSM UMTS modem connection initialization In most cases you have to change only APN...

Page 24: ...There are three available options only GSM only UMTS and AUTO For example if you select Only GSM option router will not try to connect to UMTS instead router will automatically try to connect to GSM B...

Page 25: ...using MS CHAP Refuse MS CHAPv2 With this option pppd will not agree to authenticate itself to the peer using MS CHAPv2 Refuse EAP With this option pppd will not agree to authenticate itself to the pee...

Page 26: ...pppd will presume the peer to be dead if n LCP echo requests are sent without receiving a valid LCP echo reply If this happens pppd will terminate the connection This option can be used to enable ppp...

Page 27: ...sk address of the final destination Gateway This is the IP address of the gateway The gateway is a router or switch next hope on the same network segment as the device s LAN or WAN port The gateway he...

Page 28: ...Routing parameters Port translation For incoming data the GWR Router forwards IP traffic destined for a specific port port range or GRE IPsec protocol from the cellular interface to a private IP addre...

Page 29: ...USER MANUAL GWR Router Series 29 Figure 15 RIP configuration page www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299...

Page 30: ...ne for the GWR Router Use telnet to enter in global configuration mode telnet 192 168 1 1 2602 telnet to eth0 at TCP port 2602 To enable RIP use the following commands beginning in global configuratio...

Page 31: ...suit your internetwork needs Use following command to setup RIP timer router timers basic UPDATE INTERVAL INVALID TIMEOUT GARBAGE COLLECT router no timers basic Configure interface for RIP protocol ro...

Page 32: ...s by default you use PPTP which uses GRE Solution where you can use GRE protocol You need to encrypt multicast traffic GRE tunnels can carry multicast packets just like real network interfaces as oppo...

Page 33: ...alives to verify the integrity of the tunnel from end to end By default GRE tunnel keepalives are disabled Use the keepalive check box to enable this feature Keepalives do not have to be configured on...

Page 34: ...PSec tunnel Click on Refresh button to see current status of defined IPSec tunnels Enc Auth Grp This field shows both Phase 1 and Phase 2 details Encryption method DES 3DES AES Authentication method M...

Page 35: ...he Status field in the Summary table Table 10 IPSec Summary To create a tunnel click Add New Tunnel button Depending on your selection the Local Group Setup and Remote Group Setup settings will differ...

Page 36: ...man is a key exchange protocol used during Phase 1 of the authentication process to establish pre shared keys There are three groups of different prime key lengths Group 1 is 768 bits Group 2 is 1024...

Page 37: ...ay hashing algorithm that produces a 160 bit digest SHA1 is recommended because it is more secure Both ends of the IPSec tunnel must use the same Phase 2 Authentication setting NOTE If you select a NU...

Page 38: ...ced Ping Wait For A Response Advanced ping proofing timeout Maximum numbers of failed packets Set percentage of failed packets until failover action is performed Negotiation Mode This option enables s...

Page 39: ...inal SA s and their associated keying material Back Click Back to return on IPSec Summary screen Reload Click Reload to discard any changes and reload previous settings Save Click Save to save your ch...

Page 40: ...tion IP Filtering Tunnel Number Automatically assigned number of the tunnel Tunnel Name This field specifies tunnel name Enable Check this setting in order to enable OpenVPN tunnel Allow access from t...

Page 41: ...iate interval if username password is selected as authentication method CA Certificate Specify the CA Certificate Username Specify the username Password Specify the password Local Certificate Specify...

Page 42: ...USER MANUAL GWR Router Series 42 Figure 20 OpenVPN configuration page Figure 21 OpenVPN network topology www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299...

Page 43: ...r words this setting allows one local user to be exposed to the Internet to use a special purpose services such as Internet gaming Video conferencing and etc It is recommended that you set your comput...

Page 44: ...dd new item in table to the GWR Router Remove Click Remove to delete selected item from table Demilitarized Zone Host Settings DMZ Private IP Address This check box allows forbidden host to access to...

Page 45: ...ple This example configuration demonstrates how to secure a network with a combination of routers and a GWR Router Figure 23 IP Filtering configuration example Figure 24 IP Filtering settings www 4Gon...

Page 46: ...nable DynDNS Client Service The type of service that you are using try one of dhs pgpow dyndns dyndns static dyndns custom ods easydns dyns justlinux and zoneedit Hostname String to send as host param...

Page 47: ...way for a user to connect from a network connection to a serial port It provides all the serial port setup a configuration file to configure the ports a control login for modifying port parameters mon...

Page 48: ...pe of socket Either raw or telnet Raw enables the port and transfers all data like between the port and the log Telnet enables the port and runs the telnet protocol on the port to set up telnet parame...

Page 49: ...USER MANUAL GWR Router Series 49 Figure 27 Serial Port configuration page www 4Gon co uk info 4gon co uk Tel 44 0 1245 808295 Fax 44 0 1245 808299...

Page 50: ...end of transmission The default is 1 Flow control Flow control manages data flow between devices in a network to ensure it is processed efficiently Too much data arriving before a device is prepared...

Page 51: ...rol manages data flow between devices in a network to ensure it is processed efficiently Too much data arriving before a device is prepared to manage it causes lost or retransmitted data None is the d...

Page 52: ...ECT After the command is executed router sends a confirmation SMS with OK if the command is executed without errors or ERROR if something went wrong during the execution of the command 3 In order to r...

Page 53: ...ol The SIM card number should be entered in the following format Country Code Mobile Operator Prefix Phone Number for example 38164111222 As presented on the figure 1 configuration should be performed...

Page 54: ...n This field specifies location of the GWR Router Only for information purpose Save Click Save button to save your changes back to the GWR Router Reload Click Reload to discard any changes and reload...

Page 55: ...for GWR Router Your password must have 20 or fewer characters and cannot contain any space Confirm Password Re enter the new password to confirm it Save Click Save button to save your changes back to...

Page 56: ...te and time setting on the basis of PC calendar Time Protocol Choose the time protocol Time Server Address Time server IP address Time Zone Select your time zone Automatically synchronize NTP Setup au...

Page 57: ...ion of the GWR Router firmware please visit Geneko support site Follow the on screen instructions to access the download page for the GWR Router If you have already downloaded the firmware onto your c...

Page 58: ...y exported Figure 35 Export Import the configuration on the router Import Configuration File To import a configuration file first specify where your backup configuration file is located Click Browse a...

Page 59: ...all the settings and preferences that you have configured Click Default Setting to have the GWR Router with default parameters Keep network settings check box allows user to keep all network settings...

Page 60: ...s Enable Enable or disable CLI CLI on Telnet SSH Serial View Mode Username Login name for View mode View Mode Password Password for View mode Confirm Password Confirm password for View mode View Mode...

Page 61: ...ify the password Save Click Save to save your changes back to the GWR Router Reload Click Reload to discard any changes and reload previous settings Table 22 Remote Management parameters Management Co...

Page 62: ...DGE HSPA HSPA LTE network connection Selecting this option you can configure parameters for LAN and WAN interface Figure 42 Connection Wizard Initial Step Select one of the options and click Next On t...

Page 63: ...the list and click Next you will get to the following screen Figure 44 Connection Wizard LAN Settings If you selected to configure LAN and WAN interface click upon entering LAN information click Next...

Page 64: ...tocol SNMP SNMP or Simple Network Management Protocol is a network protocol that provides network administrators with the ability to monitor the status of the Router and receive notification of any cr...

Page 65: ...ter and enable disable SNMP Table 23 SNMP parameters Management Logs Syslog is a standard for forwarding log messages in an IP network The term syslog is often used for both the actual syslog protocol...

Page 66: ...u want Syslog data to be sent User defined Set manually port number Default Use standard port number for this service 514 Local syslog Description Syslog file size Set log size on one of the six prede...

Page 67: ...ss obtained from Mobile Operator Note the default gateway may show or change to an address such as 10 0 0 1 this is normal as it is the GSM UMTS provider s network default gateway Click WAN Settings T...

Page 68: ...static IP addresses which are needed for most VPN connections A custom APN should also support mobile terminated data that may be required in most site to site VPNs The GWR Router 1 configuration Cli...

Page 69: ...into GRE table Press Save to accept the changes Figure 51 GRE configuration page for GWR Router 1 Click Routing on Settings Tab to configure GRE Route Parameters for this example are Destination Netw...

Page 70: ...Click VPN Settings GRE to configure GRE tunnel parameters Enable yes Local Tunnel Address 10 10 10 2 Local Tunnel Netmask 255 255 255 252 Unchangeable always 255 255 255 252 Tunnel Source 10 251 49 3...

Page 71: ...e for GWR Router 2 Optionally configure IP Filtering and TCP service port settings to block any unwanted incoming traffic On the device connected on GWR router 2 setup default gateway 192 168 2 1 www...

Page 72: ...mit unroutable traffic such as NetBIOS or AppleTalk The GWR Router uses Network Address Translation NAT where only the mobile IP address is visible to the outside All outgoing traffic uses the GWR Rou...

Page 73: ...LAN TCP IP settings Configure IP address and Netmask IP Address 10 1 1 1 Subnet Mask 255 255 255 0 Press Save to accept the changes Figure 57 Network configuration page Use SIM card with a dynamic st...

Page 74: ...ng on Settings Tab Parameters for this example are Destination Network 10 2 2 0 Netmask 255 255 255 0 Figure 59 Routing configuration page Optionally configure IP Filtering and TCP service port settin...

Page 75: ...service for synchronization with DynDNS server SIM card must have internet access GSM UMTS APN Type For GSM UMTS networks GWR Router connections may require a Custom APN A Custom APN allows for vario...

Page 76: ...IPSec tunnel Tunnel parameters are Add New Tunnel Tunnel Name test Enable true IPSec Setup Keying Mode IKE with Preshared key Phase 1 DH group Group 2 Phase 1 Encryption 3DES Phase 1 Authentication MD...

Page 77: ...er false Advanced Negotiation Mode Aggressive Compress Support IP Payload Compression Protocol IPComp false Dead Peer Detection DPD false NAT Traversal true Send Initial Contact true Figure 62 IPSEC c...

Page 78: ...GWR Router 1 On the device connected on GWR router 1 setup default gateway 10 0 10 1 The GWR Router 2 configuration Click Network Tab to open the LAN NETWORK screen Use this screen to configure LAN T...

Page 79: ...New Tunnel button to create new IPSec tunnel Tunnel parameters are Add New Tunnel Tunnel Name test Enable true IPSec Setup Keying Mode IKE with Preshared key Phase 1 DH group Group 2 Phase 1 Encryptio...

Page 80: ...Tunnel Failover false Advanced Negotiation Mode Aggressive Compress Support IP Payload Compression Protocol IPComp false Dead Peer Detection DPD false NAT Traversal true Send Initial Contact true Pres...

Page 81: ...uter 2 Click Start button on Internet Protocol Security page to initiate IPSEC tunnel Figure 70 IPSec start stop page for GWR Router 2 On the device connected on GWR router 2 setup default gateway 192...

Page 82: ...tname with DynDNS service for synchronization with DynDNS server SIM card must have internet access GSM UMTS APN Type For GSM UMTS networks GWR Router connections may require a Custom APN A Custom APN...

Page 83: ...Tunnel Name test Enable true IPSec Setup Keying Mode IKE with Preshared key Phase 1 DH group Group 2 Phase 1 Encryption 3DES Phase 1 Authentication SHA Phase 1 SA Life Time 28800 Perfect Forward Secre...

Page 84: ...Negotiation Mode Aggressive Compress Support IP Payload Compression Protocol IPComp false Dead Peer Detection DPD false NAT Traversal true Send Initial Contact Notification true Press Save to accept...

Page 85: ...Router Click Start button on Internet Protocol Security page to initiate IPSEC tunnel Figure 76 IPSec start stop page for GWR Router On the device connected on GWR router setup default gateway 192 16...

Page 86: ...e wildcard pre shared key and a wildcard identity crypto isakmp profile L2L description LAN to LAN vpn connection keyring remote match identity address 0 0 0 0 crypto ipsec transform set testGWR esp 3...

Page 87: ...ass 23 in privilege level 15 login local transport input telnet ssh end Use this section to confirm that your configuration works properly Debug commands that run on the Cisco router can confirm that...

Page 88: ...lity can result in optimum reception Another way of increasing throughput is by physically placing the device on the roof of the building in an environmentally safe enclosure with proper moisture and...

Reviews:

No comments

Related manuals for GWR Cellular Router Series

YASKAWA SI-EP3/V Installation Manual preview
SI-EP3/V
Brand: YASKAWA Pages: 68
Garland INT10G10SP2 User Manual preview
INT10G10SP2
Brand: Garland Pages: 6
TP-Link tl-wr845n Quick Installation Manual preview
tl-wr845n
Brand: TP-Link Pages: 2
Airlinkplus ASW224 User Manual preview
ASW224
Brand: Airlinkplus Pages: 20
Black Box LGB2003A User Manual preview
LGB2003A
Brand: Black Box Pages: 62
Tripp Lite N002-025-RD Specification Sheet preview
N002-025-RD
Brand: Tripp Lite Pages: 3
Supermicro SSG-927R-E2CJB User Manual preview
SSG-927R-E2CJB
Brand: Supermicro Pages: 62
OST RuggedNet 10G/Si User Manual preview
RuggedNet 10G/Si
Brand: OST Pages: 8
Ubiquiti airCube Configuring And Installing preview
airCube
Brand: Ubiquiti Pages: 2
Juniper EX4600 Hardware Manual preview
EX4600
Brand: Juniper Pages: 230
S-Access SA-REP-ETHERLINK_II-1DA-PL Manual preview
SA-REP-ETHERLINK_II-1DA-PL
Brand: S-Access Pages: 106
Planet FGSW-4840S User Manual preview
FGSW-4840S
Brand: Planet Pages: 38
Billion BiPAC 7404VGO Specifications preview
BiPAC 7404VGO
Brand: Billion Pages: 2
Riverbed SteelCentral AppResponse 2170 Installation Manual preview
SteelCentral AppResponse 2170
Brand: Riverbed Pages: 166
Syris SYRD245-1N User Manual preview
SYRD245-1N
Brand: Syris Pages: 27
Magnescale MG80-EI Operating Manual preview
MG80-EI
Brand: Magnescale Pages: 73
ADC The DSX Value Solution (Japanese) LDX154 (Japanese) Brochure preview
The DSX Value Solution (Japanese) LDX154
Brand: ADC Pages: 4
Edimax ES-3105P Quick Installation Manual preview
ES-3105P
Brand: Edimax Pages: 40

Brands by name

Popular brands

Load more brands