manualshive.com logo in svg

Teltonika RUT700 HSPA+, User Manual

The Teltonika RUT700 HSPA+ router provides fast and reliable internet connectivity. Stay connected on the go with this powerful device. For detailed setup and usage instructions, download the free user manual from manualshive.com. Get the most out of your router with easy-to-follow manual.

Share
Download
background image

 

47 

 

IPsec 

The IPsec protocol client enables the router to establish a secure connection to an IPsec peer via the Internet. IPsec is 
supported  in  two  modes  -  transport  and tunnel.  Transport mode  creates  secure  point  to  point  channel  between two 
hosts. Tunnel mode can be used to build a secure connection between two remote LANs serving as a VPN solution. 

IPsec system maintains two databases: Security Policy Database (SPD) which defines whether to apply IPsec to a packet 
or not and specify which/how IPsec-SA is applied and Security Association Database (SAD), which contain Key of each 
IPsec-SA. 

The establishment of the Security Association (IPsec-SA) between two peers is needed for IPsec communication. It can 
be done by using manual or automated configuration. 

Note: router starts establishing tunnel when data from router to remote site over tunnel is sent. For automatic tunnel 
establishment used tunnel keep-alive feature. 

Automatic IPSec Key exchange 

 

 

Field name 

Description 

1. 

Enable IPSec 

Check box to enable IPSec. 

2. 

IPSec key exchange mode 

Automatic Key exchange. 

3. 

Enable NAT traversal 

Enable this function if client-to-client applications will be used. 

4. 

Enable initial contact 

Enable this to send an INITIAL-CONTACT message. 
 

5. 

Peers identifier type 

Choose “fqdn” or “user fqdn” accordingly to your IPSec server configuration. 

6. 

Mode 

Select  “Main”  or  “Aggressive”  mode  accordingly  to  your  IPSec  server 
configuration. 

7. 

My identifier 

Set the device identifier for IPSec tunnel. 

8. 

Preshare key 

Specify the authentication secret [string]. Secret’s length depends on selected 
algorithm, eg. 128 bit long secret is 16 characters in length, 128 bits / 8 bits 
(one character) = 16.

 

 

9. 

Remote VPN Endport 

Set remote IPSec server IP address.

  

 

Summary of Contents for RUT700 HSPA+

Page 1: ...1 USER MANUAL...

Page 2: ...ut prior notice Other product and company names mentioned herein may be trademarks or trade names of their respective owners Attention Before using the device we strongly recommend reading this manual...

Page 3: ...N and Wi Fi 8 Electrical Mechanical Environmental 8 Applications 9 Setting up your router 10 Installation 10 Connectors 10 Inserting the SIM card 10 Connecting the device 11 Logging in 11 Operation Mo...

Page 4: ...eboot 39 SMS Reboot 40 Status via SMS 40 NTP 41 Dynamic DNS 42 Wireless hotspot 43 OpenVPN 45 IPsec 47 GRE Tunnel 49 System 50 Configuration Wizard 50 Administration 52 Administration properties 52 Ba...

Page 5: ...h the requirements of standard EN 60950 1 Do not mount or service the device during a thunderstorm To avoid mechanical damages to the device it is recommended to transport it packed in a damage proof...

Page 6: ...6 Device connection...

Page 7: ...HSPA uplink of up to 5 76Mbps Complies with IEEE 802 11n IEEE 802 11g IEEE 802 11b wireless standards Complies with IEEE 802 3 and IEEE 802 3u standards IEEE 802 3af 2003 compliant POE One 10 100 Bas...

Page 8: ...e Router Auto negotiation manual mode for IEEE 802 11b g n Dynamic DNS LAN access control over Internet connection Virtual server Auto wireless channel selection OpenVPN IPSec PPPoE SMS and Ping reboo...

Page 9: ...9 Applications Device can provide internet connection by either Wi Fi or Ethernet cable Ethernet switch can be used to provide more Ethernet ports and to be able to connect several devices...

Page 10: ...in order to properly connect the device Connectors 1 SIM card 2 Wi Fi antenna connector 3 Ethernet connector Inserting the SIM card Remove the hex cap which is protecting the SIM holder Insert the SI...

Page 11: ...ring the Status window in the WebUI try to find a location with the best signal quality Logging in After you re complete with the setting up as described in the section above you are ready to start lo...

Page 12: ...for the results to pop up 3 Click View network connections 4 Then right click on your wireless device that you use to connect to other access points It is the one with the name Wireless Network Conne...

Page 13: ...n you can only enter an IP in the form of 192 168 1 XXX where XXX is a number in the range of 2 254 192 168 1 2 192 168 1 254 192 168 1 155 and so on are valid 192 168 1 0 192 168 1 1 192 168 1 255 19...

Page 14: ...nnect A list should pop up with all available wireless networks Select Teltonika and click connect Launch your favorite browser and enter the routers IP into the address field Press enter If there are...

Page 15: ...odes The router supports various operation modes It can be connected to the internet WAN via LTE standard Ethernet cable or via a wireless network If you connect to the internet via an Ethernet cable...

Page 16: ...mware that is currently loaded in the router Newer versions might become available as new features are added Use this field to decide whether you need a firmware upgrade or not 4 Kernel Version 3 2 15...

Page 17: ...e of the area in which data is temporarily stored before moving it to another location Network Information This page is much like the status page previously described though dedicated to data associat...

Page 18: ...255 255 255 240 Indicates the networks netmask 5 Gateway 10 12 104 97 Indicates the default gateway an address where traffic destined for the internet is routed to 6 DNS 8 8 8 8 Domain name server s...

Page 19: ...is connected to dictates the type of encryption 6 Bit rate 65 0 MBit s The physical maximum possible throughput that the routers radio can handle Keep in mind that this value is cumulative The bitrat...

Page 20: ...he information of the Access Point that the router is connecting to in Client Mode OR a list of all devices that are connecting to the router in Access Point mode DHCP Leases If you have enabled a DHC...

Page 21: ...P IP packet with a specific IP address should be directed to On the same page you can also analyze a detailed list of all active connections that the router maintains Each entry consists of a type of...

Page 22: ...ier used by a mobile device when connecting to a GSM carrier 3 PIN Number 5555 or any number that falls between 0000 and 9999 A personal identification number is a secret numeric password shared betwe...

Page 23: ...ough after a couple of reboots OR configuration saves it will WAN WAN configuration is arguably the crux of the routers configuration as it determines how the router will connect to the internet Here...

Page 24: ...address auto generated if not set It is best to leave this blank unless you know what you are doing 5 custom DNS servers 8 8 8 8 8 8 6 6 Usually the gateway has some predefined DNS servers As such the...

Page 25: ...ce Leave empty to autodetect Advanced These are the advanced settings for each of the protocols if you are unsure of how to alter these attributes it is highly recommended to leave them to a trained p...

Page 26: ...the gateway in thinking that it is communicating with your computer 4 Override MTU 1500 Maximum transmission unit specifies the largest possible size of a data packet 5 Use gateway metric 0 The WAN co...

Page 27: ...lly define a broadcast address and a custom DNS server How do I setup Wi Fi WAN First we must switch the mode to Wi Ffi Do so by selecting Wi F i from the list and wait for the page to quickly reload...

Page 28: ...omputers that you connect to the router will reside The common configuration and IP aliasing sections are identical to the ones found in WAN so for an explanation on how they work please follow throug...

Page 29: ...f the start address is 192 168 2 100 then the end address will be 192 168 2 254 100 150 1 254 4 Lease time 12h How long can a leased IP be considered valid An IP address after the specified amount of...

Page 30: ...i F i or not the page will display either the options for configuring an Access Point or options for configuring a connection to some local access point Access Point Here you can see the Overview of t...

Page 31: ...t can be fragmented and transmitted by multiple frames In areas were interference is a problem setting a lower fragment threshold might help reduce the probability of unsuccessful packet transfers thu...

Page 32: ...r one key and then specify it as the preferred one Length is important as well 10 or 26 characters in length in hex mode OR 5 or 13 in ASCII mode A hex key may only contain numbers 0 through 9 and let...

Page 33: ...can also click the Scan button to rescan the surrounding area and attempt to connect to a new wireless access point Backup WAN Backup WAN is function that allows you to back up your wired OR wireless...

Page 34: ...3 5 10 15 20 How many checks should pass for your WAN connection to be declared UP 6 DNS Servers Auto Custom Define custom DNS servers Has meaning when you select DNS as your Health Monitor ICMP HOST...

Page 35: ...invalid 3 Input Reject Drop Accept DEFAULT action that is to be performed for packets that pass through the Input chain 4 Output Reject Drop Accept DEFAULT action that is to be performed for packets t...

Page 36: ...e it easier to manage rules 2 Protocol TCP UDP TCP UDP Other Type of protocol of incoming packet 3 External Port 1 65535 From what port on the WAN network will the traffic be forwarded 4 Internal IP a...

Page 37: ...cked for a matching rule If there are several rules that match the rule the first one is applied i e the order of the rule list impacts how your firewall operates therefore you are given the ability t...

Page 38: ...trip time for messages sent from the originating host to a destination server Enter server IP address or hostname and click Ping Server echo response will be shown after few seconds if server is acces...

Page 39: ...echo received This check box will disable router rebooting after the defined number of unsuccessful retries This check box must be unselected if you want to use PING Reboot feature as Keep Alive func...

Page 40: ...row 4 Get status Check this to receive connection status via SMS after a reboot Disabled by default Status via SMS It is possible to get routers connection status via SMS text message Common configur...

Page 41: ...When check box is selected you must enter one or more working NTP servers Otherwise time sync feature will not work 4 Update interval Interval between time updates in seconds Use shorter interval for...

Page 42: ...ast IP check or update 3 Service Your dynamic DNS service provider selected from the list 1 dydns org 2 3322 org 3 no ip com 4 easydns com 5 zoneedit com In case your DDNS provider is not present from...

Page 43: ...cify after the slash E g 192 168 182 254 24 means that the router will create a network with the IP address 192 168 182 0 netmask 255 255 255 0 for the express purpose of containing all the wireless c...

Page 44: ...de of the schedule Use Fixed if you want the uploading to be done on a specific time of the day Use Interval If you want the uploading to be done at fixed interval 9 Weekdays This field specifies on w...

Page 45: ...on name in New configuration name field select device role from Role drop down list For example to create OpenVPN client with configuration name Demo select client role name it Demo and press Add New...

Page 46: ...erver Certificate Authority CA Server certificate Server key and Diffie Hellman DH certificate used to key exchange through unsafe data networks All mention certificates can be generated using OpenVPN...

Page 47: ...n Note router starts establishing tunnel when data from router to remote site over tunnel is sent For automatic tunnel establishment used tunnel keep alive feature Automatic IPSec Key exchange Field n...

Page 48: ...licy Database information Field name Explanation 1 Tunnel keep alive Allows sending ICMP echo request ping utility to the remote tunnel network This function may be used to automatically start the IPS...

Page 49: ...local IP address 3 Distant network IP address and Subnet mask Field name Explanation 1 Enable GRE Tunnel Check the box to enable the GRE Tunnel function 2 TTL Specify the fixed time to live TTL value...

Page 50: ...steps and they are as follows Step 1 Password change First the wizard prompts you to change the default password Simply enter the same password into both Password and Confirmation fields and press Nex...

Page 51: ...51 Step 3 LAN Next you are given the chance to configure your LAN and DHCP server options For a detailed explanation see LAN under Network Step 4 Wi F i...

Page 52: ...Explanation 1 System log level Select log level to be used for messages in system log requires restart of the device 2 Save log in Select whether system log is saved to ram or flash memory requires re...

Page 53: ...AN When check box is not selected users can access the router only from LAN Backup and Firmware Router firmware backup upgrade and settings reset to their factory defaults Backup and reset configurati...

Page 54: ...The Dynamic Host Configuration Protocol DHCP is a network configuration protocol for hosts on Internet Protocol IP networks Computers that are connected to IP networks must be configured before they...

Reviews:

No comments

Related manuals for RUT700 HSPA+

UniFi UAP-XG Quick Start Manual preview
UAP-XG
Brand: UniFi Pages: 45
Youwon ZF01-C Operation Manual preview
ZF01-C
Brand: Youwon Pages: 4
Tenda TWL5401A User Manual preview
TWL5401A
Brand: Tenda Pages: 30
Hitachi M 12V Instruction Manual preview
M 12V
Brand: Hitachi Pages: 19
Siemens RUGGEDCOM WIN5137 Installation Manual preview
RUGGEDCOM WIN5137
Brand: Siemens Pages: 38
Siemens RUGGEDCOM WIN5214 Installation Manual preview
RUGGEDCOM WIN5214
Brand: Siemens Pages: 42
Siemens HiPath V6R1 Installation Manual preview
HiPath V6R1
Brand: Siemens Pages: 54
Siemens SCALANCE W700 Reference Manual preview
SCALANCE W700
Brand: Siemens Pages: 92
Siemens 6GK5748-1GY01-0AA0 Operating Instructions Manual preview
6GK5748-1GY01-0AA0
Brand: Siemens Pages: 91
Siemens SCALANCE W744-1 Compact Operating Instructions preview
SCALANCE W744-1
Brand: Siemens Pages: 99
Siemens SCALANCE W1750D UI Configuration Manual preview
SCALANCE W1750D UI
Brand: Siemens Pages: 570
EDIFIER EDF200071 User Manual preview
EDF200071
Brand: EDIFIER Pages: 1
EDIFIER W280NB Manual preview
W280NB
Brand: EDIFIER Pages: 7
Edge-Core WA6202A User Manual preview
WA6202A
Brand: Edge-Core Pages: 332
Motion CMD-01 Quick Start Manual preview
CMD-01
Brand: Motion Pages: 26
Avaya AP-3 User Manual preview
AP-3
Brand: Avaya Pages: 425
AmbiCom WL1100B-AR User Manual preview
WL1100B-AR
Brand: AmbiCom Pages: 40
Gigafast WE711-APB User Manual preview
WE711-APB
Brand: Gigafast Pages: 45

Brands by name

Popular brands

Load more brands