manualshive.com logo in svg

XiNCOM Twin WAN XC-DPG502, User Manual

The XiNCOM Twin WAN XC-DPG502 is a versatile networking device that allows for dual WAN connections. To quickly set up and configure your device, be sure to download the free Quick Start Manual from manualshive.com. This manual will guide you through the setup process step-by-step.

Share
Download
background image

Twin WAN Series – User Guide | v1 

 

The 

Dead Peer Detection Feature 

is also a main component of VPN failover. When it is 

enabled, the Twin WAN Gateway will send packets to the remote VPN gateway to verify 
that the tunnel is still connected. When a dropped tunnel is detected the XiNCOM will 
change the logical state of that tunnel to Idle. 
 
 

Dead Peer Detection Feature - Settings 

 

Detection 

This check box will enable Dead Peer Detection and you will be able to set options. 
 

Check Method 

Select a method of verification: ICMP, Heartbeat, or Keep Alive  
 

Check After Idle  

When no traffic is passed through the VPN tunnel for this amount of time, the TWR VPN 
Gateway will attempt to send a Detection packet. 
 

Retry Times  

This is the amount of times the XiNCOM VPN Gateway will attempt to send the packet 
before the Check After Idle time is expired.  
 

Action 

These options instruct the router on what action to take if a dead tunnel is discovered. It 
can ignore the dead tunnel, disconnect the dead tunnel or attempt to keep it alive.  
 

Logging 

This check box simply enables the Logging function for DPD (Dead Peer Detection). If 
this feature is enabled all actions of DPD will show up in the VPN Log. 
 

 

 

 

Figure 18-b. Policy Setup - Options Sub-Console. 

 
The 

Options

 section allows you to set options for handling the VPN tunnel. These 

options must be set on both the local and the remote side in order to properly function. 
Failure to do so may result in dropped or corrupted packets.  
 

The Options sub-console screen is located in Policy Setup>Actions>Set Options.  

 

Copyright © 2005 WINS International, LLC dba XiNCOM | All rights reserved. 

70

Summary of Contents for Twin WAN XC-DPG502

Page 1: ...User Guide Twin WAN Series TM By WINS International By WINS International LLC...

Page 2: ...tion 6 Dynamic DNS 42 Section 7 Multi DMZ UPnP 45 Section 8 NAT 47 Section 9 Advanced Feature 48 Chapter 4 Security 51 Section 1 Block URL 51 Section 2 Access Filter 52 Section 3 Session Limit 54 Sect...

Page 3: ...1 Chapter 9 Network Info 95 Section 1 Operation Status Overview 95 Section 2 WAN NAT Status 98 Section 3 Restoring Factory Defaults 100 Appendices 101 Appendix A Specifications 101 Appendix B Windows...

Page 4: ...ss s customers while maintaining uptime and productivity for its employees Robust Security Features The Twin WAN Series also features NAT a Stateful Packet Inspection SPI Firewall DHCP server Access F...

Page 5: ...Gateways are an authoritative DNS to IP gateway that resolves a domain name to its respective IP addresses This new capability allows for inbound failover and load balancing for servers located behin...

Page 6: ...on your LAN The Twin WAN Gateway can also be configured remotely via the Internet Password Protected Configuration Optional password protection is provided to prevent unauthorized users from modifyin...

Page 7: ...direct your network traffic to take advantage of your available bandwidth This function allows for specified packets with higher priority to pass through such as Internet phone video conference and o...

Page 8: ...nection on WAN port ON Physical connection to the Broadband modem on WAN port established 10 100M OFF 10 BaseT connection or no connection on WAN port ON Physical connection using 100 BaseT on WAN por...

Page 9: ...ports Both 10BaseT and 100BaseT connections can be used simultaneously Note Any port will automatically operate as an Uplink port if required Use a standard RJ 45 Ethernet cable to connect to any port...

Page 10: ...teway 3 Configuring the Twin WAN Gateway for Internet Access 4 Configuring all PCs on your LAN to use the Twin WAN Gateway Requirements One or two Broadband modems T1 xDSL Cable and or Satellite with...

Page 11: ...ovided with the product using a different one may cause hardware damage 3 Start your PC or restart your PC if it is already running Once restarted the PC will then obtain an IP address from the Twin W...

Page 12: ...he following The Twin WAN Gateway is properly installed The Ethernet cable to the Twin WAN Gateway is properly attached The Twin WAN Gateway is powered ON 8 After the login you will then see the Admin...

Page 13: ...your LAN on startup The default and recommended value is Enable Windows systems by default act as DHCP clients This setting is called Obtain an IP address automatically If you are already using an exi...

Page 14: ...king devices to your network DHCP Client List This table shows the IP addresses which have been allocated by the DHCP Server function For each address which has been allocated the following informatio...

Page 15: ...usly Use a standard CAT 5 Ethernet cable to connect any port on the Twin WAN Gateway to a standard port on another hub Any LAN port on the will automatically act as an Uplink port when required 4 Powe...

Page 16: ...he following situations refer to Chapter 3 Advanced Setup for any further configuration which may be required such as Using both ports Multiple IP addresses on either port Multiple PPPoE sessions PPTP...

Page 17: ...uses this method PPPoE software that is usually provided by your ISP is not required to be used when selecting this method If this method is selected you must complete the PPPoE dialup fields Address...

Page 18: ...required by some ISPs If your ISP provided a Host Name enter it here Otherwise you can use the default value Domain Name This is required by some ISPs If your ISP provided a Domain Name enter it here...

Page 19: ...address from the Twin WAN Gateway If using fixed IP addresses on your LAN or you wish to check your TCP IP settings refer to Appendix B Windows TCP IP Setup Internet Access To configure your PCs to us...

Page 20: ...art the AOL for Windows communication software Ensure that it is Version 2 5 3 0 or later This procedure will not work with earlier versions 2 Click the Setup button 3 Select Create Location and chang...

Page 21: ...r configuration Set your Default Gateway to the IP Address of the Twin WAN Gateway Ensure your DNS Name server settings are correct To act as a DHCP Client recommended The procedure below may vary acc...

Page 22: ...s load balancing features It allows you to determine the proportion of WAN traffic sent through each port This can only be used when using two broadband connections Advanced PPPoE optional This setup...

Page 23: ...O When enabled the Twin WAN Gateway monitors inbound and outbound traffic on both WAN ports and to verify there is connectivity If the connections are idle ICMP or HTTP health check methods will be ut...

Page 24: ...number of times an Echo request will be sent if there is no response to the first request The default value is 3 times Transparent Bridge Option Bridge Mode When set to Enable this WAN port does not...

Page 25: ...lot of small packets such as web browsing and Usenet This helps you maintain the best latency Sessions Established The Twin WAN Gateway tries to maintain an even number of sessions on each WAN port b...

Page 26: ...d by Sessions IP Addresses Traffic is measured by IP Addresses Loading Share on WAN 1 Enter the percentage of traffic to be sent over WAN 1 The WAN port with the greater bandwidth should be given a hi...

Page 27: ...he Restart Counters button to restart these counters when required Buttons Update Save the settings on this screen Refresh Update the data on screen Restart Counters Restart the counters used in the I...

Page 28: ...Account User Name Enter the PPPoE user name assigned by your ISP Password Enter the PPPoE password assigned by your ISP Verify Password Re enter the PPPoE password assigned by your ISP IP Address If y...

Page 29: ...n to the PPTP server Verify Password Re enter the PPTP password assigned by your ISP IP Address Enter the IP address of the PPTP Server This is provided by your ISP Static IP Address If provided input...

Page 30: ...This requires that each PC be identified by using the Host IP Setup screen When you wish to have different Block URL settings for different PCs This requires that each PC be identified by using the Ho...

Page 31: ...ect Enable to reserve a particular LAN IP address for a particular PC on your LAN This allows the PC to use DHCP Windows calls this Obtain an IP address automatically while having an IP address which...

Page 32: ...user Delete Click this to delete the selected entry Update Use this to update the selected entry after making the desired changes Reset This will reverse any changes you have made since loading the da...

Page 33: ...o provide the Twin WAN Gateway s LAN IP address as the Default Gateway 3 Your DHCP Server must provide correct DNS addresses to the PCs Dynamic Routing Dynamic Routing Console RIP v2 RIP is a dynamic...

Page 34: ...e LAN segment in this field For standard class C LANs the network address is the first 3 fields of the Destination IP Address The 4th last field can be left at 0 Netmask Input the Network Mask for the...

Page 35: ...l LAN must be forwarded to the Twin WAN Gateway so that they can be forwarded to the Internet This is done by configuring other Routers to use the Twin WAN Gateway as the Default Route or Default Gate...

Page 36: ...ess 192 168 3 0 Network Mask 255 255 255 0 Standard Class C Gateway IP Address 192 168 1 100 Interface LAN Metric 3 For Router A s Default Route Destination IP Address 0 0 0 0 Network Mask 0 0 0 0 Gat...

Page 37: ...ur LAN not on the Internet Attempts to connect to devices on your LAN are blocked by the firewall in the Twin WAN Gateway The Virtual Server feature solves these problems and allows Internet users to...

Page 38: ...later in this chapter to allow users to connect to your Virtual Servers using a URL instead of an IP Address e g HTTP my_domain_name dyndns org FTP my_domain_name dyndns org Virtual Server Settings En...

Page 39: ...ation Server Name Enter a suitable name for this server State Use this to Enable or Disable the server Server IP Enter the IP address of the PC on you LAN which is running the required Server software...

Page 40: ...rs to be bound to WAN1 WAN2 or both ports together Buttons Add Create a new Special Application entry Delete Delete the selected entry Update Save any changes you have made to the current entry Cancel...

Page 41: ...ions Settings Select Special Application Name This lists any special applications which are currently defined Enter your data in the Special Application Configuration section and click the Add button...

Page 42: ...ns Add Create a new Special Application entry Delete Delete the selected entry Update Save any changes you have made to the current entry Cancel Cancel any changes you have made since the last save op...

Page 43: ...ress your IP address may change whenever you connect to your ISP In order to utilize this feature you must register for the Dynamic DNS service The Twin WAN Gateway supports three 3 types of service p...

Page 44: ...ings Dynamic DNS Service Use this to Enable Disable the Dynamic DNS feature and select the required service provider Disable Dynamic DNS is not used TZO Select this to use the TZO service www tzo com...

Page 45: ...given by the service provider Verity Password Re enter the password above Server Enter the name or IP address of the service provider s server Host Name Enter the domain name allocated to you by the...

Page 46: ...mber this setting This name has no effect on the operation For Static IP Public IP Address Enter the WAN port Internet IP address you wish to associate to a PC This IP address must have been allocated...

Page 47: ...an set the traffic direction to inbound outbound or both bi directional Universal Plug Play UPnP The UPnP function can easily setup and configure an entire network enable discovery and control network...

Page 48: ...s 2 addresses 1 for the LAN port and 1 for the WAN port NAT is disabled only when you wish to use the Twin WAN Gateway as a Static Router TCP Timeout Enter the desired value to use on both WAN ports T...

Page 49: ...e Upgrade This feature permits you to use the supplied Windows program to remotely upgrade the Firmware When not enabled upgrades must be performed by a PC on the LAN Remote Web based Setup This featu...

Page 50: ...WAN Gateway will respond to ICMP ping requests received from the WAN port When the Block Selected Packet Types is enabled the selected packet types are blocked DNS Loopback Some servers on a LAN and...

Page 51: ...m Destination IP IP address of destination which packets are sent to Subnet Mask With subnet mask other than 255 255 255 255 you can make a IP sub network as your destination Protocol Select the proto...

Page 52: ...on this screen will block all Web sites hosted on that IP address Block URL Settings Access Group This option allows you to have different restriction rules for different groups groups are defined in...

Page 53: ...ter Console Access Filter Settings Setup Access Group Select an Access Group to fine tune access parameters for each defined group Different groups can have specific access rights to the network when...

Page 54: ...k The current group will not be able to use any services that are checked User Defined Ports to Block This section of the Access Filter console is optional Use this to define your own custom filters F...

Page 55: ...ions exceeds the maximum limit during the sampling time all new sessions created will be dropped by the gateway Default 65535 session sec Maximum of New Sessions for Host If the number of new sessions...

Page 56: ...rewall exception Interface You can select LAN WAN1 WAN2 or ALL interfaces to be process by the system protocol stack Protocol There are six protocols UDP TCP ICMP GRE ESP AH to choose from This allows...

Page 57: ...603 are VPN capable Dual WAN Gateways with industry standard IPsec encryption It provides extremely secure LAN to LAN connectivity over the Internet with the use of two concurrent VPN tunnels that wil...

Page 58: ...ese settings you will need to match the settings of the remote endpoint All XiNCOM VPN gateways ship with the same default Global Parameters If you are connecting to another XiNCOM VPN endpoint using...

Page 59: ...2 This is the Global configuration for all policies created It is recommended for novice users to use the default configuration If these settings do not match the remote side Phase 1 will not connect...

Page 60: ...iod Retry Counter This field indicates how many times the process will be restarted if the process of Phase 1 is unsuccessful Once the retry counter is expired an error message will be displayed in th...

Page 61: ...gs major Error This log level will display messages that result in a failed operation such as tunnel unable to establish or failed packet transmissions The most likely cause of these messages is impro...

Page 62: ...VPN settings it is recommended that you set the log level to Information first to see the general area of where the tunnel is failing and then run the same test with Log Level set to Debug Copyright...

Page 63: ...ailable in the Mesh Use the Policy Setup under the following conditions If you do not wish to utilize the VPN Aggregation or VPN Failover You will be connecting this device to different brand endpoint...

Page 64: ...to bind this to either WAN 1 or WAN 2 because the destination gateway might reject the VPN tunnel PPPoE Session If you are using a multi session PPPoE connection you can select which session you want...

Page 65: ...ndpoints together it is recommended that you make the whole subnets available to access the VPN tunnel This is accomplished by setting the Remote and the Local Type to Subnet When you specify the IP a...

Page 66: ...on makes the data unreadable if intercepted There are three encryption methods available DES 3DES and AES The default is null Null fastest method but it offers no security DES faster than 3DES but les...

Page 67: ...fied interface Manual Key by the nature of its design works with NAT it is more complex to set up since it requires for you to set outgoing and incoming SPI as well as Authentication and encryption Ke...

Page 68: ...channel Aggressive Mode is another way of accomplishing a phase one exchange It is faster and simpler than main mode but does not provide identity protection for the negotiating nodes Perfect Forward...

Page 69: ...field NOTE This button will work only if the Remote Security Gateway is a valid IP address and the VPN client gateway allows incoming VPN tunnels Flush Tunnel This button resets the state of the VPN...

Page 70: ...igured for the tunnel as well as the status of the VPN tunnel Use this to aid you in the configuration of the tunnel options Figure 18 e Dead Peer Detection Console Dead Peer Detection Feature is a co...

Page 71: ...es This is the amount of times the XiNCOM VPN Gateway will attempt to send the packet before the Check After Idle time is expired Action These options instruct the router on what action to take if a d...

Page 72: ...ing of each packet ESP is a key protocol in the IPsec Internet Security architecture which is designed to provide a mix of security services in IPv4 and IPv6 Refer to the RFC 2406 documentation for mo...

Page 73: ...fined policies provides real time applications to get better response or performance Figure 19 QoS Console Quality of Service Settings QoS Features Enable QoS This enables the QoS function Queuing Met...

Page 74: ...process the IP Type of Service field Overwrite Policy Priority Choosing Yes will set the priority of the TOS field in IP packet to overwrite the priority defined in policy configuration Policy Configu...

Page 75: ...stination Address Define the destination address of packets here The Twin WAN Gateway supports two destination address types IP address or MAC address Selecting IP address permits you to define IP add...

Page 76: ...ator the ability to easily create and manage extra domain names This provides a web site with expanded bandwidth and redundancy via auto failover in case a single Internet connection fails Load Balanc...

Page 77: ...broadband connection is required for the Authoritative DNS function It is necessary to register your WAN1 WAN2 IP addresses with your Domain Name Provider for a static DNS NOTE Once you have configur...

Page 78: ...ad statistics Setup 2 A reply is sent to the web browser The Gateway directs the browser session to the WAN port with the least traffic Step 3 The web browser is then connected to the appointed IP add...

Page 79: ...ied to the request This holds the Gateway s user preferences and setting values including load share and load balance type 6 The Load Balancing Algorithm determines that WAN 2 has the least amount of...

Page 80: ...Server Configuration The XC DPG602 and 603 have 2 DNS servers built in one for each WAN port The device can support 1 SOA record 2 MX records and 10 A records per DNS server Before configuring any dom...

Page 81: ...ganization or reseller Example www xyz com Primary Name Server This parameter sets the primary name server for your domain Example NS1 yourdomain com Admin Mail Box This field sets the administrator s...

Page 82: ...n limit for the name server to stop serving its associated zone in the event of recurring failed refresh intervals Default value is 24 hours Minimum TTL The minimum time to live TTL This field sets th...

Page 83: ...nce 1 2 This sets the route preference The lower number will have the higher priority Location This sets the location for either the public or private IP IP Address The user can set the IP address of...

Page 84: ...e URL in this field that you wish to map Select DNS Server This option lets you select which DNS server you want the entry to associate with Private IP Address This field indicates the local IP addres...

Page 85: ...s for any WAN port if your ISP supports the use of using multiple static IP addresses This field is blank by default for the selected domain name in this field Canonical Name 1 2 The official name of...

Page 86: ...rd Re enter the password in the Verify Password field and then save it When you connect to the Twin WAN Gateway with your Browser you will be prompted for the password when you connect as shown below...

Page 87: ...an warning email when WAN port was disconnected Email Alert Configuration Email Sender Address Input an email address that sends a warning email to a recipient The warning email will inform the recipi...

Page 88: ...ministrator email address For example admin mail domain com Excessive Ping Notification This feature is useful to prevent ICMP attacks from WAN or LAN It will drop the packets if the ping times are ex...

Page 89: ...sole SNMP Settings System Information Enable The name of the individual responsible for this device Device Name Enter a name for the Twin WAN Gateway Physical Location Indicate the location of the Twi...

Page 90: ...eway to send system log messages to other PCs Keep Sent Messages By default sent syslog messages are deleted When Keep Sent Messages is enabled the Twin WAN Gateway will keep sent syslog messages Sysl...

Page 91: ...per gateway configuration Warning This log level displays potential issues that may result in an Error or a Critical Error The most likely cause of messages tagged as Warning is improper configuration...

Page 92: ...hose actions along with the proper procedure for upgrading your Twin WAN Gateway to the latest firmware release Updating the Firmware To update the firmware on your Twin WAN Gateway you must first dow...

Page 93: ...FTP utility you can learn how to update using the HTTP utility in the Admin Control section To save your Twin WAN Gateway Configuration to a file 1 Open the TFTP utility by double clicking on the TFTP...

Page 94: ...at you would like to save the file as Example config file bin 4 Click the Download button It could take up to 1 to 3 minutes to upload the firmware The Gateway will reboot thereafter Example of upload...

Page 95: ...a previously saved configuration HTTP Upgrade Firmware The Upgrade Firmware Screen within the Twin WAN Gateway s setup console allows you to upgrade firmware or backup system configuration by using HT...

Page 96: ...Renew Button This is only available when using a Dynamic IP address DHCP Clicking this will perform a Renew transaction with the ISP s DHCP server This will extend the period for which the current WA...

Page 97: ...teway NAT This displays the status of the NAT feature either Enable or Disable Load Balance This displays the status of the Load Balance feature either Enable or Disable Virtual Server This displays t...

Page 98: ...ercentage of CPU Memory Usage This displays the current usage percentage of Memory Heap Queue Console Buttons Refresh This button will update the data on screen Restart Restart reboot the Twin WAN Gat...

Page 99: ...lays the current traffic loading between both WAN ports Current Loading This displays the number of Sessions Bytes and Packets currently being processed on each port Current Bandwidth The current Down...

Page 100: ...T Timeouts This displays the current timeout values for TCP and UDP connections TCP Prosperity This displays the MSS Maximum Segment Size and Maximum Windows size for TCP packets NAT Traffic This sect...

Page 101: ...owing actions will occur ALL of your settings will be erased The default IP address password and ALL other settings will be restored to the factory default values The DCHP server function will be enab...

Page 102: ...Status 1 Power External Power Adapter 5 V 1 5A DC FCC Statement This device complies with Part 15 of the FCC Rules Operation is subject to the following two conditions 1 This device may not cause har...

Page 103: ...ly provide a suitable IP Address and related information to each PC when the PC boots For all non Server versions of Windows the default TCP IP setting is to act as a DHCP client If you wish to check...

Page 104: ...nd Dial up Connection 2 Right click the Local Area Connection icon and select Properties You should see a screen like the following Figure A Network Configuration Windows 2000 3 Select the TCP IP prot...

Page 105: ...Twin WAN Gateway Using a fixed IP Address Specify an IP Address If your PC is already configured check with your network administrator before making the following changes Enter the IP address of the...

Page 106: ...Network Connection 2 Right click the Local Area Connection and choose Properties You should see a screen like the following Figure C Network Configuration Windows XP 3 Select the TCP IP protocol for y...

Page 107: ...ries User Guide v1 4 Click on the Properties button You should then see a screen like the following Figure D TCP IP Properties Windows XP Copyright 2005 WINS International LLC dba XiNCOM All rights re...

Page 108: ...ess If your PC is already configured check with your network administrator before making the following changes Enter the IP address of the Twin WAN Gateway in the Default gateway field and click OK Yo...

Reviews:

No comments

Related manuals for Twin WAN XC-DPG502

D-Link DI-106 Series Faq preview
DI-106 Series
Brand: D-Link Pages: 29
D-Link DGS-3700 Series User Manual preview
DGS-3700 Series
Brand: D-Link Pages: 292
D-Link DGS-3224SR User Manual preview
DGS-3224SR
Brand: D-Link Pages: 140
D-Link DGS-1224T - Web Smart Switch User Manual preview
DGS-1224T - Web Smart Switch
Brand: D-Link Pages: 61
D-Link DI-LB604 - Load Balancing Router Quick Installation Manual preview
DI-LB604 - Load Balancing Router
Brand: D-Link Pages: 14
D-Link DIR-605L Specification preview
DIR-605L
Brand: D-Link Pages: 2
D-Link DIR-510L Manual preview
DIR-510L
Brand: D-Link Pages: 45
D-Link DES-3550 Manual preview
DES-3550
Brand: D-Link Pages: 218
D-Link DES-3528 - xStack Switch - Stackable User Manual preview
DES-3528 - xStack Switch - Stackable
Brand: D-Link Pages: 322
D-Link DIR-130 - Broadband VPN Router How To Set Up preview
DIR-130 - Broadband VPN Router
Brand: D-Link Pages: 10
D-Link DIR-130 - Broadband VPN Router Troubleshooting Manual preview
DIR-130 - Broadband VPN Router
Brand: D-Link Pages: 4
D-Link DIR-130 - Broadband VPN Router Configuration preview
DIR-130 - Broadband VPN Router
Brand: D-Link Pages: 13
D-Link DIR Series Configuration Manual preview
DIR Series
Brand: D-Link Pages: 13
D-Link DI-804HV - Express ENwork Router Configuration Manual preview
DI-804HV - Express ENwork Router
Brand: D-Link Pages: 19
D-Link DI-808HV Quick Installation Manual preview
DI-808HV
Brand: D-Link Pages: 12
D-Link DI-804 Quick Install Manual preview
DI-804
Brand: D-Link Pages: 8
D-Link DI-604UP Quick Install Manual preview
DI-604UP
Brand: D-Link Pages: 16
D-Link DI-304 Technical Bulletin preview
DI-304
Brand: D-Link Pages: 7

Brands by name

Popular brands

Load more brands