VPNet VSU 2000 Скачать руководство пользователя страница 12 | Manualshive

Страница: 12 / 37

VPNet VSU 2000 Скачать руководство пользователя страница 12

1-4

Introduction

VSU-2000 User Guide

Status Indicators

The status indication LEDs on each of the two Ethernet ports and the Unit Status
Indicators are defined in Figure 1-4.

When LAN traffic is detected on the public port, the LAN status indicator will
blink. When VPN traffic is detected on the private port, the VPN status indicator
will blink. The rate at which the LAN and VPN status indicators blink is the
result of the rate of traffic detected on each port. The ON status indicator remains
lit to indicate the unit is powered up.

Figure 1-4

VSU-2000 Status Indicators

General Site Requirements

This section describes the requirements your site must meet for safe installation
and operation of your system. Ensure that your site is properly prepared before
beginning installation.

Environmental Requirements

The VSU-2000 is intended for use in a normal office or data room environment.
For more extreme conditions, verify that temperature, humidity, and power
conditions meet the specifications indicated in Table 1-1.

OFF = 10 Mbps Connection

ON = 100 Mbps Connection

Activity

ON = Full Duplex
OFF = Half Duplex

Link

LAN

VPN

ON

Table 1-1

Environmental Requirements

Item

Operating Specification

Temperature

32° to 104° F, 0° to 40°C

Relative Humidity

5-90%, non-condensing

Altitude

0-12,000 feet, 0-3,660 meters

Voltage

85-264 VAC

«
...
10
11
12
13
14
...
»

Содержание VSU 2000

Страница 1: ...VSU 2000 VPNware Service Unit User Guide VPNet Technologies Inc ...

Страница 2: ...o Software and documentation shall remain solely with VPNet The license is effective until terminated Customer may terminate this License at any time by destroying all copies of Software including any documentation This License will terminate immediately without notice from VPNet if Customer must destroy all copies of Software Software including technical data is subject to U S export control laws...

Страница 3: ...et s or its suppliers liability to Customer whether in contract tort including negligence or otherwise exceed the price paid by Customer The foregoing limitations shall apply even if the above stated warranty fails of its essential purpose Software VPNet warrants that for a period of ninety 90 days from the date of shipment from VPNet i the media on which the Software is furnished will be free of ...

Страница 4: ...t is operated in a commercial environment This equipment generates uses and can radiate radio frequency energy and if not installed and used in accordance with the instruction manual may cause harmful interference to radio communications Operation of this equipment in a residential area is likely to cause harmful interference in which case users will be required to correct the interference at thei...

Страница 5: ...r 1 Introduction Functional Overview 1 1 VSU 2000 Components 1 3 General Site Requirements 1 4 Chapter 2 Installing the VSU 2000 Rackmount Installation 2 1 Connecting the VSU 2000 to the Network 2 3 Chapter 3 Preparing the VSU 2000 for Configuration Preparation 3 1 Configuration 3 1 FIPS Mode 3 8 General Firmware Upgrade Information 3 8 ...

Страница 6: ...VSU 2000 User Guide APPENDIX A Specifications APPENDIX B 10 100BASE T UTP Crossover Cable Pinouts Glossary VSU Acronyms ...

Страница 7: ...uding placement and connection to the network Procedures for mounting the VSU 2000 in an equipment rack are also included in this chapter Chapter 3 Preparing the VSU 2000 for Configuration provides instructions for setting up VSU 2000 addressing and enabling remote connectivity for using the VPNmanager VPNet s VPN network management application Appendix A Specifications documents physical environm...

Страница 8: ...upport is available to registered users of the VSU 2000 Voice 1 888 VPNET 88 within U S or 1 408 404 1400 outside U S FAX 1 408 404 1414 Email support vpnet com World Wide Web http www vpnet com Version Date Changes 09 0045 01 August 2000 Initial Release 09 0045 02 January 2001 Chapter 3 Modified VSU Quick Setup section Added FIPS Mode and General Firmware Upgrade Imformation ...

Страница 9: ...e solution to quick and easy VPN deployment Figure 1 1 The VSU 2000 Like other gateways in the VPNware family the VSU 2000 adds compression encryption authentication and key management to public network data links to ensure privacy and integrity of corporate data and to enable the efficient and secure operation of virtual private networks VPNs It is designed to perform complex operations in real t...

Страница 10: ... protocol guidelines additional bytes in the form of IPSec headers must be added to packets In many cases the additional packet overhead imposes a performance penalty in return for security The extra bytes tend to lengthen packets and reduce the throughput measured in packets per second Of even greater impact is the tendency for packets lengthened by IPSec headers to be fragmented by network route...

Страница 11: ...ure 1 3 VSU 2000 Back Panel Ethernet Ports The VSU 2000 includes two 10 100BASE T Ethernet ports One port is designated as the public encrypted interface and the other port is designated as the private unencrypted interface NOTE The VSU 2000 is enclosed in a tamper evident case that meets U S NIST FIPS 140 1 Level Physical Security and may be replaced only by an authorized service technician Conso...

Страница 12: ...tus Indicators General Site Requirements This section describes the requirements your site must meet for safe installation and operation of your system Ensure that your site is properly prepared before beginning installation Environmental Requirements The VSU 2000 is intended for use in a normal office or data room environment For more extreme conditions verify that temperature humidity and power ...

Страница 13: ...tall and use the VSU 2000 in a typical network the customer must supply Router providing connectivity to a WAN such as the Internet 10 100BASE T Ethernet hub router or switch providing connectivity to a LAN Input Frequency 47 440 Hz AC input current 1 Amp Maximum Quantity Part Description 1 VSU 2000 VPN Service Unit 1 VSU 2000 VPN Service Unit User Guide 1 UTP Crossover Cable for connection to a r...

Страница 14: ...icult The following information will help you plan an acceptable equipment rack configuration Enclosed racks must have adequate ventilation Ensure that the rack is not overly congested because each unit generates heat An enclosed rack should have louvered sides and a fan to provide cooling air When mounting a chassis in an open rack ensure that the rack frame does not block the ventilation grates ...

Страница 15: ...ment rack Referring to Figure 2 1 perform the following procedure to install the VSU 2000 to a standard 19 inch equipment rack 1 From one side of the VSU 2000 remove the two front side screws 2 Using the flat head screws provided with the bracket attach the bracket to the VSU 2000 3 Repeat previous steps to attach the bracket on the other side of the VSU 2000 4 Install the VSU 2000 into a standard...

Страница 16: ...2 2 Installing the VSU 2000 VSU 2000 User Guide Figure 2 1 Installing the Rackmount Brackets ...

Страница 17: ...User Guide Connecting the VSU 2000 to the Network Figure 2 2 shows a typical network using the VSU 2000 Figure 2 2 Typical VSU 2000 Hardware Installation Public Network VSU 2000 Public Port Private Port Router Hub Switch Router Private LAN ...

Страница 18: ... in Table 2 1 The two Ethernet ports are 10 100BASE T compliant host ports They accept category 5 UTP cabling terminated in an RJ 45 connector per IEEE 802 3 requirements for 10 100BASE T The Ethernet ports do not provide a cross over function therefore a cross over cable provided with the unit is required when connecting the VSU 2000 public port directly to a router Connect Cables between the VSU...

Страница 19: ...e connect one of its RJ 45 connectors to the VSU 2000 private port and the second one to the hub or switch on the private LAN 3 Connect an asynchronous ASCII terminal or PC running terminal emulation software to the VSU 2000 console port using the RS 232 null modem cable that came with the VSU 2000 The terminal s communications parameters should be set to 9600 baud 8 data bits 1 stop bit no parity...

Страница 20: ...2 6 Installing the VSU 2000 VSU 2000 User Guide ...

Страница 21: ...e This preliminary configuration is performed using a terminal or a PC running terminal emulation software connected to the RS 232 console port The following procedure assumes that the VSU 2000 has been physically installed on the network according to the instructions provided in Chapter 2 Configuration Beginning with VPNware 3 1 the following information is configured through the VSU console Quic...

Страница 22: ... is passed through the VSU All non VPN IP traffic is dropped except for the following ICMP IGMP GGP EGP IGP DGP EIGRP and OSPF NOTE This mode should be used when the VSU dedicated to VPN traffic and is the only device between the private and the public networks Deny all non VPN traffic When checked all non VPN traffic is prevented from passing through the VSU This mode blocks non IP traffic and no...

Страница 23: ...0 60 a1 00 23 f9 ethernet1 MAC Address 00 60 a1 00 23 fa ethernet2 MAC Address 00 60 a1 00 16 9a ethernet3 MAC Address 00 60 a1 00 16 9b Checking Non Volatile RAM integrity OK Checking Configuration Database OK Checking Certificate Database OK Calibrating CPU performance monitor OK Power Cooling subsystems Monitor initializing Power Subsystem is Good Cooling Subsystem Good Done VPNet Technologies ...

Страница 24: ...s and mask are optional 3 Enter the default route for this VSU Typically the default route is the IP address of the gateway router that provides an IP route between the VSU 2000 and the public network e g Internet VPNet Technologies VSU XXXX Main Menu 1 Configuration 2 Statistics 3 Utilities 4 Logout 5 Quick Setup Your choice 1 5 5 IP address 192 0 2 1 Mask 255 255 255 0 IP address 210 1 18 135 IP...

Страница 25: ...to allow the Network Administrator to initially configure this VSU through the VPNmanager application Press Return or enter n to leave the superuser name at its default value of root or enter y to change the superuser name Both the superuser name and password may be up to 31 characters and are case sensitive The name and password will be required later when first setting up the VSU through the VPN...

Страница 26: ...want the VSU to run in FIPs compliant mode If you answer n the code skips to the date and time configuration Go to Step 7 Enter y if you want the VSU to run in FIPs compliant mode If you answer y answer the following configuration questions For more information regarding FIPS see FIPS Mode on page 3 8 Non VPN traffic mode non VPN traffic is currently forwarded Non VPN Traffic Configuration Menu 1 ...

Страница 27: ... 00 00 is equivalent to 1 00 PM 9 Reboot the VSU 2000 Your VSU 2000 is now prepared for configuration by using the VPNmanager The VSU initially passes all traffic between its Public and Private ports This would be a good time to verify connectivity by pinging the VSU from public and private machines and by passing traffic between public and private machines Proceed to the VPNmanager Administrator ...

Страница 28: ...an SHA 1 General Firmware Upgrade Information Configuration Items Left to the VPNmanager The following items are likely to be configured by most administrators but are left to VPNmanager or other VSU console menu items to keep the Quick Setup menu minimal LDAP servers used to authenticate VPNmanager console users Disable a VSU s SuperUser account Flushing the configuration on VPNware 3 1 In the ev...

Страница 29: ...are automatically discarded Packet Authentication Keyed MD5 AH Message Digest Algorithm RFC 1321 HMAC MD5 and HMAC SHA 1 RFC 2104 User Authentication RADIUS servers Ascend Access Control Security Dynamics ACE Server Access Manager BaySecure Access Control Funk Steel Belted RADIUS Server CHAP and PAP SecurID tokens x 509v3 digital certificates Smart Cards LDAP ...

Страница 30: ...ort IEEE 802 3 Ethernet Full IPSec compliance RFC 2401 2402 2403 2404 2405 2406 2407 2408 2409 2410 2412 2451 IPSec Key Management using SKIP or IKE Tunnel and transport modes supported Digital Certificates X 509v3 for management and IPSec communication Compatible with certificates generated by VeriSign GTE Cybertrust Entrust Frontier Technologies Baltimore Netscape Microsoft and Thawte System Man...

Страница 31: ...ty Tamper evident enclosure FIPS 140 1 Level 2 compliant LAN Interface Two 10 100BASE T Ethernet ports Management Interfaces RS 232 and Ethernet Software Upgrade Via built in flash RAM Power Requirements 100 240 VAC Input frequency 50 to 60 Hz AC input current 1 Amp Internal Battery End user non serviceable part CAUTION Danger of explosion if memory backup battery is incorrectly replaced Replace o...

Страница 32: ...User Guide Operating Environment Temperature 32 to 104 F 0 to 40 C Relative Humidity 5 to 90 non condensing Altitude 0 12 000 feet 3660 meters Safety Certification UL CSA CE CB Scheme EMI RFI FCC Part 15 Class A CISPR 22 85A VCCI ...

Страница 33: ... User Guide B 1 APPENDIX B 10 100BASE T UTP Crossover Cable Pinouts The 10 100BASE T UTP Crossover Cable defined below is provided with the VSU 2000 Signal Name Male RJ 45 Male RJ 45 TX 1 3 TX 2 6 RX 3 1 RX 6 2 ...

Страница 34: ...VSU 2000 User Guide B 2 10 100BASE T UTP Crossover Cable Pinouts ...

Страница 35: ...base system used to map host names to IP addresses and vice versa DCE Data Communication Equipment DSU CSU Data Service Unit Channel Service Unit DTE Data Terminal Equipment ECB Electronic Code Book encryption HDLC High level Data Link Control ISAKMP Internet Security Association Key Management Protocol IPSEC Internet Protocol SECurity MD5 Message Digest Algorithm ...

Страница 36: ...t For Comment SHA Secure Hash Algorithm SKIP Simple Key Management for Internet Protocol SNMP Simple Network Management Protocol SSL Secure Socket Layer TCP IP Transmission Control Protocol Internet Protocol URL Uniform Resource Locator UTP Unshielded Twisted Pair VPN Virtual Private Network VSU VPN Service Unit ...

Страница 37: ...stallation desktop 2 1 rackmount 2 1 IP address 3 4 IPSec standards 1 2 L LAN connections 2 5 N netmask 3 4 P password VSU console 3 5 performance 1 2 phone support 1 ii plug and play installation 1 2 power on bootup screen 3 2 product registration 1 ii Q quick setup menu 3 4 R reboot 3 7 registration 1 ii requirements environmental 1 4 router connections 2 5 S security 1 2 SHA1 1 2 SKIP 1 2 speci...

Отзывы:

Нет отзывов

Бренды по названию

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Популярные бренды

Загрузить еще бренды