XiNCOM Twin WAN XC-DPG502 Скачать руководство пользователя страница 68 | Manualshive

Страница: 68 / 108

background image

Twin WAN Series – User Guide | v1

•

AutoKey (IKE)

- With Auto Key exchange a key is randomly generated.

While this is much easier and more convenient, by the nature of its design it
does not work with NAT. There are two types of operation modes can be used
- Main Mode & Aggressive Mode (explained below).

Phase 1 Negotiation

There are 2 options in this drop-down box - Main Mode and Aggressive Mode. Main
Mode provides identity protection for the remote and the local side. Aggressive Mode
does not provide identity protection but it is faster to negotiate.

•

Main Mode

accomplishes a phase one IKE exchange by establishing a secure

channel.

•

Aggressive Mode

is another way of accomplishing a phase one exchange. It

is faster and simpler than main mode but does not provide identity protection
for the negotiating nodes.

Perfect Forward Secrecy (PFS)

This is a more secure method of Virtual Private Networking. If the one key is
compromised, the previous and future keys will not be compromised.

Preshared Key

This is a "pass code" and must be the same one both the local and the remote side. If this
key does not match, the VPN tunnel will never connect. You may put in characters and
numbers. You may also put in HEX by entering "0x" before the sequence.

Key Lifetime

This allows you to specify a length to time or amount of transfer before the Security
Association is renegotiated.

Copyright © 2005 WINS International, LLC dba XiNCOM | All rights reserved.

67

«
...
66
67
68
69
70
...
»

Содержание Twin WAN XC-DPG502

Страница 1: ...User Guide Twin WAN Series TM By WINS International By WINS International LLC...

Страница 2: ...tion 6 Dynamic DNS 42 Section 7 Multi DMZ UPnP 45 Section 8 NAT 47 Section 9 Advanced Feature 48 Chapter 4 Security 51 Section 1 Block URL 51 Section 2 Access Filter 52 Section 3 Session Limit 54 Sect...

Страница 3: ...1 Chapter 9 Network Info 95 Section 1 Operation Status Overview 95 Section 2 WAN NAT Status 98 Section 3 Restoring Factory Defaults 100 Appendices 101 Appendix A Specifications 101 Appendix B Windows...

Страница 4: ...ss s customers while maintaining uptime and productivity for its employees Robust Security Features The Twin WAN Series also features NAT a Stateful Packet Inspection SPI Firewall DHCP server Access F...

Страница 5: ...Gateways are an authoritative DNS to IP gateway that resolves a domain name to its respective IP addresses This new capability allows for inbound failover and load balancing for servers located behin...

Страница 6: ...on your LAN The Twin WAN Gateway can also be configured remotely via the Internet Password Protected Configuration Optional password protection is provided to prevent unauthorized users from modifyin...

Страница 7: ...direct your network traffic to take advantage of your available bandwidth This function allows for specified packets with higher priority to pass through such as Internet phone video conference and o...

Страница 8: ...nection on WAN port ON Physical connection to the Broadband modem on WAN port established 10 100M OFF 10 BaseT connection or no connection on WAN port ON Physical connection using 100 BaseT on WAN por...

Страница 9: ...ports Both 10BaseT and 100BaseT connections can be used simultaneously Note Any port will automatically operate as an Uplink port if required Use a standard RJ 45 Ethernet cable to connect to any port...

Страница 10: ...teway 3 Configuring the Twin WAN Gateway for Internet Access 4 Configuring all PCs on your LAN to use the Twin WAN Gateway Requirements One or two Broadband modems T1 xDSL Cable and or Satellite with...

Страница 11: ...ovided with the product using a different one may cause hardware damage 3 Start your PC or restart your PC if it is already running Once restarted the PC will then obtain an IP address from the Twin W...

Страница 12: ...he following The Twin WAN Gateway is properly installed The Ethernet cable to the Twin WAN Gateway is properly attached The Twin WAN Gateway is powered ON 8 After the login you will then see the Admin...

Страница 13: ...your LAN on startup The default and recommended value is Enable Windows systems by default act as DHCP clients This setting is called Obtain an IP address automatically If you are already using an exi...

Страница 14: ...king devices to your network DHCP Client List This table shows the IP addresses which have been allocated by the DHCP Server function For each address which has been allocated the following informatio...

Страница 15: ...usly Use a standard CAT 5 Ethernet cable to connect any port on the Twin WAN Gateway to a standard port on another hub Any LAN port on the will automatically act as an Uplink port when required 4 Powe...

Страница 16: ...he following situations refer to Chapter 3 Advanced Setup for any further configuration which may be required such as Using both ports Multiple IP addresses on either port Multiple PPPoE sessions PPTP...

Страница 17: ...uses this method PPPoE software that is usually provided by your ISP is not required to be used when selecting this method If this method is selected you must complete the PPPoE dialup fields Address...

Страница 18: ...required by some ISPs If your ISP provided a Host Name enter it here Otherwise you can use the default value Domain Name This is required by some ISPs If your ISP provided a Domain Name enter it here...

Страница 19: ...address from the Twin WAN Gateway If using fixed IP addresses on your LAN or you wish to check your TCP IP settings refer to Appendix B Windows TCP IP Setup Internet Access To configure your PCs to us...

Страница 20: ...art the AOL for Windows communication software Ensure that it is Version 2 5 3 0 or later This procedure will not work with earlier versions 2 Click the Setup button 3 Select Create Location and chang...

Страница 21: ...r configuration Set your Default Gateway to the IP Address of the Twin WAN Gateway Ensure your DNS Name server settings are correct To act as a DHCP Client recommended The procedure below may vary acc...

Страница 22: ...s load balancing features It allows you to determine the proportion of WAN traffic sent through each port This can only be used when using two broadband connections Advanced PPPoE optional This setup...

Страница 23: ...O When enabled the Twin WAN Gateway monitors inbound and outbound traffic on both WAN ports and to verify there is connectivity If the connections are idle ICMP or HTTP health check methods will be ut...

Страница 24: ...number of times an Echo request will be sent if there is no response to the first request The default value is 3 times Transparent Bridge Option Bridge Mode When set to Enable this WAN port does not...

Страница 25: ...lot of small packets such as web browsing and Usenet This helps you maintain the best latency Sessions Established The Twin WAN Gateway tries to maintain an even number of sessions on each WAN port b...

Страница 26: ...d by Sessions IP Addresses Traffic is measured by IP Addresses Loading Share on WAN 1 Enter the percentage of traffic to be sent over WAN 1 The WAN port with the greater bandwidth should be given a hi...

Страница 27: ...he Restart Counters button to restart these counters when required Buttons Update Save the settings on this screen Refresh Update the data on screen Restart Counters Restart the counters used in the I...

Страница 28: ...Account User Name Enter the PPPoE user name assigned by your ISP Password Enter the PPPoE password assigned by your ISP Verify Password Re enter the PPPoE password assigned by your ISP IP Address If y...

Страница 29: ...n to the PPTP server Verify Password Re enter the PPTP password assigned by your ISP IP Address Enter the IP address of the PPTP Server This is provided by your ISP Static IP Address If provided input...

Страница 30: ...This requires that each PC be identified by using the Host IP Setup screen When you wish to have different Block URL settings for different PCs This requires that each PC be identified by using the Ho...

Страница 31: ...ect Enable to reserve a particular LAN IP address for a particular PC on your LAN This allows the PC to use DHCP Windows calls this Obtain an IP address automatically while having an IP address which...

Страница 32: ...user Delete Click this to delete the selected entry Update Use this to update the selected entry after making the desired changes Reset This will reverse any changes you have made since loading the da...

Страница 33: ...o provide the Twin WAN Gateway s LAN IP address as the Default Gateway 3 Your DHCP Server must provide correct DNS addresses to the PCs Dynamic Routing Dynamic Routing Console RIP v2 RIP is a dynamic...

Страница 34: ...e LAN segment in this field For standard class C LANs the network address is the first 3 fields of the Destination IP Address The 4th last field can be left at 0 Netmask Input the Network Mask for the...

Страница 35: ...l LAN must be forwarded to the Twin WAN Gateway so that they can be forwarded to the Internet This is done by configuring other Routers to use the Twin WAN Gateway as the Default Route or Default Gate...

Страница 36: ...ess 192 168 3 0 Network Mask 255 255 255 0 Standard Class C Gateway IP Address 192 168 1 100 Interface LAN Metric 3 For Router A s Default Route Destination IP Address 0 0 0 0 Network Mask 0 0 0 0 Gat...

Страница 37: ...ur LAN not on the Internet Attempts to connect to devices on your LAN are blocked by the firewall in the Twin WAN Gateway The Virtual Server feature solves these problems and allows Internet users to...

Страница 38: ...later in this chapter to allow users to connect to your Virtual Servers using a URL instead of an IP Address e g HTTP my_domain_name dyndns org FTP my_domain_name dyndns org Virtual Server Settings En...

Страница 39: ...ation Server Name Enter a suitable name for this server State Use this to Enable or Disable the server Server IP Enter the IP address of the PC on you LAN which is running the required Server software...

Страница 40: ...rs to be bound to WAN1 WAN2 or both ports together Buttons Add Create a new Special Application entry Delete Delete the selected entry Update Save any changes you have made to the current entry Cancel...

Страница 41: ...ions Settings Select Special Application Name This lists any special applications which are currently defined Enter your data in the Special Application Configuration section and click the Add button...

Страница 42: ...ns Add Create a new Special Application entry Delete Delete the selected entry Update Save any changes you have made to the current entry Cancel Cancel any changes you have made since the last save op...

Страница 43: ...ress your IP address may change whenever you connect to your ISP In order to utilize this feature you must register for the Dynamic DNS service The Twin WAN Gateway supports three 3 types of service p...

Страница 44: ...ings Dynamic DNS Service Use this to Enable Disable the Dynamic DNS feature and select the required service provider Disable Dynamic DNS is not used TZO Select this to use the TZO service www tzo com...

Страница 45: ...given by the service provider Verity Password Re enter the password above Server Enter the name or IP address of the service provider s server Host Name Enter the domain name allocated to you by the...

Страница 46: ...mber this setting This name has no effect on the operation For Static IP Public IP Address Enter the WAN port Internet IP address you wish to associate to a PC This IP address must have been allocated...

Страница 47: ...an set the traffic direction to inbound outbound or both bi directional Universal Plug Play UPnP The UPnP function can easily setup and configure an entire network enable discovery and control network...

Страница 48: ...s 2 addresses 1 for the LAN port and 1 for the WAN port NAT is disabled only when you wish to use the Twin WAN Gateway as a Static Router TCP Timeout Enter the desired value to use on both WAN ports T...

Страница 49: ...e Upgrade This feature permits you to use the supplied Windows program to remotely upgrade the Firmware When not enabled upgrades must be performed by a PC on the LAN Remote Web based Setup This featu...

Страница 50: ...WAN Gateway will respond to ICMP ping requests received from the WAN port When the Block Selected Packet Types is enabled the selected packet types are blocked DNS Loopback Some servers on a LAN and...

Страница 51: ...m Destination IP IP address of destination which packets are sent to Subnet Mask With subnet mask other than 255 255 255 255 you can make a IP sub network as your destination Protocol Select the proto...

Страница 52: ...on this screen will block all Web sites hosted on that IP address Block URL Settings Access Group This option allows you to have different restriction rules for different groups groups are defined in...

Страница 53: ...ter Console Access Filter Settings Setup Access Group Select an Access Group to fine tune access parameters for each defined group Different groups can have specific access rights to the network when...

Страница 54: ...k The current group will not be able to use any services that are checked User Defined Ports to Block This section of the Access Filter console is optional Use this to define your own custom filters F...

Страница 55: ...ions exceeds the maximum limit during the sampling time all new sessions created will be dropped by the gateway Default 65535 session sec Maximum of New Sessions for Host If the number of new sessions...

Страница 56: ...rewall exception Interface You can select LAN WAN1 WAN2 or ALL interfaces to be process by the system protocol stack Protocol There are six protocols UDP TCP ICMP GRE ESP AH to choose from This allows...

Страница 57: ...603 are VPN capable Dual WAN Gateways with industry standard IPsec encryption It provides extremely secure LAN to LAN connectivity over the Internet with the use of two concurrent VPN tunnels that wil...

Страница 58: ...ese settings you will need to match the settings of the remote endpoint All XiNCOM VPN gateways ship with the same default Global Parameters If you are connecting to another XiNCOM VPN endpoint using...

Страница 59: ...2 This is the Global configuration for all policies created It is recommended for novice users to use the default configuration If these settings do not match the remote side Phase 1 will not connect...

Страница 60: ...iod Retry Counter This field indicates how many times the process will be restarted if the process of Phase 1 is unsuccessful Once the retry counter is expired an error message will be displayed in th...

Страница 61: ...gs major Error This log level will display messages that result in a failed operation such as tunnel unable to establish or failed packet transmissions The most likely cause of these messages is impro...

Страница 62: ...VPN settings it is recommended that you set the log level to Information first to see the general area of where the tunnel is failing and then run the same test with Log Level set to Debug Copyright...

Страница 63: ...ailable in the Mesh Use the Policy Setup under the following conditions If you do not wish to utilize the VPN Aggregation or VPN Failover You will be connecting this device to different brand endpoint...

Страница 64: ...to bind this to either WAN 1 or WAN 2 because the destination gateway might reject the VPN tunnel PPPoE Session If you are using a multi session PPPoE connection you can select which session you want...

Страница 65: ...ndpoints together it is recommended that you make the whole subnets available to access the VPN tunnel This is accomplished by setting the Remote and the Local Type to Subnet When you specify the IP a...

Страница 66: ...on makes the data unreadable if intercepted There are three encryption methods available DES 3DES and AES The default is null Null fastest method but it offers no security DES faster than 3DES but les...

Страница 67: ...fied interface Manual Key by the nature of its design works with NAT it is more complex to set up since it requires for you to set outgoing and incoming SPI as well as Authentication and encryption Ke...

Страница 68: ...channel Aggressive Mode is another way of accomplishing a phase one exchange It is faster and simpler than main mode but does not provide identity protection for the negotiating nodes Perfect Forward...

Страница 69: ...field NOTE This button will work only if the Remote Security Gateway is a valid IP address and the VPN client gateway allows incoming VPN tunnels Flush Tunnel This button resets the state of the VPN...

Страница 70: ...igured for the tunnel as well as the status of the VPN tunnel Use this to aid you in the configuration of the tunnel options Figure 18 e Dead Peer Detection Console Dead Peer Detection Feature is a co...

Страница 71: ...es This is the amount of times the XiNCOM VPN Gateway will attempt to send the packet before the Check After Idle time is expired Action These options instruct the router on what action to take if a d...

Страница 72: ...ing of each packet ESP is a key protocol in the IPsec Internet Security architecture which is designed to provide a mix of security services in IPv4 and IPv6 Refer to the RFC 2406 documentation for mo...

Страница 73: ...fined policies provides real time applications to get better response or performance Figure 19 QoS Console Quality of Service Settings QoS Features Enable QoS This enables the QoS function Queuing Met...

Страница 74: ...process the IP Type of Service field Overwrite Policy Priority Choosing Yes will set the priority of the TOS field in IP packet to overwrite the priority defined in policy configuration Policy Configu...

Страница 75: ...stination Address Define the destination address of packets here The Twin WAN Gateway supports two destination address types IP address or MAC address Selecting IP address permits you to define IP add...

Страница 76: ...ator the ability to easily create and manage extra domain names This provides a web site with expanded bandwidth and redundancy via auto failover in case a single Internet connection fails Load Balanc...

Страница 77: ...broadband connection is required for the Authoritative DNS function It is necessary to register your WAN1 WAN2 IP addresses with your Domain Name Provider for a static DNS NOTE Once you have configur...

Страница 78: ...ad statistics Setup 2 A reply is sent to the web browser The Gateway directs the browser session to the WAN port with the least traffic Step 3 The web browser is then connected to the appointed IP add...

Страница 79: ...ied to the request This holds the Gateway s user preferences and setting values including load share and load balance type 6 The Load Balancing Algorithm determines that WAN 2 has the least amount of...

Страница 80: ...Server Configuration The XC DPG602 and 603 have 2 DNS servers built in one for each WAN port The device can support 1 SOA record 2 MX records and 10 A records per DNS server Before configuring any dom...

Страница 81: ...ganization or reseller Example www xyz com Primary Name Server This parameter sets the primary name server for your domain Example NS1 yourdomain com Admin Mail Box This field sets the administrator s...

Страница 82: ...n limit for the name server to stop serving its associated zone in the event of recurring failed refresh intervals Default value is 24 hours Minimum TTL The minimum time to live TTL This field sets th...

Страница 83: ...nce 1 2 This sets the route preference The lower number will have the higher priority Location This sets the location for either the public or private IP IP Address The user can set the IP address of...

Страница 84: ...e URL in this field that you wish to map Select DNS Server This option lets you select which DNS server you want the entry to associate with Private IP Address This field indicates the local IP addres...

Страница 85: ...s for any WAN port if your ISP supports the use of using multiple static IP addresses This field is blank by default for the selected domain name in this field Canonical Name 1 2 The official name of...

Страница 86: ...rd Re enter the password in the Verify Password field and then save it When you connect to the Twin WAN Gateway with your Browser you will be prompted for the password when you connect as shown below...

Страница 87: ...an warning email when WAN port was disconnected Email Alert Configuration Email Sender Address Input an email address that sends a warning email to a recipient The warning email will inform the recipi...

Страница 88: ...ministrator email address For example admin mail domain com Excessive Ping Notification This feature is useful to prevent ICMP attacks from WAN or LAN It will drop the packets if the ping times are ex...

Страница 89: ...sole SNMP Settings System Information Enable The name of the individual responsible for this device Device Name Enter a name for the Twin WAN Gateway Physical Location Indicate the location of the Twi...

Страница 90: ...eway to send system log messages to other PCs Keep Sent Messages By default sent syslog messages are deleted When Keep Sent Messages is enabled the Twin WAN Gateway will keep sent syslog messages Sysl...

Страница 91: ...per gateway configuration Warning This log level displays potential issues that may result in an Error or a Critical Error The most likely cause of messages tagged as Warning is improper configuration...

Страница 92: ...hose actions along with the proper procedure for upgrading your Twin WAN Gateway to the latest firmware release Updating the Firmware To update the firmware on your Twin WAN Gateway you must first dow...

Страница 93: ...FTP utility you can learn how to update using the HTTP utility in the Admin Control section To save your Twin WAN Gateway Configuration to a file 1 Open the TFTP utility by double clicking on the TFTP...

Страница 94: ...at you would like to save the file as Example config file bin 4 Click the Download button It could take up to 1 to 3 minutes to upload the firmware The Gateway will reboot thereafter Example of upload...

Страница 95: ...a previously saved configuration HTTP Upgrade Firmware The Upgrade Firmware Screen within the Twin WAN Gateway s setup console allows you to upgrade firmware or backup system configuration by using HT...

Страница 96: ...Renew Button This is only available when using a Dynamic IP address DHCP Clicking this will perform a Renew transaction with the ISP s DHCP server This will extend the period for which the current WA...

Страница 97: ...teway NAT This displays the status of the NAT feature either Enable or Disable Load Balance This displays the status of the Load Balance feature either Enable or Disable Virtual Server This displays t...

Страница 98: ...ercentage of CPU Memory Usage This displays the current usage percentage of Memory Heap Queue Console Buttons Refresh This button will update the data on screen Restart Restart reboot the Twin WAN Gat...

Страница 99: ...lays the current traffic loading between both WAN ports Current Loading This displays the number of Sessions Bytes and Packets currently being processed on each port Current Bandwidth The current Down...

Страница 100: ...T Timeouts This displays the current timeout values for TCP and UDP connections TCP Prosperity This displays the MSS Maximum Segment Size and Maximum Windows size for TCP packets NAT Traffic This sect...

Страница 101: ...owing actions will occur ALL of your settings will be erased The default IP address password and ALL other settings will be restored to the factory default values The DCHP server function will be enab...

Страница 102: ...Status 1 Power External Power Adapter 5 V 1 5A DC FCC Statement This device complies with Part 15 of the FCC Rules Operation is subject to the following two conditions 1 This device may not cause har...

Страница 103: ...ly provide a suitable IP Address and related information to each PC when the PC boots For all non Server versions of Windows the default TCP IP setting is to act as a DHCP client If you wish to check...

Страница 104: ...nd Dial up Connection 2 Right click the Local Area Connection icon and select Properties You should see a screen like the following Figure A Network Configuration Windows 2000 3 Select the TCP IP prot...

Страница 105: ...Twin WAN Gateway Using a fixed IP Address Specify an IP Address If your PC is already configured check with your network administrator before making the following changes Enter the IP address of the...

Страница 106: ...Network Connection 2 Right click the Local Area Connection and choose Properties You should see a screen like the following Figure C Network Configuration Windows XP 3 Select the TCP IP protocol for y...

Страница 107: ...ries User Guide v1 4 Click on the Properties button You should then see a screen like the following Figure D TCP IP Properties Windows XP Copyright 2005 WINS International LLC dba XiNCOM All rights re...

Страница 108: ...ess If your PC is already configured check with your network administrator before making the following changes Enter the IP address of the Twin WAN Gateway in the Default gateway field and click OK Yo...

Отзывы:

Нет отзывов

Похожие инструкции для Twin WAN XC-DPG502

Бренд: C&H Technologies Страницы: 46

Бренд: JB Systems Страницы: 24

Бренд: JB Systems Страницы: 61

Бренд: Ubiquiti Страницы: 23

Hotwire ATM Line Cards 8335

Бренд: Paradyne Страницы: 132

Бренд: NETGEAR Страницы: 142

Бренд: Talent Страницы: 18

Бренд: Wave Wireless Networking Страницы: 167

XC-16CH-NVR-4TB

Бренд: Xyclop Страницы: 19

Бренд: Patton electronics Страницы: 8

Бренд: LevelOne Страницы: 49

Бренд: Alcatel Страницы: 4

Бренд: Tripp Lite Страницы: 3

Бренд: ENKHO Страницы: 48

Бренд: LevelOne Страницы: 61

LS-5100-16P-SI-OVS-H3

Бренд: H3C Страницы: 313

Бренд: Hamlet Страницы: 6

Бренд: Niveo Professional Страницы: 49

Бренды по названию

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Популярные бренды

Загрузить еще бренды