User Guide
Page 3
Table of Contents 4-Port SSL/IPSec VPN Router Chapter 1: Introduction 1 Introduction to the Router 1 Introduction to Virtual Private Networks (VPNs 1 VPN Router to VPN Router 1 Computer (using SSL VPN client software) to VPN Router 2 Chapter 2: Product Overview 3 Front Panel 3 Back Panel 3 Chapter 3: Installation 4 ... Utility 7 System Summary 8 System Information 8 Port Statistics 9 Network Setting Status 9 Firewall Setting Status 9 IPSec VPN Setting Status 9 SSL VPN Setting Status 9 Log Setting Status 9 Setup Tab > Network 10 Network 10 Setup > Password 12 Password ...
Table of Contents 4-Port SSL/IPSec VPN Router Chapter 1: Introduction 1 Introduction to the Router 1 Introduction to Virtual Private Networks (VPNs 1 VPN Router to VPN Router 1 Computer (using SSL VPN client software) to VPN Router 2 Chapter 2: Product Overview 3 Front Panel 3 Back Panel 3 Chapter 3: Installation 4 ... Utility 7 System Summary 8 System Information 8 Port Statistics 9 Network Setting Status 9 Firewall Setting Status 9 IPSec VPN Setting Status 9 SSL VPN Setting Status 9 Log Setting Status 9 Setup Tab > Network 10 Network 10 Setup > Password 12 Password ...
User Guide
Page 6
... the Virtual Passage Client (Mac OS X 60 Removal of the Virtual Passage Client (Mac OS X 61 Before You Begin (Linux OS 62 Login for the SSL VPN Portal (Linux OS 62 Installation of the Virtual Passage Client (Linux OS 62 Removal of the Virtual Passage Client (Linux OS 63 Appendix C: Bandwidth Management... 70 Appendix E: User for the Active Directory Server 71 Appendix F: Internet Authentication Service (IAS) Server 73 Appendix G: Lightweight Directory Access Protocol (LDAP) Server 79 4-Port SSL/IPSec VPN Router
... the Virtual Passage Client (Mac OS X 60 Removal of the Virtual Passage Client (Mac OS X 61 Before You Begin (Linux OS 62 Login for the SSL VPN Portal (Linux OS 62 Installation of the Virtual Passage Client (Linux OS 62 Removal of the Virtual Passage Client (Linux OS 63 Appendix C: Bandwidth Management... 70 Appendix E: User for the Active Directory Server 71 Appendix F: Internet Authentication Service (IAS) Server 73 Appendix G: Lightweight Directory Access Protocol (LDAP) Server 79 4-Port SSL/IPSec VPN Router
User Guide
Page 8
Table of Contents Appendix M: Multiple VLANs and Subnets 96 Overview 96 RVL200 Configuration 96 Basic Instructions 96 Inter-VLAN Routing Option 97 Appendix N: Access of Multiple VLANs over a SSL VPN Tunnel 98 Overview 98 SSL VPN Connection 98 Static Route 98 Windows Operating System (OS 98 Mac OS X 98 Linux OS 98 Appendix O: Firmware Upgrade 99... User Information for Consumer Products Covered by EU Directive 2002/96/EC on Waste Electric and Electronic Equipment (WEEE 106 Appendix T: Contact Information 110 4-Port SSL/IPSec VPN Router vii
Table of Contents Appendix M: Multiple VLANs and Subnets 96 Overview 96 RVL200 Configuration 96 Basic Instructions 96 Inter-VLAN Routing Option 97 Appendix N: Access of Multiple VLANs over a SSL VPN Tunnel 98 Overview 98 SSL VPN Connection 98 Static Route 98 Windows Operating System (OS 98 Mac OS X 98 Linux OS 98 Appendix O: Firmware Upgrade 99... User Information for Consumer Products Covered by EU Directive 2002/96/EC on Waste Electric and Electronic Equipment (WEEE 106 Appendix T: Contact Information 110 4-Port SSL/IPSec VPN Router vii
User Guide
Page 9
... way to create a VPN tunnel using SSL VPN client software) to the Router Thank you can be transmitted over a shared or public network, such as you set up the Router and its access rules. Like any computer with his always-on the road. The five Secure Sockets Layer (SSL) Virtual Private Network (VPN) tunnels gives your small business needs.
... way to create a VPN tunnel using SSL VPN client software) to the Router Thank you can be transmitted over a shared or public network, such as you set up the Router and its access rules. Like any computer with his always-on the road. The five Secure Sockets Layer (SSL) Virtual Private Network (VPN) tunnels gives your small business needs.
User Guide
Page 10
... her Internet Service Provider (ISP). In her hotel room, a traveling businesswoman connects to VPN Router 4-Port SSL/IPSec VPN Router Her notebook computer has VPN client software that is configured with VPN Client Software Computer to her office's VPN settings. VPN Router Central Office VPN Router VPN Router to VPN Router Computer (using SSL VPN client software) to the central office's network, as if she were physically connected. Chapter...
... her Internet Service Provider (ISP). In her hotel room, a traveling businesswoman connects to VPN Router 4-Port SSL/IPSec VPN Router Her notebook computer has VPN client software that is configured with VPN Client Software Computer to her office's VPN settings. VPN Router Central Office VPN Router VPN Router to VPN Router Computer (using SSL VPN client software) to the central office's network, as if she were physically connected. Chapter...
User Guide
Page 14
... via script, and Scripting of the utility: System Summary, Setup, DHCP, System Management, Port Management, QoS, Firewall, IPSec VPN, SSL VPN, SNMP, Log, Wizard, Support, and Logout. Click Internet Options. 4. Before You Begin The Router's web-based utility and SSL VPN Portal support Internet Explorer 6.0 (or higher) and Netscape Communicator 8.0 (or higher) running in this utility. Internet...
... via script, and Scripting of the utility: System Summary, Setup, DHCP, System Management, Port Management, QoS, Firewall, IPSec VPN, SSL VPN, SNMP, Log, Wizard, Support, and Logout. Click Internet Options. 4. Before You Begin The Router's web-based utility and SSL VPN Portal support Internet Explorer 6.0 (or higher) and Netscape Communicator 8.0 (or higher) running in this utility. Internet...
User Guide
Page 17
.../Off ) of the DoS setting and hyperlinks to the Summary screen of the SSL VPN tab. SSL VPN Setting Status SSL VPN Summary It hyperlinks to the General screen of the Firewall tab. Click Release to release the IP address, and 4-Port SSL/IPSec VPN Router click Renew to the WAN Connection Type settings on the Advanced Routing screen of...
.../Off ) of the DoS setting and hyperlinks to the Summary screen of the SSL VPN tab. SSL VPN Setting Status SSL VPN Summary It hyperlinks to the General screen of the Firewall tab. Click Release to release the IP address, and 4-Port SSL/IPSec VPN Router click Renew to the WAN Connection Type settings on the Advanced Routing screen of...
User Guide
Page 38
... or click Cancel Changes to which the DSCP priority is enabled by default. Block WAN Request This option is disabled by default. 4-Port SSL/IPSec VPN Router 30 If you disable it, then the SPI, DoS, and Block WAN Request features, Access Rules, and Content Filters will also be enabled...the priority bits in the Type of firewall, security, and web features. Remote Management/SSL VPN This option is enabled by default. Hackers will be disabled, and the Remote Management feature will not find the Router by default. If priority bits are 1 for DSCP values 0-15, 2 for DSCP...
... or click Cancel Changes to which the DSCP priority is enabled by default. Block WAN Request This option is disabled by default. 4-Port SSL/IPSec VPN Router 30 If you disable it, then the SPI, DoS, and Block WAN Request features, Access Rules, and Content Filters will also be enabled...the priority bits in the Type of firewall, security, and web features. Remote Management/SSL VPN This option is enabled by default. Hackers will be disabled, and the Remote Management feature will not find the Router by default. If priority bits are 1 for DSCP values 0-15, 2 for DSCP...
User Guide
Page 39
...data transmission is sent to multiple recipients at a data transmission's source IP address, destination IP address, and IP protocol 4-Port SSL/IPSec VPN Router type, and you want to the Internet, so use . • Java Java is displayed. It enables use of custom .... Service The Service is displayed. Action The Action, Allow or Deny, is displayed. Chapter 4 Advanced Configuration NOTE: SSL VPN has higher priority than Port Forwarding when HTTPS is displayed. MulticastPassThrough Thisoptionisdisabledbydefault. The Access Rules table lists the following default rules...
...data transmission is sent to multiple recipients at a data transmission's source IP address, destination IP address, and IP protocol 4-Port SSL/IPSec VPN Router type, and you want to the Internet, so use . • Java Java is displayed. It enables use of custom .... Service The Service is displayed. Action The Action, Allow or Deny, is displayed. Chapter 4 Advanced Configuration NOTE: SSL VPN has higher priority than Port Forwarding when HTTPS is displayed. MulticastPassThrough Thisoptionisdisabledbydefault. The Access Rules table lists the following default rules...
User Guide
Page 48
... is the IP address of packets at the IP layer. Specify the interval between the Router and VPN clients. 4-Port SSL/IPSec VPN Router SSL VPN > Certificate Management 40 DPD is 10 seconds. Logout Any administrative user can be sent). IPSec VPN > VPN Pass Through The VPN Pass Through screen allows you want the messages to implement secure exchange of the user...
... is the IP address of packets at the IP layer. Specify the interval between the Router and VPN clients. 4-Port SSL/IPSec VPN Router SSL VPN > Certificate Management 40 DPD is 10 seconds. Logout Any administrative user can be sent). IPSec VPN > VPN Pass Through The VPN Pass Through screen allows you want the messages to implement secure exchange of the user...
User Guide
Page 49
... select the location where you want to store your certificate (X.509 certificate in a safe place as a file. Active Directory SSL VPN > User Management User Management Edit Group Authentication Type Select the type you have selected the file, click Import. Active Directory ...SSL/IPSec VPN Router Active Directory Server Address Enter the IP address or domain name of the server. (The Router does support Linux Samba Server Authentication.) NT Domain Name Enter the NT authentication domain. Export Certificate for the type you want to use : Local User Database, RADIUS - SSL VPN ...
... select the location where you want to store your certificate (X.509 certificate in a safe place as a file. Active Directory SSL VPN > User Management User Management Edit Group Authentication Type Select the type you have selected the file, click Import. Active Directory ...SSL/IPSec VPN Router Active Directory Server Address Enter the IP address or domain name of the server. (The Router does support Linux Samba Server Authentication.) NT Domain Name Enter the NT authentication domain. Export Certificate for the type you want to use : Local User Database, RADIUS - SSL VPN ...
User Guide
Page 50
...the following : 1. Add a User to the "Edit User" section. Proceed to change the user's settings on the local network. 4-Port SSL/IPSec VPN Router 42 Confirm Password For users with Local User Database authentication, re-enter the user's password. Inactivity Timeout Enter the number of user, User ... A list of the server. The time settings between the Windows server and client (the Router). 2. User types can only access the SSL VPN Portal, and Administrator types can access the Router's web-based utility. LDAP LDAP Server Address Enter the IP address or domain name of users...
...the following : 1. Add a User to the "Edit User" section. Proceed to change the user's settings on the local network. 4-Port SSL/IPSec VPN Router 42 Confirm Password For users with Local User Database authentication, re-enter the user's password. Inactivity Timeout Enter the number of user, User ... A list of the server. The time settings between the Windows server and client (the Router). 2. User types can only access the SSL VPN Portal, and Administrator types can access the Router's web-based utility. LDAP LDAP Server Address Enter the IP address or domain name of users...
User Guide
Page 51
...SNMPv3 Local Engine ID If you want the Router to generate engine IDs based on how to install and use the Virtual Passage Client, refer to "Appendix B: Virtual Passage SSL VPN Client.") SSL VPN Portal 4-Port SSL/IPSec VPN Router SNMP > Global Parameters Global Parameters Enable SNMP ...To use the show SNMP command via a command line interface.) Fifth Octet Set to 4 to establish an SSL VPN tunnel by Virtual Passage. (For instructions ...
...SNMPv3 Local Engine ID If you want the Router to generate engine IDs based on how to install and use the Virtual Passage Client, refer to "Appendix B: Virtual Passage SSL VPN Client.") SSL VPN Portal 4-Port SSL/IPSec VPN Router SNMP > Global Parameters Global Parameters Enable SNMP ...To use the show SNMP command via a command line interface.) Fifth Octet Set to 4 to establish an SSL VPN tunnel by Virtual Passage. (For instructions ...
User Guide
Page 56
IP Spoofing Select this option is enabled by default. Log events from Deny rules on the Firewall > Access Rule screen. The IPSec Log shows information about SSL VPN tunnel activity. You can sort each log event is displayed. To update a log, click Refresh. Incoming Log Table To update the on -...of log event is displayed. To clear a log, click Clear. Ping of Death Select this option if you wish to view. 4-Port SSL/IPSec VPN Router Time The time of Death events to include log events from Allow rules will be logged whether or not the option, log packets match this...
IP Spoofing Select this option is enabled by default. Log events from Deny rules on the Firewall > Access Rule screen. The IPSec Log shows information about SSL VPN tunnel activity. You can sort each log event is displayed. To update a log, click Refresh. Incoming Log Table To update the on -...of log event is displayed. To clear a log, click Clear. Ping of Death Select this option if you wish to view. 4-Port SSL/IPSec VPN Router Time The time of Death events to include log events from Allow rules will be logged whether or not the option, log packets match this...
User Guide
Page 64
... to the instructions for Windows users. Select Enable for Windows, Mac, and Linux Operating System (OS) users. Click Advanced. 4-Port SSL/IPSec VPN Router 56 Click Tools. 3. Internet Explorer > Internet Options > Advanced 6. To configure the SSL VPN software, your web browser. Internet Explorer 6.0 or Higher 1. This client, called the Virtual Passage Client, lets you should enable...
... to the instructions for Windows users. Select Enable for Windows, Mac, and Linux Operating System (OS) users. Click Advanced. 4-Port SSL/IPSec VPN Router 56 Click Tools. 3. Internet Explorer > Internet Options > Advanced 6. To configure the SSL VPN software, your web browser. Internet Explorer 6.0 or Higher 1. This client, called the Virtual Passage Client, lets you should enable...
User Guide
Page 65
... address, and press Ctrl + C to copy it to paste in the SSL VPN Portal web address. 10. Click Tools. 3. Click OK. 12. Under Options, click Advanced. 13. Click OK. 12. Click Trusted sites. 8. Click Add. 11. Click Security. 4-Port SSL/IPSec VPN Router Netscape Communicator > Options > Advanced > Security 15. In the Add this Web site to...
... address, and press Ctrl + C to copy it to paste in the SSL VPN Portal web address. 10. Click Tools. 3. Click OK. 12. Under Options, click Advanced. 13. Click OK. 12. Click Trusted sites. 8. Click Add. 11. Click Security. 4-Port SSL/IPSec VPN Router Netscape Communicator > Options > Advanced > Security 15. In the Add this Web site to...
User Guide
Page 66
... the web browser window. (The ActiveX web cache control will be asked to install the Web Cache Cleaner application. If your computer. Appendix B Virtual Passage SSL VPN Client Login for the SSL VPN Portal (Windows OS) Follow these instructions: Click the Unlock Icon 2. Click to Install the Web Cache Cleaner 4-Port SSL/IPSec VPN Router 58
... the web browser window. (The ActiveX web cache control will be asked to install the Web Cache Cleaner application. If your computer. Appendix B Virtual Passage SSL VPN Client Login for the SSL VPN Portal (Windows OS) Follow these instructions: Click the Unlock Icon 2. Click to Install the Web Cache Cleaner 4-Port SSL/IPSec VPN Router 58
User Guide
Page 67
... Cleaner will be notified that you to delete all temporary Internet files, cookies, and browser history during logout.) Click Yes. 4-Port SSL/IPSec VPN Router Click Yes to install XTunnel, the Virtual Passage application. Appendix B 3. Virtual Passage SSL VPN Client After the software is installed, you will prompt you want to exit this screen. Installation Complete...
... Cleaner will be notified that you to delete all temporary Internet files, cookies, and browser history during logout.) Click Yes. 4-Port SSL/IPSec VPN Router Click Yes to install XTunnel, the Virtual Passage application. Appendix B 3. Virtual Passage SSL VPN Client After the software is installed, you will prompt you want to exit this screen. Installation Complete...
User Guide
Page 68
... (remove the check mark from) User Account Control (UAC) to log in the Password field. Appendix B Virtual Passage SSL VPN Client Windows Vista Usage If you use Virtual Passage only. Click Login. Vista Error Message To install Virtual Passage, follow these...SSL VPN connection again. A login screen appears. Enter your user name in your computer. Installation of the Router, https://, in the User Name field, and enter your computer. Then follow these instructions to help protect your computer. 6. Click the Unlock icon. Click the Unlock Icon 4-Port SSL/IPSec VPN Router...
... (remove the check mark from) User Account Control (UAC) to log in the Password field. Appendix B Virtual Passage SSL VPN Client Windows Vista Usage If you use Virtual Passage only. Click Login. Vista Error Message To install Virtual Passage, follow these...SSL VPN connection again. A login screen appears. Enter your user name in your computer. Installation of the Router, https://, in the User Name field, and enter your computer. Then follow these instructions to help protect your computer. 6. Click the Unlock icon. Click the Unlock Icon 4-Port SSL/IPSec VPN Router...
User Guide
Page 69
... X. A screen may appear indicating that the certificate cannot be notified that the certificate is valid. On the Warning screen, click Run. SSL VPN Tunnel Established To end the SSL VPN connection, click Disconnect. 4-Port SSL/IPSec VPN Router Click OK 61 Removal of the Virtual Passage Client (Mac OS X) To remove the Virtual Passage Client, follow these instructions...
... X. A screen may appear indicating that the certificate cannot be notified that the certificate is valid. On the Warning screen, click Run. SSL VPN Tunnel Established To end the SSL VPN connection, click Disconnect. 4-Port SSL/IPSec VPN Router Click OK 61 Removal of the Virtual Passage Client (Mac OS X) To remove the Virtual Passage Client, follow these instructions...