Product Manual
Page 3
... 29 Configure Intrusion Prevention 29 Port mapping / Virtual Servers 30 Add a new mapping 30 Delete mapping 31 Administrative users 32 Change Administrative User Password 32 Users 33 The DFL-200 RADIUS Support 33 Enable User Authentication via HTTP / HTTPS 34 Enable RADIUS Support 34 Add User ...35 Change User... Password 35 Delete User 36 Schedules 37 Add new recurring schedule 37 Add new one-time schedule 38 Services 39 Adding TCP, UDP or...
... 29 Configure Intrusion Prevention 29 Port mapping / Virtual Servers 30 Add a new mapping 30 Delete mapping 31 Administrative users 32 Change Administrative User Password 32 Users 33 The DFL-200 RADIUS Support 33 Enable User Authentication via HTTP / HTTPS 34 Enable RADIUS Support 34 Add User ...35 Change User... Password 35 Delete User 36 Schedules 37 Add new recurring schedule 37 Add new one-time schedule 38 Services 39 Adding TCP, UDP or...
Product Manual
Page 16
... you to fill in the username and password provided to fill in a Service Name. • Primary and Secondary DNS Server - The IP addresses of the external interface. This configuration is required if your DNS servers; Using PPPoE Use the following procedure to configure the DFL-200 external interface to use PPPoE (Point-to...
... you to fill in the username and password provided to fill in a Service Name. • Primary and Secondary DNS Server - The IP addresses of the external interface. This configuration is required if your DNS servers; Using PPPoE Use the following procedure to configure the DFL-200 external interface to use PPPoE (Point-to...
Product Manual
Page 17
... your ISP. • Password - Your ISP should supply this information. The IP address of the external network. • Gateway IP - This IP is used to the PPTP server. • Subnet Mask - Size of the WAN interface. Specifies the IP address of the actual physical interface that the DFL-200 will connect to. The...
... your ISP. • Password - Your ISP should supply this information. The IP address of the external network. • Gateway IP - This IP is used to the PPTP server. • Subnet Mask - Size of the WAN interface. Specifies the IP address of the actual physical interface that the DFL-200 will connect to. The...
Product Manual
Page 18
...details, and possibly also IP configuration parameters of the actual physical interface that the DFL-200 will connect to you by your ISP. • L2TP Server IP - If using static IP, this information. • Username - The password supplied to . You can be used to connect to access the Internet. ...Specifies the IP address of ISP used to your ISP if you by your ISP. • Password - Contact your ISP, the physical (WAN) interface parameters must be filled in some DSL and cable modem networks. Using L2TP L2TP over ...
...details, and possibly also IP configuration parameters of the actual physical interface that the DFL-200 will connect to you by your ISP. • L2TP Server IP - If using static IP, this information. • Username - The password supplied to . You can be used to connect to access the Internet. ...Specifies the IP address of ISP used to your ISP if you by your ISP. • Password - Contact your ISP, the physical (WAN) interface parameters must be filled in some DSL and cable modem networks. Using L2TP L2TP over ...
Product Manual
Page 19
... be the same as the smallest MTU of 1500. The password supplied to obtain an IP address for authentication; Most Ethernet networks have small MTU sizes. DSL modems may want this value. If the packets the DFL-200 sends are some guidelines that the DFL-200 transmits from its external interface. WAN Interface Settings - MTU...
... be the same as the smallest MTU of 1500. The password supplied to obtain an IP address for authentication; Most Ethernet networks have small MTU sizes. DSL modems may want this value. If the packets the DFL-200 sends are some guidelines that the DFL-200 transmits from its external interface. WAN Interface Settings - MTU...
Product Manual
Page 32
... on the user name and you will display all the users. Step 3. Enter the new password twice. Change Administrative User Password To change the password of a user click on the Administrator link to change Administrative User password. Enable the Change password checkbox. Special characters and spaces are not allowed. 32 Follow these steps to the administrative...
... on the user name and you will display all the users. Step 3. Enter the new password twice. Change Administrative User Password To change the password of a user click on the Administrator link to change Administrative User password. Enable the Change password checkbox. Special characters and spaces are not allowed. 32 Follow these steps to the administrative...
Product Manual
Page 33
...between the firewall and the RADIUS server, given time, the user password can either by itself or as the less secure of this is case sensitive, can use RADIUS to two servers, if the first one is successful, the DFL-200 will remember the source IP address of the two. CHAP (...Challenge Handshake Authentication Protocol) does not allow a remote attacker to extract the user password from the firewall...
...between the firewall and the RADIUS server, given time, the user password can either by itself or as the less secure of this is case sensitive, can use RADIUS to two servers, if the first one is successful, the DFL-200 will remember the source IP address of the two. CHAP (...Challenge Handshake Authentication Protocol) does not allow a remote attacker to extract the user password from the firewall...
Product Manual
Page 35
... to apply the settings or click Cancel to discard changes. Step 2. The user name and password can contain numbers (0-9) and upper and lower case letters (A-Z, a-z). Enable the Change password checkbox. The password can contain numbers (0-9) and upper and lower case letters (A-Z, az). Specify which you would ...screen. Special characters and spaces are not allowed. Note: The user name and password should be a member of user you are not trying to add, Admin or Read-only. Note: The password should be at least six characters long. Add User Follow these steps to ...
... to apply the settings or click Cancel to discard changes. Step 2. The user name and password can contain numbers (0-9) and upper and lower case letters (A-Z, a-z). Enable the Change password checkbox. The password can contain numbers (0-9) and upper and lower case letters (A-Z, az). Specify which you would ...screen. Special characters and spaces are not allowed. Note: The user name and password should be a member of user you are not trying to add, Admin or Read-only. Note: The password should be at least six characters long. Add User Follow these steps to ...
Product Manual
Page 44
...of the session key to be used to create the one -way encryption scheme to hash the response to a challenge issued by the DFL-200. PAP is more secure then MS-CHAP v1 as it provides two-way authentication. This does however mean that with MS-CHAP v1. MS-CHAPv2 is used... Protocol) is never sent over the tunnel plaintext. CHAP is superior to MD5 used is that both user name and password are sent over the link. Another difference is used for the encryption can be stored as opposed to PAP in CHAP. Authentication Protocols PPP supports different authentication protocols, PAP, ...
...of the session key to be used to create the one -way encryption scheme to hash the response to a challenge issued by the DFL-200. PAP is more secure then MS-CHAP v1 as it provides two-way authentication. This does however mean that with MS-CHAP v1. MS-CHAPv2 is used... Protocol) is never sent over the tunnel plaintext. CHAP is superior to MD5 used is that both user name and password are sent over the link. Another difference is used for the encryption can be stored as opposed to PAP in CHAP. Authentication Protocols PPP supports different authentication protocols, PAP, ...
Product Manual
Page 45
...this PPTP/L2TP Client tunnel. If enabled the tunnel will be initiated when needed. Password/Confirm Password - Refer to use IPSec enable the checkbox and select PSK or Certificate. Require IPSec encryption - The password to be using IPSec instead of None means that data will only be sent ...over the PPP link unencrypted. A selection of MPPE for this PPTP/L2TP Client tunnel. To use (if any)....
...this PPTP/L2TP Client tunnel. If enabled the tunnel will be initiated when needed. Password/Confirm Password - Refer to use IPSec enable the checkbox and select PSK or Certificate. Require IPSec encryption - The password to be using IPSec instead of None means that data will only be sent ...over the PPP link unencrypted. A selection of MPPE for this PPTP/L2TP Client tunnel. To use (if any)....
Product Manual
Page 49
... L2TP client in the L2TP/PPTP Clients section. Click the Apply button below to apply the change or click Cancel to . Enter the username and password for the new tunnel in the name field. Step 5. If you are allowed. Go to Firewall and VPN and choose Add new PPTP server or...
... L2TP client in the L2TP/PPTP Clients section. Click the Apply button below to apply the change or click Cancel to . Enter the username and password for the new tunnel in the name field. Step 5. If you are allowed. Go to Firewall and VPN and choose Add new PPTP server or...
Product Manual
Page 60
... by ISP. Dynamic DNS The Dynamic DNS (requires Dynamic DNS Service) allows you would like to use , and fill in the required information, username and password in all cases and domains in all but cjb.net. When this function.
... by ISP. Dynamic DNS The Dynamic DNS (requires Dynamic DNS Service) allows you would like to use , and fill in the required information, username and password in all cases and domains in all but cjb.net. When this function.
Product Manual
Page 72
... the left of the screen, followed by Step Guides The following guides make use of a brute force dictionary attack success. Strong passwords and keys should be chosen making use . Passwords used in these guides for real life use of symbols, letters, and numbers to decrease the likelihood of example IP Addresses, users...
... the left of the screen, followed by Step Guides The following guides make use of a brute force dictionary attack success. Strong passwords and keys should be chosen making use . Passwords used in these guides for real life use of symbols, letters, and numbers to decrease the likelihood of example IP Addresses, users...
Product Manual
Page 78
Username: BranchOffice Password: 1234567890 (Note! You should use a password that is hard to guess) Retype password: 1234567890 Interface IP: leave blank Remote gateway: 194.0.2.20 Remote net: 192.168.1.0/24 Dial on demand: leave unchecked Under authentication MSCHAPv2 should be the only checked option. 78
Username: BranchOffice Password: 1234567890 (Note! You should use a password that is hard to guess) Retype password: 1234567890 Interface IP: leave blank Remote gateway: 194.0.2.20 Remote net: 192.168.1.0/24 Dial on demand: leave unchecked Under authentication MSCHAPv2 should be the only checked option. 78
Product Manual
Page 82
... read the A more secure LAN-to 192.168.4.0/24 Click Apply 6. Add a new user, Firewall->Users: Under Users in local database click Add new Name the new user BranchOffice Enter password: 1234567890 Retype password: 1234567890 Leave static client IP empty (could also be set here the IP pool ...from the PPTP server settings are used). Set Networks behind user to -LAN VPN solution section. 82 4. Click Activate and wait for the firewall to 192.168.1.200. This...
... read the A more secure LAN-to 192.168.4.0/24 Click Apply 6. Add a new user, Firewall->Users: Under Users in local database click Add new Name the new user BranchOffice Enter password: 1234567890 Retype password: 1234567890 Leave static client IP empty (could also be set here the IP pool ...from the PPTP server settings are used). Set Networks behind user to -LAN VPN solution section. 82 4. Click Activate and wait for the firewall to 192.168.1.200. This...
Product Manual
Page 84
You should use a password that is hard to guess) Retype password: 1234567890 Interface IP: leave blank Remote gateway: 194.0.2.20 Remote net: 192.168.1.0/24 Dial on demand: leave unchecked Under authentication only MSCHAPv2 should be checked 84 Username: BranchOffice Password: 1234567890 (Note!
You should use a password that is hard to guess) Retype password: 1234567890 Interface IP: leave blank Remote gateway: 194.0.2.20 Remote net: 192.168.1.0/24 Dial on demand: leave unchecked Under authentication only MSCHAPv2 should be checked 84 Username: BranchOffice Password: 1234567890 (Note!
Product Manual
Page 89
... Add new Name the new user BranchOffice Enter password: 1234567890 Retype password: 1234567890 Leave static client IP empty (could also be set here the IP pool from the L2TP server settings are used). To get a more secure solution read the A more secure LAN-to restart. Set Networks behind user to... eg 192.168.1.200. Add a new user, Firewall->Users: Under ...
... Add new Name the new user BranchOffice Enter password: 1234567890 Retype password: 1234567890 Leave static client IP empty (could also be set here the IP pool from the L2TP server settings are used). To get a more secure solution read the A more secure LAN-to restart. Set Networks behind user to... eg 192.168.1.200. Add a new user, Firewall->Users: Under ...
Product Manual
Page 100
You should use a password that is hard to guess) 12. Type user name HomeUser and password 1234567890 (Note! 11. Click Properties 100
You should use a password that is hard to guess) 12. Type user name HomeUser and password 1234567890 (Note! 11. Click Properties 100
Product Manual
Page 102
... Use IPSec encryption unchecked Click Apply 3. If no IP is set to restart. 102 Setup policies for the firewall to eg 192.168.1.200. Click Activate and wait for the new tunnel, Firewall->Policy: Click Global policy parameters Enable Allow all VPN traffic: internal->VPN, VPN->internal...VPN Click Apply 4. Add a new user, Firewall->Users: Under Users in local database click Add new Name the new user HomeUser Enter password: 1234567890 Retype password: 1234567890 Leave static client IP empty (could also be the only checked option. 2. Under MPPE encryption 128 bit should be set here...
... Use IPSec encryption unchecked Click Apply 3. If no IP is set to restart. 102 Setup policies for the firewall to eg 192.168.1.200. Click Activate and wait for the new tunnel, Firewall->Policy: Click Global policy parameters Enable Allow all VPN traffic: internal->VPN, VPN->internal...VPN Click Apply 4. Add a new user, Firewall->Users: Under Users in local database click Add new Name the new user HomeUser Enter password: 1234567890 Retype password: 1234567890 Leave static client IP empty (could also be the only checked option. 2. Under MPPE encryption 128 bit should be set here...
Product Manual
Page 107
... the Settings for the firewall to restart. To get a more secure LAN-toLAN VPN solution section. Add a new user, Firewall->Users: Under Users in local database click Add new Name the new user HomeUser Enter password: 1234567890 Retype password: 1234567890 Leave static client IP empty (could also be set here... the IP pool from the client to eg 192.168.1.200. If no IP is set to the main office network. This example...
... the Settings for the firewall to restart. To get a more secure LAN-toLAN VPN solution section. Add a new user, Firewall->Users: Under Users in local database click Add new Name the new user HomeUser Enter password: 1234567890 Retype password: 1234567890 Leave static client IP empty (could also be set here... the IP pool from the client to eg 192.168.1.200. If no IP is set to the main office network. This example...