Product Manual
Page 5
...4.3.1 4.4 4.5 4.6 Primary benefits of Virtual APs 61 Tuning Radio Specific Settings 62 Advanced Wireless Settings 63 Wi-Fi Protected Setup (WPS 63 Chapter 5. Securing the Private Network 65 5.1 Firewall Rules ...65 5.2 Defining Rule Schedules 66 5.3 Configuring Firewall... Rules 67 5.3.1 Firewall Rule Configuration Examples 72 5.4 Security on Custom Services 76 5.5 ALG support...77 5.6 VPN Passthrough for Firewall 78 5.7 Application Rules ...79 5.8 5.8.1 5.8.2 5.8.3 5.8.4 Web Content Filtering 80 Content Filtering...80 Approved URLs ......
...4.3.1 4.4 4.5 4.6 Primary benefits of Virtual APs 61 Tuning Radio Specific Settings 62 Advanced Wireless Settings 63 Wi-Fi Protected Setup (WPS 63 Chapter 5. Securing the Private Network 65 5.1 Firewall Rules ...65 5.2 Defining Rule Schedules 66 5.3 Configuring Firewall... Rules 67 5.3.1 Firewall Rule Configuration Examples 72 5.4 Security on Custom Services 76 5.5 ALG support...77 5.6 VPN Passthrough for Firewall 78 5.7 Application Rules ...79 5.8 5.8.1 5.8.2 5.8.3 5.8.4 Web Content Filtering 80 Content Filtering...80 Approved URLs ......
Product Manual
Page 6
... PC to E-mail or Syslog 135 Event Log Viewer in GUI 137 9.5 Backing up and Restoring Configuration Settings 138 9.6 Upgrading Router Firmware 139 9.7 Dynamic DNS Setup 140 9.8 9.8.1 9.8.2 9.8.3 9.8.4 Using Diagnostic Tools 141 Ping ...142 Trace Route ...142 DNS Lookup ...143 Router Options ...143 Chapter 10. Unified Services Router User Manual 8.3 Authentication Certificates...149 10.2.2 Wireless Statistics 150 10.3 Active Connections 151 10.3.1 Sessions through the Router 151 10.3.2 Wireless Clients...153 10.3.3 LAN Clients ...153 10.3.4 Active VPN Tunnels 154 Chapter 11.
... PC to E-mail or Syslog 135 Event Log Viewer in GUI 137 9.5 Backing up and Restoring Configuration Settings 138 9.6 Upgrading Router Firmware 139 9.7 Dynamic DNS Setup 140 9.8 9.8.1 9.8.2 9.8.3 9.8.4 Using Diagnostic Tools 141 Ping ...142 Trace Route ...142 DNS Lookup ...143 Router Options ...143 Chapter 10. Unified Services Router User Manual 8.3 Authentication Certificates...149 10.2.2 Wireless Statistics 150 10.3 Active Connections 151 10.3.1 Sessions through the Router 151 10.3.2 Wireless Clients...153 10.3.3 LAN Clients ...153 10.3.4 Active VPN Tunnels 154 Chapter 11.
Product Manual
Page 10
... Figure 72: User configuration options...110 Figure 73: List of SSL VPN polices (Global filter 111 Figure 74: SSL VPN policy configuration 112 Figure 75: List of configured resources, which are available to assign to the DSR 102 Figure 65: List of groups ...103 Figure 66: User group...and NTP server setup 131 Figure 91: Facility settings for Logging 133 Figure 92: Log configuration options for traffic through router 135 Figure 93: E-mail configuration as a Remote Logging option 136 Figure 94: Syslog server configuration for SSL Port Forwarding 116 Figure 77: SSL VPN client adapter and ...
... Figure 72: User configuration options...110 Figure 73: List of SSL VPN polices (Global filter 111 Figure 74: SSL VPN policy configuration 112 Figure 75: List of configured resources, which are available to assign to the DSR 102 Figure 65: List of groups ...103 Figure 66: User group...and NTP server setup 131 Figure 91: Facility settings for Logging 133 Figure 92: Log configuration options for traffic through router 135 Figure 93: E-mail configuration as a Remote Logging option 136 Figure 94: Syslog server configuration for SSL Port Forwarding 116 Figure 77: SSL VPN client adapter and ...
Product Manual
Page 13
... The DSR-250/250N, DSR-500/500N and DSR-1000/1000N support 25, 35 and 75 simultaneous IPSec VPN tunnels respectively. Efficient D-Link Green Technology As a concerned member of the global community, D-Link is represented in this User Manual This document is a high level manual to allow new D-Link Unified Services Router users to configure connectivity, setup VPN tunnels...
... The DSR-250/250N, DSR-500/500N and DSR-1000/1000N support 25, 35 and 75 simultaneous IPSec VPN tunnels respectively. Efficient D-Link Green Technology As a concerned member of the global community, D-Link is represented in this User Manual This document is a high level manual to allow new D-Link Unified Services Router users to configure connectivity, setup VPN tunnels...
Product Manual
Page 31
...of routing manually by your ISP costs are based on this WAN link while still permitting VPN traffic to be directed to a VPN configured on logon times), click Idle Timeout and enter the time, ...PPTP), Point-to-Point Protocol over this WAN port. If split tunnel is enabled, DSR won't expect a default route from Static Routing page. Connectivity Type: To keep the ... access with the primary WAN port (WAN1) configuration only. 3.2 WAN Configuration Setup > Internet Settings > WAN1 Setup You must either allow the router to detect WAN connection type automatically or configure...
...of routing manually by your ISP costs are based on this WAN link while still permitting VPN traffic to be directed to a VPN configured on logon times), click Idle Timeout and enter the time, ...PPTP), Point-to-Point Protocol over this WAN port. If split tunnel is enabled, DSR won't expect a default route from Static Routing page. Connectivity Type: To keep the ... access with the primary WAN port (WAN1) configuration only. 3.2 WAN Configuration Setup > Internet Settings > WAN1 Setup You must either allow the router to detect WAN connection type automatically or configure...
Product Manual
Page 92
..., follow the steps below: 1. if there is more than 1 WAN configured the tunnel can be required on the VPN client or gateway to quickly create both IKE and VPN policies. Select the VPN tunnel type to create The tunnel can either be a gateway to gateway connection (site -to-site) or... and pre-shared key: the connection name is created, you can use the VPN wizard to establish the tunnel Determine the local gateway for either of the gateways. 90 Unified Services Router User Manual 6.1 VPN Wizard Setup > Wizard > VPN Wizard You can modify it as required. Once the IKE or...
..., follow the steps below: 1. if there is more than 1 WAN configured the tunnel can be required on the VPN client or gateway to quickly create both IKE and VPN policies. Select the VPN tunnel type to create The tunnel can either be a gateway to gateway connection (site -to-site) or... and pre-shared key: the connection name is created, you can use the VPN wizard to establish the tunnel Determine the local gateway for either of the gateways. 90 Unified Services Router User Manual 6.1 VPN Wizard Setup > Wizard > VPN Wizard You can modify it as required. Once the IKE or...
Product Manual
Page 94
... find it difficult to configure VPN policies through VPN wizard use easy setup site to -end communication between this gateway is one can enable NetBIOS and DHCP over IPsec allows this mode you can modify the required fields through the edit link. Only the data payload is... is the recommended method to hosts on the remote LAN. Once the Wizard creates the matching IKE and VPN policies required by importing a file containing vpn policies. 6.2 Configuring IPsec Policies Setup > VPN Settings > IPsec > IPsec Policies An IPsec policy is between the two policy endpoints. Transport:...
... find it difficult to configure VPN policies through VPN wizard use easy setup site to -end communication between this gateway is one can enable NetBIOS and DHCP over IPsec allows this mode you can modify the required fields through the edit link. Only the data payload is... is the recommended method to hosts on the remote LAN. Once the Wizard creates the matching IKE and VPN policies required by importing a file containing vpn policies. 6.2 Configuring IPsec Policies Setup > VPN Settings > IPsec > IPsec Policies An IPsec policy is between the two policy endpoints. Transport:...
Product Manual
Page 98
...an account to give a user access to the tunnel. VPN client software is required to establish a VPN tunnel between the LAN VPN client and the VPN server. 6.4.1 PPTP Tunnel Support Setup > VPN Settings > PPTP > PPTP Client PPTP VPN Client can access remote network which is enabled, the user can be...IKE policy parameters to the client software guide for detailed instructions on this router. The router acts as Microsoft IPsec VPN software can be configured on setup as well as the router's online help to determine how to PPTP server. To disconnect the tunnel, click Drop...
...an account to give a user access to the tunnel. VPN client software is required to establish a VPN tunnel between the LAN VPN client and the VPN server. 6.4.1 PPTP Tunnel Support Setup > VPN Settings > PPTP > PPTP Client PPTP VPN Client can access remote network which is enabled, the user can be...IKE policy parameters to the client software guide for detailed instructions on this router. The router acts as Microsoft IPsec VPN software can be configured on setup as well as the router's online help to determine how to PPTP server. To disconnect the tunnel, click Drop...
Product Manual
Page 99
...), PPTP clients have access to access. Unified Services Router Figure 59: PPTP tunnel configuration - PPTP Client User Manual Figure 60: PPTP VPN connection status Setup > VPN Settings > PPTP > PPTP Server A PPTP VPN can reach the router's PPTP server. Once the PPTP server is available on the router for LAN and WAN PPTP client users...
...), PPTP clients have access to access. Unified Services Router Figure 59: PPTP tunnel configuration - PPTP Client User Manual Figure 60: PPTP VPN connection status Setup > VPN Settings > PPTP > PPTP Server A PPTP VPN can reach the router's PPTP server. Once the PPTP server is available on the router for LAN and WAN PPTP client users...
Product Manual
Page 100
PPTP Server User Manual 6.4.2 L2TP Tunnel Support Setup > VPN Settings > L2TP > L2TP Server A L2TP VPN can reach the router's L2TP server. Once authenticated by the router. 98 Once the L2TP server is available on the router for LAN and WAN ...
PPTP Server User Manual 6.4.2 L2TP Tunnel Support Setup > VPN Settings > L2TP > L2TP Server A L2TP VPN can reach the router's L2TP server. Once authenticated by the router. 98 Once the L2TP server is available on the router for LAN and WAN ...
Product Manual
Page 101
...128,AES-192 and AES-256. SHA1 is the default Hash algorithm: Message digest algorithm used in client mode). Vpn Network: Address of the Virtual Network. Vpn Netmask: Netmask of the Virtual Network. Port: The port number on which the packets are encrypted. In access server client ... the traffic through this and click save settings to start/stop openvpn server. Mode: OpenVPN daemon mode. L2TP Server User Manual 6.4.3 OpenVPN Support Setup > VPN Settings > OpenVPN > OpenVPN Configuration OpenVPN allows peers to authenticate packets.
...128,AES-192 and AES-256. SHA1 is the default Hash algorithm: Message digest algorithm used in client mode). Vpn Network: Address of the Virtual Network. Vpn Netmask: Netmask of the Virtual Network. Port: The port number on which the packets are encrypted. In access server client ... the traffic through this and click save settings to start/stop openvpn server. Mode: OpenVPN daemon mode. L2TP Server User Manual 6.4.3 OpenVPN Support Setup > VPN Settings > OpenVPN > OpenVPN Configuration OpenVPN allows peers to authenticate packets.
Product Manual
Page 112
... IP address already referenced. 110 Unified Services Router Figure 72: User configuration options User Manual 7.2 Using SSL VPN Policies Setup > VPN Settings > SSL VPN Server > SSL VPN Policies SSL VPN Policies can be applied to a specific network resource, IP address or ranges on the LAN, or to ...different SSL VPN services supported by the router. I.e. a policy for a specific IP address takes precedence over a policy for a range...
... IP address already referenced. 110 Unified Services Router Figure 72: User configuration options User Manual 7.2 Using SSL VPN Policies Setup > VPN Settings > SSL VPN Server > SSL VPN Policies SSL VPN Policies can be applied to a specific network resource, IP address or ranges on the LAN, or to ...different SSL VPN services supported by the router. I.e. a policy for a specific IP address takes precedence over a policy for a range...
Product Manual
Page 115
... forwarding or both. Defined resources: This policy can be explicitly permitted or denied. 7.2.1 Using Network Resources Setup > VPN Settings > SSL VPN Server > Resources Network resources are services or groups of LAN IP addresses that are created with the service. Once ...configuring the following in advance of the supported SSL services. Network resources must be defined for the resource. Service: The SSL VPN service corresponding to all be configured in the GUI: Resource name: A unique identifier name for this resource as a defined resource...
... forwarding or both. Defined resources: This policy can be explicitly permitted or denied. 7.2.1 Using Network Resources Setup > VPN Settings > SSL VPN Server > Resources Network resources are services or groups of LAN IP addresses that are created with the service. Once ...configuring the following in advance of the supported SSL services. Network resources must be defined for the resource. Service: The SSL VPN service corresponding to all be configured in the GUI: Resource name: A unique identifier name for this resource as a defined resource...
Product Manual
Page 116
... server requires entering the local server IP address and TCP port number of configured resources, which are available to assign to SSL VPN policies 7.3 Application Port Forwarding Setup > VPN Settings > SSL VPN Server > Port Forwarding Port forwarding allows remote SSL users to access specified network applications or services after they login to the router...
... server requires entering the local server IP address and TCP port number of configured resources, which are available to assign to SSL VPN policies 7.3 Application Port Forwarding Setup > VPN Settings > SSL VPN Server > Port Forwarding Port forwarding allows remote SSL users to access specified network applications or services after they login to the router...
Product Manual
Page 118
...range for SSL Port Forwarding 7.4 SSL VPN Client Configuration Setup > VPN Settings > SSL VPN Client > SSL VPN Client An SSL VPN tunnel client provides a point-to access services on the private network without any special network configuration on the LAN. When a SSL VPN client is launched from the user ...of the client's network interfaces (Ethernet, Wireless, etc.) cannot be identical to ensure that is being accessed through the SSL VPN tunnel. 116 It is automatically created. This allows local applications to -point connection between the browserside machine and this router. ...
...range for SSL Port Forwarding 7.4 SSL VPN Client Configuration Setup > VPN Settings > SSL VPN Client > SSL VPN Client An SSL VPN tunnel client provides a point-to access services on the private network without any special network configuration on the LAN. When a SSL VPN client is launched from the user ...of the client's network interfaces (Ethernet, Wireless, etc.) cannot be identical to ensure that is being accessed through the SSL VPN tunnel. 116 It is automatically created. This allows local applications to -point connection between the browserside machine and this router. ...
Product Manual
Page 120
... privileges as determined by the router administrator. Unified Services Router User Manual Setup > VPN Settings > SSL VPN Client > Configured Client Routes If the SSL VPN client is assigned an IP address in split tunnel mode 7.5 User Portal Setup > VPN Settings > SSL VPN Client > SSL VPN Client Portal When remote users want to access the private network through an...
... privileges as determined by the router administrator. Unified Services Router User Manual Setup > VPN Settings > SSL VPN Client > Configured Client Routes If the SSL VPN client is assigned an IP address in split tunnel mode 7.5 User Portal Setup > VPN Settings > SSL VPN Client > SSL VPN Client Portal When remote users want to access the private network through an...
Product Manual
Page 121
...the ―User Portal‖ link is optional. 119 As well, the users assigned to create a custom page for this portal (through their authentication domain) can then be presented with an authentication domain 7.5.1 Creating Portal Layouts Setup > VPN Settings > SSL VPN Server > Portal Layouts The router... allows you to this portal. This field is clicked on the SSL VPN menu of the router's supported SSL services such as the VPN Tunnel page or Port Forwarding page. ...
...the ―User Portal‖ link is optional. 119 As well, the users assigned to create a custom page for this portal (through their authentication domain) can then be presented with an authentication domain 7.5.1 Creating Portal Layouts Setup > VPN Settings > SSL VPN Server > Portal Layouts The router... allows you to this portal. This field is clicked on the SSL VPN menu of the router's supported SSL services such as the VPN Tunnel page or Port Forwarding page. ...
Product Manual
Page 133
... log configuration settings and the ways you can monitor the type of logs to traffic through the firewall, VPN, and over the wireless AP. Unified Services Router Figure 90: Date, Time, and NTP server setup User Manual 9.4 Log Configuration This router allows you to the Linux kernel. As an administrator you can...
... log configuration settings and the ways you can monitor the type of logs to traffic through the firewall, VPN, and over the wireless AP. Unified Services Router Figure 90: Date, Time, and NTP server setup User Manual 9.4 Log Configuration This router allows you to the Linux kernel. As an administrator you can...