Asante Technologies VR2004 Bedienungsanleitung

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76

Zur Seite of

Richtige Gebrauchsanleitung

Die Vorschriften verpflichten den Verkäufer zur Übertragung der Gebrauchsanleitung Asante Technologies VR2004 an den Erwerber, zusammen mit der Ware. Eine fehlende Anleitung oder falsche Informationen, die dem Verbraucher übertragen werden, bilden eine Grundlage für eine Reklamation aufgrund Unstimmigkeit des Geräts mit dem Vertrag. Rechtsmäßig lässt man das Anfügen einer Gebrauchsanleitung in anderer Form als Papierform zu, was letztens sehr oft genutzt wird, indem man eine grafische oder elektronische Anleitung von Asante Technologies VR2004, sowie Anleitungsvideos für Nutzer beifügt. Die Bedingung ist, dass ihre Form leserlich und verständlich ist.

Was ist eine Gebrauchsanleitung?

Das Wort kommt vom lateinischen „instructio”, d.h. ordnen. Demnach kann man in der Anleitung Asante Technologies VR2004 die Beschreibung der Etappen der Vorgehensweisen finden. Das Ziel der Anleitung ist die Belehrung, Vereinfachung des Starts, der Nutzung des Geräts oder auch der Ausführung bestimmter Tätigkeiten. Die Anleitung ist eine Sammlung von Informationen über ein Gegenstand/eine Dienstleistung, ein Hinweis.

Leider widmen nicht viele Nutzer ihre Zeit der Gebrauchsanleitung Asante Technologies VR2004. Eine gute Gebrauchsanleitung erlaubt nicht nur eine Reihe zusätzlicher Funktionen des gekauften Geräts kennenzulernen, sondern hilft dabei viele Fehler zu vermeiden.

Was sollte also eine ideale Gebrauchsanleitung beinhalten?

Die Gebrauchsanleitung Asante Technologies VR2004 sollte vor allem folgendes enthalten:
- Informationen über technische Daten des Geräts Asante Technologies VR2004
- Den Namen des Produzenten und das Produktionsjahr des Geräts Asante Technologies VR2004
- Grundsätze der Bedienung, Regulierung und Wartung des Geräts Asante Technologies VR2004
- Sicherheitszeichen und Zertifikate, die die Übereinstimmung mit entsprechenden Normen bestätigen

Warum lesen wir keine Gebrauchsanleitungen?

Der Grund dafür ist die fehlende Zeit und die Sicherheit, was die bestimmten Funktionen der gekauften Geräte angeht. Leider ist das Anschließen und Starten von Asante Technologies VR2004 zu wenig. Eine Anleitung beinhaltet eine Reihe von Hinweisen bezüglich bestimmter Funktionen, Sicherheitsgrundsätze, Wartungsarten (sogar das, welche Mittel man benutzen sollte), eventueller Fehler von Asante Technologies VR2004 und Lösungsarten für Probleme, die während der Nutzung auftreten könnten. Immerhin kann man in der Gebrauchsanleitung die Kontaktnummer zum Service Asante Technologies finden, wenn die vorgeschlagenen Lösungen nicht wirksam sind. Aktuell erfreuen sich Anleitungen in Form von interessanten Animationen oder Videoanleitungen an Popularität, die den Nutzer besser ansprechen als eine Broschüre. Diese Art von Anleitung gibt garantiert, dass der Nutzer sich das ganze Video anschaut, ohne die spezifizierten und komplizierten technischen Beschreibungen von Asante Technologies VR2004 zu überspringen, wie es bei der Papierform passiert.

Warum sollte man Gebrauchsanleitungen lesen?

In der Gebrauchsanleitung finden wir vor allem die Antwort über den Bau sowie die Möglichkeiten des Geräts Asante Technologies VR2004, über die Nutzung bestimmter Accessoires und eine Reihe von Informationen, die erlauben, jegliche Funktionen und Bequemlichkeiten zu nutzen.

Nach dem gelungenen Kauf des Geräts, sollte man einige Zeit für das Kennenlernen jedes Teils der Anleitung von Asante Technologies VR2004 widmen. Aktuell sind sie genau vorbereitet oder übersetzt, damit sie nicht nur verständlich für die Nutzer sind, aber auch ihre grundliegende Hilfs-Informations-Funktion erfüllen.

Inhaltsverzeichnis der Gebrauchsanleitungen

  • Seite 1

    FriendlyNET ® VR2004 Series VPN Security Routers User ’ s Manual[...]

  • Seite 2

    FriendlyNET V PN Security Router 2 Before Y ou Start Thank you for purchasin g the Asant é FriendlyNET VR2004 Series VPN Security R outer. Your rou ter has been des igned to prov ide a lifetime of tr ouble-free op eration. H owever, to ensure a smoot h in- stallation, y ou must have the f ollowing ite ms before y ou begin: • Internet conn ection[...]

  • Seite 3

    User’s Manual 3 Quick Start Guide This se ction will g uide you thr ough sett ing up the Asanté FriendlyN ET router with y our Cable/DSL modem. Setting up your router requ ires three ba sic steps: 1. Determine t he TCP/IP settin gs for your com puter and record them in t he table provid ed. 2. Set up your har dware. Y ou MUST pow er up the route[...]

  • Seite 4

    FriendlyNET V PN Security Router 4 4. Once the in formation has been recorded , choose Using DH CP Server from the Conf igure: pul l-down menu. C lose the dia log box and sav e your cha nges. Repeat ste ps 1, 2, and 4 to configur e addition al Macs you w ish to add to the rout er. Mac O S X 1. Go to System Pref erences on your desktop an d select N[...]

  • Seite 5

    User’s Manual 5 4. Once the in formation has been recorded , select Configure: Using DHCP . You w ill receive an IP a ddress aut omatically from your DHCP serve r. The T CP/IP configuration o f your computer is now com plete. Re- peat steps 1 , 2 and 4 to configure ad ditional M acs that y ou wish to add to the rout er. Windows 98/Me 1. From the [...]

  • Seite 6

    FriendlyNET V PN Security Router 6 3. Expand th is dialog box by click ing on the Mor e Info >> button. 4. Complete t he informat ion in thi s table: Tip : Next to the DNS Ser vers field, clic k the button to show th e Secondary D NS (if availa ble). 5. From the Windows Start butto n, choose Set tings and sele ct Control Pane l . Double-cl ic[...]

  • Seite 7

    User’s Manual 7 Windows XP 1. From the Start butt on, select Settings/Co ntrol Panel . 2. Click on N etwork and Interne t Connections . 3. Click the Network Connections ic on. 4. Double-cl ick on the network. 5. Under the Sup port tab, clic k on the D etails… button. 6. Record your inf ormation on the table below for future r eference. 7. Under[...]

  • Seite 8

    FriendlyNET V PN Security Router 8 The T CP/IP configuration o f your computer is now com plete. Re- peat steps 1 – 4 and 7 – 10 to conf igure additi onal PCs on your net- wor k. Red Hat Linux In order to gath er the inform ation necessary to comp lete the table, you w ill need to run th e /sbin/ipconfig co mmand. Y ou will al so need to ex ami[...]

  • Seite 9

    User’s Manual 9 3. Configure Your Router From your co mputer , use your browser to conf igure the rout er for your netw ork. 1. Start your w eb browser . T ype http://192.16 8.123.254 i nto your browser’s address or locat ion field and press Enter . 2. In a few moments you ’ll see th e Login screen f or the router . Enter the defau lt usernam[...]

  • Seite 10

    FriendlyNET V PN Security Router 10[...]

  • Seite 11

    User’s Manual 11 T able of Contents Before You Star t 2 Quick Start G uide 3 Chapter 1. Introducti on 13 Chapter 2. Con figuration 17 Chapter 3. Advan ced Setting s 27 Chapter 4. VPN Con figuration 41 Appendix A. Warranty Statement a nd Friendly Care Sup port 51 Appendix B. FCC Statement 53 Appendix C. Troubleshooti ng 55 Appendix D. Renewing C l[...]

  • Seite 12

    FriendlyNET V PN Security Router 12[...]

  • Seite 13

    User’s Manual 13 Chapter 1. Introduction Thank you for purchasin g the Friend lyNET VR 2004 Series VPN Se- curity Rou ter. The router prov ides an e asy, afforda ble way to com- municate ov er the Intern et, while ens uring a secure connecti on to another VR2004 (or other compatib le VPN solutio n). Whenever data is inte nded for the r emote site[...]

  • Seite 14

    FriendlyNET V PN Security Router 14 • Hacker A ttack Logging : Supports gen eral hacker attack pattern mo nitoring an d logging • High Performance 32-bit RIS C CPU Engine : W ith the most advan ced 32-bit RISC CPU engi ne, the router has full compat ibility w ith present a nd future Cable/D SL tech- nologie s • PPPoE Client : Suppor ts PPPoE [...]

  • Seite 15

    User’s Manual 15 • DMZ (Demilitarized Zo ne) : Allows y ou to place one s erver or workstat ion outsid e the firew all, to allow outs ide parties unrestricted access to the server 1.2 Package Contents Please comp are the item s included in your pa ckage to the list be- low. T he following item s shoul d be includ ed: • FriendlyNE T VR2004 Ser[...]

  • Seite 16

    FriendlyNET V PN Security Router 16 From left to ri ght, the rear p anel of the r outer contain s the following: Power (5 VDC) plug; Internet (WAN) port; COM port; Reset b utton; and LAN ports 4, 3, 2 and 1. LED Color Descri ption Link/ Activ ity LAN por ts 1 to 4 Green Blinking Off A vali d link h as been es tablis hed on the por t. Port is transm[...]

  • Seite 17

    User’s Manual 17 Chapter 2. Configuration Power up the r outer first, before pow ering up the a t- tached d evices. Laun ch your w eb browser and type the default IP a ddress (192.168.123.2 54) in the browser’s addr ess box. Press Ent er . The login w indow will appear. Ty pe the default user- name adm in and pres s OK . By default, the pa sswo[...]

  • Seite 18

    FriendlyNET V PN Security Router 18 • Time Zone Sett ings • Device IP Settin gs • ISP Settings • Additional ISP Set tings • Modem Settin gs • VPN Settings Important ! You must save an d restart the ro uter in the Save & Re- start scr een for your configurat ions to take effect. 2.1.1 Time Zone Settings From the dr op down menu , cho[...]

  • Seite 19

    User’s Manual 19 Quick St art Guide), and click Next to enter the data. If you use a dynamic IP Ad dress, che ck the Dynami c IP radio but ton and cl ick Next to continu e to Additio nal ISP Settings . 2.1.4 A dditional I SP Settings In this page, you can e nable the ty pe of W AN conne ction you are using. Y our ISP may require y ou to use any o[...]

  • Seite 20

    FriendlyNET V PN Security Router 20 ISPs use the i nformation f or authenticatio n purposes, so y ou must select the check box and enter the requeste d informatio n for your WA N ty p e . Some provider s require the Ethernet addr ess (the M AC address) of the computer that is co nnecting the C able/DSL m odem to au thenti- cate the con nection. If [...]

  • Seite 21

    User’s Manual 21 Click N ext to enter the n ew data and to proceed to th e Wir el ess Settings page (VR2004AC model o nly) or to th e Modem Setti ngs page. 2.1.5 Wirel ess Sett ings ( VR2004 A C only) The VR2004AC i s designe d to function as a wireless access point using the de fault setti ngs show n. If you w ish to use more th an one router in[...]

  • Seite 22

    FriendlyNET V PN Security Router 22 Encry ption Most interna l LAN traffic do es not require additiona l security meas- ures. If you are transferrin g sensit ive files or ot her material over the wireless LAN, you may ena ble the W EP Secur ity Settings. WEP stands for " Wired Equiva lent Protocol". Click on either the "40(6 4) bit&q[...]

  • Seite 23

    User’s Manual 23 2.1.7 VPN Setting s The router can be used a s an ordinary unen crypted co nnection to the Internet, or as a secur e connectio n to another VPN ro uter. To set up a V irtual Private Netw ork (VPN), you must enable the VPN feature, w hich allow s a secure con nection to the I nternet. Please refer to C hapter 4. VPN Configuration [...]

  • Seite 24

    FriendlyNET V PN Security Router 24 2.2 Device Information This page di splays t he current settings of the r outer: • Device Name : The host name of th e router • IP Address : T he IP address of the r outer • LAN MAC Address : The M AC address of th e router’s LAN port • WAN MAC Address : The M AC address of th e router’s WAN Ethernet [...]

  • Seite 25

    User’s Manual 25 • VPN Status : View the IPSec Connectio n Status for VPN tunnels • DHCP Status : Click to refresh the DHCP log 2.4 System Tools From th e Main Menu , select the Sy stem T ools bu tton t o displa y the st atus of th e ro uter. The fo llowing page s are a ccessib le from the System Tools page: • Intruder Detection Log : Displ[...]

  • Seite 26

    FriendlyNET V PN Security Router 26 • Upgrade Firmware : Allows you to upgrade the rout er to the latest version of firm ware • Reset Device : Restarts the router[...]

  • Seite 27

    User’s Manual 27 Chapter 3. A dvanced Settings From the main menu, cl ick on the corre sponding b utton to a ccess the Advanced Sett ings screen. Fr om here, you can access the follow ing pages for co nfiguration: • DHCP Server Settings • Virtual Server Sett ings • Wireless Access Co ntrol • Routing Sett ings • Filter Setting s • Admi[...]

  • Seite 28

    FriendlyNET V PN Security Router 28 IP Address Pool Rang e This pool c ontains the range of IP addres ses that w ill automatica lly be assigne d to the cli ents on y our network. T he default set ting is 192.168.123.2 to 192.168. 123.100. Incre ase the ran ge if you hav e more than 98 comput ers on your network. IP Address R eservation You can c on[...]

  • Seite 29

    User’s Manual 29 Enter the IP addre sses of the network server s and the Serv ice Port Range to al low remote a ccess to th e desired ports. T he Server Port is a TCP or UD P port numb er. See Appendix E f or a list of common se rvic e po rts . A single serv er or w orkstation can be placed outs ide the prot ective firewall to allow unrestr icted[...]

  • Seite 30

    FriendlyNET V PN Security Router 30 3.3 Wireless A ccess Control Settings * This feature sh ould only be used by users with an extensive knowledge of TCP/IP. By default, al l users on the rout er have full ac cess to lo cal and w ide area netw orks. If nece ssary, n etwork manager s can contr ol LAN and WAN ac cess by enteri ng the M AC addresses o[...]

  • Seite 31

    User’s Manual 31 To delete a M AC addres s, select the correspondin g checkbo x and click t he Del button. The maximum number of e ntries allow ed in the table is 32. Note : At least on e client must have full acce ss in order to perform administrat ive tasks. Click Submit to have y our changes ta ke effect. 3.4 Routing Settings * This feature sh[...]

  • Seite 32

    FriendlyNET V PN Security Router 32 To specify that gateway you need t o define a stati c route. • Destinati on IP Address: T he netw ork address of the re- mote network • Subnet Mask: The subnet mask of t he remote n etwork • Gateway IP Address: The IP a ddress to be us ed as a gate- way to the remote netw ork 3.4.2 Dy namic Routing Settings[...]

  • Seite 33

    User’s Manual 33 3.5 Filter Settings Filter Setti ngs give you additio nal control over w hat user s on your local netw ork can see o n the Interne t, or what user s on the I nternet can connec t to on your local netw ork. LAN filters control w hat re- sources on t he Intern et your local users can connect to. WAN filter s allow ex tra control (b[...]

  • Seite 34

    FriendlyNET V PN Security Router 34 Your sele ctions sh ould look like this: • LAN Side Filt er Enabled: Ena bled • Default LAN Sid e Filter: Pass • Filter Entry: Bloc k • Protocol: TCP • IP Address Ra nge: 192.16 8.123.10 to 192.1 68.123.20 • Destinati on Port Range: 1 19-119 Click Sav e to add the f ilter rule (to de lete a filter rul[...]

  • Seite 35

    User’s Manual 35 3.6 A dministrative Settings In this scre en, you ca n set several a dministrativ e options for the router simply by enteri ng a passw ord or checking v arious op tions that are l isted. 3.6.1 Passw ord Setting s To prevent un authorized access to th e router, it i s highly rec om- mended that y ou change from no passw ord (defau[...]

  • Seite 36

    FriendlyNET V PN Security Router 36 3.6.2 Remote System Administration You may conf igure your ro uter to allow a user on the Internet to ad- minister it. The default setting 0.0.0.0 mean s that a use r from any IP address may adminis ter the router. Y ou should carefully con sider the possibl e security ri sks of leav ing this sett ing at the d ef[...]

  • Seite 37

    User’s Manual 37 ISP sets the limit on packet siz e for PPPoE conne ction, in which case, you w ill have to change the M TU setting. See your ISP for details on packet siz e limits. 3.7 Dynamic DNS Settings Ordinarily , a static IP addre ss is require d if you w ant users on the Internet to be a ble to find y ou w ith a name for your c omputer ra[...]

  • Seite 38

    FriendlyNET V PN Security Router 38 may enable the Use wi ldcards feature. 3.8 URL Filter Settings This feat ure allows y ou to block ac cess to c ertain websi tes on the Internet. Y ou can specify w ords or letters th at, if they appear in the website na me (the URL) or new sgroup name, w ill cause the site to be blocked by the router . Click the [...]

  • Seite 39

    User’s Manual 39 To enable thi s feature, a ccess the E-m ail Alert screen from the Ad- vanced Setti ngs page an d check t he box Enable E-mail Notifica- tion . Nex t, enter the IP addr ess of the outg oing mail server and the destinat ion e-mail addr ess in t he given fie lds and sele ct the fr e- quency for re ceiving E- mail alerts. 3.10 Save [...]

  • Seite 40

    FriendlyNET V PN Security Router 40[...]

  • Seite 41

    User’s Manual 41 Chapter 4. VPN Configuration If you require more than a n ordinary, u nencrypted connection to t he Internet, the ro uter support s IPSec to al low secure c ommunication s from a netw ork to another network, or from a client t o a network. The Virtual Priv ate Netw ork (VPN) protects your dat a by encr ypting it while it is sent [...]

  • Seite 42

    FriendlyNET V PN Security Router 42 You w ill require three pi eces of infor mation about e ach LAN that i s taking part i n a VPN connec tion: 1. The remot e Network IP addre ss of the LAN. This w ill usually be the same as the address of the LAN port of t he router, w ith the last segme nt of the addr ess ch anged to ‘0’. 2. The remot e IP Ne[...]

  • Seite 43

    User’s Manual 43 VR2004 ‘A’ (West end) • Connection Name : West-East • Local IPSec Id entifier : W est (A llows you to identify mult i- ple tunne ls and does n ot have to match the name used at the other end o f the tunnel . May be left blank. The default value is Lo cal .) • Remote IPSec Id entifier : East (Allow s you to id entify mul[...]

  • Seite 44

    FriendlyNET V PN Security Router 44 • Remote IP Net w ork : 192.16 8.123.0 • Remote IP Netmas k : 255.255.255. 0 • Remote Gateway IP : 172.16.0.123 • Network Interf ace : W AN ETHERNET 4.2 Client-t o-Net w ork To connect a remote cl ient PC to your n etwork, use one o f the fol- lowing co nfiguration s based on the type of IP ad dress of th[...]

  • Seite 45

    User’s Manual 45 • Remote IP Net w ork : 192.16 8.123.0 • Remote Netmask : 255.255.255.0 • Remote Gateway IP : 172.16.0.123 • Network Interf ace : The interf ace on the ro uter used to communic ate with the re mote netw ork. Most user s should leave this se t to W AN ETHERNET • Local IPSEC Identifier : Allows you to identify multiple tu[...]

  • Seite 46

    FriendlyNET V PN Security Router 46 The preferred w ay to do this is with auto matic keying using the Internet Key Ex change Protoc ol (IKE). This require s that your ISP or firewall allows traffic for T CP port 500. Chec k with your IS P or network ad ministrator if you are not sure if traffic fo r TCP port 500 is allowed. If IKE is impo ssible fo[...]

  • Seite 47

    User’s Manual 47 4.3.3 Pre-Sha red Key IKE can establ ish a key for the tw o ends of the tun nel to use t o en- crypt the traff ic bound for the other n etwork, but it cannot gua rantee that the router on the other e nd of the tu nnel can be tru sted. T he Pre-Shared key i s used to est ablish that tr ust. Enter an alphanu- meric name to be the P[...]

  • Seite 48

    FriendlyNET V PN Security Router 48 The follow ing sectio ns describ e the paramet ers that will need to be entered for a m anually key ed tunnel. 4.4.1 Incoming and Outgoing SPI (Secur ity Parameter Index) The SPI is a 32- bit field th at the router w ill use to id entify the Secure Associatio n. Enter a differ ent 8 hex adecimal digit (such as ?[...]

  • Seite 49

    User’s Manual 49 4.4.5 Authenticatio n Key This string is used a s key authenti cation. Use a n alpha-nu meric value of 16 characters (M D5) or 20 char acters (SHA-1) . Note : The value entered mu st match that u sed by the r emote de- vic e. After configuri ng all the VPN v alues that ar e required, c lick on the Save button. T his accesse s the[...]

  • Seite 50

    FriendlyNET V PN Security Router 50[...]

  • Seite 51

    User’s Manual 51 Appendix A . W arrant y Statement and Friendl yCare Support Subject to th e limitations and exclusions below, Asanté warrants to the origi- nal end user purchaser that the covered products will be free fro m defect s in titl e, materials and manufacturing w orkm anship for a period of two years from the date of purchase. This wa[...]

  • Seite 52

    FriendlyNET V PN Security Router 52 LOSS, D AMAGE TO PRO PERTY AND, TO THE EX TENT P ERMITTED BY LAW , DAM AGE S F OR P ERS ON AL I NJ URY , H OW EVE R CA US ED AND ON ANY T HEORY OF LIABI LITY (INCLUDI NG NEGLIG ENCE). T HESE LIMITAT IONS SH ALL APPLY EVEN IF ASAN TE HAS BE EN ADVISED O F THE POS SIBIL ITY OF SU CH D AMAGES OR IF THIS WARRANTY IS [...]

  • Seite 53

    User’s Manual 53 Appendix B. FCC Statement This equ ipment has be en test ed and found t o comply w ith the limit s for a Class B di gital dev ice, pursuan t to part 15 of the FCC Rules. These limit s are desi gned to p rovide reaso nable prote ction again st harmful interf erence in a residentia l installa tion. This equipment generates, u ses a[...]

  • Seite 54

    FriendlyNET V PN Security Router 54[...]

  • Seite 55

    User’s Manual 55 Appendix C. T r oubleshooting Before beginni ng the troubl eshootin g process, please chec k the System Re quirements found in Chapt er 1 have been met. If not, resolve the Sy stem Requ irement defi ciencies before attemp ting to troubleshoot furth er. C.1 Troubleshooting with t he Status LEDs Consult Cha pter 1.4 for in formatio[...]

  • Seite 56

    FriendlyNET V PN Security Router 56 C.2 Problems Accessing Router If you have problems acc essing the router , please c heck the follow- ing: 1. Can you ping 192.168.123. 254? If so, disable th e proxy in your browser 's setting. 2. If http://192.16 8.123.254 does not work, try http://192.16 8.123.254:88. 3. If you are una ble to ping the r ou[...]

  • Seite 57

    User’s Manual 57 C.3 Cabling Problems Network cab les conne ct devices i n an Ethernet n etwork, suc h as computers, p rinters, hubs, rout ers and Cable/DSL modems. The network co nnections prov ided by Ethernet cabli ng allow the devices to share infor mation, and allow a LAN to acce ss the Intern et. Faulty Ethernet cables c an cause prob lems [...]

  • Seite 58

    FriendlyNET V PN Security Router 58 2. If the port f unctions corre ctly, make s ure the router is attached to an Uplink Port on the hub o r switch. I f there is an Upl ink button on the hub or sw itch, make sure it is in th e Uplink po si- tion. 3. If there i s no uplink port on the hub or switch, the n you w ill need to purch ase a cros sover cab[...]

  • Seite 59

    User’s Manual 59 A pp endix D. Renew ing Client IP A d dres ses Perform the f ollowing to r enew the IP addr esses of client co mputers after configur ing your VR 2004 Series R outer: D.1 Windows 98/Me Perform the f ollowing st eps to Relea se and Renew the IP Address on each client attache d to the router: 1. Go to the Start B utton on the lower[...]

  • Seite 60

    FriendlyNET V PN Security Router 60[...]

  • Seite 61

    User’s Manual 61 Appendix E. Service Ports The table bel ow list s some of the m ore common T CP and UDP ser- vice ports. Port Servi ce 20 FTP-D ATA 21 FTP 23 Te lnet, I nte rnet BBS 25 SMTP, Se nd mail 53 DNS 67 BOOT P bootst rap prot ocol 79 finger 80 HTTP , worl dwide web 110 PO P3, recei ve mail 113 Aut h, authe nticat ion 119 NNTP, net new s[...]

  • Seite 62

    FriendlyNET V PN Security Router 62[...]

  • Seite 63

    User’s Manual 63 App endix F . Hardware and Soft ware Comp atibility Protocols Supported TCP/IP, NAT, DHCP, PPP, PPPoE, VPN Network and Cli ent Platforms comp atibility Windows 9 5/98/NT/2000/ W or kstation Microsoft W indow s NT Serv er UNIX System (L inux, OpenBS D, SCO-UN IX) Application Soft ware Compatibility Microsoft In ternet Explorer Net[...]

  • Seite 64

    FriendlyNET V PN Security Router 64[...]

  • Seite 65

    User’s Manual 65 Appendix G. Specifications Connectors: LAN: 4 Fast Ethe rnet (100Bas eTX, 10BaseT ): RJ-45 WAN: 1 Fast Ethernet (10 0BaseTX, 10BaseT): RJ -45 COM: Serial (analog modem or IS DN TA): DB9 WLAN: 11 Mbps (802.1 1b) at 18 dB m signal with VR2004AC Status Indicators: Power, Status, Link/Activity (per port), WAN, COM and Wireless (VR200[...]

  • Seite 66

    FriendlyNET V PN Security Router 66 Advanced S ettings DHCP: Dynamic hos t configuration p rotocol automatic ally assi gns IP address to spec ified cli ents. Choose addres s pool ran ge. Reserve LA N IP addresses for selec ted devic es (by MAC addresses). Virtual Server: De-Militarized Zone (DMZ) for specific IP address. Forward service port range [...]

  • Seite 67

    User’s Manual 67 Intrusion: Detects 11 typ es of denial of service (DOS) attacks including: ping of death (il legal ping p acket), SYN fl ood (detects if SYN is from the sa me source), LA ND atta ck (same source and destination add resses), IP spoofi ng (si mulates a LAN packet), Code R ed 1 (patt ern I), Cod e Red II (patter n II), UDP loopback [...]

  • Seite 68

    FriendlyNET V PN Security Router 68 Performanc e Processor: 32-bi t RISC CPU Memory: Upgradeable FLAS H firmware from web bro wser LAN: 10/100 Mbps WAN: 10/100 Mbps WLAN: Up to 11 Mbps Physical Charac teristics Dimensions : 7.9 x 5.9 x 1. 7 inches (2 01 x 151 x 44 mm) Weight: VR2004C: 1.0 poun ds (0.45 Kg ) VR2004AC: 1.01 pou nds (0.46 Kg) Environm[...]

  • Seite 69

    User’s Manual 69 Appendix H. Configuri ng a Sy stem Log Server Because the router ’s memory cann ot hold as many message s as a computer with a hard drive, you can have the r outer send its System Log message s to a server on the network. The ability to receive system log m essages is most com mon on Unix-ty pe sys- tems. The fol lowing sec tio[...]

  • Seite 70

    FriendlyNET V PN Security Router 70 # /etc/init.d/ syslog restart 4. A default inst all of a rec ent version of R ed Hat Linux has proba- bly also c onfigured a f irewall that m ay be blocki ng access to the syslog port. Usually ipchai ns is used by def ault. To add a rule to the firew all for ipc hains , edit the file /et c/sysconfig/ ipchain s an[...]

  • Seite 71

    User’s Manual 71 ConsoleM essage "Start ing system lo g" if [ -f /et c/syslog.conf ]; then if ! pid= $(GetPID syslog); then rm -f /d ev/log sys logd fi else echo " Warning: sy slogd w as not started" fi } -- 2. Add a p arameter -u to the end of the line that starts the daemon: syslogd - u 3. Sav e the file. 4. We al so want to[...]

  • Seite 72

    FriendlyNET V PN Security Router 72 8. Selec t Other under Port Name . Enter 514 and sy sl og in the Port Number and Desc ri pti on fields, and click OK . You shoul d now see m essages begin to appear in the select ed router.log file. Note : The default firewall tool provided by M ac OS X doesn't prov ide a way to limit access o nly to one IP [...]

  • Seite 73

    User’s Manual 73 Appendix I. Y our 802.1 1b Wireless Net w ork Thank you for choos ing As anté for your wir eless net work ing solu- tions. In or der to m ake wire less net working as safe an d eas y as possible, p lease c onsider t he follo wing inf orm ation when sett ing up and usi ng your wireless network . Optimum Per formance The quality o[...]

  • Seite 74

    FriendlyNET V PN Security Router 74 • The type of w alls, window s, doorw ays or other buildi ng structures w ill affect the range of the wireless s ignal. Struc- tures such a s metal fra med house s, windows co ntaining UV protectiv e film, an d residences w ith multip le floors w ill all affect th e signal q uality • Standing too close to a w[...]

  • Seite 75

    User’s Manual 75 M A C A ddress Control Every netw ork device ha s a unique hardware addre ss known as a media acc ess control (M AC) address. En abling M AC address con- trol allow s you to contro l LAN and W AN access for ea ch clie nt in your netw ork. Hackers w ill be deni ed access u sing outsi de devices. WEP Encr yption Wired Equiv alency [...]

  • Seite 76

    Asanté T echnologie s, Inc. 821 Fox Lane San Jose, C A 95131 FriendlyNE T VR2004 Series V PN Security Router User’s M anual SALES 800-662-9686 H ome/Office Solutions 800-303-9121 En terprise Solu tions 408-435-8388 TECHNICAL SUPPORT 801-566-8991 Worldw ide 801-566-3787 FAX www .asante.com Copyrigh t © 2003 A santé T echnol ogies, Inc. Asanté [...]