HotBrick Dual WAN Firewall VPN 1400/2 manual

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76

Ir a la página of

Buen manual de instrucciones

Las leyes obligan al vendedor a entregarle al comprador, junto con el producto, el manual de instrucciones HotBrick Dual WAN Firewall VPN 1400/2. La falta del manual o facilitar información incorrecta al consumidor constituyen una base de reclamación por no estar de acuerdo el producto con el contrato. Según la ley, está permitido adjuntar un manual de otra forma que no sea en papel, lo cual últimamente es bastante común y los fabricantes nos facilitan un manual gráfico, su versión electrónica HotBrick Dual WAN Firewall VPN 1400/2 o vídeos de instrucciones para usuarios. La condición es que tenga una forma legible y entendible.

¿Qué es un manual de instrucciones?

El nombre proviene de la palabra latina “instructio”, es decir, ordenar. Por lo tanto, en un manual HotBrick Dual WAN Firewall VPN 1400/2 se puede encontrar la descripción de las etapas de actuación. El propósito de un manual es enseñar, facilitar el encendido o el uso de un dispositivo o la realización de acciones concretas. Un manual de instrucciones también es una fuente de información acerca de un objeto o un servicio, es una pista.

Desafortunadamente pocos usuarios destinan su tiempo a leer manuales HotBrick Dual WAN Firewall VPN 1400/2, sin embargo, un buen manual nos permite, no solo conocer una cantidad de funcionalidades adicionales del dispositivo comprado, sino también evitar la mayoría de fallos.

Entonces, ¿qué debe contener el manual de instrucciones perfecto?

Sobre todo, un manual de instrucciones HotBrick Dual WAN Firewall VPN 1400/2 debe contener:
- información acerca de las especificaciones técnicas del dispositivo HotBrick Dual WAN Firewall VPN 1400/2
- nombre de fabricante y año de fabricación del dispositivo HotBrick Dual WAN Firewall VPN 1400/2
- condiciones de uso, configuración y mantenimiento del dispositivo HotBrick Dual WAN Firewall VPN 1400/2
- marcas de seguridad y certificados que confirmen su concordancia con determinadas normativas

¿Por qué no leemos los manuales de instrucciones?

Normalmente es por la falta de tiempo y seguridad acerca de las funcionalidades determinadas de los dispositivos comprados. Desafortunadamente la conexión y el encendido de HotBrick Dual WAN Firewall VPN 1400/2 no es suficiente. El manual de instrucciones siempre contiene una serie de indicaciones acerca de determinadas funcionalidades, normas de seguridad, consejos de mantenimiento (incluso qué productos usar), fallos eventuales de HotBrick Dual WAN Firewall VPN 1400/2 y maneras de solucionar los problemas que puedan ocurrir durante su uso. Al final, en un manual se pueden encontrar los detalles de servicio técnico HotBrick en caso de que las soluciones propuestas no hayan funcionado. Actualmente gozan de éxito manuales de instrucciones en forma de animaciones interesantes o vídeo manuales que llegan al usuario mucho mejor que en forma de un folleto. Este tipo de manual ayuda a que el usuario vea el vídeo entero sin saltarse las especificaciones y las descripciones técnicas complicadas de HotBrick Dual WAN Firewall VPN 1400/2, como se suele hacer teniendo una versión en papel.

¿Por qué vale la pena leer los manuales de instrucciones?

Sobre todo es en ellos donde encontraremos las respuestas acerca de la construcción, las posibilidades del dispositivo HotBrick Dual WAN Firewall VPN 1400/2, el uso de determinados accesorios y una serie de informaciones que permiten aprovechar completamente sus funciones y comodidades.

Tras una compra exitosa de un equipo o un dispositivo, vale la pena dedicar un momento para familiarizarse con cada parte del manual HotBrick Dual WAN Firewall VPN 1400/2. Actualmente se preparan y traducen con dedicación, para que no solo sean comprensibles para los usuarios, sino que también cumplan su función básica de información y ayuda.

Índice de manuales de instrucciones

  • Página 1

    [...]

  • Página 2

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 T A BLE OF CONTENTS 1: INTRODU CTION............................................ .................................................. ........... ................... 4 Internet Features ........................... ............................................ ......................................[...]

  • Página 3

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 Upgrade Firm w are......................................... ......................................... ....... ........................... 60 10: DEVICE INFORMATION............... ................................... .......................................... ................ 61 Operation........[...]

  • Página 4

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 1:Introduction Congra tulations on the purchase o f your ne w Dual WA N VPN Firewall. The Dual WAN VPN Firewall not only provides 2 WAN ports selections – it also provides Shared Br oadband Internet Access for all LAN users. Figure 1 - 1: Dual WAN VP N Firewall Internet Features  Dual WAN [...]

  • Página 5

    HotBrick, Tel: 305 - 398 - 0888, Fa x: 305 - 398 - 5966  Supports all common Connection Method s All popular DSL and Cable Modems and connection methods are supported, including Fixed IP, Dy namic IP, PPPoE, and PPTP.  Outbound/Inbound Tra ffic Load Balancing and Failover There are m any load - balancing method s t o allow adm inistrators to [...]

  • Página 6

    HotBrick, Tel: 305 - 3 98 - 0888, Fax: 305 - 398 - 5966 Other Features  16-Port Switching Hub The Dual WAN VPN Firew all incorporates a 16- port 10 /100BaseT s witching hub that allows you to quickly create or extend your LAN.  DHCP Server Sup port Dynamic Host Configuration Proto col provides dynamic I P addresses to PCs and o ther devices u[...]

  • Página 7

    H otBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 Package Contents The following items should be i ncluded :  The Dual WAN VPN Firewall Unit  Power Cord  Quick Installation Guide  CD - ROM containing the on - l ine manual. Note: If any of the above i tems a re damaged or m issing, please contact y our dealer immediately. Physical [...]

  • Página 8

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 Some Status an d Error cond itions are indicated by combinations of LED’s, as s hown below LED Action Condition Status – System & Packets flash alternatively . Firmware Download i n progress. Status – System & Packets flash concurrently. MAC address not assigned. Status – System[...]

  • Página 9

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 Rear Panel Figure 1 - 3: Rear P anel AC 100V ~ 240V Connect to AC100~240V / 50~60Hz with AC power cord. Default Settings When the Dual WAN VPN Firewal l has finished booti ng, all configuration set tings will initially be set to the factory defaults, including:  IP Address set to its default[...]

  • Página 10

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 Note: The supplied Window s TFTP utility also allows y ou to perform three (3) a dditional opera tions:  Save the current con figuration settings to y our PC (use the "Sav e Configuration" button).  Restore a previously saved configuration file to the Dual WAN VPN Firewall (use [...]

  • Página 11

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 2: Quick Installation Overvie w Initial Basic Setup of your Dual W AN VPN Firewall involves the following steps: 1. Attach a PC to the Dua l WAN VPN Firewall in po rt 3 ~ 16, and configure y our LAN. 2. Install your Dua l WAN VPN Firewall in your LAN , and conne ct the Broadband Modem or Modems[...]

  • Página 12

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 No Respon se?  Is your PC using a Fixed IP address? If so, y ou must configure your PC to use an IP address within the rang e 192.168.1.2 to 192.168.1.254, with a Network Mask of 2 55.255.255.0. See Appendix B – Windows TCP/IP Setup for details.  Check that the D ual WAN VPN Fi rewall i[...]

  • Página 13

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 8. Select LAN & DHCP from the menu. You will see a scr een like the exam ple below. Figure 2 - 3: L AN & DH CP Setup 9. If your LAN alrea dy has a DHCP Server, and you wis h to continue to use it, the following configuration is required.  The DHCP Server function in the Dual WAN VPN [...]

  • Página 14

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 Installing the Dual W AN VPN Firewall o n your L AN Figure 2 - 4: In stallation D iagram 13. Ensure the Dual WAN VPN Firewall and the DSL/Cable modem are powered OFF. Leave the modem or modems connected to their dat a line. 14. Connect the Broadb and modem or modems to the Dual WAN VPN Firewall[...]

  • Página 15

    HotBrick, Tel: 305 - 398 - 0888 , Fax: 305 - 398 - 5966 3. Quick Installation - L AN & DHCP Select LAN & DHCP from the menu. You will see a screen like the example below. Figure 3 - 1: L AN & DH CP Ensure these settings are suitable for your LAN .  The default settings are suitable for m ost networks.  See the following t able for[...]

  • Página 16

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 LAN IP Configuration:  IP address - for the Dual WAN VPN Firewall, as seen from the local LAN. Use the default value unless the address is al read y in use or your LAN is using a different IP address range. In the latter case, enter an unused IP Address from within the range used by your LAN[...]

  • Página 17

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 DHCP Client List This table shows the IP a ddresses that have been allocated b y the DHCP Server. For each allocated address, the following information is displayed.  Name – The ""hostname"" of the PC. In some cases, this ma y not be known.  MAC Address – The p hys[...]

  • Página 18

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 Quick installation - Primary setup Connection mode  Enable Select thi s if you hav e connected a broadband m ode m to this port.  Disable – Select this if t here is no broadband m odem connected to thi s port.  Backup – Use this if you have a broadba nd modem on each por t, and wis[...]

  • Página 19

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 3 : Loadbalancing This screen is only operational if using Internet connections on both WAN ports Figure 3 - 2: Load Balan ce Load balancing – Lo ad Balancing  Enable – Use this to enable your Load Balance settings. Unless this is checked, the other settings on this screen hav e no effec[...]

  • Página 20

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 4 : Advan ced W AN Port options Connec t ion validation  Health Check – If disa bled, the Alive I ndicat or C heck is not perform ed. The default is enabled. Health checking is performed by ICMP echo request and HTTP packets to the specified destination that could be eithe r: the Nam e or [...]

  • Página 21

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 Transparant b ridge option  Bridge Mode – If set to Enable, this WAN port does not use NAT or the Load Balance function when both the LAN and WAN have real IP addresses on the same network segment.  NetBIOS Broadcast – T his function a llows you to access files through Microsof t Netw[...]

  • Página 22

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 The screen is required in order to use multiple PPPoE sessions on the same WAN port. I t can also be used to manually connect or disconnect a PP PoE sessi on. Advanced W AN – PPPoE Select WAN port & S ession WAN Port – Selected W AN port using t he PPPoE connection PPPoE Session – Usu[...]

  • Página 23

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 Advanced WAN PPTP Advanced WAN WAN P ort - Select the desired WAN port (click desired WAN on Connection Status). The data of the selected port will then be displayed in the W AN IP Account se ction. PPTP MTU – Max imum transfer unit for PP TP. The default valu e is 1 460 WAN IP Account  Us[...]

  • Página 24

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 5 : A d vanced Configuration Advanced configuration – Host IP This feature is used in the following si tuations:  You have Multi- Session PPPoE, and wish to bind e ach session to a pa rticular PC on y our LAN.  You wish to use the Access Fi lter feature. This requires that each PC is id[...]

  • Página 25

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966  Reserve in DHCP – Select Enable to reserve a particular ( LAN) IP address for a particular PC on your LAN. This allows the PC to use DH CP (Windows calls this " obtain an IP address automatically") while having an IP address that never changes.  Reserved IP A ddre ss – Ente[...]

  • Página 26

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 Advanced configuration – Routing Routing This section is onl y relevant if your LAN h as other Rout ers or Gat eways.  If you don't have other Routers or Gateways on y our LAN, you can ignore the Static Routing page completely .  If your LAN has other Gateways and Routers, you must[...]

  • Página 27

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966  Gateway – Th e IP Address of the G ateway or Router that the Dual W AN VPN Firewall must use to communicate with the destination above. (NOT the router attached to the remote segment.)  Interface – Select the correct int erface, usually "LAN". The "WAN" interface [...]

  • Página 28

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 For Router A 's Default Route Destination I P 0.0.0.0 Address Network Mask 0.0.0.0 Gateway IP Address 192.168.1.1 Metric 2 For Router B's Defaul t Route Destination I P 0.0.0.0 Address Network Mask 0.0.0.0 Gateway IP 192.168.2.80 Address Interface LAN Metric 3 Virtual Server This feat[...]

  • Página 29

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 Web Server (192.168.1.45) PC using FT P Server (ftp://205.20.45.34) FTP Server (192.168.1.20) 205.20 .4 5.34 (W AN) 192.168.1.1 (L AN) PC using Web Se rver (http://205.20.45.34) Multi- W A N V PN Link Balancer Note that, in this illustration, both Internet users are connecting to the same IP Ad[...]

  • Página 30

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 Advanced configuration – v irtual server Virtual Server C onfiguration  Enable – The enable check box enables or disables each Virtual server as required.  Server Name – Enter a nam e for t h is server. (By default, t here are 12 well - known virtual servers on the C ustom Virtual S[...]

  • Página 31

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966  Update – Save any chang es you have m ade t o the current ent ry.  Cancel – Cancel any chang es you have made since the la st save operation. Virtual Server List - This table shows the d etail for all Cu stom Virtual Serv er configuration da ta. You can modify this configuration data[...]

  • Página 32

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 Advanced configuration - Special Application If you use Internet applications that use non -standard connections or port numbers, you may find that the y do not function correctl y because the y are bl ocked b y the Dual WAN VPN Firewall. In this case, you must define the application as a "[...]

  • Página 33

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 Special A pplicati on List - This list shows the details fo r all currently defined Special App lications. You can modify its configuration d ata by mouse clicki ng the appropriate row. Using a Special A pplication on your PC  When the Special Appli cations screen is configured correctly, yo[...]

  • Página 34

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 Dynamic DNS Service This pull -down menu can Enable/Disable the D ynamic DNS feature, and select the required service provider.  Dis able – Dynamic DNS is not used.  TZO – Select this to use the TZO service (www.tzo.com). You must configure the TZO section of this screen.  DynDNS ?[...]

  • Página 35

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 Advanced Configuration - Multi DMZ This feature allows each WAN port I P address to be associated with one ( 1) computer on your LAN. All outgoing traffic from tha t PC will be asso ciated with that W AN port I P address. Any traffic sent to that I P address will be forwarded to the specified P[...]

  • Página 36

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 Advanced Configuration - UPnP Setup With the UPnP ( Universa l Plug & Play) function, it is ea sy to setup and configure an entire network to enable discovery and control of networked dev ices and services. UPnP Option - If UPnP is enabled, then this device will become one of the local netw[...]

  • Página 37

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 Advanced Co nfiguration – N A T Setti ng NAT Configuration  NAT Routing – You can enable or disabl e NAT by using the checkbox. If you disable the NAT checkbox, it will act as a bridge or Static Router. Most fe atures will be unavailable.  TCP Timeout – Enter the desired value to us[...]

  • Página 38

    H otBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 Advanced Co nfiguration – Advanced Featu re External Filters Conf iguration  IDENT Port – Port 113 is associated with the Internet's (Identification / Authentication) service. When a cl ient program in your com put er contacts a rem ote server for services such as POP, IMAP, SMTP, [...]

  • Página 39

    HotBrick, T el: 305 - 398 - 0888, Fax: 305 - 398 - 5966 settings to correct the problem.  Enable - If enabled, the WAN port you specify will be used for all outgoing SMTP traffic. If disabled, either WAN port will be used.  WAN – Select the desired WAN por t to be bound. Protocol and Port Bi ndings - Use these settings if you wish to ensure[...]

  • Página 40

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 6 – Security Management Security Management – Block URL This feature allows you to block access to undesirable Web sites. You can block by URL, IP address, or Keyword. You can a lso have different blocking setti ngs for different groups of PCs.  Every URL is searched to see if it matches[...]

  • Página 41

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 Security M anag ement – A cc ess Filter The network administrator can use the A ccess Filter to control the Internet access and applications available to LAN users.  Five (5) user groups a re available, and each g roup can have different acc ess rights.  All PCs (users) are in t he Defa[...]

  • Página 42

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 Port Blocking – T here are two possible settings :  No Filtering - all ports are open  Block A ll A ccess – All ports are closed. When you m ake a new rule, the port w ill be opened for that entry (maximum number of r ules you enter are 50 ).  Filter Name – Enter a meaningful nam[...]

  • Página 43

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 Security M anagement – S y stem Filter Exeption Sysfilter exception - Sy stem Filter Exception – will reject ever y pa cket wit h an unrecognized port to avoid port s can programs run by hacker s but thi s also incurs problems when servers (e.g. SMTP server port 113) or clients from the WAN[...]

  • Página 44

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 7 : VPN Configuration Virtual Private Network (VPN) uses encr yption and authentication to create the connection between two end points (computers or networks). It a llows p rivate data to be sent securel y over a public network or Internet without t he risk of unauthorized access from outside [...]

  • Página 45

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 VPN Configuration – Tunnel to HotBrick Unit  VPN Tunnel List – here you can add a new tunnel or chang e an existing one from the list. The router allows a maximum of 50 tunnels.  Tunnel Name– In order to disting uish the tunnels, y ou have to give the “ Tunnel ” a unique nam e. [...]

  • Página 46

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 Tunnel to HotBr ick Client – This describes an I PSec tunnel from a th e VPN 1400/2 to t he H otBrick Client Software.  VPN Tunnel List– allows you to add a new tunne l or change an existi ng one on the list . The router ca n support a maximum of 50 tunnels .  Tunnel Name– In order [...]

  • Página 47

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 596 6  Tunnel Name– In order to disting uish the tunnel, you hav e to give the “ T unnel ” a unique nam e .  PPPoE Session – If you are using PPPoE to m ake the connection, and your ISP offers multiple PPPoE session s , you can select these PPPoE sessions to constru c t VPN tunnels. ?[...]

  • Página 48

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 Key management  Key – Key Type : there are two k ey types (manual key and auto key) availabl e for key exchange manag ement.  Manual Key: I f m anual key is selected, no key negotiation is needed.  A utoKe y (IKE)- There are two types of op eration modes that can be used.  Main mo[...]

  • Página 49

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 IPSec policy options  Tunnel Attribute – The defined attributes for the tunnel .  Dead Peer Detection - T his setting allows you to use a WAN port for ba ckup or for W AN failover in the event of a connection failure.  Check Method – You can c hoose ICMP, Heartbeat or DPD protocol.[...]

  • Página 50

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966  Set DF Flag - If this DF ( Do not Fragm ent) flag is set, it means the fragm entation of this packet at the IP level is not permitted. VPN configuration – VPN preset  ISAkmp Port– Internet Security Association and Key Protocol Managem ent (ISAkmp) is designed t o negotiate, establish[...]

  • Página 51

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 VPN Configuration – SA List VPN configuration – SA list The list will display the details of all Policy Se tup configuration data th at you have setup. You c an modify it by mouse- clicking each row . 51[...]

  • Página 52

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 VPN Configuration – VPN Log You can monitor the VPN status through the VPN log web page. The log level (priority) can be chosen from VPN IKE Global Setting web page. Message Status  Time – This indicates when this message i s created using the system t ime.  Priority – It This indic[...]

  • Página 53

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 8: QoS Configuration QoS Configuration – overview The Dual WAN VPN Firew all provides QoS, which supports high quality network service. B y prioritizing outgoing packets based on user - def ined pol icies, t he Quality of Service feature can result in real - time applications achieving better[...]

  • Página 54

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 QoS Configuration – QoS Setup QoS Setup QoS Feature  Enable QoS – This w ill allow u sers t o enable the QoS function.  Queuing Method - The m ethod used to manage your queue. Priority queuing is one of the first queuing solution s to be wi de ly implemented. IP TOS  Process TOS Fi[...]

  • Página 55

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966  Policy Name List – When adding a new Policy, ignore this list. To edit an existing entry, se lect i t from the list and then click the "Select" button. The data fields will be updated with data for the selected entry.  Policy Name – Enter a suitable name. Generally, you sho[...]

  • Página 56

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 9 : M anagement Assistant Management ass istant – Admin Pass w ord Enter the desired password, re-enter it in t he Verify Pa ssword field, then save it. When you connect to the Load Balancer with your Browser, you will be prompted for the password as shown below.  Enter "Admin" f[...]

  • Página 57

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 Management A ssis tant – Email Alert This feature will send a warning Email to inform the s ystem administrator that one of the WAN ports is disconnected. Enable/Disable E mail Alert  Enable – This enab les Email Alert to send a warn ing email when a WAN port d isconnect s.  Disable ?[...]

  • Página 58

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966  Ping Before Notification - A threshold value f or the maximum Ping s all owed to each interface on this device in a minute. The valid v alues range from 0 to 9999. Management A ssistant – SNMP This section is only useful if you have SNMP(Simple Network Managem ent Protocol) software on a [...]

  • Página 59

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 Management A sssi stant – Syslog This feature can send real time system information on the web page or to the specified PC . Syslog Delivery  Sending out – Check this, if y ou want to send syslog messages to an other machine.  Keep Sen t messages – Check this if y ou want to keep se[...]

  • Página 60

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 Management Assistant - U pgrade Firmware  [...]

  • Página 61

    HotBrick, Tel: 305 - 398 - 0888, Fax: 30 5 - 398 - 5966 10: Device Status Once both the Dual WAN VPN Firewall and the PCs are configured, operation is automatic. However, some additional Internet configuration may be r equired for your specific network . Refer to Chapter 6 - A dvanced Features for further details. Device status – Sy stem s tatus [...]

  • Página 62

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966  DHCP Server – The status of the DHCP Server function - either "Enabled" or "Disabled". Device Status - WA N status NAT Statistics This section displays data for each WAN port.  Connection status – This wil l di splay either Con nected or Not Connected.  Default[...]

  • Página 63

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 Data – N A T Status LAN IP info  IP Address – The LAN IP Address of the Dual WAN VPN Firewall.  Mask A ddress – The Network Mask (Subnet Mask) for the IP Address above. Active WAN IP Info – There is one (1) row for each active connection. The following data is displayed for each c[...]

  • Página 64

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 Device informatio n – D evice Information Device Information  Firmware Ve rsion – Version of the Firmware currentl y installed.  NAT – Status of the NAT feature – either “ Enab l e ” or “ Disable ” .  Load Balance – Status of t he Lo ad Balance fea ture –either “ [...]

  • Página 65

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 If the "Restore Default V alue" button on this screen is clicked:  A ll your current s ettings will be erased.  The default I P address, password and A LL other settings will be restored to the factory default values.  The DCHP s erver function will be enabled. These changes [...]

  • Página 66

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 Append ix A Specifications Model HotBrick VPN 1400/2 Dual WAN Firewall Dimensions 120mm (W) x 427mm (D) x 43.4mm (H) Operating 0° C to 40 ° C Temperature Storage -10° C to 70 ° C Temperature Network protocol TCP/IP Protocol: Network Interfaces 16 Ethernet: 14 * 10/100BaseT (RJ45) a uto -Swi[...]

  • Página 67

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 Append ix B Windows T CP/IP Setup Overvie w TCP/IP Settings If using the default Load Balancer s ettings, and the d efault Windows 95/98 /ME/2000 settings, no c hanges need to be made.  By default, the Dual WA N VPN Firewall will act as a DHCP Server, auto matically providing a suitable IP A[...]

  • Página 68

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 Ensure your TCP/IP settings are correct, as follows: Using DHCP To use DHCP, select the radio button Obtain a n IP Address auto matically. This is the default Windows settings. Restart your PC to ensu re it obtains an I P Address from the VPN 1400/2 Firewall Router. Using "Specify an IP A [...]

  • Página 69

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966  On the DNS Configuration tab, ensure Enable DNS is select ed. If th e DNS Server Search Order list is empty, enter the D NS address provid ed by your I SP in the fields beside the Add button, then click Add. Checking TCP/IP S ettings - Window s 2000: 6. Select Control Panel - Network and Di[...]

  • Página 70

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 Figure B - 6: TC P/IP Propert ies (Win 2000 )  Ensure your TCP/IP settings are correct. Using DHCP To use DHCP, select the radio button Obtain an IP A ddress automatically. This is the default Windows setting. Restart your PC to ensure it obtains an I P Address from the Dual WAN VPN Firewall[...]

  • Página 71

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 Checking TCP/IP S ettings - Window s XP: 7. Select Control Pane l - Network Connection.  Right click the Local Area Connection and choose Properties. You shoul d see a screen like the following: Figure B - 7: N etwork Conf iguration (Windows XP)  Select the TCP/IP protocol for your networ[...]

  • Página 72

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 Figure B - 8: TCP/IP P roperties (Window s XP)  Ensure your TCP/IP settings are correct. Using DHCP To use DHCP, select the radio button obtain an IP A ddress automatically. This is the default Windows setting. Restart your PC to ensure it obtains an IP Address from the Multi -WAN VPN Link B[...]

  • Página 73

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 Append ix C Troubleshooting Overvie w This chapter covers som e common problem s that may be encountered while using the Dual WAN VPN Firewall and some possible solutions for them . If you follow the suggested steps and the Dual WAN VPN Firewall still does not function properly, contac t your d[...]

  • Página 74

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 Append ix D : IPSec Tunnel Examples VPN Configurat ion – Examples Tunnel to HotB rick Unit The HotBrick units in the fol lowing example use registered IP addresses. You have to replace these addresses with I P addresses that are av ailable t o you. These setting s ar e only possible if you ha[...]

  • Página 75

    HotBrick, Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 First we will m ake settings in the VPN 1400/2 Next we will m a ke settings for the LB-2 VPN Note : you need d ifferent subnets a t both ends of the t unnel. This is because th e IPSec tun nel will conne ct the two subnets so t hey need to be different in order to avoid IP address conflicts. Th[...]

  • Página 76

    HotBrick , Tel: 305 - 398 - 0888, Fax: 305 - 398 - 5966 76[...]