Trendnet Tw100-brv324 User manual

Table of Contents

CHAPTER 1 INTRODUCTION .............................................................................................1

Broadband VPN Gateway Features ................................................................................1

Package Contents ..............................................................................................................3

Physical Details..................................................................................................................4

CHAPTER 2 INSTALLATION...............................................................................................6

Requirements.....................................................................................................................6

Procedure...........................................................................................................................6

CHAPTER 3 SETUP ................................................................................................................8

Overview ............................................................................................................................8

Configuration Program ....................................................................................................9

WAN Port Configuration ...............................................................................................12

Port Options Screen........................................................................................................14

LAN Port Screen .............................................................................................................16

Load/Backup Screen.......................................................................................................18

CHAPTER 4 PC CONFIGURATION..................................................................................20

Overview ..........................................................................................................................20

Windows Clients..............................................................................................................20

Macintosh Clients............................................................................................................33

Linux Clients....................................................................................................................33

Other Unix Systems.........................................................................................................33

CHAPTER 5 OPERATION AND STATUS.........................................................................34

Operation.........................................................................................................................34

Status Screen....................................................................................................................34

Port Status........................................................................................................................37

Event Log.........................................................................................................................38

URL Log...........................................................................................................................39

System Log.......................................................................................................................40

CHAPTER 6 INTERNET FEATURES................................................................................41

Overview ..........................................................................................................................41

Address List.....................................................................................................................42

PC Database.....................................................................................................................43

URL Filter........................................................................................................................45

Dynamic DNS...................................................................................................................47

Static Routing..................................................................................................................49

QoS ...................................................................................................................................54

CHAPTER 7 SECURITY CONFIGURATION...................................................................56

Overview ..........................................................................................................................56

Rules.................................................................................................................................56

Schedules..........................................................................................................................60

Firewall -- Log .................................................................................................................61

Services.............................................................................................................................63

Security.............................................................................................................................64

DMZ .................................................................................................................................66

E-Mail...............................................................................................................................67

CHAPTER 8 VPN (IPSEC)....................................................................................................69

Overview ..........................................................................................................................69

Common VPN Situations................................................................................................71

VPN Configuration .........................................................................................................73

VPN Examples.................................................................................................................81

Certificates.......................................................................................................................99

CRL ................................................................................................................................103

VPN Status.....................................................................................................................104

Add Certificate .................................................................... Error! Bookmark not defined.

Get Certificate ID................................................................ Error! Bookmark not defined.

CHAPTER 9 MICROSOFT VPN .......................................................................................105

Overview ........................................................................................................................105

Server Setup...................................................................................................................105

User.................................................................................................................................106

Status Log Screen..........................................................................................................108

Windows Client Setup...................................................................................................109

CHAPTER 10 OTHER FEATURES & SETTINGS .........................................................117

Overview ........................................................................................................................117

Diagnostics.....................................................................................................................118

Password Screen............................................................................................................120

Web Management .........................................................................................................121

Firmware Upgrade........................................................................................................123

Backup/Restore..............................................................................................................124

APPENDIX A TROUBLESHOOTING..............................................................................126

Overview ........................................................................................................................126

General Problems..........................................................................................................126

Internet Access...............................................................................................................126

APPENDIX B SPECIFICATIONS......................................................................................128

Broadband VPN Gateway............................................................................................128

FCC Statement ..............................................................................................................128

CE Marking Warning...................................................................................................129

P/N: 956YH10001

Document Version:1.0

All trademarks and trade names are the properties of their respective owners.

Chapter 1

Introduction

This Chapter provides an overview of the Broadband VPN Gateway's features and capabilities.

Congratulations on the purchase of your new Broadband VPN Gateway. The Broadband VPN Gateway is a multi-function device

providing the following services:

•Shared Broadband Internet Access for all LAN users.

•VPN Gateway for IPSec VPN connections to remote PCs or sites.

•4-Port Switching Hub for 10BaseT or 100BaseT connections.

Figure 1: Broadband VPN Gateway

Broadband VPN Gateway Features

The Broadband VPN Gateway incorporates many advanced features, carefully designed to provide sophisticated functions while

being easy to use.

Internet Access Features

•Shared Internet Access. All users on the LAN or WAN can access the Internet through the Broadband VPN Gateway, using

only a single external IP Address. The local (invalid) IP Addresses are hidden from external sources. This process is called NAT

(Network Address Translation).

•Dual WAN Support. Dual 10/100 WAN ports let you have a second link to your ISP, providing failover protection. You can

use both WAN ports simultaneously, and let the router balance the requirements between them for maximum bandwidth efficien-

cy.

•Fixed or Dynamic IP Address. On the Internet (WAN port) connection, the Broadband VPN Gateway supports both Dynamic

IP Address (IP Address is allocated on connection) and Fixed IP Address.

Advanced Internet Functions

•Communication Applications. Support for Internet communication applications, such as interactive Games, Telephony, and

Conferencing applications, which are often difficult to use when behind a Firewall, is included.

•Special Internet Applications. Applications which use non-standard connections or port numbers are normally blocked by the

Firewall. The ability to define and allow such applications is provided, to enable such applications to be used normally.

Broadband VPN Gateway User Guide

•Virtual Servers. This feature allows Internet users to access Internet servers on your LAN. The required setup is quick and

easy.

•Multi-DMZ. For each WAN (Internet) IP address allocated to you, one (1) PC on your local LAN can be configured to allow

unrestricted 2-way communication with Servers or individual users on the Internet. This provides the ability to run programs

which are incompatible with Firewalls.

•Address List. Use address list to block access to undesirable Web sites by LAN users. Up to 40 addresses can be listed.

•IM/P2P Control. The IM/P2P control allows you to better manage your employees’ network activities and prevent possible

misuse of IM and P2P applications.

•URL Filter. Use the URL Filter to block access to undesirable Web sites by LAN users.

•Internet Access Log. See which Internet connections have been made.

•VPN Pass through Support. PCs with VPN (Virtual Private Networking) software using PPTP, L2TP and IPSec are transpa-

rently supported - no configuration is required.

•QoS Support Quality of Service can be used to handle packets so that more important connections receive priority over less

important one.

LAN Features

•4-Port Switching Hub. The Broadband VPN Gateway incorporates a 4-port 10/100BaseT switching hub, making it easy to

create or extend your LAN.

•DHCP Server Support. Dynamic Host Configuration Protocol provides a dynamic IP address to PCs and other devices upon

request. The Broadband VPN Gateway can act as a DHCP Server for devices on your local LAN and WAN.

Configuration & Management

•Easy Setup. Use your WEB browser from anywhere on the LAN or WAN for configuration.

•Remote Management. The Broadband VPN Gateway can be managed from any PC on your LAN. And, if the Internet connec-

tion exists, it can also (optionally) be configured via the Internet.

•UPnP Support. UPnP (Universal Plug and Play) allows automatic discovery and configuration of the Broadband VPN Gate-

way. UPnP is by supported by Windows ME, XP, or later.

•Multi-Language Support. Multi-Language Pack facilitates the process of creating multi-language applications. Add support

for as many languages as you like.

•Configuration File Backup & Restore. You can backup (download) the Broadband VPN Gateway's configuration file to

your PC, and restore (upload) a previously-saved configuration file to the Broadband VPN Gateway.

Introduction

Security Features

•Password - protected Configuration. Optional password protection is provided to prevent unauthorized users from modifying

the configuration data and settings.

•NAT Protection. An intrinsic side effect of NAT (Network Address Translation) technology is that by allowing all LAN users

to share a single IP address, the location and even the existence of each PC is hidden. From the external viewpoint, there is no

network, only a single device - the Broadband VPN Gateway.

•NATT (NAT-Traversal). NAT Traversal is a method to allow IPSec to work through NAT devices. It is encapsulating IPsec

ESP packets into UDP packets for passing through routers or firewalls employing Network Address Translation (NAT).

•Stateful Inspection Firewall. All incoming data packets are monitored and all incoming server requests are filtered, thus

protecting your network from malicious attacks from external sources.

•IP/MAC Binding. Users cannot change the IP address unless they have the permission of the IT manager.

•Protection against DoS attacks. DoS (Denial of Service) attacks can flood your Internet connection with invalid packets and

connection requests, using so much bandwidth and so many resources that Internet access becomes unavailable. The Broadband

VPN Gateway incorporates protection against DoS attacks.

•Rule-based Policy Firewall. To provide additional protection against malicious packets, you can define your own firewall

rules. This can also be used to control the Internet services available to LAN users.

IPSec VPN Gateway Features

•IPSec. Support for IPSec standards, including IKE and certificates.

•100 Tunnels. Up to 100 VPN tunnels can be created.

•High performance. High performance encryption engine maintains high throughput even when using 3DES.

•DPD Support Dead Peer Detection is a method of detecting a dead Internet Key Exchange (IKE) peer. The method uses IPSec

traffic patterns to minimize the number of messages required to confirm the liveness of a peer. DPD is used to reclaim the lost re-

sources in case a peer is found dead.

Microsoft VPN Gateway Support

•PPTP Server. The Broadband VPN Gateway emulates a Microsoft PPTP VPN Server, allowing clients to use the Microsoft

VPN client provided in Windows.

•Windows Client Support. Remote users can use the Microsoft VPN client (VPN Adapter) provided in recent versions of

Windows.

•Easy Setup. For both the Administrator and remote users, the Microsoft VPN is much easier to configure than IPSec VPN.

Package Contents

The following items should be included:

•The Broadband VPN Gateway Unit

•Power Adapter

•Quick Installation Guide

•CD-ROM containing the on-line manual.

If any of the above items are damaged or missing, please contact your dealer immediately.

Broadband VPN Gateway User Guide

Physical Details

Front-mounted LEDs

Figure 2: Front Panel

Power On - Power on.

Off - No power.

Status (Red) On - Error condition.

Off - Normal operation.

Blinking - This LED blinks during start up.

WAN ports

(10/100BaseT) Connect the DSL or Cable Modem here. If your modem came with a

cable, use the supplied cable. Otherwise, use a standard LAN cable.

LAN Each port has 2 LEDs

•Link/Act

•On - Corresponding LAN (hub) port is active.

•Off - No active connection on the corresponding LAN (hub)

port.

•Flashing - Data is being transmitted or received via the corres-

ponding LAN (hub) port.

•100

•On - Corresponding LAN (hub) port is using 100BaseT.

•Off - Corresponding LAN (hub) port connection is using

10BaseT, or no active connection.

WAN LED On - Wireless enabled.

Off - No Wireless connections currently exist.

Flashing - Data is being transmitted or received via the Wireless access

point. This includes "network traffic" as well as user data.

Introduction

Rear Panel

Figure 3: Rear Panel

WAN port 1/2

(10/100BaseT) Connect the DSL or Cable Modem here. If your modem came with a

cable, use the supplied cable. Otherwise, use a standard LAN cable.

10/100BaseT

LAN connections Use standard LAN cables (RJ45 connectors) to connect your PCs to

these ports.

Note:

Any LAN port on the Broadband VPN Gateway will automatically

function as an "Uplink" port when required. Just connect any port to

a normal port on the other hub, using a standard LAN cable.

Console Port Use the supplied cable to connect the router to a terminal or PC.

Reset Button This button has two (2) functions:

•Reboot. When pressed and released, the Broadband VPN

Gateway will reboot (restart).

•Clear All Data. This button can also be used to clear ALL data

and restore ALL settings to the factory default values.

To Clear All Data and restore the factory default values:

1. Power Off.

2. Hold the Reset Button down while you Power On.

3. Keep holding the Reset Button for a few seconds, until the RED

LED has flashed TWICE.

4. Release the Reset Button. The Broadband VPN Gateway is now

using the factory default values.

Power port Connect the supplied power adapter here.

Chapter 2

Installation

This Chapter covers the physical installation of the Broadband VPN Gateway.

Requirements

•Network cables. Use standard 10/100BaseT network (UTP) cables with RJ45 connectors.

•TCP/IP protocol must be installed on all PCs.

•For Internet Access, an Internet Access account with an ISP, and a Broadband modem (usually, DSL or Cable modem).

Procedure

Figure 4: Installation Diagram

1. Choose an Installation Site

Select a suitable place on the network to install the Broadband VPN Gateway.

Ensure the Broadband VPN Gateway and the DSL/Cable modem are powered OFF.

2. Connect LAN Cables

•Use standard LAN cables to connect PCs to the Switching Hub ports on the Broadband VPN Gateway. Both 10BaseT and

100BaseT connections can be used simultaneously.

•If required, you can connect any LAN port to another Hub. Any LAN port on the Broadband VPN Gateway will automatically

function as an "Uplink" port when required. Just connect any LAN port to a normal port on the other hub, using a standard LAN

cable.

3. Connect WAN Cable

Connect the Broadband modem to the WAN port on the Broadband VPN Gateway. Use the cable supplied with your Broadband

modem. If no cable was supplied, use a standard LAN cable.

4. Power Up

•Power on the Broadband modem.

•Connect the supplied power adapter to the Broadband VPN Gateway and power up.

Use only the power adapter provided. Using a different one may cause hardware damage.

Other manuals for TW100-BRV324

Table of contents

Other TRENDnet Gateway manuals

TRENDnet

TRENDnet TVP-221H User manual

TRENDnet

TRENDnet TVP-221H User manual

TRENDnet

TRENDnet TPE-105i User manual

TRENDnet

TRENDnet TVP-224HR User manual

TRENDnet

TRENDnet TEW-734APO User manual

TRENDnet

TRENDnet TVP-221H User manual

Popular Gateway manuals by other brands

Telecom FM

Telecom FM onestream gfx Programming guide

UfiSpace

UfiSpace LoRa GPE810U Quick setup guide

Merak

Merak MMk-736F Quick setup guide

Robustel

Robustel R3010 user guide

turck

turck BL20-PG-EN-V3 user manual

IBM

IBM Security Web Gateway Appliance quick start guide

SSS Siedle

SSS Siedle Smart Gateway Commissioning instructions

ADTRAN

ADTRAN 424RG Installation

Chorus

Chorus Hyperfibre XGS-250WX-A user guide

Dragino

Dragino G308 user manual

Data Domain

Data Domain DD690g Installation and setup guide

Raritan

Raritan Laptop Release notes

Haivision

Haivision Torpedo quick start guide

ATCOM

ATCOM AG-268 user manual

LST

LST M500RFE-AS Specification sheet

Vega

Vega VEGA BS-3 user manual

Kinnex

Kinnex Media Gateway quick start guide

2N Telekomunikace

2N Telekomunikace 2N StarGate user manual

TRENDnet TW100-BRV324 User manual

Popular Gateway manuals by other brands