Draytek Vigor 2955 Guia do Utilizador

Consulte online ou descarregue Guia do Utilizador para Firewalls de hardware Draytek Vigor 2955. Draytek Vigor 2955 Manual do Utilizador

  • Descarregar
  • Adicionar aos meus manuais
  • Imprimir

Resumo do Conteúdo

Página 2

Vigor2955 User’s Guide x

Página 3 - User’s Guide

Vigor2955 User’s Guide 9033..88 AApppplliiccaattiioonnss Below shows the menu items for Applications. 33..88..11 DDyynnaammiicc DDNNSS The ISP

Página 4 - Copyright Information

Vigor2955 User’s Guide 91Active Display if this account is active or inactive. View Log Display DDNS log status. Force Update Force the router upd

Página 5 - Regulatory Information

Vigor2955 User’s Guide 9233..88..22 SScchheedduullee The Vigor router has a built-in real time clock which can update itself manually or automatica

Página 6

Vigor2955 User’s Guide 93Start Date (yyyy-mm-dd) Specify the starting date of the schedule. Start Time (hh:mm) Specify the starting time of the s

Página 7

Vigor2955 User’s Guide 9433..88..33 RRAADDIIUUSS//LLDDAAPP Remote Authentication Dial-In User Service (RADIUS) is a security authentication client/

Página 8

Vigor2955 User’s Guide 95Common Name Identifier Type or edit the common name identifier for the LDAP server. The common name identifier for most LDA

Página 9

Vigor2955 User’s Guide 96The UPnP facility on the router enables UPnP aware applications such as MSN Messenger to discover what are behind a NAT rout

Página 10 - Vigor2955 User’s Guide

Vigor2955 User’s Guide 97 Wake by Two types provide for you to wake up the binded IP. If you choose Wake by MAC Address, you have to type the correc

Página 11

Vigor2955 User’s Guide 9833..99 VVPPNN aanndd RReemmoottee AAcccceessss A Virtual Private Network (VPN) is the extension of a private network th

Página 12

Vigor2955 User’s Guide 99LAN-to-LAN Profile When you finish the mode and profile selection, please click Next to open the following page. In thi

Página 13 - Power Switch

Vigor2955 User’s Guide 11 PPrreeffaaccee The Vigor2950 series router provides Dual-WAN interface (which is a configuration second WAN) for Internet

Página 14

Vigor2955 User’s Guide 100 z When you choose IPSec, you will see the following graphic: z When you choose L2TP, you will see the following graph

Página 15

Vigor2955 User’s Guide 101 z When you choose L2TP over IPSec (Nice to Have), you will see the following graphic: z When you choose L2TP over IPS

Página 16

Vigor2955 User’s Guide 102 Profile Name Type a name for such profile. The length of the file is limited to 10 characters. VPN Dial-Out Through

Página 17

Vigor2955 User’s Guide 103such as L2TP over IPSec and IPSec tunnel. Pre-Shared Key- Specify a key for IKE authentication Confirm Pre-Shared Key-Con

Página 18

Vigor2955 User’s Guide 104 Go to the VPN Connection Management Click this radio button to access VPN and Remote Access>>Connection Management f

Página 19

Vigor2955 User’s Guide 105Selection Site to Site VPN/Remote Dial-in User – To set a LAN-to-LAN profile automatically, please choose Site to Site VPN.

Página 20

Vigor2955 User’s Guide 106page. After making the choices for the server profile, please click Next. You will see different configurations based on th

Página 21

Vigor2955 User’s Guide 107 Profile Name Type a name for such profile. The length of the file is limited to 10 characters. User Name This field

Página 22

Vigor2955 User’s Guide 108Remote Network IP Please type one LAN IP address (according to the real location of the remote host) for building VPN conn

Página 23

Vigor2955 User’s Guide 109 The Vigor router will not accept the ISDN dial-in connection if the box of Enable ISDN Dial-in is not checked. 33..99..44

Página 24

Vigor2955 User’s Guide 211..22 LLEEDD IInnddiiccaattoorrss aanndd CCoonnnneeccttoorrss Before you use the Vigor router, please get acquainted wi

Página 25

Vigor2955 User’s Guide 110use 40-bit to perform encryption prior to using 128-bit for encryption. In other words, if 128-bit MPPE encryption method i

Página 26

Vigor2955 User’s Guide 111 IKE Authentication Method This usually applies to those are remote dial-in user or node (LAN-to-LAN) which uses dynamic

Página 27

Vigor2955 User’s Guide 112 Set to Factory Default Click it to clear all indexes. Index Click the number below Index to access into the setting page

Página 28

Vigor2955 User’s Guide 113Accept Subject Alternative Name Click to check one specific field of digital signature to accept the peer with matching val

Página 29 - Internet

Vigor2955 User’s Guide 11433..99..77 RReemmoottee DDiiaall--iinn UUsseerr You can manage remote access by maintaining a table of remote user prof

Página 30

Vigor2955 User’s Guide 115 Enable this account Check the box to enable this function. Idle Timeout- If the dial-in user is idle over the limitation

Página 31

Vigor2955 User’s Guide 116SSL Tunnel It allows the remote dial-in user to make an SSL VPN Tunnel connection through Internet, suitable for the appli

Página 32

Vigor2955 User’s Guide 117VPN>> SSL Web Proxy to set profiles. If you have set several profiles beforehand, you can check SSL Web Proxy and

Página 33

Vigor2955 User’s Guide 118remote node. The only exception is Digital Signature (X.509) can be set when you select IPSec tunnel either with or without

Página 34

Vigor2955 User’s Guide 119 Set to Factory Default Click to clear all indexes. Name Indicate the name of the LAN-to-LAN profile. The symbol ??? repres

Página 35

Vigor2955 User’s Guide 3 Connecter for a power cord with 100-240VAC (inlet). Power Switch. 11..33 HHaarrddwwaarree IInnssttaallllaattiioonn

Página 36

Vigor2955 User’s Guide 120 Profile Name Specify a name for the profile of the LAN-to-LAN connection. Enable this profile Check here to activate thi

Página 37

Vigor2955 User’s Guide 121WAN2 First - While connecting, the router will use WAN2 as the first channel for VPN connection. If WAN2 fails, the router

Página 38

Vigor2955 User’s Guide 122further set up Callback (CBCP) function below. This feature is useful for i model only. PPTP Build a PPTP VPN connection t

Página 39

Vigor2955 User’s Guide 123Medium (AH, Authentication Header) means data will be authenticated, but not be encrypted. By default, this option is activ

Página 40

Vigor2955 User’s Guide 124 IKE phase 2 proposal-To propose the local available algorithms to the VPN peers, and get its feedback to find a match. Thr

Página 41

Vigor2955 User’s Guide 125here to allow the Vigor router to send the ISDN number to the remote router. This feature is useful for i model only. Allo

Página 42

Vigor2955 User’s Guide 126None - Do not apply the IPSec policy. Accordingly, the VPN connection employed the L2TP without IPSec policy can be viewed

Página 43

Vigor2955 User’s Guide 127Callback number-The option is for extra security. Once enabled, the router will ONLY call back to the specified Callback Nu

Página 44

Vigor2955 User’s Guide 128find there are several subnets behind the remote VPN router. RIP Direction - The option specifies the direction of RIP (

Página 45

Vigor2955 User’s Guide 129¾ Specific ERD (Environment Recovery Detection) mechanism which can be operated by using Telnet command VPN TRUNK-VPN Ba

Página 46

Vigor2955 User’s Guide 411..44 PPrriinntteerr IInnssttaallllaattiioonn You can install a printer onto the router for sharing printing. All the PCs

Página 47

Vigor2955 User’s Guide 130 Backup Profile List Set to Factory Default - Click to clear all VPN TRUNK-VPN Backup mechanism profile. No -The order o

Página 48

Vigor2955 User’s Guide 131Advanced – This button is only available when there is one profile (or more) created in this page. Detailed information fo

Página 49

Vigor2955 User’s Guide 132 Detailed information for this dialog, see later section - Advanced Load Balance and Backup. General Setup Status- After

Página 50

Vigor2955 User’s Guide 133Delete Click this button to delete the selected VPN TRUNK profile. The corresponding members (LAN-to-LAN profiles) grouped

Página 51

Vigor2955 User’s Guide 134expressed in black. HHooww ccaann yyoouu sseett aa GGRREE oovveerr IIPPSSeecc pprrooffiillee?? 1. Please go to L

Página 52

Vigor2955 User’s Guide 135AAddvvaanncceedd LLooaadd BBaallaannccee aanndd BBaacckkuupp After setting profiles for load balance, you can choose a

Página 53

Vigor2955 User’s Guide 136binding tunnel table. Tunnel Bind Table Index- 400 binding tunnel tables are provided by this device. Choose any one of the

Página 54

Vigor2955 User’s Guide 137Detail Information This field will display detailed information for Binding Tunnel Policy. Below shows a successful bindin

Página 55

Vigor2955 User’s Guide 138periodically and type the value for it (the unit is second). If VPN server for Member 1 has completed the network connectio

Página 56

Vigor2955 User’s Guide 13933..99..1100 CCoonnnneeccttiioonn MMaannaaggeemmeenntt You can find the summary table of all VPN connections. You may di

Página 57

Vigor2955 User’s Guide 53. Open File->Add a New Computer. A welcome dialog will appear. Please click Next. 4. Click Local printer attached

Página 58

Vigor2955 User’s Guide 140VPN Load Balance function. Dial Click this button to execute dial out function under General Mode, Backup Mode or Load Ba

Página 59

Vigor2955 User’s Guide 141GENERATE Click this button to open Generate Certificate Signing Request window. Type in all the information that the window

Página 60

Vigor2955 User’s Guide 142IMPORT Vigor router allows you to generate a certificate request and submit it the CA server, then import it as “Local Cert

Página 61

Vigor2955 User’s Guide 143Upload Certificate and Private Key It is useful when users have separated certificates and private keys. And the password i

Página 62

Vigor2955 User’s Guide 144imported will be listed on the Trusted CA Certificate window. Then click Import to use the pre-saved file. For viewing eac

Página 63

Vigor2955 User’s Guide 14533..1100..33 CCeerrttiiffiiccaattee BBaacckkuupp Local certificate and Trusted CA certificate for this router can be sav

Página 64

Vigor2955 User’s Guide 146 Port Such port is set for SSL VPN server. It will not affect the HTTPS Port configuration set in System Maintenance>&g

Página 65

Vigor2955 User’s Guide 147 Name Type name of the profile. URL Type the address (function variation or IP address) or path of the proxy server.

Página 66

Vigor2955 User’s Guide 148Name Display the application name of the profile that you create. Host Address Display the IP address for VNC/RDP or SAMB

Página 67

Vigor2955 User’s Guide 149Scaling Chose the percentage (100%, 80%, 60) for such application. z Remote Desktop Protocol - Choose this item for acces

Página 68

Vigor2955 User’s Guide 66. In the following dialog, type 192.168.1.1 (router’s LAN IP) in the field of Printer Name or IP Address and type IP_192.16

Página 69

Vigor2955 User’s Guide 150 You can find out the link of Set SSL Web Proxy on the profile setting page. If you haven’t set any SSL Web Proxy Profile i

Página 70

Vigor2955 User’s Guide 151 33..1111..55 OOnnlliinnee UUsseerr SSttaattuuss If you have finished the configuration of SSL Web Proxy (server), user

Página 71

Vigor2955 User’s Guide 152 33..1122 SSyysstteemm MMaaiinntteennaannccee For the system setup, there are several items that you have to know the w

Página 72

Vigor2955 User’s Guide 1531st IP Address Display the IP address of the LAN interface. 1st Subnet Mask Display the subnet mask address of the LAN in

Página 73

Vigor2955 User’s Guide 154ACS Server Such data must be typed according to the ACS (Auto Configuration Server) you want to link. Please refer to Vigo

Página 74

Vigor2955 User’s Guide 15533..1122..33 AAddmmiinniissttrraattoorr PPaasssswwoorrdd This page allows you to set new password. Old Password Type i

Página 75

Vigor2955 User’s Guide 156 3. In Save As dialog, the default filename is config.cfg. You could give it another name by yourself. 4. Click Save but

Página 76

Vigor2955 User’s Guide 157RReessttoorree CCoonnffiigguurraattiioonn 1. Go to System Maintenance >> Configuration Backup. The following windo

Página 77

Vigor2955 User’s Guide 158Mail To Assign a mail address for sending mails out. Return-Path Assign a path for receiving the mail from outside. Authe

Página 78

Vigor2955 User’s Guide 15933..1122..66 TTiimmee aanndd DDaattee It allows you to specify where the time of the router should be inquired from. C

Página 79

Vigor2955 User’s Guide 79. Now, your system will ask you to choose right name of the printer that you installed onto the router. Such step can make

Página 80

Vigor2955 User’s Guide 16033..1122..77 MMaannaaggeemmeenntt This page allows you to manage the settings for access control, access list, port setup

Página 81

Vigor2955 User’s Guide 161Set Community Set community by typing a proper name. The default setting is private. Manager Host IP Set one host as the

Página 82

Vigor2955 User’s Guide 16233..1122..99 FFiirrmmwwaarree UUppggrraaddee Before upgrading your router firmware, you need to install the Router Too

Página 83

Vigor2955 User’s Guide 16333..1133 DDiiaaggnnoossttiiccss Diagnostic Tools provide a useful way to view or diagnose the status of your Vigor router

Página 84

Vigor2955 User’s Guide 16433..1133..22 RRoouuttiinngg TTaabbllee Click Diagnostics and click Routing Table to open the web page. Refresh Click i

Página 85

Vigor2955 User’s Guide 16533..1133..44 DDHHCCPP TTaabbllee The facility provides information on IP address assignments. This information is helpfu

Página 86

Vigor2955 User’s Guide 166#Pseudo Port It indicates the temporary port of the router used for NAT. Peer IP:Port It indicates the destination IP add

Página 87

Vigor2955 User’s Guide 167Refresh Seconds Use the drop down list to choose the time interval of refreshing data flow that will be done by the system

Página 88

Vigor2955 User’s Guide 16833..1133..77 TTrraaffffiicc GGrraapphh Click Diagnostics and click Traffic Graph to pen the web page. Choose WAN1 Bandwi

Página 89

Vigor2955 User’s Guide 16933..1133..88 PPiinngg DDiiaaggnnoossiiss Click Diagnostics and click Ping Diagnosis to pen the web page. Ping through

Página 90

Vigor2955 User’s Guide 8 Note 1: Some printers with the fax/scanning or other additional functions are not supported. If you do not know whether your

Página 91

Vigor2955 User’s Guide 17033..1133..99 TTrraaccee RRoouuttee Click Diagnostics and click Trace Route to open the web page. This page allows you to

Página 92

Vigor2955 User’s Guide 17133..1144 SSuuppppoorrtt AArreeaa When you click the menu item under Support Area, you will be guided to visit www.drayte

Página 93

Vigor2955 User’s Guide 172Click Support Area>>Product Registration, the following web page will be displayed.

Página 94

Vigor2955 User’s Guide 1734 AApppplliiccaattiioonn aanndd EExxaammpplleess 44..11 CCrreeaattee aa LLAANN--ttoo--LLAANN CCoonnnneeccttiioonn

Página 95

Vigor2955 User’s Guide 174 For using IPSec-based service, such as IPSec or L2TP with IPSec Policy, you have to set general settings in IPSec General

Página 96

Vigor2955 User’s Guide 175connection. If a PPP-based service is selected, you should further specify the remote peer IP Address, Username, Passwor

Página 97

Vigor2955 User’s Guide 176connection. Otherwise, it will apply the settings defined in IPSec General Setup above. If a PPP-based service is select

Página 98

Vigor2955 User’s Guide 177 Settings in Router B in the remote office: 1. Go to VPN and Remote Access and select Remote Access Control to enable the

Página 99

Vigor2955 User’s Guide 1783. Go to LAN-to-LAN. Click on one index number to edit a profile. 4. Set Common Settings as shown below. You should enabl

Página 100

Vigor2955 User’s Guide 179Dial-Out connection. 6. Set Dial-In settings to as shown below to allow Router A dial-in to build VPN connection. If an

Página 101

Vigor2955 User’s Guide 92 CCoonnffiigguurriinngg BBaassiicc SSeettttiinnggss For use the router properly, it is necessary for you to change the p

Página 102

Vigor2955 User’s Guide 180 7. At last, set the remote network IP/subnet in TCP/IP Network Settings so that Router B can direct the packets destined

Página 103

Vigor2955 User’s Guide 18144..22 CCrreeaattee aa RReemmoottee DDiiaall--iinn UUsseerr CCoonnnneeccttiioonn BBeettwweeeenn tthhee TTeelleewwo

Página 104

Vigor2955 User’s Guide 182 3. Go to Remote Dial-In Users. Click on one index number to edit a profile. 4. Set Dial-In settings to as shown below t

Página 105

Vigor2955 User’s Guide 183 Settings in the remote host: 1. For Win98/ME, you may use "Dial-up Networking" to create the PPTP tunnel to Vig

Página 106

Vigor2955 User’s Guide 184 You may further specify the method you use to get IP, the security method, and authentication method. If the Pre-Shared K

Página 107

Vigor2955 User’s Guide 185 4. Click Connect button to build connection. When the connection is successful, you will find a green light on the right

Página 108

Vigor2955 User’s Guide 1863. Enter the Name of Index Class 2 by clicking Edit link. In this index, the user will set reserve bandwidth for HTTPS. An

Página 109

Vigor2955 User’s Guide 18744..44 LLAANN –– CCrreeaatteedd bbyy UUssiinngg NNAATT An example of default setting and the corresponding deploymen

Página 110

Vigor2955 User’s Guide 188 You can just set the settings wrapped inside the red rectangles to fit the request of NAT usage.

Página 111

Vigor2955 User’s Guide 18944..55 UUppggrraaddee FFiirrmmwwaarree ffoorr YYoouurr RRoouutteerr Before upgrading your router firmware, you need t

Página 112

Vigor2955 User’s Guide ii

Página 113

Vigor2955 User’s Guide 103. Now, the Main Screen will pop up. 4. Go to System Maintenance page and choose Administrator Password. 5. Enter the

Página 114

Vigor2955 User’s Guide 1905. Double click on the router tool icon. The setup wizard will appear. 6. Follow the onscreen instructions to install

Página 115

Vigor2955 User’s Guide 19110. Click Send. 11. Now the firmware update is finished. 44..66 RReeqquueesstt aa cceerrttiiffiiccaattee ffrroomm aa

Página 116

Vigor2955 User’s Guide 1921. Go to Certificate Management and choose Local Certificate. 2. You can click GENERATE button to start to edit a certi

Página 117

Vigor2955 User’s Guide 1934. Connect to CA server via web browser. Follow the instruction to submit the request. Below we take a Windows 2000 CA ser

Página 118

Vigor2955 User’s Guide 194 Then you have done the request and the server now issues you a certificate. Select Base 64 encoded certificate and Downloa

Página 119

Vigor2955 User’s Guide 19544..77 RReeqquueesstt aa CCAA CCeerrttiiffiiccaattee aanndd SSeett aass TTrruusstteedd oonn WWiinnddoowwss CCAA

Página 120

Vigor2955 User’s Guide 1962. In Choose file to download, click CA Certificate Current and Base 64 encoded, and Download CA certificate to save the .

Página 121

Vigor2955 User’s Guide 19744..88 EERRDD MMeecchhaanniissmm ffoorr VVPPNN TTRRUUNNKK To use ERD (Environment Recovery Detection) mechanism for V

Página 122

Vigor2955 User’s Guide 198When VPN connection breaks down, Member1 is a top priority for the system to do VPN connection again. Request Background:

Página 123

Vigor2955 User’s Guide 19944..99 VVPPNN LLooaadd BBaallaannccee AApppplliiccaattiioonn Here provides two situations that you can take advantages

Página 124

Vigor2955 User’s Guide 1122..22 QQuuiicckk SSttaarrtt WWiizzaarrdd If your router can be under an environment with high speed NAT, the configurat

Página 125

Vigor2955 User’s Guide 200¾ Finish Member2 LAN-to-LAN Dial out Profile with GRE over IPSec configuration. Check Enable IPSec Dial-Out function GRE o

Página 126

Vigor2955 User’s Guide 201(3) Dialing from VPN Client site

Página 127

Vigor2955 User’s Guide 202 This page is left blank.

Página 128

Vigor2955 User’s Guide 2035 TTrroouubbllee SShhoooottiinngg This section will guide you to solve abnormal situations if you cannot access into the

Página 129

Vigor2955 User’s Guide 20455..22 CChheecckkiinngg IIff tthhee NNeettwwoorrkk CCoonnnneeccttiioonn SSeettttiinnggss oonn YYoouurr CCoommppuut

Página 130

Vigor2955 User’s Guide 2054. Select Obtain an IP address automatically and Obtain DNS server address automatically. FFoorr MMaaccOOss 1. Double

Página 131

Vigor2955 User’s Guide 20655..33 PPiinnggiinngg tthhee RRoouutteerr ffrroomm YYoouurr CCoommppuutteerr The default gateway IP address of the r

Página 132

Vigor2955 User’s Guide 207

Página 133

Vigor2955 User’s Guide 20855..44 CChheecckkiinngg IIff tthhee IISSPP SSeettttiinnggss aarree OOKK oorr NNoott Click WAN>> Internet Ac

Página 134

Vigor2955 User’s Guide 209FFoorr SSttaattiicc oorr DDyynnaammiicc IIPP UUsseerrss 1. Check if the Enable option is selected. 2. Check if IP a

Página 135

Vigor2955 User’s Guide 12 In the Quick Start Wizard, you can configure the router to access the Internet with different protocol/modes such as PPPoE,

Página 136

Vigor2955 User’s Guide 210 55..55 BBaacckkiinngg ttoo FFaaccttoorryy DDeeffaauulltt SSeettttiinngg IIff NNeecceessssaarryy Sometimes, a wrong

Página 137

Vigor2955 User’s Guide 211After restore the factory default setting, you can configure the settings for the router again to fit your personal request

Página 138

Vigor2955 User’s Guide 13Confirm Password Retype the password to confirm it. Click Next for viewing summary of such connection. Click Finish. A p

Página 139

Vigor2955 User’s Guide 1422..22..22 PPPPTTPP Click PPTP as the protocol. Type in all the information that your ISP provides for this protocol. Cli

Página 140

Vigor2955 User’s Guide 1522..22..33 LL22TTPP Click L2TP as the protocol. Type in all the information that your ISP provides for this protocol. Aft

Página 141

Vigor2955 User’s Guide 1622..22..44 SSttaattiicc IIPP Click Static IP as the protocol. Type in all the information that your ISP provides for this

Página 142

Vigor2955 User’s Guide 1722..22..55 DDHHCCPP Click DHCP as the protocol. Type in all the information that your ISP provides for this protocol. Af

Página 143

Vigor2955 User’s Guide 1822..33 OOnnlliinnee SSttaattuuss The online status shows the system status, WAN status, and other status related to thi

Página 144

Vigor2955 User’s Guide 19Online status for DHCP Detailed explanation is shown below: Primary DNS Display the IP address of the primary DNS. Seconda

Página 145

Vigor2955 User’s Guide iii Vigor 2955 Dual-WAN SSL VPN Appliance User’s Guide Version: 1.0 Date: 30/10/2009

Página 146

Vigor2955 User’s Guide 2022..44 SSaavviinngg CCoonnffiigguurraattiioonn Each time you click OK on the web page for saving the configuration, you c

Página 147

Vigor2955 User’s Guide 213AAddvvaanncceedd WWeebb CCoonnffiigguurraattiioonn After finished basic configuration of the router, you can access Inte

Página 148

Vigor2955 User’s Guide 22NNeettwwoorrkk CCoonnnneeccttiioonn bbyy 33GG UUSSBB MMooddeemm For 3G mobile communication through Access Point is po

Página 149

Vigor2955 User’s Guide 23 Enable Choose Yes to invoke the settings for this WAN interface. Choose No to disable the settings for this WAN interface.

Página 150

Vigor2955 User’s Guide 24Physical Type You can change the physical type for WAN2 or choose Auto negotiation for determined by the system. Load Bala

Página 151 - IP or domain name

Vigor2955 User’s Guide 2533..11..33 IInntteerrnneett AAcccceessss For the router supports dual WAN function, the users can set different WAN setti

Página 152

Vigor2955 User’s Guide 26DDeettaaiillss PPaaggee ffoorr PPPPPPooEE To use PPPoE as the accessing protocol of the internet, please choose Internet

Página 153

Vigor2955 User’s Guide 27active only when the Active on demand option for Active Mode is selected in WAN>> General Setup page. MTU Mean maxi

Página 154

Vigor2955 User’s Guide 28To use Static or Dynamic IP as the accessing protocol of the internet, please choose Internet Access from WAN menu. Then, se

Página 155

Vigor2955 User’s Guide 29WAN IP Network Settings This group allows you to obtain an IP address automatically and allows you type in IP address manual

Página 156

Vigor2955 User’s Guide ivCopyright Information Copyright Declarations Copyright 2009 All rights reserved. This publication contains information that

Página 157

Vigor2955 User’s Guide 30 PPTP/L2TP Client Mode Click Enable PPTP to enable a PPTP client to establish a tunnel to a DSL modem on the WAN interface.

Página 158

Vigor2955 User’s Guide 31IP Alias. You can set up to 32 public IP addresses other than the current one you are using. Notice that this setting is ava

Página 159

Vigor2955 User’s Guide 32 PPP Client Mode Click Enable to activate this mode for WAN2. SIM PIN code Type PIN code of the SIM card that will be used

Página 160

Vigor2955 User’s Guide 33 Index Click the number of index to access into the load-balance policy configuration web page. Enable Check this box to e

Página 161

Vigor2955 User’s Guide 34 Enable Check this box to enable this policy. Protocol Use the drop-down menu to choose a proper protocol for the WAN inte

Página 162

Vigor2955 User’s Guide 3533..22 LLAANN Local Area Network (LAN) is a group of subnets regulated and ruled by router. The design of network structur

Página 163

Vigor2955 User’s Guide 36 WWhhaatt iiss RRoouuttiinngg IInnffoorrmmaattiioonn PPrroottooccooll ((RRIIPP)) Vigor router will exchange routing in

Página 164

Vigor2955 User’s Guide 3733..22..22 GGeenneerraall SSeettuupp This page provides you the general settings for LAN. Click LAN to open the LAN setti

Página 165

Vigor2955 User’s Guide 38 Start IP Address: Enter a value of the IP address pool for the DHCP server to start with when issuing IP addresses. If the

Página 166

Vigor2955 User’s Guide 39of the router, which means the router is the default gateway. DHCP Server IP Address for Relay Agent - Set the IP address of

Página 167

Vigor2955 User’s Guide vEuropean Community Declarations Manufacturer: DrayTek Corp. Address: No. 26, Fu Shing Road, HuKou Township, HsinChu Indus

Página 168

Vigor2955 User’s Guide 40Index The number (1 to 10) under Index allows you to open next page to set up static route. Destination Address Displa

Página 169

Vigor2955 User’s Guide 41Note: There are two reasons that we have to apply RIP Protocol Control on 1st Subnet. The first is that the LAN interface ca

Página 170

Vigor2955 User’s Guide 4233..22..44 VVLLAANN PCs connected to Ethernet ports of the router can be divided into different groups and formed VLAN. PC

Página 171

Vigor2955 User’s Guide 43 Enable Click this radio button to invoke this function. However, IP/MAC which is not listed in IP Bind List also can conne

Página 172

Vigor2955 User’s Guide 44Note: Before you select Strict Bind, you have to bind one set of IP/MAC address for one PC. If not, no one of the PCs can ac

Página 173

Vigor2955 User’s Guide 4533..33..11 PPoorrtt RReeddiirreeccttiioonn Port Redirection is usually set up for server related service inside the local

Página 174

Vigor2955 User’s Guide 46 Enable Check this box to enable such port redirection setting. Mode Two options (Single and Range) are provided here for

Página 175

Vigor2955 User’s Guide 47 33..33..22 DDMMZZ HHoosstt As mentioned above, Port Redirection can redirect incoming TCP/UDP or other traffic on partic

Página 176

Vigor2955 User’s Guide 48 For WAN 1 WAN Selection In WAN 1, DMZ host can be specified with Private IP or Active True IP. Choose the one you want.

Página 177

Vigor2955 User’s Guide 49save the setting. For WAN 2 Click WAN2 tab to open the following page: Enable Check to enable the DMZ Host function. Priv

Página 178

Vigor2955 User’s Guide vi

Página 179

Vigor2955 User’s Guide 50save the setting. Note: If you previously have set up WAN Alias in Internet Access>>PPPoE/Static IP/PPTP, you will fi

Página 180

Vigor2955 User’s Guide 5133..33..33 OOppeenn PPoorrttss Open Ports allows you to open a range of ports for the traffic of special applications. Co

Página 181

Vigor2955 User’s Guide 52 Enable Open Ports Check to enable this entry. Comment Make a name for the defined network application/service. WAN Inte

Página 182

Vigor2955 User’s Guide 53 Protocol Display the protocol used for this address mapping. Public IP Display the public IP address selected for this en

Página 183

Vigor2955 User’s Guide 54If you want to choose any on of the Public IP settings, you must specify some IP addresses in the IP Alias List of the Stati

Página 184

Vigor2955 User’s Guide 55 SSttaatteeffuull PPaacckkeett IInnssppeeccttiioonn ((SSPPII)) Stateful inspection is a firewall architecture that wor

Página 185

Vigor2955 User’s Guide 562. UDP flood attack 3. ICMP flood attack 4. Port Scan attack 5. IP options 6. Land attack 7. Smurf attack 8. Trace route 10.

Página 186

Vigor2955 User’s Guide 57Please set at least one profile for choosing in CSM>> APP Enforcement Profile web page first. For troubleshooting need

Página 187

Vigor2955 User’s Guide 58Next Filter Set Set the link to the next filter set to be executed after the current filter run. Do not make a loop with ma

Página 188

Vigor2955 User’s Guide 59 To set the IP address manually, please choose Any Address/Single Address/Range Address/Subnet Address as the Address Type

Página 189

Vigor2955 User’s Guide viiTTaabbllee ooff CCoonntteennttss 1 Preface ...

Página 190

Vigor2955 User’s Guide 60choose Group and Objects as the Service Type. Protocol - Specify the protocol(s) which this filter rule will apply to. Sour

Página 191

Vigor2955 User’s Guide 61EExxaammppllee As stated before, all the traffic will be separated and arbitrated using on of two IP filters: call filter o

Página 192

Vigor2955 User’s Guide 6233..44..44 DDooSS DDeeffeennssee As a sub-functionality of IP Filter/Firewall, there are 15 types of detect/ defense func

Página 193

Vigor2955 User’s Guide 63port-scanning Threshold rate, the Vigor router will send out a warning. By default, the Vigor router sets the threshold as 1

Página 194

Vigor2955 User’s Guide 64SYN packets with the identical source and destination addresses, as well as the port number to victims. Block Unknown Protoc

Página 195

Vigor2955 User’s Guide 6533..55 OObbjjeeccttss SSeettttiinnggss For IPs in a range and service ports in a limited range usually will be applied in

Página 196

Vigor2955 User’s Guide 66Name Type a name for this profile. Maximum 15 characters are allowed. Interface Choose a proper interface (WAN, LAN or Any

Página 197

Vigor2955 User’s Guide 6733..55..22 IIPP GGrroouupp This page allows you to bind several IP objects into one IP group. Set to Factory Default

Página 198

Vigor2955 User’s Guide 6833..55..33 SSeerrvviiccee TTyyppee OObbjjeecctt You can set up to 96 sets of Service Type Objects with different condi

Página 199

Vigor2955 User’s Guide 69(!=) – when the first and last value are the same, it indicates all the ports except the port defined here; when the first a

Página 200

Vigor2955 User’s Guide viii3.5 Objects Settings...

Página 201

Vigor2955 User’s Guide 70 Name Type a name for this profile. Available Service Type Objects You can add IP objects from IP Objects page. All the ava

Página 202

Vigor2955 User’s Guide 71 Profile Name Type a name for this profile. Type a name for such profile and check all the items that not allowed to be use

Página 203

Vigor2955 User’s Guide 7233..55..66 PP22PP OObbjjeecctt This page allows you to set 32 profiles for peer-to-peer application. These profiles will

Página 204

Vigor2955 User’s Guide 73Type a name for such profile and check all the protocols that not allowed to be used in the host. Finally, click OK to save

Página 205

Vigor2955 User’s Guide 7433..55..88 MMiisscc OObbjjeecctt This page allows you to set 32 profiles for miscellaneous applications. These profiles w

Página 206

Vigor2955 User’s Guide 75 Profile Name Type a name for this profile. Type a name for such profile and check all the protocols that not allowed to be

Página 207

Vigor2955 User’s Guide 76checks the URL strings or some of HTTP data hiding in the payload of TCP packets while legacy firewall inspects packets base

Página 208

Vigor2955 User’s Guide 77 Set to Factory Default Clear all profiles. Click the number under Index column for settings in detail. Profile Name Type

Página 209

Vigor2955 User’s Guide 7833..66..22 UURRLL CCoonntteenntt FFiilltteerr PPrrooffiillee Click CSM and click URL Content Filter Profile to open the

Página 210

Vigor2955 User’s Guide 79 You must clear your browser cache first so that the URL content filtering facility operates properly on a web page that yo

Página 211

Vigor2955 User’s Guide ix3.12.8 Reboot System...

Página 212 - This page is left blank

Vigor2955 User’s Guide 8033..66..33 WWeebb CCoonntteenntt FFiilltteerr PPrrooffiillee We all know that the content on the Internet just like oth

Página 213

Vigor2955 User’s Guide 8133..77 BBaannddwwiiddtthh MMaannaaggeemmeenntt Below shows the menu items for Bandwidth Management. 33..77..11 SSeessss

Página 214

Vigor2955 User’s Guide 82Maximum Sessions Defines the available session number for each host in the specific range of IP addresses. If you do not se

Página 215

Vigor2955 User’s Guide 83Default TX limit Define the default speed of the upstream for each computer in LAN. Default RX limit Define the default sp

Página 216

Vigor2955 User’s Guide 84the overcrowded network. This is especially essential to those are low tolerant of loss, delay or jitter (delay variation).

Página 217

Vigor2955 User’s Guide 85 This page displays the QoS settings result of the WAN interface. Click the Setup link to access into next page for the gene

Página 218

Vigor2955 User’s Guide 86Check this box and click OK, then click Setup link again. You will see the Online Statistics link appearing on this page. No

Página 219

Vigor2955 User’s Guide 87 After you click the Edit link, you will see the following page. Now you can define the name for that Class. In this case, “

Página 220

Vigor2955 User’s Guide 88Edit It allows you to edit source address information. Address Type – Determine the address type for the source addres

Página 221

Vigor2955 User’s Guide 89 After you click the Edit link, you will see the following page. For adding a new service type, click Add to open the fol

Comentários a estes Manuais

Sem comentários