Proxicast LAN-Cell 2 Betriebsanweisung Seite 204
- Seite / 650
- Inhaltsverzeichnis
- FEHLERBEHEBUNG
- LESEZEICHEN
Bewertet. / 5. Basierend auf Kundenbewertungen
Chapter 9 Firewall Screens
LAN-Cell 2 User’s Guide
204
Figure 118 Block VPN to LAN Traffic by Default Example
From VPN To VPN Packet Direction
From VPN To VPN firewall rules apply to traffic that comes in through one of the LAN-
Cell’s VPN tunnels and terminates at the LAN-Cell (like for remote management) or goes out
through another of the LAN-Cell’s VPN tunnels (this is called hub-and-spoke VPN, see
Section 10.9 on page 238 for details). The LAN-Cell decrypts the traffic and applies the
firewall rules before re-encrypting it or allowing the traffic to terminate at the LAN-Cell.
In the following example, the From VPN To VPN default firewall rule silently blocks the
traffic that the LAN-Cell receives from any VPN tunnel (either A or B) that is destined for the
other VPN tunnel or the LAN-Cell itself. VPN traffic destined for the DMZ is allowed
through.
- LAN-Cell 2 1
- Contents Overview 3
- Chapter 6 7
- Chapter 7 7
- Chapter 8 8
- Chapter 9 8
- Chapter 10 9
- Chapter 11 9
- Table of Contents 18
- About This User's Guide 19
- Document Conventions 20
- Icons Used in Figures 21
- Safety Warnings 22
- Safety Warnings 23
- Introduction 25
- CHAPTER 1 27
- 1.4.1 3G WAN Applications 28
- 1.4.3 VPN Application 29
- 1.5 Front Panel Indicators 30
- 1.6 Rear Panel Connections 31
- 1.7 Card-Lock 32
- Figure 8 Card-Lock Step 3 33
- Figure 9 Card-Lock Step 4 33
- Figure 10 Card-Lock Step 5 34
- Figure 11 Card-Lock Step 6 34
- CHAPTER 2 35
- 2.3.1 Title Bar 37
- 2.3.2 Navigation Panel 38
- 2.3.3 Main Window 40
- 2.3.4 HOME Screen 41
- 2.3.5 Port Statistics 45
- 2.3.7 DHCP Table Screen 47
- 2.3.8 VPN Status 48
- 2.3.9 Bandwidth Monitor 49
- 2.3.10 Status Bar 50
- 2.4 Resetting the LAN-Cell 51
- CHAPTER 3 53
- Figure 24 Tutorial: Home 56
- 3.2 VPN Wizard Overview 57
- Policy icon 67
- Network & Wireless 75
- CHAPTER 4 77
- IP Address and Subnet Mask 78
- Private IP Addresses 78
- Chapter 4 LAN Screens 79
- 4.2 LAN Screen 80
- Figure 41 NETWORK > LAN 81
- Table 15 NETWORK > LAN 81
- Chapter 4 LAN Screens 82
- 4.3 LAN Static DHCP Screen 83
- 4.4 LAN IP Alias Screen 84
- 4.5 LAN Port Roles Screen 86
- Roles screens 87
- CHAPTER 5 89
- Primary WAN Interfaces 90
- Backup WAN Interfaces 90
- Load Balancing Introduction 92
- Load Balancing Algorithms 92
- TCP/IP Priority (Metric) 92
- Cellular routes 93
- WAN Continuity Check 93
- 5.2 WAN General Screen 94
- LAN-Cell 2 User’s Guide 100
- 5.2.2 WAN Connectivity Check 101
- 5.3 WAN Screen 103
- WAN MAC Address 104
- 5.3.2 PPPoE Encapsulation 107
- 5.3.3 PPTP Encapsulation 110
- (Section 21.3 on page 377) 119
- 5.5 Traffic Redirect Screen 120
- 5.6 Dial Backup Screen 122
- 5.6.1 Advanced Modem Setup 124
- CHAPTER 6 127
- IP Alias 128
- Port Roles 128
- 6.2 DMZ Screen 129
- DMZ are on separate subnets 130
- Chapter 6 DMZ Screens 131
- 6.3 DMZ Static DHCP Screen 132
- 6.4 DMZ IP Alias Screen 133
- Chapter 6 DMZ Screens 134
- 6.5 DMZ Port Roles 135
- CHAPTER 7 137
- 7.2 WLAN Screen 139
- 7.3 WLAN Static DHCP Screen 141
- 7.4 WLAN IP Alias Screen 142
- 7.5 WLAN Port Roles Screen 144
- 7.6.1 SSID 147
- 7.6.2 MAC Address Filter 147
- 7.6.3 User Authentication 147
- 7.6.4 Encryption 148
- 7.7.1 SSID Profile 152
- Figure 80 Configuring SSID 153
- Table 45 Configuring SSID 153
- Table 46 Security Modes 154
- 7.8.1 No Security 155
- 7.8.2 Static WEP 155
- 7.8.3 IEEE 802.1x Only 156
- 7.8.5 WPA, WPA2, WPA2-MIX 159
- 7.9 MAC Filter 161
- 7.10 Country Codes 162
- CHAPTER 8 163
- User Authentication 164
- Encryption 164
- Chapter 8 Wi-Fi Screens 165
- Chapter 8 Wi-Fi Screens 166
- 8.2.1 SSID Profile 168
- 8.3 Wireless Security Screen 169
- Table 58 Security Modes 170
- 8.3.1 No Security 171
- 8.3.2 Static WEP 171
- 8.3.3 IEEE 802.1x Only 173
- 8.3.5 WPA, WPA2, WPA2-MIX 175
- 8.4 MAC Filter Screen 177
- 8.5 Country Codes 178
- PART III 179
- CHAPTER 9 181
- 9.2 Firewall Rules Example 182
- Chapter 9 Firewall Screens 183
- 9.3 Firewall Default Rule 184
- Chapter 9 Firewall Screens 186
- Rule screen 188
- 9.5 Anti-Probing Screen 191
- 9.6 Threshold Screen 192
- 9.7 Service Screen 194
- 10.0.0.15 on the LAN 199
- Packet Direction Examples 200
- To VPN Packet Direction 201
- From VPN Packet Direction 203
- Asymmetrical Routes 206
- DoS Firewall Thresholds 206
- Threshold Values 207
- Security Considerations 207
- CHAPTER 10 209
- Gateway and Network Policies 210
- Negotiation Mode 211
- 10.2 VPN Rules (IKE) Screen 212
- Figure 133 VPN Dial 226
- 10.3 VPN Rules (Manual) 227
- 10.5 VPN SA Monitor Screen 231
- Dynamic VPN Rule 232
- 10.9 Hub-and-spoke VPN 238
- Figure 144 VPN Topologies 239
- 10.10 VPN Troubleshooting 241
- 10.10.1 IPSec Debug 242
- IKE SA Proposal 244
- Authentication 245
- Certificates 246
- Extended Authentication 247
- VPN, NAT, and NAT Traversal 248
- Additional IPSec VPN Topics 248
- IPSec SA Overview 250
- Virtual Address Mapping 251
- Active Protocol 252
- Encapsulation 252
- CHAPTER 11 255
- Advantages of Certificates 256
- Self-signed Certificates 256
- Verifying a Certificate 256
- 11.2 My Certificates Screen 257
- Certificate File Formats 263
- 11.6 Trusted CAs Screen 269
- CHAPTER 12 283
- 12.3 RADIUS Screen 285
- Advanced Menu 287
- CHAPTER 13 289
- 13.2 NAT Overview Screen 290
- 13.3 NAT Address Mapping 292
- 13.4 Port Forwarding 295
- NAT and Multiple WAN 297
- Port Translation 297
- 13.5 Port Triggering 300
- 13.6 NAT Technical Reference 302
- What NAT Does 302
- How NAT Works 303
- NAT Application 303
- Port Restricted Cone NAT 304
- CHAPTER 14 307
- DNS Servers 308
- Address Record 308
- DNS Wildcard 308
- Name Server Record 308
- Private DNS Server 308
- 14.2 System Screen 309
- Chapter 14 DNS Screens 310
- Chapter 14 DNS Screens 311
- 14.3 DNS Cache 313
- 14.4 Configure DNS Cache 313
- 14.5 Configuring DNS DHCP 315
- 14.6 DDNS Screen 316
- 14.7 Configuring Dynamic DNS 317
- CHAPTER 15 319
- Firewall Rules 320
- Remote Management Sessions 320
- Remote Management Limitations 320
- System Timeout 320
- 15.2.1 HTTPS Example 321
- 15.3 WWW 326
- REMOTE MGMT > WWW 329
- 15.6 The SSH Screen 330
- 15.8 Telnet Screen 331
- 15.9 FTP Screen 332
- 15.10 SNMP Screen 333
- Supported MIBs 334
- SNMP Traps 335
- 15.11 DNS Screen 336
- How SSH Works 337
- CHAPTER 16 339
- IP address 340
- CHAPTER 17 343
- CHAPTER 18 349
- Bandwidth Classes and Filters 350
- Scheduler 351
- Priority-based Scheduler 351
- Fairness-based Scheduler 351
- Maximize Bandwidth Usage 351
- 18.3 Class Setup Screen 356
- Bandwidth Borrowing 357
- Bandwidth Manager Monitor 362
- CHAPTER 19 365
- ALG and Multiple WAN 366
- H.323 ALG Details 366
- Chapter 19 ALG Screens 367
- SIP ALG Details 368
- 19.2 ALG Screen 369
- Chapter 19 ALG Screens 370
- Table 143 ADVANCED > ALG 370
- CHAPTER 20 371
- Table 144 ADVANCED > ALG 372
- Logs and 373
- Maintenance Menus 373
- CHAPTER 21 375
- Chapter 21 Logs Screens 376
- 21.3 Log Settings Screen 377
- Chapter 21 Logs Screens 379
- Log Descriptions 381
- Table 149 System Error Logs 382
- Table 151 TCP Reset Logs 383
- Table 156 Attack Logs 385
- Table 158 IPSec Logs 386
- Table 159 IKE Logs 387
- Table 160 PKI Logs 390
- Table 162 ACL Setting Notes 392
- Table 163 ICMP Notes 392
- Syslog Logs 394
- CHAPTER 22 397
- 22.3 Password Screen 398
- 22.4 Time and Date Screen 399
- Resetting the Time 400
- 22.5 F/W Upload Screen 403
- Backup Configuration 406
- Restore Configuration 406
- 22.7 Restart Screen 407
- 22.8 The Diagnostics Screen 408
- Management 411
- Terminal 411
- CHAPTER 23 413
- 23.2.2 Entering the Password 414
- 23.3.1 Main Menu 415
- Table 173 Main Menu Summary 416
- 23.3.2 SMT Menus Overview 417
- 23.5 Resetting the LAN-Cell 419
- CHAPTER 24 421
- Chapter 24 General Setup 422
- Chapter 24 General Setup 423
- CHAPTER 25 427
- 25.3 Dial Backup 428
- 25.3.2 Advanced WAN Setup 429
- [ENTER] 430
- Press [ENTER] 433
- 25.3.5 Editing Login Script 434
- 25.4 3G WAN 436
- CHAPTER 26 441
- Chapter 26 LAN Setup 442
- Chapter 26 LAN Setup 443
- 26.4.1 IP Alias Setup 445
- CHAPTER 27 447
- 27.5 Basic Setup Complete 451
- CHAPTER 28 453
- 28.3 TCP/IP Setup 454
- 28.3.2 IP Alias Setup 455
- Chapter 28 DMZ Setup 456
- CHAPTER 29 457
- 29.3 Traffic Redirect 458
- 29.4 Route Failover 459
- Chapter 29 Route Setup 460
- CHAPTER 30 461
- 30.1.2 IP Alias Setup 462
- Chapter 30 WLAN Setup 463
- Chapter 30 WLAN Setup 464
- CHAPTER 31 465
- Chapter 31 WAN ISP Setup 466
- 31.3.2 PPPoE Encapsulation 467
- 31.3.3 PPTP Encapsulation 468
- 31.4 Edit IP 469
- 31.5 Remote Node Filter 471
- CHAPTER 32 473
- CHAPTER 33 477
- 33.2 NAT Setup 479
- 33.2.1 Address Mapping Sets 480
- Menu 15.1.255 is read-only 481
- Menu 15.1.1.1 483
- 33.4 General NAT Examples 487
- Figure 307 NAT Example 2 488
- Figure 309 NAT Example 3 490
- 2 Enter 2 to go to menu 15.2 491
- Figure 314 NAT Example 4 492
- 33.5 Trigger Port Forwarding 494
- CHAPTER 34 497
- Chapter 34 Firewall Status 498
- CHAPTER 35 499
- 35.3 Example Filter 508
- 35.4 Filter Types and NAT 510
- 35.5 Firewall Versus Filters 510
- 35.6 Applying a Filter 511
- 35.6.1 Applying LAN Filters 512
- 35.6.2 Applying DMZ Filters 512
- HTTP connections 513
- CHAPTER 36 515
- 36.2 SNMP Traps 516
- CHAPTER 37 517
- 37.3.1 System Information 519
- 37.3.2 Console Port Speed 520
- 37.4 Log and Trace 521
- 37.4.2 Syslog Logging 522
- 2 Packet triggered 523
- 3 Filter log 523
- 4 PPP log 524
- 5 Firewall log 525
- 37.5 Diagnostic 526
- 37.5.1 WAN DHCP 527
- CHAPTER 38 529
- 38.3 Backup Configuration 530
- 38.3.4 GUI-based FTP Clients 532
- 38.3.7 TFTP Command Example 533
- 38.4 Restore Configuration 534
- 1 WARNING! 535
- 38.5.5 TFTP File Upload 539
- CHAPTER 39 543
- 39.1.2 Command Usage 544
- 39.2 Call Control Support 545
- 39.2.2 Call History 546
- 39.3 Time and Date Setting 547
- CHAPTER 40 551
- Chapter 40 Remote Management 552
- Chapter 40 Remote Management 553
- CHAPTER 41 555
- 41.2 IP Routing Policy Setup 556
- Chapter 41 IP Policy Routing 557
- (shown next) 558
- Chapter 41 IP Policy Routing 560
- CHAPTER 42 563
- Chapter 42 Call Scheduling 564
- Chapter 42 Call Scheduling 565
- PART VII 567
- CHAPTER 43 569
- V I forgot the password 570
- Chapter 43 Troubleshooting 571
- 43.3 Internet Access 572
- I cannot access the Internet 573
- Chapter 43 Troubleshooting 574
- CHAPTER 44 575
- Compatible 3G Cards 577
- 3G Card Installation 578
- Power Adapter Specifications 578
- Cable Pin Assignments 579
- PART VIII 581
- APPENDIX A 583
- Figure 386 Internet Options 585
- JavaScripts 586
- Java Permissions 587
- JAVA (Sun) 588
- APPENDIX B 589
- Installing Components 590
- Configuring 591
- Windows 2000/NT/XP 592
- Macintosh OS 8/9 597
- Macintosh OS X 599
- Verifying Settings 600
- Using Configuration Files 602
- APPENDIX C 605
- Subnet Masks 606
- Subnetting 607
- Example: Two Subnets 608
- Example: Four Subnets 609
- Example Eight Subnets 610
- APPENDIX D 613
- Appendix D Common Services 614
- Appendix D Common Services 615
- APPENDIX E 617
- Appendix E Wireless LANs 618
- Appendix E Wireless LANs 619
- Fragmentation Threshold 620
- Preamble Type 621
- IEEE 802.11g Wireless LAN 621
- Wireless Security Overview 621
- IEEE 802.1x 622
- Types of EAP Authentication 623
- PEAP (Protected EAP) 624
- Dynamic WEP Key Exchange 625
- WPA and WPA2 625
- Security Parameters Summary 628
- Requirements for Roaming 629
- Antenna Overview 630
- Antenna Characteristics 630
- Types of Antennas for WLAN 631
- Positioning Antennas 631
- Country Codes 631
- APPENDIX F 633
- APPENDIX G 635
- Proxicast Limited Warranty 636
- Appendix G Legal Information 637
- Appendix G Legal Information 638
- APPENDIX H 639
- Appendix H Customer Support 640
- Numerics 641
© 2020, manymanuals.de. Alle Rechte vorbehalten. | 0.069 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Kommentare zu diesen Handbüchern