1. Home
    2. /
  2. Manuals
    3. /
  3. D-Link
    4. /
  4. DSR-500N
    5. /
  5. 25
Page 121 / 270 Scroll up to view Page 116 - 120
Unified Services Router
User Manual
119
Figure 76: IPse c policy configuration continue d (Auto / Manual Phase 2)
6.2.1
Extended Authentication (XAUTH)
You can also configure extended authentication (XAUTH). Rather than configure a
unique VPN policy for each user, you can configure the VPN gateway router to
authenticate users from a stored list of user accounts or with an external
authentication server such as a RADIUS server. With a user database, user accounts
created in the router are used to authenticate users.
Page 122 / 270
Unified Services Router
User Manual
120
With a configured RADIUS server, the router connects to a RADIUS server and
passes to it the credentials that it receives from the VPN client. You can secure the
connection between the router and the RADIUS server with the authenticat ion
protocol supported by the server (PAP or CHAP). For RADIUS
PAP, the router
first checks in the user database to see if the user credentials are available; if they
are not, the router connects to the RADIUS server.
6.2.2
Internet over IPSec tunnel
In this feature all the traffic will pass through the VPN Tunnel and from the Remote
Gateway the packet will be routed to Internet. On the remote gateway side, the
outgoing packet will be SNAT'ed.
6.3
Configuring VPN clients
Remote VPN clients must be configured with the same VPN policy parameters used in
the VPN tunnel that the client wishes to use: encryption, authentication, life time, and
PFS key-group. Upon establishing these authentication parameters, the VPN Client
user database must also be populated with an account to give a user access to the
tunnel.
VPN client software is required to establish a VPN tunnel between the router and
remote endpoint. Open source software (such as OpenVPN or Openswan) as well as
Microsoft IPsec VPN software can be configured with the required IKE policy
parameters to establish an IPsec VPN tunnel. Refer to the client software guide for
detailed instructions on setup as well as the router’s online help.
The user database contains the list of VPN user accounts that are authorized to use a
given VPN tunnel. Alternatively VPN tunnel users can be authenticated using a
configured Radius database. Refer to the online help to determine how to populate the
user database and/or configure RADIUS authentication.
6.4
PPTP / L2TP Tunnels
This router supports VPN tunnels from either PPTP or L2TP ISP servers. The router
acts as a broker device to allow the ISP's server to create a TCP control connection
between the LAN VPN client and the VPN server.
6.4.1 PPTP Tunnel Support
Setup > VPN Settings > PPTP > PPTP Client
PPTP VPN Client can be configured on this router. Using this client we can access
remote network which is local to PPTP server. Once client is enabled, the user can
access
Status > Active VPNs
page and establish PPTP VPN tunnel clicking
Connect. To disconnect the tunnel, click Drop.
Page 123 / 270
Unified Services Router
User Manual
121
Figure 77: PPTP tunne l configuratio n
PPTP Clie nt
Figure 78: PPTP VPN conne ction status
Setup > VPN Settings > PPTP > PPTP Server
A PPTP VPN can be established through this router. Once enabled a PPTP server is
available on the router for LAN and WAN PPTP client users to access. Once the
PPTP server is enabled, PPTP clients that are within the range of configured IP
addre
sses of allowed clients can reach the router’s PPTP server.
Once authenticated
by the PPTP server (the tunnel endpoint), PPTP clients have access to the network
managed by the router.
Page 124 / 270
Unified Services Router
User Manual
122
Figure 79: PPTP tunne l configuratio n
PPTP Se rve r
6.4.2 L2TP Tunnel Support
Setup > VPN Settings > L2TP > L2TP Server
A L2TP VPN can be established through this router. Once enabled a L2TP server is
available on the router for LAN and WAN L2TP client users to access. Once the
L2TP server is enabled, L2TP clients that are within the range of configured IP
addresses of allowed clients can reach the router’s L2TP server.
Once authenticated
by the L2TP server (the tunnel endpoint), L2TP clients have access to the network
managed by the router.
Page 125 / 270
Unified Services Router
User Manual
123
Figure 80: L2TP tunne l configuratio n
L2TP Se rve r
6.4.3 OpenVPN Support
Setup > VPN Settings > OpenVPN > OpenVPN Configuration
OpenVPN allows peers to authenticate each other using a pre -shared secret key,
certificates, or username/password. When used in a multiclient -server configuration,
it allows the server to release an authentication certificate for every client, using

Rate

4.5 / 5 based on 2 votes.

Popular D-Link Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top