Page 181 / 241 Scroll up to view Page 176 - 180
Vigor2130 Series User’s Guide
173
Adding a VPN Tunnel
Click
Add Tunnel
to open the following page.
Enabled
Check here to activate this tunnel.
Always On
Check this box to make the WAN connection being activated
always.
Name
Specify a name for this tunnel.
Remote IP
Enter the IP address of the remote host that located at the
other-end of the VPN tunnel.
IKE phase 1 mode
Select from
Main
mode and
Aggressive
mode. The ultimate
outcome is to exchange security proposals to create a protected
secure channel.
Main
mode is more secure than
Aggressive
mode since more exchanges are done in a secure channel to set
up the IPSec session. However, the
Aggressive
mode is faster.
The default value in Vigor router is Main mode.
Pre-Shared Key
Such field will be applicable when Pre-shared key is selected as
the Type for the authentication. Input 1-63 characters as
pre-shared key.
Page 182 / 241
Vigor2130 Series User’s Guide
174
Confirm Pre-Shared key
Such field will be applicable when Pre-shared key is selected as
the Type for the authentication. Input 1-63 characters as
pre-shared key again to confirm it.
Local Identity
Local Identity is on behalf of the IP address while identity
authenticating with remote VPN server. The length of the ID is
limited to 47 characters.
Remote Identity
This field defines the identity of the remote end.
Local Network / Mask
Traffic between this subnet and the subnet specified in Remote
Network / Mask will travel through the VPN tunnel.
Remote Network / Mask
Add a static route to direct all traffic destined to this Remote
Network IP Address/Remote Network Mask through the VPN
connection. For IPSec, this is the destination clients IDs of
phase 2 quick mode.
IKE Phase 1 proposal
Propose the local available authentication schemes and
encryption algorithms to the VPN peers, and get its feedback to
find a match.
IKE Phase 2 proposal
Propose the local available algorithms to the VPN peers, and
get its feedback to find a match.
Perfect Forward Secrecy
The IKE Phase 1 key will be reused to avoid the computation
complexity in phase 2. The default value is inactive this
function.
Page 183 / 241
Vigor2130 Series User’s Guide
175
4.8 Wireless LAN
This function is used for “n” models.
4.8.1 Basic Concepts
Over recent years, the market for wireless communications has enjoyed tremendous growth.
Wireless technology now reaches or is capable of reaching virtually every location on the
surface of the earth. Hundreds of millions of people exchange information every day via
wireless communication products. The Vigor “n” model, a.k.a. Vigor wireless router, is
designed for maximum flexibility and efficiency of a small office/home. Any authorized staff
can bring a built-in WLAN client PDA or notebook into a meeting room for conference
without laying a clot of LAN cable or drilling holes everywhere. Wireless LAN enables high
mobility so WLAN users can simultaneously access all LAN facilities just like on a wired
LAN as well as Internet access
The Vigor wireless routers are equipped with a wireless LAN interface compliant with the
standard IEEE 802.11n draft 2 protocol. To boost its performance further, the Vigor Router is
also loaded with advanced wireless technology to lift up data rate up to 300 Mbps*. Hence,
you can finally smoothly enjoy stream music and video.
Note
:
*
The actual data throughput will vary according to the network conditions and
environmental factors, including volume of network traffic, network overhead and
building materials.
In an Infrastructure Mode of wireless network, Vigor wireless router plays a role as an Access
Point (AP) connecting to lots of wireless clients or Stations (STA). All the STAs will share the
same Internet connection via Vigor wireless router. The
General Settings
will set up the
information of this wireless network, including its SSID as identification, located channel etc.
Security Overview
Real-time Hardware Encryption:
Vigor Router is equipped with a hardware AES encryption
engine so it can apply the highest protection to your data without influencing user experience.
Complete Security Standard Selection:
To ensure the security and privacy of your wireless
communication, we provide several prevailing standards on market.
Page 184 / 241
Vigor2130 Series User’s Guide
176
WEP (Wired Equivalent Privacy) is a legacy method to encrypt each frame transmitted via
radio using either a 64-bit or 128-bit key. Usually access point will preset a set of four keys
and it will communicate with each station using only one out of the four keys.
WPA (Wi-Fi Protected Access), the most dominating security mechanism in industry, is
separated into two categories: WPA-personal or called WPA Pre-Share Key (WPA/PSK), and
WPA-Enterprise or called WPA/802.1x.
In WPA-Personal, a pre-defined key is used for encryption during data transmission. WPA
applies Temporal Key Integrity Protocol (TKIP) for data encryption while WPA2 applies AES.
The WPA-Enterprise combines not only encryption but also authentication.
Since WEP has been proved vulnerable, you may consider using WPA for the most secure
connection. You should select the appropriate security mechanism according to your needs.
No matter which security suite you select, they all will enhance the over-the-air data
protection and /or privacy on your wireless network. The Vigor wireless router is very flexible
and can support multiple secure connections with both WEP and WPA at the same time.
Below shows the menu items for Wireless LAN.
4.8.2 General Setup
By clicking the
General Setup
, a new web page will appear so that you could configure the
SSID and the wireless channel.
Please refer to the following figure for more information.
Enable Wireless LAN
Check the box to enable the wireless function.
Page 185 / 241
Vigor2130 Series User’s Guide
177
SSID Broadcast
Choose
Show
to make the SSID being seen by wireless clients.
Choose
Hide
to prevent from wireless sniffing and make it
harder for unauthorized clients or STAs to join your wireless
LAN.
SSID
It means the identification of the wireless LAN. SSID can be
any text numbers or various special characters. The default
SSID is "DrayTek". We suggest you to change it.
Isolate
Check this box to make the wireless clients (stations) with
the same SSID not accessing for each other.
Wireless Mode
Choose the wireless mode for this router. At present, only
802.11B/B/N mix is available.
Country Region Code
It represents different country region code.
Use the drop down list to choose the one that fit the usage of
regulations locally.
Channel
It means the channel of frequency of the wireless LAN. The
default channel is 11. You may switch channel if the selected
channel is under serious interference. If you have no idea of
choosing the frequency, please select
Auto
to let system
determine for you.
Tx Power
Set the power percentage for transmission signal of access point.
The greater the value is, the higher intensity of the signal will
be.
Enable Green AP
Such function is used to reduce the power consumption (Green
AP) for the access point. When there is no station connected,
the power consumption of access point will be reduced.
Encryption
Select an appropriate encryption mode to improve the security
and privacy of your wireless data packets.
Each encryption mode will bring out different web page and ask
you to offer additional configuration.
Wireless Security Configuration
For the security of your system, choose the proper encryption for data transmission. Different
encryption mode will bring out different setting encryption ways.

Rate

4 / 5 based on 1 vote.

Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top