Page 291 / 794 Scroll up to view Page 286 - 290
Vigor2860 Series User’s Guide
277
2.
Open the web browse, Firefox. If Bonjour and DNSSD have been installed, you can open
the web page (DNSSD) and see the following results.
3.
Open
System Maintenance>>Management
. Type a name (e.g., Vigor Router) as the
Router Name and click
OK
.
4.
Next, open A
pplications>>Bonjour
. Check the service that you want to use via Bonjour.
Page 292 / 794
Vigor2860 Series User’s Guide
278
5.
Open the DNSSD page again. The available items will be changed as the follows. It means
the Vigor router (based on Bonjour protocol) is ready to be used as a printer server, FTP
server, SSH Server, Telnet Server, and HTTP Server.
6.
Now, any page or document can be printed out through Vigor router (installed with a
printer).
Page 293 / 794
Vigor2860 Series User’s Guide
279
3.11 VPN and Remote Access
A Virtual Private Network (VPN) is the extension of a private network that encompasses links
across shared or public networks like the Internet. In short, by VPN technology, you can send
data between two computers across a shared or public network in a manner that emulates the
properties of a point-to-point private link.
The VPN built is suitable for:
Communication between home office and customer
Secure connection between Teleworker, staff on business trip and main office
Exchange data between remote office and main office
POS between chain store and headquarters
Below shows the menu items for VPN and Remote Access.
Page 294 / 794
Vigor2860 Series User’s Guide
280
3.11.1 Remote Access Control
Enable the necessary VPN service as you need. If you intend to run a VPN server inside your
LAN, you should disable the VPN service of Vigor Router to allow VPN tunnel pass through,
as well as the appropriate NAT settings, such as DMZ or open port.
After finishing all the settings here, please click
OK
to save the configuration.
3.11.2 PPP General Setup
This submenu only applies to PPP-related VPN connections, such as PPTP, L2TP, L2TP over
IPsec.
Available settings are explained as follows:
Item
Description
Dial-In PPP
Authentication
PAP Only
- elect this option to force the router to
authenticate dial-in users with the PAP protocol.
PAP/CHAP/MS-CHAP/MS-CHAPv2
- Selecting this
option means the router will attempt to authenticate dial-in
users with the CHAP protocol first. If the dial-in user does
Page 295 / 794
Vigor2860 Series User’s Guide
281
not support this protocol, it will fall back to use the PAP
protocol for authentication.
Dial-In PPP Encryption
(MPPE)
Optional MPPE
- This option represents that the MPPE
encryption method will be optionally employed in the
router for the remote dial-in user. If the remote dial-in user
does not support the MPPE encryption algorithm, the router
will transmit “no MPPE encrypted packets”. Otherwise, the
MPPE encryption scheme will be used to encrypt the data.
Require MPPE (40/128bits) -
Selecting this option
will force the router to encrypt packets by using the
MPPE encryption algorithm. In addition, the remote
dial-in user will use 40-bit to perform encryption prior
to using 128-bit for encryption. In other words, if
128-bit MPPE encryption method is not available,
then 40-bit encryption scheme will be applied to
encrypt the data.
Maximum MPPE -
This option indicates that the
router will use the MPPE encryption scheme with
maximum bits (128-bit) to encrypt the data.
Mutual Authentication
(PAP)
The Mutual Authentication function is mainly used to
communicate with other routers or clients who need
bi-directional authentication in order to provide stronger
security, for example, Cisco routers. So you should enable
this function when your peer router requires mutual
authentication. You should further specify the
User Name
and
Password
of the mutual authentication peer.
The length of the name/password is limited to 23/19
characters.
Assigned IP Start
Enter a start IP address for the dial-in PPP connection. You
should choose an IP address from the local private network.
For example, if the local private network is
192.168.1.0/255.255.255.0, you could choose
192.168.1.200 as the Start IP Address.
You can configure up to four start IP addresses for LAN1 ~
LAN6.
LDAP Server Profiles for
PPP Authentication
Configured LDAP profiles will be listed under such item.
Simply check the one you want to enable the PPP
authentication by LDAP server profiles.
However, if there is no profile listed, simply click the link
of
PPTP LDAP Profile
to create/add some new LDAP
profiles you want.
For detailed information about LDAP application, refer to
section
4.6 How to Implement the AD/LDAP
Authentication for User Management?

Rate

4 / 5 based on 1 vote.

Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top