1. Home
    2. /
  2. Manuals
    3. /
  3. DrayTek
    4. /
  4. Vigor-2900V
    5. /
  5. 22
Page 106 / 173 Scroll up to view Page 101 - 105
Vigor2900 Series User’s Guide
100
Allowed Dial-In Type
Determine the dial-in connection with different types.
ISDN
Allow the remote ISDN dial-in connection. You can further set
up Callback function below. You should set the User Name and
Password of remote dial-in user below. This feature is useful for
i
model only.
PPTP
Allow the remote dial-in user to make a PPTP VPN connection
through the Internet. You should set the User Name and
Password of remote dial-in user below.
IPSec Tunnel
Allow the remote dial-in user to trigger an IPSec VPN
connection through Internet.
L2TP
Allow the remote dial-in user to make a L2TP VPN connection
through the Internet. You can select to use L2TP alone or with
IPSec. Select from below:
None-
Do not apply the IPSec policy. Accordingly, the VPN
connection employed the L2TP without IPSec policy can be
viewed as one pure L2TP connection.
Nice to Have
- Apply the IPSec policy first, if it is applicable
during negotiation. Otherwise, the dial-in VPN connection
becomes one pure L2TP connection.
Must-
Specify the IPSec policy to be definitely applied on the
L2TP connection.
Specify Remote VPN
Gateway
You can specify the IP address of the remote dial-in user or
peer ID (should be the same with the ID setting in dial-in
type) by checking the box. Enter Peer ISDN number if you
select ISDN above (This feature is useful for
i
model only.).
Also, you should further specify the corresponding security
Page 107 / 173
Vigor2900 Series User’s Guide
101
methods on the right side.
If you uncheck the checkbox
,
the connection type you select
above will apply the authentication methods and security
methods in the general settings.
User Name
This field is applicable when you select PPTP or L2TP w/ or
w/out IPSec policy above.
Password
This field is applicable when you select PPTP or L2TP w/ or
w/out IPSec policy above.
VJ Compression
VJ Compression is used for TCP/IP protocol header
compression. This field is applicable when you select PPTP or
L2TP w/ or w/out IPSec policy above.
IKE Pre-Shared Key
It is applicable for IPSec Tunnels and L2TP with IPSec Policy
when you Specify ISDN CLID (for
i
model only) or Remote
VPN Gateway Peer ISDN Number (for
i
model only) or Peer
VPN Server IP. Click the
IKE Pre-Shared Key
button and
input 1-63 characters as pre-shared key.
IPSec Security Method
This group of fields is a must for IPSec Tunnels and L2TP with
IPSec Policy when you specify the remote node.
Medium-
Authentication Header (AH) means data will be
authenticated, but not be encrypted. By default, this option is
active.
High-
Encapsulating Security Payload (ESP) means payload
(data) will be encrypted and authenticated. You may select
encryption algorithm from Data Encryption Standard (DES),
Triple DES (3DES), and AES.
Callback Function
The callback function provides a callback service only for the
ISDN dial-in user (this feature is useful for
i
model only). The
router owner will be charged the connection fee by the telecom.
Check to enable Callback function
-Enables the callback
function.
Callback number
-The option is for extra security. Once
enabled, the router will ONLY call back to the specified
Callback Number.
Callback budget
- By default, the callback function has
limitation of callback period. Once the callback budget is
exhausted, the function will be disabled automatically.
Callback Budget (Unit: minutes)-
Specify the time budget for
the dial-in user. The budget will be decreased automatically per
callback connection. The default value 0 means no limitation of
callback period.
My WAN IP
This field is only applicable when you select PPTP or L2TP w/
or w/out IPSec policy above. The default value is 0.0.0.0, which
means the Vigor router will get a PPP IP address from the
remote router during the IPCP negotiation phase. If the PPP IP
address is fixed by remote side, specify the fixed IP address
here.
Remote Gateway IP
This field is only applicable when you select PPTP or L2TP w/
or w/out IPSec policy above. The default value is 0.0.0.0, which
means the Vigor router will get a remote Gateway PPP IP
address from the remote router during the IPCP negotiation
Page 108 / 173
Vigor2900 Series User’s Guide
102
phase. If the PPP IP address is fixed by remote side, specify the
fixed IP address here.
Remote Network IP/
Remote Network Mask
Add a static router to direct all traffic destined to this Remote
Network IP Address/ Remote Network Mask through the
VPN connection. For IPSec, this is the destination clients IDs
of phase 2 quick mode.
More
Add a static router to direct all traffic destined to more Remote
Network IP Addresses/ Remote Network Mask through the
VPN connection. This is usually used when you find there are
several subnets behind the remote VPN router.
RIP Direction
The option specifies the direction of RIP (Routing Information
Protocol) packets. You can enable/disable one of direction here.
Herein, we provide four options: TX/RX Both, TX Only, RX
Only, and Disable.
RIP Version
Select the RIP protocol version. Specify Ver. 2 for greatest
compatibility.
For NAT operation, treat
remote sub-net as
While communicating with remote subnet, the router can treat
it as private subnet by sending packets with the router’s
private IP address, or treat it as public subnet by sending
packets with the router’s public IP address.
3.9 UPNP Service Setup
The
UPnP
(Universal Plug and Play) protocol is supported to bring to network connected
devices the ease of installation and configuration which is already available for directly
connected PC peripherals with the existing Windows 'Plug and Play' system. For NAT routers,
the major feature of UPnP on the router is “NAT Traversal”. This enables applications inside
the firewall to automatically open the ports that they need to pass through a router. It is more
reliable than requiring a router to work out by itself which ports need to be opened. Further,
the user does not have to manually set up port mappings or a DMZ.
UPnP is available on
Windows XP
and the router provides the associated support for MSN Messenger to allow full
use of the voice, video and messaging features.
Enable UPNP Service
Accordingly, you can enable either the
Connection Control
Service
or
Connection Status Service
.
After setting
Enable UPNP Service
setting, an icon of
IP Broadband Connection on Router
on Windows XP/Network Connections will appear. The connection status and control status
will be able to be activated. The NAT Traversal of UPnP enables the multimedia features of
Page 109 / 173
Vigor2900 Series User’s Guide
103
your applications to operate. This has to manually set up port mappings or use other similar
methods. The screenshots below show examples of this facility.
The UPnP facility on the router enables UPnP aware applications such as MSN Messenger to
discover what are behind a NAT router. The application will also learn the external IP address
and configure port mappings on the router. Subsequently, such a facility forwards packets from
the external ports of the router to the internal ports used by the application.
The reminder as regards concern about Firewall and UPnP -
Can't work with Firewall Software
Enabling firewall applications on your PC may cause the UPnP function not
working properly. This is because these applications will block the accessing
ability of some network ports.
Security Considerations
Activating the UPnP function on your network may incur some security threats.
You should consider carefully these risks before activating the UPnP function.
Page 110 / 173
Vigor2900 Series User’s Guide
104
¾
Some Microsoft operating systems have found out the UPnP weaknesses and
hence you need to ensure that you have applied the latest service packs and
patches.
¾
Non-privileged users can control some router functions, including removing
and adding port mappings.
The UPnP function dynamically adds port mappings on behalf of some
UPnP-aware applications. When the applications terminate abnormally, these
mappings may not be removed.
3.10 VoIP Setup
Note: This setting is available for V model series.
Voice over IP network (VoIP) enables you to use your broadband Internet connection to make
toll quality voice calls over the Internet.
There are many different call signaling protocols, methods by which VoIP devices can talk to
each other. The most popular protocols are SIP, MGCP, Megaco and H.323. These protocols
are not all compatible with each other (except via a soft-switch server).
The Vigor V models support the SIP protocol as this is an ideal and convenient deployment
for the ITSP (Internet Telephony Service Provider) and softphone and is widely supported.
SIP is an end-to-end, signaling protocol that establishes user presence and mobility in VoIP
structure. Every one who wants to talk using his/her SIP Uniform Resource Identifier, “SIP
Address”. The standard format of SIP URI is
sip: user:password @ host: port
Some fields may be optional in different use. In general, "host” refers to a domain. The
“userinfo” includes the user field, the password field and the @ sign following them. This is
very similar to a URL so some may call it “SIP URL”. SIP supports peer-to-peer direct calling
and also calling via a SIP proxy server (a role similar to the gatekeeper in H.323 networks),
while the MGCP protocol uses client-server architecture, the calling scenario being very
similar to the current PSTN network.
After a call is setup, the voice streams transmit via RTP (Real-Time Transport Protocol).
Different codecs (methods to compress and encode the voice) can be embedded into RTP
packets. Vigor V models provide various codecs, including G.711 A/μ-law, G.723, G.726 and
G.729 A & B. Each codec uses a different bandwidth and hence provides different levels of
voice quality. The more bandwidth a codec uses the better the voice quality, however the
codec used must be appropriate for your Internet bandwidth.
Usually there will be two types of calling scenario, as illustrated below:
z
Calling via SIP Servers
First, the Vigor V models of yours will have to register to a SIP Registrar by sending
registration messages to validate. Then, both parties’ SIP proxies will forward the
sequence of messages to caller to establish the session.
If you both register to the same SIP Registrar, then it will be illustrated as below:

Rate

3.5 / 5 based on 2 votes.

Popular DrayTek Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top