Page 46 / 145 Scroll up to view Page 41 - 45
36
Chapter 6: Configuring the Wireless-G VPN Broadband Router
The Security Tab - VPN
Wireless-G VPN Broadband Router
Key Life Time
. In the
Key Lifetime
field, you may optionally select to have the key expire at the end of a time
period of your choosing. Enter the number of seconds you’d like the key to be used until a re-key negotiation
between each endpoint is completed.
Other Options
NetBIOS broadcast
. Click the checkbox if you want NetBIOS traffic to pass through the VPN tunnel. By default,
the Router blocks these broadcasts.
Anti-replay
. This protects the Router from anti-replay attacks, when people try to capture your authentication
packets in an attempt to gain access. The feature is enabled by default.
Keep Alive
. This feature helps maintain the connections of IPSec tunnels. Whenever a connection is dropped and
the drop is detected, then the connection will be re-established immediately. Click the checkbox to enable this
feature.
If IKE failed more than -- times, block this unauthorized IP for -- seconds
. This feature is enabled by
default. It enables the Router to block unauthorized IP addresses. Specify the number of times IKE must fail
before the Router blocks that unauthorized IP address. Then specify how many seconds you want the
unauthorized IP address to be blocked.
When you have finished making changes to this screen, click the
Save Settings
button to save the changes, or
click the
Cancel Changes
button to undo your changes.
Page 47 / 145
37
Chapter 6: Configuring the Wireless-G VPN Broadband Router
The Access Restrictions Tab - Internet Access
Wireless-G VPN Broadband Router
The Access Restrictions Tab - Internet Access
The
Internet Access
screen allows you to block or allow specific kinds of Internet usage and traffic, such as
Internet access, designated services, websites, and inbound traffic during specific days and times.
Internet Access Policy
. Access can be managed by a policy. Use the settings on this screen to establish an
access policy (after the
Save Settings
button is clicked). Selecting a policy from the drop-down menu will
display that policy’s settings. To delete a policy, select that policy’s number and click the
Delete
button. To view
all the policies, click the
Summary
button.
Status
. Policies are disabled by default. To enable a policy, select the policy number from the drop-down menu,
and click the radio button beside
Enable
.
You can create two kinds of policies, one kind to manage Internet access and another kind to manage inbound
traffic.
To create an Internet Access Policy:
1.
Select a number from the
Internet Access Policy
drop-down menu.
2.
To enable this policy, click the radio button beside
Enable
.
3.
Enter a Policy Name in the field provided.
4.
Select
Internet Access
as the Policy Type.
5.
Click the
Edit List
button to select which PCs will be affected by the policy. The
List of PCs
screen will appear.
You can select a PC by MAC Address or IP Address. You can also enter a range of IP Addresses if you want this
policy to affect a group of PCs. After making your changes, click the
Apply
button to apply your changes or
Cancel
to cancel your changes. Then click the
Close
button.
6.
Click the appropriate option,
Deny
or
Allow
, depending on whether you want to block or allow Internet access
for the PCs you listed on the
List of PCs
screen.
7.
Decide which days and what times you want this policy to be enforced. Select the individual days during
which the policy will be in effect, or select
Everyday
. Then enter a range of hours and minutes during which
the policy will be in effect, or select
24 Hours
.
8.
You can filter access to various services accessed over the Internet, such as FTP or telnet, by selecting
services from the drop-down menus next to
Blocked Services
. (You can block up to 20 services.)
Figure 6-32: Access Restrictions Tab - Internet Access
Figure 6-33: Internet Filter Summary
Page 48 / 145
38
Chapter 6: Configuring the Wireless-G VPN Broadband Router
The Access Restrictions Tab - Internet Access
Wireless-G VPN Broadband Router
9.
Then enter the range of ports you want to filter.
If the service you want to block is not listed or you want to edit a service’s settings, then click the
Add/Edit
Service
button. Then the
Port Services
screen will appear.
To add a service, enter the service’s name in the
Service Name
field. Select its protocol from the
Protocol
drop-down menu, and enter its range in the
Port Range
fields. Then click the
Add
button.
To modify a service, select it from the list on the right. Change its name, protocol setting, or port range. Then
click the
Modify
button.
To delete a service, select it from the list on the right. Then click the
Delete
button.
When you are finished making changes on the
Port Services
screen, click the
Apply
button to save changes.
If you want to cancel your changes, click the
Cancel
button. To close the
Port Services
screen and return to
the
Access Restrictions
screen, click the
Close
button.
10. If you want to block websites with specific URL addresses, enter each URL in a separate field next to
Website
Blocking by URL Address
.
11. If you want to block websites using specific keywords, enter each keyword in a separate field next to
Website
Blocking by Keyword
.
12. Click the
Save Settings
button to save the policy’s settings. To cancel the policy’s settings, click the
Cancel
Changes
button.
To create an Inbound Traffic Policy:
1.
Select
Inbound Traffic
as the Policy Type.
2.
Select a number from the
Internet Access Policy
drop-down menu.
3.
To enable this policy, click the radio button beside
Enable
.
4.
Enter a Policy Name in the field provided.
5.
Enter the source IP address whose traffic you want to manage. Select the appropriate protocol:
TCP
,
UDP
, or
Both
. Enter the appropriate port range, or select
Any
. Enter the destination IP address whose traffic you want
to manage, or select
Any
.
6.
Click the appropriate option,
Deny
or
Allow
, depending on whether you want to block or allow network traffic.
Figure 6-34: List of PCs
Figure 6-35: Blocked Services
Page 49 / 145
39
Chapter 6: Configuring the Wireless-G VPN Broadband Router
The Access Restrictions Tab - Internet Access
Wireless-G VPN Broadband Router
7.
Decide which days and what times you want this policy to be enforced. Select the individual days during
which the policy will be in effect, or select
Everyday
. Then enter a range of hours and minutes during which
the policy will be in effect, or select
24 Hours
.
8.
Click the
Save Settings
button to save the policy’s settings. To cancel the policy’s settings, click the
Cancel
Changes
button.
When you have finished making changes to the screen, click the
Save Settings
button to save the changes, or
click the
Cancel Changes
button to undo your changes. Help information is shown on the right-hand side of a
screen. For additional information, click
More
.
Page 50 / 145
40
Chapter 6: Configuring the Wireless-G VPN Broadband Router
The Access Restrictions Tab - VPN Client Access
Wireless-G VPN Broadband Router
The Access Restrictions Tab - VPN Client Access
The Wireless-G VPN Broadband Router offers a free Linksys QuickVPN utility for Windows 2000 or XP. (For more
information, refer to “Appendix D: Using the Linksys QuickVPN Software for Windows 2000 or XP.”) If the Router
has VPN clients using this utility, then you can designate the VPN clients and their passwords on this screen.
VPN Client Status
User Name
. Enter a name for the VPN client.
Password
. Enter a password for the VPN client.
Re-enter to confirm
. Enter the password again to confirm it.
Allow user to change password?
If you want to let the user change his or her password, click the
Yes
.
When you have finished setting up a VPN client, click the
Add/Save
button to add the VPN client to your list and
save the new settings.
VPN Client List Table
VPN Client Users
. Select the appropriate group of users from the drop-down menu.
No.
This is the number assigned to this VPN client.
Active
. If you want to activate this VPN client, click the
Active
checkbox.
Username
. The Username assigned to this VPN client will be displayed here.
Password
. The Password assigned to this VPN client will be displayed here.
Edit/Remove
. If you want to change the settings for a VPN client, click the
Edit
button and then make your
changes. If you want to delete a VPN client from your list, click the
Remove
button.
When you have finished making changes to the screen, click the
Save Settings
button to save the changes, or
click the
Cancel Changes
button to undo your changes. For help information, click
More
.
Figure 6-36: Access Restrictions Tab -
VPN Client Access
NOTE:
If you want VPN clients to use the Linksys QuickVPN utility, then the Router must have the
VPN Client Access
screen as part of its Web-based Utility. If you do not see this screen, then you
must upgrade the Router’s firmware. Refer to “Appendix H: Upgrading Firmware” for further
instructions. (Before upgrading its firmware, write down the Router’s settings. You will need to
reset the Router to its factory defaults after you upgrade its firmware.)

Rate

4.5 / 5 based on 2 votes.

Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top