Page 106 / 145 Scroll up to view Page 101 - 105
96
Appendix B: Wireless Security
Security Threats Facing Wireless Networks
Wireless-G VPN Broadband Router
WPA Pre-Shared Key
. If you do not have a RADIUS server, select the type of algorithm, TKIP or AES, enter a
password in the Pre-Shared key field of 8-64 characters, and enter a Group Key Renewal period time between
0 and 99,999 seconds, which instructs the Router or other device how often it should change the encryption
keys.
WPA RADIUS
. WPA used in coordination with a RADIUS server. (This should only be used when a RADIUS
server is connected to the Router or other device.) First, select the type of WPA algorithm,
TKIP
or
AES
. Enter
the RADIUS server’s IP Address and port number, along with a key shared between the device and the server.
Last, enter a Group Key Renewal period, which instructs the device how often it should change the encryption
keys.
RADIUS
. WEP used in coordination with a RADIUS server. (This should only be used when a RADIUS server is
connected to the Router or other device.) First, enter the RADIUS server’s IP Address and port number, along
with a key shared between the device and the server. Then, select a WEP key and a level of WEP encryption,
and either generate a WEP key through the Passphrase or enter the WEP key manually.
Implementing encryption may have a negative impact on your network’s performance, but if you are transmitting
sensitive data over your network, encryption should be used.
These security recommendations should help keep your mind at ease while you are enjoying the most flexible
and convenient technology Linksys has to offer.
Page 107 / 145
97
Wireless-G VPN Broadband Router
Appendix C: Using the Linksys QuickVPN Software for Windows 2000 or XP
Overview
Appendix C: Using the Linksys QuickVPN Software for
Windows 2000 or XP
Overview
The Linksys Wireless-G VPN Broadband Router offers a free QuickVPN software program for computers running
Windows 2000 or XP. (Computers running other operating systems will have to use a third-party VPN software
program.) This guide describes how to install and use the Linksys QuickVPN software.
Before You Begin
The QuickVPN software program only works with a Wireless-G VPN Broadband Router that meets these two
criteria: 1) it is running firmware version 2.36 or higher, and 2) it MUST be properly configured to accept a
QuickVPN connection. If you need to upgrade the Router’s firmware or configure it for a QuickVPN connection,
refer to “Appendix H: Upgrading Firmware.”
After you have verified that the Router is ready for a QuickVPN connection, make sure you have the necessary
information: user name, password, and server address for your QuickVPN connection. If you do not have this
information, contact your system administrator.
Installing the LInksys QuickVPN Software
1.
Go to
www.linksys.com
and select
Products
.
2.
Click
Business Solutions
.
3.
Click
Router/VPN Solutions
.
vpn
(virtual private network): a security
measure to protect data as it leaves one
network and goes to another over the Internet.
software
: instructions for the computer.
Figure C-1: Setup Wizard - Welcome Screen
NOTE:
If you have the Wireless-G VPN Broadband Router Setup CD-ROM available, then follow
these instructions:
1.
Insert the Setup CD-ROM into your CD-ROM drive. The Setup Wizard should run automatically,
and the
Welcome
screen should appear. If it does not, click
Start
and then
Run
. In the field
provided, enter
D:\setup.exe
(if “D” is the letter of your CD-ROM drive).
2.
Click
Install QuickVPN Software
. Then follow the on-screen instructions.
Page 108 / 145
98
Wireless-G VPN Broadband Router
Appendix C: Using the Linksys QuickVPN Software for Windows 2000 or XP
Using the Linksys QuickVPN Software
4.
Click
WRV54G
.
5.
Click
Linksys QuickVPN Utility
in the More Information section.
6.
Save the zip file to your PC, and extract the .exe file.
7.
Double-click the .exe file, and follow the on-screen instructions. Then proceed to the next section, “Using the
Linksys QuickVPN Software.”
Using the Linksys QuickVPN Software
1.
Double-click the Linksys QuickVPN software icon on your desktop or in the system tray.
2.
The login screen will appear. Enter a name for your profile.
Then enter the User Name and Password you have been assigned.
In the
Server Address
field, enter the IP address or domain name of the Wireless-G VPN Broadband Router.
3.
To begin your QuickVPN connection, click the
Connect
button. To save this profile, click the
Save
button. To
delete this profile, click the
Delete
button. For information, click the
Help
button.
4.
When your QuickVPN connection is active, the status screen will appear, and the QuickVPN tray icon will turn
green. It will display the IP address of the remote end of the VPN tunnel, the time and date the VPN tunnel
began, and the total length of time the VPN tunnel has been active.
To terminate the VPN tunnel, click the
Disconnect
button. If you want to change your password, click the
Change Password
button. For information, click the
Help
button.
5.
If you clicked the Change Password button and have permission to change your own password, you will see
the
Connect Virtual Private Connection
screen. Enter your password in the
Old Password
field. Enter your new
password in the
New Password
field. Then enter the new password again in the
Confirm New Password
field.
Click the
OK
button to save your new password. Click the
Cancel
button to cancel your change. For
information, click the
Help
button.
6.
You can create multiple profiles by repeating steps 2 and 3 for each profile.
Figure C-4: QuickVPN Software - Profile
NOTE:
You can change your password only if you have been granted that privilege by your system
administrator.
Figure C-6: QuickVPN Tray Icon - Connection Available
Figure C-7: QuickVPN Software - Change Password
Figure C-5: QuickVPN Software - Status
Figure C-3: QuickVPN Tray
Icon - No Connection
Figure C-2: QuickVPN
Desktop Icon
Page 109 / 145
99
Appendix D: Configuring IPSec between a Windows 2000 or XP Computer and the Router
Introduction
Wireless-G VPN Broadband Router
Appendix D: Configuring IPSec between a Windows 2000 or
XP Computer and the Router
Introduction
This document demonstrates how to establish a secure IPSec tunnel using preshared keys to join a private
network inside the Router and a Windows 2000 or XP computer. You can find detailed information on configuring
the Windows 2000 server at the Microsoft website:
Microsoft KB Q252735 - How to Configure IPSec Tunneling in Windows 2000
Microsoft KB Q257225 - Basic IPSec Troubleshooting in Windows 2000
Environment
The IP addresses and other specifics mentioned in this appendix are for illustration purposes only.
Windows 2000 or Windows XP
IP Address: 140.111.1.2 <= User ISP provides IP Address; this is only an example.
Subnet Mask: 255.255.255.0
WRV54G
WAN IP Address: 140.111.1.1 <= User ISP provides IP Address; this is only an example.
Subnet Mask: 255.255.255.0
LAN IP Address: 192.168.1.1
Subnet Mask: 255.255.255.0
NOTE:
Keep a record of any changes you make.
Those changes will be identical in the Windows
“secpol” application and the Router’s Web-based
Utility.
NOTE:
The text on your screen may differ from
the text in your instructions regarding the
OK
or
Close
buttons; click the appropriate button on
your screen.
Page 110 / 145
100
Appendix D: Configuring IPSec between a Windows 2000 or XP Computer and the Router
How to Establish a Secure IPSec Tunnel
Wireless-G VPN Broadband Router
How to Establish a Secure IPSec Tunnel
Step 1: Create an IPSec Policy
1.
Click the
Start
button, select
Run
, and type
secpol.msc
in the
Open
field.
The
Local Security Setting
screen
will appear.
2.
Right-click
IP Security Policies on Local Computer
(Win XP) or
IP Security Policies on Local Machine
(Win 2000), and click
Create IP Security Policy
.
3.
Click the
Next
button, and then enter a name for your policy (for example, to_Router). Then, click
Next
.
4.
Deselect the
Activate the default response rule
check box, and then click the
Next
button.
5.
Click the
Finish
button, making sure the
Edit
check box is checked.
Step 2: Build Filter Lists
Filter List 1: win->Router
1.
In the new policy’s properties screen, verify that the
Rules
tab is selected. Deselect the
Use Add Wizard
check box, and click the
Add
button to create a new rule.
2.
Make sure the
IP Filter List
tab is selected, and click the
Add
button.
NOTE:
The references in this section to “win” are
references to Windows 2000 and XP.
Figure D-1: Local Security Screen
Figure D-2: Rules Tab
Figure D-3: IP Filter List Tab
NOTE:
The text on your screen may differ from
the text in your instructions regarding the
OK
or
Close
buttons; click the appropriate button on
your screen.

Rate

4.5 / 5 based on 2 votes.

Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top