1. Home
    2. /
  2. Manuals
    3. /
  3. SnapGear
    4. /
  4. SG565
    5. /
  5. 19
Page 91 / 249 Scroll up to view Page 86 - 90
Dialin Setup
86
Dialin Setup
Once an analog modem or phone line has been attached, enable the CyberGuard SG
appliance’s COM port or internal modem for dialin.
Under
Networking
, select
Network Setup
.
From the
Connections
menu, locate the
COM
port or
Modem
on which you want to enable dialin, and select
Change to Dialin
Access
from the
Configuration
pull down menu.
Page 92 / 249
Dialin Setup
87
Figure 4-1
The following table describes the fields on the Dial-In Setup page:
Field
Description
Page 93 / 249
Dialin Setup
88
IP Address for
Dialin clients
Dialin users must be assigned local IP addresses to access
the local network.
Specify a free IP address from your local
network that the connected dial-up client will use when
connecting to the CyberGuard SG appliance.
Authentication
Scheme
The authentication scheme is the method the CyberGuard SG
appliance uses to challenge users dialing into the network.
Dialin clients must be configured to use the selected
authentication scheme.
MSCHAPv2
is the most secure, and is the only option
that also supports data encryption.
CHAP
is less secure.
PAP
(although more common) is even less secure.
None
means that no username/password
authentication is required for dialin.
Authentication
Database
The authentication database is used to verify the username
and password received from the dialin client.
Local
means the dialin user accounts created on the
CyberGuard SG appliance.
You will need to created
user accounts as described below.
This can be used
with any authentication scheme.
RADIUS
means an external RADIUS server.
You will
be prompted to enter the server IP address and
password.
This can be used with any authentication
scheme, provided that the RADIUS server also
supports it.
TACACS+
means an external TACACS+ server.
You
will be prompted to enter the server IP address and
password.
This can only be used with the
PAP
authentication scheme.
Time Out
If a dialin connection remains inactive, it can be automatically
disconnected after a specified time period.
Selecting
Enable
idle timeout
will disconnect idle connections after 15 minutes.
Idle time
can be set between 0 – 99 minutes.
After enabling and configuring the selected CyberGuard SG appliance COM
ports/Modem to support dialin, click
Continue
to create and configure the dialin user
accounts.
Page 94 / 249
Dialin Setup
89
Dialin User Accounts
User accounts must be set up before remote users can dialinto the CyberGuard SG
appliance.
The following figure shows the Dialin user account creation:
Figure 4-2
The field options in
Add New Account
are shown in the following table:
Field
Description
Username
Username for dialin authentication only.
The name is case-
sensitive (e.g.
Jimsmith
is different to
jimsmith
).
Password
Password for the remote dialin user.
Confirm
Re-enter the password to confirm.
Domain
If your network has a Windows domain server, you can attach a
domain name to your dial-in remote user accounts.
This field is
optional and can be left blank.
Page 95 / 249
Dialin Setup
90
The following figure shows the user maintenance screen:
Figure 4-3
Account list
As new dialin user accounts are added, they are displayed on the updated Account List.
To modify a password for an existing account, select the account in the Account List and
enter the new password in the
New Password
and
Confirm
fields.
Click
Apply
under
the
Delete or Change Password for the Selected Account
heading, or click
Reset
if
you make a mistake.
To delete an existing account, select
the account in the
Account List
and check
Delete
under the
Delete or Change Password for the Selected Account
heading.
If changes
to the user account are successful, the change is shown on the
Dialin Setup
screen.

Rate

4 / 5 based on 3 votes.

Popular SnapGear Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top