User Manual

ManualsBrandsLINKSYS ManualsElectronicsWireless-G Router for Mobile Broadband

Chapter 3

Advanced Configuration

Wireless-G Router for Mobile Broadband

IP Addr. Enter the IP address of the remote VPN device.

This can be static or dynamic, depending on the settings

of the remote VPN device. The IP address you enter is NOT

the IP address of the local Gateway.

IP Address Enter the IP address of the VPN device at

the other end of the tunnel.

FQDN Enter the Fully Qualified Domain Name (FQDN) of

the remote VPN device.

Domain Name Enter the domain name of the VPN

device at the other end of the tunnel.

Any Select this option to have the Router accept requests

from any IP address.

Encryption Using encryption helps make your connection

more secure. Select DES or 3DES (3DES is recommended

because it is more secure). You may choose either of these,

but it must be the same type of encryption that is being

used by the VPN device at the other end of the tunnel. If

you do not choose to encrypt your data, select Disabled.

Authentication Authentication acts as another level

of security. Select MD5 or SHA (SHA is recommended

because it is more secure). As with encryption, either of

these may be selected, if the VPN device at the other end

of the tunnel is using the same type of authentication.

Key Management

A key is a string of letters and/or numbers used for

authentication or encryption. Select Auto (IKE) for

automatic key management by the Internet Key

Exchange (IKE) protocol, or select Manual for manual key

management. The two methods are described below.

Auto (IKE)

PFS PFS (Perfect Forward Secrecy) enables automatic

re-keying to enhance security. Select Enabled to ensure

that the initial key exchange and IKE proposals are secure.

Otherwise, select Disabled.

Pre-shared Key Enter a series of numbers or letters.

Based on this word, which MUST be entered at both ends

of the tunnel if this method is used, a key is generated to

scramble (encrypt) the data being transmitted over the

tunnel, where it is unscrambled (decrypted). You may use

any combination of up to 24 numbers or letters in this

field. No special characters or spaces are allowed.

Key Lifetime You may have the key expire at the end

of a time period. Enter the number of seconds you’d like

the key to be useful, or leave it blank for the key to last

indefinitely. The default is 3600 seconds.

•

Manual

VPN> Manual Key Management

Encryption Key If you chose DES for your Encryption

setting, enter 16 hexadecimal characters, or if you chose

3DES, enter 48 hexadecimal characters.

Authentication Key If you chose MD5 for your

Authentication setting, enter 32 hexadecimal characters,

or if you chose SHA, enter 40 hexadecimal characters.

Inbound SPI Enter the Inbound Security Parameter Index

(SPI). This is the Outbound SPI for the remote VPN device.

Outbound SPI Enter the Outbound Security Parameter

Index (SPI). This is the Inbound SPI for the remote VPN

device.

Status

The status of the connection is shown.

The following settings are available if Auto (IKE) is

selected.

Connect Click this button to connect your VPN tunnel.

View Logs To view the logs, click View Logs.

Incoming Log Table

The table shows the Source IP and Destination Port

Number of incoming traffic.

VPN > Incoming Log Table

Click Refresh to update the log. Click Close to return to

the VPN screen.

Advanced Settings Before configuring these settings, c

lick

Save Settings on the VPN screen to apply your changes,

or click Cancel Changes to cancel your changes.

Then

click Advanced Settings to configure additional

settings.

Advanced IPSec VPN Tunnel Setup

Phase 1 is when the two endpoints negotiate parameters

for key exchange. Phase 2 is when they negotiate

parameters for data exchange.

Summary of content (23 pages)

PAGE 1
Advanced Configuration Chapter 3 IP Addr. Enter the IP address of the remote VPN device. This can be static or dynamic, depending on the settings of the remote VPN device. The IP address you enter is NOT the IP address of the local Gateway. • IP Address Enter the IP address of the VPN device at the other end of the tunnel. FQDN Enter the Fully Qualified Domain Name (FQDN) of the remote VPN device. • Manual Domain Name Enter the domain name of the VPN device at the other end of the tunnel.
PAGE 2
Advanced Configuration Chapter 3 Key Lifetime You may optionally select to have the key expire at the end of a time period of your choosing. Enter the number of seconds you’d like the key to be used until a re-key negotiation between each endpoint is completed. The default is 3600 seconds. Phase 2 Proposal Encryption The encryption method selected in Phase 1 is displayed. Authentication The authentication method selected in Phase 1 is displayed. PFS The status of PFS is displayed.
PAGE 3
Advanced Configuration Chapter 3 Access Restrictions > Internet Access The Internet Access screen allows you to block or allow specific kinds of Internet usage and traffic, such as Internet access, designated services, and websites during specific days and times. Summary Status Policies are disabled by default. To enable a policy, select the policy number from the drop-down menu, and select Enabled. To create a policy, follow steps 1-11. Repeat these steps to create additional policies, one at a time.
PAGE 4
Chapter 3 Advanced Configuration 6. Decide which days and what times you want this policy to be enforced. Select the individual days during which the policy will be in effect, or select Everyday. Then enter a range of hours and minutes during which the policy will be in effect, or select 24 Hours. 7. You can block websites with specific URL addresses. Enter each URL in a separate Website Blocking by URL Address field. 8. You can also block websites using specific keywords.
PAGE 5
Chapter 3 such as videoconferencing or online gaming. Some Internet applications may not require any forwarding.) When users send these types of requests to your network via the Internet, the Router will forward those requests to the appropriate servers (computers). Before using forwarding, you should assign static IP addresses to the designated servers (use the DHCP Reservation feature on the Basic Setup screen). If you need to forward all ports to one computer, click the DMZ tab.
PAGE 6
Advanced Configuration Chapter 3 Click Save Settings to apply your changes, or click Cancel Changes to cancel your changes. Applications and Gaming > QoS Quality of Service (QoS) ensures better service to high-priority types of network traffic, which may involve demanding, real-time applications, such as videoconferencing.
PAGE 7
Advanced Configuration Chapter 3 Applications MAC Address Applications Select the appropriate application. If you select Add a New Application, follow the Add a New Application instructions. Priority Select the appropriate priority: High, Medium, Normal, or Low. Click Add to save your changes. Your new entry will appear in the Summary list. Add a New Application QoS > MAC Address Enter a Name Enter a name for your device. MAC Address Enter the MAC address of your device.
PAGE 8
Advanced Configuration Chapter 3 Name This column displays the application, device, or port name. Information This column displays the port range or MAC address entered for your entry. If a pre-configured application or game was selected, there will be no valid entry shown in this section. Remove Click this button to remove an entry. Edit Click this button to make changes. Click Save Settings to apply your changes, or click Cancel Changes to cancel your changes.
PAGE 9
Advanced Configuration Chapter 3 Allow Users to Disable Internet Access Select Enabled, if you want to be able to prohibit any and all Internet connections. Otherwise, keep the default, Disabled. Backup and Restore Backup Configurations To back up the Router’s configuration settings, click this button and follow the onscreen instructions. Restore Configurations To restore the Router’s configuration settings, click this button and follow the onscreen instructions.
PAGE 10
Advanced Configuration Chapter 3 Factory Defaults Restore All Settings To reset the Router’s settings to the default values, click this button and then follow the onscreen instructions. Any settings you have saved will be lost when the default settings are restored. Administration > Firmware Upgrade Diagnostics > Ping Traceroute Test The Firmware Upgrade screen allows you to upgrade the Router’s firmware.
PAGE 11
Advanced Configuration Chapter 3 Status > Mobile Network The Mobile Network screen displays the Router’s current mobile network and mobile data card or USB adapter status. Status > Router Status > Mobile Network Mobile Network Status Network Name The name of the mobile network the Router uses is displayed. Router Information Firmware Version The version number of the Router’s current firmware is displayed. Current Time The time set on the Router is displayed.
PAGE 12
Advanced Configuration Chapter 3 Status > Local Network The Local Network screen displays information about the local, wired network. the Router. The list can be sorted by Client Name, Interface, IP Address, or MAC Address. To remove a DHCP client, click Delete. To retrieve the most up-todate information, click Refresh. To exit this screen and return to the Local Network screen, click Close. Status > Wireless Network The Wireless Network screen displays information about your wireless network.
PAGE 13
Troubleshooting Appendix A Appendix A: Troubleshooting Your computer cannot connect to the Internet. Follow the instructions until your computer can connect to the Internet: • Make sure that the Router is powered on. The Power LED should be green and not flashing. • If the Power LED is flashing, then power off all of your network devices, including the Router and computers. Then power on each device in the following order: • 1. Router 2. Computer Check the LEDs on the front panel of the Router.
PAGE 14
Troubleshooting Appendix A 4. On the first screen you see, the Basic Setup screen, click the Mobile Network tab. 5. On the Mobile Network screen, there is an Auto Connect option at the top of the screen. Select Auto, and then click Save Settings. 6. After the webpage has refreshed, click the Basic Setup tab. 7. On the Basic Setup screen, click the Connect button to connect to the mobile network. 8. The next time the Router is powered on, it will automatically connect to the mobile network. 5.
PAGE 15
Specifications Appendix B Appendix B: Specifications Model Number WRT54G3GV2-ST Standards IEEE 802.3, IEEE 802.3u, IEEE 802.11g, IEEE 802.11b Ports Internet, Ethernet (4), PC Card, USB 2.0 (3), Power, and Antenna (SMA) Button Mobile Connect/Disconnect, Reset LEDs Power, Ethernet (1-4), Wireless, Modem Internet, Mobile Internet Cabling Type UTP CAT 5 # of Antennas 1 Detachable (Y/N) Yes RF Pwr (EIRP) in dBm 802.11g: Typical 14 dBm (±1.5), 802.11b: Typical 16 dBm (±1.
PAGE 16
Appendix C Appendix C: Warranty Information Contact your service provider if the warranty support issues are to be handled by them as per your service agreements. Limited Warranty Linksys warrants to You that, for a period of one year (the “Warranty Period”), your Linksys Product will be substantially free of defects in materials and workmanship under normal use.
PAGE 17
Regulatory Information Appendix D Appendix D: Regulatory Information Safety Notices • Caution: To reduce the risk of fire, use only No.26 AWG or larger telecommunication line cord. FCC Statement • Do not use this product near water, for example, in a wet basement or near a swimming pool. This device complies with Part 15 of the FCC Rules.
PAGE 18
Appendix D Avis d’Industrie Canada Cet appareil est conforme aux normes NMB003 et RSS210 d’Industrie Canada. L’utilisation de ce dispositif est autorisée seulement aux conditions suivantes : 1. il ne doit pas produire de brouillage et 2. il doit accepter tout brouillage radioélectrique reçu, même si ce brouillage est susceptible de compromettre le fonctionnement du dispositif. Le dispositif a été conçu pour fonctionner avec une antenne ayant un gain maximum de 2 dBi.
PAGE 19
Appendix D User Information for Consumer Products Covered by EU Directive 2002/96/EC on Waste Electric and Electronic Equipment (WEEE) This document contains important information for users with regards to the proper disposal and recycling of Linksys products.
PAGE 20
Appendix D Regulatory Information Eesti (Estonian) - Keskkonnaalane informatsioon Euroopa Liidus asuvatele klientidele Français (French) - Informations environnementales pour les clients de l’Union européenne Euroopa Liidu direktiivi 2002/96/EÜ nõuete kohaselt on seadmeid, millel on tootel või pakendil käesolev sümbol , keelatud kõrvaldada koos sorteerimata olmejäätmetega. See sümbol näitab, et toode tuleks kõrvaldada eraldi tavalistest olmejäätmevoogudest.
PAGE 21
Appendix D Regulatory Information Lietuvškai (Lithuanian) - Aplinkosaugos informacija, skirta Europos Sąjungos vartotojams Nederlands (Dutch) - Milieu-informatie voor klanten in de Europese Unie Europos direktyva 2002/96/EC numato, kad įrangos, kuri ir kurios pakuotė yra pažymėta šiuo simboliu (įveskite simbolį), negalima šalinti kartu su nerūšiuotomis komunalinėmis atliekomis. Šis simbolis rodo, kad gaminį reikia šalinti atskirai nuo bendro buitinių atliekų srauto.
PAGE 22
Appendix D Regulatory Information Português (Portuguese) - Informação ambiental para clientes da União Europeia Slovenčina (Slovene) - Okoljske informacije za stranke v Evropski uniji A Directiva Europeia 2002/96/CE exige que o equipamento que exibe este símbolo no produto e/ou na sua embalagem não seja eliminado junto com os resíduos municipais não separados. O símbolo indica que este produto deve ser eliminado separadamente dos resíduos domésticos regulares.
PAGE 23
Appendix E Specifications Appendix E: Contact Information Sprint Online Resource Visit the Sprint website at www.sprint.com Sprint Technical Support Contact Sprint at 1-888-211-4727. NOTE: Make sure you have the Sprint phone number of your mobile broadband connection card or USB adapter ready before calling. To get the Sprint phone number, start the Connection Manager, and then click Menu, Device Info & Diagnostics.