User Manual
Table Of Contents
- Contents
- 1. Set Up and Access the Router
- 2. Specify Your Internet Settings Manually
- Use the Internet Setup Wizard
- Manually set up the router Internet connection
- Specify IPv6 Internet connections
- Requirements for entering IPv6 addresses
- Use Auto Detect for an IPv6 Internet connection
- Use Auto Config for an IPv6 Internet connection
- Set up an IPv6 6to4 tunnel Internet connection
- Set up an IPv6 6rd Internet connection
- Set up an IPv6 fixed Internet connection
- Set up an IPv6 DHCP Internet connection
- Set up an IPv6 PPPoE Internet connection
- Change the MTU size
- Set Up and Manage Dynamic DNS
- 3. Manage the Firewall and Security
- 4. Manage the LAN and VLAN Settings
- 5. Optimize Performance
- 6. Maintain the Router
- 7. Monitor the router and the router network
- 8. Set Up VPN Connections
- Set up an IPSec VPN connection
- Set up an OpenVPN connection
- Enable and configure OpenVPN on the router
- Install OpenVPN client software on a remote client
- Install the OpenVPN client utility and VPN configuration files on a Windows-based computer
- Install the OpenVPN client utility and VPN configuration files on a Mac
- Install the OpenVPN client utility and VPN configuration files on an iOS device
- Install the OpenVPN client utility and VPN configuration files on an Android device
- 9. Manage Port Forwarding and Port Triggering Traffic Rules
- 10. Troubleshooting
- A. Supplemental information
Table 3. Phase 1 settings (Continued)
OptionsSetting
Main Mode. This mode is slower than the aggressive mode but more secure. This is
the default mode.
Aggressive Mode. This mode is faster than the main mode but less secure. This mode
is not available for IKE2.
Exchange Mode
Initiator/Responder Mode. The router can both initiate a connection to the remote
VPN router and respond to an IKE request from the remote VPN router. This is the
default mode.
Responder Mode. The router can respond to an IKE request from the remote VPN
router.
Negotiation Mode
The period in seconds for which the IKE security association (SA) is valid. When the
period times out, the next rekeying occurs. The default is 28800 seconds (8 hours).
The period can be between 600 and 604800 seconds.
SA Lifetime
Dead Peer Detection (DPD) is enabled by default.
When the router detects an IKE connection failure, it deletes the IPSec and IKE SA and
forces a reestablishment of the connection. Specify the detection period in the DPD
Interval field.
DPD
The period in seconds between consecutive DPD messages. The default is 10 seconds.
The period can be between 1 and 300 seconds.
DPD Interval
8.
In the Phase 2 Settings section, customize the settings as described in the following
table.
Table 4. Phase 2 settings
OptionsSetting
Authentication algorithmEncryption algorithmEncapsulation protocolProposal
(You can specify up
to four proposals.)
3desmd5esp (default and only
option)
aes128, aes192, or aes256
(default)
sha1 (default)
Note: The higher the SHA and AES versions, the more secure the exchange.
User Manual129Set Up VPN Connections
Insight Managed Business Router BR200