User guide

ManualsBrandsMultitech ManualsComputer equipmentRouteFinder RF850

RouteFinder

Internet Security Appliance

RF850

RF860

Quick Start Guide

Summary of content (32 pages)

PAGE 1
RouteFinder® Internet Security Appliance RF850 RF860 Quick Start Guide
PAGE 2
Copyright and Techncial Support Quick Start Guide RouteFinder RF850/860 82100051L, Revision B Copyright This publication may not be reproduced, in whole or in part, without prior expressed written permission from Multi-Tech Systems, Inc. All rights reserved. Copyright © 2006-7, by Multi-Tech Systems, Inc. Multi-Tech Systems, Inc. makes no representations or warranty with respect to the contents hereof and specifically disclaims any implied warranties of merchantability or fitness for any particular purpose.
PAGE 3
Table of Contents Contents Chapter 1 – Introduction............................................................................................................................. 4 RouteFinder Documentation ............................................................................................................... 4 Safety Warnings.................................................................................................................................... 4 Shutdown Caution .........................
PAGE 4
Chapter 1 – Introduction Chapter 1 – Introduction RouteFinder Documentation This Quick Start Guide is intended to provide the experienced system administrator the information needed to quickly get the RouteFinder up and running. A User Guide with more detailed information is provided on the RouteFinder CD or the Multi-Tech Systems, Inc. Web site. Safety Warnings Lithium Battery Caution Danger of explosion if battery is incorrectly replaced.
PAGE 5
Chapter 1 – Introduction Shutdown Caution Never unplug the RouteFinder power until after you have performed the Shutdown process. If the RouteFinder is not properly shut down before unplugging the Power, the next startup may take a little longer, or in the worst case, data could be lost. Ship Kit Contents The RouteFinder is shipped with the following: • One Multi-Tech Systems, Inc.
PAGE 6
Chapter 2 – Installation Chapter 2 – Installation Installation Notes See the User Guide for sections on Planning Your Network and Establishing an Address Table. Front Panel LEDs 10MB Description WAN1, WAN2/DMZ: LAN: ACT WAN1, WAN2/DMZ: LAN: 100MB WAN1, WAN2/DMZ: Lights when a successful 10Base-T Internet connection is established. Lights when a successful 10Base-T Ethernet connection is established. Lights when the port has a valid Internet connection.
PAGE 7
Chapter 2 – Installation Cabling Procedure Make the proper connections as illustrated in this drawing of the RouteFinder back panel. Basic Connections 1. Using an RJ-45 Ethernet cable, connect the LAN jack to a PC, internal network switch, or hub. Note: Use a cross-over Ethernet cable if connecting to a single device. 2. Using an RJ-45 Ethernet cable, connect the WAN 1 jack to a cable modem or DSL modem connected to an Internet Service Provider. 3.
PAGE 8
Chapter 2 – Installation Setting up a Workstation and Starting the RouteFinder This section of the Quick Start covers the steps for setting up TCP/IP communication on the PC(s) connected to the RouteFinder, starting up the RouteFinder, and opening the RouteFinder Web Management program. Establish TCP/IP Communication The RouteFinders have built-in DHCP server functionality, so you can set the PC to obtain a dynamic IP address. The following directions are for Windows 2000+/XP operating systems.
PAGE 9
Chapter 2 – Installation 4. The Local Area Connection Properties dialog box displays. • Select Internet Protocol [TCP/IP]. • Click the Properties button. 5. Once you click the Properties button, the following screen displays. To have your DHCP client obtain a dynamic IP address, click the button for Obtain an IP address automatically. 6. Close out of the Control Panel. 7. Repeat these steps for each PC on your network.
PAGE 10
Chapter 2 – Installation Open a Web Browser Note: Be sure that the RouteFinder is cabled and that the power is connected. See the cabling drawings at the beginning of this chapter. Bring up a Web browser on the workstation. • Type the default Gateway address: https://192.168.2.1 • Press Enter IMPORTANT: Be sure to type https (http will not work). Note: Make sure your PC’s IP address is in the same network as the router’s IP address.
PAGE 11
Chapter 2 – Installation Web Management Software Opens The Web Management software Home screen displays. This software is factory-installed on your RouteFinder. (This is a view of the top part of the Home screen.) Navigating Through the Software Screens Before using the software, you may find the following information about navigating the screens and the structuring of the menus helpful.
PAGE 12
Chapter 2 – Installation Other Screen Options Home Wizard Setup Help Logout The main screen. Change passwords and quickly set up your RouteFinder with the basic configuration that will set it up as a firewall. Describes what to do on each screen. Logout and return to the login screen.
PAGE 13
Chapter 3 – Configuration Using Web Management Software Chapter 3 – Configuration Using Web Management Software Initial Configuration Step Set Up Your Time Zone • Click Administration on the Menu Bar. The System Setup screen displays.
PAGE 14
Chapter 3 – Configuration Using Web Management Software The Wizard Setup Screen Click on the Wizard Setup button located under the Menu Bar. The Wizard Setup screen displays. The screen establishes the firewall setup and can be used to enter initial data for other setups. 1. Enter your Administrator Email Address (can be anything). Example: admin@yourdomain.com 2. Enter your Hostname for the RouteFinder (can be anything). Example: RouteFinder.domainname.com 3.
PAGE 15
Chapter 3 – Configuration Using Web Management Software Chapter 4 – Configuration Examples These examples show how to configure the RouteFinder using the Web Management software program. The Wizard Setup utility provides a basic firewall connection, while the Web Management software allows you to configure VPN features, management features, and other options. Example 1 – Setup Two RouteFinders The example can be used for a LAN-to-LAN (branch office) setup.
PAGE 16
Chapter 3 – Configuration Using Web Management Software Example 1 –Two RouteFinders – Side A Step 2 – Packet Filters > Packet Filter Rules 1. Go to the Packet Filters > Packet Filter Rules screen to set the VPN client tunnel rights. The Packet Filter rights established on this screen give the client access across the tunnel to your host network. 2. In the System Defined Rules section, uncheck the Status box, if a check mark is present when setting up User Defined Rules. 3.
PAGE 17
Chapter 3 – Configuration Using Web Management Software Example 1 –Two RouteFinders – Side A Step 3 – VPN Setup (Continued) The Add IKE Connection screen displays. All settings can be left at the default unless otherwise indicated: 1. Connection Name: Enter in the name of the VPN tunnel you want to create. Example: Test-Tunnel 2. Secret: Enter a Secret password (which has to match on both ends of the tunnel). For this example, enter test. 3. Select Encryption: Select 3DES. 4. Local WAN IP: Select WAN. 5.
PAGE 18
Chapter 3 – Configuration Using Web Management Software Example 1 –Two RouteFinders – Side B RouteFinder Setup – Side B Side A Side B Step 1 – Networks & Services > Network 1. Log in to your RouteFinder software and go to Networks & Services > Network Configuration screen. 2. Click the Add button to open the fields for entering your network information. 3. Create a new network name for the Remote LAN by entering a Name, IP Address, and Subnet Mask.
PAGE 19
Chapter 3 – Configuration Using Web Management Software Example 1 –Two RouteFinders – Side B Step 2 – Packet Filters > Packet Filter Rules 1. Go to the Packet Filters > Packet Filter Rules screen to set the VPN client tunnel rights. The Packet Filter rights established on this screen give the client access across the tunnel to your host network. 2. In the System Defined Rules section, uncheck the Status box, if a check mark is present when adding User Defined Packet Filters Rules. 3.
PAGE 20
Chapter 3 – Configuration Using Web Management Software Example 1 –Two RouteFinders – Side B Step 3 – VPN Setup (Continued) The Add an IKE Connection screen displays. All settings can be left at the default unless otherwise indicated: 1. Connection Name: Enter in the name of the VPN tunnel you want to create. Example: Test-Tunnel. 2. Secret: Enter the Secret password (which has to match on both ends of the tunnel). For this example, enter test. 3. Select Encryption: Select 3DES. 4.
PAGE 21
Chapter 3 – Configuration Using Web Management Software Example 2 –Two RouteFinders Behind a NAT Device – Side A Example 2 – Set Up Two RouteFinders Behind a NAT Device Side A Side B RouteFinder Setup – Side A Step 1 – Networks & Services > Networks 1. Login to your RouteFinder and go to the Networks & Services > Network Configuration screen. 2. Click the Add button to open the fields for entering the network information. 3.
PAGE 22
Chapter 3 – Configuration Using Web Management Software Example 2 –Two RouteFinders Behind a NAT Device – Side A Step 2 – Packet Filters > Packet Filter Rules 1. Go to the Packet Filters > Packet Filters Rules screen to set the VPN client tunnel rights. The Packet Filter rights established on this screen give the client access across the tunnel to your host network. 2. In the System Defined Rules section, uncheck the Status box, if a check mark is present. 3.
PAGE 23
Chapter 3 – Configuration Using Web Management Software Example 2 –Two RouteFinders Behind a NAT Device – Side A Step 3 – VPN Setup (Continued) The Add IKE Connection screen displays. All settings can be left at the default unless otherwise indicated: 1. Connection Name: Enter a name for the VPN tunnel you want to create. For this example, enter Behind-NAT. 2. Secret: Enter the Secret password (which has to match on both ends of the tunnel). For this example, enter test. 3. Select Encryption: Select 3DES.
PAGE 24
Chapter 3 – Configuration Using Web Management Software Example 2 –Two RouteFinders Behind a NAT Device – Side B RouteFinder Setup – Side B Side A Side B Step 1 -- Network & Services > Network 1. Log into your RouteFinder and go to the Networks & Services > Network Configuration screen. 2. Click the Add button to open the fields for entering your network information. 3. Create a new network name for the RF850-WAN by entering the Name, IP Address, and Subnet Mask.
PAGE 25
Chapter 3 – Configuration Using Web Management Software Example 2 –Two RouteFinders Behind a NAT Device – Side B Step 2 – Packet Filters > Packet Filter Rules 1. Go to the Packet Filters > Packet Filter Rules screen to set the VPN client tunnel rights. The Packet Filter rights established on this screen give the client access across the tunnel to your host network. 2. In the System Defined Rules section, uncheck the Status box, if a check mark is present. 3.
PAGE 26
Chapter 3 – Configuration Using Web Management Software Example 2 –Two RouteFinders Behind a NAT Device – Side B Step 3 – VPN Setup (Continued) The Add IKE Connection screen displays. All settings can be left at the default unless otherwise indicated: 1. Connection Name: Enter the name of the VPN tunnel you want to create. For this example, enter Behind-NAT. 2. Secret: Enter the Secret password (which has to match on both ends of the tunnel). For this example, enter test. 3. Select Encryption: Select 3DES.
PAGE 27
Chapter 4 – Configuration Examples Example 3 Example 3 – Remote Client-to-LAN Configuration Using DNAT and Aliasing Use this procedure to configure the RouteFinder with DNAT and Aliasing. This configuration allows a Windows Remote Client to Telnet through the RouteFinder to several Windows Operating Systems located on the LAN. Remote Client-to-LAN Configuration Using DNAT and Aliasing Through the RouteFinder 1. Networks & Services > Network screen Enter: LAN Network, 192.168.2.0, 255.255.255.
PAGE 28
Chapter 3 – Configuration Using Web Management Software Example 4 Example 4 – Client-to-LAN Configuration Using PPTP Tunneling Use this procedure to configure the RouteFinder as a PPTP server for VPN Remote Client Access. This is also known as the PPTP Roadwarrior configuration. Note: IPX and Netbeui are not supported when using PPTP tunneling. Remote Client-to-LAN Configuration Using PPTP Tunneling Through the RouteFinder 1. Networks & Services > Network screen Enter: LAN Network, 192.168.2.0, 255.255.
PAGE 29
Chapter 5 – URL Categorization Chapter 5 – URL Categorization The Universal Resource Locator (URL) Categorization License Key allows you to set up a URL database that limits clients’ access to places on the Internet by blocking sites you do not want accessed. In other words, you can deny users access to various categories of Web sites you select. Important Settings The RouteFinder must be connected to the Internet for the URL License to be activated. Setting Up HTTP Proxy and URL Filtering 1.
PAGE 30
Chapter 5 – URL Categorization 3. Navigate to the Administration > License Key screen. • For the URL Categorization License Key, click the Open button. You can enter a license key; or if the key was already entered, the screen shows the license number and its expiration date. (Screen not shown). IMPORTANT: It is important that the serial number be entered in upper case. Using upper case letters, enter the 11-digit serial number of the URL License Key and click the Save button. 4.
PAGE 31
Chapter 5 – URL Categorization How to Test Web Sites for Blocking You can test specific Web sites to see if the URL has been blocked (use Get URL Category to perform this test) or submit a site to be blocked or unblocked by the SurfControl software, which sets up the categories stored in this software. How to Test the Filtering Type a URL in the http:// box and click the Go button. This will test the URL to see if it is allowed or blocked.
PAGE 32
82100051L