Home » D-Link Manuals » Hubs & Switches » D-Link DWC-1000 » Manual Viewer

D-Link DWC-1000 DWC-1000 User's Guide - Page 93

Configuring VPN Clients, Example of Gateway-to-Gateway IPsec VPN Tunnel

Add to My Manuals
Save this manual to your list of manuals

Page 93 highlights

VPN Settings Configuring VPN Clients The wireless controller supports the following types of tunnels: • Gateway-to-gateway VPN. This setup connects two or more wireless controllers to secure traffic between remote sites. Figure 6-1 shows an example of this configuration. • Remote Client (client-to-gateway VPN tunnel). In this setup, the IP address of the remote PC is not known. Therefore, the remote client initiates the VPN tunnel and the gateway acts as a responder. • Remote client behind a NAT controller: In this setup, the client has a dynamic IP address and is located behind a NAT controller. The remote PC client at the NAT controller initiates a VPN tunnel, as the IP address of the remote NAT controller is not known in advance. The gateway Option port acts as a responder. Note: VPN client software is required to establish a VPN tunnel between the wireless controller and remote endpoint. Open source software, such as OpenVPN or Openswan, as well as Microsoft IPsec VPN software can be configured with the required IKE policy parameters to establish an IPsec VPN tunnel. For more information, refer to the documentation for the VPN client software. Figure 6-1. Example of Gateway-to-Gateway IPsec VPN Tunnel Using Two Wireless Controllers Connected to the Internet 93 DWC-1000 Wireless Controller User's Guide

Section	Page
Front Page	1
Contents	2
Preface	7
Audience	7
Document Revision Level	8
Changes in this Revision	8
Related Documents	8
Document Conventions	9
Safety and Warnings	9
Typographic Conventions	9
1. Product Overview	10
Features and Benefits	11
Scalable architecture with stacking and redundancy	11
Centralized management and configuration	11
Security	11
2. Unpacking and Installation	12
Unpacking	13
Package Contents	13
Required Tools and Information	13
Selecting a Location	14
Front Panel Ports and LEDs	15
Rear Panel	17
Using the Reset Button	17
Bottom Panel (Default IP Address)	18
Licenses	18
Installing the Wireless Controller	18
Rack-Mounting the Wireless Controller	18
Connecting the Wireless Controller	19
Sample Applications	21
Connecting to a Secured Network	21
Authenticating to an Authentication Server	22
Logging In to a Captive Portal	24
Where to Go from Here	25
3. Basic Configuration	26
Logging In to the Web Management Interface	27
Web Management Interface Layout	30
Basic Configuration Procedures	31
Basic Configuration Step #1. Enable DHCP Server (Optional)	32
Basic Configuration Step #2. Select the Access Points to be Managed	33
Basic Configuration Step #3. Change the SSID Name and Set Up Security	35
Basic Configuration Step #4. Confirm Access Point Profile is Associated	39
Basic Configuration Step #5. Configure Captive Portal Settings	40
1. Create a captive portal group	40
2. Add captive portal users	41
3. Associate the captive portal group to an interface	44
4. Customize the captive portal login page	45
Basic Configuration Step #6. Use SSID with RADIUS	48
Where to Go from Here	48
4. Advanced Configuration Settings	49
QoS Configuration	50
Enabling QoS Mode	50
Defining DSCP and CoS Settings	52
Configuring DSCP Priorities	52
Configuring CoS Priorities	53
VLANs	56
Enabling VLANs	56
Creating VLANs	57
Editing VLANs	59
Deleting VLANs	61
Port VLANs	62
MultiVLAN Subnets	63
DMZ Settings	66
Configuring a Port to Operate as a DMZ	66
Configuring DMZ Settings	67
Static Routing	69
Adding a Static Route	69
Editing Static Routes	71
Deleting Static Routes	72
Auto-Failover Settings	73
Load Balancing Settings	75
Additional Advanced Configuration Settings	77
5. Securing Your Network	79
Managing Clients	80
Viewing Known Clients and Adding Clients	80
Editing Clients	83
Deleting Clients	84
Content Filtering	85
Enabling Content Filtering	85
Specifying Approved URLs	86
Specifying Blocked Keywords	88
Exporting Web Filters	89
Additional Security Settings	91
6. VPN Settings	92
Configuring VPN Clients	93
Configuring IPsec Policies	95
Adding IPsec Policies	95
Example of a Manual Policy	103
Editing IPsec Policies	104
Enabling IPsec Policies	105
Disabling IPsec Policies	106
Exporting IPsec Policies	107
Deleting IPsec Policies	108
Mode Config Settings	109
DHCP Range	112
PPTP/LT2P Tunnels	113
PPTP Tunnel Support	113
Configuring PPTP Clients	113
Configuring PPTP Servers	114
L2TP Tunnel Support	118
OpenVPN Support	121
Additional VPN Settings	123
7. Viewing Status and Statistics	124
Viewing CPU and Memory Utilization	126
Viewing System Status	128
Viewing Managed Access Point Information	130
Viewing Cluster Information	132
Viewing Hardware and Usage Statistics	134
Wired Port Statistics	136
Managed Access Points and Associated Clients Statistics	137
LAN-Associated Clients	139
WLAN-Associated Clients	141
Sessions through the Wireless Controller	142
Associated Clients	143
LAN Clients	145
Detected Clients	146
Access Point Status	148
Access Point Summary	150
Managed Access Point	152
Authentication Failure Status	154
AP RF Scan Status	156
Global Status	158
Peer Controller Status	161
Peer Controller Configuration Status	163
Peer Controller Managed AP Status	164
IP Discovery	166
Configuration Receive Status	168
AP Hardware Capability	170
Client Status	171
Associated Client Status	173
Associated Client SSID Status	175
Associated Client VAP Status	177
Controller Associated Client Status	179
Detected Client Status	181
Pre-Authorization History	183
Detected Client Roam History	184
8. Maintenance	185
Group Management	186
Adding User Groups	186
Editing User Groups	189
Deleting User Groups	189
Configuring Login Policies	190
Configuring Browser Policies	191
Configuring IP Policies	193
User Management	196
Adding Users Manually	196
Importing Users	198
Editing Users	199
Deleting Users	200
Backing Up Configuration Settings	201
Restoring Configuration Settings	202
Restoring Factory Default Settings	203
Rebooting the Wireless Controller	204
Upgrading Firmware	205
Access Point Firmware Upgrade	205
Wireless Controller Firmware Upgrade	206
Activating Licenses	208
Using the Command Line Interface	210
9. Troubleshooting	211
LED Troubleshooting	212
Power LED is OFF	212
LAN Port LEDs Not ON	212
Troubleshooting the Web Management Interface	213
Using the Reset Button to Restore Default Settings	213
Problems with Date and Time	214
Discovery Problems with Access Points	214
Connection Problems	214
Network Performance and Rogue Access Point Detection	215
Using Diagnostic Tools on the Wireless Controller	215
Pinging an IP Address	215
Using Traceroute	216
Performing DNS Lookups	217
Capturing Log Packets	218
Checking Log Settings	219
Defining What to Log	219
Tracking Traffic	221
Accepted Packets Example	222
Dropped Packets Example	222
Remote Logging	223
Wireless Controller Event Log	226
IPsec VPN Log Messages	227
(USA and Canada Only)	235
Appendix D. Limited Lifetime Warranty	235

Match case Limit results 1 per page

VPN Settings

DWC-1000 Wireless Controller User’s Guide

Configuring VPN Clients

The wireless controller supports the following types of tunnels:

•

Gateway-to-gateway VPN. This setup connects two or more wireless controllers to secure

traffic between remote sites. Figure

6-1 shows an example of this configuration.

•

Remote Client (client-to-gateway VPN tunnel). In this setup, the IP address of the remote

PC is not known. Therefore, the remote client initiates the VPN tunnel and the gateway

acts as a responder.

•

Remote client behind a NAT controller: In this setup, the client has a dynamic IP address

and is located behind a NAT controller. The remote PC client at the NAT controller initiates

a VPN tunnel, as the IP address of the remote NAT controller is not known in advance.

The gateway Option port acts as a responder.

Note:

VPN client software is required to establish a VPN tunnel between the wireless

controller and remote endpoint. Open source software, such as OpenVPN or Openswan, as

well as Microsoft IPsec VPN software can be configured with the required IKE policy

parameters to establish an IPsec VPN tunnel. For more information, refer to the

documentation for the VPN client software.

Figure

6-1. Example of Gateway-to-Gateway IPsec VPN Tunnel

Using Two Wireless Controllers Connected to the Internet