Home » TP-Link Manuals » Bridges & Routers » TP-Link TL-ER6020 » Manual Viewer

TP-Link TL-ER6020 TL-ER6020 v1 User Guide - Page 90

Exchange Mode, Local ID Type, Local ID, Remote ID Type, Remote ID, IKE Proposal, Pre-shared Key, SA

Add to My Manuals
Save this manual to your list of manuals

Page 90 highlights

Exchange Mode: Select the IKE Exchange Mode in phase 1, and ensure the remote VPN peer uses the same mode.  Main: Main mode provides identity protection and exchanges more information, which applies to the scenarios with higher requirement for identity protection.  Aggressive: Aggressive Mode establishes a faster connection but with lower security, which applies to scenarios with lower requirement for identity protection. Local ID Type: Select the local ID type for IKE negotiation. IP Address: uses an IP address as the ID in IKE negotiation. FQDN: uses a name as the ID. Local ID: The local WAN IP will be inputted automatically if IP Address type is selected. If Name type is selected, enter a name for the local device as the ID in IKE negotiation Remote ID Type: Select the remote ID type for IKE negotiation. IP Address: uses an IP address as the ID in IKE negotiation. FQDN: uses a name as the ID. Remote ID: The remote gateway IP will be inputted automatically if IP Address type is selected. If Name type is selected, enter the name of the remote peer as the ID in IKE negotiation. IKE Proposal: Select the Proposal for IKE negotiation phase 1. Up to four proposals can be selected. Pre-shared Key: Enter the Pre-shared Key for IKE authentication, and ensure both the two peers use the same key. The key should consist of visible characters without blank space. SA Lifetime: Specify ISAKMP SA Lifetime in IKE negotiation. DPD: Enable or disable DPD (Dead Peer Detect) function. If enabled, the IKE endpoint can send a DPD request to the peer to inspect whether the IKE peer is alive. -85-

Section	Page
Package Contents	6
Chapter 1 About this Guide	7
1.1 Intended Readers	7
1.2 Conventions	7
1.3 Overview of this Guide	7
Chapter 2 Introduction	9
2.1 Overview of the Router	9
2.2 Features	10
2.3 Appearance	11
2.3.1 Front Panel	11
2.3.2 Rear Panel	13
Chapter 3 Configuration	14
3.1 Network	14
3.1.1 Status	14
3.1.2 System Mode	14
3.1.3 WAN	17
3.1.4 LAN	34
3.1.4.1 LAN	34
3.1.4.2 DHCP	34
3.1.4.3 DHCP Client	36
3.1.4.4 DHCP Reservation	36
3.1.5 DMZ	37
3.1.5.1 DMZ	38
3.1.6 MAC Address	39
3.1.7 Switch	41
3.1.7.1 Statistics	41
3.1.7.2 Port Mirror	42
3.1.7.3 Rate Control	44
3.1.7.4 Port Config	45
3.1.7.5 Port Status	46
3.1.7.6 Port VLAN	47
3.2 User Group	47
3.2.1 Group	48
3.2.2 User	48
3.2.3 View	49
3.3 Advanced	50
3.3.1 NAT	50
3.3.1.1 NAT Setup	50
3.3.1.2 One-to-One NAT	51
3.3.1.3 Multi-Nets NAT	52
3.3.1.4 Virtual Server	55
3.3.1.5 Port Triggering	57
3.3.1.6 ALG	59
3.3.2 Traffic Control	59
3.3.2.1 Setup	60
3.3.2.2 Bandwidth Control	61
3.3.3 Session Limit	63
3.3.3.1 Session Limit	63
3.3.3.2 Session List	64
3.3.4 Load Balance	64
3.3.4.1 Configuration	64
3.3.4.2 Policy Routing	65
3.3.4.3 Link Backup	66
3.3.4.4 Protocol	68
3.3.5 Routing	69
3.3.5.1 Static Route	69
3.3.5.2 RIP	71
3.3.5.3 Route Table	73
3.4 Firewall	74
3.4.1 Anti ARP Spoofing	74
3.4.1.1 IP-MAC Binding	74
3.4.1.2 ARP Scanning	76
3.4.1.3 ARP List	77
3.4.2 Attack Defense	77
3.4.3 MAC Filtering	79
3.4.4 Access Control	80
3.4.4.1 URL Filtering	80
3.4.4.2 Web Filtering	82
3.4.4.3 Access Rules	82
3.4.4.4 Service	84
3.4.5 App Control	86
3.4.5.1 Control Rules	86
3.4.5.2 Database	87
3.5 VPN	88
3.5.1 IKE	88
3.5.1.1 IKE Policy	89
3.5.1.2 IKE Proposal	91
3.5.2 IPsec	92
3.5.2.1 IPsec Policy	93
3.5.2.2 IPsec Proposal	96
3.5.2.3 IPsec SA	98
3.5.3 L2TP/PPTP	99
3.5.3.1 L2TP/PPTP Tunnel	99
3.5.3.2 IP Address Pool	102
3.5.3.3 List of L2TP/PPTP Tunnel	103
3.6 Services	103
3.6.1 PPPoE Server	103
3.6.1.1 General	103
3.6.1.2 IP Address Pool	105
3.6.1.3 Account	106
3.6.1.4 Exceptional IP	108
3.6.1.5 List of Account	109
3.6.2 E-Bulletin	109
3.6.3 Dynamic DNS	111
3.6.3.1 DynDNS	112
3.6.3.2 No-IP	113
3.6.3.3 PeanutHull	114
3.6.3.4 Comexe	116
3.6.4 UPnP	117
3.7 Maintenance	118
3.7.1 Admin Setup	118
3.7.1.1 Administrator	118
3.7.1.2 Login Parameter	119
3.7.1.3 Remote Management	120
3.7.2 Management	121
3.7.2.1 Factory Defaults	121
3.7.2.2 Export and Import	121
3.7.2.3 Reboot	122
3.7.2.4 Firmware Upgrade	123
3.7.3 License	123
3.7.4 Statistics	124
3.7.4.1 Interface Traffic Statistics	124
3.7.4.2 IP Traffic Statistics	125
3.7.5 Diagnostics	126
3.7.5.1 Diagnostics	126
3.7.5.2 Online Detection	128
3.7.6 Time	129
3.7.7 Logs	130
Chapter 4 Application	132
4.1 Network Requirements	132
4.2 Network Topology	133
4.3 Configurations	133
4.3.1 Internet Setting	133
4.3.1.1 System Mode	134
4.3.1.2 Internet Connection	134
4.3.1.3 Link Backup	134
4.3.2 VPN Setting	135
4.3.2.1 IPsec VPN	135
4.3.2.2 PPTP VPN Setting	139
4.3.3 Network Management	141
4.3.3.1 User Group	141
4.3.3.2 App Control	142
4.3.3.3 Bandwidth Control	143
4.3.3.4 Session Limit	145
4.3.4 Network Security	145
4.3.4.1 LAN ARP Defense	146
4.3.4.2 WAN ARP Defense	147
4.3.4.3 Attack Defense	148
4.3.4.4 Traffic Monitoring	148
Chapter 5 CLI	151
5.1 Configuration	151
5.2 Interface Mode	154
5.3 Online Help	155
5.4 Command Introduction	157
5.4.1 ip	157
5.4.2 ip-mac	157
5.4.3 sys	158
5.4.4 user	159
5.4.5 history	160
5.4.6 exit	161
Appendix A Hardware Specifications	162
Appendix B FAQ	163