Download
Share
Print this page
EnGenius EVR100 Configuration Manual
  1. Manuals
  2. Brands
  3. EnGenius Manuals
  4. Network Router
  5. EVR-100
  6. Configuration manual
EnGenius EVR100 Configuration Manual

EnGenius EVR100 Configuration Manual

Wireless gigabit vpn router
Hide thumbs Also See for EVR100:

Advertisement

Quick Links

Download this manual
All manuals and user guides at all-guides.com
Wireless Gigabit VPN Router
EVR100 VPN Configuration Guide
Wireless N VPN Router with Gigabit Switch
V1.0

Advertisement

loading
Need help?

Need help?

Do you have a question about the EVR100 and is the answer not in the manual?

Questions and answers

Subscribe to Our Youtube Channel

Related Manuals for EnGenius EVR100

Summary of Contents for EnGenius EVR100

  • Page 1 All manuals and user guides at all-guides.com Wireless Gigabit VPN Router EVR100 VPN Configuration Guide Wireless N VPN Router with Gigabit Switch V1.0...

  • Page 2: Table Of Contents

    Introduction ................................... 3 IPSec Site-to-Site ................................4 2.1. Using the Wizard to Configure the Local EVR100 ........................6 2.2. Using the Wizard to Configure the Remote EVR100 ......................12 2.3. Configuring the Local EVR100 Manually............................. 17 2.4. Configuring the Remote EVR100 Manually..........................24 IPSec Client-to-Site VPN.............................

  • Page 3: Revision History

    All manuals and user guides at all-guides.com Revision History Version Date Notes 2011/01/10 First Release...

  • Page 4: Introduction

    Client-to-Site tunnels. L2TP over IPSec tunnels provide remote access when connecting Windows native VPN clients. The EVR100 supports 5 IPSec VPN tunnels, making it ideal for small-office and home-office (SOHO) users. The EVR100 also provides advanced SPI firewall, denial of service (DoS) attack blocking, MAC filtering, and URL filtering to secure high- speed network connections.

  • Page 5: Ipsec Site-To-Site

    IPSec Site-to-Site VPN tunnels typically are used when two remote locations want to exchange confidential data. To set up an IPSec Site-to-Site VPN tunnel, configure two EVR100 VPN routers to establish a secured channel. The computers connected to the EVR100s can then exchange the data securely using the VPN tunnel.
  • Page 6 All manuals and user guides at all-guides.com Note: You can find the EVR100 WAN IP under System > Status.

  • Page 7: Using The Wizard To Configure The Local Evr100

    All manuals and user guides at all-guides.com 2.1. Using the Wizard to Configure the Local EVR100 This configuration procedure corresponds to the EVR100 (1) in Figure 1. In the left-side of the menu, click VPN. In the top menu, click Wizard to display the Setup Wizard.
  • Page 8 All manuals and user guides at all-guides.com In the Name field, enter a name for the Site-to-Site VPN tunnel. This name is for reference purposes. Click Next. Click IPSec, and then click Next.
  • Page 9 All manuals and user guides at all-guides.com Click Site to Site, and then click Next.
  • Page 10 All manuals and user guides at all-guides.com Complete the following fields: Security Gateway Enter the WAN IP of the remote EVR100 (2) to which you want to connect. In Figure 1, this is EVR100 (2). Remote Address Enter an IP address that is on the same subnet as the LAN IP address of the computer connected behind the remote EVR100 (2).
  • Page 11 All manuals and user guides at all-guides.com Create the Shared key for the local EVR100 (1) VPN, and then click Next. Note: By default, the SA (Security Association) is ESP-3DES-SHA1. If desired, you can change it after using the Wizard to...
  • Page 12 All manuals and user guides at all-guides.com Check the option below to enable the VPN policy, and then click Apply to save the local EVR100 (1) VPN profile. This completes the procedure for configuring your local EVR100 (1) VPN profile.

  • Page 13: Using The Wizard To Configure The Remote Evr100

    2.2. Using the Wizard to Configure the Remote EVR100 After you configure the local EVR100, use the following procedure to configure the remote EVR100 VPN Profile. This procedure is similar to the one used to configure the local EVR100. This configuration procedure corresponds to the EVR100 (2) in Figure 1.
  • Page 14 All manuals and user guides at all-guides.com 2. Click IPSec, and then click Next. Click Site to Site, and then click Next.
  • Page 15 All manuals and user guides at all-guides.com Complete the following fields: Security Gateway Enter the WAN IP of the local EVR100 (1) to which you want to connect. In Figure 1, this is EVR100 (1). Remote Address Enter an IP address that is on the same subnet as the LAN IP address of the computer connected behind the EVR100 (1).
  • Page 16 All manuals and user guides at all-guides.com Create the Shared key for the remote EVR100 VPN, and then click Next. Note: By default, the SA (Security Association) is ESP-3DES-SHA1. If desired, you can change it after using the Wizard to...
  • Page 17 All manuals and user guides at all-guides.com Check the option below to enable the VPN policy, and then click Apply to save the remote EVR100 VPN profile. This completes the procedure for configuring your remote EVR100 (2) VPN profile.

  • Page 18: Configuring The Local Evr100 Manually

    2.3. Configuring the Local EVR100 Manually The following procedure describes how to manually configure the local EVR100 for an IPSec Site-to-Site VPN tunnel. This configuration procedure corresponds to the EVR100 (1) in Figure1. Example of an IPSec Site-to-Site VPN Tunnel.
  • Page 19 Select the same option you chose for Local ID Type. Peer ID Enter the WAN IP address of the remote EVR100 (2) if you select the IP Address in Peer ID Type. Enter the Domain Name of the remote EVR100 (2) if you select the Domain Name in Peer ID Type.
  • Page 20 All manuals and user guides at all-guides.com...
  • Page 21 Choices are 3DES, AES128, AES192, and AES256. The default setting is 3DES. Choose the setting that matches the remote EVR100. Authentication Choices are MD5 and SHA1. SHA1 provides higher security at a slower speed than MD5. The default setting is SHA1. Choose the setting that matches the remote EVR100.
  • Page 22 Enter an IP address that is on the same subnet of the LAN IP address of the computer connected behind the local EVR100 (1). In Figure 1, for example, the LAN IP address of the local EVR100 (1) is 192.168.0.100.
  • Page 23 All manuals and user guides at all-guides.com Check Enable, and then click Apply in the Profile Setting tab to activate the IPSec Site-to-Site VPN tunnel for EVR100 (1).
  • Page 24 All manuals and user guides at all-guides.com Go to the Status tab to see the VPN tunnel status. Blue profiles are configured properly and details are shown for Transmit Packets, Received Packets, and Uptime in tunnels. profiles indicate profiles have setup problems.

  • Page 25: Configuring The Remote Evr100 Manually

    2.4. Configuring the Remote EVR100 Manually After you configure the local EVR100, use the following procedure to configure the remote EVR100 VPN Profile. This procedure is similar to the one used to manually configure the local EVR100. This configuration procedure corresponds to the EVR100 (2) in Figure 1.
  • Page 26 All manuals and user guides at all-guides.com In the General tab, complete the following settings:...
  • Page 27 Select the same option you chose for Local ID Type. Peer ID Enter the WAN IP address of the local EVR100 (1) to which you want to connect if you select the IP Address in Peer ID Type. Enter the Domain Name of the local EVR100 (1) to which you want to connect if you select the Domain Name in Peer ID Type.
  • Page 28 All manuals and user guides at all-guides.com...
  • Page 29 Choices are 3DES, AES128, AES192, and AES256. The default setting is 3DES. Choose the setting that matches the local EVR100. Authentication Choices are MD5 and SHA1. SHA1 provides higher security at a slower speed than MD5. The default setting is SHA1. Choose the setting that matches the local EVR100.
  • Page 30 EVR100 (2). In Figure 1, The LAN IP address of the EVR100 (2) is 192.168.2.100. To be on the same subnet, the IP address must have 192.168.2 as its first three octets (for example, 192.168.2.x).
  • Page 31 All manuals and user guides at all-guides.com Check Enable and then click Apply in Profile Setting field to activate IPSec site-to-site VPN tunnel for the remote EVR100 (2).
  • Page 32 All manuals and user guides at all-guides.com Go to the Status tab to see the VPN tunnel status. Blue profiles are configured properly and details are shown for Transmit Packets, Received Packets, and Uptime. profiles indicate profiles have setup problems. Example of VPN Tunnel Parameters Configured Successfully Example of VPN Tunnel Parameters Configured Unsuccessfully...

  • Page 33: Ipsec Client-To-Site Vpn

    All manuals and user guides at all-guides.com 3. IPSec Client-to-Site VPN IPSec Client-to-Site VPN tunnels are established by connecting third-party VPN clients with EVR100 VPN routers. This chapter provides step-by-step instructions for configuring TheGreenBow, a popular VPN client, with the EVR100. Remote users can access secured, encrypted company data through IPSec Client-to-Site VPN tunnel using a VPN client.

  • Page 34: Using The Wizard To Configure The Evr100

    All manuals and user guides at all-guides.com 3.1. Using the Wizard to Configure the EVR100 1. In left-side of the menu, click VPN. 2. In the top menu, click Wizard to add a VPN profile. 3. Click Next to create an IPSec Client-to-Site VPN profile.
  • Page 35 All manuals and user guides at all-guides.com In the Name field, enter a name for the Client-to-Site VPN tunnel. This name is for reference purposes. Click Next. Click IPSec, and then click Next.
  • Page 36 All manuals and user guides at all-guides.com Click Client to Site, and then click Next. Create the Shared key for this Client-to-Site VPN tunnel, and then click Next. Note: By default, the SA (Security Association) is ESP-3DES-SHA1. If desired, you can change it after using the Wizard to add the VPN profile.
  • Page 37 All manuals and user guides at all-guides.com Enable the VPN policy, and then click Apply to save the Client-to-Site VPN profile.

  • Page 38: Evr100 Manual Vpn Profile Setting

    All manuals and user guides at all-guides.com 3.2. EVR100 Manual VPN Profile Setting 1. In left-side of the menu, click VPN. 2. In the top menu, click Profile Setting to configure VPN Profile Setting. 3. Click Add to create a Client-to-Site VPN profile.
  • Page 39 All manuals and user guides at all-guides.com Note: You can find the EVR100 WAN IP settings under System > Status.
  • Page 40 Create a shared key for the EVR100 VPN profile and Confirm the shared key. Local ID If you selected IP Address for Local ID Type, enter the WAN IP address of the EVR100. If you selected Domain Name for Local ID Type, enter the domain name of the EVR100.
  • Page 41 Choices are Main mode and Aggressive mode. Main mode provides higher security at a slower speed than Aggressive mode. The default setting is Main mode. We recommend you accept this setting. Choose the setting that matches the local EVR100. DH Group Choices are DH1: 768-bit random number and DH2: 1024-bit random number.
  • Page 42 Enter an IP address on the same subnet of LAN IP address of the computer connected behind EVR100. In Figure 2, the LAN IP address of the EVR100 is 192.168.0.100. To be on the same subnet, the IP address must have 192.168.0 as its first three octets (for example, 192.168.0.x).
  • Page 43 All manuals and user guides at all-guides.com Check Enable, and then click Apply in the Profile Setting field to activate IPSec Client-to-site VPN tunnel for the EVR100.
  • Page 44 All manuals and user guides at all-guides.com Go to the Status tab to see the VPN tunnel status. Blue profiles are configured properly and details are shown for Transmit Packets, Received Packets, and Uptime. profiles indicate profiles have setup problems. Example of VPN Tunnel Parameters Configured Successfully Example of VPN Tunnel Parameters Configured Unsuccessfully...

  • Page 45: Configuring Thegreenbow Vpn Client

    All manuals and user guides at all-guides.com 3.3. Configuring TheGreenBow VPN Client The following procedure describes how to configure TheGreenBow third-party VPN client. If you will use a different VPN client, you can skip this section. 1. Click VPN Configuration to add a New Phase1.
  • Page 46 All manuals and user guides at all-guides.com Configure the following settings: Name Enter a name for the EVR100 VPN tunnel profile. This name is for reference purposes. Interface Your computer’s IP address appears in this field. Remote Gateway Enter the WAN IP of the targeted EVR100.
  • Page 47 All manuals and user guides at all-guides.com On the VPN Configuration menu, click Add Phase2.
  • Page 48 Remote LAN Address/ Enter an IP address and subnet mask which is the same subnet as the LAN subnet of the EVR100. In Figure , this LAN subnet is 192.168.0.0/255.255.255.0. Subnet Mask Uncheck Perfect Forward Secrecy (PFS) to disable it Authentication Select the authentication used by the targeted EVR100.
  • Page 49 All manuals and user guides at all-guides.com The IPSec VPN tunnel connects successfully, as shown in the following figure.

  • Page 50: L2Tp Over Ipsec

    Microsoft Windows’ native L2TP Client or Apple Mac L2TP client. This chapter shows how to set up a L2TP-over-IPSec VPN tunnel by connecting an EVR100 with Microsoft Windows 7 and Vista and Apple Mac L2TP clients.

  • Page 51: Using The Wizard To Configure The Evr100

    All manuals and user guides at all-guides.com 4.1. Using the Wizard to Configure the EVR100 1. In the left-side of the menu, click VPN. 2. In the top menu, click Wizard to add a VPN profile. 3. Click Next to create an L2TP over IPSec VPN profile.
  • Page 52 All manuals and user guides at all-guides.com In the Name field, enter a name for the L2TP over IPSec VPN tunnel. This name is for reference purposes. Click Next. Click L2TP over IPSec, and then click Next.
  • Page 53 Enter any IP address on a different subnet than the LAN IP address of the computer connected behind the EVR100. In Figure 3, the EVR100 LAN IP address is 192.168.0.100. In this example, you can select any IP address other than 192.168.0.x).
  • Page 54 All manuals and user guides at all-guides.com In the Shared Key field, enter the shared key for EVR100 VPN tunnel. Click Next. Enable the VPN policy, and then click Apply to save the VPN profile.

  • Page 55: Configuring The Evr100 Manually

    All manuals and user guides at all-guides.com 4.2. Configuring the EVR100 Manually 1. In left-side of the menu, click VPN. 2. In the top menu, click Profile Setting to configure VPN. 3. Click Add to create a L2TP over IPSec VPN profile.
  • Page 56 All manuals and user guides at all-guides.com In the General tab, complete the following settings: Name Enter a name for the L2TP-over-IPSec VPN tunnel. Connection Type Click L2TP over IPSec. Shared Key Create a shared key for the EVR100 VPN profile and Confirm the shared key.
  • Page 57 All manuals and user guides at all-guides.com Go to the L2TP tab and configure the following settings: Authentication Choices are CHAP, PAP, and Auto. We recommend you use Auto. User Name Enter a user name for the L2TP-over-IPSec VPN tunnel. Password Enter a password for the L2TP-over-IPSec VPN tunnel.
  • Page 58 Go to the Network tab and configure the following settings: Server IP Enter an IP address on a different subnet than the EVR100 LAN IP address. In the example in Figure 3, the EVR100 LAN IP address is 192.168.0.100. In this example, you can select any IP address other than 192.168.0.x.
  • Page 59 Transmit Packets, Received Packets, and Uptime. profiles indicate profiles have setup problems. Note. If your connection protocol uses L2TP over IPSec dial-in, you cannot disconnect manually through the EVR100. Example of VPN Tunnel Parameters Configured Successfully...
  • Page 60 All manuals and user guides at all-guides.com Example of VPN Tunnel Parameters Configured Unsuccessfully...

  • Page 61: Configuring A Microsoft Windows 7 Vpn Client

    All manuals and user guides at all-guides.com 4.3. Configuring a Microsoft Windows 7 VPN Client 1. Click the Start button and open the Control Panel.
  • Page 62 All manuals and user guides at all-guides.com Under Network and Sharing Center, select Set up a new connection or network.
  • Page 63 All manuals and user guides at all-guides.com Click Connect to a workplace, and then click Use my Internet connection (VPN) We recommend you select I’ll set up an Internet connection later.
  • Page 64 All manuals and user guides at all-guides.com 5. Complete the following fields: Internet Address Enter the EVR100 WAN IP address. Destination Name Enter a name for the VPN client. 6. Click Next.
  • Page 65 All manuals and user guides at all-guides.com 7. Complete the following fields: User Name Enter the user name used to log onto the L2TP over IPSec VPN tunnel. Password Enter the password used to log onto the L2TP over IPSec VPN tunnel. Click Create.
  • Page 66 All manuals and user guides at all-guides.com 8. When the following screen appears, click the Close button to close the VPN connection setting.
  • Page 67 All manuals and user guides at all-guides.com 9. Select Change adapter settings on the left side of the screen...
  • Page 68 All manuals and user guides at all-guides.com 10. Select VPN Connection you just set, right-click VPN Connection, and select Properties.
  • Page 69 • Check Unencrypted password (PAP). • Check Challenge Handshake Authentication Protocol (CHAP). • Click Advanced settings. 12. In the Advanced Properties window, click Use preshared key for authentication and enter the preshared key of the target EVR100. Then click OK.
  • Page 70 All manuals and user guides at all-guides.com 13. Go to Network and Sharing Center on the bottom-right of the window. Under VPN Connection, click Connect.
  • Page 71 All manuals and user guides at all-guides.com 14. Double-click the VPN Connection, and then click the Connect button. 15. Verify that you can see the VPN Connection has been established. This concludes the procedure for configuring a Microsoft Windows 7 VPN client.

  • Page 72: Configuring A Microsoft Windows Vista Vpn Client

    All manuals and user guides at all-guides.com 4.4. Configuring a Microsoft Windows Vista VPN Client The following procedure describes how to configure a Microsoft Windows Vista VPN client. 1. Click Connect To.
  • Page 73 All manuals and user guides at all-guides.com 2. Click Set up a connection or network.
  • Page 74 All manuals and user guides at all-guides.com 3. Click Connect to a workplace to set up a dial-up or VPN connection to your workplace.
  • Page 75 All manuals and user guides at all-guides.com Click Use my Internet connection (VPN).
  • Page 76 All manuals and user guides at all-guides.com 5. When the next screen appears select I’ll set up an Internet connection later.
  • Page 77 All manuals and user guides at all-guides.com 6. Complete the following fields: Internet address Enter the WAN IP address of the targeted EVR100. Destination name Enter a name for the VPN connection. Click Next.
  • Page 78 All manuals and user guides at all-guides.com 7. When the next screen appears, enter the User name and Password of the target EVR100. Then click Create.
  • Page 79 All manuals and user guides at all-guides.com 8. Return to Connect to. Then right-click VPN Connection and select Properties.
  • Page 80 All manuals and user guides at all-guides.com 9. Click the Security tab, click Advanced (custom settings), and then click Settings.
  • Page 81 All manuals and user guides at all-guides.com 10. Check Unencrypted password (PAP) and Challenge Handshake Authentication Protocol (CHAP), and then click OK. 11. When the following window appears, click Yes.
  • Page 82 All manuals and user guides at all-guides.com 12. Go to the Networking tab. 13. Under Type of VPN, click L2TP IPsec VPN. 14. Click IPsec Settings.
  • Page 83 All manuals and user guides at all-guides.com 15. In the IPSec Settings window, click User preshared key for authentication and enter the preshared key of the target EVR100. Then click OK. 16. Click OK.
  • Page 84 All manuals and user guides at all-guides.com 17. Return to Connect to and click VPN Connection followed by Connect.
  • Page 85 All manuals and user guides at all-guides.com 18. Complete the following fields: User name Enter the user name of the target EVR100. Password Enter the password of the target EVR100. 19. Click Connect. This concludes the procedure for configuring a Microsoft Windows Vista VPN client.

  • Page 86: Configuring An Apple Mac Vpn Client

    All manuals and user guides at all-guides.com 4.5. Configuring an Apple Mac VPN Client The following procedure describes how to configure an Apple Mac VPN client. 1. Go to System Preferences, and then click Network.
  • Page 87 All manuals and user guides at all-guides.com 2. Click + to create a VPN tunnel. Select VPN. 3. For VPN Type, click L2TP over IPSec.
  • Page 88 All manuals and user guides at all-guides.com For Server Address, enter the WAN IP address of the targeted EVR100 For Account Name, enter the user name of the targeted EVR100. Click Authentication Settings.
  • Page 89 All manuals and user guides at all-guides.com For User Authentication: Password, enter the password of the target EVR100. For Machine Authentication: Shared Secret, enter the shared key of the target EVR100 Click OK.
  • Page 90 All manuals and user guides at all-guides.com 10. Click Apply to connect to the VPN.