How to configure PPTP VPNs roadwarrior to gateway

Similar documents
HOWTO: How to configure the firewall for VPNs

How to configure the web access in various Integra interfaces

HOWTO: Practical guide to configuring high availability in Panda GateDefender Integra

HOWTO:How to configure the NAT rules and the router in a typical network scenario after installing Panda GateDefender Integra.

VPN Connection - Instructional Document

Connection Name: Type ASYNC to PPP, Click Next, Do you want to set up an Internet mail account now? No Click Next, Click Finish

HOW TO: Establishing a VPN Connection For use with File Sharing on Windows 98, 2000, and Windows XP

ADSLNET INFORMATION AND TECHNOLOGIES. Document Purpose

APSCN VPN Settings for Windows 7 2. APSCN VPN Settings for Windows XP 8. APSCN VPN Settings for MAC OS 15

Adding a VPN connection in Windows XP

Configure Point to Point Tunneling Protocol (PPTP) Server on RV016, RV042, RV042G and RV082 VPN Routers for Windows

INF204x Module 1, Lab 3 - Configure Windows 10 VPN

1. A broadband connection. 2. Windows Vista (for these instructions; other operating systems have other instructions).

GateDefender Performa updates from a local Web server

Chapter Twenty-six (f): Open VPN - RoadWarrior for System Administrator s

HTG XROADS NETWORKS. Network Appliance How To Guide: PPTP Client. How To Guide

Connecting the DI-804V Broadband Router to your network

A+ Guide to Software: Managing, Maintaining, and Troubleshooting, 5e. Chapter 8 Networking Essentials

F5 WANJet 200. Quick Start Guide. Quick Start Overview

LevelOne Broadband Routers

Application Note. Applies to MultiMax

A specific IP with specific Ports and Protocols uses a dedicated WAN (Load Balance Policy).

Windows 95/98 Infoway Connection Instructions 1/4/2002; rev. 1/9/2002

CHAPTER 7 ADVANCED ADMINISTRATION PC

Creating a VPN connection for Windows XP (professional)

Configuration Guide for Microsoft Internet Connection Sharing

SET UP VPN FOR WINDOWS 10

LevelOne FBR User s Manual. 1W, 4L 10/100 Mbps ADSL Router. Ver

Broadband Router DC-202. User's Guide

GateDefender. How to upgrade eseries version to 5.50

Soft Phone Quick Start Guide

Client VPN OS Configuration. Android

English version. Introduction. Contents of the box. LW050/LW050UK Sweex Wireless Broadband Router 54 Mbps

Broadband Router. User s Manual

Aventail Connect Client with Smart Tunneling

Step-by-Step Configuration

Broadband Router DC 202

Added Features. 1. PPTP (Point-to-Point Tunneling Protocol)

IBM Netfinity 3500 Server. Achieving Remote Access using Microsoft Virtual Private Networking

Panda Remote Control. Adaptive Defense 360 Endpoint Protection Plus. Administrator's Guide. Administrator s

NETGEAR genie Apps. User Manual. 350 East Plumeria Drive San Jose, CA USA. August v1.0

Safe AutoLogon Password Server

WINDOWS NT 4.0 USER GUIDE

ZyWALL 70. Internet Security Appliance. Quick Start Guide Version 3.62 December 2003

Gigaset Router / en / A31008-E105-B / cover_front_router.fm / s Be inspired

A+ Guide to Software: Managing, Maintaining, and Troubleshooting, 5e. Chapter 9 Networking Practices

SMC Barricade Routers

Content 1 OVERVIEW HARDWARE DESCRIPTION HARDWARE INSTALLATION PC CONFIGURATION GUIDE... 5 WEB-BASED MANAGEMENT GUIDE...

VPN Tracker for Mac OS X

A+ Guide to Managing & Maintaining Your PC, 8th Edition. Chapter 17 Windows Resources on a Network

axsguard Gatekeeper PPTP How To 1.7

BiPAC 7402R2. ADSL2+ VPN Firewall Router. Quick Start Guide

Conceptronic C100BRS4H Quick Installation Guide. Congratulations on the purchase of your Conceptronic 4-ports Broadband Router.

Copyright NeoAccel Inc. SSL VPN-Plus TM. NeoAccel Management Console: Network Extension version 2.3

TELSTRA PREMIUM BUSINESS GATEWAY - DEVG2020 VPN CONFIGURATION GUIDE

SSL VPN Service. Once you have installed the AnyConnect Secure Mobility Client, this document is available by clicking on the Help icon on the client.

BSc Year 2 Data Communications Lab - Using Wireshark to View Network Traffic. Topology. Objectives. Background / Scenario

Sabre Customer Virtual Private Network Launcher (SCVPNLauncher)

Key Features... 2 Known Issues... 3 Resolved Issues... 5 Upgrading SonicOS Enhanced Image Procedures... 6 Related Technical Documentation...

Network+ Guide to Networks 6 th Edition

Example - Configuring a Site-to-Site IPsec VPN Tunnel

Provisioning MPLS VPN Cable Services

TCP/IP CONFIGURATION 3-6

Installing the DWL-650+ Drivers & Utility

Centrify Isolation and Encryption Service

Troubleshooting Can not access the router on

N150 WiFi DSL Modem Router Essentials Edition. N300 WiFi DSL Modem Router Essentials Edition

Sophos Connect. help

Setting Up Windows 2K VPN Connection Through The Symantec Raptor Firewall Firewall

Using a VPN with Niagara Systems. v0.3 6, July 2013

Faculty and Staff Instructions for connecting to the Hood College VPN to access your files on Blazer and/or your on-campus computer

SonicWALL TZ 150 Getting Started Guide

PT Activity 5.6.1: Packet Tracer Skills Integration Challenge Topology Diagram

Configuring the WT-4 for ftp (Ad-hoc Mode)

Vodafone MachineLink. PPTP Configuration Guide

LevelOne. User's Guide. Broadband Router FBR-1402TX FBR-1403TX

This is a GENERAL Servant Keeper Network Installation help sheet. If you need further assistance, please contact your network administrator.

ZyWALL 10W. Internet Security Gateway. Quick Start Guide Version 3.62 December 2003

BIPAC-6500 / 6500W (Wireless) Broadband VPN Firewall Router with 4-port 10/100M Switch Quick Start Guide

WL5041 Router User Manual

Colubris Networks Configuration Guide

Using the Terminal Services Gateway Lesson 10

Chapter 6 Virtual Private Networking

VISUAL QUICKPRO GUIDE

NetExtender for SSL-VPN

DSL/CABLE ROUTER with PRINT SERVER

WINDOWS 95 SETUP GUIDE

IP806GA/GB Wireless ADSL Router

IP Device Search and Configuration Tool Operation Manual

Networking Basics Sharing a network printer

Use of this product is subject to acceptance of the Panda End User License Agreement enclosed. Panda Security TM. TruPrevent: registered in U.S.A. Pat

Wireless-G Router User s Guide

1. Introduction Firewall contains SPI technique against intrusions, attacks and DOS

Configuring the VPN Client

Managing the VPN Client

Business Connect Secure Remote Access Service (SRAS) Customer Information Package

How to find your IP address information

3G Router 431R/421R/321R/311R/221R/211R. Quick Start Guide

LevelOne WBR User s Manual. 11g Wireless ADSL VPN Router. Ver

Configuration Guide SuperStack 3 Firewall L2TP/IPSec VPN Client

Transcription:

How to configure PPTP VPNs roadwarrior to gateway How-to guides for configuring VPNs with GateDefender Integra Panda Security wants to ensure you get the most out of GateDefender Integra. For this reason, we offer you all the information you need about the characteristics and configuration of the product. Refer to http://www.pandasecurity.com/ and http://www.pandasecurity.com/enterprise/support/ for more information. How-to guides for Panda GateDefender Integra The software described in this document is delivered under the terms and conditions of the end user license agreement and can only be used after accepting the terms and conditions of said agreement. The anti-spam technology in this product is provided by Mailshell. The web filtering technology in this product is provided by Cobion. Copyright notice Panda 2007. All rights reserved. Neither the documents nor the programs that you may access may be copied, reproduced, translated or transferred to any electronic or readable media without prior written permission from Panda, c/ Buenos Aires, 12 48001 Bilbao (Biscay) Spain. Registered Trademarks Panda Security. TruPrevent: Registered in U.S.A Patent and Trademark Office. Windows Vista and the Windows logo are trademarks or registered trademarks of Microsoft Corporation in the United States and other countries. All other product names may be registered trademarks of their respective owners. D. L. BI-1915-07 Panda 2007. All rights reserved.

INDEX 1 PPTP ROADWARRIOR-TO-GATEWAY... 3 1.1 SCENARIO SETUP... 4 1.2 GATEWAY SIDE CONFIGURATION (PANDA GD INTEGRA)... 5 1.2.1 Users and group configuration... 5 1.2.2 IP group configuration... 6 1.2.3 PPTP VPN configuration... 8 1.3 CLIENT SIDE CONFIGURATION (MS WINDOWS 2000/XP)... 9 1.4 ESTABLISHING VPN CONNECTION... 14 1.5 FURTHER CONSIDERATIONS... 15 1.6 CHECKING CONFIGURATION... 16 Symbols and styles used in this documentation Symbols used in this documentation: Note. Clarification and additional information. Important. Highlights the importance of a concept. Tip. Ideas to help you get the most from your program. Reference. Other references with more information of interest. Fonts and styles used in the documentation: Bold: Names of menus, options, buttons, windows or dialog boxes. Codes style: Names of files, extensions, folders, command line information or configuration files, for example, scripts. Italics: Names of options related with the operating system and programs or files with their own name. Panda GateDefender Integra Page 2 of 16

1. How to configure PPTP VPNs roadwarrior-to-gateway The PPTP (Point-to-Point Tunneling Protocol) protocol allows transfers between remote clients and servers in private networks, using both switched telephone lines and the Internet. PPTP is an extension of PPP that supports flow control and multi-protocol tunneling on IP. Panda GateDefender Integra includes a VPN system so you can create your own virtual private networks, widening the reach of your network and ensuring confidentiality in connections. The aim of this guide is to describe the steps needed to create a virtual private network (VPN) based on PPTP with Panda GateDefender Integra, using real data. Note: This guide assumes tha t the Panda GateDefender Integra unit has been configured, a t least basically, and is up and running. For more information about installing and configuring Panda GateDefender Integra, refer to the Installation Guide. Important: GateDefender Integra must be operat ing in router mode. If not, you will not be able to use the VPN system. Panda GateDefender Integra only lets you create and modify PPTP VPNs in serve r mode given the limitations of the implementation of the PPTP protocol.panda GateDefender Integra only lets you create and modify PPTP VPNs in server mode given the limitations of the implementation of the PPTP protocol. Panda GateDefender Integra Page 3 of 16

1.1 Scenario setup The illustration below shows a typical roadwarrior-to-gateway PPTP VPN scenario: Figure 1.1: PPTP VPN scenario The roadwarrior has an address dynamically assigned by the ISP and will access Integra s LAN by means of a secure tunnel using the PPTP protocol. INTEGRA s WAN interface has the IP address 62.14.249.65. Clients on Integra s LAN side do not need to have configured Integra s LAN IP address as its default gateway because the roadwarrior will have assigned the first available IP address from the previously defined IP group range (which belongs to the internal network) so it will be visible to all hosts on LAN 192.168.10.0/24 Index Panda GateDefender Integra Page 4 of 16

1.2 Gateway side configuration (Panda GateDefender Integra) The first step when configuring a PPTP VPN consists of defining the group of users authorized to establish a VPN connection and defining the IP range that belongs to the LAN which you want your roadwarrior to be able to connect to. 1.2.1 Users and group configuration 1. Access to the Definitions section of the main Panda GateDefender Integra console menu. 2. Select User management. 3. In the Users section, click on Add. 4. This will take you to a screen where you should provide data for at least the first three textboxes: Name (test be used for this how-to). Password (testing will be used for this how-to). Repeat password. The Common Name field is optional; it is used for other protocols. 5. Once you have configured it, click on Add to save the changes. As for the configuration of PPTP VPN, defined groups of vpn users are needed. Now you need to add previously defined users to the group. In order to do this, follow the steps below: 1. Access the Definitions section of the main Panda GateDefender Integra console menu. 2. Select User management. 3. In the User Groups section, click on Add. 4. Define a group name and add users from the box below. Once this has been done, configuration should be similar to that shown in figure 1.2 Panda GateDefender Integra Page 5 of 16

Figure 1.2 1.2.2 IP group configuration The next stage will describe the steps to configure the IP group definition: 1. Access the Definitions section of the main Panda GateDefender Integra console menu. 2. Select IP addresses. 3. In the Groups section, click on Add. A descriptive name of the group must be provided (pptp vpn group will be used for this how-to) in the Name field and the IP range 192.168.10.50-60 in the Use range radio button section. 4. Click on Add IP. 5. Finally, click on Add to save the changes. The settings will be configured as shown in figure 1.3: Panda GateDefender Integra Page 6 of 16

Figure 1.3 Panda GateDefender Integra Page 7 of 16

1.2.3 PPTP VPN configuration Finally, the steps below describe how to configure the PPTP VPN using previously defined items. 1. Go to the Panda GateDefender Integra administration console. 2. Click on VPN in the panel on the left. 3. Then, select VPN management. 4. Click on PPTP VPN management. There you will find the parameters required to configure a VPN in Panda GateDefender Integra using the PPTP protocol (as shown in figure 1.4): o o o o Name: enter a descriptive name for the VPN (pptp vpn will be used for this howto). Active: select this checkbox in order to enable the VPN. IP group: select the range of IP addresses (pptp vpn group will be used for this how-to) associated to this VPN. If it had not been previously defined, click on the Address settings link to access the IP address settings screen. Users: select the authorized user group to access your VPN (testing will be used for this how-to). If it had not been previously defined, click on the link User settings to access the User settings screen. Figure 1.4 You also have the option to include the DNS and WINS servers IP addresses. By clicking on the icon associated with the DNS and WINS options, you can change the text field for a drop-down menu and choose the value to assign to each option. Click on OK to save the changes. Index Panda GateDefender Integra Page 8 of 16

1.3 Client side configuration (MS Windows 2000/XP) Once it has been confirmed that the connection to the Internet is correctly configured on the client computers running Microsoft Windows 2000/XP, follow the steps described bellow: 1. Click on the Start button. 2. Select the Control Panel. 3. Double-click on Network Connections. 4. Click on Create a new connection. 5. In the Network Connection Wizard, click on Next. 6. Click on Connect to the network at my workplace, and then select Next. 7. Click on Virtual Private Network connection, and then select Next. Panda GateDefender Integra Page 9 of 16

8. If you use a dial-up Internet connection, click on Automatically dial this initial connection, and then, select your dial-up Internet connection from the list. If you use a full-time connection (such as an ADSL or cable modem), click on Do not dial the initial connection. 9. Click on Next. 10. Type the name of your company or a descriptive name for the connection (Pandasoftware will be used for this how-to), and then click on Next. Panda GateDefender Integra Page 10 of 16

11. Type in the IP address of VPN server (62.14.249.65 would be used for this how-to), and then click on Next. 12. Enable the Add a shortcut to this connection to my desktop checkbox if you want to create a shortcut on the desktop, and then click on Finish. 13. If you are prompted to connect, select No. 14. In the Network Connections window, right-click on the new connection. Panda GateDefender Integra Page 11 of 16

15. Click on Properties, and then configure further options for the connection: 16. Select the Networking tab and choose PPTP VPN from the Type of VPN list. Panda GateDefender Integra Page 12 of 16

17. If you are connecting to a domain, select the Options tab, and then enable the Include Windows logon domain checkbox to specify whether to request Windows 2000/XP logon domain information before attempting to connect. Index Panda GateDefender Integra Page 13 of 16

1.4 Establishing VPN connection Use the following procedure to establish previously defined VPN connections: 1. Click on the Start button, go to Settings Network Connections. 2. Then select the connection that you have previously configured. If you have added a connection shortcut to the desktop, double-click on the shortcut on the Desktop. 3. If you are not currently connected to the Internet, Windows will prompt you to connect to the Internet. 4. After your computer connects to the Internet, the Panda GateDefender Integra VPN gateway will request you to enter your user name and password (the user must be previously defined on Integra side. 5. Type your user name and password, and then click on Connect. Your network resources should be available to you as when you connect directly to the network. In order to disconnect from the VPN, right-click on the icon for the connection that appears in the bottom right corner, and then click on Disconnect. Index Panda GateDefender Integra Page 14 of 16

1.5 Further considerations If Panda GateDefender Integra s firewall function is used, then all the corresponding configuration rules of the firewall will be automatically entered. But if you use a personal firewall or broadband router with firewall features or if there are routers or firewalls between the VPN client and the Integra VPN gateway server, the following ports and protocols must be enabled for PPTP on all firewalls and routers that are between the VPN client and the Integra VPN gateway server: Client ports Server port Protocol 1024-65535/TCP 1723/TCP PPTP Additionally, IP PROTOCOL 47 must be enabled (it refers to the protocol number, not to the port number) or somewhere referred as GRE (Generic Routing Encapsulation). Index Panda GateDefender Integra Page 15 of 16

1.6 Checking configuration To check your PPTP VPN configuration, please follow the procedure described bellow: 1. Access the Panda GateDefender Integra administration console. 2. Click on VPN in the panel on the left. 3. Then select VPN Monitor which will allow you to see the status of all established VPN connections (as shown in figure 1.5). Figure 1.5 Any of the roadwarriors can verify the configuration independently on Windows 2000/XP. In order to do this, the command prompt should be used: The ipconfig /all command shows that an additional IP address has been assigned to the WAN (PPP/SLIP) interface (if you are the first roadwarrior connected, the IP address will be 192.168.10.51). The ping n 10 192.168.10.100 command, pings from the roadwarrior to one of the hosts that reside on the internal network behind Integra VPN gateway and should see the response from the remote host. At the same time, a network traffic monitoring tool such an Ethereal, can be used in order to check if all the traffic between a roadwarrior and the gateway is encrypted. The encrypted gre packets will only be seen when observing traffic in the external network interface whereas the unencrypted packets (in this case icmp reply and response packets) will be seen in the virtual WAN (PPP/SLIP) interface. Index Panda 2006 0707-PGDIHT05-02-EN Panda GateDefender Integra Page 16 of 16

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback