Résumé du contenu de la page N° 1 
                    
                          
 
 
 
 
 
 
 
 
 
 
 
RF760/660/600VPN 
Internet Security Appliance 
 
 
User Guide 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
                                                                                                                                                                                                                                                                                                                                                                                
                    
                    Résumé du contenu de la page N° 2 
                    
                           User Guide  RouteFinder RF760/660/600VPN   S000323D Revision D    This publication may not be reproduced, in whole or in part, without prior expressed written permission from Multi-Tech  Systems, Inc. All rights reserved.  Copyright © 2005 by Multi-Tech Systems, Inc.  Multi-Tech Systems, Inc. makes no representations or warranty with respect to the contents hereof and specifically disclaims  any implied warranties of merchantability or fitness for any particular purpose. Furthermore, Multi-Te
                    
                    Résumé du contenu de la page N° 3 
                    
                        Table of Contents     Contents    Chapter 1 – Product Description, Features, and Overview............................................................................... 7  Product Description ........................................................................................................................................................... 7  Features ............................................................................................................................................
                    
                    Résumé du contenu de la page N° 4 
                    
                        Table of Contents   Chapter 6 – RouteFinder Software .................................................................................................................... 42  Menu Bar ......................................................................................................................................................................... 42  Administration.................................................................................................................................
                    
                    Résumé du contenu de la page N° 5 
                    
                        Table of Contents   Packet Filters................................................................................................................................................................. 101  Packet Filters > Packet Filter Rules......................................................................................................................101  Packet Filters > ICMP.......................................................................................................................
                    
                    Résumé du contenu de la page N° 6 
                    
                        Table of Contents   X. Fragmented Dropped Log ......................................................................................................................................... 147  XI. ICMP Information ..................................................................................................................................................... 148  Appendix B – The RouteFinder Rescue Kernel.............................................................................................
                    
                    Résumé du contenu de la page N° 7 
                    
                        Chapter 1 – Product Description, Features, and Overview    Chapter 1 – Product Description,  Features, and Overview    Your Multi-Tech Systems, Inc. RouteFinder Internet security appliance is an integrated VPN gateway/firewall designed to  maximize network security without compromising network performance. It uses data encryption, user authentication, and the  Internet to securely connect telecommuters, remote offices, customers, and suppliers to the corporate office while avoiding  the cost of 
                    
                    Résumé du contenu de la page N° 8 
                    
                        Chapter 1 – Product Description, Features, and Overview    Feature Highlights  RouteFinder Applications. The RouteFinder combines Virtual Private Networking (VPN), firewall, e-mail anti-virus  protection, and content filtering in one box. It is a cost-effective, easy to manage solution that is ideal for the small to medium  business looking to add one or all of the following applications to their network:  Remote User VPN. The client-to-LAN VPN application replaces traditional dial-in remote acc
                    
                    Résumé du contenu de la page N° 9 
                    
                        Chapter 1 – Product Description, Features, and Overview    E-mail Anti-Virus Protection. Computer viruses are one of the leading security threats to Internet-connected networks.  Users can unknowingly download and launch dangerous viruses that can damage data or cause computer crashes. Viruses  can also be used as delivery mechanisms for hacking tools, compromising the security of the network, even if a firewall is  installed. An optional e-mail virus protection subscription utilizes a high-perf
                    
                    Résumé du contenu de la page N° 10 
                    
                        Chapter 1 – Product Description, Features, and Overview    License Keys  System License Key  Each RouteFinder VPN ships with a unique individual system License Key, a 20-digit alphanumeric number.  You can enter and view License Key information from the RouteFinder's Web Management software at Administration  > License Key > Open System License Key. This screen shows the entered License Key number and indicates  whether it is a valid License Key number.    The License Key number is tied to and t
                    
                    Résumé du contenu de la page N° 11 
                    
                        Chapter 1 – Product Description, Features, and Overview    Safety Warnings  Lithium Battery Caution   Danger of explosion if battery is incorrectly replaced. A lithium battery on the RouteFinder VPN PC board provides  backup power for the time-keeping capability. The battery has an estimated life expectancy of ten years. When it starts  to weaken, the date and time may be incorrect. If the battery fails, send the board back to Multi-Tech for battery  replacement.   Ethernet Ports Caution   The E
                    
                    Résumé du contenu de la page N° 12 
                    
                        Chapter 1 – Product Description, Features, and Overview     RouteFinder Front Panels  RF760/660VPN Front Panel  The R760VPN and the RF660VPN have 16 LEDs that show device and network operating status.                       For the RF760VPN, these LEDs are labeled 10/100/1G.    • When 10, the LED is Off.  • When 100, the LED is Green.  • When 1G, the LED is Orange.    RF760 / 660VPN LED Descriptions  LAN LEDs Description  LINK  LAN LINK LED - Indicates link integrity for the LAN Ethernet port. If
                    
                    Résumé du contenu de la page N° 13 
                    
                        Chapter 1 – Product Description, Features, and Overview    RF600VPN  The RF600VPN has 12 front panel LEDs that show the network operating status.         General LED Descriptions  POWER POWER LED - Off when the RF600VPN is in a reset state. When the POWER LED is lit, the  RF600VPN is not in a reset state.  STATUS STATUS LED - Off when the RF600VPN is booting up.   HDD ACT HDD ACT (Hard Disk Drive Activity) LED - Lights when the RF600VPN hard disk drive is accessed.  LAN, WAN, DMZ LED Description
                    
                    Résumé du contenu de la page N° 14 
                    
                        Chapter 1 – Product Description, Features, and Overview    RouteFinder Back Panels  RF760VPN Back Panel  The RF760VPN back panel has three fans, a power plug, a POWER Switch (| / O), an RJ-11 LINE jack, a DB-9 COM1 jack,  a DB-15 High-density DSUB (VIDEO) jack, a keyboard jack, an Ethernet 10/100/1000 DMZ Port, and an Ethernet  10/100/1000 WAN Port, and an Ethernet 10/100/1000 LAN Port.            RF660VPN Back Panel  The RF660VPN back panel has a fan, a power plug, the POWER Switch (| / O), an 
                    
                    Résumé du contenu de la page N° 15 
                    
                        Chapter 1 – Product Description, Features, and Overview    Specifications  Appliance Features RF760VPN RF660VPN RF600VPN  Ethernet Ports 3x10/100/1000BaseT 3x10/100BaseT 3x10/100BaseT  (LAN,WAN, DMZ) (LAN,WAN, DMZ) (LAN,WAN, DMZ)  Number of Network Users Unlimited Unlimited Unlimited  Rackmount or Standalone Both Both Both  VPN Features RF760VPN RF660VPN RF600VPN  Remote User (Client-to-LAN)  Yes Yes Yes  Branch Office (LAN-to-LAN) Yes Yes Yes  3DES Encryption  Yes Yes Yes  3DES Throughput 50M b
                    
                    Résumé du contenu de la page N° 16 
                    
                        Chapter 1 – Product Description, Features, and Overview  Power & Physical RF760VPN RF660VPN RF600VPN  Description  Power - Voltage & Frequency  100-240v AC, 50-60 Hz 100-240v AC, 50-60 Hz 100-240v AC, 50-60 Hz  Power Consumption 50 Watts 30 Watts 15 Watts  Physical Description Dimensions: Dimensions: Dimensions:  17" w × 1.75" h × 10.5" d;  17" w × 1.75" h × 10.5" d;  12" w × 1.7" h × 8" d;   (43.18cm × 4.45cm × (43.18cm × 4.45cm × (30.4cm × 4.4cm ×  26.67cm) 26.67cm) 20.3cm)  Weight: 10 lbs. (4
                    
                    Résumé du contenu de la page N° 17 
                    
                        Chapter 1 – Product Description, Features, and Overview    Overview of RouteFinder VPN Technology  Before we look at how the RouteFinder works and how to use it, we will illustrate why the RouteFinder is necessary for the  protection of networks, as well as show which problems and risks exist without an appropriate security system.     Networks   The systems in the global network communicate via the Internet Protocol Family (IP), including TCP, UDP, or ICMP. The IP  addresses are the basis of th
                    
                    Résumé du contenu de la page N° 18 
                    
                        Chapter 1 – Product Description, Features, and Overview  The great advantage of a network layer firewall is its independence of both the operating system and the  applications running on the machine.   In more complex network layer firewall implementations, the packet filtering process includes the interpretation of  the packet payload. The status of every current connection is analyzed and recorded. This process is called stateful  inspection.   The packet filter records the state of every conn
                    
                    Résumé du contenu de la page N° 19 
                    
                        Chapter 1 – Product Description, Features, and Overview    To satisfy today’s business world needs, the IT infrastructure must offer real-time communication and co-operate  closely with business partners, consultants, and branches. Increasingly, the demand for real-time capability is  leading to the creation of extranets that operate either:  • via dedicated lines, or   • unencrypted lines via the Internet   Each of these methods has advantages and disadvantages, as there is a conflict between t
                    
                    Résumé du contenu de la page N° 20 
                    
                        Chapter 1 – Product Description, Features, and Overview    Typical Applications      Remote User VPN   The client-to-LAN VPN application  replaces traditional dial-in remote  access by allowing a remote user  to connect to the corporate LAN  through a secure tunnel over the  Internet. The advantage is that a  remote user can make a local call  to an Internet Service Provider,  without sacrificing the company’s  security, as opposed to a long    distance call to the corporate  remote access serve