User ManualTable of ContentsIntroduction8NAT/Route mode and Transparent mode8NAT/Route mode8Transparent mode8About this document8For more information9Customer service and technical support9Getting started10Package contents10Mounting10Powering on11Initial configuration12Connecting to the web-based manager12Connecting to the command line interface (CLI)13Next steps14NAT/Route mode installation15Preparing to configure NAT/Route mode15Using the setup wizard16Starting the setup wizard16Reconnecting to the web-based manager16Using the command line interface16Configuring the DFL-500 NPG to run in NAT/Route mode16Connecting to your networks17Configuring your internal network18Completing the configuration18Setting the date and time18Transparent mode installation19Preparing to configure Transparent mode19Using the setup wizard19Changing to Transparent mode19Starting the setup wizard20Reconnecting to the web-based manager20Using the command line interface20Changing to Transparent mode20Configuring the Transparent mode management IP address20Configure the Transparent mode default gateway21Setting the date and time21Connecting to your network21Firewall configuration23NAT/Route mode and Transparent mode24NAT/Route mode24Transparent mode24Changing to Transparent mode24Changing to NAT/Route mode24Adding NAT/Route mode policies24Adding Transparent mode policies27Configuring policy lists29Policy matching in detail29Changing the order of policies in a policy list30Enabling and disabling policies30Addresses30Adding addresses31Deleting addresses31Organizing addresses into address groups32Services32Predefined services33Providing access to custom services33Grouping services33Schedules34Creating one-time schedules34Creating recurring schedules35Adding a schedule to a policy35Virtual IPs35Adding static NAT virtual IPs36Using port forwarding virtual IPs37Adding policies with virtual IPs38IP pools39IP/MAC binding40Configuring IP/MAC binding for packets going through the firewall40Configuring IP/MAC binding for packets going to the firewall41Adding IP/MAC addresses41Viewing the dynamic IP/MAC list42Enabling IP/MAC binding42Users and authentication43Setting authentication time out43Adding user names and configuring authentication43Adding user names and configuring authentication43Deleting user names from the internal database44Configuring RADIUS support45Adding RADIUS servers45Deleting RADIUS servers45Configuring user groups46Adding user groups46Deleting user groups47IPSec VPNs48Interoperability with IPSec VPN products48Configuring AutoIKE key IPSec VPN49Configuring manual key IPSec VPN50Configuring dialup VPN50Configuring a VPN concentrator for hub and spoke VPN50Configuring the VPN concentrator51Configuring the member VPNs51Configuring IPSec redundancy52Adding a remote gateway53About dialup VPN authentication54About DH groups56About the P1 proposal56About NAT traversal57Adding an AutoIKE key VPN tunnel57About the P2 proposal58About replay detection58About perfect forward secrecy (PFS)59Adding a manual key VPN tunnel59Adding a VPN concentrator60Adding an encrypt policy61Viewing VPN tunnel status63Viewing dialup VPN connection status64Testing a VPN64PPTP and L2TP VPNs66PPTP VPN configuration66Configuring the DFL-500 NPG as a PPTP gateway67L2TP VPN configuration69Configuring the DFL-500 NPG as an L2TP gateway69Web content filtering71Enabling web content Filtering71Blocking web pages that contain unwanted content71Configuring content filtering71Clearing the banned word list72Changing the content block message72Backing up and restoring the banned word list72Blocking access to URLs73Configuring URL blocking73Clearing the URL block list74Changing the URL block message74Downloading the URL block list74Uploading a URL block list74Removing scripts from web pages75Exempting URLs from content or URL blocking75Adding URLs to the Exempt URL List76Clearing the Exempt URL list76Downloading the Exempt URL list76Uploading an Exempt URL list77Logging and reporting78Configuring Logging78Recording logs on a remote computer78Recording logs on a WebTrends server78Selecting what to log79Configuring alert email79Configuring alert email80Testing alert email80Enabling alert email80Administration81System status81Upgrading the DFL-500 NPG firmware82Displaying the DFL-500 NPG serial number84Backing up system settings84Restoring system settings84Restoring system settings to factory defaults84Changing to Transparent mode85Changing to NAT/Route mode85Restarting the DFL-500 NPG86Shutting down the DFL-500 NPG86System status monitor86Network configuration87Configuring the internal interface88Configuring the external interface88Configuring the management interface (Transparent mode)92Setting DNS server addresses92Configuring routing92Adding routing gateways92Adding a default route93Adding routes to the routing table93Configuring the routing table94Enabling RIP server support94Adding routes (Transparent mode)94Providing DHCP services to your internal network95System configuration96Setting system date and time97Changing web-based manager options98Adding and editing administrator accounts98Configuring SNMP99Glossary101Index104Technical Support116Limited Warranty119Registration122Size: 903 KBPages: 122Language: EnglishOpen manual