beautypg.com

AirLive RS-2500 User Manual

Page 177

background image

20. Web VPN / SSL VPN


AirLive RS-2500 User’s Manual

172

Term of Setting (Figure 20-2)

VPN IP Range: The IP subnet of Web/SSL VPN connection. When user connects

to RS-2500 via Web/SSL VPN, he will obtain the IP address of this IP range. By

default, the VPN IP Range is set to the different IP subnet with RS-2500 LAN IP,

but remote user can still access RS-2500 LAN resource.

DES: DES, an acronym for Data Encryption Standard, is a cipher that was

selected by NIST (National Institute of Standard and Technology), using a 56-bit

key for encryption.

3DES: 3DES, an acronym for Triple Data Encryption Standard, providing

significantly enhanced security by executing the core DES algorithm three times in

a row, is more difficult to break than DES, using a 168-bit key size.

AES: AES, an acronym for Advanced Encryption Standard, is more difficult to

break than DES. The DES encryption key is 56 bits long; on the contrary, AES

keys can be 128, 192 or 256 bits long.

Server Port: The port number is changeable. With Server port, the Web/SSL VPN

Server can transfer data to client side. If RS-2500 is deployed behind a router, the

router must define to allow HTTPS and Server Port passing through to RS-2500,

otherwise the Web/SSL VPN may not work well.

Enable DNS and WINS server addresses to clients: If user enables this

function, the DNS server IP and WINS Server IP will be assigned to remote client

PC.

Enable NAT mode: If user enables this function, the outside packets will be added

the LAN port IP address of RS-2500 in packet’s header. It is designed for a

specific server that had such request. Mostly user does not need to enable it.

Enable hardware authentication: This function can make the login process more

easily if user often use Web/SSL VPN function. By default, system will assign

client PC to the Dropped list when it is the first time the client PC connect to it.

Authentication User or Group: RS-2500 Web/SSL VPN can co-work with

Authentication function to authorize the access right of VPN client.

Enable hardware authentication only: If the client PC is moved to Accepted

list, then he can access RS-2500 LAN resource without passing

authentication.

Enable Authentication User or Group only: If the client PC passes the

authentication, then he can access RS-2500 LAN resource.

Hardware Authentication set to Accepted and enable Authentication

User or Group: The client PC can access RS-2500 LAN resource without

passing authentication.

See also other documents in the category AirLive Accessories for video: