Billion BiGuard 50G - Manual

12 Chapter 1: Introduction 1.1 Overview Congratulations on purchasing BiGuard 50G Router from Billion. Combining a router with an Ethernet network switch, BiGuard 50G is a state-of-the-art device that provides everything you need to get your network connected to the Internet over your Cable or DSL c...

13 connections are possible on BiGuard 50G, with performance of up to 10Mbps. 1.2.3 Advanced Firewall Security Aside from intelligent broadband sharing, BiGuard 50G offers integrated firewall protection with advanced features to secure your network from outside attacks. Stateful Packet Inspection (S...

14 LED Function Power A solid light indicates a steady connection to a power source. Status A blinking light indicates the device is writing to flash memory. LAN 1 – 4 Lit when connected to an Ethernet device. 10/100M : Lit green when connected at 100Mbps. Not lit when connected at 10Mbps. Link/ACT:...

15 1.3.2 Rear Panel Port Function 1 Wireless Antenna One detachable 2.4GHz 5dbi SMA antenna 2 WAN2 WAN2 10/100M Ethernet port (with auto crossover support); connect xDSL/Cable modem here. 3 WAN1 WAN1 10/100M Ethernet port (with auto crossover support); connect xDSL/Cable modem here. 4 LAN 1 — 4 Conn...

17 Chapter 2: Router Applications 2.1 Overview Your BiGuard 50G router is a versatile device that can be configured to not only protect your network from malicious attackers, but also ensure optimal usage of available bandwidth with Quality of Service (QoS) and both Inbound and Outbound Load Balanci...

18 2.2.2 QoS Policies for Different Applications By setting different QoS policies according to the applications you are running, you can use BiGuard 50G to optimize the bandwidth that is being used on your network. As illustrated in the diagram above, applications such as Voiceover IP (VoIP) requir...

22 Other interfaces can match traffic based on the DSCP markings. DSCP markings are used to decide how packets should be treated, and is a useful tool to give precedence to varying types of data. 2.2.8 DSCP (Matching) Just like the DSCP Marking, DSCP is used on traffics (Both inbound rules and outbo...

24 connected to the Internet via WAN1 (IP_230.100.100.1) and WAN2 (IP_213.10.10.2) on BiGuard 50G. You can configure BiGuard 50G to balance the load of each WAN port with one of two mechanisms: 1. Session (by session/by traffic/weight of link capability) 2. IP Hash (by traffic/weight of link capabil...

31 2.6 Virtual Private Networking A Virtual Private Network (VPN) enables you to send data between two computers across a shared or public network in a manner that emulates the properties of a point-to-point private link. As such, it is perfect for connecting branch offices to headquarters across th...

35 Chapter 3: Getting Started 3.1 Overview BiGuard 50G is designed to be a powerful and flexible network device that is also easy to use. With an intuitive web-based configuration, BiGuard 50G allows you to administer your network via virtually any Java-enabled web browser and is fully compatible wi...

36 password for security reason. 4. Prepare to physically connect BiGuard 50G to Cable or DSL modems and a computer. Be sure to also review the Safety Warnings located in the preface of this manual before working with your BiGuard 50G. 3.3 Connecting Your Router Connecting BiGuard 50G is an easy thr...

37 3.4 Configuring PCs for TCP/IP Networking Now that your BiGuard 50G is connected properly to your network, it’s time to configure your networked PCs for TCP/IP networking. In order for your networked PCs to communicate with your router, they must have the following characteristics: 1. Have a prop...

38 - Windows 95/98/Me/NT/2000/XP - Mac OS 7 and later If you are using Windows 3.1, you must purchase a third-party TCP/IP application package. Any TCP/IP capable workstation can be used to communicate with or through BiGuard 50G. To configure other types of workstations, please consult the manufact...

39 3. Select Internet Protocol (TCP/IP) and click Properties . 4a. To have your PC obtain an IP address automatically, select the Obtain an IP

41 3.4.2.2 Verifying Settings To verify your settings using a command prompt: 1. Click Start > Programs > Accessories > Command Prompt . 2. In the Command Prompt window, type ipconfig and then press ENTER . If you are using BiGuard 50G’s default settings, your PC should have:

43 2. Right click one of the network connections listed and select Status from the pop-up menu. 3. Click the Support tab.

46 4. In the Local Area Connection window, click Properties . 5. Select Internet Protocol (TCP/IP) and click Properties .

50 - A subnet mask of 255.255.255.0 3.4.4 Windows 98 / Me 3.4.4.1 Installing Components To prepare Windows 98/Me PCs for TCP/IP networking, you may need to manually install TCP/IP on each PC. To do this, follow the steps below. Be sure to have your Windows CD handy, as you may need to insert it duri...

55 b. Select Client , then click Add . c. Select Microsoft . Æ Client for Microsoft Networks , and then click OK . 3. Restart your PC to apply your changes. 3.4.4.2 Configuring 1. Select Start > Settings > Control Panel .

56 2. In the Control Panel, double-click Network and choose the Configuration tab.

57 3. Select TCP / IP > ASUSTek or the name of any Network Interface Card (NIC) in your PC and click Properties . 4. Select the IP Address tab and click the Obtain an IP address automatically radio button.

58 5. Select the DNS Configuration tab and select the Disable DNS radio button. 6. Click OK to apply the configuration.

60 The window is updated to show your settings. Using the default BiGuard 50G settings, your PC should have: - An IP address between 192.168.1.1 and 192.168.1.253 - A subnet mask of 255.255.255.0 - A default gateway of 192.168.1.254 3.5 Factory Default Settings Before configuring your BiGuard 50G, y...

61 ISP setting in WAN site: Obtain an IP Address automatically (DHCP Client) DHCP server: DHCP server is enabled. Start IP Address: 192.168.1.100 End IP Address: 192.168.1.199 3.5.1 User Name and Password The default user name and password are "admin" and "admin" respectively. If you...

62 3.6 Information From Your ISP 3.6.1 Protocols Before configuring this device, you have to check with your ISP (Internet Service Provider) to find out what kind of service is provided such as DHCP, Static IP, PPPoE, or PPTP. The following table outlines each of these protocols: DHCP Configure this...

65 4. Select Internet Protocol (TCP/IP) and click Properties . 5. If an IP address , subnet mask and a Default gateway are shown, write down the information. If no address is present, your account’s IP address is dynamically

66 assigned. Click the Obtain an IP address automatically radio button. 6. If any DNS server addresses are shown, write them down. Click the Obtain DNS server address automatically radio button. 7. Click OK to save your changes.

67 3.7 Web Configuration Interface BiGuard 50G includes a Web Configuration Interface for easy administration via virtually any browser on your network. To access this interface, open your web browser, enter the IP address of your router, which by default is 192.168.1.254, and click Go . A user name...

69 Chapter 4: Router Configuration 4.1 Overview The Web Configuration Interface makes it easy for you to manage your network via any PC connected to it. On the Web Configuration homepage, you will see the navigation pane located on the left hand side. From it, you will be able to select various opti...

76 Name: The name you assigned to the particular IPSec entry. Enable: Whether the IPSec connection is currently Enable or Disable. Status: Whether the IPSec is Active, Inactive or Disable. Local Subnet : The local IP address or subnet used. Remote Subnet: The subnet of the remote site. Remote Gatewa...

79 First directs the page number for the table to the 1 st page, previous directs the page number for the table to the one page before, the dropdown menu allows the user to specifically select the page number to view, next directs the page number for the table to the one page after current page, and...

83 - QoS - Virtual Server - Advanced These items are described below in the following sections. 4.4.1 LAN There are three items within this section: Ethernet , Wireless, Wireless Securtiy, DHCP Server and LAN Address Mapping. 4.4.1.1 Ethernet

84 IP Address: Enter the internal LAN IP address for BiGuard 50G (192.168.1.254 by default). Subnet Mask: Enter the subnet mask (255.255.255.0 by default). RIP: RIP v2 Broadcast and RIP v2 Multicast. Check to enable RIP. Wireless WLAN Service: Default setting is set to Disable . If you have any wire...

88 4.4.1.3 WEP WEP Encryption: To prevent unauthorized wireless stations from accessing data transmitted over the network, the router offers highly secure data encryption, known as WEP. If you require high security for transmissions, there are two alternatives to select from: WEP 64 and WEP 128 . WE...

89 To disable the router’s DHCP Server, select the Disable radio button, and then click Apply . When the DHCP Server is disabled, you will need to manually assign a fixed IP address to each PC on your network, and set the default gateway for each PC to the IP address of the router (192.168.1.254 by ...

90 Name: Enter the name you want to give for the IP+Mac Address Fixed Host account. Active: Select whether you want to Enable or Disable this particular Fixed Host account. IP Address: Enter the IP address that you want to reserve for the above MAC address. MAC Address: Enter the MAC address of the ...

91 4.4.1.5 LAN Address Mapping LAN Address Mapping is a function that can support multiple subnet and also multiple NAT, you can specify a subnet and LAN Gateway IP Address and select associated WAN IP Address specified in WAN IP Alias in Configuration -> WAN -> WAN IP Alias. Please click Crea...

92 4.4.2 WAN WAN refers to your Wide Area Network connection. In most cases, this means your router’s connection to the Internet through your ISP. BiGuard30 features Dual WAN capability. There are three items within this section: The WAN menu contains two items: ISP Settings , Bandwidth Settings and...

93 Connection Method: Select how your router will connect to the Internet. Selections include Obtain an IP Address Automatically , Static IP Settings , PPPoE Settings , PPTP Settings , and Big Pond Settings . For each WAN port, the factory default is DHCP. If your ISP does not use DHCP, select the c...

100 WAN IP Alias WAN IP Alias allows you to input additional WAN IP addresses. WAN IP Alias can be used for Multiple NAT settings, including LAN Address Mapping settings and Virtual Server settings. Please click Create to create a LAN Address Mapping rule. Name: Please input the name of the rule. IP...

106 Name1: The Alias Host URL Name2: The Alias Host URL Click Apply to save your changes. 4.4.3.4 Protocol Binding Protocol Binding lets you direct specific traffic to go out from a specific WAN port. Click the Create button to create a new policy entry. Policies entered would tell specific types of...

108 Time Zone BiGuard does not use an onboard real time clock; instead, it uses the Network Time Protocol (NTP) to acquire the current time from an NTP server outside your network. Simply choose your local time zone, enter NTP Server IP Address, and click Apply . After connecting to the Internet, Bi...

110 Upgrading your BiGuard 50G’s firmware is a quick and easy way to enjoy increased functionality, better reliability, and ensure trouble-free operation. To upgrade your firmware, simply visit Billion’s website ( http://www.billion.com ) and download the latest firmware image file for BiGuard 50G. ...

111 backup file. You may also change the name of the file when saving if you wish to keep multiple backups. Click OK to save the file. To restore a previously saved backup file, click Browse . You will be prompted to select a file from your PC to restore. Be sure to only restore setting files that h...

115 Destination Port Range: Enter the destination port number range. If you only want to specify one service port, then enter the same port number in both boxes. Helper: You could also select the application type you would like to apply for automatic input. Schedule: Allows you select a time for thi...

117 Enter a domain and select whether this domain is trusted or forbidden with the pull-down menu. Next, click Apply. Your new domain will be added to either the Trusted Domain or Forbidden Domain listing, depending on which you selected previously. You may also designate which IP addresses are to b...

118 4.4.5.3 Ethernet MAC Filter Ethernet Mac Filter can decide if BiGuard will filter those devices at LAN side by MAC Address and determine if they can connect to the internet or not. Default Rule: Forward or Drop all LAN request. (Forward by default) Create: You can also input a specified MAC Addr...

120 4.4.5.5 Block WAN Request Blocking WAN requests is one way to prevent DDOS attacks by preventing ping requests from the Internet. Use this menu to enable or disable function. 4.4.5.6 Intrusion Detection Intrusion Detection can prevent most common DoS attacks from the Internet or from LAN users. ...

121 connections on per-user basis. This is useful when controlling users who will use the applications which create a large number of connections (such as P2P software). No Limit: No restrictions on the amount of sessions allowed to connect to BiGuard30. Limit Maximum sessions per IP to: Restricts a...

123 pre-shared key into both sides (router or hosts). Connection Type : There are 5 connection types: (1)LAN to LAN: BiGuard would like to establish an IPSec VPN tunnel with remote router using Fixed Internet IP or domain name by using main mode. Secure Gateway Address (or Domain Name): The IP addre...

124 (3)LAN to Host: BiGuard would like to establish an IPSec VPN tunnel with remote client software using Fixed Internet IP or domain name by using main mode. Secure Gateway Address (or Domain Name): The IP address or hostname of the remote VPN device that is connected and establishes a VPN tunnel. ...

125 Remote Identifier: The Identifier of the remote gateway. According to the input value, the ID type will be auto-defined as IP Address, FQDN(DNS) or FQUN(E-mail). Back: Back to the Previous page. Next: Go to the next page. (5)LAN to Host (for BiGuard VPN Client only): BiGuard would like to establ...

126 After your configuration is done, you will see a Configuration Summary . Back: Back to the Previous page. Done: Click Done to apply the rule. 4.4.6.1.2 IPSec Policy Click Create to create a new IPSec VPN connection account. Configuring a New VPN Connection

127 Connection Name: A user-defined name for the connection. Tunnel: Select Enable to activate this tunnel. Select Disable to deactivate this tunnel. Interface: Select the interface the IPSec tunnel will apply to. WAN1: Select interface WAN1 WAN2: Select interface WAN2 Auto: The device will automati...

130 negotiation time. Diffie-Hellman is a public-key cryptography protocol that allows two parties to establish a shared secret over the Internet. Pre-shared Key: This is for the Internet Key Exchange (IKE) protocol. IKE is used to establish a shared security policy and authenticated keys for servic...

131 Local Subnet: Displays IP address and subnet of the local network. Remote Subnet: Displays IP address and subnet of the remote network. Remote Gateway: This is the IP address or Domain Name of the remote VPN device that is connected and has an established IPSec tunnel. IPSec Proposal: This is th...

134 Creating a New QoS Rule To get started using QoS, you will need to establish QoS rules. These rules tell BiGuard 50G how to handle both incoming and outgoing traffic. The following example shows you how to configure WAN1 Outbound QoS. Configuring the other traffic types follows the same process....

136 For MAC Address: Source MAC Address: The source MAC Address of the device this rule applies to. Candidates: You can also select the Candidates which are referred from the ARP table for automatic input. Source Port Range: The range of source ports this rule applies to. Destination Port Range: The...

137 configure your router to forward these incoming connection attempts using specific ports to the PC on your network running the application. You will also need to use port forwarding if you want to host an online game server. The reason for this is that when using NAT, your publicly accessible IP...

138 Candidates: You can also select the Candidates which are referred from the ARP table for automatic input. Select the Apply button to apply your changes. 4.4.8.2 Port Forwarding Table Because NAT can act as a "natural" Internet firewall, your router protects your network from being access...

143 Device Name Name: Enter a name for this device. Web Server Settings HTTP Port: This is the port number the router’s embedded web server (for web-based configuration) will use. The default value is the standard HTTP port, 80. Users may specify an alternative if, for example, they are running a we...

145 Click Create to create a new schedule. Name: A user-define description to identify this time portfolio. Day: The default is set from Monday through Friday. You may specify the days for the schedule to be applied. Start Time: The default is set at 8:00 AM. You may specify the start time of the sc...

146 Select System Log to capture to a log. Select Syslog Server to capture and send to a specified external server. Select Email Alert to send information log to a pre-specified E-mail account. 5.2 System Log Server This function allows BiGuard 50G to send system logs to an external Syslog Server. S...

148 Weekly: The router will send an alert once a week. When log is full: The router will send an alert only when the log is full. 6 Language Language provides 3 different type of language to be displayed on the interface (currently supporting English, Simplified Chinese and Traditional Chinese). Not...

149 6.2 Simplified Chinese Clicking on the Simplified Chinese link will change all the text into Simplified Chinese. 6.3 Traditional Chinese Clicking on the Traditional Chinese link will change all the text into Traditional Chinese. 7 Save Configuration To Flash After changing the router’s configura...

150 8 Logout To exit the router’s web interface, click Logout . Please ensure that you have saved your configuration settings before you logout. Be aware that the router is restricted to only one PC accessing the web configuration interface at a time. Once a PC has logged into the web interface, oth...

152 or workstation. - Make sure that power is turned on to the connected hub or workstation. - Be sure you are using the correct cable. When connecting the firewall’s Internet port to a cable or DSL modem, use the cable that was supplied with the cable or DSL modem. This cable could be a standard st...

153 5.2.2 Can’t Ping Any PC on the LAN If PCs connected to the LAN cannot be pinged: - Check the 10/100 LAN LEDs on BiGuard 50G’s front panel. One of these LEDs should be on. If they are both off, check the cables between BiGuard 50G and the hub or PC. - Check the corresponding LAN LEDs on your PC’s...

154 3. Make sure that the Delete All Offline Content checkbox is checked, and click OK . 4. Click OK under Internet Options to close the dialogue. - In Windows, type arp –d at the command prompt to clear you computer’s ARP table.

157 4. Click OK to close the dialogue. NOTE: If Java from Sun Microsystems is installed, scroll down to Java (Sun) and ensure that the checkbox is filled. 5.3 WAN Interface If you are having problems with the WAN Interface, refer to the tips below. 5.3.1 Can’t Get WAN IP Address from the ISP If the ...

159 If an IP address can be obtained, but your PC cannot load any web pages from the Internet: - Your PC may not recognize DNS server addresses. Configure your PC manually with DNS addresses. - Your PC may not have the router correctly configured as its TCP/IP gateway. 5.5 Problems with Date and Tim...

160 Appendix A: Product Specifications Availability and Resilience - Dual-WAN ports - Load balancing for increased bandwidth of inbound and outbound traffic - Automatic failover to redirect the packet when one broadband connection is broken. It will keep your Internet connection always online whenev...

161 - Netbios over VPN Firewall - Stateful Packet Inspection (SPI) and Denial of Service (DoS) prevention - Packet filter un-permitted inbound (WAN)/Inbound (LAN) Internet access by IP address, port number and packet type - Email alert and logs of attack - MAC Address Filtering - Intrusion detection...

163 Appendix B: Customer Support Most problems can be solved by referring to the Troubleshooting section in the User’s Manual. If you cannot resolve the problem with the Troubleshooting chapter, please contact the dealer where you purchased this product. Contact Billion Worldwide http://www.billion....

164 Appendix C: FCC Interference Statement This device complies with Part 15 of FCC rules. Operation is subject to the following two conditions: - This device may not cause harmful interference. - This device must accept any interference received, including interference that may cause undesired oper...

167 from these ranges. D.1.2 Network Address Translation (NAT) Traditionally, multiple PCs that needed simultaneous Internet access also required a range of IP addresses from the Internet Service Provider (ISP). Not only was this method very costly, but the number of available IP addresses for PCs i...

169 D.3 Firewall Basics D.3.1 What is a Firewall? Firewalls prevent unauthorized Internet users from accessing private networks connected to the Internet. All messages entering or leaving the intranet pass through the firewall, which examines each message and blocks those that do not meet the specif...

173 E.2.1.2 Encapsulating Security Payload (ESP) Encapsulating Security Payload (ESP) provides privacy for data through encryption. An encryption algorithm combines the data with a key to encrypt it. It then repackages the data using a special format, and transmits it to the destination. The receive...

176 E.2.4 Tunnel Mode ESP Here is an example of a packet with ESP applied: E.2.5 Internet Key Exchange (IKE) Before either AH or ESP can be used, it is necessary for the two communication devices to exchange a secret key that the security protocols themselves will use. To do this, IPSec uses Interne...

178 Appendix F: IPSec Logs and Events F.1 IPSec Log Event Categories There are three major categories of IPSec Log Events for your BiGuard 50G. These include: 1. IKE Negotiate Packet Messages 2. Rejected IKE Messages 3. IKE Negotiated Status Messages The table in the following section lists the diff...

179 Received Main mode second message of ISAKMP Received the second message of main mode. Done to exchange key values. Send Main mode second response message of ISAKMP Sending the main mode second response message. Done to exchange key values. Received Main mode second response message of ISAKMP Rec...

180 Received Aggressive mode second ISAKP Message Received the second message of aggressive mode. Done to exchange proposal and key values. Send Quick mode initial message Sending the first message of quick mode (Phase II). Done to exchange proposal and key values (IPSec). Received Quick mode initia...

181 NO PROPOSAL CHOSEN: Initial Main Mode message received on [IP:Port #] but no connection has been authorized INVALID ID: Require peer to have ID [ID], but peer declares [ID] INVALID ID INFORMATION: Initial Aggressive Mode packet claiming to be from [ID] on [IP] but no connection has been authoriz...

182 Appendix G: Bandwidth Management with QoS G.1 Overview In a home or office environment, users constantly have to transmit data to and from the Internet. When too many are accessing the Internet at the same time, service can slow to a crawl, causing service interruptions and general frustration. ...

185 Appendix H: Router Setup Examples H.1 Outbound Fail Over Step 1: Go to Configuration > WAN > ISP Settings . Select WAN1 and WAN2 and click Edit . Step 2: Configure WAN1 and WAN2 according to the information given by your ISP.

186 Step 3: Go to Configuration > Dual WAN > General Settings. Select the Fail Over radio button. Under Connectivity Decision, input the number of times BiGuard 50G should probe the WAN before deciding that the ISP is in service or not (3 by default). Next, input the duration of the probe cycl...

187 WAN1. Step 4: Click Save Config to save all changes to flash memory. H.2 Outbound Load Balancing With Outbound Load Balancing, you can improve upload performance by optimizing your connection via Dual WAN. To do this, follow these steps: Step 1: Go to Configuration > WAN > ISP Settings . C...

188 Step 3: Go to Configuration > Dual WAN > General Settings . Select the Load Balance radio button. Step 4: Go to Configuration > Dual WAN > Outbound Load Balance . Choose the Load Balance mechanism you want and click Apply .

189 Step 5: Complete. To check traffic statistics, go to Status > Traffic Statistics . Step 6: Click Save Config to save all changes to flash memory.

190 H.3 Inbound Fail Over Configuring your BiGuard 50G for Inbound Fail Over is a great way to ensure a more reliable connection for incoming requests. To do so, follow these steps: NOTE: Before you begin, ensure that both WAN1 and WAN2 have been properly configured. See Chapter 4: Router Configurat...

192 H.4 DNS Inbound Fail Over NOTE: Before proceeding, please ensure that both WAN1 and WAN2 are properly configured according to the settings provided by your ISP. If not, please refer to Chapter 4.2.2.1 ISP Settings for details on how to configure your WAN ports. Step 1: Go to Configuration > D...

193 Step 2: Go to Configuration > Dual WAN > Inbound Load Balance . Select the Enable radio button and configure DNS Server 1 by clicking Edit . Step 3: Input DNS Server 1 settings and click Apply .

194 Step 4: Configure your Host URL Mapping for DNS Server 1 by clicking Edit to enter the Host URL Mappings List. Click Create and input the settings for Host URL Mappings and click New . Step 5: Click Save Config to save all changes to flash memory. H.5 DNS Inbound Load Balancing

195 Step 1: Go to Configuration > Dual WAN > General Settings . Select the Load Balance radio button. Step 2: Go to Configuration > Dual WAN > Inbound Load Balance > Server Settings and configure DNS Server 1.

196 Step 3: Go to Configuration > Dual WAN > Inbound Load Balance > Host URL Mapping and configure your FTP mapping. Step 4: Next configure your HTTP mapping.

197 Step 5: Click Save Config to save all changes to flash memory. H.6 Dynamic DNS Inbound Load Balancing Step 1: Go to Configuration > WAN > Bandwidth Settings. Configure your WAN inbound and outbound bandwidth.

199 Step 4: Go to Configuration > Advanced > Dynamic DNS and input the dynamic DNS settings for WAN1 and WAN2. WAN1: WAN 2:

200 Step 5: Go to Configuration > Virtual Server and set up a virtual server for both FTP and HTTP. Step 6: Click Save Config to save all changes to flash memory. H.7 VPN Configuration This section outlines some concrete examples on how you can configure BiGuard 50G for your VPN. H.7.1 LAN to LAN

207 Step 1: Go to Configuration > VPN > IPSec > IPSec Policy and configure the link from BiGuard 50G to BiGuard 10 Branch A. 100.100.100.1 200.200.200.1 192.168.2.x 192.168.3.x 201.201.201.1 192.168.4.x Local ID Type: Subnet Local subnet: 0.0.0.0 Local mask: 0.0.0.0 Remote ID Type: Subnet R...

211 Step 5: Click Save Config to save all changes to flash memory. H.10 Protocol Binding Step 1: Go to Configuration > Dual WAN > General Settings. Select the Load Balancing radio button.

213 Step 4: Click Save Config to save all changes to flash memory. H.11 Intrusion Detection Intrusion Detection on Internet Internet Detected! Dropped BiGuard Safe!! Server Safe!! Hacker DoS Attack DoS Attack Hacker Hacker DoS Attack DoS Attack Step 1: Go to Configuration > Firewall > Intrusio...

214 H.12 PPTP Remote Access by Windows XP Internet Internet Windows XP PPTP Client Internet Internet 100.100.100.1 Headquarter BiGuard &PPTP Server Business Trip PPTP Tunnel Public IP Local subnet: 192.168.30.0Local mask: 255.255.255.0 Step1: Go to Configuration > VPN > PPTP and Enable the...

215 Step3: Click Apply , you can see the account is successfully created. Step4: Click Save Config to save all changes to flash memory. Step5: In Windows XP, go Start > Settings > Network Connections .

217 Step7: Select Connect to the network at my workplace and press Next . Step8: Select Virtual Private Network connection and press Next .

218 Step9: Input the user-defined name for this connection and press Next . Step10: Input PPTP Server Address and press Next .

219 Step11: Please press Finish . Step12: Double click the connection, and input Username and Password that defined in BiGuard PPTP Account Settings .

220 PS. You can also refer the Properties > Security page as below, by default.

221 H.13 PPTP Remote Access by BiGuard Internet Internet Internet Internet 100.100.100.1 Headquarter BiGuard &PPTP Server PPTP Tunnel Branch Office 200.200.200.1 BiGuard &PPTP Client Local subnet: 192.168.30.0Local mask: 255.255.255.0 Step1: Go to Configuration > VPN > PPTP and Enable ...