User ManualTable of ContentsIntroduction7Features and Benefits7Introduction to Firewalls7Introduction to Local Area Networking8LEDs9Physical Connections9Package Contents10System Requirements10Managing D-Link DFL-20011Resetting the DFL-20011Administration Settings12Administrative Access12Add ping access to an interface13Add Admin access to an interface13Add Read-only access to an interface14Enable SNMP access to an interface14System15Interfaces15Change IP of the LAN or DMZ interface15WAN Interface Settings – Using Static IP16WAN Interface Settings – Using DHCP16WAN Interface Settings – Using PPPoE17WAN Interface Settings – Using PPTP18WAN Interface Settings – Using BigPond19MTU Configuration19Routing20Add a new Static Route21Remove a Static Route21Logging22Enable Logging23Enable Audit Logging23Enable E-mail alerting for ISD/IDP events23Changing time zone26Using NTP to sync time26Setting time and date manually26Firewall27Policy27Policy modes27Action Types27Source and Destination Filter28Service Filter28Schedule28Intrusion Detection / Prevention29Add a new policy29Change order of policy30Delete policy30Configure Intrusion Detection30Configure Intrusion Prevention31Port mapping / Virtual Servers32Add a new mapping32Delete mapping33Users34The DFL-200 RADIUS Support34Enable User Authentication via HTTP / HTTPS35Enable RADIUS Support35Add User36Change User Password36Delete User37Schedules38Add new recurring schedule38Services39Adding TCP, UDP or TCP/UDP Service39Adding IP Protocol40Grouping Services40Protocol-independent settings41VPN42Introduction to IPSec42Introduction to PPTP43Introduction to L2TP43Point-to-Point Protocol43Authentication Protocols44PAP44CHAP44MS-CHAP v144MS-CHAP v244MPPE, Microsoft Point-To-Point Encryption44L2TP/PPTP Clients45L2TP/PPTP Servers46VPN between two networks48VPN between two networks48Creating a LAN-to-LAN IPSec VPN Tunnel48VPN between client and an internal network49Creating a Roaming Users IPSec VPN Tunnel49Adding a L2TP/PPTP VPN Client50Adding a L2TP/PPTP VPN Server50VPN – Advanced Settings51Limit MTU51IKE Mode51IKE DH Group51PFS – Perfect Forward Secrecy51NAT Traversal51Keepalives51Proposal Lists52IKE Proposal List52IPSec Proposal List52Certificates53Trusting Certificates53Local identities53Certificates of remote peers53Certificate Authorities53Identities54Content Filtering55Active content handling55Edit the URL Global Whitelist56Edit the URL Global Blacklist57Active content handling58Servers59DHCP Server Settings59Enable DHCP Server60Enable DHCP Relay60Disable DHCP Server/Relayer60DNS Relayer Settings61Enable DNS Relayer61Disable DNS Relayer62Tools63Ping63Ping Example64Dynamic DNS64Add Dynamic DNS Settings64Backup65Exporting the DFL-200’s Configuration65Restoring the DFL-200’s Configuration65Restart/Reset66Restarting the DFL-20066Restoring system settings to factory defaults67Upgrade69Upgrade Firmware69Upgrade IDS Signature-database69Status70System70Interfaces71VPN72Connections73DHCP Server74Logging75Users75How to read the logs76USAGE events76DROP events76CONN events76Step by step guides78LAN-to-LAN VPN using IPsec79Settings for Branch office79Settings for Main office81LAN-to-LAN VPN using PPTP83Settings for Branch office83Settings for Main office86LAN-to-LAN VPN using L2TP90Settings for Branch office90Settings for Main office93A more secure LAN-to-LAN VPN solution97Settings for Branch office97Settings for Main office100Windows XP client and PPTP server101Settings for the Windows XP client101Settings for Main office109Windows XP client and L2TP server111Settings for the Windows XP client111Settings for Main office113Content filtering115Intrusion detection and prevention119Appendixes122Appendix A: ICMP Types and Codes122Appendix B: Common IP Protocol Numbers124LIMITED WARRANTY125Size: 1.68 MBPages: 133Language: EnglishOpen manual