Nov 06

This example will demonstrate how to create a Virtual private Network (VPN) between two remote locations through the Internet. The VPN policy will use 3DES IPSec to securely send/receive encrypted data over the Internet. When the VPN tunnel is enabled, the two offices will virtually appear to be on the same local network.

DI-804HV-back

This example will consist of two DI-804HV VPN Routers with a simple setup. The two remote offices in this example will be known as Office A and Office B. Both VPN Routers must already be set up and able to access each other. This is only an example, your setup will vary using the WAN IP address provided by your ISP.

Please note the differences in the IP addresses for each office.

We will begin by configuring the DI-804HV at Office A. Start by going into VPN Settings under the Basic Setup menu.

Step 1: In the Connection Name field, type in OfficeA. Click ADD.

Step 2: A properties screen will appear for the new connection you have made. Fill in the appropriate information for Office A:

di_804hv_ris4_nastroyka

  • Connection Name: OfficeA
  • Local IPSEC Identifier: Local
  • Remote IPSEC Identifier: Remote
  • Remote IP Network: 192.168.1.0
  • Remote IP Netmask: 255.255.255.0
  • Remote Gateway IP: 192.170.0.2
  • Network Interface: WAN ETHERNET
  • Secure Association: IKE
  • Perfect Forward Secure: Enabled
  • PreShared Key: enter key (123456 in this example)
  • Key Life: 28800
  • IKE Life Time: 3600

Step 3: Click SAVE. There should now be a VPN policy created for Office A. Now you will want to Save & Restart the DI-804HV.

Note: PreShared Key must be the same on both routers.

Office A setup is now complete, we will now configure Office B with the other DI-804HV, Follow the same steps previously with Ofice A to create a VPN policy.

Step 1: Please change the appropriate information.

  • Connection Name: OfficeB
  • Local IPSEC Identifier: Local
  • Remote IPSEC Identifier: Remote
  • Remote IP Network: 192.168.0.0
  • Remote IP Netmask: 255.255.255.0
  • Remote Gateway IP: 192.170.0.1
  • Network Interface: WAN ETHERNET
  • Secure Association: IKE
  • Perfect Forward Secure: Enabled
  • PreShared Key: enter desired key (123456 in this example)
  • Key Life: 28800
  • IKE Life Time: 3600

di_804hv_ris8_nastroyka

Step 2: Click SAVE. There should now be a VPN policy created for Office B. Now you will want to Save & Restart the DI-804HV.

After the VPN policies have been created for the two Offices, the two remote locations should authenticate and connect. To view the status of the VPN connection, go to the Device Status menu. On the bottom-left side of the menu, click on the VPN Status icon.

A VPN Status pop-up screen will appear showing VPN connection status. If a VPN tunnel is active, the State should indicate Q-Estab.

Go to a DOS prompt and ping the internal IP address of the remote network.

Tags: , ,

Aug 13

You must open ports on your router to allow incoming traffic while using eMule.

eMule uses three ports*:

  • 4662 (TCP)
  • 4672 (UDP)
  • 4711 (TCP)
  • * To prevent getting a low ID (Firewalled), open additional TCP ports between 4661 and 4665. Also, limit the number of connections in the eMule software. You may need to change the TCP Clientport to something other than 4662.

    emule-dlink

    1.For the DI-5xx, DI-6xx, DI-704P (revC), DI-704UP, DI-754, DI-764, DI-774, DI-784, DI-804HV, DI-808HV, and DI-824VUP:

    Step 1: Open your web browser and enter the IP address of your router (192.168.0.1). Enter username (admin) and your password (leave blank).

    Step 2: Click on Advanced and then click Virtual Server.

    Step 3: Create a new entry:

  • Click Enabled.
  • Enter a name (emule1).
  • Private IP – Enter the IP address of the computer you are running eMule from.
  • Select TCP for Protocol Type
  • Enter 4662 for both Private Port and Public Port
  • Click Always or set a schedule.
  • Step 4: Click Apply and then Continue.

    emule-dlink2

    Step 5: Repeat steps 3 and 4 but name it emule2, select UDP for Protocol Type, and enter 4672 for both Private Port and Public Port.

    Step 6: Repeat steps 3 and 4 but name it emule3, select TCP for Protocol Type, and enter 4711 for both Private Port and Public Port.

    Note: If the screenshots look different (DI-604), then you have the European version of your router which D-Link USA does not support.

    2.For the DI-704P (revA), DI-704, DI-707, DI-711, DI-713, and DI-713P:

    Step 1 Open your web browser and enter the IP address of the router (192.168.0.1). Enter user name (admin) and your password (blank by default). If there is only 1 box, enter admin.

    Step 2 Click on Advanced at the bottom and then click Virtual Server.

    Step 3 Create a new entry:

    • Enter 4661-4665 in the box under Service Ports.
    • Enter the IP address of the computer you want to run eMule from.
    • Check the box under Enable.
    • In the next box down, enter 4672 under Service Ports.
    • Enter the IP address of the computer you want to run eMule from.
    • Check the box under Enable.
    • In the next box down, enter 4711 under Service Ports.
    • Enter the IP address of the computer you want to run eMule from.
    • Check the box under Enable.

    emule-dlink3

    Step 4: Click Save and the click Reboot.

    NOTE: If you can only enter a single port (not a range) and/or are limited to 10 entries, upgrade your firmware to the latest version at support.dlink.com/downloads.

    Tags: , , , , ,

    Jan 16

    This article teaches you VPN config about D-Link Firewall and DI-804HV,With the DFL-800 as an example.

    1. Go to “System” → “DNS” and enter a working DNS server IP, here we use our ISP’s DNS server.

    DFL-800a

    2. Go to “System” → “Misc. Clients” → “Add” to add a DDNS client, here we choose dyndns.org DDNS client.

    DFL-800b

    3. Then enter the full domain name and your account info.

    DFL-800c

    4. Go to “Objects” → “Address book”, previously, we use an IP on the remote gateway, here, just change the IP to the domain name, here we assume the other side (DI-804HV also uses DDNS and has the domain test1.dyndns.org setup). Click on the “remote-gw” object, and modify the IP to “dns:test1.dyndns.org”. Make sure “dns:” is entered before the domain name.

    DFL-800d

    5. In DI-804HV, just replace the remote gateway IP to the DDNS domain name we set up in D-Link DFL-800 (test.dyndns.org)

    DI-804HV

    Tags: , ,

    css.php