Multitech RouteFinder RF600VPN, RouteFinder RF760VPN, RouteFinder RF660VPN Quick Start Manual

RF760/660/600VPN

Internet Security Appliance

Quick Start Guide

Quick Start Guide RouteFinder VPN RF760/660/600VPN 82013762L, Revision C

warranties of merchantability or fitness for any particular purpose. Furthermore, Multi-Tech Systems, Inc. reserves the right to revise this publication and to make changes from time to time in the content hereof without obligation of Multi-Tech Systems, Inc. to notify any person or organization of such revisions or changes.

Record of Revisions Revision

Date Description

A 01/15/04 Initial release for RF760VPN.

Include RF600VPN and RF660VPN to create a combo guide. B 10/26/04 & New software – version 3.20 and 01/25/05 New software – version 3.21. POP3 Proxy added to the software. C 12/02/05 New software – version 3.25. New Hardware: compact flash.

Patents

This device is covered by one or more of the following U.S. Patent Numbers: 6,219,708; 5,301,274; 5,309,562; 5,355,365; 5,355,653; 5,452,289; 5,453.986. The modem is covered by one or more of the following U.S. Patent Numbers: 6,031,867; 6,012,113; 6,009,082; 5,905,794; 5,864,560; 5,815,567; 5,815,503; 5,812,534; 5,809,068; 5,790,532; 5,764,628; 5,764,627; 5,754,589; D394,250; 5,724,356; 5,673,268; 5,673,257; 5,644,594; 5,628,030; 5,619,508; 5,617,423; 5,600,649; 5,592,586; 5,577,041; 5,574,725; D374,222; 5,559,793; 5,546,448; 5,546,395; 5,535,204; 5,500,859; 5,471,470; 5,463,616; 5,453,986; 5,452,289; 5,450,425; D361,764; D355,658; D355,653; D353,598; D353,144; 5,355,365; 5,309,562; 5,301,274 Other Patents Pending

Copyrights and Trademarks

Trademarks of Multi-Tech Systems, Inc.: Multi-Tech, the Multi-Tech logo and RouteFinder. Windows is a registered trademark of Microsoft Corporation in the United States and other countries. Kaspersky Anti-Virus engine copyrighted by Kaspersky Labs. GNU General Public License copyrighted by Free Software Foundation, Inc. Surfcontrol is the registered product of Surfcontrol PLC. All products or technologies are the trademarks or registered trademarks of their respective holders.

Warranty, Repairs & Service, Licenses

The following statements and policies are printed in the RouteFinder User Guide. They are also available on the RouteFinder CD and the Multi-Tech Web site at www.multitech.com.

• Multi-Tech Systems, Inc. Warranty Statement

• Multi-Tech Systems, Inc. Repairs and Service Policy

• Multi-Tech Systems, Inc End User License

• GNU General Public License

• SurfControl URL Filtering End-User Terms

• Kasperkey Standard End User License Agreement.

Technical Support Country By Email By Phone

France: support@multitech.fr (33) 1-64 61 09 81 India: support@multitechindia.com 91 (124) 6340778 U.K.: support@multitech.co.uk (44) 118 959 7774 U.S. and Canada: support@multitech.com (800) 972-2439 Rest of the World: support@multitech.com (763) 717-5863

World Headquarters

Multi-Tech Systems, Inc. 2205 Woodale Drive Mounds View, Minnesota 55112 (763) 785-3500 or (800) 328-9717 Fax 763-785-9874 Internet Address: http://www.multitech.com

Multi-Tech Systems, Inc. RF760/660/600VPN Quick Start Guide (82013762L) 3

Table of Contents

Contents

Chapter 1 – Introduction ...................................................................................................................................................... 5

The RouteFinder and Its Documentation .......................................................................................................................... 5

Other References ............................................................................................................................................................. 5

Safety Warnings ............................................................................................................................................................... 5

Safety Recommendations for Rack Installations............................................................................................................... 6

Ship Kit Contents .............................................................................................................................................................. 6

License Keys .................................................................................................................................................................... 6

Typical Applications .......................................................................................................................................................... 7

Chapter 2 – Installation ........................................................................................................................................................ 8

Installation – Planning the Network................................................................................................................................... 8

Establishing an Address Table ......................................................................................................................................... 8

Cabling Procedure ............................................................................................................................................................ 9

Setting up a Workstation and Starting the RouteFinder VPN.......................................................................................... 10

Navigating Through the Screens .................................................................................................................................... 12

Initial Web Administration Steps ..................................................................................................................................... 14

Chapter 3 – Using the Wizard Setup ................................................................................................................................. 14

Initial Configuration Using the Wizard Setup................................................................................................................... 14

Using the Setup Wizard .................................................................................................................................................. 16

Chapter 4 – Configuration Examples................................................................................................................................ 17

Example 1: LAN-to-LAN VPN (Branch Office) ............................................................................................................... 17

Example 2: Remote Client-to-LAN VPN Configuration ................................................................................................... 22

Example 3: Remote Client-to-LAN Configuration Using DNAT and Aliasing .................................................................. 23

Example 4: Client-to-LAN Configuration Using PPTP Tunneling .................................................................................... 24

Chapter 5 - URL Categorization ........................................................................................................................................ 25

4 Multi-Tech Systems, Inc. RF760/660/600VPN Quick Start Guide (82013762L)

Chapter 1 – Introduction

The RouteFinder and Its Documentation

The RouteFinder VPN is both a Virtual Private Network (VPN) and a firewall. It also offers an optional email antivirus protection subscription.

Using the RouteFinder VPN is a cost-effective, manageable way for small to medium businesses to add a remote user VPN, a Branch Office VPN, and/or Firewall Security applications to their networks.

This Quick Start Guide is intended to provide the experienced system administrator the information needed to quickly get the RouteFinder VPN up and running. A User Guide with more detailed information is provided on the RouteFinder VPN CD.

Other References

In addition to the User Guide, the following Reference Guides are available on the CD as well as the Multi-Tech Web site at www.multitech.com:

1. The RouteFinder configured with DNAT and aliases.

2. Setting up a PPTP server and a PPTP remote client.

3. The VPN tunnel configured for manual mode example and IPSec pass-through in manual mode example.

4. A guide for the add-on product, IPSec SSH client.

5. Hard-Disk Drive Recovery.

Safety Warnings

Lithium Battery Caution

Danger of explosion if battery is incorrectly replaced. A lithium battery on the RouteFinder VPN PC board provides backup power for the time-keeping capability. The battery has an estimated life expectancy of ten years. When it starts to weaken, the date and time may be incorrect. If the battery fails, send the board back to Multi-Tech for battery replacement.

Ethernet Ports Caution

The Ethernet ports are not designed to be connected to a Public Telecommunication Network.

Software Recovery CD Warning

Do not use the Software Recovery CD for any purpose except for re-installing software onto the RouteFinder VPN hard drive.

Telecom Warnings for Modem Operation

• Never install telephone wiring during a lightning storm.

• Never install telephone jacks in a wet location unless the jack is specifically designed for wet locations.

• This product is to be used with UL and cUL listed computers.

• Never touch uninsulated telephone wires or terminals unless the telephone line has been disconnected at the

network interface.

• Avoid using a telephone during an electrical storm. There may be a remote risk of electrical shock from lightening.

• Do not use the telephone to report a gas leak in the vicinity of the leak.

• To reduce the risk of fire, use only No. 26 AWG or larger Telecommunications line cord.

Multi-Tech Systems, Inc. RF760/660/600VPN Quick Start Guide (82013762L) 5

Chapter 1 – Introduction

Safety Recommendations for Rack Installations

• Ensure proper installation of the RF760/660VPN in a closed or multi-unit enclosure by following the recommended

installation as defined by the enclosure manufacturer.

• IMPORTANT: Do not place the RF760/660VPN directly on top of other equipment or place other equipment directly

on top of the RF760/660VPN.

• If installing the RF760/660VPN in a closed or multi-unit enclosure, ensure adequate airflow within the rack so that

the maximum recommended ambient temperature is not exceeded.

• Ensure that the RF760/660VPN is properly connected to earth ground via a grounded power cord. If a power strip is

used, ensure that the power strip provides adequate grounding of the attached apparatus.

• Ensure that the main supply circuit is capable of handling the load of the RF760/660VPN. Refer to the power label

on the equipment for load requirements.

• Maximum ambient temperature for the RF760/660VPN is 50 degrees Celsius (120° F).

• This equipment should only be installed by properly qualified service personnel.

• Only connect like circuits. In other words, connect SELV (Secondary Extra Low Voltage) circuits to SELV circuits

and TN (Telecommunications Network) circuits to TN circuits.

Ship Kit Contents

The RouteFinder VPN is shipped with the following:

• One Multi-Tech Systems, Inc. RouteFinder VPN

• One Power Cord

• One printed Quick Start Guide

• One external Power Supply for the RF600VPN.

Note: The power supply for the RF760VPN and RF660VPN is internal.

• Two Rack Mounting Brackets and four mounting screws.

Note: See the User Guide on the documentation CD for rackmounting directions.

• One RouteFinder VPN documentation CD which contains documentation, license agreements, Adobe Acrobat

Reader, and License keys.

• One RouteFinder VPN Software Recovery CD.

Warning: Do not use the Software Recovery CD for any purpose except for re-installing software onto the RouteFinder VPN

hard drive.

Note: If any of these items are missing, contact Multi-Tech Systems or your dealer or distributor. Inspect the contents for

signs of any shipping damage. If damage is observed, do not power up the RouteFinder VPN; contact Technical Support at Multi-Tech Systems, Inc. for advice.

License Keys

Where to find the License Key Number Label: The VPN License Key number and the URL License Key number are

printed on labels and are placed on the bottom of the RouteFinder chassis, on the hard drive inside the chassis, and on the front cover of the Quick Start Guide. These license numbers will have to be entered into the RouteFinder configuration setup using the RouteFinder built-in software.

6 Multi-Tech Systems, Inc. RF760/660/600VPN Quick Start Guide (82013762L)

Typical Applications

Remote User VPN. The

client-to-LAN VPN application replaces traditional dial-in remote access by allowing a remote user to connect to the corporate LAN through a secure tunnel over the Internet. The advantage is that a remote user can make a local call to an Internet Service Provider, without sacrificing the company’s security, as opposed to a long distance call to the corporate remote access server.

Branch Office VPN. The

LAN-to-LAN VPN application sends network traffic over the branch office Internet connection instead of relying on dedicated leased line connections. This can save thousands of dollars in line costs and reduce overall hardware and management expenses.

Chapter 1 – Introduction

Firewall Security. As

businesses shift from dial-up or leased line connections to always-on broadband Internet connections, the network becomes more vulnerable to Internet hackers.

The RouteFinder VPN provides a full-featured firewall based on Stateful Packet Inspection technology and NAT protocol to provide security from intruders attempting to access the office LAN.

Multi-Tech Systems, Inc. RF760/660/600VPN Quick Start Guide (82013762L) 7

Chapter 2 – Installation

Installation – Planning the Network

Before you begin the installation process, you should plan your network and decide which computer is to have access to which services. This simplifies configuration and saves you a lot of time that you would otherwise need for corrections and adjustments.

RouteFinder VPN Connection between Your Internal Network and the External Network

Establishing an Address Table

Enter your configuration information into the appropriate field of the Address Table below. You can use this table to keep track of your specific RouteFinder VPN and network information (e.g., the IP address used, email lists, etc.) and keep for future reference.

Network Card connected to the internal network (LAN on eth0) ___.___.___.___

Network Card connected to the external network (WAN on eth1) ___.___.___.___

Network Card connected to the DMZ (eth2)

IP Address Net Mask Default Gateway

___.___.___.___

___.___.___.___ ___.___.___.___

___.___.___.___

8 Multi-Tech Systems, Inc. RF760/660/600VPN Quick Start Guide (82013762L)

Chapter 2 – Installation

Cabling Procedure

Cabling your RouteFinder VPN involves making the proper Power, DMZ, WAN and LAN connections as illustrated and described below.

RF760VPN

RF660VPN

RF600VPN

1. Using an RJ-45 Ethernet cable, connect the DMZ RJ-45 jack to the DMZ device or network (Optional – for example,

a Voice over IP gateway).

2. Using an RJ-45 Ethernet cable, connect the WAN RJ-45 jack to the device for the external network.

3. Using an RJ-45 Ethernet cable, connect the LAN RJ-45 jack to the internal network switch or hub.

Note: Use a cross-over Ethernet cable if connecting to a single device.

4. With the RF760 or RF660 RouteFinder VPN Power switch in the off (Ο) position and using the supplied power cord,

plug one end into the RouteFinder VPN connect power plug and the other end into a live power outlet.

Note: The status LED blinks continuously after power-up.

5. Wait for the RouteFinder VPN to beep five times, indicating that it is ready to be configured with a Web browser.

Shutdown Caution

Never switch off the RouteFinder VPN Power until after you have performed the Shutdown process. If the RouteFinder VPN is not properly shut down before switching off Power, the next startup may take a little longer, or in the worst case, data could be lost.

Multi-Tech Systems, Inc. RF760/660/600VPN Quick Start Guide (82013762L) 9

+ 19 hidden pages

Multitech RouteFinder RF600VPN, RouteFinder RF760VPN, RouteFinder RF660VPN Quick Start Manual

Specifications and Main Features

Frequently Asked Questions

User Manual