Siemens 5935 User Manual
  1. Manuals
  2. Brands
  3. Siemens Manuals
  4. Gateway
  5. 5935
  6. User manual

Siemens 5935 User Manual

Business gateway
Hide thumbs
Table of Contents

Advertisement

Quick Links

Download this manual
SIEMENS Business Class
5930/5935
Business Gateway
User's Guide
Part No. 107-5930-000

Advertisement

Table of Contents
loading

Related Manuals for Siemens 5935

Summary of Contents for Siemens 5935

  • Page 1 SIEMENS Business Class 5930/5935 Business Gateway User’s Guide Part No. 107-5930-000...
  • Page 2 (5) business days from the date received by Siemens Subscriber Networks. Expedited service is available at additional cost to the end user. E.Upon request from Siemens Subscriber Networks, the end user must prove the date of the original purchase of the product by a dated bill of sale or dated itemized receipt.
  • Page 3 • Siemens Subscriber Networks’s limit of liability under the limited warranty shall be the actual cash value of the product at the time the end user returns the product for repair, determined by the price paid by the end user for the product less a reasonable amount for usage.Siemens Subscriber Networks shall not be liable for any other losses or damages.

  • Page 4: Table Of Contents

    IP Address Translation ........................3 Protocol Conformance Testing ......................3 PPP (RFC 1661) ..........................4 Security ............................4 Front Panel for 5935 ............................ 5 Back Panel for 5935............................. 5 Hardware Specifications for 5935 ........................ 6 Physical Specifications........................6 Operational Environment ........................ 6 Power Requirements........................
  • Page 5 SIEMENS 5930/5935 Business Gateway User’s Guide Security ............................8 Chapter 2 Installation Installation Requirements..........................9 Package Contents........................... 9 PC Requirements..........................9 Network Service Provider Requirements ..................10 Hardware Installation ..........................11 PC Configuration............................12 Windows 98/ME ..........................12 Windows NT 4..........................13 Windows 2000..........................
  • Page 6 SIEMENS 5930/5935 Business Gateway User’s Guide Configure QoS Policy........................43 Reorder QoS Policies........................45 Routing Table Configuration........................46 Dial Backup ..............................47 Internal Modem ..........................48 External Modem ..........................49 Switch Management........................... 50 Switch Mirror Configuration......................51 Switch Age Time ........................... 52 ATM Traffic Shaping...........................

  • Page 7: Chapter 1 Product Specifications

    LAN status - OK Off: LAN status - Not OK Back Panel for 5930 The following table describes the various connections on the back panel of the Siemens 5930 Business Gateway. Connection Function Power Uses a 12V DC/AC power adapter.

  • Page 8: Hardware Specifications For 5930

    Chapter 1 Product Specifications SIEMENS 5930/5935 Business Gateway Hardware Specifications for 5930 User’s Guide Hardware Specifications for 5930 Physical Specifications Operational Environment • • Dimensions: Temperature:40°F to 105°F • – 11.75W x 6D x 2.25H inches 5°C to 40°C – 29.8W x 15.2D x 5.7H cm •...

  • Page 9: Software Specifications For 5930

    Chapter 1 Product Specifications SIEMENS 5930/5935 Business Gateway Software Specifications for 5930 User’s Guide Software Specifications for 5930 Bridging Routing • • Transparent bridging including Spanning Tree TCP/IP with RIP1 (RFC 1058), RIP1 compatible protocol (IEEE 802.1D) and RIP2 (RFC 1389) or static routing on the LAN or WAN •...

  • Page 10: Ppp (Rfc 1661)

    Chapter 1 Product Specifications SIEMENS 5930/5935 Business Gateway Software Specifications for 5930 User’s Guide PPP (RFC 1661) Security • • Data compression of up to 4:1 (STAC™ LZS) Role-based management (RFC 1974) • User authentication (PAP/CHAP) with PPP • Van Jacobsen header compression (RFC 1144) (RFC 1334, RFC 1994) •...

  • Page 11: Front Panel For 5935

    LAN status - OK Off: LAN status - Not OK Back Panel for 5935 The following table describes the various connections on the back panel of the Siemens 5935 Business Gateway. Connection Function Power Uses a 12V DC/AC power adapter.

  • Page 12: Hardware Specifications For 5935

    Chapter 1 Product Specifications SIEMENS 5930/5935 Business Gateway Hardware Specifications for 5935 User’s Guide Hardware Specifications for 5935 Physical Specifications Operational Environment • • Dimensions: Temperature:40°F to 105°F • – 11.75W x 6D x 2.25H inches 5°C to 40°C – 29.8W x 15.2D x 5.7H cm •...

  • Page 13: Software Specifications For 5935

    Chapter 1 Product Specifications SIEMENS 5930/5935 Business Gateway Software Specifications for 5935 User’s Guide Software Specifications for 5935 Bridging Routing • • Transparent bridging including Spanning Tree TCP/IP with RIP1 (RFC 1058), RIP1 compatible protocol (IEEE 802.1D) and RIP2 (RFC 1389) or static routing on the LAN or WAN •...

  • Page 14: Ip Address Translation

    Chapter 1 Product Specifications SIEMENS 5930/5935 Business Gateway Software Specifications for 5935 User’s Guide IP Address Translation Protocol Conformance Testing • • Network renumbering (RFC 1631) RFC 1483 (Bay Networks™, Cabletron™, Cisco™, RedBack™) • Network Address Translation (NAT/PAT) • PPP over ATM (Cisco, Escalate™, RedBack) •...

  • Page 15: Chapter 2 Installation

    Installation Chapter 2 This chapter describes the steps you must take to install and configure the various components in your network to utilize the Siemens Business Gateway. This includes setting up the hardware connections to the Internet router, configuring the PC to use the Internet router for Internet access, and setting up the Internet router configuration.

  • Page 16: Network Service Provider Requirements

    Chapter 2 Installation SIEMENS 5930/5935 Business Gateway Installation Requirements User’s Guide Network Service Provider Requirements Your Network Service Provider will provide you with information to configure your router’s WAN connection. Depending upon the type of service that you ordered, you will need some of the items from the following list.

  • Page 17: Hardware Installation

    Hardware Installation You may position the Siemens broadband router at any convenient location where it will be well ventilated. Do not stack it with other devices or place it on the carpet. You can connect the router to an existing Ethernet port on your computer.

  • Page 18: Pc Configuration

    Chapter 2 Installation SIEMENS 5930/5935 Business Gateway PC Configuration User’s Guide PC Configuration Your PC must be configured to use the TCP/IP protocol suite over the Internet, and to accept Dynamic Host Configuration Protocol address assignments from the router. Although this is the default settings for the PC, it is a good idea to verify that they have not been changed.

  • Page 19: Windows Nt 4

    Chapter 2 Installation SIEMENS 5930/5935 Business Gateway PC Configuration User’s Guide Windows NT 4 1. On your desktop, right click on the Network Neighborhood icon. This displays the Network window. 2. Click the Protocols tab. Select TCP/IP Protocol from the Network Protocols list.

  • Page 20: Windows 2000

    Chapter 2 Installation SIEMENS 5930/5935 Business Gateway PC Configuration User’s Guide Windows 2000 1. Select Start >Settings >Control Panel. This displays the Control Panel window. 2. Double-click the Network and Dial-up Connection icon. This displays the Network and Dialup Connection window.

  • Page 21: Windows Xp

    Chapter 2 Installation SIEMENS 5930/5935 Business Gateway PC Configuration User’s Guide Windows XP 1. Click Start >Control Panel. This displays the Control Panel window. 2. Double-click the Network Connections icon. This displays the Network Connection window. 3. Right-click Local Area Connection, then click Properties. This displays the Local Area Connection Properties window.

  • Page 22: Mac Os 9.X

    Chapter 2 Installation SIEMENS 5930/5935 Business Gateway PC Configuration User’s Guide Mac OS 9.x 1. Click Apple -> Control Panels -> TCP/IP. This displays the TCP/IP Control Panel window. 2. Select Ethernet from the Connect via drop-down menu. 3. Select Using DHCP Server from the Configure drop-down menu.

  • Page 23: Mac Osx

    Chapter 2 Installation SIEMENS 5930/5935 Business Gateway PC Configuration User’s Guide Mac OSX 1. Click Apple -> System Preferences. This displays the System Preferences window. 2. Double-click the Network icon under the Internet & Network section. This displays the Network window.

  • Page 24: Linux

    Chapter 2 Installation SIEMENS 5930/5935 Business Gateway PC Configuration User’s Guide Linux 1. From a terminal window, run linuxconfig. This displays the Config window. 2. Click the Adaptor tab. 3. Enter any information specified by your service provider in the fields under the appropriate Adapter tab.

  • Page 25: Configuring The Router

    User’s Guide Configuring the Router The Siemens Business Class Router family of products provides two user interfaces: a Web Management Interface and a console-based Command Line Interface (CLI). The Web Management Interface uses an HTTP server housed in the router. Using this server, you can connect to and manage the router using your Web browser.

  • Page 26: Router Information Page

    Chapter 2 Installation SIEMENS 5930/5935 Business Gateway Configuring the Router User’s Guide Router Information Page The Router Information Page is the first page you encounter after logging into the router. The Router Information page displays basic router information and configuration settings. On the Router Information page, the following information is presented: •...

  • Page 27: Chapter 3 Easy Setup

    • Point-to-Point Protocol over ATM • Point-to-Point Protocol over Ethernet over PPPoA • Point-to-Point Protocol over Ethernet over RFC1483 • RFC 1483 • RFC 1483 MAC Encapsulated Routing SIEMENS...

  • Page 28: Point-To-Point Protocol Over Atm

    Chapter 3 Easy Setup SIEMENS 5930/5935 Business Gateway Select Protocol User’s Guide Point-to-Point Protocol over ATM If you selected Point-to-Point Protocol over ATM from the Wan Interface page, the Point-to-Point Protocol page is displayed when you click Next. To configure Point-to-Point Protocol: 1.

  • Page 29: Point-To-Point Protocol Over Ethernet Over Pppoa

    Chapter 3 Easy Setup SIEMENS 5930/5935 Business Gateway Select Protocol User’s Guide Point-to-Point Protocol over Ethernet over PPPoA If you selected Point-to-Point Protocol over Ethernet over PPPoA from the Wan Interface page, the Point- to-Point Protocol over Ethernet over PPPoA page is displayed when you click Next.

  • Page 30: Point-To-Point Protocol Over Ethernet Over Rfc1483

    Chapter 3 Easy Setup SIEMENS 5930/5935 Business Gateway Select Protocol User’s Guide Point-to-Point Protocol over Ethernet over RFC1483 If you selected Point-to-Point Protocol over Ethernet over RFC 1483 from the Wan Interface page, the Point-to-Point Protocol over Ethernet over RFC 1483 page is displayed when you click Next.

  • Page 31: Rfc 1483

    Chapter 3 Easy Setup SIEMENS 5930/5935 Business Gateway Select Protocol User’s Guide RFC 1483 If you selected RFC 1483 from the Wan Interface page, the RFC 1483 Networking page is displayed when you click Next. To configure RFC 1483: 1. Select one or more of the following RFC 1483 networking options: •...

  • Page 32: Rfc 1483 Mac Encapsulated Routing (Mer)

    Chapter 3 Easy Setup SIEMENS 5930/5935 Business Gateway Select Protocol User’s Guide RFC 1483 MAC Encapsulated Routing (MER) If you selected RFC 1483 MAC Encapsulated Routing from the Wan Interface page, the RFC 1483 MER Networking page is displayed when you click Next.

  • Page 33: Dynamic Host Configuration Protocol

    Chapter 3 Easy Setup SIEMENS 5930/5935 Business Gateway Select Protocol User’s Guide Dynamic Host Configuration Protocol Dynamic Host Configuration Protocol (DHCP) provides a dynamic, “upon request,” IP address to computers and other networked devices. The router can act as a DHCP server for devices on your local network.

  • Page 34: Local Area Network Configuration

    Chapter 3 Easy Setup SIEMENS 5930/5935 Business Gateway Select Protocol User’s Guide Local Area Network Configuration Local Area Network configuration information is configured on the LAN IP Configuration page. To configure the Local Area Network: 1. In IP Address, enter the network address of the router. This address must be globally unique unless NAT has been enabled.

  • Page 35: Chapter 4 User Setup

    Delete a user account Delete a User Account Specify database for identifying users when User Lookup logging into the router. Configure Secure Mode Secure Mode Configuration Configure the Radius Server Configure the Radius Server Configure the Tacplus Server Configure the Tacplus Server SIEMENS...

  • Page 36: Adding/Modifying A User Account

    Chapter 4 User Setup SIEMENS 5930/5935 Business Gateway User Management User’s Guide Adding/Modifying A User Account User accounts are used to control access to the router and the Internet. To add a user account: 1. Click New User on the User Management page. This displays the Add/Modify User page.

  • Page 37: Deleting A User Account

    Chapter 4 User Setup SIEMENS 5930/5935 Business Gateway User Management User’s Guide Deleting A User Account To delete a user account: 1. Select the name of the account you want to delete in the Select User list on the User Management page, then click Delete User.

  • Page 38: User Lookup

    Chapter 4 User Setup SIEMENS 5930/5935 Business Gateway User Management User’s Guide User Lookup You can specify a primary and secondary database to use to identify users when logging into the router. To configure the primary and secondary databases: 1. Click User Lookup Config on the left navigation pane of the User Management page. This displays the User Lookup Configuration page.

  • Page 39: Secure Mode Configuration

    Chapter 4 User Setup SIEMENS 5930/5935 Business Gateway User Management User’s Guide Secure Mode Configuration You can enable secure mode to control whether an interface is trusted or untrusted. To configure Secure Mode: 1. Click Secure Mode Configuration on the left navigation pane of the User Management page. This displays the Secure Mode Configuration page.

  • Page 40: Configure The Radius Server

    Chapter 4 User Setup SIEMENS 5930/5935 Business Gateway User Management User’s Guide Configure the Radius Server Remote Authentication Dial In User Service (RADIUS) is client-server based access control and authentication feature. The RADIUS client resides locally on the router and works in conjunction with a variety of RADIUS Server applications.

  • Page 41: Configure The Tacplus Server

    Chapter 4 User Setup SIEMENS 5930/5935 Business Gateway User Management User’s Guide Configure the TacPlus Server Tacplus allows access control and user authentication to be managed from a remote server.To configure the Tacplus Server: 1. Click Configure Tacplus Server on the left navigation pane of the User Management page. This displays the Tacplus Server Configuration page.

  • Page 42: Management Classes

    Chapter 4 User Setup SIEMENS 5930/5935 Business Gateway User Management User’s Guide Management Classes All system operations, are partitioned into functional groups called management classes. Management classes group functions into the following categories. Class Functional Areas Voice Voice operations and shared network functions.

  • Page 43: Change Password

    Chapter 4 User Setup SIEMENS 5930/5935 Business Gateway Change Password User’s Guide Change Password User passwords are changed from the Change Password page. To change a user password: 1. Click Change Password from the left navigation pane on the Router Information page. This displays the Change Password page.

  • Page 44: Access Control

    Chapter 4 User Setup SIEMENS 5930/5935 Business Gateway Access Control User’s Guide Access Control Restrict administrative control of the router to a specific set of IP addresses on the Access Control page. Each remote access method (Telnet, Web, and SNMP) can be configured separately.

  • Page 45: Chapter 5 Advanced Setup

    Define the level of service for each configured interface (Virtual Path (VP) and Virtual Circuit (VC) connections). Command Line Interface Enter any CLI command over the web interface. For complete command line syntax, refer to the Command Line Interface Guide. SIEMENS...

  • Page 46: Router Clock

    Chapter 5 Advanced Setup SIEMENS 5930/5935 Business Gateway Router Clock User’s Guide Router Clock Use the Router Clock option to set the date and time on the router. To set the current date and time on the router: 1. Click Router Clock on the left navigation pane of the Router Information page. This displays the Current Date and Time page.

  • Page 47: Dhcp

    Chapter 5 Advanced Setup SIEMENS 5930/5935 Business Gateway DHCP User’s Guide DHCP DHCP (Dynamic Host Configuration Protocol), is a TCP/IP service protocol that provides dynamic leasing of IP addresses and other configuration information to client hosts on the network. The router can act as a DHCP server, automatically providing a suitable IP address and related information to each computer when the computer boots up.

  • Page 48: Qos

    Chapter 5 Advanced Setup SIEMENS 5930/5935 Business Gateway User’s Guide Quality of Service (QoS) actively manages network resources to sustain service levels for priority applications. To configure QoS: 1. Click QoS in the left navigation pane of the Router Information page. This displays the QoS Configuration page.

  • Page 49: Configure Qos Policy

    Chapter 5 Advanced Setup SIEMENS 5930/5935 Business Gateway User’s Guide Configure QoS Policy QoS policies control how QoS manages network resources. To configure a QoS policy: 1. Click QoS Policy Page from the left navigation pane of the QoS Configuration page. This displays the QoS Policy Setting page.
  • Page 50 Chapter 5 Advanced Setup SIEMENS 5930/5935 Business Gateway User’s Guide 5. In Source IP, select one of the following: • From/To: Enables source address checking. Specify the source IP address or range of IP addresses that must match for this policy to be used.

  • Page 51: Reorder Qos Policies

    Chapter 5 Advanced Setup SIEMENS 5930/5935 Business Gateway User’s Guide Reorder QoS Policies To move a QoS policy: 1. On the QoS Policy Setting page, select the policy you want to move in the IP Policy List drop-down menu and click Move. This expands the QoS Policy Setting page.

  • Page 52: Routing Table Configuration

    Chapter 5 Advanced Setup SIEMENS 5930/5935 Business Gateway Routing Table Configuration User’s Guide Routing Table Configuration Every host has a default routing table that it uses to determine which physical interface address to use for outgoing IP traffic. The router supports virtual routing, which allows you to define multiple routing tables for a single host.

  • Page 53: Dial Backup

    Chapter 5 Advanced Setup SIEMENS 5930/5935 Business Gateway Dial Backup User’s Guide Dial Backup Use the Dial Backup option to configure a backup connection to the Internet through an internal V.90 (model 5835 only) or an external asynchronous modem connected to the console port. This backup connection can be activated in the event of WAN service interruption.

  • Page 54: Internal Modem

    Chapter 5 Advanced Setup SIEMENS 5930/5935 Business Gateway Dial Backup User’s Guide Internal Modem The following Dial Backup Configuration page is displayed during Dial Backup configuration if you selected Internal Modem for the connection. To configure the internal modem for dial backup: 1.

  • Page 55: External Modem

    Chapter 5 Advanced Setup SIEMENS 5930/5935 Business Gateway Dial Backup User’s Guide External Modem The following Dial Backup Configuration page is displayed during Dial Backup configuration if you selected External Modem for the connection. To configure the external modem for dial backup: 1.

  • Page 56: Switch Management

    Chapter 5 Advanced Setup SIEMENS 5930/5935 Business Gateway Switch Management User’s Guide Switch Management Each router provides four or eight Ethernet 10/100 switching ports for connection to the local area network (LAN). These RJ-45 ports are located on the rear panel and have individual Link Status LEDs to provide port status and link activity.

  • Page 57: Switch Mirror Configuration

    Chapter 5 Advanced Setup SIEMENS 5930/5935 Business Gateway Switch Management User’s Guide Switch Mirror Configuration The router supports traffic mirroring on the Ethernet switch. This means that Ethernet traffic from any of the Ethernet ports is mirrored to a target port for analysis. This function facilitates the unobtrusive monitoring of source port activity.

  • Page 58: Switch Age Time

    Chapter 5 Advanced Setup SIEMENS 5930/5935 Business Gateway Switch Management User’s Guide Switch Age Time The Switch Age Time specifies the aging time of the switch. When the age time expires, the port MAC address entry is removed from the table containing this information.

  • Page 59: Atm Traffic Shaping

    Chapter 5 Advanced Setup SIEMENS 5930/5935 Business Gateway ATM Traffic Shaping User’s Guide ATM Traffic Shaping An ATM network provides Virtual Path (VP) or Virtual Circuit (VC) connections with distinct levels of service. ATM Traffic Shaping defines the level of service to use for each configured interface.
  • Page 60 Chapter 5 Advanced Setup SIEMENS 5930/5935 Business Gateway ATM Traffic Shaping User’s Guide 4. Select one of the following Service Types. • Constant Bit Rate: Requests a static amount of bandwidth that is continuously available for the lifetime of the connection.This bandwidth amount is characterized by a Peak Cell Rate value.

  • Page 61: Command Line Interface

    Chapter 5 Advanced Setup SIEMENS 5930/5935 Business Gateway Command Line Interface User’s Guide Command Line Interface Use the Command Line Interface option to use the web interface to enter CLI commands. (Refer to the Command Line Interface Guide for available commands.) To execute a CLI command from the web interface: 1.

  • Page 62: Chapter 6 Security Setup

    An IP filtering firewall that examines the packet’s header information and matches it against a set of defined rules. IKE/IPSec Configuration Internet Key Exchange/Internet Protocol Security provides authentication and encryption of IP traffic for authenticity, integrity, and privacy. VPN Log On Start an IPSec session. SIEMENS...

  • Page 63: Nat

    Chapter 6 Security Setup SIEMENS 5930/5935 Business Gateway User’s Guide Network Address Translation (NAT) provides a level of security by hiding the private IP addresses of your LAN behind the single public IP address of your router. All connections pass through the router and are translated by NAT.

  • Page 64: Snmp

    Chapter 6 Security Setup SIEMENS 5930/5935 Business Gateway SNMP User’s Guide SNMP Simple Network Management Protocol (SNMP) exchanges messages between a management client and a management agent. Messages contain requests to get and set variables that exist in network nodes, thus allowing a management client to obtain statistics, set configuration parameters, and monitor events.

  • Page 65: Snmp Ip Filter

    Chapter 6 Security Setup SIEMENS 5930/5935 Business Gateway SNMP User’s Guide SNMP IP Filter Activating an IP Filter range will limit SNMP requests to only those that originate from the designated addresses or LAN. To activate IP filtering: 1. Click SNMP IP Filter from the SNMP Configuration page. This displays the SNMP IP Filter Configuration page.

  • Page 66: Secure Shell

    Chapter 6 Security Setup SIEMENS 5930/5935 Business Gateway Secure Shell User’s Guide Secure Shell Secure Shell (SSH) secures network services over an insecure network such as the public Internet. The objective of SSH is to make a secure functional equivalent for telnet. Telnet connections and commands are vulnerable to a variety of different kinds of attacks, allowing unauthorized system access, and even allowing interception and logging of traffic to and from the system including passwords.

  • Page 67: Configure Ssh

    Chapter 6 Security Setup SIEMENS 5930/5935 Business Gateway Secure Shell User’s Guide Configure SSH To configure Secure Shell settings: 1. Click Configure SSH from the Secure Shell (SSH) Configuration List page. This displays the Configure Secure Shell (SSH) page. 2. For Status, select Enable or Disable to enable or disable the SSH feature. Before enabling SSH, a...

  • Page 68: Load Keys

    Chapter 6 Security Setup SIEMENS 5930/5935 Business Gateway Secure Shell User’s Guide Load Keys Diffie-Hellman is the key exchange system used for authentication in the establishment and maintenance of SSH connections. The key exchange requires a Public Key and a Private Key. This key pair can either be loaded from a source file or generated by the router.

  • Page 69: Key Generator

    Chapter 6 Security Setup SIEMENS 5930/5935 Business Gateway Secure Shell User’s Guide Key Generator Diffie-Hellman is the key exchange system used for authentication in the establishment and maintenance of SSH connections. The Key exchange requires a Public key and a Private key. This key pair can either be loaded from a source file or generated by the router.

  • Page 70: Firewall Scripts

    All network security efforts, including firewall configurations, should be performed by an experienced and qualified network security technician who is familiar with the unique architecture and requirements of their network. Siemens Subscriber Networks cannot be liable for security violations due to inadequate or incorrect firewall configurations.

  • Page 71: Stateful Firewall

    Chapter 6 Security Setup SIEMENS 5930/5935 Business Gateway Stateful Firewall User’s Guide Stateful Firewall Stateful Firewall varies from the IP Filtering Firewall in that it gathers and maintains state information about each session. IP Filtering Firewall examines the packet’s header information and matches it against a set of defined rules.

  • Page 72: Configure Stateful Firewall

    Chapter 6 Security Setup SIEMENS 5930/5935 Business Gateway Stateful Firewall User’s Guide Configure Stateful Firewall To configure the Stateful Firewall: 1. Click Stateful Firewall from the left navigation pane of the Router Information page. This displays the Stateful Firewall Configuration page.

  • Page 73: View Dropped Packets

    Chapter 6 Security Setup SIEMENS 5930/5935 Business Gateway Stateful Firewall User’s Guide View Dropped Packets To view the most recent dropped packets: 1. Click Dropped Packets from the left navigation pane of the Stateful Firewall Configuration page. This displays the Firewall Dropped Packet List page.

  • Page 74: Configure Firewall Rules

    Chapter 6 Security Setup SIEMENS 5930/5935 Business Gateway Stateful Firewall User’s Guide Configure Firewall Rules To configure firewall rules: 1. Click Firewall Rules from the left navigation pane of the Stateful Firewall Configuration page. This displays the Firewall Rule Configuration page.
  • Page 75 Chapter 6 Security Setup SIEMENS 5930/5935 Business Gateway Stateful Firewall User’s Guide 5. For Target, select one of the following to specify the characteristics a packet must have in order to match the firewall rule: • Protocol/Port Specifies the protocol or port that applies to the rule. This can be one of the following: tcp to specify TCP protocol for this rule.

  • Page 76: Delete Firewall Rules

    Chapter 6 Security Setup SIEMENS 5930/5935 Business Gateway Stateful Firewall User’s Guide Delete Firewall Rules To delete firewall rules: 1. Click Firewall Rules from the left navigation pane of the Stateful Firewall Configuration page. This displays the Firewall Rule Configuration page.

  • Page 77: Ike/Ipsec Configuration

    Chapter 6 Security Setup SIEMENS 5930/5935 Business Gateway IKE/IPSec Configuration User’s Guide IKE/IPSec Configuration IKE/IPSec (Internet Key Exchange/Internet Protocol Security) provides authentication and encryption of IP traffic for the authenticity, integrity and privacy of your communications. IPSec sessions are established through Security Associations (SAs) that enable secure devices to negotiate a level of security attributes needed for a Virtual Private Network (VPN).

  • Page 78: Easy Ike/Ipsec Setup

    Chapter 6 Security Setup SIEMENS 5930/5935 Business Gateway IKE/IPSec Configuration User’s Guide Easy IKE/IPSec Setup Internet Key Exchange (IKE) is a means of dynamically creating IP Security (IPSec) connections. IPSec uses encryption and authentication to virtual private networks over an insecure network. The Easy IKE/IPSec Setup form is used to create a default IKE configuration.

  • Page 79: Advanced Ike/Ipsec Setup

    Chapter 6 Security Setup SIEMENS 5930/5935 Business Gateway IKE/IPSec Configuration User’s Guide Advanced IKE/IPSec Setup The Advanced IKE/IPSec Setup page presents information about current IKE and IPSec peers, policies and proposals. To perform Advanced IKE/IPSec setup, click Advanced IKE/IPSec Setup from the left navigation pane of the IKE/IPSec Information page.
  • Page 80 Chapter 6 Security Setup SIEMENS 5930/5935 Business Gateway IKE/IPSec Configuration User’s Guide IKE Peers Definition IKE peers are those devices known to your internal modem as capable of participating in IKE connections. To define a new IKE Peer: 1. Click Create next to IKE Peers from the Advanced IKE/IPSec Setup page. This displays the IKE Peer Definition page.
  • Page 81 Chapter 6 Security Setup SIEMENS 5930/5935 Business Gateway IKE/IPSec Configuration User’s Guide IKE Proposals Definition IKE I proposals specify how packets will be encrypted/authenticated for Phase I. To define a new IKE proposal: 1. Click Create next to IKE Proposals from the Advanced IKE/IPSec Setup page. This displays the IKE Proposal Definition page.
  • Page 82 Chapter 6 Security Setup SIEMENS 5930/5935 Business Gateway IKE/IPSec Configuration User’s Guide IKE IPSec Proposals Definition IKE IPSec Proposals specify how packets will be encrypted/authenticated for the final SA. To define a new IKE IPSec proposal: 1. Click Create next to IKE IPSec Proposals from the Advanced IKE/IPSec Setup page. This displays the IKE IPSec Proposal Definition page.
  • Page 83 Chapter 6 Security Setup SIEMENS 5930/5935 Business Gateway IKE/IPSec Configuration User’s Guide 5. From the ESP Encryption Type drop-down menu, select one of the following to specify the algorithm to use to encrypt ESP IPSec packets: • DES: Encrypts using a 56-bit key.
  • Page 84 Chapter 6 Security Setup SIEMENS 5930/5935 Business Gateway IKE/IPSec Configuration User’s Guide IKE IPSec Policies Definition IPSec policies are criteria for packets that IPSec will recognize, and actions that IPSec will take upon recognition. To define a new IKE IPSec policy: 1.
  • Page 85 Chapter 6 Security Setup SIEMENS 5930/5935 Business Gateway IKE/IPSec Configuration User’s Guide 9. In Destination IP Address, enter the IP address of the remote private network to which your router will connect using this policy. 10. In Destination Subnet Mask, enter the subnet mask of the remote private network to which your router will connect using this policy.

  • Page 86: Vpn Log On

    Chapter 6 Security Setup SIEMENS 5930/5935 Business Gateway VPN Log On User’s Guide VPN Log On VPN Log On starts an IPSec session. IPSec sessions are initiated through Security Associations (SAs), which allow peers to negotiate a common set of security attributes that assures source authenticity, data integrity and confidentiality of IP packets, providing the level of security required by Virtual Private Networks (VPNs).

  • Page 87: Chapter 7 Monitoring Router

    To view system summary information, click System Summary on the left navigation pane of the Router Information page. This displays the System Summary page. From the System Summary page, you can view information for the following: • Ethernet interface • Remote connections • IP Routing • System SIEMENS...

  • Page 88: Ethernet Interface Information

    Chapter 7 Monitoring Router SIEMENS 5930/5935 Business Gateway System Summary User’s Guide Ethernet Interface Information Click Ethernet Info on the left navigation pane of the System Summary page to display information about the Ethernet interface. Remote Connection Information Click Remote Info on the left navigation pane of the System Summary page to display information about remote connections for all entries in the Remote Router database.

  • Page 89: Ip Routing Information

    Chapter 7 Monitoring Router SIEMENS 5930/5935 Business Gateway System Summary User’s Guide IP Routing Information Click IP Routing Info on the left navigation pane of the System Summary page to display information about the active interfaces in the IP routing table.

  • Page 90: Diagnostics

    Chapter 7 Monitoring Router SIEMENS 5930/5935 Business Gateway Diagnostics User’s Guide Diagnostics The Diagnostic feature provides information about various components of your system that might help in diagnosing a problem. To run diagnostics, click Diagnostics on the left navigation pane of the Router Information page.

  • Page 91: Interface Information

    Chapter 7 Monitoring Router SIEMENS 5930/5935 Business Gateway Diagnostics User’s Guide Interface Information Select Interface information from the drop down menu and click Execute to display interface information. ATM Statistics Select ATM Statistics from the drop down menu and click Execute to display ATM statistics.

  • Page 92: Routing Table Information

    Chapter 7 Monitoring Router SIEMENS 5930/5935 Business Gateway Diagnostics User’s Guide Routing Table Information Select Routing Table information from the drop down menu and click Execute to display information about the configured routing tables. Files Information Select Files information from the drop down menu and click Execute to display files store on the router.

  • Page 93: Memory Usage

    Chapter 7 Monitoring Router SIEMENS 5930/5935 Business Gateway Diagnostics User’s Guide Memory Usage Select Memory usage from the drop down menu and click Execute to display memory usage information. List All Configuration Data Select List all configuration data from the drop down menu and click Execute to display configuration information.

  • Page 94: Tcp/Ip Statistics

    Chapter 7 Monitoring Router SIEMENS 5930/5935 Business Gateway Diagnostics User’s Guide TCP/IP Statistics Select TCP/IP statistics from the drop down menu and click Execute to display TCP/IP information. SIEMENS...

This manual is also suitable for:

5930

Table of Contents