ZyXEL Communications SBG3500-N000 - Certificate Configuration for VPN

To Next Page

To Previous Page

Chapter 4 Tutorials

SBG3500-N Series User’s Guide

File Sharing via Windows Explore r

4 Once you log in the USB device displays in the mnt folder.

4.12 Certificate Configuration for VPN

You may generate a self-signed Certification Authority (CA) certificate using a third party tool or get

an official CA certificate from any trusted certificate agent. In this tutorial, a self-signed CA

certificate (cacert.pem) was created by using the openssl command in Fedora 10.

1 First, you need to import the CA certificate. Go to the Security > Certificates > Trusted CA

screen and click Import Certificate.

2 Browse the directory in Fedora, or another system, which contains your CA certificate (e.g.,

cacert.pem), then click OK.

Main Page

Contents Overview3
- Table of Contents3
Table of Contents5
User's Guide16
PART I User's Guide16
Chapter 1 Introducing the SBG3500-N Series17
- Overview17
- Applications for the SBG3500-N Series17
- Leds (Lights)21
- Ways to Manage the SBG3500-N Series24
- Good Habits for Managing the SBG3500-N Series24
- The RESET Button24
Chapter 2 The Web Configurator25
- Overview25
  - Accessing the Web Configurator25
- Web Configurator Layout27
- Quick Start32
Chapter 3 Quick Start32
- Overview32
- Quick Start Setup32
- Tutorials35
Chapter 4 Tutorials35
- Overview35
- Setting up an ADSL Pppoe Connection35
- Setting up a Gbe WAN Connection38
- Setting up a 3G WAN Connection40
- Setting up a Secure Wireless Network40
- Setting up Multiple Wireless Groups48
- Configuring Static Route for Routing to Another Network51
- Configuring Qos Queue and Class Setup54
- Access the SBG3500-N Series Using DDNS57
- Configuring the MAC Address Filter58
- Access Your Shared Files from a Computer60
- Certificate Configuration for VPN61
- Examples of Configuring Ipsec VPN Rules64
- PPTP VPN Tutorial69
- L2TP VPN Tutorial81
Technical Reference96
Part II: Technical Reference96
- Status Screens97
Chapter 5 Status Screens97
- Overview97
- The Status Screen97
- Broadband100
Chapter 6 Broadband100
- Overview100
- The Broadband Screen104
  - Add/Edit Internet Connection106
  - Bridge Mode111
- The 3G WAN Screen114
- The Add New 3G Dongle Screen118
  - Add 3G Dongle Information118
- The Advanced Screen119
- The 802.1X Screen120
  - Edit 802.1X Settings121
- The Multi-WAN Screen122
  - Add/Edit Multi-WAN122
  - How to Configure Multi-WAN for Load-Balancing and Fail-Over123
- Technical Reference125
- Ip Address Assignment127
Chapter 7 Wireless130
- Overview130
  - What You Can Do in this Chapter130
  - What You Need to Know131
- The General Screen131
- The more AP Screen138
  - Edit more AP139
- MAC Authentication141
- The WPS Screen142
- The WMM Screen143
- The Others Screen144
- The Channel Status Screen146
- Technical Reference146
- Lan159
Chapter 8 LAN159
- Overview159
- The LAN Setup Screen161
- The Static DHCP Screen165
- The Upnp Screen167
- Installing Upnp in Windows Example167
  - Using Upnp in Windows XP Example169
  - Web Configurator Easy Access171
- The Additional Subnet Screen174
- The 5Th Ethernet Port Screen175
- Technical Reference175
- Routing179
Chapter 9 Routing179
- Overview179
  - What You Can Do in this Chapter179
- The Routing Screen180
  - Add/Edit Static Route180
- The Policy Forwarding Screen181
  - Add/Edit Policy Forwarding182
- The RIP Screen183
- Quality of Service (Qos)185
Chapter 10 Quality of Service (Qos)185
- Overview185
  - What You Can Do in this Chapter185
- What You Need to Know186
- The Quality of Service General Screen187
- The Queue Setup Screen188
  - Adding a Qos Queue190
- The Class Setup Screen190
  - Add/Edit Qos Class191
- The Qos Policer Setup Screen195
  - Add/Edit a Qos Policer196
- The Qos Monitor Screen197
- Technical Reference198
- Token Bucket200
Chapter 11 Network Address Translation (NAT)203
- Overview203
  - What You Can Do in this Chapter203
  - What You Need to Know203
- The Port Forwarding Screen204
  - Add/Edit Port Forwarding206
- The Applications Screen207
  - Add New Application208
- The Port Triggering Screen208
  - Add/Edit Port Triggering Rule210
- The Default Server Screen211
- The ALG Screen212
- The Address Mapping Screen212
  - Add/Edit Address Mapping Rule213
- Technical Reference214
- Dynamic DNS Setup219
Chapter 12 Dynamic DNS Setup219
- Overview219
  - What You Can Do in this Chapter219
  - What You Need to Know220
- The DNS Entry Screen220
  - Add/Edit DNS Entry220
- The Dynamic DNS Screen221
- AP Control222
Chapter 13 AP Control222
- Overview222
  - What You Can Do in this Chapter222
- The Controller Screen222
- The Managed AP List Screen223
- The Load Balancing Screen224
- The Dynamic Channel Selection Screen225
- AP Profile227
Chapter 14 AP Profile227
- Overview227
  - What You Can Do in this Chapter227
  - What You Need to Know227
- Radio Screen228
  - Add/Modify New Profile229
- SSID Screen233
  - Add New Profile/Modify SSID Profile234
- Security Screen235
  - Add/Modify Security Profile236
- MAC Filtering Screen239
  - Add New Entry/Modify MAC Filtering Profile240
- Layer-2 Isolation Overview240
- Layer-2 Isolation Screen241
  - Add New Profile/Modify Layer-2 Isolation242
- Interface Group243
Chapter 15 Interface Group243
- Overview243
- The Interface Group/Vlan Screen243
  - Interface Group Configuration244
  - Interface Grouping Criteria245
- USB Service248
Chapter 16 USB Service248
- Overview248
  - What You Can Do in this Chapter248
  - What You Need to Know248
- The File Sharing Screen249
  - Before You Begin249
- Firewall251
Chapter 17 Firewall251
- Overview251
  - What You Can Do in this Chapter251
  - What You Need to Know252
- The Firewall Screen253
- The Dos Screen253
- The Service Screen254
  - Add/Edit a Service255
- The Access Control Screen257
  - Add/Edit an ACL Rule258
- The Zone Control Screen260
- MAC Filter261
Chapter 18 MAC Filter261
- Overview261
- The MAC Filter Screen262
- User Access Control264
Chapter 19 User Access Control264
- Overview264
- The User Access Control Screen264
  - Add/Edit a User Access Control Rule265
- Scheduler Rules267
Chapter 20 Scheduler Rules267
- Overview267
- The Scheduler Rules Screen267
  - Add/Edit a Schedule267
- Certificates269
Chapter 21 Certificates269
- Overview269
  - What You Can Do in this Chapter269
- What You Need to Know269
- The Local Certificates Screen269
  - Create Certificate Request270
  - Load Signed Certificate272
- The Trusted CA Screen273
  - Import Trusted CA Certificate273
- Ipsec VPN275
Chapter 22 Ipsec VPN275
- Overview275
- What You Can Do in this Chapter275
- What You Need to Know276
- The Setup Screen276
- The Ipsec VPN Monitor Screen285
- The Radius Screen286
- Technical Reference287
- Pptp Vpn294
Chapter 23 PPTP VPN294
- Overview294
- What You Can Do in this Chapter294
- PPTP VPN Setup295
- The PPTP VPN Monitor Screen296
- PPTP VPN Troubleshooting Tips296
- L2Tp Vpn299
Chapter 24 L2TP VPN299
- Overview299
  - What You Can Do in this Chapter299
- L2TP VPN Screen299
- The L2TP VPN Monitor Screen301
- L2TP VPN Troubleshooting Tips301
- Log305
Chapter 25 Log305
- Overview305
  - What You Can Do in this Chapter305
  - What You Need to Know305
- The System Log Screen306
- The Security Log Screen306
- Network Status308
Chapter 26 Network Status308
- Overview308
  - What You Can Do in this Chapter308
- The WAN Status Screen308
- The LAN Status Screen309
- The DHCP Client Screen309
- ARP Table311
Chapter 27 ARP Table311
- Overview311
  - How ARP Works311
- ARP Table Screen311
- Routing Table313
Chapter 28 Routing Table313
- Overview313
- The Routing Table Screen313
- IGMP Status315
Chapter 29 IGMP Status315
- Overview315
- The IGMP Group Status Screen315
- Xdsl Statistics316
Chapter 30 Xdsl Statistics316
- The Xdsl Statistics Screen316
- AP Monitor319
Chapter 31 AP Monitor319
- Overview319
  - What You Can Do in this Chapter319
- AP List Screen319
- Radio List Screen320
- Station List Screen321
- Myzyxel323
Chapter 32 Myzyxel323
- Myzyxel Overview323
- The License Status Screen323
- User Account325
Chapter 33 User Account325
- Overview325
- The User Account Screen325
  - Add/Edit a User Account326
- Remote Management328
Chapter 34 Remote Management328
- Overview328
- The Remote MGMT Screen328
- Client330
Chapter 35 TR-069 Client330
- Overview330
- The TR-069 Client Screen330
- Snmp332
Chapter 36 SNMP332
- The SNMP Agent Screen332
- Time334
Chapter 37 Time334
- Overview334
- The Time Screen334
- E-Mail Notification337
Chapter 38 E-Mail Notification337
- Overview337
- The Email Notification Screen337
  - Email Notification Edit337
- Logs Setting339
Chapter 39 Logs Setting339
- Overview339
- The Log Setting Screen339
  - Example E-Mail Log340
- Firmware Upgrade342
Chapter 40 Firmware Upgrade342
- Overview342
- The Firmware Screen342
- Configuration344
Chapter 41 Configuration344
- Overview344
- The Configuration Screen344
- The Reboot Screen346
- Diagnostic347
Chapter 42 Diagnostic347
- Overview347
  - What You Can Do in this Chapter347
- What You Need to Know347
- Ping & Traceroute & Nslookup348
- OAM Ping Test349
- Troubleshooting352
Chapter 43 Troubleshooting352
- Power, Hardware Connections, and Leds352
- SBG3500-N Series Access and Login353
- Internet Access355
- Wireless Internet Access356
- USB Device Connection357
- Upnp358
Appendix A Setting up Your Computer's IP Address359
- Verifying Settings377
Appendix B IP Addresses and Subnetting379
- Subnet Masks380
Appendix C Pop-Up Windows, Javascript and Java Permissions387
Appendix D Wireless Lans394
Appendix E Ipv6407
Appendix F Services415
Appendix G Legal Information419
- Zyxel Limited Warranty420
- Regulatory Information420
- Safety Warnings422
Appendix H Customer Support424
Index430

ZyXEL Communications SBG3500-N000 - Certificate Configuration for VPN

Table of Contents

Related product manuals