Instruction/ maintenance manual of the product XC-DPG603 XiNCOM
Go to page of 56
CUTTING EDGE INNOV A TIONS. Twin W AN DNS IP VPN Gateway.
→ T able of C ont ents Introduction 4 Features 5 Physical Details 7 Basic Setup 9 Configuring your LAN 10 Connecting Broadband Modems 12 Configuring for Interent Access 13 Configuring your LAN PC.
T able of C ont ents QoS Configuration 33 VPN Configuration 34 IPSec Global Setting 35 Policy Setup 36 DNS Configuration 38 Domain Name Server Configuration 40 Map Host URL 42 Management Assistant.
→ Chapter 1 - Intr oduc tion The XiNCOM XC-DPG603 is a revolutionary DNS to IP VPN Gateway that provides advanced networking services most commonly found in enterprise class infrastructures at a fraction of the cost.
F e a t u r e s Built-in VPN Endpoint Full VPN Endpoint with support for up to 50 VPN tunnels using the IPsec encryption protocol. Authoritative DNS to IP Gateway The XC-DPG603 is an authoritative DNS to IP gateway that resolves a domain name to its respective IP addresses.
Other Features: DHCP Server Support Dynamic Host Configuration Protocol provides a dynamic IP address to PCs and other devices upon request. The XC-DPG603 can act as a DHCP Server for devices on your local LAN. Multi Segment LAN Support LANs containing one or more segments are supported via the XC-DPG603’s built-in static routing table.
Twin WAN DNS IP VPN Gateway XC-DPG603 F ront P anel: Operation of the Front Panel LEDs is as follows: System: Power OFF - No Power . ON - Normal Operation Status OFF - Normal Operation ON - Firmware not loaded or Hardware Error Blinking - Data in/out W AN: LINK/ACT ON - Physical connection to the Broadband modem on W AN port 1/2 established.
Ph ysical Details LAN Ports W AN1 W AN2 Reset DC 5V F ront P anel Sta tus and Error c onditions LED Action Condition W AN1 LINK/ACT & 10M/100M LEDs flash alternatively . Firmware Download in progress. W AN1 LINK/ACT & 10M/100M LEDs flash concurrently .
Chapter 2 - Basic Setup Overview Basic setup of your XC-DPG603 wil involve the following steps: 1. Connect the XC-DPG603 to one (1) PC and configure it to your existing LAN. 2. Connecting one or two Broadband Modems to your XC-DPG603. 3. Configuring the XC-DPG603 for Interent Access.
C onfiguring the X C-DPG603 f or your LAN a 1. 2. 3. 4. 5. 6. 7. 8. 9. Procedur e Use a standard LAN cable to connect your PC to any LAN port on the XC-DPG603. Connect the power adapter and power up the XC-DPG603. Only use the power adapter provided with the product; using a different one may cause hardware damage.
Ensure these settings are suitable for your LAN: • The default settings are suitable for many situations. • See the following table for details of each setting. F igure 3. LAN & DHCP C onfiguring the X C-DPG603 f or your LAN 11 This is the IP address for the XC-DPG603 when seen from the local LAN.
LAN Ports W AN1 W AN2 Reset DC 5V C onnec ting two br oadband modems a 1. 2. 3. 4. 5. Procedur e Ensure the XC-DPG603 and the DSL/Cable modem are powered OFF . Leave the modem or modems connected to their data line. Connect the Broadband modem(s) to the XC-DPG603.
Select Primary Setup from the menu. Configure W AN 1 and/or W AN 2 as required. For any of the following situations, refer to Chapter 3: Advanced Port Setup for any further configuration which may be required such as: • Using both ports • Multiple IP addresses on either port • Multiple PPPoE sessions • PPTP connection method 1.
C onfigur e PCs on y our LAN Ov er view For each PC, the following may need to be configured: TCP/IP network settings Internet Access configuration T CP/IP Settings When using Windows 95/98/ME/2000/XP and the XC-DPG603’ s TCP/IP default settings, no changes need to be made.
For Apple Clients Open the TCP/IP Control Panel. Select Ethernet from the Connect via pop-up menu. Select Using DHCP Server from the Configure pop-up menu.
→ Chapter 3 - A dvanced P or t Overview Port Options contains some options which can be set on either or both W AN ports. For most situations, the default values are satisfactory . Load Balance screen is only functional if you are using both W AN ports.
P or t Options F igure 6. Port Options Connection V alidation PPPoE / PPtP Connection Options T ransparent Bridge Mode Health Check Use this field to select the type of connection validation to perform. When set to ICMP , the XC-DPG603 sends out ICMP echo requests.
L oad Balance F igure 7. Load Balance Console Configuring Load Balancing The T win W AN line of products uses a session based Load Balancing algorithm by allowing you to manage sessions using several.
A dvanc ed PPP oE F igure 8. Advanced PPP oE Settings - Advanced PPP oE W AN Port PPPoE Session Select the desired Port and Session, then click the “Select” button. The data for the selected Port/Session will then be displayed in the W AN IP Account section.
A dvanc ed PPTP F igure 9. Advanced PPTP Settings - Advanced PPTP W AN Port Select the desired Port and click the “Select” button. The data for the selected Port will then be displayed in the W AN IP Account section. W AN IP Account • User Name – The PPTP user name (login name) assigned by your ISP .
→ 21 Chapter 4 - A dvanced Setup Overview The following advanced features are provided. Host IP Setup Virtual Server Custom Virtual Server Special Applications Dynamic DNS Multi DMZ Advanced Features UPnP This chapter contains details of the configuration and use of each of these features.
Host IP Host IP This feature is used in the following situations: When you have Multi-Session PPPoE and wish to bind each session to a particular PC on your LAN. When you wish to use the Access Filter feature. This requires that each PC be identified by using the Host IP Setup screen.
V ir tual S er vers F igure 10. Virtual Ser vers Vir tual Ser v er s This feature allows you to make Servers on your LAN accessible to Internet users. Normally , Internet users would not be able to access a server on your LAN because: Y our Server ’s IP address is only valid on your LAN, not on the Internet.
C ustom Vir tual Ser v ers Settings - Custom Vir tual Ser vers Select Custom Server Name Server List If creating a new entry , ignore this list. T o edit an existing entry , select it, and then click the “Select” button. The screen will update with data for the selected entry .
Special Applications Settings - Special Applications Select Special Application Name Select Name Item This lists any special applications which are currently defined. • Ignore this list if adding a new Special Application. Enter your data in the Special Application Configuration section, and click the “Add” button.
D ynamic DNS Dynamic DNS Dynamic DNS is very useful when combined with the Virtual Server feature. It allows Internet users to connect to your V irtual Servers using a URL, rather than an IP Address. This also solves the problem of having a dynamic IP address.
Multi DMZ & UP nP Dynamic DNS This feature allows each W AN port IP address to be associated with one (1) computer on your LAN. All outgoing traffic from that PC will be associated with that W AN port IP address. Any traffic sent to that IP address will be forwarded to the specified PC.
A dvanc ed F eatur es Advanced F eatures NA T – NA T (Network Address T ranslation) is the technology which allows a number of LAN PCs to share one (1) Internet IP address. Remote Access Configuration – This feature allows you to manage the XC-DPG603 via the Internet.
A dvanc ed F eatur es (continued) Using Remote W eb-based Setup T o connect to the XC-DPG603 from a remote PC via the Internet: 1. Ensure that both your PC and the XC-DPG603 are connected to the Internet. 2. Start your Web Browser . 3. In the Address bar enter: HTTP:// (Internet IP Address of the XC-DPG603) The Port number is also required.
→ Chapter 5 - Securit y Management Overview Block URL - This feature blocks specific web sites by IP address, URL, or keywords. Access Filter - Block all Internet access, well-known ports, or block user define ports by groups.
Block URL Block URL This feature allows you to block access to undesirable Web sites. Y ou can block by URL, IP address, or Keyword. Y ou can also have different blocking settings for different groups of PCs. Every URL is searched to see if it matches or contains any of the URL or keywords entered here.
Session Limit & F ir ewall Ex ception Session Limit This new feature allows to drop the new sessions from both W AN and LAN side. If the new sessions number are exceed the maximum sessions in a sampling time.
→ Chapter 6 - QoS C onfiguration Overview The XC-DPG603 provides QoS, which supports the high quality of network service. Classifying outgoing packets based on some policies defined by users provides real-time applications to get better response or performance.
Corporate LAN Satellite LAN I n t e r n e t VPN Sessions LAN Connectio n XC-DPG603 XC-DPG603 ISP 3 ISP 4 ISP 1 ISP 2 Chapter 7 - VPN C onfiguration Solid security, load balancing, and redundancy when connecting two concurrent VPN tunnels.
IPSec Global S ettings IPSec Global Setting IP Global Setting Enable Enabling either W AN 1, W AN 2, or both will start the VPN global setting. ISAkmp Port Internet Security Association and Key Protocol Management (ISAkmp) is designed to negotiate, establish, modify , and delete security associations and their attributes.
P olic y Setup VPN P olicy S etup IPSec T raffic Binding VPN T unnel List It shows the tunnels that you have entered. The router can setup up to 50 tunnels T unnel Name This distinguishes different “tunnels” by name. T unnel The tunnel can only be connected when the Enable check box is selected.
P olic y Setup VPN P olicy S etup (con tinued) Key Management Key - Key T ype: There are two key types (manual key and auto key) available for the key exchange management. Manual Key: If manual key is selected, no key negotiation is needed. Encryption Key - This field specifies a key to encrypt and decrypt IP traffic.
→ Chapter 8 - DNS C onfi guration Overview A domain name is a unique name that identifi es a server on the Internet. A domain name typically consists of two or more parts usually separated by dots. In the example of, www .xincom.com , the given root name of xincom denotes the second level domain.
DNS Request Information Request WAN Port Monitoring Module WAN 1 WAN 2 Authoritative Domain Name Server Module Load Balanc ing Algorithm 1 6 7 3 8 2 5 4 9 Web or FTP Server 10 X C-DPG602 & 603 as an Authoritative DNS: How it w orks Note: This example uses W AN 1 as the initial recipient for the request of a domain name.
Domain Name Configur ation Configuring your Domain Name ser vices Register your Domain Name with an Internet Name Registrar . Log into your Domain Name management console and locate the domain name settings for NS1 and NS2 (some Registrar services use up to NS3 and NS4).
NS R ecor d Primary/Secondary Name Server This holds the settings for the domain. This setting is usually obtained locally rather than a remote source. Public W AN (1 & 2) IP Address This sets the public IP address for the domain name on the specified W AN Port.
Map Host URL Select Map Host URL from the main menu. Enter all the information for your domains. Submit the changes. A R ecor d Host URL List Contains a list of domains that are already configured. DNS Server List List of DNS servers. Click select to view a different Host URL list.
→ Chapter 9 - Management A ssistant SNMP - Simple Network Management Protocol This section is to compliment any SNMP (Simple Network Management Protocol) software installed on your PC. If you have SNMP software, you can use a standard MIB II file with the XC-DPG603.
Management Assistant Email Aler t (continued) Email (SMTP) Server Address This field sets the email sever ’ s address for the warning email will be sent to. (Email Alert must be enabled) For example: mail.domain.com Email Recipient Address This field sets the email address for the warning email will be sent to.
Management Assistant Admin Pass word Scr een The password screen allows you to assign a password to the XC-DPG603. Enter the desired password. Re-enter the password in the V erify Password field and then save it. When you connect to the XC-DPG603 with your Browser , you will be prompted for the password when you connect, as shown below .
Management Assistant Example of how to configure to save file. Uploading the F irmware Using the TFTP utility you are able to update the firmware on the XC-DPG603, this is useful when you also need to recover the Gateway from a crash. T o upload the firmware to the Gateway: 1.
→ Chapter 10 - Oper ation & Status Operation & Status Overview Once both the XC-DPG603 and the PCs are configured, operation is automatic. However , there are some situations where addition.
Opera tion & Status R estore Factor y Defaults When the “Restore Factory Defaults” button on the Status screen above is clicked, the following screen is displayed. If the “Restore Default V alue” button on this screen is clicked: • ALL of your settings will be erased.
→ 49 Chapter 11 - A dvanced LAN C onfiguration Overview These settings are provided to deal with non-standard situations or to provide additional options for advanced users. Existing DHCP Server If your LAN already has a DHCP Server , and you wish to continue using it, the following configuration is required.
50 A dvanc ed LAN C onfigura tion Static R outing This section is only relevant if your LAN has other Routers or Gateways. If you do not have other Routers or Gateways on your LAN, skip the Static Routing page. If your LAN has other Gateways and Routers, you must configure the Static Routing screen as described below .
51 A dvanc ed LAN C onfigura tion For the XC-DPG603 Gateway’ s Routing T able Entry 1 (Segment 1) Destination IP Address 192.168.2.0 Network Mask 255.255.255.0 Gateway IP Address 192.168.1.100 Interface LAN Metric 2 Entry 2 (Segment 2) Destination IP Address 192.
→ 52 Appendices Appendix A Specifica tions Model XC-DPG603 Dimensions 245mm (W) x 137mm (D) x 30mm (H) Operating T emperature 0° C to 40° C Storage T emperature -10° C to 70° C Network Protocol.
53 Appendices Appendix B W indows T CP/IP Setup T CP/IP Settings If using the default XC-DPG603 settings, and the default Windows 95/98/ ME/2000 TCP/IP settings, no changes need to be made. By default, the XC-DPG603 will act as a DHCP Server and automatically provide a suitable IP Address (and related information) to each PC when the PC boots.
54 Appendices On the DNS Configuration tab, ensure Enable DNS is selected. If the DNS Server Search Order list is empty , enter the DNS address provided by your ISP in the fields beside the Add button, then click Add . Figure D. DNS T ab (Windows 95/98) Checking T CP/IP Settings - W indows 2000: 1.
Appendices Appendices 55 Checking T CP/IP Settings - W indows XP: 1. Select Control Panel - Network Connection. 2. Right click the Local Area Connection and choose Properties . Y ou should see a screen like the following: Figure G. Network Configuration (Windows XP) 3.
Appendices Appendices 56 Appendix C T r oubleshooting Ov er view This chapter covers some common problems that may be encountered while using the XC-DPG603 and some possible solutions to them. If you follow the suggested steps and the XC-DPG603 still does not function properly , contact XiNCOM for further advice.
An important point after buying a device XiNCOM XC-DPG603 (or even before the purchase) is to read its user manual. We should do this for several simple reasons:
If you have not bought XiNCOM XC-DPG603 yet, this is a good time to familiarize yourself with the basic data on the product. First of all view first pages of the manual, you can find above. You should find there the most important technical data XiNCOM XC-DPG603 - thus you can check whether the hardware meets your expectations. When delving into next pages of the user manual, XiNCOM XC-DPG603 you will learn all the available features of the product, as well as information on its operation. The information that you get XiNCOM XC-DPG603 will certainly help you make a decision on the purchase.
If you already are a holder of XiNCOM XC-DPG603, but have not read the manual yet, you should do it for the reasons described above. You will learn then if you properly used the available features, and whether you have not made any mistakes, which can shorten the lifetime XiNCOM XC-DPG603.
However, one of the most important roles played by the user manual is to help in solving problems with XiNCOM XC-DPG603. Almost always you will find there Troubleshooting, which are the most frequently occurring failures and malfunctions of the device XiNCOM XC-DPG603 along with tips on how to solve them. Even if you fail to solve the problem, the manual will show you a further procedure – contact to the customer service center or the nearest service center
