Setting up VPN Access for Remote Diagnostics Support



Similar documents
enervista UR Setup Software Quick Connect Instructions:

I. What is VPN? II. Types of VPN connection. There are two types of VPN connection:

Configuring the OfficeConnect Secure Gateway for a remote L2TP over IPSec connection

CREATING AN IKE IPSEC TUNNEL BETWEEN AN INTERNET SECURITY ROUTER AND A WINDOWS 2000/XP PC

ASUS WL-5XX Series Wireless Router Internet Configuration. User s Guide

CS 326e F2002 Lab 1. Basic Network Setup & Ethereal Time: 2 hrs

1 PC to WX64 direction connection with crossover cable or hub/switch

Setting up VPN connection: DI-824VUP+ with Windows PPTP client

BiPAC 7404V series. VoIP/(802.11g) ADSL2+ (VPN) Firewall Router. Quick Start Guide

Sweex Wireless BroadBand Router + 4 port switch + print server

How to setup PPTP VPN connection with DI-804HV or DI-808HV using Windows PPTP client

DSL Installation Guide

How To Configure Apple ipad for Cyberoam L2TP

VPN Overview. The path for wireless VPN users

Preparing the Computers for TCP/IP Networking

Easy Setup Guide for the Sony Network Camera

Pre-lab and In-class Laboratory Exercise 10 (L10)

LevelOne. User Manual. FBR-1430 VPN Broadband Router, 1W 4L V1.0

Cisco - Configure the 1721 Router for VLANs Using a Switch Module (WIC-4ESW)

How To Industrial Networking

Chapter7 Setting the Receiving PC for Direct Upload. Setting the Receiving PC for Direct Upload For Windows For Macintosh...

TW100-BRV204 VPN Firewall Router

Ethernet Radio Configuration Guide

1. Hardware Installation

ETHERNET WEATHER STATION CONNECTIONS Application Note 33

Lab 4.4.8a Configure a Cisco GRE over IPSec Tunnel using SDM

Appendix A: Configuring Firewalls for a VPN Server Running Windows Server 2003

TW100-BRF114 Firewall Router. User's Guide. Cable/DSL Internet Access. 4-Port Switching Hub

Broadband Router ALL1294B

This techno knowledge paper can help you if: You need to setup a WAN connection between a Patton Router and a NetGuardian.

PC/POLL SYSTEMS Version 7 Polling SPS2000 Cash Register TCP/IP Communications

EDGE FX Network configuration

Comtrend 1 Port Router Installation Guide CT-5072T

USER GUIDE. Ethernet Configuration Guide (Lantronix) P/N: Rev 6

How to configure DVR and computer for running Remote Viewer via IP network

Guideline for setting up a functional VPN

Prestige 314 Read Me First

WatchGuard Mobile User VPN Guide

MFC7840W Windows Network Connection Repair Instructions

Wireless G Broadband quick install

Understand Wide Area Networks (WANs)

Firewall VPN Router. Quick Installation Guide M73-APO09-380

ZyWALL 5. Internet Security Appliance. Quick Start Guide Version 3.62 (XD.0) May 2004

Quick Note 32. Using Digi RealPort with a Digi TransPort Router. UK Support September 2012

Multi-Homing Dual WAN Firewall Router

Section 5: Connecting the Laser to Your Computer

Quick Installation Guide DAP Wireless N 300 Access Point & Router

Configuring an A Series LED Sign Controller for your Network

Configuring a WatchGuard SOHO to SOHO IPSec Tunnel

Chapter 10 Troubleshooting

Networking your DVR Made Easy

7. Configuring IPSec VPNs

Chapter 2 Preparing Your Network

Protecting the Home Network (Firewall)

Using a simple crossover RJ45 cable, you can directly connect your Dexter to any computer.

Best Practices: Pass-Through w/bypass (Bridge Mode)

Prestige 202H Plus. Quick Start Guide. ISDN Internet Access Router. Version /2004

3.5 EXTERNAL NETWORK HDD. User s Manual

Andover Continuum Remote Communication Configuration Guide

SATO Network Interface Card Configuration Instructions

Chapter 12 Supporting Network Address Translation (NAT)

Creating a Gateway to Client VPN between Sidewinder G2 and a Mac OS X Client

GajShield UPTM Certification Module 4. GajShield Infotech Pvt Ltd

Connecting the DG-102S VoIP Gateway to your network

Internet Access to a DVR365

How To Configure L2TP VPN Connection for MAC OS X client

Purple Sturgeon Standard VPN Installation Manual for Windows XP

McAfee.com Personal Firewall

Step-by-Step Guide for Setting Up VPN-based Remote Access in a Test Lab

MCTS Guide to Microsoft Windows 7. Chapter 14 Remote Access

RAPID BROADBAND INSTALLATION RAPID BROADBAND SUPPORT CONTACT DETAILS. AND TROUBLESHOOTING GUIDE. Tel:

ipad Installation and Setup

your Gateway Windows network installationguide b wireless series Router model WBR-100 Configuring Installing

RADAR NETWORK SETUP WITH WINDOWS XP/VISTA

Chapter 6 Configuring the SSL VPN Tunnel Client and Port Forwarding

Prestige 324 Quick Start Guide. Prestige 324. Intelligent Broadband Sharing Gateway. Version V3.61(JF.0) May 2004 Quick Start Guide

How to Remotely View Security Cameras Using the Internet

Prestige 324. Prestige 324. Intelligent Broadband Sharing Gateway. Version 3.60 January 2003 Quick Start Guide

Application Note. Using a Windows NT Domain / Active Directory for User Authentication NetScreen Devices 8/15/02 Jay Ratford Version 1.

Networking Guide Redwood Manager 3.0 August 2013

Quick Start Guide. RV 120W Wireless-N VPN Firewall. Cisco Small Business

Configuring the PIX Firewall with PDM

BROADBAND INTERNET ROUTER USER S MANUAL. Version Page 1 of 13 -

Talk2M Free+ Remote-Access Connectivity Solution for ewon COSY devices. Getting Started Guide

Step-by-Step Guide for Setting Up VPN-based Remote Access in a

NETVIGATOR Wireless Modem Setup Guide. (TG789Pvn)

Digi Connect WAN Application Guide Using the Digi Connect WAN and Digi Connect VPN with a Wireless Router/Access Point

Allworx Installation Course

Building Networks For People. DIR-100 Ethernet Broadband Router User Manual

Enabling Internet Connection Sharing on Windows Enabling ICS On Windows XP As The Host 4 Enabling ICS On Windows XP As The Client 11

Technical Support Information

For paid computer support call

Application Note Configuring the UGate 3000 for use with ClipMail Pro and ClipExpress

How to Setup PPTP VPN Between a Windows PPTP Client and the DIR-130.

CCNA Discovery Networking for Homes and Small Businesses Student Packet Tracer Lab Manual

47611 GT4. Internet Gateway. Broadband Internet Access. 4-Port Switch. User's Manual

P-660R-T1/T3 v2 Quick Start Guide

DWL-2000AP. Before You Begin. Check Your Package Contents

Using a VPN with Niagara Systems. v0.3 6, July 2013

Transcription:

Setting up VPN Access for Remote Diagnostics Support D. R. Joseph, Inc. supports both dial-up and Internet access for remote support of 3GIBC1 and LF-Sizer control systems. This document describes how to setup the remote site to allow a VPN client to log in and then route to the DRJ equipment. The following diagram shows the overall schematic of the connection. The first step to the process is to setup the Remote VPN Host to accept a request from a VPN client to access the Remote IBC System. The steps for this process are generally known by IT personnel, but for convenience the basic steps follow and are based on the data found at this web site: http://technet.microsoft.com/en-us/library/cc736357(ws.10).aspx 3GIBC1 Page 1 9/16/2010

Summary Virtual Private Networks (VPN) allow users working at home, on the road or at a branch office to connect in a secure manner to a remote corporate server using the public Internet. VPN server or host is a computer that accepts VPN connections from VPN clients. A VPN server or host can be a NT/W2K server or W2K/XP Pro. VPN client is a computer that initiates a VPN connection to a VPN server or host. A VPN client can be an individual computer running MS Windows NT version 4.0, Windows 2000, 9x. VPN clients can also be any non- Microsoft Point-to-Point Tunneling Protocol (PPTP) client or Layer Two Tunneling Protocol (L2TP) client using IPSec. Network Design The following items should be established prior to setting up the VPN and access permissions: VPN address: This is the static public IP address that is assigned to the Remote VPN Host. Remote clients will reference this IP address when attempting to establish a VPN connection. VPN protocol: PPTP VPN username: Decide on a user name for the remote VPN client. VPN password: Decide on a password for the remote VPN client IBC static IP address: This is the IP address that matches the sub-net of the Remote Host s Intranet. This should be a local IP address and NOT a public IP address. It must be static. The current setting in the IBC system is 10.10.226.100 (see steps 1-13 for setting this value). IBC gateway IP address: If there is no Intranet gateway, set this to 0.0.0.0, otherwise set to the gateway IP address (see steps 1-13 for setting this value). IBC subnet mask: in most cases, this will be a class C subnet of 255.255.255.0 (see steps 1-13 for setting this value). Touch Screen IP Address: This value must match the subnet of the IBC system. The current value is 10.10.226.160 (see steps 14-26 for setting this value. Ethernet Switch IP Address: This value must also match the subnet of the IBC system. The current value is 10.10.226.253 (see separate document for Ethernet Modem for setting this value). Remote Client IP Address: This value must match the IBC system subnet. The current value is 10.10.226.254 (see separate document: Integrating 3GIBC1 Ethernet Modem To Your Company Network for setting this value). 3GIBC1 Page 2 9/16/2010

Basic VPN Requirement On the Remote VPN Host machine, you will need to create a user account that the VPN client will use to log in. User Permission. Enable a user to access the VPN. To do this, go to ADD Users and Computers, select or create the user who needs to access the VPN, click Dial-in. Check Allow access on the Remote Access Permission (Dial-in or VPN). IP Configuration. The VPN server should have a static IP address and assign the arranged IP addresses to VPN clients. The VPN server must also be configured with DNS and WINS server addresses to assign to the VPN client during the connection. Data Encryption. Data carried on the public network should be rendered unreadable to unauthorized clients on the network. Protocol Support. The TCP/IP is a common protocol used in the public network. The VPN also includes IP, Internetwork Packet Exchange (IPX), NetBEUI and so on. Firewall Ports. When you place a VPN server behind your firewall, be sure to enable IP protocol 47 (GRE) and TCP port 1723. Interface(s) for VPN server. If your network doesn't have a router or the VPN is also a gateway, your computer must have at least two interfaces, one connecting to the Internet and another connecting to the LAN. If it is behind a router, you just need one NIC. One interface for VPN client. The interface can be a dial-in modem, or a dedicated connection to the Internet. Security. See the diagram on the following page and let DRJ know what settings you selected: 3GIBC1 Page 3 9/16/2010

3GIBC1 Page 4 9/16/2010

IBC System Setup Access Service Menus Once the VPN access is setup, you will need to configure the IBC system for the static intranet IP address you assigned, along with the subnet and gateway (if any). To do this you will need to access the service menus. Access Service: 1. From the main screen press the BACK button. The SYSTEM Selection screen will display. 2. Press the SERVICE button and the SERVICE ACCESS screen will display. Note: the SYSTEM SELECTION screen also shows the current IBC software revision, the job# and the valve size. 3. Press the Password button and enter the current service password. The factory default for the service password is 4095. 4. Press the ACCESS button to access the service menus. 5. The SERVICE MENU displays all the available parameter groups. Not all systems have the Cage Controller group shown here. 3GIBC1 Page 5 9/16/2010

Configure Ethernet Settings 6. Select the EXPERT MODE button. 7. Enter the Expert Mode Password of 8747 then press the ENT key 8. This symbol verifies you are in expert mode. If you get a red X then the password was entered incorrectly. Retry steps 6 and 7. 3GIBC1 Page 6 9/16/2010

9. Press the COMMUNICATION CONFIGURATION button. 10. Select ETHERNET CONFIG button. (note: make a note of what the IP settings are before you change anything) 11. You must enter the Level 2 security credentials to access the Ethernet settings. The User ID is ISIBC1. The password is 4095 3GIBC1 Page 7 9/16/2010

12. Set the IP address, Subnet and gateway as required. Port must be 502, Addr must be 12, Mstr TO must be 10, Slv TO 250. Press the OK button when you are sure the settings are correct. 13. If you are certain you have the correct settings, press the ACCEPT key. Write these values down BEFORE pressing the ACCEPT button. You will not be able to get back to these settings if you forget the values. Touch Screen will Stop Communicating at this point 14. After about 1 minute, you will see the following error message. If you want to see the full message, press the Window Button. 3GIBC1 Page 8 9/16/2010

15. This is information only. Press the X button when you are done and then proceed to step 16. Reconfiguring Touch Screen IP Settings 16. Touch the upper left corner THEN the lower right corner. Do not touch both positions at the same time. Note: It does not matter which screen you are on. 17. Select the Offline mode button 3GIBC1 Page 9 9/16/2010

18. This is the system password screen. Press the box to enter the password. 19. Enter the password using the popup keypad. The password is 73226213. Press the ENT key when finished. 20. This is the main menu screen. Select the Main Unit button first. 3GIBC1 Page 10 9/16/2010

21. You are now on the Main Unit menu. Select the Ethernet button. Set Touch Screen IP Address and Subnet 22. At the point you must identify the Touch Screen IP address. It must be unique from the IBC IP address you set in steps 12 and 13. The Subnet Mask must match what you entered in step 12. Do not change the Port value. It must remain 8000. Press the Back key when finished with this step. 23. Now select the Peripheral button to tell the touch screen what the new IBC system IP address is. 3GIBC1 Page 11 9/16/2010

24. Press in the area shown to select the current Modbus TCP Master driver. 25. You are now at the Peripheral Configuration Menu. Press on the Device button. DO NOT CHANGE ANY VALUES ON THIS SCREEN 26. Touch the IP Address box and enter the new IP address you entered in step 12 for the IBC System. DO NOT CHANGE THE PORT No. or the UNIT ID! Press the Exit button when finished. 3GIBC1 Page 12 9/16/2010

27. If you have completed all the steps, press the Yes button. The touch screen will automatically restart. If you did everything correctly, it will start communicating. You can repeat the entire process if it is still not working. 3GIBC1 Page 13 9/16/2010

Connecting the IBC System The cable connection to the IBC system should be a CAT5 or CAT5e style cable. Whether a cross-over or straight cable is used depends on if the Remote Host is using a switch or a router. The cable should be a cross over cable if a switch is used. It should be straight through if a router is used. How to Build an Ethernet Crossover Cable The crossover Ethernet cable is used when connecting two Ethernet devices without a router or managed switch between the devices. Use this diagram when building your own Ethernet cables. For more details, please visit www.wiringwizard.com, select CAT- 5 in the column on the left. Connect the Ethernet Cable to IBC or LF-Sizer The Ethernet or LAN port is located near the bottom of the panel. There are four RJ45 connectors across the bottom of the main controller. The LAN port is the left most connector. The LAN cable should be connected to the Sixnet Managed Switch/Ethernet modem provided by D. R. Joseph, Inc. 3GIBC1 Page 14 9/16/2010

Verify Link Level is Functioning If the cable is configured properly, you will see the LINK led turn on. It will stay on at all times. If the LINK LED is off, then recheck your cable configuration. On the Sixnet To IBC System To Company Intranet Ethernet Modem, only the Yellow LED will come on. This means the connection is a 10 MHz connection. For the company intranet, you will probably see both the green and yellow LEDs come on which indicates a 100 MHz connection. One important note: If you are connecting a laptop directly to the IBC, you need the cross-over cable. If you use a straight through cable, you will still get the LINK led. The LINK led is not an indication of correct cable; it is only an indication that the hardware level is active. Verify that Remote VPN Host Can Ping IBC Using the Ping command to make sure you can ping the IBC system from the Remote VPN Host. Contact DRJ and Provide Connection Details Send an email to support@drjosepinc.com with VPN Connection Details for custname in the subject. Custname is the name of the customer. Make sure you send the following: 1. Static IP Address of Remote VPN Host 2. User Name 3. Password 4. Static IP Address of IBC System 5. Contact name and phone number in case we have problems connecting. 3GIBC1 Page 15 9/16/2010

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information