Name: TP-Link SafeStream TL-ER6020
Brand: TP-Link
Rating: 5 (1 reviews)

To Next Page

To Previous Page

-83-

3.5 VPN

VPN (Virtual Private Network) is a private network established via the public network, generally via the

Internet. However, the private network is a logical network without any physical network lines, so it is

called Virtual Private Network.

With the wide application of the Internet, more and more data are needed to be shared through the

Internet. Connecting the local network to the Internet directly, though can allow the data exchange, will

cause the private data to be exposed to all the users on the Internet. The VPN (Virtual Private Network)

technology is developed and used to establish the private network through the public network, which

can guarantee a secured data exchange.

VPN adopts the tunneling technology to establish a private connection between two endpoints. It is a

connection secured by encrypting the data and using point-to-point authentication. The following

diagram is a typical VPN topology.

Figure 3-57 VPN – Network Topology

As the packets are encapsulated and de-encapsulated in the Router, the tunneling topology

implemented by encapsulating packets is transparent to users. The tunneling protocols supported by

TL-ER6020 contain Layer 3 IPsec and Layer 2 L2TP/PPTP.

3.5.1 IKE

In the IPsec VPN, to ensure a secure communication, the two peers should encapsulate and

de-encapsulate the packets using the information both known. Therefore the two peers need to

negotiate a security key for communication with IKE (Internet Key Exchange) protocols.

Actually IKE is a hybrid protocol based on three underlying security protocols, ISAKMP (Internet

Security Association and Key Management Protocol), Oakley Key Determination Protocol, and

SKEME Security Key Exchange Protocol. ISAKMP provides a framework for Key Exchange and SA

(Security Association) negotiation. Oakley describes a series of key exchange modes. SKEME

describes another key exchange mode different from those described by Oakley.

IKE consists of two phases. Phase 1 is used to negotiate the parameters, key exchange algorithm and

encryption to establish an ISAKMP SA for securely exchanging more information in Phase 2. During

phase 2, the IKE peers use the ISAKMP SA established in Phase 1 to negotiate the parameters for

security protocols in IPsec and create IPsec SA to secure the transmission data.

Other manuals for TP-Link SafeStream TL-ER6020

Installation Guide28 pages

Questions and Answers:

Need help?

Do you have a question about the TP-Link SafeStream TL-ER6020 and is the answer not in the manual?

TP-Link SafeStream TL-ER6020 Specifications

General

Ethernet LAN	Yes
Cabling technology	10/100/1000Base-T(X)
Networking standards	IEEE 802.3, IEEE 802.3ab, IEEE 802.3u
VPN tunnels quantity	50
Ethernet LAN data rates	10, 100, 1000 Mbit/s
Ethernet LAN interface type	Gigabit Ethernet
Maximum indoor range	100 m
RS-232 ports	1
Ethernet LAN (RJ-45) ports	3
Form factor	1U
USB ports quantity	0
Management platform	Web/CLI/Telnet
Filtering description	MAC, URL/Keywords, WebContent
Compatible operating systems	Microsoft Windows 98SE, NT, 2000, XP, Vista, Windows 7\\r MAC OS\\r NetWare, UNIX, Linux
Routing protocols	RIP-1, RIP-2
Supported protocols	IPsec/PPTP/L2TP
Supported network protocols	TCP/IP, DHCP, ICMP, NAT, PPPoE, SNTP, HTTP, DNS, IPsec, PPTP, L2TP
VPN support	50 IPsec VPN Tunnels LAN-to-LAN, Client-to-LAN Main, Aggressive Negotiation Mode DES, 3DES, AES128, AES192, AES256 Encryption Algorithm MD5, SHA1 Authentication Algorithm IPsec NAT Traversal (NAT-T) Dead Peer Detection (DPD) Perfect Forward Secrecy (PFS) 16 PPTP VPN Tunnels PPTP VPN Server/Client PPTP with MPPE Encryption 16 L2TP VPN Tunnels L2TP VPN Server/Client L2TP over IPsec
NAT functionality	One-to-One NAT\\r Multi-nets NAT\\r Virtual Server, DMZ Host, Port_Triggering, UPnP\\r FTP/H.323/SIP/IPsec/PPTP ALG
Security algorithms	128-bit AES, 256-bit AES, 3DES, DES
Authentication method	MD5, SHA-1
Network Address Translation (NAT) sessions (max)	30000
Flash memory	16 MB
Certification	CE, FCC, RoHS
Internal memory	128 MB
Internal memory type	DDR2
Mac operating systems supported	macOS
Windows operating systems supported	Windows 10, Windows 2000, Windows 7, Windows 8, Windows 8.1, Windows 98SE, Windows NT, Windows Vista, Windows XP
AC input voltage	100 - 240 V
Power source type	AC
AC input frequency	50 - 60 Hz
Power over Ethernet (PoE)	No
Power consumption (typical)	- W
Storage temperature (T-T)	-40 - 70 °C
Operating temperature (T-T)	0 - 40 °C
Storage relative humidity (H-H)	5 - 90 %
Operating relative humidity (H-H)	10 - 90 %
Product color	Black
Sustainability certificates	RoHS
Package depth	250 mm
Package width	400 mm
Package height	80 mm
Package weight	1810 g