Kerio Tech KERIO WINROUTE FIREWALL 6 User Manual Page 119
- Page / 368
- Table of contents
- BOOKMARKS
Rated. / 5. Based on customer reviews
8.3 Dynamic DNS for public IP address of the firewall
119
Warning
1. DHCP server cannot assign addresses to RAS clients connecting to the RAS server
directly at the WinRoute host (for technical reasons, it is not possible to receive DHCP
queries from the local RAS server). For such cases, it is necessary to set assigning of
IP addresses in the RAS server configuration.
2. The RAS service in Windows leases a new IP address for each connection (even if re-
quested by the same client). WinRoute includes RAS clients in total number of clients
when checking whether number of licensed users has been exceeded (see chapter 4.6).
This implies that repeated connection of RAS clients may cause exceeding of the num-
ber of licensed users (if the IP scope for the RAS service is too large or/and an address
is leased to RAS clients for too long time). Remote clients will be then allowed to con-
nect and communicate with hosts in the local network, while they will not be allowed
to connect to the Internet via WinRoute.
Declined options
These options define how declined IP addresses (DHCPDECLINE report) will be handled.
These addresses can be either considered released and assigned to other users if needed
(the Offer immediately option) or blocked during a certain time for former clients to be
able to use them (the Declined addresses can be offered after timeout option).
8.3 Dynamic DNS for public IP address of the firewall
Kerio WinRoute Firewall provides (among others) services for remote access from the Internet
to the local network (VPN server — see chapter 23 and the Clientless SSL-VPN interface — see
chapter 24). Also other services can be accessible from the Internet — e.g. the Kerio StaR
interface (see chapter 21), remote administration of WinRoute by the Administration Console
(see chapter 16.2) or any other service (e.g. web server in local network — see chapter 7.4).
These services are available at the firewall’s public IP address. If this IP address is static and
there exists a corresponding DNS record for it, a corresponding name can be used for access
to a given service (e.g. server.company.com). If there is no corresponding DNS record, it is
necessary to remember the firewall’s IP address and use it for access to all services. If the
public IP address is dynamic (i.e. it changes), it is extremely difficult or even impossible to
connect to these services from the Internet.
This problem is solved by WinRoute’s support for dynamic DNS. Dynamic DNS provides DNS
record for a specific name of a server which will always keep the current IP address. This
method thus allows making mapped services always available under the same server name,
regardless of the fact if IP address changes and how often.
How cooperation with dynamic DNS works
Dynamic DNS (DDNS) is a service providing automatic update of IP address in DNS record for
the particular host name. Typically, two versions of DDNS are available:
- Kerio WinRoute Firewall 6 1
- Contents 3
- Quick Checklist 7
- Introduction 9
- 2.2 Conflicting software 10
- 2.3 System requirements 11
- 2.4 Installation - Windows 12
- Sharing 15
- 2.9 WinRoute Components 23
- WinRoute Administration 27
- Chapter 4 32
- 4.2 License information 33
- 4.6 User counter 45
- Network interfaces 47
- Figure 5.2 Editing interfaces 50
- Internet Connection 53
- 6.3 Connection Failover 62
- Chapter 6 Internet Connection 64
- 6.4 Network Load Balancing 66
- Traffic Policy 71
- 7.2 How traffic rules work 78
- 7.4 Basic Traffic Rule Types 90
- 7.5 Policy routing 95
- 7.8 Use of Full cone NAT 101
- 7.9 Media hairpinning 102
- Chapter 8 104
- 8.1 DNS module 104
- Figure 8.1 DNS settings 105
- 8.2 DHCP server 110
- 8.4 Proxy server 121
- 8.5 HTTP cache 124
- Bandwidth Limiter 130
- User Authentication 137
- Web Interface 141
- HTTP and FTP filtering 147
- 12.2 URL Rules 148
- 12.5 FTP Policy 162
- Antivirus control 167
- 13.3 HTTP and FTP scanning 172
- 13.4 Email scanning 176
- Definitions 180
- 14.2 Time Ranges 181
- 14.3 Services 183
- 14.4 URL Groups 187
- Description 189
- User Accounts and Groups 190
- 15.2 Local user accounts 193
- Step 1 — basic information 194
- 15.5 User groups 210
- Administrative settings 214
- 16.3 Update Checking 216
- Advanced security features 218
- Other settings 224
- 18.3 Relay SMTP server 229
- Status Information 231
- 19.4 Alerts 243
- Figure 19.12 Alert Definitions 244
- Basic statistics 248
- Figure 20.1 User statistics 249
- 20.2 Interface statistics 250
- Chapter 21 254
- Chapter 22 262
- 22.1 Log settings 262
- Figure 22.1 Log settings 263
- Chapter 22 Logs 264
- Syslog Logging 264
- 22.2 Logs Context Menu 265
- 22.3 Alert Log 269
- 22.4 Config Log 269
- 22.5 Connection Log 270
- 22.6 Debug Log 271
- 22.7 Dial Log 273
- 22.8 Error Log 275
- 22.9 Filter Log 276
- 22.10 Http log 277
- 22.11 Security Log 278
- 22.12 Sslvpn Log 280
- 22.13 Warning Log 280
- 22.14 Web Log 281
- Kerio VPN 283
- 23.1 VPN Server Configuration 284
- Chapter 23 Kerio VPN 320
- Paris branch office server 332
- Chapter 24 335
- Chapter 25 338
- 25.2 Configuration files 339
- Technical support 351
- 26.2 Tested in Beta version 352
- Legal Notices 353
- Used open source items 354
- Glossary of terms 357
© 2020, manymanuals.com. All rights reserved. | 0.674 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comments to this Manuals