Cisco Systems RVL200 manual Firewall General, Dscp Settings, Dscp to Queue

Page 38

Chapter 4

Advanced Configuration

based QoS in Layer 3, the Router can use the priority bits in the Type of Service (ToS) octet to prioritize traffic. If priority bits are used, the ToS octet may contain three bits for IP Precedence or six bits for DSCP service.

QoS > DSCP Settings

DSCP Settings

DSCP to Queue

DSCP  This is the DSCP value in the incoming packet.

Queue  Select the traffic forwarding queue number to which the DSCP priority is mapped. You can designate up to four traffic priority queues configured on the Queue Settings screen.

To reset this screen to the factory default queue settings, click Restore Defaults. The defaults are 1 for DSCP values 0-15, 2 for DSCP values 16-31, and 3 for DSCP values 32-63.

Click Save Settings to save your changes, or click Cancel Changes to undo them.

Firewall > General

Enable or disable a variety of firewall, security, and web features.

Firewall > General

General

Firewall  The firewall is enabled by default. If you disable it, then the SPI, DoS, and Block WAN Request features, Access Rules, and Content Filters will also be disabled, and the Remote Management feature will be enabled.

SPI (Stateful Packet Inspection)  This option is enabled by default. The Router’s firewall uses Stateful Packet Inspection to review the information that passes through the firewall. It inspects all packets based on the established connection, prior to passing the packets for processing through a higher protocol layer.

DoS (Denial of Service)  This option is enabled by default. It protects internal networks from Internet attacks, such as SYN Flooding, Smurf, LAND, Ping of Death, IP Spoofing, and reassembly attacks.

Block WAN Request  This option is enabled by default. Using this feature, the Router drops both unaccepted TCP request and ICMP packets from the WAN side. Hackers will not find the Router by pinging the WAN IP address.

Remote Management/SSL VPN  This option is disabled by default. If you want to use SSL or manage this Router through a WAN connection, first change the password on the Setup > Password screen (this prevents any user from accessing the Router or using SSL with the default password). Then select Enable for the Remote Management/SSL VPN setting.

NOTE: SSL VPN has higher priority than Port Forwarding when HTTPS is enabled.

HTTPS  If Remote Management/SSL VPN is enabled, HTTPS is enabled by default. If Remote Management/SSL VPN is disabled, HTTPS is disabled by default.

4-Port SSL/IPSec VPN Router

30

Page 37 Page 39
Image 38
Page 37 Page 39
Contents Port SSL/IPSec VPN Router About This Guide About This GuideTable of Contents Ddns IPSec VPN Gateway to Gateway Appendix E User for the Active Directory Server Appendix C Bandwidth ManagementAppendix D Active Directory Server Appendix L Multiple VLANs with Computers Appendix I Gateway-to-Gateway VPN TunnelAppendix J IPSec NAT Traversal Appendix Q Specifications Appendix O Firmware UpgradeAppendix P Battery Replacement Appendix M Multiple VLANs and SubnetsIntroduction ChapterChapter Introduction Introduction to the RouterComputer using SSL VPN client software to VPN Router Front Panel Chapter Product OverviewProduct Overview Back PanelPhysical Installation Chapter InstallationInstallation Cable Connection Overview Chapter Advanced ConfigurationAdvanced Configuration Before You BeginHow to Access the Web-Based Utility Click Security Select Use SSL 2.0 and Use SSLSystem Summary System InformationIPSec VPN Setting Status Network Setting StatusFirewall Setting Status SSL VPN Setting StatusNetwork Setup Tab NetworkLAN Setting WAN Connection TypeStatic IP PPPoE Point-to-Point Protocol over EthernetSetup Password Pptp Point-to-Point Tunneling ProtocolPassword Setup TimeSetup DMZ Host TimePort Range Forwarding Setup Tab ForwardingForwarding Port TriggeringSetup UPnP UPnPOne-to-One NAT Setup One-to-One NATSetup MAC Clone MAC Clone Setup DdnsSetup Advanced Routing Advanced RoutingDhcp Setup Static RoutingStatic IP SetupDynamic IP Dhcp Multiple VLANs Dhcp StatusStatus Multiple VLANsDhcp Inter-VLAN Routing System Management DiagnosticDiagnostic Inter-VLAN RoutingSystem Management Restart Factory DefaultFirmware Upgrade Firmware DownloadSystem Management Port Mirroring Import Configuration FileExport Configuration File RestartPort Management Port Status Port Management Port SetupBasic Per Port Config Port StatusPort Management Create Vlan Port Management Port SettingPort Setting Create VlanBandwidth Management QoS Bandwidth ManagementVlan Membership Rate Control PriorityQoS Mode QoS QoS SetupQoS Setup Trust Mode Default CoSQueue Settings QoS Queue SettingsQoS Dscp Settings CoS SettingsGeneral Dscp SettingsFirewall General Dscp to QueueRestrict WEB Features Firewall Access RulesAccess Rules Add a New Access Rule ServicesScheduling Firewall Content FilterContent Filter IP/MAC GroupWebsite Blocking by Keywords IPSec VPN SummaryForbidden Domains IP AddressSummary Local Group SetupIPSec VPN Gateway to Gateway Add a New TunnelRemote Security Gateway Type Remote Group SetupLocal Security Group Type Remote Security Group Type IPSec Setup IKE with Preshared KeyAdvanced SSL VPN Certificate Management IPSec VPN VPN Pass ThroughSSL VPN Summary VPN Pass ThroughUser Management Authentication TypeSSL VPN User Management Edit GroupSSL VPN Virtual Passage Edit UserGlobal Parameters Snmp Global ParametersVirtual Passage Views Snmp ViewsSnmp Group Profile Group ProfileGroup Membership Snmp Group MembershipSnmp Communities CommunitiesSnmp Notification Recipient Notification RecipientLog System Log System LogAlert Log Log SettingLog System Statistics General LogBasic Setup WizardObtain an IP automatically PPPoEAccess Rule Setup Select the Service Manual SupportLogout Linksys Web SiteLogout Appendix a Appendix a TroubleshootingTroubleshooting Before You Begin Windows OS Appendix BAppendix B Virtual Passage SSL VPN Client Make the SSL VPN Portal a Trusted Site Windows OS Click Trusted sitesInstallation of the Virtual Passage Client Windows OS Login for the SSL VPN Portal Windows OSWhen you right-click the icon, you have three options Click Continue AnywayWindows Vista Usage Installation of the Virtual Passage Client Mac OSLogin for the SSL VPN Portal Mac OS Removal of the Virtual Passage Client Mac OS Click ContinueBefore You Begin Linux OS Installation of the Virtual Passage Client Linux OSLogin for the SSL VPN Portal Linux OS Removal of the Virtual Passage Client Linux OS Appendix C Bandwidth Management Creation of New ServicesAppendix C Bandwidth ManagementClick Save Settings Creation of New Bandwidth Management RulesActive Directory Server Appendix DAppendix D Active Directory Server Select Domain in a new forest, and then click Next Enter a domain name, and then click Next Active Directory Server Troubleshooting Appendix E Appendix E User for the Active Directory ServerUser for the Active Directory Server Appendix F Internet Authentication Service IAS Server Appendix FInternet Authentication Service IAS Server Select Unencrypted authentication. Click Apply Click Finish Welcome to the New Connection Request Policy Wizard Click Edit Profile Appendix G Click the User Management tabAppendix H Deployment in an Existing Network Select HTTPSTCP/443~443 from the Service drop- down menuAppendix H LAN-to-LAN ConnectionWAN-to-LAN Connection Appendix Gateway-to-Gateway VPN Tunnel Configuration of the RVL200Appendix Click the Gateway to Gateway tabConfiguration of the RV082 Configuration of PC 1 and PCRV082 RVL200 Dynamic IP B.B.B.B with Configuration when Both Gateways Use Dynamic IP Addresses Appendix Appendix J Configuration of ScenarioConfiguration of Router a Appendix J IPSec NAT TraversalConfiguration of Router B IPSec NAT TraversalOne-to-One NAT Rule on NAT 2 RV042 One-to-One NAT Rule on NAT 1 RV042Configuration of Router a Appendix K Configuration of MultipleRVL200-to-RV042 Configuration Appendix KClick the Advanced Routing tab RV042 #1 ConfigurationClick Save Setting RV042 #2 Configuration Appendix L Multiple VLANs with Computers RVL200-to-SRW2048 ConfigurationAppendix L Click the Port Management tabClick Save Settings Click the Vlan Membership tab SRW2048 ConfigurationSelect Enable Vlan Appendix M RVL200 ConfigurationAppendix M Multiple VLANsInter-VLAN Routing Option Click the Inter-VLAN Routing tabAppendix N Access of Multiple VLANsAppendix N Over a SSL VPN TunnelAppendix O Appendix O Firmware UpgradeFirmware Upgrade Upgrade the Firmware Click the Firmware Upgrade tabReplace the Lithium Battery Appendix P Battery ReplacementBattery Replacement Appendix PAppendix Q Appendix Q SpecificationsSpecifications Appendix R Warranty InformationLimited Warranty Appendix S Regulatory InformationDansk Danish Miljøinformation for kunder i EU Port SSL/IPSec VPN Router 106 Norsk Norwegian Miljøinformasjon for kunder i EU Port SSL/IPSec VPN Router 108 Appendix T Contact Information
Top Page Image Contents