Cisco Systems RVL200 manual IPSec VPN Gateway to Gateway, Summary, Add a New Tunnel, Tunnel Status

Page 43

Chapter 4

Advanced Configuration

Summary

Tunnel Used  The number of VPN tunnels being used is displayed.

Tunnel Available  The number of available VPN tunnels is displayed.

Tunnel Status

Add New Tunnel  Click Add New Tunnel to add a Gateway-to-Gateway tunnel. The Mode Choose screen appears.

Mode Choose

Click Add Now to display the Gateway to Gateway screen. Proceed to the “IPSec VPN > Gateway to Gateway” section for instructions. Click Return to return to the Summary screen.

After you have added the VPN tunnel, you will see it listed in the table.

No.  It shows the number of the VPN tunnel.

Name  It shows the Tunnel Name that you gave the VPN tunnel.

Status  This indicates the status of the VPN tunnel.

Phase2 Enc/Auth/Grp  This shows the Phase 2 Encryption type (DES/3DES/AES-128/AES-192/AES-256), Authentication method (MD5/SHA1), and DH Group number (1/2/5) that you chose in the IPSec Setup section.

Local Group  This shows the IP address and subnet mask of the Local Group.

Remote Group  The IP address and subnet mask of the Remote Group are displayed here.

Remote Gateway  It shows the IP address of the Remote Gateway.

Tunnel Test  Click Connect to verify the status of the VPN tunnel. The test result will be updated in the Status column. If the tunnel is connected, a Disconnect button will be available so you can end the connection.

Config.  Click Edit to open a new screen where you can change the tunnel’s settings. Refer to the “Gateway to

Gateway” section for more information. Click the Trash Can icon to delete all of your tunnel settings for each individual tunnel.

Tunnel Enabled  The number of enabled VPN tunnels is displayed.

Tunnel Defined  The number of defined VPN tunnels is displayed.

IPSec VPN > Gateway to Gateway

Use this screen to create a new tunnel between two VPN devices.

IPSec VPN > Gateway to Gateway

Add a New Tunnel

Tunnel No  The tunnel number is 1.

Tunnel Name  Enter a name for this VPN tunnel, such as Los Angeles Office, Chicago Branch, or New York Division. This allows you to identify multiple tunnels and does not have to match the name used at the other end of the tunnel.

Enable  Check this box to enable a VPN tunnel. (When you create a VPN tunnel, this check box will be disabled.)

Local Group Setup

Local Security Gateway Type

Select the type you want to use: IP Only, IP + Domain Name(FQDN) Authentication, IP + E-mail Addr.(USER

4-Port SSL/IPSec VPN Router

35

Image 43
Contents Port SSL/IPSec VPN Router About This Guide About This GuideTable of Contents Ddns IPSec VPN Gateway to Gateway Appendix D Active Directory Server Appendix C Bandwidth ManagementAppendix E User for the Active Directory Server Appendix J IPSec NAT Traversal Appendix I Gateway-to-Gateway VPN TunnelAppendix L Multiple VLANs with Computers Appendix M Multiple VLANs and Subnets Appendix O Firmware UpgradeAppendix P Battery Replacement Appendix Q SpecificationsIntroduction to the Router ChapterChapter Introduction IntroductionComputer using SSL VPN client software to VPN Router Back Panel Chapter Product OverviewProduct Overview Front PanelInstallation Chapter InstallationPhysical Installation Cable Connection Before You Begin Chapter Advanced ConfigurationAdvanced Configuration OverviewClick Security Select Use SSL 2.0 and Use SSL How to Access the Web-Based UtilitySystem Information System SummarySSL VPN Setting Status Network Setting StatusFirewall Setting Status IPSec VPN Setting StatusWAN Connection Type Setup Tab NetworkLAN Setting NetworkPPPoE Point-to-Point Protocol over Ethernet Static IPPptp Point-to-Point Tunneling Protocol Setup PasswordTime Setup TimeSetup DMZ Host PasswordPort Triggering Setup Tab ForwardingForwarding Port Range ForwardingUPnP Setup UPnPSetup MAC Clone Setup One-to-One NATOne-to-One NAT Advanced Routing Setup DdnsSetup Advanced Routing MAC CloneStatic Routing Dhcp SetupDynamic IP SetupStatic IP Multiple VLANs Dhcp StatusStatus Dhcp Multiple VLANsInter-VLAN Routing System Management DiagnosticDiagnostic Dhcp Inter-VLAN RoutingFirmware Download Factory DefaultFirmware Upgrade System Management RestartRestart Import Configuration FileExport Configuration File System Management Port MirroringPort Status Port Management Port SetupBasic Per Port Config Port Management Port StatusCreate Vlan Port Management Port SettingPort Setting Port Management Create VlanVlan Membership QoS Bandwidth ManagementBandwidth Management Priority Rate ControlTrust Mode Default CoS QoS QoS SetupQoS Setup QoS ModeCoS Settings QoS Queue SettingsQoS Dscp Settings Queue SettingsDscp to Queue Dscp SettingsFirewall General GeneralAccess Rules Firewall Access RulesRestrict WEB Features Services Add a New Access RuleIP/MAC Group Firewall Content FilterContent Filter SchedulingIP Address IPSec VPN SummaryForbidden Domains Website Blocking by KeywordsAdd a New Tunnel Local Group SetupIPSec VPN Gateway to Gateway SummaryLocal Security Group Type Remote Group SetupRemote Security Gateway Type Remote Security Group Type IKE with Preshared Key IPSec SetupAdvanced VPN Pass Through IPSec VPN VPN Pass ThroughSSL VPN Summary SSL VPN Certificate ManagementEdit Group Authentication TypeSSL VPN User Management User ManagementEdit User SSL VPN Virtual PassageVirtual Passage Snmp Global ParametersGlobal Parameters Group Profile Snmp ViewsSnmp Group Profile ViewsCommunities Snmp Group MembershipSnmp Communities Group MembershipNotification Recipient Snmp Notification RecipientSystem Log Log System LogGeneral Log Log SettingLog System Statistics Alert LogWizard Basic SetupPPPoE Obtain an IP automaticallyAccess Rule Setup Select the Service Linksys Web Site SupportLogout ManualLogout Troubleshooting Appendix a TroubleshootingAppendix a Appendix B Virtual Passage SSL VPN Client Appendix BBefore You Begin Windows OS Click Trusted sites Make the SSL VPN Portal a Trusted Site Windows OSLogin for the SSL VPN Portal Windows OS Installation of the Virtual Passage Client Windows OSClick Continue Anyway When you right-click the icon, you have three optionsLogin for the SSL VPN Portal Mac OS Installation of the Virtual Passage Client Mac OSWindows Vista Usage Click Continue Removal of the Virtual Passage Client Mac OSLogin for the SSL VPN Portal Linux OS Installation of the Virtual Passage Client Linux OSBefore You Begin Linux OS Removal of the Virtual Passage Client Linux OS Bandwidth Management Creation of New ServicesAppendix C Appendix C Bandwidth ManagementCreation of New Bandwidth Management Rules Click Save SettingsAppendix D Active Directory Server Appendix DActive Directory Server Select Domain in a new forest, and then click Next Enter a domain name, and then click Next Active Directory Server Troubleshooting Appendix E User for the Active Directory Server Appendix EUser for the Active Directory Server Appendix F Appendix F Internet Authentication Service IAS ServerInternet Authentication Service IAS Server Select Unencrypted authentication. Click Apply Click Finish Welcome to the New Connection Request Policy Wizard Click Edit Profile Click the User Management tab Appendix GLAN-to-LAN Connection Select HTTPSTCP/443~443 from the Service drop- down menuAppendix H Appendix H Deployment in an Existing NetworkWAN-to-LAN Connection Click the Gateway to Gateway tab Configuration of the RVL200Appendix Appendix Gateway-to-Gateway VPN TunnelConfiguration of PC 1 and PC Configuration of the RV082RV082 RVL200 Dynamic IP B.B.B.B with Configuration when Both Gateways Use Dynamic IP Addresses Appendix Appendix J IPSec NAT Traversal Configuration of ScenarioConfiguration of Router a Appendix JIPSec NAT Traversal Configuration of Router BOne-to-One NAT Rule on NAT 1 RV042 One-to-One NAT Rule on NAT 2 RV042Configuration of Router a Appendix K Configuration of MultipleRVL200-to-RV042 Configuration Appendix KClick Save Setting RV042 #1 ConfigurationClick the Advanced Routing tab RV042 #2 Configuration Click the Port Management tab RVL200-to-SRW2048 ConfigurationAppendix L Appendix L Multiple VLANs with ComputersSelect Enable Vlan SRW2048 ConfigurationClick Save Settings Click the Vlan Membership tab Multiple VLANs RVL200 ConfigurationAppendix M Appendix MClick the Inter-VLAN Routing tab Inter-VLAN Routing OptionOver a SSL VPN Tunnel Access of Multiple VLANsAppendix N Appendix NFirmware Upgrade Appendix O Firmware UpgradeAppendix O Click the Firmware Upgrade tab Upgrade the FirmwareAppendix P Appendix P Battery ReplacementBattery Replacement Replace the Lithium BatterySpecifications Appendix Q SpecificationsAppendix Q Limited Warranty Warranty InformationAppendix R Regulatory Information Appendix SDansk Danish Miljøinformation for kunder i EU Port SSL/IPSec VPN Router 106 Norsk Norwegian Miljøinformasjon for kunder i EU Port SSL/IPSec VPN Router 108 Contact Information Appendix T