Cisco Systems RVL200 Remote Group Setup, Local Security Group Type, Remote Security Gateway Type

Page 44

Chapter 4

Advanced Configuration

FQDN) Authentication, Dynamic IP + Domain Name(FQDN) Authentication, or Dynamic IP + E- mail Addr.(USER FQDN) Authentication. Follow the instructions for the type you want to use.

NOTE: The Local Security Gateway Type you select should match the Remote Security Gateway Type selected on the VPN device at the other end of the tunnel.

IP Only

The default is IP Only. Only the computer with a specific IP address will be able to access the tunnel.

IP address  The WAN (or Internet) IP address of the Router will automatically appear.

IP + Domain Name(FQDN) Authentication

The FQDN and IP address must match the Remote Security Gateway of the remote VPN device, and they can only be used for one tunnel connection.

Domain Name  Enter the Fully Qualified Domain Name (FQDN), which is the host name and domain name for a specific computer on the Internet.

IP address  The WAN (or Internet) IP address will automatically appear.

IP + E-mail Addr.(USER FQDN) Authentication

E-mail address  Enter the e-mail address for authentication.

IP address  The WAN (or Internet) IP address will automatically appear.

Dynamic IP + Domain Name(FQDN) Authentication

The Local Security Gateway will be a dynamic IP address, so you do not need to enter the IP address. When the Remote Security Gateway requests to create a tunnel with the Router, the Router will work as a responder.

The domain name must match the Remote Security Gateway of the remote VPN device and can only be used for one tunnel connection.

DomainName  Enterthedomainnameforauthentication. (Once used, you cannot use it again to create a new tunnel connection.)

Dynamic IP + E-mail Addr.(USER FQDN) Authentication

The Local Security Gateway will be a dynamic IP address, so you do not need to enter the IP address. When the Remote Security Gateway requests to create a tunnel with the Router, the Router will work as a responder.

E-mail address  Enter the e-mail address for authentication.

Local Security Group Type

Select the local LAN user(s) behind the Router that can use this VPN tunnel. Select the type you want to use: IP, Subnet, or IP Range. Follow the instructions for the type you want to use.

NOTE: The Local Security Group Type you select should match the Remote Security Group Type selected on the VPN device at the other end of the tunnel.

After you have selected the Local Security Group Type, the settings available on this screen may change, depending on which selection you have made.

IP

Only the computer with a specific IP address will be able to access the tunnel.

IP address  Enter the appropriate IP address. The default IP is 192.168.1.0.

Subnet

The default is Subnet. All computers on the local subnet will be able to access the tunnel.

IP address  Enter the IP address. The default is 192.168.1.0.

Subnet Mask  Enter the subnet mask. The default is 255.255.255.0.

IP Range

Specify a range of IP addresses within a subnet that will be able to access the tunnel.

IP range  Enter the range of IP addresses. The default is 192.168.1.0~254.

Remote Group Setup

Before you configure the Remote Group Setup, make sure your VPN tunnel will have two different IP subnets. For example, if the local 4-Port SSL/IPSec VPN Router has an IP scheme of 192.168.1.x (x being a number from 1 to 254), then the remote VPN router should have a different IP scheme, such as 192.168.2.y (y being a number from 1 to 254). Otherwise, the IP addresses will conflict, and the VPN tunnel cannot be created.

Remote Security Gateway Type

Select the type you want to use: IP Only, IP + Domain Name(FQDN) Authentication, IP + E-mail Addr.(USER FQDN) Authentication, Dynamic IP + Domain Name(FQDN) Authentication, or Dynamic IP + E- mail Addr.(USER FQDN) Authentication. Follow the instructions for the type you want to use.

4-Port SSL/IPSec VPN Router

36

Page 43 Page 45
Image 44
Page 43 Page 45
Contents Port SSL/IPSec VPN Router About This Guide About This GuideTable of Contents Ddns IPSec VPN Gateway to Gateway Appendix E User for the Active Directory Server Appendix C Bandwidth ManagementAppendix D Active Directory Server Appendix L Multiple VLANs with Computers Appendix I Gateway-to-Gateway VPN TunnelAppendix J IPSec NAT Traversal Appendix O Firmware Upgrade Appendix P Battery ReplacementAppendix Q Specifications Appendix M Multiple VLANs and SubnetsChapter Chapter IntroductionIntroduction Introduction to the RouterComputer using SSL VPN client software to VPN Router Chapter Product Overview Product OverviewFront Panel Back PanelPhysical Installation Chapter InstallationInstallation Cable Connection Chapter Advanced Configuration Advanced ConfigurationOverview Before You BeginHow to Access the Web-Based Utility Click Security Select Use SSL 2.0 and Use SSLSystem Summary System InformationNetwork Setting Status Firewall Setting StatusIPSec VPN Setting Status SSL VPN Setting StatusSetup Tab Network LAN SettingNetwork WAN Connection TypeStatic IP PPPoE Point-to-Point Protocol over EthernetSetup Password Pptp Point-to-Point Tunneling ProtocolSetup Time Setup DMZ HostPassword TimeSetup Tab Forwarding ForwardingPort Range Forwarding Port TriggeringSetup UPnP UPnPOne-to-One NAT Setup One-to-One NATSetup MAC Clone Setup Ddns Setup Advanced RoutingMAC Clone Advanced RoutingDhcp Setup Static RoutingStatic IP SetupDynamic IP Dhcp Status StatusDhcp Multiple VLANs Multiple VLANsSystem Management Diagnostic DiagnosticDhcp Inter-VLAN Routing Inter-VLAN RoutingFactory Default Firmware UpgradeSystem Management Restart Firmware DownloadImport Configuration File Export Configuration FileSystem Management Port Mirroring RestartPort Management Port Setup Basic Per Port ConfigPort Management Port Status Port StatusPort Management Port Setting Port SettingPort Management Create Vlan Create VlanBandwidth Management QoS Bandwidth ManagementVlan Membership Rate Control PriorityQoS QoS Setup QoS SetupQoS Mode Trust Mode Default CoSQoS Queue Settings QoS Dscp SettingsQueue Settings CoS SettingsDscp Settings Firewall GeneralGeneral Dscp to QueueRestrict WEB Features Firewall Access RulesAccess Rules Add a New Access Rule ServicesFirewall Content Filter Content FilterScheduling IP/MAC GroupIPSec VPN Summary Forbidden DomainsWebsite Blocking by Keywords IP AddressLocal Group Setup IPSec VPN Gateway to GatewaySummary Add a New TunnelRemote Security Gateway Type Remote Group SetupLocal Security Group Type Remote Security Group Type IPSec Setup IKE with Preshared KeyAdvanced IPSec VPN VPN Pass Through SSL VPN SummarySSL VPN Certificate Management VPN Pass ThroughAuthentication Type SSL VPN User ManagementUser Management Edit GroupSSL VPN Virtual Passage Edit UserGlobal Parameters Snmp Global ParametersVirtual Passage Snmp Views Snmp Group ProfileViews Group ProfileSnmp Group Membership Snmp CommunitiesGroup Membership CommunitiesSnmp Notification Recipient Notification RecipientLog System Log System LogLog Setting Log System StatisticsAlert Log General LogBasic Setup WizardObtain an IP automatically PPPoEAccess Rule Setup Select the Service Support LogoutManual Linksys Web SiteLogout Appendix a Appendix a TroubleshootingTroubleshooting Before You Begin Windows OS Appendix BAppendix B Virtual Passage SSL VPN Client Make the SSL VPN Portal a Trusted Site Windows OS Click Trusted sitesInstallation of the Virtual Passage Client Windows OS Login for the SSL VPN Portal Windows OSWhen you right-click the icon, you have three options Click Continue AnywayWindows Vista Usage Installation of the Virtual Passage Client Mac OSLogin for the SSL VPN Portal Mac OS Removal of the Virtual Passage Client Mac OS Click ContinueBefore You Begin Linux OS Installation of the Virtual Passage Client Linux OSLogin for the SSL VPN Portal Linux OS Removal of the Virtual Passage Client Linux OS Creation of New Services Appendix CAppendix C Bandwidth Management Bandwidth ManagementClick Save Settings Creation of New Bandwidth Management RulesActive Directory Server Appendix DAppendix D Active Directory Server Select Domain in a new forest, and then click Next Enter a domain name, and then click Next Active Directory Server Troubleshooting Appendix E Appendix E User for the Active Directory ServerUser for the Active Directory Server Appendix F Internet Authentication Service IAS Server Appendix FInternet Authentication Service IAS Server Select Unencrypted authentication. Click Apply Click Finish Welcome to the New Connection Request Policy Wizard Click Edit Profile Appendix G Click the User Management tabSelect HTTPSTCP/443~443 from the Service drop- down menu Appendix HAppendix H Deployment in an Existing Network LAN-to-LAN ConnectionWAN-to-LAN Connection Configuration of the RVL200 AppendixAppendix Gateway-to-Gateway VPN Tunnel Click the Gateway to Gateway tabConfiguration of the RV082 Configuration of PC 1 and PCRV082 RVL200 Dynamic IP B.B.B.B with Configuration when Both Gateways Use Dynamic IP Addresses Appendix Configuration of Scenario Configuration of Router aAppendix J Appendix J IPSec NAT TraversalConfiguration of Router B IPSec NAT TraversalOne-to-One NAT Rule on NAT 2 RV042 One-to-One NAT Rule on NAT 1 RV042Configuration of Router a Configuration of Multiple RVL200-to-RV042 ConfigurationAppendix K Appendix KClick the Advanced Routing tab RV042 #1 ConfigurationClick Save Setting RV042 #2 Configuration RVL200-to-SRW2048 Configuration Appendix LAppendix L Multiple VLANs with Computers Click the Port Management tabClick Save Settings Click the Vlan Membership tab SRW2048 ConfigurationSelect Enable Vlan RVL200 Configuration Appendix MAppendix M Multiple VLANsInter-VLAN Routing Option Click the Inter-VLAN Routing tabAccess of Multiple VLANs Appendix NAppendix N Over a SSL VPN TunnelAppendix O Appendix O Firmware UpgradeFirmware Upgrade Upgrade the Firmware Click the Firmware Upgrade tabAppendix P Battery Replacement Battery ReplacementReplace the Lithium Battery Appendix PAppendix Q Appendix Q SpecificationsSpecifications Appendix R Warranty InformationLimited Warranty Appendix S Regulatory InformationDansk Danish Miljøinformation for kunder i EU Port SSL/IPSec VPN Router 106 Norsk Norwegian Miljøinformasjon for kunder i EU Port SSL/IPSec VPN Router 108 Appendix T Contact Information
Top Page Image Contents