Cisco Systems RVL200 manual Remote Security Group Type

Page 45

Chapter 4

Advanced Configuration

NOTE: The Remote Security Gateway Type you select should match the Local Security Gateway Type selected on the VPN device at the other end of the tunnel.

IP Only

The default is IP Only. Only the computer with a specific IP address will be able to access the tunnel. Select IP address or IP by DNS Resolved.

IP address  Select this option if you know the static IP address of the remote VPN device at the other end of the tunnel, and then enter the IP address.

IP by DNS Resolved  Select this option if you do not know the static IP address of the remote VPN device but you do know its domain name. Then enter the remote VPN device’s domain name on the Internet. The Router will retrieve the IP address of the remote VPN device.

IP + Domain Name(FQDN) Authentication

The IP address and domain name ID must match the Local Gateway of the remote VPN device, and they can only be used for one tunnel connection.

IP address  Select this option if you know the static IP address of the remote VPN device at the other end of the tunnel, and then enter the IP address.

IP by DNS Resolved  Select this option if you do not know the static IP address of the remote VPN device but you do know its domain name. Then enter the remote VPN device’s domain name on the Internet. The Router will retrieve the IP address of the remote VPN device.

Domain Name  Enter the domain name as an ID (it cannot be a real domain name on the Internet).

IP + E-mail Addr.(USER FQDN) Authentication

IP address  Select this option if you know the static IP address of the remote VPN device at the other end of the tunnel, and then enter the IP address.

IP by DNS Resolved  Select this option if you do not know the static IP address of the remote VPN device but you do know its domain name. Then enter the remote VPN device’s domain name on the Internet. The Router will retrieve the IP address of the remote VPN device.

E-mail address  Enter the e-mail address as an ID. Dynamic IP + Domain Name(FQDN) Authentication

The Local Security Gateway will be a dynamic IP address, so you do not need to enter the IP address. When the Remote Security Gateway requests to create a tunnel with the Router, the Router will work as a responder.

The domain name must match the Local Gateway of the remote VPN device and can only be used for one tunnel connection.

DomainName  Enterthedomainnameforauthentication. (Once used, you cannot use it again to create a new tunnel connection.)

Dynamic IP + E-mail Addr.(USER FQDN) Authentication

The Remote Security Gateway will be a dynamic IP address, so you do not need to enter the IP address. When the Remote Security Gateway requests to create a tunnel with the Router, the Router will work as a responder.

E-mail address  Enter the e-mail address for authentication.

Remote Security Group Type

Select the Remote Security Group behind the Remote Gateway that can use this VPN tunnel. Select the type you want to use: IP, Subnet, or IP Range. Follow the instructions for the type you want to use.

NOTE: The Remote Security Group Type you select should match the Local Security Group Type selected on the VPN device at the other end of the tunnel.

After you have selected the Remote Security Group Type, the settings available on this screen may change, depending on which selection you have made.

IP

Only the computer with a specific IP address will be able to access the tunnel.

IP address  Enter the appropriate IP address.

4-Port SSL/IPSec VPN Router

37

Page 44 Page 46
Image 45
Page 44 Page 46
Contents Port SSL/IPSec VPN Router About This Guide About This GuideTable of Contents Ddns IPSec VPN Gateway to Gateway Appendix C Bandwidth Management Appendix D Active Directory ServerAppendix E User for the Active Directory Server Appendix I Gateway-to-Gateway VPN Tunnel Appendix J IPSec NAT TraversalAppendix L Multiple VLANs with Computers Appendix P Battery Replacement Appendix O Firmware UpgradeAppendix Q Specifications Appendix M Multiple VLANs and SubnetsChapter Introduction ChapterIntroduction Introduction to the RouterComputer using SSL VPN client software to VPN Router Product Overview Chapter Product OverviewFront Panel Back PanelChapter Installation InstallationPhysical Installation Cable Connection Advanced Configuration Chapter Advanced ConfigurationOverview Before You BeginClick Security Select Use SSL 2.0 and Use SSL How to Access the Web-Based UtilitySystem Information System SummaryFirewall Setting Status Network Setting StatusIPSec VPN Setting Status SSL VPN Setting StatusLAN Setting Setup Tab NetworkNetwork WAN Connection TypePPPoE Point-to-Point Protocol over Ethernet Static IPPptp Point-to-Point Tunneling Protocol Setup PasswordSetup DMZ Host Setup TimePassword TimeForwarding Setup Tab ForwardingPort Range Forwarding Port TriggeringUPnP Setup UPnPSetup One-to-One NAT Setup MAC CloneOne-to-One NAT Setup Advanced Routing Setup DdnsMAC Clone Advanced RoutingStatic Routing Dhcp SetupSetup Dynamic IPStatic IP Status Dhcp StatusDhcp Multiple VLANs Multiple VLANsDiagnostic System Management DiagnosticDhcp Inter-VLAN Routing Inter-VLAN RoutingFirmware Upgrade Factory DefaultSystem Management Restart Firmware DownloadExport Configuration File Import Configuration FileSystem Management Port Mirroring RestartBasic Per Port Config Port Management Port SetupPort Management Port Status Port StatusPort Setting Port Management Port SettingPort Management Create Vlan Create VlanQoS Bandwidth Management Vlan MembershipBandwidth Management Priority Rate ControlQoS Setup QoS QoS SetupQoS Mode Trust Mode Default CoSQoS Dscp Settings QoS Queue SettingsQueue Settings CoS SettingsFirewall General Dscp SettingsGeneral Dscp to QueueFirewall Access Rules Access RulesRestrict WEB Features Services Add a New Access RuleContent Filter Firewall Content FilterScheduling IP/MAC GroupForbidden Domains IPSec VPN SummaryWebsite Blocking by Keywords IP AddressIPSec VPN Gateway to Gateway Local Group SetupSummary Add a New TunnelRemote Group Setup Local Security Group TypeRemote Security Gateway Type Remote Security Group Type IKE with Preshared Key IPSec SetupAdvanced SSL VPN Summary IPSec VPN VPN Pass ThroughSSL VPN Certificate Management VPN Pass ThroughSSL VPN User Management Authentication TypeUser Management Edit GroupEdit User SSL VPN Virtual PassageSnmp Global Parameters Virtual PassageGlobal Parameters Snmp Group Profile Snmp ViewsViews Group ProfileSnmp Communities Snmp Group MembershipGroup Membership CommunitiesNotification Recipient Snmp Notification RecipientSystem Log Log System LogLog System Statistics Log SettingAlert Log General LogWizard Basic SetupPPPoE Obtain an IP automaticallyAccess Rule Setup Select the Service Logout SupportManual Linksys Web SiteLogout Appendix a Troubleshooting TroubleshootingAppendix a Appendix B Appendix B Virtual Passage SSL VPN ClientBefore You Begin Windows OS Click Trusted sites Make the SSL VPN Portal a Trusted Site Windows OSLogin for the SSL VPN Portal Windows OS Installation of the Virtual Passage Client Windows OSClick Continue Anyway When you right-click the icon, you have three optionsInstallation of the Virtual Passage Client Mac OS Login for the SSL VPN Portal Mac OSWindows Vista Usage Click Continue Removal of the Virtual Passage Client Mac OSInstallation of the Virtual Passage Client Linux OS Login for the SSL VPN Portal Linux OSBefore You Begin Linux OS Removal of the Virtual Passage Client Linux OS Appendix C Creation of New ServicesAppendix C Bandwidth Management Bandwidth ManagementCreation of New Bandwidth Management Rules Click Save SettingsAppendix D Appendix D Active Directory ServerActive Directory Server Select Domain in a new forest, and then click Next Enter a domain name, and then click Next Active Directory Server Troubleshooting Appendix E User for the Active Directory Server Appendix EUser for the Active Directory Server Appendix F Appendix F Internet Authentication Service IAS ServerInternet Authentication Service IAS Server Select Unencrypted authentication. Click Apply Click Finish Welcome to the New Connection Request Policy Wizard Click Edit Profile Click the User Management tab Appendix GAppendix H Select HTTPSTCP/443~443 from the Service drop- down menuAppendix H Deployment in an Existing Network LAN-to-LAN ConnectionWAN-to-LAN Connection Appendix Configuration of the RVL200Appendix Gateway-to-Gateway VPN Tunnel Click the Gateway to Gateway tabConfiguration of PC 1 and PC Configuration of the RV082RV082 RVL200 Dynamic IP B.B.B.B with Configuration when Both Gateways Use Dynamic IP Addresses Appendix Configuration of Router a Configuration of ScenarioAppendix J Appendix J IPSec NAT TraversalIPSec NAT Traversal Configuration of Router BOne-to-One NAT Rule on NAT 1 RV042 One-to-One NAT Rule on NAT 2 RV042Configuration of Router a RVL200-to-RV042 Configuration Configuration of MultipleAppendix K Appendix KRV042 #1 Configuration Click Save SettingClick the Advanced Routing tab RV042 #2 Configuration Appendix L RVL200-to-SRW2048 ConfigurationAppendix L Multiple VLANs with Computers Click the Port Management tabSRW2048 Configuration Select Enable VlanClick Save Settings Click the Vlan Membership tab Appendix M RVL200 ConfigurationAppendix M Multiple VLANsClick the Inter-VLAN Routing tab Inter-VLAN Routing OptionAppendix N Access of Multiple VLANsAppendix N Over a SSL VPN TunnelAppendix O Firmware Upgrade Firmware UpgradeAppendix O Click the Firmware Upgrade tab Upgrade the FirmwareBattery Replacement Appendix P Battery ReplacementReplace the Lithium Battery Appendix PAppendix Q Specifications SpecificationsAppendix Q Warranty Information Limited WarrantyAppendix R Regulatory Information Appendix SDansk Danish Miljøinformation for kunder i EU Port SSL/IPSec VPN Router 106 Norsk Norwegian Miljøinformasjon for kunder i EU Port SSL/IPSec VPN Router 108 Contact Information Appendix T
Top Page Image Contents