RV0xx Series Routers
ADMINISTRATION GUIDE
Cisco Small Business
RV042 Dual WAN VPN Router RV042G Gigabit Dual WAN VPN Router
2011-2012 Cisco Systems, Inc. All rights reserved
78-19576-01 B0
Chapter 1 Introduction
Chapter 3 Setup
Contents
Chapter 2 Viewing System Summary Information
Chapter 5 System Management
Contents
Chapter 4 DHCP
Chapter 6 Port Management
Chapter 9 VPN
Contents
RV0xx Series Router Features, page Mounting Options, page
RV0xx Series Router Features
Introduction
Connecting the Equipment, page15
Introduction
RV0xx Series Router Features
Cisco Small Business RV0xx Series Routers Administration Guide
RV042 and RV042G Ports
Port
Ports
Introduction
Description
Light
Status Lights
Introduction
Description
Reset
Other Hardware Features
Feature
To restart the router or restore
Placement Tips
Mounting Options
Default Settings
Desktop Placement
Suggested Hardware for RV042 and RV042G
Wall Mounting
Introduction
Suggested Hardware for RV082 and RV016
Mounting Options
Cisco Small Business RV0xx Series Routers Administration Guide
Introduction
Rack Mounting RV082 or RV016
RV042 and RV042G Internet Port
Connecting the Equipment
Introduction
RV082 Internet Port
Getting Started with the Configuration
Introduction
Troubleshooting Tips
Introduction
Saving the Settings, page19 Help, page19 Logout, page19
Features of the User Interface
Navigation, page18 Pop-Up Windows, page19 Setup Wizards, page
Navigation
Pop-Up Windows
Setup Wizards
Saving the Settings
Help
Firewall Setting Status, page VPN Setting Status, page
Viewing System Summary Information
Configuration, page Port Statistics, page WAN Status, page
Log Setting Status, page
System Information
Cisco ProtectLink Web
Viewing System Summary Information
Viewing System Summary Information
Configuration
Port Statistics
Port Information Window
Viewing System Summary Information
This window displays the following information
WAN Status
Viewing System Summary Information
WAN information
Log Setting Status
Firewall Setting Status
VPN Setting Status
Viewing System Summary Information
Changing the Administrator Username and Password, page
Setup
Setting Up the Network, page DMZ Setting, page
Setting the System Time, page Setting Up a DMZ Host, page
LAN Setting device IP address and subnets, page
Setting Up the Network
Setup
WAN Setting Internet connection, page DMZ Setting, page
IP Mode
LAN Setting device IP address and subnets
Setup
Changing the device IP address, page
Setup
Enabling multiple subnets IPv4 only
Setup
STEP 3 In the pop-up window, add or edit entries as needed
WAN Setting Internet connection
Setup
DMZ Setting
Setup
Setup
Setting Up the Network
Cisco Small Business RV0xx Series Routers Administration Guide
Editing a WAN Connection
Editing a WAN Connection with IPv4 Addressing
Editing a WAN Connection with IPv6 Addressing
Subnet Mask IPv4 The subnet mask specified by your ISP
Page
Page
Editing a DMZ Connection
IPv4 IPv6
If you are using IPv6 addressing, enter the following information
Prefix Length Enter the prefix length. The default value is
Cisco Small Business RV0xx Series Routers Administration Guide
Changing the Administrator Username and Password
Setup
To open this page Click Setup Password in the navigation tree
Setup
Includes at least 8 characters Is not the same as the username
Setting the System Time
Setup
To open this page Click Setup Time in the navigation tree
Setting Up a DMZ Host
Setup
To open this page Click Setup DMZ Host in the navigation tree
Port Range Forwarding
Setting Up Port Forwarding and Port Triggering
Setup
Port Range Forwarding, page Port Triggering, page
Setup
Enable Check the box to enable this port range forwarding entry
Setup
Adding a service
Setup
Port Triggering
Setting Up Universal Plug and Play UPnP
Setup
To open this page Click Setup UPnP in the navigation tree
Setup
Setup
Adding a service
Setting Up One-to-One NAT
Setup
To open this page Click Setup One-to-One NAT in the navigation pane
Setup
Setting Up One-to-One NAT
Cloning a MAC Address for the Router
Setup
Cloning a MAC Address for the Router
Editing the MAC Address Clone Settings
Assigning a Dynamic DNS Host Name to a WAN Interface
To open this page Click Setup Dynamic DNS in the navigation tree
Editing the Dynamic DNS Setup
Setting Up Advanced Routing
Configuring Dynamic Routing, page Configuring Static Routing, page
Configuring Dynamic Routing
Dynamic Routing for IPv4
data None, RIPv1, RIPv2 - Broadcast, or RIPv2 - Multicast
Configuring Static Routing
Dynamic Routing for IPv6
Prefix Length Pv6 only Enter the prefix length
Setting Up Advanced Routing
Cisco Small Business RV0xx Series Routers Administration Guide
IPv6 Transition
To open this page Click Setup IPv6 Transition in the navigation tree
to Go From Here.”
Setting Up the DHCP Server or DHCP Relay, page
Setting Up the DHCP Server or DHCP Relay
DHCP
Viewing the DHCP Status Information, page
To open this page Click DHCP DHCP Setup in the navigation tree
DHCP
Enabling DHCP Server and DHCP Relay
DNS used for DHCP Server only
DHCP
Dynamic IP used for DHCP Server only
WINS used for DHCP Server, IPv4 Only
About Static IP Addresses for IPv4 Only
Using the Static IP List to Block Devices, page
DHCP
Assigning static IP addresses by adding devices from a list, page
DHCP
Assigning static IP addresses by entering devices manually
Using the Static IP List to Block Devices
DHCP
DHCP
DNS Local Database
Client Table
Viewing the DHCP Status Information
DHCP Server
DHCP
Router Advertisement IPv6
DHCP
Router Advertisement IPv6
DHCP
RA Flags Choose whether or not hosts can use DHCPv6 to obtain addresses and other information. The options are described below
Setting Up Dual WAN and Multi-WAN Connections, page
Setting Up Dual WAN and Multi-WAN Connections
System Management
Managing the Bandwidth Settings, page Setting Up SNMP, page
Mode - Cisco RV042, RV042G, and RV082
System Management
Mode - Cisco RV016
System Management
Interface Setting
System Management
Editing the Dual WAN and Multi-WAN Settings
Network Service Detection
Max Bandwidth Provided by ISP
Protocol Binding for Cisco RV016 only, when Load Balancer is selected
Adding a service
Cisco Small Business RV0xx Series Routers Administration Guide
Bandwidth Management Type
Managing the Bandwidth Settings
Max Bandwidth Provided by ISP
Appendix F, “Bandwidth Management.”
Priority for Priority management only Choose the priority for this
Adding a service
Setting Up SNMP
Setting Up SNMP
Enabling Device Discovery with Bonjour
Cisco Small Business RV0xx Series Routers Administration Guide
Enabling Device Discovery with Bonjour
Using Built-In Diagnostic Tools
DNS Name Lookup
Ping
Restoring the Factory Default Settings
Restoring the Factory Default Settings
Upgrading the Firmware
Restarting the Router
Restoring the Settings from a Configuration File, page
Backing Up and Restoring the Settings
Restoring the Settings from a Configuration File
Backing Up Configuration Files and Mirror Files, page
Backing Up Configuration Files and Mirror Files
Copying a Startup File or Mirror File
STEP 3 Close the Download Complete window
To copy a file, click the button
Configuring the Port Settings, page
Configuring the Port Settings
Port Management
Viewing the Status Information for a Port, page
Port Management
Viewing the Status Information for a Port
Summary
Port Management
Statistics
Port Management
Configuring the General Firewall Settings, page
Configuring the General Firewall Settings
Firewall
Managing Access Rules, page Configuring Firewall Access Rules, page
Configuring the General Firewall Settings
Firewall
Restrict Web Features
Firewall
Don’t block Java/ActiveX/Cookies/Proxy to Trusted Domains If you blocked any of the web features, you can check this box to allow these features for the domains that you enter on the trusted list. This area of the page is available only if you checked one of the other boxes to disable a web feature. If you leave the box unchecked, then the selected web features are blocked for all websites
Firewall
About Access Rules, page103 Managing Access Rules, page
Configuring Firewall Access Rules
About Access Rules
Configuring Access Rules, page
Managing Access Rules
Firewall
To delete all custom rules Click Restore to Default Rules
Firewall
Configuring Access Rules
Services IPv4 and IPv6
Schedule IPv4 Only
Adding a service
Cisco Small Business RV0xx Series Routers Administration Guide
Schedule, page
Using Content Filters to Control Internet Access
Forbidden Domains, page Website Blocking by Keywords, page
Web.”
Using Content Filters to Control Internet Access
Forbidden Domains
Website Blocking by Keywords
Schedule
Specifying the Global Settings for Approved URLs and Clients, page
Cisco ProtectLink Web
Getting Started with Cisco ProtectLink Web
Getting Started with Cisco ProtectLink Web, page
Cisco ProtectLink Web
Choose the appropriate option
Specifying the Global Settings for Approved URLs and Clients
Specifying the Global Settings for Approved URLs and Clients
Cisco ProtectLink Web
Approved URLs and Approved Clients
Approved URL Configuration
Approved Clients Configuration
Cisco ProtectLink Web
Enabling Web Protection for URL Filtering
Web Protection
Cisco ProtectLink Web
URL Filtering
Cisco ProtectLink Web
Business Hour Setting
Web Reputation
Cisco ProtectLink Web
Updating the ProtectLink License
URL Overflow Control
Cisco ProtectLink Web
License
License Information
Cisco ProtectLink Web
Setting Up VPN Passthrough, page Setting Up PPTP Server, page
Introduction to VPNs
Setting Up a Gateway to Gateway Site to Site VPN, page
Remote Access Client To Gateway, page
Site to Site VPN Gateway To Gateway
Remote Access Client To Gateway
Configuration tasks
Gateway-to-Gateway VPN Tunnel Between RV0xx Series Routers.”
NOTE Consider two other remote access options Remote Access with Cisco
QuickVPN, page125 and Remote Access with PPTP, page125
Remote Access with Cisco QuickVPN
Remote Access with PPTP
Viewing the Summary Information for VPN
Summary
To open this page Click VPN Summary in the navigation tree
Tunnel Status
Up a Remote Access Tunnel for VPN Clients Client To Gateway, page
GroupVPN Status
VPN Clients Status
Setting Up a Gateway to Gateway Site to Site VPN
Setting Up a Gateway to Gateway Site to Site VPN
Local Group Setup and Remote Group Setup
Add a New Tunnel
IP + Domain Name FQDN Authentication Choose this option if this router has a static IP address and a registered domain name, such as MyServer.MyDomain.com. Also enter the Domain Name to use for authentication. The domain name can be used only for one tunnel connection
IPSec Setup
Preshared Key, page 135 and Advanced settings for IKE with
Preshared Key, page
Required fields for Manual mode
Phase 1 / Phase 2 Authentication Select a method of authentication
Required fields for IKE with Preshared Key
Advanced settings for IKE with Preshared Key
AH Hash Algorithm The AH Authentication Header protocol describes the packet format and default standards for packet structure. With the use of AH as the security protocol, protection is extended forward into the IP header to verify the integrity of the entire packet. Check the box to use this feature. Then select an authentication method MD5 or SHA1. MD5 produces a 128-bit digest to authenticate packet data. SHA1 produces a 160-bit digest to authenticate packet data. Both sides of the tunnel should use the same algorithm
Page
Cisco Small Business RV0xx Series Routers Administration Guide
Setting Up a Remote Access Tunnel for VPN Clients Client To Gateway
Setting Up a Remote Access Tunnel for VPN Clients Client To Gateway
RV0xx
Add a New Tunnel
DNS hostname available from providers such as DynDNS.com. Enter a Domain Name to use for authentication. The domain name can be used only for one tunnel connection
Remote Client Setup for a Group “Group VPN” Type
IPSec Setup
Required fields for Manual mode Enter the settings for manual mode
Phase 1 / Phase 2 Authentication Select a method of authentication
Required fields for IKE with Preshared Key
Aggressive Mode available for Tunnel, not Group VPN Two modes of
Page
Managing VPN Users and Certificates
To open this page Click VPN VPN Client Access in the navigation tree
Users, page Certificate Management, page148
Users
Certificate Management
Setting Up VPN Passthrough
To open this page Click VPN VPN Passthrough in the navigation tree
Setting Up PPTP Server
Setting Up PPTP Server
IP Address Range
PPTP Server
To open this page Click VPN PPTP Server in the navigation tree
Connection List
Setting Up the System Log and Alerts, page
Setting Up the System Log and Alerts
Logging System Statistics
Viewing the System Log, page
E-mail section
Log Setting, page Buttons, page
Syslog section
Logging System Statistics
Log Setting
Logging System Statistics
Buttons
Logging System Statistics
Viewing the System Log
Logging System Statistics
To open this page click Log System Statistics in the navigation tree
Logging System Statistics
Received Bytes The number of bytes received through this interface
Wizard
Basic Setup, page Access Rule Setup, page160
Wizard on the System Summary page
Basic Setup
Access Rule Setup
Wizard
Glossary
Term
Definition
Definition
Glossary
Term
Fragmentation Threshold
Definition
Glossary
Term
RADVD Router
Definition
Glossary
Term
RIPng RIP next generation
Troubleshooting
Troubleshooting
The DSL telephone line does not fit into the router’s Internet port
The router does not have a coaxial port for the cable connection
Cisco QuickVPN Client Installation and Configuration, page
Cisco QuickVPN for Windows
Introduction
Using the Cisco QuickVPN Software, page
Cisco QuickVPN Client Installation and Configuration
Using the Cisco QuickVPN Software
Cisco QuickVPN for Windows
Cisco QuickVPN for Windows
STEP 3 To save this profile, click Save
Overview, page Topology Options, page
Topology Options
Configuring a VPN Tunnel on a Cisco RV0xx Series Router, page
Other Design Considerations, page
VPN Hub and Spoke Topology
Figure 1 Hub and Spoke
VPN Mesh Topology
Figure 2 Mesh
Other Design Considerations
Figure 3 Gateway To Gateway Tunnel with Static IP Addresses
LAN Setup
Figure 4 Gateway To Gateway Tunnel with a Dynamic IP Address
Configuring a VPN Tunnel on a Cisco RV0xx Series Router
Example Sites with Static WAN IP Addresses
Field
Value
Field
Value
Field
Field
Value
Values
Values
Example Site with a Dynamic WAN IP Address
Field
Field
Field
Value
Field
Field
Value
Values
Field
Values
IPSec NAT Traversal
Overview
Configuration of Router A
IPSec NAT Traversal
Configuration of Router B
IPSec NAT Traversal
Creation of New Services, page
Creation of New Services
Bandwidth Management
STEP 4 On the Bandwidth Management page, click Service Management
Creation of New Bandwidth Management Rules
Bandwidth Management
Bandwidth Management
STEP 5 Click Save
Specifications
RV042
Specifications
Network
RV042G
Specifications
5.12 x 1.52 x 7.87 in. W x H x D 130 x 38.5 x 200 mm
Security
Specifications
Performance
Network
Specifications
Management
Environmental
Cisco RV082
Specifications
Cisco RV082
Specifications
Management
Cisco RV016
Specifications
Cisco RV016
Specifications
Security
Network
Specifications
Management
Environmental
Product Documentation
Where to Go From Here
Support
Cisco Small Business