RV042 Dual WAN VPN Router RV042G Gigabit Dual WAN VPN Router
ADMINISTRATION GUIDE
Cisco Small Business
RV0xx Series Routers
78-19576-01 B0
2011-2012 Cisco Systems, Inc. All rights reserved
Chapter 2 Viewing System Summary Information
Chapter 3 Setup
Contents
Chapter 1 Introduction
Chapter 6 Port Management
Contents
Chapter 4 DHCP
Chapter 5 System Management
Chapter 9 VPN
Contents
Connecting the Equipment, page15
RV0xx Series Router Features
Introduction
RV0xx Series Router Features, page Mounting Options, page
RV042 and RV042G Ports
RV0xx Series Router Features
Cisco Small Business RV0xx Series Routers Administration Guide
Introduction
Description
Ports
Introduction
Port
Description
Status Lights
Introduction
Light
To restart the router or restore
Other Hardware Features
Feature
Reset
Desktop Placement
Mounting Options
Default Settings
Placement Tips
Suggested Hardware for RV082 and RV016
Wall Mounting
Introduction
Suggested Hardware for RV042 and RV042G
Rack Mounting RV082 or RV016
Cisco Small Business RV0xx Series Routers Administration Guide
Introduction
Mounting Options
RV082 Internet Port
Connecting the Equipment
Introduction
RV042 and RV042G Internet Port
Introduction
Getting Started with the Configuration
Introduction
Troubleshooting Tips
Navigation
Features of the User Interface
Navigation, page18 Pop-Up Windows, page19 Setup Wizards, page
Saving the Settings, page19 Help, page19 Logout, page19
Help
Setup Wizards
Saving the Settings
Pop-Up Windows
Log Setting Status, page
Viewing System Summary Information
Configuration, page Port Statistics, page WAN Status, page
Firewall Setting Status, page VPN Setting Status, page
Viewing System Summary Information
System Information
Cisco ProtectLink Web
Port Information Window
Configuration
Port Statistics
Viewing System Summary Information
This window displays the following information
Viewing System Summary Information
WAN information
WAN Status
Viewing System Summary Information
Viewing System Summary Information
Firewall Setting Status
VPN Setting Status
Log Setting Status
Setting the System Time, page Setting Up a DMZ Host, page
Setup
Setting Up the Network, page DMZ Setting, page
Changing the Administrator Username and Password, page
WAN Setting Internet connection, page DMZ Setting, page
Setting Up the Network
Setup
LAN Setting device IP address and subnets, page
Changing the device IP address, page
LAN Setting device IP address and subnets
Setup
IP Mode
Enabling multiple subnets IPv4 only
Setup
STEP 3 In the pop-up window, add or edit entries as needed
Setup
Setup
WAN Setting Internet connection
Setup
DMZ Setting
Cisco Small Business RV0xx Series Routers Administration Guide
Setup
Setting Up the Network
Editing a WAN Connection with IPv6 Addressing
Editing a WAN Connection
Editing a WAN Connection with IPv4 Addressing
Subnet Mask IPv4 The subnet mask specified by your ISP
Page
Page
IPv4 IPv6
Editing a DMZ Connection
Cisco Small Business RV0xx Series Routers Administration Guide
If you are using IPv6 addressing, enter the following information
Prefix Length Enter the prefix length. The default value is
To open this page Click Setup Password in the navigation tree
Changing the Administrator Username and Password
Setup
Includes at least 8 characters Is not the same as the username
Setup
To open this page Click Setup Time in the navigation tree
Setting the System Time
Setup
To open this page Click Setup DMZ Host in the navigation tree
Setting Up a DMZ Host
Setup
Port Range Forwarding, page Port Triggering, page
Setting Up Port Forwarding and Port Triggering
Setup
Port Range Forwarding
Enable Check the box to enable this port range forwarding entry
Setup
Adding a service
Setup
Port Triggering
Setup
To open this page Click Setup UPnP in the navigation tree
Setting Up Universal Plug and Play UPnP
Setup
Setup
Adding a service
Setup
To open this page Click Setup One-to-One NAT in the navigation pane
Setting Up One-to-One NAT
Setup
Setting Up One-to-One NAT
Setup
Cloning a MAC Address for the Router
Cloning a MAC Address for the Router
Setup
Editing the MAC Address Clone Settings
To open this page Click Setup Dynamic DNS in the navigation tree
Assigning a Dynamic DNS Host Name to a WAN Interface
Editing the Dynamic DNS Setup
Configuring Dynamic Routing, page Configuring Static Routing, page
Setting Up Advanced Routing
data None, RIPv1, RIPv2 - Broadcast, or RIPv2 - Multicast
Configuring Dynamic Routing
Dynamic Routing for IPv4
Prefix Length Pv6 only Enter the prefix length
Configuring Static Routing
Dynamic Routing for IPv6
Cisco Small Business RV0xx Series Routers Administration Guide
Setting Up Advanced Routing
To open this page Click Setup IPv6 Transition in the navigation tree
IPv6 Transition
to Go From Here.”
Viewing the DHCP Status Information, page
Setting Up the DHCP Server or DHCP Relay
DHCP
Setting Up the DHCP Server or DHCP Relay, page
Enabling DHCP Server and DHCP Relay
To open this page Click DHCP DHCP Setup in the navigation tree
DHCP
WINS used for DHCP Server, IPv4 Only
DHCP
Dynamic IP used for DHCP Server only
DNS used for DHCP Server only
Assigning static IP addresses by adding devices from a list, page
Using the Static IP List to Block Devices, page
DHCP
About Static IP Addresses for IPv4 Only
Assigning static IP addresses by entering devices manually
DHCP
DHCP
Using the Static IP List to Block Devices
DNS Local Database
DHCP
DHCP
Viewing the DHCP Status Information
DHCP Server
Client Table
Router Advertisement IPv6
Router Advertisement IPv6
DHCP
RA Flags Choose whether or not hosts can use DHCPv6 to obtain addresses and other information. The options are described below
DHCP
Managing the Bandwidth Settings, page Setting Up SNMP, page
Setting Up Dual WAN and Multi-WAN Connections
System Management
Setting Up Dual WAN and Multi-WAN Connections, page
System Management
Mode - Cisco RV042, RV042G, and RV082
System Management
Mode - Cisco RV016
System Management
Interface Setting
Max Bandwidth Provided by ISP
Editing the Dual WAN and Multi-WAN Settings
Network Service Detection
Protocol Binding for Cisco RV016 only, when Load Balancer is selected
Adding a service
Cisco Small Business RV0xx Series Routers Administration Guide
Appendix F, “Bandwidth Management.”
Managing the Bandwidth Settings
Max Bandwidth Provided by ISP
Bandwidth Management Type
Priority for Priority management only Choose the priority for this
Adding a service
Setting Up SNMP
Setting Up SNMP
Enabling Device Discovery with Bonjour
Enabling Device Discovery with Bonjour
Cisco Small Business RV0xx Series Routers Administration Guide
DNS Name Lookup
Using Built-In Diagnostic Tools
Ping
Restoring the Factory Default Settings
Restoring the Factory Default Settings
Upgrading the Firmware
Restarting the Router
Backing Up Configuration Files and Mirror Files, page
Backing Up and Restoring the Settings
Restoring the Settings from a Configuration File
Restoring the Settings from a Configuration File, page
STEP 3 Close the Download Complete window
Backing Up Configuration Files and Mirror Files
Copying a Startup File or Mirror File
To copy a file, click the button
Viewing the Status Information for a Port, page
Configuring the Port Settings
Port Management
Configuring the Port Settings, page
Port Management
Port Management
Viewing the Status Information for a Port
Summary
Port Management
Statistics
Managing Access Rules, page Configuring Firewall Access Rules, page
Configuring the General Firewall Settings
Firewall
Configuring the General Firewall Settings, page
Firewall
Configuring the General Firewall Settings
Firewall
Restrict Web Features
Firewall
Don’t block Java/ActiveX/Cookies/Proxy to Trusted Domains If you blocked any of the web features, you can check this box to allow these features for the domains that you enter on the trusted list. This area of the page is available only if you checked one of the other boxes to disable a web feature. If you leave the box unchecked, then the selected web features are blocked for all websites
Configuring Access Rules, page
Configuring Firewall Access Rules
About Access Rules
About Access Rules, page103 Managing Access Rules, page
Firewall
Managing Access Rules
Firewall
To delete all custom rules Click Restore to Default Rules
Services IPv4 and IPv6
Configuring Access Rules
Schedule IPv4 Only
Adding a service
Cisco Small Business RV0xx Series Routers Administration Guide
Web.”
Using Content Filters to Control Internet Access
Forbidden Domains, page Website Blocking by Keywords, page
Schedule, page
Website Blocking by Keywords
Using Content Filters to Control Internet Access
Forbidden Domains
Schedule
Getting Started with Cisco ProtectLink Web, page
Cisco ProtectLink Web
Getting Started with Cisco ProtectLink Web
Specifying the Global Settings for Approved URLs and Clients, page
Choose the appropriate option
Cisco ProtectLink Web
Cisco ProtectLink Web
Specifying the Global Settings for Approved URLs and Clients
Specifying the Global Settings for Approved URLs and Clients
Cisco ProtectLink Web
Approved URL Configuration
Approved Clients Configuration
Approved URLs and Approved Clients
Cisco ProtectLink Web
Enabling Web Protection for URL Filtering
Web Protection
Cisco ProtectLink Web
URL Filtering
Cisco ProtectLink Web
Business Hour Setting
Web Reputation
Cisco ProtectLink Web
Updating the ProtectLink License
URL Overflow Control
Cisco ProtectLink Web
License
License Information
Remote Access Client To Gateway, page
Introduction to VPNs
Setting Up a Gateway to Gateway Site to Site VPN, page
Setting Up VPN Passthrough, page Setting Up PPTP Server, page
Gateway-to-Gateway VPN Tunnel Between RV0xx Series Routers.”
Remote Access Client To Gateway
Configuration tasks
Site to Site VPN Gateway To Gateway
QuickVPN, page125 and Remote Access with PPTP, page125
NOTE Consider two other remote access options Remote Access with Cisco
Remote Access with PPTP
Remote Access with Cisco QuickVPN
To open this page Click VPN Summary in the navigation tree
Viewing the Summary Information for VPN
Summary
Tunnel Status
GroupVPN Status
Up a Remote Access Tunnel for VPN Clients Client To Gateway, page
VPN Clients Status
Setting Up a Gateway to Gateway Site to Site VPN
Setting Up a Gateway to Gateway Site to Site VPN
Add a New Tunnel
Local Group Setup and Remote Group Setup
IP + Domain Name FQDN Authentication Choose this option if this router has a static IP address and a registered domain name, such as MyServer.MyDomain.com. Also enter the Domain Name to use for authentication. The domain name can be used only for one tunnel connection
IPSec Setup
Required fields for Manual mode
Preshared Key, page 135 and Advanced settings for IKE with
Preshared Key, page
Required fields for IKE with Preshared Key
Phase 1 / Phase 2 Authentication Select a method of authentication
Advanced settings for IKE with Preshared Key
AH Hash Algorithm The AH Authentication Header protocol describes the packet format and default standards for packet structure. With the use of AH as the security protocol, protection is extended forward into the IP header to verify the integrity of the entire packet. Check the box to use this feature. Then select an authentication method MD5 or SHA1. MD5 produces a 128-bit digest to authenticate packet data. SHA1 produces a 160-bit digest to authenticate packet data. Both sides of the tunnel should use the same algorithm
Page
RV0xx
Setting Up a Remote Access Tunnel for VPN Clients Client To Gateway
Setting Up a Remote Access Tunnel for VPN Clients Client To Gateway
Cisco Small Business RV0xx Series Routers Administration Guide
Add a New Tunnel
DNS hostname available from providers such as DynDNS.com. Enter a Domain Name to use for authentication. The domain name can be used only for one tunnel connection
Remote Client Setup for a Group “Group VPN” Type
Required fields for Manual mode Enter the settings for manual mode
IPSec Setup
Required fields for IKE with Preshared Key
Phase 1 / Phase 2 Authentication Select a method of authentication
Aggressive Mode available for Tunnel, not Group VPN Two modes of
Page
Users, page Certificate Management, page148
Managing VPN Users and Certificates
To open this page Click VPN VPN Client Access in the navigation tree
Certificate Management
Users
To open this page Click VPN VPN Passthrough in the navigation tree
Setting Up VPN Passthrough
Setting Up PPTP Server
Setting Up PPTP Server
To open this page Click VPN PPTP Server in the navigation tree
IP Address Range
PPTP Server
Connection List
Viewing the System Log, page
Setting Up the System Log and Alerts
Logging System Statistics
Setting Up the System Log and Alerts, page
Logging System Statistics
Log Setting, page Buttons, page
Syslog section
E-mail section
Logging System Statistics
Log Setting
Logging System Statistics
Buttons
To open this page click Log System Statistics in the navigation tree
Viewing the System Log
Logging System Statistics
Received Bytes The number of bytes received through this interface
Logging System Statistics
Wizard on the System Summary page
Wizard
Basic Setup, page Access Rule Setup, page160
Wizard
Basic Setup
Access Rule Setup
Definition
Glossary
Term
Fragmentation Threshold
Glossary
Term
Definition
RADVD Router
Glossary
Term
Definition
RIPng RIP next generation
Glossary
Term
Definition
Troubleshooting
The router does not have a coaxial port for the cable connection
Troubleshooting
The DSL telephone line does not fit into the router’s Internet port
Using the Cisco QuickVPN Software, page
Cisco QuickVPN for Windows
Introduction
Cisco QuickVPN Client Installation and Configuration, page
Cisco QuickVPN for Windows
Cisco QuickVPN Client Installation and Configuration
Using the Cisco QuickVPN Software
STEP 3 To save this profile, click Save
Cisco QuickVPN for Windows
Other Design Considerations, page
Topology Options
Configuring a VPN Tunnel on a Cisco RV0xx Series Router, page
Overview, page Topology Options, page
Figure 1 Hub and Spoke
VPN Hub and Spoke Topology
Figure 2 Mesh
VPN Mesh Topology
Figure 3 Gateway To Gateway Tunnel with Static IP Addresses
Other Design Considerations
Figure 4 Gateway To Gateway Tunnel with a Dynamic IP Address
LAN Setup
Configuring a VPN Tunnel on a Cisco RV0xx Series Router
Value
Example Sites with Static WAN IP Addresses
Field
Value
Field
Values
Field
Value
Field
Field
Example Site with a Dynamic WAN IP Address
Field
Values
Value
Field
Values
Field
Value
Field
Values
Field
Overview
IPSec NAT Traversal
IPSec NAT Traversal
Configuration of Router A
IPSec NAT Traversal
Configuration of Router B
STEP 4 On the Bandwidth Management page, click Service Management
Creation of New Services
Bandwidth Management
Creation of New Services, page
Bandwidth Management
Creation of New Bandwidth Management Rules
STEP 5 Click Save
Bandwidth Management
RV042
Specifications
Network
Specifications
5.12 x 1.52 x 7.87 in. W x H x D 130 x 38.5 x 200 mm
RV042G
Specifications
Network
Specifications
Performance
Security
Environmental
Specifications
Management
Cisco RV082
Cisco RV082
Specifications
Management
Specifications
Cisco RV016
Cisco RV016
Specifications
Network
Specifications
Security
Environmental
Specifications
Management
Cisco Small Business
Where to Go From Here
Support
Product Documentation