Cisco Small Business
ADMINISTRATION GUIDE
RV0xx Series Routers
RV042 Dual WAN VPN Router RV042G Gigabit Dual WAN VPN Router
78-19576-01 B0
2011-2012 Cisco Systems, Inc. All rights reserved
Contents
Chapter 3 Setup
Chapter 1 Introduction
Chapter 2 Viewing System Summary Information
Chapter 4 DHCP
Contents
Chapter 5 System Management
Chapter 6 Port Management
Chapter 9 VPN
Contents
Introduction
RV0xx Series Router Features
RV0xx Series Router Features, page Mounting Options, page
Connecting the Equipment, page15
Cisco Small Business RV0xx Series Routers Administration Guide
RV0xx Series Router Features
Introduction
RV042 and RV042G Ports
Introduction
Ports
Port
Description
Introduction
Status Lights
Light
Description
Feature
Other Hardware Features
Reset
To restart the router or restore
Default Settings
Mounting Options
Placement Tips
Desktop Placement
Introduction
Wall Mounting
Suggested Hardware for RV042 and RV042G
Suggested Hardware for RV082 and RV016
Introduction
Cisco Small Business RV0xx Series Routers Administration Guide
Mounting Options
Rack Mounting RV082 or RV016
Introduction
Connecting the Equipment
RV042 and RV042G Internet Port
RV082 Internet Port
Introduction
Getting Started with the Configuration
Introduction
Troubleshooting Tips
Navigation, page18 Pop-Up Windows, page19 Setup Wizards, page
Features of the User Interface
Saving the Settings, page19 Help, page19 Logout, page19
Navigation
Saving the Settings
Setup Wizards
Pop-Up Windows
Help
Configuration, page Port Statistics, page WAN Status, page
Viewing System Summary Information
Firewall Setting Status, page VPN Setting Status, page
Log Setting Status, page
System Information
Cisco ProtectLink Web
Viewing System Summary Information
Port Statistics
Configuration
Viewing System Summary Information
Port Information Window
This window displays the following information
Viewing System Summary Information
WAN Status
Viewing System Summary Information
WAN information
VPN Setting Status
Firewall Setting Status
Log Setting Status
Viewing System Summary Information
Setting Up the Network, page DMZ Setting, page
Setup
Changing the Administrator Username and Password, page
Setting the System Time, page Setting Up a DMZ Host, page
Setup
Setting Up the Network
LAN Setting device IP address and subnets, page
WAN Setting Internet connection, page DMZ Setting, page
Setup
LAN Setting device IP address and subnets
IP Mode
Changing the device IP address, page
Enabling multiple subnets IPv4 only
Setup
STEP 3 In the pop-up window, add or edit entries as needed
Setup
Setup
WAN Setting Internet connection
Setup
DMZ Setting
Setup
Setting Up the Network
Cisco Small Business RV0xx Series Routers Administration Guide
Editing a WAN Connection
Editing a WAN Connection with IPv4 Addressing
Editing a WAN Connection with IPv6 Addressing
Subnet Mask IPv4 The subnet mask specified by your ISP
Page
Page
IPv4 IPv6
Editing a DMZ Connection
If you are using IPv6 addressing, enter the following information
Prefix Length Enter the prefix length. The default value is
Cisco Small Business RV0xx Series Routers Administration Guide
Changing the Administrator Username and Password
Setup
To open this page Click Setup Password in the navigation tree
Includes at least 8 characters Is not the same as the username
Setup
Setting the System Time
Setup
To open this page Click Setup Time in the navigation tree
Setting Up a DMZ Host
Setup
To open this page Click Setup DMZ Host in the navigation tree
Setup
Setting Up Port Forwarding and Port Triggering
Port Range Forwarding
Port Range Forwarding, page Port Triggering, page
Enable Check the box to enable this port range forwarding entry
Setup
Adding a service
Setup
Port Triggering
Setup
Setting Up Universal Plug and Play UPnP
Setup
To open this page Click Setup UPnP in the navigation tree
Setup
Adding a service
Setup
Setting Up One-to-One NAT
Setup
To open this page Click Setup One-to-One NAT in the navigation pane
Setting Up One-to-One NAT
Setup
Cloning a MAC Address for the Router
Setup
Cloning a MAC Address for the Router
Editing the MAC Address Clone Settings
To open this page Click Setup Dynamic DNS in the navigation tree
Assigning a Dynamic DNS Host Name to a WAN Interface
Editing the Dynamic DNS Setup
Configuring Dynamic Routing, page Configuring Static Routing, page
Setting Up Advanced Routing
Configuring Dynamic Routing
Dynamic Routing for IPv4
data None, RIPv1, RIPv2 - Broadcast, or RIPv2 - Multicast
Configuring Static Routing
Dynamic Routing for IPv6
Prefix Length Pv6 only Enter the prefix length
Cisco Small Business RV0xx Series Routers Administration Guide
Setting Up Advanced Routing
To open this page Click Setup IPv6 Transition in the navigation tree
IPv6 Transition
to Go From Here.”
DHCP
Setting Up the DHCP Server or DHCP Relay
Setting Up the DHCP Server or DHCP Relay, page
Viewing the DHCP Status Information, page
To open this page Click DHCP DHCP Setup in the navigation tree
DHCP
Enabling DHCP Server and DHCP Relay
Dynamic IP used for DHCP Server only
DHCP
DNS used for DHCP Server only
WINS used for DHCP Server, IPv4 Only
DHCP
Using the Static IP List to Block Devices, page
About Static IP Addresses for IPv4 Only
Assigning static IP addresses by adding devices from a list, page
Assigning static IP addresses by entering devices manually
DHCP
DHCP
Using the Static IP List to Block Devices
DNS Local Database
DHCP
DHCP Server
Viewing the DHCP Status Information
Client Table
DHCP
Router Advertisement IPv6
DHCP
Router Advertisement IPv6
RA Flags Choose whether or not hosts can use DHCPv6 to obtain addresses and other information. The options are described below
DHCP
System Management
Setting Up Dual WAN and Multi-WAN Connections
Setting Up Dual WAN and Multi-WAN Connections, page
Managing the Bandwidth Settings, page Setting Up SNMP, page
System Management
Mode - Cisco RV042, RV042G, and RV082
System Management
Mode - Cisco RV016
System Management
Interface Setting
Editing the Dual WAN and Multi-WAN Settings
Network Service Detection
Max Bandwidth Provided by ISP
Protocol Binding for Cisco RV016 only, when Load Balancer is selected
Adding a service
Cisco Small Business RV0xx Series Routers Administration Guide
Max Bandwidth Provided by ISP
Managing the Bandwidth Settings
Bandwidth Management Type
Appendix F, “Bandwidth Management.”
Priority for Priority management only Choose the priority for this
Adding a service
Setting Up SNMP
Setting Up SNMP
Enabling Device Discovery with Bonjour
Enabling Device Discovery with Bonjour
Cisco Small Business RV0xx Series Routers Administration Guide
DNS Name Lookup
Using Built-In Diagnostic Tools
Ping
Restoring the Factory Default Settings
Restoring the Factory Default Settings
Upgrading the Firmware
Restarting the Router
Restoring the Settings from a Configuration File
Backing Up and Restoring the Settings
Restoring the Settings from a Configuration File, page
Backing Up Configuration Files and Mirror Files, page
Backing Up Configuration Files and Mirror Files
Copying a Startup File or Mirror File
STEP 3 Close the Download Complete window
To copy a file, click the button
Port Management
Configuring the Port Settings
Configuring the Port Settings, page
Viewing the Status Information for a Port, page
Port Management
Viewing the Status Information for a Port
Summary
Port Management
Port Management
Statistics
Firewall
Configuring the General Firewall Settings
Configuring the General Firewall Settings, page
Managing Access Rules, page Configuring Firewall Access Rules, page
Firewall
Configuring the General Firewall Settings
Firewall
Restrict Web Features
Firewall
Don’t block Java/ActiveX/Cookies/Proxy to Trusted Domains If you blocked any of the web features, you can check this box to allow these features for the domains that you enter on the trusted list. This area of the page is available only if you checked one of the other boxes to disable a web feature. If you leave the box unchecked, then the selected web features are blocked for all websites
About Access Rules
Configuring Firewall Access Rules
About Access Rules, page103 Managing Access Rules, page
Configuring Access Rules, page
Firewall
Managing Access Rules
Firewall
To delete all custom rules Click Restore to Default Rules
Services IPv4 and IPv6
Configuring Access Rules
Schedule IPv4 Only
Adding a service
Cisco Small Business RV0xx Series Routers Administration Guide
Forbidden Domains, page Website Blocking by Keywords, page
Using Content Filters to Control Internet Access
Schedule, page
Web.”
Using Content Filters to Control Internet Access
Forbidden Domains
Website Blocking by Keywords
Schedule
Getting Started with Cisco ProtectLink Web
Cisco ProtectLink Web
Specifying the Global Settings for Approved URLs and Clients, page
Getting Started with Cisco ProtectLink Web, page
Choose the appropriate option
Cisco ProtectLink Web
Specifying the Global Settings for Approved URLs and Clients
Specifying the Global Settings for Approved URLs and Clients
Cisco ProtectLink Web
Approved Clients Configuration
Approved URL Configuration
Approved URLs and Approved Clients
Cisco ProtectLink Web
Enabling Web Protection for URL Filtering
Web Protection
Cisco ProtectLink Web
Cisco ProtectLink Web
URL Filtering
Business Hour Setting
Web Reputation
Cisco ProtectLink Web
Updating the ProtectLink License
URL Overflow Control
Cisco ProtectLink Web
License
License Information
Cisco ProtectLink Web
Setting Up a Gateway to Gateway Site to Site VPN, page
Introduction to VPNs
Setting Up VPN Passthrough, page Setting Up PPTP Server, page
Remote Access Client To Gateway, page
Configuration tasks
Remote Access Client To Gateway
Site to Site VPN Gateway To Gateway
Gateway-to-Gateway VPN Tunnel Between RV0xx Series Routers.”
QuickVPN, page125 and Remote Access with PPTP, page125
NOTE Consider two other remote access options Remote Access with Cisco
Remote Access with PPTP
Remote Access with Cisco QuickVPN
Viewing the Summary Information for VPN
Summary
To open this page Click VPN Summary in the navigation tree
Tunnel Status
GroupVPN Status
Up a Remote Access Tunnel for VPN Clients Client To Gateway, page
VPN Clients Status
Setting Up a Gateway to Gateway Site to Site VPN
Setting Up a Gateway to Gateway Site to Site VPN
Add a New Tunnel
Local Group Setup and Remote Group Setup
IP + Domain Name FQDN Authentication Choose this option if this router has a static IP address and a registered domain name, such as MyServer.MyDomain.com. Also enter the Domain Name to use for authentication. The domain name can be used only for one tunnel connection
IPSec Setup
Preshared Key, page 135 and Advanced settings for IKE with
Preshared Key, page
Required fields for Manual mode
Required fields for IKE with Preshared Key
Phase 1 / Phase 2 Authentication Select a method of authentication
Advanced settings for IKE with Preshared Key
AH Hash Algorithm The AH Authentication Header protocol describes the packet format and default standards for packet structure. With the use of AH as the security protocol, protection is extended forward into the IP header to verify the integrity of the entire packet. Check the box to use this feature. Then select an authentication method MD5 or SHA1. MD5 produces a 128-bit digest to authenticate packet data. SHA1 produces a 160-bit digest to authenticate packet data. Both sides of the tunnel should use the same algorithm
Page
Setting Up a Remote Access Tunnel for VPN Clients Client To Gateway
Setting Up a Remote Access Tunnel for VPN Clients Client To Gateway
Cisco Small Business RV0xx Series Routers Administration Guide
RV0xx
Add a New Tunnel
DNS hostname available from providers such as DynDNS.com. Enter a Domain Name to use for authentication. The domain name can be used only for one tunnel connection
Remote Client Setup for a Group “Group VPN” Type
Required fields for Manual mode Enter the settings for manual mode
IPSec Setup
Required fields for IKE with Preshared Key
Phase 1 / Phase 2 Authentication Select a method of authentication
Aggressive Mode available for Tunnel, not Group VPN Two modes of
Page
Managing VPN Users and Certificates
To open this page Click VPN VPN Client Access in the navigation tree
Users, page Certificate Management, page148
Certificate Management
Users
To open this page Click VPN VPN Passthrough in the navigation tree
Setting Up VPN Passthrough
Setting Up PPTP Server
Setting Up PPTP Server
IP Address Range
PPTP Server
To open this page Click VPN PPTP Server in the navigation tree
Connection List
Logging System Statistics
Setting Up the System Log and Alerts
Setting Up the System Log and Alerts, page
Viewing the System Log, page
Syslog section
Log Setting, page Buttons, page
E-mail section
Logging System Statistics
Logging System Statistics
Log Setting
Logging System Statistics
Buttons
Viewing the System Log
Logging System Statistics
To open this page click Log System Statistics in the navigation tree
Received Bytes The number of bytes received through this interface
Logging System Statistics
Wizard
Basic Setup, page Access Rule Setup, page160
Wizard on the System Summary page
Basic Setup
Access Rule Setup
Wizard
Glossary
Term
Definition
Term
Glossary
Definition
Fragmentation Threshold
Term
Glossary
Definition
RADVD Router
Term
Glossary
Definition
RIPng RIP next generation
Troubleshooting
Troubleshooting
The DSL telephone line does not fit into the router’s Internet port
The router does not have a coaxial port for the cable connection
Introduction
Cisco QuickVPN for Windows
Cisco QuickVPN Client Installation and Configuration, page
Using the Cisco QuickVPN Software, page
Cisco QuickVPN Client Installation and Configuration
Using the Cisco QuickVPN Software
Cisco QuickVPN for Windows
STEP 3 To save this profile, click Save
Cisco QuickVPN for Windows
Configuring a VPN Tunnel on a Cisco RV0xx Series Router, page
Topology Options
Overview, page Topology Options, page
Other Design Considerations, page
Figure 1 Hub and Spoke
VPN Hub and Spoke Topology
Figure 2 Mesh
VPN Mesh Topology
Figure 3 Gateway To Gateway Tunnel with Static IP Addresses
Other Design Considerations
Figure 4 Gateway To Gateway Tunnel with a Dynamic IP Address
LAN Setup
Configuring a VPN Tunnel on a Cisco RV0xx Series Router
Example Sites with Static WAN IP Addresses
Field
Value
Value
Field
Value
Field
Field
Values
Field
Example Site with a Dynamic WAN IP Address
Values
Field
Value
Field
Value
Field
Field
Values
Values
Field
Overview
IPSec NAT Traversal
IPSec NAT Traversal
Configuration of Router A
IPSec NAT Traversal
Configuration of Router B
Bandwidth Management
Creation of New Services
Creation of New Services, page
STEP 4 On the Bandwidth Management page, click Service Management
Bandwidth Management
Creation of New Bandwidth Management Rules
STEP 5 Click Save
Bandwidth Management
RV042
Specifications
Network
Specifications
RV042G
Specifications
5.12 x 1.52 x 7.87 in. W x H x D 130 x 38.5 x 200 mm
Performance
Specifications
Security
Network
Specifications
Management
Environmental
Cisco RV082
Specifications
Cisco RV082
Management
Specifications
Cisco RV016
Specifications
Cisco RV016
Specifications
Security
Network
Specifications
Management
Environmental
Support
Where to Go From Here
Product Documentation
Cisco Small Business