Keying Mode = IKE with Certificate | Cisco Systems RV325K9NA

VPN	8
VPN
Gateway to Gateway

-Dynamic IP + E-mail Addr.(USER FQDN) Authentication—This router has a dynamic IP address and does not have a Dynamic DNS hostname. Enter an Email Address to use for authentication.

If both routers have dynamic IP addresses (as with PPPoE connections), do not choose Dynamic IP + Email Addr. for both gateways. For the remote gateway, choose IP Address and IP Address by DNS Resolved.

Keying Mode = IKE with Certificate

•Local Security Gateway Type—LAN resources that can use this tunnel. The only option is IP + Certificate.

-IP Address—Displays the WAN IP address of the device.

•Local Certificate—Certificates available in the Certificate Management > My Certificate window. Select the certificate from the drop-down menu.

Self-Generatordisplays the Certificate Generator window. Import Certificate displays the My Certificate window.

•Local Security Group Type—Allows selection of a single IP address, a Subnet, or an IP (address) Range within a subnet.

-IP Address—Specify one device that can use this tunnel. Enter the IP Address of the device.

-Subnet—Allow all devices on a subnet to use the VPN tunnel. Enter the subnetwork IP Address and Subnet Mask.

-Begin IP and End IP (IP Range)—A range of devices that can use the VPN tunnel. Enter the first IP address in Begin IP and the end IP address in End IP.

Cisco Small Business RV320/RV325 Administration Guide

85

Image 85

Cisco Systems RV325K9NA, RV320K9NA manual Keying Mode = IKE with Certificate

Contents

Administration Guide 78-20928-02 Getting Started SetupSystem Summary Dhcp ContentsSystem Management Port Management VPN FirewallCertificate Management 101 SSL VPN 111 Contents Log 107Wizard 117 User Management 119 Getting Started Using the Getting Started Window Troubleshooting Tips Features of the User InterfaceNavigation Pop-Up Windows Logout Help Getting Started System Information System Summary Port Activity Configuration WizardPort Information detail WAN Information IPv4 and IPv6DMZ Information Security Status VPN Setting Status SSL VPN Status Log Setting StatusPptp Tunnels Available-PPTP tunnels available Log Setting Status IP Mode Setup Network Adding or Editing an IPv4 Network WAN1 or WAN2 Port SettingsEditing the IPv6 Address Prefix Obtain an IP Automatically WAN Connection Settings appearsLAN Prefix Assignment Subnet Mask IPv4-Subnetwork mask Static IP PPPoE Setup Transparent Bridge IPv4 Stateless Address Autoconfiguration IPv6 IPv6 in IPv4 Tunnel IPv6 6to4 Tunnel IPv6 IPv6 Rapid Deployment 6rd Tunnel IPv6 6rd Configuration Mode 3G/4G Connection USB1 or USB2 Port Settings Setting Failover and Recovery Setup Password DMZ Enable To change the username or password Choose SetupPassword Time DMZ Host Configuring Port ForwardingPort Forwarding Adding or Editing a Service Name Click Setup Forwarding Configuring Port TriggeringDeleting a Table Entry Port Address Translation To open this page, select Setup Port Address Translation Adding or Editing a Service Name Setting Up One-to-One NAT MAC Address Cloning Assigning Dynamic DNS to a WAN Interface Configuring IPv4 Dynamic Routing Configuring Dynamic RoutingAdvanced Routing Configuring IPv6 Dynamic Routing Configuring Static RoutingPrefix Length IPv6 only-IPv6 prefix length Inbound Load Balance Click Enable Inbound Load Balance USB Device Update Dhcp Configuring Dhcp for IPv4 Dhcp SetupChoose Vlan or Option Enter the IPv6 Address Enter the Prefix Length Configuring Dhcp for IPv6 Viewing the Dhcp Status MAC Address IPv4 only-MAC address of a client Option Bind IP Addresses by Discovery IP and MAC BindingBind IP Addresses Manually DNS Local Database Using the Static IP List to Block DevicesEdit or Delete Bound Entries Add, Edit, or Delete Local DNS Entries Router Advertisement IPv6 Lifetime Dhcp Max Bandwidth Provided by ISP Dual WAN Connections System Management Network Service Detection Bandwidth Management Adding or Editing a Service Interface-Interface that supports the service Configure PriorityMaximum Bandwidth Provided by ISP Bandwidth Management Type Snmp Configuring Snmp Configuring SNMPv3 Discovery-Bonjour Lldp Properties Factory Default Using Diagnostics Language Selection or Language Setup Firmware UpgradeNavigate to System Management Language Selection Restart Navigate to System Management Language SetupEnter the New Language Name Restoring the Settings from a Configuration File Backup and RestoreBacking Up Configuration Files and Mirror Files System Management Restart Configuration Backing Up the Firmware to a USB Flash Drive Sanitizing the ConfigurationCopying the Mirror File to the Startup File System Management Port Management Configuring the Ports Port Management Port Status Vlan Membership Traffic Statistics Dscp Marking QoSCoS/DSCP Setting Enter the Radius Secret 802.1X Configuration Port Management General Enabling Firewall Features Configuring Trusted Domain Names Access Rules Adding an Access Rule to the IPv6 Access Rule Table Adding an Access Rule to the IPv4 Access Rule TableSelect Log packets matching this rule or No Log Blocking Forbidden Domains Content FilterSelect Block Forbidden Domains Blocking Website Keywords Select Accept Allowed Domains Accepting Allowed DomainsScheduling Firewall Summary VPN Group VPN Status Connection Table VPN Add a New Tunnel Gateway to Gateway Keying Mode = Manual or IKE with Preshared Key Local Group Setup Keying Mode = IKE with Certificate Remote Group Setup IPSec Setup VPN VPN VPN Client to Gateway Interface-WAN port Configure Tunnel or Group VPN Configuring Easy VPN Local Group Setup Remote Client Setup for Single User VPN IPSec Setup VPN VPN Pptp Server VPN Passthrough My Certificate Certificate Management Importing a 3rd-party or Self-signed Certificate Exporting or Displaying a Certificate or Private Key Trusted IPsec Certificate Trusted SSL Certificate Certificate Generator Key Encryption Length-Length of the key CSR Authorization 106 Configuring the System Log Servers Configuring the System Log Send SMSSystem Log Log Configure email Notification Configure the Logs Processes System StatisticsAdditional Information Log Buttons SSL VPN Group Management Status Add or Edit a Group Delete a Group Microsoft Terminal Internet Services Remote Desktop Resource Management Advanced Setting Access Rule Setup Basic Setup Wizard User Management User Management Where to Go From Here Revised June 24 78-20928-02