Vpn | Cisco Systems RV320K9NA, RV325K9NA specs

8	VPN
	VPN
	Gateway to Gateway

•Perfect Forward Secrecy—When Perfect Forward Secrecy (PFS) is enabled, IKE Phase 2 negotiation generates new key material for IP traffic encryption and authentication, so hackers using brute force to break encryption keys will not be able to obtain future IPsec keys. Check the box to enable this feature, or uncheck the box to disable this feature. This feature is recommended.

•Preshared Key—Preshared key to use to authenticate the remote IKE peer. You can enter up to 30 keyboard characters or hexadecimal values, such as My_@123 or 4d795f40313233 (' ' " \ are not supported). Both ends of the VPN tunnel must use the same Preshared Key. It is strongly recommended that you change the Preshared Key periodically to maximize VPN security.

•Minimum Preshared Key Complexity—Check the Enable box to enable the Preshared Key Strength Meter.

•Preshared Key Strength Meter—When you enable Minimum Preshared Key Complexity, this meter indicates the preshared key strength. As you enter a preshared key, colored bars appear. The scale goes from red (weak) to yellow (acceptable) to green (strong).

TIP Enter a complex preshared key that includes more than eight characters, upper- and lowercase letters, numbers, and symbols such as -*^+=.

88	Cisco Small Business RV320/RV325 Administration Guide

Image 88

Cisco Systems RV320K9NA, RV325K9NA manual Vpn

Contents

Administration Guide 78-20928-02 Getting Started SetupSystem Summary Contents DhcpSystem Management Port Management VPN FirewallCertificate Management 101 Contents Log 107 SSL VPN 111Wizard 117 User Management 119 Using the Getting Started Window Getting Started Features of the User Interface Troubleshooting TipsNavigation Pop-Up Windows Help Logout Getting Started System Summary System Information Port Activity Configuration WizardPort Information detail WAN Information IPv4 and IPv6DMZ Information VPN Setting Status Security Status SSL VPN Status Log Setting StatusPptp Tunnels Available-PPTP tunnels available Log Setting Status Setup Network IP Mode Adding or Editing an IPv4 Network WAN1 or WAN2 Port SettingsEditing the IPv6 Address Prefix Obtain an IP Automatically WAN Connection Settings appearsLAN Prefix Assignment Static IP Subnet Mask IPv4-Subnetwork mask PPPoE Setup Transparent Bridge IPv4 Stateless Address Autoconfiguration IPv6 IPv6 in IPv4 Tunnel IPv6 6to4 Tunnel IPv6 6rd Configuration Mode IPv6 Rapid Deployment 6rd Tunnel IPv6 USB1 or USB2 Port Settings 3G/4G Connection Setting Failover and Recovery Setup DMZ Enable Password To change the username or password Choose SetupPassword Time DMZ Host Configuring Port ForwardingPort Forwarding Adding or Editing a Service Name Click Setup Forwarding Configuring Port TriggeringDeleting a Table Entry To open this page, select Setup Port Address Translation Port Address Translation Setting Up One-to-One NAT Adding or Editing a Service Name MAC Address Cloning Assigning Dynamic DNS to a WAN Interface Configuring IPv4 Dynamic Routing Configuring Dynamic RoutingAdvanced Routing Configuring IPv6 Dynamic Routing Configuring Static RoutingPrefix Length IPv6 only-IPv6 prefix length Click Enable Inbound Load Balance Inbound Load Balance USB Device Update Dhcp Configuring Dhcp for IPv4 Dhcp SetupChoose Vlan or Option Configuring Dhcp for IPv6 Enter the IPv6 Address Enter the Prefix Length Viewing the Dhcp Status Option MAC Address IPv4 only-MAC address of a client Bind IP Addresses by Discovery IP and MAC BindingBind IP Addresses Manually DNS Local Database Using the Static IP List to Block DevicesEdit or Delete Bound Entries Router Advertisement IPv6 Add, Edit, or Delete Local DNS Entries Lifetime Dhcp Dual WAN Connections Max Bandwidth Provided by ISP Network Service Detection System Management Adding or Editing a Service Bandwidth Management Configure Priority Interface-Interface that supports the serviceMaximum Bandwidth Provided by ISP Bandwidth Management Type Configuring Snmp Snmp Configuring SNMPv3 Discovery-Bonjour Lldp Properties Using Diagnostics Factory Default Language Selection or Language Setup Firmware UpgradeNavigate to System Management Language Selection Restart Navigate to System Management Language SetupEnter the New Language Name Backup and Restore Restoring the Settings from a Configuration FileBacking Up Configuration Files and Mirror Files System Management Restart Configuration Backing Up the Firmware to a USB Flash Drive Sanitizing the ConfigurationCopying the Mirror File to the Startup File System Management Configuring the Ports Port Management Port Status Port Management Traffic Statistics Vlan Membership QoSCoS/DSCP Setting Dscp Marking 802.1X Configuration Enter the Radius Secret Port Management Enabling Firewall Features General Access Rules Configuring Trusted Domain Names Adding an Access Rule to the IPv6 Access Rule Table Adding an Access Rule to the IPv4 Access Rule TableSelect Log packets matching this rule or No Log Content Filter Blocking Forbidden DomainsSelect Block Forbidden Domains Blocking Website Keywords Select Accept Allowed Domains Accepting Allowed DomainsScheduling Firewall VPN Summary VPN Group VPN Status Connection Table Gateway to Gateway Add a New Tunnel Local Group Setup Keying Mode = Manual or IKE with Preshared Key Keying Mode = IKE with Certificate Remote Group Setup IPSec Setup VPN VPN VPN Client to Gateway Configure Tunnel or Group VPN Interface-WAN port Configuring Easy VPN Local Group Setup Remote Client Setup for Single User VPN IPSec Setup VPN VPN VPN Passthrough Pptp Server Certificate Management My Certificate Exporting or Displaying a Certificate or Private Key Importing a 3rd-party or Self-signed Certificate Trusted SSL Certificate Trusted IPsec Certificate Certificate Generator CSR Authorization Key Encryption Length-Length of the key 106 Configuring the System Log Servers Configuring the System Log Send SMSSystem Log Configure email Notification Log Configure the Logs Processes System StatisticsAdditional Information Log Buttons SSL VPN Status Group Management Delete a Group Add or Edit a Group Internet Services Microsoft Terminal Resource Management Remote Desktop Advanced Setting Basic Setup Access Rule Setup Wizard User Management User Management Where to Go From Here Revised June 24 78-20928-02