What is a VPN? | Cisco Systems RVS4000RF manual

Planning Your Virtual Private Network (VPN)	3
Planning Your Virtual Private Network (VPN)
What is a VPN?

What is a VPN?

A VPN, or Virtual Private Network, is a connection between two endpoints—a VPN router, for instance—in different networks that allows private data to be sent securely over a shared or public network, such as the Internet. This establishes a private network that can send data securely between these two locations or networks.

This is done by creating a “tunnel”. A VPN tunnel connects the two PCs or networks and allows data to be transmitted over the Internet as if it were still within those networks. Not a literal tunnel, it is a connection secured by encrypting the data sent between the two networks.

VPN was created as a cost-effective alternative to using a private, dedicated, leased line for a private network. Using industry standard encryption and authentication techniques—IPSec, short for IP Security—VPN creates a secure connection that, in effect, operates as if you were directly connected to your local network. You can use VPN to create a secure network that links a central office with branch offices, telecommuters, and/or professionals on the road (travelers can connect to a VPN router by using any computer with the Cisco QuickVPN Client software).

There are two basic ways to create a VPN connection:

•VPN router to VPN router

•Computer (using the Cisco QuickVPN Client software) to VPN router

The VPN router creates a “tunnel” or channel between two endpoints, so that data transmissions between them are secure. A computer with the Cisco QuickVPN Client software can be one of the two endpoints (refer to Appendix B, “Using Cisco QuickVPN for Windows 2000, XP, or Vista”). If you choose not to run the VPN client software, any computer with the built-in IPSec Security Manager (Microsoft 2000 and XP) allows the VPN router to create a VPN tunnel by using IPSec (refer to Appendix C, “Configuring IPSec with a Windows 2000 or XP Computer”). Other versions of Microsoft operating systems require additional, third-party VPN client software applications that support IPSec to be installed.

Cisco RVS4000 Security Router with VPN Administrator Guide

15

Image 15

Cisco Systems RVS4000RF manual What is a VPN?

Contents

Administration Guide Cisco Systems, Inc. All rights reserved OL-22605-02 Getting Started with the RVS4000 Router Setting Up and Configuring the RouterIntroduction Networking and Security Basics Planning Your Virtual Private Network VPN VPN Appendix a Troubleshooting 116 Using the VPN Setup Wizard Windows 2000 or Windows XP RVS4000 Appendix E Cisco ProtectLink Web Service 182Appendix F Specifications 190 Appendix D Gateway-to-Gateway VPN Tunnel 166 Appendix G Where to Go From Here 194 Introduction An Introduction to LANs Networking and Security Basics Configuring the Router Use of IP AddressesNetworking and Security Basics Intrusion Prevention System IPS IPS Scenarios Why do I need a VPN?, What is a VPN?, Why do I need a VPN? Planning Your Virtual Private Network VPN MAC Address SpoofingData Sniffing Man in the middle attacks What is a VPN? VPN Router to VPN Router VPN Router to VPN Router Computer to VPN Router Tunnel Front Panel Front Panel Back Panel Getting Started with the RVS4000 RouterBack Panel Placement Options Desktop OptionStand Option Wall Option Installing the Router Configuring the Router Setting Up and Configuring the Router Setting Up and Configuring the Router Setup Setup SummaryLogin Window Setup Summary System InformationPort Statistics Log Setting Status Network Setting StatusFirewall Setting Status IPSec VPN Setting Status Setup WAN Automatic Configuration DhcpInternet Connection Type Static IP Static IP PPPoE PPPoE Pptp Heart Beat Signal Heart Beat Signal L2TP Setting Up and Configuring the Router Optional Settings Optional Settings Required by some ISPs Click Save Setup LAN Setup LAN IPv4 Server Settings Dhcp DHCPv6 Setup DMZStatic IP Mapping IPv6 Setup MAC Address Clone Setup DMZSetup MAC Address Clone Dynamic Routing Setup Advanced RoutingOperating Mode Setup Advanced Routing Inter-VLAN Routing Static Routing Setup Time Setup TimeEnable option Setup IP Mode Setup IP Mode Firewall Basic Settings Firewall Basic SettingsFirewall Setting Up and Configuring the Router Firewall IP Based ACL Firewall IP Based ACL Editing IP ACL Rules Editing IP ACL Rules Setting Up and Configuring the Router Firewall Internet Access Policy Firewall Internet Access Policy Internet Policy Summary List of PCs Setting Up and Configuring the Router Firewall Single Port Forwarding Firewall Single Port Forwarding Firewall Port Range Forwarding Firewall Port Range Forwarding Firewall Port Range Triggering Firewall Port Range Triggering ProtectLink ProtectLink ProtectLink PurchaseProtectLink ProtectLink Purchase VPN Summary Tunnel StatusVPN Summary VPN Clients Status VPN IPSec VPN VPN IPSec VPN Local Group Setup Remote Group SetupName Fqdn Authentication Phase IPSec Setup Status VPN VPN Client Accounts VPN VPN Client Accounts Certificate Management VPN Client List Table VPN VPN Passthrough VPN VPN Passthrough QoS QoS Bandwidth ManagementQoS Bandwidth Management Rate Control Bandwidth Bandwidth Management TypeRate Control QoS Bandwidth Management Priority Priority QoS QoS Setup CoS SetupQoS QoS Setup QoS Dscp Setup QoS Dscp Setup Administration Management AdministrationAdministration Management Router Access UPnP Log Levels Severity Name Description Administration LogLog Setting Administration Log Email Alerts Local Log Administration DiagnosticsAdministration Diagnostics Syslog Cable Diagnostics Ping Test ParametersTraceroute Test Parameters Administration Backup & Restore Restore ConfigurationAdministration Backup & Restore Administration Factory Default Administration Factory Default Administration Firmware Upgrade Administration RebootAdministration Firmware Upgrade Administration Reboot Click the Small Business Router Firmware link Click Start to Upgrade IPS Configuration IPS ConfigurationAnomaly Detection Peer to Peer Instant MessengerPeer To Peer IPS Report AttackerAttack Category IPS Report IPS Information L2 SwitchL2 Switch Create Vlan IPS Information Delete Selected Vlan L2 Switch Create Vlan L2 Switch Vlan Port Setting L2 Switch Vlan Port Setting L2 Switch Vlan Membership L2 Switch Vlan Membership L2 Switch Radius L2 Switch Radius L2 Switch Port Setting L2 Switch Port Setting L2 Switch Statistics L2 Switch StatisticsStatistics Overview L2 Switch Port Mirroring L2 Switch Port Mirroring L2 Switch Rstp L2 Switch Rstp Status Gateway StatusStatus Gateway Internet Connection Status Gateway IP Conntrack IP Conntrack Status Local Network Status Local Network Before You Begin VPN Setup Wizard \VPN Setup Wizard.exe Running the VPN Setup WizardUsing the VPN Setup Wizard Click Firewall Basic Settings Welcome Window Informational Window Build VPN Connection Remotely Configure VPN Tunnel Check Router Configuration Vpnc Summary Window Summary Window Configure the Router Test the Connection Test Results Exit the Wizard Building Your VPN Connection Remotely Configure VPN Tunnel Window Check Router Configuration Summary Window Configure the Router Test the Connection View Test Results Need to set a static IP address on a PC Troubleshooting Windows XP Troubleshooting Windows XP Want to test my Internet connection Troubleshooting Troubleshooting Application Start and End Protocol IP Address Enable Need to set up a server behind my router Configure as many entries as you like Can’t get an Internet game, server, or application to work Go to Setup DMZ Follow the instructions in Administration Firmware Upgrade, To start over, I need to set the router to factory defaultNeed to upgrade the firmware Firmware upgrade failed Click the Router Firmware Rescue Utility link My DSL service’s PPPoE is always disconnecting Need to use port triggering Troubleshooting Does the router support IPX or AppleTalk? Frequently Asked QuestionsWhere is the router installed on the network? Is IPSec Passthrough supported by the router? Does the router support ICQ send file? What is Network Address Translation and what is it used for? If all else fails in the installation, what can I do? How can I be notified of new router firmware upgrades?How can I block corrupted FTP downloads? How many ports can be simultaneously forwarded? What is DMZ Hosting?Will the router function in a Macintosh environment? Is the router cross-platform compatible? Which modems are compatible with the router? How can I check whether I have static or Dhcp IP addresses?How do I get mIRC to work with the router? Click the VPN VPN Client Accounts Overview Using Cisco QuickVPN for Windows 2000, XP, or Vista Click Add/SaveVPN Client Accounts Window Installing the Cisco QuickVPN Software Installing from the CD-ROMLicense Agreement Copying Files Finished Installing Files Downloading and Installing from the Internet Using the Cisco QuickVPN Software QuickVPN Login QuickVPN Status Distributing Certificates to QuickVPN Users Connect Virtual Private ConnectionSelect VPN VPN Client Accounts \Program Files\Cisco\QuickVPN Client\ Introduction Configuring IPSec with a Windows 2000 or XP Computer Windows 2000 or Windows XP How to Establish a Secure IPSec TunnelConfiguring IPSec with a Windows 2000 or XP Computer Environment Establishing a Secure IPSec Tunnel Local Security Settings Rules Tab Filter List 1 win router IP Filter List IP Filter List Tab Filters Properties New Rules Properties Filter List 2 router win Configuring IPSec with a Windows 2000 or XP Computer New Rule Properties Tunnel 1 win-Router Filter Action Tab Security Methods Tab Preshared Key Authentication Methods Tab New Preshared Key Tunnel Setting Tab Connection Type Tab Tunnel 2 Router-win Properties Window Filter Action Tab Preshared Key New Preshared Key Connection Type Tab Local Computer Click VPN IPSec VPN VPN IPSec VPN Configuring IPSec with a Windows 2000 or XP Computer Gateway-to-Gateway VPN Tunnel Gateway-to-Gateway VPN Tunnel RVS4000 IPSec VPN Settings Click the Gateway to Gateway tab RVS4000 IPSec Setup Settings RV082 VPN Settings RV082 IPSec Setup Settings Click VPN IPSec VPN RVS4000 IPSec VPN Settings RVS4000 IPSec Setup Settings RV082 VPN Settings RV082 IPSec Setup Settings Configuration When Both Gateways Use Dynamic IP Addresses RVS4000 IPSec VPN Settings RVS4000 IPSec Setup Settings RV082 VPN Settings RV082 IPSec Setup Settings How to Access the Configuration Utility Cisco ProtectLink Web Service How to Purchase, Register, or Activate the Service Cisco ProtectLink Web ServiceProtectLink ProtectLink Inactive How to Use the Service ProtectLink Web ProtectionProtectLink Active ProtectLink Web Protection Fri Web Protection Approved URLs ProtectLink License LicenseProtectLink License Specifications Setup/ConfigPerformance QoS Security FeaturesSpecifications Management Network RoutingLayer Environmental Cisco Small Business Product ResourcesSupport Product Documentation Related Documentation Where to Go From Here