Manuals / Cisco Systems / Computer Equipment / Network Router

Cisco Systems RVS4000RF manual Local Group Setup, Remote Group Setup, Name Fqdn Authentication

Models: RVS4000RF

1 195

Download 195 pages 32.44 Kb

Page 61

Setting Up and Configuring the Router	5
Setting Up and Configuring the Router
VPN

Select Tunnel Entry To create a new tunnel, select new. To configure an existing tunnel, select it from the drop-down menu.

Delete Click this button to delete all settings for the selected tunnel.

Summary Clicking this button shows the settings and status of all enabled tunnels.

IPSec VPN Tunnel Check the Enable option to enable this tunnel.

Tunnel Name Enter a name for this tunnel, such as “Anaheim Office”.

Local Group Setup

Local Security Gateway Type This has two settings, IP Only and IP + Domain

Name (FQDN) Authentication.

•IP Only With this setting, the IP Address field automatically displays the router’s WAN IP address.

•IP + Domain Name (FQDN) Authentication With this setting, the IP Address field automatically displays the WAN IP address and domain name for greater security. Enter an arbitrary domain name in the Domain Name field.

Local Security Group Type Select the local LAN user(s) behind the router that can use this VPN tunnel. This may be a single IP address or Sub-network. Notice that the Local Security Group Type must match the other router’s Remote Security Group Type.

IP Address Enter the IP address on the local network.

Subnet Mask If the Local Security Group Type is set to Subnet, enter the mask to determine the IP addresses on the local network.

Remote Group Setup

Remote Security Gateway Type Select either IP Only or IP + Domain Name (FQDN) Authentication. The setting should match the Local Security Gateway Type for the VPN device at the other end of the tunnel.

•IP Only Choose this option to specify the remote device that can access the tunnel. Then either select IP Address from the drop-down menu and enter the remote gateway’s WAN IP address in the IP Address field, or select IP by DNS Resolved from the drop-down menu and enter the remote gateway’s domain name in the Domain Name field.

•IP + Domain Name (FQDN) Authentication Choose this option to include the IP address and a domain name for greater security. Enter an arbitrary

Cisco RVS4000 Security Router with VPN Administrator Guide

61

Image 61

Cisco Systems RVS4000RF manual Local Group Setup, Remote Group Setup, Name Fqdn Authentication

Contents

Administration Guide Cisco Systems, Inc. All rights reserved OL-22605-02 Introduction Networking and Security Basics Setting Up and Configuring the RouterPlanning Your Virtual Private Network VPN Getting Started with the RVS4000 RouterVPN Appendix a Troubleshooting 116 Using the VPN Setup WizardAppendix F Specifications 190 Appendix E Cisco ProtectLink Web Service 182Appendix D Gateway-to-Gateway VPN Tunnel 166 Windows 2000 or Windows XP RVS4000Appendix G Where to Go From Here 194 Introduction An Introduction to LANs Networking and Security BasicsUse of IP Addresses Configuring the RouterNetworking and Security Basics Intrusion Prevention System IPS IPS Scenarios Why do I need a VPN?, What is a VPN?, Why do I need a VPN?Data Sniffing MAC Address SpoofingMan in the middle attacks Planning Your Virtual Private Network VPNWhat is a VPN? VPN Router to VPN Router VPN Router to VPN RouterComputer to VPN Router Tunnel Front Panel Front PanelGetting Started with the RVS4000 Router Back PanelBack Panel Desktop Option Placement OptionsStand Option Wall Option Installing the Router Configuring the Router Setting Up and Configuring the Router Setting Up and Configuring the Router Setup Summary SetupLogin Window System Information Setup SummaryPort Statistics Firewall Setting Status Network Setting StatusIPSec VPN Setting Status Log Setting StatusAutomatic Configuration Dhcp Setup WANInternet Connection Type Static IP Static IPPPPoE PPPoEPptp Heart Beat Signal Heart Beat SignalL2TP Setting Up and Configuring the Router Optional Settings Optional Settings Required by some ISPsClick Save Setup LAN Setup LANIPv4 Server Settings DhcpStatic IP Mapping Setup DMZIPv6 DHCPv6Setup DMZ Setup MAC Address CloneSetup MAC Address Clone Operating Mode Setup Advanced RoutingSetup Advanced Routing Dynamic RoutingInter-VLAN Routing Static RoutingSetup Time Setup TimeEnable option Setup IP Mode Setup IP ModeFirewall Basic Settings Firewall Basic SettingsFirewall Setting Up and Configuring the Router Firewall IP Based ACL Firewall IP Based ACLEditing IP ACL Rules Editing IP ACL RulesSetting Up and Configuring the Router Firewall Internet Access Policy Firewall Internet Access PolicyInternet Policy Summary List of PCs Setting Up and Configuring the Router Firewall Single Port Forwarding Firewall Single Port ForwardingFirewall Port Range Forwarding Firewall Port Range ForwardingFirewall Port Range Triggering Firewall Port Range TriggeringProtectLink ProtectLink Purchase ProtectLinkProtectLink ProtectLink Purchase Tunnel Status VPN SummaryVPN Summary VPN Clients Status VPN IPSec VPN VPN IPSec VPNRemote Group Setup Local Group SetupName Fqdn Authentication Phase IPSec SetupStatus VPN VPN Client Accounts VPN VPN Client AccountsCertificate Management VPN Client List TableVPN VPN Passthrough VPN VPN PassthroughQoS Bandwidth Management QoSQoS Bandwidth Management Rate Control Bandwidth Management Type BandwidthRate Control QoS Bandwidth Management Priority PriorityCoS Setup QoS QoS SetupQoS QoS Setup QoS Dscp Setup QoS Dscp SetupAdministration Management AdministrationRouter Access Administration ManagementUPnP Log Setting Administration LogAdministration Log Log Levels Severity Name DescriptionEmail Alerts Administration Diagnostics Administration DiagnosticsSyslog Local LogPing Test Parameters Cable DiagnosticsTraceroute Test Parameters Restore Configuration Administration Backup & RestoreAdministration Backup & Restore Administration Factory Default Administration Factory DefaultAdministration Firmware Upgrade Administration RebootAdministration Reboot Administration Firmware UpgradeClick the Small Business Router Firmware link Click Start to UpgradeIPS Configuration IPS ConfigurationAnomaly Detection Instant Messenger Peer to PeerPeer To Peer Attacker IPS ReportAttack Category IPS Report L2 Switch Create Vlan L2 SwitchIPS Information IPS InformationDelete Selected Vlan L2 Switch Create VlanL2 Switch Vlan Port Setting L2 Switch Vlan Port SettingL2 Switch Vlan Membership L2 Switch Vlan MembershipL2 Switch Radius L2 Switch RadiusL2 Switch Port Setting L2 Switch Port SettingL2 Switch Statistics L2 Switch StatisticsStatistics Overview L2 Switch Port Mirroring L2 Switch Port MirroringL2 Switch Rstp L2 Switch RstpStatus Gateway StatusInternet Connection Status GatewayStatus Gateway IP Conntrack IP ConntrackStatus Local Network Status Local NetworkBefore You Begin VPN Setup WizardUsing the VPN Setup Wizard Running the VPN Setup WizardClick Firewall Basic Settings \VPN Setup Wizard.exeWelcome Window Informational Window Build VPN Connection Remotely Configure VPN Tunnel Check Router Configuration Vpnc Summary Window Summary WindowConfigure the Router Test the Connection Test Results Exit the WizardBuilding Your VPN Connection Remotely Configure VPN Tunnel Window Check Router Configuration Summary Window Configure the Router Test the Connection View Test Results Need to set a static IP address on a PC TroubleshootingWindows XP TroubleshootingWindows XP Want to test my Internet connectionTroubleshooting Troubleshooting Application Start and End Protocol IP Address Enable Need to set up a server behind my routerConfigure as many entries as you like Can’t get an Internet game, server, or application to work Go to Setup DMZNeed to upgrade the firmware To start over, I need to set the router to factory defaultFirmware upgrade failed Follow the instructions in Administration Firmware Upgrade,Click the Router Firmware Rescue Utility link My DSL service’s PPPoE is always disconnectingNeed to use port triggering Troubleshooting Where is the router installed on the network? Frequently Asked QuestionsIs IPSec Passthrough supported by the router? Does the router support IPX or AppleTalk?Does the router support ICQ send file? What is Network Address Translation and what is it used for?How can I be notified of new router firmware upgrades? If all else fails in the installation, what can I do?How can I block corrupted FTP downloads? Will the router function in a Macintosh environment? What is DMZ Hosting?Is the router cross-platform compatible? How many ports can be simultaneously forwarded?How can I check whether I have static or Dhcp IP addresses? Which modems are compatible with the router?How do I get mIRC to work with the router? Click the VPN VPN Client Accounts OverviewClick Add/Save Using Cisco QuickVPN for Windows 2000, XP, or VistaVPN Client Accounts Window Installing from the CD-ROM Installing the Cisco QuickVPN SoftwareLicense Agreement Copying Files Finished Installing Files Downloading and Installing from the Internet Using the Cisco QuickVPN SoftwareQuickVPN Login QuickVPN Status Connect Virtual Private Connection Distributing Certificates to QuickVPN UsersSelect VPN VPN Client Accounts \Program Files\Cisco\QuickVPN Client\ Introduction Configuring IPSec with a Windows 2000 or XP ComputerConfiguring IPSec with a Windows 2000 or XP Computer How to Establish a Secure IPSec TunnelEnvironment Windows 2000 or Windows XPEstablishing a Secure IPSec Tunnel Local Security SettingsRules Tab Filter List 1 win routerIP Filter List IP Filter List TabFilters Properties New Rules Properties Filter List 2 router winConfiguring IPSec with a Windows 2000 or XP Computer New Rule Properties Tunnel 1 win-Router Filter Action Tab Security Methods Tab Preshared Key Authentication Methods TabNew Preshared Key Tunnel Setting TabConnection Type Tab Tunnel 2 Router-winProperties Window Filter Action Tab Preshared Key New Preshared Key Connection Type Tab Local Computer Click VPN IPSec VPN VPN IPSec VPN Configuring IPSec with a Windows 2000 or XP Computer Gateway-to-Gateway VPN Tunnel Gateway-to-Gateway VPN Tunnel RVS4000 IPSec VPN Settings Click the Gateway to Gateway tab RVS4000 IPSec Setup SettingsRV082 VPN Settings RV082 IPSec Setup Settings Click VPN IPSec VPN RVS4000 IPSec VPN Settings RVS4000 IPSec Setup Settings RV082 VPN Settings RV082 IPSec Setup Settings Configuration When Both Gateways Use Dynamic IP Addresses RVS4000 IPSec VPN Settings RVS4000 IPSec Setup Settings RV082 VPN Settings RV082 IPSec Setup Settings How to Access the Configuration Utility Cisco ProtectLink Web ServiceCisco ProtectLink Web Service How to Purchase, Register, or Activate the ServiceProtectLink ProtectLink Inactive ProtectLink Web Protection How to Use the ServiceProtectLink Active ProtectLink Web Protection Fri Web ProtectionApproved URLs License ProtectLink LicenseProtectLink License Setup/Config SpecificationsPerformance Specifications Security FeaturesManagement QoSRouting NetworkLayer Environmental Support Product ResourcesProduct Documentation Cisco Small BusinessRelated Documentation Where to Go From Here