Local Group Setup, Remote Group Setup | Cisco Systems RVS4000RF

Setting Up and Configuring the Router	5
Setting Up and Configuring the Router
VPN

Select Tunnel Entry To create a new tunnel, select new. To configure an existing tunnel, select it from the drop-down menu.

Delete Click this button to delete all settings for the selected tunnel.

Summary Clicking this button shows the settings and status of all enabled tunnels.

IPSec VPN Tunnel Check the Enable option to enable this tunnel.

Tunnel Name Enter a name for this tunnel, such as “Anaheim Office”.

Local Group Setup

Local Security Gateway Type This has two settings, IP Only and IP + Domain

Name (FQDN) Authentication.

•IP Only With this setting, the IP Address field automatically displays the router’s WAN IP address.

•IP + Domain Name (FQDN) Authentication With this setting, the IP Address field automatically displays the WAN IP address and domain name for greater security. Enter an arbitrary domain name in the Domain Name field.

Local Security Group Type Select the local LAN user(s) behind the router that can use this VPN tunnel. This may be a single IP address or Sub-network. Notice that the Local Security Group Type must match the other router’s Remote Security Group Type.

IP Address Enter the IP address on the local network.

Subnet Mask If the Local Security Group Type is set to Subnet, enter the mask to determine the IP addresses on the local network.

Remote Group Setup

Remote Security Gateway Type Select either IP Only or IP + Domain Name (FQDN) Authentication. The setting should match the Local Security Gateway Type for the VPN device at the other end of the tunnel.

•IP Only Choose this option to specify the remote device that can access the tunnel. Then either select IP Address from the drop-down menu and enter the remote gateway’s WAN IP address in the IP Address field, or select IP by DNS Resolved from the drop-down menu and enter the remote gateway’s domain name in the Domain Name field.

•IP + Domain Name (FQDN) Authentication Choose this option to include the IP address and a domain name for greater security. Enter an arbitrary

Cisco RVS4000 Security Router with VPN Administrator Guide

61

Image 61

Cisco Systems RVS4000RF manual Local Group Setup, Remote Group Setup, Name Fqdn Authentication

Contents

Administration Guide Cisco Systems, Inc. All rights reserved OL-22605-02 Introduction Networking and Security Basics Setting Up and Configuring the RouterPlanning Your Virtual Private Network VPN Getting Started with the RVS4000 Router VPN Appendix a Troubleshooting 116 Using the VPN Setup Wizard Appendix F Specifications 190 Appendix E Cisco ProtectLink Web Service 182Appendix D Gateway-to-Gateway VPN Tunnel 166 Windows 2000 or Windows XP RVS4000 Appendix G Where to Go From Here 194 Introduction An Introduction to LANs Networking and Security Basics Use of IP Addresses Configuring the RouterNetworking and Security Basics Intrusion Prevention System IPS IPS Scenarios Why do I need a VPN?, What is a VPN?, Why do I need a VPN? Data Sniffing MAC Address SpoofingMan in the middle attacks Planning Your Virtual Private Network VPN What is a VPN? VPN Router to VPN Router VPN Router to VPN Router Computer to VPN Router Tunnel Front Panel Front Panel Getting Started with the RVS4000 Router Back PanelBack Panel Desktop Option Placement OptionsStand Option Wall Option Installing the Router Configuring the Router Setting Up and Configuring the Router Setting Up and Configuring the Router Setup Summary SetupLogin Window System Information Setup SummaryPort Statistics Firewall Setting Status Network Setting StatusIPSec VPN Setting Status Log Setting Status Automatic Configuration Dhcp Setup WANInternet Connection Type Static IP Static IP PPPoE PPPoE Pptp Heart Beat Signal Heart Beat Signal L2TP Setting Up and Configuring the Router Optional Settings Optional Settings Required by some ISPs Click Save Setup LAN Setup LAN IPv4 Server Settings Dhcp Static IP Mapping Setup DMZIPv6 DHCPv6 Setup DMZ Setup MAC Address CloneSetup MAC Address Clone Operating Mode Setup Advanced RoutingSetup Advanced Routing Dynamic Routing Inter-VLAN Routing Static Routing Setup Time Setup TimeEnable option Setup IP Mode Setup IP Mode Firewall Basic Settings Firewall Basic SettingsFirewall Setting Up and Configuring the Router Firewall IP Based ACL Firewall IP Based ACL Editing IP ACL Rules Editing IP ACL Rules Setting Up and Configuring the Router Firewall Internet Access Policy Firewall Internet Access Policy Internet Policy Summary List of PCs Setting Up and Configuring the Router Firewall Single Port Forwarding Firewall Single Port Forwarding Firewall Port Range Forwarding Firewall Port Range Forwarding Firewall Port Range Triggering Firewall Port Range Triggering ProtectLink ProtectLink Purchase ProtectLinkProtectLink ProtectLink Purchase Tunnel Status VPN SummaryVPN Summary VPN Clients Status VPN IPSec VPN VPN IPSec VPN Remote Group Setup Local Group SetupName Fqdn Authentication Phase IPSec Setup Status VPN VPN Client Accounts VPN VPN Client Accounts Certificate Management VPN Client List Table VPN VPN Passthrough VPN VPN Passthrough QoS Bandwidth Management QoSQoS Bandwidth Management Rate Control Bandwidth Management Type BandwidthRate Control QoS Bandwidth Management Priority Priority CoS Setup QoS QoS SetupQoS QoS Setup QoS Dscp Setup QoS Dscp Setup Administration Management AdministrationRouter Access Administration Management UPnP Log Setting Administration LogAdministration Log Log Levels Severity Name Description Email Alerts Administration Diagnostics Administration DiagnosticsSyslog Local Log Ping Test Parameters Cable DiagnosticsTraceroute Test Parameters Restore Configuration Administration Backup & RestoreAdministration Backup & Restore Administration Factory Default Administration Factory Default Administration Firmware Upgrade Administration RebootAdministration Reboot Administration Firmware Upgrade Click the Small Business Router Firmware link Click Start to Upgrade IPS Configuration IPS ConfigurationAnomaly Detection Instant Messenger Peer to PeerPeer To Peer Attacker IPS ReportAttack Category IPS Report L2 Switch Create Vlan L2 SwitchIPS Information IPS Information Delete Selected Vlan L2 Switch Create Vlan L2 Switch Vlan Port Setting L2 Switch Vlan Port Setting L2 Switch Vlan Membership L2 Switch Vlan Membership L2 Switch Radius L2 Switch Radius L2 Switch Port Setting L2 Switch Port Setting L2 Switch Statistics L2 Switch StatisticsStatistics Overview L2 Switch Port Mirroring L2 Switch Port Mirroring L2 Switch Rstp L2 Switch Rstp Status Gateway StatusInternet Connection Status Gateway Status Gateway IP Conntrack IP Conntrack Status Local Network Status Local Network Before You Begin VPN Setup Wizard Using the VPN Setup Wizard Running the VPN Setup WizardClick Firewall Basic Settings \VPN Setup Wizard.exe Welcome Window Informational Window Build VPN Connection Remotely Configure VPN Tunnel Check Router Configuration Vpnc Summary Window Summary Window Configure the Router Test the Connection Test Results Exit the Wizard Building Your VPN Connection Remotely Configure VPN Tunnel Window Check Router Configuration Summary Window Configure the Router Test the Connection View Test Results Need to set a static IP address on a PC Troubleshooting Windows XP Troubleshooting Windows XP Want to test my Internet connection Troubleshooting Troubleshooting Application Start and End Protocol IP Address Enable Need to set up a server behind my router Configure as many entries as you like Can’t get an Internet game, server, or application to work Go to Setup DMZ Need to upgrade the firmware To start over, I need to set the router to factory defaultFirmware upgrade failed Follow the instructions in Administration Firmware Upgrade, Click the Router Firmware Rescue Utility link My DSL service’s PPPoE is always disconnecting Need to use port triggering Troubleshooting Where is the router installed on the network? Frequently Asked QuestionsIs IPSec Passthrough supported by the router? Does the router support IPX or AppleTalk? Does the router support ICQ send file? What is Network Address Translation and what is it used for? How can I be notified of new router firmware upgrades? If all else fails in the installation, what can I do?How can I block corrupted FTP downloads? Will the router function in a Macintosh environment? What is DMZ Hosting?Is the router cross-platform compatible? How many ports can be simultaneously forwarded? How can I check whether I have static or Dhcp IP addresses? Which modems are compatible with the router?How do I get mIRC to work with the router? Click the VPN VPN Client Accounts Overview Click Add/Save Using Cisco QuickVPN for Windows 2000, XP, or VistaVPN Client Accounts Window Installing from the CD-ROM Installing the Cisco QuickVPN SoftwareLicense Agreement Copying Files Finished Installing Files Downloading and Installing from the Internet Using the Cisco QuickVPN Software QuickVPN Login QuickVPN Status Connect Virtual Private Connection Distributing Certificates to QuickVPN UsersSelect VPN VPN Client Accounts \Program Files\Cisco\QuickVPN Client\ Introduction Configuring IPSec with a Windows 2000 or XP Computer Configuring IPSec with a Windows 2000 or XP Computer How to Establish a Secure IPSec TunnelEnvironment Windows 2000 or Windows XP Establishing a Secure IPSec Tunnel Local Security Settings Rules Tab Filter List 1 win router IP Filter List IP Filter List Tab Filters Properties New Rules Properties Filter List 2 router win Configuring IPSec with a Windows 2000 or XP Computer New Rule Properties Tunnel 1 win-Router Filter Action Tab Security Methods Tab Preshared Key Authentication Methods Tab New Preshared Key Tunnel Setting Tab Connection Type Tab Tunnel 2 Router-win Properties Window Filter Action Tab Preshared Key New Preshared Key Connection Type Tab Local Computer Click VPN IPSec VPN VPN IPSec VPN Configuring IPSec with a Windows 2000 or XP Computer Gateway-to-Gateway VPN Tunnel Gateway-to-Gateway VPN Tunnel RVS4000 IPSec VPN Settings Click the Gateway to Gateway tab RVS4000 IPSec Setup Settings RV082 VPN Settings RV082 IPSec Setup Settings Click VPN IPSec VPN RVS4000 IPSec VPN Settings RVS4000 IPSec Setup Settings RV082 VPN Settings RV082 IPSec Setup Settings Configuration When Both Gateways Use Dynamic IP Addresses RVS4000 IPSec VPN Settings RVS4000 IPSec Setup Settings RV082 VPN Settings RV082 IPSec Setup Settings How to Access the Configuration Utility Cisco ProtectLink Web Service Cisco ProtectLink Web Service How to Purchase, Register, or Activate the ServiceProtectLink ProtectLink Inactive ProtectLink Web Protection How to Use the ServiceProtectLink Active ProtectLink Web Protection Fri Web Protection Approved URLs License ProtectLink LicenseProtectLink License Setup/Config SpecificationsPerformance Specifications Security FeaturesManagement QoS Routing NetworkLayer Environmental Support Product ResourcesProduct Documentation Cisco Small Business Related Documentation Where to Go From Here