Status | Cisco Systems RVS4000RF specs

Setting Up and Configuring the Router	5
Setting Up and Configuring the Router
VPN

•Encryption The Encryption method determines the length of the key used to encrypt/decrypt ESP packets. Only 3DES is supported. Note that both sides must use the same Encryption method.

•Authentication Authentication determines a method to authenticate the ESP packets. Either MD5 or SHA1 may be selected. Note that both sides (VPN endpoints) must use the same Authentication method.

•MD5 A one-way hashing algorithm that produces a 128-bit digest.

•SHA1 A one-way hashing algorithm that produces a 160-bit digest.

•Perfect Forward Secrecy If PFS is enabled, IKE Phase 2 negotiation generates a new key material for IP traffic encryption and authentication. Note that both sides must have this selected.

•Preshared Key IKE uses the Preshared Key field to authenticate the remote IKE peer. Both character and hexadecimal values are acceptable in this field; e.g., “My_@123” or “0x4d795f40313233”. Note that both sides must use the same Preshared Key.

•Group The Diffie-Hellman (DH) group to be used for key exchange. Select the 768-bit (Group 1), 1024-bit (Group 2), or 1536-bit (Group 5) algorithm. Group 5 provides the most security, Group 1 the least.

•Key Life Time This specifies the lifetime of the IKE-generated key. If the time expires, a new key is renegotiated automatically. Enter a value from 300 to 100,000,000 seconds. The default is 3600 seconds.

Status

Status Displays the connection status for the selected tunnel. The state is either connected or disconnected.

Connect Click this button to establish a connection for the current VPN tunnel. If you have made any changes, click Save first to apply your changes.

Disconnect Click this button to break a connection for the current VPN tunnel.

View Log Click this button to view the VPN log, which shows details of each tunnel established.

Advanced Click this button to display these additional settings.

Cisco RVS4000 Security Router with VPN Administrator Guide

63

Image 63

Cisco Systems RVS4000RF manual Status

Contents

Administration Guide Cisco Systems, Inc. All rights reserved OL-22605-02 Getting Started with the RVS4000 Router Setting Up and Configuring the RouterIntroduction Networking and Security Basics Planning Your Virtual Private Network VPN VPN Appendix a Troubleshooting 116 Using the VPN Setup Wizard Windows 2000 or Windows XP RVS4000 Appendix E Cisco ProtectLink Web Service 182Appendix F Specifications 190 Appendix D Gateway-to-Gateway VPN Tunnel 166 Appendix G Where to Go From Here 194 Introduction An Introduction to LANs Networking and Security Basics Configuring the Router Use of IP AddressesNetworking and Security Basics Intrusion Prevention System IPS IPS Scenarios Why do I need a VPN?, What is a VPN?, Why do I need a VPN? Planning Your Virtual Private Network VPN MAC Address SpoofingData Sniffing Man in the middle attacks What is a VPN? VPN Router to VPN Router VPN Router to VPN Router Computer to VPN Router Tunnel Front Panel Front Panel Back Panel Getting Started with the RVS4000 RouterBack Panel Placement Options Desktop OptionStand Option Wall Option Installing the Router Configuring the Router Setting Up and Configuring the Router Setting Up and Configuring the Router Setup Setup SummaryLogin Window Setup Summary System InformationPort Statistics Log Setting Status Network Setting StatusFirewall Setting Status IPSec VPN Setting Status Setup WAN Automatic Configuration DhcpInternet Connection Type Static IP Static IP PPPoE PPPoE Pptp Heart Beat Signal Heart Beat Signal L2TP Setting Up and Configuring the Router Optional Settings Optional Settings Required by some ISPs Click Save Setup LAN Setup LAN IPv4 Server Settings Dhcp DHCPv6 Setup DMZStatic IP Mapping IPv6 Setup MAC Address Clone Setup DMZSetup MAC Address Clone Dynamic Routing Setup Advanced RoutingOperating Mode Setup Advanced Routing Inter-VLAN Routing Static Routing Setup Time Setup TimeEnable option Setup IP Mode Setup IP Mode Firewall Basic Settings Firewall Basic SettingsFirewall Setting Up and Configuring the Router Firewall IP Based ACL Firewall IP Based ACL Editing IP ACL Rules Editing IP ACL Rules Setting Up and Configuring the Router Firewall Internet Access Policy Firewall Internet Access Policy Internet Policy Summary List of PCs Setting Up and Configuring the Router Firewall Single Port Forwarding Firewall Single Port Forwarding Firewall Port Range Forwarding Firewall Port Range Forwarding Firewall Port Range Triggering Firewall Port Range Triggering ProtectLink ProtectLink ProtectLink PurchaseProtectLink ProtectLink Purchase VPN Summary Tunnel StatusVPN Summary VPN Clients Status VPN IPSec VPN VPN IPSec VPN Local Group Setup Remote Group SetupName Fqdn Authentication Phase IPSec Setup Status VPN VPN Client Accounts VPN VPN Client Accounts Certificate Management VPN Client List Table VPN VPN Passthrough VPN VPN Passthrough QoS QoS Bandwidth ManagementQoS Bandwidth Management Rate Control Bandwidth Bandwidth Management TypeRate Control QoS Bandwidth Management Priority Priority QoS QoS Setup CoS SetupQoS QoS Setup QoS Dscp Setup QoS Dscp Setup Administration Management AdministrationAdministration Management Router Access UPnP Log Levels Severity Name Description Administration LogLog Setting Administration Log Email Alerts Local Log Administration DiagnosticsAdministration Diagnostics Syslog Cable Diagnostics Ping Test ParametersTraceroute Test Parameters Administration Backup & Restore Restore ConfigurationAdministration Backup & Restore Administration Factory Default Administration Factory Default Administration Firmware Upgrade Administration RebootAdministration Firmware Upgrade Administration Reboot Click the Small Business Router Firmware link Click Start to Upgrade IPS Configuration IPS ConfigurationAnomaly Detection Peer to Peer Instant MessengerPeer To Peer IPS Report AttackerAttack Category IPS Report IPS Information L2 SwitchL2 Switch Create Vlan IPS Information Delete Selected Vlan L2 Switch Create Vlan L2 Switch Vlan Port Setting L2 Switch Vlan Port Setting L2 Switch Vlan Membership L2 Switch Vlan Membership L2 Switch Radius L2 Switch Radius L2 Switch Port Setting L2 Switch Port Setting L2 Switch Statistics L2 Switch StatisticsStatistics Overview L2 Switch Port Mirroring L2 Switch Port Mirroring L2 Switch Rstp L2 Switch Rstp Status Gateway StatusStatus Gateway Internet Connection Status Gateway IP Conntrack IP Conntrack Status Local Network Status Local Network Before You Begin VPN Setup Wizard \VPN Setup Wizard.exe Running the VPN Setup WizardUsing the VPN Setup Wizard Click Firewall Basic Settings Welcome Window Informational Window Build VPN Connection Remotely Configure VPN Tunnel Check Router Configuration Vpnc Summary Window Summary Window Configure the Router Test the Connection Test Results Exit the Wizard Building Your VPN Connection Remotely Configure VPN Tunnel Window Check Router Configuration Summary Window Configure the Router Test the Connection View Test Results Need to set a static IP address on a PC Troubleshooting Windows XP Troubleshooting Windows XP Want to test my Internet connection Troubleshooting Troubleshooting Application Start and End Protocol IP Address Enable Need to set up a server behind my router Configure as many entries as you like Can’t get an Internet game, server, or application to work Go to Setup DMZ Follow the instructions in Administration Firmware Upgrade, To start over, I need to set the router to factory defaultNeed to upgrade the firmware Firmware upgrade failed Click the Router Firmware Rescue Utility link My DSL service’s PPPoE is always disconnecting Need to use port triggering Troubleshooting Does the router support IPX or AppleTalk? Frequently Asked QuestionsWhere is the router installed on the network? Is IPSec Passthrough supported by the router? Does the router support ICQ send file? What is Network Address Translation and what is it used for? If all else fails in the installation, what can I do? How can I be notified of new router firmware upgrades?How can I block corrupted FTP downloads? How many ports can be simultaneously forwarded? What is DMZ Hosting?Will the router function in a Macintosh environment? Is the router cross-platform compatible? Which modems are compatible with the router? How can I check whether I have static or Dhcp IP addresses?How do I get mIRC to work with the router? Click the VPN VPN Client Accounts Overview Using Cisco QuickVPN for Windows 2000, XP, or Vista Click Add/SaveVPN Client Accounts Window Installing the Cisco QuickVPN Software Installing from the CD-ROMLicense Agreement Copying Files Finished Installing Files Downloading and Installing from the Internet Using the Cisco QuickVPN Software QuickVPN Login QuickVPN Status Distributing Certificates to QuickVPN Users Connect Virtual Private ConnectionSelect VPN VPN Client Accounts \Program Files\Cisco\QuickVPN Client\ Introduction Configuring IPSec with a Windows 2000 or XP Computer Windows 2000 or Windows XP How to Establish a Secure IPSec TunnelConfiguring IPSec with a Windows 2000 or XP Computer Environment Establishing a Secure IPSec Tunnel Local Security Settings Rules Tab Filter List 1 win router IP Filter List IP Filter List Tab Filters Properties New Rules Properties Filter List 2 router win Configuring IPSec with a Windows 2000 or XP Computer New Rule Properties Tunnel 1 win-Router Filter Action Tab Security Methods Tab Preshared Key Authentication Methods Tab New Preshared Key Tunnel Setting Tab Connection Type Tab Tunnel 2 Router-win Properties Window Filter Action Tab Preshared Key New Preshared Key Connection Type Tab Local Computer Click VPN IPSec VPN VPN IPSec VPN Configuring IPSec with a Windows 2000 or XP Computer Gateway-to-Gateway VPN Tunnel Gateway-to-Gateway VPN Tunnel RVS4000 IPSec VPN Settings Click the Gateway to Gateway tab RVS4000 IPSec Setup Settings RV082 VPN Settings RV082 IPSec Setup Settings Click VPN IPSec VPN RVS4000 IPSec VPN Settings RVS4000 IPSec Setup Settings RV082 VPN Settings RV082 IPSec Setup Settings Configuration When Both Gateways Use Dynamic IP Addresses RVS4000 IPSec VPN Settings RVS4000 IPSec Setup Settings RV082 VPN Settings RV082 IPSec Setup Settings How to Access the Configuration Utility Cisco ProtectLink Web Service How to Purchase, Register, or Activate the Service Cisco ProtectLink Web ServiceProtectLink ProtectLink Inactive How to Use the Service ProtectLink Web ProtectionProtectLink Active ProtectLink Web Protection Fri Web Protection Approved URLs ProtectLink License LicenseProtectLink License Specifications Setup/ConfigPerformance QoS Security FeaturesSpecifications Management Network RoutingLayer Environmental Cisco Small Business Product ResourcesSupport Product Documentation Related Documentation Where to Go From Here