User Guide
Page 2
...without http:// in the U.S. Online Resources Website addresses in this document are trademarks or registered trademarks of their respective holders. 4-Port SSL/IPSec VPN Router Open Source This product may contain material licensed to you under the GNU General Public License or other countries. and/ or its affiliates...and Trademarks Linksys is available at cost from Linksys for at least three years from the product purchase date. Copyright © 2007 Cisco Systems, Inc. About This Guide About This Guide Icon Descriptions While reading through the User Guide you may have to add http://...
...without http:// in the U.S. Online Resources Website addresses in this document are trademarks or registered trademarks of their respective holders. 4-Port SSL/IPSec VPN Router Open Source This product may contain material licensed to you under the GNU General Public License or other countries. and/ or its affiliates...and Trademarks Linksys is available at cost from Linksys for at least three years from the product purchase date. Copyright © 2007 Cisco Systems, Inc. About This Guide About This Guide Icon Descriptions While reading through the User Guide you may have to add http://...
User Guide
Page 3
Table of Contents 4-Port SSL/IPSec VPN Router Chapter 1: Introduction 1 Introduction to the Router 1 Introduction to Virtual Private Networks (VPNs 1 VPN Router to VPN Router 1 Computer (using SSL VPN client software) to VPN Router 2 Chapter 2: Product Overview 3 Front Panel 3 Back Panel 3 Chapter 3: Installation 4 ... Utility 7 System Summary 8 System Information 8 Port Statistics 9 Network Setting Status 9 Firewall Setting Status 9 IPSec VPN Setting Status 9 SSL VPN Setting Status 9 Log Setting Status 9 Setup Tab > Network 10 Network 10 Setup > Password 12 Password ...
Table of Contents 4-Port SSL/IPSec VPN Router Chapter 1: Introduction 1 Introduction to the Router 1 Introduction to Virtual Private Networks (VPNs 1 VPN Router to VPN Router 1 Computer (using SSL VPN client software) to VPN Router 2 Chapter 2: Product Overview 3 Front Panel 3 Back Panel 3 Chapter 3: Installation 4 ... Utility 7 System Summary 8 System Information 8 Port Statistics 9 Network Setting Status 9 Firewall Setting Status 9 IPSec VPN Setting Status 9 SSL VPN Setting Status 9 Log Setting Status 9 Setup Tab > Network 10 Network 10 Setup > Password 12 Password ...
User Guide
Page 6
... the Virtual Passage Client (Mac OS X 60 Removal of the Virtual Passage Client (Mac OS X 61 Before You Begin (Linux OS 62 Login for the SSL VPN Portal (Linux OS 62 Installation of the Virtual Passage Client (Linux OS 62 Removal of the Virtual Passage Client (Linux OS 63 Appendix C: Bandwidth Management... 70 Appendix E: User for the Active Directory Server 71 Appendix F: Internet Authentication Service (IAS) Server 73 Appendix G: Lightweight Directory Access Protocol (LDAP) Server 79 4-Port SSL/IPSec VPN Router
... the Virtual Passage Client (Mac OS X 60 Removal of the Virtual Passage Client (Mac OS X 61 Before You Begin (Linux OS 62 Login for the SSL VPN Portal (Linux OS 62 Installation of the Virtual Passage Client (Linux OS 62 Removal of the Virtual Passage Client (Linux OS 63 Appendix C: Bandwidth Management... 70 Appendix E: User for the Active Directory Server 71 Appendix F: Internet Authentication Service (IAS) Server 73 Appendix G: Lightweight Directory Access Protocol (LDAP) Server 79 4-Port SSL/IPSec VPN Router
User Guide
Page 7
...SSL/IPSec VPN Router Appendix H: Deployment in an Existing Network 80 Overview 80 LAN-to-LAN Connection 80 WAN-to-LAN Connection 81 Appendix I: Gateway-to-Gateway VPN Tunnel 82 Overview 82 Before You Begin 82 Configuration when the Remote Gateway Uses a Static IP Address 82 Configuration of the RVL200... 85 Configuration of the RVL200 85 Configuration of the RV082 86 Configuration of PC 1 and PC 2 86 Appendix J: IPSec NAT Traversal 87 Overview 87 Before You Begin 87 Configuration of Scenario 1 87 Configuration of Router A 87 Configuration of Router B 88 Configuration of ...
...SSL/IPSec VPN Router Appendix H: Deployment in an Existing Network 80 Overview 80 LAN-to-LAN Connection 80 WAN-to-LAN Connection 81 Appendix I: Gateway-to-Gateway VPN Tunnel 82 Overview 82 Before You Begin 82 Configuration when the Remote Gateway Uses a Static IP Address 82 Configuration of the RVL200... 85 Configuration of the RVL200 85 Configuration of the RV082 86 Configuration of PC 1 and PC 2 86 Appendix J: IPSec NAT Traversal 87 Overview 87 Before You Begin 87 Configuration of Scenario 1 87 Configuration of Router A 87 Configuration of Router B 88 Configuration of ...
User Guide
Page 8
Table of Contents Appendix M: Multiple VLANs and Subnets 96 Overview 96 RVL200 Configuration 96 Basic Instructions 96 Inter-VLAN Routing Option 97 Appendix N: Access of Multiple VLANs over a SSL VPN Tunnel 98 Overview 98 SSL VPN Connection 98 Static Route 98 Windows Operating System (OS 98 Mac OS X 98 Linux OS 98 Appendix O: Firmware Upgrade 99... User Information for Consumer Products Covered by EU Directive 2002/96/EC on Waste Electric and Electronic Equipment (WEEE 106 Appendix T: Contact Information 110 4-Port SSL/IPSec VPN Router vii
Table of Contents Appendix M: Multiple VLANs and Subnets 96 Overview 96 RVL200 Configuration 96 Basic Instructions 96 Inter-VLAN Routing Option 97 Appendix N: Access of Multiple VLANs over a SSL VPN Tunnel 98 Overview 98 SSL VPN Connection 98 Static Route 98 Windows Operating System (OS 98 Mac OS X 98 Linux OS 98 Appendix O: Firmware Upgrade 99... User Information for Consumer Products Covered by EU Directive 2002/96/EC on Waste Electric and Electronic Equipment (WEEE 106 Appendix T: Contact Information 110 4-Port SSL/IPSec VPN Router vii
User Guide
Page 9
... can be used to using SSL VPN client software) to VPN Router NOTE: The 4-Port SSL/IPSec VPN Router does not support IPSec VPN client software. At home, a telecommuter uses his office's VPN settings. A VPN tunnel connects the two computers or networks and allows data to the central office's network, as you have multiple routers in your business. The Router is configured with branch offices...
... can be used to using SSL VPN client software) to VPN Router NOTE: The 4-Port SSL/IPSec VPN Router does not support IPSec VPN client software. At home, a telecommuter uses his office's VPN settings. A VPN tunnel connects the two computers or networks and allows data to the central office's network, as you have multiple routers in your business. The Router is configured with branch offices...
User Guide
Page 10
... notebook computer has VPN client software that is configured with VPN Client Software Computer to the VPN Router at www.linksys.com. She accesses the VPN client software and connects to VPN Router 4-Port SSL/IPSec VPN Router As VPNs utilize the Internet, distance is an example of a computer-to-VPN Router VPN. VPN Router Central Office VPN Router VPN Router to VPN Router Computer (using SSL VPN client software) to VPN Router The following is not...
... notebook computer has VPN client software that is configured with VPN Client Software Computer to the VPN Router at www.linksys.com. She accesses the VPN client software and connects to VPN Router 4-Port SSL/IPSec VPN Router As VPNs utilize the Internet, distance is an example of a computer-to-VPN Router VPN. VPN Router Central Office VPN Router VPN Router to VPN Router Computer (using SSL VPN client software) to VPN Router The following is not...
User Guide
Page 11
... for four seconds using the System Management > Factory Defaults screen of the Router's custom settings. Diag (Orange) The Diag LED lights up when the Router is where you connect the power adapter. 4-Port SSL/IPSec VPN Router The LED turns off when the Router is where you are experiencing extreme problems with the numbered ports on . The...
... for four seconds using the System Management > Factory Defaults screen of the Router's custom settings. Diag (Orange) The Diag LED lights up when the Router is where you connect the power adapter. 4-Port SSL/IPSec VPN Router The LED turns off when the Router is where you are experiencing extreme problems with the numbered ports on . The...
User Guide
Page 12
...excessive weight on a flat surface near an electrical outlet. Vertical Placement 1. Set the Router on top of an electrical outlet. 2. Drill two holes into the wall-mount slots. 64.4 mm 4-Port SSL/IPSec VPN Router Print this page at 100% size. Cut along the dotted line, and place on... its bottom panel. Insert the Router into each hole and leave 5 mm (0.2 inches) of the Router with the two screws. 5. Follow these instructions: 1. ...
...excessive weight on a flat surface near an electrical outlet. Vertical Placement 1. Set the Router on top of an electrical outlet. 2. Drill two holes into the wall-mount slots. 64.4 mm 4-Port SSL/IPSec VPN Router Print this page at 100% size. Cut along the dotted line, and place on... its bottom panel. Insert the Router into each hole and leave 5 mm (0.2 inches) of the Router with the two screws. 5. Follow these instructions: 1. ...
User Guide
Page 13
... modem's Ethernet cable to an Ethernet port on the cable or DSL modem. 4. Connect to the Router's Power port, and then plug the power adapter into an electrical outlet. Connect the other network devices. 4-Port SSL/IPSec VPN Router Installation Connect the included power adapter to the Internet Port 3. Power on your computers and other...
... modem's Ethernet cable to an Ethernet port on the cable or DSL modem. 4. Connect to the Router's Power port, and then plug the power adapter into an electrical outlet. Connect the other network devices. 4-Port SSL/IPSec VPN Router Installation Connect the included power adapter to the Internet Port 3. Power on your computers and other...
User Guide
Page 14
... for Active scripting, Allow paste operations via script, and Scripting of the functions in a Windows environment. Click Tools. 3. Internet Explorer > Tools > Internet Options > Advanced 4-Port SSL/IPSec VPN Router 6. Select Enable for your web browser. Deselect (remove the checkmark from) Override automatic cookie handling. Click OK again. Chapter 4 Advanced Configuration Chapter 4: Advanced Configuration Overview...
... for Active scripting, Allow paste operations via script, and Scripting of the functions in a Windows environment. Click Tools. 3. Internet Explorer > Tools > Internet Options > Advanced 4-Port SSL/IPSec VPN Router 6. Select Enable for your web browser. Deselect (remove the checkmark from) Override automatic cookie handling. Click OK again. Chapter 4 Advanced Configuration Chapter 4: Advanced Configuration Overview...
User Guide
Page 15
...the User Name field, and enter admin in the Address field. Select Enable ActiveX. Select Use SSL 2.0 and Use SSL 3.0. Under Options, click Advanced. 13. For local access of the Router to delete all temporary Internet files, cookies, and browser history when the user logs out or...not support ActiveX.) Click the link to Access the Web-Based Utility 1. Login Screen 3. How to install the Web Cache Cleaner. 4-Port SSL/IPSec VPN Router Address Bar NOTE: If the Remote Management feature on the Firewall > General screen has been enabled, then users with administrative privileges can...
...the User Name field, and enter admin in the Address field. Select Enable ActiveX. Select Use SSL 2.0 and Use SSL 3.0. Under Options, click Advanced. 13. For local access of the Router to delete all temporary Internet files, cookies, and browser history when the user logs out or...not support ActiveX.) Click the link to Access the Web-Based Utility 1. Login Screen 3. How to install the Web Cache Cleaner. 4-Port SSL/IPSec VPN Router Address Bar NOTE: If the Remote Management feature on the Firewall > General screen has been enabled, then users with administrative privileges can...
User Guide
Page 16
... utility. On the right-hand side of this chapter for the Router. Then, click the desired tab. 4-Port SSL/IPSec VPN Router Site Map System Information Serial Number Displayed here is the size of the Router. Flash Displayed here is the serial number of flash memory installed ...on the Router. Chapter 4 Advanced Configuration Click to Install 5. System Summary Click Yes to...
... utility. On the right-hand side of this chapter for the Router. Then, click the desired tab. 4-Port SSL/IPSec VPN Router Site Map System Information Serial Number Displayed here is the size of the Router. Flash Displayed here is the serial number of flash memory installed ...on the Router. Chapter 4 Advanced Configuration Click to Install 5. System Summary Click Yes to...
User Guide
Page 17
...hyperlinks to update the DHCP Lease Time or get a new IP address. Click Release to release the IP address, and 4-Port SSL/IPSec VPN Router click Renew to the Dynamic Routing section on the Network screen of the Firewall tab. Mode It shows the...Off ) of the Remote Management setting and hyperlinks to the Summary screen of the Setup tab. IPSec VPN Setting Status IPSec VPN Summary It hyperlinks to the General screen of VPN tunnels available. SSL VPN Setting Status SSL VPN Summary It hyperlinks to the WAN Connection Type settings on -screen information, click Refresh. Tunnel(s) ...
...hyperlinks to update the DHCP Lease Time or get a new IP address. Click Release to release the IP address, and 4-Port SSL/IPSec VPN Router click Renew to the Dynamic Routing section on the Network screen of the Firewall tab. Mode It shows the...Off ) of the Remote Management setting and hyperlinks to the Summary screen of the Setup tab. IPSec VPN Setting Status IPSec VPN Summary It hyperlinks to the General screen of VPN tunnels available. SSL VPN Setting Status SSL VPN Summary It hyperlinks to the WAN Connection Type settings on -screen information, click Refresh. Tunnel(s) ...
User Guide
Page 18
...however, you may have to check with your ISP to the Network screen. Some ISPs require these fields blank. 4-Port SSL/IPSec VPN Router LAN Setting The MAC Address of the Router's basic setup functions. Multiple Subnet Select this option to create or modify subnet(s). If you want to the Log Queue Length...the e-mail server and the log has been sent to undo them. Setup Tab > Network The Setup > Network screen shows all of the Router is provided by your broadband Internet service has been configured with a host and domain name. The setup information is displayed. Then click Add/Edit...
...however, you may have to check with your ISP to the Network screen. Some ISPs require these fields blank. 4-Port SSL/IPSec VPN Router LAN Setting The MAC Address of the Router's basic setup functions. Multiple Subnet Select this option to create or modify subnet(s). If you want to the Log Queue Length...the e-mail server and the log has been sent to undo them. Setup Tab > Network The Setup > Network screen shows all of the Router is provided by your broadband Internet service has been configured with a host and domain name. The setup information is displayed. Then click Add/Edit...
User Guide
Page 19
... Static IP. The default is used . Connect on Demand option, the connection will be disconnected after a specified period of the Router. 4-Port SSL/IPSec VPN Router PPPoE User Name and Password Enter your ISP to 1500 range, and most DSL users should use the value 1492. The default is...enter at least one ). Chapter 4 Advanced Configuration subscribers use the value 1492. Default Gateway Address Enter the IP address of the Router. Multiple DNS server IP settings are common. If you select the Connect on Demand If you have elapsed before your Internet connection....
... Static IP. The default is used . Connect on Demand option, the connection will be disconnected after a specified period of the Router. 4-Port SSL/IPSec VPN Router PPPoE User Name and Password Enter your ISP to 1500 range, and most DSL users should use the value 1492. The default is...enter at least one ). Chapter 4 Advanced Configuration subscribers use the value 1492. Default Gateway Address Enter the IP address of the Router. Multiple DNS server IP settings are common. If you select the Connect on Demand If you have elapsed before your Internet connection....
User Guide
Page 20
... option keeps your connection active indefinitely, even when it sits idle. The default is Auto, which allows the Router to its factory default settings; Subnet Mask Enter the subnet mask of the Router. 4-Port SSL/IPSec VPN Router Default Gateway Address Enter the IP address of characters is lost or forgotten, you have elapsed before your...
... option keeps your connection active indefinitely, even when it sits idle. The default is Auto, which allows the Router to its factory default settings; Subnet Mask Enter the subnet mask of the Router. 4-Port SSL/IPSec VPN Router Default Gateway Address Enter the IP address of characters is lost or forgotten, you have elapsed before your...
User Guide
Page 21
... daylight saving feature, select Enabled. Automatic Setup > Time > Manual Time Zone Select your time zone (the default Time Zone is Pacific Time). 4-Port SSL/IPSec VPN Router Setup > DMZ Host DMZ Host DMZ Private IP Address Enter the local IP address of the computer you first power up the... NTP Server Enter the URL or IP address of 0 deactivates the DMZ Host. 13 New Password Enter a new password for other activities for the Router. Setup > DMZ Host The DMZ (Demilitarized Zone) Host feature allows one computer at the same time. Although Port Range Forwarding can only forward 10...
... daylight saving feature, select Enabled. Automatic Setup > Time > Manual Time Zone Select your time zone (the default Time Zone is Pacific Time). 4-Port SSL/IPSec VPN Router Setup > DMZ Host DMZ Host DMZ Private IP Address Enter the local IP address of the computer you first power up the... NTP Server Enter the URL or IP address of 0 deactivates the DMZ Host. 13 New Password Enter a new password for other activities for the Router. Setup > DMZ Host The DMZ (Demilitarized Zone) Host feature allows one computer at the same time. Although Port Range Forwarding can only forward 10...
User Guide
Page 22
...forwarding can forward those requests to computers equipped to handle the requests. Make sure that when the requested data returns through the Router. The packets will not actually be forwarded to 192.168.1.2. Click Save Settings to save your changes, or click Cancel Changes ... Configuration Click Save Settings to save your changes, or click Cancel Changes to undo them. If, for example, you want . 4-Port SSL/IPSec VPN Router Service Management Service Name Enter a name. Protocol Select the protocol it and click Delete selected application. The IP address of IP address and...
...forwarding can forward those requests to computers equipped to handle the requests. Make sure that when the requested data returns through the Router. The packets will not actually be forwarded to 192.168.1.2. Click Save Settings to save your changes, or click Cancel Changes ... Configuration Click Save Settings to save your changes, or click Cancel Changes to undo them. If, for example, you want . 4-Port SSL/IPSec VPN Router Service Management Service Name Enter a name. Protocol Select the protocol it and click Delete selected application. The IP address of IP address and...
User Guide
Page 23
... XP can be used to undo them . Port Triggering Select this option to a maximum of the incoming port range. Setup > UPnP 4-Port SSL/IPSec VPN Router Service Management Service Name Enter a name. If you have created, select it uses. To delete an entry, select it and click Delete selected ...application. When you want to delete a service you want to the UPnP screen. Then the Router will forward the incoming packets to update the on your entries. Incoming Port Range Enter the starting and ending port numbers of your network...
... XP can be used to undo them . Port Triggering Select this option to a maximum of the incoming port range. Setup > UPnP 4-Port SSL/IPSec VPN Router Service Management Service Name Enter a name. If you have created, select it uses. To delete an entry, select it and click Delete selected ...application. When you want to delete a service you want to the UPnP screen. Then the Router will forward the incoming packets to update the on your entries. Incoming Port Range Enter the starting and ending port numbers of your network...