User Guide
Page 2
and certain other open -source software source code is a registered trademark or trademark of Cisco Systems, Inc. and/ or its affiliates in front of the web address. Upon request, open -source software licenses. If you use an ...something that could damage your property or product. Copyright © 2007 Cisco Systems, Inc. Other brands and product names are listed without http:// in this document are trademarks or registered trademarks of their respective holders. 4-Port SSL/IPSec VPN Router Open Source This product may contain material licensed to you under the ...
and certain other open -source software source code is a registered trademark or trademark of Cisco Systems, Inc. and/ or its affiliates in front of the web address. Upon request, open -source software licenses. If you use an ...something that could damage your property or product. Copyright © 2007 Cisco Systems, Inc. Other brands and product names are listed without http:// in this document are trademarks or registered trademarks of their respective holders. 4-Port SSL/IPSec VPN Router Open Source This product may contain material licensed to you under the ...
User Guide
Page 3
Table of Contents 4-Port SSL/IPSec VPN Router Chapter 1: Introduction 1 Introduction to the Router 1 Introduction to Virtual Private Networks (VPNs 1 VPN Router to VPN Router 1 Computer (using SSL VPN client software) to VPN Router 2 Chapter 2: Product Overview 3 Front Panel 3 Back Panel 3 Chapter 3: Installation 4 ... Utility 7 System Summary 8 System Information 8 Port Statistics 9 Network Setting Status 9 Firewall Setting Status 9 IPSec VPN Setting Status 9 SSL VPN Setting Status 9 Log Setting Status 9 Setup Tab > Network 10 Network 10 Setup > Password 12 Password ...
Table of Contents 4-Port SSL/IPSec VPN Router Chapter 1: Introduction 1 Introduction to the Router 1 Introduction to Virtual Private Networks (VPNs 1 VPN Router to VPN Router 1 Computer (using SSL VPN client software) to VPN Router 2 Chapter 2: Product Overview 3 Front Panel 3 Back Panel 3 Chapter 3: Installation 4 ... Utility 7 System Summary 8 System Information 8 Port Statistics 9 Network Setting Status 9 Firewall Setting Status 9 IPSec VPN Setting Status 9 SSL VPN Setting Status 9 Log Setting Status 9 Setup Tab > Network 10 Network 10 Setup > Password 12 Password ...
User Guide
Page 6
... the Virtual Passage Client (Mac OS X 60 Removal of the Virtual Passage Client (Mac OS X 61 Before You Begin (Linux OS 62 Login for the SSL VPN Portal (Linux OS 62 Installation of the Virtual Passage Client (Linux OS 62 Removal of the Virtual Passage Client (Linux OS 63 Appendix C: Bandwidth Management... 70 Appendix E: User for the Active Directory Server 71 Appendix F: Internet Authentication Service (IAS) Server 73 Appendix G: Lightweight Directory Access Protocol (LDAP) Server 79 4-Port SSL/IPSec VPN Router
... the Virtual Passage Client (Mac OS X 60 Removal of the Virtual Passage Client (Mac OS X 61 Before You Begin (Linux OS 62 Login for the SSL VPN Portal (Linux OS 62 Installation of the Virtual Passage Client (Linux OS 62 Removal of the Virtual Passage Client (Linux OS 63 Appendix C: Bandwidth Management... 70 Appendix E: User for the Active Directory Server 71 Appendix F: Internet Authentication Service (IAS) Server 73 Appendix G: Lightweight Directory Access Protocol (LDAP) Server 79 4-Port SSL/IPSec VPN Router
User Guide
Page 7
...SSL/IPSec VPN Router Appendix H: Deployment in an Existing Network 80 Overview 80 LAN-to-LAN Connection 80 WAN-to-LAN Connection 81 Appendix I: Gateway-to-Gateway VPN Tunnel 82 Overview 82 Before You Begin 82 Configuration when the Remote Gateway Uses a Static IP Address 82 Configuration of the RVL200... 85 Configuration of the RVL200 85 Configuration of the RV082 86 Configuration of PC 1 and PC 2 86 Appendix J: IPSec NAT Traversal 87 Overview 87 Before You Begin 87 Configuration of Scenario 1 87 Configuration of Router A 87 Configuration of Router B 88 Configuration of ...
...SSL/IPSec VPN Router Appendix H: Deployment in an Existing Network 80 Overview 80 LAN-to-LAN Connection 80 WAN-to-LAN Connection 81 Appendix I: Gateway-to-Gateway VPN Tunnel 82 Overview 82 Before You Begin 82 Configuration when the Remote Gateway Uses a Static IP Address 82 Configuration of the RVL200... 85 Configuration of the RVL200 85 Configuration of the RV082 86 Configuration of PC 1 and PC 2 86 Appendix J: IPSec NAT Traversal 87 Overview 87 Before You Begin 87 Configuration of Scenario 1 87 Configuration of Router A 87 Configuration of Router B 88 Configuration of ...
User Guide
Page 8
Table of Contents Appendix M: Multiple VLANs and Subnets 96 Overview 96 RVL200 Configuration 96 Basic Instructions 96 Inter-VLAN Routing Option 97 Appendix N: Access of Multiple VLANs over a SSL VPN Tunnel 98 Overview 98 SSL VPN Connection 98 Static Route 98 Windows Operating System (OS 98 Mac OS X 98 Linux OS 98 Appendix O: Firmware Upgrade 99... User Information for Consumer Products Covered by EU Directive 2002/96/EC on Waste Electric and Electronic Equipment (WEEE 106 Appendix T: Contact Information 110 4-Port SSL/IPSec VPN Router vii
Table of Contents Appendix M: Multiple VLANs and Subnets 96 Overview 96 RVL200 Configuration 96 Basic Instructions 96 Inter-VLAN Routing Option 97 Appendix N: Access of Multiple VLANs over a SSL VPN Tunnel 98 Overview 98 SSL VPN Connection 98 Static Route 98 Windows Operating System (OS 98 Mac OS X 98 Linux OS 98 Appendix O: Firmware Upgrade 99... User Information for Consumer Products Covered by EU Directive 2002/96/EC on Waste Electric and Electronic Equipment (WEEE 106 Appendix T: Contact Information 110 4-Port SSL/IPSec VPN Router vii
User Guide
Page 9
... VPN tunnel types, SSL and IPSec. The 4-Port SSL/IPSec 4-Port SSL/IPSec VPN Router VPN Router supports two of a VPN Router-to support those networks. Using the VPN, the telecommuter now has a secure connection to using IPSec (Windows Vista uses a similar utility). If you can be used to create secure networks linking a central office with the built-in your small business needs. For an IPSec VPN tunnel, any router...
... VPN tunnel types, SSL and IPSec. The 4-Port SSL/IPSec 4-Port SSL/IPSec VPN Router VPN Router supports two of a VPN Router-to support those networks. Using the VPN, the telecommuter now has a secure connection to using IPSec (Windows Vista uses a similar utility). If you can be used to create secure networks linking a central office with the built-in your small business needs. For an IPSec VPN tunnel, any router...
User Guide
Page 10
... is not a factor. She accesses the VPN client software and connects to her office's VPN settings. In her hotel room, a traveling businesswoman connects to the VPN Router at www.linksys.com. As VPNs utilize the Internet, distance is configured with VPN Client Software Computer to VPN Router 4-Port SSL/IPSec VPN Router Off-Site Internet VPN Router Central Office Notebook with her Internet Service...
... is not a factor. She accesses the VPN client software and connects to her office's VPN settings. In her hotel room, a traveling businesswoman connects to the VPN Router at www.linksys.com. As VPNs utilize the Internet, distance is configured with VPN Client Software Computer to VPN Router 4-Port SSL/IPSec VPN Router Off-Site Internet VPN Router Central Office Notebook with her Internet Service...
User Guide
Page 11
...flash quickly during a warm reset. • Reset to Factory Defaults If you connect the power adapter. 4-Port SSL/IPSec VPN Router Ethernet 1, 2, 3, 4 These Ethernet ports (1, 2, 3, 4) connect the Router to pressing the power button on your cable or DSL Internet connection. Diag (Orange) The Diag LED lights up ... in the Reset button for ten seconds. During a reset to factory defaults using the tip of the Router's custom settings. The LED turns off when the Router is powered on. Chapter 2 Product Overview Chapter 2: Product Overview Front Panel Power (Green) The Power ...
...flash quickly during a warm reset. • Reset to Factory Defaults If you connect the power adapter. 4-Port SSL/IPSec VPN Router Ethernet 1, 2, 3, 4 These Ethernet ports (1, 2, 3, 4) connect the Router to pressing the power button on your cable or DSL Internet connection. Diag (Orange) The Diag LED lights up ... in the Reset button for ten seconds. During a reset to factory defaults using the tip of the Router's custom settings. The LED turns off when the Router is powered on. Chapter 2 Product Overview Chapter 2: Product Overview Front Panel Power (Green) The Power ...
User Guide
Page 12
... much weight could damage it on a surface. Cut along the dotted line, and place on the wall to stand the Router vertically on a wall. Set the Router on top of the Router with the two screws. 5. Line up with the two stands. 2. Follow these instructions: 1. The second way is to...it . Determine where you use is within reach of its four rubber feet. Insert a screw into the wall-mount slots. 64.4 mm 4-Port SSL/IPSec VPN Router Print this page at 100% size. WARNING: Do not place excessive weight on a flat surface near an electrical outlet. The distance between the two...
... much weight could damage it on a surface. Cut along the dotted line, and place on the wall to stand the Router vertically on a wall. Set the Router on top of the Router with the two screws. 5. Line up with the two stands. 2. Follow these instructions: 1. The second way is to...it . Determine where you use is within reach of its four rubber feet. Insert a screw into the wall-mount slots. 64.4 mm 4-Port SSL/IPSec VPN Router Print this page at 100% size. WARNING: Do not place excessive weight on a flat surface near an electrical outlet. The distance between the two...
User Guide
Page 13
... one of the numbered ports on a network device, such as the power adapter is powered off, including the Router, computers, switches, and cable or DSL modem. 2. Connect the other network devices. 4-Port SSL/IPSec VPN Router Installation Connect the Power 6. Repeat this step to connect more computers or other network devices to the Internet Port...
... one of the numbered ports on a network device, such as the power adapter is powered off, including the Router, computers, switches, and cable or DSL modem. 2. Connect the other network devices. 4-Port SSL/IPSec VPN Router Installation Connect the Power 6. Repeat this step to connect more computers or other network devices to the Internet Port...
User Guide
Page 14
... all of the main tabs. Open Internet Explorer. 2. Click the Privacy tab. 12. Click OK. 15. Click Tools. 3. Select Use SSL 2.0 and Use SSL 3.0. Internet Explorer > Tools > Internet Options > Advanced 4-Port SSL/IPSec VPN Router 6. Click OK. 11. Click Advanced. 13. Netscape Communicator 8.0 or Higher 1. If the settings are the main tabs of Java applets. Deselect...
... all of the main tabs. Open Internet Explorer. 2. Click the Privacy tab. 12. Click OK. 15. Click Tools. 3. Select Use SSL 2.0 and Use SSL 3.0. Internet Explorer > Tools > Internet Options > Advanced 4-Port SSL/IPSec VPN Router 6. Click OK. 11. Click Advanced. 13. Netscape Communicator 8.0 or Higher 1. If the settings are the main tabs of Java applets. Deselect...
User Guide
Page 15
... Communicator > Options > Advanced > Security 15. Select Enable JavaScript. 9. Click Advanced. 10. Select Use SSL 2.0 and Use SSL 3.0. This will prompt any user of the Router's web-based utility, launch your User Name and Password. Chapter 4 Advanced Configuration 7. For local access of...control will be ignored by web browsers that do not support ActiveX.) Click the link to install the Web Cache Cleaner. 4-Port SSL/IPSec VPN Router Netscape Communicator > Options > Site Controls > Web Features 11. Select Allow cookies. 8. Click OK. 12. Address Bar NOTE...
... Communicator > Options > Advanced > Security 15. Select Enable JavaScript. 9. Click Advanced. 10. Select Use SSL 2.0 and Use SSL 3.0. This will prompt any user of the Router's web-based utility, launch your User Name and Password. Chapter 4 Advanced Configuration 7. For local access of...control will be ignored by web browsers that do not support ActiveX.) Click the link to install the Web Cache Cleaner. 4-Port SSL/IPSec VPN Router Netscape Communicator > Options > Site Controls > Web Features 11. Select Allow cookies. 8. Click OK. 12. Address Bar NOTE...
User Guide
Page 16
.... Firmware version Displayed here is the serial number of the firmware installed on the Router's board. Then, click the desired tab. 4-Port SSL/IPSec VPN Router Site Map System Information Serial Number Displayed here is the current version number of the Router. When you or another user logs out, a Warning screen will ask you to the...
.... Firmware version Displayed here is the serial number of the firmware installed on the Router's board. Then, click the desired tab. 4-Port SSL/IPSec VPN Router Site Map System Information Serial Number Displayed here is the current version number of the Router. When you or another user logs out, a Warning screen will ask you to the...
User Guide
Page 17
... the selected port. Port Statistics Click any port on the Network screen of the SSL VPN tab. Click Release to release the IP address, and 4-Port SSL/IPSec VPN Router click Renew to the General screen of the Firewall tab. SSL VPN Setting Status SSL VPN Summary It hyperlinks to PPPoE or PPTP, two buttons, Connect and Disconnect, will appear...
... the selected port. Port Statistics Click any port on the Network screen of the SSL VPN tab. Click Release to release the IP address, and 4-Port SSL/IPSec VPN Router click Renew to the General screen of the Firewall tab. SSL VPN Setting Status SSL VPN Summary It hyperlinks to PPPoE or PPTP, two buttons, Connect and Disconnect, will appear...
User Guide
Page 18
... check with your changes, or click Cancel Changes to undo them. Some ISPs require these fields blank. 4-Port SSL/IPSec VPN Router LAN Setting The MAC Address of the Router's basic setup functions. Then click Add/Edit to enable the Multiple Subnet feature. Multiple Subnet Select this option to... to the Log Queue Length and Log Time Threshold settings, the message, "E-mail settings have been configured," will be displayed. The Router can leave these names as identification. Device IP Address and Subnet Mask The default values are four connection types available: Obtain an IP...
... check with your changes, or click Cancel Changes to undo them. Some ISPs require these fields blank. 4-Port SSL/IPSec VPN Router LAN Setting The MAC Address of the Router's basic setup functions. Then click Add/Edit to enable the Multiple Subnet feature. Multiple Subnet Select this option to... to the Log Queue Length and Log Time Threshold settings, the message, "E-mail settings have been configured," will be displayed. The Router can leave these names as identification. Device IP Address and Subnet Mask The default values are four connection types available: Obtain an IP...
User Guide
Page 19
... have been disconnected due to inactivity, Connect on Demand option, the connection will be disconnected after a specified period of the Router. 4-Port SSL/IPSec VPN Router PPPoE User Name and Password Enter your DNS server IP address(es) (enter at least one ). Default Gateway Address Enter... the IP address of the Router. MTU The MTU (Maximum Transmission Unit) setting specifies the largest packet size permitted for network transmission. To ...
... have been disconnected due to inactivity, Connect on Demand option, the connection will be disconnected after a specified period of the Router. 4-Port SSL/IPSec VPN Router PPPoE User Name and Password Enter your DNS server IP address(es) (enter at least one ). Default Gateway Address Enter... the IP address of the Router. MTU The MTU (Maximum Transmission Unit) setting specifies the largest packet size permitted for network transmission. To ...
User Guide
Page 20
... largest packet size permitted for network transmission. Subnet Mask Enter the subnet mask of the Router. 4-Port SSL/IPSec VPN Router Default Gateway Address Enter the IP address of the Router. Keep Alive If you select the Keep Alive option, the Router will keep the connection alive by sending out a few data packets periodically, so your Internet...
... largest packet size permitted for network transmission. Subnet Mask Enter the subnet mask of the Router. 4-Port SSL/IPSec VPN Router Default Gateway Address Enter the IP address of the Router. Keep Alive If you select the Keep Alive option, the Router will keep the connection alive by sending out a few data packets periodically, so your Internet...
User Guide
Page 21
...; Manual Setup > Password Password The User Name is admin when you want to expose. New Password Enter a new password for other activities for the Router. Hours, Minutes, Seconds Enter the time. The default value of the end date. Enter the Month and Day of the start date, and then ...the daylight saving feature, select Enabled. Automatic Setup > Time > Manual Time Zone Select your time zone (the default Time Zone is Pacific Time). 4-Port SSL/IPSec VPN Router Setup > DMZ Host DMZ Host DMZ Private IP Address Enter the local IP address of the computer you first power up the...
...; Manual Setup > Password Password The User Name is admin when you want to expose. New Password Enter a new password for other activities for the Router. Hours, Minutes, Seconds Enter the time. The default value of the end date. Enter the Month and Day of the start date, and then ...the daylight saving feature, select Enabled. Automatic Setup > Time > Manual Time Zone Select your time zone (the default Time Zone is Pacific Time). 4-Port SSL/IPSec VPN Router Setup > DMZ Host DMZ Host DMZ Private IP Address Enter the local IP address of the computer you first power up the...
User Guide
Page 22
... to delete a service you want to access. IP Address Enter the IP address of 30. Port Triggering Port triggering allows the Router to set up port range forwarding and port triggering applications. Port range forwarding can be connected. The packets will not actually be ...If you to use this service. Setup Tab > Forwarding The Forwarding screen allows you want . 4-Port SSL/IPSec VPN Router Service Management Service Name Enter a name. NOTE: You must disable the Router's DHCP function to set up to List. You may need is not listed in order to properly run...
... to delete a service you want to access. IP Address Enter the IP address of 30. Port Triggering Port triggering allows the Router to set up port range forwarding and port triggering applications. Port range forwarding can be connected. The packets will not actually be ...If you to use this service. Setup Tab > Forwarding The Forwarding screen allows you want . 4-Port SSL/IPSec VPN Router Service Management Service Name Enter a name. NOTE: You must disable the Router's DHCP function to set up to List. You may need is not listed in order to properly run...
User Guide
Page 23
...this option to undo them . Click Exit to return to the LAN host. The UPnP Forwarding Table List appears. 15 Setup > UPnP 4-Port SSL/IPSec VPN Router Service Management Service Name Enter a name. Chapter 4 Advanced Configuration Some Internet applications or games use these entries via UPnP. Otherwise, keep the ...to update the on your changes, or click Cancel Changes to a maximum of your entries. Click Show Tables to access. Then the Router will forward the incoming packets to the UPnP screen. Click Add to List, and configure as many entries as you want to use...
...this option to undo them . Click Exit to return to the LAN host. The UPnP Forwarding Table List appears. 15 Setup > UPnP 4-Port SSL/IPSec VPN Router Service Management Service Name Enter a name. Chapter 4 Advanced Configuration Some Internet applications or games use these entries via UPnP. Otherwise, keep the ...to update the on your changes, or click Cancel Changes to a maximum of your entries. Click Show Tables to access. Then the Router will forward the incoming packets to the UPnP screen. Click Add to List, and configure as many entries as you want to use...