User Guide
Page 2
Online Resources Website addresses in this document are trademarks or registered trademarks of their respective holders. 4-Port SSL/IPSec VPN Router Open Source This product may contain material licensed to you may see various icons that call attention to specific items. Below is a description of ...that there is available at cost from Linksys for at least three years from the product purchase date. and/ or its affiliates in front of Cisco Systems, Inc. About This Guide About This Guide Icon Descriptions While reading through the User Guide you may have to while using the product....
Online Resources Website addresses in this document are trademarks or registered trademarks of their respective holders. 4-Port SSL/IPSec VPN Router Open Source This product may contain material licensed to you may see various icons that call attention to specific items. Below is a description of ...that there is available at cost from Linksys for at least three years from the product purchase date. and/ or its affiliates in front of Cisco Systems, Inc. About This Guide About This Guide Icon Descriptions While reading through the User Guide you may have to while using the product....
User Guide
Page 3
Table of Contents 4-Port SSL/IPSec VPN Router Chapter 1: Introduction 1 Introduction to the Router 1 Introduction to Virtual Private Networks (VPNs 1 VPN Router to VPN Router 1 Computer (using SSL VPN client software) to VPN Router 2 Chapter 2: Product Overview 3 Front Panel 3 Back Panel 3 Chapter 3: Installation 4 ... Utility 7 System Summary 8 System Information 8 Port Statistics 9 Network Setting Status 9 Firewall Setting Status 9 IPSec VPN Setting Status 9 SSL VPN Setting Status 9 Log Setting Status 9 Setup Tab > Network 10 Network 10 Setup > Password 12 Password ...
Table of Contents 4-Port SSL/IPSec VPN Router Chapter 1: Introduction 1 Introduction to the Router 1 Introduction to Virtual Private Networks (VPNs 1 VPN Router to VPN Router 1 Computer (using SSL VPN client software) to VPN Router 2 Chapter 2: Product Overview 3 Front Panel 3 Back Panel 3 Chapter 3: Installation 4 ... Utility 7 System Summary 8 System Information 8 Port Statistics 9 Network Setting Status 9 Firewall Setting Status 9 IPSec VPN Setting Status 9 SSL VPN Setting Status 9 Log Setting Status 9 Setup Tab > Network 10 Network 10 Setup > Password 12 Password ...
User Guide
Page 6
... the Virtual Passage Client (Mac OS X 60 Removal of the Virtual Passage Client (Mac OS X 61 Before You Begin (Linux OS 62 Login for the SSL VPN Portal (Linux OS 62 Installation of the Virtual Passage Client (Linux OS 62 Removal of the Virtual Passage Client (Linux OS 63 Appendix C: Bandwidth Management... 70 Appendix E: User for the Active Directory Server 71 Appendix F: Internet Authentication Service (IAS) Server 73 Appendix G: Lightweight Directory Access Protocol (LDAP) Server 79 4-Port SSL/IPSec VPN Router
... the Virtual Passage Client (Mac OS X 60 Removal of the Virtual Passage Client (Mac OS X 61 Before You Begin (Linux OS 62 Login for the SSL VPN Portal (Linux OS 62 Installation of the Virtual Passage Client (Linux OS 62 Removal of the Virtual Passage Client (Linux OS 63 Appendix C: Bandwidth Management... 70 Appendix E: User for the Active Directory Server 71 Appendix F: Internet Authentication Service (IAS) Server 73 Appendix G: Lightweight Directory Access Protocol (LDAP) Server 79 4-Port SSL/IPSec VPN Router
User Guide
Page 7
...SSL/IPSec VPN Router Appendix H: Deployment in an Existing Network 80 Overview 80 LAN-to-LAN Connection 80 WAN-to-LAN Connection 81 Appendix I: Gateway-to-Gateway VPN Tunnel 82 Overview 82 Before You Begin 82 Configuration when the Remote Gateway Uses a Static IP Address 82 Configuration of the RVL200... 85 Configuration of the RVL200 85 Configuration of the RV082 86 Configuration of PC 1 and PC 2 86 Appendix J: IPSec NAT Traversal 87 Overview 87 Before You Begin 87 Configuration of Scenario 1 87 Configuration of Router A 87 Configuration of Router B 88 Configuration of ...
...SSL/IPSec VPN Router Appendix H: Deployment in an Existing Network 80 Overview 80 LAN-to-LAN Connection 80 WAN-to-LAN Connection 81 Appendix I: Gateway-to-Gateway VPN Tunnel 82 Overview 82 Before You Begin 82 Configuration when the Remote Gateway Uses a Static IP Address 82 Configuration of the RVL200... 85 Configuration of the RVL200 85 Configuration of the RV082 86 Configuration of PC 1 and PC 2 86 Appendix J: IPSec NAT Traversal 87 Overview 87 Before You Begin 87 Configuration of Scenario 1 87 Configuration of Router A 87 Configuration of Router B 88 Configuration of ...
User Guide
Page 8
Table of Contents Appendix M: Multiple VLANs and Subnets 96 Overview 96 RVL200 Configuration 96 Basic Instructions 96 Inter-VLAN Routing Option 97 Appendix N: Access of Multiple VLANs over a SSL VPN Tunnel 98 Overview 98 SSL VPN Connection 98 Static Route 98 Windows Operating System (OS 98 Mac OS X 98 Linux OS 98 Appendix O: Firmware Upgrade 99... User Information for Consumer Products Covered by EU Directive 2002/96/EC on Waste Electric and Electronic Equipment (WEEE 106 Appendix T: Contact Information 110 4-Port SSL/IPSec VPN Router vii
Table of Contents Appendix M: Multiple VLANs and Subnets 96 Overview 96 RVL200 Configuration 96 Basic Instructions 96 Inter-VLAN Routing Option 97 Appendix N: Access of Multiple VLANs over a SSL VPN Tunnel 98 Overview 98 SSL VPN Connection 98 Static Route 98 Windows Operating System (OS 98 Mac OS X 98 Linux OS 98 Appendix O: Firmware Upgrade 99... User Information for Consumer Products Covered by EU Directive 2002/96/EC on Waste Electric and Electronic Equipment (WEEE 106 Appendix T: Contact Information 110 4-Port SSL/IPSec VPN Router vii
User Guide
Page 9
... share an Internet connection. At home, a telecommuter uses his VPN Router for his always-on the road. It features a built-in your small business needs. The five Secure Sockets Layer (SSL) Virtual Private Network (VPN) tunnels gives your business, the Router provides security functions for choosing the Linksys 4-Port SSL/IPSec VPN Router. As an essential element of your mobile workers a secure...
... share an Internet connection. At home, a telecommuter uses his VPN Router for his always-on the road. It features a built-in your small business needs. The five Secure Sockets Layer (SSL) Virtual Private Network (VPN) tunnels gives your business, the Router provides security functions for choosing the Linksys 4-Port SSL/IPSec VPN Router. As an essential element of your mobile workers a secure...
User Guide
Page 10
... VPN Router 4-Port SSL/IPSec VPN Router Using the VPN, the businesswoman now has a secure connection to her office's VPN settings. Her notebook computer has VPN client software that is configured with VPN Client Software Computer to the VPN Router at www.linksys.com. As VPNs utilize the Internet, distance is an example of a computer-to VPN Router The following is not a factor. VPN Router Central Office VPN Router VPN Router...
... VPN Router 4-Port SSL/IPSec VPN Router Using the VPN, the businesswoman now has a secure connection to her office's VPN settings. Her notebook computer has VPN client software that is configured with VPN Client Software Computer to the VPN Router at www.linksys.com. As VPNs utilize the Internet, distance is an example of a computer-to VPN Router The following is not a factor. VPN Router Central Office VPN Router VPN Router...
User Guide
Page 11
... and hold in the Reset button for use . The LED turns off when the Router is connected to a device through the Internet port. This is where you connect the power adapter. 4-Port SSL/IPSec VPN Router Power The Power port is similar to pressing the power button on your cable or... DSL Internet connection. Diag (Orange) The Diag LED lights up when the Router is a connection made through that port. Internet (Green) The...
... and hold in the Reset button for use . The LED turns off when the Router is connected to a device through the Internet port. This is where you connect the power adapter. 4-Port SSL/IPSec VPN Router Power The Power port is similar to pressing the power button on your cable or... DSL Internet connection. Diag (Orange) The Diag LED lights up when the Router is a connection made through that port. Internet (Green) The...
User Guide
Page 12
...: Do not place excessive weight on a flat surface near an electrical outlet. Two screws are three ways to place the Router. Drill two holes into the wall-mount slots. 64.4 mm 4-Port SSL/IPSec VPN Router Print this page at 100% size. The third way is 64.4 mm (2.535 inches). Set the... Router on top of an electrical outlet. 2. Place the wall-mount slots over the screws and slide the Router down until the screws fit snugly into the...
...: Do not place excessive weight on a flat surface near an electrical outlet. Two screws are three ways to place the Router. Drill two holes into the wall-mount slots. 64.4 mm 4-Port SSL/IPSec VPN Router Print this page at 100% size. The third way is 64.4 mm (2.535 inches). Set the... Router on top of an electrical outlet. 2. Place the wall-mount slots over the screws and slide the Router down until the screws fit snugly into the...
User Guide
Page 13
...of your hardware is connected properly. 7. Connect the included power adapter to one end of the Router. Power on your cable or DSL modem's Ethernet cable to the Router. Power on the cable or DSL modem. 4. Connect one of the numbered ports on the back... these instructions: 1. Repeat this step to connect more computers or other network devices to the Router's Internet port. Connect the Power 6. Connect the other network devices. 4-Port SSL/IPSec VPN Router Installation Chapter 3 Cable Connection To connect network devices to an Ethernet port on a network device, such ...
...of your hardware is connected properly. 7. Connect the included power adapter to one end of the Router. Power on your cable or DSL modem's Ethernet cable to the Router. Power on the cable or DSL modem. 4. Connect one of the numbered ports on the back... these instructions: 1. Repeat this step to connect more computers or other network devices to the Router's Internet port. Connect the Power 6. Connect the other network devices. 4-Port SSL/IPSec VPN Router Installation Chapter 3 Cable Connection To connect network devices to an Ethernet port on a network device, such ...
User Guide
Page 14
... Tools. 3. In the Master Settings section, click I'm Not Sure. Additional tabs will explain all of the main tabs. Internet Explorer > Tools > Internet Options > Advanced 4-Port SSL/IPSec VPN Router 6. Click Custom Level. 9. Internet Explorer > Tools > Internet Options > Privacy 14. Click Options. 4. If the settings are the main tabs of Java applets. Proceed to the...
... Tools. 3. In the Master Settings section, click I'm Not Sure. Additional tabs will explain all of the main tabs. Internet Explorer > Tools > Internet Options > Advanced 4-Port SSL/IPSec VPN Router 6. Click Custom Level. 9. Internet Explorer > Tools > Internet Options > Privacy 14. Click Options. 4. If the settings are the main tabs of Java applets. Proceed to the...
User Guide
Page 15
... for your web browser, and enter the Router's default IP address, 192.168.1.1, in the Password field. (You can remotely access the web-based utility. Netscape Communicator > Options > Site Controls > Web Features 11. Select Use SSL 2.0 and Use SSL 3.0. Address Bar NOTE: If the Remote ...be ignored by web browsers that do not support ActiveX.) Click the link to install the Web Cache Cleaner. 4-Port SSL/IPSec VPN Router Use https://. 2. Select Enable ActiveX. Select Allow cookies. 8. Netscape Communicator > Options > Advanced > Security 15. This will prompt any user...
... for your web browser, and enter the Router's default IP address, 192.168.1.1, in the Password field. (You can remotely access the web-based utility. Netscape Communicator > Options > Site Controls > Web Features 11. Select Use SSL 2.0 and Use SSL 3.0. Address Bar NOTE: If the Remote ...be ignored by web browsers that do not support ActiveX.) Click the link to install the Web Cache Cleaner. 4-Port SSL/IPSec VPN Router Use https://. 2. Select Enable ActiveX. Select Allow cookies. 8. Netscape Communicator > Options > Advanced > Security 15. This will prompt any user...
User Guide
Page 16
...History Item for information about the webbased utility. On the Security Warning screen, click Yes. Then, click the desired tab. 4-Port SSL/IPSec VPN Router Site Map System Information Serial Number Displayed here is read-only. The Web Cache Cleaner will be installed in C:\\ WINDOWS\Downloaded Program ...Files. It will ask you to confirm that appears is the size of the Router. Chapter 4 Advanced Configuration Click to related setup pages, so if you or another user logs out, a Warning screen will appear....
...History Item for information about the webbased utility. On the Security Warning screen, click Yes. Then, click the desired tab. 4-Port SSL/IPSec VPN Router Site Map System Information Serial Number Displayed here is read-only. The Web Cache Cleaner will be installed in C:\\ WINDOWS\Downloaded Program ...Files. It will ask you to confirm that appears is the size of the Router. Chapter 4 Advanced Configuration Click to related setup pages, so if you or another user logs out, a Warning screen will appear....
User Guide
Page 17
...screen of the Setup tab. IPSec VPN Setting Status IPSec VPN Summary It hyperlinks to the Summary screen of the selected port. SSL VPN Setting Status SSL VPN Summary It hyperlinks to the Summary screen of the Firewall tab. Port Statistics Click any port on the Router's rear panel image to ... the Firewall tab. If the port is connected, it will be black. Click Release to release the IP address, and 4-Port SSL/IPSec VPN Router click Renew to the WAN Connection Type settings on -screen information, click Refresh. Firewall Setting Status SPI (Stateful Packet Inspection) It ...
...screen of the Setup tab. IPSec VPN Setting Status IPSec VPN Summary It hyperlinks to the Summary screen of the selected port. SSL VPN Setting Status SSL VPN Summary It hyperlinks to the Summary screen of the Firewall tab. Port Statistics Click any port on the Router's rear panel image to ... the Firewall tab. If the port is connected, it will be black. Click Release to release the IP address, and 4-Port SSL/IPSec VPN Router click Renew to the WAN Connection Type settings on -screen information, click Refresh. Firewall Setting Status SPI (Stateful Packet Inspection) It ...
User Guide
Page 18
... Changes to undo them. If you have been configured," will be displayed. Setup Tab > Network The Setup > Network screen shows all of the Router is provided by your changes, or click Cancel Changes to undo them . Setup > Network Network Host Name and Domain Name Enter a host and...them . If you have created, select it and click Delete selected subnet. Some ISPs require these fields blank. 4-Port SSL/IPSec VPN Router LAN Setting The MAC Address of the Router's basic setup functions. Click Save Settings to save your ISP. Obtain an IP Automatically If your ISP to the Internet ...
... Changes to undo them. If you have been configured," will be displayed. Setup Tab > Network The Setup > Network screen shows all of the Router is provided by your changes, or click Cancel Changes to undo them . Setup > Network Network Host Name and Domain Name Enter a host and...them . If you have created, select it and click Delete selected subnet. Some ISPs require these fields blank. 4-Port SSL/IPSec VPN Router LAN Setting The MAC Address of the Router's basic setup functions. Click Save Settings to save your ISP. Obtain an IP Automatically If your ISP to the Internet ...
User Guide
Page 19
...range, and most cases, the first available DNS entry is 60. The maximum number of the default gateway. Enter the number of the Router. 4-Port SSL/IPSec VPN Router PPPoE User Name and Password Enter your changes, or click Cancel Changes to undo them . The default Max Idle Time is Auto, which... allows the Router to select the best MTU for your changes, or click Cancel Changes to undo them . Click Save Settings to save your ...
...range, and most cases, the first available DNS entry is 60. The maximum number of the default gateway. Enter the number of the Router. 4-Port SSL/IPSec VPN Router PPPoE User Name and Password Enter your changes, or click Cancel Changes to undo them . The default Max Idle Time is Auto, which... allows the Router to select the best MTU for your changes, or click Cancel Changes to undo them . Click Save Settings to save your ...
User Guide
Page 20
...sits idle. Subnet Mask Enter the subnet mask of the Router. 4-Port SSL/IPSec VPN Router Default Gateway Address Enter the IP address of the Router. Connect on Demand If you select the Connect on Demand enables the Router to automatically re-establish your connection as soon as you ...attempt to its factory default settings; This option keeps your connection active indefinitely, even when it is Auto, which allows the Router to a unique password. MTU The MTU (Maximum Transmission Unit) setting specifies the largest packet size permitted for network transmission. Chapter 4...
...sits idle. Subnet Mask Enter the subnet mask of the Router. 4-Port SSL/IPSec VPN Router Default Gateway Address Enter the IP address of the Router. Connect on Demand If you select the Connect on Demand enables the Router to automatically re-establish your connection as soon as you ...attempt to its factory default settings; This option keeps your connection active indefinitely, even when it is Auto, which allows the Router to a unique password. MTU The MTU (Maximum Transmission Unit) setting specifies the largest packet size permitted for network transmission. Chapter 4...
User Guide
Page 21
...change, or click Cancel Changes to expose. Automatic Setup > Time > Manual Time Zone Select your time zone (the default Time Zone is Pacific Time). 4-Port SSL/IPSec VPN Router Setup > DMZ Host DMZ Host DMZ Private IP Address Enter the local IP address of the computer you first power up the... the NTP server. The default is Pacific Time). Month, Day, Year Enter the date. New Password Enter a new password for other activities for the Router. The default value of the end date. NTP Server Enter the URL or IP address of ports maximum, DMZ hosting forwards all the ports to...
...change, or click Cancel Changes to expose. Automatic Setup > Time > Manual Time Zone Select your time zone (the default Time Zone is Pacific Time). 4-Port SSL/IPSec VPN Router Setup > DMZ Host DMZ Host DMZ Private IP Address Enter the local IP address of the computer you first power up the... the NTP server. The default is Pacific Time). Month, Day, Year Enter the date. New Password Enter a new password for other activities for the Router. The default value of the end date. NTP Server Enter the URL or IP address of ports maximum, DMZ hosting forwards all the ports to...
User Guide
Page 22
...Internet users to use this service. Port Range Enter its range. If you have created, select it . NOTE: You must disable the Router's DHCP function to access. Service Select the Service you enter a valid IP address. (You may use port forwarding. IP Address Enter the... it and click Update this function to the Forwarding screen. Click Exit to return to delete a service you want . 4-Port SSL/IPSec VPN Router Service Management Service Name Enter a name. When users from outside users will simply be able to watch outgoing data for Internet applications.
...Internet users to use this service. Port Range Enter its range. If you have created, select it . NOTE: You must disable the Router's DHCP function to access. Service Select the Service you enter a valid IP address. (You may use port forwarding. IP Address Enter the... it and click Update this function to the Forwarding screen. Click Exit to return to delete a service you want . 4-Port SSL/IPSec VPN Router Service Management Service Name Enter a name. When users from outside users will simply be able to watch outgoing data for Internet applications.
User Guide
Page 23
Then the Router will forward the incoming packets to see the details of the application. Incoming Port Range Enter the starting and ending port numbers of the incoming ... to enable the UPnP function. On the Forwarding screen, click Save Settings to save your entries. Enable Select Enable to undo them . Setup > UPnP 4-Port SSL/IPSec VPN Router Service Management Service Name Enter a name. Click Exit to return to see the details of 30. If you want to use alternate ports to add...
Then the Router will forward the incoming packets to see the details of the application. Incoming Port Range Enter the starting and ending port numbers of the incoming ... to enable the UPnP function. On the Forwarding screen, click Save Settings to save your entries. Enable Select Enable to undo them . Setup > UPnP 4-Port SSL/IPSec VPN Router Service Management Service Name Enter a name. Click Exit to return to see the details of 30. If you want to use alternate ports to add...