Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Create a new article
993
Views
0
Helpful
0
Comments

VPN Setup Wizard on the RVS4000 Router

smallbusiness
Community Manager
Community Manager

‎08-18-2017 07:58 PM - edited ‎03-21-2019 12:41 AM

Article ID:1980

VPN Setup Wizard on the RVS4000 Router

Objective

Virtual Private Network (VPN) is a network technology that is used to create a secure connection over a public network. This allows remote hosts to act as if they were located on the same local network. The RVS4000 supports the VPN protocol Internet Protocol Security (IPSec). The VPN Setup Wizard allows for the configuration of a IPSec VPN tunnel between two VPN routers in a fast and efficient manner.

Note: Download the VPN setup wizard from the installation CD-ROM that came with the device or download the wizard from the Cisco support website.

This article explains how to configure the VPN setup wizard on the RVS4000.

Applicable Device

• RVS4000

Software Version

• v2.0.3.2

VPN Setup Wizard Prerequisites

These options must be configured in order for the VPN setup wizard to work. Configure the following settings on both routers if the VPN connection will be configured remotely from the internet. Configure the following settings only on the remote router if the VPN connection will be configured on a computer that is attached to a LAN port of one of the VPN routers. Also, ensure that 8080 is entered in the port field and that HTTPS has been selected in order for the VPN connection to work.

Step 1. Log in to the Router Configuration Utility and choose Firewall > Basic Settings. The Basic Settings page opens:

Step 2. Click the Enable radio button in the Remote Management field.

Step 3. Enter 8080 into the Port field.

Step 4. Click the Enable radio button in the HTTPS field.

Step 5. Click Save. The configuration is saved.

Step 6. Check to ensure that the LAN IP addresses of the routers are in different subnets, this allows for the VPN connection.

Note: The VPN Setup Wizard assumes the fact that no firewall or NAT device is in front of the VPN router.

VPN Setup Wizard

Step 1. Run the VPN Setup Wizard. The Welcome page opens:

Step 2. Click Start to begin the VPN setup wizard. The License Agreement page opens:

Step 3. Read the License Agreement and check I accept this agreement to continue.

Step 4. Click Next to proceed. The Prerequisites page opens:

Step 5. Read the prerequisite information about the wizard and click Next to proceed. The Your Location page opens:

Step 6. Click the radio button that corresponds to the desired method to build the VPN connection.

• Build VPN connection from Local LAN port of one router — This option is chosen if your computer is a computer on the LAN of one of the VPN routers.

• Build VPN connection from Internet remotely — This option is chosen if your computer is remote to both VPN routers

Build VPN Connection Locally

Step 7. Click Next to proceed. The Router 1 and 2 Parameters page opens:

Step 8. Enter the following fields.

• Router 1 (Local) User Name — The username of the local router.

• Router 1 ( Local) Password — The password that corresponds to the username of the local router.

• Router 2 ( Remote) User Name — The username of the remote router.

• Router 2 (Remote) Password — The password that corresponds to the username of the remote router.

Step 9. Click the radio button that corresponds to the desired method of WAN IP definition.

• Router 2 (Remote) WAN IP Address — Enter the WAN IP address of the remote router.

• Router 2 (Remote) IP by DNS Resolved — Enter the DDNS domain name that is mapped to the WAN IP address of the remote router. This option is chosen if the remote router does not have a static WAN IP and uses a Dynamic Domain Name Server (DDNS) service.

Step 10. Enter a name for the tunnel in the Tunnel Name field.

Step 11. Enter the pre-shared key for the tunnel in the Pre-shared key field. The pre-shared key is used to authenticate the remote peer of the VPN connection.

Step 12. Click Next to configure the tunnel. The Network Card window appears.

Step 13. From the drop-down list choose the network card that is used to connect to the local router.

Step 14. Click OK. The Confirm Settings page opens:

The following fields display statistics of the VPN tunnel in the Review your configuration settings area.

• Tunnel Name — The name of the tunnel.

• Exchange Type — The mode at which the VPN peers exchange IKE information.

– Main Mode — Offers more security, but is slower than aggressive mode.

– Aggressive Mode — Offers faster speed, but is less secure than main mode.

• Router 2 Remote IP Type — The IP type of router 2.

• Router 2 WAN IP — The WAN IP of the remote router.

• Router 2 IP — The LAN IP range of the users on the remote network.

• Router 1 Remote IP Type — The IP type of router 1.

• Router 1 WAN IP — The WAN IP of the local router.

• Router 1 IP — The LAN IP range of the users on the local network.

Step 15. (Optional) Click Click to view the recommended VPN parameters that the VPN setup wizard will use. The Summary window appears.

• Secure Association — The mode at which the VPN peers exchange IKE information.

• Authentication Method — The method of which the routers authenticate each other. The VPN setup wizard configures the routers to authenticate through the use of a preshared key

• Encryption Protocol — The encryption protocol that is used to encrypt and decrypt the ESP packets.

• Authentication Protocol — The authentication protocol that is used to authenticate the ESP packets.

• Key Life — The amount of time the IKE key is valid. Once this time expires, a new key is negotiated automatically.

• IKE Life Time — The amount of time the IKE configuration is valid. Once this time expires, a new IKE configuration is negotiated automatically.

• NETBIOS — Allows NetBios traffic to pass through the VPN tunnel uninterrupted.

Step 16. Click Close to return to the Confirm Settings page.

Step 17. Click Go to configure the VPN settings to the routers automatically. The VPN Tunnel is Configured page opens:

Step 18. Click Testing to test the VPN connection.

Step 19. Click X to exit the wizard.

Build VPN Connection Remotely

Step 7. Click Next to proceed. The Router 1 and 2 Parameters page opens:

Step 8. In the following fields, enter the appropriate values.

• Router 1 User Name — The username of router 1.

• Router 1 Password — The password that corresponds to the username of router 1.

• Router 2 User Name — The username of router 2.

• Router 2 Password — The password that corresponds to the username of router 2.

Step 9. Click the radio button that corresponds to the desired method of WAN IP definition for router 1.

• Router 1 WAN IP Address — Enter the WAN IP address of router 1.

• Router 1 IP by DNS Resolved — Enter the DDNS domain name that is mapped to the WAN IP address of router 1. This option is chosen if router 1 does not have a static WAN IP and uses a Dynamic Domain Name Server (DDNS) service.

Step 10. Click the radio button that corresponds to the desired method of WAN IP definition for router 2.

• Router 2 WAN IP Address — Enter the WAN IP address of router 2.

• Router 2 IP by DNS Resolved — Enter the DDNS domain name that is mapped to the WAN IP address of router 2. This option is chosen if router 2 does not have a static WAN IP and uses a Dynamic Domain Name Server (DDNS) service.

Step 11. Enter a name for the tunnel in the Tunnel Name field.

Step 12. Enter the pre-shared key for the tunnel in the Pre-shared key field. The pre-shared key is used to authenticate the remote peer of the VPN connection.

Step 13. Click Next to proceed. The Confirm Settings page opens:

The following fields display statistics of the VPN tunnel in the Review your configuration settings area.

• Tunnel Name — The name of the tunnel.

• Exchange Type — The mode at which the VPN peers exchange IKE information.

– Main Mode — Offers more security, but is slower than aggressive mode.

– Aggressive Mode — Offers faster speed, but is less secure than main mode.

• Router 2 Remote IP Type — The IP type of router 2.

• Router 2 WAN IP — The WAN IP of the remote router.

• Router 2 IP — The LAN IP range of the users on the remote network.

• Router 1 Remote IP Type — The IP type of router 1.

• Router 1 WAN IP — The WAN IP of the local router.

• Router 1 IP — The LAN IP range of the users on the local network.

Step 14. (Optional) Click Click to view the recommended VPN parameters that the VPN setup wizard will use. The Summary window appears.

• Secure Association — The mode at which the VPN peers exchange IKE information.

• Authentication Method — The method of which the routers authenticate each other. The VPN setup wizard configures the routers to authenticate through the use of a preshared key

• Encryption Protocol — The encryption protocol that is used to encrypt and decrypt the ESP packets.

• Authentication Protocol — The authentication protocol that is used to authenticate the ESP packets.

• Key Life — The amount of time the IKE key is valid. Once this time expires, a new key is negotiated automatically.

• IKE Life Time — The amount of time the IKE configuration is valid. Once this time expires, a new IKE configuration is negotiated automatically.

• NETBIOS — Allows NetBios traffic to pass through the VPN tunnel uninterrupted.

Step 15. Click Close to return to the Confirm Settings page.

Step 16. Click Go to configure the VPN settings to the routers automatically. The VPN Tunnel is Configured page opens:

Step 17. Click Testing to test the VPN connection.

Step 18. Click X to exit the wizard.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents