Cisco WRVS4400N - Small Business Wireless-N Gigabit Security Router Administration Manual
  1. Manuals
  2. Brands
  3. Cisco Manuals
  4. Wireless Router
  5. WRVS4400N - Small Business Wireless-N Gigabit Security...
  6. Administration manual

Cisco WRVS4400N - Small Business Wireless-N Gigabit Security Router Administration Manual

Wireless-n gigabit security router with vpn
Hide thumbs Also See for WRVS4400N - Small Business Wireless-N Gigabit Security Router:
Table of Contents

Advertisement

Quick Links

Download this manual
ADMINISTRATION
GUIDE
Cisco Small Business
WRVS4400N Wireless-N Gigabit Security Router
with VPN

Advertisement

Table of Contents
loading

Related Manuals for Cisco WRVS4400N - Small Business Wireless-N Gigabit Security Router

Summary of Contents for Cisco WRVS4400N - Small Business Wireless-N Gigabit Security Router

  • Page 1 ADMINISTRATION GUIDE Cisco Small Business WRVS4400N Wireless-N Gigabit Security Router with VPN...
  • Page 2 Cisco and the Cisco Logo are trademarks of Cisco Systems, Inc. and/or its affiliates in the U.S. and other countries. A listing of Cisco's trademarks can be found at www.cisco.com/go/trademarks. Third party trademarks mentioned are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company.

  • Page 3: Table Of Contents

    Setting Up Your Wireless-N Router Configuring Wireless Settings Configuring Firewall Settings Configuring the ProtectLink Web Service Configuring the VPN Settings Configuring the QoS Settings Configuring the Administration Settings Configuring IPS Settings Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 4 Before You Begin Running the VPN Router Software Wizard Appendix A: Troubleshooting Frequently Asked Questions Appendix B: Using Cisco QuickVPN for Windows 2000, XP, or Vista Overview Before You Begin Installing the Cisco QuickVPN Software Using the Cisco QuickVPN Software...
  • Page 5 How to Purchase, Register, or Activate the Service How to Use the Service Appendix F: Specifications General Performance Management Security Layer 2 Environmental Appendix G: Where to Go From Here Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 6: Chapter 1: Introduction

    The Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN is equipped with advanced security technologies like Intrusion Prevention System (IPS), Stateful Packet Inspection (SPI) Firewall, IP based Access List (IP ACL), and Network Address Port Translation (NAPT, also called NAT as a more generic term).
  • Page 7 You can also use the VPN capability to allow users on your small office network to securely connect out to a corporate network. The QoS features of the Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN provide consistent voice and video quality throughout your business.

  • Page 8: Chapter 2: Networking And Security Basics

    LAN side. You can use multiple Cisco WRVS4400N Wireless-N Gigabit Security Routers to connect multiple LANs together. This usually applies to a medium-sized or larger...

  • Page 9: The Use Of Ip Addresses

    The second level router only forwards data packets through a wired network so you don’t have to use the Cisco WRVS4400N Wireless-N Gigabit Security Router. You can use any wired router in the Cisco family such as RVS4000 that has 4 LAN ports and 1 WAN port.
  • Page 10 Internet for your network is the router’s Internet IP address. However, even this Internet IP address can be blocked so the router and network seem invisible to the Internet. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 11: The Intrusion Prevention System (Ips)

    Overflow, Access Control, Scan, Trojan Horse, Misc., P2P, IM, Virus, Worm, and Web Attacks. It is recommended that you update your IPS signature file regularly to thwart new attack types. The following diagram illustrates a number of IPS scenarios. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 12 Networking and Security Basics The Intrusion Prevention System (IPS) Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 13: Chapter 3: Planning Your Virtual Private Network (Vpn)

    Internet—the firewall will no longer protect that data. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 14: Mac Address Spoofing

    That’s a long way to go for unsecured data and this is when a VPN serves its purpose. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 15: What Is A Vpn

    VPN can be used to create secure networks linking a central office with branch offices, telecommuters, and/or professionals on the road (travelers can connect to a VPN router using any computer with the Cisco QuickVPN Client software.) There are two basic ways to create a VPN connection: •...

  • Page 16: Vpn Router To Vpn Router

    Internet, distance is not a factor. Using the VPN, the telecommuter now has a secure connection to the central office’s network, as if he were physically connected. For more information, refer to Appendix C, “Configuring a Gateway- to-Gateway IPSec Tunnel.” Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 17 The following is an example of a computer-to-VPN router VPN. In her hotel room, a traveling businesswoman connects to her ISP. Her notebook computer has the Cisco QuickVPN Client software, which is configured with her office’s IP address. She accesses the Cisco QuickVPN Client software and connects to the VPN router at the central office.

  • Page 18: Chapter 4: Getting Started With The Wrvs4400N Router

    Front Panel, page 19 • Back Panel, page 20 • WRVS4400N Antennas, page 20 • Placement Options, page 21 • Installing the Router, page 24 • Configuring the Router, page 26 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 19: Front Panel

    Internet port. If the router is connected to a cable or DSL modem, typically the 100 LED will be the only LED lit up, indicating 100 Mbps. Flashing indicates activity. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 20: Back Panel

    The router has three non-detachable 1.8dBi omni-directional antennas. The three antennas have a base that can rotate 90 degrees when in the standing position. The three antennas support 2X3 MIMO diversity in wireless-N mode. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 21: Placement Options

    You can place the router horizontally on the rubber feet, mount it in the stand, or mount it on the wall. Desktop Option For desktop placement, place the Cisco WRVS4400N router horizontally on a surface so it sits on its four rubber feet. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 22: Stand Option

    With the two large prongs of one of the stands facing outward, insert the short STEP 2 prongs into the little slots in the router and push the stand upward until the stand snaps into place. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 23: Wall Option

    Repeat step 2 with the other stand. STEP 3 Wall Option To mount the Cisco WRVS4400N router on the wall, follow these steps. Determine where you want to mount the router and install two screws (not STEP 1 supplied) that are 2-9/16 in. apart (approximately 64.5 mm).

  • Page 24: Installing The Router

    4) on the back of the router. Connect the other end to an Ethernet port on a PC. Repeat step 1 to connect up to four PCs, switches, or other network devices to the STEP 2 router. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 25 The Power and Internet LEDs on the front panel will light up green as soon as the STEP 6 power adapter is connected properly. Power on the PCs. STEP 7 The router hardware installation is now complete. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 26: Configuring The Router

    Complete the User Name and Password fields. • PPTP: PPTP is a service used in Europe only. If you are using a PPTP connection, check with your ISP for the necessary setup information. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 27 WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide on your CD-ROM. You can also access this guide and other related documentation on Cisco.com, as indicated in the next section. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 28: Chapter 5: Setting Up And Configuring The Wrvs4400N Wireless-N Router

    Configuring the QoS Settings, page 118 • Configuring the Administration Settings, page 123 • Configuring IPS Settings, page 135 • Configuring the L2 Switch Settings, page 141 • Viewing Status, page 152 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 29: Accessing The Web-Based Utility

    The Authentication Required dialog box appears. Enter admin in the User Name field, and enter your password (default password is STEP 2 admin) in the Password field. Then, click OK. The Summary window appears. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 30: Navigating The Utility

    Navigating the Utility The web-based utility consists of the following main windows: • Setup • Wireless • Firewall • ProtectLink • • • Administration • • L2 Switch • Status Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 31 • Time—Sets up the router’s time settings. • IP Mode—Provides options for the IPv4 mode or the Dual-Stack IPv4 and IPv6 mode. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 32 Internet applications on your network that use a range of ports. • Port Range Triggering—Sets up triggered ranges and forwarded ranges to allow special Internet applications to pass through this NAT router. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 33 ProtectLink This window allows you to check e-mail messages, filter website addresses (URLs), and block potentially malicious websites for the Cisco ProtectLink Web hosted service, thereby providing security for your network. This window allows you to configure VPN tunnels and accounts to establish a secured channel through the Internet through the following windows: •...
  • Page 34 P2P/IM—Allows or blocks specific Peer-to-Peer (P2P) networks and Instant Messaging (IM) applications. • Report—Provides reports of network traffic and malicious attacks. • Information—Provides the signature file version and the protection scope of the IPS system. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 35 Local Network—Provides status information about the local network (four Ethernet ports). • Wireless LAN—Provides status information on Wireless LAN. • System Performance—Provides traffic statistics on LAN and Wireless LAN ports. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 36: Setting Up Your Wireless-N Router

    Some users may need to enter additional information to connect to the Internet through an ISP (Internet Service Provider) or broadband (DSL, cable modem) carrier. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 37: Configuring Basic Setup Settings

    Select the level of security in the Wireless > Security Settings window and complete the options for the selected security mode. When the appropriate security mode is configured, disable SSID Broadcast on the Basic Settings window. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 38 System up time—Displays the length of time that has elapsed since the router was last reset. DRAM—Displays the amount of DRAM installed in the router. Flash—Displays the amount of flash memory installed in the router. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 39 IPSec VPN Setting Status IPSec VPN Summary—Displays the VPN > Summary window. Tunnel(s) Used—Displays the number of VPN tunnels currently being used. Tunnel(s) Available—Displays the number of VPN tunnels that are available. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 40 Automatic Configuration - DHCP Server on page 42 • Static IP on page 43 • PPPoE on page 44 • PPTP on page 45 • Heart Beat Signal on page 47 • L2TP on page 48 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 41 1500 (standard MTU size on Ethernet media). To configure the DDNS service, see Configuring DDNS Service Settings on page STEP 6 Click Save. STEP 7 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 42 To have the router automatically get its IP address from your ISP’s DHCP server, leave the connection type at its default setting of Automatic Configuration - DHCP Server. Most cable modem ISPs use the default option. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 43 Internet. • Primary DNS (Required) and Secondary DNS (Optional)—Enter the IP addresses of the primary and secondary DNS server your ISP provided you with. These servers resolve domain-name-to-IP address mappings. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 44 To use this option, click the option next to Keep Alive. In the Redial Period field, you specify how often you want the router to check the Internet connection. This option is enabled by default Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 45 Default Gateway—Enter the default gateway IP address provided by your ISP. • PPTP Server—Enter the IP address of the PPTP server. • User Name and Password—Enter the user name and password provided by your ISP. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 46 Internet connection. This option is enabled by default and the default Redial Period is 30 seconds. Use this option to minimize your Internet connection response time as it is always connected. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 47 Internet connection terminates in the Max Idle Time field. Use this option to minimize your DSL connection time if it is charged based on time. This option is disabled by default. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 48 Subnet Mask—Enter the subnet mask provided by your ISP along with your IP address. This is the router’s Subnet Mask. • Gateway—Enter the default gateway IP address provided by your ISP. • L2TP Server—Enter the IP address of the L2TP server. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 49 Internet connection. This option is enabled by default and the default Redial Period is 30 seconds. Use this option to minimize your Internet connection response time as it is always connected. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 50 • User Name, Password, and Host Name—Enter the User Name, Password, and Host Name of the account you set up with DynDNS.org. • Status—The status of the DDNS service connection. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 51 After entering the necessary information, the router advises the DDNS service of your current WAN (Internet) IP address whenever this address changes. If you are using TZO, do not use the TZO software to perform this IP address NOTE update. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 52 Subnet Mask—Select the subnet mask from the drop-down menu. The default value is 255.255.255.0. IP Reserved for Internal Usage—Enter a value between 1 and 254 to specify the IP address to use internally. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 53 IP address before it sends a renewal request to the DHCP server. The default value is 0, which actually means one day. Static DNS 1-3—If applicable, enter the IP address(es) of your DNS servers. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 54 Router Advertisement—Enable this option to allow the router to send out IPv6 router advertisement packets periodically. This helps IPv6 hosts to learn their IPv6 prefix and setup their IPv6 address automatically. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 55 Internet gaming and video-conferencing. DMZ Hosting forwards traffic to all the ports for the specified personal computer simultaneously, unlike Port Range Forwarding that can only forward a maximum of 15 ranges of ports. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 56 To disable the DMZ feature, select Disable. • DMZ Host IP Address—Enter (complete) the IP address of the computer to be exposed to the Internet, for DMZ hosting. Click Save. STEP 3 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 57 Clone My PC’s MAC button—When Mac Address Clone is enabled, click this button to copy the MAC address of the network adapter in the computer that you are using to connect to the Web-based utility. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 58 Operating Mode and settings for Dynamic Routing, Static Routing, and Inter-VLAN routing. To configure your router’s advanced settings, follow these steps: Click Setup > Advanced Routing STEP 1 Fill in the settings for advanced routing configuration: STEP 2 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 59 For RIP Send Packet Version, choose the version of RIP packets you want to send to peers (RIPv1 or RIPv2) to match the version supported by other routers on your LAN. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 60 It is used to define the priority on which route to use if there is a conflict between a static route and dynamic route. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 61 Enable Inter-VLAN Routing if needed. STEP 6 Select Enable to allow packets to be routed between VLANs that are in different subnets. The default is Enable. Click Save. STEP 7 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 62 Set the local time Manually—If you wish to enter the time and date manually, select the Date from the drop-down fields and enter the hour, minutes, and seconds in the Time field using 24 hour format (example 10:00pm would be entered 22:0:0). Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 63 User Defined NTP Server—To use your own NTP server, select the Enabled option. The default is Disabled. NTP Server IP Address—Enter the IP address of your own NTP server. Click Save. STEP 3 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 64 IPv4 Only—Select this option to use IPv4 on the Internet and local network. • Dual-Stack IP—Select this option to use IPv4 on the Internet and IPv4 and IPv6 on the local network. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 65 IPv4 addresses of the remote 6to4 gateways. Permit following sites—Allow only a limited set of 6to4 gateways to establish tunnel with the router. Up to 20 sites can be configured and they can send traffic simultaneously. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 66 Setting Up and Configuring the WRVS4400N Wireless-N Router Setting Up Your Wireless-N Router Block following sites—Prevent a limited set of 6to4 gateways from establishing tunnels with the router. Up to 20 sites can be configured. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 67 Static 6to4 DNS entry—Allow users to configure static DNS entry to map hostname to IPv6 address. This provides a convenient way for users to access remote IPv6 hosts. Click Save. STEP 3 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 68: Configuring Wireless Settings

    The Wireless > Basic Settings window allows you to change the basic wireless network settings. To change the basic wireless settings of the router, follow these steps: Click Wireless > Basic Settings STEP 1 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 69 Wireless-B clients cannot be connected in this mode. B/G/N-Mixed—All the wireless client devices can be connected at their respective data rates in this mixed mode. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 70 Configuring Advanced Wireless Settings on page 81), the router automatically selects the adjacent 20MHz channel to combine them into a wider channel. • Multiple BSSID—Select Enabled or Disabled as required. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 71 SSID from being seen on networked personal computers. The default is Enabled in order to help users configure their network before use. Click Save. STEP 3 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 72: Configuring Wireless Security

    802. 1 1e. WEP stands for Wired Equivalent Privacy, Enterprise refers to using RADIUS server for authentication, while RADIUS stands for Remote Authentication Dial-In User Service.) Refer to the appropriate instructions below after you select the Authentication Type and SSID Interoperability settings. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 73 Setting Up and Configuring the WRVS4400N Wireless-N Router Configuring Wireless Settings The following section describes the detailed options for each Security Mode. • Disable—To disable wireless security completely, select Disable. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 74 64-bit encryption or 26 characters in length for 128-bit encryption. Tx Key—Select one of the k eys to be used for data encryption (when you manually enter multiple WEP keys). Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 75 Shared Key—Enter a WPA Shared Key of 8-63 characters. Key Renewal—Enter a Key Renewal Timeout period, which instructs the router how often it should change the encryption keys. The default is 3600 seconds. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 76 Shared Key—Enter a WPA Shared Key of 8-63 characters. Key Renewal—Enter a Key Renewal Timeout period, which instructs the router how often it should change the encryption keys. The default is 3600 seconds. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 77 Shared Key—Enter the Shared Secret key used by the router and RADIUS server. Key Renewal—Enter a Key Renewal Timeout period, which instructs the router how often it should change the encryption keys. The default is 3600 seconds. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 78 Shared Key—Enter the Shared Secret key used by the router and RADIUS server. Key Renewal—Enter a Key Renewal Timeout period, which instructs the router how often it should change the encryption keys. The default is 3600 seconds. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 79 RADIUS server. Key Renewal—Enter a Key Renewal Timeout period, which instructs the router how often it should change the encryption keys. The default is 3600 seconds. Click Save. STEP 4 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 80: Configuring Connection Control

    Configure the Connection Control List to either permit or block specific wireless STEP 2 client devices connecting to (associating with) the wireless router: • Select SSID—Select the desired SSID. • Enabled/Disabled—Enable or disable wireless connection control. The default is Disabled. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 81: Configuring Advanced Wireless Settings

    The router adopts several new parameters to adjust the channel bandwidth and guard intervals to improve the data rate dynamically. It is recommended that you let your router automatically adjust the parameters for maximum data throughput. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 82 Wireless-B and Wireless-G connections still use 20MHz channel. The def a ult is Auto. • Guard Interval—Select the guard interval manually for Wireless-N connections. The two options are Short (400ns) and Long (800ns). The default is Auto. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 83 This value should remain at its default setting of 2346. If you encounter inconsistent data flow, only minor modifications are recommended. Click Save. STEP 3 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 84 VLAN Enable/Disable VLAN—Enable this feature only if the hubs/switches on your LAN support the VLAN standard. AP Management VLAN—Define the VLAN ID used for management. VLAN ID—Enter the VLAN ID. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 85 QoS settings (in IP or layer 2 header). WMM provides the capability to prioritize traffic in your environment. The default is Enabled. Click Save. STEP 3 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 86 Configure the WDS settings: STEP 2 • WDS MAC Address—Displays the read-only MAC address for the WDS. • Allow wireless signal to be repeated by a repeate—Select Auto or Manual as required. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 87 Remote Access Point's MAC Address—Either enter the MAC address directly, or, if the other access point is on-line, you can click the Site Survey button and select from a list of available access points. Click Save. STEP 3 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 88: Configuring Firewall Settings

    Settings only work when NAT is enabled. For WAN traffic, NAPT settings are applied first, then the SPI Firewall NOTE settings, followed by IP based Access List (which requires more CPU power). Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 89: Configuring Basic Settings

    Internet so it seems to be hidden. The default is Enable. • Remote Management—When enabled, the router allows the web-based utility to be accessed from the Internet. The default is Disable. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 90 Internet sites blocked by the router. Denying Proxy blocks access to any WAN proxy servers. Click Save. STEP 3 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 91 WAN and LAN sides. The rule is enabled if the Enable button is checked and if the date and time are matched. If any of the conditions are not met, the rule is not used to check against packets. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 92 • Edit button—Use this button to go to Edit IP ACL Rule window and modify this rule. • Delete button—Use this button to delete the ACL rule from the list. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 93 Fill in the fields defining the current rule: STEP 2 • Action—Select either Allow or Deny. Default is Allow. • Service—Select ALL or pre-defined (or user-defined) services from the drop-down menu. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 94 Whether to Deny or Allow Internet service for this policy • The time and date on which to enable this policy, and • The URLs or Keywords to apply this policy. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 95 Deleting a Policy on page 98 • Viewing all Policies on page 98 • Viewing or Changing the List of Personal Computers Covered by the Current Policy on page 98 Click Save. STEP 3 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 96 Everyday. Enter a range of hours and minutes during which the policy is in effect, or select 24 Hours. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 97 If any of these keywords appears in the URL of a web site, access to the site is blocked. Only the URL is checked, not the content of each Web page. NOTE Click Save. STEP 8 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 98 On the List of PCs window, you can define personal computers by MAC address or IP address. You can also enter a range of IP addresses if you want this policy to affect a group of personal computers. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 99: Configuring Single Port Forwarding

    External Port—Port number used by the service or Internet application. Internet users must connect using this port number. Check with the software documentation of the Internet application for more information. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 100: Configuring Port Range Forwarding

    WAN port IP address and the pre-defined port numbers. When users send these types of requests to your WAN port IP address via the Internet, the NAT router forwards those requests to the appropriate servers on your LAN. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 101 IP Address—For each application, enter the IP address of the personal computer running the specific application. • Enabled—Select Enabled to enable port range forwarding for the relevant application. Click Save. STEP 3 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 102: Configuring Port Range Triggering

    1000 for outgoing packets and 2000 for incoming packets. To configure port range triggering for the router, follow these steps: Click Firewall > Port Range Triggering. STEP 1 Configure port range triggering settings for the router: STEP 2 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 103 Forwarded Range. In the second field, enter the ending port number of the Forwarded Range. • Enabled—Select Enabled to enable port range triggering for the relevant application. Click Save. STEP 3 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 104: Configuring The Protectlink Web Service

    Setting Up and Configuring the WRVS4400N Wireless-N Router Configuring the ProtectLink Web Service Configuring the ProtectLink Web Service The Cisco ProtectLink Web service provides security for your network. It checks email messages, filters website addresses (URLs), and blocks potentially malicious websites.

  • Page 105: Configuring The Vpn Settings

    VPN Clients status: To display a VPN Status Summary for the router, follow these steps: Click VPN > Summary. STEP 1 View the VPN Status Summary information for the router: STEP 2 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 106 Local Group—Displays the IP address and subnet of the local group. Remote Group—Displays the IP address and subnet of the remote group. Remote Gateway—Displays the IP address of the remote gateway. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 107 Duration—Displays the total connection time of the latest VPN session. Disconnect—Check the Disconnect box at the end of each row in the VPN Clients Table and click Disconnect to disconnect a VPN Client session. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 108 Summary—Shows the settings and status of all enabled tunnels. • IPSec VPN Tunnel—Click Enable option to enable this tunnel. • Tunnel Name—Enter a name for this tunnel, such as “LA Office.” Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 109 To establish a connection for the current VPN tunnel, click Connect. STEP 6 To break the connection, click Disconnect. To view the VPN log, which shows details of each tunnel established, click View STEP 7 Log. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 110 IP Address—Enter the IP address on the local network. • Subnet Mask—If the Subnet option is selected, enter the mask to determine the IP addresses on the local network. Click Save. STEP 3 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 111 Remote Security Gateway Type—There are two types. They are IP Only, IP + Domain Name (FQDN) Authentication. The type of Remote Security Gateway should match with the Local Security Gateway Type of VPN devices in the other end of tunnel. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 112 IP—The IP address in this field must match the public IP address WAN IP address) of the remote gateway at the other end of this tunnel. Click Save. STEP 3 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 113 Group— For Diffie-Hellman key negotiation. There are 3 groups available for ISAKMP SA establishment, 768-bit, 1024-bit, 1536-bit represent different bits used in Diffie-Hellman mode operation. The default value is Group 768- bit. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 114 Viewing Connection Status The Status section of the VPN > IPSec VPN window shows the connection status for the selected tunnel. The state is either connected or disconnected. Click Save. STEP 3 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 115 VPN Client users. Enter the information at the top of the window and the users you've entered appear in the list at the bottom, showing their status. This works with the Cisco QuickVPN client only. (The router supports up to five Cisco QuickVPN Clients by default.) Additional QuickVPN Client licenses can be purchased separately.
  • Page 116 Browse to locate the file on your computer, then click Import. Certificate Last Generated or Imported—Displays the date and time when a certificate was last generated or imported. Click Save. STEP 3 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 117: Configuring Vpn Passthrough

    • PPTP Passthrough—Point-to-Point Tunneling Protocol (PPTP) allows the Point-to-Point Protocol (PPP) to be tunneled through an IP network. PPTP Passthrough is enabled by default. To disable PPTP Passthrough, select Disabled. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 118: Configuring The Qos Settings

    • Configuring DSCP on page 122 QoS allows you to perform bandwidth management, by either rate control or priority. You can also configure the QoS Trust Mode and DSCP settings. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 119 Add to list—After a rule is set up, click this button to add it to the list. The list can contain a maximum of 15 entries. Delete selected application—Click this button to delete a rule from the list. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 120 Add to list—After a rule is set up, click this button to add it to the list. The list can contain a maximum of 15 entries. Delete selected application—Click this button to delete a rule from the list. Click Save. STEP 3 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 121: Configuring Qos

    CoS priority from 0 to 7 from the drop-down menu. • CoS Setup Priority—The CoS priority from 0 to 7. Queue—Select the traffic forwarding queue, 1 to 4, to which the CoS priority is mapped. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 122 DSCP—The Differentiated Services Code Point value in the incoming packet. • Queue—Select the traffic forwarding queue, 1 to 4, to which the DSCP priority is mapped. • Restore Defaults—Click this button to restore the default DSCP values. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 123: Configuring The Administration Settings

    Backing Up and Restoring Configurations on page 131 • Restoring Factory Default Settings on page 132 • Rebooting the Router on page 133 • Upgrading the Router Firmware on page 134 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 124 Other accounts are not created by default so you can leave them alone. Make sure to change the first user account username and password NOTE when you configure your router for the first time. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 125 UPnP, keep the default setting, Enable. Otherwise, select Disable. • Management via WLAN—Control the access to the web-based utility from associated wireless clients. The default is Disable. Click Save. STEP 3 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 126 (Firewall, VPN, System, and ACL). You can configure the router to send the event log to you through e-mail, upload the log to syslog server, or view the log locally on the router. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 127 Email Alerts—If enabled, an e-mail is sent when the number of DoS events exceeds the defined threshold or the total events number exceed 100. If enabled, you must provide the e-mail address information. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 128 Local Log—Enable this if you want to see the log locally on the router. View Log button—If Local Log is enabled, click View Log to view the event log on the router. Click Save. STEP 3 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 129 Ping Size—Enter the size of the packet you want to use. Number of Pings—Enter the number of times you wish to ping the target device. Ping Interval—Enter the time period (in milliseconds) between each ping. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 130 Pair—Identifies a specific pair (A, B, C, or D) in the cable. Each cable consists of 8 pins (4 pairs). Cable Length—Displays the length of the cable in meters. Status—Displays the status of the pair. Click Save. STEP 3 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 131: Backing Up And Restoring Configurations

    Click Restore to start the restoration process. The could be helpful if you want to use the same configuration on a new hardware or after resetting to the factory defaults. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 132: Restoring Factory Default Settings

    Click Restore Factory Defaults to reset all configuration settings to their default STEP 2 values. If you click this button, all custom router settings are replaced by the default settings. When prompted, click OK to continue. STEP 3 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 133: Rebooting The Router

    To reboot the router, follow these steps: Click Administration > Reboot. STEP 1 Click Reboot to reboot the router. STEP 2 This operation does not cause the router to lose any of its stored settings. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 134: Upgrading The Router Firmware

    To upgrade firmware, download the latest firmware upgrade file for the product from www.cisco.com, extract the file to your computer, and perform these steps: Click Browse to locate the file firmware upgrade. Alternatively, enter the path to STEP 1 the file in the File field.

  • Page 135: Configuring Ips Settings

    You can use IPS together with the firewall, IP-based ACL, and IPsec VPN to achieve maximum security. The IPS is hardware-accelerated on this router. Configuring IPS The IPS > Configuration window displays general IPS settings. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 136 Click Browse to locate the signature file. Alternatively, enter the path to the file in the Signature Update field c. Click Update. Click Save. STEP 5 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 137 When users download files from the Internet by Peer-to-Peer (P2P) software, the WAN port bandwidth are occupied. Click Block to enable the blocking of the following P2P software applications. The default is Non-Block. GNUTELLA_EZPEER FASTTRACK KURO EDONKEY2000 BITTORRECT Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 138 Users might use IM software to chat with friends or transfer files, which can hog the bandwidth. Click Block to enable the blocking to the following IM software applications. The default is Non-Block. YAHOO_MESSENGER ODIGO REDIFF GOOGLE TALK IM_QQ Click Save. STEP 3 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 139 Attacked Category—Displays the category (type) of attack and the frequency (number of times) of the attacks in a table. Click the View Log button to view the log. STEP 2 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 140 Protect Scope—Displays a list of the categories of attacks that the IPS feature in the router protects against. These attacks includes DoS/DDoS, Buffer Overflow, Web Attack, Scan, Trojan Horse, and IM / P2P. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 141: Configuring The L2 Switch Settings

    The Layer 2 Switch window provides configurations to the layer 2 switching features on the four Ethernet LAN ports of the router. They include VLAN, port configuration, cable diagnostics, and RADIUS authentication. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 142 VLANs are broadcast and multicast domains. Broadcast and multicast traffic is transmitted only in the VLAN in which the traffic is generated. The WRVS4400N router supports up to 4 VLANs, including the default VLAN. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 143 ID numbers, then click Add Range. • Delete Selected VLAN—To delete a VLAN, select it form the VLAN list, then click Delete Selected VLAN. Click Save. STEP 3 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 144 Wireless port can be set to this mode only. Trunk—All frames are tagged coming in or going out of the switch except for VLAN ID 1 (called native VLAN or default VLAN in Cisco) Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 145 For the General port mode, the options are tagged or untagged for PVID; tagged or excluded for all other VLAN IDs. To view a summary of the VLAN/Port assignments, see the table in the VLAN/Port STEP 4 Assignment Summary section of this window. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 146 • RADIUS Secret—Enter the key string used for authenticating and encrypting all RADIUS communication between the router and the RADIUS server. This key must match the RADIUS server’s configuration. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 147 Unauthorized (discard traffic). All connections are blocked. Click Save. STEP 3 Configuring Port Settings The L2 Switch > Port Settings window displays the settings for configuring the LAN ports of the router. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 148 The default is disabled. • MaxFrame—Configures the maximum Ethernet frame size sent or received on the port. The default and maximum value is 1518. Click Save. STEP 3 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 149 Rx Frames—Displays the number of frames received on the selected port. • Tx Errors—Displays the number of error packets transmitted from the selected port. • Rx Errors—Displays the number of error packets received from the selected port. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 150 To enable source port mirroring on a port, check the box next to that port. To disable source port mirroring on a port, leave the box unchecked. The default is disabled. • Mirror Port—Select the mirror destination port from the drop-down menu. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 151: Configuring Rstp

    Hello Time—Enter a number from 1 to 10. The default is 2. • Max Age—Enter a number from 6 to 40. The default is 20. • Forward Delay—Enter a number from 4 to 30. The default is 15. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 152: Viewing Status

    • Viewing WAN/Gateway Status on page 153 • Viewing Local Network Status on page 155 • Viewing Wireless LAN Status on page 157 • Viewing System Performance on page 158 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 153 Firmware Version—Displays the current firmware version. MAC Address—Displays the WAN port MAC address, as seen by your ISP. Current Time—Displays the time on this router according to your settings on the Setup >Time window. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 154 Next Page or Previous Page, or select the page from the Goto Page drop-down menu. To see the latest information, click Refresh. Click Close to return to the Status > Gateway window. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 155 Subnet Mask—Displays the LAN port IPv4 subnet mask. • IPv6 Address—Displays the LAN port IPv6 IP address, if IPv6 is enabled. • DHCP Server—Displays the status of the router's DHCP server. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 156 ARP/RARP Table on the router. The ARP/RARP Table provides IP address to MAC address mapping. On the ARP/RARP Table window, you see a list of address mapping between IP (layer 3) and MAC (layer 2). Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 157 Network Mode—Displays the Wireless network operating mode (for example, B/G/N-Mixed). • Wireless SSID—Displays the Wireless network name. • Channel Bandwidth—Displays the wireless channel bandwidth setting. • Wireless Channel—Displays the radio channel number used. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 158 Packets Received—Shows the number of packets received. • Packets Sent—Shows the number of packets sent. • Bytes Received—Shows the number of bytes received. • Bytes Sent—Shows the number of bytes sent. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 159 Error Packets Received—Shows the number of error packets received. • Drop Received Packets—Shows the number of packets being dropped after they were received. The All LAN ports column shows the aggregate traffic statistics from all four LAN ports. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 160: Chapter 6: Using The Vpn Setup Wizard

    • Cisco RVS4000 4-Port Gigabit Security Router with VPN • Cisco WRVS4400N v1. 1 Wireless-N 4-Port Gigabit Security Router with • Cisco WRVS4400N v2 Wireless-N 4-Port Gigabit Security Router with VPN Use the following instructions to configure required data using the Web Administrator Interface.

  • Page 161: Running The Vpn Router Software Wizard

    If you have an RVS4000, WRVS4400N v1. 1 , or WRVS4400N v2 Installation CD-ROM, insert it into your CD-ROM drive. • Download the VPN Setup Wizard from the Cisco Support site for your router. Go to the Start menu and click Run. In the field provided, enter STEP 2 D:\VPN Setup Wizard.exe...
  • Page 162 Using the VPN Setup Wizard Running the VPN Router Software Wizard Welcome Window An informational window discussing the VPN Wizard appears. When you are STEP 4 ready, click Next to proceed. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 163 If your PC is remote to the routers, choose Build VPN connection from Internet remotely, and see the“Building Your VPN Connection Remotely,” for instructions on this type of installation. on page 170 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 164 If you picked Build VPN connection from Local LAN port of one router, enter the STEP 6 required data in the Configure VPN Tunnel window and click Next to continue. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 165 Router 2 IP by DNS Resolved: Enter the DDNS Domain Name of Router 2 if it does not have a static IP address for its internet connection. The router configuration is checked. STEP 7 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 166 Using the VPN Setup Wizard Running the VPN Router Software Wizard Check Router Configuration The Summary window appears. Use the Click box to view the VPNC Summary STEP 8 window. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 167 Click Close when you are ready to continue. VPNC Summary Window In the Summary window, if all your entries appear correct, click Go. Otherwise STEP 10 click Back to go back and make any corrections. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 168 Using the VPN Setup Wizard Running the VPN Router Software Wizard Configure the Router Click Testing to make sure the connection is successfully established. STEP 11 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 169 Using the VPN Setup Wizard Running the VPN Router Software Wizard Test the Connection When testing is done, click Exit to end the Wizard. STEP 12 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 170 Administrator Interface and see the results. Test Results Building Your VPN Connection Remotely This procedure continues from 163. Use this procedure to build Step 5 on page your VPN connection from a remote PC. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 171 Choose Build VPN connection from Internet remotely. Click Next to continue. STEP 1 Build VPN Connection Remotely Enter the required data in the Configure VPN Tunnel window and then click Next to STEP 2 continue. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 172 Router 2 WAN IP address: Enter the WAN IP address of the Router 2. • Router 2 IP by DNS Resolved: Enter the DDNS Domain Name of Router 2 if it does not have a static IP address for its internet connection. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 173 Running the VPN Router Software Wizard The router configuration is checked. STEP 3 Check Router Configuration The Summary window appears. Use the Click box to view the VPNC Summary STEP 4 window. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 174 Click Close when you are ready to continue. VPNC Summary Window In the Summary window, if all your entries appear correct, click Go. Otherwise STEP 6 click Back to go back and make any corrections. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 175 Using the VPN Setup Wizard Running the VPN Router Software Wizard Configure the Router Click Testing to make sure the connection is successfully established. STEP 7 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 176 Using the VPN Setup Wizard Running the VPN Router Software Wizard Test the Connection When testing is done, click Exit to end the Wizard. STEP 8 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 177 Using the VPN Setup Wizard Running the VPN Router Software Wizard Congratulations! Setup is now complete. You may now log into the Web Administrator Interface and see the results. View Test Results Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 178: Appendix A: Troubleshooting

    This appendix provides solutions to problems that may occur during the installation and operation of the router. Read the descriptions below to help solve your problems. If you can’t find an answer here, check the Cisco website at www.cisco.com. I need to set a static IP address on a PC.
  • Page 179 Alternative DNS server (provided by your ISP). Contact your ISP or go on its website to find the information. Click OK in the Internet Protocol (TCP/IP) Properties window. Click OK in the Local STEP 9 Area Connection Properties window. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 180 Windows 98 and Millennium: Click Start and Run. In the Open field, type command. Press Enter or click OK. b. Windows 2000 and XP: Click Start and Run. In the Open field, type cmd. Press Enter or click OK. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 181 If you do NOT get a reply, try the ping command from a different computer to verify that your original computer is not the cause of the problem. At the command prompt, type ping www.cisco.com and press Enter. STEP 5 •...
  • Page 182 If you change the router’s IP address to 192. 1 68.2. 1 , that should solve the problem. Change the Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 183 1 to 254). Note that each IP address must be unique within the network. Your VPN may require port 500/UDP packets to be passed to the computer that is connecting to the IPSec server. Check the Cisco website at www.cisco.com more information.
  • Page 184 Access the router’s web-based utility by going to http://192.168.1.1 or the IP STEP 1 address of the router. Go to Firewall > Single Port Forwarding. Select the Service from the Application column. STEP 2 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 185 Enter a different password in the New Password field, and enter the new STEP 3 password in the Confirm New Password field to confirm the password. Click Save Settings. STEP 4 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 186 Hold the Reset button for up to 30 seconds and then release it. This will return the password, forwarding, and other settings on the router to the factory default settings. In other words, the router will revert to its original factory configuration. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 187 In order to upgrade the firmware with the latest features, you need to go to the Cisco website and download the latest firmware. Follow these steps: Go to the Cisco website and download the latest firmware. For the firmware STEP 1...
  • Page 188 If your difficulties continue, change the Size to different values. Try this list of values, one value at a time, in this order, until your problem is solved: 1462, 1400, 1362, and 1300. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 189 Internet application. Check the Enabled checkbox for the entry. STEP 7 When you have completed the configuration, click Save Settings. STEP 8 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 190 Click Tools. Click Internet Options. Click the Security tab. Click the Default level STEP 3 button. Make sure the security level is Medium or lower. Then click the OK button. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 191: Frequently Asked Questions

    Q. Does the router support any operating system other than Windows 98, Millennium, 2000, or XP? Yes, but Cisco does not, at this time, provide technical support for setup, configuration or troubleshooting of any non-Windows operating systems. Q. Does the router support ICQ send file? Yes, with the following fix: click ICQ menu =>...
  • Page 192 Network Control Panel in your Ethernet adapter’s Advanced Properties tab.) Make sure that your proxy setting is disabled in the browser. Check our website at www.cisco.com for more information. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 193 Reset the router by holding down the Reset button for ten seconds. Reset your cable or DSL modem by powering the unit off and then on. Obtain and flash the latest firmware release that is readily available on the Cisco website at www.cisco.com.
  • Page 194 Q. How do I get mIRC to work with the router? From the Firewall > SIngle Port Forwarding menu, set port forwarding to 113 for the PC on which you are using mIRC. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 195: Appendix B: Using Cisco Quickvpn For Windows 2000, Xp, Or Vista

    Using Cisco QuickVPN for Windows 2000, XP, or Vista Overview This appendix explains how to install and use the Cisco QuickVPN software that can be downloaded from www.cisco.com. QuickVPN works with computers running Windows 2000, XP, or Vista. (Computers using other operating systems will have to use third-party VPN software.) For Windows Vista, QuickVPN Client...

  • Page 196: Before You Begin

    Using Cisco QuickVPN for Windows 2000, XP, or Vista Before You Begin Before You Begin The QuickVPN program only works with a Cisco 4-Port Gigabit Security Router with VPN that is properly configured to accept a QuickVPN connection. Follow these instructions to configure the router’s VPN client settings: Click VPN >...

  • Page 197: Installing The Cisco Quickvpn Software

    Run. In the field provided, enter D:\VPN_Client.exe (if “D” is the letter of your CD-ROM drive). The License Agreement window appears. Click Yes to accept the agreement and STEP 2 the appropriate files are copied to the computer. License Agreement Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 198 Using Cisco QuickVPN for Windows 2000, XP, or Vista Installing the Cisco QuickVPN Software Copying Files Finished Installing Files Click Finished to complete the installation. Proceed to “Using the Cisco STEP 3 QuickVPN Software,” on page 199. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 199: Using The Cisco Quickvpn Software

    “Using the Cisco QuickVPN Software,” on page 199. Using the Cisco QuickVPN Software Double-click the Cisco QuickVPN software icon on your desktop or in the system STEP 1 tray. The QuickVPN Login window will appear. In the QuickVPN Login window: STEP 2 a.
  • Page 200 Using Cisco QuickVPN for Windows 2000, XP, or Vista Using the Cisco QuickVPN Software c. In the Server Address field, enter the IP address or domain name of the Cisco 4-Port Gigabit Security Router with VPN. d. In the Port For QuickVPN field, enter the port number that the QuickVPN client will use to communicate with the remote VPN router, or keep the default setting, Auto.
  • Page 201 Password field. Then enter the new password again in the Confirm New Password field. Click OK to save your new password. Click Cancel to cancel your change. For information, click Help. Connect Virtual Private Connection Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 202: Distributing Certificates To Quickvpn Users

    Launch the QuickVPN Client and specify the User Name, Password, and Server Address (IP address or domain name). c. Click Connect. For more information on certificate management, go to section “Configuring VPN Client Accounts,” on page 115. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 203: Appendix C: Configuring A Gateway-To-Gateway Ipsec Tunnel

    In this example, two personal computers test the liveliness of the tunnel. You can think of VPN Router1, the Internet, and VPN Router2 as a big virtual router that connects PC1 on LAN1 and PC2 on LAN2. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 204: Environment

    Enter a name in the Tunnel Name field. STEP 6 For the Local Secure Group, select Subnet. Enter VPN Router 1’s local network STEP 7 settings in the IP Address and Mask fields. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 205 IP Address and Mask fields. For the Remote Secure Gateway, select IP Addr. Enter VPN Router 1’s WAN IP STEP 10 address in the IP Address field. Click the Save Settings button. STEP 11 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 206: Configuring The Key Management Settings

    Keep the default Key Life Time value, 28800. STEP 13 Click the Save Settings button on the Advanced VPN Tunnel Setup window. STEP 14 Click the Save Settings button on the IPSec VPN window. STEP 15 Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 207: Configuring Pc 1 And Pc 2

    If the computers can ping each other, then you know the VPN tunnel is configured correctly. You can select different algorithms for the encryption, authentication, and other key management settings for VPN Routers 1 and 2. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 208: Appendix D: Finding Out Mac And Ip Addresses

    The MAC address/Adapter Address is what you will use for MAC address cloning STEP 4 or MAC filtering. The following example shows the Ethernet adapter’s IP address as 192. 1 68. 1 . 1 00. Your computer may show something different. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 209: Windows 2000 Or Xp Instructions

    For MAC address cloning, enter the MAC Address in the MAC Address field or select Clone My PCs MAC. Click Save Settings to save the MAC Cloning settings or click the Cancel Changes button to undo your changes. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 210: Appendix E: Cisco Protectlink Web Service

    Cisco ProtectLink Web Service Overview The optional Cisco ProtectLink Web service provides security for your network. It scans e-mail messages, filters website addresses (URLs), and blocks potentially malicious websites. ProtectLink is available for online purchase through online resellers such as CDW.com and PCConnection.com.

  • Page 211: How To Purchase, Register, Or Activate The Service

    You can purchase, register, or activate the service using the ProtectLink window. ProtectLink Click the ProtectLink menu to display the ProtectLink window. The following window will display if ProtectLink has not yet been activated. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 212 If you already have a I have purchased ProtectLink Web and want to register it. license, click this link. You will be redirected to the Cisco ProtectLink Web website. Then follow the on-screen instructions. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 213 ProtectLink service to the new router. After you activate ProtectLink, the following window appears when you click ProtectLink > ProtectLink Purchase from the menu. ProtectLink (Active) Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 214: How To Use The Service

    ProtectLink > Web Protection. ProtectLink > Web Protection The Web Protection features are provided by the router. Configure the website filtering settings on the ProtectLink > Web Protection window. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 215 Cisco ProtectLink Web Service How to Use the Service ProtectLink > Web Protection Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 216 This level blocks most potentially malicious websites and does not Medium create too many false positives. The default is Medium and is the recommended setting. This level blocks fewer potentially malicious websites and reduces the risk of false positives. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 217 Temporarily bypass Cisco URL verification for requested URLs many URL requests, the overflow will be allowed without verification. Click Save Settings to save your changes, or click Cancel Changes to undo them. Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...
  • Page 218 How to Use the Service ProtectLink > License The license for the Cisco ProtectLink Web service is valid for one year from the time the activation code for Web Protection is generated. On the License window, license information is displayed. Use this window to renew your license, add seats, or view license information online.

  • Page 219: Appendix F: Specifications

    Specifications This appendix lists the specifications of the Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN. General WRVS4400N Model Standards Draft IEEE802. 1 1n, IEEE802. 1 1g, IEEE802. 1 1b, IEEE802.3, IEEE802.3u, 802. 1 X (Security Authentication), IEEE802. 1 Q (VLAN), 802.

  • Page 220: Performance

    SNMP Version Event logging: Local, Syslog, E-mail alerts Event Logging Firmware upgradable through web browser Web F/W upgrade DIAG LED for Flash and RAM failure; Ping Test for Diagnostics network diagnostics Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 221: Security

    Port-based Radius authentication 802.1x (EAP-MD5, EAP-PEAP) PAT, NAPT, ALG support, NAT Traversal Port-based on LAN port, and application-based priority QoS Prioritization on WAN port Types 4 queues QoS Queues Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 222: Layer 2

    C (32 to 104 Operating Temp. ° ° -20 to 70 C (-4 to 158 Storage Temp. ° ° 5% to 90% Noncondensing Storage Humidity 10 to 85% Noncondensing Operating Humidity Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

  • Page 223: Appendix G: Where To Go From Here

    Where to Go From Here Cisco provides a wide range of resources to help you and your customer obtain the full benefits of the Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN. Product Resources Support Cisco Small www.cisco.com/go/smallbizsupport Business Support...

  • Page 224: Related Documentation

    Business Model WRVS4400N Wireless-N Gigabit Security Router with VPN Quick Start Guide Regulatory Compliance and Safety For compliance and safety information, see the Information for the Cisco Wired and Wireless Routers and Access Point Devices (EMC Class B Devices) Cisco WRVS4400N Wireless-N Gigabit Security Router with VPN Administration Guide...

Table of Contents