Cisco RV130, RV130W User Manual

ADMINISTRATION

GUIDE

Cisco RV130 Multifunction VPN Router Cisco RV130W Wireless Multifunction VPN Router

Revised July 2015

Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries. To view a list of Cisco trademarks, go to this URL: www.cisco.com/go/trademarks. Third-party trademarks mentioned are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. (1110R)

Contents

Chapter 1: Getting Started 5

Connecting to Your Wireless Network 7

Chapter 2: Viewing Device Status 8

Viewing the Dashboard 8 Viewing the System Summary 9 Viewing Active TCP/IP Services 11 Viewing Wireless Statistics 11 Viewing Captive Portal Status 11 Viewing Site-to-Site IPsec VPN Connection Status 11 Viewing the IPsec VPN Server Status 12 Viewing PPTP Server 12 Viewing Logs 12 Viewing Connected Devices 13 Viewing Port Statistics 14 Viewing the Mobile Network Status 14

Chapter 3: Configuring Networking 16

Configuring Wired WAN Connections 16

Configuring a Mobile Network 25

Configuring Global Mobile Network Settings 25 Configuring Mobile Network Settings Manually 26 Bandwidth Cap Setting 27 E-mail Setting

Setting Failover and Recovery 28

Configuring LAN Settings 29

Changing the Device Management IP Address 29 Configuring DHCP Server 30

Configuring VLANs 32 Configuring Static DHCP 33 Viewing DHCP Leased Clients 34

Cisco RV130/RV130W Wireless Multifunction VPN Router Administration Guide 1

Configuring a DMZ Host 34 Configuring RSTP 35 Port Management 36 Configuring Link Aggregation 37

Contents

Cloning the MAC Address 38 Configuring Routing 39 Viewing the Routing Table 41 Configuring Dynamic DNS 42 Configuring the IP Mode 43 Configuring IPv6 44

Configuring the IPV6 WAN Connection 44 Configuring IPv6 LAN Connections 48 Configuring IPv6 Static Routing 50 Configuring Routing (RIPng) 51 Configuring Tunneling 52 Viewing IPv6 Tunnel Status 53 Configuring Router Advertisement 53 Configuring Advertisement Prefixes 55

Chapter 4: Configuring Wireless Networks 57

Wireless Security 57 Wireless Networks on Your Device 59 Configuring Basic Wireless Settings 60

Editing Wireless Network Settings 61 Configuring the Security Mode 62 Configuring MAC Filtering 66 Configuring Time of Day Access 67

Configuring Advanced Wireless Settings 67 Detecting Rogue Access Points 70 Configuring WDS 73 Configuring WPS 75

Cisco RV130/RV130W Wireless Multifunction VPN Router Administration Guide 2

Contents

Configuring Captive Portal 75 Configuring Device Mode 78

Chapter 5: Configuring the Firewall 80

Firewall Features 80 Configuring Basic Firewall Settings 81

Configuring Remote Management 84 Configuring Universal Plug and Play 85

Managing Firewall Schedules 85 Configuring Services Management 86 Configuring Access Rules 87

Adding Access Rules 88

Creating an Internet Access Policy 90

Adding or Editing an Internet Access Policy 90

Configuring One-to-One Network Address Translation (NAT) 92 Configuring Port Forwarding 92

Configuring Single Port Forwarding 93 Configuring Port Range Forwarding 94 Configuring Port Range Triggering 94

Chapter 6: Configuring VPN 97

VPN Tunnel Types 97 Configuring Basic Site-to-Site IPsec VPN 97

Viewing Default Values 98

Configuring Site-to-Site IPsec VPN Advanced Parameters 99

Managing IKE Policies 99 Managing VPN Policies 100

Configuring IPsec VPN Server 103

Configuring the IPsec VPN Server 103 Configuring IPsec VPN User Accounts 104

Configuring PPTP 105

Cisco RV130/RV130W Wireless Multifunction VPN Router Administration Guide 3

Configuring the PPTP Server 105 Creating and Managing PPTP Users 105

Contents

Configuring VPN Passthrough 106 SSL Certificate 106 VPN Setup Wizard 108

Chapter 7: Configuring Quality of Service (QoS) 109

Configuring Bandwidth Management 109 Configuring QoS Port-Based Settings 112 Configuring CoS Settings 113 Configuring DSCP Settings 113

Chapter 8: Managing Your Device 115

Setting Device Properties 115 Setting Password Complexity 115 Configuring User Accounts 116

Importing User Accounts 117

Setting the Session Timeout Value 119 Configuring Simple Network Management (SNMP) 119 Using Diagnostic Tools 122

Network Tools 122 Configuring Port Mirroring 123

Configuring Log and E-mail Settings 124

Configuring Log Settings 124 Configuring Log E-Mailing 126

Configuring Bonjour 128 Configuring Date and Time Settings 128 Backing Up and Restoring the System 129 Upgrading Firmware or Changing the Language 132 Restarting the Device 134 Restoring the Factory Defaults 134

Cisco RV130/RV130W Wireless Multifunction VPN Router Administration Guide 4

Getting Started

The Getting Started page displays the most common configuration tasks on your device. Click the links on the Web page to go to the relevant configuration page.

This page appears every time you start Devic e Manager. To change this behavior, check Don’t show on start up.

Initial Settings

Change Default Administrator Password

Launch Setup Wizard Launches the Setup Wizard. Follow the on-screen

Configure WAN Settings Opens the Internet Setup page to change

Configure LAN Settings Opens the LAN Configuration page to modify LAN

Configure Wireless Settings

Displays the Users page where you can change the administrator password and set up a guest account. See Configuring User Accounts.

instructions.

parameters. For example, the device host name. See Configuring Wired WAN Connections.

parameters. For example, the management IP address. See Configuring LA N Settings.

Open the Basic Settings page to manage the radio. See Configuring Wireless Networks.

Cisco RV130/RV130W Wireless Multifunction VPN Router Administration Guide 5

Getting Started

Quick Access

Upgrade Router Firmware

Add VPN Clients Opens the PPTP Server page to set up and

Configure Remote Management Access

Device Status

System Summary Displays the System Summary page that shows

Wireless Status Displays the Wireless Statistics page that shows

Opens the Firmware/Language Upgrade page to update the device firmware or language pack. See

Upgrading Firmware or Changing the Language.

manage VPN tunnels. See Configuring PPTP. Opens the Basi c Se tt in g s page to enable the basic

features of the device. See Configuring Basic

Firewall Settings.

the state of the firmware, IPv4 and IPv6 configuration status, and the status of the wireless and the firewall on the device. See Viewing the

System Summary.

the state of the radio. See Viewing Wireless

Statistics.

VPN Status Displays the IPsec VPN Server page that lists the

VPN managed by this device. See Viewing Site-

to-Site IPsec VPN Connection Status.

Other Resources

Support Click to open the Cisco support page. Forums Click to visit Cisco online support forums.

Cisco RV130/RV130W Wireless Multifunction VPN Router Administration Guide 6

Getting Started

Connecting to Your Wireless Network

To connect a client device (such as a computer) to your wireless network, configure the wireless connection on the client device with the wireless security information that you configured for the router by using the Setup Wizard.

The following steps are provided as an example; you may need to configure your device differently. For specific instructions, consult the documentation for your client device.

STEP 1 Open the wireless connection settings window or program for your device.

Your computer might have special software installed to manage wireless connections, or you might find the wireless connections under the Control Panel in the Network Connections or Network and Internet window. (The location depends on your operating system.)

STEP 2 Enter the network name (SSID) that you chose for your network in the Setup

Wizard.

STEP 3 Choose the type of encryption and enter the security key that you specified in the

Setup Wizard. If you did not enable security (not recommended), leave the wireless encryption

fields that were configured with the security type and passphrase blank.

STEP 4 Verify your wireless connection and save your settings.

Cisco RV130/RV130W Wireless Multifunction VPN Router Administration Guide 7

Viewing Device Status

To ensure that data and statistics are frequently updated on Status pages, choose a refresh rate from the Refresh Rate drop-down list.

Viewing the Dashboard

Choose Status > Dashboard to view a snapshot of the configuration of your device. The Dashboard page displays information about your device’s firmware version, CPU and memory utilization, error-logging settings, LAN, WAN, wireless, site-to-site IPsec VPN, and PP TP VPN server settings.

To modify the information display ed, click the details link to go t o the configuration page for the section. For more information about managing the settings displayed on the Dashboard page, see:

• Configuring Log Settings

• Configuring Basic Site-to-Site IPsec VPN

• Configuring LAN Settings

• Configuring Wired WAN Connections

• Configuring Basic Wireless Settings

From the Refresh Rate drop-down list, choose the rate at which the latest statistics and parameter values are refreshed on the dashboard.

The Dashboard page also displays an interactive view of your device’s back panel when you click Show Panel View. Mouse-over each port to view port connection information.

Cisco RV130/RV130W Wireless Multifunction VPN Router Administration Guide 8

Viewing Device Status

Viewing the System Summary

Choose Status > System Summary to view details of your device properties, network settings across IP address modes, firewall, wireless and VPN settings. Click Refresh to see the latest information.

Click the underlined link to go to the related configuration window. For example, to modify the LAN IP address, click LAN IP. The LAN Configuration window is displayed.

The System Summary page displays information in the following sections:

System Information

• Firmware Version—Current software version that the device is running.

• Firmware MD5 Checksum—The message-digest algorithm used to verify

the integrity of files.

• Locale—The language installed on the router.

• Language Version—The version of the installed language pack. The

language pack version should be compatible with the currently installed firmware. In some cases, an older language pack may be used with a newer firmware image. The router checks the language pack version to see if it is compatible with the current firmware version.

• Language MD5 Checksum—The MD5 checksum of the language pack.

• CPU Model—Chipset of CPU currently used.

• Serial Number—Serial number of the device.

• System Up Time—Length of time that the system has been running.

• Current Time—Time of day.

• PID VID—Product ID and version ID of the device.

IPv4 Configuration

• LAN IP—LAN IP address of the device.

• WAN IP—WAN IP address of the device. To release the current IP address

and obtain a new one, click Release or Renew.

• Gateway—IP addr ess of the gateway to which the device is connected (for

example, the cable modem).

Cisco RV130/RV130W Wireless Multifunction VPN Router Administration Guide 9

Viewing Device Status

Viewing the System Summary

• Mode—Displays Gateway if NAT is enabled, or Router.

• DNS 1—Primary DNS server IP address of the WAN port.

• DNS 2—Secondary DNS server IP address of the WA N port.

• DDNS—Indicates whether the Dynamic DNS is enabled or disabled.

IPv6 Configuration

• LAN IP—LAN IP address of the device.

• WAN IP—WAN IP address of the device.

• Gateway—IP addr ess of the gateway to which the device is connected (for

example, the cable modem).

• Prefix Delegation—Prefix returned from the device at the ISP, which is

provided to IPv6 addresses on the device.

• DNS 1—IP address of the primary DNS server.

• DNS 2—IP address of the secondary DNS server.

Wireless Summary

Displays the public name and security settings for your wireless networks configured on the Wireless > Basic Settings page. For more information, see

Configuring B asic Wireless Settings.

Firewall Setting Status

Displays DoS, WAN request and remote management settings configured on the Firewall > Basic Settings page. For more information, see Configuring Basic

Firewall Settings.

VPN Setting Status

Displays available IPsec and PPTP VPN connections, and the connected users for each VPN type.

• IPsec Connections Available—Number of available IPse c VPN

connections.

• PPTP VPN Connections Available—Number of available PPTP VPN

connections.

• Connected IPsec Users—Number of connected IPsec VPN users.

• Connected PPTP VPN Users—Number of connected PPTP VPN users.

Cisco RV130/RV130W Wireless Multifunction VPN Router Administration Guide 10

Viewing Device Status

Viewing Active TCP/IP Services

For more information on configuring VPN server connections and user accounts, see Configuring Basic Site-to-Site IPsec VPN and Configuring PPTP.

Viewing Active TCP/IP Services

Choose Status > Active TCP/IP Services to view IPv4 and IPv6 TCP/IP connections that are active on your device. The Active Service List section for IPv4 and IPv6 displays the protocols and the services that are active on the device.

Viewing Wireless Statistics

Choose Status > Wireless Statistics to view wireless statistical data for the device radio. In the Refresh Rate field, choose the rate at which you want the latest statistics to be displayed.

To show the bytes in kilobytes (KB) and the numerical data in rounded-up values, check the Show Simplified S tatistic Data check box and click Save. By default, byte data is displayed in bytes and other numerical data is displayed in long form.

To reset the wireless statistics counters, click Clear Count. The counters are reset when the device is rebooted.

Viewing Captive Portal Status

Choose Status > Captive Portal to view information about the connected Captive Portal users. For more information about configuring Captive Portals on your device, see Configuring Captive Portal.

Viewing Site-to-Site IPsec VPN Connection Status

Choose Status > Site-to-Site IPsec VPN to view the connection status of active site-to-site IPsec VPN policies on the device. For information on configuring VPN policies, see Configuring Basic Site-to-Site IPsec VPN.

To change the rate at which latest and real-time connection status is displayed, choose a refresh rate from the Refresh Rate drop-down list.

Cisco RV130/RV130W Wireless Multifunction VPN Router Administration Guide 11

Viewing Device Status

Viewing the IPsec VPN Server Status

By default, byte data is displayed in bytes and other numerical data is displayed in long form. To show the bytes in kilobytes (KB) and the numerical data in roundedup form, check the Show Simplified Statistic Data box and click Save.

To terminate an active VPN connection, click Disconnect.

Viewing the IPsec VPN Server Status

Choose Status > IPsec VPN Server to view a list of your IPsec VPN connections and the duration of the connection. For more information about configuring IPsec VPN connections, see Configuring IPsec VPN Server.

Viewing PPTP Server

Choose Status > PPTP Server to view a list of your PPTP VPN connections, the duration of the connection, and the actions you can perfom on this connection. For more information about configuring PPTP VPN connections, see Configuring

PPTP.

Viewing Logs

Choose Status > View Logs. Click Refresh Logs, to display latest log entries. To filter logs or specify the severity of logs to display, check the boxes next to the

log type and click Go. Note that all log types above a selected log type are automatically included and you cannot deselect them. For example, checking the Error check box automatically includes emergency, alert, and critical logs in addition to error logs.

The event severity levels are list ed from the highest severity to the lowest severity , as follows:

• Emergency—Messages about events such as a system crash.

• Alert—Messages about conditions that require immediate correcti ve action.

• Critical—Messages for when the system is in a critical condition.

Cisco RV130/RV130W Wireless Multifunction VPN Router Administration Guide 12

Viewing Device Status

Viewing Connected Devices

• Error—Messages about conditions that are not critical but require corrective

action.

• Warning—System warnings.

• Notification—Messages about normal but significant conditions that may

require attention.

• Inf ormational—Messages about device information.

• Debugging—Detailed information about an event.

To delete all entries in the log window, click Clear Logs. To save all log messages from the device to the local hard drive, click Save Logs. To specify the number of entries to show per page, choose a number from the

drop-down menu. To move between log pages, use the page navigation buttons .

Viewing Connected Devices

The Connected Devices page displays information about the active client devices connected to your router. To view connected devices, choose Status > Connected Devices.

To specify the types of interfaces to display, select a value from the Filter dropdown menu:

• All—All devices connected to the router.

• Wireless—All devices connected through the wireless interface.

• Wired—All devices connected through the Ethernet ports on the router.

• WDS—All Wireless Distribution System (WDS) devices connected to the

router .

IPv4 ARP Table displays information from other routers that have responded to the device’s Address Resolution Protocol (ARP) request. If a device does not respond to the request, it is removed from the list.

IPv6 NDP Table displays all IPv6 Neighbor Discovery Protocol (NDP) devices connected to the device’s local link.

Cisco RV130/RV130W Wireless Multifunction VPN Router Administration Guide 13

Viewing Device Status

Viewing Port Statistics

The Port Statistics page displays detailed port activity. To view port statistics, choose Status > Port Statistics. To refresh the page at regular intervals, choose a refresh rate from the Refresh

Rate drop-down list. To show the bytes in kilobytes (KB) and the numerical data in rounded-up form,

check the Show Simplified Statistic Data box and click Save. By default, byte data is displayed in bytes and other numerical data is displayed in long form.

To reset the port statistics counters, click Clear Count. The Port Statistics page displays this information:

Interface Name of the network interface. Packet Number of received/sent packets. Byte Number of received/sent bytes of information per second. Error Number of received/sent packet errors. Dropped Number of received/sent packets that were dropped. Multicast Number of multicast packets sent over this radio. Collisions Number of signal collisions that occurred on this port. A

collision occurs when the port tries to send data at the same time as a port on another router or computer that is connected to this port.

Viewing the Mobile Network Status

The mobile network statistics about the mobile 3G/4G network and communication device (dongle) configured on the device.

To view the mobile network status, choose Status > Mobile Network. The following information is displayed:

• Connection—Device connected to the guest network.

• Internet IP Address—IP address assigned to the USB device.

Cisco RV130/RV130W Wireless Multifunction VPN Router Administration Guide 14

Viewing Device Status

Viewing the Mobile Network Sta tus

• Subnet Mask—Subnet mask of the USB device.

• Default Ga teway—IP address of the default gateway.

• Connection Up Time—The length of time that link has been up.

• Current Session Usage—Volume of data being received (Rx) and

• Monthly Usage—Monthly data download and bandwidth usage.

• Manufacturer—Card manufacturer name.

• Car d Model—Card model number.

• Card Firmware—Card firmware version.

• SIM Status—Subscriber identification module (SIM) status.

transmitted (Tx) on the mobile link.

• IMS—The unique identification associated with the GSM, UMTS, or LTE

network mobile phone users.

• Carrier—Mobile network carrier.

• Service Type—Type of service accessed.

• Signal Strength—Strength of the wireless mobile network signal.

• Card Status—Status of the data card.

Cisco RV130/RV130W Wireless Multifunction VPN Router Administration Guide 15

Configuring Networking

Configuring Wired WAN Connections

Configuring WAN properties for an IPv4 network differs depending on which type of Internet connection you have.

Configuring DHCP (Automatic Configuration)

If your Internet Service Provider (ISP) uses Dynamic Host Control Protocol (DHCP) to assign you an IPaddress, you receive an IP address that is dynamically generated each time you log in.

To configure DHCP WAN settings:

STEP 1 Choose Networking > WAN. STEP 2 From the Internet Connection Type drop-down list, choose Automatic

Configuration - DHCP.

STEP 3 From the DNS Server Source drop-down list, choose one of the following ways to

set the DNS server address:

• If y ou alr eady have DNS server addresses from your ISP, choose Use these

DNS Servers, and enter the primary and secondary addresses.

• If you do not have DNS server addresses from your ISP, choose Get

Dynamically from ISP.

• To use the DNS servers provided by OpenDNS (208.67.222.222,

208.67.220.220) to resolve your web addresses, choose Use OpenDNS.

STEP 4 Click Save.

Cisco RV130/RV130W Wireless Multifunction VPN Router Administration Guide 16

Configuring Networking

STEP 1 Choose Networking > WAN. STEP 2 From the Internet Connection Type drop-down menu, choose Static IP. STEP 3 Enter this information:

Configuring Static IP

If your ISP assigned you a permanent IP address, perform the following steps to configure your WAN settings:

Internet IP Address IP address of the WA N port. Subnet mask Subnet mask of the WAN port. DNS Server Source The DNS server address. If you already have DNS

server addresses from your ISP, choose Use these DNS Servers, and enter the primary and secondary addresses in the Static DNS 1 and Static DNS 2 fields.

To use the DNS servers provided by OpenDNS (208.67.222.222, 208.67.220.220) to resolve your web addresses, choose Use OpenDNS.

Default Gateway IP address of the default gateway.

STEP 4 Click Save.

Configuring PPPoE

To configure the Point-to-Point Protocol over Ethernet (PPPoE) settings:

STEP 1 Choose Networking > WAN. STEP 2 From the Internet Connection Type drop-down menu, choose PPPoE. STEP 3 Select a PPPoE profile or click Configure Profile to create a new profile. STEP 4 On the PPPoE Profiles page, enter the following information (you might nee d to

contact your ISP to obtain your PPPoE login information):

Cisco RV130/RV130W Wireless Multifunction VPN Router Administration Guide 17

Configuring Networking

Profile Name A unique name for the PPPoE profile.

Username The username assigned by the ISP. Password The password assigned by the ISP. DNS Server Source The DNS server address. If you already have DNS

server addresses from your ISP, choose Use these DNS Servers, and enter the primary and secondary addresses in the Static DNS 1 and Static DNS 2 fields.

To get DNS server addresses from your ISP, choose Get Dynamically from ISP.

To use the DNS servers provided by OpenDNS (208.67.222.222, 208.67.220.220) to resolve your web addresses, choose Use OpenDNS.

Connect on Demand Select this option if your ISP charges based on the

amount of time that you are connected. When you select this option, the Internet connection is on only when traffic is present. If the connection is idle— that is, no traffic is flowing—the conne ction is closed. If you click Connect on Demand, enter the number of minutes after which the connection shuts off in the Max Idle Time field.

Keep Alive When you select this option, the Internet

connection is always on. In the Redial Period field, enter the number of seconds after which the device attempts to reconnect if it is disconnected.

Cisco RV130/RV130W Wireless Multifunction VPN Router Administration Guide 18

Configuring Networking

Authentication Type Auto-negotiation—The server sends a

configuration request specifying the security algorithm set on it. The devic e then sends back authentication credentials with the security type sent by the server.

PAP—Password Authentication Protocol (PAP) used by Point-to-Point Protocol to connect to the ISP.

CHAP—Challenge Handshake Authentication Protocol (CHAP) requires that both the client and server know the plaintext of the secret to use ISP services.

MS-CHAP or MS-CHAPv2—The Microsoft version of CHAP used to access ISP services.

STEP 5 Click Save.

Configuring PPTP

To configure the PPTP settings:

STEP 1 Choose Networking > WAN. STEP 2 From the Internet Connection Type drop-down menu, choose PPTP. STEP 3 Enter this information:

Internet IP Address IP address of the WA N port. Subnet mask Subnet mask of the WAN port. Default Gateway IP address of the default gateway. PPTP Server IP address of the Point-To-Point Tunneling Protocol

server.

Username The username assigned to you by the ISP. Password The password assigned to you by the ISP.

Cisco RV130/RV130W Wireless Multifunction VPN Router Administration Guide 19

Configuring Networking

Connect on Demand Select this option if your ISP charges based on the

Keep Alive When you select this option, the Internet

connection is always on. In the Redial period field, enter the number of seconds after which the device attempts to reconnect, if it is disconnected.

Authentication Type Choose the authentication typ e:

Auto-negotiation—The server sends a

configuration request specifying the security algorithm set on it. The devic e then sends back authentication credentials with the security type sent earlier by the server.

PAP—The device uses the Password Authentication Protocol (PAP) to connect to the ISP.

CHAP—The device uses the Challenge Handshake Authentication Protocol (CHAP) when connecting with the ISP.

MS-CHAP or MS-CHAPv2—The device uses Microsoft Challenge Handshake Authentication Protocol when connecting with the ISP.

Service Name Enter a name for the new PPTP service. MPPE Encryption Check the Enable check box to enable Microsoft

Point-to-Point Encryption for the PPTP connection.

Cisco RV130/RV130W Wireless Multifunction VPN Router Administration Guide 20

Configuring Networking

STEP 4 Click Save.

DNS Server Source The DNS server address. If you already have DNS

server addresses from your ISP, choose Use these DNS Servers, and enter the primary and secondary addresses in the Static DNS 1 and Static DNS 2 fields.

To get DNS server addresses from your ISP, choose Get Dynamically from ISP.

To use the DNS servers provided by OpenDNS (208.67.222.222, 208.67.220.220) to resolve your web addresses, choose Use OpenDNS.

Configuring L2TP

To configure L2TP settings:

STEP 1 Choose Networking > WAN. STEP 2 From the Internet Connection Type drop-down menu, choose L2TP. STEP 3 Enter this information:

Internet IP Address The IP address of the WAN port. Subnet mask The subnet mask of the WAN port. Default Gateway The IP address of the default gateway. L2TP Server The IP address of the L2TP server. Version The L2TP version that you want to use. If you select

version 3, enter the vendor ID, and the virtual circuit ID.

Cookie Length The size of the cookie in the L2TP v3 data packet,

which identifies the L2TP session.

Cisco RV130/RV130W Wireless Multifunction VPN Router Administration Guide 21

Configuring Networking

Vendor I D The vendor ID contained in the AVP encoding

format for L2TP. To use the IETF-adopted attribute values in the A VP,

select Standard. To implement Cisco’s L2TP extensions and private

attribute values, select Cisco.

Virtual Circuit ID The identifier for the Layer 2 circuit over which

L2TP data packets are carried. This information is required if you selected Cisco as the Vendor ID for L2TP v3.

Username Enter your username assigned to you by the ISP. Password Enter your password assigned to you by the ISP. Connect on Demand Select this option if your ISP charges based on the

Keep Alive When you select this option, the Internet

connection is always on. In the redial period field, enter the number of seconds after which the device attempts to reconnect if it is disconnected.

Authentication Type Auto-negotiation—The server sends a

configuration request specifying the security algorithm set on it. The devic e then sends back authentication credentials with the security type sent by the server.

PAP—Password Authentication Protocol (PAP) is used to connect to the ISP.

CHAP—Challenge Handshake Authentication Protocol (CHAP) is used to connect to the ISP.

MS-CHAP or MS-CHAPv2—Microsoft Challenge Handshake Authentication Protocol is used to connect to the ISP.

Cisco RV130/RV130W Wireless Multifunction VPN Router Administration Guide 22

Configuring Networking

Service Name Enter a name for the new L2TP service. MPPE Encryption Check Enable to enable Microsoft Point-to-Point

Encryption for the L2TP connection.

DNS Server Source The DNS server address. If you already have DNS

server addresses from your ISP, choose Use these DNS Servers, and enter the primary and secondary addresses in the Static DNS 1 and Static DNS 2 fields.

To get DNS server addresses from your ISP, choose Get Dynamically from ISP.

To use the DNS servers provided by OpenDNS (208.67.222.222, 208.67.220.220) to resolve your web addresses, choose Use OpenDNS.

STEP 4 Click Save.

Configuring Optional Network Settings

To configure optional settings:

STEP 1 In the Optional Settings section, configure the f ollowing settings:

MTU Maximum transmission unit (MTU) is the size of the

largest packet that can be sent over the network. Unless a change is required by your ISP, we

recommend that you choose Auto. The default MTU size is 1500 bytes.

If your ISP requires a custom MTU setting, choose

Manual and enter the MTU size.

Size The custom MTU size. The standard MTU value for

Ethernet networks is usually 1500 bytes. For PPPoE connections, the value is 1492 bytes.

Cisco RV130/RV130W Wireless Multifunction VPN Router Administration Guide 23

Configuring Networking

Untagged VLAN Check the box to enable VLAN tagging. When

enabled (the default), all traffic is tagged with a VLAN ID.

By default, all traffic on the device uses VLAN 1, the default untagged VLAN. All traffic is untagged until you disable the untagged VLAN, change the untagged traffic VLAN ID, or change the VLAN ID.

Untagged VLAN ID A number between 1 and 4094 for the untagged

VLAN ID. The default is 1. Traffic on the VLAN that you specify in this field is not tagged with a VLAN ID when forwarded to the network.

VLAN 1 is the default untagged VLAN.

AP Management VLAN The VLAN associated with the IP address you use

to access the device when it is configured as an access point.

STEP 2 Click Save.

If you create additional VLANs, for security reasons, choose a value that corresponds with the VLAN configured on other switches in the network. You may need to change the management VLAN to limit access to Device Manager.

Cisco RV130/RV130W Wireless Multifunction VPN Router Administration Guide 24

Configuring Networking

Configuring a Mobile Network

Choose Networking > WAN > Mobile Network to configure to configure the device to connect to a Mobile Broadband USB modem that is connected to its USB interface.

Configuring Global Mobile Network Settings

To configure global settings for supported USB devices:

STEP 1 Connect the USB modem. If the modem is supported, it is automatically detected

and appears on the Mobile Network page.

STEP 2 Select Auto or Manual connection mode. Ethernet Connection Recovery works

only if the Connect Mode is set to Auto.

• To enable your modem to establish a connection automatically, select Auto

mode. If you select Auto, set a Connect on Demand time or select Keep Alive. Connect on Demand terminates the Internet connection after it is inactive for the period of time specified in the Max Idle Time field.

If your Internet connection is terminated due to inactivity, the modem automatically reestablishes a connection when a user attempts to acces s the Internet. In the Max Idle Time field, enter the number of minutes of idle time that can elapse before the Int ernet connection terminat es. Select Keep Alive to keep the connection active at all times.

• To connect or disconnect your modem connection manually, select Manual

mode.

The device displays the current modem connection status that includes initializing, connecting, disconnecting, or disconnected.

Cisco RV130/RV130W Wireless Multifunction VPN Router Administration Guide 25

Configuring Networking

Configuring a Mobile Network

STEP 3 Verify that the Card Status field shows your mobile card is Connected.

STEP 1 Enter information in the following fields:

Configuring Mobile Network Settings Manually

To change mobile netw ork parameters in the Mobile Network Setup area, click the Manual radio button. The device automatically detects supported modems and lists the appropriate configuration parameters. To override global parameters, select Manual.

Field Description

Access point Name (APN)

Dial Number Dial number provided by your mobile network service

Username Password

SIM Check SIM card check enable or disable. SIM PIN PIN code associated with your SIM card. This field is

Server Name Name of the server for the Internet connection (if

Authentication Authentication used by your service provider. The value

Internet network that the mobile device is connecting to. Enter the access point name provided by your mobile network service provider. If you do not know the name of the access p o int, contact your service provider.

provider for the Internet connection. User name and password provided by your mobile

network service provider.

only displayed for GSM SIM cards. You can modify the SIM PIN in either Auto or Manual

mode.

provided by your service provider).

can be changed by choosing the authentication type from the drop-down list. The default is Auto. If you do not know which type of authentication to use, select Auto.

Cisco RV130/RV130W Wireless Multifunction VPN Router Administration Guide 26

Configuring Networking

Configuring a Mobile Network

STEP 2 Click Save to save your settings

Field Description

Server Type The most commonly available type of mobile data

service connection based on your area service signal. If your location supports only one mobile data service, you can limit your pref err ed option, reducing connection setup times. The first selection always searches for HSPDA/3G/UMTS service and switches automatically to GPRS when it is available.

LTE Service L ong-term E volution (LTE) Service setting. Auto chooses

a signal based on the area service signal. 4G only searches for only 4G signals. 3G only searches for only 3G signals.

Bandwidth Cap Setting

The device monitors the data activity across the mobile network link and when it reaches a given threshold, sends a notification.

To enable or disable Bandwidth Cap Tracking and set the limits:

STEP 1 Click Enabled or Disabled. STEP 2 Select the Monthly Renewal Date fr om the dr op-down list to indicate which day of

the month the bandwidth cap is reset .

STEP 3 In the Monthly Bandwidth Cap field, enter the maximum amount of data in

megabytes that is allowed to pass before the device takes an action, such as sending an email to an administrator.

E-mail Setting

When the bandwidth data limit is reached, an email message can be sent to the administrator. To set up the target email address, see Configuring Log E-Mailing.

When enabled by checking the box, email is sent when:

• Mobile network usage has exc eeded a given percentage.

• The device fails over to the backup pathway and recovers.

Cisco RV130/RV130W Wireless Multifunction VPN Router Administration Guide 27

Configuring Networking

Configuring a Mobile Network

STEP 1 Choose Networking > WAN > Failover & Recovery, to display the Failover &

STEP 2 Select Enable Failover to 3G WAN to enable the mobile network link and set it to

• At every interval specified while a mobile network link is active.

Set t ing Failover and Recovery

While both Ethernet and mobile network links are available, only one connection can be used to establish a W AN link, at a time. When one W AN connection fails, the device attempts to establish a connection on another interface. This feature is called Failover. When the primary WAN connection is restored, it reverts to the original path and ends the backup connection. This feature is called Recovery.

Recovery window.

failover from the Ethernet link. When the Ethernet W AN link is not active, the device attempts to enable the mobile network link on the USB interface. (If failover is not enabled, the mobile network link is always disabled.)

STEP 3 Select Enable Recovery back to Ethernet WAN to enable the link to return to the

Ethernet link, dropping the mobile network link. The Connect Mode accessed through WAN > Mobile Network must be set to Auto to use Ethernet WAN connection recovery.

STEP 4 In the Failover Check Interval field, enter the fr equency (in seconds) with which the

device must attempt to detect the physical connection or presence of traffic on the mobile network link. If the link is idle, the device attempts to ping a destination at this interval. If there is no reply t o the ping pack et, the device assumes the link is down and retries the Ethernet WAN interface.

STEP 5 In the Recovery Check Interval field, enter the frequency (in seconds) with which

the device must attempt to detect the physical connection or presence of traffic on the Ethernet WAN link. If the link is idle, the device attempts to ping a destination at the interval. If there is a reply to the ping pa cket, the device assumes the link is up and attempts to disable the mobile network link and enable the Ethernet WAN link.

STEP 6 Click Switch back to Ethernet immediately when Ethernet is available or click

Switch back to Ethernet in a specific time range and enter the start and end time for the range.

STEP 7 In the Connection Validation Site field, choose the site from which to perform

failover validation. Use the next hop gateway (by default the device pings the default gateway) or choose a custom site and enter the site IPv4 or IPv6 address.

STEP 8 Click Save to save your settings.

Cisco RV130/RV130W Wireless Multifunction VPN Router Administration Guide 28

+ 109 hidden pages