First Published: 2018-10-23
Americas Headquarters
Cisco Systems, Inc. 170 West Tasman Drive
San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000
800 553-NETS (6387) Fax: 408 527-0883
THE SPECIFICATIONS AND INFORMATION REGARDING THE PRODUCTS IN THIS MANUAL ARE SUBJECT TO CHANGE WITHOUT NOTICE. ALL STATEMENTS, INFORMATION, AND RECOMMENDATIONS IN THIS MANUAL ARE BELIEVED TO BE ACCURATE BUT ARE PRESENTED WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED. USERS MUST TAKE FULL RESPONSIBILITY FOR THEIR APPLICATION OF ANY PRODUCTS.
THE SOFTWARE LICENSE AND LIMITED WARRANTY FOR THE ACCOMPANYING PRODUCT ARE SET FORTH IN THE INFORMATION PACKET THAT SHIPPED WITH THE PRODUCT AND ARE INCORPORATED HEREIN BY THIS REFERENCE. IF YOU ARE UNABLE TO LOCATE THE SOFTWARE LICENSE OR LIMITED WARRANTY, CONTACT YOUR CISCO REPRESENTATIVE FOR A COPY.
The following information is for FCC compliance of Class A devices: This equipment has been tested and found to comply with the limits for a Class A digital device, pursuant to part 15 of the FCC rules. These limits are designed to provide reasonable protection against harmful interference when the equipment is operated in a commercial environment. This equipment generates, uses, and can radiate radio-frequency energy and, if not installed and used in accordance with the instruction manual, may cause harmful interference to radio communications. Operation of this equipment in a residential area is likely to cause harmful interference, in which case users will be required to correct the interference at their own expense.
The following information is for FCC compliance of Class B devices: This equipment has been tested and found to comply with the limits for a Class B digital device, pursuant to part 15 of the FCC rules. These limits are designed to provide reasonable protection against harmful interference in a residential installation. This equipment generates, uses and can radiate radio frequency energy and, if not installed and used in accordance with the instructions, may cause harmful interference to radio communications. However, there is no guarantee that interference will not occur in a particular installation. If the equipment causes interference to radio or television reception, which can be determined by turning the equipment off and on, users are encouraged to try to correct the interference by using one or more of the following measures:
•Reorient or relocate the receiving antenna.
•Increase the separation between the equipment and receiver.
•Connect the equipment into an outlet on a circuit different from that to which the receiver is connected.
•Consult the dealer or an experienced radio/TV technician for help.
Modifications to this product not authorized by Cisco could void the FCC approval and negate your authority to operate the product
The Cisco implementation of TCP header compression is an adaptation of a program developed by the University of California, Berkeley (UCB) as part of UCB’s public domain version of the UNIX operating system. All rights reserved. Copyright © 1981, Regents of the University of California.
NOTWITHSTANDING ANY OTHER WARRANTY HEREIN, ALL DOCUMENT FILES AND SOFTWARE OF THESE SUPPLIERS ARE PROVIDED "AS IS" WITH ALL FAULTS. CISCO AND THE ABOVE-NAMED SUPPLIERS DISCLAIM ALL WARRANTIES, EXPRESSED OR IMPLIED, INCLUDING, WITHOUT LIMITATION, THOSE OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT OR ARISING FROM A COURSE OF DEALING, USAGE, OR TRADE PRACTICE.
IN NO EVENT SHALL CISCO OR ITS SUPPLIERS BE LIABLE FOR ANY INDIRECT, SPECIAL, CONSEQUENTIAL, OR INCIDENTAL DAMAGES, INCLUDING, WITHOUT LIMITATION, LOST PROFITS OR LOSS OR DAMAGE TO DATA ARISING OUT OF THE USE OR INABILITY TO USE THIS MANUAL, EVEN IF CISCO OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
Any Internet Protocol (IP) addresses and phone numbers used in this document are not intended to be actual addresses and phone numbers. Any examples, command display output, network topology diagrams, and other figures included in the document are shown for illustrative purposes only. Any use of actual IP addresses or phone numbers in illustrative content is unintentional and coincidental.
Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries. To view a list of Cisco trademarks, go to this URL: www.cisco.com go trademarks. Third-party trademarks mentioned are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. (1721R)
© 2018 Cisco Systems, Inc. All rights reserved.
C H A P T E R 1
C H A P T E R 2
C H A P T E R 3
C O N T E N T S
Getting Started |
1 |
|
|
RV260X Product Features 1 |
|||
Getting Started |
5 |
|
|
Launch Setup Wizard |
6 |
||
User Interface |
7 |
|
|
Status and Statistics |
11 |
|
|
System Summary 11 |
|||
TCP/IP Services |
13 |
|
|
Port Traffic |
14 |
|
|
WAN QoS Statistics |
15 |
||
Switch QoS Statistics |
16 |
||
Connected Devices |
16 |
||
Routing Table |
17 |
|
|
DHCP Bindings |
17 |
|
|
Mobile Network |
18 |
|
|
VPN Status |
18 |
|
|
View Logs |
20 |
|
|
Captive Portal Status |
21 |
Administration 23
File Management 23
Manual Upgrade 24
Auto Update 24
Firmware Auto Fallback Mechanism 25
Reboot 25
RV260x Administration Guide
iii
Contents
Diagnostic 26
Certificate 26
Import Certificate 27
Generate CSR/Certificate 27
Show Built-in 3rd Party CA Certificates 28
Configuration Management 28
Copy/Save Configuration 28
C H A P T E R 4
C H A P T E R 5
iv
System Configuration |
31 |
|
|
||
Initial Router Setup |
31 |
|
|
||
System |
33 |
|
|
|
|
Time |
33 |
|
|
|
|
Log 34 |
|
|
|
|
|
Email Server |
35 |
|
|
|
|
Remote Syslog Servers |
35 |
|
|||
36 |
|
|
|
|
|
User Accounts |
36 |
|
|
|
|
Remote Authentication Service |
38 |
||||
User Groups 38 |
|
|
|
|
|
IP Address Groups |
40 |
|
|
||
SNMP |
40 |
|
|
|
|
Discovery-Bonjour |
41 |
|
|
||
LLDP |
41 |
|
|
|
|
Automatic Updates |
42 |
|
|
||
Schedules 43 |
|
|
|
|
|
Service Management |
43 |
|
|
||
PnP (Plug and Play) |
43 |
|
|
||
Plug and Play Connect Service |
44 |
||||
Creating a Controller Profile |
44 |
||||
Registering Devices |
45 |
|
WAN 47
WAN Settings 47
Multi-WAN 50
RV260x Administration Guide
C H A P T E R 6
C H A P T E R 7
C H A P T E R 8
C H A P T E R 9
Contents
Mobile Network |
50 |
|
|
|
|||
Mobile Network Setup |
51 |
|
|||||
Bandwidth Cap Setting |
51 |
|
|||||
Dynamic DNS |
|
52 |
|
|
|
|
|
Hardware DMZ |
52 |
|
|
|
|
||
IPv6 Transition |
53 |
|
|
|
|
||
IPv6 in IPv4 Tunnel (6in4) 53 |
|||||||
IPv6 Rapid Deployment (6rd) |
53 |
||||||
LAN 55 |
|
|
|
|
|
|
|
Port Settings |
55 |
|
|
|
|
||
PoE Settings (RV260P) |
56 |
|
|||||
VLAN Settings |
57 |
|
|
|
|
||
Option82 Settings |
59 |
|
|
|
|||
Static DHCP |
60 |
|
|
|
|
||
802.1X Configuration |
61 |
|
|
||||
Router Advertisement |
61 |
|
|
||||
Wireless |
63 |
|
|
|
|
|
|
Basic Settings |
|
63 |
|
|
|
|
|
Concurrent Dual Band Selection 65 |
|||||||
Configuring 2.4 GHz Radio |
65 |
||||||
Configuring 5 GHz Radio |
66 |
||||||
Advanced Settings |
67 |
|
|
|
|||
WPS |
68 |
|
|
|
|
|
|
Captive Portal |
|
69 |
|
|
|
|
|
Lobby Ambassador |
70 |
|
|
|
Routing 73
Static Routing 73
RIP 74
IGMP Proxy 75
Firewall 77
RV260x Administration Guide
v
Contents
|
|
|
Basic Settings |
77 |
|
|
||
|
|
|
Access Rules |
79 |
|
|
||
|
|
|
Network Address Translation |
80 |
||||
|
|
|
Static NAT |
80 |
|
|
|
|
|
|
|
Port Forwarding |
81 |
|
|
||
|
|
|
Port Triggering |
|
82 |
|
|
|
|
|
|
Policy NAT |
83 |
|
|
|
|
|
|
|
Policy NAT Use Cases 83 |
|
||||
|
|
|
Session Timeout |
86 |
|
|
||
|
|
|
DMZ Host |
87 |
|
|
|
|
C H A P T E R |
1 0 |
VPN |
89 |
|
|
|
|
|
|
|
|
VPN Setup Wizard |
89 |
|
|||
|
|
|
IPSec VPN |
91 |
|
|
|
|
|
|
|
IPSec Profiles |
92 |
|
|
||
|
|
|
Site-to-Site 94 |
|
|
|||
|
|
|
Site-to-Site VPN Connection 94 |
|||||
|
|
|
Client to Site |
|
97 |
|
|
|
|
|
|
OpenVPN |
99 |
|
|
|
|
|
|
|
PPTP Server |
100 |
|
|
||
|
|
|
GRE Tunnel |
101 |
|
|
||
|
|
|
VPN Passthrough 101 |
|
||||
|
|
|
Resource Allocation |
102 |
|
|||
C H A P T E R |
1 1 |
Security 103 |
|
|
|
|
|
|
|
|
|
Content Filtering |
103 |
|
|||
|
|
|
Web Filtering |
104 |
|
|
||
|
|
|
Cisco Small Business Web Filtering Service Supplemental End User License Agreement 105 |
|||||
C H A P T E R |
1 2 |
QoS |
109 |
|
|
|
|
|
|
|
|
Traffic Classes |
|
109 |
|
|
|
|
|
|
WAN Queuing |
|
110 |
|
|
|
|
|
|
WAN Policing |
|
111 |
|
|
|
|
|
|
WAN Bandwidth Management |
112 |
RV260x Administration Guide
vi
C H A P T E R 1 3
Contents
Switch Classification 112
Switch Queuing 113
Where To Go 115
Where To Go From Here 115
RV260x Administration Guide
vii
Contents
RV260x Administration Guide
viii
C H A P T E R 1
This section describes how to get started on the device and contains the following topics:
•RV260X Product Features, on page 1
•Getting Started, on page 5
•Launch Setup Wizard, on page 6
•User Interface, on page 7
Thank you for purchasing the Cisco RV260 VPN Series routers. The Cisco RV260 VPN routers are high-performance models that combine business-class features with performance, security, reliability and overall value at a great price point. These models are perfect for the small business, small enterprise, branch, or small home office network.
•Features and Benefits
•RV260 VPN Router provides wired connectivity with eight GbE ports
•RV260P VPN Router has eight GbE Ports with four ports of Power over Ethernet (PoE) and a 60w power budget
•RV260W is a wireless VPN Router: 3x3 11ac WAVE2 wireless and an eight GbE port switch
•Flexible SFP/RJ45 combination WAN Ports
•High-performance Gigabit Ethernet ports, enabling large file transfers and multiple users
•Web Filtering to keep users and the business away from harmful websites and keeps productivity at a high level.
•IP Security, PPTP and Open VPN Server for secure connectivity for remote employees and multiple office sites
•Strong security: Proven stateful packet inspection (SPI) firewall and hardware encryption
•New User Interface design for easier configuration and device management
•Simple-setup with wizard-based configuration
•Updated, New Hardware enclosure design
RV260x Administration Guide
1
Getting Started
RV260X Product Features
• FindIT Network Management Support |
|
Product Specifications |
|
Description |
Specification |
Ethernet WAN |
1 RJ45 SFP Gigabit Combination Port |
Ethernet LAN |
8 RJ45 Gigabit Ethernet |
|
RV260P has 4 PoE ports with a 60w power budget |
Console Port |
1 RJ45 |
Switch |
Power On/Off |
Cabling Type |
CAT5 or better |
LED’s |
Power, VPN, WAN, LAN |
Operating System |
Linux |
LAN |
|
VLAN |
16 |
Port Security |
Yes, 802.1X |
IPv6 |
Dual Stack, 6rd,6in4 |
WAN |
DynamicHostConfigurationProtocol(DHCP)client, |
|
static IP, Point-to-Point Protocol over Ethernet |
|
(PPPoE), PPTP, L2TP, transparent bridge |
WLAN |
3x3 11ac WAVE2 |
Security |
|
Firewall |
Stateful Packet Inspection (SPI) Firewall |
|
Port-Forwarding and Triggering |
|
Denial of Service prevention (DoS) |
Access Control |
IP access control lists |
Secure Management |
HTTPS, username/password complexity |
User Privileges |
Two levels of access: Admin and Guest |
Network |
|
RV260x Administration Guide
2
Getting Started
RV260X Product Features
Description |
Specification |
Network Protocols |
• Dynamic Host Configuration Protocol (DHCP) |
|
server |
|
• Point-to-Point Protocol over Ethernet (PPPoE) |
|
• Point-to-Point Tunneling Protocol (PPTP) |
|
• Layer 2 Tunneling Protocol (L2TP) |
|
• DNS proxy |
|
• DHCP relay agent |
|
• IGMP Proxy and multicast forwarding |
|
• Rapid Spanning Tree Protocol (RSTP) |
|
• DynamicDomainNameSystem(TZO,DynDNS, |
|
3322.org, NOIP) |
|
• Network Address Translation (NAT), Port |
|
Address Translation (PAT) |
|
• One-to-One NAT |
|
• Port management |
|
• Port mirroring |
|
• Software configurable DMZ to any LAN IP |
|
address |
|
• Session Initiation Protocol (SIP) Application |
|
Layer Gateways (ALG) |
Routing Protocols |
• Static routing, IGMP proxy |
|
• Dynamic routing |
|
• RIP v1 and v2 |
|
• RIP for IPv6 (RIPng) |
|
• Inter-VLAN routing |
Network Address Translation (NAT Protocol |
Port Address Translation (PAT), Network Address |
|
Port Translation (NAPT) |
|
Port forwarding, One-to-one NAT, VPN NAT |
|
Transversal, Session Initiation (SIP), Application |
|
Level Gateway (ALG), FTP ALG |
VPN |
|
Gateway-to-Gateway IPsec VPN |
20 IPsec Tunnels |
Client-to-Gateway IPsec VPN |
20 IPsec Tunnels |
RV260x Administration Guide
3
Getting Started
RV260X Product Features
Description |
Specification |
IPsec VPN |
IKEv2, GRE, Hub and Spoke supported |
PPTP VPN |
20 PPTP VPN Tunnels |
Open VPN |
Support for the Open VPN Server |
Encryption |
3DES, AES with 128, 192 and 256 bit keys |
|
Encryption |
VPN Pass-Through |
IPsec/PPTP/Layer 2 Tunneling Protocol (L2TP) |
|
pass-through |
Quality of Service |
|
QoS |
• 802.1p port-based priority on LAN port, |
|
application-based priority on WAN port |
|
• 3 queues |
|
• Differentiated Services Code Point support |
|
(DSCP) |
|
• Class of Service (CoS) |
|
• BandwidthManagementforserviceprioritization |
Jumbo Frame Support |
Supports Jumbo Frame on Gigabit ports-at least |
|
1536B |
Performance |
|
NAT Throughput |
800+Mbps |
Concurrent Sessions |
25,000 |
IPsec VPN Throughput |
75+Mbps |
Configuration |
|
Web-based User Interface |
Browser-based configuration (HTTP/HTTPS) |
Management |
Web-based User Interface, SNMP v3, Bonjour, |
|
Universal Plug and Play (UPnP) |
|
FindIT Support for Monitoring and Management |
Event Logging |
Local, Syslog, email alerts |
Network Diagnostics |
Ping, Traceroute, DNS Lookup |
Upgradeability |
Firmware upgradeable via browser UI, |
|
imported/exported file, USB, Cisco FindIT |
System Time |
NTP, Daylight Savings, Manual Entry |
Environmental |
|
RV260x Administration Guide
4
Getting Started
Description |
Specification |
Power |
RV260: 12VDC/2A |
|
RV260P: 54VDC/1.67A |
|
RV260W: 12VDC/2.5A |
Operating Temperature |
0° to 40°C (32° to 104°F) |
Storage Temperature |
-20° to 70°C (-4° to 158°F) |
Operating Humidity |
10% to 85% noncondensing |
Storage Humidity |
5% to 90% noncondensing |
Certifications |
Safety: |
|
• UL 60950-1 |
|
• CAN/CSA-C22.2 No. 60950-1 |
|
• IEC 60950-1 |
|
• EN 60950-1 |
|
Radio approvals: |
|
• FCC Part 15.247, 15.407 |
|
• RSS-210 (Canada) |
|
• EN 300.328, EN 301.893 (Europe) |
|
• AS/NZS4268.2003(AustraliaandNewZealand) |
|
EMI and susceptibility (Class B): |
|
• FCC Part 15.107 and 15.109 |
|
• ICES-003 (Canada) |
|
• EN 301.489-1 and -17 (Europe) |
|
• RV260/RV260P rackmount: Class A |
Getting Started
Yourdevicecomeswithdefaultsettingsthatareoptimizedformanysmallbusinesses. However,yournetwork demands or Internet Service Provider (ISP) might require you to modify a few of these settings. You can do so using the web interface, that is using Internet Explorer, Firefox or Safari (for Mac) on a PC.
To launch the web interface, follow these steps:
Step 1 Connect a PC to a numbered LAN port on the device. If the PC is configured to become a Dynamic Host Configuration Protocol (DHCP) client, an IP address in the 192.168.1.x range is assigned to the PC. DHCP automates the process of
RV260x Administration Guide
5
Getting Started
assigning IP addresses, subnet masks, default gateways and other settings to computers. Computers must be set to participate in the DHCP process to obtain an address. This is done by selecting to obtain an IP address automatically in the properties of TCP/IP on the computer.
Step 2 Start a web browser.
Step 3 In the address bar, enter the default IP address of the device, 192.168.1.1. The browser might issue a warning that the website is untrusted. Continue to the website.
Step 4 When the sign-in page appears, enter the default username cisco and the default password cisco (lowercase).
Step 5 Click Login. The Getting Started page appears. You can use the various links available on this page and follow the on-screen instructions to quickly configure your network device.
Note If you have trouble connecting to the Internet or the web-based interface:
•Verify that your web browser is not set to Work Offline.
•Check the local area network connection settings for your Ethernet adapter. The PC should obtain an IP address through DHCP. Alternatively, the PC can have a static IP address in the 192.168.1.x range with the default gateway set to 192.168.1.1 (the default IP address of the device).
•Verify that you entered the correct settings in the Wizard to set up your Internet connection.
•Reset the modem and the device by powering off both devices. Next, power on the modem and let it sit idle for about 2 minutes. Then power on the device. You should now receive a WAN IP address.
•If you have a DSL modem, ask your ISP to put the DSL modem into bridge mode.
Also, you can use a wireless PC to configure the RV160W and RV260W router models. When the router boots up from the factory default settings, a temporary SSID is enabled. You can connect to this SSID to configure the router.
Step 6 On a PC, search the Service Set Identifier (SSID) and configure as listed below. Then, the wireless connection is up and the PC obtains the address in the range 192.168.1.x.
•CiscoSB-Setup
•Security: WPA2-PSK
•Pre-shared Key: cisco123
•Channel: Auto
Step 7 Access the Launch Setup Wizard page by completing steps 2 to 5. Once on the page, follow the instructions that appear online. After submitting the configuration in the setup wizard, the temporary service set identifier (SSID) will be deleted and the new configuration will be applied.
Note The temporary SSID (CiscoSB-Setup) is only used for the initial setup wizard. It should not be used to forward traffic. To find your SSID, open your computer's Wi-Fi settings and look at the available Wi-Fi networks within your range.
Launch Setup Wizard
FromtheLaunchSetupWizardpage,followtheinstructionsthatguideyouthroughtheprocessforconfiguring the device.
RV260x Administration Guide
6
Getting Started
To open this page, select Launch Setup Wizard in the navigation pane and follow the on-screen instructions to proceed. Refer to your ISP for the information required to setup your Internet connection.
Launch Setup Wizard |
|
Initial Router Setup |
Link to the Initial Router Setup. |
VPN Setup Wizard |
Link to the VPN Status Wizard. |
Initial Configuration |
|
Change Administrator |
Link to the User Accounts page where you can change the administrator |
Password |
password and set up a guest account. |
Configure WAN Settings |
Link to the WAN Settings page where you can modify the WAN parameters. |
Configure USB Settings |
Linktothe MobileNetworkpagewhereyoucanmodifytheUSBconfigurations. |
Configure LAN Settings |
Link to the VLAN Membership page where you can configure the VLAN. |
Quick Access |
|
Upgrade Router |
Link to the File Management page where you can update the device firmware. |
Firmware |
|
Configure Remote |
Link to the Firewall >Basic Settings page where you can enable the basic |
Management Access |
features of the device. |
Backup Device |
Link to the Config Management page where you can manage the router’s |
Configuration |
configuration. |
Device Status |
|
System Summary |
Linktothe SystemSummarypagethatdisplaystheIPv4andIPv6configuration, |
|
and firewall status on the device. |
VPN Status |
Link to the VPN Status page that displays the status of the VPNs managed by |
|
this device. |
Port Statistics |
Link to the Port Traffic page which displays the device’s port status and port |
|
traffic. |
Traffic Statistics |
Link to the TCP/IP Services page which displays the device’s port listen status |
|
and the established connection status. |
View System Log |
Link to the View Logs page which displays the logs on the device. |
User Interface
The user interface is designed to make it easy to set up and manage the device.
The header toolbar icons are described in the table below.
RV260x Administration Guide
7
Getting Started
User Interface
Table 1: Header Toolbar Options
Icon
Description
Toggle button – Located on the top left of the header – This toggle button helps to expand or collapse the navigation pane.
Language Selection – This drop-down list allows you to select the language for the user interface.
Help – The online-help documentation for the router.
About – The firmware version information for the router.
Logout – Click to log out of the router.
Icon Legend
Thistabledisplaysthemostcommoniconsfoundthroughouttherouter'sgraphicalinterfaceandtheirmeanings.
Add – Click to add an entry.
Edit – Click to edit an entry.
Delete – Click to delete an entry.
Refresh – Click to refresh the data.
Reset counters – Click to reset the counters.
Clone – Click to clone the settings.
RV260x Administration Guide
8
Getting Started
User Interface
Export – Click to export the configurations.
Import – Click to import the configurations.
Popup Windows
Some links and buttons launch popup windows that display more information or related configuration pages. If the web browser displays a warning message about the popup window, allow the blocked content.
RV260x Administration Guide
9
Getting Started
User Interface
RV260x Administration Guide
10
C H A P T E R 2
This section describes the device's status and statistics and contains the following topics:
•System Summary, on page 11
•TCP/IP Services, on page 13
•Port Traffic, on page 14
•WAN QoS Statistics, on page 15
•Switch QoS Statistics, on page 16
•Connected Devices, on page 16
•Routing Table, on page 17
•DHCP Bindings, on page 17
•Mobile Network, on page 18
•VPN Status, on page 18
•View Logs, on page 20
•Captive Portal Status, on page 21
The System Summary provides a snapshot of the settings on your device. It displays your device’s firmware, serial number, port traffic, routing status, VPN server settings, and mobile networks. To view this System Summary, click Status and Statistics> System Summary.
System Information
•Serial Number – The serial number of the device.
•System Up Time – The active length of time in yy-mm-dd, hours, and minutes that the device has been up.
•Current Time – The current date and time.
•PID VID – The hardware version number.
•LAN MAC – The LAN MAC address.
•WAN MAC – The WAN MAC address.
RV260x Administration Guide
11
Status and Statistics
System Summary
Firmware Information
•Firmware Version – The firmware version number installed on the router.
•Firmware MD5 Checksum – A value used for file validation.
•Locale – Defined localization support.
•Language Version – Language version.
•Language MD5 Checksum – A value used for language file validation.
Port Status
•Port ID – Defined name and number of the port.
•Interface – Name of the interface used for the connection.
•Status – Status of connection
•Speed – Connection speed.
IPv4 and IPv6
Internet Protocol version 4 (IPv4) and Internet Protocol version 6 (IPv6) are numerical IP addresses necessary for Internet-enabled devices to communicate. Without IP addresses, computers would not be able to communicate and send data to each other. It's essential to the infrastructure of the web.
This section diplays the following:
•IP Address – IP address assigned to the interface.
•Default Gateway – Default gateway for the interface.
•DNS – IP address of the DNS server. A DNS server is a computer server that contains a database of public IP addresses and their associated hostnames.
•Dynamic DNS – Dynamic domain name system (DNS) is a method of automatically updating a name server in the DNS, often in real time, with the active DDNS configuration of its configured hostnames, addresses or other information. This displays the IP address of the DDNS for the interface and if it is
Disabled or Enabled.
•Disconnect – Click to disconnect the connection.
•Renew – Click to renew the IP address.
Note • Connect or Disconnect buttons are applicable when the WAN connection type is PPTP, L2TP, and PPPoE.
•WAN gets connected only if you reconnect or change the WAN configuration after disconnecting the existing WAN connection.
RV260x Administration Guide
12
Status and Statistics
Wireless Status
This section displays the status of the Wireless.
•Radio 1 (2.4G), Radio 2 (5G), and Enabled – Bands displaying the MAC address, mode, channel, and operation bandwidth and their details.
VPN Status
This section displays the status of the VPN tunnels.
•Type – Type of VPN tunnel.
•Active – If VPN is Enabled (active) or Disabled.
•Configured – VPN tunnel’s status whether it is configured or not.
•Max Supported – The maximum number of tunnels supported on the device.
•Connected – Status of the tunnel.
Firewall Setting Status
This section displays the status of the firewall.
•Stateful Packet Inspection (SPI) –Status of the SPI filter service is enabled (on) or disabled (off). Legitimate packets are only allowed through the firewall. It is also called a dynamic packet filtering.
•Denial of Service (DoS) – Status of the DoS filter service is enabled (on) or disabled (off). A DoS attack is an attempt to make a machine or network resource unavailable to its intended users.
•BlockWANRequest – Makesitdifficultforoutsideuserstoworktheirwayintoyournetworkbyhiding the network ports from Internet devices and preventing the network from being pinged or detected by other Internet users.
•RemoteManagement – Indicates that a remote connection for managing the device is allowed or denied.
•Access Rule – Number of access rules that have been set.
Log Setting Status
Logs allow you to track router activity, process failures, firewall events, connects and disconnects of WAN devices, DDNS (Dynamic DNS) updates, VPN connection statuses, and many other events taking place in your router. Logs are a very useful tool in troubleshooting and monitoring your router’s health at any given time.
•Syslog Server – Status of system logs.
•Email Log – Status of logs to send using email.
TCP/IP Services
The TCP/IP Services page displays the statistics of the protocol, port, and IP address. To view the TCP/IP Services, click Status and Statistics > TCP/IP Services.
RV260x Administration Guide
13
Status and Statistics
Port Listen Status
This section displays the status of which ports are open to receiving data (listening).
•Protocol – Type of protocol used for communication.
•Listen IP Address – The listening IP address displays the interface it is listening on.
•Listen Port – The listening port serves as an endpoint in an operating system for many types of communication.
Established Connection Status
This section displays status on which ports have an established connection.
•Protocol – Type of protocol used for communication.
•Local IP Address – IP address of the system.
•Local Port – Listening ports on different services.
•Foreign Address – IP address of the device connected.
•Foreign Port – Port of the device connected.
•Status – Connection status of the session.
Port Traffic
The Port Traffic page displays the statistics and status of the interfaces of the device. To view the device’s Port Traffic page, click Status and Statistics >Port Traffic.
Port Traffic
•Port ID – Port ID.
•Port Label – Port label.
•Link Status – Status of the interface.
•RX Packets – Number of packets received on the port.
•RX Bytes – Number of packets received, measured in bytes.
•TX Packets – Number of packets sent on the port.
•TX Bytes – Number of packets sent and measured in bytes.
•Packet Error – Details about the error packets.
Wireless Traffic
•SSID Name – Details of the SSID name.
•Radio Name – Radio name.
•Status – Status of the port (example: port enabled or disabled or connected).
RV260x Administration Guide
14
Status and Statistics
•Number of Associated Clients – The number of associated clients on wireless.
•RX Packets – Number of RX packets.
•RX Bytes – Number of RX bytes.
•TX Packets – Number of TX packets.
•TX Bytes – Number of TX bytes.
•Multicast Packets – Number of multicast packets.
•Packet Error – Number of packet errors.
•Packet Dropped – Number of packets dropped.
•Collisions – Number of collisions.
Click the Refresh button to refresh the data or click Reset to reset the counters.
Port Status
•Port ID – Defined name and number of the port.
•Link Status – Status of the interface.
•Port Activity – Status of the port (example: port enabled or disabled or connected).
•Speed Status – The speed (in Mbps) of the device after auto negotiation.
•Duplex Status – Duplex mode: Half or Full.
•Auto Negotiation – Status of the auto negotiation parameter. When (On), it detects the duplex mode. If theconnectionrequiresacrossover,itautomaticallychoosestheMDIorMDIXconfigurationthatmatches the other end of the link.
WAN QoS Statistics
The WAN QoS Statics page displays the statistics of the outbound and inbound WAN QoS. To view the device’s WAN QoS Statics page, click Status and Statistics > WAN QoS Statistics.
•Interface – Select the name of the interface from the drop-down list.
•Policy Name – Name of the policy.
•Description – Description of the WAN QoS statistics.
•Clear Counters – Click to clear the counters.
Outbound QoS Statistics
•Queue – Number of outbound queues.
•Traffic Class – Name of traffic class assigned to queue.
•Packets Sent – Number of outbound packets of the traffic class sent.
RV260x Administration Guide
15
Status and Statistics
• Packets Dropped – Number of outbound packets dropped.
Inbound QoS Statistics
•Queue – Number of inbound queues.
•Traffic Class – Name of traffic class assigned to queue.
•Packets Passed – Number of traffic class inbound packets that have passed.
•Packets Dropped – Number of inbound packets dropped.
Switch QoS Statistics
The Switch QoS Statistics displays the statistics for the rate at which packets are forwarded out of a queue and for the rate at which committed, conformed, or exceeded packets are dropped. To view the Switch QoS Statistics page, click Status and Statistics > Switch QoS Statistics.
• Clear Counters – To reset all the table statistics.
LAN
•Queue – Number of outbound queues.
•Port – Port number.
•Packets Sent – Number of outbound packets of the traffic class sent.
Link Aggregation
•Queue – Number of outbound queues.
•Group – Group name.
•Packets Sent – Number of outbound packets of the traffic class sent.
The Connected Devices page lists all the connected devices on the router. To view this Connected Devices page, click Status and Statistics > Connected Devices.
IPv4
•Hostname – Name of the connected device.
•IPv4 Address – Connected device’s IP address.
•MAC Address – MAC address of the connected device.
•Type – The type of IP address of the connected device.
•Interface – The interface the device is connected to.
RV260x Administration Guide
16
Status and Statistics
• SSID – The primary name assigned to a wireless network.
IPv6
•Hostname – Name of the connected device.
•IPv6 Address – The IPv6 address of the connected device.
•MAC Address – MAC address of the connected device.
•Type – The type of IP address of the connected device.
•Interface – The interface the device is connected to.
•SSID – The primary name assigned to a wireless network.
Routing Table
Routing is the process of moving packets across a network from one host to another. The Routing Status of this process is displayed in the route table. The route table contains information about the topology of the network immediately around it. To view the device’s routing status for IPv4 and IPv6, click Status and Statistics > Route Table.
IPv4 and IPv6 Routes
•Destination – IP Address and subnet mask of the connection.
•Next Hop – IP address of the next hop.
•Hop Count – Number of intermediate devices (like routers) through which data must pass between the source and the destination.
•Interface – Name of the interface to which the route is attached to.
•Source – Source of the route.
The DHCP Bindings page displays the IP and MAC address, Lease Expire Time and Type of Binding (static or dynamic). To view the device’s DHCP Bindings, click Status and Statistics > DHCP Bindings. Select a hostnamefromthelistandclick AddtoStaticDHCP toaddthebindingtothebindingtable. Clicktherefresh icon to refresh the data in the binding table.
In the DHCP Binding Table, the following is displayed:
•Hostname – Name of host.
•IPv4/IPv6 Address – Assigned IP address for IPv4 or IPv6.
•MAC Address – The MAC address of the client's assigned IP address.
•Lease Expires – Lease time for the client's system.
RV260x Administration Guide
17
Status and Statistics
•Type – Connection status (Static or Dynamic).
•Action – Action status of the DHCP bindings.
Mobile Network
Mobile networks enable routers and its subnets to maintain transparent IP connectivity, via the mobile router. To view the router's mobile network, click Status and Statistics > Mobile Network.
Connection
•Internet IP Address – IP address served by the service provider.
•Subnet Mask – Subnet mask served by the service provider.
•Default Gateway – Default gateway served by the service provider.
•Connection Up Time – Time duration of the connected device.
•Current Dial-up Session Usage – Session Usage – Data usage per session.
•Monthly Usage – Monthly data usage. Click Clear to clear the monthly usage data.
Data Card Status
•Manufacturer – Manufacturer of the device.
•Card Firmware – Firmware version provided by the manufacturer.
•SIM Status – Status of the SIM.
•IMSI – Unique number of the device.
•Carrier – Name or type of data carrier.
•Service Type – Data service type.
•Signal Strength – Strength of data signal.
•Card Status – Balance of data on card.
The VPN Status displays the tunnel status of the Site-to-Site, Client-to-Site, OpenVPN, and PPTP. To view the device’s VPN status, click Status and Statistics > VPN Status.
Site-to-Site Tunnel Status
•Tunnel(s) Used – VPN tunnels in use.
•Tunnel(s) Available – Available VPN tunnels.
•Tunnel(s) Enabled – VPN tunnels enabled.
•Tunnel(s) Defined – Defined VPN tunnels.
RV260x Administration Guide
18
Status and Statistics
VPN Status
In the Connection Table, you can add, edit, delete, or refresh a tunnel. You can also click on Column Display Selection to select the column headers displayed in the Connection Table.
GRE Tunnel Status
The Connection Table displays the following:
•Interface Name – Name of the interface.
•IP Address – IP address of the GRE tunnel.
•Source – The source of the GRE tunnel.
•Destination – Destination of the GRE tunnel.
•Enable – Enable the GRE tunnel.
•Status – Status of the GRE tunnel.
Client-to-Site VPN Status
In this mode, the client from Internet connects to the server to access the corporate network/LAN behind the server. For a secure connection, you can implement a client-to-site VPN. You can view all the Client-to-Tunnel connections, add, edit, or delete the connections in the Connection Table.
The Connection Table displays the following:
•Group/Tunnel Name - Name of the VPN tunnel. This is for reference purposes only and does not match the name used at the other end of the tunnel.
•Connections – Status of the connection.
•Phase2 Enc/Auth/Grp – Phase 2 encryption type (NULL/DES/3DES/AES-128/AES-192/AES-256), authentication method (NULL/MD5/SHA1), and DH group number (1/2/5).
•Local Group – IP address and subnet mask of the local group.
•Action –Action status.
OpenVPN Status
OpenVPN is an open software application that implements VPN techniques for creating secure point-to-point or site-to-site connections in routed or bridged configurations and remote access facilities. Here, you can view the status of the OpenVPN.
The Connection Table shows the status of the OpenVPN. You can also add edit or delete connections.
•Session ID – Session identification.
•User – Name of user.
•Client IP (Actual) – Actual client IP address.
•Client IP (VPN) – Client VPN IP address.
•TX Bytes – Number of TX bytes.
•RX Bytes – Number of RX bytes.
RV260x Administration Guide
19
Status and Statistics
•Connect Time – Amount of time connected.
•Action –Action status.
PPTP Tunnel Status
Point-to-Point Tunneling Protocol has the capability to encrypt data with 128-bit. It is used to ensure that messages sent from one VPN node to another are secure.
•Tunnel(s) Used – PPTP Tunnels used for the VPN connection.
•Tunnel(s) Available – Available tunnels for the PPTP connection.
The Connection Table displays the status of the established tunnels. You can also connect or disconnect the connections.
•Session ID – Session ID of the proposed or current connection.
•User Name – Name of the connected user.
•Remote Address – IP address of the remote connection.
•PPTP IP Address – IP address of the PPTP.
•Connect Time – Time of the tunneling time.
•Action – Connect or disconnect the tunnel.
View Logs
The View Logs page displays all of the device’s logs. You can filter these logs based on category, severity, or keyword. You can also refresh, clear, and export these logs to a PC or USB. To view the device’s logs, follow these steps:
Step 1 Click Status and Statistics > View Logs.
Step 2 Under Logs Filtered By, select the appropriate option.
Category |
Click any of the following to view logs: |
•All – Displays all the logs.
•Category – Displays the selected category logs.
|
Severity |
Select one of the options displayed to view the logs based on the severity. |
|
Keyword |
Enter a keyword to display the logs based on the keyword. |
Step 3 |
Click Show Logs. |
|
Note To configure log settings, see Log, on page 34.
Step 4 Click any of the following options:
• Refresh – Click to refresh logs.
RV260x Administration Guide
20
Status and Statistics
•Clear Logs – Click to clear logs.
•Export Logs to PC – Click to export logs to PC.
•Export Logs to USB – Click to export logs on to a USB storage device.
Captive Portal Status
The captive portal feature requires wireless users to accept the terms and conditions prior to joining a public internet access network. Captive portals are typically used by business centers, airports, hotel lobbies, coffee shops, and other venues that offer free Wi-Fi hot spots for Internet users.
ToviewtheCaptivePortalStatus,select StatusandStatistics>CaptivePortalStatus. ThenselecttheSSID from the drop-down list and the Captive Portal User Connected Status is displayed for the selected SSID.
•User Name– Name of the connected user.
•SSID– Name of the network.
•IP Address– IP address served by the service provider.
•MAC Address– Mask served by the service provider.
•Auth– Default gateway served by the service provider.
•Tx Bytes– Number of packets transmitted and measured in bytes.
•Rx Bytes– Number of packets received measured in bytes.
•Time Left– Time duration of connected device.
•Terminate Users– Default gateway for the interface.
You can click Refresh to refresh the data.
RV260x Administration Guide
21
Status and Statistics
Captive Portal Status
RV260x Administration Guide
22