Cisco Small Business
RV315W Broadband Wireless VPN Router
ADMINISTRATION
GUIDE
© 2013 Cisco Systems, Inc. All rights reserved. OL-25648-01
Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries. To view a list of Cisco trademarks,
go to this URL: www.cisco.com/go/trademarks. Third-party trademarks mentioned are the property of their respective owners. The use of the word partner
does not imply a partnership relationship between Cisco and any other company. (1110R)
Federal Communication Commission Interference Statement
This device complies with Part 15 of the FCC Rules. Operation is subject to the
following two conditions: (1) This device may not cause harmful interference, and
(2) this device must accept any interference received, including interference that
may cause undesired operation.
This equipment has been tested and found to comply with the limits for a Class B
digital device, pursuant to Part 15 of the FCC Rules. These limits are designed to
provide reasonable protection against harmful interference in a residential
installation. This equipment generates, uses and can radiate radio frequency
energy and, if not installed and used in accordance with the instructions, may
cause harmful interference to radio communications. However, there is no
guarantee that interference will not occur in a particular installation. If this
equipment does cause harmful interference to radio or television reception, which
can be determined by turning the equipment off and on, the user is encouraged to
try to correct the interference by one of the following measures:
• Reorient or relocate the receiving antenna.
• Increase the separation between the equipment and receiver.
• Connect the equipment into an outlet on a circuit different from that to which
the receiver is connected.
• Consult the dealer or an experienced radio/TV technician for help.
FCC Caution: Any changes or modifications not expressly approved by the party
responsible for compliance could void the user's authority to operate this
equipment.
This transmitter must not be co-located or operating in conjunction with any other
antenna or transmitter.
Radiation Exposure Statement
1. 20 cm minimum when the product is operated alone without co-transmitting
with a plug-in 3G USB dongle device.
2. 33 cm minimum when the product is operated with a plug-in 3G USB device
which has maximum of 7 W ERP output power.
3. For co-transmission scenario which is not covered above, please consult the RF
technician or device supplier.
© 2013 Cisco Systems, Inc. All rights reserved. OL-25648-01
Contents
Federal Communication Commission Interference Statement 3
Radiation Exposure Statement 3
Chapter 1: Getting Started 5
Product Overview 5
Front Panel 6
Back Panel 8
Default Settings 9
Mounting the RV315W 10
Placement Tips 10
Wall-Mounting 10
Connecting the RV315W 11
Getting Started with the Configuration 13
Before You Begin 13
Logging in to the Configuration Utility 13
Using the Help System 14
Performing Basic Configuration Tasks 14
Changing the Default Administrator Password 14
Upgrading Your Firmware After Your First Login 15
Backing Up Your Configuration 15
Chapter 2: Using the Setup Wizard 17
Starting the Setup Wizard 17
Configuring WAN Connection 17
Configuring Default LAN Settings 22
Configuring Wireless Connection 23
Completing the Setup Wizard 28
Chapter 3: Viewing System Status 30
Device Information 30
WAN Connection 31
Cisco RV315W Broadband Wireless VPN Router Administration Guide 1
Contents
3G Wireless Connection 31
LAN Interfaces 33
WLAN Connection 33
DHCP Clients 33
Application Information 34
Processes Information 34
Refresh Rate 35
Chapter 4: Port Management 36
Configuring WAN 36
Viewing WAN Connection Information 36
Configuring WAN Connections 37
Configuring Default Route of the Physical WAN Interface 41
Configuring Multi-WAN 41
Configuring WAN1/LAN0 Interface 43
Configuring LAN 43
Configuring LAN Interface Settings 44
Configuring VLAN Settings 45
Configuring WLAN 46
Configuring Wireless Radio Settings 46
Configuring Wireless Network Settings 47
Configuring 3G Wireless Connection 53
Chapter 5: Networking 56
Configuring DDNS 56
Configuring Port Forwarding 57
Configuring Single Port Forwarding 57
Configuring Port Range Forwarding 58
Configuring Port Triggering 59
Configuring DMZ 60
Configuring Software DMZ 60
Cisco RV315W Broadband Wireless VPN Router Administration Guide 2
Contents
Configuring Hardware DMZ 61
Configuring UPnP 61
Configuring Port Mirroring 62
Configuring Routing 62
Configuring Basic Routing Settings 62
Configuring Routing Mode 62
Configuring Inter-VLAN Routing 63
Configuring Static Routing 63
Configuring Policy-based Routing 64
Configuring Dynamic Routing 65
Viewing the Routing Table 66
Configuring IGMP 67
Chapter 6: VPN 68
Viewing IPsec VPN Status 68
Configuring IPsec VPN Policies 69
Setting Up a Site-to-Site VPN 69
Setting Up a PC-to-Site VPN 73
Chapter 7: Quality of Service (QoS) 76
Configuring Bandwidth Management 76
Configuring Flow Control Policies 77
Configuring Session Limits 79
Chapter 8: Security 80
Configuring the Firewall 80
Configuring DoS Protection 81
Configuring Content Filtering 82
Configuring Access Control 83
Configuring MAC Address Filtering 84
Preventing ARP Attacks 85
Configuring ALG 86
Cisco RV315W Broadband Wireless VPN Router Administration Guide 3
Contents
Chapter 9: System Management 87
Rebooting the RV315W 88
Configuring Password Complexity 88
Configuring User Accounts 89
Viewing User Information 89
Creating a New User 90
Changing User Password 90
Deleting a Local User 91
Restoring Factory Default Settings 91
Managing System Configuration 92
Upgrading the Firmware 93
Using Diagnostic Utilities 94
Ping 94
Traceroute 95
HTTP Get 95
DNS Query 95
Configuring System Time 96
Configuring TR-069 Settings 96
Configuring SNMP 98
Configuring Remote Management 99
Configuring Remote Access Protocols and Ports 99
Configuring Trusted Remote Hosts 100
Configuring SSH 100
Log Management 102
Configuring Log Settings 102
Configuring Log Facilities 103
Viewing Logs 105
Configuring Firewall Logs 105
Appendix A: Where to Go From Here 106
Cisco RV315W Broadband Wireless VPN Router Administration Guide 4
Getting Started
This chapter provides information to familiarize you with the product features,
guide you through the installation process, and get started using web-based
Configuration Utility. Refer to the following sections:
• Product Overview
• Mounting the RV315W
• Connecting the RV315W
• Getting Started with the Configuration
• Performing Basic Configuration Tasks
1
Product Overview
Thank you for choosing the Cisco RV315W Broadband Wireless VPN Router. The
RV315W provides routing, switching, security, wireless, 3G, Virtual Private
Network (VPN), quality of service (QoS), and flow-control capabilities for small
businesses.
Before you use the RV315W, become familiar with the lights on the front panel and
the ports on the rear panel.
Cisco RV315W Broadband Wireless VPN Router Administration Guide 5
Getting Started
Product Overview
1
Front Panel
The lights are located on the front panel of the RV315W.
POWER • Solid green when the RV315W is powered on and is
operating normally.
• Off when the RV315W is powered off or the power has
problems.
SYS • Solid green when the RV315W is connected to the Internet
through your cable or DSL modem.
• Flashes green when the RV315W is attempting to connect
to the Internet, the RV315W cannot connect to the Internet,
or the system is upgrading the firmware.
• Solid red when the system has problems.
• Flashes red when the system is overloaded, such as the
CPU utilization or the memory utilization exceeds the
limitation.
• Off when there is no Internet connection.
WAN0 • Solid green when the RV315W is connected to the Internet
through the WAN0 port, but there is no traffic over this port.
• Flashes green when the RV315W is sending or receiving
data over the WAN0 port.
Cisco RV315W Broadband Wireless VPN Router Administration Guide 6
• Off when the WAN0 port has no connection.
Getting Started
Product Overview
1
WAN1 If the WAN1/LAN0 port on the back panel is set to a secondary
WAN inter face ( WAN1) :
• Solid green when the RV315W is connected to the Internet
through the WAN1 port, but there is no traffic over this port.
• Flashes green when the RV315W is sending or receiving
data over the WAN1 port.
• Off when the WAN1 port has no connection.
LAN0 If the WAN1/LAN0 port on the back panel is set to an additional
LAN interface (LAN0):
• Solid green when the RV315W is connected to a device
through the LAN0 port, but there is no traffic over this port.
• Flashes green when the RV315W is sending or receiving
data over the LAN0 port.
• Off when the LAN0 port has no connection.
LAN1-8 The numbered lights correspond to the LAN ports on the back
panel of the RV315W.
• Solid green when the RV315W is connected to a device
through the corresponding port (LAN1 to 8), but there is no
traffic over that port.
• Flashes green when the RV315W is sending or receiving
data over the corresponding LAN port.
• Off when the corresponding LAN port has no connection.
USB • Solid green when a USB device is detected, but has no read
and write operations.
• Flashes green when a USB device is detected and has read
and write operations.
• Off when the RV315W does not detect a USB device.
3G • Solid green when the RV315W is connected to a 3G
wireless network, but there is no traffic over the 3G USB
port.
Cisco RV315W Broadband Wireless VPN Router Administration Guide 7
• Flashes green when the RV315W is sending or receiving
data over the 3G USB port.
• Off when the RV315W does not connect to a 3G wireless
network.
Getting Started
Product Overview
1
WLAN • Solid green when the wireless module is enabled, but there
is no traffic over the wireless network.
• Flashes green when the RV315W is sending or receiving
data on the wireless module.
• Off when the wireless module is disabled.
VPN • Solid green when there are active VPN tunnels.
• Flashes green once per two seconds when the RV315W is
attempting to establish a VPN tunnel, or the attempt of
establishing a new VPN tunnel fails.
• Off when there is no VPN connection.
NMS • Solid green when the RV315W is connected to an
upper-level Network Management System (NMS) but has no
operations.
Back Panel
• Flashes green when the RV315W is connected to an
upper-level NMS and has operations.
• Off when the RV315W does not connect to an upper-level
NMS.
WARNING 33 cm minimum when the product is operated with a plug-in 3G USB device which
has maximum of 7 W ERP output power.
Cisco RV315W Broadband Wireless VPN Router Administration Guide 8
Getting Started
Product Overview
1
3G USB Port The 3G USB port connects your RV315W to a 3G wireless
network through a 3G USB device. To obtain the list of 3G
USB dongle models supported by the RV315W, go to
www.cisco.com/go/rv315w.
USB Port The USB port connects to a USB storage device to save
syslog messages.
WAN0 Por t The WAN0 (Internet) port is connected to your Internet
device, such as a cable or DSL modem.
WAN1/LAN0 Port The WAN1/LAN0 port can be set to a secondary WAN
interface (WAN1) or an additional LAN interface (LAN0).
LAN1-8 Ports These ports provide a LAN connection to network devices,
such as PCs, print servers, or switches.
RESET The RESET button has two functions:
• Reboot: Press the RESET button for at least 1, but no
more than 5 seconds with a paper clip or a pencil tip
to reboot the unit.
• Restore to Factory Defaults: Press and hold the
RESET button for more than 5 seconds to reboot the
unit and restore to factory defaults. Changes that you
have previously made to the RV315W settings are
lost.
POWER (12VDC) The POWER port is where you connect the supplied power
adapter (12 V/3 A).
Power Switch Powers the unit on or off.
Default Settings
These are the default settings used when configuring your RV315W for the first
time.
Parameter Default Value
Username cisco
Password cisco
LAN IP 192.168.1.1
DHCP Range 192.168.1.100 to 192.168.1.200
Cisco RV315W Broadband Wireless VPN Router Administration Guide 9
Getting Started
1
2
4
3
Mounting the RV315W
NOTE Press and hold the RESET button for more than 5 seconds with a paper clip or a
pencil tip to reboot the unit and restore the factory defaults. Changes that you have
previously made to the RV315W settings are lost.
Mounting the RV315W
You can place your RV315W on a desktop or mount it on a wall.
Placement Tips
• Ambient Temperature—To prevent the RV315W from overheating, do not
operate it in an area that exceeds an ambient temperature of 104°F (40°C).
1
• Air Flow—Be sure that there is adequate air flow around the RV315W.
• Mechanical Loading—Be sure that the RV315W is level and stable to avoid
any hazardous conditions.
Place the RV315W horizontally on a flat surface so that it sits on its four rubber
feet.
Wall-Mounting
The RV315W can be wall-mounted. The wall-mounting hardware is
user-supplied. The ports on the back panel must face either upward or downward
when mounting the RV315W to the wall.
The recommended dimensions for the mount kit are as follows:
1 8 mm/0.31 in 2 25 mm/0.98 in 3 6.5 mm/0.26 in 4 17.9 mm/0.7 in
Cisco RV315W Broadband Wireless VPN Router Administration Guide 10
Getting Started
Connecting the RV315W
WARNING Insecure mounting might damage the device or cause injury. Cisco is not
STEP 1 Determine where you want to mount the RV315W. Verify that the surface is
STEP 2 Drill two pilot holes into the surface 5.9 inches (150 mm) apart.
STEP 3 Insert a screw into each hole, leaving a gap between the surface and the base of
STEP 4 Place the RV315W wall-mount slots over the screws and slide the RV315W down
1
responsible for damages incurred by insecure wall-mounting.
To mount the RV315W to the wall:
smooth, flat, dry, and sturdy.
the screw head of at least 0.1 inches (3 mm).
until the screws fit snugly into the wall-mount slots.
Connecting the RV315W
NOTE The wireless module of the RV315W is enabled by default. You can connect one
PC with an Ethernet cable or through a wireless connection to perform the initial
configuration. Use the default wireless network name (SSID) and pre-shared key
that are provided on the product label at the bottom of the RV315W to connect the
PC to your wireless network for the first time.
STEP 1 Power off all equipment, including the cable or DSL modem, the PC that you will
use to connect to the RV315W, and the RV315W.
STEP 2 Connect one end of an Ethernet cable to your cable or DSL modem. Connect the
other end to the WAN0 port on the back panel of the RV315W.
STEP 3 Connect one end of a different Ethernet cable to one of the LAN ports on the back
panel. Connect the other end to an Ethernet port on the PC that you will use to run
web-based Configuration Utility.
NOTE Skip this step if you want to connect the PC to the RV315W through a
wireless connection.
Cisco RV315W Broadband Wireless VPN Router Administration Guide 11
Getting Started
Connecting the RV315W
STEP 4 Connect the supplied power adapter to the POWER port on the back panel. Plug
STEP 5 Power on all connected devices including the cable or DSL modem and the PC
STEP 6 Power on the RV315W.
STEP 7 To connect the PC to your wireless network for the first time, you can configure the
1
the other end of the power adapter into an electrical outlet. Make sure that the
power switch is turned off.
NOTE Use only the power adapter that is supplied with the unit. Using a different
power adapter could damage the unit.
and wait until the connections are active.
wireless connection using the default SSID name and pre-shared key that are
provided on the product label.
A sample configuration is illustrated here.
Wireless
Devices
Internet
Access
Devices
Network
Devices
Power
Supply
Cisco RV315W Broadband Wireless VPN Router Administration Guide 12
Getting Started
Getting Started with the Configuration
Getting Started with the Configuration
You can use web-based Configuration Utility of the RV315W to view the system
information, configure key parameters, upgrade system firmware, reboot the unit,
or restore the unit to its factory default settings.
Before You Begin
Before you begin to use web-based Configuration Utility, make sure that you have
a PC with Microsoft Internet Explorer 6.0 (or later) or Mozilla Firefox 3.0 (or later).
NOTE The minimum recommended display resolution for the PC running the web browser
used to access the utility is 1024 x 768.
1
Logging in to the Configuration Utility
To log in to the utility:
STEP 1 Connect a PC to an available LAN port on the back panel. After you power on the
PC, your PC becomes a DHCP client of the RV315W and receives an IP address in
the 192.168.1.xxx range.
STEP 2 Start a web browser. In the address bar, enter the default IP address of the
RV315W: 192.168.1.1.
STEP 3 When the login page appears, choose the language that you prefer to use in the
utility and enter the username and password.
The default username is cisco. The default password is cisco. Both usernames
and passwords are case sensitive.
STEP 4 Click Login. The Change Password page opens.
For security purposes, change the password from its default settings at your first
login to prevent unauthorized access.
STEP 5 Enter the old password.
STEP 6 Enter the new password. Passwords should contain at least three of these
character classes: uppercase letters, lowercase letters, digits, and special
characters. Passwords must be at least eight characters in length.
NOTE Checking Disable Password Strength Enforcement will not enforce the
minimum password complexity requirements for password changes.
Cisco RV315W Broadband Wireless VPN Router Administration Guide 13
Getting Started
Performing Basic Configuration Tasks
STEP 7 Enter the new password again to confirm and click Save. You are required to log in
to the utility again with the new password.
Using the Help System
The utility provides a context-sensitive help file for all configuration tasks. To view
the help page, click the Help link in the top right corner of the screen. A new
window opens with information about the page that you are currently viewing.
Performing Basic Configuration Tasks
We recommend that you complete the tasks in this section before you configure
the RV315W.
1
Changing the Default Administrator Password
The default administrator account (cisco) has full privilege to set the configuration
and read the system status. For security purposes, we recommend that you
change the default administrator password after your first login.
To change the default administrative password:
STEP 1 Click System Management > User Management. The User Management page
opens.
STEP 2 Check the default administrator account (cisco) and click Change Password.
STEP 3 Enter the following information:
• Old Password: Enter the current administrator password.
• New Password: Enter a new administrator password. Passwords are case
sensitive. By default, passwords should contain at least three of these
character classes: uppercase letters, lowercase letters, digits, and special
characters. Passwords must be at least eight characters in length.
• Password Confirm: Enter the password again for confirmation.
STEP 4 Click Save to save your settings.
Cisco RV315W Broadband Wireless VPN Router Administration Guide 14
Getting Started
Performing Basic Configuration Tasks
Upgrading Your Firmware After Your First Login
After you log in to web-based Configuration Utility for the first time, we
recommend that you upgrade your firmware to the latest version before you do
any other tasks.
NOTE This feature requires that you have an active WAN connection to access the
Internet.
To upgrade the firmware:
STEP 1 Click System Management > Firmware Upgrade. The Firmware Upgrade page
opens.
STEP 2 In the Download the latest firmware area, click Download to download the latest
version of the firmware from the specified website to your local PC. Make sure that
you have an active WAN connection.
1
STEP 3 In the Locate & select the upgrade file area, click Browse to locate and select the
downloaded firmware image from your local PC.
STEP 4 Click Upgrade.
After the new firmware image is validated, the system first overwrites the
secondary firmware with the new version in the flash, and then reboots with the
new firmware image. The new firmware image becomes the primary firmware
image and the previous primary firmware image becomes the secondary
firmware image.
Backing Up Your Configuration
At any point during the configuration process, you can back up your configuration.
Later, if you make changes that you want to abandon, you can easily restore the
saved configuration.
To back up your configuration:
STEP 1 Click System Management > Configuration Management. The Configuration
Management page opens.
STEP 2 Click Backup Configuration to back up the settings currently used on your
RV315W.
Cisco RV315W Broadband Wireless VPN Router Administration Guide 15
Getting Started
Performing Basic Configuration Tasks
STEP 3 Select where to locate the configuration file, and then click Save.
1
Cisco RV315W Broadband Wireless VPN Router Administration Guide 16
Using the Setup Wizard
This chapter describes how to use the Setup Wizard to quickly configure the initial
settings of your RV315W. Refer to the following sections:
• Starting the Setup Wizard
• Configuring WAN Connection
• Configuring Default LAN Settings
• Configuring Wireless Connection
• Completing the Setup Wizard
2
Starting the Setup Wizard
STEP 1 Click Setup Wizard in the left-hand navigation pane. The Setup Wizard launches.
STEP 2 If you are an expert, you can exit the Setup Wizard and click the menu in the left-
hand navigation pane to configure the specific feature directly. If you want to
continue, click Next to proceed to the WAN Configuration page. Or you can click
Exit to exit the Setup Wizard.
Configuring WAN Connection
From the WAN Configuration page you can configure the WAN connection by
using information provided by your Internet Service Provider (ISP).
Depending on the requirements of your ISP, choose the Internet connection type
and configure the corresponding fields. The RV315W supports four types of
network addressing modes: DHCP, Static IP, PPPoE, and L2TP.
Cisco RV315W Broadband Wireless VPN Router Administration Guide 17
Using the Setup Wizard
Configuring WAN Connection
STEP 3 Choose WAN0 or WAN1 (only available when the WAN1/LAN0 port on the back
STEP 4 Choose a proper network addressing method from the Internet Connection Type
2
panel is set to a secondary WAN port) from the WAN Port drop-down menu to
connect to the Internet.
drop-down menu and specify the corresponding settings.
The following table provides the configuration instruction for each Internet
connection type. Confirm that you have proper network information from your ISP
or a peer router to configure the RV315W to access the Internet.
Connection
Type
DHCP Connection type often used with cable modems. Choose this
Configuration
option if your ISP dynamically assigns an IP address on
connection, and enter the following information:
• Enable DNS Server: Click Enable to enable the DNS
server, or click Disable to disable this feature.
• Primary DNS Server: Enter the IP address of the
primary DNS server.
• Secondary DNS Server: (Optional) Enter the IP
address of the secondary DNS server.
Cisco RV315W Broadband Wireless VPN Router Administration Guide 18
Using the Setup Wizard
Configuring WAN Connection
2
Connection
Type
Static IP Choose this option if your ISP provides you with a static
Configuration
(permanent) IP address and does not assign it dynamically,
and use the corresponding information from your ISP to
complete the following fields:
• IP Address: Enter the IP address of the WAN port that
can be accessible from the Internet.
• Subnet Mask: Enter the IP address of the subnet mask.
• Default Gateway: Enter the IP address of default
gateway.
• Primary DNS Server: DNS servers map Internet
domain names to IP addresses. Enter the IP address of
the primary DNS server. You can get the DNS server
address from your ISP.
• Secondary DNS Server: (Optional) Enter the IP
address of the secondary DNS server.
Cisco RV315W Broadband Wireless VPN Router Administration Guide 19
Using the Setup Wizard
Configuring WAN Connection
2
Connection
Type
PPPoE Choose this option if your ISP provides the username and
Configuration
password to connect to the Internet, and use the
corresponding information from your ISP to complete the
following fields:
• Username: Enter the username that is required to log
into the ISP.
• Password: Enter the password that is required to log
into the ISP.
• Service Name: Enter the name for the PPPoE service.
• Enable DNS Server: Click Enable to enable the DNS
server, or click Disable to disable this feature.
• Primary DNS Server: Enter the IP address of the
primary DNS server.
• Secondary DNS Server: (Optional) Enter the IP
address of the secondary DNS server.
• Keep Alive: Choose one of the following options:
- Connect on Demand: Let the RV315W disconnect
from the Internet after a specified period of
inactivity (Idle Time). This option is recommended if
your ISP fees are based on the time that you spend
online. If you choose this option, enter the idle time
in the Maximum Idle Time field. The default value is
300 seconds.
- Keep Alive: Keep the connection always on,
regardless of the level of activity. This option is
recommended if you pay a flat fee for your Internet
service. If you choose this option, enter the interval
to automatically reestablish the WAN connection
after the connection is down. The default value is 30
seconds.
Cisco RV315W Broadband Wireless VPN Router Administration Guide 20
Using the Setup Wizard
Configuring WAN Connection
2
Connection
Type
L2TP Choose this option if you want to use Layer 2 Tunneling
Configuration
Protocol (L2TP) to connect to the Internet, and use the
necessary information from your ISP to complete the L2TP
configuration:
• Auto Get IP: Click Enable to automatically obtain an IP
address from your service provider, or click Disable to
disable this feature.
• L2TP Server IP Address: Enter the IP address of the
L2TP server.
• Username: Enter the username that is required to log in
to the L2TP server.
• Password: Enter the password that is required to log in
to the L2TP server.
• Enable DNS Server: Click Enable to enable the DNS
server, or click Disable to disable this feature.
• Primary DNS Server: Enter the IP address of the
primary DNS server.
• Secondary DNS Server: (Optional) Enter the IP
address of the secondary DNS server.
• Keep Alive: Choose one of the following options:
- Connect on Demand: Let the RV315W disconnect
from the Internet after a specified period of
inactivity (Idle Time). This option is recommended if
your ISP fees are based on the time that you spend
online. If you choose this option, enter the idle time
in the Maximum Idle Time field. The default value is
300 seconds.
- Keep Alive: Keep the connection always on,
regardless of the level of activity. This option is
recommended if you pay a flat fee for your Internet
service. If you choose this option, enter the interval
to automatically reestablish the WAN connection
after the connection is down. The default value is 30
seconds.
Cisco RV315W Broadband Wireless VPN Router Administration Guide 21
Using the Setup Wizard
Configuring Default LAN Settings
STEP 5 In the Enable VLAN area, click Enable when the ISP uses the VLAN ID to add the
tag to the users, and enter the following information:
• VLAN ID: Enter the tag of the VLAN ID.
• 802.1p Priority: Enter the value of the 802.1p priority.
STEP 6 In the MTU area, choose Auto to use the default MTU size or choose Manual if you
want to specify another size. If you choose Manual, enter the custom MTU size in
bytes.
STEP 7 If you want to continue, click Next to proceed to the LAN Configuration page. If you
want to return to the previous page, click Back. If you want to exit the Setup
Wizard, click Exit.
Configuring Default LAN Settings
2
From the LAN Configuration page you can configure the default LAN settings of
the RV315W.
STEP 8 Enter the following information:
• VLAN: Select a VLAN from the drop-down menu. See Configuring VLAN
Settings for more information on configuring the VLANs.
• IP Address: Enter the subnet IP address of the default LAN.
• Subnet Mask: Enter the subnet mask of the default LAN.
• DHCP Server: Click Enable to allow the RV315W to act as a DHCP server
and assign IP addresses to all devices that are connected to the LANs. Any
new DHCP client joining the LANs is assigned an IP address of the DHCP
pool. Click Disable to disable the DHCP server on the RV315W.
• Start IP: Enter the starting IP address of the DHCP pool if you enable the
DHCP server.
• End IP: Enter the ending IP address of the DHCP pool if you enable the DHCP
server.
• Lease Time: Enter the maximum connection time in minutes that a dynamic
IP address is “leased” to a network user. When the time elapses, the dynamic
IP address of the user is automatically renewed. The default is 0, indicates
that the lease time is 1 day.
Cisco RV315W Broadband Wireless VPN Router Administration Guide 22
Using the Setup Wizard
Configuring Wireless Connection
STEP 9 If you want to continue, click Next to proceed to the Wireless Configuration page.
If you want to return to the previous page, click Back. If you want to exit the Setup
Wizard, click Exit.
Configuring Wireless Connection
From the Wireless Configuration page you can configure the wireless network of
the RV315W and the security settings for the selected SSID.
STEP 10 Enter the following information:
• Current SSID: Select the SSID as the default wireless access point of the
RV315W.
• SSID Name: Displays the name of the selected SSID. You can edit the SSID
name. Enter a unique name for the SSID for identification.
2
• Enable Current SSID: Click Enable to enable this SSID, or click Disable to
disable the SSID.
• Security Mode: Choose the security mode and configure the
corresponding security settings. For security purposes, we strongly
recommend that you use WPA2 for wireless security.
The following table lists all available security modes:
Security Mode Configuration
Disable Any wireless device that is in range can connect to the
SSID.
Cisco RV315W Broadband Wireless VPN Router Administration Guide 23
Using the Setup Wizard
Configuring Wireless Connection
Security Mode Configuration
WEP WEP encryption is an older encryption method that is not
2
considered to be secure and can easily be broken.
Choose this option only if you need to allow access to
devices that do not support WPA or WPA2, and enter the
following information:
• Authentication Type: Choose either Open System
or Shared key. The default is Open System.
• Key Length: Choose either 64 bits or 128 bits. The
default is 64 bits. The larger size keys provide
stronger encryption, which makes the key more
difficult to crack.
• Passphrase: If you want to generate WEP keys by
using a Passphrase, enter any alphanumeric phrase
(between 4 to 63 characters) and then click
Generate to generate 4 unique WEP keys. Select
one key to use as the key that devices must have to
use the wireless network.
• Key Index: Choose a key index as the default
transmit key. Key indexes 1 through 4 are available.
• Key 1-4: If a WEP Passphrase is not specified, a key
can be entered directly into one of the Key boxes.
The length of the key should be 5 ASCII characters
(or 10 hex characters) for 64-bit encryption and 13
ASCII characters (or 26 hex characters) for 128-bit
encryption.
Cisco RV315W Broadband Wireless VPN Router Administration Guide 24
Using the Setup Wizard
Configuring Wireless Connection
Security Mode Configuration
2
WPA-Personal
Wi-Fi Protected Access (WPA) provides better security
than WEP because it uses dynamic key encryption. This
standard was implemented as an intermediate measure to
replace WEP, pending final completion of the 802.11i standard for WPA2.
WPA-Personal supports Temporal Key Integrity Protocol
(TKIP) or Advanced Encryption System (AES) encryption
mechanisms for data encryption (default is TKIP+AES).
TKIP uses dynamic keys and incorporates Message
Integrity Code (MIC) to provide protection against hackers.
AES uses symmetric 128-bit block data encryption.
If you choose this option, enter the following information:
• WPA Pre-Shared Key: The Pre-shared Key (PSK) is
the shared secret key for WPA. Enter a string of at
least 8 characters to a maximum of 63 characters.
• Show Password: Check to show the pre-shared
key in plaintext.
• WPA Key Renewal Timeout: Enter a value to set
the interval at which the key is refreshed for clients
associated to this SSID. A value of zero (0) indicates
that the key is not refreshed. The default value is
3600 seconds.
Cisco RV315W Broadband Wireless VPN Router Administration Guide 25
• WPA Encryption: Choose either AES or TKIP+AES
as the encryption algorithm for data encryption. The
default is TKIP+AES.
Using the Setup Wizard
Configuring Wireless Connection
Security Mode Configuration
WPA2-Personal WPA2 provides the best security for wireless
2
transmissions. This method implements the security
standards specified in the final version of 802.11i. WPA2Personal always uses AES encryption mechanism for data
encryption.
If you choose this option, enter the following information:
• WPA Pre-Shared Key: The Pre-shared Key (PSK) is
the shared secret key for WPA. Enter a string of at
least 8 characters to a maximum of 63 characters.
• Show Password: Check to show the pre-shared
key in plaintext.
• WPA Key Renewal Timeout: Enter a value to set
the interval at which the key is refreshed for clients
associated to this SSID. A value of zero (0) indicates
that the key is not refreshed. The default value is
3600 seconds.
• WPA Encryption: Choose either AES or TKIP+AES
as the encryption algorithm for data encryption. The
default is AES.
Cisco RV315W Broadband Wireless VPN Router Administration Guide 26
Using the Setup Wizard
Configuring Wireless Connection
Security Mode Configuration
WPA-Enterprise WPA-Enterprise uses WPA with RADIUS authentication.
2
This mode supports TKIP and AES encryption
mechanisms (default is TKIP+AES) and requires the use of
a RADIUS server to authenticate users.
If you choose this option, enter the following information:
• WPA Key Renewal Timeout: Enter a value to set
the interval at which the key is refreshed for clients
associated to this SSID. A value of zero (0) indicates
that the key is not refreshed. The default value is
3600 seconds.
• WPA Encryption: Choose AES or TKIP+AES as the
encryption algorithm for data encryption. The
default is TKIP+AES.
• RADIUS Server IP Address: Enter the IP address
of the RADIUS server.
• RADIUS Server Port: Enter the port number of the
primary RADIUS server. The default value is 1812.
• RADIUS Server Key: Enter the key for
authentication used by the RADIUS server and the
RV315W.
• Show Password: Check to show the key for
authentication in plaintext.
Cisco RV315W Broadband Wireless VPN Router Administration Guide 27
Loading...