Linksys RV082 User Manual 2
A Division of Cisco Systems, Inc.
®
Model No.
WIRED
RV082
10/100 8-Port
VPN Router
User Guide
10/100 8-Port VPN Router
Copyright and Trademarks
Specifications are subject to change without notice. Linksys is a registered trademark or trademark of Cisco
Systems, Inc. and/or its affiliates in the U.S. and certain other countries. Copyright © 2004 Cisco Systems, Inc. All
rights reserved. Other brands and product names are trademarks or registered trademarks of their respective
holders.
WARNING: This product contains chemicals, including lead, known
to the State of California to cause cancer, and birth defects or other
reproductive harm. Wash hands after handling.
How to Use this Guide
This User Guide has been designed to make understanding networking with the Router easier than ever. Look for
the following items when reading this Guide:
This checkmark means there is a Note of interest and
is something you should pay special attention to while
using the Router.
This exclamation point means there is a Caution or
Warning and is something that could damage your
property or the Router.
This question mark provides you with a reminder about
something you might need to do while using the Router.
In addition to these symbols, there are definitions for technical terms that are presented like this:
word: definition.
Also, each figure (diagram, screenshot, or other image) is provided with a figure number and description, like
this:
Figure 0-1: Sample Figure Description
Figure numbers and descriptions can also be found in the “List of Figures” section in the “Table of Contents”.
RV082-UG-41111C KL
10/100 8-Port VPN Router
Table of Contents
Chapter 1: Introduction 1
Welcome 1
What’s in this Guide? 2
Chapter 2: Networking Basics 4
An Introduction to LANs 4
The Use of IP Addresses 4
Why do I need a VPN? 5
What is a VPN? 6
Chapter 3: Getting to Know the Router 8
The Front Panel 8
The Back Panel 9
Chapter 4: Connecting the Router 10
Overview 10
Connection Instructions 11
Chapter 5: Setting Up and Configuring the Router 12
Overview 12
How to Access the Web-based Utility 15
System Summary Tab 15
Setup Tab - Network 18
Setup Tab - Time 21
Setup Tab - DMZ Host 22
Setup Tab - Forwarding 22
Setup Tab - UPnP Page 24
Setup Tab - One-to-One NAT 24
Setup Tab - MAC Clone 25
Setup Tab - DDNS 25
Setup Tab - Advanced Routing 26
DHCP Tab - Setup 28
DHCP Tab - Status 29
System Management Tab - Dual-WAN 29
System Management Tab - SNMP 31
System Management Tab - Diagnostic 32
10/100 8-Port VPN Router
System Management Tab - Factory Default 33
System Management Tab - Firmware Upgrade 33
System Management Tab - Restart 34
System Management Tab - Setting Backup 34
Port Management Tab - Port Setup 34
Port Management Tab - Port Status 35
Firewall Tab - General 36
Firewall Tab - Access Rules 37
Firewall Tab - Content Filter 39
VPN Tab - Summary 40
VPN Tab - Gateway to Gateway 42
VPN Tab - Client to Gateway 47
VPN Tab - VPN Client Access 54
VPN Tab - VPN Pass Through 55
VPN Tab - PPTP Server 55
Log Tab - System Log 56
Log Tab - System Statistics 57
Wizard Tab 58
Support Tab 63
Logout Tab 63
Appendix A: Troubleshooting 64
Common Problems and Solutions 64
Frequently Asked Questions 74
Appendix B: Installing the Linksys VPN Client 78
Appendix C: Finding the MAC Address and IP Address for Your Ethernet Adapter 80
Windows 98 or Me Instructions 80
Windows 2000 or XP Instructions 80
For the Router’s Web-based Utility 81
Appendix D: Physical Setup of the Router 82
Setting up the Router 82
Appendix E: Battery Replacement 86
Replacing a Lithium Battery 86
Appendix F: Upgrading Firmware 87
Appendix G: Windows Help 88
10/100 8-Port VPN Router
Appendix H: Glossary 89
Appendix I: Specifications 93
Appendix J: Warranty Information 94
Appendix K: Regulatory Information 95
Appendix L: Contact Information 96
10/100 8-Port VPN Router
List of Figures
Figure 2-1: VPN Router-to-VPN Router VPN 7
Figure 2-2: Computer-to-VPN Router VPN 7
Figure 3-1: Front Panel 8
Figure 3-2: Back Panel 9
Figure 4-1: Example of a Typical Network 10
Figure 4-2: Connect a PC 11
Figure 4-3: Connect the Internet and DMZ/Internet 11
Figure 4-4: Connect the Power 11
Figure 5-1: Router’s IP Address 15
Figure 5-2: Login Screen 15
Figure 5-3: System Summary 15
Figure 5-4: Site Map 16
Figure 5-5: Setup Tab - Network 18
Figure 5-6: WAN Connection Type - Obtain an IP Automatically 18
Figure 5-7: WAN Connection Type - Static IP 19
Figure 5-8: WAN Connection Type - PPPoE 19
Figure 5-9: WAN Connection Type - PPTP 19
Figure 5-10: WAN Connection Type - Transparent Bridge 20
Figure 5-11: WAN Connection Type - Heart Beat Signal 20
Figure 5-12: Setup Tab - Password 21
Figure 5-13: Setup Tab - Time 21
Figure 5-14: Setup Tab - DMZ Host 22
Figure 5-15: Setup Tab - Forwarding 22
Figure 5-16: Port Range Forwarding - Service Management 23
Figure 5-17: Setup Tab - UPnP 24
Figure 5-18: Setup Tab - One-to-One NAT 24
Figure 5-19: Setup Tab - MAC Clone 25
Figure 5-20: Setup Tab - DDNS 25
10/100 8-Port VPN Router
Figure 5-21: Setup Tab - Advanced Routing 26
Figure 5-22: Setup Tab - Routing Table Entry List 27
Figure 5-23: DHCP Setup 28
Figure 5-24: DHCP Status 29
Figure 5-25: System Management Tab - Dual-WAN 29
Figure 5-26: Protocol Binding - Service Management 30
Figure 5-27: System Management Tab - SNMP 31
Figure 5-28: System Management Tab - DNS Name Lookup 32
Figure 5-29: System Management Tab - Ping 32
Figure 5-30: System Management Tab - Factory Default 33
Figure 5-31: Are You Sure 33
Figure 5-32: System Management Tab - Firmware Upgrade 33
Figure 5-33: System Management Tab - Restart 34
Figure 5-34: System Management Tab - Setting Backup 34
Figure 5-35: Port Management Tab - Port Setup 34
Figure 5-36: Port Management Tab - Port Status 35
Figure 5-37: Firewall Tab - General 36
Figure 5-38: Firewall Tab - Access Rules 37
Figure 5-39: Firewall Tab - Add a New Access Rule 38
Figure 5-40: Settings are Successful 38
Figure 5-41: Firewall Tab - Content Filter 39
Figure 5-42: VPN Tab - Summary 40
Figure 5-43: VPN Tab - Summary Detail 40
Figure 5-44: VPN Tab - Mode Choose 41
Figure 5-45: VPN tab - Gateway to Gateway 42
Figure 5-46: VPN tab - Gateway to Gateway Local Group Setup 42
Figure 5-47: VPN tab - Gateway to Gateway Remote Group Setup 43
Figure 5-48: VPN tab - Gateway to Gateway IPSec Setup 44
Figure 5-49: VPN tab - Client to Gateway 48
Figure 5-50: VPN tab - Client to Gateway Local Group Setup 48
10/100 8-Port VPN Router
Figure 5-51: VPN tab - Client to Gateway Remote Group Setup 49
Figure 5-52: VPN tab - Client to Gateway IPSec Setup 51
Figure 5-53: VPN tab - Client to Gateway Advanced 53
Figure 5-54: VPN tab - VPN Client Access 54
Figure 5-55: VPN tab - VPN Pass Through 55
Figure 5-56: VPN tab - PPTP Server 55
Figure 5-57: Log tab - System Log 56
Figure 5-58: Log tab - View Log 57
Figure 5-59: Log tab - System Statistics 57
Figure 5-60: Wizard tab 58
Figure 5-61: Basic Setup Wizard - Dual WAN or DMZ 58
Figure 5-62: Basic Setup Wizard - Host and Domain Name 59
Figure 5-63: Basic Setup Wizard - Selecting WAN Connection Types 59
Figure 5-64: Basic Setup Wizard - Save Settings 59
Figure 5-65: Access Rule Wizard - What is Access Rules 60
Figure 5-66: Access Rule Wizard - Select the Action 60
Figure 5-67: Access Rule Wizard - Select the Service 61
Figure 5-68: Access Rule Wizard - Select the Source 61
Figure 5-69: Access Rule Wizard - Select the Destination 62
Figure 5-70: Access Rule Wizard - When it Works 62
Figure 5-71: Support tab 63
Figure 5-72: Access Rule Wizard - When it Works 63
Figure 5-73: Save Settings 63
Figure 5-74: Settings are Successful 63
Figure 5-75: Support 63
Figure B-1: Linksys VPN License Agreement 78
Figure B-2: Linksys VPN Installation Complete 78
Figure B-3: Linksys QuickVPN 79
Figure C-1: IP Configuration Screen 80
Figure C-2: MAC Address/Adapter Address 80
10/100 8-Port VPN Router
Figure C-3: MAC Address/Physical Address 81
Figure C-4: MAC Address Clone 81
Figure D-1: Mounting Brackets 82
Figure D-2: Attaching the Brackets to the Router and Rack-Mounting the Router 83
Figure D-3: Wall-Mounting the Router 84
Figure D-4: Wall-Mounting Hardware 85
Figure F-1: Upgrade Firmware 87
10/100 8-Port VPN Router
Chapter 1: Introduction
Welcome
Thank you for choosing the 10/100 8-Port VPN Router. The Linksys 10/100 8-Port VPN Router is an advanced
Internet-sharing network solution for your small business needs. Like any router, it lets multiple computers in
your office share an Internet connection. But the unique dual Internet ports on the 10/100 8-Port VPN Router let
you connect a second Internet line as a backup to insure that you're never disconnected. Or, use both Internet
ports at the same time, and let the router balance your office's requirements between them for maximum
bandwidth efficiency.
The 10/100 8-Port VPN Router also features a built-in 8-port full-duplex 10/100 Ethernet switch to connect eight
PCs directly, or you can connect more hubs and switches to create as big a network as you need.
The Virtual Private Network (VPN) capability creates encrypted “tunnels” through the Internet, allowing up to 50
remote office or traveling users to securely connect into your office network from off-site. Users connecting
through a VPN tunnel are attached to your company's network — with secure access to files, e-mail, and your
intranet — just as if they were in the building. You can also use the VPN capability to allow users on your small
office network to securely connect out to a corporate network.
The 10/100 8-Port VPN Router can serve as a DHCP Server, and has a powerful SPI firewall to protect your PCs
against intruders and most known Internet attacks. It can be configured to filter internal users' access to the
Internet, and has IP address filtering so you can specify exactly who has access to your network. Configuration is
a snap with the web browser-based configuration utility.
As the heart of your small office network, the connection-redundant Linksys 10/100 8-Port VPN Router gives you
the connection reliability your business needs.
Bandwidth: the transmission capacity of
a given device or network
network: a series of computers or devices
connected for the purpose of data sharing,
storage, and/or transmission between users
Full-duplex: the ability of a networking device to
receive and transmit data simultaneously
LAN (Local Area Network): the computers
and networking products that make up the
network in your home or office.
Ethernet: a network protocol that specifies how
data is placed on and retrieved from a common
transmission medium.
firewall: security measures that protect the
resources of a local network from intruders
Browser: an application program that
provides a way to look at and interact with all
the information on the World Wide Web.
IP: a protocol used to send data over a network
IP Address: the address used to identify a
computer or device on a network
Chapter 1: Introduction
Welcome
1
10/100 8-Port VPN Router
What’s in this Guide?
This user guide covers the steps for setting up and using the 10/100 8-Port VPN Router.
• Chapter 1: Introduction
This chapter describes the 10/100 8-Port VPN Router and this User Guide.
• Chapter 2: Networking Basics
This chapter describes the basics of networking.
• Chapter 3: Getting to Know the 10/100 8-Port VPN Router
This chapter describes the physical features of the Router.
• Chapter 4: Connecting the 10/100 8-Port VPN Router
This chapter instructs you on how to connect the Router to your network.
• Chapter 5: Set Up and Configure the Router
This chapter explains how to use the Web-Based Utility to set up the Router and configure its settings.
• Appendix A: Troubleshooting
This appendix describes some problems and solutions, as well as frequently asked questions, regarding
installation and use of the 10/100 8-Port VPN Router.
• Appendix B: Installing the Linksys VPN Client
This appendix instructs you on how to install the Linksys QuickVPN Client for remote users.
Adapter: a device that adds network functionality to your PC.
• Appendix C: Finding the MAC Address and IP Address for your Ethernet Adapter.
This appendix describes how to find the MAC address for your computer’s Ethernet adapter so you can use
the Router’s MAC address cloning feature.
• Appendix D: Physical Setup of the Router
This appendix describes the physical setup of the Router, including the installation of the mounting brackets.
• Appendix E: Battery Replacement
This appendix instructs you how to replace the Router’s battery.
• Appendix F: Upgrading Firmware
This appendix instructs you on how to upgrade the Router’s firmware if you should need to do so.
• Appendix G: Windows Help
This appendix describes how you can use Windows Help for instructions about networking, such as installing
the TCP/IP protocol.
Chapter 1: Introduction
What’s in this Guide?
mac address: the unique address that a
manufacturer assigns to each networking
2
10/100 8-Port VPN Router
• Appendix H: Glossary
This appendix gives a brief glossary of terms frequently used in networking.
• Appendix I: Specifications
This appendix provides the Router’s technical specifications.
• Appendix J: Warranty Information
This appendix supplies the Router’s warranty information.
• Appendix K: Regulatory Information
This appendix supplies the Router’s regulatory information.
• Appendix L: Contact Information
This appendix provides contact information for a variety of Linksys resources, including Technical Support.
Chapter 1: Introduction
What’s in this Guide?
3
10/100 8-Port VPN Router
Chapter 2: Networking Basics
An Introduction to LANs
A Router is a network device that connects two networks together.
The Router connects your local area network (LAN), or the group of PCs in your home or office, to the Internet. The
Router processes and regulates the data that travels between these two networks.
The Router’s Network Address Translation (NAT) technology protects your network of PCs so users on the Internet
cannot “see” your PCs. This is how your LAN remains private. The Router protects your network by inspecting the
first packet coming in through the Internet port before delivery to the final destination on one of the Ethernet
ports. The Router inspects Internet port services like the web server, ftp server, or other Internet applications,
and, if allowed, it will forward the packet to the appropriate PC on the LAN side.
The Use of IP Addresses
IP stands for Internet Protocol. Every device in an IP-based network, including PCs, print servers, and routers,
requires an IP address to identify its location, or address, on the network. This applies to both the Internet and
LAN connections.
NAT (Network Address Translation): NAT
technology translates IP addresses of a local area
network to a different IP address for the Internet.
FTP: a standard protocol for sending files between
computers over a TCP/IP network and the Internet
packet: a unit of data sent over a network
There are two ways of assigning IP addresses to your network devices.
A static IP address is a fixed IP address that you assign manually to a PC or other device on the network. Since a
static IP address remains valid until you disable it, static IP addressing ensures that the device assigned it will
always have that same IP address until you change it. Static IP addresses are commonly used with network
devices such as server PCs or print servers.
If you use the Router to share your cable or DSL Internet connection, contact your ISP to find out if they have
assigned a static IP address to your account. If so, you will need that static IP address when configuring the
Router. You can get the information from your ISP.
A dynamic IP address is automatically assigned to a device on the network. These IP addresses are called
dynamic because they are only temporarily assigned to the PC or other device. After a certain time period, they
expire and may change. If a PC logs onto the network (or the Internet) and its dynamic IP address has expired, the
DHCP server will assign it a new dynamic IP address.
Chapter 2: Networking Basics
An Introduction to LANs
Static IP address: a fixed address
assigned to a computer or device that
is connected to a network.
ISP: a company that provides access to the Internet
Dynamic IP address: a temporary IP
address assigned by a DHCP server.
DSL: an always-on broadband
connection over traditional phone lines
DHCP (Dynamic Host Configuration Protocol): a
protocol that lets one device on a local network, known
as a DHCP server, assign temporary IP addresses to the
other network devices, typically computers.
4
10/100 8-Port VPN Router
A DHCP server can either be a designated PC on the network or another network device, such as the Router. By
default, the Router’s Internet Connection Type is Obtain an IP automatically (DHCP).
The PC or network device obtaining an IP address is called the DHCP client. DHCP frees you from having to assign
IP addresses manually every time a new user is added to your network.
For DSL users, many ISPs may require you to log on with a user name and password to gain access to the
Internet. This is a dedicated, high-speed connection type called Point to Point Protocol over Ethernet (PPPoE).
PPPoE is similar to a dial-up connection, but PPPoE does not dial a phone number when establishing a
connection. It also will provide the Router with a dynamic IP address to establish a connection to the Internet.
By default, a DHCP server (on the LAN side) is enabled on the Router. If you already have a DHCP server running
on your network, you MUST disable one of the two DHCP servers. If you run more than one DHCP server on your
network, you will experience network errors, such as conflicting IP addresses. To disable DHCP on the Router,
see the Basic Setup section in “Chapter 5: Setting up and Configuring the Router.”
Why do I need a VPN?
Computer networking provides a flexibility not available when using an archaic, paper-based system. With this
flexibility, however, comes an increased risk in security. This is why firewalls were first introduced. Firewalls
help to protect data inside of a local network. But what do you do once information is sent outside of your local
network, when e-mails are sent to their destination, or when you have to connect to your company's network
when you are out on the road? How is your data protected?
That is when a VPN can help. VPNs are called Virtual Private Networks because they secure data moving outside
of your network as if it were still within that network.
When data is sent out across the Internet from your computer, it is always open to attacks. You may already have
a firewall, which will help protect data moving around or held within your network from being corrupted or
intercepted by entities outside of your network, but once data moves outside of your network - when you send
data to someone via e-mail or communicate with an individual over the Internet - the firewall will no longer
protect that data.
At this point, your data becomes open to hackers using a variety of methods to steal not only the data you are
transmitting but also your network login and security data. Some of the most common methods are as follows:
1) MAC Address Spoofing
Packets transmitted over a network, either your local network or the Internet, are preceded by a packet header.
These packet headers contain both the source and destination information for that packet to transmit efficiently.
Chapter 2: Networking Basics
Why do I need a VPN?
LAN: the computers and networking products that
make up your local network
NOTE: Since the Router is a device that connects two
networks, it needs two IP addresses—one for the
LAN, and one for the Internet. In this User Guide, you’ll
see references to the “Internet IP address” and the
“LAN IP address.”
Since the Router uses NAT technology, the only IP
address that can be seen from the Internet for your
network is the Router’s Internet IP address. However,
even this Internet IP address can be blocked, so that
the Router and network seem invisible to the Internet.
5
10/100 8-Port VPN Router
A hacker can use this information to spoof (or fake) a MAC address allowed on the network. With this spoofed
MAC address, the hacker can also intercept information meant for another user.
2) Data Sniffing
Data “sniffing” is a method used by hackers to obtain network data as it travels through unsecured networks,
such as the Internet. Tools for just this kind of activity, such as protocol analyzers and network diagnostic tools,
are often built into operating systems and allow the data to be viewed in clear text.
3) Man in the middle attacks
Once the hacker has either sniffed or spoofed enough information, he can now perform a “man in the middle”
attack. This attack is performed, when data is being transmitted from one network to another, by rerouting the
data to a new destination. Even though the data is not received by its intended recipient, it appears that way to
the person sending the data.
These are only a few of the methods hackers use and they are always developing more. Without the security of
your VPN, your data is constantly open to such attacks as it travels over the Internet. Data travelling over the
Internet will often pass through many different servers around the world before reaching its final destination.
That's a long way to go for unsecured data and this is when a VPN serves its purpose.
What is a VPN?
A VPN, or Virtual Private Network, is a connection between two endpoints - a VPN Router, for instance - in
different networks that allows private data to be sent securely over a shared or public network, such as the
Internet. This establishes a private network that can send data securely between these two locations or
networks.
This is done by creating a “tunnel”. A VPN tunnel connects the two PCs or networks and allows data to be
transmitted over the Internet as if it were still within those networks. Not a literal tunnel, it is a connection
secured by encrypting the data sent between the two networks.
VPN was created as a cost-effective alternative to using a private, dedicated, leased line for a private network.
Using industry standard encryption and authentication techniques - IPSec, short for IP Security - the VPN creates
a secure connection that, in effect, operates as if you were directly connected to your local network. Virtual
Private Networking can be used to create secure networks linking a central office with branch offices,
telecommuters, and/or professionals on the road (travelers can connect to a VPN Router using any computer with
VPN client software that supports IPSec, such as SSH Sentinel.)
There are two basic ways to create a VPN connection:
Chapter 2: Networking Basics
What is a VPN?
encryption: encoding data to prevent it from being
read by unauthorized people
IPSec: a VPN protocol used to implement
secure exchange of packets at the IP layer
6
10/100 8-Port VPN Router
•VPN Router to VPN Router
•Computer (using VPN client software that supports IPSec) to VPN Router
The VPN Router creates a “tunnel” or channel between two endpoints, so that data transmissions between them
are secure. A computer with VPN client software that supports IPSec can be one of the two endpoints. Any
computer with the built-in IPSec Security Manager (Microsoft 2000 and XP) allows the VPN Router to create a VPN
tunnel using IPSec). Other versions of Microsoft operating systems require additional, third-party VPN client
software applications that support IPSec to be installed.
VPN Router to VPN Router
An example of a VPN Router-to-VPN Router VPN would be as follows. (See Figure 2-1.) At home, a telecommuter
uses his VPN Router for his always-on Internet connection. His router is configured with his office's VPN settings.
When he connects to his office's router, the two routers create a VPN tunnel, encrypting and decrypting data. As
VPNs utilize the Internet, distance is not a factor. Using the VPN, the telecommuter now has a secure connection
to the central office's network, as if he were physically connected.
Computer (using VPN client software that supports IPSec) to VPN Router
The following is an example of a computer-to-VPN Router VPN. (See Figure 2-2.) In her hotel room, a traveling
businesswoman dials up her ISP. Her notebook computer has VPN client software that is configured with her
office's VPN settings. She accesses the VPN client software that supports IPSec and connects to the VPN Router
at the central office. As VPNs utilize the Internet, distance is not a factor. Using the VPN, the businesswoman now
has a secure connection to the central office's network, as if she were physically connected.
Figure 2-1: VPN Router-to-VPN Router VPN
For additional information and instructions about creating your own VPN, please visit Linksys’s website at
www.linksys.com.
Chapter 2: Networking Basics
What is a VPN?
Figure 2-2: Computer-to-VPN Router VPN
7
10/100 8-Port VPN Router
Chapter 3: Getting to Know the Router
The Front Panel
The Router’s LEDs, ports, and Reset button are located on the front panel of the Router.
LAN
Figure 3-1: Front Panel
Ports
1-8 (LAN) These eight LAN (Ethernet) ports connect to network devices, such as PCs, print
servers, or additional switches.
DMZ/Internet (WAN2) The DMZ/Internet port can be used in two different ways: a second Internet port, or
DMZ port. When used as an additional Internet port, it connects to a cable or DSL
modem. When used as a DMZ port, it connects to a hub, switch, or public server.
Internet (WAN1) The Internet port connects to a cable or DSL modem.
LEDs
Diag Red. The Diag LED lights up when the system is not ready. The LED goes off when the
system is ready.
System Green. The System LED lights up when the Router is powered on. If the LED is flashing,
the Router is running a diagnostic test.
WAN2
WAN1
DMZ: removes the Router's firewall protection from
one PC, allowing it to be “seen” from the Internet
Chapter 3: Getting to Know the Router
The Front Panel
8
10/100 8-Port VPN Router
DMZ/Internet Green. The DMZ/Internet LED lights up when the Router is connected to your cable or
DSL modem when used as an Internet port, and it lights up when the Router is
connected to the hub, switch, or public server when used as a DMZ port.
Internet Green. The Internet LED lights up when the Router is connected to your cable or DSL
modem.
DMZ Mode Green. The DMZ Mode LED lights up when the Router is using DMZ mode.
1-8 (LAN) Green. The LAN LED serves two purposes. If the LED is continuously lit, the Router is
connected to a device through the corresponding port (1, 2, 3, 4, 5, 6, 7, or 8). If the LED
is flashing, the Router is actively sending or receiving data over that port.
Reset Button The Reset button can be used in one of two ways:
If the Router is having problems connecting to the Internet, press the Reset button for
just a second with a paper clip or a pencil tip. This is similar to pressing the Reset
button on your PC to reboot it.
If you are experiencing extreme problems with the Router and have tried all other
troubleshooting measures, press and hold in the Reset button for 30 seconds. This will
restore the factory defaults and clear all of the Router’s settings, such as port
forwarding or a new password.
Boot: to start a device and cause it to
start executing instructions
The Back Panel
The Router’s Power port is located on the back panel of the Router.
Figure 3-2: Back Panel
Power The Power port is where you connect the AC power cord.
Proceed to “Chapter 4: Connecting the Router.”
Chapter 3: Getting to Know the Router
The Back Panel
9
10/100 8-Port VPN Router
Chapter 4: Connecting the Router
Overview
To set up your network, you will do the following:
• Connect the Router to one of your PCs according to the instructions in this chapter.
• If necessary, configure your PCs to obtain an IP address automatically from the Router, according to
“Appendix G: Windows Help”. (By default, Windows 98, 2000, Millennium, and XP computers are set to obtain
an IP address automatically, so unless you have changed the default setting, then you will not need to
configure your PCs.)
• Set up and configure the Router with the setting(s) provided by your Internet Service Provider (ISP) according
to “Chapter 5: Setting up and Configuring the Router.”
The installation technician from your ISP should have left the setup information with you after installing your
broadband connection. If not, you can call your ISP to request the information. Once you have the setup
information for your specific type of Internet connection, then you can begin installation and setup of the Router.
Notebook with
Ethernet Adapter
Cable or DSL
Modem
10/100 8-Port
VPN Router
PC with Ethernet
Adapter
Figure 4-1: Example of a Typical Network
Chapter 4: Connecting the Router
Overview
Broadband: an always-on, fast Internet connection
10
10/100 8-Port VPN Router
Connection Instructions
1. Before you begin, make sure that all of your hardware is powered off, including the Router, PCs, hubs,
switches, and cable or DSL modem.
2. Connect one end of an Ethernet network cable to one of the numbered ports on the front of the Router.
Connect the other end to an Ethernet port on a network device, e.g., a PC, print server, hub, or switch.
Repeat this step to connect more PCs or other network devices to the Router.
3. Connect your cable or DSL modem’s Ethernet cable to the Router’s Internet port. If using the DMZ/Internet
port, connect a second cable to it, and the other end to the network device, e.g., modem or public server.
4. Power on the cable or DSL modem and the other network device if using one.
5. Connect the included power adapter to the Router’s Power port on the back of the Router, as shown in Figure
4-4, and then plug the power adapter into an electrical outlet.
The System LED on the front panel will light up as soon as the power adapter is connected properly.
If you need to configure your PCs, proceed to “Appendix G: Windows Help.” Otherwise, proceed to
“Chapter 5: Setting Up and Configuring the Router.”
Hardware: the physical aspect of computers,
telecommunications, and other information technology devices
Figure 4-2: Connect a PC
Figure 4-3: Connect the Internet and DMZ/Internet
Chapter 4: Connecting the Router
Connection Instructions
Figure 4-4: Connect the Power
11
10/100 8-Port VPN Router
Chapter 5: Setting Up and Configuring the Router
Overview
The Router comes with a Web-based Utility that allows for easy set up and configuration. This chapter will explain
all of the functions in this Utility. (You can access the web-based utility by accessing 192.168.1.1.)
There are eleven main tabs in the Utility: System Summary, Setup, DHCP, System Management, Port
Management, Firewall, VPN, Log, Wizard, Support, and Logout. Sub-tabs are be available when you click one of
the main tabs. The tabs are described below:
System Summary Tab
The System Summary Tab displays the Router’s current status and settings. This information is read only. Some
words are underlined on this screen and, if you click them, will take you to the Utility page appropriate for that
word.
Setup Tab
From this tab, you can set the basic settings on your network. The screens available from this tab include:
• Network. Enter the Internet connection and network settings on this screen.
• Password. From this screen, you can change the Router’s password on this screen. For network security, you
should always change the password from its default setting.
• Time. Change the time shown on the network from this screen.
• DMZ Host. The DMZ (Demilitarized Zone) Host feature allows one network PC to be exposed to the Internet to
use special-purpose services such as Internet gaming or video conferencing.
• Forwarding. Port forwarding can be used to set up public services on your network. You may use this function
to establish a Web server or FTP server via an IP Gateway.
• UPnP. UPnP forwarding, set up on this screen, can be used to set up public services on your network.
• One-to-One NAT. Like the DMZ feature, One-to-One NAT opens the NAT firewall for one computer, but does it
only for one Internet address. This feature is administered through this screen.
Chapter 5: Setting Up and Configuring the Router
Overview
12
10/100 8-Port VPN Router
• MAC Clone. Some ISPs require that you register a MAC address. From this screen, you can “clone” your
network adapter's MAC address onto the Router. This prevents you from having to call your ISP to change the
registered MAC address to the Router's MAC address.
• DDNS. DDNS (Dynamic DNS) service, on this screen, allows you to assign a fixed domain name to a dynamic
Internet IP address. This allows you to host your own Web, FTP or other type of TCP/IP server in your network.
• Advanced Routing. The Router's dynamic routing feature can be set up on this screen to automatically adjust
to physical changes in the network's layout.
DHCP Tab
• Setup. From this screen, you can enable/disable the DHCP server, set up client lease time, DHCP IP Range,
and the WINS Server IP address.
• Status. This Status page is available to review DHCP Server Status.
System Management Tab
• Dual WAN. The Dual WAN feature allows you to use two Broadband connections at once, specifying between
using one as a Primary connection, with Smart Link Backup, and using both connections in concert, with Load
Balance.
• SNMP. SNMP, or Simple Network Management Protocol, is a network protocol that provides network
administrators with the ability to monitor the status of the Router and receive notification of any critical
events as they occur on the network. SNMP can be managed from this screen.
• Diagnostic. From this screen, you can use the Router’s two built-in tools to troubleshoot network problems.
• Factory Default. The “Factory Default” button on this screen can be used to clear all of your configuration
information and restore the Router to its factory default settings. Only use this feature if you wish to discard
all other configuration preferences.
DDNS: the capability of having a website, FTP, or e-mail
server-with a dynamic IP address-use a fixed domain name
Domain: a specific name for a network of computers
• Firmware Upgrade. Users can use the function on this screen to upgrade the Router’s firmware to the newest
version.
• Restart. The recommended method of restarting your Router is to use the “Restart Router” button on this
screen. Restarting with this button will send out your log file before the box is reset.
• Setting Backup. This screen allows you to make or import a backup file of your Preferences file for the Router.
Chapter 5: Setting Up and Configuring the Router
Overview
13
10/100 8-Port VPN Router
Port Management Tab
• Port Setup. From this screen, users can configure the functionality for each port.
• LAN Status. Users can choose this screen to see the status of a selected port.
Firewall Tab
• General. From this screen, you can configure the Router’s broadest settings for denying or allowing specific
users from accessing the Internet.
• Access Rules. Access Rules determine how and when network traffic will be allowed access to the network
or to the Internet, determining when traffic is allowed to pass through the firewall.
• Content Filter. This screen allows you to filter web access by site, keyword and time.
VPN Tab
• Summary. The VPN Summary screen displays a quick view of VPN activity and status.
• Gateway to Gateway. From this screen, users can administer tunnels between two VPN devices.
• Client to Gateway. From this screen, tunnels between a Local VPN device and a mobile user can be
administered.
• VPN Client Access. From this screen, you can manage the use of the Linksys QuickVPN Client, the VPN Client
software that came with this Router. This allows network users remote access via the VPN.
• VPN Pass Through. This tab allows you to enable or disable IPSec Pass Through, PPTP Pass Through, and
L2TP Pass Through.
• PPTP Server. From this screen, you can manage access to the VPN Router, through its built-in PPTP Server,
from those using Windows PPTP VPN software to gain access. This is less secure than the VPN Client Access
feature.
Log Tab
• System Log. The System Log allows you to administer the Syslog, E-mail and Log Settings.
• System Statistics. This screen displays the system statistics.
Chapter 5: Setting Up and Configuring the Router
Overview
14
10/100 8-Port VPN Router
Wizard Tab
• Wizard. Use this tab to access two Setup Wizards, the Basic Setup Wizard and Access Rule Setup Wizard.
Support Tab
• Support. The buttons on this tab allow you to access the user guide and the Linksys website.
Logout Tab
• Logout. Clicking this tab exits you from the Utility.
How to Access the Web-based Utility
Figure 5-1: Router’s IP Address
To access the Router’s Web-based Utility, launch Internet Explorer or Netscape Navigator, and enter the Router’s
default IP address, 192.168.1.1, in the Address field. Then, press the Enter key.
A Login screen will appear asking you for your User name and Password. Enter admin in the User name field,
and enter admin in the Password field. Then, click the OK button.
System Summary Tab
The first screen that appears is System Summary Tab. This screen displays the Router’s current status and
settings. This information is read-only. Words that are underlined will, when clicked, open the Setup page for that
feature. On the right side of the screen and all other screens in the Utility will be a link to the Site Map, which has
links to all of the Utility’s tabs. Click the Site Map button to view the Site Map (shown in Figure 5-4). Then, click
on desired tab subject.
System Information
Serial Number: The Router’s serial number is displayed here.
Firmware version: This shows the current version number of the firmware installed on this unit.
CPU: This shows the type of processor installed on the Router.
DRAM: This displays the amount of Dynamic Random Access Memory (DRAM), in Megabytes, the Router has.
Flash: This displays the amount of Flash Memory, in Megabytes, the Router has.
Figure 5-2: Login Screen
Figure 5-3: System Summary
Chapter 5: Setting Up and Configuring the Router
How to Access the Web-based Utility
15
10/100 8-Port VPN Router
System Up Time: This displays the length of time in Days, Hours, and Minutes that the Router has been active,
along with the current time.
Configuration
If you need help configuring the router, click the Setup Wizard button. A complete walk-through of the Setup
Wizard is shown in the Wizard Tab section.
Port Statistics
You can check the status of any of the Router’s ports simply by clicking the port number on the port diagram. If
the port is disabled, it will be red; if enabled, it will be black. If it is connected, it will be green.
This will open up a summary table. This summary table will show the port’s settings, such as Type, Link Status
(up or down), Port Disable (on or off), Priority (High or Normal), Speed Status (10Mbps or 100Mbps), Duplex
Status (half or full), Auto negotiation (enable or disable). The statistics table will show the amounts of packets
and bytes received or sent by a port as well as the Port Packet Error Count of the selected port. The LAN ports can
be configured from the LAN Setup page of the LAN Management Tab.
Network Setting Status
LAN IP: This shows the Router’s current LAN IP Address, and hyperlinks to that section of the Setup Tab.
Figure 5-4: Site Map
WAN1 IP: This shows the IP Address of the WAN1 IP port, hyperlinked to that section of the Setup Tab. When
WAN1 is set up to Obtain an IP automatically, two buttons will be shown here: Release and Renew. Click the
Release button to release the current IP Address and click the Renew button to update the DHCP Lease Time or
get a new IP. When WAN1 is set up with PPPoE or PPTP, these two buttons will be displayed as Connect and
Disconnect.
WAN2/DMZ IP: This shows the IP Address of the WAN2 IP port, or DMZ IP when DMZ is selected, hyperlinked to
that section of the Setup Tab.
Mode: This tells you if the Router’s Working Mode is Gateway or Router, hyperlinked to that section of the Setup
Tab
DNS: All DNS Server Addresses are displayed here, with hyperlinks to that section of the Setup Tab.
DDNS: This shows if the DDNS status is On or Off, with hyperlinks to that section of the Setup Tab.
DMZ Host: If this feature is enabled, the DMZ Private Address will be displayed. This is also hyperlinked to that
section of the Setup Tab.
Chapter 5: Setting Up and Configuring the Router
System Summary Tab
DNS the IP address of your ISP's server, which
translates the names of websites into IP addresses
16
10/100 8-Port VPN Router
Firewall Setting Status
SPI (Stateful Packet Inspection): This shows if the SPI status is On or Off, hyperlinked to that section of the
Firewall Tab.
DoS (Denial of Service): This shows if the DoS status is On or Off, hyperlinked to that section of the Firewall Tab.
Block WAN Request: This shows if the Block WAN Request status is On or Off, hyperlinked to that section of the
Firewall Tab.
VPN Setting Status
VPN Summary: This hyperlink will take you to the Summary page of the VPN Tab.
Tunnel(s) Used: This displays the amount of VPN Tunnels used.
Tunnel(s) Available: This displays the amount of VPN Tunnels available.
Current Connected (The Group Name of GroupVPN1) users: This displays the amount of VPN users connected
via GroupVPN1.
Current Connected (The Group Name of GroupVPN2) users: This displays the amount of VPN users connected
via GroupVPN2.
(If GroupVPN is disabled, it will show “No Group VPN was defined.”)
Log Setting Status:
This hyperlink will take you to the System Log page of the Log Tab.
If you have not set up the Log’s mail server, this will show “E-mail cannot be sent because you have not specified
an outbound SMTP server address.”
If you have set up the mail server but the log has not come out due to Log Queue Length and Log Time Threshold
settings, this will show “E-mail settings have been configured.”
If you have set up the mail server and the log has been sent to the mail server, this will show “E-mail settings
have been configured and sent out normally.”
If you have set up the mail server and the log cannot be sent to mail server successfully, this will show “E-mail
cannot be sent out, probably use incorrect settings.”
Chapter 5: Setting Up and Configuring the Router
System Summary Tab
17
10/100 8-Port VPN Router
Setup Tab - Network
The Setup screen contains all of the Router’s basic setup functions. These functions can be set from this screen
but normally don’t need to be adjusted, as the Router has been designed to be used in most network settings
without changing any of the default values. Some users, however, may need to enter additional information in
order to connect to the Internet through an ISP (Internet Service Provider) or broadband (DSL, cable modem)
carrier.
Network
Host Name & Domain Name: Some ISPs may require a Host Name and Domain Name for identification, and can
provide them to you. In most cases, though, leaving these fields blank will work.
LAN Setting
This is the Router’s LAN IP Address and Subnet Mask. The default value is 192.168.1.1 for IP address and
255.255.255.0 for the Subnet Mask.
Dual-WAN / DMZ Setting
Before choosing the WAN Connection Type, select between a Dual-WAN or DMZ Setting. The Dual-WAN Setting
will allow you to connect two Broadband connections to the Router at once, specifying between using one as a
Primary connection, with Smart Link Backup, and using both connections in concert, with Load Balance. These
settings can be found on the Dual-Wan screen of the Systems Management Tab. The DMZ setting allows one
network PC to be exposed to the Internet to use special-purpose services such as Internet gaming or video
conferencing.
There are two different DMZ types: Subnet and Range. If you choose Subnet, enter the IP Address and Subnet
Mask of the PC connected to the DMZ port; this DMZ must have a Static IP address. If Range is selected, the DMZ
port and the WAN port will be in the same subnet. Enter the IP Range for the DMZ port.
WAN Connection Type
Obtain an IP Automatically
If your ISP automatically assigns an IP Address, select Obtain an IP automatically. If you check the box for Use
the Following DNS Server Addresses, enter a specific DNS Server IP Address. Multiple DNS IP Settings are
common. In most cases, the first available DNS entry is used.
Chapter 5: Setting Up and Configuring the Router
Setup Tab - Network
Figure 5-5: Setup Tab - Network
cable modem: a device that connects a computer to the cable
television network, which in turn connects to the Internet
Figure 5-6: WAN Connection Type -
Obtain an IP Automatically
18
10/100 8-Port VPN Router
Static IP
If you have to specify the WAN IP Address, Subnet Mask, Default Gateway Address, and DNS Server, select Static
IP. All of this information can be obtained from your ISP.
PPPoE (Point-to-Point Protocol over Ethernet) (most DSL users)
Your ISP will let you know whether PPPoE should be enabled or not, which will be determined by if they use this
protocol. To enable PPPoE:
1. Enter the User Name and Password you use to access your ISP account.
2. By selecting the Connect on Demand option, the PPPoE connection will be disconnected if it has been idle
for a period longer than the Max Idle Time setting.
3. By selecting the Keep Alive option, the Router will keep the connection alive by sending out a few data
packets at the Redial Period, so your Internet service thinks that the connection is still active.
Figure 5-7: WAN Connection Type - Static IP
Figure 5-8: WAN Connection Type - PPPoE
PPTP (Point-to-Point Tunneling Protocol)
1. Enter the WAN IP Address, Subnet Mask and Default Gateway Address provided by your ISP.
2. Enter the User Name and Password you use to access your ISP account.
3. By selecting the Connect on Demand option, the connection will be disconnected if it has been idle for a
period longer than the Max Idle Time setting.
By selecting the Keep Alive option, the Router will keep the connection alive by sending out a few data packets
at the Redial Period, so your Internet service thinks that the connection is still active.
Chapter 5: Setting Up and Configuring the Router
Setup Tab - Network
Figure 5-9: WAN Connection Type - PPTP
19
10/100 8-Port VPN Router
Transparent Bridge
Transparent Bridging is used when you have two large networks that you wish to bridge together. Your network
administrator should fill in the information for both network segments, including the range of IP addresses each
network includes. When this is selected, the WAN and LAN must be in the same subnect and only one WAN port
can be set in Transparent Bridge mode.
Figure 5-10: WAN Connection Type - Transparent Bridge
Heart Beat Signal
Heart Beat Signal is a service used in Australia only. If you are using a Heart Beat Signal connection, check with
your ISP for the necessary setup information.
Chapter 5: Setting Up and Configuring the Router
Setup Tab - Network
Figure 5-11: WAN Connection Type - Heart Beat Signal
20
10/100 8-Port VPN Router
Setup Tab - Password
The Router's default User Name and Password is admin. For greater network security, you should change the
Router's password from this default. If you leave the password field blank, all users on your network will be able
to access the Router simply by entering admin into the password field.
Old Password: Enter the old password.
NOTE: The password cannot be recovered if it is lost or forgotten. If the password is
lost or forgotten, you have to reset the Router to its factory default settings.
New Password: Enter a new password for the Router. Your password must be less than 64 alphanumeric
characters long and it can’t contain any spaces.
Confirm New Password: Re-enter the new password for confirmation.
Click the Save Settings button to save the Password settings or click the Cancel Changes button to undo the
changes.
Setup Tab - Time
Time
Figure 5-12: Setup Tab - Password
The Router uses the time settings to time stamp log events, to automatically update the Content Filter List, and
for other internal purposes.
Set the local time with Set the local time using Network Time Protocol (NTP) automatically or Set the local
time Manually. When you choose to have the time set by using Network Time Protocol, the Router will
automatically connect to an NTP server, providing the correct time.
Automatic: Select the Time Zone and enter the Daylight Saving and NTP Server. The default Time Zone is Pacific
Time.
Manual: Enter the Hours, Minutes, Seconds, Month, Day and Year.
Click the Save Settings button to save the Time settings or click the Cancel Changes button to undo the
changes.
Chapter 5: Setting Up and Configuring the Router
Setup Tab - Time
Figure 5-13: Setup Tab - Time
21
Loading...