Configuring Vpn Policies - Cisco RV120W Administration Manual

Wireless-n vpn firewall

Hide thumbs Also See for RV120W:

Administration manual (154 pages)

Quick start manual (21 pages)

Manual (2 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

page of 163

/ 163
Contents
Table of Contents
Bookmarks

Table of Contents

Configuring Virtual Private Networks (VPNs) and Security

Configuring Advanced VPN Parameters

STEP 1

STEP 2

STEP 1

STEP 2

STEP 3

STEP 4

Cisco RV120W Administration Guide

Extended Authentication (XAUTH) Parameters

Rather than configuring a unique VPN policy for each user, you can enable the VPN

gateway router to authenticate users from a stored list of user accounts or with an

external authentication server such as a RADIUS server. When connecting many

VPN clients to a VPN gateway router, Extended Authentication (XAUTH) allows

authentication of users with methods in addition to the authentication method

mentioned in the IKE SA parameters. XAUTH can be configured in the following

modes:

Select the XAUTH type:

•

None—Disables XAUTH.

•

Edge Device—Authentication is done by one of the following:

User Database—User accounts created in the router are used to

authenticate users. See

RADIUS-PAP—Authentication is done using a RADIUS server and

password authentication protocol (PAP).

RADIUS-CHAP—Authentication is done using a RADIUS server and

challenge handshake authentication protocol (CHAP).

•

IPsec Host—The router is authenticated by a remote gateway with a

username and password combination. In this mode, the router acts as a VPN

Client of the remote gateway.

If you selected IPsec Host, enter the username and password for the host.