Table of Contents
Advertisement
Quick Links
Advertisement
Table of Contents
Related Manuals for Cisco CVPN3002-8E-K9 - Fast Ethernet VPN Gateway
Summary of Contents for Cisco CVPN3002-8E-K9 - Fast Ethernet VPN Gateway
- Page 1 VPN 3002 Hardware Client User Guide Release 3.0 March 2001 Corporate Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 526-4100 Customer Order Number: OL-0874-= Text Part Number: OL-0874-01...
-
Page 3: Table Of Contents
C O N T E N T S Table of contents Preface About this manual ................xi Additional documentation . - Page 4 Contents—Table of contents 5 Servers Configuration | System | Servers ............. . . 5-1 Configuration | System | Servers | DNS .
- Page 5 Contents—Table of contents Configuration | System | Events | Syslog Servers | Add or Modify ........9-15 10 General Configuration | System | General .
- Page 6 Software License Agreement of Cisco Systems, Inc........
- Page 7 Index...
- Page 8 Contents—Table of contents viii VPN 3002 Hardware Client User Guide...
- Page 9 Contents Tables Table 9-1: VPN 3002 event classes ..............9-1 Table 9-2: VPN 3002 event severity levels .
-
Page 11: About This Manual
Preface About this manual Prerequisites Organization VPN 3002 Hardware Client User Guide... -
Page 12: Additional Documentation
Preface Additional documentation Help VPN 3002 Hardware Client User Guide... -
Page 13: Documentation On Vpn Software Distribution Cds
Documentation on VPN software distribution CDs Documentation on VPN software distribution CDs Support Obtaining documentation World Wide Web Documentation CD-ROM Ordering documentation VPN 3002 Hardware Client User Guide xiii... -
Page 14: Obtaining Technical Assistance
Preface Documentation feedback Obtaining technical assistance Cisco.com Technical Assistance Center Contacting TAC by using the Cisco TAC website VPN 3002 Hardware Client User Guide... -
Page 15: Other References
Other references Contacting TAC by telephone Other references www.microsoft.com www.ietf.org www.whatis.com VPN 3002 Hardware Client User Guide... -
Page 16: Documentation Conventions
Documentation conventions Font Meaning This font This font <This font> This font Data formats IP addresses 192.168.12.34 Subnet masks and wildcard masks 255.255.255.0 0.0.0.255 MAC addresses 00.10.5A.1F.4F.07 Hostnames VPN01 Text strings simon Simon... -
Page 17: Port Numbers
Data formats Filenames LOG00007.TXT Port numbers 65535 VPN 3002 Hardware Client User Guide xvii... -
Page 19: Using The Vpn 3002 Hardware Client Manager
C H A P T E R Using the VPN 3002 Hardware Client Manager Browser requirements Note: JavaScript VPN 3002 Hardware Client User Guide... - Page 20 Using the VPN 3002 Hardware Client Manager View Internet Options Security Custom (for expert users) Settings Security Settings Scripting Enable Scripting of Java applets Enable Active scripting Tools Internet Options Security Custom Level Security Settings Scripting Enable Active scripting Enable Scripting of Java applets Edit Preferences...
-
Page 21: Recommended Pc Monitor / Display Settings
Recommended PC monitor / display settings Recommended PC monitor / display settings Connecting to the VPN 3002 using HTTP Address Location 10.10.147.2 http:// Figure 1-1: VPN 3302 Hardware Client Manager login screen Installing the SSL certificate in your browser https:// VPN 3002 Hardware Client User Guide... - Page 22 Using the VPN 3002 Hardware Client Manager Install SSL Certificate Install SSL Certificate Figure 1-2: Install SSL Certificate screen Installing the SSL certificate with Internet Explorer VPN 3002 Hardware Client User Guide...
- Page 23 Installing the SSL certificate in your browser File Download Open Save Open Save Figure 1-3: Internet Explorer File Download dialog box Open this file from its current location Certificate Figure 1-4: Internet Explorer Certificate dialog box Install Certificate VPN 3002 Hardware Client User Guide...
- Page 24 Using the VPN 3002 Hardware Client Manager Figure 1-5: Internet Explorer Certificate Manager Import Wizard dialog box Next Figure 1-6: Internet Explorer Certificate Manager Import Wizard dialog box Automatically select the certificate store Next VPN 3002 Hardware Client User Guide...
- Page 25 Installing the SSL certificate in your browser Figure 1-7: Internet Explorer Certificate Manager Import Wizard dialog box Finish Root Certificate Store Figure 1-8: Internet Explorer Root Certificate Store dialog box Figure 1-9: Internet Explorer Certificate Manager Import Wizard final dialog box Certificate After installing the SSL certificate, click here to connect to the VPN 3002 Hardware Client using SSL...
- Page 26 Using the VPN 3002 Hardware Client Manager Figure 1-10: Internet Explorer Security Alert dialog box Figure 1-11: VPN 3002 Hardware Client Manager login screen using HTTPS (Internet Explorer) Security Alert Viewing certificates with Internet Explorer Certificate Properties VPN 3002 Hardware Client User Guide...
- Page 27 Installing the SSL certificate in your browser Figure 1-12: Internet Explorer 4.0 Certificate Properties screen Field Details Close View Internet Options Content Authorities Certificates Tools Internet Options Content Certificates Certificates Certificate Manager Trusted Root Certification Authorities Figure 1-13: Internet Explorer 4.0 Certificate Authorities list View Certificate Certificate Properties Installing the SSL certificate with Netscape...
- Page 28 Using the VPN 3002 Hardware Client Manager Reinstallation Figure 1-14: Netscape reinstallation note First-time installation New Certificate Authority Figure 1-15: Netscape New Certificate Authority screen 1 Next> New Certificate Authority 1-10 VPN 3002 Hardware Client User Guide...
- Page 29 Installing the SSL certificate in your browser Figure 1-16: Netscape New Certificate Authority screen 2 Next> New Certificate Authority Figure 1-17: Netscape New Certificate Authority screen 3 Next> New Certificate Authority VPN 3002 Hardware Client User Guide 1-11...
- Page 30 Using the VPN 3002 Hardware Client Manager Figure 1-18: Netscape New Certificate Authority screen 4 Accept this Certificate Authority for Certifying network sites Next> New Certificate Authority Figure 1-19: Netscape New Certificate Authority screen 5 Next> New Certificate Authority 1-12 VPN 3002 Hardware Client User Guide...
- Page 31 Installing the SSL certificate in your browser Figure 1-20: Netscape New Certificate Authority screen 6 Nickname Cisco VPN 3002 10.10.147.2 Finish After installing the SSL certificate, click here to connect to the VPN 3002 Hardware Client using SSL Security Information Alert...
- Page 32 Using the VPN 3002 Hardware Client Manager Figure 1-22: VPN 3002 Hardware Client Manager login screen using HTTPS (Netscape) Security Information Alert Viewing certificates with Netscape Security Info Security 1-14 VPN 3002 Hardware Client User Guide...
- Page 33 Installing the SSL certificate in your browser Figure 1-23: Netscape Security Info window View Certificate Figure 1-24: Netscape View Certificate screen Security Info Certificates Signers VPN 3002 Hardware Client User Guide 1-15...
-
Page 34: Connecting To The Vpn 3002 Using Https
Using the VPN 3002 Hardware Client Manager Figure 1-25: Netscape Certificates Signers list Edit Verify Delete Connecting to the VPN 3002 using HTTPS Address Location https:// https://10.10.147.2 Install SSL Certificate 1-16 VPN 3002 Hardware Client User Guide... -
Page 35: Logging In The Vpn 3002 Hardware Client Manager
Logging in the VPN 3002 Hardware Client Manager Figure 1-26: VPN Hardware Client Manager HTTPS login screen Logging in the VPN 3002 Hardware Client Manager Clear Login Enter admin Password admin ***** Login VPN 3002 Hardware Client User Guide 1-17... -
Page 36: Configuring Http, Https, And Ssl Parameters
Using the VPN 3002 Hardware Client Manager Figure 1-27: Manager Main Welcome screen Configuring HTTP, HTTPS, and SSL parameters Configuration | System | Management Protocols | HTTP/ HTTPS Configuration | System | Management Protocols | SSL 1-18 VPN 3002 Hardware Client User Guide... -
Page 37: Understanding The Vpn 3002 Hardware Client Manager Window
Understanding the VPN 3002 Hardware Client Manager window Understanding the VPN 3002 Hardware Client Manager window Figure 1-28: VPN 3002 Hardware Client Manager window. Title bar Top frame (Manager Left frame (Contents) Main frame (Tasks) Status bar Title bar [10.10.104.7] Status bar VPN 3002 Hardware Client User Guide 1-19... - Page 38 Using the VPN 3002 Hardware Client Manager Mouse pointer and tips Top frame (Manager toolbar) Main tab Help tab Support tab Figure 1-29: Support screen Documentation CCO at www.cisco.com 1-20 VPN 3002 Hardware Client User Guide...
- Page 39 Understanding the VPN 3002 Hardware Client Manager window tac@cisco.com Support Logout tab Logged in: [username] Configuration tab Administration tab Monitoring tab Save Save Needed Save Needed saving Save VPN 3002 Hardware Client User Guide 1-21...
-
Page 40: Organization Of The Vpn 3002 Hardware Client Manager
Using the VPN 3002 Hardware Client Manager Done Save Save Needed Refresh Cisco Systems logo www.cisco.com Left frame (Table of contents) Main section titles (Configuration, Administration, Monitoring) Closed or collapsed Open or expanded Main frame (Manager screen) Organization of the VPN 3002 Hardware Client Manager... -
Page 41: Navigating The Vpn 3002 Hardware Client Manager
Navigating the VPN 3002 Hardware Client Manager System Policy Management Administration Monitoring Navigating the VPN 3002 Hardware Client Manager Figure 1-30: Complete Manager Table of Contents VPN 3002 Hardware Client User Guide 1-23... -
Page 43: Configuration
C H A P T E R Configuration Configuration Quick Configuration Interfaces System Policy Management Figure 2-1: Configuration screen VPN 3002 Hardware Client User Guide... -
Page 45: Interfaces
C H A P T E R Interfaces Configuration | System | IP Routing Configuration | Interfaces Note: VPN 3002 Hardware Client User Guide... - Page 46 Interfaces Figure 3-1: VPN 3002-8E Configuration | Interfaces screen Interface Private, Public Configuration | Interfaces | Private/Public Status PWR green = Testing Dormant Not Present Lower Layer Down Unknown Not Configured Waiting for DHCP VPN 3002 Hardware Client User Guide...
-
Page 47: Configuration | Interfaces | Private
Configuration | Interfaces | Private IP Address Subnet Mask Configuration | Interfaces | Private Figure 3-2: Configuration | Interfaces | Private screen Caution: Enabled Enabled VPN 3002 Hardware Client User Guide... -
Page 48: Subnet Mask
Interfaces Ethernet Link Status IP Address 192.168.12.34 0.0.0.0 Subnet Mask 255.255.255.0 192.168.12.34 255.255.255.0 0.0.0.0 MAC Address Speed 10 Mbps 100 Mbps 10/100 auto Duplex Auto Full-Duplex Half-Duplex VPN 3002 Hardware Client User Guide... -
Page 49: Configuration | Interfaces | Public
Configuration | Interfaces | Public Apply / Cancel Apply Configuration | Interfaces Reminder: Save Needed Cancel Configuration | Interfaces Configuration | Interfaces | Public Figure 3-3: Configuration | Interfaces | Public screen Enabled Enabled DHCP Client VPN 3002 Hardware Client User Guide... - Page 50 Interfaces IP Address 192.168.12.34 0.0.0.0 Subnet Mask 255.255.255.0 192.168.12.34 255.255.255.0 0.0.0.0 MAC Address Speed 10 Mbps 100 Mbps 10/100 auto Duplex Auto Full-Duplex Half-Duplex Apply / Cancel Apply Configuration | Interfaces Reminder: Save Needed Cancel Configuration | Interfaces VPN 3002 Hardware Client User Guide...
-
Page 51: System Configuration
C H A P T E R System Configuration Configuration | System Servers Tunneling Protocols IP Routing Management Protocols Events General Figure 4-1: Configuration | System screen VPN 3002 Hardware Client User Guide... -
Page 53: Servers
C H A P T E R Servers Configuration | System | Servers Figure 5-1: Configuration | System | Servers screen Configuration | System | Servers | DNS mail01 Note: VPN 3002 Hardware Client User Guide... - Page 54 Servers Figure 5-2: Configuration | System | Servers | DNS screen Enabled Enabled Domain yourisp.com Primary DNS Server 192.168.12.34 Secondary DNS Server Timeout Period Tertiary DNS Server Timeout Period VPN 3002 Hardware Client User Guide...
- Page 55 Configuration | System | Servers | DNS Timeout Period Timeout Retries Apply / Cancel Apply Configuration | System | Servers Reminder: Save Needed Cancel Configuration | System | Servers VPN 3002 Hardware Client User Guide...
-
Page 57: Tunneling
C H A P T E R Tunneling VPN 3002 Hardware Client User Guide... -
Page 58: Configuration | System | Tunneling Protocols
Tunneling Configuration | System | Tunneling Protocols IPSec Figure 6-1: Configuration | System | Tunneling Protocols screen Configuration | System | Tunneling Protocols | IPSec VPN 3002 Hardware Client User Guide... - Page 59 Configuration | System | Tunneling Protocols | IPSec Figure 6-2: Configuration | System | Tunneling Protocols | IPSec screen Peer Address 192.168.34.56 Use Certificate Administration | Certificate Management Group Name Group Name Password Group Password VPN 3002 Hardware Client User Guide...
- Page 60 Verify Group Verify User Name User Name Password User Password Verify User Verify...
-
Page 61: Ip Routing
C H A P T E R IP Routing Configuration | System | IP Routing Static Routes Default Gateways DHCP DHCP Options: Figure 7-1: Configuration | System | IP Routing screen VPN 3002 Hardware Client User Guide... -
Page 62: Configuration | System | Ip Routing | Static Routes
IP Routing Configuration | System | IP Routing | Static Routes Figure 7-2: Configuration | System | IP Routing | Static Routes screen Static Routes Static Routes [destination network address/subnet mask -> outbound destination] 192.168.12.0/ 255.255.255.0 -> 10.10.0.2 [Default -> default router address] --Empty-- Add / Modify / Delete Configuration | System | IP... -
Page 63: Configuration | System | Ip Routing | Static Routes | Add Or Modify
Configuration | System | IP Routing | Static Routes | Add or Modify Configuration | System | IP Routing | Static Routes | Add or Modify Modify Figure 7-3: Configuration | System | IP Routing | Static Routes | Add or Modify screen Network Address Destination 192.168.12.0... -
Page 64: Configuration | System | Ip Routing | Default Gateways
IP Routing Destination Destination Router Address 10.10.0.2 Interface Add or Apply / Cancel Apply Configuration | System | IP Routing | Static Routes Static Routes Reminder: Save Needed Cancel Configuration | System | IP Routing | Static Routes Static Routes Configuration | System | IP Routing | Default Gateways Configuration | Quick | System Info Figure 7-4: Configuration | System | IP Routing | Default Gateways screen... -
Page 65: Configuration | System | Ip Routing | Dhcp
Configuration | System | IP Routing | DHCP Default Gateway 192.168.12.77 0.0.0.0 0.0.0.0 Metric Apply / Cancel Apply Configuration | System | IP Routing Default Gateway Static Routes Configuration | System | IP Routing | Static Routes Reminder: Save Needed Cancel Configuration | System | IP Routing Configuration | System | IP Routing | DHCP... - Page 66 IP Routing Figure 7-5: Configuration | System | IP Routing | DHCP screen Enabled Lease Timeout 500000 Address Pool Start/End Apply / Cancel Apply Configuration | System | IP Routing Reminder: Save Needed Cancel Configuration | System | IP Routing VPN 3002 Hardware Client User Guide...
-
Page 67: Configuration | System | Ip Routing | Dhcp Options
Configuration | System | IP Routing | DHCP Options Configuration | System | IP Routing | DHCP Options Figure 7-6: Configuration | System | IP Routing | DHCP Options screen DHCP Option Add / Modify / Delete Configuration | System | IP | DHCP Options | Add Modify Configuration | System | IP | DHCP Options | Modify... -
Page 68: Configuration | System | Ip Routing | Dhcp Options | Add Or Modify
IP Routing Configuration | System | IP Routing | DHCP Options | Add or Modify Modify Figure 7-7: Configuration | System | IP Routing | DHCP Options | Add or Modify screen DHCP Option DHCP Options Option Value VPN 3002 Hardware Client User Guide... -
Page 69: Management Protocols
C H A P T E R Management Protocols Configuration | System | Management Protocols HTTP/HTTPS Telnet SNMP SNMP Community Strings Figure 8-1: Configuration | System | Management Protocols screen VPN 3002 Hardware Client User Guide... -
Page 70: Configuration | System | Management Protocols | Http/Https
Management Protocols Configuration | System | Management Protocols | HTTP/HTTPS Notes: Apply Configuration | System | Management Protocols | SSL Administration | Certificate Management Figure 8-2: Configuration | System | Management Protocols | HTTP/HTTPS screen Enable HTTP VPN 3002 Hardware Client User Guide... - Page 71 Configuration | System | Management Protocols | HTTP/HTTPS Enable HTTPS Enable HTTPS on Public HTTP Port HTTPS Port Maximum Sessions Apply / Cancel Apply Reminder: Save Needed Cancel Configuration | System | Management Protocols Figure 8-3: Configuration | System | Management Protocols screen VPN 3002 Hardware Client User Guide...
-
Page 72: Configuration | System | Management Protocols | Telnet
Management Protocols Configuration | System | Management Protocols | Telnet Administration | Access Rights | Administrators Configuration | System | Management Protocols | SSL Administration | Certificate Management | Certificates Figure 8-4: Configuration | System | Management Protocols | Telnet screen Enable Telnet Enable Telnet/SSL Telnet Port... -
Page 73: Configuration | System | Management Protocols | Snmp
Configuration | System | Management Protocols | SNMP Maximum Connections Apply / Cancel Apply Configuration | System | Management Protocols Reminder: Save Needed Cancel Configuration | System | Management Protocols Figure 8-5: Configuration | System | Management Protocols screen Configuration | System | Management Protocols | SNMP Configuration | System | Management Protocols | SNMP Communities Configuration | System | Events | General... - Page 74 Management Protocols Figure 8-6: Configuration | System | Management Protocols | SNMP screen Enable Port Maximum Queued Requests Apply / Cancel Apply Configuration | System | Management Protocols Reminder: Save Needed Cancel Configuration | System | Management Protocols VPN 3002 Hardware Client User Guide...
-
Page 75: Configuration | System | Management Protocols
Configuration | System | Management Protocols | SNMP Communities Figure 8-7: Configuration | System | Management Protocols screen Configuration | System | Management Protocols | SNMP Communities public Figure 8-8: Configuration | System | Management Protocols | SNMP Communities screen Community Strings Community Strings --Empty--... - Page 76 Management Protocols Add / Modify / Delete Configuration | System | Management Protocols | SNMP Communities | Add Modify Configuration | System | Management Protocols | SNMP Communities | Modify Delete Reminder: Save Needed Cancel Configuration | System | Management Protocols Figure 8-9: Configuration | System | Management Protocols screen Configuration | System | Management Protocols | SNMP...
-
Page 77: Configuration | System | Management Protocols | Ssl
Configuration | System | Management Protocols | SSL Community String Add or Apply / Cancel Apply Configuration | System | Management Protocols | SNMP Communities Community Strings Reminder: Save Needed Cancel Configuration | System | Management Protocols | SNMP Communities Community Strings Figure 8-11: Configuration | System | Management Protocols screen Configuration | System | Management Protocols | SSL... -
Page 78: Encryption Protocols
Management Protocols Note: Apply Configuration | System | Management Protocols | HTTP/HTTPS Configuration | System | Management Protocols | Telnet Administration | Certificate Management Figure 8-12: Configuration | System | Management Protocols | SSL screen Encryption Protocols RRC4-128/MD5 3DES-168/SHA DES-56/SHA 8-10 VPN 3002 Hardware Client User Guide... - Page 79 Configuration | System | Management Protocols | SSL RC4-40/MD5 Export DES-40/SHA Export Client Authentication Administration | Certificate Management SSL Version Negotiate SSL V2/V3 SSL V3 with SSL V2 Hello SSL V3 Only SSL V2 Only TLS V1 Only TLS V1 with SSL V2 Hello Generated Certificate Key Size 512-bit RSA Key VPN 3002 Hardware Client User Guide...
-
Page 80: Configuration | System | Management Protocols | Ssh
Management Protocols 768-bit RSA Key 1024-bit RSA Key Apply / Cancel Apply Configuration | System | Management Protocols Reminder: Save Needed Cancel Configuration | System | Management Protocols Figure 8-13: Configuration | System | Management Protocols screen Configuration | System | Management Protocols | SSH Configuration | System | Management Protocols | SSL 8-12... - Page 81 Configuration | System | Management Protocols | SSH Figure 8-14: Configuration | System | Management Protocols | SSH screen Enable SSH Enable SSH on Public SSH Port Maximum Sessions Key Regeneration Period 10080 VPN 3002 Hardware Client User Guide 8-13...
- Page 82 Management Protocols Encryption Protocols 3DES-168 RC4-128 DES-56 No Encryption Apply / Cancel Apply Configuration | System | Management Protocols Reminder: Save Needed Cancel Configuration | System | Management Protocols Figure 8-15: Configuration | System | Management Protocols screen 8-14 VPN 3002 Hardware Client User Guide...
-
Page 83: Events
C H A P T E R Events event Event class Event class Table 9-1: VPN 3002 event classes Class name Class description (event source) AUTH AUTHDBG AUTHDECODE AUTOUPDATE BKPLN CAPI CERT CONFIG DHCP DHCPDBG DHCPDECODE VPN 3002 Hardware Client User Guide... - Page 84 Events Table 9-1: VPN 3002 event classes (continued) Class name Class description (event source) DNSDBG DNSDECODE EVENT EVENTDBG EVENTMIB EXPANSIONCARD FILTER FILTERDBG FTPD GENERAL GREDBG GREDECODE HARDWAREMON HDLC HTTP HWDIAG IKEDBG IKEDECODE IPDBG IPDECODE IPSEC IPSECDBG IPSECDECODE L2TP L2TPDBG L2TPDECODE VPN 3002 Hardware Client User Guide...
- Page 85 Event class Table 9-1: VPN 3002 event classes (continued) Class name Class description (event source) LBSSF MIB2TRAP OSPF PPPDBG PPPDECODE PPTP PPTPDBG PPTPDECODE PSOS QUEUE REBOOT SMTP SNMP SYSTEM T1E1 TELNET TELNETDBG TELNETDECODE TIME VRRP VPN 3002 Hardware Client User Guide...
-
Page 86: Event Severity Level
Events Note: DECODE Event severity level Severity level Table 9-2: VPN 3002 event severity levels Level Category Description VPN 3002 Hardware Client User Guide... -
Page 87: Event Log
Event log Note: Configuration | System | Events | General Configuration | System | Events | Classes Event log Note: SAVELOG.TXT SAVELOG.TXT Event log data Monitoring | Filterable Event Log VPN 3002 Hardware Client User Guide... -
Page 88: Configuration | System | Events
Figure 9-1: Configuration | System | Events screen Configuration | System | Events | General Configuration | System | Events | Classes Figure 9-2: Configuration | System | Events | General screen Syslog Format Original Cisco IOS Compatible VPN 3002 Hardware Client User Guide... - Page 89 Configuration | System | Events | General Severity to Log None 1 1-2 1-3 1-13 Severity to Console None 1 1-2 1-3 1-13 Severity to Syslog None 1 1-2 1-3 None Configuration | System | Events | Syslog Servers Severity to Trap None 1 1-2 1-3 None Configuration | System | Events | Trap Destinations...
-
Page 90: Configuration | System | Events | Classes
Events Apply / Cancel Apply Configuration | System | Events Reminder: Save Needed Cancel Configuration | System | Events Configuration | System | Events | Classes HARDWAREMON Figure 9-3: Configuration | System | Events | Classes screen Configured Event Classes Configured Event Classes MIB2TRAP --Empty--... -
Page 91: Configuration | System | Events | Classes | Add Or Modify
Configuration | System | Events | Classes | Add or Modify Add / Modify / Delete Configuration | System | Events | Classes | Add Modify Configuration | System | Events | Classes | Modify Delete Reminder: Save Needed Configuration | System | Events | Classes | Add or Modify Modify Figure 9-4: Configuration | System | Events | Classes | Add or Modify screen Class Name... - Page 92 Events Enable Configured Event Classes Configuration | System | Events | Classes Severity to Log None 1 1-2 1-3 1-13 Severity to Console None 1 1-2 1-3 1-13 Severity to Syslog None 1 1-2 1-3 1-13 None Note: Configuration | System | Events | Syslog Servers Syslog Format Configuration | System | Events | General...
-
Page 93: Configuration | System | Events | Trap Destinations
Configuration | System | Events | Trap Destinations Add or Apply / Cancel Apply Configuration | System | Events | Classes Configured Event Classes Reminder: Save Needed Cancel Configuration | System | Events | Classes Configuration | System | Events | Trap Destinations Severity to Trap Configuration | System | Events | Classes Severity to Trap... -
Page 94: Add Or Modify
Events Add / Modify / Delete Configuration | System | Events | Trap Destinations | Add Modify Configuration | System | Events | Trap Destinations | Modify Delete Reminder: Save Needed Configuration | System | Events | Trap Destinations | Add or Modify Modify Figure 9-6: Configuration | System | Events | Trap Destinations | Add or Modify screen... -
Page 95: Configuration | System | Events | Syslog Servers
Configuration | System | Events | Syslog Servers Community public Port 65535 Add or Apply / Cancel Apply Configuration | System | Events | Trap Destinations Trap Destinations Reminder: Save Needed Cancel Configuration | System | Events | Trap Destinations Trap Destinations Configuration | System | Events | Syslog Servers Severity to Syslog... -
Page 96: Syslog Servers
Events Figure 9-7: Configuration | System | Events | Syslog Servers screen Syslog Servers Syslog Servers --Empty-- Add / Modify / Delete Configuration | System | Events | Syslog Servers | Add Modify Configuration | System | Events | Syslog Servers | Modify Delete Reminder: Save Needed... -
Page 97: Configuration | System | Events | Syslog Servers | Add Or Modify
Configuration | System | Events | Syslog Servers | Add or Modify Configuration | System | Events | Syslog Servers | Add or Modify Modify Figure 9-8: Configuration | System | Events | Syslog Servers | Add or Modify screen Syslog Server Port 65535... - Page 98 Events CRON Local 0 Local 7 Add or Apply / Cancel Apply Configuration | System | Events | Syslog Servers Syslog Servers Reminder: Save Needed Cancel Configuration | System | Events | Syslog Servers Syslog Servers VPN 3002 Hardware Client User Guide...
-
Page 99: General
C H A P T E R General Configuration | System | General Identification Time and Date Figure 10-1: Configuration | System | General screen VPN 3002 Hardware Client User Guide 10-1... -
Page 100: Configuration | System | General | Identification
General Configuration | System | General | Identification system Figure 10-2: Configuration | System | General | Identification screen System Name VPN01 Contact Location Apply / Cancel Apply Configuration | System | General Reminder: Save Needed Cancel Configuration | System | General 10-2 VPN 3002 Hardware Client User Guide... -
Page 101: Configuration | System | General | Time And Date
Configuration | System | General | Time and Date Configuration | System | General | Time and Date Figure 10-3: Configuration | System | General | Time and Date screen Current Time New Time New Time Hour : Minute : Second Month / Day / Year Time Zone Month Time Zone... -
Page 103: Policy Management
C H A P T E R Policy Management Client mode/PAT Client mode with split tunneling VPN 3002 Hardware Client User Guide 11-1... -
Page 104: Network Extension Mode
Policy Management VPN 3000 Series Concentrator settings required for PAT Group Name Password User Names Passwords Network Extension mode Network Extension mode with split tunneling VPN 3000 Series Concentrator settings required for Network Extension mode Group Name Password User Names Passwords 11-2 VPN 3002 Hardware Client User Guide... -
Page 105: Configuration | Policy Management
Configuration | Policy Management Configuration | Policy Management Configuration | Policy Management Figure 11-1: Configuration | Policy Management screen Traffic Management Traffic Management. Configuration | Policy Management | Traffic Management Configuration | Policy Management | Traffic Management Figure 11-2: Configuration | Policy Management | Traffic Management screen PAT. -
Page 106: Configuration | Policy Management | Traffic
Configuration | Policy Management | Traffic Management | PAT Configuration | Policy Management | Traffic Management | PAT Figure 11-3: Configuration | Policy Management | Traffic Management | PAT screen Enable Enable Configuration | Policy Management | Traffic Management | PAT | Enable Figure 11-4: Configuration | Policy Management | Traffic Management | PAT | Enable screen PAT Enabled... - Page 107 Configuration | Policy Management | Traffic Management | PAT | Enable Apply / Cancel Apply Configuration | Policy Management | Traffic Management | PAT Reminder: Save Needed Cancel Configuration | Policy Management | Traffic Management | PAT VPN 3002 Hardware Client User Guide 11-5...
-
Page 109: Administration
C H A P T E R Administration Administration Software Update System Reboot Ping ping Access Rights Administrators Access Settings Config File Management View Configuration Files: Swap Configuration Files Upload Configuration Files: Certificate Management Enrollment Installation Certificates VPN 3002 Hardware Client User Guide 12-1... -
Page 110: Administration | Software Update
Administration Figure 12-1: Administration screen Administration | Software Update Service & Support > Software Center www.cisco.com Note: Caution: Save Needed CONFIG 12-2 VPN 3002 Hardware Client User Guide... - Page 111 Administration | Software Update Figure 12-2: Administration | Software Update screen Current Software Revision Browse... Browse... Upload / Cancel Upload Cancel Administration Administration | Software Update VPN 3002 Hardware Client User Guide 12-3...
- Page 112 Administration Software Update Progress Figure 12-3: Administration | Software Update Progress window Software Update Success Administration | System Reboot Figure 12-4: Administration | Software Update Success screen Software Update Error Administration | Software Update Figure 12-5: Administration | Software Update Error screen 12-4 VPN 3002 Hardware Client User Guide...
-
Page 113: Administration | System Reboot
Administration | System Reboot Administration | System Reboot Caution: SAVELOG.TXT Configuration | System | Events | General Administration | Config File Management Monitoring | Filterable Event Log Figure 12-6: Administration | System Reboot screen Action Reboot VPN 3002 Hardware Client User Guide 12-5... - Page 114 Administration Shutdown without automatic reboot Cancel a scheduled reboot/shutdown Configuration Save the active configuration at time of reboot CONFIG Reboot without saving the active configuration CONFIG Reboot ignoring the Configuration file CONFIG CONFIG When to Reboot/Shutdown Apply Delayed by [NN] minutes Apply At time [HH:MM] Wait for sessions to terminate (don’t allow new sessions)
-
Page 115: Administration | Ping
Administration | Ping Administration | Ping ping Echo Request Success Echo Reply Error Ping Administration | Sessions Figure 12-7: Administration | Ping screen Address/Hostname to Ping Ping / Cancel Ping ping Success Error Cancel Administration Success (Ping) Success Figure 12-8: Administration | Ping | Success screen Continue Administration | Ping Continue... -
Page 116: Administration | Access Rights
Administration Error (Ping) Error Ping Figure 12-9: Administration | Ping | Error screen Administration | Ping Retry the operation Go to main menu Administration | Access Rights Administrators Access Settings Figure 12-10: Administration | Access Rights screen 12-8 VPN 3002 Hardware Client User Guide... -
Page 117: Administration | Access Rights | Administrators
Administration | Access Rights | Administrators Administration | Access Rights | Administrators Apply Figure 12-11: Administration | Access Rights | Administrators screen Administrator admin config monitor Note: CONFIG VPN 3002 Hardware Client User Guide 12-9... -
Page 118: Administration | Access Rights | Access Settings
Administration Password Note: Verify Enabled admin Apply / Cancel Apply Administration | Access Rights Cancel Administration | Access Rights Administration | Access Rights | Access Settings Figure 12-12: Administration | Access Rights | Access Settings screen 12-10 VPN 3002 Hardware Client User Guide... -
Page 119: Administration | File Management
Administration | File Management Session Idle Timeout 1800 Apply Add Cancel Session Limit Encrypt Config File CONFIG CONFIG .INI CONFIG Apply / Cancel Apply Administration | Access Rights Cancel Administration | Access Rights Administration | File Management Figure 12-13: Administration | Config File Management screen VPN 3002 Hardware Client User Guide 12-11... -
Page 120: Administration | File Management | View
Administration View Files View Files Administration | File Management | View Files Swap Config Files Swap Config Files Administration | File Management | Swap Config Files Config File Upload Administration | File Management | Config File Upload Administration | File Management | View View Config Files View Backup Config Files: View Crash Dump Files... -
Page 121: Administration | File Management | Swap Config Files
Administration | File Management | Swap Config Files Save Target As..., Save Link As... Delete Delete Administration | File Management | Swap Config Files CONFIG CONFIG CONFIG.BAK Administration | System Reboot Figure 12-15: Administration | Configuration File Management | Swap Config Files screen OK / Cancel Administration | System CONFIG... - Page 122 Administration Figure 12-16: Administration | File Management | Config File Upload screen Local Config File / Browse... Browse c:\vpn3002\config0077 Upload / Cancel Upload File Upload Progress Cancel Administration | Config File Management TnnnF.nnn Administration | Config File Management | View Config Files T003F.002 File Upload Progress Figure 12-17: Administration | File Management | File Upload Progress window...
-
Page 123: Administration | Certificate Management
Administration | Certificate Management File Upload Success Figure 12-18: Administration | File Management | File Upload Success screen Administration | Config File Management | View File Upload Error Figure 12-19: Administration | File Management | File Upload Error screen Click here to see the list of files Administration | Config File Management | View Click here to return to File Upload Administration | Config File Management |... - Page 124 Administration Save Needed Administration | Config File Management Use Certificate Configuration | System | Tunneling Protocols | IPSec screen Configuration | System | Management Protocols | HTTP/HTTPS Telnet Configuration | System | Management Protocols | SSL Configuration | System | General | Time and Date Figure 12-20: Administration | Certificate Management screen Installing digital certificates on the VPN 3002 Administration | Certificate Management | Enrollment...
-
Page 125: Administration | Certificate Management | Enrollment
Administration | Certificate Management | Enrollment Administration | Certificate Management | Certificates Administration | Certificate Management Administration | Certificate Management | Enrollment Common Name (CN) Apply Administration | Certificate Management | Enrollment | Request Generated VPN 3002 Hardware Client User Guide 12-17... - Page 126 Administration Figure 12-21: Administration | Certificate Management | Enrollment screen Common Name (CN) Engineering VPN 10.10.147.2 Organizational Unit (OU) CPU Design Organization (O) Cisco Systems 12-18 VPN 3002 Hardware Client User Guide...
-
Page 127: Key Size
Administration | Certificate Management | Enrollment Locality (L) Franklin State/Province (SP) Massachusetts Country (C) Subject Alternative Name (FQDN) vpn3030.altiga.com Key Size RSA 512 bits RSA 768 bits RSA 1024 bits DSA 512 bits DSA 768 bits DSA 1024 bits OK / Cancel Administration | Certificate Management | Enrollment | Request Generated Cancel... -
Page 128: Administration | Certificate Management | Enrollment
Administration Administration | Certificate Management | Enrollment | Request Generated pkcsNNNN.txt Figure 12-22: Administration | Certificate Management | Enrollment | Request Generated screen Certificate Installation Enrolling with a Certificate Authority Save Link As Save Target As .txt 12-20 VPN 3002 Hardware Client User Guide... -
Page 129: Administration | Certificate Management | Installation
Administration | Certificate Management | Installation Administration | Certificate Management | Installation Administration | Certificate Management | Installation Note: Figure 12-23: Administration | Certificate Management | Installation screen Certificate Type Issuing or Root Certificate Authority SSL Server (via Enrollment) VPN 3002 Hardware Client User Guide 12-21... - Page 130 Administration SSL Server (import with Private Key) Certificate Password Verify Server Identity (via Enrollment) Certificate Password import with Private Key Verify import with Private Key Local File / Browse Browse d:\certs\ca_root.txt Certificate Text Local File/Browse OK / Cancel Administration | Certificate management | Certificates Cancel Administration...
-
Page 131: Administration | Certificate Management | Certificates
Administration | Certificate Management | Certificates Administration | Certificate Management | Certificates Figure 12-24: Administration | Certificate Management | Certificates screen Certificate Authorities Identity Certificates SSL Certificate / [ Generate ] Generate Configuration | System | Management Protocols | SSL Subject / Issuer Subject Issuer... -
Page 132: Administration | Certificate Management | Certificates | View
Administration Expiration MM/DD/YYYY Actions/View/Delete View Administration | Certificate Management | Certificates | View Delete Administration | Certificate Management | Certificates | Delete Administration | Certificate Management | Certificates | View View Administration | Certificate Management | Certificates Subject Issuer Figure 12-25: Administration | Certificate Management | Certificates | View screen Subject Subject Issuer... - Page 133 Administration | Certificate Management | Certificates | View Issuer Subject Issuer CN OU O L SP Administration | Certificate Management | Enrollment Serial Number Signing Algorithm VPN 3002 Hardware Client User Guide 12-25...
- Page 134 Administration Public Key Type Certificate Usage MD5 Thumbprint SHA1 Thumbprint Validity Subject Alternative Name (Fully Qualified Domain Name) Back Administration | Certificate Management | Certificates Back 12-26 VPN 3002 Hardware Client User Guide...
-
Page 135: Administration | Certificate Management | Certificates | Delete
Administration | Certificate Management | Certificates | Delete Administration | Certificate Management | Certificates | Delete Delete Administration | Certificate Management | Certificates Administration | Certificate Management | Certificates | View Error getting SSL Certificate: SSL Certificate SSLIOErr Figure 12-26: Administration | Certificate Management | Certificates | Delete screen Yes / No Administration | Certificate Management | Certificates... -
Page 137: Monitoring
C H A P T E R Monitoring Monitoring Routing Table Filterable Event Log Live Event Log System Status General Statistics Refresh Figure 13-1: Monitoring screen VPN 3002 Hardware Client User Guide 13-1... -
Page 138: Monitoring | Routing Table
Monitoring Monitoring | Routing Table Figure 13-2: Monitoring | Routing Table screen Refresh Refresh Clear Routes Valid Routes Address 0.0.0.0 Mask Address 0.0.0.0 13-2 VPN 3002 Hardware Client User Guide... -
Page 139: Monitoring | Filterable Event Log
Monitoring | Filterable Event Log Next Hop 0.0.0.0 Interface Private interface Public interface Protocol Static Local ICMP Default Metric Monitoring | Filterable Event Log Configuration | System | Events Get Save Clear Access Rights Read/Write Files Administration | Administrators | Modify Properties VPN 3002 Hardware Client User Guide 13-3... - Page 140 Monitoring Figure 13-3: Monitoring | Filterable Event Log screen Select Filter Options Page Monitoring | Filterable Event Log Filterable Event Log Event Class Shift Ctrl Classes Configuration | System | Events 13-4 VPN 3002 Hardware Client User Guide...
- Page 141 Monitoring | Filterable Event Log Severities Shift Ctrl Configuration | System | Events Client IP Address 10.10.1.35 0.0.0.0 Events/Page 10 25 50 100 250 Direction Oldest to Newest Newest to Oldest First Page Previous Page Next Page Last Page VPN 3002 Hardware Client User Guide 13-5...
- Page 142 Monitoring Page Get Log Get Log http://10.10.4.6/LOG/ vpn3002log.txt File Save As... vpn3002log.txt Get Log Monitoring | Filterable Event Open Link, Open Link in New Window, Open in New Window Save Target As..., Save Link As... vpn3002log.txt Clear Log Caution: Event log format Sequence Date Time Severity Class/Number Repeat (IPAddress) String IPAddress...
- Page 143 Monitoring | Filterable Event Log Event date MM/DD/YYYY 12/06/1999 Event time hour:minute:second.millisecond 14:37:06.680 Event severity SEV=4 Configuration | System | Events Event class / number HTTP/47 Configuration | System | Events Event repeat RPT=17 Event IP address Event log format 10.10.1.35 admin Event string...
-
Page 144: Monitoring | Live Event Log
Monitoring Monitoring | Live Event Log Note for Netscape users: Note: Session Idle Timeout Administration | Access Rights | Access Settings Figure 13-4: Monitoring | Live Event Log screen Pause Display / Resume Display Pause Display Resume Display 13-8 VPN 3002 Hardware Client User Guide... -
Page 145: Monitoring | System Status
Monitoring | System Status Clear Display Clear Display Restart Restart Timer Monitoring | System Status Figure 13-5: Monitoring | System Status screen VPN 3002 Hardware Client User Guide 13-9... - Page 146 Monitoring Refresh Refresh VPN Client Type Bootcode Rev Software Rev Administration | Software Update Up Since RAM Size Disconnect Now Connect Now Assigned IP Address 13-10 VPN 3002 Hardware Client User Guide...
- Page 147 Monitoring | System Status Tunnel Established to: Duration: Security Associations: Type Encryption Authentication Octets In Octets Out Packets In Packets Out Other VPN 3002 Hardware Client User Guide 13-11...
-
Page 148: Monitoring | System Status | Private/Public Interface
Monitoring Front Panel Back Panel Monitoring | System Status | Interface Monitoring | System Status | Private/Public Interface Configuration | Interfaces Figure 13-6: Monitoring | System Status | Ethernet Interface screen Refresh Refresh Back Monitoring | System Status Back Interface Private interface 13-12 VPN 3002 Hardware Client User Guide... - Page 149 Monitoring | System Status | Private/Public Interface Public interface IP Address Status DOWN Testing Dormant Not Present Lower Layer Down Unknown Rx Unicast Tx Unicast Rx Multicast Tx Multicast VPN 3002 Hardware Client User Guide 13-13...
-
Page 150: Monitoring | Statistics
Monitoring Rx Broadcast Tx Broadcast Monitoring | Statistics IPSec HTTP Telnet DHCP MIB-II Stats Figure 13-7: Monitoring | Statistics screen 13-14 VPN 3002 Hardware Client User Guide... -
Page 151: Monitoring | Statistics | Ipsec
Monitoring | Statistics | IPSec Monitoring | Statistics | IPSec Figure 13-8: Monitoring | Statistics | IPSec screen Refresh Refresh IKE (Phase 1) Statistics VPN 3002 Hardware Client User Guide 13-15... - Page 152 Monitoring Active Tunnels Total Tunnels Received Bytes Sent Bytes Received Packets Sent Packets Received Packets Dropped Sent Packets Dropped Received Notifies Sent Notifies Received Notifies 13-16 VPN 3002 Hardware Client User Guide...
- Page 153 Monitoring | Statistics | IPSec Received Phase-2 Exchanges Sent Phase-2 Exchanges Invalid Phase-2 Exchanges Received Invalid Phase-2 Exchanges Sent Rejected Received Phase-2 Exchanges Rejected Sent Phase-2 Exchanges Phase-2 SA Delete Requests Received Phase-2 SA Delete Requests Sent Initiated Tunnels VPN 3002 Hardware Client User Guide 13-17...
- Page 154 Monitoring Failed Initiated Tunnels Failed Remote Tunnels Authentication Failures Decryption Failures Hash Validation Failures System Capability Failures No-SA Failures IPSec (Phase 2) Statistics Active Tunnels Total Tunnels 13-18 VPN 3002 Hardware Client User Guide...
- Page 155 Monitoring | Statistics | IPSec Received Bytes Sent Bytes Received Packets Sent Packets Received Packets Dropped Received Packets Dropped (Anti-Replay) Sent Packets Dropped Inbound Authentications Failed Inbound Authentications VPN 3002 Hardware Client User Guide 13-19...
- Page 156 Monitoring Outbound Authentications Failed Outbound Authentications Decryptions Failed Decryptions Encryptions Failed Encryptions System Capability Failures No-SA Failures Protocol Use Failures 13-20 VPN 3002 Hardware Client User Guide...
-
Page 157: Monitoring | Statistics | Http
Monitoring | Statistics | HTTP Monitoring | Statistics | HTTP Configuration | System | Management | Protocols | HTTP Figure 13-9: Monitoring | Statistics | HTTP screen Refresh Refresh Octets Sent Octets Received Packets Sent Packets Received Active Connections VPN 3002 Hardware Client User Guide 13-21... -
Page 158: Monitoring | Statistics | Telnet
Monitoring Max Connections Monitoring | Statistics | Telnet Configuration | System | Management Protocols | Telnet Figure 13-10: Monitoring | Statistics | Telnet screen Refresh Refresh Active Sessions Telnet Sessions Attempted Sessions Successful Sessions 13-22 VPN 3002 Hardware Client User Guide... -
Page 159: Monitoring | Statistics | Dns
Monitoring | Statistics | DNS Telnet Sessions Client IP Address:Port Inbound Octets Total Inbound Octets Command Inbound Octets Discarded Outbound Octets Total Outbound Octets Dropped Monitoring | Statistics | DNS Configuration | System | Servers | Figure 13-11: Monitoring | Statistics | DNS screen VPN 3002 Hardware Client User Guide 13-23... -
Page 160: Monitoring | Statistics | Ssl
Monitoring Refresh Refresh Requests Responses Timeouts Server Unreachable Other Failures Monitoring | Statistics | SSL Configuration | System | Management Protocols | SSL Figure 13-12: Monitoring | Statistics | SSL screen 13-24 VPN 3002 Hardware Client User Guide... - Page 161 Monitoring | Statistics | SSL Refresh Refresh Unencrypted Inbound Octets Encrypted Inbound Octets Unencrypted Outbound Octets Encrypted Outbound Octets Total Sessions Active Sessions Max Active Sessions VPN 3002 Hardware Client User Guide 13-25...
-
Page 162: Monitoring | Statistics | Dhcp
Monitoring Monitoring | Statistics | DHCP Configuration | System | IP Routing | DHCP. Figure 13-13: Monitoring | Statistics | DHCP screen Refresh Refresh Leased IP Address Lease Duration Time Used Time Left DHCP Server Address 13-26 VPN 3002 Hardware Client User Guide... -
Page 163: Monitoring | Statistics | Ssh
Monitoring | Statistics | SSH Monitoring | Statistics | SSH Configuration | System | Management Protocols | SSH Figure 13-14: Monitoring | Statistics | SSH screen Refresh Refresh Octets Sent / Received Packets Sent / Received Total Sessions Active Sessions Max Sessions VPN 3002 Hardware Client User Guide 13-27... -
Page 164: Monitoring | Statistics | Mib-Ii
Monitoring Monitoring | Statistics | MIB-II Interfaces TCP/UDP ICMP ARP Table Ethernet SNMP Configuration | System | Management Protocols | SNMP Figure 13-15: Monitoring | Statistics | MIB-II screen Monitoring | Statistics | MIB-II | Interfaces Figure 13-16: Monitoring | Statistics | MIB-II | Interfaces screen 13-28 VPN 3002 Hardware Client User Guide... - Page 165 Monitoring | Statistics | MIB-II | Interfaces Refresh Refresh Interface Private Public Status DOWN Testing Dormant Not Present Lower Layer Down Unknown Unicast In Unicast Out Multicast In Multicast Out VPN 3002 Hardware Client User Guide 13-29...
-
Page 166: Monitoring | Statistics | Mib-Ii | Tcp/Udp
Monitoring Broadcast In Broadcast Out Monitoring | Statistics | MIB-II | TCP/UDP Figure 13-17: Monitoring | Statistics | MIB-II | TCP/UDP screen Refresh Refresh TCP Segments Received TCP Segments Transmitted 13-30 VPN 3002 Hardware Client User Guide... - Page 167 Monitoring | Statistics | MIB-II | TCP/UDP TCP Segments Retransmitted TCP Timeout Min TCP Timeout Max TCP Connection Limit TCP Active Opens TCP Passive Opens TCP Attempt Failures TCP Established Resets TCP Current Established VPN 3002 Hardware Client User Guide 13-31...
-
Page 168: Monitoring | Statistics | Mib-Ii | Ip
Monitoring UDP Datagrams Received UDP Datagrams Transmitted UDP Errored Datagrams UDP No Port UDP No Port Monitoring | Statistics | MIB-II | IP Figure 13-18: Monitoring | Statistics | MIB-II | IP screen 13-32 VPN 3002 Hardware Client User Guide... - Page 169 Monitoring | Statistics | MIB-II | IP Refresh Refresh Packets Received (Total) Packets Received (Header Errors) Packets Received (Address Errors) 0.0.0.0 Packets Received (Unknown Protocols) Packets Received (Discarded) Packets Received (Delivered) Packets Forwarded Outbound Packets Discarded VPN 3002 Hardware Client User Guide 13-33...
- Page 170 Monitoring Outbound Packets with No Route Packets Transmitted (Requests) Packets Forwarded Fragments Needing Reassembly Reassembly Successes Reassembly Failures Fragmentation Successes Fragmentation Failures Don’t Fragment Fragments Created 13-34 VPN 3002 Hardware Client User Guide...
-
Page 171: Monitoring | Statistics | Mib-Ii | Icmp
Monitoring | Statistics | MIB-II | ICMP Monitoring | Statistics | MIB-II | ICMP Figure 13-19: Monitoring | Statistics | MIB-II | ICMP screen Refresh Refresh Total Received / Transmitted Errors Received / Transmitted Errors Received / Transmitted Destination Unreachable Received / Transmitted Don’t Fragment VPN 3002 Hardware Client User Guide 13-35... - Page 172 Monitoring Time Exceeded Received / Transmitted Parameter Problems Received / Transmitted Source Quench Received / Transmitted Redirects Received / Transmitted Echo Requests (PINGs) Received / Transmitted Echo Replies (PINGs) Received / Transmitted Timestamp Requests Received / Transmitted Timestamp Replies Received / Transmitted 13-36 VPN 3002 Hardware Client User Guide...
-
Page 173: Monitoring | Statistics | Mib-Ii | Arp Table
Monitoring | Statistics | MIB-II | ARP Table Address Mask Requests Received / Transmitted Address Mask Replies Received / Transmitted Monitoring | Statistics | MIB-II | ARP Table Interface IP Address Figure 13-20: Monitoring | Statistics | MIB-II | ARP Table screen Refresh Refresh VPN 3002 Hardware Client User Guide... - Page 174 Monitoring Interface Private Interface. Public Interface. Physical Address IP Address FF.FF.FF.FF.FF.FF IP Address Physical Address Mapping Type Other Invalid Dynamic Static Action / Delete Delete Modify Config General Access Rights Administration | Access Rights | Administrators 13-38 VPN 3002 Hardware Client User Guide...
-
Page 175: Monitoring | Statistics | Mib-Ii | Ethernet
Monitoring | Statistics | MIB-II | Ethernet Monitoring | Statistics | MIB-II | Ethernet Configuration | Interfaces Figure 13-21: Monitoring | Statistics | MIB-II | Ethernet screen Refresh Refresh Interface Alignment Errors FCS Errors Carrier Sense Errors VPN 3002 Hardware Client User Guide 13-39... - Page 176 Monitoring SQE Test Errors Frame Too Long Errors Deferred Transmits Single Collisions Multiple Collisions Multiple Collisions Single Collisions Late Collisions Excessive Collisions MAC Errors: Transmit Carrier Sense Errors Late Collisions Excessive Collisions MAC Errors: Receive Alignment Errors FCS Errors Frame Too Long Errors 13-40 VPN 3002 Hardware Client User Guide...
-
Page 177: Monitoring | Statistics | Mib-Ii | Snmp
Monitoring | Statistics | MIB-II | SNMP Speed (Mbps) Duplex Full Half Monitoring | Statistics | MIB-II | SNMP Configuration | System | Management Protocols | SNMP Figure 13-22: Monitoring | Statistics | MIB-II | SNMP screen Refresh Refresh Requests Received Bad Version VPN 3002 Hardware Client User Guide 13-41... - Page 178 Monitoring Bad Community String Configuration | System | Management Protocols | SNMP Communities public Parsing Errors Silent Drops Proxy Drops 13-42 VPN 3002 Hardware Client User Guide...
-
Page 179: Using The Command Line Interface
C H A P T E R Using the Command Line Interface Configuration | Interfaces | Private/Public Accessing the CLI Console access Console Enter Enter Login: _ VPN 3002 Hardware Client User Guide 14-1... -
Page 180: Starting The Cli
Login: admin Password: admin Main -> Welcome to Cisco Systems VPN 3002 Hardware Client Command Line Interface Copyright (C) 1998-2001 Cisco Systems, Inc. 1) Configuration 2) Administration 3) Monitoring 4) Save changes to Config file 5) Help Information 6) Exit Main ->... -
Page 181: Using The Cli
Using the CLI Using the CLI Choosing menu items Enter Configuration > System > General > System Identification 1) Set System Name 2) Set Contact 3) Set Location 4) Back General -> _ Entering values Enter > Host Name General -> [ Lab VPN ] _ Enter VPN 3002 Hardware Client User Guide 14-3... - Page 182 Using the Command Line Interface Navigating quickly through the CLI Using shortcut numbers Main -> _ 1) Configuration 2) Administration 3) Monitoring 4) Save changes to Config file 5) Help Information 6) Exit Main -> 2 ) Software Update 2) System Reboot 3) Ping 4) Access Rights 5) File Management...
- Page 183 Using the CLI > Which Administrator to Modify Admin -> 2.4.1.1 Main-> 1) Configuration 2) Administration 3) Monitoring 4) Save changes to Config file 5) Help Information 6) Exit Main -> 2.4.1.1 > Which Administrator to Modify Admin -> Note: config Admin ->...
-
Page 184: Saving The Configuration File
Using the Command Line Interface Getting Help Information Cisco Systems. Help information for the Command Line Interface From any menu except the Main menu. -- ’B’ or ’b’ for Back to previous menu. -- ’H’ or ’h’ for Home back to the main menu. -
Page 185: Cli Menu Reference
CLI menu reference Stopping the CLI Exit 1) Configuration 2) Administration 3) Monitoring 4) Save changes to Config file 5) Help Information 6) Exit Main -> 6 Done Understanding CLI access rights -) Configuration -) Administration 3) Monitoring -) Save changes to Config file 5) Help Information 6) Exit Main ->... -
Page 186: Main Menu
Using the Command Line Interface Main menu 1) Configuration 2) Administration 3) Monitoring 4) Save changes to Config file 5) Help Information 6) Exit Main -> _ 1 Configuration 1) Quick Configuration 2) Interface Configuration 3) System Management 4) Policy Management 5) Back Config ->... - Page 187 CLI menu reference 1.2 Configuration > System Management 1) Servers (DNS) 2) Tunneling Protocols (IPSec) 3) IP Routing (static routes, etc.) 4) Management Protocols (Telnet, HTTP, etc.) 5) Event Configuration 6) General Config (system name, time, etc.) 7) Back System -> _ 1.2.1 Configuration >...
- Page 188 Using the Command Line Interface 1.2.5 Configuration > System Management > Event Configuration 1) General 2) Classes 3) Trap Destinations 4) Syslog Servers 5) Back Event -> _ 1.2.6 Configuration > System Management > General Config 1) System Identification 2) System Time and Date 3) Back General ->...
- Page 189 CLI menu reference 2.2 Administration > System Reboot 1) Cancel Scheduled Reboot/Shutdown 2) Schedule Reboot 3) Schedule Shutdown 4) Back Admin -> _ 2.2.2 Administration > System Reboot > Schedule Reboot 1) Save active Configuration and use it at Reboot 2) Reboot without saving active Configuration file 3) Reboot ignoring the Configuration file 4) Back...
- Page 190 Using the Command Line Interface 2.4.1 Administration > Access Rights > Administrators Admin -> 1 Administrative Users ------------------------ Username Enabled ------------------------ admin config ------------------------ 1) Modify Administrator 2) Back Admin -> 2.4.2 Administration > Access Rights > Access Settings 1) Set Session Timeout 2) Set Session Limit 3) Enable/Disable Encrypt Config File 4) Back...
- Page 191 CLI menu reference 2.5.5 Administration > File Management > Swap Configuration File Every time the active configuration is saved,... 1) Swap 2) Back Admin -> _ 2.6 Administration > Certificate Management 1) Enrollment 2) Installation 3) Certificate Authorities 4) Identity Certificates 5) SSL Certificate 6) Back Certificates ->...
- Page 192 Using the Command Line Interface 2.6.4 Administration > Certificate Management > Identity Certificates Identity Certificates 1) View Certificate 2) Delete Certificate 3) Back Certificates -> _ 2.6.5 Administration > Certificate Management > SSL Certificate Subject ’q’ to Quit, ’<SPACE>’ to Continue -> Issuer ’q’...
- Page 193 CLI menu reference 3.1 Monitoring > Routing Table Routing Table ’q’ to Quit, ’<SPACE>’ to Continue -> 1) Refresh Routing Table 2) Clear Routing Table 3) Back Routing -> _ 3.2 Monitoring > Event Log 1) Configure Log viewing parameters 2) View Event Log 3) Clear Log 4) Back...
- Page 194 Using the Command Line Interface 3.4 Monitoring > General Statistics 1) Protocol Statistics 2) Server Statistics 3) MIB II Statistics 4) Back General -> _ 3.4.1 Monitoring > General Statistics > Protocol Statistics 1) IPSec Statistics 2) HTTP Statistics 3) Telnet Statistics 4) DNS Statistics 5) More 6) Back...
-
Page 195: A Errors And Troubleshooting
A P P E N D I X Errors and troubleshooting Files for troubleshooting SAVELOG.TXT CRSHDUMP.TXT CONFIG CONFIG.BAK Event logs Administration | File Management | View View Saved Log File Configuration | System | Events Monitoring | Filterable Event Log SAVELOG.TXT Administration | File Management SAVELOG.TXT... -
Page 196: Configuration Files
Errors and troubleshooting CRSHDUMP.TXT Administration | File Management | View View Saved Log Crash Dump File. Configuration files CONFIG CONFIG.BAK Administration | File Management LED indicators VPN 3002 LEDs (front) LEDs on front of unit State Explanation green Unit is on and has power. Unit is powered off. -
Page 197: Errors On The System
Errors on the system Errors on the system Problem/symptom Possible solution Monitoring > System Status Connect Connect Now Administration > Ping Public IP Address Group User Group User Monitoring > System Status Connect Now Monitoring > System Status Connect Now VPN 3002 Hardware Client Getting Started... -
Page 198: Settings On The Vpn 3000 Series Concentrator
Errors and troubleshooting Problem/symptom Possible solution Connect Now Administration > Ping Settings on the VPN 3000 Series Concentrator Group User Group User VPN 3002 Hardware Client Getting Started... -
Page 199: Vpn 3002 Hardware Client Manager Errors
VPN 3002 Hardware Client Manager errors VPN 3002 Hardware Client Manager errors Browser Refresh / Reload button logs out the Manager Problem Possible cause Solution Refresh Reload Refresh / Reload Refresh Browser Back or Forward button displays an incorrect screen or incorrect data Problem Possible cause Solution... - Page 200 Errors and troubleshooting Invalid Login or Session Timeout Invalid Login or Session Timeout Problem Possible cause Solution Login Login Administration | Access Rights | Access Apply Add Cancel Settings Session Timeout Apply VPN 3002 Hardware Client Getting Started...
- Page 201 VPN 3002 Hardware Client Manager errors Error / An error has occurred while attempting to perform... Error / An error has occurred while attempting to perform the operation Problem Possible cause Solution Retry the operation Go to main menu Not Allowed / You do not have sufficient authorization... Not Allowed / You do not have sufficient authorization to access the specified page VPN 3002 Hardware Client Getting Started...
- Page 202 Errors and troubleshooting Problem Possible cause Solution admin admin Administration | Access Rights | Administrators Administration | Access Rights | Access Control List Not Found/An error has occurred while attempting to access... Not Found/An error has occurred while attempting to access the specified page.
- Page 203 VPN 3002 Hardware Client Manager errors Problem Possible cause Solution Microsoft Internet Explorer Script Error: No such interface supported No such interface supported Problem Possible cause Solution Save Needed Help Software Update VPN 3002 Hardware Client Getting Started...
-
Page 204: Command Line Interface Errors
Errors and troubleshooting Command Line Interface errors ERROR:-- Bad IP Address/Subnet Mask/Wildcard Mask/Area ID. Problem Possible cause Solution 0.0.0.0 ERROR:-- Out of Range value entered. Try again. Problem Possible cause Solution ERROR:-- The Passwords do not match. Please try again. Problem Possible cause Solution... -
Page 205: B Copyrights, Licenses, And Notices
Copyrights, licenses, and notices Software License Agreement of Cisco Systems, Inc. Ownership of the Software Grant of License Restrictions on Use and Transfer... - Page 206 Limited Warranty...
-
Page 207: Other Licenses
Other licenses BSD software... - Page 208 DHCP client DNS Resolver (client)
- Page 209 IPSec...
- Page 210 LDAP LZS221-C v6 MPPC-C v4...
- Page 211 Outline style table of contents in JavaScript RSA software SecureID Server SNMP...
- Page 212 Client SNMP SSL Plus TCP compression / uncompression...
-
Page 213: Regulatory Standards Compliance
Telnet server Regulatory Standards Compliance Item Description... -
Page 215: I N D E X
I N D E X Index VPN 3002 Hardware Client User Guide Index-1... - Page 216 Index CRSHDUMP.TXT Index-2 VPN 3002 Hardware Client User Guide...
- Page 217 Index VPN 3002 Hardware Client User Guide Index-3...
- Page 218 Index system SAVELOG.TXT Index-4 VPN 3002 Hardware Client User Guide...
- Page 219 Index VPN 3002 Hardware Client User Guide Index-5...
- Page 220 Index Index-6 VPN 3002 Hardware Client User Guide...