hit counter script
Linksys BEFVP41 User Manual
  1. Manuals
  2. Brands
  3. Linksys Manuals
  4. Network Router
  5. BEFVP41 - EtherFast Cable/DSL VPN Router
  6. User manual

Linksys BEFVP41 User Manual

Instant broadband series etherfast cable/dsl vpn router with 4-port 10/100 switch
Hide thumbs Also See for BEFVP41:
Table of Contents

Advertisement

Quick Links

Download this manual See also: Product Data, User Manual
Enlarged version
Instant Broadband™ Series
®
EtherFast
Cable/DSL
VPN Router with
4-Port 10/100 Switch
Use this guide to install: BEFVP41
User Guide

Advertisement

Table of Contents
loading

Related Manuals for Linksys BEFVP41

Summary of Contents for Linksys BEFVP41

  • Page 1 Instant Broadband™ Series ® EtherFast Cable/DSL VPN Router with 4-Port 10/100 Switch Use this guide to install: BEFVP41 User Guide...
  • Page 2 Linksys reserves the right to revise or update its products, software, or documentation without obligation to notify any individ- ual or entity.

  • Page 3: Table Of Contents

    Chapter 5: Configuring Your Network Configuring Your PCs to Connect to the Cable/DSL VPN Router 12 Appendix C: Configuring IPSec between a Configuring the Cable/DSL VPN Router Microsoft Windows 2000 or XP PC and a Linksys Cable/DSL VPN Router Introduction Environment...

  • Page 4: Chapter 1: Introduction

    Cable/DSL VPN Router with 4-Port 10/100 Switch. The Instant Broadband™ Appendix E: How to Ping Your ISP’s E-mail & EtherFast ® Cable/DSL VPN Router from Linksys is the perfect solution for Web Addresses sharing a high-speed broadband Internet connection while still maintaining the ultimate in network security.

  • Page 5: Package Contents

    The Cable/DSL VPN Router’s Rear Panel The rear panel of the Router is where all of the Router’s connections are made. Figure 1-1 Package Contents • One Linksys Instant Broadband™ EtherFast ® Cable/DSL VPN Router with 4-Port 10/100 Switch Figure 2-1 •...

  • Page 6: The Reset Button

    Instant Broadband™ Series EtherFast Cable/DSL VPN Router with 4-Port 10/100 Switch ® Full/Col Green. The Full/Col LED also serves two purposes. If this Important: The Reset Button LED is continuously illuminated, the connection made through the corresponding port is successfully running in The Reset button can be used in one of two ways.

  • Page 7: Chapter 3: Connecting The Cable/Dsl Vpn Router To Your Network

    Router chooses to assign them. or receive your e-mail. If your Internet home page address is some- thing very simple, such as “www”, rather than “www.linksys.com”, You may need the following values from your ISP in order to install the or your e-mail server’s address is something similar to “e-mail”...

  • Page 8: Chapter 4: Planning Your Virtual Private Network (Vpn)

    VPN tunnel using IPSec (refer to “Appendix C: Configuring IPSec between a Microsoft Windows 2000 or XP PC and a Linksys Cable/DSL VPN • The Diag LED will light up red for a few seconds when the Router goes Router”).
  • Page 9 Important: You must have at least one VPN Router on one end of the please visit Linksys’s website at www.linksys.com or refer to “Appendix C: VPN tunnel. At the other end of the VPN tunnel, you must have a sec-...

  • Page 10: Chapter 5: Configuring Your Network

    Instant Broadband™ Series EtherFast Cable/DSL VPN Router with 4-Port 10/100 Switch ® 4. Click the Properties button, and then choose the IP Address tab. Select Chapter 5: Configuring Your Obtain an IP address automatically. Click the OK button. You have com- pleted the client settings.

  • Page 11: Configuring The Cable/Dsl Vpn Router

    Instant Broadband™ Series EtherFast Cable/DSL VPN Router with 4-Port 10/100 Switch ® 3. The Cable/DSL VPN Router with 4-Port 10/100 Switch’s Setup page will Configuring the Cable/DSL VPN Router appear. Refer to the Setup section of “Chapter 6: The Cable/DSL VPN Router’s Web-based Utility”...

  • Page 12: Chapter 6: The Cable/Dsl Vpn Router's Web-Based Utility

    Instant Broadband™ Series EtherFast Cable/DSL VPN Router with 4-Port 10/100 Switch ® DHCP is already enabled on the Router by factory default. By leaving the Chapter 6: The Cable/DSL VPN setting on Enable, the Router is configured to automatically assign an IP address to each PC.

  • Page 13: Setup

    • Firmware Version This entry shows the version of the firmware you are using. Future versions of the Router’s Firmware may be available on the Linksys website at www.linksys.com. • Time Zone Set your local time zone here. • Device IP Address and Subnet Mask The values for the Router’s IP Address and Subnet Mask are shown here.
  • Page 14 Instant Broadband™ Series EtherFast Cable/DSL VPN Router with 4-Port 10/100 Switch ® PPPoE Remote Access Some DSL-based Service (RAS) is ISPs use PPPoE a service that (Point-to-Point applies for con- Protocol over nections Ethernet) Singapore only. establish commu- users nications with an Singapore, check end-user.

  • Page 15: Vpn

    Instant Broadband™ Series EtherFast ® Cable/DSL VPN Router with 4-Port 10/100 Switch PPTP Point Point T u n n e l i n g Protocol (PPTP) is service that applies for con- nections in Europe only. Specify WAN IP Address This is the IP address that your Router has,...
  • Page 16 Instant Broadband™ Series EtherFast ® Cable/DSL VPN Router with 4-Port 10/100 Switch Establishing a Tunnel Note: It is possible to set up your VPN Router using any combination of the three settings under Local Secure Group and the five settings under Remote Secure Group.
  • Page 17 EtherFast ® Cable/DSL VPN Router with 4-Port 10/100 Switch Instant Broadband™ Series Under Remote Secure Group, you have two additional options: Host and Any. Remote Security Gateway • Host - If you select Host for the Remote Secure Group, then the Remote The Remote Security Gateway is the VPN device, such as a second VPN Secure Group will be the same as the Remote Security Gateway setting: Router, on the remote end of the VPN tunnel.
  • Page 18 Instant Broadband™ Series EtherFast Cable/DSL VPN Router with 4-Port 10/100 Switch ® • Any - If you select Any for the Remote Security Gateway, then the VPN Key Management device at the other end of the tunnel will accept a request from any IP address.
  • Page 19 Instant Broadband™ Series EtherFast ® Cable/DSL VPN Router with 4-Port 10/100 Switch The Inbound SPI and Outbound SPI fields are different, however. Inbound SPI value set here must match the Outbound SPI value at the other end of the tunnel. The Outbound SPI here must match the Inbound SPI value at the other end of the tunnel.
  • Page 20 Instant Broadband™ Series EtherFast Cable/DSL VPN Router with 4-Port 10/100 Switch ® To get more details concerning your tunnel connection, click the View Log but- Advanced Settings for Selected IPSec Tunnel ton. The screen in Figure 6-21 will appear: Figure 6-22 Phase 1 Figure 6-21 Phase 1 is used to create a security association (SA), often called the IKE SA.

  • Page 21: Password

    Instant Broadband™ Series EtherFast Cable/DSL VPN Router with 4-Port 10/100 Switch ® Group Password There are two Diffie-Hellman Groups to choose from: 768-bit and 1024-bit. Diffie-Hellman refers to a cryptographic technique that uses public and private keys for encryption and decryption. Key Lifetime In the Key Lifetime field, you may optionally select to have the key expire at the end of a time period of your choosing.

  • Page 22: Status

    Instant Broadband™ Series EtherFast Cable/DSL VPN Router with 4-Port 10/100 Switch ® • SNMP Community allows a name to be assigned to any SNMP communi- • Host Name This field shows the name of this device. This entry is neces- ties that have been setup in the network.

  • Page 23: Dhcp

    EtherFast Cable/DSL VPN Router with 4-Port 10/100 Switch Instant Broadband™ Series ® • DNS The Domain Name System (DNS) is how the Internet translates DHCP domain or website names into Internet addresses or URLs. Your ISP will provide you with at least one DNS Server IP Address. If you wish to utilize another, enter that IP Address in one of these fields.

  • Page 24: Log

    Logviewer is running. Clicking on the Linksys Website link in the center area will take you to The Outgoing Access Log lists all the URLs or IP addresses of Internet sites Linksys’s website, provided you are connected to the Internet.
  • Page 25 ® Cable/DSL VPN Router with 4-Port 10/100 Switch To upgrade the Router’s firmware: 1. Download the latest firmware version from the Linksys website (www.linksys.com). 2. Go to the Help screen. 3. Click Upgrade Firmware. The page shown in Figure 6-28 will appear.

  • Page 26: Filters

    EtherFast Cable/DSL VPN Router with 4-Port 10/100 Switch Instant Broadband™ Series ® Setting Up Filters Filters • To set up a filter using IP addresses, enter the range of IP addresses you wish to filter into the IP address fields. Users who have filtered IP address- es will not be able to access the Internet at all.

  • Page 27: Forwarding

    Instant Broadband™ Series EtherFast Cable/DSL VPN Router with 4-Port 10/100 Switch ® Using IPSec Pass Through Forwarding • This feature lets you use IPSec Pass Through. To use this feature, select Enable next to IPSec Pass Through, and then click the Apply button and Continue button.

  • Page 28: Dynamic Routing

    Instant Broadband™ Series EtherFast Cable/DSL VPN Router with 4-Port 10/100 Switch ® Using Port Triggering Dynamic Routing Figure 6-33 Figure 6-32 With Dynamic Routing you can automatically adjust to physical changes in the Port triggering allows the Router to watch outgoing data for specific port num- network’s layout.

  • Page 29: Static Routing

    Instant Broadband™ Series EtherFast Cable/DSL VPN Router with 4-Port 10/100 Switch ® 2. Enter the following data to create a new static route: Static Routing Destination LAN IP The Destination LAN IP is the address of the remote network or host to which you want to assign a static route. Enter the IP address of the host for which you wish to create a static route here.

  • Page 30: Dmz Host

    EtherFast Cable/DSL VPN Router with 4-Port 10/100 Switch Instant Broadband™ Series ® DMZ Host MAC Address Cloning Figure 6-36 Figure 6-35 The DMZ Hosting feature allows one local user to be exposed to the Internet Your Router’s MAC address is a 12-digit code assigned to a unique piece of to use a special-purpose service such as Internet gaming or videoconferenc- hardware for identification, like a social security number.

  • Page 31: Appendix A: Troubleshooting

    IP address option. solution. If you can’t find an answer here, check the Linksys website at D. Enter a unique IP address that is not used by any other computer on the www.linksys.com.
  • Page 32 Instant Broadband™ Series EtherFast Cable/DSL VPN Router with 4-Port 10/100 Switch ® For Windows XP: that Obtain an IP address automatically and Obtain DNS server address automatically are selected. The following instructions assume you are running Windows XP with the •...
  • Page 33 Instant Broadband™ Series EtherFast Cable/DSL VPN Router with 4-Port 10/100 Switch ® C. In the command prompt, type ping 192.168.1.1 and press the Enter key. F. Turn off the computer, Router, and cable/DSL modem. Wait 30 seconds, • If you get a reply, the computer is communicating with the Router. and then turn on the Router, cable/DSL modem, and computer.
  • Page 34 DMZ hosting. There may be cases when you want to host an online game or Internet application. This would require Check the Linksys website for more information at www.linksys.com. you to set up the Router to deliver incoming packets or data to a specific com- puter.
  • Page 35 Password tab. B. Enter a different password in the Router Password field, and enter the A. Go to the Linksys website at http://www.linksys.com and download the same password in the second field to confirm the password. latest firmware.
  • Page 36 Instant Broadband™ Series EtherFast Cable/DSL VPN Router with 4-Port 10/100 Switch ® 13. The firmware upgrade failed, and/or the Diag LED is flashing. 15. I can't access my email, web, or VPN, or I am getting corrupted data from the The upgrade could have failed for a number of reasons.

  • Page 37: Frequently Asked Questions

    IP Address: 192.168.1.50 and Subnet Mask: 255.255.255.0. Can I use firmware for other routers with my BEFVP41? No. If you attempt to use other router's firmware, you could damage your router. Only use firmware 18. When I enter a URL or IP address, I get a time-out error or am prompted to retry.
  • Page 38 Does the Router support any operating system other than Windows 95, Windows site at www.linksys.com for more information. 98, Windows 2000, Windows NT, or Windows XP? Yes, but Linksys does not, at this time, provide technical support for setup, configuration or troubleshoot- If all else fails in the installation, what can I do? Reset the Router by holding ing of any non-Windows operating systems.
  • Page 39 IP if you want to use DMZ Hosting. To get the LAN IP address, see If your questions are not addressed here, refer to the Linksys website, “Appendix G: Finding the MAC Address and IP Address for Your Ethernet www.linksys.com.

  • Page 40: Appendix B: Glossary

    Instant Broadband™ Series EtherFast Cable/DSL VPN Router with 4-Port 10/100 Switch ® CSMA/CD (Carrier Sense Multiple Access/Collision Detection) - The LAN Appendix B: Glossary access method used in Ethernet. When a device wants to gain access to the net- work, it checks to see if the network is quiet (senses the carrier). If it is not, it 10BaseT - An Ethernet standard that uses twisted wire pairs.
  • Page 41 “handle” for an Internet address. FQDN (Fully Qualified Domain Name) - The host name and domain name for a specific computer on the Internet. For example, www.linksys.com is a FQDN. Domain - A subnetwork comprised of a group of clients and servers under The host name is “www”, and the domain name is “linksys.com”.
  • Page 42 Instant Broadband™ Series EtherFast Cable/DSL VPN Router with 4-Port 10/100 Switch ® Hardware - Hardware is the physical aspect of computers, telecommunica- load and is therefore more secure. IPSec must be supported on both transmit- tions, and other information technology devices. The term arose as a way to dis- ter and receiver and must share a public key.
  • Page 43 Instant Broadband™ Series EtherFast Cable/DSL VPN Router with 4-Port 10/100 Switch ® Port - A pathway into and out of the computer or a network device such as a control programs such as the operating system and database management sys- switch or router.
  • Page 44 Instant Broadband™ Series EtherFast Cable/DSL VPN Router with 4-Port 10/100 Switch ® Throughput - The amount of data moved successfully from one place to anoth- single large “virtually private” LAN. This removes the need to use leased lines er in a given time period. for WAN communications through secure use of a publicly available WAN (such as the Internet).

  • Page 45: Appendix C: Configuring Ipsec Between A Microsoft Windows 2000 Or Xp Pc And A Linksys Cable/Dsl Vpn Router

    This document demonstrates how to establish a secure IPSec tunnel using pre- 4. Deselect the Activate the default response rule check box, and then click shared keys to join a private network inside a Linksys Cable/DSL VPN Router the Next button.
  • Page 46 ® Filter List 1: WinXP=>BEFVP41 3. Enter an appropriate name, such as WinXP=>BEFVP41, for the filter list, and deselect the Use Add Wizard check box. Click the Add button. 1. In the new policy’s properties screen, deselect the Use Add Wizard check box, and then click the Add button to create a new rule.
  • Page 47 ® 6. If you want to enter a description for your filter, click the Description tab. 9. Enter an appropriate name, such as BEFVP41=>WinXP for the filter list, and deselect the Use Add Wizard check box. Click the Add button.
  • Page 48 11. In the Destination address field, select My IP Address. Configure Individual Rule of 2 Tunnels Tunnel 1: WinXP=>BEFVP41 1. From the IP Filter List tab, click the filter list WinXP=>BEFVP41. Figure C-8 12. If you want to type a description for your filter, click the Description tab.
  • Page 49 XYZ12345. Click the OK button. 4. Select Session key Perfect Forward Secrecy, and remember to check the PFS option on the BEFVP41. Click the OK button. Figure C-14 This new Preshared key will be displayed in Figure C-15. Click the OK Figure C-12 button to continue.
  • Page 50 Figure C-16 Figure C-18 8. From the Connection Type tab, select All network connections, and click the OK or Close button to finish this rule. 10. From the IP Filter List tab, click the filter list BEFVP41=>WinXP. Figure C-17 Figure C-19...
  • Page 51 Instant Broadband™ Series EtherFast Cable/DSL VPN Router with 4-Port 10/100 Switch ® 11. From the Filter Action tab, select the filter action Require Security. 13. Change the authentication method to Use this string to protect the key exchange (preshared key), and enter the preshared key string, such as XYZ12345.
  • Page 52 Instant Broadband™ Series EtherFast Cable/DSL VPN Router with 4-Port 10/100 Switch ® 14. From the Tunnel Setting tab, click the radio button for The tunnel end- 16. From the Rules tab, click the OK button to return to the secpol screen. point is specified by this IP Address, and enter the Windows 2000/XP computer’s IP Address.
  • Page 53 Instant Broadband™ Series EtherFast Cable/DSL VPN Router with 4-Port 10/100 Switch ® BEFVP41 VPN Screen Figure C-29 is a sample configuration for the Router’s VPN tab. Setup Screen Once all the settings have been configured, click the Connect button to estab- 1.

  • Page 54: Appendix D: Snmp Functions

    Reply from 24.53.32.4: bytes=32 time<10ms TTL=128 Internet. For example, www.linksys.com is actually 206.135.116.3. Type it into your web browser and you will wind up at the Linksys home page every time. Ping statistics for 24.53.32.4: Packets: Sent = 4, Received = 4, Lost = 0 (0% IP and web addresses, however, can sometimes be long and hard to remember.

  • Page 55: Appendix F: Installing The Tcp/Ip Protocol

    Instant Broadband™ Series EtherFast ® Cable/DSL VPN Router with 4-Port 10/100 Switch Step Two: Pinging for a Web Address Appendix F: Installing the TCP/ I P While the IP address returned above would work as your e-mail server address, Protocol it may not be permanent.

  • Page 56: Appendix G: Finding The Mac Address And Ip Address For Your Ethernet Adapter

    Instant Broadband™ Series EtherFast Cable/DSL VPN Router with 4-Port 10/100 Switch ® 6. Find and double-click TCP/IP in the list to the right in Figure F-2. Appendix G: Finding the MAC Address and IP Address for Your Ethernet Adapter This section describes how to find the MAC address for your Ethernet adapter to do either MAC Filtering or MAC Address Cloning for the Router and ISP.
  • Page 57 Instant Broadband™ Series EtherFast Cable/DSL VPN Router with 4-Port 10/100 Switch ® 3. Write down the Adapter Address as shown on your computer screen (see 2. In the command prompt, enter ipconfig /all. Then press the Enter key. Figure G-3). This is the MAC address for your Ethernet adapter and will be shown as a series of numbers and letters.

  • Page 58: Appendix H: Specifications

    When entering the information using the Router’s web-based utility, you will Appendix H: Specifications type the 12-digit MAC address in this format, XXXXXXXXXXXX without the hyphens for MAC Filtering. See Figure G-6. Model Number: BEFVP41 Standards: IEEE 802.3 (10BaseT), IEEE 802.3u (100BaseTX) Protocol:...

  • Page 59: Appendix I: Warranty Information

    Appendix J: Contact Information BE SURE TO HAVE YOUR PROOF OF PURCHASE AND A BARCODE For help with the installation or operation of this product, contact Linksys FROM THE PRODUCT’S PACKAGING ON HAND WHEN CALLING. Technical Support at one of the phone numbers or Internet addresses below.
  • Page 60 © Copyright 2002 Linksys, All Rights Reserved.

Table of Contents