User Guide
Page 5
...Configuration | Policy Management | Traffic Management | PAT | Enable 11-4 12 Administration Administration 12-1 Administration | Software Update 12-2 Administration | System Reboot 12-5 Administration | Ping 12-7 Administration | Access Rights 12-8 Administration | Access Rights | Administrators 12-9 Administration | Access Rights | Access Settings 12-10 Administration | File Management 12-11 ... | View 12-24 Administration | Certificate Management | Certificates | Delete 12-27 13 Monitoring Monitoring 13-1 Monitoring | Routing Table 13-2 VPN 3002 Hardware Client User Guide v
...Configuration | Policy Management | Traffic Management | PAT | Enable 11-4 12 Administration Administration 12-1 Administration | Software Update 12-2 Administration | System Reboot 12-5 Administration | Ping 12-7 Administration | Access Rights 12-8 Administration | Access Rights | Administrators 12-9 Administration | Access Rights | Access Settings 12-10 Administration | File Management 12-11 ... | View 12-24 Administration | Certificate Management | Certificates | Delete 12-27 13 Monitoring Monitoring 13-1 Monitoring | Routing Table 13-2 VPN 3002 Hardware Client User Guide v
User Guide
Page 103
... described above. You cannot ping or access a device on the central-site VPN 3002 Concentrator. Traffic from those within the network list behind the IKE peer, i.e., the central-site Concentrator. • PAT includes NAT (Network Address Translation). VPN 3002 Hardware Client User Guide 11-1 In ...PAT mode: • IPSec encapsulates all traffic from the Private interface of the VPN 3002 to a Group on the VPN 3002 private network. The IP addresses of these mappings so ...
... described above. You cannot ping or access a device on the central-site VPN 3002 Concentrator. Traffic from those within the network list behind the IKE peer, i.e., the central-site Concentrator. • PAT includes NAT (Network Address Translation). VPN 3002 Hardware Client User Guide 11-1 In ...PAT mode: • IPSec encapsulates all traffic from the Private interface of the VPN 3002 to a Group on the VPN 3002 private network. The IP addresses of these mappings so ...
User Guide
Page 109
... delete digital certificates. Administration 12 C H A P T E R Administering the VPN 3002 involves activities that govern its use ICMP ping to configure the system, and what software runs on the VPN 3002. - Swap Configuration Files: swap backup and boot configuration files. - Upload Configuration Files: upload a new configuration file to a Certificate Authority. - VPN 3002 Hardware Client User Guide 12-1 View Configuration Files: view...
... delete digital certificates. Administration 12 C H A P T E R Administering the VPN 3002 involves activities that govern its use ICMP ping to configure the system, and what software runs on the VPN 3002. - Swap Configuration Files: swap backup and boot configuration files. - Upload Configuration Files: upload a new configuration file to a Certificate Authority. - VPN 3002 Hardware Client User Guide 12-1 View Configuration Files: view...
User Guide
Page 115
... a designated host. Specifically, the VPN3002 sends an ICMP Echo Request message to test network connectivity. Ping / Cancel To send the ping message, click Ping. see below. Success (Ping) If the system is reachable, it returns an Echo Reply message, and the Manager displays a ...Ping hosts from the Administration | Sessions screen. otherwise, enter an IP address.) Maximum is not reachable, the Manager displays an Error screen. If the host is 64 characters. The Manager pauses during the test, which may take a few moments; You can enter a hostname; VPN 3002 Hardware Client...
... a designated host. Specifically, the VPN3002 sends an ICMP Echo Request message to test network connectivity. Ping / Cancel To send the ping message, click Ping. see below. Success (Ping) If the system is reachable, it returns an Echo Reply message, and the Manager displays a ...Ping hosts from the Administration | Sessions screen. otherwise, enter an IP address.) Maximum is not reachable, the Manager displays an Error screen. If the host is 64 characters. The Manager pauses during the test, which may take a few moments; You can enter a hostname; VPN 3002 Hardware Client...
User Guide
Page 116
... | Access Rights This section of the tested host. Figure 12-10: Administration | Access Rights screen 12-8 VPN 3002 Hardware Client User Guide To troubleshoot the connection, try to Ping other hosts that you configure and control administrative access to the VPN 3002. • Administrators: configure administrator usernames, passwords, and rights. • Access Settings: set administrative session timeout...
... | Access Rights This section of the tested host. Figure 12-10: Administration | Access Rights screen 12-8 VPN 3002 Hardware Client User Guide To troubleshoot the connection, try to Ping other hosts that you configure and control administrative access to the VPN 3002. • Administrators: configure administrator usernames, passwords, and rights. • Access Settings: set administrative session timeout...
User Guide
Page 164
... gather the data. Figure 13-16: Monitoring | Statistics | MIB-II | Interfaces screen 13-28 VPN 3002 Hardware Client User Guide To configure and enable the VPN 3002's SNMP server, see the Configuration | System | Management Protocols | SNMP screen. Figure 13-15: Monitoring | Statistics | MIB-II...and VPN tunnels. • TCP/UDP: Transmission Control Protocol and User Datagram Protocol segments and datagrams sent and received, etc. • IP: Internet Protocol packets sent and received, fragmentation and reassembly data, etc. • ICMP: Internet Control Message Protocol ping, timestamp...
... gather the data. Figure 13-16: Monitoring | Statistics | MIB-II | Interfaces screen 13-28 VPN 3002 Hardware Client User Guide To configure and enable the VPN 3002's SNMP server, see the Configuration | System | Management Protocols | SNMP screen. Figure 13-15: Monitoring | Statistics | MIB-II...and VPN tunnels. • TCP/UDP: Transmission Control Protocol and User Datagram Protocol segments and datagrams sent and received, etc. • IP: Internet Protocol packets sent and received, fragmentation and reassembly data, etc. • ICMP: Internet Control Message Protocol ping, timestamp...
User Guide
Page 172
... number of ICMP Timestamp (request) messages received / sent. Timestamp Reply messages are sent in the network. 13-36 VPN 3002 Hardware Client User Guide Echo messages are probably the most visible ICMP messages. They test the communication path between network entities by asking...Exceeded Received / Transmitted The number of ICMP Redirect messages received / sent. Source Quench messages provide rudimentary flow control; Echo Requests (PINGs) Received / Transmitted The number of the packet has expired, or that a router cannot reassemble a packet within a time limit....
... number of ICMP Timestamp (request) messages received / sent. Timestamp Reply messages are sent in the network. 13-36 VPN 3002 Hardware Client User Guide Echo messages are probably the most visible ICMP messages. They test the communication path between network entities by asking...Exceeded Received / Transmitted The number of ICMP Redirect messages received / sent. Source Quench messages provide rudimentary flow control; Echo Requests (PINGs) Received / Transmitted The number of the packet has expired, or that a router cannot reassemble a packet within a time limit....
User Guide
Page 182
..., suppose you can quickly access any level by entering a series of the CLI-which parallels the HTML-based VPN 3002 Hardware Client Manager-you want to Config file 5) Help Information 6) Exit Main -> 2 (Administration) ) Software Update 2) System Reboot 3) Ping 4) Access Rights 5) File Management 6) Certificate Management 7) Back Config -> 4 (Access Rights) 1) Administrators 2) Access Settings 3) Back Admin -> 1 Administrative Users...
..., suppose you can quickly access any level by entering a series of the CLI-which parallels the HTML-based VPN 3002 Hardware Client Manager-you want to Config file 5) Help Information 6) Exit Main -> 2 (Administration) ) Software Update 2) System Reboot 3) Ping 4) Access Rights 5) File Management 6) Certificate Management 7) Back Config -> 4 (Access Rights) 1) Administrators 2) Access Settings 3) Back Admin -> 1 Administrative Users...
User Guide
Page 188
... 1) Software Update 2) System Reboot 3) Ping 4) Access Rights 5) File Management 6) Certificate Management 7) Back Admin -> _ 2.1 Administration > Software Update Name of the file for main code upgrade? [phoenix3002dc.bin] IP address of the host where the file resides? [10.10.66.10] (M)odify any of the above (C)ontinue or (E)xit? [M] 14-10 VPN 3002 Hardware Client User Guide
... 1) Software Update 2) System Reboot 3) Ping 4) Access Rights 5) File Management 6) Certificate Management 7) Back Admin -> _ 2.1 Administration > Software Update Name of the file for main code upgrade? [phoenix3002dc.bin] IP address of the host where the file resides? [10.10.66.10] (M)odify any of the above (C)ontinue or (E)xit? [M] 14-10 VPN 3002 Hardware Client User Guide
User Guide
Page 189
... 1) Save active configuration and use it at next reboot 2) Shutdown without saving active Configuration file 3) Shutdown, ignoring the Configuration file at next reboot 4) Back Admin -> _ 2.3 Ping > Ping host Admin -> 2.4 Administration > Access Rights 1) Administrators 2) Access Settings 3) Back Admin -> _ VPN 3002 Hardware Client User Guide 14-11
... 1) Save active configuration and use it at next reboot 2) Shutdown without saving active Configuration file 3) Shutdown, ignoring the Configuration file at next reboot 4) Back Admin -> _ 2.3 Ping > Ping host Admin -> 2.4 Administration > Access Rights 1) Administrators 2) Access Settings 3) Back Admin -> _ VPN 3002 Hardware Client User Guide 14-11
User Guide
Page 197
... (tunnel failed to establish to central-site Concentrator). VPN LED is on, but attempting to ping the default gateway (Administration > Ping) yields no response. Contact Cisco Support immediately. 1 Verify that the VPN 3000 Series Concentrator to which this VPN 3002 on the central-site Concentrator. 3 After you are properly configured. VPN 3002 Hardware Client Getting Started A-3 Problem/symptom Tunnel is solid...
... (tunnel failed to establish to central-site Concentrator). VPN LED is on, but attempting to ping the default gateway (Administration > Ping) yields no response. Contact Cisco Support immediately. 1 Verify that the VPN 3000 Series Concentrator to which this VPN 3002 on the central-site Concentrator. 3 After you are properly configured. VPN 3002 Hardware Client Getting Started A-3 Problem/symptom Tunnel is solid...
User Guide
Page 198
... to -LAN. 2 Assign this PC configured as a Client, NOT LAN-to ping the default gateway (Administration > Ping) yields no response. See Chapter 6, Address Management in the VPN 3000 Concentrator Series User Guide. 3 If the VPN 3002 uses PAT mode, enable a method of the VPN 3000 Series Concentrator. 1 Configure the connection as a DHCP client? A-4 VPN 3002 Hardware Client Getting Started Settings on the...
... to -LAN. 2 Assign this PC configured as a Client, NOT LAN-to ping the default gateway (Administration > Ping) yields no response. See Chapter 6, Address Management in the VPN 3000 Concentrator Series User Guide. 3 If the VPN 3002 uses PAT mode, enable a method of the VPN 3000 Series Concentrator. 1 Configure the connection as a DHCP client? A-4 VPN 3002 Hardware Client Getting Started Settings on the...
User Guide
Page 218
...error) A-7 Not Found (error) A-8 notices, regulatory agency B-9 O open or expanded (icon) 1-22 organization of the VPN Concentrator Manager 1-22 Out of Range value (error) A-10 P password factory default (Manager) 1-17 Passwords do not match (error) A-10 ping a host 12-7 PKCS-10 enrollment request 12-20 Index-4 policy management section of Manager 11...12 modify 9-12 MIB-II statistics 13-41 traps, configuring "well-known" 9-7 SNMP communities, configuring 8-7 add 8-8 modify 8-8 software image filenames 12-3, 13-10 update on VPN Concentrator 12-2 stopping 12-3 VPN 3002 Hardware Client User Guide
...error) A-7 Not Found (error) A-8 notices, regulatory agency B-9 O open or expanded (icon) 1-22 organization of the VPN Concentrator Manager 1-22 Out of Range value (error) A-10 P password factory default (Manager) 1-17 Passwords do not match (error) A-10 ping a host 12-7 PKCS-10 enrollment request 12-20 Index-4 policy management section of Manager 11...12 modify 9-12 MIB-II statistics 13-41 traps, configuring "well-known" 9-7 SNMP communities, configuring 8-7 add 8-8 modify 8-8 software image filenames 12-3, 13-10 update on VPN Concentrator 12-2 stopping 12-3 VPN 3002 Hardware Client User Guide