User Guide
Page 1
VPN 3002 Hardware Client User Guide Release 3.0 March 2001 Corporate Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 526-4100 Customer Order Number: OL-0874-= Text Part Number: OL-0874-01
VPN 3002 Hardware Client User Guide Release 3.0 March 2001 Corporate Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 526-4100 Customer Order Number: OL-0874-= Text Part Number: OL-0874-01
User Guide
Page 2
..., Berkeley (UCB) as part of UCB's public domain version of the word partner does not imply a partnership relationship between Cisco and any other company. (0011R) VPN 3002 Hardware Client User Guide Copyright © 2001, Cisco Systems, Inc. CISCO AND THE ABOVE-NAMED SUPPLIERS DISCLAIM ALL WARRANTIES, EXPRESSED OR IMPLIED, INCLUDING, WITHOUT LIMITATION, THOSE OF MERCHANTABILITY, FITNESS FOR...
..., Berkeley (UCB) as part of UCB's public domain version of the word partner does not imply a partnership relationship between Cisco and any other company. (0011R) VPN 3002 Hardware Client User Guide Copyright © 2001, Cisco Systems, Inc. CISCO AND THE ABOVE-NAMED SUPPLIERS DISCLAIM ALL WARRANTIES, EXPRESSED OR IMPLIED, INCLUDING, WITHOUT LIMITATION, THOSE OF MERCHANTABILITY, FITNESS FOR...
User Guide
Page 3
... VPN 3002 Hardware Client Manager Browser requirements 1-1 Recommended PC monitor / display settings 1-3 Connecting to the VPN 3002 using HTTP 1-3 Installing the SSL certificate in your browser 1-3 Connecting to the VPN 3002 using HTTPS 1-16 Logging in the VPN 3002 Hardware Client Manager 1-17 Configuring HTTP, HTTPS, and SSL parameters 1-18 Understanding the VPN 3002 Hardware Client Manager window 1-19 Organization of the VPN 3002 Hardware Client Manager 1-22 Navigating the VPN 3002 Hardware Client...
... VPN 3002 Hardware Client Manager Browser requirements 1-1 Recommended PC monitor / display settings 1-3 Connecting to the VPN 3002 using HTTP 1-3 Installing the SSL certificate in your browser 1-3 Connecting to the VPN 3002 using HTTPS 1-16 Logging in the VPN 3002 Hardware Client Manager 1-17 Configuring HTTP, HTTPS, and SSL parameters 1-18 Understanding the VPN 3002 Hardware Client Manager window 1-19 Organization of the VPN 3002 Hardware Client Manager 1-22 Navigating the VPN 3002 Hardware Client...
User Guide
Page 4
... | Add or Modify 9-9 Configuration | System | Events | Trap Destinations 9-11 Configuration | System | Events | Trap Destinations | Add or Modify 9-12 Configuration | System | Events | Syslog Servers 9-13 iv VPN 3002 Hardware Client User Guide
... | Add or Modify 9-9 Configuration | System | Events | Trap Destinations 9-11 Configuration | System | Events | Trap Destinations | Add or Modify 9-12 Configuration | System | Events | Syslog Servers 9-13 iv VPN 3002 Hardware Client User Guide
User Guide
Page 5
...10 General Configuration | System | General 10-1 Configuration | System | General | Identification 10-2 Configuration | System | General | Time and Date 10-3 11 Policy Management Client mode/PAT 11-1 Network Extension mode 11-2 Configuration | Policy Management 11-3 Configuration | Policy Management | Traffic Management 11-3 Configuration | Policy Management | Traffic Management | PAT...| Certificates | View 12-24 Administration | Certificate Management | Certificates | Delete 12-27 13 Monitoring Monitoring 13-1 Monitoring | Routing Table 13-2 VPN 3002 Hardware Client User Guide v
...10 General Configuration | System | General 10-1 Configuration | System | General | Identification 10-2 Configuration | System | General | Time and Date 10-3 11 Policy Management Client mode/PAT 11-1 Network Extension mode 11-2 Configuration | Policy Management 11-3 Configuration | Policy Management | Traffic Management 11-3 Configuration | Policy Management | Traffic Management | PAT...| Certificates | View 12-24 Administration | Certificate Management | Certificates | Delete 12-27 13 Monitoring Monitoring 13-1 Monitoring | Routing Table 13-2 VPN 3002 Hardware Client User Guide v
User Guide
Page 6
... the CLI 14-3 CLI menu reference 14-7 A Errors and troubleshooting Files for troubleshooting A-1 LED indicators A-2 Errors on the system A-3 Settings on the VPN 3000 Series Concentrator A-4 VPN 3002 Hardware Client Manager errors A-5 Command Line Interface errors A-10 B Copyrights, licenses, and notices Software License Agreement of Cisco Systems, Inc B-1 Other licenses B-3 Regulatory Standards Compliance B-9 vi VPN 3002 Hardware Client User Guide
... the CLI 14-3 CLI menu reference 14-7 A Errors and troubleshooting Files for troubleshooting A-1 LED indicators A-2 Errors on the system A-3 Settings on the VPN 3000 Series Concentrator A-4 VPN 3002 Hardware Client Manager errors A-5 Command Line Interface errors A-10 B Copyrights, licenses, and notices Software License Agreement of Cisco Systems, Inc B-1 Other licenses B-3 Regulatory Standards Compliance B-9 vi VPN 3002 Hardware Client User Guide
User Guide
Page 8
Contents-Table of contents viii VPN 3002 Hardware Client User Guide
Contents-Table of contents viii VPN 3002 Hardware Client User Guide
User Guide
Page 9
Tables Contents Table 9-1: VPN 3002 event classes 9-1 Table 9-2: VPN 3002 event severity levels 9-4 Table 9-3: Configuring "well-known" SNMP traps 9-7 VPN 3002 Hardware Client User Guide ix
Tables Contents Table 9-1: VPN 3002 event classes 9-1 Table 9-2: VPN 3002 event severity levels 9-4 Table 9-3: Configuring "well-known" SNMP traps 9-7 VPN 3002 Hardware Client User Guide ix
User Guide
Page 11
Preface About this manual The VPN 3002 Hardware Client User Guide provides guidelines for configuring the Cisco VPN 3002, details on all the functions available in the VPN 3002 Hardware Client Manager, and instructions for a secure (HTTPS) connection. It explains both HTTP and HTTPS browser connections, and how to communicate with Microsoft Internet Explorer or Netscape...
Preface About this manual The VPN 3002 Hardware Client User Guide provides guidelines for configuring the Cisco VPN 3002, details on all the functions available in the VPN 3002 Hardware Client Manager, and instructions for a secure (HTTPS) connection. It explains both HTTP and HTTPS browser connections, and how to communicate with Microsoft Internet Explorer or Netscape...
User Guide
Page 12
... software that the system uses under license from other firms. Additional documentation The VPN 3002 Hardware Client Getting Started manual provides information to install, configure, and use the VPN Client, which lets a remote client use high-level VPN 3002 administrator activities such as who is online only. xii VPN 3002 Hardware Client User Guide With the CLI, you from unpacking and installing the...
... software that the system uses under license from other firms. Additional documentation The VPN 3002 Hardware Client Getting Started manual provides information to install, configure, and use the VPN Client, which lets a remote client use high-level VPN 3002 administrator activities such as who is online only. xii VPN 3002 Hardware Client User Guide With the CLI, you from unpacking and installing the...
User Guide
Page 13
... 526-7208 or, in PDF format. The Documentation CD-ROM is included on the Cisco VPN 3000 Concentrator software distribution CD-ROM. VPN 3002 Hardware Client User Guide xiii Documentation on VPN software distribution CDs Documentation on VPN software distribution CDs The VPN 3000 Concentrator and VPN 3002 Hardware Client documentation is available as a single unit or as an annual subscription. Ordering documentation...
... 526-7208 or, in PDF format. The Documentation CD-ROM is included on the Cisco VPN 3000 Concentrator software distribution CD-ROM. VPN 3002 Hardware Client User Guide xiii Documentation on VPN software distribution CDs Documentation on VPN software distribution CDs The VPN 3000 Concentrator and VPN 3002 Hardware Client documentation is available as a single unit or as an annual subscription. Ordering documentation...
User Guide
Page 14
... Internet application is under warranty or covered by a maintenance contract. Customers and partners can order products, check on Cisco.com to Cisco information and resources at anytime, from the TAC website. To submit your convenience many documents contain a response card... We appreciate your comments to the TAC website: xiv VPN 3002 Hardware Client User Guide Obtaining technical assistance Cisco provides Cisco.com as a starting point for all customers who need technical assistance with Cisco. For Cisco.com registered users, additional troubleshooting tools are available from ...
... Internet application is under warranty or covered by a maintenance contract. Customers and partners can order products, check on Cisco.com to Cisco information and resources at anytime, from the TAC website. To submit your convenience many documents contain a response card... We appreciate your comments to the TAC website: xiv VPN 3002 Hardware Client User Guide Obtaining technical assistance Cisco provides Cisco.com as a starting point for all customers who need technical assistance with Cisco. For Cisco.com registered users, additional troubleshooting tools are available from ...
User Guide
Page 15
..., a Web reference site with definitions for Internet Engineering Task Force (IETF) Working Group drafts on Cisco product capabilities, product installation, or basic product configuration. Wiley: 1998. www.ietf.org for computer, networking, and data communication terms. VPN 3002 Hardware Client User Guide xv Network functionality is down, causing a critical impact to your business operations. Microsoft...
..., a Web reference site with definitions for Internet Engineering Task Force (IETF) Working Group drafts on Cisco product capabilities, product installation, or basic product configuration. Wiley: 1998. www.ietf.org for computer, networking, and data communication terms. VPN 3002 Hardware Client User Guide xv Network functionality is down, causing a critical impact to your business operations. Microsoft...
User Guide
Page 17
Port numbers Port numbers use decimal numbers from 0 to 65535 with no commas or spaces. For example, LOG00007.TXT is a legitimate filename. VPN 3002 Hardware Client User Guide xvii Data formats Filenames Filenames on the VPN 3002 follow the DOS 8.3 naming convention: a maximum of eight characters for the name, plus a maximum of three characters for an extension. The VPN3002 always stores filenames as uppercase.
Port numbers Port numbers use decimal numbers from 0 to 65535 with no commas or spaces. For example, LOG00007.TXT is a legitimate filename. VPN 3002 Hardware Client User Guide xvii Data formats Filenames Filenames on the VPN 3002 follow the DOS 8.3 naming convention: a maximum of eight characters for the name, plus a maximum of three characters for an extension. The VPN3002 always stores filenames as uppercase.
User Guide
Page 19
...version 4.0. Check these settings: VPN 3002 Hardware Client User Guide 1-1 Once the SSL certificate is installed, you configure, administer, monitor, and manage the VPN 3002 with the VPN 3002. CHAPTER 1 Using the VPN 3002 Hardware Client Manager The VPN 3002 Hardware Client Manager is an HTML-based interface...Installing the SSL certificate in the browser; see Connecting to the VPN 3002 using HTTPS on the same private network with a standard Web browser. Browser requirements The VPN 3002 Hardware Client Manager requires either Microsoft Internet Explorer version 4.0 or higher, or...
...version 4.0. Check these settings: VPN 3002 Hardware Client User Guide 1-1 Once the SSL certificate is installed, you configure, administer, monitor, and manage the VPN 3002 with the VPN 3002. CHAPTER 1 Using the VPN 3002 Hardware Client Manager The VPN 3002 Hardware Client Manager is an HTML-based interface...Installing the SSL certificate in the browser; see Connecting to the VPN 3002 using HTTPS on the same private network with a standard Web browser. Browser requirements The VPN 3002 Hardware Client Manager requires either Microsoft Internet Explorer version 4.0 or higher, or...
User Guide
Page 20
...5.0: - In the Security Settings window, scroll down to do not check Warn me before accepting a cookie. 1 Using the VPN 3002 Hardware Client Manager • Internet Explorer 4.0: - In the Security Settings window, scroll down to Scripting. - On the Advanced tab, ...the View menu, select Internet Options. - In the Security Settings window, scroll down to prevent mistakes while using the VPN 3002 Hardware Client Manager. 1-2 VPN 3002 Hardware Client User Guide Click Enable under Scripting of Java applets. • Navigator / Communicator 4.x: - On the Security tab,...
...5.0: - In the Security Settings window, scroll down to do not check Warn me before accepting a cookie. 1 Using the VPN 3002 Hardware Client Manager • Internet Explorer 4.0: - In the Security Settings window, scroll down to Scripting. - On the Advanced tab, ...the View menu, select Internet Options. - In the Security Settings window, scroll down to prevent mistakes while using the VPN 3002 Hardware Client Manager. 1-2 VPN 3002 Hardware Client User Guide Click Enable under Scripting of Java applets. • Navigator / Communicator 4.x: - On the Security tab,...
User Guide
Page 21
...The Manager provides the option of use, we recommend setting your browser (VPN 3002 hardware client) and the VPN Concentrator (server). Minimum = 800 x 600 pixels. • Color palette = 256 colors or higher. VPN 3002 Hardware Client User Guide 1-3 This protocol is known as HTTPS, and uses the https... connect to install an SSL certificate in the VPN 3002 Hardware Client Manager on page 1-17. The browser first authenticates the server, then encrypts all data passed during the session. SSL creates a secure session between the VPN 3002 and your browser. 1 Bring up the browser...
...The Manager provides the option of use, we recommend setting your browser (VPN 3002 hardware client) and the VPN Concentrator (server). Minimum = 800 x 600 pixels. • Color palette = 256 colors or higher. VPN 3002 Hardware Client User Guide 1-3 This protocol is known as HTTPS, and uses the https... connect to install an SSL certificate in the VPN 3002 Hardware Client Manager on page 1-17. The browser first authenticates the server, then encrypts all data passed during the session. SSL creates a secure session between the VPN 3002 and your browser. 1 Bring up the browser...
User Guide
Page 22
... Both Microsoft Internet Explorer and Netscape Navigator support SSL. SSL encrypts all data between client and server at the IP socket level, and is similar.) 1-4 VPN 3002 Hardware Client User Guide We provide separate instructions for Internet Explorer, or skip to Installing the ...installation using Microsoft Internet Explorer 5.0. (With Internet Explorer 4.0, some dialog boxes may take slightly longer to the VPN 3002 using HTTPS. 1 Using the VPN 3002 Hardware Client Manager HTTPS is often confused with or without SSL. For HTTPS to install the certificate from an HTTP ...
... Both Microsoft Internet Explorer and Netscape Navigator support SSL. SSL encrypts all data between client and server at the IP socket level, and is similar.) 1-4 VPN 3002 Hardware Client User Guide We provide separate instructions for Internet Explorer, or skip to Installing the ...installation using Microsoft Internet Explorer 5.0. (With Internet Explorer 4.0, some dialog boxes may take slightly longer to the VPN 3002 using HTTPS. 1 Using the VPN 3002 Hardware Client Manager HTTPS is often confused with or without SSL. For HTTPS to install the certificate from an HTTP ...
User Guide
Page 23
...the browser, select Open. If you do reinstall it . Figure 1-4: Internet Explorer Certificate dialog box 4 Click Install Certificate. VPN 3002 Hardware Client User Guide 1-5 you must now install the certificate. To immediately install the certificate in Internet Explorer. The browser starts a... a location; Installing the SSL certificate in your browser You need to install the certificate. A few seconds after the VPN 3002 Hardware Client Manager SSL screen appears, Internet Explorer displays a File Download dialog box that identifies the certificate filename and source, and ...
...the browser, select Open. If you do reinstall it . Figure 1-4: Internet Explorer Certificate dialog box 4 Click Install Certificate. VPN 3002 Hardware Client User Guide 1-5 you must now install the certificate. To immediately install the certificate in Internet Explorer. The browser starts a... a location; Installing the SSL certificate in your browser You need to install the certificate. A few seconds after the VPN 3002 Hardware Client Manager SSL screen appears, Internet Explorer displays a File Download dialog box that identifies the certificate filename and source, and ...
User Guide
Page 146
... Connects the tunnel. This field is not displayed when the VPN 3002 is enabled. You can do so. VPN Client Type The type, or model number, of the VPN 3002 Hardware Client system software image file. If an engineering change requires a bootcode upgrade, only Cisco support personnel can update this VPN client. Disconnect Now Disconnects the tunnel. Assigned IP Address The...
... Connects the tunnel. This field is not displayed when the VPN 3002 is enabled. You can do so. VPN Client Type The type, or model number, of the VPN 3002 Hardware Client system software image file. If an engineering change requires a bootcode upgrade, only Cisco support personnel can update this VPN client. Disconnect Now Disconnects the tunnel. Assigned IP Address The...