Cisco Routers :: Guest Wi-Fi Using RV180 And Aironet 1130AG?
Feb 12, 2013
How would I configure a "guest" wireless network, with a different key/password, that uses a different subnet than the existing network?
We have a simple 192.168.1.x subnet currently, with the Aironet as our only AP. The Aironet support a "guest" wireless function, but how do I make that work with the RV180?
With this customer they have 4 floors with on each floor a Cisco Aironet 1130AG. At the moment they are using WEP as a protection with a really long key. The users find this annoying, but I am more concerned about the security perspective. So I want to implement WPA2 with a shorter key for the people to remember. On one floor, I also want to add a public network when other people want to connect and just need internet access. How to change the current set-up and regarding the security and implementation. If all of the Access Points could work togheter and just be 1 wireless network. I don't know if this is possible and how to do it? For the public network I know there also need to be some changes in VLAN's. The firewall is a cisco ASA5505.
At the moment I am running this configuration: I tried setting up this with the GUI, but it doesn't look like the configuration at the moment is shown in the GUI or maybe I am just looking in the wrong places. [code]
I am trying to find a way to login to our wirless access point. I have a Aironet 1130AG series wireless router. I have the ip address. It is a POE device so i dont have a power supply for this device. When it is on I can see the Wireless Network but the passcode has been lost and no one knows it. Is there a default IP address for this equipment? There is an Ethernet port for a console but without the power supply i cannot access it.
The 1130ag was the LAP model but I upgraded it to run in autonomous mode. My understanding is that it cannot assign IP addresses but I just want that confirmed. It is not connected to a WLC nor a server that can do DHCP.
How can I enter into "interface configuration" on Aironet 1130AG, AIR-LAP1042N?When I put following commands in enable conf tinterface Dot11Radio1 but, it fails and I cannot enter into "interface configuration".How can I do this ?The reason why I enter into conf tinterface Dot11Radio1 because I want to disable cdp via CLI ( serial console).
We have a guest wireless network using 1130AG Access Points. Is it possible to allow devices on this network access to an Internal IP? I know that kind of defeats the purpose on the guest network, but we'd like to give access to internal email to these devices. Currently this does not work because you cannot loop back into the network to gain access (out the firewall and right back in the same port).
I have installed an Aironet 1130AG and utilized a power injector for the power source. I have the settings configured correctly in IOS, but the AP takes about 7 minutes to come on (illuminate LED status lights) once the Ethernet cable is connected. Is this 7 minute power-on delay normal when using POE? I am used to the instanteous "on" that usually comes with Cisco products being connected directly to the AC adapter.
I have setup an aironet 1262 with my ASA 5512 and configured it as an access point. I would like to add an additonal network to the ap for guests to use but I would like to segregate the traffic and only allow it to the internet. I am not sure how to start this and go about setting the routes, security and address scope.
I have a Cisco Aironet 1240AG Access Point and I am trying to setup a guest network that is secure and limited in bandwidth utilization. I see an option under security > SSID Manager on the web interface to select an interface of Radio0-802.11G, Radio1-802.11A or both. Can I put the guest network on the Radio1-802.11A and make it more secure/bandwidth limited or does this option not matter?
I have an RV180 VPN router.I try to enable the VPN users with PPTP or QuickVPN but is not working.For PPTP sometimes my windows 7 connects to the router, sometimes doesn't connect with a random error message.When it connects, the windows 7 from outside the lan can see the computers from inside the lan but the computers from inside the lan cannot see the windows7 one. This is random also. When i succed to connect, from that computer, the internet is not working anymore.I tried to set the VPN in the same subnet as lan, i tried with different subnet. Is not working.I updated the last firmware. The same.Restore factory settings couple of times, the same.
I noticed if you add more than 10 access rules to the Access Rule table, you are unable to reorder past the first 10.Steps to reproduce:Create 11 rules of the same stream direction, outbound or inbound (...I found the bug with outbound, did not test inbound).try to reorder one of the first 10 rules to the end of the list, either by entering "11" manually, or by pressing the down arrow.System responds that "11" is an invalid number, or that the rule cannot be moved.This issue is not reported in the "Known Issues" section of the release notes for 1.0.1.9.
Which vpn client to use on os x ? (the one included in os x or another?) Which VPN configuration to use on RV180 ? and Which ports to open on RV180 Firewall ? (or any other parameters)
In both cases above, after I started to suspect QOS, I entered a narrow IP range to test and then a MAC to test. Using a VLAN seems to work fine and generate no errors - even a VLAN for the same associated host(s).
I have a support case open about this - didn't get too far yet, but now with a better repro, maybe they will.
I currently have an RV180 in a small business set-up and curently being accessed remotely by laptops (Quick VPN) and Ipads/Android ICS tablets (PPTP). All is working well but I've become concerned about the security risks of PPTP and would like to shift the tablets to IPSec.
1) For a small business are the PPTP risks real?
2) What are the alternatives for Android ICS? I can't find a Quick VPN client for Android.
3) I can't get the core IPSec VPN in Android to connect to the RV180? Is this possible?
I have RV180 configured with two VLANs. First VLAN is untagged and second VLAN is tagged. The purpose is two have two subnets, with the second subnet used for guest access. Both VLANs have DHCP server enabled. First VLAN is 192.168.1.0/24 and the second VLAN is 192.168.2.0/24, When I connect a computer with untagged Ethernet interface, it gets an IP address from DHCP server on the first subnet i.e. 192.168.1.100 and it can successfully access Internet. When I connect a computer with tagged Ethernet interface (I am using VLAN ID 10), it gets an IP address from DHCP server on the second VLAN i.e. 192.168.2.100. So far so good. I can successfully ping hosts on the Internet i.e. ping www.google.com. But I cannot access Internet from the web browser. I captured Wireshark trace and here is what I see...
1. TCP SYN. Source IP 192.168.2.100, destination IP A.B.C.D. Ethernet frame has VLAN tag (VLAN ID 10) 2. TCP SYN ACK. Source IP A.B.C.D, destination IP 192.168.2.100. Ethernet frame has VLAN tag (VLAN ID 10) 3. TCP ACK. Source IP 192.168.2.100, destination IP A.B.C.D. Ethernet frame has VLAN tag (VLAN ID 10) 4. TCP Data. Source IP 192.168.2.100, destination IP A.B.C.D. Ethernet frame has VLAN tag (VLAN ID 10) 5. TCP Data. Source IP A.B.C.D, destination IP 192.168.2.100. Frame is untagged
The problem is at #5. Packet came back from the Web Server. RV180 properly NATed it to the local IP address. But it did not add VLAN tag.
I just recieved a new RV180 yesterday and it will not connect to my switch. Router was updated to the newest firmware, reset to factory settings. I did change the ip and ip range. Router works fine with one computer attached direct. As soon as I connect my sf300-24P to it, the WAN and LAN lights all light up and then go out. Only the WAN will light back up. I have no connectivity to the router. I plug the laptop to the router directly and no LAN lights come on and can not see the router with arp -a.
I'm considering upgrading a small business to the newly released RV180 or RV180W.Does the RV180 series support 6rd (IPv6 rapid deployment?).I see 6rd documented in the other small business routers (e.g. RV110), but I can't find it in the RV180 documentation.
I'm having issues getting QuickVPN to connect. I think it's an issue pinging the gateway but I'm not 100% sure. We are using Comcast Business, I have placed the RV180 in the DMZ. The setup looks like this: Internet -> Comcast router -> RV180 (DHCP) -> rest of network.
Is there a guide to setup a VPN connection using this router? I've follow the setup guide provided by cisco but I'm having issues. When attempting to connect using the quick vpn client, I get error messages.
Any news on a new firmware for the RV180? I have the most recent version but it still has lots of bugs. IPSec needs polishing. In addition the Logging functions don't work well. I can't send to a syslog and when I try to email the logs I get a email saying there is no data even though several pages of enteries are visible in the web GUI. I've checked the profiles and they are correct. I even tried using just the 'default' profile but no luck.
I have a Cisco Small Business RV180 and I have several VPN users configured. IPsec between my home router (also an RV180) and work router (router in question) is working fine, several PPTP users working fine and 1 QVPN user that works as well. I set up another qvpn user and it didn't work. I went back into the router to check and make sure I hadn't goofed something up and saw that I had 8 lines, 1 and 2 were the QVPN users and 6 other PPTP users, however, the "pages" footer (for lack of a better word) only displays 1 -5 of 5 instead of the 1-8 of 8 I would expect it to show.I dumped the cfg file and opened it up, all 8 user configurations show up. One was my user account which showed negative numbers for the logon time, something like -1day -hours -minutes -sec, so I thought that that might be locking up the router or something so I deleted my PPTP account but it didn't allow the new user access. I deleted all PPTP accounts and no luck there either.I'm running firmware 1.0.2.6.
I am contemplating replacing my Juniper Netscreen 5GT with this new RV180.
serial number 161303LB RVC180 V01
However, it will not connect to my ISP (DSLExtreme) using the same settings I have been using for multiple years. DSLExtreme is using AT&T DSLAMS, as you likely know, and I am unaware of anything unique about how they serve DHCP?
The Cisco wizard sits on the WAN configuration check forever, and never connects. I have rebooted it and allowed it to sit for fifteen minutes trying. I think that is enough.
The 5GT WAN interface is configured for "DCHP Client" and that is how the RV180 is configured.
It is a standard 6MB DSL line, I have tried both the existing cable, as well as the provided one to connect to the D-Link 2320B modem/bridge, which, as I indicated, syncs almost instantly with the Netscreen. No difference when the cables are swapped.
My brand new RV180 seems not to be able to exceed 1.1 MB/s WAN download speed. Using a simple Linksys WRT-320N I used to have 5-6 times this speed. Value is with default settings, various sources (HTTP/NEWS downloads). Trying to improve this wit QoS-settings dows not improve this in any way.
The RV180W would not connect to an AT&T DSL connection using PPPoE (modem in bridge mode), or behind the DSL Modem/router with the DSL modem/router providing a dynamic IP to the RV180W or a cable modem (TimeWarner Roadrunner dynamic IP). I upgraded the firmware yesterday and now the RV180W will connect to a dynamic WAN IP, but it still will not connect using PPPoE.
I have also noticed the admin interface is only accessible about 75% of the time. When going to 192.168.1.1 the login prompts either don't come up or if they do, after logging in, the screen never fully loads after that. I have to reboot the router to get it to work.
Also, the router has not yet pulled DNS from either the DSL or the cable modem. I had to manually enter those addresses.
I've been trying to connect L2L between RV180 and ASA5505 but no succeed.I can do RV180 to RV180 l2l with one of it on Aggresive mode. working configuration sample of RV180 L2L ASA5505?
My RV180 does not route properly between LAN and WAN through my PPPoE account. I am able to ping public IPs directly from the RV180 (through the diagnose section) but can not do it from any PC on LAN. The exact same configuration works perfectly well with a Linksys WTR610N. I upgraded formware from 1.0.0.30 to 1.0.1.9 but that did not make any difference.
The only time the RV180 will route is right after I reset to factory defaults and re-enter PPPoE account name and password. If I then reset my modem or the RV180, the RV180 does not route anymore between WAN and LAN even after several minutes and even though I can ping public IPs from the RV180.
My work laptop uses a Cisco AnyConnect VPN Client (Software Version 2.5.2006). The connection protocol is DTLS.I recently upgraded to a Cisco RV180 at home at it is running the latest software version (1.0.1.9).
Since the RV180 went into service the work laptop will connect intermittantly. Usually email works but web browsing and and other services do not. It is slight strange behaviour- and seems to defy what a VPN should do......
The behaviour is very repeatable. For example from the customers office the laptop connects perfectly via VPN and if I swap back to an older inferior make of router at home VPN also works normal without changes to the laptop configuration.
I work for a large company (70,000+ employees) and we use "standard" builds so altering the laptop configuration is not really an option.
It seems to me that the RV180 doesn't support the DLTS VPN connection (indeed DLTS passthrough isn't an option in the VPN passthrough list) and is possibly blocking some incoming packets on the WAN interface.
I haven't yet tried a firewall rule to allow a DLTS (or UDP perhaps?) connection back in from the WAN side (obviously from just the IPs at my work end) but this is the only option I can think of to make this machine connect "correctly".
This week, I replaced a netgear FVS318G with a Cisvo RV180, firmware 1.0.2.6. I have a very limited knowlege of routers and protocols, mostly from exposure as a home user. My goal is to define firewall rules on my RV180 that define when my tween-aged kids can and cannot play on X-Box live, as was the case on the FVS318G. I am aware that X-Box has several port ranges. Specifically, I have defined the following for one XBox port range to always block, as an example:
[code]...
A similar rule on the FVS318 would block XBOX (and also on a schedule), but this is not the case on the RV180. I guess I don't uderstand how to correctly implement rAccess Rules on this device.
I have 2 static IP addresses that I'd like to point to 2 corresponding servers in my LAN. I've followed the Access Rule and One-to-One NAT instructions as best I can (screenshots of each for one of the static IP scenarios attached), but no luck. The static IPs bring the outside/WAN user to the RV180's admin login screen.