We have implemented Cisco Protectlink Web Protection on our network.
By choosing the categories that we want to block everything worked well until we have noticed that when users try to browse social networking sites like [URL] this site is blocked but when users type in [URL] users that go directly to facebook.
and also with youtube if they add https:// users can then bypass our network block.
Is this somewhat a bug on the Protectlink Categories blocking?
It took me some time to get the load balancing (RV042 V3, v4.0.4.02-tm) working (my provider ist not returning any packets by the gateway ip on a ping). No I am ruinning into a performance issue. After activating PrtotectLink it takes a few hours or one or two days and the RV042 is reacting very slow. I need to reboot the RV042 and everything is ok again for some time ....Deactivating ProtectLink does not work only rebooting speeds the system up again.ProtectLink ist useless this way, anything I can do to get ProtectLink working?
We have successfully activated Protectlink Web but as we have observed that when we try to restart our router, Cisco Protectlink status is active but then when you look on license information on platform the status just states there is "Waiting...."Web Protection no longer working..In order for us to resolve this. We have to restore our router to factory default and then activate Protectlink and set all the settings again..As I have said this only happens when we restart our router?
I have activated Protectlink Web. But today i started to get "router is busy" in all pages, so we restarted the router. That problem was solved but now the the web Protection is no longer working. It says activated but licence status says waiting.
A client of mine has an RV042 and wanted a trial of the ProtectLink Web content filtering. The trial has expired but the RV042 is still blocking websites such as Facebook. They have requested a user to have access but I can no longer modify the ProtectLink settings.
We have in our business some RV042 with Cisco ProtectLink Webfiltering. Until now we do not had any problem of activate the licence and it works has we axpected.
But the two last time that we went through the install procedure outlined in the ProtectLink Gateway install manual, the both RV042 do not run the service, we do not know why... So we have decide to stop buy and sold them until we find a solution.
The firmware install are the last one.
When I try to activate the product again, it shows as "Already registered". Trend has no idea why it won't work. They said Cisco sold the license, so try their support.
I am reviewing the Firewall Log's and the block ProtectLink classifications are not matching up to what I have set on the ProtectLink settings.For example the log side says:Oct 21 07:02:08 2011KernelThe URL(facebook.com) you(10.0.5.17) are attempting to access has been identified as Dialers site and has been blocked. But in the ProtectLink side it does not have any hits on the Dialer classification but instead incremented the counter in the Social Networking classification as it should. I was hoping to use the logs to quickly determin which real classification to either turn off for false postivies as I get used to which ones I should turn on and off for our environment.
Just a few weeks ago I purchased a rvs4000 router. On that small business device is a product called protectlink. To get an activation key, you need a registration key first. That is normal in the package. However, my wify like to cleanup up and throws stuff away that she should not do. So, I lost the registration key.
It is impossible to key a new registration key. The webstore does not have them. They are in the package and will not open an other one. Cisco (if you can get passed the ...you don't have a support contract...go away statement) does not even know that they have this product. Registration keys, never heard of it. But you get the normal ... go to the webstore or trendmicro.... And that after the statement, we don't know that product. How do you know that this is a trenmicro piece of software.....
getting a registration key for a cisco small business router rvs4000 to obtain an activation code for the cisco/trensmicro protectlink product.
We have just buy a Cisco Small Business Router, model RV082. I need to enable the content filtering, but we just realized that this equipment does not filter HTTPS urls, even with the solution "Cisco ProtectLink Web" the equipment does not filter HTTPS urls.
For example, if I type on my browser just [URL], the access blocked, but if I type HTTPS:[URL], the access is allowed!Is there any way to block urls with HTTPS?
My customer's Protectlink license is set to expire in 2 weeks. I would like to enter the activation code I just obtained, but cannot find the link. When I go to the license page in the router, there is a link to renew, but that just takes me to the website to enter the new key code, then receive an activation code. There is not howver any link to enter the activation code. I assume that once the license actually expires, the activation link will then show up, but there must be a way to get to this page ahead of time.
I have upgraded to the new RV042G to take advantage of the gigabit Ethernet speeds and to prepare for when our ISP upgrades our bandwidth. I currently use the RV042 with Protect Link enabled to filter out various categories from our network traffic. I noticed that this feature is not included with the RV042G.
Is this something Cisco will decide to add back in later? In the meantime, how to block content on the network? The basic URL and keyword filter will not meet our needs, since it is much easier to let a service such as Trend Micro manage what is blocked in the categories they offer.
I was looking for a small business router that has VPN support and dual WAN support for load balancing. Upon reading reviews, I think RV042/RV042G is a good choice. Now am thinking if it supports intervlan/ router-on-a-stick configuration?
I connected the DSL (WAN1-Internet) port in and the Cisco RV042 was able to get an IP automatically. I tested the connection and it works just fine. Then I connect the Cable Modem-Comcast (WAN2-DMZ/Internet Port) in and I have the RV042 automatically optain IP address. But it just says 0.0.0.0. I've tried release/renew and that does nothing. Also, when I connect the 2nd Internet connection the Internet goes down. The only way it goes back up is when I disable under the PORT MANAGMENT setting.
All the settings have been kept to the default.How can I get the router to obtain an IP address from the Cable Modem-Comcast (WAN2 DMZ/Internet Port).
We have an Cisco RV042. We need to setup a VPN with a business partner who is already using our current IP scheme on another VPN with another client. They have asked us to NAT our IP's from 192.168.25.x to 192.168.245.x
I can't seem to figure this out on this router. I have done it on a Sonicwall and Watchguard, but can't seem to get it to work on the RV042.
I have setup the VPN and the One-To-One NAT. The tunnel will connect (using the 245.x IP as our local IP on the VPN setup), but no traffic will pass through.
i was planed to make a vpn over rv042 so i get the rv042 connected behind a thosmon 456(configured as a bridge) and 1 static ip ... and i configured the vpn and worked great ...but due to some circumstance i get a package of 6 ips insted of the old ip , so when i try to configure the router with the ISP they but the wan ip 10.232.x.x and told me that an internal ip from there lan ... and give me the 6 ip of 196.x.x.x to use as 1 for internal interface for the rv042 and 5 for the pc's,now the vpn not working anymore...notice: when try to configure the vpn tunnle in the local securty setting i mark the ip only and the ip that abear is the wan ip 10.232.x.x but i can't ping that ip beside i can ping the internal ip of the router 196.x.x.50does rv042 can support static and virtual ip inside the lan |! can i configure the thomson as pppoe and use one static ip from 196.x.x.x as wan ip for it ... and use anther 196.x.x.x ip for the rv042 to get access from outside and connect the lan to the rv042 with internal ip 192.168.x.x ...so i can access the vpn from outside .....and can connect the device i need to use static ip to the thomson ...
Firmware v4.0.4.02 has a nasty bug in the VPN section. If you switch to "IP by DNS Resolved" (yes, it says "Resolved" instead of "Resolution". Gotta love all the Engrish in the RV042!), it will automatically populate the field with "@yourdomain.com". This will cause the VPN to not lookup the proper IP address. Simply deleting the atmark after it populates will fix the problem.
Let's see what happens when we validate a Cisco RV042 webpage:
Errors found while checking this document as HTML 4.01 Transitional! Result: 353 Errors, 1 warning(s)
i am trying to make a simple Site to SiteVPN between two offices, one has Cisco ASA and one has RV042 router.when traffic initiated from ASA side, i keep getting this message in Debug and tunnel wont come up . [IKEv1]: Group = A.A.A.139, IP = A.A.A.139, Queuing KEY-ACQUIRE messages to be processed when P1 SA is complete.Apr 26 00:15:53 [IKEv1 DEBUG]: Pitcher: received a key acquire message, spi 0x0
whereas if traffic initiated from RV042 side, i keep getting this message in debug and tunnel wont come up.
Apr 26 00:43:44 [IKEv1 DEBUG]: IP = RV.RV.RV.139, Oakley proposal is acceptableApr 26 00:43:44 [IKEv1 DEBUG]: IP = RV.RV.RV.139, IKE SA Proposal # 1, Transform # 0 acceptable Matches global IKE entry # 6Apr 26 00:43:44 [IKEv1]: IP = RV.RV.RV.139, Connection landed on tunnel_group RV.RV.RV.139Apr 26 00:43:45 [IKEv1]: IP = RV.RV.RV.139, Connection landed on tunnel_group RV.RV.RV.139Apr 26 00:43:45 [IKEv1]: Group = RV.RV.RV.139, IP = RV.RV.RV.139, Freeing previously allocated memory for authorization-dn-attributesApr 26 00:43:45 [IKEv1]: Group = RV.RV.RV.139, IP = RV.RV.RV.139, PHASE 1 COMPLETEDApr 26 00:43:45 [IKEv1]: IP =RV.RV.RV.139, Keep-alive type for this connection: DPDApr 26 00:43:45 [IKEv1 DEBUG]: Group =
I have a RV042 router (Ser#: NKS10462300, HW V3) running Firmware version v4.0.2.08-tm (Jan 14 2011 22:08:38) set up as a gateway. Right after it boots I am able to long into its web interface but shortly after that if I try to log into it I go through a very log time out while the web page is waiting the router to respond and then eventually IE comes back and says it 'cannot display the web [age'.
I have a Cisco RV042 VPN Router and I have added a group vpn, but when I am trying to connect I got an error that the remote vpn server isn't responding.
Here's my log:
2013/01/15 12:24:53 [STATUS]OS Version: Windows 7 2013/01/15 12:24:53 [STATUS]Windows Firewall Domain Profile Settings: ON 2013/01/15 12:24:53 [STATUS]Windows Firewall Private Profile Settings: OFF 2013/01/15 12:24:53 [STATUS]Windows Firewall Private Profile Settings: OFF 2013/01/15 12:24:53 [STATUS]One network interface detected with IP address MY HOME IP
If I am trying to connect the status of the vpn user in the remote interface is "online".I have deactived my firewall at home and at the server for testing purposes.
I am looking to configure RV042 for VPN access to local machines and Win 2008 server. The story: Had issues with remote printers being created for clients logging into old Linksys RV042 with Linksys VPN software. First Tech exposed server without security, and it had to be removed as it was being attacked, but did not fix printing issue. 2nd tech could not get VPN to work after 1st tech. 3rd tech, 4hours, and I got that the router is a piece of ... So I'm out over 1000, and not able to have a simple router set up. The present situation. New RV042 with firmware V4.1.1.01, using Cisco VPN client 5.0.07.0410, most XP 32 bit machines coming into network, one 64 bit win 7. My clients have been unable to access their data for too long.
I'm trying to set up 2 subnet with two RV042 routers. One router will act as a gateway and both WAN ports will be used by two different isp connection. The first router (gateway) LAN IP will be 192.168.0.1/24. I would also like to set up another router behind the gateway with with separate subnet 192.168.1.X/24. And I would like clients on the 192.168.1.x subnet to use the internet through the gateway router and clients on the 192.168.0.x subnet to access resources on the 192.168.1.x subnet. Am I able to do this with two RV042?
The issue is when I am using PPTP the router seems to die, not every time but I would say about once a week now. I am the only PPTP user, simply using RDP. A few hours into an RDP session the PPTP connection drops and cannot be re-established, or quickvpn, nothing. Routing still works (somewhat, high latency) locally.
When I've checked the logs both times I see:
TimeEvent-TypeMessageSep 3 17:07:56 2012KernelOut of memory: Killed process 14354 (pppd). Sep 3 17:07:56 2012KernelOut of Memory: Kill process 14354 (pppd) score 177 and children. Sep 3 17:07:56 2012KernelOut of memory: Killed process 14367 (sh). Sep 3 17:07:56 2012KernelOut of Memory: Kill process 14354 (pppd) score 234 and children. Sep 3 16:46:41 2012KernelOut of memory: Killed process 14330 (pppd). Sep 3 16:46:41 2012KernelOut of Memory: Kill process 14329 (pptpctrl) score 134 and children. Sep 3 16:46:41 2012KernelOut of memory: Killed process 14324 (pppd). Sep 3 16:46:41 2012KernelOut of Memory: Kill process 14324 (pppd) score 177 and children. Sep 3 16:46:40 2012KernelOut of memory: Killed process 14328 (sh). Sep 3 16:46:40 2012KernelOut of Memory: Kill process 14324 (pppd) score 234 and children. Sep 3 15:36:15 2012KernelOut of memory: Killed process 14187 (pppd). Sep 3
I have an RV042 connected via VPN to the office (to a LinkSys DFL-700). Sometimes the VPN is dropped and never activates again. In this state, if I try to connect to the WEB interface, I can log in, but the router hangs at the login screen. I have to power recycle the router to make it work again.
Updated to latest firmware 4.2.1.02 for V3 hardware. The funny thing is that services from the WEB routed through to local IP adresses on the lan is still accessible. I have setup PPPT VPN on the router, and that also fails to work.
Is there, as a workaround, any possibility to access the routers reset page or access via TELNET to reset the router? This migth be useful, when I'm out. (I have a backup solution to access the local network at home).
I have just purchased the RV042 and while it is working great on WAN1 over Xfinity/Comcast broadband, I'm unable to get it working with my AT&T DSL for WAN2. I am planning on running this in failover mode - not load balancing.
The DSL modem it is connected to is a SpeedStream (hooking up laptop directly works etc. etc.). The SpeedStream is set to PPOE authentication passed in via the computer (in this case the RV042). On the RV042 side, I set it to use PPOE, using the credentials as given my AT&T DSL. The DNS servers are set to the ones recommended
Yesterday I upgraded my SG300-10P to firmware 18.104.22.168. I was curious about the new SYN Protection feature, but it seems to do nothing on my installation.
The switch is running in Layer 2 mode. I have ACLs in place and DoS prevention is not enabled. I also tried clearing ACLs and enabling DoS prevention. As I understood the Admin Guide enabling DoS in the Security Suite Settings is not necessary for using the SYN Protection.
In my firewall I see about 300 pps with SYN flags only arriving. What "they" do is sending me SYN packest to port 80 from forged IPs, so that my system should send SYN-ACKs to the victim system. In this case it is the Arab Bank. They are down at the moment...I think that is called a spoofed SYN flood attack.
So I thougt the SYN Protection feature should exactly solve that problem but it does not and does not show any "Last Attack" entries.
If I put a SYN filter in place it works, even if I put SYN Rate Protection in place. But that is just a dirty workaround. My firewall blocks those SYN packets with a SNORT rule.
i have setup vpn connection (client-gateway) using quick vpn ( default cisco) and third party like thegreenbow. connection is ok (established) but why from outside I can only ping to IP LAN PC , if I ping ip server the result is request time out(failed). I have been trying do this to 3 server ( windows server 2003 as OS).four your information I have made firewall "OFF" on all of those servers. the result is same, failed.
I'm tryig to put a computer into the DMZ and then access it from computers on the LAN using a local IP address. My reason for doing this is that I'd like my DMZ computer to be a locked down web server (just ports 80 and 443 open to the outside), but I need to be able to have more access to it from inside my LAN (e.g. I want to be able to SSH into it from the LAN).
Thus far I've been able to get a computer set up in the DMZ and can access the Internet from the DMZ computer. And I can access the DMZ computer from the LAN computers using the public address for the DMZ computer. But I can't access the DMZ computer from the LAN computers using a private address for the DMZ computer. see the attached file for a diagram of our current settings. A few descriptions:
- Verizon provides us with a number of static IP addresses, i.e. 22.214.171.124-12 (note these aren't actually the addresses, but representative).
-- In the RV042, I have the following configurations made: - Setup > Network > LAN Setting - Device IP Address = 10.4.20.1
I have a static DSL connection and my ISP is giving me 4 static IP's. I have connected my RV042 to the DSL modem and I have now 1 subnet at 192.168.0.0. What I want to create is a WEB server/ Email server, but to sit on a different subnet - 192.168.5.0. For now I have connected the server to the DMZ port, but I am unable to to access it from WAN, only from LAN. How to configure properly the 2 subnets (192.168.0.0 and 192.168.5.0) and how to forward my static address to the server which I which to be on the 192.168.5.0.