Cisco Routers :: RV042G Multiple WAN / Secondary IP Addresses
Oct 25, 2012
We have just setup a new RV042G firewall. The customer has multiple public IP addresses and we need to allow RDP access for at least 2 of the Public IP addresses. I only see a way to open ports for the one IP assisgned to the WAN. I temporarily did a one to one NAT for the second public IP to NAT to the private IP but that pretty much opens everything which is not ideal from a security standpoint. How can we setup multiple IP addresses on this firewall?
View 4 Replies
ADVERTISEMENT
Oct 8, 2011
I have an unusual deployment scenario which may require the use of a SRP-521W, the scenario is as follows:Temporary Setup:Cisco 857 As the ADSL router until Ethernet Hand-off is installedMultiple IP addresses delivered on the ADSL WAN serviceCisco 857 put into Bridge Mode and connected to SRP-521W WAN portCisco 521W handles the Authentication and RoutingCheck Point Firewall System connected to SRP-521W LAN-1Check Point Firewall has WAN IP 203.XXX.XXX.XXXCisco UC-540W Connected to SRP-521W LAN-2Cisco UC-540W has WAN IP 203.XX.XX.XX If you understand the above scenario, I am curious if this can be done and if so how? I need to keep the networks totaly separate and the only thing they would have in common is the Cisco SRP-521W.It should also be noted that the SRP-521W Is being used because the ADSL service is only temporary whilst the Fibre Build is completed and the carrier provides an Ethernet Hand-Off, then the Internet service will change to this type of presentation and the ADSL router will be relegated to the dark world of loneliness.I have gone through the router and have been playing around with the settings, the issue Is I have nothing in the LAB work up that can allow me to replicate this environment and test it before deployment... So, how to reduce the amount of trail and error I have to encounter to get it to work.
View 5 Replies
View Related
Mar 11, 2013
If there are any small business routers that offer one-to-one NAT? I have several public IP addresses assigned to me by CenturyLink. I have two servers that provide email and web hosting for two different domains. I want to put the client machines on one VLAN (VLAN Z) and assign it a public IP address (to keep server traffic separate). I want to put each server on its own VLAN (VLANs X & Y) and assign each server its own public IP address. I need the router to be able to provide a firewall and port forwarding for each VLAN. I also need to be able to route traffic between VLANs so the clients on VLAN Z can access their email and the websites on VLANs X and Y. I also need to be able to route DNS traffic between VLANs so each server can provide name resolution for their respective domains.
So, is this possible with a small business router or do I need to look at something different? I'm fairly certain this configuration is not possible with my current Cisco RVS4000. What it boils down to is I need a router that is capable of having multiple public IP addresses on the same interface and to forward those public addresses to private VLAN subnets. This would be one-to-one NAT if I understand it correctly..
View 5 Replies
View Related
Aug 22, 2012
The client has a Cisco RVS4000. There are 3 Internet devices need to be accessed from the outside and will use one public IP for one device. I don't see any options to setup on Cisco RVS4000 to do 3 NATs. If Cisco RVS4000 doesn't work in this situation, which router will do?
View 1 Replies
View Related
Aug 3, 2011
I have a customer that has an RSV4000 Router. The customer has also purchased a block of 5 usable public IP addresses. I need to be able to assign these public IP addresses to printers either by configuring a static IP on each printer directly or thru IP mapping or some other method. Does the RSV4000 support using multiple public IP addresses and if so what configuration is needed in the router for the printers to be seen by the outside world.
View 2 Replies
View Related
Oct 6, 2011
if possible with the RV042.Primary External IP address uses port forwards for some ports, all okay.I would like to have other external ip addresses assigned to machines on my lan.Basic host multiple web servers, on different IP addresses, using port 80. [code]
From what i am reading, it looks like the RV042 can do this, but I am not real clear what my rules should look like.
I would think my high priority rule for each external IP address would be to deny all traffic first for each machine on the lan.Then create one entry with source 202.x.x.2 port 80 -> 192.168.168.2 ?
How should I set my rules to do this, and what settings should I have on the Nic of the second machine?
View 3 Replies
View Related
Mar 27, 2011
I have an ADSL connection and have configured the PPPoE subinterface on WAN1 (ADSL) this connection has a static IP, and I know that the ISP gives that to me through DHCP however I have 4 or 5 additional IP addresses also provided to me on that same link, and they are not given to me via DHCP.
How do I configure this router to have multiple fixed IP addresses on a PPPoE interface?
I also need to port forward some ports for each of the IP's but I assume this will be easy after i have the IP addresses setup.
View 4 Replies
View Related
Sep 11, 2011
I am trying to configure a BT Business ADSL Router (BT2700HGV) to work in bridge mode in front of a Cisco RV120W router and cannot get this to work.I have followed numerous posts I have come across in configuring the BT router for bridged mode and this has been configured as follows:
ATM Encapsulation - Bridge LLC
DSL and ATM - VPI=0, VCI=38 (also tried VCI=35)
ATM PVC Search - Disabled
Connection Type - Direct IP (DHCP or Static)
Disable Routing - Yes
There are also some other options on the same configuration page for 'Broadband IP Network' (which I have left on DHCP) and also a 'Public IP' which has been left blank. After setting the above options this removes the LAN DHCP configuration, the PPPoA logon details and sets the internal IP address of the BT router to 192.168.1.254.
My understanding of 'Bridge' mode is that this router will now act simply as a modem and configuration details such as logon details and WAN IP address information are configured using the Cisco RV120W router?The configuration of the Cisco router is as follows:
Internet Connection Type - PPPoE
Username and Password set
Authentication Type - Auto-Negotiate (options here are PAP, CHAP, MS-CHAP and MS-CHAPv2)
Routing Mode - Router (Other option is 'Gateway (NAT))' - I have tried both options
The WAN interface on the Cisco router is connected to one of the LAN ports on the BT router. The 'Broadband' light is on the BT router but the 'Internet' light isn't. The WAN status on the Cisco router is 'Connecting'. I am sure I am missing something simple.We have been assigned a range of static IP addresses from BT so am trying to get these working too (x.x.x.24/29 - 5 usable statics), another option available (other than PPPoE) for configuring the WAN interface on the Cisco router is a 'Static IP', not sure if this is the correct option but have tried messing with it, I have tried assigning a static IP from the range given to us (.30 - the router address specified by BT) along with the subnet mask, however don't know what to put as the default gateway, would this be the peer address (but assume that would change anyway), in any case, using the 'Static IP' option does not give an option to supply the BT logon details which I assume is required?
In bridged mode, what is the peer address assigned to, the BT router or the Cisco router?Does the BT router need to be configured with a public IP address?
View 2 Replies
View Related
Oct 8, 2012
In setup for old RV042 (V1), when updating / adding Mac addresses, the table is always sorted by IP addresses. But in the new oneRV042 (V3) I have, even with latest firmware 4.2.1.02 the list is random, thereby increasing the chance of user entering DUPLICATE IP addr with diff Mac addr. That will result in conflict.If the firmware sorts the DHCP entries by ip addresses, user would be able to catch duplicate ip errors even if the system does not flag the errors. All Cisco smart engineers can you all get the dhcp entries SORT by ip addresses.
View 2 Replies
View Related
Aug 22, 2012
I was looking for a small business router that has VPN support and dual WAN support for load balancing. Upon reading reviews, I think RV042/RV042G is a good choice. Now am thinking if it supports intervlan/ router-on-a-stick configuration?
View 5 Replies
View Related
Nov 23, 2011
I would like to configure an 877w I just bought. It's connecting to a UK ADSL2+ link.I'm a penetration tester and I want to put the Cisco router in front of my existing firewall which has an IPS on it, so that it doesn't get in the way of port scans and vulnerability scans. My ISP has issued me with 14 usable addresses a/240 subnet and basically I want to be able to use the route with just the public IP addresses. I have configured Cisco routers before, but never with this type of configuration. It's always been single public IP address NAT'd through to one or two internal LAN's.
It will be nice if I could assign the wireless and fast ethernet ports to the same VLAN using the public addresses. I don't want to use DHCP I'm quite happy statically assigning IP addresses to the computers wireless and LAN interfaces. I am reasonably certain this is possible because not sure how to do it and a little busy at the moment carrying out penetration tests.
View 7 Replies
View Related
Mar 5, 2011
I have just installed an SRP 527w and it's basic operation is working fine. However, the ISP has allocated (and set up routing for) a range of 16 additional static addresses to the link that I now wish to configure and use, but I am having problems. Details are as follows (ip addresses are fictitious): [code]Extra ip range Netmask: 255.255.255.240From what I understand, these are added as subinterfaces which are bridged off the main WAN interface. However, when I try to add a subinterface by specifying (say) I get an error when saving : [code] The error states "IP Address and Gateway cannot be the same as the netmask".
View 3 Replies
View Related
Jan 6, 2011
We have Cisco ASA 5505 box.We have a /29 subnet available.At this moment one of IP addresses in this rage is assigned to VLAN2 used for outside interface all outgoing traffic from VLAN10 (for employees) will go out using one IP, xxx.xxx.xxx.1all outgoing traffic from VLAN20 (for visitors) will go out using second IP, xxx.xxx.xxx.2all outgoing traffic from VLAN10 host yyy.yyy.yyy.yyy (mail server, webmail, ...) will go out using third IP, xxx.xxx.xxx.3all specified incomming traffic to xxx.xxx.xxx.3 will be NATted to internal host yyy.yyy.yyy.yyy in VLAN10 .The main purpose is to have specific public IP address for mail server only not to get to any black list,and to give visitors different outgoing IP address than for our internal users.
View 3 Replies
View Related
Feb 9, 2012
configuring my Cisco 2951 router with Z0ne-based firewall. This is the scenario I would like to configure.
I have two ftp servers,S1 and S2, behind the router which needs to be accessed by two groups of users, G1 and G2, from the outside, i.e., from the internet.
I have two public IP addresses, 152.12.164.203 and 152.12.164.204. The WAN interface of the router is configured with IP address 152.12.164.203. G1 needs to access S1 on 152.12.164.203 and G2 needs to access S2 on 152.12.164.204.
What are the steps in configuring the router if I need the above scenario to be implemented?
View 5 Replies
View Related
Feb 14, 2012
I need to put a few cameras, without a server, on a static WAN ip address. Do I just assign them a static LAN ip address(for example 192.168.1.200), make sure the port they use is open, then type the WAN static ip address then colon and the last address? Like this.....I'm making up the WAN address....45.34.55.334:200
View 1 Replies
View Related
Mar 18, 2011
I've got an ASA which has a number of contexts. They all share the same external interface, and in the interest of saving addresses I'm wondering if the standby address for each context is really necessary. I know that in active/passive the standby address is what allows the two to communicate and monitor that particular interface, however, in active/active I don't see the point as the context is either going to be on one or the other.
View 2 Replies
View Related
Sep 9, 2012
I would like to create two site-to-site VPNs, one for data and one for VoIP, between the same sites. One end is an ASA 5510 and the other is a third party firewall. Is this possible if I use different sets of IP addresses for each tunnel?
View 3 Replies
View Related
Sep 8, 2011
Is it possible to two or more public IP Addresses bound to a Cisco ASA 5505 running 8.4(2).
View 9 Replies
View Related
May 30, 2013
Today I was having a conversation with my Cisco Academy teacher from a few years back, and we couldn't figure this out.I am getting an internet connection via Verizon FiOS. Instead of giving me an ISR, they're going to just give me an ethernet cable. Here's what I want to do with it.
This cable is going to be plugged into a 1900 series router. Connect to that will be a 48 port switch. Connected to that will be multiple servers to be used for web hosting, email, databases, etc. My ISP is providing me with 13 public addresses, however, it is not my own unique subnet.
Here comes the question; how would I set this up? The way I was originally thinking was to assign one IP to fa0/0, a second to fa0/1, and then assign the fa0/1 address as the default gateways for all the hosts on the inside. But then I realized that it won't let me have the same network on 2 ports.
View 10 Replies
View Related
Feb 20, 2012
Is it possible to have multiple public IP addresses that are from different subnets going through one router? I have been told that this is not possible with most routers and that I would have to spend a lot of money on a router to be able to do it. I am still not totally clear on what defines a subnet even after reading up on them. What I am trying to achieve:
-My office has 10 computers.
-All would be connected to one router.
-My internet service provider has provided me with 10 public IP addresses, that are all very varied (which I asked for)
View 3 Replies
View Related
Mar 3, 2013
my router (RV042G V01 Firmware Version : v4.2.1.02 ) get errors I can't understand.Lost connection, can't get a new IP, DNS does not work, total hangup.After a short time / reset everything works fine up to the next error.In the Log I found the following interest entries:undefined Kernel undefined Kernel failed (1).undefined Kernel Message from server.
View 1 Replies
View Related
Sep 24, 2012
I purchased RV042G and setup one-to-one NAT problem to several servers. ometimes the NAT servers lost the internet connection. My case as below
ISP provide two set Public IP Address , one modem
e.g.
set one) 100.100.1.2-6, gateway 100.100.1.1
set two) 200.200.2.2-6, gateway 200.200.2.1
[code]....
All computers and servers (one-to-one NAT) outbound and inbound all work fine. After several hours, only the servers (one-to-one NAT) alert internet connection broken, but the computers (non NAT) still have internet connection.
What's the problem occurs? Why only one-to-one NAT servers lost the connection? and Why only serveral hours later, the server lost the internet connection.
If I changed the WAN setting to same as subnet of the one-to-one NAT, it doesn't occur any problem.
View 3 Replies
View Related
May 20, 2013
I run my business network on the 192.168.x.x range with a server set as 192.168.2.4 statically. The router is currently connecetd to two DCHP wan connections from my ISP, I'm on a residential consumer plan. It has defaulted to loadblanacing with the second WAN however I want to have the second wan's public IP be used by my server and only the server however I wish for the server to still be on the lan so I can use HYPER-V's brided network connection feature to run VMs on the lan, and I would like their wan connection to be from wan 1... as for the entire lan except the server at 192.168.2.4 Is this possible, I can't seem to get the 1-to-1 NAT to do it?
View 4 Replies
View Related
Apr 30, 2013
I am trying to get two external addresses to PAT to different ports on the same address in the dmz.
Object NAT is configured as follows:
object network Obj-192.168.1.20-1
nat (dmz,outside) static Obj-External-1 service tcp https https
object network Onj-192.168.1.20-2
nat (dmz,outside) static Obj-External-2 service tcp 2000 https
Obj-192.168.1.20-1 and Obj-192.168.1.20-2 contain the same host address.
The idea being that traffic destined for Obj-External-1 on port 443 will be forwarded to Obj-192.168.1.20-1 on port 443. Traffic for Obj-External-2 on port 443 will be forwarded to Obj-192.168.20-2 on port 2000.
Traffic for the first object, Obj-192.168.1.20-1, works but traffic for the second does not.
View 5 Replies
View Related
Dec 2, 2010
I'm currently replacing my ASA 5505 with a 5510. I have a range of public IP addresses, one has been assigned to the outside interface by the setup wizard (e.g. 123.123.123.124 ) and another I would like to NAT to an internal server (e.g 192.168.0.3 > 123.123.123.125). On my asa 5505 this seemed fairly straigh forward, i.e. create an incoming access rule that allowed SMTP to 123.123.123.125 and then create a static nat to translate 192.168.0.3 to 123.123.123.125. Since I've tried to do the same on the 5510 traffic is not passing through so I'm assuming that the use of additional public IP addresses is not handled in the same way as the 5505? I also see that by default on the 5505, 2 VLANs are created, one for the inside and one for the outside, where as this is not the case on the 5510. Is the problem that VLANs or sub-interfaces need to be created first? I'm doing the config via ASDM.
Everything else seems to OK i.e. access to ASDM via 123.123.123.124, outbound PAT and the site-to-site VPN.
View 15 Replies
View Related
Dec 14, 2012
I have an ASA 5505 with Security Plus License ?I have 5 Static IP Addresses from my ISP?I have the following interfaces. Outside (vlan 2) / Inside (vlan 1) / Guest (vlan 3)For my Vlan3 guest network I have set it up so that DNS must be routed through opendns.org's DNS servers ( for web filtering, etc ) However, its using the static ip that I have plugged into the ASA.
What I would like to accomplish is to put my inside interface (vlan1) on another static ip for outside access if thats possible, so that I can route those clients through opendns.org however however giving them more web privlieges than what the guest network is getting.
View 14 Replies
View Related
Jan 23, 2013
I currently have my EA6500 behind verizon fios router. I have 5 static IP addresses assigned to FIOS router, however the machines I want to connect to are behing EA6500. It's a dual NAT scenario:
Public IP - FIOS Router - 192.168.1.0/24 network - EA6500 - 192.168.2.0/24 network
What I would like to do is for each public IP address, I would like to forward traffic to a particular host on 192.168.2.0 network. I can easily configure FIOS router for static NAT and assign one internal IP (from 192.168.1.0 range) for each public IP. However, I don't see a way to assign multiple IPs from 192.168.1.0 network to EA6500 internet interface.
I don't want to use EA6500 as a bridge as it will pretty much reduce my EA6500 to a very expensive GigE switch.
Is this possible? Or should I replace it with something more useful like a business router? This is for my home so I would like to avoid buying an expensive business router.
View 1 Replies
View Related
Nov 8, 2012
I've setup the RV042G with one ISP connection for now.I have my main PC running fine, but I have another PC hard lined to the router that had a connection after I power cycled the modem and router but now it no longer does. disabled the network on that PC, now I can't get it back at all.I have a wireless e2000 in one of the ports that I disabled the DCHP on and it seems to be running nicely.before I disabled the PC in question, aka port 3, it was showing as connected in the "192...." but now only as enabled.
View 1 Replies
View Related
Sep 27, 2012
Is there anyway to monitor netflow on RV042G. We have a network at a small school that will get bogged down during the day.
View 1 Replies
View Related
Feb 6, 2013
I have an issue with routing public IPs on the RV042G. I have been able to route the IP's in a couple of different ways, but there is always a nagging problem.
I have a PPPoE Business Class account with 5 routable public IP's. I would like to route the IPs and manage the private network using the RV042G.
Here is what I have tried and the problem that arose: 1) I used 1:1 NAT and the servers responded with no issue. This would be a workable config however I use Kerberos for single sign-on for my clients. To use this security protocol and bind the clients to the server, I must use a public IP on the server machines. In this scenario however, everything else worked fine. 2) I then tried using the DMZ and putting the servers on the DMZ port with a public IP entered in the network config of the machine. That even worked fine and I was excited until I noticed that the servers were reporting the public IP assigned to the DMZ port as their IP when they sent mail. I then ran a test and that is the case. The servers - each with a public IP - are reporting the IP of the DMZ port. I can't have that because the mail servers need to announce a correct IP so the reverse lookup will match. Once again, a little gnat gets in the soup.
View 2 Replies
View Related
Apr 22, 2013
Have a rv042g, newest firmware, trying to setup one to one nat on the configs page, I select enable, enter private ip , enter public ip, enter the range, and click "add to list" and nothing.... no error message, doesn't add to the list below it
View 1 Replies
View Related
Jan 29, 2013
I have RV042G dual WAN VPN router as a gateway in my small office. My ISP requires from me to connect through PPTP VPN to have access to the network. I've configured my router with static IP and every time I connect a laptop or desktop pc I need to connect to the VPN with the Windows VPN client.
View 3 Replies
View Related
Oct 4, 2012
We have recently purchased a brand new RV042G VPN router, set it up, and had it running for a while without issues.
Now that we are actually trying to use the VPN functionality, the router becomes unstable after a while, showing "out of memory" lines in the logs, and after a day or two the VPN stops working completely and the web interface becomes completely inaccessible.
This issue happens when using any sort of VPN that's supported by the router.
View 1 Replies
View Related