I need to add some rules to block some attacks. I can add them fine but they get added to the end of the list. I try to re-order the rules to put them at the top and can not. I am using Internet Exploder 8 and I put a checkmark on the rule I want to move then click the reorder button. It takes me to a screen that shows 0 rules. I click the Back button and am back at the list of rules on that page. I am running the latest firmware which is from a year ago.
We are running an RV220W at the latest firmware (1.0.4.17). Due to certain internal activity we had to add a few firewall rules. Once we exceeded 10 firewall rules we could not reorder them. The reorder page showed the first 10 rules OK, but when you display the next screen (for rules 11 upward) the order is different and any changes do not appear persistant. Therefore you can change the order of the first 10 rules, but not from 11 onwards.
1. I could not make an inbound access rule work for RDP. It is configured as follows WAN -> LAN for RDP (TCP 3389) , it didn't work even when I chose "All Traffic".
2. Single Port Forwarding seems to be working though.
3. Destination IP and QoS settings seem to be grayed out, I would like to know why.
We have 2 sites connected thru 2 RV220W routers via VPN and most things are working fine. I have noticed however, that any device that has a web interface, i.e. our Sharp Copier and our Freenas server, is inaccessible. The page tries to come up but then I get the Cisco "server is down" page generated by the RV220W.
I can pull up the web interface pages if I use a machine on the local LAN but not on any machine across the VPN. The only commonality I can think of is the RV220W blocking that traffic for some reason..
I have created 7 QuickVPN users on router and on QuickVPN client. They all work except two. Have deleted and reinstalled on router and in QuickVPN to no avail. Changing the user name by one letter works (eg user NameVPN doesn't work, but NameVP does). Somehow router (I think) is not releasing user credentials/policies (which seems to agree with log). I have rebooted router.
I have changed administrator password to a secure one, just after the changind the password it logged off and offered to login. Now when I put the same password it writes: Invalid password for Admin user Password I used: 8_^!-,Opc: 5Gj3v5<Xb06?9z\SeWr2z9axdPa-f+L:Wj]NzEF2>v!Fu&lS0 There were no warnings that some symbols are not allowed, etc.
How can I access my router? what should I remove from the password to get access?
Using QuickVPN from one RV220W to another RV220W I cannot access the Webpage of the remote router. Goes to "CERTIFICATE NOT VALID" then click through that, and the the login page will not come up. Sceen flashes a hint of blue background, then turns white, then just sits there saying "Waiting for response from ???.???.QuickVPN will sucessfully connect and I can use all computers behind the router. Just cannot access the Webpage of the remote router. I can access the Webpage of the local router.Also, when I hookup using QuickVPN from an "Internet Cafe" that is using a Netgear router. I can then access the webpage on both remote routers (of course, depending on whom I QuickVPN'd into at the time).
I have called Cisco on this with no luck. They said to update my JAVA. I am currently JRE 6 Release 30 and still no luck. The Log files reveal nothing and are darn near unreadable since there is no line breaks in the log file. Have to manually edit the log to pick stuff out.
How to access the admin page of the RV220W from an iPad wih the default security certificate? If so, what steps did you go through? Or is this only possible when purchasing a certificate?
I have a Cisco rv220w. I just tried updating the firmware. I used RV220W-Firmware-1.0.3.5.img. It rebooted, and now there is no DHCP and no access to anything. I tried the reset button for 10 seconds. That didn't do anything. The WAN and all the LAN lights light up. Power is on and solid. The light blinks alternating between the DMZ and the blank space to the right of wireless. How can I get this back to factory defaults?
I have two offices connected with an IPSEC VPN tunnel using RV220W routers. The Tunnel works fine for local users between the two sites(Site 1:10.0.0.x; site 2 is 10.0.2.x). I have also set up PPTP users for remote access. PPTP users that connect to site 1 cannot access site 2 and vice versa. The PPTP users have no trouble accessing the resources on the site that they connect to. I have tried activating RIP and adding various static routes with no success. If I PPTP connect to site 1 and I tracert to an IP address on site 2 the route goes to the site 1 router and then goes to the internet(connected to the site 1 router) where it stops.
I installed firmware version 1.2.0.9 a couple weeks ago after seeing in the release notes that the port forwarding bug where clients would get 'no route to host' was resolved (one of the original posts found here:URL
After installing the firmware and confirming it's running I've seen no improvement. I still must reboot my router 2-3 times daily so clients can access the ports that are defined in the port forwarding module.
Can I use a single Public IP address for both Internet access and site to site vpn access?If not, can I configure the RV220W as a bridge and still use it via another gateway configured for vpn passthrough as a VPN appliance/server on the LAN?
we have a RV082 and have the DMZ option enable for a range of IPs within the same subnet of WAN IP and this works great. I have another range of Public IPs from our ISP that is not in the same subnet of the WAN IP and do not see a way on the RV082 to include this 2nd bank of Public IPs in the DMZ. Our ISP internet feed plugs into the RV082 WAN port and we have a switch pulgged into the DMZ port of the RV082 that is used to connect the public devices in the current DMZ. Both banks of Public IPs from our ISP come over via the ISP internet feed plugged into the WAN Port. My question is, if I cannot configure a DMZ rule to allow this 2nd range of Public IPs to "travel" to the RV082 DMZ port.
I have a TAC case open, but it doesn't seem to be making any progress.I upgraded my 5508 controller from 7.2.111.3 up to 7.4.100.0..Most of my APs are fine. 3500s, 1100s etc.except for 602i APs. The APs associate, they update software etc, but they won't broadcast the WLAN.An interesting thing, on the 602 AP, in the log, I see this:*Mar 06 15:08:12.667: SSID remote, WLAN Profile Name: RemoteOEAP, added to the slot[0], disabled..So the AP is definately talking to the WLC and being pushed the correct WLAN profile.On the controller, the AP shows the the Admin status of the radios is showing DOWN, but the Admin status on the AP itself shows UP
I've done a factory reset on the APs to no avail. I have a 2504 WLC as well that i'm in the process of implementing in a DMZ specificially for these APs, and for testing purposes, I associated the 602 Ap to that WLC as well. This one is running 7.4.100.0 too, same results. It would appear to be a problem with this version of software?
i have a Cisco Rv082 with Firmware v4.0.4.02-tm (Jul 4 2011 13:30:56)I have configure WAN1 with a public IP and netmask 255.255.255.252. (Only one public IP in use) Internally the LAN is a 192.168.169.0/255.255.255.0.I need to add some rules like
Service: HTTP Interface: WAN1 From: ANY To: 192.168.169.2
But after rule configured the connection still not working, it only works when I add a port forwarding.For HTTP maybe port forwarding is OK, but other services I need to grant access to a specific public IP address, not to everyone. So I need the Firewall rule, but is not working, it always block the request. [code]
I picked up an RVS4000 V2 and configured a rule to forward a Magic Packet to an internal system to wake it from a sleep state. Everything was working fine until I update the firmware to v2.0.3.2. I know it's not the the computer as I can wake it from Sleep internally without any problems. One thing I noticed is that the static IP for the computer in Sleep state gets lost in the ARP/RARP Table though the NIC is configured to respond to ARP requests in Sleep.
Has anything changed in v2.0.3.2 that requires a different configuration to get Wake on Lan working externally?
My Setup is
Computer P8Z68 Deluxe/Gen3 onboard Intel 82579V NIC Wake on Magic Packet: ON Respond to ARP/NS requests without waking system: ON RVS4000 V2 (v2.0.3.2) Mode: Gateway
I have a DSL line at work that we use to test external services provided to external users on our primary Internet circuit (Citrix, web applications, etc). Because this DSL line is for testing only, we want to lock it down so the only destinations allowed through the firewall are our own IP spaces.
I purchased a WRVS4400N for this purpose, thinking I could use the IP based ACL list to create these restrictions. However, every time I try to create an ACL, the internet slows to a crawl, and many sites don't come up at all. This occurs even if the ACL rule I add is a simple "allow any any" rule similar to the default rules.
Is this a known issue, or am I configuring something incorrectly? Here's an example of a rule I'm using (IP not real):
Action Service Source Interface Source Destination Time Day Allow All Protocol LAN ANY 1.2.3.0/255.255.255.240* Any Time Every Day
I also get the problem with a simple allow from a single IP (mine) to any destination, without any other rules enabled.
implementation of the ACL ruleset on these routers?
I have read through the manual. My question is what is the proper format to input into the ACL rule "Range"? Would as an example work- 192.168.0.1 - 192.169.255.254? Will the range effectively work? Or does it have to be 192.168.0.0 - 192.169.255.255?
We have a setup where our e-mail server is hosted in-house.Our network is connected through a RV042 gateway. Port 25 is forwarded to our internal e-mail server.Our smtp service should be limited to receiving incomming connections only from 4 specific ip ranges which I set up in the firewall rules.The reason is that all smtp is managed and protected by an external anti-spam/vires provider.
However it looks like any computer is able to connect to our port 25 and be forwarded to our e-mail server.Does portforwarding overrule firewall rules - ie. you can not limit access with the firewall if you decide to port forward?Is this a "fixable" situation - or is the RV042 not built for handling this setup?
I accidentally setup two schedule rules both with the name of "Log". When I highlight either rule, and try to delete either, I get error "The rule is being used by another rule and cannot be deleted" How do I delete?
I do not have access to internet (I'm on some unsecured internet from around here now, very slow). When I start the internetdiagnostics from windows, he says it's the modem or the connection from laptop, router, modem to internet. However, the lights indicating internet and dsl on the modem are brightly burning and the router shows nothing abnormal too.
I have a WPA2-PSK security, the modem is Zyxel. Also, the ethernetcable portal on my laptop is broken, so I can't do anything non-wireless. My phone has the same problem with this internet, it can get a connection, but no internet.
The detected problem is the connection between my access point, router, or cable modem and the Internet is broken.The network gateway is accessible, but Windows couldn't receive network traffic from the Internet.All other devices (iPad, Xbox, android phone) have no problem connecting to the Internet.Desktop is the only one experiencing the connection issue.
My laptop died last week and have been using my husbands, which I hate! We had some issues with computer freezing on some webpages or after being on webpages for awhile (like facebook). Yesterday it froze and I could not get it back on. When he got home he did scan disk (which I also did) and got it working after going into safe mode and doing system restore. He said an update had gotten through and messed things up. Anyhow, after he was on it a few hours last night, we lost connection. I figured the crazy weather was the culprit but it has been off all day. Our router is working and connecting but the adapter is not. Also our home phone says there is no line. We have unplugged everything several times, checked to make sure everything is in the right spots, I have even reset the router and rebooted the adapter. I uninstalled and restalled the adapter also. It is now telling me that "the connection between your access point, router, or cable modem and the Internet is broken". The only lights I have on the adapter are power, battery, DS and now the US light is blinking. The online and link lights are not on.
I recently purchased an Asus RT-N12B1. It has an external hardware switch which allows the router to operate in different modes. I put in access point mode. Then I connected an ethernet cable from a LAN port on my Verizon supplied Actiontec MI424WR-GEN2 E router to a LAN port on the access point and turned off the wireless in the router.
I have dynamic DNS setup and port forwarding setup in the router to forward from port 50000 to 192.168.1.2:22 which is a server plugged into a LAN port on the router. This is no longer working since adding the AP and disabling wireless on the primary router. how to debug?
I just installed a new ACS 5.1 to authenticate wireless PEAP users, so I created an Access policy "WirelessUsers" with identity store being Windows Active directory and all domain users are selected, and create a service rule that dictates that if the authentication protocol is radius, network device belongs to WLC device group, the result service will be "WirelessUsers", so this part worked perfectely, all domain users are able to gain wireless access via their DOMAIN/usernames and domain passwords. Now I want ACS local indentity store users (those local usernames can be the same or different from their AD usernames) to be able to manage those controllers, so I created another access policy "DeviceAdminUsers" with identity store being local users, another service rule which says that if the authentication protocol is radius, network device belongs to WLC device group, the result service will be "DeviceAdminUsers". The problem is that with the setup, whenenve when I try to SSH to WLC, ACS always put me in "WirelessUsers" access policy, even the login name does not have DOMAIN pre-pended or the login name simly does not exist in AD. if I put the second rule in front of first rule, I am able to authenticate with ACS local username/password and gain access to WLC, but wireless users will fail to authenticate, because ACS is trying to put regular wiress users in "DeviceAdminUsers" access policy. I would expect if username does not exist in AD, ACS should proceed with next rule. Similar requirement was easily achieved in ACS 3.3.
I am creating access rule on a ASA5520 running ASA 8.2 (1) and ASDM 6.2(1) and found that the GUI has less option then when creating access rule on a ASA5505 running ASA 7.2 (3) and ASDM 5.2(3) (see attachment). Is there an option that enables me to get the same configuration options on the ASA5520 running ASA 8.2 (1) and ASDM 6.2(1) as I have on the ASA5505 running ASA 7.2 (3) and ASDM 5.2(3).
I have a PIX with 600 active access rules but many rules arent't in use. A lot of the rules aren't necessary anymore but I don't know what they are. How to know what rules are working?
I know that WRTP54G is a voip device, but it is router as well and my problem is related to routing part.I cannot access public internet servers with IP in subnet 2.0.0.0 / 8 and 1.0.0.0 / 8. In the 2.0.0.0 / 8 subnet are some akamai cdn servers (yes, the fbcdn .After some time I've found, that routing table in wrtp54g contains also entries:
which cannot be deleted. It looks like someone wanted to filter dark space when the router was developed.Is there any way, to get rid of it? I've restored to factory defaults, no change. Firmware version is 3.1.27.ETSI
After upgrading to 8.4(2) and ASDM 6.4(5) I seem to have an extra access rule duplicating an existing rule, this is only visable through the ASDM. When using the CLI you can't see this duplicate rule.
I therfore get the following warning everytime I make a config change using the ASDM [code] If I delete this rule it returns everytime I launch the ASDM!
I also have extra config under Firewall>Configuration>Public Servers that I didn't have before. If I delete it, again it returns.
when I click 'Create...' under Access Policies > Default Network Access > Authorization, and then press the 'OK' button, it says 'Please configure at least 1 condition.' However I have no way to configure conditions as the 'Conditions' text is just bold text and not a link or any sort of configurable area. If I go to 'Customize' on the bottom right and add conditions to the right list box, I still have no options when I press Create. Also, the 'green light' next to Default Network Access is grey with a line through it. This is the most cryptic system I have ever used