RVS 4000

I would like to block the IP numbers.

When I tried with a festive router walked french right there!

Does anyone have experience with this?

Paddy

Hi Patrick,

The firewall should block inbound traffic by default, unless a port is opened to allow certain traffic. All outbound traffic is allowed by default. You have created a rule to block outbound traffic to a specific IP address. It almost looks like you have a program on the PC that is trying to access the specified site. (virus?) Because you have blocked access to this IP address, the 'programme' must be prevented from reaching the specified IP address. Personally, I like to run a firewall like Zone Alarm on my PC because it blocks the default outbound traffic and you can decide what traffic is allowed from this PC.

Tags: Cisco Support

Similar Questions

Mgmt of RVS 4000 HTTP interface blocks Port 80 @ & DHCP stops working

It's the RVS 4000

Firmaware version 1.3.3.5

STARS Chipset 9202

64 MB DRAM

8MB Flash

BACK, Block WAN Rq, mgmt remote all OFF

IPSec Tunnel that none used

Internet connection is DHCP

LAN is set to DHCP with multiple defined static devices

DMZ is dsabled

Functionining as a gateway

Time is defined via NTP & NRC

IPv4 only

Everything is pretty much dedault with the exception of the QoS

Trust mode is the Port, the value 4, 4, 4, 1

(Port 4 has a Linksys ATA connected to VOIP services)

SIP Port redirection is enabled for 5060

**********************************************

¸*********************************************

Every day or so the router becomes immune to the mgmt HTTP interface, as well as offers are no longer the DHCP services.

When this happens the only cure is to reboot the power.

Everthing comes back on line very well, but NEWSPAPERS are initilaized so not given to understand what is happening.

My next step is setuo a syslog server and have copied newspapers.

Anyone see this kind of behavior before?

Any ideas?

Thank you

dalexop wrote:

It's the RVS 4000

Firmaware version 1.3.3.5

STARS Chipset 9202

64 MB DRAM

8MB Flash

BACK, Block WAN Rq, mgmt remote all OFF

IPSec Tunnel that none used

Internet connection is DHCP

LAN is set to DHCP with multiple defined static devices

DMZ is dsabled

Functionining as a gateway

Time is defined via NTP & NRC

IPv4 only

Everything is pretty much dedault with the exception of the QoS

Trust mode is the Port, the value 4, 4, 4, 1

(Port 4 has a Linksys ATA connected to VOIP services)

SIP Port redirection is enabled for 5060

**********************************************

¸*********************************************

Every day or so the router becomes immune to the mgmt HTTP interface, as well as offers are no longer the DHCP services.

When this happens the only cure is to reboot the power.

Everthing comes back on line very well, but NEWSPAPERS are initilaized so not given to understand what is happening.

My next step is setuo a syslog server and have copied newspapers.

Anyone see this kind of behavior before?

Any ideas?

Thank you

Hi dalexop,

All new discussions of small business (which includes the model of your router) migrated to the Cisco Small Business Support Community. All small businesses existing discussions have been archived here for reference. We made these changes to better serve all customers of Cisco now and in the future.

Visit the Cisco Small Business Support Community Home Page created specifically for Linksys and Linksys by Cisco community members.

Thank you!

Slow download speed of RVS 4000

I use a Cisco RVS 4000 to test a new internet connection of 10 M / 10 M. I'm having a little problem, the test of speed of PSI (speedtest.cavtel.net). Download test always gives me 10Mbit/s, maximum for the connection speed, but the download speed is usually about 5.5 Mbps. My ISP has been on site and checked the lines and tested directly, and we determined that if connected directly we can test to complete download speeds, but when the RVS is connected, we can get full speed.

We tried different cables, reset to factory settings, update firmware, change the port settings and toggling the majority of the other setting on the router. Some settings have a minor effect on the speed of download, but nothing that gets me back up to 10 Mbps.

I noticed that there seems to be no way to set parameters of speed and trading on the WAN port. Perhaps miss me him, because this seems like a possible culprit.

Otherwise, the only one I can think of is a guarantee of return to determine if the device is defective.

Any ideas would be appreciated.

Hello.

These products are processed by the Cisco Small Business Support Community.

* If my post answered your question, please mark it as "acceptable Solution".

* Do not forget to give a 'congratulations '. Thank you!

3 RVS 4000 with VPN connection

Hello

I want to connect in a triangle 3 RVS 4000 router with VPN

I configured 3 routers, which can connect to the Internet. Each of them are configured as the gateway.

I created 2 tunnels on each router. But the vpn connection cannot be established.

Here is the configuration of ROUTER1 another are configured in the same way, only the remote group configuration is different

What I also open some ports for VPN, if yes which and were

Thanks fpr your help and your response

HP. Meyer

Hi hanspetermeyer,

Thank you for posting. You don't need to open all the ports for VPN. I noticed that your screenshot shows two routers have a common LAN subnet of 192.168.100.x. You will need a different local subnet for each router:
1. 1 router: 192.168.1.1
2. Router 2: 192.168.2.1
3. Router 3: 192.168.3.1
I think that you will find the tunnels only connect once you change the LAN IP of the routers so that they are on different subnets. Please let us know if it works.

How about a readme for the new signing of RVS - 4000 IPS: 1.42 in firmware 1.3.2

Hello

How about a readme for the new Signature IPS 1.42 inside the new firmware to version 1.3.2 RVS-4000?

Or am I just too fast and it comes out in a bit?

Thank you

Bruce

Bruce,

You are right. He left this time by mistake. We will solve it. In the meantime, here's what it will be:

RVS4000/WRVS4400N IPS Signature Release Note

Version: 1.42 rules Total: 1097

In this signature, we talked about the exploits/vulnerabilities and applications
as below:

Supported P2P application called BitTorrent up to version 5.0.8.
Supported P2P application named uTorrent up to version 1.7.2.

Version: 1.41 rules Total: 1098

In this signature, we talked about the exploits/vulnerabilities and applications
as below:

-EXPLOIT the MS video control ActiveX Stack Buffer Overflow
A buffer overflow vulnerability exists in Microsoft DirectShow.
The defect is due to the way Microsoft Video ActiveX Control parses image files.
An attacker can convince the user target to open a malicious web page to exploit
This vulnerability.

-EXPLOIT the Injection SQL Oracle database Workspace Manager
Multiple SQL injection vulnerabilities exist in Oracle database server product.
The vulnerabilities are due to inadequate sanitation of input parameters
in the Oracle Workspace Manager component. A remote attacker with user valid
credentials can exploit these vulnerabilities to inject and execute SQL code
with lift is SYS or privilegesof WMSYS.

Supported P2P application named uTorrent up to version 1.7.2.

Content signature for 1.41
========================================================================
Added new signature:
1053635 video MS stack buffer overflow EXPLOIT control ActiveX-1
1053636 video MS stack buffer overflow EXPLOIT control ActiveX-2
1053632 EXPLOIT Oracle database Workspace Manager SQL Injection-1
1053633 EXPLOIT Oracle database Workspace Manager-2 SQL Injection
1053634 EXPLOIT Oracle database Workspace Manager SQL Injection-3

Updated the signature:
1051783 P2P Gnutella Connect
1051212-P2P Gnutella Get file
1051785 P2P Gnutella UDP PING 2
1051997 P2P Gnutella Bearshare with UDP file transfer
1052039 P2P Gnutella OK
Get Foxy P2P file 1052637

Signature removed:
1050521 Worm.Klez.E1 - 1
1050522 Worm.Klez.E1 - 2
1050523 Worm.Klez.E1 - 3
1050524 Worm.Klez.E2 - 1
1050525 Worm.Klez.E2 - 2
1050526 ¡v Worm.Klez.E2 3
1050536 Worm.Blaster.B - 1
1050537 Worm.Blaster.B - 2
1050538 Worm.Blaster.B - 3
1050539 Worm.Blaster.C - 1
1050540 Worm.Blaster.C - 2
1050541 Worm.Blaster.C - 3

Number of rules in each category:
========================================================================
Back/DDoS 51
Buffer overflow: 241
Access control: 92
Scan: 41
Trojan horse: 62
Misc: 3
P2P: 40
Instant Messaging: 121
VRU/worm: 410
Web attacks: 37

Version: 1.40 rules Total: 1091

In this signature, we talked about the exploits/vulnerabilities and applications
as below:

1053406 FEAT MS IE HTML Embed Tag Stack Buffer Overflow (CVE-2008-4261)
An error of border during the processing of a too long file name extension specified
inside a "EMBED" tag can be exploited to cause a stack-based buffer overflow.

1053421 USE MS IE XML Handling Remote Code Execution (CVE-2008-4844)
The vulnerability is due to a use-after-free error when composed
HTML elements are related to the same data source. This can be exploited to
dereference of a pointer released by a specially designed HTML document memory

Version 1.38

In this signature, we addressed the following exploits/vulnerabilities and
applications:

1. support for P2P, BitTorrent and eMule applications.

Version 1.33

In this signature, we addressed the following exploits/vulnerabilities and
applications:

1. support application IM named AIM (http://dashboard.aim.com/aim) until
version 6.5.

2. support application IM called MSN (http://get.live.com/messenger) until
version 8.1.

3 PcShare is a Trojan tool that can remotely administer an attacked computer.

4-CVE-2007-3039: the vulnerability is due to an error of limit in the
Microsoft Message Queuing (MSMQ) service during the treatment of MSMQ messages.
This can be exploited to cause a buffer overflow by sending specially
packages designed for the MSMQ service.

Version 1.32

In this signature, we addressed the following peer-to-peer applications:

1. named IM application PURPOSE up to version 6.5 support.
2. press the request of IM named MSN until version 8.1.

Version 1.31

In this signature, we addressed the following peer-to-peer applications:

1 P2P application called BitTorrent up to version 5.0.8 support.

2. support the P2P application named uTorrent up to version 1.7.2.

Version 1.30

In this version, we have addressed the following vulnerabilities in Microsoft
applications:

1 SUBMISSION-24462: dereference of a pointer Null vulnerability exists in some versions
Microsoft Office. Remote attackers can trick users into visiting a
specially designed web page. The symptom includes a denial of
condition of service for the process in question.

2 Microsoft Security Bulletin MS07-027: Microsoft Windows support
Services NMSA Session Description object ActiveX control does not reach
restrict access to dangerous methods. This vulnerability could allow
a remote attacker to execute arbitrary code on an affected system.

Version 1.29

In this version, we have addressed the following exploits/vulnerabilities and
peer-to-peer applications:

1 Microsoft Security Advisory (935423): there is one based on the stack
in Microsoft Windows buffer overflow. The vulnerability is due
for insufficient format validation when handling incorrect ANI
file cursor or icon. A remote attacker can exploit this
vulnerability of prompting grace target user to visit a malicious
Web site by using Internet Explorer. A successful operation would be
allow the execution of arbitrary code with the privileges of the
currently logged in.

2. support a named QQ instant messaging application blocking until the
2007 Beta1 and Beta2 version.

Version 1.28

In this signature, we address the following exploits/vulnerabilities:

Microsoft Security Bulletin MS07-014: there is a buffer overflow
vulnerability in Microsoft Word. The vulnerability is created due to
a flaw in the Table entry of the Section within the structure of Table data flow.
An attacker could exploit this vulnerability by tricking a user to open
a designed Word file. Exploitation of the vulnerability may result
injection and execution of arbitrary code in the security context
the user target.

Microsoft Security Bulletin MS07-016: there is an alteration of the memory
vulnerability in Microsoft Internet Explorer. The flaw is due to a bad
posting lines of response in the responses from the FTP server. By persuading a user
to visit a malicious website, an attacker could run arbitrary on code
the target system with the privileges of the currently logged in user.

Version 1.26

In this signature, we addressed the following exploits/vulnerabilities:

CVE-2006-5559: there is a memory corruption vulnerability in
the ADODB. Connection ActiveX control in Microsoft Internet Explorer.
The flaw is due to improper validation of the data provided to the
Execute method. By persuading target the user to visit a malicious
Web site, an attacker can cause the application process
to terminate or possibly divert its flow of execution to arbitrary
code.

Version 1.25

In this signature, we addressed the following exploits/vulnerabilities:

Microsoft MS06-070 security bulletin: MS Windows 2000 Workstation
Service (WKSSVC. (DLL) has a remote code execution vulnerability. One
unauthenticated attacker could exploit this vulnerability to run
arbitrary code with the privileges of the level system on Windows 2000 and
Windows XP computers.

Version 1.24

In this signature, we addressed the following exploits/vulnerabilities:

1 Microsoft Data Access Components (MDAC) has a remote code execution
vulnerability in the RDS object. DataSpace ActiveX control. A remote attacker
could create a specially designed and host the malicious file on a
Web site or send it to the victim through e-mail. When the file is opened,
the attacker can run arbitrary code on the victim's system.

2. control WMI Object Broker ActiveX (WmiScriptUtils.dll) in Microsoft
Visual Studio 2005 has a vulnerability that could allow a remote
attacker to execute arbitrary code.

3 Microsoft Internet Explorer has a type of heap buffer overflow vulnerability.
A remote attacker could create a malicious web page containing COM objects
Daxctle.OCX HTML when instantiated as an ActiveX control and the thing the
victim to open the web page. By this attack, the attacker to execute
arbitrary code on the victim's browser.

Version 1.23

In this version, we have addressed the following exploits/vulnerabilities:

The vulnerability lies in some of the engines in Microsoft XML core
Windows. It is the result of the failure of the engine to properly manage the
bad arguments passed to one of the methods associated with the XML
purpose of the request.

Version 1.22

In this version, we discussed the exploits/vulnerabilities as follows:

Vagaa is a P2P that supports the network BitTorrent and eDonkey software.
It can be downloaded from the two network. The software is mainly used in people's Republic of CHINA.
There are some problems with this software because it didn't follow the official eMule Protocol.
The question can be referenced on the wiki (http://en.wikipedia.org/wiki/Vagaa).
Classify us Vagaa as eDonkey2000 program and allow admin users to disable in the user Web interface.

Version: 1.21

In this version, we have addressed vulnerabilities exploits as below:

Microsoft Internet Explorer WebViewFolderIcon has a buffer overflow
Vulnerability. A remote attacker could create a malicious Web page and
trick the victim to open. By this attack, the attacker could cause buffer
Overflow and crash the browser of the victim.

Version: 1.20

In this version, we discussed the exploits/vulnerabilities and applications
as below:

1 foxy is a P2P application that can search and download music and movies.
Foxy follows most public Gnutella P2P protocol but still has its own
signature under certain conditions. After the inclusion of the file Get Foxy P2P
rule, we can perfectly detect and block the Foxy and it will be detected as Gnutella.
Foxy can be blocked by deactivating Gnutella.

2 Microsoft Internet Explorer 6.0 and 6.0SP1 have impaired memory
vulnerability in the ActiveX component. A remote attacker can create a
malicious Web page and trick the victim to open the web page. By this attack.
the attacker could cause the crash of the browser of the victim or to execute arbitrary code.

3 Microsoft Internet Explorer has heap buffer overflow vulnerabilities
Vector Markup Language (VML). A remote attacker can create a malicious Web site
page and the thing the victim to open the web page. By this attack, the attacker
could cause the buffer overflow and execute arbitrary code on the victim's browser.

Version: 1.19

In this version, we have added a rule to meet cross-domain redirect
Microsoft Internet Explorer vulnerability (MS06-042). The vulnerability
is caused by the inappropriate use of URL redirection by the object.documentElement.outer
HTML property. A remote attacker could create a malicious web page and
trick the victim to open the web page. With this attack, the attacker could
run arbitrary code on the victim's browser and get sensitive information.

Version: 1.18

In this version, we have added the 6 rules to facilitate the blocking of QQ, the most
popular instant Messenger in China. There are several versions of QQ on the
official download site. Currently, we can detect and block QQ until the
Version 2006 Sp3 beta 2.

Version: 1.17

In this version, we discussed the exploits/vulnerabilities below:

1. the Server Service in Microsoft Windows 2000 SP4, XP SP1 and SP2, server
2003 and SP1 have a buffer overflow vulnerability. A remote attacker
could exploit a server response designed to cause the buffer overflow and run
arbitrary code on the victim's system.

2 hyperlink Object Library in Microsoft Windows 2000 SP4, XP SP1 and SP2,
Server 2003 and SP1 have a code execution vulnerability. A remote control
attacker could send a malicious Office document containing a
specially designed hyperlink to a victim in an email or host the file on
a web site. When the operator successfully this vulnerability, a remote control
attacker to execute arbitrary code with the privileges of the victim.

3 Microsoft Word XP and Word 2003 have a remote code execution vulnerability.
A remote attacker could host a DOC file on a Web site. If successfully
exploiting this vulnerability, remote attacker could execute arbitrary code
with the privilege of the victim.

Version: 1.16

In this version, we discussed the exploits/vulnerabilities below:

1 Microsoft Excel 2000, XP and 2003 Excel have a remote code execution
vulnerability, due to an error in Excel when incorrect URL handling
channels. A remote attacker could send a malicious .xls file of a victim
in an email or host the file on a web site. When the operator successfully this
vulnerability, a remote attacker to execute arbitrary code with the victim
privileges.

2 hyperlink Object Library in Microsoft Windows 2000 SP4, XP SP1 and SP2,
Server 2003 and SP1 have a code execution vulnerability. A remote control
attacker could send a malicious Office document containing a
specially designed hyperlink to a victim in an email or host the file on
a web site. When the operator successfully this vulnerability, a remote control
attacker to execute arbitrary code with the privileges of the victim.

3 Microsoft Windows XP/NT/2000/2003 have a denial of service vulnerability.
A remote attacker can send a malicious SMB packet causes the victim computers
Crash.

Problem of RVS 4000 RDP

Hi all

I have a problem trying to DRP from home to work. IM able to connect to my private network virtual (work), but when I try to DRP for my computer, it is not able to connect. How do I configure my router so it will allow me to connect to my computer using RDP. I don't have this issue when I conect my cable modem directly to my laptop. So I guess that the router must be set up any help would be great

Thank you

If you have a VPN, you should be able to make RDP or remote desktop. Are put in place as a gateway to gateway VPN, VPN fast or another Client VPN software? Try to do Port Forwarding and open the service port of the pointing to the IP of the PC address RDP session. I suggest to set a static IP address, so that it will not change. Others, I suggest you contact the Cisco technology support greater focus on your concerns. In my view, that this unit is part of serial company Cisco devices now supports. Try going to this link for other devices of the series business and the site where you can get your hands on Cisco for support:

http://forums.linksysbycisco.com/Linksys/board/message?board.ID=switches&message.ID=4273&query.id=27...

Can not download the latest firmware for RVS 4000

I tried to download the latest firmware for a few weeks. Download simply told to leave, and then times out after a few minutes. The download page shows that 1.2.10 version was published on 02/09/2008 and I can download the information/notes very well.

Probble because it is on an FTP server and the RVS4000 cannot FTP at all. Once I got to spend 1.2 FTP now works fine. I had to download it from my office, rather than at home. I must say, now FTP works fine. They did a really great job on this version of the firmware.

[RVS 4000] Secure setup ACL

I want to do an ACL that will allow traffic minum. For example, only; HTTP, DNS, SSH, FTP, TeamSpeak, Torrents.

This doesn't seem to be possible with the ACL on my Cisco Small Business RVS4000, I can only choose predifined parameters.

I can't configure my own source and destination IP and port. If it is not very useful.

I may be wrong, that's why I posted this threat. Is there a way to allow a minimum circulation with the ACL?

When I don't allow HTTP, DNS, etc. and deny the rest I can't use my TeamSpeak and Torrents, MSN more.

That's what I have now and that works, but it is not safe... Check the screenshot below. Here's my configuration of iptables, an ACL like this would be my idea of secure

#! / bin/sh
IPTABLES = / sbin/iptables
MODPROBE = / sbin/modprobe
INT_NET=192.168.1.32/28
LO=127.0.0.0/8

#####################################################################
# Flush existing rules and set the channel drop strategy #.
#####################################################################
Echo "[+] existing Flushing iptables rules...". »
$IPTABLES F
Filter $IPTABLES f t
$IPTABLES X
$IPTABLES PEI ENTRY WATERFALL
$IPTABLES P - OUTPUT DROP
$IPTABLES PEI BEFORE DROP

################################
# The KERNEL changes #.
################################
Echo "[+] implementation of the KERNEL changes... »
Ip_conntrack $MODPROBE
# Disable IP routing
echo 0 >/proc/sys/net/ipv4/ip_forward
# Enable IP spoofing protection
I'm in/proc/sys/net/ipv4/conf / * / rp_filter; echo 1 > $i; fact
# SYN flood attack protection
Echo 1 >/proc/sys/net/ipv4/tcp_syncookies

#######################
# String input #.
#######################
Echo '[+] string of establishment of ENTRY... »
# Follow the rules of State
$IPTABLES - a INPUT-m state--State INVALID-j LOG - log-prefix 'DROP INVALID»--log-ip-options--log-tcp-options ".
$IPTABLES - a INPUT-m state--State INVALID-j DROP
$IPTABLES - a INPUT-m state - state ESTABLISHED, RELATED-j ACCEPT
# ACCEPT the terms allowing connections in
# Loopback
$IPTABLES - an ENTRY-i lo s $LO d $LO m state - State NEW-j ACCEPTS
# SSH
$IPTABLES - a PEI tcp - dport 22 - syn-m state - State NEW of INPUT-m recent - set - name SSH
$IPTABLES - a INPUT Pei tcp - dport 22 - syn m state - recent update - state NEW - m - 120 seconds - hitcount 4 - rttl - name SSH-j DROP
$IPTABLES - a INPUT Pei tcp - dport 22 - syn-m state - State NEW-j ACCEPT
# Anti - spoofing rules
$IPTABLES - ENTRY d $INT_NET-j LOG - log-prefix 'SPOOFED ' PACKAGE
$IPTABLES - d $INT_NET-j DROP ENTRY
# Rule of JOURNAL of default ENTRIES
$IPTABLES - AN ENTRY! -i lo-j JOURNAL - log-prefix "»--log-ip-options--log-tcp-options DROP.

########################
# OUTPUT string #.
########################
Echo '[+] Setup OUTPUT string.... ' »
# Follow the rules of State
$IPTABLES - an OUTPUT-m state--State INVALID-j LOG - log-prefix 'DROP INVALID»--log-ip-options--log-tcp-options ".
$IPTABLES - an OUTPUT-m state--State INVALID-j DROP
$IPTABLES - an OUTPUT-m state - state ESTABLISHED, RELATED-j ACCEPT
# ACCEPT the terms allowing the connections on
# Loopback
$IPTABLES - an OUTPUT o lo s $LO d $LO m state - state NEW-j ACCEPT
# SSH
$IPTABLES - OUTPUT Pei tcp - dport 22 - syn-m state - State NEW-j ACCEPT
# Whois
$IPTABLES - OUTPUT Pei tcp - dport 43 - syn-m state - State NEW-j ACCEPT
# DNS
$IPTABLES - an OUTPUT Pei udp--dport 53 - m state - State NEW-j ACCEPT
# HTTP
$IPTABLES - OUTPUT Pei tcp - dport 80 - syn-m state - State NEW-j ACCEPT
# NTP
$IPTABLES - an OUTPUT Pei udp--dport 123 - m state - State NEW-j ACCEPT
# HTTPS
$IPTABLES - OUTPUT Pei tcp - dport 443 - syn-m state - State NEW-j ACCEPT
# MSN
$IPTABLES - OUTPUT Pei tcp - dport 1863 - syn-m state - State NEW-j ACCEPT
# RWhois
$IPTABLES - a tcp - dport 4321 Pei - OUTPUT syn-m state - State NEW-j ACCEPT
# Google Talk
$IPTABLES - a tcp - dport 5222 Pei - OUTPUT syn-m state - State NEW-j ACCEPT
# KTorrent
$IPTABLES - OUTPUT Pei tcp - dport 6881 - syn-m state - State NEW-j ACCEPT
$IPTABLES - Pei udp--dport 6881 OUTPUT - m state - State NEW-j ACCEPT
$IPTABLES - a tcp - dport 4444 Pei - OUTPUT syn-m state - State NEW-j ACCEPT
$IPTABLES - Pei udp--dport 4444 OUTPUT - m state - State NEW-j ACCEPT
# IRC
#$IPTABLES - a tcp - dport 6667 Pei OUTPUT - m state - State NEW-j ACCEPT
# Teamspeak voice
$IPTABLES - Pei udp--dport 9987 OUTPUT - m state - State NEW-j ACCEPT
# Teamspeak queries
$IPTABLES - OUTPUT Pei tcp - dport 10011 - syn-m state - State NEW-j ACCEPT
# Update Teamspeak Server
#$IPTABLES - Pei udp--dport 17384 OUTPUT - m state - State NEW-j ACCEPT
# Teamspeak Filetransfer
$IPTABLES - OUTPUT Pei tcp - dport 30033 - syn-m state - State NEW-j ACCEPT
# Ping
$IPTABLES - OUTPUT s $INT_NET Pei, - icmp type icmp echo-request - j ACCEPT
# Default OUTPUT NATURAL logarithm rule
$IPTABLES - AN OUTPUT! o lo-j JOURNAL - log-prefix "»--log-ip-options--log-tcp-options DROP.

#########################
# BEFORE string #.
#########################
Echo '[+] string setting on the FRONT.... ' »
# Follow the rules of State
$IPTABLES - a m state--State INVALID-j LOG - log-prefix 'DROP INVALID»--log-ip-options--log-tcp-options ".
$IPTABLES - a State in ADVANCE - m - State INVALID-j DROP
$IPTABLES - a m state - state ESTABLISHED, RELATED-j ACCEPT
# Anti - spoofing rules
$IPTABLES - a BEFORE d $INT_NET-j LOG - log-prefix 'SPOOFED ' PACKAGE
$IPTABLES - a BEFORE d $INT_NET-j DROP
# Default JOURNAL FRONT rule
$IPTABLES - A FRONT! -i lo-j JOURNAL - log-prefix "»--log-ip-options--log-tcp-options DROP.

Once added to the table of service management, personal service should be available for a new ACL to reference. If the router does not in this way, you can call the Small Business Support Center to open a bug report, if the problem can be solved.

Maximum bandwidth RVS4000

I just installed Comcast Ultra and I am able to get above 40 MB download speed when I connect a PC directly to the cable modem. When I used my netgear router speed fell to 10 MB, I'm looking at a new router. The netger is limited to 10 MB due to the WAN port. I bought a RVS 4000 and I can't seem to get more than 19 MB to download. Anyone know what the maximum download speed is for the RVS4000? It cannot be the Mb 1000 light enabled Internet WAN port. I also tried a Dlink DGL-4500, and he was also able to sustanin more than 40 MB. I thought the RVS4000 was supposed to be a high range of home router.

-Mitch

It is a known problem with the RVS4000. Most users reported a top speed "LAN WAN" of 15 to 18 Mbps. Speed increases of 20% to 30% if you want disable the IPS feature.

This website claims that they can measure WAN routers LAN speed:

http://www.SmallNetBuilder.com/component/option, com_chart/Itemid, 189.

Router-on-a-stick with RVS4000

Hi all

I intend to reshape our network topology and the creation of at least three VLANs using a router-on-a-stick of the installation type. We have two switches Cisco Small Business sg200-50 and a small RVS 4000 router business. I haven't implemented the configurations of router-on-a-stick in IOS, but I was unable to figure out if it is possible to do with small business of operating systems on the router and switches, we have. Does anyone have an experience with this? It is even possible with the equipment of small businesses?

Sorry if this question is already answered elsewhere on the forums; I searched around, but can't find anything.

See you soon,.

Curtis

Hi Curtis,.

Without having the RVS4000 in front of me, it looks like you can. I suppose that you have several VLANs on your SG200 and want to route between them as the SG200 is only a layer 2 switch. You can connect the RVS 4000 via trunk on the switch and the router port (its in L2 Switch-> vlan configuration of the port on the rvs4000) and add each vlan of the trunk (under L2 switch-> belonging to a vlan on the rvs). Please note that the RVS4000 is limited to 4 virtual local networks, including the vlan by default. I think that the router will automatically create the static routes appropriate when you create them VLAN (vlan create a L2 Switch->). The default value on the RVS4000 is for intervlan routing be enabled under Setup-> routing advanced but double check if you encounter any problems. Also, check the routing table and add static routes as needed.

You can also switch a switch to a SG300, which is a layer 3 switch.

Best,

David

Do not forget to note resonses useful and identify the right answers.

Question: RVS4000 reduce my bandwidth...

Howdy,

I've recently upgraded to a new internet service from Qwest here in the Denver area that offers 40 MB/s down and 20 MB/sec upward. I have two questions:
1. When I connected my laptop directly to the DSL Modem (ZyXEL model Qwest Q100), I've had about this speed. But when I connect my computer to the RVS-4000, I get only about 50% of the width of this band. I use a cat5/5 10/100 ethernet cable. My question is why my download speed has certainly declined from 40 MB/s to 20 mB/s? I have NOT turned on QoS. The RVS4000 has firmware installed V1.3.2.0.
2. I have a laptop and a desktop computer connected to the RVS4000 via a NetGear FS605v2 Ethernet switch. When I run SpeedTest.com on the desktop, I get a latency of 20 to 30 ms. When I run SpeedTest.com on the laptop, I get about the same download speed, about 50% of the upload speed of the computer desk and more 500ms latency. Why is this? And it is repeatable. And no, I have not turned on QoS. Any ideas?
Thanks in advance for any help or suggestion!

Doug

First of all, I would like to start by disabling the IPS feature on the router. Try this and see if you get a speed increase.

Thank you

Portege 4000 hard drive Replacement - what HARD drive is compatible?

Is it possible to find a replacement for my Portege 4000 HARD drive, because the original becomes very capricious?

Hi mate

I think that the Portege 4000 is an elder and in my opinion this laptop supports a 2.5 HARD disk.
I m not 100% sure, so I recommend you to install a hardware diagnostic tool like Everest Home Edition which would provide all the information on the HARD drive is internal.
That would help you get a new, compatible HARD drive.

Welcome them

Portege 4000 - drive TEAC DV-28-B not detected by write applications

I found a replacement disk for my Portege 4000. It's exactly the same as the previous, but when I installed CDBurnerXP and Nero, they were unable to detect the drive, so I could not burn a CD, although I have read in Windows Media Player.

I also tried 'Search the hardware changes' in the device but Manager who did not work, so don't know what to do next.

Try to delete the upper and lower ODD filters in the registry. Instructions: http://support.microsoft.com/kb/982116

Portege 4000 - upgrade RAM & graphic card driver installation

I'm having some trouble with my Portege 4000 for the moment. I installed XP on a disk, but will no longer have that I have 256 MB of RAM...

-Have you tried 2 manufacturers but the PC133 512 is not compatible. However, my system has an IBM of PC100 256 chip, which was bought early last year, after much trial and error, and I wonder now if the motherboard will be more suited to the PC100 and PC133 non?

-Consider the options alternative to XP, 98SE or 2000 because they are lighter operating systems. I can put it on a spare drive (test). Is it possible to set up a partition for recovery CD Rom (which has 98SE) on this subject and have little space left over to install another Linux operating system or its Manager partition crushes everything?

-J' put another post for .exe drivers related to the display/vga for 98SE and 2000.

-Just for the record, not all Linux distributions seem to go back on the size of the screen, so it takes some work...

Thanks much for any help.

> Tried 2 manufacturers but the 512 PC133 is not compatible. However, my system has an IBM of PC100 256 chip, which was bought early last year, after much trial and error, and I wonder now if the motherboard will be more suited to the PC100 and PC133 non?

The protégé 4000 is compatible with the PC133 modules! AFAIK, you can upgrade RAM of this notebook 1 GB (1024 MB) and you can use these modules;
PC133 512 MB (PA3108U - 1 M 51)
PC133 256 MB (PA3086U - 1 M 25)
PC133 128 MB (PA3085U - 1 M 12)

> Considering alternative options to XP, namely 98SE or 2000 because they are lighter operating systems. I can put it on a spare drive (test). Is it possible to set up a partition for recovery CD Rom (which has 98SE) on this subject and have little space left over to install another Linux operating system or its Manager partition crushes everything?
You can create partitions on the HARD drive using a 3rd party like Partition Magic 8 tool. I use this tool and it's really nice.
After you create 2 or three partitions on the HARD disk, you could install different OS (operating systems).

Portege 4000 - how to install the display driver for XP?

Hi-

I did a clean install of XP Portege 4000. The system has been previously default 98SE.

Noticed that there is a yellow exclamation point in other devices about the video controller (VGA compatible). I downloaded the display on the Toshiba site driver (if it is the right thing?), but can't seem to install. There is no setup.exe to help me.

My XP screen covers only 3/4 or more of the screen total, so that something is wrong somewhere...

Hello

No, Toshiba don't support Linux or Ubuntu on the Portege 4000 and you can t find drivers for it on the Toshiba page. Only Windows drivers are available.

I m not an expert in Linux, but as far as I know you don t need additional graphic driver for Ubuntu. You should only change the resolution of the screen or something in the settings of the screen. I had the same problem on the first time I used Linux and I could solve it without additional driver but I put t know how I did it :(

Good bye

RVS 4000

Similar Questions

Maybe you are looking for