Table of Contents

A
B
C
D
E
F
G
H
I
K
L
M
N
O
P
Q
R
S
T
U
V
W
X
Z

index

A

accessing local LAN     3-18

adapter card for network     2-2

adding

backup servers     3-23

connection entry     3-5

address

remote server

changing     3-26

VPN device     3-7

algorithms

authentication     1-4

DES     1-4

encryption     1-4

HMAC     1-4

MD5     1-4

SHA-1     1-4

triple-DES     1-4

Application Launcher     5-11

Are You There see AYT firewall policy

authentication

algorithms     1-4

certificate     2-2, 3-8

Entrust     3-10

features in VPN Client     1-3

information

connection status     4-17

internal server     1-3, 4-5

methods     1-3, 4-5

NT Domain     1-3

dialog box     4-6

domain name     4-7

password     4-7

username     4-7

properties

changing     3-20

RADIUS      4-5

RSA

next cardcode     4-11

passcode     4-8

PIN     4-9

username     4-8, 4-9

SDI

seeRSA

SecurID     1-3, 4-8

SoftID     1-3, 4-8

AYT firewall policy     4-18, 4-21

B

backup servers

adding     3-23

disabling     3-24

enabling     3-23

removing     3-24

Baltimore Technologies     4-11

base 64 encoded file type     6-12

binary encoded file type     6-12

bytes in

connection statistics     4-18

bytes out

connection statistics     4-19

C

cable

connection     1-2

modem     1-2, 4-2

CA certificates     6-5

CD-ROM installation     2-3

Centralized Protection Policy see CPP firewall policy

certificate

changing     3-22

changing password     6-23

completing enrollment form     6-4

connecting     4-11

deleting     6-21

enrollment

file types     6-12

PKI     4-11

with CA     6-3

Entrust     3-10

expiring     4-12

exporting     6-23

importing     6-15

managing     6-17

name     3-4, 3-8, 4-1

stores     6-3

verifying     3-10, 6-20

viewing     6-18

Certificate Authorities (CA)

CA certificates tab     6-5

certificate     2-2

supported     4-11

Certificate Manager

Options menu     6-17

overview     6-1

starting     6-1

changing

certificate     3-22

certificate password     6-23

connection entry description     3-17

connection entry properties     3-14

group name or group password     3-21

password on an enrollment request     6-28

remote server address     3-26

Cisco, contacting

technical support     xiii

telephone     xiv

Web page     xiii

Cisco.com Web page     xiii

Cisco certificate store     6-3

Cisco TAC

phone numbers     xiv

Web page     xiv

classes that generate events     5-21

clearing events display     5-23

Client/Server policy

firewalls     4-18, 4-20, 4-23

Client IP address in connection status     4-17

Client Server firewall policy     4-18

cloning a connection entry     5-3

closing the VPN Client     4-25

common name in certificate enrollment     6-4

company in certificate enrollment     6-4

completing an enrollment request     6-29

compression algorithm

LZS compression     4-17

configuring connections automatically     5-5

connecting

before logon     5-14

to private network     4-2, 4-4

to the internet     1-1

Dial-Up Networking     3-24, 4-3

with certificate     4-1

connection

LAN     1-2

network

direct     2-2

statistics

resetting     4-25

status

viewing     4-16

technologies     1-2

connection entry

changing

description     3-17

properties     3-14

remote server address     3-26

cloning     5-3

creating     3-5

creating shortcut     5-10

definition     3-1

deleting     5-4

description     3-17

managing     5-2

optional parameters     3-14

parameters     3-1

preconfigured     3-1

profile     3-5

properties

changing     3-14

renaming     5-5

Connections

properties

changing     3-23

connection statistics

bytes in     4-18

bytes out     4-19

packets bypassed     4-19

packets decrypted     4-19

packets discarded     4-19

packets encrypted     4-19

connection status     4-19

key icon     4-19

local LAN routes list     4-19

secure associations     4-19

secured routes     4-19

time connected     4-19

transparent tunneling     4-17

contacting Cisco with questions     xiii

copyrights and licenses     A-1

country code in certificate enrollment     6-4

CPP firewall policy     4-18, 4-21

creating

connection entry     3-5

shortcut for connection entry     5-10

D

data

formats     xii

Data Encryption Standard

see DES algorithm

Dead Peer Detection

see DPD

deleting

certificate     6-21

connection entry     5-4

enrollment request     6-27

department in certificate enrollment     6-4

DES algorithm     1-4

DHCP     5-11

traffic

stateful firewall always on     5-11

dial-up modem     1-2

Dial-Up Networking

closing before uninstall     5-28

connecting     3-24, 4-3

disabling     3-25

enabling     3-25

icon on taskbar     4-4

Microsoft     1-3

phonebook entries     3-25

requirement for     2-2

User Information dialog box     4-3

dial-up networking programs

third party     3-26

Digital Subscriber Line

see DSL

direct network connection     2-2

disabling

application launch before startup     5-15

automatic disconnect when logging off Windows NT     5-16

backup servers     3-24

Dial-Up Networking     3-25

local LAN access     3-18

Logon to Microsoft Network parameter     3-20

third party dialup     3-26

disconnecting

automatic     5-16

private network     4-25

diskettes

installing from     2-3

Disk icon in log viewer     5-23

displaying

help     3-1

software version     3-3

documentation

cautions     xi

notes     xi

on CD-ROM     xii

ordering     xiii

domain

Certificate Authority     6-7

domain name

certificate enrollment     6-4

NT Domain authentication     4-7

DPD

adjusting peer time out     3-19

keep alive mechanism

DSL

connection technology     1-2

modem     1-2, 4-2

E

e-mail address in certificate enrollment     6-4

enabling

backup servers     3-23

local LAN access     3-18

logging on to Microsoft Network     3-20

transparent tunneling     3-17

encryption

algorithms     1-4

connection status     4-17

enrolling

certificates     6-3

file request     6-11

network     6-6

in a PKI     4-11

enrollment request

changing password     6-28

completing     6-29

deleting     6-27

form     6-4

managing     6-25

pasting     6-11

resuming     6-29

viewing     6-26

Entrust certificate

configuring     3-10

connecting with     4-12

Entrust SignOn

using with Start Before Logon     4-14

Entrust Technologies     4-11

Erase icon in log viewer     5-23

Erase User Password option     4-6, 5-7

ESP

protocol

transparent tunneling     3-17

traffic

stateful firewall always on     5-11

etoken

connecting with     4-14

events

classes     5-21

severity levels     5-20

exiting the VPN Client     4-25

exporting a certificate     6-23

F

F1 key     3-1

features of VPN Client     1-2

file types for certificate enrollment     6-12

Filter icon in log viewer     5-19

filtering

events     5-19

firewalls     4-22

firewalls     4-23

AYT tab     4-21

Client/Server policy     4-18, 4-20, 4-23

CPP firewall policy     4-21

filtering     4-22

ICMP protocol     4-23

matching     5-25

name on general status

notifications     5-25

policies     4-18

policy listed      4-18

rules     4-21, 4-22

stateful     5-11

status     4-19

status screen     4-18

support in VPN Client     1-4

tab on status screen     4-18

TCP protocol     4-23

UDP protocol     4-23

force keepalives

ESP-aware NAT     3-18

formats

data     xii

G

General tab (Properties)     3-17

generating events

classes     5-21

group name for IPSec

changing     3-21

group password for IPSec

changing     3-21

H

hard disk space requirement     2-1

Hashed Message Authentication Coding

see HMAC algorithm

help

displaying     3-1

from program menu     3-1

Help icon in log viewer     5-18

HMAC algorithm     1-4

hostname

VPN device     3-7

HTML help

displaying     3-1

I

IANA protocol numbers     4-23

ICMP protocol

firewalls     4-23

icons

Dial-Up Networking     4-4

key     4-19

log viewer

Disk     5-23

Erase     5-23

Filter     5-19

Help     5-18

Printer     5-22

Search     5-21

VPN Client

viewing connection status     4-16

viewing when connected     4-16

VPN Dialer

using to disconnect     4-25

IKE protocol     1-2

importing a certificate file     6-15

import option     5-5

Import Password     6-16

inactivity timeout (Entrust)     4-12

installation

CD-ROM     2-3

from diskettes     2-3

media requirements     2-1

installing VPN Client     2-1

interface card for network     2-2

internal server

     4-6

authentication     1-3, 4-5

password     4-6

internet

connecting     1-1

Dial-Up Networking     3-24, 4-3

Internet Key Management protocol

see IKE

Internet Protocol Security

see IPSec

IP address

certificate enrollment     6-4

server     4-17

VPN device     3-7

IPSec

attributes supported in VPN Client     1-4

features in VPN Client     1-3

group name     3-21

group password     3-21

protocol     1-2

transparent tunneling

connection status     4-17

ISDN

connection technology     1-2

modem     4-2

ISP

password     4-3

username     4-3

K

key icon

connection status     4-19

L

LAN connection     1-2

launching an application     5-11

disabling     5-15

licenses and copyrights     A-1

local LAN access     3-18, 4-19

log file

printing     5-22

saving     5-23

logging on to Microsoft Network     3-20

log viewer

clearing     5-23

filtering events     5-19

icons

Disk     5-23

Erase     5-23

Filter     5-19

Help     5-18

Printer     5-22

Search     5-21

searching     5-21

LZS compression     4-17

M

managing

certificates     6-1, 6-17

connection entries     5-2

enrollment request     6-25

matching firewall configurations     5-25

MD5 algorithm     1-4

Message Digest 5

see MD5 algorithm

Microsoft Certificate Services     4-11

Microsoft certificate store     6-3

Microsoft Network

logging on     3-20

Microsoft Windows 2000     4-11

modems

cable     1-2, 4-2

dial-up     1-2

DSL     1-2, 4-2

ISDN     4-2

requirement     2-2

N

names

IPSec group     3-21

network

adapter or interface card     2-2

connection

direct     2-2

Network Address Translation     3-17

New Connection Entry Wizard     3-6

notifications

firewall     5-25

upgrade     5-24

VPN device     5-24

NT Domain authentication     1-3, 4-6

domain name     4-7

password     4-7

username     4-7

NT features

VPN Client     1-3

NT logon     5-14

O

Options menu     3-14

organizational unit in certificate enrollment     6-4

organization of this manual     ix

P

packets

bypassed     4-19

decrypted     4-19

discarded     4-19

encrypted     4-19

parameters

connection entry     3-1

passcode

RSA authentication     4-8

passwords

enrollment request

changing     6-28

erasing     4-6, 5-7

expiration     4-7

import     6-16

internal server authentication     4-6

invalid     4-6

IPSec group

changing     3-21

ISP logon     4-3

NT Domain authentication     4-7

personal certificate     6-23

private key     4-1

RADIUS authentication     4-6

saving     4-6, 5-7

peer response timeout

adjusting     3-19

personal firewall see firewalls

PIN

RSA authentication     4-9

PKCS10 format     6-12

PKIs

supported     2-2, 4-11

Plain Old Telephone Service

see POTS

port

transparent tunneling     4-17

Port Address Translation     3-17

POTS

connection technology     1-2

preconfigured connection entry     3-1

Printer icon in log viewer     5-22

printing a log file     5-22

private key password     4-1

private network

connecting     4-2, 4-4

disconnecting     4-25

profile

connection entry     3-5

Entrust     3-11

file

importing into VPN Client     5-5

roaming     5-16

properties

general     3-17

Properties dialog box     3-15

Protocol 50 (ESP) traffic     3-17

protocol numbers     4-23

protocols

IKE     1-2

IPSec     1-2

Public Key Infrastructure

see PKIs

Q

quitting the VPN Client     4-25

R

RADIUS authentication

password     4-6

procedure     4-5

username     4-6

RAM requirements     2-1

reconfiguring automatically     5-5

remote access connection

closing before uninstall     5-28

Remote Authentication Dial-In User Service

see RADIUS authentication

remote server

changing address     3-26

removing

backup servers     3-24

the VPN Client     5-28

renaming a connection entry     5-5

requirements

system     2-1

resetting connection statistics     4-25

restarting your computer after installation     2-4

resuming an enrollment request     6-29

roaming profiles     5-16

RSA (formerly SDI)

authentication     1-3, 4-8

Next Cardcode     4-11

rules

firewalls     4-21, 4-22

S

Save Password option     4-6, 5-7

saving a log file     5-23

SCEP (Cisco store)     6-3

SDI

see RSA

Search icon in log viewer     5-21

searching log file     5-21

secure associations     4-19

secured routes

connection status     4-19

key icon     4-19

secure gateway

address     3-7

notifications to client     5-24

Secure Hash Algorithm

see SHA-1 algorithm

SecurID authentication     1-3, 4-8

Server IP address

connection status     4-17

Severity levels in events     5-20

SHA-1 algorithm     1-4

shortcut

creating for connection entry     5-10

Simple Certificate Enrollment Protocol

see SCEP

smart card

connecting with     4-14

connection entry

configuring     3-11

products supported     3-12

SoftID authentication     1-3, 4-8

software license agreement     A-1

software token applications

launching from VPN Dialer     5-11

start before logon     5-14

starting the VPN Dialer

connecting to private network     3-5, 4-2

using a shortcut     5-10

stateful firewall

always on     5-11

DHCP traffic     5-11

transparent tunneling     3-17

state in certificate enrollment     6-4

statistics

connection     4-18

status

firewall     4-19

stopping the VPN Dialer     4-25

stores

certificate     6-3

support, Cisco     xiii

system requirements     2-1

T

TAC

phone numbers     xiv

TCP/IP requirement     2-1

TCP protocol

firewalls     4-23

transparent tunneling     3-17

third party dailup program     3-26

time connected

connection status     4-19

transparent tunneling

enabling     3-17

port     4-17

stateful firewall     3-17

triple-DES algorithm     1-4

tunnel

definition     1-2

negotiation     4-4

transparent     3-17

U

UDP protocol

firewalls     4-23

transparent tunneling     3-17

UniCERT     4-11

uninstalling the VPN Client     5-28

upgrade notification     5-24

upgrading VPN Client software     5-26

URL or Network Address of CA     6-7

user authentication     1-3, 4-5

see authentication

username

internal server authentication     4-6

ISP logon     4-3

NT Domain authentication     4-7

RADIUS authentication     4-6

RSA authentication     4-8, 4-9

V

verifying a certificate     3-10, 6-20

version

VPN Client

displaying     3-3

viewing

certificate     6-18

connection status     4-16

enrollment request     6-26

Virtual Private Networks

defined     1-1

VPN Client

applications     1-1

features     1-2

installing     2-1

software updates     5-26

version     3-3

VPN Concentrator

see VPN device

VPN device

authentication using internal server      4-5

backup     3-23

changing address     3-26

Cisco     1-1

DPD     3-19

hostname     3-7

IP address     3-7

notifications     5-24

VPN Dialer

closing     4-25

main dialog box     3-6

W

Windows

username and password     3-20

Windows NT logon properties     5-14

Windows platforms requirement     2-1

wizard

connection entry     3-6

X

X.509 DER file     6-12

Z

Zone Labs Integrity     4-18, 4-20, 4-23

Posted: Wed Sep 25 04:06:21 PDT 2002
All contents are Copyright © 1992--2002 Cisco Systems, Inc. All rights reserved.
Important Notices and Privacy Statement.