FVM318 Reference Manual
Page 13
... reader has intermediate to advanced computer and Internet skills. This manual describes the features of the firewall and provides installation and configuration instructions. courier font Screen text, user-typed command-line entries. [Enter] Named keys in text are...Internet, firewall, and VPN technologies tutorial information is used for purchasing the NETGEAR® FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall. Audience This reference manual assumes that must be pressed simultaneously are shown enclosed in text linked with a plus (+) sign. bold times roman User input...
... reader has intermediate to advanced computer and Internet skills. This manual describes the features of the firewall and provides installation and configuration instructions. courier font Screen text, user-typed command-line entries. [Enter] Named keys in text are...Internet, firewall, and VPN technologies tutorial information is used for purchasing the NETGEAR® FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall. Audience This reference manual assumes that must be pressed simultaneously are shown enclosed in text linked with a plus (+) sign. bold times roman User input...
FVM318 Reference Manual
Page 15
.... Chapter 1 Introduction This chapter describes the features of wireless security unmatched by other VPN products. • Supports up to 253 users. Key Features of the FVM318 The FVM318 firewall is compatible with other trusted users over the Internet and across the wireless network, the FVM318 firewall provides a level of the NETGEAR® FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall. Unlike simple Internet sharing routers that use WEP encryption.
.... Chapter 1 Introduction This chapter describes the features of wireless security unmatched by other VPN products. • Supports up to 253 users. Key Features of the FVM318 The FVM318 firewall is compatible with other trusted users over the Internet and across the wireless network, the FVM318 firewall provides a level of the NETGEAR® FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall. Unlike simple Internet sharing routers that use WEP encryption.
FVM318 Reference Manual
Page 17
... Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall The firewall incorporates Auto UplinkTM technology. Appendix B-1, "Network, Routing, Firewall, and Wireless Basics"... provides further information on your computers for DHCP. • DNS Proxy When DHCP is enabled and no DNS addresses are specified, the firewall provides its own address as to make the right connection. This feature eliminates the need to the correct configuration. Reference Manual... allows the use of an inexpensive single-user ISP account. • Automatic Configuration of ...
... Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall The firewall incorporates Auto UplinkTM technology. Appendix B-1, "Network, Routing, Firewall, and Wireless Basics"... provides further information on your computers for DHCP. • DNS Proxy When DHCP is enabled and no DNS addresses are specified, the firewall provides its own address as to make the right connection. This feature eliminates the need to the correct configuration. Reference Manual... allows the use of an inexpensive single-user ISP account. • Automatic Configuration of ...
FVM318 Reference Manual
Page 18
... find your network using a domain name when your dynamic IP address. Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Dynamic DNS services allow you to login to monitor its status and activity. • Flash EPROM for firmware upgrade 1-4 Introduction A user-friendly Setup Wizard is provided and online help documentation is not permanently assigned...
... find your network using a domain name when your dynamic IP address. Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Dynamic DNS services allow you to login to monitor its status and activity. • Flash EPROM for firmware upgrade 1-4 Introduction A user-friendly Setup Wizard is provided and online help documentation is not permanently assigned...
FVM318 Reference Manual
Page 25
... Server IP Address Host and Domain Names: Some ISPs use your host name. Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Procedure 2-1: Record Your Internet Connection Information Print this your account, user, host, computer, or system name. • If your ISP. ISP Login Name... If you were given DNS server addresses, fill in the following : Wireless Network Name (SSID Encryption (circle one): WEP 64, WEP 128, or IPSec WEP or IPSec key Connecting the Firewall to the Internet 2-3 Fixed or Static Internet IP Address Subnet Mask Gateway...
... Server IP Address Host and Domain Names: Some ISPs use your host name. Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Procedure 2-1: Record Your Internet Connection Information Print this your account, user, host, computer, or system name. • If your ISP. ISP Login Name... If you were given DNS server addresses, fill in the following : Wireless Network Name (SSID Encryption (circle one): WEP 64, WEP 128, or IPSec WEP or IPSec key Connecting the Firewall to the Internet 2-3 Fixed or Static Internet IP Address Subnet Mask Gateway...
FVM318 Reference Manual
Page 29
Reference Manual for the firewall password, both in to your Internet connection. 3. Connect to the Internet Figure 2-6: Setup Wizard Connecting the Firewall to log in lower case letters. For security reasons, the firewall has its own user name and password. When prompted, enter admin for the firewall user name and password for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall A login window opens...
Reference Manual for the firewall password, both in to your Internet connection. 3. Connect to the Internet Figure 2-6: Setup Wizard Connecting the Firewall to log in lower case letters. For security reasons, the firewall has its own user name and password. When prompted, enter admin for the firewall user name and password for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall A login window opens...
FVM318 Reference Manual
Page 44
... to the FVM318 firewall at its default user name of admin and default password of up . 2. In a setting where there is Wireless. Reference Manual for the wireless network name (SSID). The default channel is not a security feature. Set the Region. This field determines which the wireless interface will not get a wireless connection to participate in the FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall. For...
... to the FVM318 firewall at its default user name of admin and default password of up . 2. In a setting where there is Wireless. Reference Manual for the wireless network name (SSID). The default channel is not a security feature. Set the Region. This field determines which the wireless interface will not get a wireless connection to participate in the FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall. For...
FVM318 Reference Manual
Page 45
You must then change the firewall's SSID, channel, or security settings, you will lose your wireless connection when you can configure the advanced wireless security functions of your PCs for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Note: If you configured in the router. Log in the main menu of the FVM318 firewall. 3. Wireless Access menu Wireless Configuration 3-9 Check that they have the same...
You must then change the firewall's SSID, channel, or security settings, you will lose your wireless connection when you can configure the advanced wireless security functions of your PCs for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Note: If you configured in the router. Log in the main menu of the FVM318 firewall. 3. Wireless Access menu Wireless Configuration 3-9 Check that they have the same...
FVM318 Reference Manual
Page 46
... the firewall. Note: When configuring the firewall from the firewall's Attached Devices menu into the MAC Address box of this , configure each wireless PC to obtain a wireless link to the FVM318 firewall at its default LAN address of http://192.168.0.1 with its default user name ...Manual for the PC in the Trusted PC list, if you select Trusted PCs only, you will lose your entry. 6. Enter the MAC address of the FVM318 firewall. 3-10 Wireless Configuration Enter a descriptive name for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall 4. You must then access the firewall...
... the firewall. Note: When configuring the firewall from the firewall's Attached Devices menu into the MAC Address box of this , configure each wireless PC to obtain a wireless link to the FVM318 firewall at its default LAN address of http://192.168.0.1 with its default user name ...Manual for the PC in the Trusted PC list, if you select Trusted PCs only, you will lose your entry. 6. Enter the MAC address of the FVM318 firewall. 3-10 Wireless Configuration Enter a descriptive name for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall 4. You must then access the firewall...
FVM318 Reference Manual
Page 49
... Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Procedure 3-4: Configure Basic IPSec Wireless Connections The SafeNet SoftRemote Basic VPN client installer program is on the FVM318 Resource CD. Log in Figure 3-13: Wireless Configuration 3-13 Reference Manual for remote VPN connections, you should use the full version of SafeNet SoftRemote, not the Basic version. 1. Observe the following guidelines when using whatever user...
... Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Procedure 3-4: Configure Basic IPSec Wireless Connections The SafeNet SoftRemote Basic VPN client installer program is on the FVM318 Resource CD. Log in Figure 3-13: Wireless Configuration 3-13 Reference Manual for remote VPN connections, you should use the full version of SafeNet SoftRemote, not the Basic version. 1. Observe the following guidelines when using whatever user...
FVM318 Reference Manual
Page 50
... a Pre-Shared Key value for this connection. Reference Manual for your PC. This name is for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall d. An email address is not used in the taskbar... tray of your convenience only, and is an easy to display the IPSec client setting menu, as shown below will appear in the VPN negotiation. SafeNet system tray icon with disabled indicator 3-14 Wireless Configuration IPSec Client Settings menu e. Click Add to remember user...
... a Pre-Shared Key value for this connection. Reference Manual for your PC. This name is for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall d. An email address is not used in the taskbar... tray of your convenience only, and is an easy to display the IPSec client setting menu, as shown below will appear in the VPN negotiation. SafeNet system tray icon with disabled indicator 3-14 Wireless Configuration IPSec Client Settings menu e. Click Add to remember user...
FVM318 Reference Manual
Page 52
... Run. d. The simplest method is to ping from the PC to the firewall, as your network's default gateway, change IPSec Gateway to the firewall. The SafeNet icon will now appear without the red bar, as "LAN Gateway", which indicates the firewall. Figure 3-19. In most cases, you programmed for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall b. b.
... Run. d. The simplest method is to ping from the PC to the firewall, as your network's default gateway, change IPSec Gateway to the firewall. The SafeNet icon will now appear without the red bar, as "LAN Gateway", which indicates the firewall. Figure 3-19. In most cases, you programmed for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall b. b.
FVM318 Reference Manual
Page 56
...box. Select Diffie-Helman Group 2 for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall 4. a. Check the Enable Perfect Forward Secrecy (PFS) checkbox. f. Check the Enable Replay Detection checkbox. 5. SafeNet Security Policy Editor edit security policy menu c. d. You will provide information about ...on the Security Policy subheading to provide: • The User Name that you will need to show the Security Policy menu. Configure the Security Policy. My Identity and Security Policy subheadings should appear below the connection name. Reference Manual for PFS...
...box. Select Diffie-Helman Group 2 for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall 4. a. Check the Enable Perfect Forward Secrecy (PFS) checkbox. f. Check the Enable Replay Detection checkbox. 5. SafeNet Security Policy Editor edit security policy menu c. d. You will provide information about ...on the Security Policy subheading to provide: • The User Name that you will need to show the Security Policy menu. Configure the Security Policy. My Identity and Security Policy subheadings should appear below the connection name. Reference Manual for PFS...
FVM318 Reference Manual
Page 57
...FVM318 firewall. In the Network Security Policy list on the left side of the Security Policy Editor window, expand the Security Policy heading by double clicking its name or clicking on the left side of the Security Policy Editor window. Wireless Configuration 3-21 In the box below ID Type, enter the user...SafeNet Security Policy Editor edit identity menu b. Select Domain Name in the Virtual Adapter box. Select Disabled in the ID Type menu. i. f. Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall a. Click on My Identity in the FVM318 firewall and...
...FVM318 firewall. In the Network Security Policy list on the left side of the Security Policy Editor window, expand the Security Policy heading by double clicking its name or clicking on the left side of the Security Policy Editor window. Wireless Configuration 3-21 In the box below ID Type, enter the user...SafeNet Security Policy Editor edit identity menu b. Select Domain Name in the Virtual Adapter box. Select Disabled in the ID Type menu. i. f. Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall a. Click on My Identity in the FVM318 firewall and...
FVM318 Reference Manual
Page 62
... Web address keywords. 1. Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Procedure 4-3: Blocking Functions, Keywords, and Sites The FVM318 firewall allows you to restrict access to Internet content based on ", enter a keyword or domain in to the firewall at its default LAN address of http://192.168.0.1 with its default user name of admin, default password...
... Web address keywords. 1. Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Procedure 4-3: Blocking Functions, Keywords, and Sites The FVM318 firewall allows you to restrict access to Internet content based on ", enter a keyword or domain in to the firewall at its default LAN address of http://192.168.0.1 with its default user name of admin, default password...
FVM318 Reference Manual
Page 63
.... • Outbound: Allow all access from the list, click Delete Keyword, then click Apply. 6. Protecting Your Network 4-5 Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall • If the keyword "XXX" is specified, the URL is blocked, as is the newsgroup alt.pictures.xxx. • If...exceptions to the default outbound settings by an IP address, you can be able to regulate specific traffic passing through from one Trusted User, which is specified, only websites with a fixed IP address. Up to 32 entries are used to access. to the Outbound ...
.... • Outbound: Allow all access from the list, click Delete Keyword, then click Apply. 6. Protecting Your Network 4-5 Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall • If the keyword "XXX" is specified, the URL is blocked, as is the newsgroup alt.pictures.xxx. • If...exceptions to the default outbound settings by an IP address, you can be able to regulate specific traffic passing through from one Trusted User, which is specified, only websites with a fixed IP address. Up to 32 entries are used to access. to the Outbound ...
FVM318 Reference Manual
Page 64
... side of the table and click Delete. 3. Reference Manual for the firewall. 2. Click the Block Services link of the Security section of password, or using whatever password and LAN address you have chosen for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Procedure 4-4: Configuring Services Blocking 1. Figure 4-3: Block Services... of the table and click Edit. • To delete an existing Block Services rule, select its default user name of admin, default password of the main menu to display this screen. Figure 4-4: Add Block Services menu 4-6 Protecting Your ...
... side of the table and click Delete. 3. Reference Manual for the firewall. 2. Click the Block Services link of the Security section of password, or using whatever password and LAN address you have chosen for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Procedure 4-4: Configuring Services Blocking 1. Figure 4-3: Block Services... of the table and click Edit. • To delete an existing Block Services rule, select its default user name of admin, default password of the main menu to display this screen. Figure 4-4: Add Block Services menu 4-6 Protecting Your ...
FVM318 Reference Manual
Page 65
... can block or allow according to the schedule you have defined in the Schedule menu. • LAN Users Address. You can choose to block or allow always, or you can select Any, a Single address,...and date from the list. In order to localize the time for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall The parameters are: • Service. Use the Add Services menu to save ...Specify traffic originating on the Internet. The choices are not limited to these choices. Reference Manual for your log entries, you must select your definition. If you would like this ...
... can block or allow according to the schedule you have defined in the Schedule menu. • LAN Users Address. You can choose to block or allow always, or you can select Any, a Single address,...and date from the list. In order to localize the time for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall The parameters are: • Service. Use the Add Services menu to save ...Specify traffic originating on the Internet. The choices are not limited to these choices. Reference Manual for your log entries, you must select your definition. If you would like this ...
FVM318 Reference Manual
Page 66
Log in to the firewall at its default LAN address of http://192.168.0.1 with its default user name of admin, default password of the Security menu to display the menu shown below. Click on the Schedule link of password, or using whatever password and LAN address you have chosen for your log entries, you must specify your Time Zone: 1. Figure 4-5: Schedule Services menu 4-8 Protecting Your Network Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Procedure 4-5: Setting Your Time Zone In order to localize the time for the firewall. 2.
Log in to the firewall at its default LAN address of http://192.168.0.1 with its default user name of admin, default password of the Security menu to display the menu shown below. Click on the Schedule link of password, or using whatever password and LAN address you have chosen for your log entries, you must specify your Time Zone: 1. Figure 4-5: Schedule Services menu 4-8 Protecting Your Network Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Procedure 4-5: Setting Your Time Zone In order to localize the time for the firewall. 2.
FVM318 Reference Manual
Page 67
...hours and 30 minutes. 4. Enter the values as the primary server, enter its default user name of admin, default password of password, or using whatever password and LAN address you ... time. If you can set up a schedule for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall 3. Click Apply to limit access completely for the selected days, enter Start Blocking and ...your changes. This setting will cause one or more days. If you must manually check Adjust for the firewall. 2. To block Internet services based on the Schedule link of Daylight Savings Time...
...hours and 30 minutes. 4. Enter the values as the primary server, enter its default user name of admin, default password of password, or using whatever password and LAN address you ... time. If you can set up a schedule for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall 3. Click Apply to limit access completely for the selected days, enter Start Blocking and ...your changes. This setting will cause one or more days. If you must manually check Adjust for the firewall. 2. To block Internet services based on the Schedule link of Daylight Savings Time...