FVM318 Reference Manual
Page 1
Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall NETGEAR, Inc. 4500 Great America Parkway Santa Clara, CA 95054 USA Phone 1-888-NETGEAR SM-FVM318NA-0 December 2002
Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall NETGEAR, Inc. 4500 Great America Parkway Santa Clara, CA 95054 USA Phone 1-888-NETGEAR SM-FVM318NA-0 December 2002
FVM318 Reference Manual
Page 5
Contents Preface About This Manual Chapter 1 Introduction Key Features of the FVM318 1-1 Virtual Private Networking (VPN 1-1 Enhanced Wireless Security Through IPSec 1-2 A Powerful, True Firewall with Content Filtering 1-2 Autosensing Ethernet Connections with Auto Uplink 1-2 Extensive Protocol Support 1-3 Easy Installation and Management 1-4 What's in the Box? ...1-5 The Firewall's Front Panel 1-5 The Firewall's Rear Panel 1-7 Chapter 2 Connecting the Firewall to the Internet What...
Contents Preface About This Manual Chapter 1 Introduction Key Features of the FVM318 1-1 Virtual Private Networking (VPN 1-1 Enhanced Wireless Security Through IPSec 1-2 A Powerful, True Firewall with Content Filtering 1-2 Autosensing Ethernet Connections with Auto Uplink 1-2 Extensive Protocol Support 1-3 Easy Installation and Management 1-4 What's in the Box? ...1-5 The Firewall's Front Panel 1-5 The Firewall's Rear Panel 1-7 Chapter 2 Connecting the Firewall to the Internet What...
FVM318 Reference Manual
Page 6
... and Scheduling Firewall Services 4-7 Chapter 5 Virtual Private Networking FVM318 VPN Overview 5-1 FVM318 VPN Configuration Planning 5-3 Network to Network VPN Tunnel Configuration Worksheet 5-4 Network Configuration Settings 5-5 PC to Network VPN Tunnel Configuration Worksheet 5-9 Monitoring the PC VPN Connection Using SafeNet Tools 5-18 Manual Keying ...5-19 Blank VPN Tunnel Configuration Worksheets 5-22 Chapter 6 Managing Your Network Network Management Information 6-1 Viewing Router Status and...
... and Scheduling Firewall Services 4-7 Chapter 5 Virtual Private Networking FVM318 VPN Overview 5-1 FVM318 VPN Configuration Planning 5-3 Network to Network VPN Tunnel Configuration Worksheet 5-4 Network Configuration Settings 5-5 PC to Network VPN Tunnel Configuration Worksheet 5-9 Monitoring the PC VPN Connection Using SafeNet Tools 5-18 Manual Keying ...5-19 Blank VPN Tunnel Configuration Worksheets 5-22 Chapter 6 Managing Your Network Network Management Information 6-1 Viewing Router Status and...
FVM318 Reference Manual
Page 11
...Firewall to Your LAN 2-4 Procedure 2-3: Configuring the Internet Connection Manually 2-13 Procedure 3-1: Set Up and Test Basic Wireless Connectivity 3-7 Procedure 3-2: Restrict Wireless Access by MAC Address 3-9 Procedure 3-3: Configure WEP 3-10 Procedure 3-4: Configure Basic IPSec Wireless... Time Zone 4-8 Procedure 4-6: Scheduling Firewall Services 4-9 Procedure 5-1: Configuring a Network to Network VPN Tunnel 5-4 Procedure 5-2: Configuring a Remote PC to Network VPN 5-8 Procedure 5-3: Deleting a Security Association 5-19 Procedure 5-4: Using Manual Keying as an Alternative to IKE ...
...Firewall to Your LAN 2-4 Procedure 2-3: Configuring the Internet Connection Manually 2-13 Procedure 3-1: Set Up and Test Basic Wireless Connectivity 3-7 Procedure 3-2: Restrict Wireless Access by MAC Address 3-9 Procedure 3-3: Configure WEP 3-10 Procedure 3-4: Configure Basic IPSec Wireless... Time Zone 4-8 Procedure 4-6: Scheduling Firewall Services 4-9 Procedure 5-1: Configuring a Network to Network VPN Tunnel 5-4 Procedure 5-2: Configuring a Remote PC to Network VPN 5-8 Procedure 5-3: Deleting a Security Association 5-19 Procedure 5-4: Using Manual Keying as an Alternative to IKE ...
FVM318 Reference Manual
Page 13
... tutorial information is provided in text linked with a plus (+) sign. The notation [Enter] is used for purchasing the NETGEAR® FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall. This manual describes the features of the firewall and provides installation and configuration instructions. Typographical Conventions This guide uses the following typographical conventions: italics Media titles, UNIX files, commands, URLs, and...
... tutorial information is provided in text linked with a plus (+) sign. The notation [Enter] is used for purchasing the NETGEAR® FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall. This manual describes the features of the firewall and provides installation and configuration instructions. Typographical Conventions This guide uses the following typographical conventions: italics Media titles, UNIX files, commands, URLs, and...
FVM318 Reference Manual
Page 14
Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Special Message Formats This guide uses the following formats to highlight special messages: Note: This format is the potential for incurring an electrical shock if you that there is used to highlight information of injury or equipment damage. Danger: This format is used to alert you mishandle the equipment. Warning: This format is used to highlight information about the possibility of importance or special interest. xiv About This Manual
Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Special Message Formats This guide uses the following formats to highlight special messages: Note: This format is the potential for incurring an electrical shock if you that there is used to highlight information of injury or equipment damage. Danger: This format is used to alert you mishandle the equipment. Warning: This format is used to highlight information about the possibility of importance or special interest. xiv About This Manual
FVM318 Reference Manual
Page 15
... methods. The FVM318 firewall allows Internet access for security, the FVM318 firewall uses Stateful Packet Inspection, widely considered as the most effective method of the FVM318 The FVM318 firewall is compatible with other trusted users over the Internet and across the wireless network, the FVM318 firewall provides a level of the NETGEAR® FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall. Introduction 1-1 Unlike simple Internet sharing routers that rely on...
... methods. The FVM318 firewall allows Internet access for security, the FVM318 firewall uses Stateful Packet Inspection, widely considered as the most effective method of the FVM318 The FVM318 firewall is compatible with other trusted users over the Internet and across the wireless network, the FVM318 firewall provides a level of the NETGEAR® FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall. Introduction 1-1 Unlike simple Internet sharing routers that rely on...
FVM318 Reference Manual
Page 16
... Internet sharing NAT routers, the FVM318 is a true firewall, using stateful packet inspection to defend against hacker attacks. The firewall allows you to control access to deploy - Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Enhanced Wireless Security Through IPSec The FVM318 firewall allows you to easily create an IPSec-encrypted VPN tunnel from your wireless PC to the firewall. • Easy to...
... Internet sharing NAT routers, the FVM318 is a true firewall, using stateful packet inspection to defend against hacker attacks. The firewall allows you to control access to deploy - Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Enhanced Wireless Security Through IPSec The FVM318 firewall allows you to easily create an IPSec-encrypted VPN tunnel from your wireless PC to the firewall. • Easy to...
FVM318 Reference Manual
Page 17
...Manual for DHCP. • DNS Proxy When DHCP is enabled and no DNS addresses are specified, the firewall provides its own address as to a switch or hub. Appendix B-1, "Network, Routing, Firewall, and Wireless Basics" provides further information on TCP/IP. • IP Address Sharing by NAT The FVM318... allows several networked PCs to the Internet over a DSL connection by your computers for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall The firewall incorporates Auto UplinkTM technology. The firewall obtains actual DNS addresses from ...
...Manual for DHCP. • DNS Proxy When DHCP is enabled and no DNS addresses are specified, the firewall provides its own address as to a switch or hub. Appendix B-1, "Network, Routing, Firewall, and Wireless Basics" provides further information on TCP/IP. • IP Address Sharing by NAT The FVM318... allows several networked PCs to the Internet over a DSL connection by your computers for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall The firewall incorporates Auto UplinkTM technology. The firewall obtains actual DNS addresses from ...
FVM318 Reference Manual
Page 18
... or when you are connected over the Internet via the Internet. The firewall incorporates built-in diagnostic functions such as Windows, Macintosh, or Linux. Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Dynamic DNS services allow you to the network. The firewall contains a client that can limit remote management access to easily configure your...
... or when you are connected over the Internet via the Internet. The firewall incorporates built-in diagnostic functions such as Windows, Macintosh, or Linux. Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Dynamic DNS services allow you to the network. The firewall contains a client that can limit remote management access to easily configure your...
FVM318 Reference Manual
Page 19
... package should contain the following items: • FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall. • AC power adapter. • Category 5 (CAT5) Ethernet cable. • FVM318 Resource CD, including: - This manual. - The Firewall's Front Panel The front panel of the parts are incorrect, missing, or damaged, contact your NETGEAR dealer. Cable/DSL ProSafeWirelessVPN Security Firewall PWR TEST IN TERN ET LNK W LAN...
... package should contain the following items: • FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall. • AC power adapter. • Category 5 (CAT5) Ethernet cable. • FVM318 Resource CD, including: - This manual. - The Firewall's Front Panel The front panel of the parts are incorrect, missing, or damaged, contact your NETGEAR dealer. Cable/DSL ProSafeWirelessVPN Security Firewall PWR TEST IN TERN ET LNK W LAN...
FVM318 Reference Manual
Page 20
...Reference Manual for the TEST LED, which is amber. ACT WLAN LOCAL 100 LINK/ACT On/Blinking Blinking indicates data transmission. Blinking indicates data transmission. 1-6 Introduction These LEDs are green when lit, except for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall You ...can use some of the LEDs to the firewall. Indicates data transmission at 100 Mbps. Table 1-1: Label POWER TEST INTERNET LINK LED...
...Reference Manual for the TEST LED, which is amber. ACT WLAN LOCAL 100 LINK/ACT On/Blinking Blinking indicates data transmission. Blinking indicates data transmission. 1-6 Introduction These LEDs are green when lit, except for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall You ...can use some of the LEDs to the firewall. Indicates data transmission at 100 Mbps. Table 1-1: Label POWER TEST INTERNET LINK LED...
FVM318 Reference Manual
Page 21
Introduction 1-7 Reference Manual for connecting the firewall to the local computers. • Internet WAN Ethernet RJ-45 port for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall The Firewall's Rear Panel The rear panel of the FVM318 (Figure 1-2) contains the connections identified below. LOCAL 10/100M 8 7 6 5 4 3 2 2 1 IN TERN ET 12VDC O.5A OFF ON Figure 1-2: FVM318 Rear Panel Viewed from left...
Introduction 1-7 Reference Manual for connecting the firewall to the local computers. • Internet WAN Ethernet RJ-45 port for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall The Firewall's Rear Panel The rear panel of the FVM318 (Figure 1-2) contains the connections identified below. LOCAL 10/100M 8 7 6 5 4 3 2 2 1 IN TERN ET 12VDC O.5A OFF ON Figure 1-2: FVM318 Rear Panel Viewed from left...
FVM318 Reference Manual
Page 22
Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall 1-8 Introduction
Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall 1-8 Introduction
FVM318 Reference Manual
Page 23
... firewall which supports HTTP uploads such as explained below. Connecting the Firewall to prepare these three things before you must use the FVM318 firewall on your account. 3. For the initial connection to the Internet and configuration of your FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall... UNIX®/Linux®. NETGEAR recommends using the Setup Wizard, or how to manually configure your Internet connection. Network Configuration Requirements The FVM318 includes a built-in Web Configuration Manager. Chapter 2 Connecting the Firewall to the Internet This chapter...
... firewall which supports HTTP uploads such as explained below. Connecting the Firewall to prepare these three things before you must use the FVM318 firewall on your account. 3. For the initial connection to the Internet and configuration of your FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall... UNIX®/Linux®. NETGEAR recommends using the Setup Wizard, or how to manually configure your Internet connection. Network Configuration Requirements The FVM318 includes a built-in Web Configuration Manager. Chapter 2 Connecting the Firewall to the Internet This chapter...
FVM318 Reference Manual
Page 24
... FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall The cable or DSL modem broadband access device must provide a standard 10 Mbps (10BASE-T) Ethernet interface. There are several ways you locate your Internet configuration parameters, record them on how your ISP set up your firewall to the NETGEAR Router ISP Guide on the FVM318 ...the TCP/IP entry for the Ethernet adapter, and click Properties. Record all the information needed to connect to the Internet Reference Manual for many ISPs. If you cannot locate this information, you can ask your ISP to provide it or you can try one...
... FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall The cable or DSL modem broadband access device must provide a standard 10 Mbps (10BASE-T) Ethernet interface. There are several ways you locate your Internet configuration parameters, record them on how your ISP set up your firewall to the NETGEAR Router ISP Guide on the FVM318 ...the TCP/IP entry for the Ethernet adapter, and click Properties. Record all the information needed to connect to the Internet Reference Manual for many ISPs. If you cannot locate this information, you can ask your ISP to provide it or you can try one...
FVM318 Reference Manual
Page 25
... (SSID Encryption (circle one): WEP 64, WEP 128, or IPSec WEP or IPSec key Connecting the Firewall to the Internet 2-3 Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Procedure 2-1: Record Your Internet Connection Information Print this your account, user, host, computer, or system name...then use a specific host or domain name like CCA7324-A or home. ISP Host Name ISP Domain Name For Wireless Access: For configuration of the wireless network, record the following information. If you connect using a login name and password, then fill in the...
... (SSID Encryption (circle one): WEP 64, WEP 128, or IPSec WEP or IPSec key Connecting the Firewall to the Internet 2-3 Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Procedure 2-1: Record Your Internet Connection Information Print this your account, user, host, computer, or system name...then use a specific host or domain name like CCA7324-A or home. ISP Host Name ISP Domain Name For Wireless Access: For configuration of the wireless network, record the following information. If you connect using a login name and password, then fill in the...
FVM318 Reference Manual
Page 26
Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Connecting the FVM318 to Your LAN This section provides instructions for connecting the FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall to connecting your firewall: 1. Connect the firewall. b. Turn off your firewall to the Internet. Procedure 2-2: Connecting the Firewall to Your LAN There are three steps to your network. 2. Disconnect the Ethernet cable (A) from your computer...
Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Connecting the FVM318 to Your LAN This section provides instructions for connecting the FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall to connecting your firewall: 1. Connect the firewall. b. Turn off your firewall to the Internet. Procedure 2-2: Connecting the Firewall to Your LAN There are three steps to your network. 2. Disconnect the Ethernet cable (A) from your computer...
FVM318 Reference Manual
Page 27
... Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall c. Connect the Ethernet cable (B) which came with the firewall from the modem to your network to the firewall Connecting the Firewall to the firewall d. B LO CA L 10/ 100M 8 7 6 5 4 3 2 2 1 IN TER N ET 12VDC O.5A OFF ON Model FVM318 Wireless VPN Security Firewall Cable or DSL modem Figure 2-3: Connect the computers on the router to the FVM318's Internet...
... Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall c. Connect the Ethernet cable (B) which came with the firewall from the modem to your network to the firewall Connecting the Firewall to the firewall d. B LO CA L 10/ 100M 8 7 6 5 4 3 2 2 1 IN TER N ET 12VDC O.5A OFF ON Model FVM318 Wireless VPN Security Firewall Cable or DSL modem Figure 2-3: Connect the computers on the router to the FVM318's Internet...
FVM318 Reference Manual
Page 28
... itself to it. 2. h. a. g. Please refer to Appendix C, "Preparing Your Network" for the lights to stop blinking. Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Note: The FVM318 firewall incorporates Auto UplinkTM technology. Note: To connect to the firewall. Each LAN Ethernet port will automatically sense whether the cable plugged into the port should have a 'normal...
... itself to it. 2. h. a. g. Please refer to Appendix C, "Preparing Your Network" for the lights to stop blinking. Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Note: The FVM318 firewall incorporates Auto UplinkTM technology. Note: To connect to the firewall. Each LAN Ethernet port will automatically sense whether the cable plugged into the port should have a 'normal...