FVS114 Reference Manual
Page 9
What is a Router B-2 Routing Information Protocol B-2 IP Addresses and the Internet B-2 Netmask ...B-4 Subnet Addressing B-5 Private IP Addresses B-7 Single IP Address Operation Using NAT B-8 MAC Addresses and Address Resolution Protocol B-9 Related Documents B-9 Domain Name Server B-9 IP Configuration by DHCP B-10 Internet Security and Firewalls B-10 What is a Firewall B-11 Stateful Packet Inspection B-11 Denial of Service Attack B-11 Ethernet Cabling ...B-11 Category 5 Cable Quality B-12...
What is a Router B-2 Routing Information Protocol B-2 IP Addresses and the Internet B-2 Netmask ...B-4 Subnet Addressing B-5 Private IP Addresses B-7 Single IP Address Operation Using NAT B-8 MAC Addresses and Address Resolution Protocol B-9 Related Documents B-9 Domain Name Server B-9 IP Configuration by DHCP B-10 Internet Security and Firewalls B-10 What is a Firewall B-11 Stateful Packet Inspection B-11 Denial of Service Attack B-11 Ethernet Cabling ...B-11 Category 5 Cable Quality B-12...
FVS114 Reference Manual
Page 13
..., IP addresses This guide uses the following typographical conventions: Table 1-1. Audience, Scope, Conventions, and Formats This reference manual assumes that the reader has basic to highlight information of this manual. Web site at http://kbserver.netgear.com/products/FVS114.asp. However, basic computer network, Internet, firewall, and VPN technologies tutorial information is written for the FVS114 VPN Firewall according...
..., IP addresses This guide uses the following typographical conventions: Table 1-1. Audience, Scope, Conventions, and Formats This reference manual assumes that the reader has basic to highlight information of this manual. Web site at http://kbserver.netgear.com/products/FVS114.asp. However, basic computer network, Internet, firewall, and VPN technologies tutorial information is written for the FVS114 VPN Firewall according...
FVS114 Reference Manual
Page 19
... network. • DNS Proxy When DHCP is a protocol for the ProSafe VPN Firewall FVS114 Autosensing Ethernet Connections with Auto Uplink With its own address as a DNS server to worry about TCP/IP, refer to Appendix B, "Network, Routing, and Firewall Basics." • IP Address Sharing by your PC. Extensive Protocol Support The FVS114 VPN Firewall supports the Transmission Control Protocol/Internet Protocol (TCP...
... network. • DNS Proxy When DHCP is a protocol for the ProSafe VPN Firewall FVS114 Autosensing Ethernet Connections with Auto Uplink With its own address as a DNS server to worry about TCP/IP, refer to Appendix B, "Network, Routing, and Firewall Basics." • IP Address Sharing by your PC. Extensive Protocol Support The FVS114 VPN Firewall supports the Transmission Control Protocol/Internet Protocol (TCP...
FVS114 Reference Manual
Page 20
... location on the Internet. Maintenance and Support NETGEAR offers the following features simplify installation and management tasks: • Browser-based management Browser-based configuration allows you to easily configure your type of the FVS114 VPN Firewall: • Flash memory for your firewall from almost any type of addresses, and you only for the information required for...
... location on the Internet. Maintenance and Support NETGEAR offers the following features simplify installation and management tasks: • Browser-based management Browser-based configuration allows you to easily configure your type of the FVS114 VPN Firewall: • Flash memory for your firewall from almost any type of addresses, and you only for the information required for...
FVS114 Reference Manual
Page 30
...on , reset the firewall according to the VPN firewall router with a securely plugged in this sequence: 1. If the FVS114 power light does not turn off within two minutes after turning the firewall on page 7-7. 3-6 Connecting the Firewall to obtain an IP address automatically via DHCP....modem and VPN firewall router are turned on the VPN firewall router and wait one minute 4. If so, in the Router MAC Address section of the FVS114 to the VPN firewall router from the modem is registered with the ISP. Reference Manual for the ProSafe VPN Firewall FVS114 Troubleshooting ...
...on , reset the firewall according to the VPN firewall router with a securely plugged in this sequence: 1. If the FVS114 power light does not turn off within two minutes after turning the firewall on page 7-7. 3-6 Connecting the Firewall to obtain an IP address automatically via DHCP....modem and VPN firewall router are turned on the VPN firewall router and wait one minute 4. If so, in the Router MAC Address section of the FVS114 to the VPN firewall router from the modem is registered with the ISP. Reference Manual for the ProSafe VPN Firewall FVS114 Troubleshooting ...
FVS114 Reference Manual
Page 31
... to the VPN firewall router, the VPN firewall router will prompt you to the VPN firewall router by clicking Apply when you must complete the configuration by typing the IP address of the VPN firewall router in the address field of ...address field of your browser, then press Enter: http://www.routerlogin.net http://www.routerlogin.com The VPN firewall router will automatically display the firewall's Configuration Assistant welcome page rather than the browser's home page. Reference Manual for the ProSafe VPN Firewall FVS114 Overview of How to manually configure the VPN firewall router...
... to the VPN firewall router, the VPN firewall router will prompt you to the VPN firewall router by clicking Apply when you must complete the configuration by typing the IP address of the VPN firewall router in the address field of ...address field of your browser, then press Enter: http://www.routerlogin.net http://www.routerlogin.com The VPN firewall router will automatically display the firewall's Configuration Assistant welcome page rather than the browser's home page. Reference Manual for the ProSafe VPN Firewall FVS114 Overview of How to manually configure the VPN firewall router...
FVS114 Reference Manual
Page 36
... your account is available, enter it . This feature allows your ISP assigned. Enter the IP address that your firewall to which your firewall will be called Host Name) and Domain Name. c. Domain Name Server (DNS) Address: If you a permanent, fixed (static) IP address for the ProSafe VPN Firewall FVS114 a. d. You must launch a login program such as mail or news servers. Internet...
... your account is available, enter it . This feature allows your ISP assigned. Enter the IP address that your firewall to which your firewall will be called Host Name) and Domain Name. c. Domain Name Server (DNS) Address: If you a permanent, fixed (static) IP address for the ProSafe VPN Firewall FVS114 a. d. You must launch a login program such as mail or news servers. Internet...
FVS114 Reference Manual
Page 41
... to the other domain suffixes (such as is the newsgroup alt.pictures.XXX. • If the keyword ".com" is a PC that PC's IP address in the Keyword box, click Add Keyword, then click Apply. • To delete a keyword or domain, select it in the Trusted User box...8226; Outbound: Allow all cookies. You may specify one for outbound. Outbound rules (LAN to Block or Allow Specific Kinds of the FVS114 are blocked. Reference Manual for the ProSafe VPN Firewall FVS114 • Turn Cookies filtering on , then click Apply. • To add a keyword or domain, type it from blocking and ...
... to the other domain suffixes (such as is the newsgroup alt.pictures.XXX. • If the keyword ".com" is a PC that PC's IP address in the Keyword box, click Add Keyword, then click Apply. • To delete a keyword or domain, select it in the Trusted User box...8226; Outbound: Allow all cookies. You may specify one for outbound. Outbound rules (LAN to Block or Allow Specific Kinds of the FVS114 are blocked. Reference Manual for the ProSafe VPN Firewall FVS114 • Turn Cookies filtering on , then click Apply. • To add a keyword or domain, type it from blocking and ...
FVS114 Reference Manual
Page 42
... existing rule to the default rules. You can block or allow access based on the service or application, source or destination IP addresses, and time of day. Reference Manual for the ProSafe VPN Firewall FVS114 These default rules are shown in the Rules table of the Rules menu in the table, select its button on the...
... existing rule to the default rules. You can block or allow access based on the service or application, source or destination IP addresses, and time of day. Reference Manual for the ProSafe VPN Firewall FVS114 These default rules are shown in the Rules table of the Rules menu in the table, select its button on the...
FVS114 Reference Manual
Page 43
... large number of UDP packets. Reference Manual for the ProSafe VPN Firewall FVS114 An example of the menu for this type of traffic to be handled. The parameters are : - Never - These options determine how certain types of packets are widely used by the Router. Block TCP flood - If you would like the... (inbound), and choose whether you select a range of this setting is the LAN. This setting should be normally be restricted by source IP address. You can block or allow always, or you can choose to block or allow according to the schedule you can select Any, a Single...
... large number of UDP packets. Reference Manual for the ProSafe VPN Firewall FVS114 An example of the menu for this type of traffic to be handled. The parameters are : - Never - These options determine how certain types of packets are widely used by the Router. Block TCP flood - If you would like the... (inbound), and choose whether you select a range of this setting is the LAN. This setting should be normally be restricted by source IP address. You can block or allow always, or you can choose to block or allow according to the schedule you can select Any, a Single...
FVS114 Reference Manual
Page 44
If the DNS proxy is disabled, the Router will ignore DNS queries it discovers any server processes (such as port forwarding. Inbound Rules (Port Forwarding) Because the FVS114 uses Network Address Translation (NAT), your network presents only one local server based on your ... Reference Manual for a particular service to one IP address to the Internet, and outside IP address to the IP address of day. This setting should normally be enabled. - The rule tells the firewall to direct inbound traffic for the ProSafe VPN Firewall FVS114 - Your ISP may periodically check for your...
If the DNS proxy is disabled, the Router will ignore DNS queries it discovers any server processes (such as port forwarding. Inbound Rules (Port Forwarding) Because the FVS114 uses Network Address Translation (NAT), your network presents only one local server based on your ... Reference Manual for a particular service to one IP address to the Internet, and outside IP address to the IP address of day. This setting should normally be enabled. - The rule tells the firewall to direct inbound traffic for the ProSafe VPN Firewall FVS114 - Your ISP may periodically check for your...
FVS114 Reference Manual
Page 45
...-10098-01, April 2005 Figure 4-4: Rule example: a videoconference from a specified range of external IP addresses. In this case, we have also specified logging of outside IP addresses, such as from a branch office, you can create an inbound rule. Reference Manual for the ProSafe VPN Firewall FVS114 Figure 4-3: Rule example: a local public Web server Inbound Rule Example: Allowing a Videoconference...
...-10098-01, April 2005 Figure 4-4: Rule example: a videoconference from a specified range of external IP addresses. In this case, we have also specified logging of outside IP addresses, such as from a branch office, you can create an inbound rule. Reference Manual for the ProSafe VPN Firewall FVS114 Figure 4-3: Rule example: a local public Web server Inbound Rule Example: Allowing a Videoconference...
FVS114 Reference Manual
Page 46
... the local server PC is assigned by your ISP, the IP address may change periodically as the DHCP lease expires. Reference Manual for the ProSafe VPN Firewall FVS114 Considerations for Inbound Rules • If your external IP address is an application example of an outbound rule: 4-8 Firewall Protection and Content Filtering 202-10098-01, April 2005 Outbound Rules (Service...
... the local server PC is assigned by your ISP, the IP address may change periodically as the DHCP lease expires. Reference Manual for the ProSafe VPN Firewall FVS114 Considerations for Inbound Rules • If your external IP address is an application example of an outbound rule: 4-8 Firewall Protection and Content Filtering 202-10098-01, April 2005 Outbound Rules (Service...
FVS114 Reference Manual
Page 47
Reference Manual for the ProSafe VPN Firewall FVS114 Outbound Rule Example: Blocking Instant Messenger If you want to block Instant Messenger usage by employees during working hours, you can also have the firewall log any external address according to use Instant Messenger during that you have created in the ...Schedule menu. You can create an outbound rule to block that application from any internal IP address to any attempt to the schedule that...
Reference Manual for the ProSafe VPN Firewall FVS114 Outbound Rule Example: Blocking Instant Messenger If you want to block Instant Messenger usage by employees during working hours, you can also have the firewall log any external address according to use Instant Messenger during that you have created in the ...Schedule menu. You can create an outbound rule to block that application from any internal IP address to any attempt to the schedule that...
FVS114 Reference Manual
Page 53
...April 2005 4-15 Enter the name or IP address of your ISP's outgoing (SMTP) mail server (such as the From address. If a Port Scan is detected. - Enter the e-mail address to which logs and alerts are immediately sent to the specified e-mail address when any of the following events occur..., these boxes cannot be sent via e-mail. • Send E-mail alerts immediately. This e-mail address will not be blank. If your e-mail program. Reference Manual for the ProSafe VPN Firewall FVS114 Getting E-Mail Notifications of Event Logs and Alerts In order to receive logs and alerts by e-mail,...
...April 2005 4-15 Enter the name or IP address of your ISP's outgoing (SMTP) mail server (such as the From address. If a Port Scan is detected. - Enter the e-mail address to which logs and alerts are immediately sent to the specified e-mail address when any of the following events occur..., these boxes cannot be sent via e-mail. • Send E-mail alerts immediately. This e-mail address will not be blank. If your e-mail program. Reference Manual for the ProSafe VPN Firewall FVS114 Getting E-Mail Notifications of Event Logs and Alerts In order to receive logs and alerts by e-mail,...
FVS114 Reference Manual
Page 56
... entry was taken if any. Description or Action The type of the initiating device for Windows, Macintosh, and Linux computers. 4-18 Firewall Protection and Content Filtering 202-10098-01, April 2005 Source IP The IP address of event and what action was recorded. Reference Manual for the ProSafe VPN Firewall FVS114 Log entries are described in Table 4-1 Table 4-1.
... entry was taken if any. Description or Action The type of the initiating device for Windows, Macintosh, and Linux computers. 4-18 Firewall Protection and Content Filtering 202-10098-01, April 2005 Source IP The IP address of event and what action was recorded. Reference Manual for the ProSafe VPN Firewall FVS114 Log entries are described in Table 4-1 Table 4-1.
FVS114 Reference Manual
Page 59
... addressing, where the IP address of configuration information defines a security association (SA) between two or more NETGEAR VPN-enabled firewalls is configured on each endpoint with specific identification and connection information describing the other end, and vice versa. See "How to Set Up a Gateway-to-Gateway VPN Configuration" on other endpoint. Reference Manual for the ProSafe VPN Firewall FVS114 VPN Gateway A VPN Tunnel VPN...
... addressing, where the IP address of configuration information defines a security association (SA) between two or more NETGEAR VPN-enabled firewalls is configured on each endpoint with specific identification and connection information describing the other end, and vice versa. See "How to Set Up a Gateway-to-Gateway VPN Configuration" on other endpoint. Reference Manual for the ProSafe VPN Firewall FVS114 VPN Gateway A VPN Tunnel VPN...
FVS114 Reference Manual
Page 60
...NETGEAR publishes additional interoperability scenarios with a dynamic IP address to initiate or respond to configure your VPN tunnels? - MDS - 128 bits, faster but the hardware at each end of security by encrypting the data three times using VPNC defaults (see Chapter 6, "Advanced Virtual Private Networking") Table 5-1. The VPN...Standard (DES) processes input data that is the optimal choice for the ProSafe VPN Firewall FVS114 FQDNs supplied by Dynamic DNS providers can allow a VPN endpoint with various gateway and client software products. 5-4 Basic Virtual Private ...
...NETGEAR publishes additional interoperability scenarios with a dynamic IP address to initiate or respond to configure your VPN tunnels? - MDS - 128 bits, faster but the hardware at each end of security by encrypting the data three times using VPNC defaults (see Chapter 6, "Advanced Virtual Private Networking") Table 5-1. The VPN...Standard (DES) processes input data that is the optimal choice for the ProSafe VPN Firewall FVS114 FQDNs supplied by Dynamic DNS providers can allow a VPN endpoint with various gateway and client software products. 5-4 Basic Virtual Private ...
FVS114 Reference Manual
Page 65
... Quick Find drop-down menu for the ProSafe VPN Firewall FVS114 Step 2: Configuring the NETGEAR ProSafe VPN Client on the Remote PC This procedure describes how to turn off any virus protection or firewall software you entered in the VPN Settings of the FVS114 on another client running the client has a dynamically assigned IP address. The PC must have the option to...
... Quick Find drop-down menu for the ProSafe VPN Firewall FVS114 Step 2: Configuring the NETGEAR ProSafe VPN Client on the Remote PC This procedure describes how to turn off any virus protection or firewall software you entered in the VPN Settings of the FVS114 on another client running the client has a dynamically assigned IP address. The PC must have the option to...
FVS114 Reference Manual
Page 67
...FVS114. b. Select the Connect using Secure Gateway Tunnel check box. The resulting Connection Settings are shown in the NETGEAR ProSafe VPN Client software. Configure the Security Policy in Figure 5-10. 3. Figure 5-11: Security Policy Editor Security Policy c. In this example, 22.23.24.25 would be used. Configure the VPN...Mode in the ID Type menu. Reference Manual for the ProSafe VPN Firewall FVS114 d. e. Select All in the field directly below the ID Type menu. g. i. Enter the public WAN IP Address of the FVS114. In the Network Security Policy list, expand the new...
...FVS114. b. Select the Connect using Secure Gateway Tunnel check box. The resulting Connection Settings are shown in the NETGEAR ProSafe VPN Client software. Configure the Security Policy in Figure 5-10. 3. Figure 5-11: Security Policy Editor Security Policy c. In this example, 22.23.24.25 would be used. Configure the VPN...Mode in the ID Type menu. Reference Manual for the ProSafe VPN Firewall FVS114 d. e. Select All in the field directly below the ID Type menu. g. i. Enter the public WAN IP Address of the FVS114. In the Network Security Policy list, expand the new...