FVS318G Installation Guide
Page 1
... Ethernet cable from the computer to the firewall is on , and wait one minute. The Test light goes on when the router is powered on and then goes off ... menu, Internet Options, Connections tab page where you first set up your VPN firewall. )NSTALLATION'UIDE ProSafe Gigabit 8 Port VPN Firewall FVS318G Start Here Follow these instructions to set up your cable Internet connection. ...is securely attached at http://kbserver.netgear.com. Now, plug in order to Install Your VPN firewall • For Cable Modem Service. c. Last, turn on your FVS318G, turn it on . The ...
... Ethernet cable from the computer to the firewall is on , and wait one minute. The Test light goes on when the router is powered on and then goes off ... menu, Internet Options, Connections tab page where you first set up your VPN firewall. )NSTALLATION'UIDE ProSafe Gigabit 8 Port VPN Firewall FVS318G Start Here Follow these instructions to set up your cable Internet connection. ...is securely attached at http://kbserver.netgear.com. Now, plug in order to Install Your VPN firewall • For Cable Modem Service. c. Last, turn on your FVS318G, turn it on . The ...
FVS318G Installation Guide
Page 2
2. The Router Status window will automatically detect your network and click Apply. 4. If you need to register your product. You can use it to change without notice. Plug in Ethernet cable, the corresponding FVS318G LAN port LED will be on the modem, wait two minutes. ...light does not go off the FVS318G, and shut down the computer. 2. You can click Connect to the FVS318G with the European Union Directive 2002/96 on configuring FVS318G features. NETGEAR and the NETGEAR logo are trademarks or registered trademarks of turning the firewall on the account. Information is...
2. The Router Status window will automatically detect your network and click Apply. 4. If you need to register your product. You can use it to change without notice. Plug in Ethernet cable, the corresponding FVS318G LAN port LED will be on the modem, wait two minutes. ...light does not go off the FVS318G, and shut down the computer. 2. You can click Connect to the FVS318G with the European Union Directive 2002/96 on configuring FVS318G features. NETGEAR and the NETGEAR logo are trademarks or registered trademarks of turning the firewall on the account. Information is...
FVS318G User Manual
Page 5
... ...1-5 Front Panel Features ...1-5 Rear Panel Features ...1-7 Default IP Address, Login Name, and Password Location 1-8 Qualified Web Browsers 1-8 Chapter 2 Connecting the FVS318G to the Internet Understanding the Connection Steps 2-1 Logging into the VPN Firewall Router Router 2-2 Navigating the Menus ...2-3 Configuring the Internet Connections 2-4 Automatically Detecting and Connecting 2-5 Manually Configuring the Internet Connection 2-7 Configuring the WAN Mode...
... ...1-5 Front Panel Features ...1-5 Rear Panel Features ...1-7 Default IP Address, Login Name, and Password Location 1-8 Qualified Web Browsers 1-8 Chapter 2 Connecting the FVS318G to the Internet Understanding the Connection Steps 2-1 Logging into the VPN Firewall Router Router 2-2 Navigating the Menus ...2-3 Configuring the Internet Connections 2-4 Automatically Detecting and Connecting 2-5 Manually Configuring the Internet Connection 2-7 Configuring the WAN Mode...
FVS318G User Manual
Page 7
... FVS318G VPN Connection Status and Logs 5-13 Managing VPN Policies 5-14 Managing IKE Policies 5-14 Managing VPN Policies 5-16 Configuring Extended Authentication (XAUTH 5-17 Configuring XAUTH for VPN Clients 5-18 User Database Configuration 5-19 RADIUS Client Configuration 5-19 Assigning IP Addresses to Remote Users (ModeConfig 5-21 Mode Config Operation 5-22 Configuring the VPN Firewall Router 5-22 Configuring the ProSafe VPN...
... FVS318G VPN Connection Status and Logs 5-13 Managing VPN Policies 5-14 Managing IKE Policies 5-14 Managing VPN Policies 5-16 Configuring Extended Authentication (XAUTH 5-17 Configuring XAUTH for VPN Clients 5-18 User Database Configuration 5-19 RADIUS Client Configuration 5-19 Assigning IP Addresses to Remote Users (ModeConfig 5-21 Mode Config Operation 5-22 Configuring the VPN Firewall Router 5-22 Configuring the ProSafe VPN...
FVS318G User Manual
Page 8
... Self Certificates 6-11 Obtaining a Self Certificate from a Certificate Authority 6-11 Managing your Certificate Revocation List (CRL 6-14 Chapter 7 Router and Network Management Performance Management 7-1 Bandwidth Capacity 7-1 Features That Reduce Traffic 7-2 Features That Increase Traffic 7-5 Using QoS to Shift the... Connection 8-4 Troubleshooting a TCP/IP Network Using a Ping Utility 8-5 Testing the LAN Path to Your VPN Firewall Router 8-5 Testing the Path from Your PC to a Remote Device 8-6 Restoring the Default Configuration and Password 8-7 viii Contents 1.1 November, 2009
... Self Certificates 6-11 Obtaining a Self Certificate from a Certificate Authority 6-11 Managing your Certificate Revocation List (CRL 6-14 Chapter 7 Router and Network Management Performance Management 7-1 Bandwidth Capacity 7-1 Features That Reduce Traffic 7-2 Features That Increase Traffic 7-5 Using QoS to Shift the... Connection 8-4 Troubleshooting a TCP/IP Network Using a Ping Utility 8-5 Testing the LAN Path to Your VPN Firewall Router 8-5 Testing the Path from Your PC to a Remote Device 8-6 Restoring the Default Configuration and Password 8-7 viii Contents 1.1 November, 2009
FVS318G User Manual
Page 15
...ProSafe VPN Firewall connects your network from hackers. The FVS318G allows Internet access for Denial of Gigabit Ethernet LAN and WAN ports ensures extremely high data transfer speeds. Parents and network administrators can establish restricted access policies based on Network Address Translation (NAT) for security, the FVS318G... modem. The use the firewall within minutes. The FVS318G is a complete security solution that rely on time-of the VPN Firewall Router The VPN firewall provides the following sections: • "Key Features of the VPN Firewall Router" on page 1-1 •...
...ProSafe VPN Firewall connects your network from hackers. The FVS318G allows Internet access for Denial of Gigabit Ethernet LAN and WAN ports ensures extremely high data transfer speeds. Parents and network administrators can establish restricted access policies based on Network Address Translation (NAT) for security, the FVS318G... modem. The use the firewall within minutes. The FVS318G is a complete security solution that rely on time-of the VPN Firewall Router The VPN firewall provides the following sections: • "Key Features of the VPN Firewall Router" on page 1-1 •...
FVS318G User Manual
Page 16
...1-2 Introduction 1.1 November, 2009 ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • Built-in eight-port 10/100/1000 Mbps Gigabit Ethernet LAN switch for extremely fast data transfer between a central office and telecommuters. Advanced VPN Support for connection to a WAN... VPN support. • Advanced stateful packet inspection (SPI) firewall with Content Filtering Unlike simple Internet sharing NAT routers, the FVS318G is a true firewall, using stateful packet inspection (SPI) to Internet locations or services that you specify as Ping of the NETGEAR ProSafe VPN ...
...1-2 Introduction 1.1 November, 2009 ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • Built-in eight-port 10/100/1000 Mbps Gigabit Ethernet LAN switch for extremely fast data transfer between a central office and telecommuters. Advanced VPN Support for connection to a WAN... VPN support. • Advanced stateful packet inspection (SPI) firewall with Content Filtering Unlike simple Internet sharing NAT routers, the FVS318G is a true firewall, using stateful packet inspection (SPI) to Internet locations or services that you specify as Ping of the NETGEAR ProSafe VPN ...
FVS318G User Manual
Page 18
... the IPsec VPN tunnels are interoperable with your type of ISP account. • VPN Wizard. For security, you maximize your use of the VPN firewall: • Flash memory for your product. 1-4 Introduction 1.1 November, 2009 ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Easy...Browser-Based Management. The firewall incorporates built-in the Warranty and Support information card provided with other VPNCcompliant VPN routers and clients. • Diagnostic Functions. The VPN firewall includes the NETGEAR VPN Wizard to easily configure IPsec VPN tunnels according to the ...
... the IPsec VPN tunnels are interoperable with your type of ISP account. • VPN Wizard. For security, you maximize your use of the VPN firewall: • Flash memory for your product. 1-4 Introduction 1.1 November, 2009 ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Easy...Browser-Based Management. The firewall incorporates built-in the Warranty and Support information card provided with other VPNCcompliant VPN routers and clients. • Diagnostic Functions. The VPN firewall includes the NETGEAR VPN Wizard to easily configure IPsec VPN tunnels according to the ...
FVS318G User Manual
Page 23
... configure your ISP(s). Chapter 2 Connecting the FVS318G to the Internet The initial Internet configuration of the ProSafe VPN Firewall is on page 2-11. 5. This chapter contains the following sections: • "Understanding the Connection Steps" on page 2-1 • "Logging into the VPN Firewall Router Router" on the WAN port (optional). See "Logging into the VPN Firewall Router Router" on page 2-2 • "Navigating the...
... configure your ISP(s). Chapter 2 Connecting the FVS318G to the Internet The initial Internet configuration of the ProSafe VPN Firewall is on page 2-11. 5. This chapter contains the following sections: • "Understanding the Connection Steps" on page 2-1 • "Logging into the VPN Firewall Router Router" on the WAN port (optional). See "Logging into the VPN Firewall Router Router" on page 2-2 • "Navigating the...
FVS318G User Manual
Page 24
... field, type password Note that both entries are advanced features and changing them is not usually required. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual 6. Logging into the VPN Firewall Router Router To connect to the VPN firewall, your computer for DHCP, refer to the VPN firewall follow these are in "Qualified Web Browsers" on page 2-15. Optionally, you can change the factory...
... field, type password Note that both entries are advanced features and changing them is not usually required. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual 6. Logging into the VPN Firewall Router Router To connect to the VPN firewall, your computer for DHCP, refer to the VPN firewall follow these are in "Qualified Web Browsers" on page 2-15. Optionally, you can change the factory...
FVS318G User Manual
Page 25
Click Login. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual 5. The Web Configuration Manager appears, displaying the Router Status menu: Figure 2-2 Navigating the Menus The Web Configuration Manager menus are organized in a layered structure of main categories and submenus: Connecting the FVS318G to the Internet 2-3 1.1 November, 2009
Click Login. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual 5. The Web Configuration Manager appears, displaying the Router Status menu: Figure 2-2 Navigating the Menus The Web Configuration Manager menus are organized in a layered structure of main categories and submenus: Connecting the FVS318G to the Internet 2-3 1.1 November, 2009
FVS318G User Manual
Page 34
...assigned one inbound mapping is configured using an inbound firewall rule. Classical Routing In classical routing mode, the VPN firewall performs routing, but without NAT. To configure routing select Network Configuration > WAN Settings > WAN Mode. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • If your ISP has ... traffic on the other public IP addresses to specific PCs on page 1-5). 2-12 Connecting the FVS318G to you, and you can view the Router Status page (see "Monitoring VPN Tunnel Connection Status" on page 9-14) or look at the LEDs on the front panel...
...assigned one inbound mapping is configured using an inbound firewall rule. Classical Routing In classical routing mode, the VPN firewall performs routing, but without NAT. To configure routing select Network Configuration > WAN Settings > WAN Mode. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • If your ISP has ... traffic on the other public IP addresses to specific PCs on page 1-5). 2-12 Connecting the FVS318G to you, and you can view the Router Status page (see "Monitoring VPN Tunnel Connection Status" on page 9-14) or look at the LEDs on the front panel...
FVS318G User Manual
Page 35
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Configuring Dynamic DNS (Optional) Dynamic DNS (DDNS) is an Internet service that name linked with your IP address by others on the Internet. ... what your IP address will be, and the address can change frequently-hence, the need for a commercial DDNS service, which allows you have that allows routers with a DDNS provider such as DynDNS.org, TZO.com Oray.net, or 3322.org. (Links to the DynDNS, TZO, Oray.net, and 3322.org are...
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Configuring Dynamic DNS (Optional) Dynamic DNS (DDNS) is an Internet service that name linked with your IP address by others on the Internet. ... what your IP address will be, and the address can change frequently-hence, the need for a commercial DDNS service, which allows you have that allows routers with a DDNS provider such as DynDNS.org, TZO.com Oray.net, or 3322.org. (Links to the DynDNS, TZO, Oray.net, and 3322.org are...
FVS318G User Manual
Page 38
... Speed LED blinks continuously, you are now using, or • Use This MAC Address to have the VPN firewall use the MAC address of the WAN port. Router's MAC Address. This is necessary for your ISP requires MAC authentication, then select either of these options:... default is 1500 Bytes, or 1492 Bytes for most cases, your VPN firewall can automatically determine the connection speed of the computer you may need to the Internet 1.1 November, 2009 AutoSense is the default. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual a. MTU Size. For some ISPs, you are sure your...
... Speed LED blinks continuously, you are now using, or • Use This MAC Address to have the VPN firewall use the MAC address of the WAN port. Router's MAC Address. This is necessary for your ISP requires MAC authentication, then select either of these options:... default is 1500 Bytes, or 1492 Bytes for most cases, your VPN firewall can automatically determine the connection speed of the computer you may need to the Internet 1.1 November, 2009 AutoSense is the default. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual a. MTU Size. For some ISPs, you are sure your...
FVS318G User Manual
Page 40
... your clients would only be sent over routers that do not support forwarding of these types of lease). To enable clients to obtain IP addresses from a DHCP server on a remote subnet, you have defined. • Subnet Mask. • Gateway IP Address (the firewall's LAN IP address). • Primary...relay agent for DHCP broadcast messages to be able to obtain IP addresses from the DHCP server which is on the same subnet. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • An IP Address from the range you have to configure the DHCP Relay Agent on the subnet that contains ...
... your clients would only be sent over routers that do not support forwarding of these types of lease). To enable clients to obtain IP addresses from a DHCP server on a remote subnet, you have defined. • Subnet Mask. • Gateway IP Address (the firewall's LAN IP address). • Primary...relay agent for DHCP broadcast messages to be able to obtain IP addresses from the DHCP server which is on the same subnet. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • An IP Address from the range you have to configure the DHCP Relay Agent on the subnet that contains ...
FVS318G User Manual
Page 51
...-down menu, choose the direction in internal networks (LANs). This effectively disables RIP. It allows a router to exchange its routing information automatically with other routers, and allows it accept any RIP packets from the main menu. 2. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Configuring Routing Information Protocol (RIP) RIP (Routing Information Protocol, RFC 2453) is an...
...-down menu, choose the direction in internal networks (LANs). This effectively disables RIP. It allows a router to exchange its routing information automatically with other routers, and allows it accept any RIP packets from the main menu. 2. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Configuring Routing Information Protocol (RIP) RIP (Routing Information Protocol, RFC 2453) is an...
FVS318G User Manual
Page 52
... information. Both RIP-2B and RIP-2M send the routing data in RIP-2 format and uses subnet broadcasting. - Sends the routing data in RIP-2 format: - ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • Both. From the RIP Version pull-down menu, choose the version from other routers. • In Only. If you selected RIP-2B or RIP...
... information. Both RIP-2B and RIP-2M send the routing data in RIP-2 format and uses subnet broadcasting. - Sends the routing data in RIP-2 format: - ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • Both. From the RIP Version pull-down menu, choose the version from other routers. • In Only. If you selected RIP-2B or RIP...
FVS318G User Manual
Page 53
...ProSafe VPN Firewall to protect your LAN) from another (the untrusted network, such as the Internet), while allowing communication between the two. A firewall is a special category of Event Logs and Alerts" on page 4-33 • "Administrator Tips" on page 4-31 • "E-Mail Notifications of router...; "Configuring a Bandwidth Profile" on page 4-30 • "Configuring Session Limits" on page 4-33 About Firewall Protection and Content Filtering The ProSafe VPN Firewall provides you with Web content filtering options, plus browsing activity reporting and instant alerts via e-mail. Chapter...
...ProSafe VPN Firewall to protect your LAN) from another (the untrusted network, such as the Internet), while allowing communication between the two. A firewall is a special category of Event Logs and Alerts" on page 4-33 • "Administrator Tips" on page 4-31 • "E-Mail Notifications of router...; "Configuring a Bandwidth Profile" on page 4-30 • "Configuring Session Limits" on page 4-33 About Firewall Protection and Content Filtering The ProSafe VPN Firewall provides you with Web content filtering options, plus browsing activity reporting and instant alerts via e-mail. Chapter...
FVS318G User Manual
Page 54
... • "Adding Customized Services" on page 4-16 • "Setting Quality of Service (QoS) Priorities" on the VPN firewall can have access to. Using Rules to the other. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual A firewall incorporates the functions of a NAT (Network Address Translation) router, while adding features for dealing with a hacker intrusion or attack, and for outbound traffic.
... • "Adding Customized Services" on page 4-16 • "Setting Quality of Service (QoS) Priorities" on the VPN firewall can have access to. Using Rules to the other. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual A firewall incorporates the functions of a NAT (Network Address Translation) router, while adding features for dealing with a hacker intrusion or attack, and for outbound traffic.
FVS318G User Manual
Page 55
... (QoS) Priorities" on page 4-16). Outbound Rules (Service Blocking) The FVS318G allows you create will be covered by this QoS priority if desired to change the traffic mix through the router. Outbound Rules Item Service Name Action (Filter) Description Select the desired Service...'s category of certain Internet services by PCs on page 4-16. • Quality of performance and tolerance for outgoing traffic. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual About Services-Based Rules The rules to block traffic are only useful if the traffic is already covered by a BLOCK...
... (QoS) Priorities" on page 4-16). Outbound Rules (Service Blocking) The FVS318G allows you create will be covered by this QoS priority if desired to change the traffic mix through the router. Outbound Rules Item Service Name Action (Filter) Description Select the desired Service...'s category of certain Internet services by PCs on page 4-16. • Quality of performance and tolerance for outgoing traffic. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual About Services-Based Rules The rules to block traffic are only useful if the traffic is already covered by a BLOCK...