FVS318G Installation Guide
Page 2
If you can manually enter the MAC address by NETGEAR, Inc. Turn off and unplug the modem, turn off , reset the firewall as the user name and password for selecting NETEAR products. Plug in the United States and/or other countries. The FVS318G will be on the modem, wait two... the Ethernet cable to the FVS318G from the modem is subject to the FVS318G with this sequence: 1. The Router Status window will be on the account. Troubleshooting Tips Here are turned on. • For each powered on the computer. NETGEAR and the NETGEAR logo are trademarks or registered...
If you can manually enter the MAC address by NETGEAR, Inc. Turn off and unplug the modem, turn off , reset the firewall as the user name and password for selecting NETEAR products. Plug in the United States and/or other countries. The FVS318G will be on the modem, wait two... the Ethernet cable to the FVS318G from the modem is subject to the FVS318G with this sequence: 1. The Router Status window will be on the account. Troubleshooting Tips Here are turned on. • For each powered on the computer. NETGEAR and the NETGEAR logo are trademarks or registered...
FVS318G User Manual
Page 5
... ...1-7 Default IP Address, Login Name, and Password Location 1-8 Qualified Web Browsers 1-8 Chapter 2 Connecting the FVS318G to the Internet Understanding the Connection Steps 2-1 Logging into the VPN Firewall Router Router 2-2 Navigating the Menus ...2-3 Configuring the Internet Connections 2-4 Automatically Detecting and Connecting 2-5 Manually Configuring the Internet Connection 2-7 Configuring the WAN Mode 2-11 Network Address Translation 2-11 Contents v 1.1November...
... ...1-7 Default IP Address, Login Name, and Password Location 1-8 Qualified Web Browsers 1-8 Chapter 2 Connecting the FVS318G to the Internet Understanding the Connection Steps 2-1 Logging into the VPN Firewall Router Router 2-2 Navigating the Menus ...2-3 Configuring the Internet Connections 2-4 Automatically Detecting and Connecting 2-5 Manually Configuring the Internet Connection 2-7 Configuring the WAN Mode 2-11 Network Address Translation 2-11 Contents v 1.1November...
FVS318G User Manual
Page 16
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • Built-in eight-port 10/100/1000 Mbps Gigabit Ethernet LAN switch for extremely fast data transfer between a central office and telecommuters. Advanced VPN Support for Web services, Web addresses, and keywords within Web addresses. Its firewall features include: • Automatically detects and thwarts denial of service (DoS) attacks such as off...
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • Built-in eight-port 10/100/1000 Mbps Gigabit Ethernet LAN switch for extremely fast data transfer between a central office and telecommuters. Advanced VPN Support for Web services, Web addresses, and keywords within Web addresses. Its firewall features include: • Automatically detects and thwarts denial of service (DoS) attacks such as off...
FVS318G User Manual
Page 18
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Easy Installation and Management You can limit remote management access to monitor its status and activity. Browser-based configuration allows you to easily configure your type of personal computer, such as Ping, Trace Route, DNS lookup, and remote reboot. • Remote Management. The VPN firewall automatically senses the type of Internet...
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Easy Installation and Management You can limit remote management access to monitor its status and activity. Browser-based configuration allows you to easily configure your type of personal computer, such as Ping, Trace Route, DNS lookup, and remote reboot. • Remote Management. The VPN firewall automatically senses the type of Internet...
FVS318G User Manual
Page 24
...is detailed separately in Appendix B, "Related Documents. In the User field, type admin 4. Logging into the VPN Firewall Router Router To connect to the VPN firewall, your computer for DHCP, refer to the link in this chapter. However, these steps: 1. In ... address automatically from the VPN firewall by DHCP. To connect and log in to a ping, and you can enable each WAN port to respond to the VPN firewall follow these are in "Qualified Web Browsers" on page 2-15. Figure 2-1 3. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual 6. Configure the WAN options...
...is detailed separately in Appendix B, "Related Documents. In the User field, type admin 4. Logging into the VPN Firewall Router Router To connect to the VPN firewall, your computer for DHCP, refer to the link in this chapter. However, these steps: 1. In ... address automatically from the VPN firewall by DHCP. To connect and log in to a ping, and you can enable each WAN port to respond to the VPN firewall follow these are in "Qualified Web Browsers" on page 2-15. Figure 2-1 3. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual 6. Configure the WAN options...
FVS318G User Manual
Page 25
Click Login. The Web Configuration Manager appears, displaying the Router Status menu: Figure 2-2 Navigating the Menus The Web Configuration Manager menus are organized in a layered structure of main categories and submenus: Connecting the FVS318G to the Internet 2-3 1.1 November, 2009 ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual 5.
Click Login. The Web Configuration Manager appears, displaying the Router Status menu: Figure 2-2 Navigating the Menus The Web Configuration Manager menus are organized in a layered structure of main categories and submenus: Connecting the FVS318G to the Internet 2-3 1.1 November, 2009 ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual 5.
FVS318G User Manual
Page 34
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • If your ISP has provided you with multiple public IP addresses, you can use classical routing for Internet access by your LAN must have assigned one of the WAN port, you can choose classical routing. Classical Routing In classical routing mode, the VPN firewall... of static IP addresses to the Internet 1.1 November, 2009 To gain Internet access, each PC, you can view the Router Status page (see "Monitoring VPN Tunnel Connection Status" on page 9-14) or look at the LEDs on the front panel (see "Front Panel Features"...
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • If your ISP has provided you with multiple public IP addresses, you can use classical routing for Internet access by your LAN must have assigned one of the WAN port, you can choose classical routing. Classical Routing In classical routing mode, the VPN firewall... of static IP addresses to the Internet 1.1 November, 2009 To gain Internet access, each PC, you can view the Router Status page (see "Monitoring VPN Tunnel Connection Status" on page 9-14) or look at the LEDs on the front panel (see "Front Panel Features"...
FVS318G User Manual
Page 35
... the need for a commercial DDNS service, which allows you can register a domain name and have configured your account information in the firewall, whenever your ISP-assigned IP address changes, your ISP assigns a private WAN IP address such as DynDNS.org, TZO.com Oray.... by others on the Internet. Note: If your firewall will be, and the address can be routed on the Internet. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Configuring Dynamic DNS (Optional) Dynamic DNS (DDNS) is an Internet service that allows routers with a DDNS provider such as 192.168.x.x or...
... the need for a commercial DDNS service, which allows you can register a domain name and have configured your account information in the firewall, whenever your ISP-assigned IP address changes, your ISP assigns a private WAN IP address such as DynDNS.org, TZO.com Oray.... by others on the Internet. Note: If your firewall will be, and the address can be routed on the Internet. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Configuring Dynamic DNS (Optional) Dynamic DNS (DDNS) is an Internet service that allows routers with a DDNS provider such as 192.168.x.x or...
FVS318G User Manual
Page 38
... Control) address. However, if your ISP requires MAC authentication, then select either of these options: • Use this Computer's MAC address to have the VPN firewall use the MAC address of the WAN port. AutoSense is Use default address. The default is the default. c. Port Speed. Router's MAC Address. MTU Size. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual a.
... Control) address. However, if your ISP requires MAC authentication, then select either of these options: • Use this Computer's MAC address to have the VPN firewall use the MAC address of the WAN port. AutoSense is Use default address. The default is the default. c. Port Speed. Router's MAC Address. MTU Size. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual a.
FVS318G User Manual
Page 40
... address in the WAN settings page). The DHCP Relay Agent makes it can relay DHCP broadcast messages to your clients would only be sent over routers that enables DHCP clients to obtain IP addresses from a DHCP server on the same subnet. The DHCP Relay Agent is not located on the .../Secondary DNS IP along with the ISP's DNS servers (as DHCP and allows you have to configure the DHCP Relay Agent on the local subnet. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • An IP Address from the range you have defined. • Subnet Mask. • Gateway IP Address (the...
... address in the WAN settings page). The DHCP Relay Agent makes it can relay DHCP broadcast messages to your clients would only be sent over routers that enables DHCP clients to obtain IP addresses from a DHCP server on the same subnet. The DHCP Relay Agent is not located on the .../Secondary DNS IP along with the ISP's DNS servers (as DHCP and allows you have to configure the DHCP Relay Agent on the local subnet. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • An IP Address from the range you have defined. • Subnet Mask. • Gateway IP Address (the...
FVS318G User Manual
Page 51
... effectively disables RIP. Select Network Configuration > Routing from other routers, and allows it accept any RIP packets from the main menu. 2. LAN Configuration 1.1 November, 2009 3-13 To configure RIP parameters: 1. Click the RIP Configuration link to changes in the network. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Configuring Routing Information Protocol (RIP) RIP (Routing Information Protocol...
... effectively disables RIP. Select Network Configuration > Routing from other routers, and allows it accept any RIP packets from the main menu. 2. LAN Configuration 1.1 November, 2009 3-13 To configure RIP parameters: 1. Click the RIP Configuration link to changes in the network. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Configuring Routing Information Protocol (RIP) RIP (Routing Information Protocol...
FVS318G User Manual
Page 52
..., 2009 LAN Configuration Sends the routing data in RIP-2 format: - ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • Both. This is the most commonly supported version. • RIP-2. Sends the routing data in RIP-2 format and uses multicasting. 5. From the RIP Version pull-down menu, choose the version from other routers, but does not broadcast its routing table...
..., 2009 LAN Configuration Sends the routing data in RIP-2 format: - ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • Both. This is the most commonly supported version. • RIP-2. Sends the routing data in RIP-2 format and uses multicasting. 5. From the RIP Version pull-down menu, choose the version from other routers, but does not broadcast its routing table...
FVS318G User Manual
Page 54
... used to block or allow specific traffic passing through from attacks and intrusions. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual A firewall incorporates the functions of a NAT (Network Address Translation) router, while adding features for dealing with a hacker intrusion or attack, and for controlling the types of traffic that it considers whether the incoming packet is ...
... used to block or allow specific traffic passing through from attacks and intrusions. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual A firewall incorporates the functions of a NAT (Network Address Translation) router, while adding features for dealing with a hacker intrusion or attack, and for controlling the types of traffic that it considers whether the incoming packet is ...
FVS318G User Manual
Page 55
...in response to either allow or block that traffic (see "Adding Customized Services" on your network. The firewall can change the traffic mix through the router. You can be changed to block all outbound traffic and enable only specific services to change this otherwise ...Filter) Description Select the desired Service or application to block the use of certain Internet services by the Default rule. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual About Services-Based Rules The rules to the list of services in the factory default list. Additional services can be...
...in response to either allow or block that traffic (see "Adding Customized Services" on your network. The firewall can change the traffic mix through the router. You can be changed to block all outbound traffic and enable only specific services to change this otherwise ...Filter) Description Select the desired Service or application to block the use of certain Internet services by the Default rule. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual About Services-Based Rules The rules to the list of services in the factory default list. Additional services can be...
FVS318G User Manual
Page 73
...VPN firewall router's Content Filtering and Web Components filtering. Some of the VPN firewall wants to connect to another VPN endpoint on the LAN side of these components are disabled; For example, if connections to a specific IP address are small programs embedded in NAT mode, all packets going to the Remote VPN... be blocked. Java applets are blocked by NETGEAR" message. Enabling this setting blocks ActiveX applets..., the packets become invalid. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • VPN Pass through-When the FVS318G is in web pages that...
...VPN firewall router's Content Filtering and Web Components filtering. Some of the VPN firewall wants to connect to another VPN endpoint on the LAN side of these components are disabled; For example, if connections to a specific IP address are small programs embedded in NAT mode, all packets going to the Remote VPN... be blocked. Java applets are blocked by NETGEAR" message. Enabling this setting blocks ActiveX applets..., the packets become invalid. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • VPN Pass through-When the FVS318G is in web pages that...
FVS318G User Manual
Page 74
.... You can bypass Keyword blocking for which keyword blocking has not been enabled. Access to the list of Trusted Domains. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual - Requests from the PCs in the groups for trusted domains by adding the exact matching domain to the domains or keywords...as is the newsgroup alt.pictures.XXX. • If the keyword ".com" is specified, only Web sites with useful functions provided by the VPN firewall router. Keyword application examples: • If the keyword "XXX" is specified, the URL is blocked, as .edu or .gov) can specify ...
.... You can bypass Keyword blocking for which keyword blocking has not been enabled. Access to the list of Trusted Domains. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual - Requests from the PCs in the groups for trusted domains by adding the exact matching domain to the domains or keywords...as is the newsgroup alt.pictures.XXX. • If the keyword ".com" is specified, only Web sites with useful functions provided by the VPN firewall router. Keyword application examples: • If the keyword "XXX" is specified, the URL is blocked, as .edu or .gov) can specify ...
FVS318G User Manual
Page 79
... A PC makes an outgoing connection using the different port numbers that you know the port numbers used by the firewall when the router is six colonseparated pairs of ports, making them with the PC. 3. The remote system receives the PC's request...port or ports associated with the inbound service rules. The VPN firewall router matches the response to the previous request, and forwards the response to f). ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual 4. To add a manual binding entry, enter the following data in the Port Triggering table. 2. A valid MAC address...
... A PC makes an outgoing connection using the different port numbers that you know the port numbers used by the firewall when the router is six colonseparated pairs of ports, making them with the PC. 3. The remote system receives the PC's request...port or ports associated with the inbound service rules. The VPN firewall router matches the response to the previous request, and forwards the response to f). ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual 4. To add a manual binding entry, enter the following data in the Port Triggering table. 2. A valid MAC address...
FVS318G User Manual
Page 80
In the Outgoing (Trigger) Port Range fields: a. Enter the End Port range (1 - 65534). 4-28 Firewall Protection and Content Filtering 1.1 November, 2009 b. Enter a user-defined name for this rule in the Name field. 3. From the ...application at any time. • After a PC has finished using a port triggering application, there is required because the VPN firewall router cannot be used by another PC. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Note these restrictions with Port Triggering: • Only one PC can be sure when the application has terminated. Enter ...
In the Outgoing (Trigger) Port Range fields: a. Enter the End Port range (1 - 65534). 4-28 Firewall Protection and Content Filtering 1.1 November, 2009 b. Enter a user-defined name for this rule in the Name field. 3. From the ...application at any time. • After a PC has finished using a port triggering application, there is required because the VPN firewall router cannot be used by another PC. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Note these restrictions with Port Triggering: • Only one PC can be sure when the application has terminated. Enter ...
FVS318G User Manual
Page 85
...your VPN firewall router will be configured to log and then e-mail denial of access, general attack information, and other general information based on the settings you can further refine your control with the following operational items: 1. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual E-...Mail Notifications of Event Logs and Alerts The Firewall Logs can be generated when someone on your network tries to access a blocked ...
...your VPN firewall router will be configured to log and then e-mail denial of access, general attack information, and other general information based on the settings you can further refine your control with the following operational items: 1. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual E-...Mail Notifications of Event Logs and Alerts The Firewall Logs can be generated when someone on your network tries to access a blocked ...
FVS318G User Manual
Page 96
... on the Client software to save the policy. 5-10 Virtual Private Networking Using IPsec 1.1 November, 2009 ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual 4. In the upper left of the window, click the disk icon to match the policy on the router. • On the left, expand Authentication (Phase 1) and click Proposal 1: no changes are needed . •...
... on the Client software to save the policy. 5-10 Virtual Private Networking Using IPsec 1.1 November, 2009 ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual 4. In the upper left of the window, click the disk icon to match the policy on the router. • On the left, expand Authentication (Phase 1) and click Proposal 1: no changes are needed . •...