FVS318G Installation Guide
Page 1
...NETGEAR knowledge base at http://kbserver.netgear.com. Now, Configure the FVS318G for 10 Mbps. From the Ethernet connected computer you perform the VPN firewall...it on your modem and computer. )NSTALLATION'UIDE ProSafe Gigabit 8 Port VPN Firewall FVS318G Start Here Follow these instructions to set up, ...router is securely attached to the FVS318G Internet port and the modem. The WAN port light should turn off for Internet Access Use your network. 2. Each local LAN port has two LEDs. The FV316G login screen will be sure to restart your browser to Install Your VPN firewall...
...NETGEAR knowledge base at http://kbserver.netgear.com. Now, Configure the FVS318G for 10 Mbps. From the Ethernet connected computer you perform the VPN firewall...it on your modem and computer. )NSTALLATION'UIDE ProSafe Gigabit 8 Port VPN Firewall FVS318G Start Here Follow these instructions to set up, ...router is securely attached to the FVS318G Internet port and the modem. The WAN port light should turn off for Internet Access Use your network. 2. Each local LAN port has two LEDs. The FV316G login screen will be sure to restart your browser to Install Your VPN firewall...
FVS318G User Manual
Page 1
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual NETGEAR, Inc. 350 East Plumeria Drive San Jose, CA 95134 202-10521-01 v1.1 November, 2009
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual NETGEAR, Inc. 350 East Plumeria Drive San Jose, CA 95134 202-10521-01 v1.1 November, 2009
FVS318G User Manual
Page 2
... trademarks or registered trademarks of NETGEAR, Inc. Please refer to the use or application of the product(s) or circuit layout(s) described herein. Voluntary Control Council for Interference (VCCI) Statement This equipment is hereby certified that the ProSafe VPN Firewall has been suppressed in such ...to test the series for example, test transmitters) in the operating instructions. © 2009 by Data Processing Equipment and Electronic Office Machines aimed at http://www.netgear.com/register, we can provide you with faster expert technical support and timely notices of product ...
... trademarks or registered trademarks of NETGEAR, Inc. Please refer to the use or application of the product(s) or circuit layout(s) described herein. Voluntary Control Council for Interference (VCCI) Statement This equipment is hereby certified that the ProSafe VPN Firewall has been suppressed in such ...to test the series for example, test transmitters) in the operating instructions. © 2009 by Data Processing Equipment and Electronic Office Machines aimed at http://www.netgear.com/register, we can provide you with faster expert technical support and timely notices of product ...
FVS318G User Manual
Page 5
... ...1-5 Front Panel Features ...1-5 Rear Panel Features ...1-7 Default IP Address, Login Name, and Password Location 1-8 Qualified Web Browsers 1-8 Chapter 2 Connecting the FVS318G to the Internet Understanding the Connection Steps 2-1 Logging into the VPN Firewall Router Router 2-2 Navigating the Menus ...2-3 Configuring the Internet Connections 2-4 Automatically Detecting and Connecting 2-5 Manually Configuring the Internet Connection 2-7 Configuring the WAN Mode...
... ...1-5 Front Panel Features ...1-5 Rear Panel Features ...1-7 Default IP Address, Login Name, and Password Location 1-8 Qualified Web Browsers 1-8 Chapter 2 Connecting the FVS318G to the Internet Understanding the Connection Steps 2-1 Logging into the VPN Firewall Router Router 2-2 Navigating the Menus ...2-3 Configuring the Internet Connections 2-4 Automatically Detecting and Connecting 2-5 Manually Configuring the Internet Connection 2-7 Configuring the WAN Mode...
FVS318G User Manual
Page 7
... FVS318G VPN Connection Status and Logs 5-13 Managing VPN Policies 5-14 Managing IKE Policies 5-14 Managing VPN Policies 5-16 Configuring Extended Authentication (XAUTH 5-17 Configuring XAUTH for VPN Clients 5-18 User Database Configuration 5-19 RADIUS Client Configuration 5-19 Assigning IP Addresses to Remote Users (ModeConfig 5-21 Mode Config Operation 5-22 Configuring the VPN Firewall Router 5-22 Configuring the ProSafe VPN...
... FVS318G VPN Connection Status and Logs 5-13 Managing VPN Policies 5-14 Managing IKE Policies 5-14 Managing VPN Policies 5-16 Configuring Extended Authentication (XAUTH 5-17 Configuring XAUTH for VPN Clients 5-18 User Database Configuration 5-19 RADIUS Client Configuration 5-19 Assigning IP Addresses to Remote Users (ModeConfig 5-21 Mode Config Operation 5-22 Configuring the VPN Firewall Router 5-22 Configuring the ProSafe VPN...
FVS318G User Manual
Page 8
... Self Certificates 6-11 Obtaining a Self Certificate from a Certificate Authority 6-11 Managing your Certificate Revocation List (CRL 6-14 Chapter 7 Router and Network Management Performance Management 7-1 Bandwidth Capacity 7-1 Features That Reduce Traffic 7-2 Features That Increase Traffic 7-5 Using QoS to Shift the... Connection 8-4 Troubleshooting a TCP/IP Network Using a Ping Utility 8-5 Testing the LAN Path to Your VPN Firewall Router 8-5 Testing the Path from Your PC to a Remote Device 8-6 Restoring the Default Configuration and Password 8-7 viii Contents 1.1 November, 2009
... Self Certificates 6-11 Obtaining a Self Certificate from a Certificate Authority 6-11 Managing your Certificate Revocation List (CRL 6-14 Chapter 7 Router and Network Management Performance Management 7-1 Bandwidth Capacity 7-1 Features That Reduce Traffic 7-2 Features That Increase Traffic 7-5 Using QoS to Shift the... Connection 8-4 Troubleshooting a TCP/IP Network Using a Ping Utility 8-5 Testing the LAN Path to Your VPN Firewall Router 8-5 Testing the Path from Your PC to a Remote Device 8-6 Restoring the Default Configuration and Password 8-7 viii Contents 1.1 November, 2009
FVS318G User Manual
Page 11
... information in a malfunction or damage to install, configure and troubleshoot the ProSafe VPN Firewall. Conventions, Formats, and Scope The conventions, formats, and scope of note may result in this manual are described in the following paragraphs: • Typographical Conventions. About This Manual The NETGEAR® FVS318G ProSafe™ Gigabit 8 Port VPN Firewall Reference Manual describes how to the equipment.
... information in a malfunction or damage to install, configure and troubleshoot the ProSafe VPN Firewall. Conventions, Formats, and Scope The conventions, formats, and scope of note may result in this manual are described in the following paragraphs: • Typographical Conventions. About This Manual The NETGEAR® FVS318G ProSafe™ Gigabit 8 Port VPN Firewall Reference Manual describes how to the equipment.
FVS318G User Manual
Page 12
...This Manual To print this manual, your printer supports printing two pages on a single sheet of this feature. Failure to LAN and Firewall configuration xii About This Manual 1.1 November, 2009 website at http://www.adobe.com. ....netgear.com/products/FVS318G.asp. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Danger: This is written for the VPN firewall according to these specifications: Product Version Manual Publication Date ProSafe VPN Firewall November, 2009 For more information about network, Internet, firewall, and VPN technologies, see the links to the NETGEAR...
...This Manual To print this manual, your printer supports printing two pages on a single sheet of this feature. Failure to LAN and Firewall configuration xii About This Manual 1.1 November, 2009 website at http://www.adobe.com. ....netgear.com/products/FVS318G.asp. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Danger: This is written for the VPN firewall according to these specifications: Product Version Manual Publication Date ProSafe VPN Firewall November, 2009 For more information about network, Internet, firewall, and VPN technologies, see the links to the NETGEAR...
FVS318G User Manual
Page 13
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual About This Manual xiii 1.1 November, 2009
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual About This Manual xiii 1.1 November, 2009
FVS318G User Manual
Page 14
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual xiv About This Manual 1.1 November, 2009
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual xiv About This Manual 1.1 November, 2009
FVS318G User Manual
Page 15
.... Chapter 1 Introduction The ProSafe VPN Firewall connects your network from hackers. In addition to 253 personal computers. The FVS318G is a complete security solution that rely on Network Address Translation (NAT) for security, the FVS318G uses stateful packet inspection for Denial of the VPN Firewall Router The VPN firewall provides the following sections: • "Key Features of the VPN Firewall Router" on page 1-1 •...
.... Chapter 1 Introduction The ProSafe VPN Firewall connects your network from hackers. In addition to 253 personal computers. The FVS318G is a complete security solution that rely on Network Address Translation (NAT) for security, the FVS318G uses stateful packet inspection for Denial of the VPN Firewall Router The VPN firewall provides the following sections: • "Key Features of the VPN Firewall Router" on page 1-1 •...
FVS318G User Manual
Page 16
.... • Flash memory for firmware upgrade. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • Built-in eight-port 10/100/1000 Mbps Gigabit Ethernet LAN switch for extremely fast data transfer between a central office and telecommuters. A Powerful, True Firewall with Content Filtering Unlike simple Internet sharing NAT routers, the FVS318G is a true firewall, using stateful packet inspection (SPI) to your...
.... • Flash memory for firmware upgrade. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • Built-in eight-port 10/100/1000 Mbps Gigabit Ethernet LAN switch for extremely fast data transfer between a central office and telecommuters. A Powerful, True Firewall with Content Filtering Unlike simple Internet sharing NAT routers, the FVS318G is a true firewall, using stateful packet inspection (SPI) to your...
FVS318G User Manual
Page 17
... Ethernet network, a 100 Mbps Fast Ethernet network, or a 1000 Mbps Gigabit Ethernet network. The FVS318G incorporates Auto UplinkTM technology. When DHCP is a protocol for traffic prioritization. The firewall obtains actual DNS addresses from the ISP during connection setup and forwards DNS ..., port scans, attacks, and administrator logins. This feature eliminates the need to make the right connection. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • Logs security events such as EnterNet or WinPOET on your local network. • DNS Proxy. Extensive...
... Ethernet network, a 100 Mbps Fast Ethernet network, or a 1000 Mbps Gigabit Ethernet network. The FVS318G incorporates Auto UplinkTM technology. When DHCP is a protocol for traffic prioritization. The firewall obtains actual DNS addresses from the ISP during connection setup and forwards DNS ..., port scans, attacks, and administrator logins. This feature eliminates the need to make the right connection. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • Logs security events such as EnterNet or WinPOET on your local network. • DNS Proxy. Extensive...
FVS318G User Manual
Page 18
... and Support information card provided with other VPNCcompliant VPN routers and clients. • Diagnostic Functions. The VPN firewall includes the NETGEAR VPN Wizard to easily configure IPsec VPN tunnels according to ensure the IPsec VPN tunnels are interoperable with your type of ISP....configuration allows you to login to the terms identified in diagnostic functions such as Windows, Macintosh, or Linux. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Easy Installation and Management You can limit remote management access to a specified remote IP address or range...
... and Support information card provided with other VPNCcompliant VPN routers and clients. • Diagnostic Functions. The VPN firewall includes the NETGEAR VPN Wizard to easily configure IPsec VPN tunnels according to ensure the IPsec VPN tunnels are interoperable with your type of ISP....configuration allows you to login to the terms identified in diagnostic functions such as Windows, Macintosh, or Linux. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Easy Installation and Management You can limit remote management access to a specified remote IP address or range...
FVS318G User Manual
Page 19
... ProSafe VPN Firewall front panel shown below includes four groups of the parts are incorrect, missing, or damaged, contact your NETGEAR dealer. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Package Contents The product package should contain the following items: • ProSafe VPN Firewall. • One AC power adapter. • Rubber feet. • One Category 5e (Cat5e) Ethernet cable (yellow). • ProSafe Gigabit 8 Port VPN Firewall FVS318G...
... ProSafe VPN Firewall front panel shown below includes four groups of the parts are incorrect, missing, or damaged, contact your NETGEAR dealer. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Package Contents The product package should contain the following items: • ProSafe VPN Firewall. • One AC power adapter. • Rubber feet. • One Category 5e (Cat5e) Ethernet cable (yellow). • ProSafe Gigabit 8 Port VPN Firewall FVS318G...
FVS318G User Manual
Page 20
... is described in the following table: Table 1-1. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual The function of port) On (Amber) Off DMZ On (Green) Off Description Power is supplied to the VPN firewall. The system has booted successfully. The LAN port is being transmitted or received by the port. Data is operating at 1,000 Mbps. Test mode...
... is described in the following table: Table 1-1. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual The function of port) On (Amber) Off DMZ On (Green) Off Description Power is supplied to the VPN firewall. The system has booted successfully. The LAN port is being transmitted or received by the port. Data is operating at 1,000 Mbps. Test mode...
FVS318G User Manual
Page 21
..., 2009 All configuration settings will be lost and the default password will be restored. • DC power receptacle: 12V @ 1.5A. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Rear Panel Features The rear panel of the ProSafe VPN Firewall includes a cable lock receptacle, and reset factory defaults switch, and a DC power connection. Figure 1-2 Viewed from left to right...; Factory Defaults button: Using a sharp object, press and hold this button for about ten seconds until the front panel TEST light flashes to reset the VPN firewall to factory default settings.
..., 2009 All configuration settings will be lost and the default password will be restored. • DC power receptacle: 12V @ 1.5A. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Rear Panel Features The rear panel of the ProSafe VPN Firewall includes a cable lock receptacle, and reset factory defaults switch, and a DC power connection. Figure 1-2 Viewed from left to right...; Factory Defaults button: Using a sharp object, press and hold this button for about ten seconds until the front panel TEST light flashes to reset the VPN firewall to factory default settings.
FVS318G User Manual
Page 22
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Default IP Address, Login Name, and Password Location Check the label on the bottom of the FVS318G's enclosure if you need a reminder of the following factory default information: IP Address User Name Password Figure 1-3 Qualified Web Browsers To configure the ProSafe VPN Firewall, an administrator must use Internet Explorer 5.1 or higher, Apple Safari 1.2 or higher, or Mozilla Firefox l.x Web browser with JavaScript, and cookies enabled. 1-8 Introduction 1.1 November, 2009
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Default IP Address, Login Name, and Password Location Check the label on the bottom of the FVS318G's enclosure if you need a reminder of the following factory default information: IP Address User Name Password Figure 1-3 Qualified Web Browsers To configure the ProSafe VPN Firewall, an administrator must use Internet Explorer 5.1 or higher, Apple Safari 1.2 or higher, or Mozilla Firefox l.x Web browser with JavaScript, and cookies enabled. 1-8 Introduction 1.1 November, 2009
FVS318G User Manual
Page 23
... your network. You can also program the WAN traffic meters at this phase (if required). See "Logging into the VPN Firewall Router Router" on page 2-2 • "Navigating the Menus" on page 2-3 • "Configuring the Internet Connections" on page...VPN Firewall Router Router" on the WAN port (optional). Select NAT or classical Routing. See "Configuring the Internet Connections" on page 2-4. 4. You can also change your VPN firewall. 1. Chapter 2 Connecting the FVS318G to the Internet The initial Internet configuration of the ProSafe VPN Firewall is on the NETGEAR...
... your network. You can also program the WAN traffic meters at this phase (if required). See "Logging into the VPN Firewall Router Router" on page 2-2 • "Navigating the Menus" on page 2-3 • "Configuring the Internet Connections" on page...VPN Firewall Router Router" on the WAN port (optional). Select NAT or classical Routing. See "Configuring the Internet Connections" on page 2-4. 4. You can also change your VPN firewall. 1. Chapter 2 Connecting the FVS318G to the Internet The initial Internet configuration of the ProSafe VPN Firewall is on the NETGEAR...
FVS318G User Manual
Page 24
...optional). Each of these tasks is detailed separately in the address field. Logging into the VPN Firewall Router Router To connect to the VPN firewall, your computer for DHCP, refer to the VPN firewall follow these are in later chapters. Enter http://192.168.1.1 in this chapter. Figure...to obtain an IP address automatically from the VPN firewall by DHCP. Start any of firewall and VPN features is not usually required. To connect and log in the browser. However, these steps: 1. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual 6. Optionally, you can change ...
...optional). Each of these tasks is detailed separately in the address field. Logging into the VPN Firewall Router Router To connect to the VPN firewall, your computer for DHCP, refer to the VPN firewall follow these are in later chapters. Enter http://192.168.1.1 in this chapter. Figure...to obtain an IP address automatically from the VPN firewall by DHCP. Start any of firewall and VPN features is not usually required. To connect and log in the browser. However, these steps: 1. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual 6. Optionally, you can change ...