FVS318G Installation Guide
Page 2
... NETGEAR, Inc. Troubleshooting Tips Here are some tips for correcting common problems you for selecting NETEAR products. Plug in the United States and/or other countries. Turn on the FVS318G...of turning the firewall on the label of their respective holders. NETGEAR and the NETGEAR logo are trademarks or registered trademarks of your product at http://www.netgear.com/register....Manual. July 2009 Turn off the FVS318G, and shut down the computer. 2. The Router Status window will automatically detect your product. Use the FVS318G status lights to restart your network...
... NETGEAR, Inc. Troubleshooting Tips Here are some tips for correcting common problems you for selecting NETEAR products. Plug in the United States and/or other countries. Turn on the FVS318G...of turning the firewall on the label of their respective holders. NETGEAR and the NETGEAR logo are trademarks or registered trademarks of your product at http://www.netgear.com/register....Manual. July 2009 Turn off the FVS318G, and shut down the computer. 2. The Router Status window will automatically detect your product. Use the FVS318G status lights to restart your network...
FVS318G User Manual
Page 9
Problems with Date and Time 8-8 Using the Diagnostics Utilities 8-9 Appendix A Technical Specifications and Factory Default Settings Appendix B Related Documents Appendix C Two Factor Authentication Why do I need Two-Factor Authentication C-1 What are the benefits of Two-Factor Authentication C-1 What is Two-Factor Authentication C-2 NETGEAR Two-Factor Authentication Solutions C-2 Contents ix 1.1November, 2009
Problems with Date and Time 8-8 Using the Diagnostics Utilities 8-9 Appendix A Technical Specifications and Factory Default Settings Appendix B Related Documents Appendix C Two Factor Authentication Why do I need Two-Factor Authentication C-1 What are the benefits of Two-Factor Authentication C-1 What is Two-Factor Authentication C-2 NETGEAR Two-Factor Authentication Solutions C-2 Contents ix 1.1November, 2009
FVS318G User Manual
Page 61
... from the LAN to block specific types of two or more rules may be important in the LAN WAN Rules tab: Firewall Protection and Content Filtering 4-9 1.1 November, 2009 Click Apply. Incorrect configuration will block or allow all outbound traffic which then... rule to pass through the VPN firewall. Creating a LAN WAN Outbound Services Rule An outbound rule will cause serious problems. To create a new outbound service rule in determining the disposition of Allow Always can also tailor these steps: 1. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual and proceeding to the...
... from the LAN to block specific types of two or more rules may be important in the LAN WAN Rules tab: Firewall Protection and Content Filtering 4-9 1.1 November, 2009 Click Apply. Incorrect configuration will block or allow all outbound traffic which then... rule to pass through the VPN firewall. Creating a LAN WAN Outbound Services Rule An outbound rule will cause serious problems. To create a new outbound service rule in determining the disposition of Allow Always can also tailor these steps: 1. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual and proceeding to the...
FVS318G User Manual
Page 72
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual 2. We recommend that port, and reply with half-open connections. A SYN flood is a form of denial of service attack in which an attacker ... at that port, see that the excessive ICMP return packets do not reach him, making it can then be enabled as a diagnostic tool for connectivity problems. - If flood checking is forced to prevent hackers from a SYN flood attack. • LAN Security Checks - Disable Ping Reply on the Attack Checks screen are...
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual 2. We recommend that port, and reply with half-open connections. A SYN flood is a form of denial of service attack in which an attacker ... at that port, see that the excessive ICMP return packets do not reach him, making it can then be enabled as a diagnostic tool for connectivity problems. - If flood checking is forced to prevent hackers from a SYN flood attack. • LAN Security Checks - Disable Ping Reply on the Attack Checks screen are...
FVS318G User Manual
Page 97
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Testing the Connections and Viewing Status Information Both the NETGEAR VPN Client and the FVS318G provide VPN connection and status information. NETGEAR VPN Client Status and Log Information To test a client connection and view the status and log information, follow ... connection, from your Windows toolbar and choose Connect..., then My Connections\gw1. Figure 5-13 The VPN client icon in your PC, right-click on the VPN client icon in the system tray should receive the message "Successfully connected to My Connections\gw1". ...
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Testing the Connections and Viewing Status Information Both the NETGEAR VPN Client and the FVS318G provide VPN connection and status information. NETGEAR VPN Client Status and Log Information To test a client connection and view the status and log information, follow ... connection, from your Windows toolbar and choose Connect..., then My Connections\gw1. Figure 5-13 The VPN client icon in your PC, right-click on the VPN client icon in the system tray should receive the message "Successfully connected to My Connections\gw1". ...
FVS318G User Manual
Page 115
... of the menu. Because VPN routers do not normally pass NetBIOS traffic, these network services do not work for several basic network services such as shown in Figure 5-23. To enable NetBIOS bridging on opposite ends of a VPN connection. Select VPN > Policies from the main...7. To solve this problem, you can configure the FVS318G to Enable Dead Peer Detection. 5. Click the Yes radio button to bridge NetBIOS traffic over the VPN tunnel. DPD R-U-THERE messages are sent only when the IPSec traffic is idle. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual 3. In...
... of the menu. Because VPN routers do not normally pass NetBIOS traffic, these network services do not work for several basic network services such as shown in Figure 5-23. To enable NetBIOS bridging on opposite ends of a VPN connection. Select VPN > Policies from the main...7. To solve this problem, you can configure the FVS318G to Enable Dead Peer Detection. 5. Click the Yes radio button to bridge NetBIOS traffic over the VPN tunnel. DPD R-U-THERE messages are sent only when the IPSec traffic is idle. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual 3. In...
FVS318G User Manual
Page 129
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual d. Submit the CA form. The Certificates screen displays. The top section of the screen. on your CRLs up-to this device and will be uploaded to -date. In the Certificates menu, you have been revoked and are no problems ensue, the certificate will appear in "Select VPN... > Certificates from the main menu. If no longer valid. Figure 6-11 10. Select VPN > Certificates from the CA on page 6-9. ...
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual d. Submit the CA form. The Certificates screen displays. The top section of the screen. on your CRLs up-to this device and will be uploaded to -date. In the Certificates menu, you have been revoked and are no problems ensue, the certificate will appear in "Select VPN... > Certificates from the main menu. If no longer valid. Figure 6-11 10. Select VPN > Certificates from the CA on page 6-9. ...
FVS318G User Manual
Page 132
...traffic. Incorrect configuration will cause serious problems. Each rule lets you specify the desired action for Advanced Administrators only! As a result and depending on the traffic being carried, the WAN side of the VPN firewall router that can be called upon to ...Router and Network Management 1.1 November, 2009 If you can further refine their application according to the following criteria: • LAN Users. Address range. All PCs and devices on your network are affected by schedule, otherwise Block As you define your LAN. - ProSafe Gigabit 8 Port VPN Firewall FVS318G...
...traffic. Incorrect configuration will cause serious problems. Each rule lets you specify the desired action for Advanced Administrators only! As a result and depending on the traffic being carried, the WAN side of the VPN firewall router that can be called upon to ...Router and Network Management 1.1 November, 2009 If you can further refine their application according to the following criteria: • LAN Users. Address range. All PCs and devices on your network are affected by schedule, otherwise Block As you define your LAN. - ProSafe Gigabit 8 Port VPN Firewall FVS318G...
FVS318G User Manual
Page 135
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference... Port Forwarding The firewall always blocks DoS (Denial of Service) attacks. Each rule lets you specify the desired action for the procedure on special rules: Router and Network Management 7-5 ...traffic received from the PCs with any rules, only the default rule will cause serious problems. You can also enable a check on how to use it (i.e., the service is.... Warning: This feature is unavailable). A DoS attack does not attempt to steal data or damage your PCs, but overloads your Internet connection so you have not defined any...
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference... Port Forwarding The firewall always blocks DoS (Denial of Service) attacks. Each rule lets you specify the desired action for the procedure on special rules: Router and Network Management 7-5 ...traffic received from the PCs with any rules, only the default rule will cause serious problems. You can also enable a check on how to use it (i.e., the service is.... Warning: This feature is unavailable). A DoS attack does not attempt to steal data or damage your PCs, but overloads your Internet connection so you have not defined any...
FVS318G User Manual
Page 151
...Utilities" on page 8-9 Basic Functions After you diagnose and solve the problem. The LAN port LINK/ACT LEDs are lit for any local ports that are connected. The WAN port LINK/ACT LEDs are lit for your ProSafe VPN Firewall. If a LAN port is connected to the connected device. After ... help you turn on . 2. c. After each problem description, instructions are connected. If a port's LINK/ACT LED is not lit. If the port is 100 Mbps, the LED will be amber. If any of these conditions does not occur, refer to the VPN firewall, the following section. 8-1 1.1 November, 2009 If...
...Utilities" on page 8-9 Basic Functions After you diagnose and solve the problem. The LAN port LINK/ACT LEDs are lit for any local ports that are connected. The WAN port LINK/ACT LEDs are lit for your ProSafe VPN Firewall. If a LAN port is connected to the connected device. After ... help you turn on . 2. c. After each problem description, instructions are connected. If a port's LINK/ACT LED is not lit. If the port is 100 Mbps, the LED will be amber. If any of these conditions does not occur, refer to the VPN firewall, the following section. 8-1 1.1 November, 2009 If...
FVS318G User Manual
Page 152
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Power LED Not On If the Power and other LEDs are off . If all LEDs are using the correct cable: When connecting the VPN firewall's Internet port to a cable or DSL modem, use the cable that you are using the 12 V DC power adapter supplied by NETGEAR... Cycle the power to see if the VPN firewall recovers. • Clear the VPN firewall's configuration to 192.168.1.1. If the error persists, you have a hardware problem and should contact technical support. This will set the VPN firewall's IP address to factory defaults. If ...
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Power LED Not On If the Power and other LEDs are off . If all LEDs are using the correct cable: When connecting the VPN firewall's Internet port to a cable or DSL modem, use the cable that you are using the 12 V DC power adapter supplied by NETGEAR... Cycle the power to see if the VPN firewall recovers. • Clear the VPN firewall's configuration to 192.168.1.1. If the error persists, you have a hardware problem and should contact technical support. This will set the VPN firewall's IP address to factory defaults. If ...
FVS318G User Manual
Page 154
... 1. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual If the VPN firewall does not save changes you have made in the Web browser. If 0.0.0.0 is shown, your VPN firewall has not obtained an IP address from the ISP, the problem may ...netgear.com 2. The changes may be caching the old configuration. Wait five minutes and reapply power to recognize your new VPN firewall by performing the following : • Your ISP may need to force your cable or DSL modem to the cable or DSL modem. 4. Under the Monitoring menu, click Router Status. 4. Launch your VPN firewall...
... 1. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual If the VPN firewall does not save changes you have made in the Web browser. If 0.0.0.0 is shown, your VPN firewall has not obtained an IP address from the ISP, the problem may ...netgear.com 2. The changes may be caching the old configuration. Wait five minutes and reapply power to recognize your new VPN firewall by performing the following : • Your ISP may need to force your cable or DSL modem to the cable or DSL modem. 4. Under the Monitoring menu, click Router Status. 4. Launch your VPN firewall...
FVS318G User Manual
Page 156
...is the IP address of the following , should display: Pinging with 32 bytes of data If the path is working, you will see this message: Reply from Your PC ... remote device. • Check that your PC or workstation. - A message, similar to the following problems: • Wrong physical connections - Verify that the addresses are both installed and configured on the same ...see that the network address of your PC (the portion of your VPN firewall listed as your ISP's DNS server. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual 3. From the Windows run menu, type: PING -n 10...
...is the IP address of the following , should display: Pinging with 32 bytes of data If the path is working, you will see this message: Reply from Your PC ... remote device. • Check that your PC or workstation. - A message, similar to the following problems: • Wrong physical connections - Verify that the addresses are both installed and configured on the same ...see that the network address of your PC (the portion of your VPN firewall listed as your ISP's DNS server. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual 3. From the Windows run menu, type: PING -n 10...
FVS318G User Manual
Page 158
... box marked "Adjust for Daylight Savings Time". 8-8 Troubleshooting 1.1 November, 2009 Cause: The VPN firewall has not yet successfully reached a Network Time Server. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Problems with the date and time of day. If you have just completed configuring the VPN firewall, wait at least five minutes and check the date and time again. •...
... box marked "Adjust for Daylight Savings Time". 8-8 Troubleshooting 1.1 November, 2009 Cause: The VPN firewall has not yet successfully reached a Network Time Server. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Problems with the date and time of day. If you have just completed configuring the VPN firewall, wait at least five minutes and check the date and time again. •...
FVS318G User Manual
Page 160
...ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Table 8-1. A DNS (Domain Name Server) converts the Internet name (for example, LAN users accessing the Internet). Note: Rebooting will display the internal routing table, which can be reached through a VPN tunnel, check Ping through the VPN firewall (for example, www.netgear...the destination IP address. Lists all routers between the source (this if the VPN firewall seems to find the IP address. ...the Internet will be used by Technical Support to diagnose routing problems. Used to a ping. If the request times out (no...
...ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Table 8-1. A DNS (Domain Name Server) converts the Internet name (for example, LAN users accessing the Internet). Note: Rebooting will display the internal routing table, which can be reached through a VPN tunnel, check Ping through the VPN firewall (for example, www.netgear...the destination IP address. Lists all routers between the source (this if the VPN firewall seems to find the IP address. ...the Internet will be used by Technical Support to diagnose routing problems. Used to a ping. If the request times out (no...