FVS318G Installation Guide
Page 1
... came with your FVS318G (the Yellow NETGEAR Cable in the diagram below) into the WAN port of the FVS318G as shown in the diagram). CONNECT THE CABLES BETWEEN THE FVS318G, COMPUTER, AND...DSL Service. The Test light goes on when the router is on , and wait two minutes. D Yellow NEGEAR Cable C VPN Firewall B Internet Local Ports Modem Your network cables are ...Last, turn solid green, check the power adapter. • Test. )NSTALLATION'UIDE ProSafe Gigabit 8 Port VPN Firewall FVS318G Start Here Follow these instructions to set up your computer. e. The FV316G login screen...
... came with your FVS318G (the Yellow NETGEAR Cable in the diagram below) into the WAN port of the FVS318G as shown in the diagram). CONNECT THE CABLES BETWEEN THE FVS318G, COMPUTER, AND...DSL Service. The Test light goes on when the router is on , and wait two minutes. D Yellow NEGEAR Cable C VPN Firewall B Internet Local Ports Modem Your network cables are ...Last, turn solid green, check the power adapter. • Test. )NSTALLATION'UIDE ProSafe Gigabit 8 Port VPN Firewall FVS318G Start Here Follow these instructions to set up your computer. e. The FV316G login screen...
FVS318G Installation Guide
Page 2
...Router Status window will automatically detect your MAC address. If you are turned on. • For each powered on computer connected to the FVS318G with the laws of the computer registered on the FVS318G and wait one minute. 4. Make sure the Ethernet cables are securely plugged in and turn on configuring FVS318G... modem, wait two minutes. 3. Use the FVS318G status lights to http://kbserver.netgear.com for the password both in the United States and/or other countries. If the FVS318G Power light does not turn off , reset the firewall as the user name and password for product ...
...Router Status window will automatically detect your MAC address. If you are turned on. • For each powered on computer connected to the FVS318G with the laws of the computer registered on the FVS318G and wait one minute. 4. Make sure the Ethernet cables are securely plugged in and turn on configuring FVS318G... modem, wait two minutes. 3. Use the FVS318G status lights to http://kbserver.netgear.com for the password both in the United States and/or other countries. If the FVS318G Power light does not turn off , reset the firewall as the user name and password for product ...
FVS318G User Manual
Page 5
... ...1-5 Front Panel Features ...1-5 Rear Panel Features ...1-7 Default IP Address, Login Name, and Password Location 1-8 Qualified Web Browsers 1-8 Chapter 2 Connecting the FVS318G to the Internet Understanding the Connection Steps 2-1 Logging into the VPN Firewall Router Router 2-2 Navigating the Menus ...2-3 Configuring the Internet Connections 2-4 Automatically Detecting and Connecting 2-5 Manually Configuring the Internet Connection 2-7 Configuring the WAN Mode...
... ...1-5 Front Panel Features ...1-5 Rear Panel Features ...1-7 Default IP Address, Login Name, and Password Location 1-8 Qualified Web Browsers 1-8 Chapter 2 Connecting the FVS318G to the Internet Understanding the Connection Steps 2-1 Logging into the VPN Firewall Router Router 2-2 Navigating the Menus ...2-3 Configuring the Internet Connections 2-4 Automatically Detecting and Connecting 2-5 Manually Configuring the Internet Connection 2-7 Configuring the WAN Mode...
FVS318G User Manual
Page 7
... FVS318G VPN Connection Status and Logs 5-13 Managing VPN Policies 5-14 Managing IKE Policies 5-14 Managing VPN Policies 5-16 Configuring Extended Authentication (XAUTH 5-17 Configuring XAUTH for VPN Clients 5-18 User Database Configuration 5-19 RADIUS Client Configuration 5-19 Assigning IP Addresses to Remote Users (ModeConfig 5-21 Mode Config Operation 5-22 Configuring the VPN Firewall Router 5-22 Configuring the ProSafe VPN...
... FVS318G VPN Connection Status and Logs 5-13 Managing VPN Policies 5-14 Managing IKE Policies 5-14 Managing VPN Policies 5-16 Configuring Extended Authentication (XAUTH 5-17 Configuring XAUTH for VPN Clients 5-18 User Database Configuration 5-19 RADIUS Client Configuration 5-19 Assigning IP Addresses to Remote Users (ModeConfig 5-21 Mode Config Operation 5-22 Configuring the VPN Firewall Router 5-22 Configuring the ProSafe VPN...
FVS318G User Manual
Page 8
... Self Certificates 6-11 Obtaining a Self Certificate from a Certificate Authority 6-11 Managing your Certificate Revocation List (CRL 6-14 Chapter 7 Router and Network Management Performance Management 7-1 Bandwidth Capacity 7-1 Features That Reduce Traffic 7-2 Features That Increase Traffic 7-5 Using QoS to Shift the... Connection 8-4 Troubleshooting a TCP/IP Network Using a Ping Utility 8-5 Testing the LAN Path to Your VPN Firewall Router 8-5 Testing the Path from Your PC to a Remote Device 8-6 Restoring the Default Configuration and Password 8-7 viii Contents 1.1 November, 2009
... Self Certificates 6-11 Obtaining a Self Certificate from a Certificate Authority 6-11 Managing your Certificate Revocation List (CRL 6-14 Chapter 7 Router and Network Management Performance Management 7-1 Bandwidth Capacity 7-1 Features That Reduce Traffic 7-2 Features That Increase Traffic 7-5 Using QoS to Shift the... Connection 8-4 Troubleshooting a TCP/IP Network Using a Ping Utility 8-5 Testing the LAN Path to Your VPN Firewall Router 8-5 Testing the Path from Your PC to a Remote Device 8-6 Restoring the Default Configuration and Password 8-7 viii Contents 1.1 November, 2009
FVS318G User Manual
Page 15
...VPN Firewall Router" on page 1-1 • "Package Contents" on page 1-5 • "Front Panel Features" on page 1-5 • "Rear Panel Features" on page 1-7 • "Default IP Address, Login Name, and Password Location" on page 1-8 • "Qualified Web Browsers" on Network Address Translation (NAT) for security, the FVS318G...-speed cable/DSL Internet access for up to 253 users. The FVS318G is a complete security solution that rely on page 1-8 Key Features of Gigabit Ethernet LAN and WAN ports ensures extremely high data transfer speeds. both via e-mail. In addition to the Internet ...
...VPN Firewall Router" on page 1-1 • "Package Contents" on page 1-5 • "Front Panel Features" on page 1-5 • "Rear Panel Features" on page 1-7 • "Default IP Address, Login Name, and Password Location" on page 1-8 • "Qualified Web Browsers" on Network Address Translation (NAT) for security, the FVS318G...-speed cable/DSL Internet access for up to 253 users. The FVS318G is a complete security solution that rely on page 1-8 Key Features of Gigabit Ethernet LAN and WAN ports ensures extremely high data transfer speeds. both via e-mail. In addition to the Internet ...
FVS318G User Manual
Page 16
...Powerful, True Firewall with multi-NAT support.Login capability. • Front panel LEDs for easy monitoring of the NETGEAR ProSafe VPN Client software (VPN01L) • Supports 5 concurrent IPsec VPN tunnels. IPsec VPN delivers full ...routers, the FVS318G is a true firewall, using stateful packet inspection (SPI) to Internet content by screening for IPsec The VPN firewall supports IPsec virtual private network (VPN) connections. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • Built-in eight-port 10/100/1000 Mbps Gigabit Ethernet LAN switch for extremely fast data...
...Powerful, True Firewall with multi-NAT support.Login capability. • Front panel LEDs for easy monitoring of the NETGEAR ProSafe VPN Client software (VPN01L) • Supports 5 concurrent IPsec VPN tunnels. IPsec VPN delivers full ...routers, the FVS318G is a true firewall, using stateful packet inspection (SPI) to Internet content by screening for IPsec The VPN firewall supports IPsec virtual private network (VPN) connections. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • Built-in eight-port 10/100/1000 Mbps Gigabit Ethernet LAN switch for extremely fast data...
FVS318G User Manual
Page 18
...VPN routers and clients. • Diagnostic Functions. The firewall allows you can install, configure, and operate the ProSafe VPN Firewallwithin minutes after connecting it to the network. The VPN firewall...reboot. • Remote Management. The VPN firewall includes the NETGEAR VPN Wizard to easily configure IPsec VPN tunnels according to the recommendations of the Virtual ...VPN Wizard. Browser-based configuration allows you maximize your use of the VPN firewall: • Flash memory for your firewall from a remote location on the Internet. ProSafe Gigabit 8 Port VPN Firewall FVS318G...
...VPN routers and clients. • Diagnostic Functions. The firewall allows you can install, configure, and operate the ProSafe VPN Firewallwithin minutes after connecting it to the network. The VPN firewall...reboot. • Remote Management. The VPN firewall includes the NETGEAR VPN Wizard to easily configure IPsec VPN tunnels according to the recommendations of the Virtual ...VPN Wizard. Browser-based configuration allows you maximize your use of the VPN firewall: • Flash memory for your firewall from a remote location on the Internet. ProSafe Gigabit 8 Port VPN Firewall FVS318G...
FVS318G User Manual
Page 23
... the Connection Steps" on page 2-1 • "Logging into the VPN Firewall Router Router" on the WAN port (optional). Configure the Internet connections to the instructions in this chapter. Configure the WAN mode. Chapter 2 Connecting the FVS318G to the Internet The initial Internet configuration of the ProSafe VPN Firewall is on page 2-4. 4. See the installation guide for complete steps...
... the Connection Steps" on page 2-1 • "Logging into the VPN Firewall Router Router" on the WAN port (optional). Configure the Internet connections to the instructions in this chapter. Configure the WAN mode. Chapter 2 Connecting the FVS318G to the Internet The initial Internet configuration of the ProSafe VPN Firewall is on page 2-4. 4. See the installation guide for complete steps...
FVS318G User Manual
Page 24
...configuration of these tasks is described in this chapter. Logging into the VPN Firewall Router Router To connect to the VPN firewall, your computer for DHCP, refer to obtain an IP address automatically from the VPN firewall by DHCP. Start any of the qualified browsers, as detailed in ...Appendix B, "Related Documents. Figure 2-1 3. For instructions on how to configure your computer needs to be configured to the link in "Qualified Web Browsers" on page 2-15. ProSafe Gigabit 8 Port VPN Firewall FVS318G...
...configuration of these tasks is described in this chapter. Logging into the VPN Firewall Router Router To connect to the VPN firewall, your computer for DHCP, refer to obtain an IP address automatically from the VPN firewall by DHCP. Start any of the qualified browsers, as detailed in ...Appendix B, "Related Documents. Figure 2-1 3. For instructions on how to configure your computer needs to be configured to the link in "Qualified Web Browsers" on page 2-15. ProSafe Gigabit 8 Port VPN Firewall FVS318G...
FVS318G User Manual
Page 25
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual 5. Click Login. The Web Configuration Manager appears, displaying the Router Status menu: Figure 2-2 Navigating the Menus The Web Configuration Manager menus are organized in a layered structure of main categories and submenus: Connecting the FVS318G to the Internet 2-3 1.1 November, 2009
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual 5. Click Login. The Web Configuration Manager appears, displaying the Router Status menu: Figure 2-2 Navigating the Menus The Web Configuration Manager menus are organized in a layered structure of main categories and submenus: Connecting the FVS318G to the Internet 2-3 1.1 November, 2009
FVS318G User Manual
Page 34
...for routing private IP addresses within a campus environment. Figure 2-11 To learn the status of the WAN port, you can view the Router Status page (see "Monitoring VPN Tunnel Connection Status" on page 9-14) or look at the LEDs on the front panel (see "Front Panel Features" on page ...of static IP addresses to you, and you have a valid static Internet IP address. This one-to specific PCs on your LAN. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • If your ISP has provided you with multiple public IP addresses, you can use classical routing for Internet access by...
...for routing private IP addresses within a campus environment. Figure 2-11 To learn the status of the WAN port, you can view the Router Status page (see "Monitoring VPN Tunnel Connection Status" on page 9-14) or look at the LEDs on the front panel (see "Front Panel Features" on page ...of static IP addresses to you, and you have a valid static Internet IP address. This one-to specific PCs on your LAN. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • If your ISP has provided you with multiple public IP addresses, you can use classical routing for Internet access by...
FVS318G User Manual
Page 35
... and restores DNS requests for the resulting FQDN to your frequently-changing IP address. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Configuring Dynamic DNS (Optional) Dynamic DNS (DDNS) is an Internet service that allows routers with a DDNS provider such as 192.168.x.x or 10.x.x.x, the dynamic DNS service...service provider, log in to your account, and register your IP address by others on the Dynamic DNS Configuration screen.) The VPN firewall firmware includes software that notifies dynamic DNS servers of changes in the WAN IP address, so that name linked with your new...
... and restores DNS requests for the resulting FQDN to your frequently-changing IP address. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Configuring Dynamic DNS (Optional) Dynamic DNS (DDNS) is an Internet service that allows routers with a DDNS provider such as 192.168.x.x or 10.x.x.x, the dynamic DNS service...service provider, log in to your account, and register your IP address by others on the Dynamic DNS Configuration screen.) The VPN firewall firmware includes software that notifies dynamic DNS servers of changes in the WAN IP address, so that name linked with your new...
FVS318G User Manual
Page 38
... address that your network has a unique 32-bit local Ethernet address. Each computer or router on your broadband modem supports, select it is also referred to have the VPN firewall use the MAC address of the WAN port. otherwise, select 10M. However, if your...then select either of these options: • Use this Computer's MAC address to as the computer's MAC (Media Access Control) address. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual a. Port Speed. For some ISPs, you know the Ethernet port speed that your ISP connection. c. b. AutoSense is Use default...
... address that your network has a unique 32-bit local Ethernet address. Each computer or router on your broadband modem supports, select it is also referred to have the VPN firewall use the MAC address of the WAN port. otherwise, select 10M. However, if your...then select either of these options: • Use this Computer's MAC address to as the computer's MAC (Media Access Control) address. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual a. Port Speed. For some ISPs, you know the Ethernet port speed that your ISP connection. c. b. AutoSense is Use default...
FVS318G User Manual
Page 40
... IP address). • WINS Server (if you to your clients would only be sent over routers that it possible for most users and situations. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • An IP Address from the DHCP server which is not located on the local subnet. When disabled, all DNS requests and communicate ...
... IP address). • WINS Server (if you to your clients would only be sent over routers that it possible for most users and situations. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • An IP Address from the DHCP server which is not located on the local subnet. When disabled, all DNS requests and communicate ...
FVS318G User Manual
Page 51
... RIP. Select Network Configuration > Routing from other routers, and allows it to dynamically adjust its route table nor does it accept any RIP packets from the main menu. 2. From the RIP Direction pull-down menu, choose the direction in internal networks (LANs). ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Configuring Routing Information Protocol (RIP) RIP...
... RIP. Select Network Configuration > Routing from other routers, and allows it to dynamically adjust its route table nor does it accept any RIP packets from the main menu. 2. From the RIP Direction pull-down menu, choose the direction in internal networks (LANs). ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Configuring Routing Information Protocol (RIP) RIP...
FVS318G User Manual
Page 52
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • Both. This is the most commonly supported version. • RIP-2. Supports subnet information. Click Apply to authenticate between routers. 6. The VPN firewall broadcasts its routing table periodically but does not broadcast its routing table. 4. Both RIP-2B and RIP-2M send the routing data in RIP-2 format and uses subnet broadcasting...
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • Both. This is the most commonly supported version. • RIP-2. Supports subnet information. Click Apply to authenticate between routers. 6. The VPN firewall broadcasts its routing table periodically but does not broadcast its routing table. 4. Both RIP-2B and RIP-2M send the routing data in RIP-2 format and uses subnet broadcasting...
FVS318G User Manual
Page 53
...Event Logs and Alerts" on page 4-33 • "Administrator Tips" on page 4-33 About Firewall Protection and Content Filtering The ProSafe VPN Firewall provides you with Web content filtering options, plus browsing activity reporting and instant alerts via e-mail....router that protects one network (the "trusted" network, such as your network. Network administrators can also block Internet access by applications and services, such as chat or games. Chapter 4 Firewall Protection and Content Filtering This chapter describes how to use the content filtering features of the ProSafe VPN Firewall...
...Event Logs and Alerts" on page 4-33 • "Administrator Tips" on page 4-33 About Firewall Protection and Content Filtering The ProSafe VPN Firewall provides you with Web content filtering options, plus browsing activity reporting and instant alerts via e-mail....router that protects one network (the "trusted" network, such as your network. Network administrators can also block Internet access by applications and services, such as chat or games. Chapter 4 Firewall Protection and Content Filtering This chapter describes how to use the content filtering features of the ProSafe VPN Firewall...
FVS318G User Manual
Page 54
... page 4-16 • "Adding Customized Services" on page 4-16 • "Setting Quality of Service (QoS) Priorities" on the VPN firewall can have access to. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual A firewall incorporates the functions of a NAT (Network Address Translation) router, while adding features for dealing with a hacker intrusion or attack, and for controlling the types of the...
... page 4-16 • "Adding Customized Services" on page 4-16 • "Setting Quality of Service (QoS) Priorities" on the VPN firewall can have access to. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual A firewall incorporates the functions of a NAT (Network Address Translation) router, while adding features for dealing with a hacker intrusion or attack, and for controlling the types of the...
FVS318G User Manual
Page 55
... (see "Setting Quality of service. • Outbound Rules (service blocking). Firewall Protection and Content Filtering 4-3 1.1 November, 2009 Additional services can change the traffic mix through the router. You can be added to either allow or block that traffic (see "...enable only specific services to a request from the LAN side. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual About Services-Based Rules The rules to allow this otherwise blocked traffic. • Customized Services. The firewall can be covered by this rule: • BLOCK always ...
... (see "Setting Quality of service. • Outbound Rules (service blocking). Firewall Protection and Content Filtering 4-3 1.1 November, 2009 Additional services can change the traffic mix through the router. You can be added to either allow or block that traffic (see "...enable only specific services to a request from the LAN side. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual About Services-Based Rules The rules to allow this otherwise blocked traffic. • Customized Services. The firewall can be covered by this rule: • BLOCK always ...