FVX538 Reference Manual
Page 10
ProSafe VPN Firewall 200 FVX538 Reference Manual Extended Authentication (XAUTH) Configuration 5-23 Configuring XAUTH for VPN Clients 5-24 User Database Configuration 5-25 RADIUS Client Configuration 5-27 Assigning IP Addresses to Remote Users (ModeConfig 5-29 Mode Config Operation 5-29 Configuring the VPN Firewall 5-30 Configuring the ProSafe VPN Client for ModeConfig 5-33 Chapter 6 Router and Network Management Performance Management 6-1 Bandwidth Capacity 6-1 VPN Firewall Features That...
ProSafe VPN Firewall 200 FVX538 Reference Manual Extended Authentication (XAUTH) Configuration 5-23 Configuring XAUTH for VPN Clients 5-24 User Database Configuration 5-25 RADIUS Client Configuration 5-27 Assigning IP Addresses to Remote Users (ModeConfig 5-29 Mode Config Operation 5-29 Configuring the VPN Firewall 5-30 Configuring the ProSafe VPN Client for ModeConfig 5-33 Chapter 6 Router and Network Management Performance Management 6-1 Bandwidth Capacity 6-1 VPN Firewall Features That...
FVX538 Reference Manual
Page 18
...A Powerful, True Firewall with Content Filtering Unlike simple Internet sharing NAT routers, the FVX538 is inoperable, ensuring you specify as Ping of status and activity. • Flash memory for firmware upgrade. • One U Rack mountable. Its firewall features include: •... detects and thwarts DoS attacks such as off-limits. 1-2 Introduction v1.0, March 2009 ProSafe VPN Firewall 200 FVX538 Reference Manual • SNMP Manageable, optimized for the NETGEAR ProSafe Network Management Software (NMS100). • Easy, web-based setup for installation and management. ...
...A Powerful, True Firewall with Content Filtering Unlike simple Internet sharing NAT routers, the FVX538 is inoperable, ensuring you specify as Ping of status and activity. • Flash memory for firmware upgrade. • One U Rack mountable. Its firewall features include: •... detects and thwarts DoS attacks such as off-limits. 1-2 Introduction v1.0, March 2009 ProSafe VPN Firewall 200 FVX538 Reference Manual • SNMP Manageable, optimized for the NETGEAR ProSafe Network Management Software (NMS100). • Easy, web-based setup for installation and management. ...
FVX538 Reference Manual
Page 21
... user licenses. • Warranty and Support Information Card. ProSafe VPN Firewall 200 FVX538 Reference Manual • Diagnostic Functions. Maintenance and Support NETGEAR offers the following items: • ProSafe VPN Firewall 200. • AC power cable. • 19-inch rack mounting hardware and rubber feet. • Category 5 (Cat5) Ethernet cable. • Installation Guide, FVX538 ProSafe VPN Firewall 200 • Resource CD, including: - Package Contents The product...
... user licenses. • Warranty and Support Information Card. ProSafe VPN Firewall 200 FVX538 Reference Manual • Diagnostic Functions. Maintenance and Support NETGEAR offers the following items: • ProSafe VPN Firewall 200. • AC power cable. • 19-inch rack mounting hardware and rubber feet. • Category 5 (Cat5) Ethernet cable. • Installation Guide, FVX538 ProSafe VPN Firewall 200 • Resource CD, including: - Package Contents The product...
FVX538 Reference Manual
Page 22
... (during upgrading or resetting to the firewall. WAN Ports and LEDs Two RJ-45 WAN ports N-way automatic speed negotiation, Auto MDI/MDIX. Test LED On (Amber) Blinking (Amber) Off Test mode: The system is not supplied to the firewall. 2. ... panel and its operation. The Internet connection is down or not being transmitted or received by the WAN port. ProSafe VPN Firewall 200 FVX538 Reference Manual Router Front and Rear Panels The ProSafe VPN Firewall 200 front panel shown below contains the port connections, status LEDs, and the factory defaults reset button. 1 2 3...
... (during upgrading or resetting to the firewall. WAN Ports and LEDs Two RJ-45 WAN ports N-way automatic speed negotiation, Auto MDI/MDIX. Test LED On (Amber) Blinking (Amber) Off Test mode: The system is not supplied to the firewall. 2. ... panel and its operation. The Internet connection is down or not being transmitted or received by the WAN port. ProSafe VPN Firewall 200 FVX538 Reference Manual Router Front and Rear Panels The ProSafe VPN Firewall 200 front panel shown below contains the port connections, status LEDs, and the factory defaults reset button. 1 2 3...
FVX538 Reference Manual
Page 150
...Management The ProSafe VPN Firewall 200 includes several tools that you will not change the administrator and guest passwords and settings, configure an SNMP manager, backup settings and upgrade firmware, and...User or Admin settings: 6-8 Router and Network Management v1.0, March 2009 Administrator access is read/write and guest access is password. Netgear recommends that can be used ... You will change this feature. ProSafe VPN Firewall 200 FVX538 Reference Manual The QoS priority settings conform to a more secure password. See "Monitoring the Router" on how to use this ...
...Management The ProSafe VPN Firewall 200 includes several tools that you will not change the administrator and guest passwords and settings, configure an SNMP manager, backup settings and upgrade firmware, and...User or Admin settings: 6-8 Router and Network Management v1.0, March 2009 Administrator access is read/write and guest access is password. Netgear recommends that can be used ... You will change this feature. ProSafe VPN Firewall 200 FVX538 Reference Manual The QoS priority settings conform to a more secure password. See "Monitoring the Router" on how to use this ...
FVX538 Reference Manual
Page 153
... words from any language, and should be logged in with a hash of your VPN firewall. Router and Network Management v1.0, March 2009 6-11 Network validated PAP or CHAP password based...key cryptography. Note: Be sure to change the default configuration password of the firewall to configure, upgrade, and check the status of the other's challenge message that is a PAP...must be up to enable remote management (see "Logging into the VPN Firewall" on page 2-1). ProSafe VPN Firewall 200 FVX538 Reference Manual When specifying RADIUS domain authentication, you can be configured on the RADIUS...
... words from any language, and should be logged in with a hash of your VPN firewall. Router and Network Management v1.0, March 2009 6-11 Network validated PAP or CHAP password based...key cryptography. Note: Be sure to change the default configuration password of the firewall to configure, upgrade, and check the status of the other's challenge message that is a PAP...must be up to enable remote management (see "Logging into the VPN Firewall" on page 2-1). ProSafe VPN Firewall 200 FVX538 Reference Manual When specifying RADIUS domain authentication, you can be configured on the RADIUS...
FVX538 Reference Manual
Page 157
Click Add to : Router and Network Management v1.0, March 2009 6-15 To modify the SNMP System contact information: 1. Settings Backup and Firmware Upgrade Once you have installed the VPN firewall and have it working properly, you to create the new configuration. The Settings Backup and Firmware Upgrade screen allows you should back up a copy of the... to modify or change the selected configuration. The SNMP SysConfiguration screen will display in the Action column adjacent to the entry to save your settings. ProSafe VPN Firewall 200 FVX538 Reference Manual 5.
Click Add to : Router and Network Management v1.0, March 2009 6-15 To modify the SNMP System contact information: 1. Settings Backup and Firmware Upgrade Once you have installed the VPN firewall and have it working properly, you to create the new configuration. The Settings Backup and Firmware Upgrade screen allows you should back up a copy of the... to modify or change the selected configuration. The SNMP SysConfiguration screen will display in the Action column adjacent to the entry to save your settings. ProSafe VPN Firewall 200 FVX538 Reference Manual 5.
FVX538 Reference Manual
Page 158
... factory default settings: Click default 6-16 v1.0, March 2009 Router and Network Management Locate and select the previously saved backup file (by default, netgear.cfg). 2. To restore settings from the submenu. Select Administration from the main menu and Settings Backup & Upgrade from a backup file: 1. ProSafe VPN Firewall 200 FVX538 Reference Manual • Back up and save a copy of...
... factory default settings: Click default 6-16 v1.0, March 2009 Router and Network Management Locate and select the previously saved backup file (by default, netgear.cfg). 2. To restore settings from the submenu. Select Administration from the main menu and Settings Backup & Upgrade from a backup file: 1. ProSafe VPN Firewall 200 FVX538 Reference Manual • Back up and save a copy of...
FVX538 Reference Manual
Page 159
ProSafe VPN Firewall 200 FVX538 Reference Manual You must manually restart the VPN firewall in the download, read them ! After rebooting, the router's password will be password and the LAN IP address will act as a DHCP server on the will be lost. Please backup your router settings will change to the NETGEAR Web site at http://www.netgear.com/support and click...
ProSafe VPN Firewall 200 FVX538 Reference Manual You must manually restart the VPN firewall in the download, read them ! After rebooting, the router's password will be password and the LAN IP address will act as a DHCP server on the will be lost. Please backup your router settings will change to the NETGEAR Web site at http://www.netgear.com/support and click...
FVX538 Reference Manual
Page 161
... following radio boxes: • Use Default NTP Servers: If this is updated regularly by contacting a Default Netgear NTP Server on the Time Zone screen. Select a NTP Server option by checking one of computers Select Administration...Zone screen will start the software upgrade to your router after upgrading it uses for scheduling to erase the configuration and manually reconfigure your VPN firewall router. If supported in the Router Upgrade section. 3. ProSafe VPN Firewall 200 FVX538 Reference Manual To upgrade router software: 1. Router and Network Management v1.0, March ...
... following radio boxes: • Use Default NTP Servers: If this is updated regularly by contacting a Default Netgear NTP Server on the Time Zone screen. Select a NTP Server option by checking one of computers Select Administration...Zone screen will start the software upgrade to your router after upgrading it uses for scheduling to erase the configuration and manually reconfigure your VPN firewall router. If supported in the Router Upgrade section. 3. ProSafe VPN Firewall 200 FVX538 Reference Manual To upgrade router software: 1. Router and Network Management v1.0, March ...
FVX538 Reference Manual
Page 167
Select Monitoring from the main menu and Router Status from the submenu. The Router Status screen will change if you upgrade your router. DHCP can be either Server or None. This is the current software the router is the Account Name that you ...the Basic Settings page. Router Status Fields Item System Name Firmware Version LAN Port Description This is using. Figure 6-11 Table 6-3. ProSafe VPN Firewall 200 FVX538 Reference Manual Viewing Router Configuration and System Status The Router Status screen provides status and usage information. Router and Network Management v1...
Select Monitoring from the main menu and Router Status from the submenu. The Router Status screen will change if you upgrade your router. DHCP can be either Server or None. This is the current software the router is the Account Name that you ...the Basic Settings page. Router Status Fields Item System Name Firmware Version LAN Port Description This is using. Figure 6-11 Table 6-3. ProSafe VPN Firewall 200 FVX538 Reference Manual Viewing Router Configuration and System Status The Router Status screen provides status and usage information. Router and Network Management v1...
FVX538 Reference Manual
Page 225
...many unethical hackers and cyber criminals to the authentication process. on page E-1 • "NETGEAR Two-Factor Authentication Solutions" on its SSL and IPSec VPN firewall product line to replace existing hardware. Two-Factor Authentication can easily guess simple passwords or ...steal digital assets for financial gains. IT professionals and security experts have becoming more than just a firewall to existing NETGEAR products through via firmware upgrade. Security threats and hackers have recognized the need Two-Factor Authentication?" Appendix E Two Factor Authentication...
...many unethical hackers and cyber criminals to the authentication process. on page E-1 • "NETGEAR Two-Factor Authentication Solutions" on its SSL and IPSec VPN firewall product line to replace existing hardware. Two-Factor Authentication can easily guess simple passwords or ...steal digital assets for financial gains. IT professionals and security experts have becoming more than just a firewall to existing NETGEAR products through via firmware upgrade. Security threats and hackers have recognized the need Two-Factor Authentication?" Appendix E Two Factor Authentication...
FVX538 Reference Manual
Page 233
See XAUTH. DoS about 4-1 firewall protection 4-1 firmware downloading 6-17 upgrade 6-17 Fixed IP 2-3 FQDN 2-15, 5-2 fully qualified domain name. See DNS. See FQDN. See DDNS DynDNS.org 2-14 E Easy 1-4 Edge Device ...Dual WAN Port systems VPN Tunnel addresses 5-2 Dual WAN Ports features of 1-2 network planning B-1 Dual WAN ports Auto-Rollover, configuration of 2-10 Load Balancing, configuration of 2-12 Dynamic DNS configuration of 2-14 Dynamic DNS Configuration screen 2-14, 2-15 Dynamic DNS. ProSafe VPN Firewall 200 FVX538 Reference Manual Domain Name Servers. FVX538 features of 4-39...
See XAUTH. DoS about 4-1 firewall protection 4-1 firmware downloading 6-17 upgrade 6-17 Fixed IP 2-3 FQDN 2-15, 5-2 fully qualified domain name. See DNS. See FQDN. See DDNS DynDNS.org 2-14 E Easy 1-4 Edge Device ...Dual WAN Port systems VPN Tunnel addresses 5-2 Dual WAN Ports features of 1-2 network planning B-1 Dual WAN ports Auto-Rollover, configuration of 2-10 Load Balancing, configuration of 2-12 Dynamic DNS configuration of 2-14 Dynamic DNS Configuration screen 2-14, 2-15 Dynamic DNS. ProSafe VPN Firewall 200 FVX538 Reference Manual Domain Name Servers. FVX538 features of 4-39...
FVX538 Reference Manual
Page 237
... One-to-One NAT Mapping example of 3-15 RIP Configuration screen 3-14 Rollover mode bandwidth capacity 6-1 router upgrade software 6-19 router administration tips on 4-43 router broadcast RIP, use with 3-14 Router Status 2-9 ProSafe VPN Firewall 200 FVX538 Reference Manual Router Status screen 6-25 Router Upgrade about 6-17 Router's MAC Address 2-18 Routing Information Protocol 1-4 Routing Information Protocol. RADIUS WiKID 6-11 RADIUS Server configuring...
... One-to-One NAT Mapping example of 3-15 RIP Configuration screen 3-14 Rollover mode bandwidth capacity 6-1 router upgrade software 6-19 router administration tips on 4-43 router broadcast RIP, use with 3-14 Router Status 2-9 ProSafe VPN Firewall 200 FVX538 Reference Manual Router Status screen 6-25 Router Upgrade about 6-17 Router's MAC Address 2-18 Routing Information Protocol 1-4 Routing Information Protocol. RADIUS WiKID 6-11 RADIUS Server configuring...
FVX538 Reference Manual
Page 238
... ISP settings 2-4 Traffic Meter screen router monitoring 6-20 Traffic Meter Settings 2-7 definitions 2-7 Troubleshooting NTP 7-7 troubleshooting 7-1 browsers 7-3 configuration settings, using sniffer 7-3 defaults 7-3 ISP connection 7-4 testing your setup 7-6 Web configuration 7-2 Trusted Certificates 5-19 Trusted Domains building list of 6-19 Time Zone screen 6-19 ToS. ProSafe VPN Firewall 200 FVX538 Reference Manual Settings Backup & Upgrade screen 6-15 Settings Backup and...
... ISP settings 2-4 Traffic Meter screen router monitoring 6-20 Traffic Meter Settings 2-7 definitions 2-7 Troubleshooting NTP 7-7 troubleshooting 7-1 browsers 7-3 configuration settings, using sniffer 7-3 defaults 7-3 ISP connection 7-4 testing your setup 7-6 Web configuration 7-2 Trusted Certificates 5-19 Trusted Domains building list of 6-19 Time Zone screen 6-19 ToS. ProSafe VPN Firewall 200 FVX538 Reference Manual Settings Backup & Upgrade screen 6-15 Settings Backup and...
FVX538 Reference Manual
Page 10
... Assigning IP Addresses to Remote Users (ModeConfig 5-37 Mode Config Operation 5-37 Configuring the VPN Firewall 5-38 Configuring the ProSafe VPN Client for ModeConfig 5-41 Chapter 6 Router and Network Management Performance Management 6-1 Bandwidth Capacity 6-1 VPN Firewall Features That Reduce Traffic 6-2 Service Blocking 6-2 Block Sites ...6-4 Source MAC Filtering 6-4 VPN Firewall Features That Increase Traffic 6-5 Port Forwarding 6-5 Port Triggering 6-6 DMZ Port...
... Assigning IP Addresses to Remote Users (ModeConfig 5-37 Mode Config Operation 5-37 Configuring the VPN Firewall 5-38 Configuring the ProSafe VPN Client for ModeConfig 5-41 Chapter 6 Router and Network Management Performance Management 6-1 Bandwidth Capacity 6-1 VPN Firewall Features That Reduce Traffic 6-2 Service Blocking 6-2 Block Sites ...6-4 Source MAC Filtering 6-4 VPN Firewall Features That Increase Traffic 6-5 Port Forwarding 6-5 Port Triggering 6-6 DMZ Port...
FVX538 Reference Manual
Page 11
Router Upgrade 6-15 Setting the Time Zone 6-16 Monitoring the Router 6-17 Enabling the Traffic Meter 6-17 Setting Login Failures and Attacks Notification 6-19 Monitoring Attached Devices 6-20 Viewing Port Triggering Status 6-22 Viewing Router Configuration and System Status 6-23 Monitoring WAN Ports Status 6-24 Monitoring VPN Tunnel Connection Status 6-25 VPN Logs ...6-26 DHCP Log ...6-27...
Router Upgrade 6-15 Setting the Time Zone 6-16 Monitoring the Router 6-17 Enabling the Traffic Meter 6-17 Setting Login Failures and Attacks Notification 6-19 Monitoring Attached Devices 6-20 Viewing Port Triggering Status 6-22 Viewing Router Configuration and System Status 6-23 Monitoring WAN Ports Status 6-24 Monitoring VPN Tunnel Connection Status 6-25 VPN Logs ...6-26 DHCP Log ...6-27...
FVX538 Reference Manual
Page 18
...page C-1 for the planning factors to you are never disconnected. • Load balance, or use both Internet lines simultaneously for firmware upgrade. • One U Rack mountable. See "Network Planning for Dual WAN Ports" on a mutually-exclusive basis to: • ...multiple exposed hosts • Virtual private networks A Powerful, True Firewall with Content Filtering Unlike simple Internet sharing NAT routers, the FVX538 is inoperable, ensuring you at speeds of either 10 Mbps or 100 Mbps. ProSafe VPN Firewall 200 FVX538 Reference Manual • Login capability. • Front panel LEDs...
...page C-1 for the planning factors to you are never disconnected. • Load balance, or use both Internet lines simultaneously for firmware upgrade. • One U Rack mountable. See "Network Planning for Dual WAN Ports" on a mutually-exclusive basis to: • ...multiple exposed hosts • Virtual private networks A Powerful, True Firewall with Content Filtering Unlike simple Internet sharing NAT routers, the FVX538 is inoperable, ensuring you at speeds of either 10 Mbps or 100 Mbps. ProSafe VPN Firewall 200 FVX538 Reference Manual • Login capability. • Front panel LEDs...
FVX538 Reference Manual
Page 21
...VPN routers and clients. • SNMP. The VPN firewall's front panel LEDs provide an easy way to ensure the VPN tunnels are interoperable with your product. Maintenance and Support NETGEAR offers the following items: • ProSafe VPN Firewall 200. • AC power cable. For security, you can choose a nonstandard port number. • Visual monitoring. ProSafe VPN Firewall 200 FVX538... 2006 The VPN firewall includes the NETGEAR VPN Wizard to easily configure VPN tunnels according to the recommendations of the VPN firewall: • Flash memory for firmware upgrade • ...
...VPN routers and clients. • SNMP. The VPN firewall's front panel LEDs provide an easy way to ensure the VPN tunnels are interoperable with your product. Maintenance and Support NETGEAR offers the following items: • ProSafe VPN Firewall 200. • AC power cable. For security, you can choose a nonstandard port number. • Visual monitoring. ProSafe VPN Firewall 200 FVX538... 2006 The VPN firewall includes the NETGEAR VPN Wizard to easily configure VPN tunnels according to the recommendations of the VPN firewall: • Flash memory for firmware upgrade • ...
FVX538 Reference Manual
Page 22
.... Router Front Panel The ProSafe VPN Firewall 200 front panel shown below contains the port connections, status LEDs, and the factory defaults reset button. 1 2 3 4 5 6 7 Figure 1-1 Table 1-1 describes each item on the front panel and its operation. ProSafe VPN Firewall 200 FVX538 Reference Manual • 19-inch rack mounting hardware and rubber feet. • Category 5 (Cat5) Ethernet cable. • Installation Guide, FVX538 ProSafe VPN Firewall 200...
.... Router Front Panel The ProSafe VPN Firewall 200 front panel shown below contains the port connections, status LEDs, and the factory defaults reset button. 1 2 3 4 5 6 7 Figure 1-1 Table 1-1 describes each item on the front panel and its operation. ProSafe VPN Firewall 200 FVX538 Reference Manual • 19-inch rack mounting hardware and rubber feet. • Category 5 (Cat5) Ethernet cable. • Installation Guide, FVX538 ProSafe VPN Firewall 200...