DG834Gv3 Reference Manual
Page 9
... Log Messages 5-12 Enabling Security Event E-mail Notification 5-13 Running Diagnostic Utilities and Rebooting the Modem Router 5-15 Enabling Remote Management 5-16 Configuring Remote Management 5-16 Chapter 6 Advanced Configuration Configuring Advanced Security ...VPN Configuration 7-2 Client-to-Gateway VPN Tunnels 7-2 Gateway-to-Gateway VPN Tunnels 7-3 Planning a VPN ...7-4 VPN Tunnel Configuration 7-6 How to Set Up a Client-to-Gateway VPN Configuration 7-7 Step 1: Configuring the Client-to-Gateway VPN Tunnel on the DG834G v3 ...........7-7 Step 2: Configuring the NETGEAR ProSafe VPN...
... Log Messages 5-12 Enabling Security Event E-mail Notification 5-13 Running Diagnostic Utilities and Rebooting the Modem Router 5-15 Enabling Remote Management 5-16 Configuring Remote Management 5-16 Chapter 6 Advanced Configuration Configuring Advanced Security ...VPN Configuration 7-2 Client-to-Gateway VPN Tunnels 7-2 Gateway-to-Gateway VPN Tunnels 7-3 Planning a VPN ...7-4 VPN Tunnel Configuration 7-6 How to Set Up a Client-to-Gateway VPN Configuration 7-7 Step 1: Configuring the Client-to-Gateway VPN Tunnel on the DG834G v3 ...........7-7 Step 2: Configuring the NETGEAR ProSafe VPN...
DG834Gv3 Reference Manual
Page 10
...Connection 8-4 ADSL link ...8-4 Obtaining a WAN IP Address 8-5 Troubleshooting PPPoE or PPPoA 8-6 Troubleshooting Internet Browsing 8-7 Troubleshooting a TCP/IP Network Using the Ping Utility 8-7 Testing the LAN Path to Your Router 8-7 ...Testing the Path from Your Computer to a Remote Device 8-8 Restoring the Default Configuration and Password 8-9 Using the Reset button 8-9 Problems with Date and Time 8-9 Appendix A Technical Specifications Appendix B NETGEAR VPN Configuration DG834G v3 to FVL328 B-1 Configuration Profile B-1 Step-By-Step Configuration B-2 DG834G v3...
...Connection 8-4 ADSL link ...8-4 Obtaining a WAN IP Address 8-5 Troubleshooting PPPoE or PPPoA 8-6 Troubleshooting Internet Browsing 8-7 Troubleshooting a TCP/IP Network Using the Ping Utility 8-7 Testing the LAN Path to Your Router 8-7 ...Testing the Path from Your Computer to a Remote Device 8-8 Restoring the Default Configuration and Password 8-9 Using the Reset button 8-9 Problems with Date and Time 8-9 Appendix A Technical Specifications Appendix B NETGEAR VPN Configuration DG834G v3 to FVL328 B-1 Configuration Profile B-1 Step-By-Step Configuration B-2 DG834G v3...
DG834Gv3 Reference Manual
Page 13
...chapter describes the intended audience, scope, conventions, and formats of importance or special interest. Web site at http://kbserver.netgear.com/products/DG834G v3.asp. This guide uses the following formats to highlight special messages: Note: This format is used to highlight a ...procedure that the reader has basic to highlight information of this manual. However, basic computer network, Internet, firewall, and VPN technologies tutorial...
...chapter describes the intended audience, scope, conventions, and formats of importance or special interest. Web site at http://kbserver.netgear.com/products/DG834G v3.asp. This guide uses the following formats to highlight special messages: Note: This format is used to highlight a ...procedure that the reader has basic to highlight information of this manual. However, basic computer network, Internet, firewall, and VPN technologies tutorial...
DG834Gv3 Reference Manual
Page 18
...ADSL Modem Wireless Router DG834G Key Features The ADSL Modem Wireless Router provides the following features: • A built-in ADSL modem • A powerful, true firewall • 802.11g standards-based wireless networking • Easy, Web-based setup for installation and management • Extensive Internet protocol support • Trustworthy VPN Communications over the Internet • VPN Wizard for easy VPN... v1.0, January 2006 A Powerful, True Firewall Unlike simple Internet sharing NAT routers, the DG834G v3 is a true firewall, using stateful packet inspection to your LAN...
...ADSL Modem Wireless Router DG834G Key Features The ADSL Modem Wireless Router provides the following features: • A built-in ADSL modem • A powerful, true firewall • 802.11g standards-based wireless networking • Easy, Web-based setup for installation and management • Extensive Internet protocol support • Trustworthy VPN Communications over the Internet • VPN Wizard for easy VPN... v1.0, January 2006 A Powerful, True Firewall Unlike simple Internet sharing NAT routers, the DG834G v3 is a true firewall, using stateful packet inspection to your LAN...
DG834Gv3 Reference Manual
Page 21
...ADSL Modem Wireless Router DG834G • Dynamic DNS Dynamic DNS services allow remote users to either type of full-duplex or half-duplex operation. That port will accommodate either a 10 Mbps standard Ethernet network or a 100 Mbps Fast Ethernet network. Introduction 2-5 v1.0, January 2006 Virtual Private Networking (VPN) The ADSL Modem Wireless Router...configure itself to register your local area network (LAN) and remote networks or clients. UPnP compliant routers provide broadband users at home and small businesses with many popular Dynamic DNS services to the correct ...
...ADSL Modem Wireless Router DG834G • Dynamic DNS Dynamic DNS services allow remote users to either type of full-duplex or half-duplex operation. That port will accommodate either a 10 Mbps standard Ethernet network or a 100 Mbps Fast Ethernet network. Introduction 2-5 v1.0, January 2006 Virtual Private Networking (VPN) The ADSL Modem Wireless Router...configure itself to register your local area network (LAN) and remote networks or clients. UPnP compliant routers provide broadband users at home and small businesses with many popular Dynamic DNS services to the correct ...
DG834Gv3 Reference Manual
Page 96
DG834G VPN Tunnel PCs Figure 7-1 PC (Running NETGEAR ProSafe VPN Client) A VPN client access allows a remote PC to connect to an office network. The ADSL Modem Wireless Router on your network from a remote PC, such as a telecommuter connecting to your network is one tunnel endpoint, running the VPN client software. The ADSL Modem Wireless Router supports up this case, the remote PC is...
DG834G VPN Tunnel PCs Figure 7-1 PC (Running NETGEAR ProSafe VPN Client) A VPN client access allows a remote PC to connect to an office network. The ADSL Modem Wireless Router on your network from a remote PC, such as a telecommuter connecting to your network is one tunnel endpoint, running the VPN client software. The ADSL Modem Wireless Router supports up this case, the remote PC is...
DG834Gv3 Reference Manual
Page 97
... also enable access to set up this case, use DG834G v3s on page 7-21 to network resources across the Internet. Reference Manual for the ADSL Modem Wireless Router DG834G Gateway-to-Gateway VPN Tunnels • Gateway-to-Gateway VPN Tunnels provide secure access between two or more NETGEAR VPN-enabled routers is a good way to connect branch or home offices and...
... also enable access to set up this case, use DG834G v3s on page 7-21 to network resources across the Internet. Reference Manual for the ADSL Modem Wireless Router DG834G Gateway-to-Gateway VPN Tunnels • Gateway-to-Gateway VPN Tunnels provide secure access between two or more NETGEAR VPN-enabled routers is a good way to connect branch or home offices and...
DG834Gv3 Reference Manual
Page 100
Reference Manual for the ADSL Modem Wireless Router DG834G VPN Tunnel Configuration There are two tunnel configurations and three ways to configure them: • Use the VPN Wizard to configure a VPN tunnel (recommended for your special circumstances, but you must...NETGEAR publishes additional interoperability scenarios with various gateway and client software products. See "How to Set Up a Gateway-to-Gateway VPN Configuration" on page 7-21. • See "Using Auto Policy to -Gateway VPN Configuration" on the NETGEAR web site at www.netgear.com for your DG834G v3 and the corresponding VPN...
Reference Manual for the ADSL Modem Wireless Router DG834G VPN Tunnel Configuration There are two tunnel configurations and three ways to configure them: • Use the VPN Wizard to configure a VPN tunnel (recommended for your special circumstances, but you must...NETGEAR publishes additional interoperability scenarios with various gateway and client software products. See "How to Set Up a Gateway-to-Gateway VPN Configuration" on page 7-21. • See "Using Auto Policy to -Gateway VPN Configuration" on the NETGEAR web site at www.netgear.com for your DG834G v3 and the corresponding VPN...
DG834Gv3 Reference Manual
Page 101
...following procedure. Reference Manual for the ADSL Modem Wireless Router DG834G How to Set Up a Client-to-Gateway VPN Configuration 22.23.24.25 DG834G VPN Tunnel 0.0.0.0 192.168.3.1 PCs Figure 7-3 PC (Running NETGEAR ProSafe VPN Client) Setting up the VPN tunnel using the VPNC default parameters ...-to-Gateway VPN Tunnel on the DG834G v3" on page 7-7 uses the VPN Wizard to configure the VPN tunnel between the remote PC and network gateway. • "Step 2: Configuring the NETGEAR ProSafe VPN Client on the Remote PC" on page 7-12 configures the NETGEAR ProSafe VPN Client endpoint...
...following procedure. Reference Manual for the ADSL Modem Wireless Router DG834G How to Set Up a Client-to-Gateway VPN Configuration 22.23.24.25 DG834G VPN Tunnel 0.0.0.0 192.168.3.1 PCs Figure 7-3 PC (Running NETGEAR ProSafe VPN Client) Setting up the VPN tunnel using the VPNC default parameters ...-to-Gateway VPN Tunnel on the DG834G v3" on page 7-7 uses the VPN Wizard to configure the VPN tunnel between the remote PC and network gateway. • "Step 2: Configuring the NETGEAR ProSafe VPN Client on the Remote PC" on page 7-12 configures the NETGEAR ProSafe VPN Client endpoint...
DG834Gv3 Reference Manual
Page 102
... -- MD5 or SHA-1: Diffie-Hellman (DH) Group -- Reference Manual for the ADSL Modem Wireless Router DG834G Table 7-3. Group 1 or Group 2: Key Life in seconds: IKE Life Time in seconds: RoadWarrior 12345678 Main Disabled Enabled 3DES SHA-1 Group 2 28800 (8 hours) 3600 (1 hour) VPN Endpoint Client DG834G v3 Local IPSec ID toDG834 toClient LAN IP Address - 192.168.3.1 Subnet...
... -- MD5 or SHA-1: Diffie-Hellman (DH) Group -- Reference Manual for the ADSL Modem Wireless Router DG834G Table 7-3. Group 1 or Group 2: Key Life in seconds: IKE Life Time in seconds: RoadWarrior 12345678 Main Disabled Enabled 3DES SHA-1 Group 2 28800 (8 hours) 3600 (1 hour) VPN Endpoint Client DG834G v3 Local IPSec ID toDG834 toClient LAN IP Address - 192.168.3.1 Subnet...
DG834Gv3 Reference Manual
Page 103
... the pre-shared key: (e.g., 12345678) Select the radio button: A remote VPN client (single PC) Figure 7-5 Tip: The Connection Name is arbitrary and not relevant to display this screen. Log in to the DG834G v3 at its LAN address of http://192.168.0.1 with its default user name... 7-4 2. Fill in the main menu to how the configuration functions. Click the VPN Wizard link in the Connection Name and the pre-shared key, select the type of password. Virtual Private Networking 7-9 v1.0, January 2006 Click Next to proceed. Reference Manual for the ADSL Modem Wireless Router DG834G 1.
... the pre-shared key: (e.g., 12345678) Select the radio button: A remote VPN client (single PC) Figure 7-5 Tip: The Connection Name is arbitrary and not relevant to display this screen. Log in to the DG834G v3 at its LAN address of http://192.168.0.1 with its default user name... 7-4 2. Fill in the main menu to how the configuration functions. Click the VPN Wizard link in the Connection Name and the pre-shared key, select the type of password. Virtual Private Networking 7-9 v1.0, January 2006 Click Next to proceed. Reference Manual for the ADSL Modem Wireless Router DG834G 1.
DG834Gv3 Reference Manual
Page 107
... field as the network address of the DG834G v3 on LAN A. Select All in the VPN Settings of the DG834G v3. f. Tip: Choose Connection Names that it does not have to how the VPN tunnel functions. g. From the Edit menu of the DG834G v3. In this example, the Connection Name ... that make sense to allow all traffic through the VPN tunnel. Reference Manual for the ADSL Modem Wireless Router DG834G b. d. Virtual Private Networking v1.0, January 2006 7-13 Note: In this example, type 192.168.3.1 in the list of the VPN tunnel because Connection Names are arbitrary to match the ...
... field as the network address of the DG834G v3 on LAN A. Select All in the VPN Settings of the DG834G v3. f. Tip: Choose Connection Names that it does not have to how the VPN tunnel functions. g. From the Edit menu of the DG834G v3. In this example, the Connection Name ... that make sense to allow all traffic through the VPN tunnel. Reference Manual for the ADSL Modem Wireless Router DG834G b. d. Virtual Private Networking v1.0, January 2006 7-13 Note: In this example, type 192.168.3.1 in the list of the VPN tunnel because Connection Names are arbitrary to match the ...
DG834Gv3 Reference Manual
Page 108
...DG834G v3 in Figure 7-10. 3. In the Network Security Policy list, expand the new connection by double clicking its name or clicking on the Security Policy subheading to provide the Pre-Shared Key that you will provide information about the remote VPN client PC. Select the Main Mode in the NETGEAR ProSafe VPN...22.23.24.25 would be used. You will need to show the Security Policy menu. Configure the VPN Client Identity. Reference Manual for the ADSL Modem Wireless Router DG834G h. b. Select the Connect using Secure Gateway Tunnel check box. k. Figure 7-10 c. i. Enter ...
...DG834G v3 in Figure 7-10. 3. In the Network Security Policy list, expand the new connection by double clicking its name or clicking on the Security Policy subheading to provide the Pre-Shared Key that you will provide information about the remote VPN client PC. Select the Main Mode in the NETGEAR ProSafe VPN...22.23.24.25 would be used. You will need to show the Security Policy menu. Configure the VPN Client Identity. Reference Manual for the ADSL Modem Wireless Router DG834G h. b. Select the Connect using Secure Gateway Tunnel check box. k. Figure 7-10 c. i. Enter ...
DG834Gv3 Reference Manual
Page 110
... Key and click OK. This selection must match your selection in the DG834G v3 configuration. Expand the Authentication subheading by double clicking its name or clicking on the left side of encryption (DES or 3DES) to be used for the ADSL Modem Wireless Router DG834G e. This field is entered. Then select Proposal 1 below Authentication. Reference Manual...
... Key and click OK. This selection must match your selection in the DG834G v3 configuration. Expand the Authentication subheading by double clicking its name or clicking on the left side of encryption (DES or 3DES) to be used for the ADSL Modem Wireless Router DG834G e. This field is entered. Then select Proposal 1 below Authentication. Reference Manual...
DG834Gv3 Reference Manual
Page 111
...14 b. d. Virtual Private Networking v1.0, January 2006 7-17 In the Hash Alg menu, select SHA-1. Configure the VPN Client Key Exchange Proposal. This selection must match your selection in Table 7-3 on the "+" symbol. Then select ...Proposal 1 below Key Exchange. Reference Manual for the Encryption Protocol in the DG834G v3 in the DG834G v3 configuration. In the Authentication Method menu, select Pre-Shared key. In the Encrypt Alg menu, select... type of encryption to correspond with what was configured for the ADSL Modem Wireless Router DG834G c.
...14 b. d. Virtual Private Networking v1.0, January 2006 7-17 In the Hash Alg menu, select SHA-1. Configure the VPN Client Key Exchange Proposal. This selection must match your selection in Table 7-3 on the "+" symbol. Then select ...Proposal 1 below Key Exchange. Reference Manual for the Encryption Protocol in the DG834G v3 in the DG834G v3 configuration. In the Authentication Method menu, select Pre-Shared key. In the Encrypt Alg menu, select... type of encryption to correspond with what was configured for the ADSL Modem Wireless Router DG834G c.
DG834Gv3 Reference Manual
Page 112
...attempt to connect. To check the VPN Connection, you attempt to the DG834G v3's network by using our example, start from the PC. The NETGEAR ProSafe client will automatically open the VPN connection when you can initiate a ...request from the remote PC to access any IP addresses in the NETGEAR ProSafe menu bar. Establish an Internet connection from the remote PC: a. c. Figure 7-15 7-18 v1.0, January 2006 Virtual Private Networking In the Hash Alg menu, select SHA-1. g. b. Reference Manual for the ADSL Modem Wireless Router DG834G...
...attempt to connect. To check the VPN Connection, you attempt to the DG834G v3's network by using our example, start from the PC. The NETGEAR ProSafe client will automatically open the VPN connection when you can initiate a ...request from the remote PC to access any IP addresses in the NETGEAR ProSafe menu bar. Establish an Internet connection from the remote PC: a. c. Figure 7-15 7-18 v1.0, January 2006 Virtual Private Networking In the Hash Alg menu, select SHA-1. g. b. Reference Manual for the ADSL Modem Wireless Router DG834G...
DG834Gv3 Reference Manual
Page 113
... for the ADSL Modem Wireless Router DG834G This will cause a continuous ping to be viewed by opening the NETGEAR ProSafe Log Viewer. Figure 7-16 Once the connection is due to the VPN tunnel or some reason outside the VPN tunnel. After a short wait, you can be sent to the first DG834G v3. Virtual Private... change from "timed out" to "reply." To launch this function, click on the progress and status of the VPN client connection can open the browser of the PC and enter the LAN IP address of the Modem Router (unless another PC already has the DG834G v3 management interface open).
... for the ADSL Modem Wireless Router DG834G This will cause a continuous ping to be viewed by opening the NETGEAR ProSafe Log Viewer. Figure 7-16 Once the connection is due to the VPN tunnel or some reason outside the VPN tunnel. After a short wait, you can be sent to the first DG834G v3. Virtual Private... change from "timed out" to "reply." To launch this function, click on the progress and status of the VPN client connection can open the browser of the PC and enter the LAN IP address of the Modem Router (unless another PC already has the DG834G v3 management interface open).
DG834Gv3 Reference Manual
Page 114
The Connection Monitor screen for the ADSL Modem Wireless Router DG834G 9. Reference Manual for this connection is shown below: Figure 7-18 In this menu will say "SA" before the name of 192.168.2.2. While the connection ... established, the Connection Name field in order to a remote LAN through a VPN, you can see the following: • The DG834G v3 has a public IP WAN address of 22.23.24.25. • The DG834G v3 has a LAN IP address of 192.168.3.1. • The VPN client PC has a dynamically assigned address of the connection. Note: While...
The Connection Monitor screen for the ADSL Modem Wireless Router DG834G 9. Reference Manual for this connection is shown below: Figure 7-18 In this menu will say "SA" before the name of 192.168.2.2. While the connection ... established, the Connection Name field in order to a remote LAN through a VPN, you can see the following: • The DG834G v3 has a public IP WAN address of 22.23.24.25. • The DG834G v3 has a LAN IP address of 192.168.3.1. • The VPN client PC has a dynamically assigned address of the connection. Note: While...
DG834Gv3 Reference Manual
Page 134
...in the "Single/Start IP address" field. Otherwise, select the desired option (IP address or Domain Name) and enter the address of the remote VPN endpoint to a device that it is used on your LAN are defined as its major characteristics. • Policy Name-Enter a unique name to... be enabled at a time. The range should be provided as possible to meet this if you wish to generate traffic for the ADSL Modem Wireless Router DG834G The DG834G v3 VPN tunnel network connection fields are covered by the remote LAN IP range and must be made as narrow as follows: • Single ...
...in the "Single/Start IP address" field. Otherwise, select the desired option (IP address or Domain Name) and enter the address of the remote VPN endpoint to a device that it is used on your LAN are defined as its major characteristics. • Policy Name-Enter a unique name to... be enabled at a time. The range should be provided as possible to meet this if you wish to generate traffic for the ADSL Modem Wireless Router DG834G The DG834G v3 VPN tunnel network connection fields are covered by the remote LAN IP range and must be made as narrow as follows: • Single ...
DG834Gv3 Reference Manual
Page 143
... an IP address in the "Single/Start IP address" field, and the desired network mask in the "Finish IP address" field. The DG834G v3 VPN tunnel network connection fields are covered by this if you wish to connect. This identifies which PCs on your LAN available to the remote... VPN endpoint. If this option if there is not supplied to remote users. • Range address-enter the starting IP address in the "Single/Start IP address" field, and the finish IP address in the "Subnet Mask" field. Reference Manual for the ADSL Modem Wireless Router DG834G General.
... an IP address in the "Single/Start IP address" field, and the desired network mask in the "Finish IP address" field. The DG834G v3 VPN tunnel network connection fields are covered by this if you wish to connect. This identifies which PCs on your LAN available to the remote... VPN endpoint. If this option if there is not supplied to remote users. • Range address-enter the starting IP address in the "Single/Start IP address" field, and the finish IP address in the "Subnet Mask" field. Reference Manual for the ADSL Modem Wireless Router DG834G General.