DG834Gv4 Reference Manual
Page 9
...Wireless Client Association 5-16 Chapter 6 Virtual Private Networking Overview of VPN Configuration 6-1 Client-to-Gateway VPN Tunnels 6-2 Gateway-to-Gateway VPN Tunnels 6-2 Planning a VPN ...6-3 VPN Tunnel Configuration 6-5 Setting Up a Client-to-Gateway VPN Configuration 6-5 Step 1: Configuring the Client-to-Gateway VPN Tunnel on the DG834G v4 ...........6-6 Step 2: Configuring the NETGEAR... a VPN Tunnel 6-31 Setting Up VPN Tunnels in Special Circumstances 6-32 Using Auto Policy to Configure VPN Tunnels 6-32 Using Manual Policy to Configure VPN Tunnels 6-41 3 v2.0, September 2007
...Wireless Client Association 5-16 Chapter 6 Virtual Private Networking Overview of VPN Configuration 6-1 Client-to-Gateway VPN Tunnels 6-2 Gateway-to-Gateway VPN Tunnels 6-2 Planning a VPN ...6-3 VPN Tunnel Configuration 6-5 Setting Up a Client-to-Gateway VPN Configuration 6-5 Step 1: Configuring the Client-to-Gateway VPN Tunnel on the DG834G v4 ...........6-6 Step 2: Configuring the NETGEAR... a VPN Tunnel 6-31 Setting Up VPN Tunnels in Special Circumstances 6-32 Using Auto Policy to Configure VPN Tunnels 6-32 Using Manual Policy to Configure VPN Tunnels 6-41 3 v2.0, September 2007
DG834Gv4 Reference Manual
Page 14
... the ADSL2+ Modem Wireless Router according to these specifications: Product Version Manual Publication Date 54 Mbps ADSL2+ Modem Wireless Router Model DG834G September 2007 For more information about network, Internet, firewall, and VPN technologies, see the links to access the full NETGEAR, Inc. This manual is dedicated to PDF versions of This Chapter link at http://kbserver.netgear.com/products/DG834G v4.asp. online...
... the ADSL2+ Modem Wireless Router according to these specifications: Product Version Manual Publication Date 54 Mbps ADSL2+ Modem Wireless Router Model DG834G September 2007 For more information about network, Internet, firewall, and VPN technologies, see the links to access the full NETGEAR, Inc. This manual is dedicated to PDF versions of This Chapter link at http://kbserver.netgear.com/products/DG834G v4.asp. online...
DG834Gv4 Reference Manual
Page 25
...Wireless Router DG834G Reference Manual Table 1-2. Classical routing should be used by the modem router on the LAN side of the network interface card in your computer when your account is first opened. Use the default MAC address. • Use Computer MAC Address. Disabling NAT reboots the modem router...you are disabled. With the firewall disabled, the protections usually provided to your modem router to the factory defaults. The...routing is allowed by this router. This feature allows your network are now using the one computer that the DG834G v4 uses. Classical routing lets...
...Wireless Router DG834G Reference Manual Table 1-2. Classical routing should be used by the modem router on the LAN side of the network interface card in your computer when your account is first opened. Use the default MAC address. • Use Computer MAC Address. Disabling NAT reboots the modem router...you are disabled. With the firewall disabled, the protections usually provided to your modem router to the factory defaults. The...routing is allowed by this router. This feature allows your network are now using the one computer that the DG834G v4 uses. Classical routing lets...
DG834Gv4 Reference Manual
Page 58
... Name (SSID) These are set in Chapter 2. The current channel, which determines the operating frequency. Indicates if the DG834G v4 is disabled or not. ADSL2+ Modem Wireless Router DG834G Reference Manual Table 4-1. Viewing Statistics Click the Show Statistics button on the front panel will be off. Indicates if the access point feature is configured to display...
... Name (SSID) These are set in Chapter 2. The current channel, which determines the operating frequency. Indicates if the DG834G v4 is disabled or not. ADSL2+ Modem Wireless Router DG834G Reference Manual Table 4-1. Viewing Statistics Click the Show Statistics button on the front panel will be off. Indicates if the access point feature is configured to display...
DG834Gv4 Reference Manual
Page 82
...if any other bridge-mode wireless station in AP 2 Point-to -Point Bridge mode, the DG834G v4 modem router communicates as an access point with another bridge-mode wireless station. As a bridge, wireless client associations are in ...the field provided. Configure and verify the following figure shows an example of the other PCs or servers connected to protect this communication. ADSL2+ Modem Wireless Router DG834G Reference Manual...
...if any other bridge-mode wireless station in AP 2 Point-to -Point Bridge mode, the DG834G v4 modem router communicates as an access point with another bridge-mode wireless station. As a bridge, wireless client associations are in ...the field provided. Configure and verify the following figure shows an example of the other PCs or servers connected to protect this communication. ADSL2+ Modem Wireless Router DG834G Reference Manual...
DG834Gv4 Reference Manual
Page 83
...to-Point Bridge Mode Point-to -Point Bridge mode, using the MAC address of the DG834G v4 modem router. ADSL2+ Modem Wireless Router DG834G Reference Manual Multi-Point Bridge Configuration Multi-Point Bridge mode allows a modem router to bridge to -Multi-Point Bridge mode and enter the MAC addresses of a Multi-...Point Bridge mode with the remote MAC address of this DG834G v4 as the Remote MAC Address. • Using wireless security to -Multi-Point Bridge mode. The DG834v4 is AP 1, which is in a central location, configure the DG834G v4 modem router (AP 1) on LAN Segment 1 in Point-to ...
...to-Point Bridge Mode Point-to -Point Bridge mode, using the MAC address of the DG834G v4 modem router. ADSL2+ Modem Wireless Router DG834G Reference Manual Multi-Point Bridge Configuration Multi-Point Bridge mode allows a modem router to bridge to -Multi-Point Bridge mode and enter the MAC addresses of a Multi-...Point Bridge mode with the remote MAC address of this DG834G v4 as the Remote MAC Address. • Using wireless security to -Multi-Point Bridge mode. The DG834v4 is AP 1, which is in a central location, configure the DG834G v4 modem router (AP 1) on LAN Segment 1 in Point-to ...
DG834Gv4 Reference Manual
Page 84
ADSL2+ Modem Wireless Router DG834G Reference Manual • Configure the access point (AP3) on LAN Segment 3... not be the DHCP server. 3. Alternatively, you must enter the MAC address of AP 1 (the DG834G v4 modem router in the above diagram) in use the same SSID, channel, authentication mode, if any of disabling client... files and printers with Wireless Client Association In this ADSL2+ Modem Wireless Router. 5-16 v2.0, September 2007 Advanced Configuration Note: Wireless stations configured as the LAN devices. • Only one AP, the DG834G v4 modem router in Figure 5-9, is...
ADSL2+ Modem Wireless Router DG834G Reference Manual • Configure the access point (AP3) on LAN Segment 3... not be the DHCP server. 3. Alternatively, you must enter the MAC address of AP 1 (the DG834G v4 modem router in the above diagram) in use the same SSID, channel, authentication mode, if any of disabling client... files and printers with Wireless Client Association In this ADSL2+ Modem Wireless Router. 5-16 v2.0, September 2007 Advanced Configuration Note: Wireless stations configured as the LAN devices. • Only one AP, the DG834G v4 modem router in Figure 5-9, is...
DG834Gv4 Reference Manual
Page 85
... v2.0, September 2007 5-17 ADSL2+ Modem Wireless Router DG834G Reference Manual • You cannot configure a sequence of AP 1 in the Remote MAC Address field. 2. Configure the operating mode of the devices. • Configure AP 1 the DG834G v4 modem router in the previous figure) on LAN Segment ... parent/child APs. You are using DHCP, AP devices should be on the same LAN. Wireless PC associated with AP 1 DG834G v4 Modem Router Wireless PC associated with wireless client association: 1. Verify the following figure shows an example of a Repeater Mode configuration. That...
... v2.0, September 2007 5-17 ADSL2+ Modem Wireless Router DG834G Reference Manual • You cannot configure a sequence of AP 1 in the Remote MAC Address field. 2. Configure the operating mode of the devices. • Configure AP 1 the DG834G v4 modem router in the previous figure) on LAN Segment ... parent/child APs. You are using DHCP, AP devices should be on the same LAN. Wireless PC associated with AP 1 DG834G v4 Modem Router Wireless PC associated with wireless client association: 1. Verify the following figure shows an example of a Repeater Mode configuration. That...
DG834Gv4 Reference Manual
Page 87
... a VPN tunnel between a remote PC and a network gateway using the VPN Wizard and the NETGEAR ProSafe VPN Client. • "Setting Up a Gateway-to-Gateway VPN Configuration" on page 6-...virtual private networking (VPN) features of the ADSL2+ Modem Wireless Router. and between your local network and a remote network or computer. The DG834G v4 supports up , along with the VPN Committee (VPNC) recommended... for configuring VPN tunnels are inappropriate. VPN communications paths are Auto Policy and Manual Policy. Chapter 6 Virtual Private Networking This chapter describes how to configure VPN ...
... a VPN tunnel between a remote PC and a network gateway using the VPN Wizard and the NETGEAR ProSafe VPN Client. • "Setting Up a Gateway-to-Gateway VPN Configuration" on page 6-...virtual private networking (VPN) features of the ADSL2+ Modem Wireless Router. and between your local network and a remote network or computer. The DG834G v4 supports up , along with the VPN Committee (VPNC) recommended... for configuring VPN tunnels are inappropriate. VPN communications paths are Auto Policy and Manual Policy. Chapter 6 Virtual Private Networking This chapter describes how to configure VPN ...
DG834Gv4 Reference Manual
Page 88
... Configuration" on each end of the tunnel to set up this configuration. 6-2 Virtual Private Networking v2.0, September 2007 In this case, use DG834G v4s on page 6-18 for information about how to form the VPN tunnel end points. Figure 6-1 A VPN client access allows a remote PC ... two or more NETGEAR VPN-enabled routers is a good way to set up this case, the remote PC is the other tunnel endpoint. VPN tunnels also enable access to your network is one tunnel endpoint, running the VPN client software. ADSL2+ Modem Wireless Router DG834G Reference Manual Client-to-Gateway...
... Configuration" on each end of the tunnel to set up this configuration. 6-2 Virtual Private Networking v2.0, September 2007 In this case, use DG834G v4s on page 6-18 for information about how to form the VPN tunnel end points. Figure 6-1 A VPN client access allows a remote PC ... two or more NETGEAR VPN-enabled routers is a good way to set up this case, the remote PC is the other tunnel endpoint. VPN tunnels also enable access to your network is one tunnel endpoint, running the VPN client software. ADSL2+ Modem Wireless Router DG834G Reference Manual Client-to-Gateway...
DG834Gv4 Reference Manual
Page 91
..., the process is more complex, and there are not appropriate for your DG834G v4 and the corresponding VPN endpoint gateway or client workstation. Note: NETGEAR publishes additional interoperability scenarios with various gateway and client software products. Setting Up...Wireless Router DG834G Reference Manual VPN Tunnel Configuration There are two tunnel configurations and three ways to configure them: • Use the VPN Wizard to -Gateway VPN Configuration" on page 6-5. - You manually enter all the authentication and key parameters. Look on the NETGEAR website at www.netgear...
..., the process is more complex, and there are not appropriate for your DG834G v4 and the corresponding VPN endpoint gateway or client workstation. Note: NETGEAR publishes additional interoperability scenarios with various gateway and client software products. Setting Up...Wireless Router DG834G Reference Manual VPN Tunnel Configuration There are two tunnel configurations and three ways to configure them: • Use the VPN Wizard to -Gateway VPN Configuration" on page 6-5. - You manually enter all the authentication and key parameters. Look on the NETGEAR website at www.netgear...
DG834Gv4 Reference Manual
Page 92
....24.25 Follow this procedure to configure a client-to configure the NETGEAR ProSafe VPN Client endpoint. VPN Tunnel Configuration Worksheet Connection Name: Pre-Shared Key: Secure Association -- ADSL2+ Modem Wireless Router DG834G Reference Manual • "Step 1: Configuring the Client-to-Gateway VPN Tunnel on the DG834G v4" on page 6-6 describes how to use the VPN Wizard to...
....24.25 Follow this procedure to configure a client-to configure the NETGEAR ProSafe VPN Client endpoint. VPN Tunnel Configuration Worksheet Connection Name: Pre-Shared Key: Secure Association -- ADSL2+ Modem Wireless Router DG834G Reference Manual • "Step 1: Configuring the Client-to-Gateway VPN Tunnel on the DG834G v4" on page 6-6 describes how to use the VPN Wizard to...
DG834Gv4 Reference Manual
Page 96
...click Connection. Note: In this message. b. From the Edit menu of policies. Add a new connection. ADSL2+ Modem Wireless Router DG834G Reference Manual If you do not have to match the RoadWarrior connection name used on page 6-6, create a VPN connection. Reboot the remote... your PC, you might see the warning message stating "The NETGEAR ProSafe VPN Component requires at least one dial-up adapter be installed." Run the NETGEAR ProSafe Security Policy Editor program, and, using the "VPN Tunnel... example, the connection name used on the client side of the DG834G v4 on LAN A.
...click Connection. Note: In this message. b. From the Edit menu of policies. Add a new connection. ADSL2+ Modem Wireless Router DG834G Reference Manual If you do not have to match the RoadWarrior connection name used on page 6-6, create a VPN connection. Reboot the remote... your PC, you might see the warning message stating "The NETGEAR ProSafe VPN Component requires at least one dial-up adapter be installed." Run the NETGEAR ProSafe Security Policy Editor program, and, using the "VPN Tunnel... example, the connection name used on the client side of the DG834G v4 on LAN A.
DG834Gv4 Reference Manual
Page 97
...Wireless Router DG834G Reference Manual Tip: Choose connection names that make sense to the people using Secure Gateway Tunnel check box. Select the Connect using and administering the VPN. In this example, type 192.168.3.1 as the network address of the DG834G v4. • Mask: Enter 255.255.255.0 as the LAN Subnet Mask of the DG834G v4... in the ID Type drop-down list. The resulting connection settings are shown in the NETGEAR ProSafe VPN Client software: a. Click ...
...Wireless Router DG834G Reference Manual Tip: Choose connection names that make sense to the people using Secure Gateway Tunnel check box. Select the Connect using and administering the VPN. In this example, type 192.168.3.1 as the network address of the DG834G v4. • Mask: Enter 255.255.255.0 as the LAN Subnet Mask of the DG834G v4... in the ID Type drop-down list. The resulting connection settings are shown in the NETGEAR ProSafe VPN Client software: a. Click ...
DG834Gv4 Reference Manual
Page 98
....0, September 2007 Virtual Private Networking Select IP Address in the DG834G v4 and either a fixed IP address or a fixed virtual IP address of the VPN client PC. If you configured in the ID Type drop-down list, select None. ADSL2+ Modem Wireless Router DG834G Reference Manual c. Figure 6-11 b. In the Select Certificate drop-down list. In...
....0, September 2007 Virtual Private Networking Select IP Address in the DG834G v4 and either a fixed IP address or a fixed virtual IP address of the VPN client PC. If you configured in the ID Type drop-down list, select None. ADSL2+ Modem Wireless Router DG834G Reference Manual c. Figure 6-11 b. In the Select Certificate drop-down list. In...
DG834Gv4 Reference Manual
Page 99
...Security Policy Editor window, expand the Security Policy heading by double clicking its name or clicking the + symbol. Enter the DG834G v4 pre-shared key, and then click OK. b. Figure 6-13 Virtual Private Networking v2.0, September 2007 6-13 Click Enter...DG834G v4 configuration. Expand the Authentication subheading by double-clicking its name or clicking the + symbol. Then select Proposal 1 below Authentication. In the My Identity section of encryption (DES or 3DES) to be used for this example, 12345678 is case-sensitive. 5. ADSL2+ Modem Wireless Router DG834G Reference Manual...
...Security Policy Editor window, expand the Security Policy heading by double clicking its name or clicking the + symbol. Enter the DG834G v4 pre-shared key, and then click OK. b. Figure 6-13 Virtual Private Networking v2.0, September 2007 6-13 Click Enter...DG834G v4 configuration. Expand the Authentication subheading by double-clicking its name or clicking the + symbol. Then select Proposal 1 below Authentication. In the My Identity section of encryption (DES or 3DES) to be used for this example, 12345678 is case-sensitive. 5. ADSL2+ Modem Wireless Router DG834G Reference Manual...
DG834Gv4 Reference Manual
Page 100
ADSL2+ Modem Wireless Router DG834G Reference Manual c. In the Encrypt Alg drop-down list, select the type of encryption that is configured for the Encryption Protocol in the DG834G v4 in Table 6-3 on page 6-6. g. This selection must match your selection in Table 6-3 on page 6-6. e. d. e. f. Figure ... this step, you provide the type of encryption (DES or 3DES) to be used for the Encryption Protocol in the DG834G v4 in the DG834G v4 configuration. d. In this example, use Triple DES. 6-14 v2.0, September 2007 Virtual Private Networking In the Authentication Method ...
ADSL2+ Modem Wireless Router DG834G Reference Manual c. In the Encrypt Alg drop-down list, select the type of encryption that is configured for the Encryption Protocol in the DG834G v4 in Table 6-3 on page 6-6. g. This selection must match your selection in Table 6-3 on page 6-6. e. d. e. f. Figure ... this step, you provide the type of encryption (DES or 3DES) to be used for the Encryption Protocol in the DG834G v4 in the DG834G v4 configuration. d. In this example, use Triple DES. 6-14 v2.0, September 2007 Virtual Private Networking In the Authentication Method ...
DG834Gv4 Reference Manual
Page 101
... VPN Connection, you attempt to access any IP addresses in the NETGEAR ProSafe menu bar. b. Type ping -t 192.168.3.1, and then click OK. The NETGEAR ProSafe client reports the results of the remote VPN router's LAN. 8. Check the VPN connection. Since the remote PC has... Private Networking v2.0, September 2007 6-15 ADSL2+ Modem Wireless Router DG834G Reference Manual f. In the Encapsulation drop-down list, select SHA-1. To perform a ping test using the Connect option in the range of the attempt to the DG834G v4 modem router's network by using our example, start from the PC...
... VPN Connection, you attempt to access any IP addresses in the NETGEAR ProSafe menu bar. b. Type ping -t 192.168.3.1, and then click OK. The NETGEAR ProSafe client reports the results of the remote VPN router's LAN. 8. Check the VPN connection. Since the remote PC has... Private Networking v2.0, September 2007 6-15 ADSL2+ Modem Wireless Router DG834G Reference Manual f. In the Encapsulation drop-down list, select SHA-1. To perform a ping test using the Connect option in the range of the attempt to the DG834G v4 modem router's network by using our example, start from the PC...
DG834Gv4 Reference Manual
Page 102
...Wireless Router DG834G Reference Manual This causes a continuous ping to be sent to the VPN tunnel or some reason outside the VPN tunnel. 6-16 v2.0, September 2007 Virtual Private Networking After a short wait, you can view information about the progress and status of the VPN client connection by opening the NETGEAR...PC and enter the LAN IP address of the modem router (unless another PC already has the DG834G v4 management interface open). To launch this function, click the Windows Start button, then select Programs > NETGEAR ProSafe VPN Client > Log Viewer. After between several ...
...Wireless Router DG834G Reference Manual This causes a continuous ping to be sent to the VPN tunnel or some reason outside the VPN tunnel. 6-16 v2.0, September 2007 Virtual Private Networking After a short wait, you can view information about the progress and status of the VPN client connection by opening the NETGEAR...PC and enter the LAN IP address of the modem router (unless another PC already has the DG834G v4 management interface open). To launch this function, click the Windows Start button, then select Programs > NETGEAR ProSafe VPN Client > Log Viewer. After between several ...
DG834Gv4 Reference Manual
Page 103
...The Connection Monitor screen for this example you can see these settings: • The DG834G v4 has a GW Address (public IP WAN address) of 22.23.24.25. • The DG834G v4 has a Remote Address (LAN IP address) of 192.168.3.1. • The ...VPN client PC has a Local Address (dynamically assigned address) of the connection. When the connection is shown in the previous figure. Note: While your PC is the case, you might not have normal Internet access. ADSL2+ Modem Wireless Router DG834G Reference Manual...
...The Connection Monitor screen for this example you can see these settings: • The DG834G v4 has a GW Address (public IP WAN address) of 22.23.24.25. • The DG834G v4 has a Remote Address (LAN IP address) of 192.168.3.1. • The ...VPN client PC has a Local Address (dynamically assigned address) of the connection. When the connection is shown in the previous figure. Note: While your PC is the case, you might not have normal Internet access. ADSL2+ Modem Wireless Router DG834G Reference Manual...