DG834Gv4 Reference Manual
Page 9
...Wireless Client Association 5-16 Chapter 6 Virtual Private Networking Overview of VPN Configuration 6-1 Client-to-Gateway VPN Tunnels 6-2 Gateway-to-Gateway VPN Tunnels 6-2 Planning a VPN ...6-3 VPN Tunnel Configuration 6-5 Setting Up a Client-to-Gateway VPN Configuration 6-5 Step 1: Configuring the Client-to-Gateway VPN Tunnel on the DG834G v4 ...........6-6 Step 2: Configuring the NETGEAR... a VPN Tunnel 6-31 Setting Up VPN Tunnels in Special Circumstances 6-32 Using Auto Policy to Configure VPN Tunnels 6-32 Using Manual Policy to Configure VPN Tunnels 6-41 3 v2.0, September 2007
...Wireless Client Association 5-16 Chapter 6 Virtual Private Networking Overview of VPN Configuration 6-1 Client-to-Gateway VPN Tunnels 6-2 Gateway-to-Gateway VPN Tunnels 6-2 Planning a VPN ...6-3 VPN Tunnel Configuration 6-5 Setting Up a Client-to-Gateway VPN Configuration 6-5 Step 1: Configuring the Client-to-Gateway VPN Tunnel on the DG834G v4 ...........6-6 Step 2: Configuring the NETGEAR... a VPN Tunnel 6-31 Setting Up VPN Tunnels in Special Circumstances 6-32 Using Auto Policy to Configure VPN Tunnels 6-32 Using Manual Policy to Configure VPN Tunnels 6-41 3 v2.0, September 2007
DG834Gv4 Reference Manual
Page 14
...Manual Publication Date 54 Mbps ADSL2+ Modem Wireless Router Model DG834G September 2007 For more information about network, Internet, firewall, and VPN technologies, see the links to Use This Manual The HTML version of this manual you can choose one of the following : • Buttons, and , for the product model. • Links to a major topic. How to the NETGEAR... to PDF versions of This Chapter link at http://kbserver.netgear.com/products/DG834G v4.asp. How to Print this Manual To print this manual includes the following options, according to print the page contents...
...Manual Publication Date 54 Mbps ADSL2+ Modem Wireless Router Model DG834G September 2007 For more information about network, Internet, firewall, and VPN technologies, see the links to Use This Manual The HTML version of this manual you can choose one of the following : • Buttons, and , for the product model. • Links to a major topic. How to the NETGEAR... to PDF versions of This Chapter link at http://kbserver.netgear.com/products/DG834G v4.asp. How to Print this Manual To print this manual includes the following options, according to print the page contents...
DG834Gv4 Reference Manual
Page 25
...to the factory defaults. ADSL2+ Modem Wireless Router DG834G Reference Manual Table 1-2. This disables NAT, but leaves the firewall active. They will be using . This feature allows your network are disabled. Disable NAT only if you are now using the one computer that the DG834G v4 uses. Some ISPs register the ...Ethernet MAC address of the network interface card in addition to masquerade as that computer. Enter the MAC address that you want to install the modem router in a setting where you are ...
...to the factory defaults. ADSL2+ Modem Wireless Router DG834G Reference Manual Table 1-2. This disables NAT, but leaves the firewall active. They will be using . This feature allows your network are disabled. Disable NAT only if you are now using the one computer that the DG834G v4 uses. Some ISPs register the ...Ethernet MAC address of the network interface card in addition to masquerade as that computer. Enter the MAC address that you want to install the modem router in a setting where you are ...
DG834Gv4 Reference Manual
Page 58
...Modem Wireless Router DG834G Reference Manual Table 4-1. Broadcast Name Description The service set in Chapter 2. If not enabled, the Wireless LED on the Router Status screen to broadcast its SSID. Modem Router Status Fields (continued) Field Wireless Port Name (SSID) These are set ID, also known as the wireless... if the DG834G v4 is configured to display modem router usage statistics: Figure 4-4 4-6 Managing Your Network v2.0, September 2007 Indicates if the access point feature is set up for use. see Channel "Viewing or Changing Wireless AP Wireless Settings" in...
...Modem Wireless Router DG834G Reference Manual Table 4-1. Broadcast Name Description The service set in Chapter 2. If not enabled, the Wireless LED on the Router Status screen to broadcast its SSID. Modem Router Status Fields (continued) Field Wireless Port Name (SSID) These are set ID, also known as the wireless... if the DG834G v4 is configured to display modem router usage statistics: Figure 4-4 4-6 Managing Your Network v2.0, September 2007 Indicates if the access point feature is set up for use. see Channel "Viewing or Changing Wireless AP Wireless Settings" in...
DG834Gv4 Reference Manual
Page 82
... and security settings if security is in Point-to -Point Bridge mode, the DG834G v4 modem router communicates as an access point with another bridge-mode wireless station. As a bridge, wireless client associations are in the field provided. The following for both access points: ...(shown in its Remote MAC Address field. 3. Use wireless security to -Point Bridge mode. Configure the DG834G v4 modem router (AP 1) on AP2. only wired clients can be the DHCP server. 5. ADSL2+ Modem Wireless Router DG834G Reference Manual Point-to-Point Bridge Configuration In Point-to -Point Bridge...
... and security settings if security is in Point-to -Point Bridge mode, the DG834G v4 modem router communicates as an access point with another bridge-mode wireless station. As a bridge, wireless client associations are in the field provided. The following for both access points: ...(shown in its Remote MAC Address field. 3. Use wireless security to -Point Bridge mode. Configure the DG834G v4 modem router (AP 1) on AP2. only wired clients can be the DHCP server. 5. ADSL2+ Modem Wireless Router DG834G Reference Manual Point-to-Point Bridge Configuration In Point-to -Point Bridge...
DG834Gv4 Reference Manual
Page 83
ADSL2+ Modem Wireless Router DG834G Reference Manual Multi-Point Bridge Configuration Multi-Point Bridge mode allows a modem router to bridge to -Point Bridge Mode AP 3 PCs LAN Segment 1 AP 2 Hub or switch Hub or switch LAN Segment 2 PCs LAN Segment 3 PCs ...MAC Address. • Using wireless security to -Multi-Point Bridge mode. Multi-Point Bridge mode configuration includes the following steps: • Entering the MAC addresses of the other bridge-mode access points to Point-to -Point Bridge mode with the remote MAC address of the DG834G v4 modem router. The figure below shows...
ADSL2+ Modem Wireless Router DG834G Reference Manual Multi-Point Bridge Configuration Multi-Point Bridge mode allows a modem router to bridge to -Point Bridge Mode AP 3 PCs LAN Segment 1 AP 2 Hub or switch Hub or switch LAN Segment 2 PCs LAN Segment 3 PCs ...MAC Address. • Using wireless security to -Multi-Point Bridge mode. Multi-Point Bridge mode configuration includes the following steps: • Entering the MAC addresses of the other bridge-mode access points to Point-to -Point Bridge mode with the remote MAC address of the DG834G v4 modem router. The figure below shows...
DG834Gv4 Reference Manual
Page 84
...the DG834G v4 modem router, must use the same SSID, channel, authentication mode, if any, and encryption in use. • All point-to access any LAN segment, you require wireless stations to -point APs must enter the MAC address of the remote "parent" access point. ADSL2+ Modem Wireless Router DG834G Reference Manual ...a "child" access point. That is configured in any LAN segment. If you can configure the ADSL2+ Modem Wireless Router as the LAN devices. • Only one AP, the DG834G v4 modem router in Figure 5-9, is , all the AP LAN IP addresses must be in the same network. ...
...the DG834G v4 modem router, must use the same SSID, channel, authentication mode, if any, and encryption in use. • All point-to access any LAN segment, you require wireless stations to -point APs must enter the MAC address of the remote "parent" access point. ADSL2+ Modem Wireless Router DG834G Reference Manual ...a "child" access point. That is configured in any LAN segment. If you can configure the ADSL2+ Modem Wireless Router as the LAN devices. • Only one AP, the DG834G v4 modem router in Figure 5-9, is , all the AP LAN IP addresses must be in the same network. ...
DG834Gv4 Reference Manual
Page 85
Configure the operating mode of the devices. • Configure AP 1 the DG834G v4 modem router in the previous figure) on the same LAN. Advanced Configuration v2.0, September 2007 5-17 Wireless PC associated with AP 1 DG834G v4 Modem Router Wireless PC associated with AP2 Internet 192.168.0.1 AP 2 in Repeater mode PCs AP 1 (parent AP ...; The LAN network configuration of AP 1 in the same network. • If you are limited to four child APs. ADSL2+ Modem Wireless Router DG834G Reference Manual • You cannot configure a sequence of a Repeater Mode configuration.
Configure the operating mode of the devices. • Configure AP 1 the DG834G v4 modem router in the previous figure) on the same LAN. Advanced Configuration v2.0, September 2007 5-17 Wireless PC associated with AP 1 DG834G v4 Modem Router Wireless PC associated with AP2 Internet 192.168.0.1 AP 2 in Repeater mode PCs AP 1 (parent AP ...; The LAN network configuration of AP 1 in the same network. • If you are limited to four child APs. ADSL2+ Modem Wireless Router DG834G Reference Manual • You cannot configure a sequence of a Repeater Mode configuration.
DG834Gv4 Reference Manual
Page 87
..."VPN Tunnel Configuration" on page 6-5 summarizes the three ways to configure a VPN tunnel: VPN Wizard (recommended for most situations), Auto Policy, and Manual Policy. • "Setting Up a Client-to-Gateway VPN Configuration" on page 6-5 provides the steps needed to configure a VPN tunnel between a ... and the NETGEAR ProSafe VPN Client. • "Setting Up a Gateway-to-Gateway VPN Configuration" on page 6-18 provides the steps needed to configure a VPN tunnel between a remote PC and a network gateway; The DG834G v4 supports both of these types of the ADSL2+ Modem Wireless Router. Chapter...
..."VPN Tunnel Configuration" on page 6-5 summarizes the three ways to configure a VPN tunnel: VPN Wizard (recommended for most situations), Auto Policy, and Manual Policy. • "Setting Up a Client-to-Gateway VPN Configuration" on page 6-5 provides the steps needed to configure a VPN tunnel between a ... and the NETGEAR ProSafe VPN Client. • "Setting Up a Gateway-to-Gateway VPN Configuration" on page 6-18 provides the steps needed to configure a VPN tunnel between a remote PC and a network gateway; The DG834G v4 supports both of these types of the ADSL2+ Modem Wireless Router. Chapter...
DG834Gv4 Reference Manual
Page 88
ADSL2+ Modem Wireless Router DG834G Reference Manual Client-to-Gateway VPN Tunnels Client-to-gateway VPN tunnels provide secure access from any location on the Internet. In this case, use DG834G v4s on your network from a remote PC, such as a branch or home office and a main office. See "Setting ... "Setting Up a Gateway-to-Gateway VPN Configuration" on page 6-5 to -Gateway VPN Tunnels provide secure access between two or more NETGEAR VPN-enabled routers is the other tunnel endpoint. Gateway-to-Gateway VPN Tunnels Gateway-to set up this configuration. 6-2 Virtual Private Networking...
ADSL2+ Modem Wireless Router DG834G Reference Manual Client-to-Gateway VPN Tunnels Client-to-gateway VPN tunnels provide secure access from any location on the Internet. In this case, use DG834G v4s on your network from a remote PC, such as a branch or home office and a main office. See "Setting ... "Setting Up a Gateway-to-Gateway VPN Configuration" on page 6-5 to -Gateway VPN Tunnels provide secure access between two or more NETGEAR VPN-enabled routers is the other tunnel endpoint. Gateway-to-Gateway VPN Tunnels Gateway-to set up this configuration. 6-2 Virtual Private Networking...
DG834Gv4 Reference Manual
Page 91
.... Setting Up a Client-to-Gateway VPN Configuration 22.23.24.25 DG834G VPN Tunnel 0.0.0.0 192.168.3.1 PCs Figure 6-3 PC (Running NETGEAR ProSafe VPN Client) Setting up a VPN between your DG834G v4 and the corresponding VPN endpoint gateway or client workstation. ADSL2+ Modem Wireless Router DG834G Reference Manual VPN Tunnel Configuration There are two tunnel configurations and three ways...
.... Setting Up a Client-to-Gateway VPN Configuration 22.23.24.25 DG834G VPN Tunnel 0.0.0.0 192.168.3.1 PCs Figure 6-3 PC (Running NETGEAR ProSafe VPN Client) Setting up a VPN between your DG834G v4 and the corresponding VPN endpoint gateway or client workstation. ADSL2+ Modem Wireless Router DG834G Reference Manual VPN Tunnel Configuration There are two tunnel configurations and three ways...
DG834Gv4 Reference Manual
Page 92
ADSL2+ Modem Wireless Router DG834G Reference Manual • "Step 1: Configuring the Client-to-Gateway VPN Tunnel on the DG834G v4" on page 6-6 describes how to use the VPN Wizard to configure the VPN tunnel between the remote PC and network gateway. • "Step 2: Configuring the NETGEAR ProSafe VPN Client on ... a client-to-gateway VPN tunnel using the VPNC default parameters listed in Table 6-2 on the DG834G v4 Note: This section uses the VPN Wizard to configure the NETGEAR ProSafe VPN Client endpoint. If you have special requirements not covered by these VPNC-recommended parameters, ...
ADSL2+ Modem Wireless Router DG834G Reference Manual • "Step 1: Configuring the Client-to-Gateway VPN Tunnel on the DG834G v4" on page 6-6 describes how to use the VPN Wizard to configure the VPN tunnel between the remote PC and network gateway. • "Step 2: Configuring the NETGEAR ProSafe VPN Client on ... a client-to-gateway VPN tunnel using the VPNC default parameters listed in Table 6-2 on the DG834G v4 Note: This section uses the VPN Wizard to configure the NETGEAR ProSafe VPN Client endpoint. If you have special requirements not covered by these VPNC-recommended parameters, ...
DG834Gv4 Reference Manual
Page 96
Double-click the ProSafe icon to open the Security Policy Editor. 2. Run the NETGEAR ProSafe Security Policy Editor program, and, using the "VPN Tunnel Configuration Worksheet" on the gateway side of the VPN tunnel because connection names are irrelevant ... matches the Connection Name field in the system tray. ADSL2+ Modem Wireless Router DG834G Reference Manual If you do not have to match the RoadWarrior connection name used on the client side of the VPN tunnel is in the VPN Settings screen of the DG834G v4 on LAN A. Reboot the remote PC. c. From the Edit menu...
Double-click the ProSafe icon to open the Security Policy Editor. 2. Run the NETGEAR ProSafe Security Policy Editor program, and, using the "VPN Tunnel Configuration Worksheet" on the gateway side of the VPN tunnel because connection names are irrelevant ... matches the Connection Name field in the system tray. ADSL2+ Modem Wireless Router DG834G Reference Manual If you do not have to match the RoadWarrior connection name used on the client side of the VPN tunnel is in the VPN Settings screen of the DG834G v4 on LAN A. Reboot the remote PC. c. From the Edit menu...
DG834Gv4 Reference Manual
Page 97
...Modem Wireless Router DG834G Reference Manual Tip: Choose connection names that make sense to the people using Secure Gateway Tunnel check box. Select the Connect using and administering the VPN. f. The resulting connection settings are shown in the NETGEAR ProSafe VPN Client software: a. e. In this example, type 192.168.3.1 as the network address of the DG834G v4.... • Mask: Enter 255.255.255.0 as the LAN Subnet Mask of the DG834G v4 in the ...
...Modem Wireless Router DG834G Reference Manual Tip: Choose connection names that make sense to the people using Secure Gateway Tunnel check box. Select the Connect using and administering the VPN. f. The resulting connection settings are shown in the NETGEAR ProSafe VPN Client software: a. e. In this example, type 192.168.3.1 as the network address of the DG834G v4.... • Mask: Enter 255.255.255.0 as the LAN Subnet Mask of the DG834G v4 in the ...
DG834Gv4 Reference Manual
Page 98
... adapter. Otherwise, leave this address in the DG834G v4 and either a fixed IP address or a fixed virtual IP address of the VPN client PC. You must provide the pre-shared key that you are using a virtual fixed IP address, enter this field empty. ADSL2+ Modem Wireless Router DG834G Reference Manual c. Select IP Address in the Name...
... adapter. Otherwise, leave this address in the DG834G v4 and either a fixed IP address or a fixed virtual IP address of the VPN client PC. You must provide the pre-shared key that you are using a virtual fixed IP address, enter this field empty. ADSL2+ Modem Wireless Router DG834G Reference Manual c. Select IP Address in the Name...
DG834Gv4 Reference Manual
Page 99
...-shared key, and then click OK. This selection must match your selection in the DG834G v4 configuration. ADSL2+ Modem Wireless Router DG834G Reference Manual e. The Pre-Shared Key screen displays: Figure 6-12 f. This field is entered. a. In this step, you provide the type of encryption (DES or 3DES) to ...
...-shared key, and then click OK. This selection must match your selection in the DG834G v4 configuration. ADSL2+ Modem Wireless Router DG834G Reference Manual e. The Pre-Shared Key screen displays: Figure 6-12 f. This field is entered. a. In this step, you provide the type of encryption (DES or 3DES) to ...
DG834Gv4 Reference Manual
Page 100
ADSL2+ Modem Wireless Router DG834G Reference Manual c. In this connection. This selection must match your selection in Table 6-3 on page 6-6. Then select Proposal 1 below Key Exchange. In the Key Group drop-down ... (DES or 3DES) to be used for this step, you provide the type of encryption that is configured for the Encryption Protocol in the DG834G v4 in the DG834G v4 configuration. e. In the SA Life drop-down list, select Unspecified. In the SA Life drop-down list, select Unspecified. In this example, use Triple...
ADSL2+ Modem Wireless Router DG834G Reference Manual c. In this connection. This selection must match your selection in Table 6-3 on page 6-6. Then select Proposal 1 below Key Exchange. In the Key Group drop-down ... (DES or 3DES) to be used for this step, you provide the type of encryption that is configured for the Encryption Protocol in the DG834G v4 in the DG834G v4 configuration. e. In the SA Life drop-down list, select Unspecified. In the SA Life drop-down list, select Unspecified. In this example, use Triple...
DG834Gv4 Reference Manual
Page 101
ADSL2+ Modem Wireless Router DG834G Reference Manual f. Leave the Authentication Protocol (AH) check box cleared. 7. Check the VPN connection... File > Save. To perform a ping test using the Connect option in the range of the attempt to the DG834G v4 modem router's network by using our example, start from the remote PC: a. g. Since the remote PC has a dynamically...initiate the request. In the Hash Alg drop-down list, select Tunnel. Save the VPN Client Settings. The NETGEAR ProSafe client reports the results of the remote VPN router's LAN. 8. To check the VPN Connection, you ...
ADSL2+ Modem Wireless Router DG834G Reference Manual f. Leave the Authentication Protocol (AH) check box cleared. 7. Check the VPN connection... File > Save. To perform a ping test using the Connect option in the range of the attempt to the DG834G v4 modem router's network by using our example, start from the remote PC: a. g. Since the remote PC has a dynamically...initiate the request. In the Hash Alg drop-down list, select Tunnel. Save the VPN Client Settings. The NETGEAR ProSafe client reports the results of the remote VPN router's LAN. 8. To check the VPN Connection, you ...
DG834Gv4 Reference Manual
Page 102
... already has the DG834G v4 management interface open a browser on the PC and enter the LAN IP address of the VPN client connection by opening the NETGEAR ProSafe Log Viewer. To launch this function, click the Windows Start button, then select Programs > NETGEAR ProSafe VPN Client > Log Viewer. ADSL2+ Modem Wireless Router DG834G Reference Manual This causes a continuous...
... already has the DG834G v4 management interface open a browser on the PC and enter the LAN IP address of the VPN client connection by opening the NETGEAR ProSafe Log Viewer. To launch this function, click the Windows Start button, then select Programs > NETGEAR ProSafe VPN Client > Log Viewer. ADSL2+ Modem Wireless Router DG834G Reference Manual This causes a continuous...
DG834Gv4 Reference Manual
Page 103
...close the VPN connection to a remote LAN through a VPN, you can see these settings: • The DG834G v4 has a GW Address (public IP WAN address) of 22.23.24.25. • The DG834G v4 has a Remote Address (LAN IP address) of 192.168.3.1. • The VPN client PC has a... Local Address (dynamically assigned address) of the connection. Note: While your PC is successful, the SA changes to the yellow key symbol shown in the previous figure. ADSL2+ Modem Wireless Router DG834G Reference Manual 9....
...close the VPN connection to a remote LAN through a VPN, you can see these settings: • The DG834G v4 has a GW Address (public IP WAN address) of 22.23.24.25. • The DG834G v4 has a Remote Address (LAN IP address) of 192.168.3.1. • The VPN client PC has a... Local Address (dynamically assigned address) of the connection. Note: While your PC is successful, the SA changes to the yellow key symbol shown in the previous figure. ADSL2+ Modem Wireless Router DG834G Reference Manual 9....