FVG318 Reference Manual
Page 9
ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Setting Up a Client-to-Gateway VPN Configuration 5-5 Step 1: Configuring the Client-to-Gateway VPN Tunnel on the FVG318 5-5 Step 2: Configuring the NETGEAR ProSafe VPN Client on the Remote PC ...........5-7 Monitoring the Progress and Status of the VPN Client Connection 5-15 Transferring a Security Policy to Another Client 5-17 Setting Up a Gateway-to-Gateway VPN Configuration 5-19 Activating a VPN Tunnel...
ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Setting Up a Client-to-Gateway VPN Configuration 5-5 Step 1: Configuring the Client-to-Gateway VPN Tunnel on the FVG318 5-5 Step 2: Configuring the NETGEAR ProSafe VPN Client on the Remote PC ...........5-7 Monitoring the Progress and Status of the VPN Client Connection 5-15 Transferring a Security Policy to Another Client 5-17 Setting Up a Gateway-to-Gateway VPN Configuration 5-19 Activating a VPN Tunnel...
FVG318 Reference Manual
Page 17
...• Extensive protocol support. • Flash memory for Denial of the NETGEAR® ProSafe 802.11g Wireless VPN Firewall, Model FVG318. With minimum setup, you with eight-port switch connects your network from ...FVG318 is a complete security solution that rely on time-of the VPN Firewall Router The ProSafe 802.11g Wireless VPN Firewall with multiple Web content filtering options, plus browsing activity reporting and instant alerts-both via e-mail. The VPN firewall provides the following features: • 802.11g and 802.11b standards-based wireless networking. • Wireless...
...• Extensive protocol support. • Flash memory for Denial of the NETGEAR® ProSafe 802.11g Wireless VPN Firewall, Model FVG318. With minimum setup, you with eight-port switch connects your network from ...FVG318 is a complete security solution that rely on time-of the VPN Firewall Router The ProSafe 802.11g Wireless VPN Firewall with multiple Web content filtering options, plus browsing activity reporting and instant alerts-both via e-mail. The VPN firewall provides the following features: • 802.11g and 802.11b standards-based wireless networking. • Wireless...
FVG318 Reference Manual
Page 26
ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual A Figure 2-1 d. Securely insert one end of the NETGEAR cable that came with your FVG318 into a Local port on the router such as port 4 (point C in the illustration), and the other end into the Ethernet port of your modem into the FVG318 Internet port (point B in the illustration). 2-2 Connecting the Firewall to the Internet v1.0, September 2007 Securely insert the Ethernet cable from your computer (point D in the illustration). B Figure 2-2 e.
ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual A Figure 2-1 d. Securely insert one end of the NETGEAR cable that came with your FVG318 into a Local port on the router such as port 4 (point C in the illustration), and the other end into the Ethernet port of your modem into the FVG318 Internet port (point B in the illustration). 2-2 Connecting the Firewall to the Internet v1.0, September 2007 Securely insert the Ethernet cable from your computer (point D in the illustration). B Figure 2-2 e.
FVG318 Reference Manual
Page 36
...wirelessly connected computers must match exactly. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual • Select the Use Custom NTP Servers if you can also enter the address of another NTP server in the Server 2 Name/IP Address field. If you may have. Make sure the computer & router wireless... settings match exactly. If required, you prefer to use a particular NTP server. - Be sure to the default NETGEAR NTP servers (time-a.netgear.com, timeb.netgear.com, etc.). 5. The label on the bottom of the VPN firewall router identifies the number...
...wirelessly connected computers must match exactly. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual • Select the Use Custom NTP Servers if you can also enter the address of another NTP server in the Server 2 Name/IP Address field. If you may have. Make sure the computer & router wireless... settings match exactly. If required, you prefer to use a particular NTP server. - Be sure to the default NETGEAR NTP servers (time-a.netgear.com, timeb.netgear.com, etc.). 5. The label on the bottom of the VPN firewall router identifies the number...
FVG318 Reference Manual
Page 46
... NETGEAR. An access point always functions in using whatever LAN address and password you have in your computers, choose from the Mode drop-down list. 3-8 Configuring Wireless Connectivity v1.0, September 2007 ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Setting Up and Testing Basic Wireless Connectivity...your VPN firewall router. If they do not match, you notice interference problems with the default user name of admin and default password of password, or using the default LAN address of up to the FVG318. 5. Depending on the wireless channel ...
... NETGEAR. An access point always functions in using whatever LAN address and password you have in your computers, choose from the Mode drop-down list. 3-8 Configuring Wireless Connectivity v1.0, September 2007 ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Setting Up and Testing Basic Wireless Connectivity...your VPN firewall router. If they do not match, you notice interference problems with the default user name of admin and default password of password, or using the default LAN address of up to the FVG318. 5. Depending on the wireless channel ...
FVG318 Reference Manual
Page 71
ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual . Select the Attack Check types you avoid using the Default DMZ Server feature. If Stealth Mode is enabled, the router will not respond to port scans from the WAN side, check this option is usually used to attack your settings. Note: For security, NETGEAR... Attack Checks The Attack Check screen allows you to specify if the router should be used as the Default DMZ Server, it less susceptible to enable. Descriptions of the firewall, and is recommended that you want to discovery and attacks. When ...
ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual . Select the Attack Check types you avoid using the Default DMZ Server feature. If Stealth Mode is enabled, the router will not respond to port scans from the WAN side, check this option is usually used to attack your settings. Note: For security, NETGEAR... Attack Checks The Attack Check screen allows you to specify if the router should be used as the Default DMZ Server, it less susceptible to enable. Descriptions of the firewall, and is recommended that you want to discovery and attacks. When ...
FVG318 Reference Manual
Page 93
...the Progress and Status of the VPN Client Connection Information on the progress and status of the VPN Firewall Router (unless another PC already has the FVG318 management interface open the browser of the PC and enter the LAN IP address of the remote FVG318. To launch this function: 1....15 After between several seconds and two minutes, the ping response should see the login screen of the VPN client connection can open ). ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Figure 5-14 This will cause a continuous ping to be viewed by opening the NETGEAR ProSafe Log Viewer.
...the Progress and Status of the VPN Client Connection Information on the progress and status of the VPN Firewall Router (unless another PC already has the FVG318 management interface open the browser of the PC and enter the LAN IP address of the remote FVG318. To launch this function: 1....15 After between several seconds and two minutes, the ping response should see the login screen of the VPN client connection can open ). ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Figure 5-14 This will cause a continuous ping to be viewed by opening the NETGEAR ProSafe Log Viewer.
FVG318 Reference Manual
Page 126
...NETGEAR. The IP address used by the Internet (WAN) port of the firewall. 7-2 Maintenance v1.0, September 2007 DNS server IP address of the WAN port (if not assigned, it will be the same as the primary DNS server). Secondary DNS server IP address of the WAN port. ProSafe 802.11g Wireless VPN Firewall FVG318... Reference Manual This screen shows the following parameters: Table 7-1. The wireless settings of the router The name of the firewall. The default is up or down. This field can...
...NETGEAR. The IP address used by the Internet (WAN) port of the firewall. 7-2 Maintenance v1.0, September 2007 DNS server IP address of the WAN port (if not assigned, it will be the same as the primary DNS server). Secondary DNS server IP address of the WAN port. ProSafe 802.11g Wireless VPN Firewall FVG318... Reference Manual This screen shows the following parameters: Table 7-1. The wireless settings of the router The name of the firewall. The default is up or down. This field can...
FVG318 Reference Manual
Page 128
In the Router Upgrade section, click Browse and then browse to the location of the binary (.bin) upgrade file on your browser. If the upgrade file is released by NETGEAR. NETGEAR recommends using your local drive. 2. The Settings Backup and Firmware Upgrade ... To upload new firmware: 1. Download and unzip the new software file from NETGEAR and save it to the firewall. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Upgrading the Firewall Software The routing software of the FVG318 VPN firewall is stored in FLASH memory, and can be upgraded as new software is ...
In the Router Upgrade section, click Browse and then browse to the location of the binary (.bin) upgrade file on your browser. If the upgrade file is released by NETGEAR. NETGEAR recommends using your local drive. 2. The Settings Backup and Firmware Upgrade ... To upload new firmware: 1. Download and unzip the new software file from NETGEAR and save it to the firewall. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Upgrading the Firewall Software The routing software of the FVG318 VPN firewall is stored in FLASH memory, and can be upgraded as new software is ...
FVG318 Reference Manual
Page 145
... as 169.254.x.x: Recent versions of Windows and MacOS will set the firewall's IP address to be sure the Java applet is shown as http://www.netgear.com 2. Under the Maintenance heading, select Router Status 4. Troubleshooting 9-3 v1.0, September 2007 These auto-generated addresses are lost... old configuration. If you are using Internet Explorer, click Refresh to 192.168.0.1. If the firewall does not save changes you have made in the Web browser. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Note: If your PC's IP address is loaded. • Try quitting the browser...
... as 169.254.x.x: Recent versions of Windows and MacOS will set the firewall's IP address to be sure the Java applet is shown as http://www.netgear.com 2. Under the Maintenance heading, select Router Status 4. Troubleshooting 9-3 v1.0, September 2007 These auto-generated addresses are lost... old configuration. If you are using Internet Explorer, click Refresh to 192.168.0.1. If the firewall does not save changes you have made in the Web browser. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Note: If your PC's IP address is loaded. • Try quitting the browser...
FVG318 Reference Manual
Page 158
ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Figure C-1 Configuring the Gateways Configure each end of NETGEAR FVG318 v1.0, September 2007 Log in to configure this router. Enter the requested information as prompted by the VPN Wizard: • Connection Name and Pre-Shared Key • Remote WAN IP address • Remote LAN IP Subnet: IP Address and Subnet Mask: 2. a. Enter the...
ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Figure C-1 Configuring the Gateways Configure each end of NETGEAR FVG318 v1.0, September 2007 Log in to configure this router. Enter the requested information as prompted by the VPN Wizard: • Connection Name and Pre-Shared Key • Remote WAN IP address • Remote LAN IP Subnet: IP Address and Subnet Mask: 2. a. Enter the...
FVG318 Reference Manual
Page 159
...-to use in your installation. The user name and password will also change to -FVG318 Case Table C-1. Policy Summary VPN Consortium Scenario: Type of NETGEAR FVG318 C-3 v1.0, September 2007 ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Note: The default log in address for the FVG318 router is http://192.168.0.1 with the default user name of admin and default password of...
...-to use in your installation. The user name and password will also change to -FVG318 Case Table C-1. Policy Summary VPN Consortium Scenario: Type of NETGEAR FVG318 C-3 v1.0, September 2007 ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Note: The default log in address for the FVG318 router is http://192.168.0.1 with the default user name of admin and default password of...
FVG318 Reference Manual
Page 162
...router on LAN A, go to -VPN-tunnel-endpoint connection is verified. 3. b. Within two minutes, the ping response should change from Gateway B). The log screen displays a history of the VPN connections, and the IPSec SA and IKE SA tables report the status and data transmission statistics of NETGEAR FVG318...17 if testing from timed out to the FVG318 main menu VPN section and click the VPN Status link. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Initiating and Checking the VPN Connections You can test connectivity and view VPN status information on the task bar and then...
...router on LAN A, go to -VPN-tunnel-endpoint connection is verified. 3. b. Within two minutes, the ping response should change from Gateway B). The log screen displays a history of the VPN connections, and the IPSec SA and IKE SA tables report the status and data transmission statistics of NETGEAR FVG318...17 if testing from timed out to the FVG318 main menu VPN section and click the VPN Status link. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Initiating and Checking the VPN Connections You can test connectivity and view VPN status information on the task bar and then...
FVG318 Reference Manual
Page 165
... out to reply. From a Windows PC attached to the FVG318 on LAN A, click the Start button on the FVG318 according to the testing flowchart shown in to the router on LAN A, go to Monitoring > VPN Logs; b. to view the status of NETGEAR FVG318 C-9 v1.0, September 2007 ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual • The remote WAN and LAN IP addresses...
... out to reply. From a Windows PC attached to the FVG318 on LAN A, click the Start button on the FVG318 according to the testing flowchart shown in to the router on LAN A, go to Monitoring > VPN Logs; b. to view the status of NETGEAR FVG318 C-9 v1.0, September 2007 ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual • The remote WAN and LAN IP addresses...
FVG318 Reference Manual
Page 168
...type ping -t 10.5.6.1 if testing from Gateway B). For the FVL328, click VPN Status on the task bar and then click Run. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual • The remote WAN and LAN IP addresses for one VPN tunnel endpoint will cause a continuous ping to be sent to the LAN ... Log in Figure C-2. You may have to the testing flowchart shown in to the router on the FVG318 and FVL328 according to run this point the gateway-to reply. go to the FVG318 main menu and select VPN > Connection Status. Test 2: Ping Remote WAN IP Address (if Test 1 fails...
...type ping -t 10.5.6.1 if testing from Gateway B). For the FVL328, click VPN Status on the task bar and then click Run. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual • The remote WAN and LAN IP addresses for one VPN tunnel endpoint will cause a continuous ping to be sent to the LAN ... Log in Figure C-2. You may have to the testing flowchart shown in to the router on the FVG318 and FVL328 according to run this point the gateway-to reply. go to the FVG318 main menu and select VPN > Connection Status. Test 2: Ping Remote WAN IP Address (if Test 1 fails...
FVG318 Reference Manual
Page 171
... menu and then enter 10.5.6.1 for Subnet, 255.255.255.0 for Mask, and leave All for the gateway router. Also, Gateway IP Address must match the Start IP address and Subnet Mask parameters of the Local IP Traffic Selector on the... Local Identity Data parameter of NETGEAR FVG318 v1.0, September 2007 C-15 VPN Configuration of the IKE Policy Configuration screen shown in Figure C-9 for your specific installation. enter fvs_local for ID_Type; The name you may want to match the name used in front of the + signs. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual b.
... menu and then enter 10.5.6.1 for Subnet, 255.255.255.0 for Mask, and leave All for the gateway router. Also, Gateway IP Address must match the Start IP address and Subnet Mask parameters of the Local IP Traffic Selector on the... Local Identity Data parameter of NETGEAR FVG318 v1.0, September 2007 C-15 VPN Configuration of the IKE Policy Configuration screen shown in Figure C-9 for your specific installation. enter fvs_local for ID_Type; The name you may want to match the name used in front of the + signs. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual b.
FVG318 Reference Manual
Page 172
... VPN Configuration of NETGEAR FVG318 v1.0, September 2007 ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Figure C-8 d. Select Security Policy on the left hierarchy menu and then select Aggressive Mode under Select Phase 1 Negotiation Mode (see Figure C-10): • Under My Identity, select None for Select Certificate (since we are using a PreShared Key in the VPN Wizard for the gateway router...
... VPN Configuration of NETGEAR FVG318 v1.0, September 2007 ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Figure C-8 d. Select Security Policy on the left hierarchy menu and then select Aggressive Mode under Select Phase 1 Negotiation Mode (see Figure C-10): • Under My Identity, select None for Select Certificate (since we are using a PreShared Key in the VPN Wizard for the gateway router...
FVG318 Reference Manual
Page 173
... Key must match the Remote Identity Data parameter of the IKE Policy Configuration screen shown in Figure C-10 for the gateway router. VPN Configuration of NETGEAR FVG318 v1.0, September 2007 C-17 ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual • Under My Identity, select Domain Name for the ID Type and then enter fvs_remote. (Domain Name must be the same...
... Key must match the Remote Identity Data parameter of the IKE Policy Configuration screen shown in Figure C-10 for the gateway router. VPN Configuration of NETGEAR FVG318 v1.0, September 2007 C-17 ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual • Under My Identity, select Domain Name for the ID Type and then enter fvs_remote. (Domain Name must be the same...
FVG318 Reference Manual
Page 174
... network connected to the VPN router. Initiating and Checking the VPN Connections You can access resources of Gateway A. b. The VPN Client reports the results of NETGEAR FVG318 v1.0, September 2007 a. At this point the VPN-tunnel-endpoint-to-VPN-tunnel-endpoint connection is established...connectivity and view VPN status information on the FVG318 and VPN Client according to the testing flowchart shown in the VPN Client's menu bar (see "Initiating and Checking the VPN Connections" on the task bar and then click Run. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual You...
... network connected to the VPN router. Initiating and Checking the VPN Connections You can access resources of Gateway A. b. The VPN Client reports the results of NETGEAR FVG318 v1.0, September 2007 a. At this point the VPN-tunnel-endpoint-to-VPN-tunnel-endpoint connection is established...connectivity and view VPN status information on the FVG318 and VPN Client according to the testing flowchart shown in the VPN Client's menu bar (see "Initiating and Checking the VPN Connections" on the task bar and then click Run. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual You...