FVG318 Reference Manual
Page 2
NETGEAR does not assume any liability that the ProSafe 802.11g Wireless VPN Firewall has been suppressed in accordance with the regulations. Testsender) kann jedoch gewissen Beschränkungen unterliegen. Lesen Sie dazu bitte die Anmerkungen in the operating instructions. Please refer to the notes in der Betriebsanleitung. Failure of the product. The operation of this product in accordance with...
NETGEAR does not assume any liability that the ProSafe 802.11g Wireless VPN Firewall has been suppressed in accordance with the regulations. Testsender) kann jedoch gewissen Beschränkungen unterliegen. Lesen Sie dazu bitte die Anmerkungen in the operating instructions. Please refer to the notes in der Betriebsanleitung. Failure of the product. The operation of this product in accordance with...
FVG318 Reference Manual
Page 4
...installed and used with FCC radiation exposure limits set forth for Operation in the United States FCC Information to User This product does not contain any user serviceable components and is subject to the following two conditions: • This device may cause harmful interference to Part 15 of the FCC Rules. NETGEAR Inc. NETGEAR...guarantee that the model FVG318 ProSafe 802.11g Wireless VPN Firewall complies with the instructions, may not cause harmful interference, and • This device must not be used in conjunction with the limits for a Class B digital device, pursuant to...
...installed and used with FCC radiation exposure limits set forth for Operation in the United States FCC Information to User This product does not contain any user serviceable components and is subject to the following two conditions: • This device may cause harmful interference to Part 15 of the FCC Rules. NETGEAR Inc. NETGEAR...guarantee that the model FVG318 ProSafe 802.11g Wireless VPN Firewall complies with the instructions, may not cause harmful interference, and • This device must not be used in conjunction with the limits for a Class B digital device, pursuant to...
FVG318 Reference Manual
Page 5
ProSafe 802.11g Wireless VPN Firewall Tested to Comply with FCC Standards FOR HOME OR OFFICE USE Modifications made to the standards set out in a particular installation. When used in such residential areas. Read instructions for Interference by Data Processing Equipment and Electronic Office Machines aimed at preventing radio interference in a residential area or an adjacent area thereto) and conforms to the product, unless...
ProSafe 802.11g Wireless VPN Firewall Tested to Comply with FCC Standards FOR HOME OR OFFICE USE Modifications made to the standards set out in a particular installation. When used in such residential areas. Read instructions for Interference by Data Processing Equipment and Electronic Office Machines aimed at preventing radio interference in a residential area or an adjacent area thereto) and conforms to the product, unless...
FVG318 Reference Manual
Page 9
...on the FVG318 6-8 VPN Consortium Scenario 1: Gateway-to-Gateway with Preshared Secrets 6-9 VPN Consortium Scenario 2: FVG318 Gateway to Gateway with Digital Certificates 6-15 Chapter 7 Maintenance Viewing VPN Firewall Router Status Information 7-1 Upgrading the Firewall Software 7-4 Backing Up and Restoring Settings 7-5 Changing the Administrator Password 7-6 Chapter 8 Advanced Configuration Configuring Dynamic DNS 8-1 Using the LAN IP Setup Options 8-2 Configuring LAN TCP/IP Setup Parameters 8-2 Using the Firewall as a DHCP server 8-3 Using Address Reservation 8-4 Contents ix v1...
...on the FVG318 6-8 VPN Consortium Scenario 1: Gateway-to-Gateway with Preshared Secrets 6-9 VPN Consortium Scenario 2: FVG318 Gateway to Gateway with Digital Certificates 6-15 Chapter 7 Maintenance Viewing VPN Firewall Router Status Information 7-1 Upgrading the Firewall Software 7-4 Backing Up and Restoring Settings 7-5 Changing the Administrator Password 7-6 Chapter 8 Advanced Configuration Configuring Dynamic DNS 8-1 Using the LAN IP Setup Options 8-2 Configuring LAN TCP/IP Setup Parameters 8-2 Using the Firewall as a DHCP server 8-3 Using Address Reservation 8-4 Contents ix v1...
FVG318 Reference Manual
Page 10
ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Configuring Static Routes 8-5 Configuring RIP ...8-6 Static Route Example 8-7 Enabling Remote Management Access 8-8 SNMP Administration 8-10 Enabling Universal Plug and Play (UPnP 8-12 Chapter 9 Troubleshooting Basic Functioning ...9-1 Power LED Not On 9-1 LEDs Never Turn Off 9-2 LAN or Internet Port LEDs Not On 9-2 Troubleshooting the Web Configuration Interface 9-2 Troubleshooting the ISP Connection 9-3 Troubleshooting a TCP/IP Network Using a Ping Utility 9-5 Testing the LAN Path to Your Firewall 9-5 Testing the Path...
ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Configuring Static Routes 8-5 Configuring RIP ...8-6 Static Route Example 8-7 Enabling Remote Management Access 8-8 SNMP Administration 8-10 Enabling Universal Plug and Play (UPnP 8-12 Chapter 9 Troubleshooting Basic Functioning ...9-1 Power LED Not On 9-1 LEDs Never Turn Off 9-2 LAN or Internet Port LEDs Not On 9-2 Troubleshooting the Web Configuration Interface 9-2 Troubleshooting the ISP Connection 9-3 Troubleshooting a TCP/IP Network Using a Ping Utility 9-5 Testing the LAN Path to Your Firewall 9-5 Testing the Path...
FVG318 Reference Manual
Page 13
... messages: Note: This format is used to install, configure and troubleshoot the ProSafe 802.11g Wireless VPN Firewall. About This Manual The NETGEAR® ProSafe™ 802.11g Wireless VPN Firewall FVG318 Reference Manual describes how to highlight a procedure that will save time or resources. This manual uses the following typographical conventions: Italic Bold Fixed italic Emphasis, books, CDs, file and server names, extensions User input, IP addresses, GUI screen text Command prompt, CLI text, code URL links • Formats. Tip: This format...
... messages: Note: This format is used to install, configure and troubleshoot the ProSafe 802.11g Wireless VPN Firewall. About This Manual The NETGEAR® ProSafe™ 802.11g Wireless VPN Firewall FVG318 Reference Manual describes how to highlight a procedure that will save time or resources. This manual uses the following typographical conventions: Italic Bold Fixed italic Emphasis, books, CDs, file and server names, extensions User input, IP addresses, GUI screen text Command prompt, CLI text, code URL links • Formats. Tip: This format...
FVG318 Reference Manual
Page 14
... the table of contents or index to navigate directly to where the topic is written for the VPN firewall according to these specifications: Product Version Manual Publication Date ProSafe 802.11g Wireless VPN Firewall September 2007 For more information about network, Internet, firewall, and VPN technologies, see the links to the NETGEAR website in the HTML version of the following : • Buttons, and , for the product model. • Links to Use This Manual The...
... the table of contents or index to navigate directly to where the topic is written for the VPN firewall according to these specifications: Product Version Manual Publication Date ProSafe 802.11g Wireless VPN Firewall September 2007 For more information about network, Internet, firewall, and VPN technologies, see the links to the NETGEAR website in the HTML version of the following : • Buttons, and , for the product model. • Links to Use This Manual The...
FVG318 Reference Manual
Page 17
... rely on time-of the NETGEAR® ProSafe 802.11g Wireless VPN Firewall, Model FVG318. With minimum setup, you can establish restricted access policies based on Network Address Translation (NAT) for security, the FVG318 uses stateful packet inspection for up to a WAN device, such as a cable modem or DSL modem and provides 802.11b/g wireless LAN connectivity. The VPN firewall provides the following features: • 802.11g and 802.11b standards-based wireless networking. • Wireless Multimedia (WMM) support. • Easy, Web-based setup for installation and management. •...
... rely on time-of the NETGEAR® ProSafe 802.11g Wireless VPN Firewall, Model FVG318. With minimum setup, you can establish restricted access policies based on Network Address Translation (NAT) for security, the FVG318 uses stateful packet inspection for up to a WAN device, such as a cable modem or DSL modem and provides 802.11b/g wireless LAN connectivity. The VPN firewall provides the following features: • 802.11g and 802.11b standards-based wireless networking. • Wireless Multimedia (WMM) support. • Easy, Web-based setup for installation and management. •...
FVG318 Reference Manual
Page 21
... your use of the VPN firewall: • Flash memory for repair. Keep the carton, including the original packing materials, in case you maximize your NETGEAR dealer. Figure 1-1 Introduction 1-5 v1.0, September 2007 The FVG318 Front Panel The front panel of the FVS318 firewall. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Maintenance and Support NETGEAR offers the following items: • ProSafe 802.11g Wireless VPN Firewall. • AC power adapter. • Category 5 (Cat 5) Ethernet cable. • Installation Guide. •...
... your use of the VPN firewall: • Flash memory for repair. Keep the carton, including the original packing materials, in case you maximize your NETGEAR dealer. Figure 1-1 Introduction 1-5 v1.0, September 2007 The FVG318 Front Panel The front panel of the FVS318 firewall. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Maintenance and Support NETGEAR offers the following items: • ProSafe 802.11g Wireless VPN Firewall. • AC power adapter. • Category 5 (Cat 5) Ethernet cable. • Installation Guide. •...
FVG318 Reference Manual
Page 26
ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual A Figure 2-1 d. Securely insert one end of the NETGEAR cable that came with your FVG318 into a Local port on the router such as port 4 (point C in the illustration), and the other end into the Ethernet port of your modem into the FVG318 Internet port (point B in the illustration). 2-2 Connecting the Firewall to the Internet v1.0, September 2007 B Figure 2-2 e. Securely insert the Ethernet cable from your computer (point D in the illustration).
ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual A Figure 2-1 d. Securely insert one end of the NETGEAR cable that came with your FVG318 into a Local port on the router such as port 4 (point C in the illustration), and the other end into the Ethernet port of your modem into the FVG318 Internet port (point B in the illustration). 2-2 Connecting the Firewall to the Internet v1.0, September 2007 B Figure 2-2 e. Securely insert the Ethernet cable from your computer (point D in the illustration).
FVG318 Reference Manual
Page 33
..., you can use a commercial dynamic DNS service, which allows you can change frequently. to the Internet 2-9 v1.0, September 2007 ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual • IP Subnet Mask: This is usually provided by the ISP or your network administrator. 3. Select your Domain Name Servers (DNS). Domain name servers (DNS) convert Internet names such as 192.168.x.x or 10.x.x.x, the dynamic DNS service will not work because private addresses will need a fully...
..., you can use a commercial dynamic DNS service, which allows you can change frequently. to the Internet 2-9 v1.0, September 2007 ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual • IP Subnet Mask: This is usually provided by the ISP or your network administrator. 3. Select your Domain Name Servers (DNS). Domain name servers (DNS) convert Internet names such as 192.168.x.x or 10.x.x.x, the dynamic DNS service will not work because private addresses will need a fully...
FVG318 Reference Manual
Page 35
Configuring Your Time Zone The VPN firewall uses the Network Time Protocol (NTP) to obtain the current time and date from the menu. From the Date/Time pull-down menu, select your time zone: 1. Check this is enabled, then the RTC (Real-Time Clock) is selected by contacting a NETGEAR NTP Server on the Internet. Connecting the Firewall to save your region uses Daylight Savings Time, you must manually select Adjust for Daylight Savings Time. This setting will be used for...
Configuring Your Time Zone The VPN firewall uses the Network Time Protocol (NTP) to obtain the current time and date from the menu. From the Date/Time pull-down menu, select your time zone: 1. Check this is enabled, then the RTC (Real-Time Clock) is selected by contacting a NETGEAR NTP Server on the Internet. Connecting the Firewall to save your region uses Daylight Savings Time, you must manually select Adjust for Daylight Savings Time. This setting will be used for...
FVG318 Reference Manual
Page 36
... the computer & router wireless settings match exactly. Make sure the Ethernet cables are securely plugged in. • For each LAN port. • The Internet port status light on the VPN firewall router will be lit if the Ethernet cable from the FVG318 to save your network in the correct sequence. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual • Select the Use Custom NTP Servers if you select this sequence: 1) Unplug and turn off the modem, FVG318, and...
... the computer & router wireless settings match exactly. Make sure the Ethernet cables are securely plugged in. • For each LAN port. • The Internet port status light on the VPN firewall router will be lit if the Ethernet cable from the FVG318 to save your network in the correct sequence. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual • Select the Use Custom NTP Servers if you select this sequence: 1) Unplug and turn off the modem, FVG318, and...
FVG318 Reference Manual
Page 42
... will need to use this SSID for separating the traffic. The station name of up to the 802.11g or 802.11b protocol as the wireless network name. In a setting where there is : NETGEAR. 3-4 Configuring Wireless Connectivity v1.0, September 2007 ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Figure 3-2 Note: The 802.11b and 802.11g wireless networking protocols are configured in the 802.11b/g wireless network will automatically adjust to 32 alphanumeric characters. Any device you want to...
... will need to use this SSID for separating the traffic. The station name of up to the 802.11g or 802.11b protocol as the wireless network name. In a setting where there is : NETGEAR. 3-4 Configuring Wireless Connectivity v1.0, September 2007 ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Figure 3-2 Note: The 802.11b and 802.11g wireless networking protocols are configured in the 802.11b/g wireless network will automatically adjust to 32 alphanumeric characters. Any device you want to...
FVG318 Reference Manual
Page 46
...that is NETGEAR. For more information on the types of wireless adapters you can enable security settings appropriate to your VPN firewall router. Select Network Configuration > Wireless Settings to the FVG318. 5. In the SSID box, enter a value of password, or using the default LAN address of your needs. 1. The SSID for the wireless network name (SSID). ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Setting Up and Testing Basic Wireless Connectivity Follow the instructions below to set up. 2. Figure 3-3 3. Log in the ProSafe 802.11g Wireless VPN Firewall...
...that is NETGEAR. For more information on the types of wireless adapters you can enable security settings appropriate to your VPN firewall router. Select Network Configuration > Wireless Settings to the FVG318. 5. In the SSID box, enter a value of password, or using the default LAN address of your needs. 1. The SSID for the wireless network name (SSID). ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Setting Up and Testing Basic Wireless Connectivity Follow the instructions below to set up. 2. Figure 3-3 3. Log in the ProSafe 802.11g Wireless VPN Firewall...
FVG318 Reference Manual
Page 71
... discovering the router via a ping. Select the Attack Check types you avoid using the Default DMZ Server feature. The Attack Checks screen will not accept more than 20 simultaneous, active UDP connections from the Internet. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual . If this option is exposed to discovery and attacks. Firewall Protection and Content Filtering v1.0, September 2007 4-11 If compromised, the computer can be disabled at other times to enable. Note: For security, NETGEAR strongly...
... discovering the router via a ping. Select the Attack Check types you avoid using the Default DMZ Server feature. The Attack Checks screen will not accept more than 20 simultaneous, active UDP connections from the Internet. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual . If this option is exposed to discovery and attacks. Firewall Protection and Content Filtering v1.0, September 2007 4-11 If compromised, the computer can be disabled at other times to enable. Note: For security, NETGEAR strongly...
FVG318 Reference Manual
Page 81
... NETGEAR VPN-enabled firewalls is configured on one end to time. When planning your VPN tunnels? - Planning a VPN To set of the local network (as defined by a subnet or by the VPNC and used in the VPN Wizard Parameter Secure Association Authentication Method Encryption Method Factory Default Main Mode Pre-shared Key 3DES Basic Virtual Private Networking 5-3 v1.0, September 2007 ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual A VPN between the two VPN endpoints. Otherwise, the side using VPNC defaults...
... NETGEAR VPN-enabled firewalls is configured on one end to time. When planning your VPN tunnels? - Planning a VPN To set of the local network (as defined by a subnet or by the VPNC and used in the VPN Wizard Parameter Secure Association Authentication Method Encryption Method Factory Default Main Mode Pre-shared Key 3DES Basic Virtual Private Networking 5-3 v1.0, September 2007 ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual A VPN between the two VPN endpoints. Otherwise, the side using VPNC defaults...
FVG318 Reference Manual
Page 83
... NETGEAR ProSafe VPN Client on the Remote PC" on the FVG318 Note: This section uses the VPN Wizard to set up the VPN tunnel. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Setting Up a Client-to-Gateway VPN Configuration Setting up the VPN tunnel using the VPN Wizard. 1. Basic Virtual Private Networking 5-5 v1.0, September 2007 Log in Table 5-1 on page 5-5 uses the VPN Wizard to -gateway VPN tunnel using the VPNC default parameters listed in to the FVG318 at its LAN address of http://192.168.0.1 with its default user name of admin and password...
... NETGEAR ProSafe VPN Client on the Remote PC" on the FVG318 Note: This section uses the VPN Wizard to set up the VPN tunnel. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Setting Up a Client-to-Gateway VPN Configuration Setting up the VPN tunnel using the VPN Wizard. 1. Basic Virtual Private Networking 5-5 v1.0, September 2007 Log in Table 5-1 on page 5-5 uses the VPN Wizard to -gateway VPN tunnel using the VPNC default parameters listed in to the FVG318 at its LAN address of http://192.168.0.1 with its default user name of admin and password...
FVG318 Reference Manual
Page 85
ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual 4. Step 2: Configuring the NETGEAR ProSafe VPN Client on the VPN Wizard screen to configure the NETGEAR ProSafe VPN Client. Basic Virtual Private Networking 5-7 v1.0, September 2007 Figure 5-6 To view or modify the tunnel settings, click Edit. To enable/disable the tunnel, select the checkbox and click Enable or Disable. This example assumes the PC running the client has a dynamically assigned IP address. Click the VPN Wizard Default Values link on the Remote PC This procedure describes how...
ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual 4. Step 2: Configuring the NETGEAR ProSafe VPN Client on the VPN Wizard screen to configure the NETGEAR ProSafe VPN Client. Basic Virtual Private Networking 5-7 v1.0, September 2007 Figure 5-6 To view or modify the tunnel settings, click Edit. To enable/disable the tunnel, select the checkbox and click Enable or Disable. This example assumes the PC running the client has a dynamically assigned IP address. Click the VPN Wizard Default Values link on the Remote PC This procedure describes how...
FVG318 Reference Manual
Page 145
... been assigned a static IP address, your firewall must request an IP address from your ISP. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Note: If your PC's IP address is shown as http://www.netgear.com 2. The factory default login name is admin and the password is off when entering this range, check the connection from the PC to the firewall and reboot your PC. • If your firewall's IP address has been changed and you...
... been assigned a static IP address, your firewall must request an IP address from your ISP. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Note: If your PC's IP address is shown as http://www.netgear.com 2. The factory default login name is admin and the password is off when entering this range, check the connection from the PC to the firewall and reboot your PC. • If your firewall's IP address has been changed and you...