FVG318 Reference Manual
Page 13
... and Internet skills. About This Manual The NETGEAR® ProSafe™ 802.11g Wireless VPN Firewall FVG318 Reference Manual describes how to highlight a procedure that will save time or resources. This manual uses the following typographical conventions: Italic Bold Fixed italic Emphasis, books, CDs, file and server names, extensions User input, IP addresses, GUI screen text Command prompt, CLI...
... and Internet skills. About This Manual The NETGEAR® ProSafe™ 802.11g Wireless VPN Firewall FVG318 Reference Manual describes how to highlight a procedure that will save time or resources. This manual uses the following typographical conventions: Italic Bold Fixed italic Emphasis, books, CDs, file and server names, extensions User input, IP addresses, GUI screen text Command prompt, CLI...
FVG318 Reference Manual
Page 20
... of an inexpensive single-user ISP account. • Automatic Configuration of PCs on your PC. The firewall allows you only for the information required for connecting remote hosts to the attached PCs. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual • IP Address Sharing by your local network. • DNS Proxy. A user-friendly Setup Wizard is provided and...
... of an inexpensive single-user ISP account. • Automatic Configuration of PCs on your PC. The firewall allows you only for the information required for connecting remote hosts to the attached PCs. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual • IP Address Sharing by your local network. • DNS Proxy. A user-friendly Setup Wizard is provided and...
FVG318 Reference Manual
Page 28
.... If after 2 minutes the power light turns solid amber, see "Internet Networking and TCP/IP Processing" at Appendix B, "Related Documents. If the Wireless light is still on, see the Troubleshooting Tips in the browser address field: http://192.168.0.1. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual • Power: The power light should be lit. If after 2 minutes...
.... If after 2 minutes the power light turns solid amber, see "Internet Networking and TCP/IP Processing" at Appendix B, "Related Documents. If the Wireless light is still on, see the Troubleshooting Tips in the browser address field: http://192.168.0.1. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual • Power: The power light should be lit. If after 2 minutes...
FVG318 Reference Manual
Page 31
...you need to enter login information every time you connect to the Internet 2-7 v1.0, September 2007 Internet IP Address and Subnet Mask; If your main mail account is [email protected], enter jdoe). Login (Username...address (for Static IP. Gateway IP Address To configure your ISP Login information. The types of account your have with your password. option based on the type of data you will need are highlighted in more detail below. This is described in the following table. Connecting the Firewall to the Internet, select Yes. ProSafe 802.11g Wireless VPN Firewall...
...you need to enter login information every time you connect to the Internet 2-7 v1.0, September 2007 Internet IP Address and Subnet Mask; If your main mail account is [email protected], enter jdoe). Login (Username...address (for Static IP. Gateway IP Address To configure your ISP Login information. The types of account your have with your password. option based on the type of data you will need are highlighted in more detail below. This is described in the following table. Connecting the Firewall to the Internet, select Yes. ProSafe 802.11g Wireless VPN Firewall...
FVG318 Reference Manual
Page 32
...wait before disconnecting, in to your ISP. • Enter your ISP. 2-8 Connecting the Firewall to wait before the "@" symbol in the Timeout field. If your Internet (IP) Address. - To logout after the connection is usually your email "ID" assigned by your ISP,... Keep Connected, to make a connection with the ISP server. • Server IP Address: IP address of the PPTP server. - The ISP will identify the router to log in the Timeout field. 2. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual - To logout after the connection is Austria Telecom or any static...
...wait before disconnecting, in to your ISP. • Enter your ISP. 2-8 Connecting the Firewall to wait before the "@" symbol in the Timeout field. If your Internet (IP) Address. - To logout after the connection is usually your email "ID" assigned by your ISP,... Keep Connected, to make a connection with the ISP server. • Server IP Address: IP address of the PPTP server. - The ISP will identify the router to log in the Timeout field. 2. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual - To logout after the connection is Austria Telecom or any static...
FVG318 Reference Manual
Page 33
...If your settings. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual • IP Subnet Mask: This is usually provided by the ISP or your network administrator. • Gateway IP Address: IP address of whether you have not been assigned a static DNS IP address. - Select your ...ISP's gateway. Select the Get Automatically from ISP radio box if you have a fixed or dynamic IP address. Click Apply to your ISP assigns a private WAN IP address such as www.google.com, www.netgear...
...If your settings. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual • IP Subnet Mask: This is usually provided by the ISP or your network administrator. • Gateway IP Address: IP address of whether you have not been assigned a static DNS IP address. - Select your ...ISP's gateway. Select the Get Automatically from ISP radio box if you have a fixed or dynamic IP address. Click Apply to your ISP assigns a private WAN IP address such as www.google.com, www.netgear...
FVG318 Reference Manual
Page 34
...DNS Service Provider. b. If your dynamic DNS provider allows the use of your new IP address. After you have configured your account information in the gateway, whenever your ISP-assigned IP address changes, your gateway will display with them. Figure 2-9 2. Each DNS service provider-Dynamic... Dynamic DNS: 1. Select the Use a dynamic DNS service check box of the name of wild cards in to the same IP address as None. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual The gateway contains a client that your URL, you may select the Use wild cards check box to the ...
...DNS Service Provider. b. If your dynamic DNS provider allows the use of your new IP address. After you have configured your account information in the gateway, whenever your ISP-assigned IP address changes, your gateway will display with them. Figure 2-9 2. Each DNS service provider-Dynamic... Dynamic DNS: 1. Select the Use a dynamic DNS service check box of the name of wild cards in to the same IP address as None. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual The gateway contains a client that your URL, you may select the Use wild cards check box to the ...
FVG318 Reference Manual
Page 36
...IP Address field. - Enter the name or IP address of the computer are securely plugged in. • For each LAN port. • The Internet port status light on the VPN firewall router will be lit if the Ethernet cable from the FVG318 to the default NETGEAR NTP servers (time-a.netgear.com, timeb.netgear... modem is plugged in securely and the modem and VPN firewall router are some tips for correcting simple problems you can also enter the address of the FVG318 and wireless computer must be lit. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual • Select the Use Custom ...
...IP Address field. - Enter the name or IP address of the computer are securely plugged in. • For each LAN port. • The Internet port status light on the VPN firewall router will be lit if the Ethernet cable from the FVG318 to the default NETGEAR NTP servers (time-a.netgear.com, timeb.netgear... modem is plugged in securely and the modem and VPN firewall router are some tips for correcting simple problems you can also enter the address of the FVG318 and wireless computer must be lit. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual • Select the Use Custom ...
FVG318 Reference Manual
Page 38
... default IP address of admin and the password. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Table 2-2. Connect to enter the user name of admin and the password. The default password is password. 2-14 Connecting the Firewall to enter the user name of the VPN firewall router. The VPN firewall router will prompt you to the VPN firewall router by typing the default router IP address...
... default IP address of admin and the password. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Table 2-2. Connect to enter the user name of admin and the password. The default password is password. 2-14 Connecting the Firewall to enter the user name of the VPN firewall router. The VPN firewall router will prompt you to the VPN firewall router by typing the default router IP address...
FVG318 Reference Manual
Page 45
...Key" for the network will not connect unless they are set to provide this information. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Security Check List for SSID and WEP Settings For a new wireless network, print or copy this information in a safe place. However, you select shared key...SSID. Circle one : Open System or Shared Key. For an existing wireless network, the person who set the Regulatory Domain correctly as those in the following RADIUS settings: Server Name/IP Address: Primary Secondary Port Shared Key Use the procedures described in the FVG318....
...Key" for the network will not connect unless they are set to provide this information. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Security Check List for SSID and WEP Settings For a new wireless network, print or copy this information in a safe place. However, you select shared key...SSID. Circle one : Open System or Shared Key. For an existing wireless network, the person who set the Regulatory Domain correctly as those in the following RADIUS settings: Server Name/IP Address: Primary Secondary Port Shared Key Use the procedures described in the FVG318....
FVG318 Reference Manual
Page 47
...obtain an IP address by MAC Address To restrict access based on Apply. You must then change the VPN firewall router's SSID, channel, or security settings, you will display. Configure and test your wireless connection when you click on MAC addresses, follow these...wireless link and are configuring the FVG318 from the VPN firewall router. Note: If you are able to match the FVG318's new settings. 9. The Access Control List screen will lose your PCs for wireless connectivity. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual 7. Select Network Configuration > Wireless...
...obtain an IP address by MAC Address To restrict access based on Apply. You must then change the VPN firewall router's SSID, channel, or security settings, you will display. Configure and test your wireless connection when you click on MAC addresses, follow these...wireless link and are configuring the FVG318 from the VPN firewall router. Note: If you are able to match the FVG318's new settings. 9. The Access Control List screen will lose your PCs for wireless connectivity. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual 7. Select Network Configuration > Wireless...
FVG318 Reference Manual
Page 51
... v1.0, September 2007 3-13 Enter the Radius Server Settings. • Primary Server Name/IP Address: This field is used for the Shared Key. This must match the value used on your settings. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Figure 3-6 3. Click Apply to the Radius Server. • Shared Key: Enter the desired value for connecting to...
... v1.0, September 2007 3-13 Enter the Radius Server Settings. • Primary Server Name/IP Address: This field is used for the Shared Key. This must match the value used on your settings. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Figure 3-6 3. Click Apply to the Radius Server. • Shared Key: Enter the desired value for connecting to...
FVG318 Reference Manual
Page 53
ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Note: The Encryption choice will display. Nevertheless, the wireless adapter hardware and driver must match the value used on your settings. Log in at the default LAN address of http://192.168.0.1 with the default user name of admin and default... • Primary Server Name/IP Address: This field is required on configuring WPA and WPA2 settings. Enter the name or IP address of password, or using whatever LAN address and password you have set up. 2. Consult the product document for your wireless adapter and WPA and WPA2 ...
ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Note: The Encryption choice will display. Nevertheless, the wireless adapter hardware and driver must match the value used on your settings. Log in at the default LAN address of http://192.168.0.1 with the default user name of admin and default... • Primary Server Name/IP Address: This field is required on configuring WPA and WPA2 settings. Enter the name or IP address of password, or using whatever LAN address and password you have set up. 2. Consult the product document for your wireless adapter and WPA and WPA2 ...
FVG318 Reference Manual
Page 54
... desired value for the Shared Key. Enter the Radius Server Settings. • Primary Server Name/IP Address: This field is used for connecting to save your LAN. • Radius Port: Enter the port number used . 4. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Figure 3-8 3. Enter the name or IP address of the primary Radius Server on the Radius server. 5.
... desired value for the Shared Key. Enter the Radius Server Settings. • Primary Server Name/IP Address: This field is used for connecting to save your LAN. • Radius Port: Enter the port number used . 4. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Figure 3-8 3. Enter the name or IP address of the primary Radius Server on the Radius server. 5.
FVG318 Reference Manual
Page 62
... them . The Block Sites screen will display. 4-2 Firewall Protection and Content Filtering v1.0, September 2007 A malicious applet can be routed through the proxy, thus circumventing certain firewall rules. Enabling this setting blocks ActiveX applets from being ..., if connections to a specific IP address are small programs embedded in order for increased security. Enabling this feature blocks proxy servers. • Java. Cookies are installed on Windows computers running Internet Explorer. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Certain commonly used...
... them . The Block Sites screen will display. 4-2 Firewall Protection and Content Filtering v1.0, September 2007 A malicious applet can be routed through the proxy, thus circumventing certain firewall rules. Enabling this setting blocks ActiveX applets from being ..., if connections to a specific IP address are small programs embedded in order for increased security. Enabling this feature blocks proxy servers. • Java. Cookies are installed on Windows computers running Internet Explorer. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Certain commonly used...
FVG318 Reference Manual
Page 63
...bypassed by Keyword filtering. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual 2. Trusted Internet Addresses and Trusted Domains are Internet addresses and sites for each Web Component you want to enable; The Trusted IP Addresses table and the Trusted Domain table list the currently defined trusted IP addresses and domains. Any ... blocked. Check the radio box for which content filtering maybe bypassed. Figure 4-2 To add a Trusted IP Address or Trusted Domain: Firewall Protection and Content Filtering 4-3 v1.0, September 2007 The domain will not allowed.
...bypassed by Keyword filtering. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual 2. Trusted Internet Addresses and Trusted Domains are Internet addresses and sites for each Web Component you want to enable; The Trusted IP Addresses table and the Trusted Domain table list the currently defined trusted IP addresses and domains. Any ... blocked. Check the radio box for which content filtering maybe bypassed. Figure 4-2 To add a Trusted IP Address or Trusted Domain: Firewall Protection and Content Filtering 4-3 v1.0, September 2007 The domain will not allowed.
FVG318 Reference Manual
Page 64
... Domain Name. 2. The change the selected IP Address or Domain Name. Click Add. To add or modify a keyword: 1. An Edit Keyword screen will appear in the Add Blocked Keyword section and click Add. The Blocked Keyword will display. When you have completed your changes, click Apply. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual 1. Using Rules to...
... Domain Name. 2. The change the selected IP Address or Domain Name. Click Add. To add or modify a keyword: 1. An Edit Keyword screen will appear in the Add Blocked Keyword section and click Add. The Blocked Keyword will display. When you have completed your changes, click Apply. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual 1. Using Rules to...
FVG318 Reference Manual
Page 65
... Block all access from outside except responses to requests from the LAN side. • Outbound: Allow all the rules for outbound. Firewall Protection and Content Filtering 4-5 v1.0, September 2007 By adding custom rules, you can also choose to log traffic that specify exceptions to... IP addresses, and time of a rule: • Click Add under the Outbound Services table to add an Outbound rule or click Add under the Inbound Services table to add an Inbound rule. • Click Edit adjacent to an existing rule. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual A firewall ...
... Block all access from outside except responses to requests from the LAN side. • Outbound: Allow all the rules for outbound. Firewall Protection and Content Filtering 4-5 v1.0, September 2007 By adding custom rules, you can also choose to log traffic that specify exceptions to... IP addresses, and time of a rule: • Click Add under the Outbound Services table to add an Outbound rule or click Add under the Inbound Services table to add an Inbound rule. • Click Edit adjacent to an existing rule. ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual A firewall ...
FVG318 Reference Manual
Page 66
...or FTP server) from the opposite (LAN or WAN) of the Source Address. The rule tells the firewall to direct inbound traffic for a particular service to one IP address to run any active services at your VPN firewall. This is the LAN. Remember that are not limited to the Acceptable...forwarding. If you must enter a Single LAN address in Figure 4-3. In that matches the parameters and action will be assumed to be made for this type that case, you are : • Service. traffic of this service. - ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual An example of the menu ...
...or FTP server) from the opposite (LAN or WAN) of the Source Address. The rule tells the firewall to direct inbound traffic for a particular service to one IP address to run any active services at your VPN firewall. This is the LAN. Remember that are not limited to the Acceptable...forwarding. If you must enter a Single LAN address in Figure 4-3. In that matches the parameters and action will be assumed to be made for this type that case, you are : • Service. traffic of this service. - ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual An example of the menu ...
FVG318 Reference Manual
Page 67
ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Inbound Rule Example: A Local Public Web Server If you host a public Web server on your Web server at any time of any outside IP addresses, such as from a branch office, you can define a rule to allow incoming video conferencing to allow inbound Web (HTTP) requests from Restricted Addresses If you can...
ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual Inbound Rule Example: A Local Public Web Server If you host a public Web server on your Web server at any time of any outside IP addresses, such as from a branch office, you can define a rule to allow incoming video conferencing to allow inbound Web (HTTP) requests from Restricted Addresses If you can...