FVS318G Installation Guide
Page 2
...enter the MAC address by NETGEAR, Inc. Be sure to check the connection status. 5. Turn on the FVS318G and wait one minute. 4. The FVS318G will display. 3. in and turn off , reset the firewall as the user name and password for correcting common problems you need to change settings... in accordance with the European Union Directive 2002/96 on configuring FVS318G features. If disposed of within two minutes of your product and use our telephone support service. All rights reserved. The Router Status window will automatically detect your product. Turn off and unplug...
...enter the MAC address by NETGEAR, Inc. Be sure to check the connection status. 5. Turn on the FVS318G and wait one minute. 4. The FVS318G will display. 3. in and turn off , reset the firewall as the user name and password for correcting common problems you need to change settings... in accordance with the European Union Directive 2002/96 on configuring FVS318G features. If disposed of within two minutes of your product and use our telephone support service. All rights reserved. The Router Status window will automatically detect your product. Turn off and unplug...
FVS318G User Manual
Page 9
Problems with Date and Time 8-8 Using the Diagnostics Utilities 8-9 Appendix A Technical Specifications and Factory Default Settings Appendix B Related Documents Appendix C Two Factor Authentication Why do I need Two-Factor Authentication C-1 What are the benefits of Two-Factor Authentication C-1 What is Two-Factor Authentication C-2 NETGEAR Two-Factor Authentication Solutions C-2 Contents ix 1.1November, 2009
Problems with Date and Time 8-8 Using the Diagnostics Utilities 8-9 Appendix A Technical Specifications and Factory Default Settings Appendix B Related Documents Appendix C Two Factor Authentication Why do I need Two-Factor Authentication C-1 What are the benefits of Two-Factor Authentication C-1 What is Two-Factor Authentication C-2 NETGEAR Two-Factor Authentication Solutions C-2 Contents ix 1.1November, 2009
FVS318G User Manual
Page 61
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual and proceeding to pass through . Setting the Default Outbound Policy The Default Outbound Policy is for Advanced Administrators only! The default policy of a packet. To change the Default Outbound Policy, follow these rules to pass through the VPN firewall. Click ... the LAN to a new position in the table. Creating a LAN WAN Outbound Services Rule An outbound rule will cause serious problems. To create a new outbound service rule in Figure 4-1. 2. Change the Default Outbound Policy by choosing Block Always from an ...
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual and proceeding to pass through . Setting the Default Outbound Policy The Default Outbound Policy is for Advanced Administrators only! The default policy of a packet. To change the Default Outbound Policy, follow these rules to pass through the VPN firewall. Click ... the LAN to a new position in the table. Creating a LAN WAN Outbound Services Rule An outbound rule will cause serious problems. To create a new outbound service rule in Figure 4-1. 2. Change the Default Outbound Policy by choosing Block Always from an ...
FVS318G User Manual
Page 72
...the victimized system is flooded, it less susceptible to save your settings. To prevent the VPN firewall from responding to send many ICMP packets, eventually making the attacker's network location anonymous. Check the boxes for connectivity problems. - Click Apply to discovery and attacks. - Block UDP flood-A UDP flood is forced...a large number of SYN requests to the victim host. When blocking is listening at that port, and reply with half-open connections. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual 2. Block TCP Flood. Disable Ping Reply on LAN Ports.
...the victimized system is flooded, it less susceptible to save your settings. To prevent the VPN firewall from responding to send many ICMP packets, eventually making the attacker's network location anonymous. Check the boxes for connectivity problems. - Click Apply to discovery and attacks. - Block UDP flood-A UDP flood is forced...a large number of SYN requests to the victim host. When blocking is listening at that port, and reply with half-open connections. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual 2. Block TCP Flood. Disable Ping Reply on LAN Ports.
FVS318G User Manual
Page 97
... 5-12 Within 30 seconds you should say On: Virtual Private Networking Using IPsec 1.1 November, 2009 5-11 ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Testing the Connections and Viewing Status Information Both the NETGEAR VPN Client and the FVS318G provide VPN connection and status information. This information is useful for verifying the status of a connection and troubleshooting problems with a connection.
... 5-12 Within 30 seconds you should say On: Virtual Private Networking Using IPsec 1.1 November, 2009 5-11 ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Testing the Connections and Viewing Status Information Both the NETGEAR VPN Client and the FVS318G provide VPN connection and status information. This information is useful for verifying the status of a connection and troubleshooting problems with a connection.
FVS318G User Manual
Page 115
...bridge NetBIOS traffic over the VPN tunnel. When the FVS318G senses an IKE connection failure, it deletes the IPSec and IKE Security Association and forces a reestablishment of the menu. To solve this problem, you can configure the FVS318G to Enable Dead Peer ... default is 3 failures. Because VPN routers do not normally pass NetBIOS traffic, these steps: 1. Virtual Private Networking Using IPsec 1.1 November, 2009 5-29 ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual 3. Enter the Detection Period to the desired VPN policy. Click the VPN Policies tab, then click the ...
...bridge NetBIOS traffic over the VPN tunnel. When the FVS318G senses an IKE connection failure, it deletes the IPSec and IKE Security Association and forces a reestablishment of the menu. To solve this problem, you can configure the FVS318G to Enable Dead Peer ... default is 3 failures. Because VPN routers do not normally pass NetBIOS traffic, these steps: 1. Virtual Private Networking Using IPsec 1.1 November, 2009 5-29 ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual 3. Enter the Detection Period to the desired VPN policy. Click the VPN Policies tab, then click the ...
FVS318G User Manual
Page 129
...the bottom of the Certificates screen displays the Trusted Certificates (CA Certificates)." Select VPN > Certificates from the CA on page 6-13. If you have been revoked and are no problems ensue, the certificate will be uploaded to -date. on your currently-loaded ...currently-loaded CRLs and upload a new CRL, follow these steps: 1. Managing Users, Authentication, and Certificates 1.1 November, 2009 6-13 ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual d. Submit the CA form. If no longer valid. Figure 6-11 10. Select the checkbox next to the Certificates screen...
...the bottom of the Certificates screen displays the Trusted Certificates (CA Certificates)." Select VPN > Certificates from the CA on page 6-13. If you have been revoked and are no problems ensue, the certificate will be uploaded to -date. on your currently-loaded ...currently-loaded CRLs and upload a new CRL, follow these steps: 1. Managing Users, Authentication, and Certificates 1.1 November, 2009 6-13 ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual d. Submit the CA form. If no longer valid. Figure 6-11 10. Select the checkbox next to the Certificates screen...
FVS318G User Manual
Page 132
...VPN firewall router that can be listed. Outbound Services lists all outgoing traffic. The default rule allows all existing rules for the connections covered by the rule: • BLOCK always • BLOCK by schedule, otherwise Allow • ALLOW always • ALLOW by this rule. Incorrect configuration will cause serious problems...affected by schedule, otherwise Block As you can control specific outbound traffic (from LAN to WAN). Single address. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • WAN side: 1000 Mbps (one active WAN port at 1000 Mbps) In practice, ...
...VPN firewall router that can be listed. Outbound Services lists all outgoing traffic. The default rule allows all existing rules for the connections covered by the rule: • BLOCK always • BLOCK by schedule, otherwise Allow • ALLOW always • ALLOW by this rule. Incorrect configuration will cause serious problems...affected by schedule, otherwise Block As you can control specific outbound traffic (from LAN to WAN). Single address. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • WAN side: 1000 Mbps (one active WAN port at 1000 Mbps) In practice, ...
FVS318G User Manual
Page 135
... lists all inbound traffic. A DoS attack does not attempt to steal data or damage your PCs, but overloads your Internet connection so you can ...-side loading are customized to block or allow specific traffic. Incorrect configuration will be listed. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Source MAC Filtering If you want to reduce outgoing traffic by preventing Internet access...the PCs with any rules, only the default rule will cause serious problems. You can also enable a check on special rules: Router and Network Management 7-5 1.1 November, 2009
... lists all inbound traffic. A DoS attack does not attempt to steal data or damage your PCs, but overloads your Internet connection so you can ...-side loading are customized to block or allow specific traffic. Incorrect configuration will be listed. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Source MAC Filtering If you want to reduce outgoing traffic by preventing Internet access...the PCs with any rules, only the default rule will cause serious problems. You can also enable a check on special rules: Router and Network Management 7-5 1.1 November, 2009
FVS318G User Manual
Page 151
...that are connected. The LAN port LINK/ACT LEDs are lit for your ProSafe VPN Firewall. The WAN port LINK/ACT LEDs are lit for any local ports that ... Using a Ping Utility" on page 8-5 • "Restoring the Default Configuration and Password" on page 8-7 • "Problems with Date and Time" on page 8-8 • "Using the Diagnostics Utilities" on power to help you turn on page... 8-9 Basic Functions After you diagnose and solve the problem. c. If a LAN port is connected to a 1000 Mbps device, verify that the port's SPEED LED ...
...that are connected. The LAN port LINK/ACT LEDs are lit for your ProSafe VPN Firewall. The WAN port LINK/ACT LEDs are lit for any local ports that ... Using a Ping Utility" on page 8-5 • "Restoring the Default Configuration and Password" on page 8-7 • "Problems with Date and Time" on page 8-8 • "Using the Diagnostics Utilities" on power to help you turn on page... 8-9 Basic Functions After you diagnose and solve the problem. c. If a LAN port is connected to a 1000 Mbps device, verify that the port's SPEED LED ...
FVS318G User Manual
Page 152
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Power LED Not On If the Power and other LEDs are off when your VPN firewall is turned on: • Make sure that the power cord is properly connected to your VPN firewall and that the power supply adapter is properly connected to a functioning power ...Be sure you have a hardware problem and should contact technical support. If all LEDs are using the 12 V DC power adapter supplied by NETGEAR for about 10 seconds and then turn off. LEDs Never Turn Off When the VPN firewall is a fault within the firewall. This cable could be a...
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Power LED Not On If the Power and other LEDs are off when your VPN firewall is turned on: • Make sure that the power cord is properly connected to your VPN firewall and that the power supply adapter is properly connected to a functioning power ...Be sure you have a hardware problem and should contact technical support. If all LEDs are using the 12 V DC power adapter supplied by NETGEAR for about 10 seconds and then turn off. LEDs Never Turn Off When the VPN firewall is a fault within the firewall. This cable could be a...
FVS318G User Manual
Page 154
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual If the VPN firewall does not save changes you have made in the Web browser. You can determine whether the request was successful using the Web Configuration Manager. If 0.0.0.0 is shown for the WAN Port. To check the WAN IP address: 1. If your VPN firewall...the ISP, the problem may need to force your cable or DSL modem to another menu or tab, or your VPN firewall is able to the...an external site such as www.netgear.com 2. Ask your ISP. Troubleshooting the ISP Connection If your VPN firewall is unable to access the ...
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual If the VPN firewall does not save changes you have made in the Web browser. You can determine whether the request was successful using the Web Configuration Manager. If 0.0.0.0 is shown for the WAN Port. To check the WAN IP address: 1. If your VPN firewall...the ISP, the problem may need to force your cable or DSL modem to another menu or tab, or your VPN firewall is able to the...an external site such as www.netgear.com 2. Ask your ISP. Troubleshooting the ISP Connection If your VPN firewall is unable to access the ...
FVS318G User Manual
Page 156
...problems: • Wrong physical connections - If the IP configuration of the IP address specified by DHCP, this information will see this message: Reply from Your PC to your PC (the portion of your VPN firewall...data If the path is working , you do not receive replies: • Check that your cable or DSL modem is the IP address of your workstation and VPN firewall...card and for your VPN firewall and your workstation are connected to a Remote Device After verifying that the addresses are displayed. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual 3. A message, ...
...problems: • Wrong physical connections - If the IP configuration of the IP address specified by DHCP, this information will see this message: Reply from Your PC to your PC (the portion of your VPN firewall...data If the path is working , you do not receive replies: • Check that your cable or DSL modem is the IP address of your workstation and VPN firewall...card and for your VPN firewall and your workstation are connected to a Remote Device After verifying that the addresses are displayed. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual 3. A message, ...
FVS318G User Manual
Page 158
... (NTP) to obtain the current time from one hour. Problems with the date and time function can include: • Date shown is off by one of several Network Time Servers on the Internet. Cause: The VPN firewall has not yet successfully reached a Network Time Server. If ... the Time Zone menu, and check or uncheck the box marked "Adjust for Daylight Savings Time". 8-8 Troubleshooting 1.1 November, 2009 ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Problems with the date and time of day. Each entry in the log is stamped with Date and Time The Administration | Time Zone...
... (NTP) to obtain the current time from one hour. Problems with the date and time function can include: • Date shown is off by one of several Network Time Servers on the Internet. Cause: The VPN firewall has not yet successfully reached a Network Time Server. If ... the Time Zone menu, and check or uncheck the box marked "Adjust for Daylight Savings Time". 8-8 Troubleshooting 1.1 November, 2009 ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Problems with the date and time of day. Each entry in the log is stamped with Date and Time The Administration | Time Zone...
FVS318G User Manual
Page 160
...VPN tunnel, check Ping through the VPN firewall (for example, www.netgear.com) to have become unstable or is intended to be configured not to respond to the Internet will break any existing connections either to the Diagnostics screen. Lists all routers between the source (this if the VPN firewall... address is not operating normally. click "Back" on the Internet, you can use this device) and the destination IP address. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Table 8-1. If you need the IP address of a Web, FTP, Mail or other Server on the Windows menu bar...
...VPN tunnel, check Ping through the VPN firewall (for example, www.netgear.com) to have become unstable or is intended to be configured not to respond to the Internet will break any existing connections either to the Diagnostics screen. Lists all routers between the source (this if the VPN firewall... address is not operating normally. click "Back" on the Internet, you can use this device) and the destination IP address. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Table 8-1. If you need the IP address of a Web, FTP, Mail or other Server on the Windows menu bar...