FVS328 Reference Manual
Page 2
...layout(s) described herein. ii May 2004, 202-10031-01 Trademarks NETGEAR and Auto Uplink are registered trademarks of Microsoft Corporation. EN 55 022 Declaration of Conformance This is hereby certified that the FVS328 ProSafe VPN Firewall with the regulations. Microsoft, Windows, and Windows NT are trademarks...granted the right to the notes in accordance with the regulations may occur due to certify that the FVS328 ProSafe VPN Firewall with Dial Back-up is declared by NETGEAR, Inc. FullManual. Please refer to test the series for example, test transmitters) in accordance with ...
...layout(s) described herein. ii May 2004, 202-10031-01 Trademarks NETGEAR and Auto Uplink are registered trademarks of Microsoft Corporation. EN 55 022 Declaration of Conformance This is hereby certified that the FVS328 ProSafe VPN Firewall with the regulations. Microsoft, Windows, and Windows NT are trademarks...granted the right to the notes in accordance with the regulations may occur due to certify that the FVS328 ProSafe VPN Firewall with Dial Back-up is declared by NETGEAR, Inc. FullManual. Please refer to test the series for example, test transmitters) in accordance with ...
FVS328 Reference Manual
Page 3
...Refer to the Internet and a Web browser such as Internet Explorer or Netscape are required. World Wide Web NETGEAR maintains a World Wide Web home page that shipped with your FVS328 ProSafe VPN Firewall with Dial Back-up . iii May 2004, 202-10031-01 Voluntary Control Council for Interference (VCCI) ... Voluntary Control Council for correct handling. Bestätigung des Herstellers/Importeurs Es wird hiermit bestätigt, daß dasFVS328 ProSafe VPN Firewall with Dial Back-up gemäß der im BMPT-AmtsblVfg 243/1991 und Vfg 46/1992 aufgeführten Bestimmungen entst...
...Refer to the Internet and a Web browser such as Internet Explorer or Netscape are required. World Wide Web NETGEAR maintains a World Wide Web home page that shipped with your FVS328 ProSafe VPN Firewall with Dial Back-up . iii May 2004, 202-10031-01 Voluntary Control Council for Interference (VCCI) ... Voluntary Control Council for correct handling. Bestätigung des Herstellers/Importeurs Es wird hiermit bestätigt, daß dasFVS328 ProSafe VPN Firewall with Dial Back-up gemäß der im BMPT-AmtsblVfg 243/1991 und Vfg 46/1992 aufgeführten Bestimmungen entst...
FVS328 Reference Manual
Page 7
...Configure Static Routes 5-8 Chapter 6 Protecting Your Network Protecting Access to Your FVS328 Firewall 6-1 How to Change the Built-In Password 6-1 How to Change the Administrator Login Timeout 6-2 Configuring Basic Firewall Services 6-2 Using the Block Sites Menu to Screen Content 6-3 Services ... 6-13 Setting Times and Scheduling Firewall Services 6-13 How to Set Your Time Zone 6-14 How to Schedule Firewall Services 6-15 Chapter 7 Virtual Private Networking Overview of FVS328 Policy-Based VPN Configuration 7-1 Using Policies to Manage VPN Traffic 7-1 Using Automatic Key Management...
...Configure Static Routes 5-8 Chapter 6 Protecting Your Network Protecting Access to Your FVS328 Firewall 6-1 How to Change the Built-In Password 6-1 How to Change the Administrator Login Timeout 6-2 Configuring Basic Firewall Services 6-2 Using the Block Sites Menu to Screen Content 6-3 Services ... 6-13 Setting Times and Scheduling Firewall Services 6-13 How to Set Your Time Zone 6-14 How to Schedule Firewall Services 6-15 Chapter 7 Virtual Private Networking Overview of FVS328 Policy-Based VPN Configuration 7-1 Using Policies to Manage VPN Traffic 7-1 Using Automatic Key Management...
FVS328 Reference Manual
Page 8
... of Configuration Scenarios 7-17 VPNC Scenario 1: Gateway-to-Gateway with Preshared Secrets 7-18 FVS328 Scenario 1: How to Configure the IKE and VPN Policies 7-20 How to Check VPN Connections 7-24 FVS328 Scenario 2: Authenticating with RSA Certificates 7-25 Chapter 8 Managing Your Network Network Management ...8-1...Feature 8-9 Enabling Security Event E-mail Notification 8-10 Backing Up, Restoring, or Erasing Your Settings 8-11 How to Back Up the FVS328 Configuration to a File 8-11 How to Restore a Configuration from a File 8-12 How to Erase the Configuration 8-13 Running Diagnostic ...
... of Configuration Scenarios 7-17 VPNC Scenario 1: Gateway-to-Gateway with Preshared Secrets 7-18 FVS328 Scenario 1: How to Configure the IKE and VPN Policies 7-20 How to Check VPN Connections 7-24 FVS328 Scenario 2: Authenticating with RSA Certificates 7-25 Chapter 8 Managing Your Network Network Management ...8-1...Feature 8-9 Enabling Security Event E-mail Notification 8-10 Backing Up, Restoring, or Erasing Your Settings 8-11 How to Back Up the FVS328 Configuration to a File 8-11 How to Restore a Configuration from a File 8-12 How to Erase the Configuration 8-13 Running Diagnostic ...
FVS328 Reference Manual
Page 10
Domain Name Server C-9 IP Configuration by DHCP C-10 Internet Security and Firewalls C-10 What is a Firewall C-11 Stateful Packet Inspection C-11 Denial of Service Attack C-11 Ethernet Cabling ...C-12 Uplink Switches and Crossover Cables C-12 Cable Quality ...C-13 Appendix D ... Information for Windows Computers D-10 Obtaining ISP Configuration Information for Macintosh Computers D-11 Restarting the Network D-12 Appendix E Virtual Private Networking What is a VPN? ...E-1 What is IPSec and How Does It Work E-2 IPSec Security Features E-2 vi Contents May 2004, 202-10031-01
Domain Name Server C-9 IP Configuration by DHCP C-10 Internet Security and Firewalls C-10 What is a Firewall C-11 Stateful Packet Inspection C-11 Denial of Service Attack C-11 Ethernet Cabling ...C-12 Uplink Switches and Crossover Cables C-12 Cable Quality ...C-13 Appendix D ... Information for Windows Computers D-10 Obtaining ISP Configuration Information for Macintosh Computers D-11 Restarting the Network D-12 Appendix E Virtual Private Networking What is a VPN? ...E-1 What is IPSec and How Does It Work E-2 IPSec Security Features E-2 vi Contents May 2004, 202-10031-01
FVS328 Reference Manual
Page 11
... Firewalls ...E-8 Setting Up a VPN Tunnel Between Gateways E-8 VPNC IKE Security Parameters E-10 VPNC IKE Phase I Parameters E-10 VPNC IKE Phase II Parameters E-11 Testing and Troubleshooting E-11 Additional Reading ...E-11 Appendix F NETGEAR VPN Configuration FVS318 or FVM318 to FVS328 Configuration... Configuration of FVS318 or FVM318 Gateway A F-2 Step-By-Step Configuration of FVS328 Gateway B F-5 Test the VPN Connection F-9 Appendix G NETGEAR VPN Configuration FVS318 or FVM318 with FQDN to FVS328 Configuration Profile ...G-1 Using DDNS and Fully Qualified Domain Names (FQDN G-2 Step...
... Firewalls ...E-8 Setting Up a VPN Tunnel Between Gateways E-8 VPNC IKE Security Parameters E-10 VPNC IKE Phase I Parameters E-10 VPNC IKE Phase II Parameters E-11 Testing and Troubleshooting E-11 Additional Reading ...E-11 Appendix F NETGEAR VPN Configuration FVS318 or FVM318 to FVS328 Configuration... Configuration of FVS318 or FVM318 Gateway A F-2 Step-By-Step Configuration of FVS328 Gateway B F-5 Test the VPN Connection F-9 Appendix G NETGEAR VPN Configuration FVS318 or FVM318 with FQDN to FVS328 Configuration Profile ...G-1 Using DDNS and Fully Qualified Domain Names (FQDN G-2 Step...
FVS328 Reference Manual
Page 12
Step-By-Step Configuration of FVS328 Gateway H-2 Step-By-Step Configuration of the Netgear VPN Client B H-7 Testing the VPN Connection H-14 From the Client PC to the FVS328 H-14 From the FVS328 to the Client PC H-15 Monitoring the PC VPN Connection H-15 Viewing the FVS328 VPN Status and Log Information H-16 Glossary Index viii Contents May 2004, 202-10031-01
Step-By-Step Configuration of FVS328 Gateway H-2 Step-By-Step Configuration of the Netgear VPN Client B H-7 Testing the VPN Connection H-14 From the Client PC to the FVS328 H-14 From the FVS328 to the Client PC H-15 Monitoring the PC VPN Connection H-15 Viewing the FVS328 VPN Status and Log Information H-16 Glossary Index viii Contents May 2004, 202-10031-01
FVS328 Reference Manual
Page 13
... 09 202-10031-01 May 2004 Note: Product updates are available on the NETGEAR Web site. Audience This reference manual assumes that the reader has basic to these specifications.: Table 1-1. Chapter 1 About This Manual This chapter introduces the NETGEAR FVS328 ProSafe VPN Firewall with Dial Back-up manual. Scope This manual is provided in the Appendices...
... 09 202-10031-01 May 2004 Note: Product updates are available on the NETGEAR Web site. Audience This reference manual assumes that the reader has basic to these specifications.: Table 1-1. Chapter 1 About This Manual This chapter introduces the NETGEAR FVS328 ProSafe VPN Firewall with Dial Back-up manual. Scope This manual is provided in the Appendices...
FVS328 Reference Manual
Page 14
Model FVS328 ProSafe VPN Firewall with Dial Back-up Reference Manual Typographical Conventions This guide uses the following formats to highlight special messages: Note: This format is used to highlight ...
Model FVS328 ProSafe VPN Firewall with Dial Back-up Reference Manual Typographical Conventions This guide uses the following formats to highlight special messages: Note: This format is used to highlight ...
FVS328 Reference Manual
Page 15
... the current topic in the Contents tab. - The PDF button links to a PDF file containing just the currently selected chapter of the full manual. - Model FVS328 ProSafe VPN Firewall with JavaScript enabled. 2. To view the HTML version of this Manual This manual includes both PDF and HTML versions. Also, each page of the manual...
... the current topic in the Contents tab. - The PDF button links to a PDF file containing just the currently selected chapter of the full manual. - Model FVS328 ProSafe VPN Firewall with JavaScript enabled. 2. To view the HTML version of this Manual This manual includes both PDF and HTML versions. Also, each page of the manual...
FVS328 Reference Manual
Page 16
... of the chapter you were viewing. - Click the "PDF of This Chapter" link at the top right of any page in the HTML View. Model FVS328 ProSafe VPN Firewall with Dial Back-up Reference Manual How to Print this Manual To print this manual you can choose one of the following several options, according...
... of the chapter you were viewing. - Click the "PDF of This Chapter" link at the top right of any page in the HTML View. Model FVS328 ProSafe VPN Firewall with Dial Back-up Reference Manual How to Print this Manual To print this manual you can choose one of the following several options, according...
FVS328 Reference Manual
Page 17
...VPN tunnels. The 8-port FVS328 with auto fail-over connectivity through an external broadband access device such as a cable modem or DSL modem, and supports IPSec-based secure tunnels to IPSec-compatible VPN servers. Chapter 2 Introduction This chapter describes the features of the NETGEAR FVS328 ProSafe VPN Firewall... with Dial Back-up to 253 users. Key Features The FVS328 features are highlighted below.
...VPN tunnels. The 8-port FVS328 with auto fail-over connectivity through an external broadband access device such as a cable modem or DSL modem, and supports IPSec-based secure tunnels to IPSec-compatible VPN servers. Chapter 2 Introduction This chapter describes the features of the NETGEAR FVS328 ProSafe VPN Firewall... with Dial Back-up to 253 users. Key Features The FVS328 features are highlighted below.
FVS328 Reference Manual
Page 18
... 2-2 Introduction May 2004, 202-10031-01 You can configure the firewall to e-mail the log to defend against hacker attacks. It is enabled with one of the supported service providers. The FVS328 ProSafe VPN Firewall with Dial Back-up supports standard keying methods (Manual or IKE), ... for up to 168 bit encryption (3DES) for maximum security. • Support for VPN Main Mode, Aggressive mode, or Manual Keying. • Support for industry standard VPN protocols. Model FVS328 ProSafe VPN Firewall with Dial Back-up Reference Manual • Remote Access Server (RAS) allows you to...
... 2-2 Introduction May 2004, 202-10031-01 You can configure the firewall to e-mail the log to defend against hacker attacks. It is enabled with one of the supported service providers. The FVS328 ProSafe VPN Firewall with Dial Back-up supports standard keying methods (Manual or IKE), ... for up to 168 bit encryption (3DES) for maximum security. • Support for VPN Main Mode, Aggressive mode, or Manual Keying. • Support for industry standard VPN protocols. Model FVS328 ProSafe VPN Firewall with Dial Back-up Reference Manual • Remote Access Server (RAS) allows you to...
FVS328 Reference Manual
Page 19
...interfaces are 10/100 Mbps, autosensing, and capable of Attached computers by screening for using the FVS328 in settings where you to control access to access objectionable Internet sites. The firewall incorporates Auto UplinkTM technology. This feature can also be statically or dynamically assigned by NAT The... to Enable or Disable IP Address Sharing by your organization. • Automatic Configuration of full-duplex or half-duplex operation. Model FVS328 ProSafe VPN Firewall with Dial Back-up Reference Manual Content Filtering With its internal 8-port 10/100 switch, the...
...interfaces are 10/100 Mbps, autosensing, and capable of Attached computers by screening for using the FVS328 in settings where you to control access to access objectionable Internet sites. The firewall incorporates Auto UplinkTM technology. This feature can also be statically or dynamically assigned by NAT The... to Enable or Disable IP Address Sharing by your organization. • Automatic Configuration of full-duplex or half-duplex operation. Model FVS328 ProSafe VPN Firewall with Dial Back-up Reference Manual Content Filtering With its internal 8-port 10/100 switch, the...
FVS328 Reference Manual
Page 20
...find your network using a domain name when your type of ISP account. • Remote management The firewall allows you can install, configure, and operate the FVS328 within minutes after connecting it to the Internet over a DSL connection by simulating a dial-up Reference ...PPPoE) PPPoE is a protocol for connecting remote hosts to the network. The firewall obtains actual DNS addresses from the ISP during connection setup and forwards DNS requests from a remote location via the Internet using secure SLL protocol. Model FVS328 ProSafe VPN Firewall with Dial Back-up connection.
...find your network using a domain name when your type of ISP account. • Remote management The firewall allows you can install, configure, and operate the FVS328 within minutes after connecting it to the Internet over a DSL connection by simulating a dial-up Reference ...PPPoE) PPPoE is a protocol for connecting remote hosts to the network. The firewall obtains actual DNS addresses from the ISP during connection setup and forwards DNS requests from a remote location via the Internet using secure SLL protocol. Model FVS328 ProSafe VPN Firewall with Dial Back-up connection.
FVS328 Reference Manual
Page 21
...FVS328 ProSafe VPN Firewall with Dial Back-up • AC power adapter • FVS328 Resource CD (230-10041-02), including: - The Firewall's Front Panel The front panel of the firewall. You can use some of the parts are available on the NETGEAR Web site at http://kbserver.netgear.com/products/FVS328...when you to monitor its status and activity. • Flash EPROM for repair. Model FVS328 ProSafe VPN Firewall with Dial Back-up Reference Manual • Diagnostic functions The firewall incorporates built-in diagnostic functions such as Ping, DNS lookup, and remote reboot. These...
...FVS328 ProSafe VPN Firewall with Dial Back-up • AC power adapter • FVS328 Resource CD (230-10041-02), including: - The Firewall's Front Panel The front panel of the firewall. You can use some of the parts are available on the NETGEAR Web site at http://kbserver.netgear.com/products/FVS328...when you to monitor its status and activity. • Flash EPROM for repair. Model FVS328 ProSafe VPN Firewall with Dial Back-up Reference Manual • Diagnostic functions The firewall incorporates built-in diagnostic functions such as Ping, DNS lookup, and remote reboot. These...
FVS328 Reference Manual
Page 22
...The port detected a link with a LAN connection and is operating at 100 Mbps. The Local port is operating at 10 Mbps. Model FVS328 ProSafe VPN Firewall with the Internet WAN connection or Remote Access Server. The port detected a link with Dial Back-up Reference Manual "ROADBAND 0RO3AFE60.&IREWALLWITH$IAL"...for the TEST LED, which is amber.These LEDs are green when lit, except for the TEST LED, which is supplied to the firewall. Table 2-1: LED Descriptions Label Activity Description POWER TEST MODEM On On Off On/Blinking INTERNET 100 On/Blinking LINK/ACT (Activity) On/...
...The port detected a link with a LAN connection and is operating at 100 Mbps. The Local port is operating at 10 Mbps. Model FVS328 ProSafe VPN Firewall with the Internet WAN connection or Remote Access Server. The port detected a link with Dial Back-up Reference Manual "ROADBAND 0RO3AFE60.&IREWALLWITH$IAL"...for the TEST LED, which is amber.These LEDs are green when lit, except for the TEST LED, which is supplied to the firewall. Table 2-1: LED Descriptions Label Activity Description POWER TEST MODEM On On Off On/Blinking INTERNET 100 On/Blinking LINK/ACT (Activity) On/...
FVS328 Reference Manual
Page 23
...45 ports for connecting the firewall to local computers • Internet WAN Ethernet RJ-45 port for modem connection • Reset/Factory Default push button: push to a cable or DSL modem • 12V DC 1.2A power adapter input Introduction 2-7 May 2004, 202-10031-01 Model FVS328 ProSafe VPN Firewall with Dial Back-up Reference... Manual The Firewall's Rear Panel The rear panel of the...
...45 ports for connecting the firewall to local computers • Internet WAN Ethernet RJ-45 port for modem connection • Reset/Factory Default push button: push to a cable or DSL modem • 12V DC 1.2A power adapter input Introduction 2-7 May 2004, 202-10031-01 Model FVS328 ProSafe VPN Firewall with Dial Back-up Reference... Manual The Firewall's Rear Panel The rear panel of the...
FVS328 Reference Manual
Page 24
Model FVS328 ProSafe VPN Firewall with Dial Back-up Reference Manual 2-8 Introduction May 2004, 202-10031-01
Model FVS328 ProSafe VPN Firewall with Dial Back-up Reference Manual 2-8 Introduction May 2004, 202-10031-01
FVS328 Reference Manual
Page 25
...Network" for your account. LAN Configuration Requirements For the initial connection to the Internet and configuration of your FVS328 ProSafe VPN Firewall with DHCP configuration. The computer you use the FVS328 Firewall on your Local Area Network (LAN) and connect to the Internet: 1. Active Internet service such as... to prepare these three things before you can perform basic configuration of your firewall, you must use a Category 5 (CAT5) cable such as explained below. 2. Chapter 3 Connecting the FVS328 to the Internet This chapter describes how to set to your network at 100...
...Network" for your account. LAN Configuration Requirements For the initial connection to the Internet and configuration of your FVS328 ProSafe VPN Firewall with DHCP configuration. The computer you use the FVS328 Firewall on your Local Area Network (LAN) and connect to the Internet: 1. Active Internet service such as... to prepare these three things before you can perform basic configuration of your firewall, you must use a Category 5 (CAT5) cable such as explained below. 2. Chapter 3 Connecting the FVS328 to the Internet This chapter describes how to set to your network at 100...