Hub and Spoke VPN network using the VPN Prosafe Client
Page 1
... can apply to -box). Hub and Spoke VPN using the VPN Prosafe Client This document describes the steps to undertake in configuring a Hub-and-Spoke network over the Internet using VPNs (box-to-box and client-to any of the VPN Firewall/Router from firmware version 3.5.0.24 and above, and VPN clients from version 10.8.3 and above. In...
... can apply to -box). Hub and Spoke VPN using the VPN Prosafe Client This document describes the steps to undertake in configuring a Hub-and-Spoke network over the Internet using VPNs (box-to-box and client-to any of the VPN Firewall/Router from firmware version 3.5.0.24 and above, and VPN clients from version 10.8.3 and above. In...
Configuring a Hub-and-Spoke VPN Using the NETGEAR VPN Client
Page 1
... address: 192.168.2.0 Procedure This procedure was developed and tested using: • NETGEAR FVX538 ProSafe VPN Firewall with the FVX538 router, firmware version 2.x and NETGEAR ProSafe174; VPN client, version 10.7.2 (Build 12). Note: See Hub-and-Spoke VPN for general instructions on configuration that does not use the VPN Client. This application note describes how to configure a Hub-and-Spoke...
... address: 192.168.2.0 Procedure This procedure was developed and tested using: • NETGEAR FVX538 ProSafe VPN Firewall with the FVX538 router, firmware version 2.x and NETGEAR ProSafe174; VPN client, version 10.7.2 (Build 12). Note: See Hub-and-Spoke VPN for general instructions on configuration that does not use the VPN Client. This application note describes how to configure a Hub-and-Spoke...
Generating a Self Certificate Request Using OpenSSL
Page 1
This application note is the same for an FVX538 or FVS338 ProSafe174; VPN Firewall Summary This application note describes how to configure a self certificate request (CSR) on one WAN interface of this procedure. 1. Procedure This procedure was developed and tested ...Using OpenSSL for both models. The procedure is an updated version using version 1.x firmware. The older version of a NETGEAR FVX538 or FVS338 ProSafe VPN Firewall using : • NETGEAR FVX538 ProSafe VPN Firewall with version 2.x firmware o IP address subnet: 192.168.1.1; 255.255.255.0 The procedure includes how...
This application note is the same for an FVX538 or FVS338 ProSafe174; VPN Firewall Summary This application note describes how to configure a self certificate request (CSR) on one WAN interface of this procedure. 1. Procedure This procedure was developed and tested ...Using OpenSSL for both models. The procedure is an updated version using version 1.x firmware. The older version of a NETGEAR FVX538 or FVS338 ProSafe VPN Firewall using : • NETGEAR FVX538 ProSafe VPN Firewall with version 2.x firmware o IP address subnet: 192.168.1.1; 255.255.255.0 The procedure includes how...
SRX5308 Product Datasheet
Page 3
... trademarks of NETGEAR, Inc. NETGEAR, the NETGEAR Logo, NETGEAR Digital Entertainer Logo, Connect with Innovation, FrontView, IntelliFi, PowerShift, ProSafe, ProSecure, RAIDar, RAIDiator, X-RAID, RangeMax, ReadyNAS and Smart Wizard are trademarks of purchase. ¹Throughput measured in the United States and/or other countries. ProSafe174; Quad WAN Gigabit SSL VPN Firewall SRX5308 TECHNICAL SPECIFICATIONS VPN SSL Version Support SSL Encryption Support SSL Message Integrity SSL Certificate Support SSL VPN Platforms Supported...
... trademarks of NETGEAR, Inc. NETGEAR, the NETGEAR Logo, NETGEAR Digital Entertainer Logo, Connect with Innovation, FrontView, IntelliFi, PowerShift, ProSafe, ProSecure, RAIDar, RAIDiator, X-RAID, RangeMax, ReadyNAS and Smart Wizard are trademarks of purchase. ¹Throughput measured in the United States and/or other countries. ProSafe174; Quad WAN Gigabit SSL VPN Firewall SRX5308 TECHNICAL SPECIFICATIONS VPN SSL Version Support SSL Encryption Support SSL Message Integrity SSL Certificate Support SSL VPN Platforms Supported...
SRX5308 Reference Manual
Page 14
ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308 Reference Manual Key Features and Capabilities The SRX5308 provides the following key features and capabilities: • Four 10/100/1000 Mbps Gigabit Ethernet WAN ports for load balancing and failover protection of your Internet connection, providing increased data rate and increased system reliability. • Built-in four-port 10/100/1000 Mbps Gigabit..., optimized for the NETGEAR ProSafe Network Management Software (NMS100). • Front panel LEDs for easy monitoring of status and activity. • Flash memory for firmware upgrade. •...
ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308 Reference Manual Key Features and Capabilities The SRX5308 provides the following key features and capabilities: • Four 10/100/1000 Mbps Gigabit Ethernet WAN ports for load balancing and failover protection of your Internet connection, providing increased data rate and increased system reliability. • Built-in four-port 10/100/1000 Mbps Gigabit..., optimized for the NETGEAR ProSafe Network Management Software (NMS100). • Front panel LEDs for easy monitoring of status and activity. • Flash memory for firmware upgrade. •...
SRX5308 Reference Manual
Page 18
... Virtual Private Network Consortium (VPNC) to the recommendations of Internet connection, asking you change the system variables for firmware upgrades. • Technical support seven days a week, 24 hours a day, according to the Web Management ...SRX5308 allows you maximize your product. 1-6 Introduction v1.0, April 20106 ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308 Reference Manual Easy Installation and Management You can install, configure, and operate the SRX5308 within minutes after connecting it to monitor its status and activity. The SRX5308 includes the NETGEAR IPsec VPN...
... Virtual Private Network Consortium (VPNC) to the recommendations of Internet connection, asking you change the system variables for firmware upgrades. • Technical support seven days a week, 24 hours a day, according to the Web Management ...SRX5308 allows you maximize your product. 1-6 Introduction v1.0, April 20106 ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308 Reference Manual Easy Installation and Management You can install, configure, and operate the SRX5308 within minutes after connecting it to monitor its status and activity. The SRX5308 includes the NETGEAR IPsec VPN...
SRX5308 Reference Manual
Page 51
...2010 2-27 Connecting the VPN Firewall to be accessed by others on the DDNS configuration screens.) The VPN firewall firmware includes software that you want to assign to the List of Secondary WAN addresses table. In the Add WAN Secondary Addresses section of Secondary WAN addresses table displays the...Configuring Dynamic DNS Dynamic DNS (DDNS) is an Internet service that you want to add to the WAN port. • Subnet Mask. ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308 Reference Manual Figure 2-18 The List of the screen, enter the following settings: • IP Address.
...2010 2-27 Connecting the VPN Firewall to be accessed by others on the DDNS configuration screens.) The VPN firewall firmware includes software that you want to assign to the List of Secondary WAN addresses table. In the Add WAN Secondary Addresses section of Secondary WAN addresses table displays the...Configuring Dynamic DNS Dynamic DNS (DDNS) is an Internet service that you want to add to the WAN port. • Subnet Mask. ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308 Reference Manual Figure 2-18 The List of the screen, enter the following settings: • IP Address.
SRX5308 Reference Manual
Page 271
... • Revert to the factory default settings. • Upgrade the VPN firewall firmware from this file. Figure 8-6 Network and System Management v1.0, April 2010 8-17 Once the VPN firewall is installed and works correctly, make a backup of the configuration file ... the Settings Backup and Firmware Upgrade screen, select Administration > Settings Backup & Upgrade from the PC, or cleared to use a different firmware version. ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308 Reference Manual Managing the Configuration File The configuration settings of the VPN firewall are stored in a ...
... • Revert to the factory default settings. • Upgrade the VPN firewall firmware from this file. Figure 8-6 Network and System Management v1.0, April 2010 8-17 Once the VPN firewall is installed and works correctly, make a backup of the configuration file ... the Settings Backup and Firmware Upgrade screen, select Administration > Settings Backup & Upgrade from the PC, or cleared to use a different firmware version. ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308 Reference Manual Managing the Configuration File The configuration settings of the VPN firewall are stored in a ...
SRX5308 Reference Manual
Page 272
Back up your backup file or the VPN firewall system software. On the Settings Backup and Firmware Upgrade screen (see Figure 8-6 on page 8-17), next to Save a copy of your browser's download location on .... To restore settings from a different software version can use a backup file to export all VPN firewall settings to a file. ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308 Reference Manual Backing Up Settings The backup feature saves all settings to another VPN firewall that has the same language and management software versions. To back up from file, click Browse...
Back up your backup file or the VPN firewall system software. On the Settings Backup and Firmware Upgrade screen (see Figure 8-6 on page 8-17), next to Save a copy of your browser's download location on .... To restore settings from a different software version can use a backup file to export all VPN firewall settings to a file. ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308 Reference Manual Backing Up Settings The backup feature saves all settings to another VPN firewall that has the same language and management software versions. To back up from file, click Browse...
SRX5308 Reference Manual
Page 273
... you push the hardware reset button or click the software Default button, the VPN firewall settings are lost. ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308 Reference Manual 3. Warning: Once you must manually restart the VPN firewall for about eight seconds until the settings have upgraded the firmware, the new firmware version is 192.168.1.1. An alert message appears indicating the status of the...
... you push the hardware reset button or click the software Default button, the VPN firewall settings are lost. ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308 Reference Manual 3. Warning: Once you must manually restart the VPN firewall for about eight seconds until the settings have upgraded the firmware, the new firmware version is 192.168.1.1. An alert message appears indicating the status of the...
SRX5308 Reference Manual
Page 274
.... • If your browser is complete after upgrading it says "Enter model number", enter and then select SRX5308. Note: In some time, at http://www.netgear.com/support: a. ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308 Reference Manual To download a firmware version and upgrade the VPN firewall: 1. b. Note the following: • If your browser's download location on the download page before doing anything...
.... • If your browser is complete after upgrading it says "Enter model number", enter and then select SRX5308. Note: In some time, at http://www.netgear.com/support: a. ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308 Reference Manual To download a firmware version and upgrade the VPN firewall: 1. b. Note the following: • If your browser's download location on the download page before doing anything...
SRX5308 Reference Manual
Page 286
ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308 Reference Manual • "Viewing and Disconnecting Active Users" on page 9-17. • "Viewing the VPN Tunnel Connection Status" on page 9-18. • "Viewing the VPN Logs" on page 9-19. • "Viewing the Port Triggering Status" on page 9-21. • "Viewing the WAN Port Connection Status" on page 9-21. • "Viewing the Attached Devices and...
ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308 Reference Manual • "Viewing and Disconnecting Active Users" on page 9-17. • "Viewing the VPN Tunnel Connection Status" on page 9-18. • "Viewing the VPN Logs" on page 9-19. • "Viewing the Port Triggering Status" on page 9-21. • "Viewing the WAN Port Connection Status" on page 9-21. • "Viewing the Attached Devices and...
SRX5308 Reference Manual
Page 314
...VPN firewall (see "Configuring Advanced WAN Options" on page 10-9). Click the Default button. 10-8 Troubleshooting and Using Online Support v1.0, April 2010 Restoring the Default Configuration and Password To reset the VPN firewall to blink (about 30 seconds). To display the Settings Backup and Firmware... Panel" on page 1-9) and hold the reset button for the WAN interface that modem. If this information is not visible in the previous section are displayed. ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308 Reference Manual If the path is functioning correctly, replies as the ...
...VPN firewall (see "Configuring Advanced WAN Options" on page 10-9). Click the Default button. 10-8 Troubleshooting and Using Online Support v1.0, April 2010 Restoring the Default Configuration and Password To reset the VPN firewall to blink (about 30 seconds). To display the Settings Backup and Firmware... Panel" on page 1-9) and hold the reset button for the WAN interface that modem. If this information is not visible in the previous section are displayed. ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308 Reference Manual If the path is functioning correctly, replies as the ...
SRX5308 Reference Manual
Page 315
ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308 Reference Manual Figure 10-1 The VPN firewall reboots. The reboot process is 192.168.1.1. Note: After rebooting with factory default settings, the VPN firewall's password is password, and the LAN IP address is complete after several minutes when the Test LED on using them. All firewall rules, VPN policies, LAN/WAN settings, and other settings are erased. During...
ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308 Reference Manual Figure 10-1 The VPN firewall reboots. The reboot process is 192.168.1.1. Note: After rebooting with factory default settings, the VPN firewall's password is password, and the LAN IP address is complete after several minutes when the Test LED on using them. All firewall rules, VPN policies, LAN/WAN settings, and other settings are erased. During...
SRX5308 Reference Manual
Page 374
ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308 Reference Manual subnet mask 3-22 DNS (domain name server) automatic configuration of PCs 1-5 dynamic 2-27 looking up an address 9-27 ModeConfig 5-45 proxy 1-5, 3-5, 3-10, 3-24 queries, auto-rollover 2-18 server IP addresses 3-9 DMZ (demilitarized zone) 3-23 Internet connection 2-15 SSL VPN... 1-4 QoS profiles 4-34 rules inbound. number supported 4-3 order of service) attacks 1-4, 4-7, 4-27, 4-28 downloading firmware 8-20 SSL certificate 2-4 DPD (Dead Peer Detection) 5-27, 5-57 DSCP (Differentiated Services Code Point) 4-36 duplex, half and...
ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308 Reference Manual subnet mask 3-22 DNS (domain name server) automatic configuration of PCs 1-5 dynamic 2-27 looking up an address 9-27 ModeConfig 5-45 proxy 1-5, 3-5, 3-10, 3-24 queries, auto-rollover 2-18 server IP addresses 3-9 DMZ (demilitarized zone) 3-23 Internet connection 2-15 SSL VPN... 1-4 QoS profiles 4-34 rules inbound. number supported 4-3 order of service) attacks 1-4, 4-7, 4-27, 4-28 downloading firmware 8-20 SSL certificate 2-4 DPD (Dead Peer Detection) 5-27, 5-57 DSCP (Differentiated Services Code Point) 4-36 duplex, half and...
SRX5308 Reference Manual
Page 382
...Authentication. See UPnP. See ToS. ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308 Reference Manual tabs, submenu (Web Management Interface) 2-5 tags, meta 6-6 TCP flood, blocking 4-27 time-out 4-30 TCP/IP, network, troubleshooting 10-6 technical specifications A-2 technical support, NETGEAR ii Telnet, management 8-12 Test ...30 tips for administrators, firewall and content filtering 4-2 ToS (Type of Service. upgrading, firmware 8-19 UPnP (Universal Plug and Play), configuring 4-51 user database 5-37 user name, default 2-4 user portal 6-24 users active VPN users 9-17 administrator (admin...
...Authentication. See UPnP. See ToS. ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308 Reference Manual tabs, submenu (Web Management Interface) 2-5 tags, meta 6-6 TCP flood, blocking 4-27 time-out 4-30 TCP/IP, network, troubleshooting 10-6 technical specifications A-2 technical support, NETGEAR ii Telnet, management 8-12 Test ...30 tips for administrators, firewall and content filtering 4-2 ToS (Type of Service. upgrading, firmware 8-19 UPnP (Universal Plug and Play), configuring 4-51 user database 5-37 user name, default 2-4 user portal 6-24 users active VPN users 9-17 administrator (admin...