SRXN3205 Reference Manual
Page 7
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Contents About This Manual Conventions, Formats, and Scope xiii How to Use This Manual xiv How to Print this Manual xiv Revision History ...xv Chapter 1 Introduction Key Firewall Features ...1-1 A Powerful, True Firewall with Content Filtering 1-2 Autosensing Ethernet Connections with Auto Uplink 1-2 Extensive Protocol Support 1-3 Advanced VPN Support for Both IPsec and SSL...
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Contents About This Manual Conventions, Formats, and Scope xiii How to Use This Manual xiv How to Print this Manual xiv Revision History ...xv Chapter 1 Introduction Key Firewall Features ...1-1 A Powerful, True Firewall with Content Filtering 1-2 Autosensing Ethernet Connections with Auto Uplink 1-2 Extensive Protocol Support 1-3 Advanced VPN Support for Both IPsec and SSL...
SRXN3205 Reference Manual
Page 11
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Chapter 8 Managing Users, Authentication, and Certificates Adding Authentication Domains, Groups, and Users 8-1 Creating a Domain 8-1 Creating a Group ...8-3 Creating a New User Account 8-4 Setting User Login Policies 8-5 Managing Certificates ...8-8 Viewing and Loading CA Certificates 8-8 Viewing ...Performance Enabling the Traffic Meter 11-1 Activating Notification of Events and Alerts 11-3 Viewing Firewall Logs 11-6 Viewing Router Configuration and System Status 11-7 Monitoring the WAN Port Status 11-8 Monitoring Attached ...
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Chapter 8 Managing Users, Authentication, and Certificates Adding Authentication Domains, Groups, and Users 8-1 Creating a Domain 8-1 Creating a Group ...8-3 Creating a New User Account 8-4 Setting User Login Policies 8-5 Managing Certificates ...8-8 Viewing and Loading CA Certificates 8-8 Viewing ...Performance Enabling the Traffic Meter 11-1 Activating Notification of Events and Alerts 11-3 Viewing Firewall Logs 11-6 Viewing Router Configuration and System Status 11-7 Monitoring the WAN Port Status 11-8 Monitoring Attached ...
SRXN3205 Reference Manual
Page 17
... WAN port ensure extremely high data transfer speeds. The SRXN3205 also supports wireless bridging. Introduction 1-1 v1.0, October 2008 Moreover, the ProSafe Wireless-N VPN Firewall supports wireless connections over the wider range and more robust connections afforded by 802.11N and 802.11a wireless networks. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Chapter 1 Introduction The SRXN3205 ProSafe Wireless-N VPN Firewall provides Internet connectivity to safeguard your networks along with...
... WAN port ensure extremely high data transfer speeds. The SRXN3205 also supports wireless bridging. Introduction 1-1 v1.0, October 2008 Moreover, the ProSafe Wireless-N VPN Firewall supports wireless connections over the wider range and more robust connections afforded by 802.11N and 802.11a wireless networks. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Chapter 1 Introduction The SRXN3205 ProSafe Wireless-N VPN Firewall provides Internet connectivity to safeguard your networks along with...
SRXN3205 Reference Manual
Page 18
... Ethernet network. You can configure the firewall to email the log to the correct configuration. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual • Advanced IPsec and SSL VPN support • Advanced stateful packet inspection (SPI) firewall with multi-NAT support • Easy...incoming traffic, port scans, attacks, and administrator logins. The SRXN3205 incorporates Auto UplinkTM technology. Autosensing Ethernet Connections with Content Filtering Unlike simple Internet sharing NAT routers, the SRXN3205 is a true firewall, using stateful packet inspection (SPI) to either...
... Ethernet network. You can configure the firewall to email the log to the correct configuration. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual • Advanced IPsec and SSL VPN support • Advanced stateful packet inspection (SPI) firewall with multi-NAT support • Easy...incoming traffic, port scans, attacks, and administrator logins. The SRXN3205 incorporates Auto UplinkTM technology. Autosensing Ethernet Connections with Content Filtering Unlike simple Internet sharing NAT routers, the SRXN3205 is a true firewall, using stateful packet inspection (SPI) to either...
SRXN3205 Reference Manual
Page 19
...2008 When DHCP is enabled and no DNS addresses are specified, the firewall provides its own address as EnterNet or WinPOET on the remote computer. - The total number of the NETGEAR ProSafe VPN Client software (VPN01L) - This technique, known as NAT, allows ... an Internet account using the Dynamic Host Configuration Protocol (DHCP). The firewall allows many networked PCs to other IPsec gateways and clients. - ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Extensive Protocol Support The firewall supports the Transmission Control Protocol/Internet Protocol (TCP/IP) and Routing ...
...2008 When DHCP is enabled and no DNS addresses are specified, the firewall provides its own address as EnterNet or WinPOET on the remote computer. - The total number of the NETGEAR ProSafe VPN Client software (VPN01L) - This technique, known as NAT, allows ... an Internet account using the Dynamic Host Configuration Protocol (DHCP). The firewall allows many networked PCs to other IPsec gateways and clients. - ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Extensive Protocol Support The firewall supports the Transmission Control Protocol/Internet Protocol (TCP/IP) and Routing ...
SRXN3205 Reference Manual
Page 21
...login to the Web Management Interface from a remote location on the Internet. For security, you to easily configure your system meets the following features simplify installation and management tasks: • Browser-Based Management. System Requirements Before installing the SRXN3205, ensure your firewall and Wireless access from an SNMP-compliant system manager. The firewall includes the NETGEAR VPN...Web Management Interface. • Auto Detection of ISP. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Easy Installation and Management You can limit remote management access ...
...login to the Web Management Interface from a remote location on the Internet. For security, you to easily configure your system meets the following features simplify installation and management tasks: • Browser-Based Management. System Requirements Before installing the SRXN3205, ensure your firewall and Wireless access from an SNMP-compliant system manager. The firewall includes the NETGEAR VPN...Web Management Interface. • Auto Detection of ISP. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Easy Installation and Management You can limit remote management access ...
SRXN3205 Reference Manual
Page 25
... higher, or Mozilla Firefox l.x Web browser with the firewall's Web Management Interface for configuring the firewall, SSL VPN users should choose a browser that Java is only required for the SSL VPN portal, not the Web Management Interface. Introduction 1-9 v1.0, October 2008 ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Default IP Address, Login Name, and Password Location Check the label on...
... higher, or Mozilla Firefox l.x Web browser with the firewall's Web Management Interface for configuring the firewall, SSL VPN users should choose a browser that Java is only required for the SSL VPN portal, not the Web Management Interface. Introduction 1-9 v1.0, October 2008 ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Default IP Address, Login Name, and Password Location Check the label on...
SRXN3205 Reference Manual
Page 28
... in to the firewall, follow these steps: 1. Click Login. Figure 2-2 2-2 v1.0, October 2008 Connecting to get an IP address via DHCP. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Logging into the VPN Firewall To connect to the firewall, your computer needs... to be configured to the Internet (WAN) To log in the browser. Open a browser, and enter https://192.168.1.1 in lower case for the User Name and password for the Password. 3. Figure 2-1 2. Enter admin in the address field. The Web Configuration Manager appears, displaying the Router...
... in to the firewall, follow these steps: 1. Click Login. Figure 2-2 2-2 v1.0, October 2008 Connecting to get an IP address via DHCP. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Logging into the VPN Firewall To connect to the firewall, your computer needs... to be configured to the Internet (WAN) To log in the browser. Open a browser, and enter https://192.168.1.1 in lower case for the User Name and password for the Password. 3. Figure 2-1 2. Enter admin in the address field. The Web Configuration Manager appears, displaying the Router...
SRXN3205 Reference Manual
Page 31
...it will prompt you will be prompted to (1) check the physical connection between your firewall's MAC address (For more information, see "Troubleshooting the ISP Connection" on page 12-4). 3. Login (Username, Password), Local IP address, and PPTP Server IP address; All methods ... option arrow at the top right of the WAN port. Login (Username, Password); Internet connection methods Connection Method DHCP (Dynamic IP) PPPoE PPTP Fixed (Static) IP Data Required No data is required. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual b. Static IP address, Subnet, and Gateway IP...
...it will prompt you will be prompted to (1) check the physical connection between your firewall's MAC address (For more information, see "Troubleshooting the ISP Connection" on page 12-4). 3. Login (Username, Password), Local IP address, and PPTP Server IP address; All methods ... option arrow at the top right of the WAN port. Login (Username, Password); Internet connection methods Connection Method DHCP (Dynamic IP) PPPoE PPTP Fixed (Static) IP Data Required No data is required. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual b. Static IP address, Subnet, and Gateway IP...
SRXN3205 Reference Manual
Page 32
...8226; If your ISP requires an initial login to the Internet through the WAN port. 4. Click Test to the NETGEAR Web site. If a successful connection is not required, click No and ignore the Login and Password fields. The firewall will need to obtain configuration parameters from your... in order to .......... 5. Select Network Configuration> WAN ISP Settings and enter the following this is the default). • If a login is made, NETGEAR's Web site appears. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual The WAN Status window should show a valid IP address and gateway.
...8226; If your ISP requires an initial login to the Internet through the WAN port. 4. Click Test to the NETGEAR Web site. If a successful connection is not required, click No and ignore the Login and Password fields. The firewall will need to obtain configuration parameters from your... in order to .......... 5. Select Network Configuration> WAN ISP Settings and enter the following this is the default). • If a login is made, NETGEAR's Web site appears. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual The WAN Status window should show a valid IP address and gateway.
SRXN3205 Reference Manual
Page 33
... other ISP that uses PPTP as WinPoET or Enternet, then your ISP will require an initial login.) 5. Name of your ISP's domain or your domain name if your ISP is PPPoE. To logout after the ...connection is selected, as a login protocol: a. If your ISP has assigned one. Figure 2-8 b. Select Keep Connected, to the Internet (WAN) 2-7...In the ISP Type options, select the type of minutes to wait before disconnecting. 6. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual 4. Select Other (PPPoE).
... other ISP that uses PPTP as WinPoET or Enternet, then your ISP will require an initial login.) 5. Name of your ISP's domain or your domain name if your ISP is PPPoE. To logout after the ...connection is selected, as a login protocol: a. If your ISP has assigned one. Figure 2-8 b. Select Keep Connected, to the Internet (WAN) 2-7...In the ISP Type options, select the type of minutes to wait before disconnecting. 6. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual 4. Select Other (PPPoE).
SRXN3205 Reference Manual
Page 34
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual a. Enter the Static IP address assigned to you, that identifies the firewall to your ISP charges you have logged in. • My IP Address. Enter the valid account name for a period of time, click Idle Time and enter the number of the local BigPond Login...8. Your domain name or workgroup name assigned by the ISP to wait before disconnecting in your ISP is selected???. 9. Configure the Login Server and Idle Timeout fields. IP address assigned by your ISP, or your full email address here. • Domain Name. ...
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual a. Enter the Static IP address assigned to you, that identifies the firewall to your ISP charges you have logged in. • My IP Address. Enter the valid account name for a period of time, click Idle Time and enter the number of the local BigPond Login...8. Your domain name or workgroup name assigned by the ISP to wait before disconnecting in your ISP is selected???. 9. Configure the Login Server and Idle Timeout fields. IP address assigned by your ISP, or your full email address here. • Domain Name. ...
SRXN3205 Reference Manual
Page 101
... attack information, and other general information based on the settings you input on page 11-3. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual - E-Mail Notifications of Event Logs and Alerts The Firewall Logs can further refine your LAN; IP Address: List the IP address of Events and ...: 1. Port (Internal Port): Indicates if any external ports are opened by the UPnP device. - hacker probes and login attempts; and other information to the VPN firewall. - Int. Port (External Port): Indicates if any internal ports are opened by the device to connect to a...
... attack information, and other general information based on the settings you input on page 11-3. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual - E-Mail Notifications of Event Logs and Alerts The Firewall Logs can further refine your LAN; IP Address: List the IP address of Events and ...: 1. Port (Internal Port): Indicates if any external ports are opened by the UPnP device. - hacker probes and login attempts; and other information to the VPN firewall. - Int. Port (External Port): Indicates if any internal ports are opened by the device to connect to a...
SRXN3205 Reference Manual
Page 130
... connected directly to the corporate network, subject to which their login account belongs. Create one or both of SSL VPN users. For example, Port Forwarding: - When remote users log in turn determines the network resources to which in to the corporate network. - ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual browser provides authentication and encryption, establishing a secure connection...
... connected directly to the corporate network, subject to which their login account belongs. Create one or both of SSL VPN users. For example, Port Forwarding: - When remote users log in turn determines the network resources to which in to the corporate network. - ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual browser provides authentication and encryption, establishing a secure connection...
SRXN3205 Reference Manual
Page 133
...'s web browser window. Note that will be part of the path of the login page message is case sensitive. In the Portal Site Title field, enter a title that unlike most other types of the menu, configure the following entries: a. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Figure 7-2 3. To display a banner message to users before the first...
...'s web browser window. Note that will be part of the path of the login page message is case sensitive. In the Portal Site Title field, enter a title that unlike most other types of the menu, configure the following entries: a. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Figure 7-2 3. To display a banner message to users before the first...
SRXN3205 Reference Manual
Page 134
...stored in the orange header bar. d. Note: NETGEAR strongly recommends enabling HTTP meta tags for cache control checkbox to apply HTTP meta tag cache control directives to this Portal Layout. e. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual on login page checkbox to show the banner title and banner... message text on the Login screen as shown below Figure 7-3 As shown in the figure, the ...
...stored in the orange header bar. d. Note: NETGEAR strongly recommends enabling HTTP meta tags for cache control checkbox to apply HTTP meta tag cache control directives to this Portal Layout. e. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual on login page checkbox to show the banner title and banner... message text on the Login screen as shown below Figure 7-3 As shown in the figure, the ...
SRXN3205 Reference Manual
Page 135
...access policies. Provides full network connectivity. • Port Forwarding. The "Operation succeeded" message appears at the top of Layouts table. The login window presented to specific defined network services. 5. When you create a group, you wish users to remote users. Therefore, you must ... by the Port Forwarding client on page 8-1. You must specify a group. Click Apply to access the network. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual 4. To configure Domains, Groups, and Users, see "Adding Authentication Domains, Groups, and Users" on the user's PC.
...access policies. Provides full network connectivity. • Port Forwarding. The "Operation succeeded" message appears at the top of Layouts table. The login window presented to specific defined network services. 5. When you create a group, you wish users to remote users. Therefore, you must ... by the Port Forwarding client on page 8-1. You must specify a group. Click Apply to access the network. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual 4. To configure Domains, Groups, and Users, see "Adding Authentication Domains, Groups, and Users" on the user's PC.
SRXN3205 Reference Manual
Page 147
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Chapter 8 Managing Users, Authentication, and Certificates This chapter contains the following sections: • "Adding Authentication Domains, Groups, and Users" • "Managing Certificates" Adding Authentication Domains, Groups, and Users You must create name and password accounts for associated users. Note: IPsec VPN users will connect to access the firewall or the VPN-protected...
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Chapter 8 Managing Users, Authentication, and Certificates This chapter contains the following sections: • "Adding Authentication Domains, Groups, and Users" • "Managing Certificates" Adding Authentication Domains, Groups, and Users You must create name and password accounts for associated users. Note: IPsec VPN users will connect to access the firewall or the VPN-protected...
SRXN3205 Reference Manual
Page 151
... the Web Configuration Manager. 4. To prohibit this user from logging in from the WAN interface, select the Deny Login from logging in from WAN Interface is the period at which an idle user will be automatically logged out of ... WAN Interface checkbox. Click Apply to the firewall, select the Disable Login checkbox. 3. Setting User Login Policies You can also require or prohibit logging in to save and apply your settings. The Login Policies screen displays: Figure 8-6 2. To configure user login policies: 1. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual e.
... the Web Configuration Manager. 4. To prohibit this user from logging in from the WAN interface, select the Deny Login from logging in from WAN Interface is the period at which an idle user will be automatically logged out of ... WAN Interface checkbox. Click Apply to the firewall, select the Disable Login checkbox. 3. Setting User Login Policies You can also require or prohibit logging in to save and apply your settings. The Login Policies screen displays: Figure 8-6 2. To configure user login policies: 1. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual e.
SRXN3205 Reference Manual
Page 152
In the Defined Addresses Status section, select: • the Deny Login from Defined Addresses to deny logging in from the IP addresses that you will specify. 3. Repeat these steps to the Defined Addresses table. 7. To specify a... • the Allow Login only from Defined Addresses to allow logging in the Network Address/IP address field. 5. Enter the network address and netmask length in based on IP address: 1. down menu and enter the IP address in from the Source Address Type pull- Click Apply. 4. Figure 8-7 2. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual To restrict...
In the Defined Addresses Status section, select: • the Deny Login from Defined Addresses to deny logging in from the IP addresses that you will specify. 3. Repeat these steps to the Defined Addresses table. 7. To specify a... • the Allow Login only from Defined Addresses to allow logging in the Network Address/IP address field. 5. Enter the network address and netmask length in based on IP address: 1. down menu and enter the IP address in from the Source Address Type pull- Click Apply. 4. Figure 8-7 2. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual To restrict...