SRXN3205 Reference Manual
Page 7
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Contents About This Manual Conventions, Formats, and Scope xiii How to Use This Manual xiv How to Print this Manual xiv Revision History ...xv Chapter 1 Introduction Key Firewall Features ...1-1 A Powerful, True Firewall with Content Filtering 1-2 Autosensing Ethernet Connections with Auto Uplink 1-2 Extensive Protocol Support 1-3 Advanced VPN Support for Both IPsec and SSL 1-3 Wireless Networking Features 1-4 Easy Installation...
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Contents About This Manual Conventions, Formats, and Scope xiii How to Use This Manual xiv How to Print this Manual xiv Revision History ...xv Chapter 1 Introduction Key Firewall Features ...1-1 A Powerful, True Firewall with Content Filtering 1-2 Autosensing Ethernet Connections with Auto Uplink 1-2 Extensive Protocol Support 1-3 Advanced VPN Support for Both IPsec and SSL 1-3 Wireless Networking Features 1-4 Easy Installation...
SRXN3205 Reference Manual
Page 8
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Configuring the WAN Mode 2-10 Configuring Dynamic DNS 2-11 Configuring the Advanced WAN Options (Optional 2-12 Additional WAN Related Configuration 2-14 Chapter 3 LAN Configuration Configuring the LAN Setup Options 3-1 Using the VPN Firewall as a DHCP Server 3-3 Configuring DHCP Address Reservation 3-4 Managing Groups and Hosts (LAN Groups 3-4 Viewing the LAN Groups Database 3-5 Adding...
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Configuring the WAN Mode 2-10 Configuring Dynamic DNS 2-11 Configuring the Advanced WAN Options (Optional 2-12 Additional WAN Related Configuration 2-14 Chapter 3 LAN Configuration Configuring the LAN Setup Options 3-1 Using the VPN Firewall as a DHCP Server 3-3 Configuring DHCP Address Reservation 3-4 Managing Groups and Hosts (LAN Groups 3-4 Viewing the LAN Groups Database 3-5 Adding...
SRXN3205 Reference Manual
Page 9
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Restricting Wireless Access by MAC Address 4-18 Chapter 5 Firewall Security and Content Filtering About Firewall Security and Content Filtering 5-1 Using Rules & Services to Block or Allow Traffic 5-2 Services-Based Rules 5-2 Viewing the Firewall Rules 5-7 Order of Precedence for Rules 5-7 Setting the Outbound Policy 5-7 Creating a LAN WAN Outbound Services Rule 5-8 Creating a LAN WAN Inbound Services...
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Restricting Wireless Access by MAC Address 4-18 Chapter 5 Firewall Security and Content Filtering About Firewall Security and Content Filtering 5-1 Using Rules & Services to Block or Allow Traffic 5-2 Services-Based Rules 5-2 Viewing the Firewall Rules 5-7 Order of Precedence for Rules 5-7 Setting the Outbound Policy 5-7 Creating a LAN WAN Outbound Services Rule 5-8 Creating a LAN WAN Inbound Services...
SRXN3205 Reference Manual
Page 10
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Testing the Connection 6-11 Managing VPN Tunnel Policies 6-11 About IKE ...6-12 Managing IKE Policies 6-12 About the IKE Policy Table 6-13 VPN Policy ...6-15 VPN Tunnel Connection Status 6-16 Manually Assigning IP Addresses to Remote Users (ModeConfig 6-17 Mode Config Operation 6-17 Configuring the VPN Firewall 6-17 Configuring the ProSafe VPN Client for ModeConfig 6-20 Extended Authentication...
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Testing the Connection 6-11 Managing VPN Tunnel Policies 6-11 About IKE ...6-12 Managing IKE Policies 6-12 About the IKE Policy Table 6-13 VPN Policy ...6-15 VPN Tunnel Connection Status 6-16 Manually Assigning IP Addresses to Remote Users (ModeConfig 6-17 Mode Config Operation 6-17 Configuring the VPN Firewall 6-17 Configuring the ProSafe VPN Client for ModeConfig 6-20 Extended Authentication...
SRXN3205 Reference Manual
Page 11
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Chapter 8 Managing Users, Authentication, and Certificates Adding Authentication Domains, Groups, and Users 8-1 Creating a Domain 8-1 Creating a Group ...8-3 Creating a New User Account 8-4 Setting User ...Time Zone Settings 9-15 Chapter 11 Monitoring System Performance Enabling the Traffic Meter 11-1 Activating Notification of Events and Alerts 11-3 Viewing Firewall Logs 11-6 Viewing Router Configuration and System Status 11-7 Monitoring the WAN Port Status 11-8 Monitoring Attached Devices 11-9 Reviewing the DHCP Log 11-10 ...
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Chapter 8 Managing Users, Authentication, and Certificates Adding Authentication Domains, Groups, and Users 8-1 Creating a Domain 8-1 Creating a Group ...8-3 Creating a New User Account 8-4 Setting User ...Time Zone Settings 9-15 Chapter 11 Monitoring System Performance Enabling the Traffic Meter 11-1 Activating Notification of Events and Alerts 11-3 Viewing Firewall Logs 11-6 Viewing Router Configuration and System Status 11-7 Monitoring the WAN Port Status 11-8 Monitoring Attached Devices 11-9 Reviewing the DHCP Log 11-10 ...
SRXN3205 Reference Manual
Page 12
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Viewing Port Triggering Status 11-12 Monitoring VPN Tunnel Connection Status 11-13 Reviewing the VPN Logs 11-14 Chapter 12 Troubleshooting Basic Functions ...12-1 Power LED Not On 12-2 LEDs Never Turn Off 12-2 LAN ...Web Configuration Interface 12-2 Troubleshooting the ISP Connection 12-4 Troubleshooting a TCP/IP Network Using a Ping Utility 12-5 Testing the LAN Path to Your VPN Firewall 12-5 Testing the Path from Your PC to a Remote Device 12-6 Restoring the Default Configuration and Password 12-7 Problems with Date and Time ...
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Viewing Port Triggering Status 11-12 Monitoring VPN Tunnel Connection Status 11-13 Reviewing the VPN Logs 11-14 Chapter 12 Troubleshooting Basic Functions ...12-1 Power LED Not On 12-2 LEDs Never Turn Off 12-2 LAN ...Web Configuration Interface 12-2 Troubleshooting the ISP Connection 12-4 Troubleshooting a TCP/IP Network Using a Ping Utility 12-5 Testing the LAN Path to Your VPN Firewall 12-5 Testing the Path from Your PC to a Remote Device 12-6 Restoring the Default Configuration and Password 12-7 Problems with Date and Time ...
SRXN3205 Reference Manual
Page 13
... the following paragraphs: • Typographical Conventions. Tip: This format is used to configure and troubleshoot a ProSafe Wireless-N VPN Firewall. xiii v1.0, October 2008 ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual About This Manual The NETGEAR® ProSafe™ Wireless-N VPN FirewallReference Manual describes how to highlight information of importance or special interest. Conventions, Formats, and Scope The conventions, formats, and scope of note may result in...
... the following paragraphs: • Typographical Conventions. Tip: This format is used to configure and troubleshoot a ProSafe Wireless-N VPN Firewall. xiii v1.0, October 2008 ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual About This Manual The NETGEAR® ProSafe™ Wireless-N VPN FirewallReference Manual describes how to highlight information of importance or special interest. Conventions, Formats, and Scope The conventions, formats, and scope of note may result in...
SRXN3205 Reference Manual
Page 14
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Danger: This is written for the firewall according to these specifications: Product Manual Publication Date ProSafe Wireless-N VPN Firewall October 2008 For more information about network, Internet, firewall, and VPN technologies, see the links to the NETGEAR website in Appendix B, "Related Documents.". online knowledge base for browsing forwards or backwards through the manual one of the full manual and individual chapters...
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Danger: This is written for the firewall according to these specifications: Product Manual Publication Date ProSafe Wireless-N VPN Firewall October 2008 For more information about network, Internet, firewall, and VPN technologies, see the links to the NETGEAR website in Appendix B, "Related Documents.". online knowledge base for browsing forwards or backwards through the manual one of the full manual and individual chapters...
SRXN3205 Reference Manual
Page 15
... to view and print PDF files. The PDF version of paper, you can save paper and printer ink by selecting this feature. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual • Printing from PDF. Tip: If your printer supports printing two pages on the Adobe Web site at http://www.adobe.com...your browser window. - Use the Complete PDF Manual link at the top left of any page. • Click the Complete PDF Manual link at the top left of any page in order to print. Revision History Manual Part Number Manual Version Number Publication Date 202-10416-01 1.0 October...
... to view and print PDF files. The PDF version of paper, you can save paper and printer ink by selecting this feature. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual • Printing from PDF. Tip: If your printer supports printing two pages on the Adobe Web site at http://www.adobe.com...your browser window. - Use the Complete PDF Manual link at the top left of any page. • Click the Complete PDF Manual link at the top left of any page in order to print. Revision History Manual Part Number Manual Version Number Publication Date 202-10416-01 1.0 October...
SRXN3205 Reference Manual
Page 16
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual xvi v1.0, October 2008
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual xvi v1.0, October 2008
SRXN3205 Reference Manual
Page 17
... and all of the wireless clients. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Chapter 1 Introduction The SRXN3205 ProSafe Wireless-N VPN Firewall provides Internet connectivity to safeguard your networks along with a powerful and flexible firewall to your Internet connection. • Built-in four-port 10/100/1000 Mbps Gigabit Ethernet LAN switch for secure wired and wireless connections. Moreover, the ProSafe Wireless-N VPN Firewall supports wireless connections over the wider...
... and all of the wireless clients. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Chapter 1 Introduction The SRXN3205 ProSafe Wireless-N VPN Firewall provides Internet connectivity to safeguard your networks along with a powerful and flexible firewall to your Internet connection. • Built-in four-port 10/100/1000 Mbps Gigabit Ethernet LAN switch for secure wired and wireless connections. Moreover, the ProSafe Wireless-N VPN Firewall supports wireless connections over the wider...
SRXN3205 Reference Manual
Page 18
...access objectionable Internet sites. • Permits scheduling of firewall policies by screening for low current draw A Powerful, True Firewall with Content Filtering Unlike simple Internet sharing NAT routers, the SRXN3205 is a true firewall, using stateful packet inspection (SPI) to worry about ... your LAN. • Blocks access from your LAN to your PCs. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual • Advanced IPsec and SSL VPN support • Advanced stateful packet inspection (SPI) firewall with multi-NAT support • Easy, web-based setup for installation and...
...access objectionable Internet sites. • Permits scheduling of firewall policies by screening for low current draw A Powerful, True Firewall with Content Filtering Unlike simple Internet sharing NAT routers, the SRXN3205 is a true firewall, using stateful packet inspection (SPI) to worry about ... your LAN. • Blocks access from your LAN to your PCs. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual • Advanced IPsec and SSL VPN support • Advanced stateful packet inspection (SPI) firewall with multi-NAT support • Easy, web-based setup for installation and...
SRXN3205 Reference Manual
Page 19
... of an inexpensive single-user ISP account. • Automatic Configuration of the NETGEAR ProSafe VPN Client software (VPN01L) - IPsec VPN with the single-user license of (Wired & Wireless) PCs by telecommuters requires the installation of PCs on the remote computer. -... connection by NAT. Remote access by DHCP. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Extensive Protocol Support The firewall supports the Transmission Control Protocol/Internet Protocol (TCP/IP) and Routing Information Protocol (RIP). The firewall allows many networked PCs to share an Internet account...
... of an inexpensive single-user ISP account. • Automatic Configuration of the NETGEAR ProSafe VPN Client software (VPN01L) - IPsec VPN with the single-user license of (Wired & Wireless) PCs by telecommuters requires the installation of PCs on the remote computer. -... connection by NAT. Remote access by DHCP. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Extensive Protocol Support The firewall supports the Transmission Control Protocol/Internet Protocol (TCP/IP) and Routing Information Protocol (RIP). The firewall allows many networked PCs to share an Internet account...
SRXN3205 Reference Manual
Page 20
... based, platform-independent, remote access through a number of user repositories. - Provides granular access to selected corporate resources without requiring a pre-installed VPN client on their computers. - ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual • SSL VPN provides remote access for mobile users to corporate resources based upon user type or group membership. - The Access Control MAC address filtering...
... based, platform-independent, remote access through a number of user repositories. - Provides granular access to selected corporate resources without requiring a pre-installed VPN client on their computers. - ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual • SSL VPN provides remote access for mobile users to corporate resources based upon user type or group membership. - The Access Control MAC address filtering...
SRXN3205 Reference Manual
Page 21
... Internet connection, asking you to let you change the system variables for your firewall and Wireless access from almost any type of ISP. Browser-based configuration allows you only for the information required for MIB2. • Diagnostic Functions. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Easy Installation and Management You can limit remote management access to the Web...
... Internet connection, asking you to let you change the system variables for your firewall and Wireless access from almost any type of ISP. Browser-based configuration allows you only for the information required for MIB2. • Diagnostic Functions. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Easy Installation and Management You can limit remote management access to the Web...
SRXN3205 Reference Manual
Page 22
... the parts are incorrect, missing, or damaged, contact your NETGEAR dealer. ProSafe VPN Client Software - Keep the carton, including the original packing materials, in case you need to return the firewall for repair. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Package Contents The product package should contain the following items: • ProSafe Wireless-N VPN Firewall • Rubber feet (4) with adhesive backing • One AC...
... the parts are incorrect, missing, or damaged, contact your NETGEAR dealer. ProSafe VPN Client Software - Keep the carton, including the original packing materials, in case you need to return the firewall for repair. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Package Contents The product package should contain the following items: • ProSafe Wireless-N VPN Firewall • Rubber feet (4) with adhesive backing • One AC...
SRXN3205 Reference Manual
Page 23
... settings and restores the default password. 3 LAN Ports LAN connections Four Auto MDI/MDIX, Gigabit Ethernet ports. Amber = 100M; Wireless data traffic in for 15 seconds (until the TEST light flashes). Left LED (status): On = Link; Blink = ACT Right...Green) WLAN 802.11n/a (5GHz) mode is supplied to the firewall. Wireless data traffic in 2.4 GHz modes Reset Reboot 2 button (Press with a sharp Factory Defaults object) Press once to the firewall. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Table 1-1. Power is not supplied to reboot the unit. The ...
... settings and restores the default password. 3 LAN Ports LAN connections Four Auto MDI/MDIX, Gigabit Ethernet ports. Amber = 100M; Wireless data traffic in for 15 seconds (until the TEST light flashes). Left LED (status): On = Link; Blink = ACT Right...Green) WLAN 802.11n/a (5GHz) mode is supplied to the firewall. Wireless data traffic in 2.4 GHz modes Reset Reboot 2 button (Press with a sharp Factory Defaults object) Press once to the firewall. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Table 1-1. Power is not supplied to reboot the unit. The ...
SRXN3205 Reference Manual
Page 24
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Rear Panel Features The rear panel of the ProSafe Wireless-N VPN Firewall is shown below. 1 2 Figure 1-2 New Photo 1. The three antennas can be positioned horizontally or vertically for the detachable antennas (two dipole and one patch). Detachable (SMA) Antennas: The SRXN3205 provides three SMA connectors for the best coverage. 2. DC Power Jack: This jack connects...
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Rear Panel Features The rear panel of the ProSafe Wireless-N VPN Firewall is shown below. 1 2 Figure 1-2 New Photo 1. The three antennas can be positioned horizontally or vertically for the detachable antennas (two dipole and one patch). Detachable (SMA) Antennas: The SRXN3205 provides three SMA connectors for the best coverage. 2. DC Power Jack: This jack connects...
SRXN3205 Reference Manual
Page 25
...Password Figure 1-3 Qualified Web Browsers To configure the ProSafe Wireless-N VPN Firewall, an administrator must use with JavaScript, cookies, and SSL enabled. Introduction 1-9 v1.0, October 2008 ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Default IP Address, Login Name, and Password Location ...Check the label on the bottom of the SRXN3205's enclosure if you need a reminder of applications. Although...
...Password Figure 1-3 Qualified Web Browsers To configure the ProSafe Wireless-N VPN Firewall, an administrator must use with JavaScript, cookies, and SSL enabled. Introduction 1-9 v1.0, October 2008 ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Default IP Address, Login Name, and Password Location ...Check the label on the bottom of the SRXN3205's enclosure if you need a reminder of applications. Although...
SRXN3205 Reference Manual
Page 26
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual 1-10 v1.0, October 2008 Introduction
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual 1-10 v1.0, October 2008 Introduction