SRXN3205 Reference Manual
Page 2
... following EU Council Directives: 89/336/EEC and LVD 73/23/EEC. EU Regulatory Compliance Statement The ProSafe Wireless-N VPN Firewall is no guarantee that the ProSafe Wireless-N VPN Firewall has been suppressed in a particular installation. Please refer to part 15 of NETGEAR, Inc. Federal Communications Commission (FCC) Compliance Notice: Radio Frequency Notice This equipment has been tested and...
... following EU Council Directives: 89/336/EEC and LVD 73/23/EEC. EU Regulatory Compliance Statement The ProSafe Wireless-N VPN Firewall is no guarantee that the ProSafe Wireless-N VPN Firewall has been suppressed in a particular installation. Please refer to part 15 of NETGEAR, Inc. Federal Communications Commission (FCC) Compliance Notice: Radio Frequency Notice This equipment has been tested and...
SRXN3205 Reference Manual
Page 5
... format) Product and Publication Details Model Number: Publication Date: Product Family: Product Name: Home or Business Product: Language: Publication Part Number: Publication Version Number SRXN3205 October 2008 VPN Firewall ProSafe Wireless-N VPN Firewall Business English 202-10416-01 1.0 v 1.0, October 2008 This software is provided 'as such, and must not claim that any documentation, advertising materials, and other...
... format) Product and Publication Details Model Number: Publication Date: Product Family: Product Name: Home or Business Product: Language: Publication Part Number: Publication Version Number SRXN3205 October 2008 VPN Firewall ProSafe Wireless-N VPN Firewall Business English 202-10416-01 1.0 v 1.0, October 2008 This software is provided 'as such, and must not claim that any documentation, advertising materials, and other...
SRXN3205 Reference Manual
Page 7
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Contents About This Manual Conventions, Formats, and Scope xiii How to Use This Manual xiv How to Print this Manual xiv Revision History ...xv Chapter 1 Introduction Key Firewall Features ...1-1 A Powerful, True Firewall with Content Filtering 1-2 Autosensing Ethernet Connections with Auto Uplink 1-2 Extensive Protocol Support 1-3 Advanced VPN Support for Both IPsec and SSL...
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Contents About This Manual Conventions, Formats, and Scope xiii How to Use This Manual xiv How to Print this Manual xiv Revision History ...xv Chapter 1 Introduction Key Firewall Features ...1-1 A Powerful, True Firewall with Content Filtering 1-2 Autosensing Ethernet Connections with Auto Uplink 1-2 Extensive Protocol Support 1-3 Advanced VPN Support for Both IPsec and SSL...
SRXN3205 Reference Manual
Page 8
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Configuring the WAN Mode 2-10 Configuring Dynamic DNS 2-11 Configuring the Advanced WAN Options (Optional 2-12 Additional WAN Related Configuration 2-14 Chapter 3 LAN Configuration Configuring the LAN Setup Options 3-1 Using the VPN Firewall as a DHCP Server 3-3 Configuring DHCP Address Reservation 3-4 Managing Groups and Hosts (LAN Groups 3-4 Viewing the LAN Groups Database...
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Configuring the WAN Mode 2-10 Configuring Dynamic DNS 2-11 Configuring the Advanced WAN Options (Optional 2-12 Additional WAN Related Configuration 2-14 Chapter 3 LAN Configuration Configuring the LAN Setup Options 3-1 Using the VPN Firewall as a DHCP Server 3-3 Configuring DHCP Address Reservation 3-4 Managing Groups and Hosts (LAN Groups 3-4 Viewing the LAN Groups Database...
SRXN3205 Reference Manual
Page 9
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Restricting Wireless Access by MAC Address 4-18 Chapter 5 Firewall Security and Content Filtering About Firewall Security and Content Filtering 5-1 Using Rules & Services to Block or Allow Traffic 5-2 Services-Based Rules 5-2 Viewing the Firewall Rules 5-7 Order of Precedence for Rules 5-7 Setting the Outbound Policy 5-7 Creating a LAN WAN Outbound Services Rule 5-8 Creating a LAN WAN Inbound...
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Restricting Wireless Access by MAC Address 4-18 Chapter 5 Firewall Security and Content Filtering About Firewall Security and Content Filtering 5-1 Using Rules & Services to Block or Allow Traffic 5-2 Services-Based Rules 5-2 Viewing the Firewall Rules 5-7 Order of Precedence for Rules 5-7 Setting the Outbound Policy 5-7 Creating a LAN WAN Outbound Services Rule 5-8 Creating a LAN WAN Inbound...
SRXN3205 Reference Manual
Page 10
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Testing the Connection 6-11 Managing VPN Tunnel Policies 6-11 About IKE ...6-12 Managing IKE Policies 6-12 About the IKE Policy Table 6-13 VPN Policy ...6-15 VPN Tunnel Connection Status 6-16 Manually Assigning IP Addresses to Remote Users (ModeConfig 6-17 Mode Config Operation 6-17 Configuring the VPN Firewall 6-17 Configuring the ProSafe VPN... Client for ModeConfig 6-20 Extended Authentication (XAUTH) Configuration 6-22 Configuring XAUTH for VPN Clients 6-23 ...
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Testing the Connection 6-11 Managing VPN Tunnel Policies 6-11 About IKE ...6-12 Managing IKE Policies 6-12 About the IKE Policy Table 6-13 VPN Policy ...6-15 VPN Tunnel Connection Status 6-16 Manually Assigning IP Addresses to Remote Users (ModeConfig 6-17 Mode Config Operation 6-17 Configuring the VPN Firewall 6-17 Configuring the ProSafe VPN... Client for ModeConfig 6-20 Extended Authentication (XAUTH) Configuration 6-22 Configuring XAUTH for VPN Clients 6-23 ...
SRXN3205 Reference Manual
Page 11
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Chapter 8 Managing Users, Authentication, and Certificates Adding Authentication Domains, Groups, and Users 8-1 Creating a Domain 8-1 Creating a Group ...8-3 Creating a New User Account 8-4 ... Time Zone Settings 9-15 Chapter 11 Monitoring System Performance Enabling the Traffic Meter 11-1 Activating Notification of Events and Alerts 11-3 Viewing Firewall Logs 11-6 Viewing Router Configuration and System Status 11-7 Monitoring the WAN Port Status 11-8 Monitoring Attached Devices 11-9 Reviewing the DHCP Log 11-10 Monitoring...
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Chapter 8 Managing Users, Authentication, and Certificates Adding Authentication Domains, Groups, and Users 8-1 Creating a Domain 8-1 Creating a Group ...8-3 Creating a New User Account 8-4 ... Time Zone Settings 9-15 Chapter 11 Monitoring System Performance Enabling the Traffic Meter 11-1 Activating Notification of Events and Alerts 11-3 Viewing Firewall Logs 11-6 Viewing Router Configuration and System Status 11-7 Monitoring the WAN Port Status 11-8 Monitoring Attached Devices 11-9 Reviewing the DHCP Log 11-10 Monitoring...
SRXN3205 Reference Manual
Page 12
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Viewing Port Triggering Status 11-12 Monitoring VPN Tunnel Connection Status 11-13 Reviewing the VPN Logs 11-14 Chapter 12 Troubleshooting Basic Functions ...12-1 Power LED Not On 12-2 LEDs Never Turn Off 12-2 LAN ...Web Configuration Interface 12-2 Troubleshooting the ISP Connection 12-4 Troubleshooting a TCP/IP Network Using a Ping Utility 12-5 Testing the LAN Path to Your VPN Firewall 12-5 Testing the Path from Your PC to a Remote Device 12-6 Restoring the Default Configuration and Password 12-7 Problems with Date and Time ...
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Viewing Port Triggering Status 11-12 Monitoring VPN Tunnel Connection Status 11-13 Reviewing the VPN Logs 11-14 Chapter 12 Troubleshooting Basic Functions ...12-1 Power LED Not On 12-2 LEDs Never Turn Off 12-2 LAN ...Web Configuration Interface 12-2 Troubleshooting the ISP Connection 12-4 Troubleshooting a TCP/IP Network Using a Ping Utility 12-5 Testing the LAN Path to Your VPN Firewall 12-5 Testing the Path from Your PC to a Remote Device 12-6 Restoring the Default Configuration and Password 12-7 Problems with Date and Time ...
SRXN3205 Reference Manual
Page 13
...manual uses the following formats to highlight special messages: Note: This format is used to configure and troubleshoot a ProSafe Wireless-N VPN Firewall. xiii v1.0, October 2008 This manual uses the following typographical conventions: Italic Bold Fixed italic Emphasis, books, CDs... is intended for readers with intermediate computer and networking skills. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual About This Manual The NETGEAR® ProSafe™ Wireless-N VPN FirewallReference Manual describes how to highlight a procedure that will save time or resources.
...manual uses the following formats to highlight special messages: Note: This format is used to configure and troubleshoot a ProSafe Wireless-N VPN Firewall. xiii v1.0, October 2008 This manual uses the following typographical conventions: Italic Bold Fixed italic Emphasis, books, CDs... is intended for readers with intermediate computer and networking skills. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual About This Manual The NETGEAR® ProSafe™ Wireless-N VPN FirewallReference Manual describes how to highlight a procedure that will save time or resources.
SRXN3205 Reference Manual
Page 14
... Manual The HTML version of contents or index to navigate directly to where the topic is a safety warning. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Danger: This is described in the manual. •A button to access the full NETGEAR, Inc. Note: Product updates are available on a link in personal injury or death. • Scope. Double-click...
... Manual The HTML version of contents or index to navigate directly to where the topic is a safety warning. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Danger: This is described in the manual. •A button to access the full NETGEAR, Inc. Note: Product updates are available on a link in personal injury or death. • Scope. Double-click...
SRXN3205 Reference Manual
Page 15
...-10416-01 1.0 October 2008 Description First publication xv v1.0, October 2008 The PDF version of your browser window. - Printing a PDF version of your browser window. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual • Printing from PDF. Tip: If your printer supports printing two pages on the Adobe Web site at the top left of the...
...-10416-01 1.0 October 2008 Description First publication xv v1.0, October 2008 The PDF version of your browser window. - Printing a PDF version of your browser window. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual • Printing from PDF. Tip: If your printer supports printing two pages on the Adobe Web site at the top left of the...
SRXN3205 Reference Manual
Page 16
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual xvi v1.0, October 2008
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual xvi v1.0, October 2008
SRXN3205 Reference Manual
Page 17
... extremely fast data transfer between local network resources and all of the wireless clients. Introduction 1-1 v1.0, October 2008 The SRXN3205 also supports wireless bridging. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Chapter 1 Introduction The SRXN3205 ProSafe Wireless-N VPN Firewall provides Internet connectivity to your networks along with a powerful and flexible firewall to safeguard your local Ethernet and wireless networks via a broadband cable or DSL modem.
... extremely fast data transfer between local network resources and all of the wireless clients. Introduction 1-1 v1.0, October 2008 The SRXN3205 also supports wireless bridging. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Chapter 1 Introduction The SRXN3205 ProSafe Wireless-N VPN Firewall provides Internet connectivity to your networks along with a powerful and flexible firewall to safeguard your local Ethernet and wireless networks via a broadband cable or DSL modem.
SRXN3205 Reference Manual
Page 18
...routers, the SRXN3205 is a true firewall, using stateful packet inspection (SPI) to worry about crossover cables, as off-limits. • Prevents objectionable content from your PCs. Each Ethernet port will accommodate either a 10 Mbps standard Ethernet network, a 100 Mbps Fast Ethernet network, or a 1000 Mbps Gigabit Ethernet network. ProSafe Wireless-N VPN Firewall SRXN3205... Reference Manual • Advanced IPsec and SSL VPN support • Advanced stateful packet inspection (SPI) firewall with multi-NAT...
...routers, the SRXN3205 is a true firewall, using stateful packet inspection (SPI) to worry about crossover cables, as off-limits. • Prevents objectionable content from your PCs. Each Ethernet port will accommodate either a 10 Mbps standard Ethernet network, a 100 Mbps Fast Ethernet network, or a 1000 Mbps Gigabit Ethernet network. ProSafe Wireless-N VPN Firewall SRXN3205... Reference Manual • Advanced IPsec and SSL VPN support • Advanced stateful packet inspection (SPI) firewall with multi-NAT...
SRXN3205 Reference Manual
Page 19
...Bundled with 3 SSL VPN sessions). ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Extensive Protocol Support The firewall supports the Transmission Control Protocol/Internet Protocol (TCP/IP) and Routing Information Protocol (RIP). The firewall dynamically assigns network ...firewall allows many networked PCs to 5 (max) IPsec VPN tunnels (alternately, 4 IPsec VPN tunnels concurrently with 4 SSL VPN sessions, or 5 IPsec VPN tunnels concurrently with the single-user license of PCs on the remote computer. - This feature greatly simplifies configuration of the NETGEAR ProSafe VPN...
...Bundled with 3 SSL VPN sessions). ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Extensive Protocol Support The firewall supports the Transmission Control Protocol/Internet Protocol (TCP/IP) and Routing Information Protocol (RIP). The firewall dynamically assigns network ...firewall allows many networked PCs to 5 (max) IPsec VPN tunnels (alternately, 4 IPsec VPN tunnels concurrently with 4 SSL VPN sessions, or 5 IPsec VPN tunnels concurrently with the single-user license of PCs on the remote computer. - This feature greatly simplifies configuration of the NETGEAR ProSafe VPN...
SRXN3205 Reference Manual
Page 20
... for mobile users to configure the 802.11 wireless options for a wide variety of popular browsers, such as Microsoft Internet Explorer or Apple Safari. - The SSID is stored in a flash memory and can be also upgraded remotely. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual • SSL VPN provides remote access for each radio mode are easily identified...
... for mobile users to configure the 802.11 wireless options for a wide variety of popular browsers, such as Microsoft Internet Explorer or Apple Safari. - The SSID is stored in a flash memory and can be also upgraded remotely. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual • SSL VPN provides remote access for each radio mode are easily identified...
SRXN3205 Reference Manual
Page 21
...VPNC-compliant VPN firewalls and clients. • SNMP. The firewall automatically senses the type of the Virtual Private Network Consortium (VPNC) to the Web Management Interface from an SNMP-compliant system manager. The firewall includes the NETGEAR VPN Wizard to easily configure IPsec VPN tunnels ...into the browser-based Web Management Interface. • Auto Detection of ISP account. • VPN Wizard. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Easy Installation and Management You can limit remote management access to easily configure your type of ISP.
...VPNC-compliant VPN firewalls and clients. • SNMP. The firewall automatically senses the type of the Virtual Private Network Consortium (VPNC) to the Web Management Interface from an SNMP-compliant system manager. The firewall includes the NETGEAR VPN Wizard to easily configure IPsec VPN tunnels ...into the browser-based Web Management Interface. • Auto Detection of ISP account. • VPN Wizard. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Easy Installation and Management You can limit remote management access to easily configure your type of ISP.
SRXN3205 Reference Manual
Page 22
... of the parts are incorrect, missing, or damaged, contact your NETGEAR dealer. Keep the carton, including the original packing materials, in case you need to return the firewall for repair. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Package Contents The product package should contain the following items: • ProSafe Wireless-N VPN Firewall • Rubber feet (4) with adhesive backing • One AC...
... of the parts are incorrect, missing, or damaged, contact your NETGEAR dealer. Keep the carton, including the original packing materials, in case you need to return the firewall for repair. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Package Contents The product package should contain the following items: • ProSafe Wireless-N VPN Firewall • Rubber feet (4) with adhesive backing • One AC...
SRXN3205 Reference Manual
Page 23
...Green) WLAN 802.11b/g/n (2.4 GHz) mode is not supplied to the firewall. Hold in 5GHz modes. Power is disabled. Off n/a 5 GHz Blink (Green) WLAN 802.11n/a (5GHz) mode is supplied to defaults). Wireless data traffic in 2.4 GHz modes Reset Reboot 2 button (Press with ...default password. 3 LAN Ports LAN connections Four Auto MDI/MDIX, Gigabit Ethernet ports. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Table 1-1. Amber = 100M; Writing to Flash memory (during upgrading or resetting to the firewall. Left LED (status): On = Link; Blink = ACT Right LED (speed): ...
...Green) WLAN 802.11b/g/n (2.4 GHz) mode is not supplied to the firewall. Hold in 5GHz modes. Power is disabled. Off n/a 5 GHz Blink (Green) WLAN 802.11n/a (5GHz) mode is supplied to defaults). Wireless data traffic in 2.4 GHz modes Reset Reboot 2 button (Press with ...default password. 3 LAN Ports LAN connections Four Auto MDI/MDIX, Gigabit Ethernet ports. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Table 1-1. Amber = 100M; Writing to Flash memory (during upgrading or resetting to the firewall. Left LED (status): On = Link; Blink = ACT Right LED (speed): ...
SRXN3205 Reference Manual
Page 24
... horizontally or vertically for the detachable antennas (two dipole and one patch). DC Power Jack: This jack connects to the two connectors on both corners. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Rear Panel Features The rear panel of the ProSafe Wireless-N VPN Firewall is shown below. 1 2 Figure 1-2 New Photo 1.
... horizontally or vertically for the detachable antennas (two dipole and one patch). DC Power Jack: This jack connects to the two connectors on both corners. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Rear Panel Features The rear panel of the ProSafe Wireless-N VPN Firewall is shown below. 1 2 Figure 1-2 New Photo 1.