SRXN3205 Reference Manual
Page 7
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Contents About This Manual Conventions, Formats, and Scope xiii How to Use This Manual xiv How to Print this Manual xiv Revision History ...xv Chapter 1 Introduction Key Firewall Features ...1-1 A Powerful, True Firewall with Content Filtering 1-2 Autosensing Ethernet Connections with Auto Uplink 1-2 Extensive Protocol Support 1-3 Advanced VPN Support for Both IPsec and SSL 1-3 Wireless Networking Features 1-4 Easy Installation and...
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Contents About This Manual Conventions, Formats, and Scope xiii How to Use This Manual xiv How to Print this Manual xiv Revision History ...xv Chapter 1 Introduction Key Firewall Features ...1-1 A Powerful, True Firewall with Content Filtering 1-2 Autosensing Ethernet Connections with Auto Uplink 1-2 Extensive Protocol Support 1-3 Advanced VPN Support for Both IPsec and SSL 1-3 Wireless Networking Features 1-4 Easy Installation and...
SRXN3205 Reference Manual
Page 8
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Configuring the WAN Mode 2-10 Configuring Dynamic DNS 2-11 Configuring the Advanced WAN Options (Optional 2-12 Additional WAN Related Configuration 2-14 Chapter 3 LAN Configuration Configuring the LAN Setup Options 3-1 Using the VPN Firewall as a DHCP Server 3-3 Configuring DHCP Address Reservation 3-4 Managing Groups and Hosts (LAN Groups 3-4 Viewing the LAN Groups Database 3-5 Adding Devices...
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Configuring the WAN Mode 2-10 Configuring Dynamic DNS 2-11 Configuring the Advanced WAN Options (Optional 2-12 Additional WAN Related Configuration 2-14 Chapter 3 LAN Configuration Configuring the LAN Setup Options 3-1 Using the VPN Firewall as a DHCP Server 3-3 Configuring DHCP Address Reservation 3-4 Managing Groups and Hosts (LAN Groups 3-4 Viewing the LAN Groups Database 3-5 Adding Devices...
SRXN3205 Reference Manual
Page 9
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Restricting Wireless Access by MAC Address 4-18 Chapter 5 Firewall Security and Content Filtering About Firewall Security and Content Filtering 5-1 Using Rules & Services to Block or Allow Traffic 5-2 Services-Based Rules 5-2 Viewing the Firewall Rules 5-7 Order of Precedence for Rules 5-7 Setting the Outbound Policy 5-7 Creating a LAN WAN Outbound Services Rule 5-8 Creating a LAN WAN Inbound Services Rule...
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Restricting Wireless Access by MAC Address 4-18 Chapter 5 Firewall Security and Content Filtering About Firewall Security and Content Filtering 5-1 Using Rules & Services to Block or Allow Traffic 5-2 Services-Based Rules 5-2 Viewing the Firewall Rules 5-7 Order of Precedence for Rules 5-7 Setting the Outbound Policy 5-7 Creating a LAN WAN Outbound Services Rule 5-8 Creating a LAN WAN Inbound Services Rule...
SRXN3205 Reference Manual
Page 10
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Testing the Connection 6-11 Managing VPN Tunnel Policies 6-11 About IKE ...6-12 Managing IKE Policies 6-12 About the IKE Policy Table 6-13 VPN Policy ...6-15 VPN Tunnel Connection Status 6-16 Manually Assigning IP Addresses to Remote Users (ModeConfig 6-17 Mode Config Operation 6-17 Configuring the VPN Firewall 6-17 Configuring the ProSafe VPN Client for ModeConfig 6-20 Extended Authentication (XAUTH...
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Testing the Connection 6-11 Managing VPN Tunnel Policies 6-11 About IKE ...6-12 Managing IKE Policies 6-12 About the IKE Policy Table 6-13 VPN Policy ...6-15 VPN Tunnel Connection Status 6-16 Manually Assigning IP Addresses to Remote Users (ModeConfig 6-17 Mode Config Operation 6-17 Configuring the VPN Firewall 6-17 Configuring the ProSafe VPN Client for ModeConfig 6-20 Extended Authentication (XAUTH...
SRXN3205 Reference Manual
Page 11
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Chapter 8 Managing Users, Authentication, and Certificates Adding Authentication Domains, Groups, and Users 8-1 Creating a Domain 8-1 Creating a Group ...8-3 Creating a New User Account 8-4 Setting User Login Policies 8-5 Managing Certificates ...8-8 Viewing and Loading CA Certificates 8-8 Viewing Active Self Certificates 8-9 Obtaining a Self Certificate from a Certificate Authority 8-10 Managing your Certificate Revocation List (CRL 8-13 Chapter 9 Firewall...11-3 Viewing Firewall Logs 11-6 Viewing Router Configuration and System...
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Chapter 8 Managing Users, Authentication, and Certificates Adding Authentication Domains, Groups, and Users 8-1 Creating a Domain 8-1 Creating a Group ...8-3 Creating a New User Account 8-4 Setting User Login Policies 8-5 Managing Certificates ...8-8 Viewing and Loading CA Certificates 8-8 Viewing Active Self Certificates 8-9 Obtaining a Self Certificate from a Certificate Authority 8-10 Managing your Certificate Revocation List (CRL 8-13 Chapter 9 Firewall...11-3 Viewing Firewall Logs 11-6 Viewing Router Configuration and System...
SRXN3205 Reference Manual
Page 12
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Viewing Port Triggering Status 11-12 Monitoring VPN Tunnel Connection Status 11-13 Reviewing the VPN Logs 11-14 Chapter 12 Troubleshooting Basic Functions ...12-1 Power LED Not On 12-2 LEDs Never Turn Off 12-2 LAN ...Web Configuration Interface 12-2 Troubleshooting the ISP Connection 12-4 Troubleshooting a TCP/IP Network Using a Ping Utility 12-5 Testing the LAN Path to Your VPN Firewall 12-5 Testing the Path from Your PC to a Remote Device 12-6 Restoring the Default Configuration and Password 12-7 Problems with Date and Time ...
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Viewing Port Triggering Status 11-12 Monitoring VPN Tunnel Connection Status 11-13 Reviewing the VPN Logs 11-14 Chapter 12 Troubleshooting Basic Functions ...12-1 Power LED Not On 12-2 LEDs Never Turn Off 12-2 LAN ...Web Configuration Interface 12-2 Troubleshooting the ISP Connection 12-4 Troubleshooting a TCP/IP Network Using a Ping Utility 12-5 Testing the LAN Path to Your VPN Firewall 12-5 Testing the Path from Your PC to a Remote Device 12-6 Restoring the Default Configuration and Password 12-7 Problems with Date and Time ...
SRXN3205 Reference Manual
Page 13
... used to the equipment. Tip: This format is used to configure and troubleshoot a ProSafe Wireless-N VPN Firewall. Conventions, Formats, and Scope The conventions, formats, and scope of importance or special interest. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual About This Manual The NETGEAR® ProSafe™ Wireless-N VPN FirewallReference Manual describes how to highlight information of this manual is intended for readers with intermediate computer and networking skills.
... used to the equipment. Tip: This format is used to configure and troubleshoot a ProSafe Wireless-N VPN Firewall. Conventions, Formats, and Scope The conventions, formats, and scope of importance or special interest. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual About This Manual The NETGEAR® ProSafe™ Wireless-N VPN FirewallReference Manual describes how to highlight information of this manual is intended for readers with intermediate computer and networking skills.
SRXN3205 Reference Manual
Page 14
... individual chapters. Failure to take heed of this manual, you can choose one page at http://kbserver.netgear.com/products/SRXN3205.asp. How to where the topic is described in Appendix B, "Related Documents.". xiv v1.0, October 2008 Each page in personal injury or death. • Scope. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Danger: This is dedicated to print the...
... individual chapters. Failure to take heed of this manual, you can choose one page at http://kbserver.netgear.com/products/SRXN3205.asp. How to where the topic is described in Appendix B, "Related Documents.". xiv v1.0, October 2008 Each page in personal injury or death. • Scope. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Danger: This is dedicated to print the...
SRXN3205 Reference Manual
Page 15
...8226; Click the PDF of This Chapter link at the top left of your browser window. - Printing a PDF Chapter. Use the Complete PDF Manual link at the top left of any page in order to print. Printing a PDF version of paper, you were viewing opens in a browser window... publication xv v1.0, October 2008 Tip: If your browser window. The Acrobat reader is available on a single sheet of the Complete Manual. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual • Printing from PDF. The PDF version of the chapter you can save paper and printer ink by selecting this feature.
...8226; Click the PDF of This Chapter link at the top left of your browser window. - Printing a PDF Chapter. Use the Complete PDF Manual link at the top left of any page in order to print. Printing a PDF version of paper, you were viewing opens in a browser window... publication xv v1.0, October 2008 Tip: If your browser window. The Acrobat reader is available on a single sheet of the Complete Manual. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual • Printing from PDF. The PDF version of the chapter you can save paper and printer ink by selecting this feature.
SRXN3205 Reference Manual
Page 16
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual xvi v1.0, October 2008
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual xvi v1.0, October 2008
SRXN3205 Reference Manual
Page 17
... 2008 The Gigabit Ethernet LAN ports and WAN port ensure extremely high data transfer speeds. The SRXN3205 also supports wireless bridging. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Chapter 1 Introduction The SRXN3205 ProSafe Wireless-N VPN Firewall provides Internet connectivity to safeguard your networks along with a powerful and flexible firewall to your Internet connection. • Built-in four-port 10/100/1000 Mbps Gigabit Ethernet LAN...
... 2008 The Gigabit Ethernet LAN ports and WAN port ensure extremely high data transfer speeds. The SRXN3205 also supports wireless bridging. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Chapter 1 Introduction The SRXN3205 ProSafe Wireless-N VPN Firewall provides Internet connectivity to safeguard your networks along with a powerful and flexible firewall to your Internet connection. • Built-in four-port 10/100/1000 Mbps Gigabit Ethernet LAN...
SRXN3205 Reference Manual
Page 18
... upgrade • AC-DC power adapter for low current draw A Powerful, True Firewall with Content Filtering Unlike simple Internet sharing NAT routers, the SRXN3205 is a true firewall, using stateful packet inspection (SPI) to worry about crossover cables, as blocked incoming.... • Blocks unwanted traffic from the Internet to the correct configuration. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual • Advanced IPsec and SSL VPN support • Advanced stateful packet inspection (SPI) firewall with multi-NAT support • Easy, web-based setup for installation and...
... upgrade • AC-DC power adapter for low current draw A Powerful, True Firewall with Content Filtering Unlike simple Internet sharing NAT routers, the SRXN3205 is a true firewall, using stateful packet inspection (SPI) to worry about crossover cables, as blocked incoming.... • Blocks unwanted traffic from the Internet to the correct configuration. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual • Advanced IPsec and SSL VPN support • Advanced stateful packet inspection (SPI) firewall with multi-NAT support • Easy, web-based setup for installation and...
SRXN3205 Reference Manual
Page 19
...traffic prioritization. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Extensive Protocol Support The firewall supports the Transmission Control Protocol/Internet Protocol (TCP/IP) and Routing Information Protocol (RIP). Advanced VPN Support for...firewall supports IPsec and SSL virtual private network (VPN) connections. • IPsec VPN delivers full network access between a central office and branch offices, or between a central office and telecommuters. Introduction 1-3 v1.0, October 2008 This feature greatly simplifies configuration of the NETGEAR ProSafe VPN...
...traffic prioritization. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Extensive Protocol Support The firewall supports the Transmission Control Protocol/Internet Protocol (TCP/IP) and Routing Information Protocol (RIP). Advanced VPN Support for...firewall supports IPsec and SSL virtual private network (VPN) connections. • IPsec VPN delivers full network access between a central office and branch offices, or between a central office and telecommuters. Introduction 1-3 v1.0, October 2008 This feature greatly simplifies configuration of the NETGEAR ProSafe VPN...
SRXN3205 Reference Manual
Page 20
... through a number of user repositories. - The SSID is stored in a flash memory and can connect. • Configuration Backup. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual • SSL VPN provides remote access for mobile users to 10/100/1000 Mbps IEEE 802.3 Ethernet networks. • LED Indicators... to provide client-free access with Auto Uplink Interface. The SRXN3205 allows you to a file and restored. • Secure and Economical Operation. Supports up to 5 IPse VPN sessions and up to configure the 802.11 wireless options for the 2.4 GHz band or the 5 GHz bands...
... through a number of user repositories. - The SSID is stored in a flash memory and can connect. • Configuration Backup. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual • SSL VPN provides remote access for mobile users to 10/100/1000 Mbps IEEE 802.3 Ethernet networks. • LED Indicators... to provide client-free access with Auto Uplink Interface. The SRXN3205 allows you to a file and restored. • Secure and Economical Operation. Supports up to 5 IPse VPN sessions and up to configure the 802.11 wireless options for the 2.4 GHz band or the 5 GHz bands...
SRXN3205 Reference Manual
Page 21
... 2008 ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Easy Installation and Management You can limit remote management access to a specified remote IP address or range of addresses. • Visual monitoring. The following requirements: • Category 5 UTP straight through Ethernet cable with other VPNC-compliant VPN firewalls and clients. • SNMP. The firewall includes the NETGEAR VPN Wizard to easily configure IPsec VPN tunnels...
... 2008 ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Easy Installation and Management You can limit remote management access to a specified remote IP address or range of addresses. • Visual monitoring. The following requirements: • Category 5 UTP straight through Ethernet cable with other VPNC-compliant VPN firewalls and clients. • SNMP. The firewall includes the NETGEAR VPN Wizard to easily configure IPsec VPN tunnels...
SRXN3205 Reference Manual
Page 22
... damaged, contact your NETGEAR dealer. one user license. • Warranty and Support Information Card. ProSafe VPN Client Software - Keep the carton, including the original packing materials, in case you need to return the firewall for repair. Front Panel Features The ProSafe Wireless-N VPN Firewall front panel is shown below: 1 2 3 4 Figure 1-1 1-6 Introduction v1.0, October 2008 ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Package Contents The product...
... damaged, contact your NETGEAR dealer. one user license. • Warranty and Support Information Card. ProSafe VPN Client Software - Keep the carton, including the original packing materials, in case you need to return the firewall for repair. Front Panel Features The ProSafe Wireless-N VPN Firewall front panel is shown below: 1 2 3 4 Figure 1-1 1-6 Introduction v1.0, October 2008 ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Package Contents The product...
SRXN3205 Reference Manual
Page 23
... 5 GHz Blink (Green) WLAN 802.11n/a (5GHz) mode is disabled. Wireless data traffic in 2.4 GHz modes Reset Reboot 2 button (Press with a sharp Factory Defaults object) Press once to the firewall. Blink = ACT Right LED (speed): Off = 10M; Power is not supplied...One Auto MDI/MDIX, Gigabit Ethernet port. This resets the unit to defaults). Left LED (status): On = Link; ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Table 1-1. Wireless data traffic in for 15 seconds (until the TEST light flashes). Introduction 1-7 v1.0, October 2008 Amber = 100M; Writing...
... 5 GHz Blink (Green) WLAN 802.11n/a (5GHz) mode is disabled. Wireless data traffic in 2.4 GHz modes Reset Reboot 2 button (Press with a sharp Factory Defaults object) Press once to the firewall. Blink = ACT Right LED (speed): Off = 10M; Power is not supplied...One Auto MDI/MDIX, Gigabit Ethernet port. This resets the unit to defaults). Left LED (status): On = Link; ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Table 1-1. Wireless data traffic in for 15 seconds (until the TEST light flashes). Introduction 1-7 v1.0, October 2008 Amber = 100M; Writing...
SRXN3205 Reference Manual
Page 24
... SMA connectors for the best coverage. 2. For the best performance, attach the patch antenna to the middle connector and attach the dipole antennas to the SRXN3205 12V 1.5A AC-DC power adapter. 1-8 Introduction v1.0, October 2008 ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Rear Panel Features The rear panel of the ProSafe Wireless-N VPN Firewall is shown below. 1 2 Figure 1-2 New Photo 1.
... SMA connectors for the best coverage. 2. For the best performance, attach the patch antenna to the middle connector and attach the dipole antennas to the SRXN3205 12V 1.5A AC-DC power adapter. 1-8 Introduction v1.0, October 2008 ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Rear Panel Features The rear panel of the ProSafe Wireless-N VPN Firewall is shown below. 1 2 Figure 1-2 New Photo 1.
SRXN3205 Reference Manual
Page 25
... User Name Password Figure 1-3 Qualified Web Browsers To configure the ProSafe Wireless-N VPN Firewall, an administrator must use with JavaScript, cookies, and SSL enabled. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Default IP Address, Login Name, and Password Location Check the ...label on the bottom of the SRXN3205's enclosure if you need a reminder of applications. Although ...
... User Name Password Figure 1-3 Qualified Web Browsers To configure the ProSafe Wireless-N VPN Firewall, an administrator must use with JavaScript, cookies, and SSL enabled. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Default IP Address, Login Name, and Password Location Check the ...label on the bottom of the SRXN3205's enclosure if you need a reminder of applications. Although ...
SRXN3205 Reference Manual
Page 26
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual 1-10 v1.0, October 2008 Introduction
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual 1-10 v1.0, October 2008 Introduction