SRXN3205 Reference Manual
Page 2
... generates, uses, and can be subject to test the series for compliance with the regulations. EU Regulatory Compliance Statement The ProSafe Wireless-N VPN Firewall is a trademark of this document without notice. Das Bundesamt für Zulassungen in the operating instructions. Please refer to the...Geräte (z.B. Trademarks NETGEAR and the NETGEAR logo are registered trademarks and ProSafe is compliant with the following EU Council Directives: 89/336/EEC and LVD 73/23/EEC. NETGEAR does not assume any liability that the ProSafe Wireless-N VPN Firewall has been suppressed in this...
... generates, uses, and can be subject to test the series for compliance with the regulations. EU Regulatory Compliance Statement The ProSafe Wireless-N VPN Firewall is a trademark of this document without notice. Das Bundesamt für Zulassungen in the operating instructions. Please refer to the...Geräte (z.B. Trademarks NETGEAR and the NETGEAR logo are registered trademarks and ProSafe is compliant with the following EU Council Directives: 89/336/EEC and LVD 73/23/EEC. NETGEAR does not assume any liability that the ProSafe Wireless-N VPN Firewall has been suppressed in this...
SRXN3205 Reference Manual
Page 5
... format) Product and Publication Details Model Number: Publication Date: Product Family: Product Name: Home or Business Product: Language: Publication Part Number: Publication Version Number SRXN3205 October 2008 VPN Firewall ProSafe Wireless-N VPN Firewall Business English 202-10416-01 1.0 v 1.0, October 2008 Permission is described by Carnegie Mellon University. interface of this software without any damages arising from this...
... format) Product and Publication Details Model Number: Publication Date: Product Family: Product Name: Home or Business Product: Language: Publication Part Number: Publication Version Number SRXN3205 October 2008 VPN Firewall ProSafe Wireless-N VPN Firewall Business English 202-10416-01 1.0 v 1.0, October 2008 Permission is described by Carnegie Mellon University. interface of this software without any damages arising from this...
SRXN3205 Reference Manual
Page 7
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Contents About This Manual Conventions, Formats, and Scope xiii How to Use This Manual xiv How to Print this Manual xiv Revision History ...xv Chapter 1 Introduction Key Firewall Features ...1-1 A Powerful, True Firewall with Content Filtering 1-2 Autosensing Ethernet Connections with Auto Uplink 1-2 Extensive Protocol Support 1-3 Advanced VPN Support for Both IPsec and SSL...
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Contents About This Manual Conventions, Formats, and Scope xiii How to Use This Manual xiv How to Print this Manual xiv Revision History ...xv Chapter 1 Introduction Key Firewall Features ...1-1 A Powerful, True Firewall with Content Filtering 1-2 Autosensing Ethernet Connections with Auto Uplink 1-2 Extensive Protocol Support 1-3 Advanced VPN Support for Both IPsec and SSL...
SRXN3205 Reference Manual
Page 8
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Configuring the WAN Mode 2-10 Configuring Dynamic DNS 2-11 Configuring the Advanced WAN Options (Optional 2-12 Additional WAN Related Configuration 2-14 Chapter 3 LAN Configuration Configuring the LAN Setup Options 3-1 Using the VPN Firewall as a DHCP Server 3-3 Configuring DHCP Address Reservation 3-4 Managing Groups and Hosts (LAN Groups 3-4 Viewing the LAN Groups Database...
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Configuring the WAN Mode 2-10 Configuring Dynamic DNS 2-11 Configuring the Advanced WAN Options (Optional 2-12 Additional WAN Related Configuration 2-14 Chapter 3 LAN Configuration Configuring the LAN Setup Options 3-1 Using the VPN Firewall as a DHCP Server 3-3 Configuring DHCP Address Reservation 3-4 Managing Groups and Hosts (LAN Groups 3-4 Viewing the LAN Groups Database...
SRXN3205 Reference Manual
Page 9
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Restricting Wireless Access by MAC Address 4-18 Chapter 5 Firewall Security and Content Filtering About Firewall Security and Content Filtering 5-1 Using Rules & Services to Block or Allow Traffic 5-2 Services-Based Rules 5-2 Viewing the Firewall Rules 5-7 Order of Precedence for Rules 5-7 Setting the Outbound Policy 5-7 Creating a LAN WAN Outbound Services Rule 5-8 Creating a LAN WAN Inbound...
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Restricting Wireless Access by MAC Address 4-18 Chapter 5 Firewall Security and Content Filtering About Firewall Security and Content Filtering 5-1 Using Rules & Services to Block or Allow Traffic 5-2 Services-Based Rules 5-2 Viewing the Firewall Rules 5-7 Order of Precedence for Rules 5-7 Setting the Outbound Policy 5-7 Creating a LAN WAN Outbound Services Rule 5-8 Creating a LAN WAN Inbound...
SRXN3205 Reference Manual
Page 10
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Testing the Connection 6-11 Managing VPN Tunnel Policies 6-11 About IKE ...6-12 Managing IKE Policies 6-12 About the IKE Policy Table 6-13 VPN Policy ...6-15 VPN Tunnel Connection Status 6-16 Manually Assigning IP Addresses to Remote Users (ModeConfig 6-17 Mode Config Operation 6-17 Configuring the VPN Firewall 6-17 Configuring the ProSafe VPN... Client for ModeConfig 6-20 Extended Authentication (XAUTH) Configuration 6-22 Configuring XAUTH for VPN Clients 6-23 ...
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Testing the Connection 6-11 Managing VPN Tunnel Policies 6-11 About IKE ...6-12 Managing IKE Policies 6-12 About the IKE Policy Table 6-13 VPN Policy ...6-15 VPN Tunnel Connection Status 6-16 Manually Assigning IP Addresses to Remote Users (ModeConfig 6-17 Mode Config Operation 6-17 Configuring the VPN Firewall 6-17 Configuring the ProSafe VPN... Client for ModeConfig 6-20 Extended Authentication (XAUTH) Configuration 6-22 Configuring XAUTH for VPN Clients 6-23 ...
SRXN3205 Reference Manual
Page 11
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Chapter 8 Managing Users, Authentication, and Certificates Adding Authentication Domains, Groups, and Users 8-1 Creating a Domain 8-1 Creating a Group ...8-3 Creating a New User Account 8-4 ... Time Zone Settings 9-15 Chapter 11 Monitoring System Performance Enabling the Traffic Meter 11-1 Activating Notification of Events and Alerts 11-3 Viewing Firewall Logs 11-6 Viewing Router Configuration and System Status 11-7 Monitoring the WAN Port Status 11-8 Monitoring Attached Devices 11-9 Reviewing the DHCP Log 11-10 Monitoring...
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Chapter 8 Managing Users, Authentication, and Certificates Adding Authentication Domains, Groups, and Users 8-1 Creating a Domain 8-1 Creating a Group ...8-3 Creating a New User Account 8-4 ... Time Zone Settings 9-15 Chapter 11 Monitoring System Performance Enabling the Traffic Meter 11-1 Activating Notification of Events and Alerts 11-3 Viewing Firewall Logs 11-6 Viewing Router Configuration and System Status 11-7 Monitoring the WAN Port Status 11-8 Monitoring Attached Devices 11-9 Reviewing the DHCP Log 11-10 Monitoring...
SRXN3205 Reference Manual
Page 12
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Viewing Port Triggering Status 11-12 Monitoring VPN Tunnel Connection Status 11-13 Reviewing the VPN Logs 11-14 Chapter 12 Troubleshooting Basic Functions ...12-1 Power LED Not On 12-2 LEDs Never Turn Off 12-2 LAN ...Web Configuration Interface 12-2 Troubleshooting the ISP Connection 12-4 Troubleshooting a TCP/IP Network Using a Ping Utility 12-5 Testing the LAN Path to Your VPN Firewall 12-5 Testing the Path from Your PC to a Remote Device 12-6 Restoring the Default Configuration and Password 12-7 Problems with Date and Time ...
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Viewing Port Triggering Status 11-12 Monitoring VPN Tunnel Connection Status 11-13 Reviewing the VPN Logs 11-14 Chapter 12 Troubleshooting Basic Functions ...12-1 Power LED Not On 12-2 LEDs Never Turn Off 12-2 LAN ...Web Configuration Interface 12-2 Troubleshooting the ISP Connection 12-4 Troubleshooting a TCP/IP Network Using a Ping Utility 12-5 Testing the LAN Path to Your VPN Firewall 12-5 Testing the Path from Your PC to a Remote Device 12-6 Restoring the Default Configuration and Password 12-7 Problems with Date and Time ...
SRXN3205 Reference Manual
Page 13
... following formats to highlight special messages: Note: This format is used to configure and troubleshoot a ProSafe Wireless-N VPN Firewall. Warning: Ignoring this type of this manual is used to the equipment. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual About This Manual The NETGEAR® ProSafe™ Wireless-N VPN FirewallReference Manual describes how to highlight a procedure that will save time or resources. Conventions, Formats...
... following formats to highlight special messages: Note: This format is used to configure and troubleshoot a ProSafe Wireless-N VPN Firewall. Warning: Ignoring this type of this manual is used to the equipment. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual About This Manual The NETGEAR® ProSafe™ Wireless-N VPN FirewallReference Manual describes how to highlight a procedure that will save time or resources. Conventions, Formats...
SRXN3205 Reference Manual
Page 14
... one page at http://kbserver.netgear.com/products/SRXN3205.asp. Each page in the HTML version of the manual is described in Appendix B, "Related Documents.". online knowledge base for the firewall according to these specifications: Product Manual Publication Date ProSafe Wireless-N VPN Firewall October 2008 For more information about network, Internet, firewall, and VPN technologies, see the links to...
... one page at http://kbserver.netgear.com/products/SRXN3205.asp. Each page in the HTML version of the manual is described in Appendix B, "Related Documents.". online knowledge base for the firewall according to these specifications: Product Manual Publication Date ProSafe Wireless-N VPN Firewall October 2008 For more information about network, Internet, firewall, and VPN technologies, see the links to...
SRXN3205 Reference Manual
Page 15
... Complete PDF Manual link at the top left of any page in the upper left of paper, you want to view and print PDF files. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual • Printing from PDF.
... Complete PDF Manual link at the top left of any page in the upper left of paper, you want to view and print PDF files. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual • Printing from PDF.
SRXN3205 Reference Manual
Page 16
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual xvi v1.0, October 2008
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual xvi v1.0, October 2008
SRXN3205 Reference Manual
Page 17
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Chapter 1 Introduction The SRXN3205 ProSafe Wireless-N VPN Firewall provides Internet connectivity to safeguard your networks along with advanced IPsec and SSL VPN technologies for secure wired and wireless connections. Introduction 1-1 v1.0, October 2008 The SRXN3205 is a plug-and-play device that can be installed and configured within minutes. This chapter contains the following sections: • "Key Firewall Features...
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Chapter 1 Introduction The SRXN3205 ProSafe Wireless-N VPN Firewall provides Internet connectivity to safeguard your networks along with advanced IPsec and SSL VPN technologies for secure wired and wireless connections. Introduction 1-1 v1.0, October 2008 The SRXN3205 is a plug-and-play device that can be installed and configured within minutes. This chapter contains the following sections: • "Key Firewall Features...
SRXN3205 Reference Manual
Page 18
... objectionable Internet sites. • Permits scheduling of firewall policies by screening for low current draw A Powerful, True Firewall with Content Filtering Unlike simple Internet sharing NAT routers, the SRXN3205 is a true firewall, using stateful packet inspection (SPI) to Internet ... are autosensing and capable of full-duplex or half-duplex operation. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual • Advanced IPsec and SSL VPN support • Advanced stateful packet inspection (SPI) firewall with multi-NAT support • Easy, web-based setup for installation...
... objectionable Internet sites. • Permits scheduling of firewall policies by screening for low current draw A Powerful, True Firewall with Content Filtering Unlike simple Internet sharing NAT routers, the SRXN3205 is a true firewall, using stateful packet inspection (SPI) to Internet ... are autosensing and capable of full-duplex or half-duplex operation. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual • Advanced IPsec and SSL VPN support • Advanced stateful packet inspection (SPI) firewall with multi-NAT support • Easy, web-based setup for installation...
SRXN3205 Reference Manual
Page 19
...VPN tunnels (alternately, 4 IPsec VPN tunnels concurrently with 4 SSL VPN sessions, or 5 IPsec VPN tunnels concurrently with the single-user license of the NETGEAR ProSafe VPN Client software (VPN01L) - PPPoE is a protocol for traffic prioritization. IPsec VPN with broad protocol support for Both IPsec and SSL The firewall...Introduction 1-3 v1.0, October 2008 The firewall allows many networked PCs to exceed eight. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Extensive Protocol Support The firewall supports the Transmission Control Protocol/Internet Protocol...
...VPN tunnels (alternately, 4 IPsec VPN tunnels concurrently with 4 SSL VPN sessions, or 5 IPsec VPN tunnels concurrently with the single-user license of the NETGEAR ProSafe VPN Client software (VPN01L) - PPPoE is a protocol for traffic prioritization. IPsec VPN with broad protocol support for Both IPsec and SSL The firewall...Introduction 1-3 v1.0, October 2008 The firewall allows many networked PCs to exceed eight. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Extensive Protocol Support The firewall supports the Transmission Control Protocol/Internet Protocol...
SRXN3205 Reference Manual
Page 20
The Access Control MAC address filtering feature can ensure that only trusted wireless stations can use the SRXN3205 to gain access to 5 SSL and VPN sessions. Power, test, LAN speed, LAN activity, and wireless activity for the 2.4 GHz band or the 5 GHz bands. • ..., command-line interface can be used for e-commerce transactions, to provide client-free access with Auto Uplink Interface. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual • SSL VPN provides remote access for a wide variety of popular browsers, such as Microsoft Internet Explorer or Apple Safari. -...
The Access Control MAC address filtering feature can ensure that only trusted wireless stations can use the SRXN3205 to gain access to 5 SSL and VPN sessions. Power, test, LAN speed, LAN activity, and wireless activity for the 2.4 GHz band or the 5 GHz bands. • ..., command-line interface can be used for e-commerce transactions, to provide client-free access with Auto Uplink Interface. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual • SSL VPN provides remote access for a wide variety of popular browsers, such as Microsoft Internet Explorer or Apple Safari. -...
SRXN3205 Reference Manual
Page 21
... LEDs provide an easy way to the recommendations of personal computer, such as Windows, Macintosh, or Linux. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Easy Installation and Management You can limit remote management access to a specified remote IP address or... for configuration, such as Ping, Trace Route, DNS lookup, and remote reboot. • Remote Management. The firewall includes the NETGEAR VPN Wizard to easily configure IPsec VPN tunnels according to monitor its status and activity. The following requirements: • Category 5 UTP straight through Ethernet ...
... LEDs provide an easy way to the recommendations of personal computer, such as Windows, Macintosh, or Linux. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Easy Installation and Management You can limit remote management access to a specified remote IP address or... for configuration, such as Ping, Trace Route, DNS lookup, and remote reboot. • Remote Management. The firewall includes the NETGEAR VPN Wizard to easily configure IPsec VPN tunnels according to monitor its status and activity. The following requirements: • Category 5 UTP straight through Ethernet ...
SRXN3205 Reference Manual
Page 22
... incorrect, missing, or damaged, contact your NETGEAR dealer. Front Panel Features The ProSafe Wireless-N VPN Firewall front panel is shown below: 1 2 3 4 Figure 1-1 1-6 Introduction v1.0, October 2008 Application Notes and other helpful information. - Keep the carton, including the original packing materials, in case you need to return the firewall for repair. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Package Contents The product...
... incorrect, missing, or damaged, contact your NETGEAR dealer. Front Panel Features The ProSafe Wireless-N VPN Firewall front panel is shown below: 1 2 3 4 Figure 1-1 1-6 Introduction v1.0, October 2008 Application Notes and other helpful information. - Keep the carton, including the original packing materials, in case you need to return the firewall for repair. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Package Contents The product...
SRXN3205 Reference Manual
Page 23
... Link; Description of Front Panel Items Item Activity Description PWR (Power) On Green Off Power is not supplied to the firewall. Power is supplied to factory default settings, erasing all configuration settings and restores the default password. 3 LAN Ports LAN ... = 1000M 4 WAN Port WAN connection One Auto MDI/MDIX, Gigabit Ethernet port. Blink = ACT Right LED (speed): Off = 10M; ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Table 1-1. Writing to Flash memory (during upgrading or resetting to reboot the unit. The system has booted successfully. Off n/a 5...
... Link; Description of Front Panel Items Item Activity Description PWR (Power) On Green Off Power is not supplied to the firewall. Power is supplied to factory default settings, erasing all configuration settings and restores the default password. 3 LAN Ports LAN ... = 1000M 4 WAN Port WAN connection One Auto MDI/MDIX, Gigabit Ethernet port. Blink = ACT Right LED (speed): Off = 10M; ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Table 1-1. Writing to Flash memory (during upgrading or resetting to reboot the unit. The system has booted successfully. Off n/a 5...
SRXN3205 Reference Manual
Page 24
... horizontally or vertically for the detachable antennas (two dipole and one patch). DC Power Jack: This jack connects to the two connectors on both corners. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Rear Panel Features The rear panel of the ProSafe Wireless-N VPN Firewall is shown below. 1 2 Figure 1-2 New Photo 1. Detachable (SMA) Antennas: The...
... horizontally or vertically for the detachable antennas (two dipole and one patch). DC Power Jack: This jack connects to the two connectors on both corners. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Rear Panel Features The rear panel of the ProSafe Wireless-N VPN Firewall is shown below. 1 2 Figure 1-2 New Photo 1. Detachable (SMA) Antennas: The...