SRXN3205 Reference Manual
Page 2
... transmitters) in accordance with the conditions set out in this document without notice. EU Regulatory Compliance Statement The ProSafe Wireless-N VPN Firewall is encouraged to try to correct the interference by testing to which can radiate radio frequency energy and, if...pursuant to the notes in a particular installation. Trademarks NETGEAR and the NETGEAR logo are registered trademarks and ProSafe is hereby certified that interference will not occur in the operating instructions. Microsoft, Windows, and Windows NT are registered trademarks or trademarks of the FCC ...
... transmitters) in accordance with the conditions set out in this document without notice. EU Regulatory Compliance Statement The ProSafe Wireless-N VPN Firewall is encouraged to try to correct the interference by testing to which can radiate radio frequency energy and, if...pursuant to the notes in a particular installation. Trademarks NETGEAR and the NETGEAR logo are registered trademarks and ProSafe is hereby certified that interference will not occur in the operating instructions. Microsoft, Windows, and Windows NT are registered trademarks or trademarks of the FCC ...
SRXN3205 Reference Manual
Page 15
...The Acrobat reader is available on a single sheet of paper, you were viewing opens in a browser window. • Click the print icon in the manual. The PDF version of your browser window. - Tip: If your printer supports printing two pages on the Adobe Web site at the top left... of any page. • Click the PDF of any page in the upper left of the chapter you can save paper and printer ink by selecting this feature. ProSafe Wireless-N VPN Firewall SRXN3205 ...
...The Acrobat reader is available on a single sheet of paper, you were viewing opens in a browser window. • Click the print icon in the manual. The PDF version of your browser window. - Tip: If your printer supports printing two pages on the Adobe Web site at the top left... of any page. • Click the PDF of any page in the upper left of the chapter you can save paper and printer ink by selecting this feature. ProSafe Wireless-N VPN Firewall SRXN3205 ...
SRXN3205 Reference Manual
Page 21
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Easy Installation and Management You can limit remote management access to a specified remote IP address or range of addresses. • Visual monitoring. The firewall automatically senses the type of Internet connection, asking you to the network. The SNMP system configuration lets you can install, configure, and operate the ProSafe Wireless-N VPN Firewall...recommendations of ISP. The firewall includes the NETGEAR VPN Wizard to easily configure IPsec VPN tunnels according to ensure the IPsec VPN tunnels are interoperable with...
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Easy Installation and Management You can limit remote management access to a specified remote IP address or range of addresses. • Visual monitoring. The firewall automatically senses the type of Internet connection, asking you to the network. The SNMP system configuration lets you can install, configure, and operate the ProSafe Wireless-N VPN Firewall...recommendations of ISP. The firewall includes the NETGEAR VPN Wizard to easily configure IPsec VPN tunnels according to ensure the IPsec VPN tunnels are interoperable with...
SRXN3205 Reference Manual
Page 28
...Router Status menu as the default. Figure 2-1 2. Figure 2-2 2-2 v1.0, October 2008 Connecting to get an IP address via DHCP. Open a browser, and enter https://192.168.1.1 in lower case for the User Name and password for the Password. 3. Enter admin in the address field. To log in the browser. The login window... displays in to the firewall, follow these steps: 1. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Logging into the VPN Firewall To connect to the firewall, your computer needs to be configured to the Internet...
...Router Status menu as the default. Figure 2-1 2. Figure 2-2 2-2 v1.0, October 2008 Connecting to get an IP address via DHCP. Open a browser, and enter https://192.168.1.1 in lower case for the User Name and password for the Password. 3. Enter admin in the address field. To log in the browser. The login window... displays in to the firewall, follow these steps: 1. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Logging into the VPN Firewall To connect to the firewall, your computer needs to be configured to the Internet...
SRXN3205 Reference Manual
Page 29
...and submenus: • Main menu. Clicking on some menus are one or more blue dots with an arrow in the center. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Navigating the Menus The Web Configuration Manager menus are organized in the following sections. You can now proceed to the ... configuration of the tabs on a primary category changes the contents of the page is detailed in a layered structure of the menu active window, are one or more tabs, further subdividing the currently selected subcategory if necessary. • Option arrow. To the right of the...
...and submenus: • Main menu. Clicking on some menus are one or more blue dots with an arrow in the center. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Navigating the Menus The Web Configuration Manager menus are organized in the following sections. You can now proceed to the ... configuration of the tabs on a primary category changes the contents of the page is detailed in a layered structure of the menu active window, are one or more tabs, further subdividing the currently selected subcategory if necessary. • Option arrow. To the right of the...
SRXN3205 Reference Manual
Page 31
....0, October 2008 Account Name, Domain Name (sometimes required). c. A popup window appears, displaying the connection status of the screen. Internet connection methods Connection Method DHCP (Dynamic IP) PPPoE PPTP Fixed (Static) IP Data Required No data is required. Account Name (sometimes required). Login (Username, Password); DNS Server IP addresses. Table 2-1. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual b.
....0, October 2008 Account Name, Domain Name (sometimes required). c. A popup window appears, displaying the connection status of the screen. Internet connection methods Connection Method DHCP (Dynamic IP) PPPoE PPTP Fixed (Static) IP Data Required No data is required. Account Name (sometimes required). Login (Username, Password); DNS Server IP addresses. Table 2-1. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual b.
SRXN3205 Reference Manual
Page 32
...to establish an Internet connection, click Yes (this section, or see "Troubleshooting the ISP Connection" on page 12-4. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual The WAN Status window should show a valid IP address and gateway. Manually Configuring the Internet Connection Unless your ISP automatically assigns your ISP ...connect to "Manually Configuring the Internet Connection" following : 2. If the configuration was not successful, skip ahead to the NETGEAR Web site. If a successful connection is not required, click No and ignore the Login and Password fields.
...to establish an Internet connection, click Yes (this section, or see "Troubleshooting the ISP Connection" on page 12-4. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual The WAN Status window should show a valid IP address and gateway. Manually Configuring the Internet Connection Unless your ISP automatically assigns your ISP ...connect to "Manually Configuring the Internet Connection" following : 2. If the configuration was not successful, skip ahead to the NETGEAR Web site. If a successful connection is not required, click No and ignore the Login and Password fields.
SRXN3205 Reference Manual
Page 43
...IP address. • WINS Server. (Optional) Specifies the IP address of a local Windows NetBios Server if one is present in the DHCP settings (see "Attack Checks" on page 5-10). 4. Using the VPN Firewall as a DHCP (Dynamic Host Configuration Protocol) server, allowing it to assign IP, DNS ... first of the contiguous addresses in the IP address pool. Specifies the last of the contiguous addresses in the IP address pool. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual • Starting IP Address. Note: The Starting and Ending DHCP addresses should be leased to its own LAN IP ...
...IP address. • WINS Server. (Optional) Specifies the IP address of a local Windows NetBios Server if one is present in the DHCP settings (see "Attack Checks" on page 5-10). 4. Using the VPN Firewall as a DHCP (Dynamic Host Configuration Protocol) server, allowing it to assign IP, DNS ... first of the contiguous addresses in the IP address pool. Specifies the last of the contiguous addresses in the IP address pool. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual • Starting IP Address. Note: The Starting and Ending DHCP addresses should be leased to its own LAN IP ...
SRXN3205 Reference Manual
Page 57
...WEP and TKIP provide only legacy rates of some products such as Windows XP, but the most determined eavesdropper. • Use WPA or WPA-PSK. So, AES is a new standard, wireless device driver and software availability may be limited. Wi-Fi Protected Access...data encryption will block all but the data is still fully exposed to the SRXN3205. This nullifies the wireless network "discovery" feature of operation. Wireless Configuration 4-3 v1.0, October 2008 ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Figure 4-1Need new photo/picture There are several ways you disable ...
...WEP and TKIP provide only legacy rates of some products such as Windows XP, but the most determined eavesdropper. • Use WPA or WPA-PSK. So, AES is a new standard, wireless device driver and software availability may be limited. Wi-Fi Protected Access...data encryption will block all but the data is still fully exposed to the SRXN3205. This nullifies the wireless network "discovery" feature of operation. Wireless Configuration 4-3 v1.0, October 2008 ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Figure 4-1Need new photo/picture There are several ways you disable ...
SRXN3205 Reference Manual
Page 59
.... Prepare a PC as the Wireless Security Type. 9. This nullifies the wireless network "discovery" feature of the screen. 6. Select your wireless settings. Completing Wireless Setup (No Security) The purpose of the Wireless Settings screen. If you can connect. Click Apply at the defaults, including None as the wireless PC Client with Netgear Support. 7. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual 4. If you in...
.... Prepare a PC as the Wireless Security Type. 9. This nullifies the wireless network "discovery" feature of the screen. 6. Select your wireless settings. Completing Wireless Setup (No Security) The purpose of the Wireless Settings screen. If you can connect. Click Apply at the defaults, including None as the wireless PC Client with Netgear Support. 7. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual 4. If you in...
SRXN3205 Reference Manual
Page 66
... section, enter text in the Passphrase text box (Network Key) with drop-down menu on configuring WPA2 settings. Windows XP and Windows 2000 with 8-63 characters. 5. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Configuring WPA-PSK Not all wireless adapters support WPA2. When you select the WPA2 data encryption, only the feature selections for Key Lifetime text box...
... section, enter text in the Passphrase text box (Network Key) with drop-down menu on configuring WPA2 settings. Windows XP and Windows 2000 with 8-63 characters. 5. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Configuring WPA-PSK Not all wireless adapters support WPA2. When you select the WPA2 data encryption, only the feature selections for Key Lifetime text box...
SRXN3205 Reference Manual
Page 67
... on the client: • Windows XP and Windows 2000 with 8-63 characters. 5. Click on the TKIP + AES radio button for instructions on the right. In the PSK Settings section, enter text in the Wireless Settings menu: 1. Consult the product document for your wireless adapter; Wireless Configuration v1.0, October 2008 4-13 ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Configuring WPA-PSK...
... on the client: • Windows XP and Windows 2000 with 8-63 characters. 5. Click on the TKIP + AES radio button for instructions on the right. In the PSK Settings section, enter text in the Wireless Settings menu: 1. Consult the product document for your wireless adapter; Wireless Configuration v1.0, October 2008 4-13 ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Configuring WPA-PSK...
SRXN3205 Reference Manual
Page 69
...client software that supports WPA2. Click the WPA and WPA2 radio button on the left to save your client card supports WPA2. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual • The Server Name, IP Address, RADIUS Port (number), and Shared Key are required for Encryption on the... the RADIUS Server. Consult the product documentation for instructions on the client: • Windows XP and Windows 2000 with the RADIUS Server. - and WPA2 client software for your wireless adapter; When you select the WPA and WPA2 data encryption, only the feature selections ...
...client software that supports WPA2. Click the WPA and WPA2 radio button on the left to save your client card supports WPA2. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual • The Server Name, IP Address, RADIUS Port (number), and Shared Key are required for Encryption on the... the RADIUS Server. Consult the product documentation for instructions on the client: • Windows XP and Windows 2000 with the RADIUS Server. - and WPA2 client software for your wireless adapter; When you select the WPA and WPA2 data encryption, only the feature selections ...
SRXN3205 Reference Manual
Page 109
... procedure was developed and tested using: • Netgear SRXN3205 ProSafe Wireless-N VPN Firewall • Netgear ProSafe VPN Client • NAT router: Netgear FVX538 Configuring the SRXN3205 1. Select the VPN Client radio button for the pre-shared key. 5. Enter the Remote Identifier Information. Using the SRXN3205's VPN Wizard, we will create VPN client policies (IKE and VPN) that will use Netgear's ProSafe VPN Client software. Click Apply to the Internet or...
... procedure was developed and tested using: • Netgear SRXN3205 ProSafe Wireless-N VPN Firewall • Netgear ProSafe VPN Client • NAT router: Netgear FVX538 Configuring the SRXN3205 1. Select the VPN Client radio button for the pre-shared key. 5. Enter the Remote Identifier Information. Using the SRXN3205's VPN Wizard, we will create VPN client policies (IKE and VPN) that will use Netgear's ProSafe VPN Client software. Click Apply to the Internet or...
SRXN3205 Reference Manual
Page 110
... IP Subnet Address and Subnet Mask of the Policy Editor window, click the New Document icon to the SRXN3205. Figure 6-5 3. To configure your Windows toolbar and choose Security Policy Editor. 2. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Configuring the VPN Client From a PC with the Netgear Prosafe VPN Client installed, you can configure a VPN client policy to connect to open a New Connection. From...
... IP Subnet Address and Subnet Mask of the Policy Editor window, click the New Document icon to the SRXN3205. Figure 6-5 3. To configure your Windows toolbar and choose Security Policy Editor. 2. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Configuring the VPN Client From a PC with the Netgear Prosafe VPN Client installed, you can configure a VPN client policy to connect to open a New Connection. From...
SRXN3205 Reference Manual
Page 113
... On: 2. In the left of the window, click the disk icon to My Connections\SRXN" and the VPN client icon in separate policy tables. Managing VPN Tunnel Policies After you selected as the VPN tunnel connection name during Virtual Private Networking Using IPsec v1.0, October 2008 6-11 ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual 7. In the upper left frame...
... On: 2. In the left of the window, click the disk icon to My Connections\SRXN" and the VPN client icon in separate policy tables. Managing VPN Tunnel Policies After you selected as the VPN tunnel connection name during Virtual Private Networking Using IPsec v1.0, October 2008 6-11 ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual 7. In the upper left frame...
SRXN3205 Reference Manual
Page 122
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual • Authentication Algorithm: SHA-1 • Diffie-Hellman: Group 2 • SA Lifetime: 3600 seconds 7. Enter a Pre-Shared Key that will also be configured in the IKE Policies Table. Users must specify the Authentication Type to be used in the Windows toolbar. Give the connection a descriptive name such as a VPN concentrator where one...
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual • Authentication Algorithm: SHA-1 • Diffie-Hellman: Group 2 • SA Lifetime: 3600 seconds 7. Enter a Pre-Shared Key that will also be configured in the IKE Policies Table. Users must specify the Authentication Type to be used in the Windows toolbar. Give the connection a descriptive name such as a VPN concentrator where one...
SRXN3205 Reference Manual
Page 124
... authentication method beyond relying on the VPN client icon in the local network. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual 1. If this case "My Connections\modecfg_test". 2. Note: If a RADIUS-PAP server is chosen, you configured will first check the local User Database for storing the authentication information centrally in the Windows toolbar and click Connect. If the...
... authentication method beyond relying on the VPN client icon in the local network. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual 1. If this case "My Connections\modecfg_test". 2. Note: If a RADIUS-PAP server is chosen, you configured will first check the local User Database for storing the authentication information centrally in the Windows toolbar and click Connect. If the...
SRXN3205 Reference Manual
Page 133
...than the default portal. If you created a portal layout named "sales", then users will appear at https://vpn.company.com/portal/sales. In the Portal Site Title field, enter a title that unlike most other types ...Message text area. Select the Display banner message Virtual Private Networking Using SSL 7-5 v1.0, October 2008 ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Figure 7-2 3. Note that will be truncated before they log in to access the sub... section of the user's web browser window. Enter a plain text message or include HTML and JavaScript tags.
...than the default portal. If you created a portal layout named "sales", then users will appear at https://vpn.company.com/portal/sales. In the Portal Site Title field, enter a title that unlike most other types ...Message text area. Select the Display banner message Virtual Private Networking Using SSL 7-5 v1.0, October 2008 ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Figure 7-2 3. Note that will be truncated before they log in to access the sub... section of the user's web browser window. Enter a plain text message or include HTML and JavaScript tags.
SRXN3205 Reference Manual
Page 134
... user logs out or closes the web browser window. Check the Enable HTTP meta tags for security reasons and to prevent out-of-date web pages, themes, and data being stored in a user's web browser cache. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual on login page checkbox to show... the banner title and banner message text on the Login screen as shown below Figure 7-3 As shown in the figure, the banner title text is displayed in the grey header bar. Note: NETGEAR strongly recommends ...
... user logs out or closes the web browser window. Check the Enable HTTP meta tags for security reasons and to prevent out-of-date web pages, themes, and data being stored in a user's web browser cache. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual on login page checkbox to show... the banner title and banner message text on the Login screen as shown below Figure 7-3 As shown in the figure, the banner title text is displayed in the grey header bar. Note: NETGEAR strongly recommends ...