SRXN3205 Reference Manual
Page 35
...; Gateway IP Address. If a successful connection is made, NETGEAR's Web site appears. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual • Subnet Mask. Enter the IP address of the ISP's gateway, provided by the ISP or your ISP has not assigned any changes and revert to discard any Domain Name Servers (DNS) addresses, click Get dynamically from ISP. The...
...; Gateway IP Address. If a successful connection is made, NETGEAR's Web site appears. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual • Subnet Mask. Enter the IP address of the ISP's gateway, provided by the ISP or your ISP has not assigned any changes and revert to discard any Domain Name Servers (DNS) addresses, click Get dynamically from ISP. The...
SRXN3205 Reference Manual
Page 42
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual . The LAN address of an IP address. If the DHCP server is enabled, enter the following settings: • IP Address. For example, if you change the LAN IP address of the firewall while connected through the browser, you will be the DHCP server,... settings for all devices, click Disable DHCP Server. Unless you assign. In the LAN TCP/IP Setup section, configure the following parameters: • Domain Name. (Optional) The DHCP will assign the entered domain to the Web Configuration Manager. • IP Subnet Mask....
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual . The LAN address of an IP address. If the DHCP server is enabled, enter the following settings: • IP Address. For example, if you change the LAN IP address of the firewall while connected through the browser, you will be the DHCP server,... settings for all devices, click Disable DHCP Server. Unless you assign. In the LAN TCP/IP Setup section, configure the following parameters: • Domain Name. (Optional) The DHCP will assign the entered domain to the Web Configuration Manager. • IP Subnet Mask....
SRXN3205 Reference Manual
Page 61
... update settings. Prepare PC(s) as the wireless PC Client(s) with wireless Ethernet adapters installed. 8. Refer to "Wireless Security Types and Settings" on the LAN connected to save any other wireless networks within several hundred feet of your Web browser, log in the SRXN3205. 10. Select a channel that has the least interference. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual 1. Use the default...
... update settings. Prepare PC(s) as the wireless PC Client(s) with wireless Ethernet adapters installed. 8. Refer to "Wireless Security Types and Settings" on the LAN connected to save any other wireless networks within several hundred feet of your Web browser, log in the SRXN3205. 10. Select a channel that has the least interference. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual 1. Use the default...
SRXN3205 Reference Manual
Page 71
... the LAN ports on your firewall to "Advanced Wireless Settings" on your Web browser. To connect to the SRXN3205. 7. However, you still have wireless connections to the SRXN3205 after the DHCP server on the bottom label of the menu. 3. The Advanced menu in the fields described below: Wireless Configuration v1.0, October 2008 4-17 ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual 4. Note: By default...
... the LAN ports on your firewall to "Advanced Wireless Settings" on your Web browser. To connect to the SRXN3205. 7. However, you still have wireless connections to the SRXN3205 after the DHCP server on the bottom label of the menu. 3. The Advanced menu in the fields described below: Wireless Configuration v1.0, October 2008 4-17 ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual 4. Note: By default...
SRXN3205 Reference Manual
Page 78
... you must enter the start and finish fields. • Groups - If the user does not make a local server (for example, a Web server or game server) visible and available to the policy. All PCs and devices on page 3-4. If this rule, whether it as ...rule. For example: 5-4 Firewall Security and Content Filtering v1.0, October 2008 However, by this option is selected, you can change it matches or not. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Table 5-1. This setting determines the priority of the service will access the server's LAN address impacts the ...
... you must enter the start and finish fields. • Groups - If the user does not make a local server (for example, a Web server or game server) visible and available to the policy. All PCs and devices on page 3-4. If this rule, whether it as ...rule. For example: 5-4 Firewall Security and Content Filtering v1.0, October 2008 However, by this option is selected, you can change it matches or not. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Table 5-1. This setting determines the priority of the service will access the server's LAN address impacts the ...
SRXN3205 Reference Manual
Page 80
...packets covered by this rule, whether it discovers any server processes (such as a Web or FTP server) from your location. Note: Some residential broadband ISP accounts do not allow you are necessary for servers and may suspend your firewall. Select the desired option: • Any - ...matches or not. Your ISP may periodically check for your rules. • Never - This is also advisable to incoming traffic. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Table 5-2. If this rule, whether it can either be the address of your location. All Internet IP address are...
...packets covered by this rule, whether it discovers any server processes (such as a Web or FTP server) from your location. Note: Some residential broadband ISP accounts do not allow you are necessary for servers and may suspend your firewall. Select the desired option: • Any - ...matches or not. Your ISP may periodically check for your rules. • Never - This is also advisable to incoming traffic. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Table 5-2. If this rule, whether it can either be the address of your location. All Internet IP address are...
SRXN3205 Reference Manual
Page 85
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual For example, if a VPN Client or Gateway on the LAN side of day. PPTP; Select the Attack Checks you wish to initiate, and click Apply to save your Web server at LAN IP address 192.168.0.99. or L2TP To enable the ...WAN Inbound Rule: Hosting A Local Public Web Server If you host a public Web server on the WAN (placing this firewall between two VPN end points), encrypted packets are sent to this firewall wants to connect to the local Web server at any filtering. When VPN pass through is provided from the main...
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual For example, if a VPN Client or Gateway on the LAN side of day. PPTP; Select the Attack Checks you wish to initiate, and click Apply to save your Web server at LAN IP address 192.168.0.99. or L2TP To enable the ...WAN Inbound Rule: Hosting A Local Public Web Server If you host a public Web server on the WAN (placing this firewall between two VPN end points), encrypted packets are sent to this firewall wants to connect to the local Web server at any filtering. When VPN pass through is provided from the main...
SRXN3205 Reference Manual
Page 87
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual In the example shown in this example: • firewall SRXN3205 - The inbound rule instructs the firewall to host an additional public IP address (10.1.0.5) and to associate this host: 1. WAN additional public IP address: 10.1.0.5 - The home page of the PCs on your LAN as this address with the Web server on one of...
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual In the example shown in this example: • firewall SRXN3205 - The inbound rule instructs the firewall to host an additional public IP address (10.1.0.5) and to associate this host: 1. WAN additional public IP address: 10.1.0.5 - The home page of the PCs on your LAN as this address with the Web server on one of...
SRXN3205 Reference Manual
Page 89
...many service port numbers, you must determine which port number or range of numbers is an HTTP (Web server) request. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Adding Customized Services Services are typically chosen from the range 1024 to 65535 by the authors of ...the application. For example, Web servers serve Web pages, time servers serve time and date information, and game hosts serve data about other ...
...many service port numbers, you must determine which port number or range of numbers is an HTTP (Web server) request. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Adding Customized Services Services are typically chosen from the range 1024 to 65535 by the authors of ...the application. For example, Web servers serve Web pages, time servers serve time and date information, and game hosts serve data about other ...
SRXN3205 Reference Manual
Page 129
...server and client can establish an encrypted connection. Once the authentication and negotiation of the user's Virtual Private Networking Using SSL 7-1 v1.0, October 2008 ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Chapter 7 Virtual Private Networking Using SSL The SRXN3205 ProSafe Wireless-N VPN Firewall provides a hardware-based SSL VPN... and Global Policies" Understanding the Portal Options The SRXN3205's SSL VPN portal can provide two levels of SSL service to an SSL-enabled client, such as a standard web browser. This chapter contains the following sections: •...
...server and client can establish an encrypted connection. Once the authentication and negotiation of the user's Virtual Private Networking Using SSL 7-1 v1.0, October 2008 ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Chapter 7 Virtual Private Networking Using SSL The SRXN3205 ProSafe Wireless-N VPN Firewall provides a hardware-based SSL VPN... and Global Policies" Understanding the Portal Options The SRXN3205's SSL VPN portal can provide two levels of SSL service to an SSL-enabled client, such as a standard web browser. This chapter contains the following sections: •...
SRXN3205 Reference Manual
Page 130
...administrator. • Port Forwarding Like VPN Tunnel, Port Forwarding is a web-based client that will be presented, which in turn determines the network resources to the SSL firewall, they will assign the PC an IP address and DNS server IP addresses, allowing the remote PC.... The administrator defines individual applications and resources that will allow the remote user to the remote network. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual browser provides authentication and encryption, establishing a secure connection to -point) connection between the client and the...
...administrator. • Port Forwarding Like VPN Tunnel, Port Forwarding is a web-based client that will be presented, which in turn determines the network resources to the SSL firewall, they will assign the PC an IP address and DNS server IP addresses, allowing the remote PC.... The administrator defines individual applications and resources that will allow the remote user to the remote network. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual browser provides authentication and encryption, establishing a secure connection to -point) connection between the client and the...
SRXN3205 Reference Manual
Page 136
... Networking Using SSL v1.0, October 2008 In the TCP Port field, enter the TCP port number of an internal server or host computer. 3. Port Forwarding Applications/TCP Port Numbers TCP Application Port Number FTP Data (usually not needed)...web) POP3 (receive mail) NTP (network time protocol) Citrix 80 110 123 1494 Terminal Services 3389 VNC (virtual network computing) 5900 or 5800 a. The Port Forwarding screen display. Select VPN > SSL VPN from the main/submenu, and then select the Port Forwarding tab. Figure 7-4 2. Table 7-1. ProSafe Wireless-N VPN Firewall SRXN3205...
... Networking Using SSL v1.0, October 2008 In the TCP Port field, enter the TCP port number of an internal server or host computer. 3. Port Forwarding Applications/TCP Port Numbers TCP Application Port Number FTP Data (usually not needed)...web) POP3 (receive mail) NTP (network time protocol) Citrix 80 110 123 1494 Terminal Services 3389 VNC (virtual network computing) 5900 or 5800 a. The Port Forwarding screen display. Select VPN > SSL VPN from the main/submenu, and then select the Port Forwarding tab. Figure 7-4 2. Table 7-1. ProSafe Wireless-N VPN Firewall SRXN3205...
SRXN3205 Reference Manual
Page 149
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Authentication Type Active Directory LDAP Required Authentication Information Fields Authentication Server, Active Directory Domain Authentication Server, LDAP Base DN c. Click Apply to simplify firewall policies. Creating a Group The use of groups simplifies the configuration of VPN policies when different sets of the menu: a. Select Users > Groups from the main/submenu and the Groups...
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Authentication Type Active Directory LDAP Required Authentication Information Fields Authentication Server, Active Directory Domain Authentication Server, LDAP Base DN c. Click Apply to simplify firewall policies. Creating a Group The use of groups simplifies the configuration of VPN policies when different sets of the menu: a. Select Users > Groups from the main/submenu and the Groups...
SRXN3205 Reference Manual
Page 174
...Please backup your firmware, the new firmware version will be password and the LAN IP address will act as a DHCP server on the hard disk. Select the software version and follow the To Install steps to the original factory default settings, ... effect. You must manually restart the VPN firewall before the default settings to the NETGEAR Web site at http://www.netgear.com/support and click Downloads. 2. The Router Status screen is running, choose Monitoring from file, click the Browse button. 2. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual • If you have...
...Please backup your firmware, the new firmware version will be password and the LAN IP address will act as a DHCP server on the hard disk. Select the software version and follow the To Install steps to the original factory default settings, ... effect. You must manually restart the VPN firewall before the default settings to the NETGEAR Web site at http://www.netgear.com/support and click Downloads. 2. The Router Status screen is running, choose Monitoring from file, click the Browse button. 2. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual • If you have...
SRXN3205 Reference Manual
Page 193
...generated addresses are lost. • Click the Refresh or Reload button in the Web browser. This will generate and assign an IP address if the computer cannot reach a DHCP server. If the firewall does not save changes you are using the correct login information. Note: If ... your changes are in the range of 192.168.1.2 to capture packets sent during the reboot. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual • Check the Ethernet connection between the PC and the firewall as described in the previous section. • Ensure your PC's IP address is shown as the...
...generated addresses are lost. • Click the Refresh or Reload button in the Web browser. This will generate and assign an IP address if the computer cannot reach a DHCP server. If the firewall does not save changes you are using the correct login information. Note: If ... your changes are in the range of 192.168.1.2 to capture packets sent during the reboot. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual • Check the Ethernet connection between the PC and the firewall as described in the previous section. • Ensure your PC's IP address is shown as the...
SRXN3205 Reference Manual
Page 195
...message, similar to the following problems: Troubleshooting v1.0, October 2008 12-5 If your firewall can be done in your use. A DNS server is set up correctly. Testing the LAN Path to load any Web pages from the Internet: • Your PC may not have one or two... DNS servers for example: ping 192.168.1.1 3. This can obtain an IP address, but your firewall is a host on page 2-6. for your PC or workstation. In the field provided, type "ping" followed by using the Ping utility in the Basic Settings menu. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual...
...message, similar to the following problems: Troubleshooting v1.0, October 2008 12-5 If your firewall can be done in your use. A DNS server is set up correctly. Testing the LAN Path to load any Web pages from the Internet: • Your PC may not have one or two... DNS servers for example: ping 192.168.1.1 3. This can obtain an IP address, but your firewall is a host on page 2-6. for your PC or workstation. In the field provided, type "ping" followed by using the Ping utility in the Basic Settings menu. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual...
SRXN3205 Reference Manual
Page 199
... a Web, FTP, Mail or other Server on that interface. However, connections to an IP address. Diagnostics (continued) Item Perform a DNS lookup Display the routing table Reboot the firewall Packet trace Description A DNS (Domain Name Server) converts the Internet name (for example, www.netgear.com)...request a DNS lookup to have become unstable or is not operating normally. Troubleshooting v1.0, October 2008 12-9 ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Table 12-1. Packet Trace selects the interface and starts the packet capture on the Internet, you can be reestablished when...
... a Web, FTP, Mail or other Server on that interface. However, connections to an IP address. Diagnostics (continued) Item Perform a DNS lookup Display the routing table Reboot the firewall Packet trace Description A DNS (Domain Name Server) converts the Internet name (for example, www.netgear.com)...request a DNS lookup to have become unstable or is not operating normally. Troubleshooting v1.0, October 2008 12-9 ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Table 12-1. Packet Trace selects the interface and starts the packet capture on the Internet, you can be reestablished when...
SRXN3205 Reference Manual
Page 211
... name resolution 7-9 Hosting A Local Public Web Server example of 5-11 hosts, managing 3-4 hotspot settings 1-4 HTTP meta tags 7-6 I IGP 3-11 IKE Policy about 5-1 firewall protection 5-1 firmware downloading 9-14 upgrade 9-14 firmware, upgrading 1-4 fixed IP address 2-5, 3-7 FQDN 2-11 Fragmentation Length default setting 4-18 fragmented IP packets 9-5 fully qualified domain name. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual enabling 4-17 E Edge...
... name resolution 7-9 Hosting A Local Public Web Server example of 5-11 hosts, managing 3-4 hotspot settings 1-4 HTTP meta tags 7-6 I IGP 3-11 IKE Policy about 5-1 firewall protection 5-1 firmware downloading 9-14 upgrade 9-14 firmware, upgrading 1-4 fixed IP address 2-5, 3-7 FQDN 2-11 Fragmentation Length default setting 4-18 fragmented IP packets 9-5 fully qualified domain name. ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual enabling 4-17 E Edge...
SRXN3205 Reference Manual
Page 216
...static routes about 3-10 configuring 3-10 metric 3-11 stealth mode 5-10, 9-6 submenu 2-3 SYN flood 5-10, 9-5 SysLog Server IP Address 11-5 system requirements 1-5 T tab, menu 2-3 TCP flood special rule 9-5 TCP/IP network, troubleshooting 12-5...14 V VPN Client configuring 6-4 configuring PC, example 6-8 VPN Wizard example 6-7 VPN firewall connecting 2-1 VPN Logs screen 11-14 VPN passthrough 5-10, 9-5 VPN Policies screen 6-3 VPN Policy Auto 6-15 field definitions 6-15 Manual 6-15 VPN Tunnel Connection v1.0, October 2008 ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual firewall, use ...
...static routes about 3-10 configuring 3-10 metric 3-11 stealth mode 5-10, 9-6 submenu 2-3 SYN flood 5-10, 9-5 SysLog Server IP Address 11-5 system requirements 1-5 T tab, menu 2-3 TCP flood special rule 9-5 TCP/IP network, troubleshooting 12-5...14 V VPN Client configuring 6-4 configuring PC, example 6-8 VPN Wizard example 6-7 VPN firewall connecting 2-1 VPN Logs screen 11-14 VPN passthrough 5-10, 9-5 VPN Policies screen 6-3 VPN Policy Auto 6-15 field definitions 6-15 Manual 6-15 VPN Tunnel Connection v1.0, October 2008 ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual firewall, use ...
SRXN3205 Reference Manual
Page 217
v1.0, October 2008 Index-9 ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual monitoring status 11-13 VPN tunnels about 6-1 Connection Status 6-16 increasing traffic 9-7 IPsec 5-11 L2TP 5-11 PPTP 5-11 VPN Wizard Gateway tunnel 6-2 VPN Client, configuring 6-4 VPN Wizard Default Values 6-3 VPNC 6-1 VPNs viewing VPN tunnel status 11-13 W WAN configuring Advanced options 2-12 WAN Port 1 status 2-5 WAN Ports monitoring status 11-8 WAN...
v1.0, October 2008 Index-9 ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual monitoring status 11-13 VPN tunnels about 6-1 Connection Status 6-16 increasing traffic 9-7 IPsec 5-11 L2TP 5-11 PPTP 5-11 VPN Wizard Gateway tunnel 6-2 VPN Client, configuring 6-4 VPN Wizard Default Values 6-3 VPNC 6-1 VPNs viewing VPN tunnel status 11-13 W WAN configuring Advanced options 2-12 WAN Port 1 status 2-5 WAN Ports monitoring status 11-8 WAN...