Client-to-Box VPN configuration using ProSafe Client Lite software (Supports Windows 7)
Page 1
Version 1.2 Page 1 of 8 VPN Configuration of ProSafe VPN Lite software and NETGEAR ProSafe Router: This document will guide you on the WAN interface or that the gateway device(s) have the correct port forwarding or DMZ configured so that port 500 UDP is open for your ProSafe NETGEAR Router, as well as how to ...configure the ProSafe VPN Lite Client in order to allow a Virtual Private Network to create IKE and auto...
Version 1.2 Page 1 of 8 VPN Configuration of ProSafe VPN Lite software and NETGEAR ProSafe Router: This document will guide you on the WAN interface or that the gateway device(s) have the correct port forwarding or DMZ configured so that port 500 UDP is open for your ProSafe NETGEAR Router, as well as how to ...configure the ProSafe VPN Lite Client in order to allow a Virtual Private Network to create IKE and auto...
Client-to-Box VPN configuration using ProSafe Client Lite software (Supports Windows 7)
Page 2
Page 2 of 8 Router Settings: As we configure the NETGEAR VPN Router, there will be information we'll add which will be used in the configuration of this form to help keep track of the ProSafe VPN Lite Client. You can print this information. ➊ Pre-Shared Key ➋ Remote Identifier Information ➌ Local Identifier Information ➍ Router's LAN Network IP Address ➎ Router's LAN Network Mask ➏ Router's WAN IP Address Version 1.2 This information will later be marked with rednumbered circles.
Page 2 of 8 Router Settings: As we configure the NETGEAR VPN Router, there will be information we'll add which will be used in the configuration of this form to help keep track of the ProSafe VPN Lite Client. You can print this information. ➊ Pre-Shared Key ➋ Remote Identifier Information ➌ Local Identifier Information ➍ Router's LAN Network IP Address ➎ Router's LAN Network Mask ➏ Router's WAN IP Address Version 1.2 This information will later be marked with rednumbered circles.
Client-to-Box VPN configuration using ProSafe Client Lite software (Supports Windows 7)
Page 3
You can be prompted to select which interface to use for the VPN Tunnel. Creation of the VPN Policy on the ProSafe Router: Page 3 of 8 • From the Router's GUI, go to 49 characters long. ➋ Remote Identifier Information: The Remote ...relevance to the connection. ➊ Pre-Shared Key: The pre-shared key can be any alphanumeric string from 8 to the VPN section and then select the VPN wizard. • Select the VPN Client option. The name identifies your own identifier. ➌ Local Identifier Information: The Local Identifier can be any alphanumeric string....
You can be prompted to select which interface to use for the VPN Tunnel. Creation of the VPN Policy on the ProSafe Router: Page 3 of 8 • From the Router's GUI, go to 49 characters long. ➋ Remote Identifier Information: The Remote ...relevance to the connection. ➊ Pre-Shared Key: The pre-shared key can be any alphanumeric string from 8 to the VPN section and then select the VPN wizard. • Select the VPN Client option. The name identifies your own identifier. ➌ Local Identifier Information: The Local Identifier can be any alphanumeric string....
Client-to-Box VPN configuration using ProSafe Client Lite software (Supports Windows 7)
Page 4
... IP Address: The first segment in the "Local" box. NOTE: The values you will be referenced with the same circled numbers while configuring the ProSafe VPN Lite Client software. but may change depending on the setup of your router. ➎ Router's LAN Network Mask: The second segment in the "Local" box... router. Page 4 of 8 Once you apply, you used for the fields marked with red circles will see the policy we created in the list of VPN Policies.
... IP Address: The first segment in the "Local" box. NOTE: The values you will be referenced with the same circled numbers while configuring the ProSafe VPN Lite Client software. but may change depending on the setup of your router. ➎ Router's LAN Network Mask: The second segment in the "Local" box... router. Page 4 of 8 Once you apply, you used for the fields marked with red circles will see the policy we created in the list of VPN Policies.
Client-to-Box VPN configuration using ProSafe Client Lite software (Supports Windows 7)
Page 5
Creation of the VPN Policy on the ProSafe Lite Client: Page 5 of 8 • After installing and activating the VPN Lite Client software, right-click on the VPN Client tray icon and select Configuration Panel. • Select Config Wizard from the VPN Configuration option in the menu. • Select "A router or a VPN gateway" to create a new policy to establish a Client-to-Box connection with a NETGEAR router or VPN gateway. Version 1.2
Creation of the VPN Policy on the ProSafe Lite Client: Page 5 of 8 • After installing and activating the VPN Lite Client software, right-click on the VPN Client tray icon and select Configuration Panel. • Select Config Wizard from the VPN Configuration option in the menu. • Select "A router or a VPN gateway" to create a new policy to establish a Client-to-Box connection with a NETGEAR router or VPN gateway. Version 1.2
Client-to-Box VPN configuration using ProSafe Client Lite software (Supports Windows 7)
Page 6
Version 1.2 Page 6 of 8 ➏ ➊ ➍ ➏ The IP or DNS public address of the remote equipment will be the value of your Router's WAN IP or FQDN. ➊ Input the PreShared Key used when creating the VPN Policy on the Router. ➍The value of the Internal IP address of remote network field will be the value of your remote Router's LAN Network IP Subnet. • Review the Configuration Summary and click Finish once you have confirmed that all the information is correct.
Version 1.2 Page 6 of 8 ➏ ➊ ➍ ➏ The IP or DNS public address of the remote equipment will be the value of your Router's WAN IP or FQDN. ➊ Input the PreShared Key used when creating the VPN Policy on the Router. ➍The value of the Internal IP address of remote network field will be the value of your remote Router's LAN Network IP Subnet. • Review the Configuration Summary and click Finish once you have confirmed that all the information is correct.
Client-to-Box VPN configuration using ProSafe Client Lite software (Supports Windows 7)
Page 8
Open Tunnel Connection Status Version 1.2 If your settings are correct you'll receive a message confirming the connection. Page 8 of 8 Connecting: To connect and establish the VPN tunnel between the VPN Lite Client and the remote router, click on Tunnel1, then Open Tunnel.
Open Tunnel Connection Status Version 1.2 If your settings are correct you'll receive a message confirming the connection. Page 8 of 8 Connecting: To connect and establish the VPN tunnel between the VPN Lite Client and the remote router, click on Tunnel1, then Open Tunnel.
UTM9S Installation Guide
Page 1
...6 7. Factory reset button 9. If not, ensure that the Ethernet cable from the NETGEAR support site: http://support.netgear.com. Use a browser to connect to the Unit 1. You can access the Reference... the WAN Ethernet port to an active WAN connection such as multiple WAN settings, VPN, firewall, and custom scanning. Note: When the unit scans secure HTTPS traffic,... June 23, 2011 9:02 AM Installation Guide ProSecure™ Unified Threat Management Appliance UTM9S Note: Electronic License This product includes an electronic license activated automatically by product registration. ...
...6 7. Factory reset button 9. If not, ensure that the Ethernet cable from the NETGEAR support site: http://support.netgear.com. Use a browser to connect to the Unit 1. You can access the Reference... the WAN Ethernet port to an active WAN connection such as multiple WAN settings, VPN, firewall, and custom scanning. Note: When the unit scans secure HTTPS traffic,... June 23, 2011 9:02 AM Installation Guide ProSecure™ Unified Threat Management Appliance UTM9S Note: Electronic License This product includes an electronic license activated automatically by product registration. ...
UTM9S User Manual
Page 2
...form or by any liability that may occur due to a ReadyNAS and Configure Quarantine Settings (UTM9S Only), Query the Quarantine Logs (UTM9S Only), and Appendix D, ReadyNAS Integration - Trademarks NETGEAR, the NETGEAR logo, ReadyNAS, ProSafe, ProSecure, Smart Wizard, Auto Uplink, X-RAID2, and NeoTV are ...transcribed, stored in a retrieval system, or translated into any language in this document without the written permission of the UTM9S with the new VPN client (see Chapter 1, Introduction and Appendix B, Wireless Module for more information about the ProSecure forum and to the ...
...form or by any liability that may occur due to a ReadyNAS and Configure Quarantine Settings (UTM9S Only), Query the Quarantine Logs (UTM9S Only), and Appendix D, ReadyNAS Integration - Trademarks NETGEAR, the NETGEAR logo, ReadyNAS, ProSafe, ProSecure, Smart Wizard, Auto Uplink, X-RAID2, and NeoTV are ...transcribed, stored in a retrieval system, or translated into any language in this document without the written permission of the UTM9S with the new VPN client (see Chapter 1, Introduction and Appendix B, Wireless Module for more information about the ProSecure forum and to the ...
UTM9S User Manual
Page 4
...Key Features and Capabilities 14 Multiple WAN Port Models for Increased Reliability or Outbound Load Balancing 15 Wireless Features 15 DSL Features 15 Advanced VPN Support for Both IPSec and SSL 16 A Powerful, True Firewall 16 Stream Scanning for Content Filtering 16 Security Features 17 Autosensing Ethernet ... 22 Front Panel UTM25 23 Front Panel UTM50 24 Front Panel UTM150 24 Front Panel UTM9S and Modules 25 LED Descriptions, UTM5, UTM10, UTM25, UTM50, and UTM150 . . . . 27 LED Descriptions, UTM9S and Modules 28 Rear Panel UTM5, UTM10, and UTM25 30 Rear Panel UTM50 and ...
...Key Features and Capabilities 14 Multiple WAN Port Models for Increased Reliability or Outbound Load Balancing 15 Wireless Features 15 DSL Features 15 Advanced VPN Support for Both IPSec and SSL 16 A Powerful, True Firewall 16 Stream Scanning for Content Filtering 16 Security Features 17 Autosensing Ethernet ... 22 Front Panel UTM25 23 Front Panel UTM50 24 Front Panel UTM150 24 Front Panel UTM9S and Modules 25 LED Descriptions, UTM5, UTM10, UTM25, UTM50, and UTM150 . . . . 27 LED Descriptions, UTM9S and Modules 28 Rear Panel UTM5, UTM10, and UTM25 30 Rear Panel UTM50 and ...
UTM9S User Manual
Page 6
... Rules 133 Set LAN DMZ Rules 136 Inbound Rule Examples 139 Outbound Rule Example 143 Configure Other Firewall Features 144 VLAN Rules 144 Attack Checks, VPN Pass-through, and Multicast Pass-through . . . . . 146 Set Session Limits 150 Manage the Application Level Gateway for SIP Sessions 151 Create Services, QoS Profiles, and...
... Rules 133 Set LAN DMZ Rules 136 Inbound Rule Examples 139 Outbound Rule Example 143 Configure Other Firewall Features 144 VLAN Rules 144 Attack Checks, VPN Pass-through, and Multicast Pass-through . . . . . 146 Set Session Limits 150 Manage the Application Level Gateway for SIP Sessions 151 Create Services, QoS Profiles, and...
UTM9S User Manual
Page 7
...Status Information . . . . . 258 Test the NETGEAR VPN Client Connection 258 NETGEAR VPN Client Status and Log Information 260 View the UTM IPSec VPN Connection Status 260 View the UTM IPSec VPN Log 261 Manage IPSec VPN Policies 262 Manage IKE Policies 262 Manage VPN Policies 269 Configure Extended Authentication (XAUTH 277 Configure XAUTH for...-Alives and Dead Peer Detection 297 Configure Keep-Alives 297 Configure Dead Peer Detection 298 Configure NetBIOS Bridging with IPSec VPN 299 Configure the PPTP Server (UTM9S Only 300 View the Active PPTP Users 302 Configure the L2TP Server...
...Status Information . . . . . 258 Test the NETGEAR VPN Client Connection 258 NETGEAR VPN Client Status and Log Information 260 View the UTM IPSec VPN Connection Status 260 View the UTM IPSec VPN Log 261 Manage IPSec VPN Policies 262 Manage IKE Policies 262 Manage VPN Policies 269 Configure Extended Authentication (XAUTH 277 Configure XAUTH for...-Alives and Dead Peer Detection 297 Configure Keep-Alives 297 Configure Dead Peer Detection 298 Configure NetBIOS Bridging with IPSec VPN 299 Configure the PPTP Server (UTM9S Only 300 View the Active PPTP Users 302 Configure the L2TP Server...
UTM9S User Manual
Page 8
...Create the Portal Layout 324 Configure Domains, Groups, and Users 328 Configure Applications for Port Forwarding 328 Configure the SSL VPN Client 331 Use Network Resource Objects to Simplify Policies 334 Configure User, Group, and Global Policies 336 Chapter 9 Managing Users, Authentication...370 Configure RADIUS VLANs 376 Configure Global User Settings 377 View and Log Out Active Users 378 Manage Digital Certificates for VPN Connections 381 VPN Certificates Screen 382 Manage CA Certificates 382 Manage Self-Signed Certificates 384 Manage the Certificate Revocation List 388 Chapter 10 Network...
...Create the Portal Layout 324 Configure Domains, Groups, and Users 328 Configure Applications for Port Forwarding 328 Configure the SSL VPN Client 331 Use Network Resource Objects to Simplify Policies 334 Configure User, Group, and Global Policies 336 Chapter 9 Managing Users, Authentication...370 Configure RADIUS VLANs 376 Configure Global User Settings 377 View and Log Out Active Users 378 Manage Digital Certificates for VPN Connections 381 VPN Certificates Screen 382 Manage CA Certificates 382 Manage Self-Signed Certificates 384 Manage the Certificate Revocation List 388 Chapter 10 Network...
UTM9S User Manual
Page 9
...405 Update the Scan Signatures and Scan Engine Firmware 410 Configure Date and Time Service 412 Connect to a ReadyNAS and Configure Quarantine Settings (UTM9S Only 414 Log Storage 414 Connect to a ReadyNAS 415 Configure the Quarantine Settings 416 Chapter 11 Monitoring System Access and Performance Enable the..., and Statistics 433 View Status Screens 439 View the System Status 439 View the Active VPN Users 451 View the VPN Tunnel Connection Status 452 View the PPTP and L2TP Server Status (UTM9S Only 453 View the Port Triggering Status 454 View the WAN Ports Status 456 View Attached...
...405 Update the Scan Signatures and Scan Engine Firmware 410 Configure Date and Time Service 412 Connect to a ReadyNAS and Configure Quarantine Settings (UTM9S Only 414 Log Storage 414 Connect to a ReadyNAS 415 Configure the Quarantine Settings 416 Chapter 11 Monitoring System Access and Performance Enable the..., and Statistics 433 View Status Screens 439 View the System Status 439 View the Active VPN Users 451 View the VPN Tunnel Connection Status 452 View the PPTP and L2TP Server Status (UTM9S Only 453 View the Port Triggering Status 454 View the WAN Ports Status 456 View Attached...
UTM9S User Manual
Page 11
...WAN Port System 562 Virtual Private Networks 563 VPN Road Warrior (Client-to-Gateway 564 VPN Gateway-to-Gateway 567 VPN Telecommuter (Client-to-Gateway through a NAT Router) . . . . . 569 Appendix D ReadyNAS Integration Supported ReadyNAS Models 572 Install the UTM9S Add-On on the ReadyNAS 573 Connect ...to the ReadyNAS on the UTM9S 575 Appendix E Two-Factor Authentication Why Do I Need Two-Factor Authentication 578 What Are the Benefits of Two-Factor Authentication 578 What Is Two-Factor Authentication 579 NETGEAR Two-Factor Authentication Solutions 579 Appendix F ...
...WAN Port System 562 Virtual Private Networks 563 VPN Road Warrior (Client-to-Gateway 564 VPN Gateway-to-Gateway 567 VPN Telecommuter (Client-to-Gateway through a NAT Router) . . . . . 569 Appendix D ReadyNAS Integration Supported ReadyNAS Models 572 Install the UTM9S Add-On on the ReadyNAS 573 Connect ...to the ReadyNAS on the UTM9S 575 Appendix E Two-Factor Authentication Why Do I Need Two-Factor Authentication 578 What Are the Benefits of Two-Factor Authentication 578 What Is Two-Factor Authentication 579 NETGEAR Two-Factor Authentication Solutions 579 Appendix F ...
UTM9S User Manual
Page 14
...increased data rate. • Built-in four- ProSecure Unified Threat Management (UTM) Appliance The UTM provides advanced IPSec and SSL VPN technologies for firmware upgrade. • Internal universal switching power supply. Key Features and Capabilities The UTM provides the following key features... 2.4-GHz or 5-GHz wireless modes. • xDLS module (UTM9S only) for ADSL and VDSL. • Advanced IPSec VPN and SSL VPN support. • Depending on the model, bundled with a one-user license of the NETGEAR ProSafe VPN Client software (VPN01L). • Advanced Stateful Packet Inspection (SPI...
...increased data rate. • Built-in four- ProSecure Unified Threat Management (UTM) Appliance The UTM provides advanced IPSec and SSL VPN technologies for firmware upgrade. • Internal universal switching power supply. Key Features and Capabilities The UTM provides the following key features... 2.4-GHz or 5-GHz wireless modes. • xDLS module (UTM9S only) for ADSL and VDSL. • Advanced IPSec VPN and SSL VPN support. • Depending on the model, bundled with a one-user license of the NETGEAR ProSafe VPN Client software (VPN01L). • Advanced Stateful Packet Inspection (SPI...
UTM9S User Manual
Page 16
...to provide client-free access with customizable user portals and support for mobile users to selected corporate resources without requiring a preinstalled VPN client on user type or group membership. Logs security events such as a number of user repositories. - Permits scheduling ...of firewall policies by telecommuters requires the installation of the NETGEAR ProSafe VPN Client software (VPN01L). • SSL VPN provides remote access for a wide variety of bytes are available, scanning starts. You can also configure the...
...to provide client-free access with customizable user portals and support for mobile users to selected corporate resources without requiring a preinstalled VPN client on user type or group membership. Logs security events such as a number of user repositories. - Permits scheduling ...of firewall policies by telecommuters requires the installation of the NETGEAR ProSafe VPN Client software (VPN01L). • SSL VPN provides remote access for a wide variety of bytes are available, scanning starts. You can also configure the...
UTM9S User Manual
Page 19
...Feature UTM5 IPSec VPN tunnels Number of the UTM9S) Hardware LAN ports (Gigabit RJ-45) 4 UTM9S UTM10 UTM25 UTM50 UTM150 10 10 25 50 150 4 4 4 6 4 Introduction 19 ProSecure Unified Threat Management (UTM) Appliance • IPSec VPN Wizard. The UTM includes the NETGEAR IPSec VPN Wizard so ..., 24 hours a day. For security, you can easily configure SSL connections over VPN according to the web management interface from a remote location on the NETGEAR ProSecure website at http://prosecure.netgear.com. The UTM's front panel LEDs provide an easy way to show the differences...
...Feature UTM5 IPSec VPN tunnels Number of the UTM9S) Hardware LAN ports (Gigabit RJ-45) 4 UTM9S UTM10 UTM25 UTM50 UTM150 10 10 25 50 150 4 4 4 6 4 Introduction 19 ProSecure Unified Threat Management (UTM) Appliance • IPSec VPN Wizard. The UTM includes the NETGEAR IPSec VPN Wizard so ..., 24 hours a day. For security, you can easily configure SSL connections over VPN according to the web management interface from a remote location on the NETGEAR ProSecure website at http://prosecure.netgear.com. The UTM's front panel LEDs provide an easy way to show the differences...
UTM9S User Manual
Page 22
Application Notes and other helpful information - ProSafe VPN Client software (VPN01L) (depends on the UTM. • LAN Ethernet ports. Hardware Features The front panel ports and LEDs, rear panel ports, and bottom labels ... Modules • Rear Panel UTM5, UTM10, and UTM25 • Rear Panel UTM50 and UTM150 • Rear Panel UTM9S • Bottom Panels with license key(s) If any of which are incorrect, missing, or damaged, contact your NETGEAR dealer. ProSecure Unified Threat Management (UTM) Appliance • Resource CD, including: - The front panel also contains...
Application Notes and other helpful information - ProSafe VPN Client software (VPN01L) (depends on the UTM. • LAN Ethernet ports. Hardware Features The front panel ports and LEDs, rear panel ports, and bottom labels ... Modules • Rear Panel UTM5, UTM10, and UTM25 • Rear Panel UTM50 and UTM150 • Rear Panel UTM9S • Bottom Panels with license key(s) If any of which are incorrect, missing, or damaged, contact your NETGEAR dealer. ProSecure Unified Threat Management (UTM) Appliance • Resource CD, including: - The front panel also contains...
UTM9S User Manual
Page 38
... information, see Access the New SSL Portal Login Screen on page 345. In the address field, enter https://192.168.1.1. The NETGEAR Configuration Manager Login screen displays in this chapter. Note: The UTM factory default IP address is described in the previous section, Qualified... Web Browsers. 2. The configuration of LAN, firewall, scanning, VPN, management, and monitoring features is 192.168.1.1. The configuration of the WAN mode (required for multiple WAN port models), Dynamic DNS, ...
... information, see Access the New SSL Portal Login Screen on page 345. In the address field, enter https://192.168.1.1. The NETGEAR Configuration Manager Login screen displays in this chapter. Note: The UTM factory default IP address is described in the previous section, Qualified... Web Browsers. 2. The configuration of LAN, firewall, scanning, VPN, management, and monitoring features is 192.168.1.1. The configuration of the WAN mode (required for multiple WAN port models), Dynamic DNS, ...