NETGEAR FVX538 Uploading a Trusted Certificate, Managing your Certificate Revocation List CRL

Page 132

ProSafe VPN Firewall 200 FVX538 Reference Manual

6.Copy the contents of the Data to supply to CA text box into a file, including all of the data contained in “----BEGIN CERTIFICATE REQUEST---” and “---END CERTIFICATE REQUEST---”Click Done. You will return to the Certificate screen and your Request details will be displayed in the Self Certificates Requests table showing a Status of “Waiting for Certificate upload”

To submit your Certificate request to a CA:

1.Connect to the Website of the CA.

2.Start the Self Certificate request procedure.

3.When prompted for the requested data, copy the data from your saved data file (including “---

-BEGIN CERTIFICATE REQUEST---” and “---END CERTIFICATE REQUEST’).

4.Submit the CA form. If no problems ensue, the Certificate will be issued.

Uploading a Trusted Certificate

After obtaining a new Certificate from the CA, you must upload the certificate to this device and add it to your Trusted Certificates:

To upload your new certificate:

1.From the main menu, under VPN, select Certificates. The Certificates screen will display. Scroll down to the Self Certificate Requests section.

2.Click Browse, and locate the certificate file on your PC. Select the file name in the “File to upload” field and click Upload. The certificate file will be uploaded to this device.

3.Scroll back to the Active Self Certificates table. The new Certificate will appear in the Active Self Certificates list.

Certificates are updated by their issuing CA authority on a regular basis. You should track all of your CAs to ensure that you have the latest version and/or that your certificate has not been revoked. To track your CAs, you must upload the Certificate Identify for each CA to the CRL.

Managing your Certificate Revocation List (CRL)

CRL (Certificate Revocation List) files show Certificates which are active and certificates which have been revoked, and are no longer valid. Each CA issues their own CRLs.

It is important that you keep your CRLs up-to-date. You should obtain the CRL for each CA regularly.

The CRL table lists your active CAs and their critical release dates:

5-30

Virtual Private Networking

v1.0, August 2006

Page 131 Page 133
Image 132
Page 131 Page 133
Contents ProSafe VPN Firewall FVX538 Reference Manual Trademarks Statement of ConditionsEU Regulatory Compliance Statement Bestätigung des Herstellers/ImporteursVoluntary Control Council for Interference Vcci Statement Additional CopyrightsAugust MD5 Product and Publication Details Contents Chapter LAN Configuration Chapter Virtual Private Networking Chapter Router and Network Management Chapter Troubleshooting Index About This Manual Conventions, Formats and ScopeHow to Use This Manual How to Print this ManualRevision History Xvi Key Features Chapter IntroductionPowerful, True Firewall with Content Filtering Security Features Autosensing Ethernet Connections with Auto UplinkExtensive Protocol Support Easy Installation and Management Trend Micro IntegrationPackage Contents Router Front Panel Object DescriptionsWAN Router Rear Panel Router’s IP Address, Login Name, and Password Rack Mounting HardwareDefault Log In Settings Enter http//192.168.1.1 as the URLProSafe VPN Firewall 200 FVX538 Reference Manual ProSafe VPN Firewall 200 FVX538 Reference Manual Connecting the FVX538 to the Internet Logging into the VPN FirewallConfiguring the Internet Connections to Your ISPs Internet connection methods Connection Method Data RequiredInternet connection methods Setting the Router’s MAC Address Manually Configuring Your Internet ConnectionProSafe VPN Firewall 200 FVX538 Reference Manual Programming the Traffic Meter if Desired ProSafe VPN Firewall 200 FVX538 Reference Manual Traffic Meter Settings Parameter DescriptionConfiguring the WAN Mode Required for Dual WAN Setting Up Auto-Rollover Mode ProSafe VPN Firewall 200 FVX538 Reference Manual Setting Up Load Balancing ProSafe VPN Firewall 200 FVX538 Reference Manual Configuring Dynamic DNS If Needed ProSafe VPN Firewall 200 FVX538 Reference Manual Ddns links Configuring the Advanced WAN Options If Needed ProSafe VPN Firewall 200 FVX538 Reference Manual ProSafe VPN Firewall 200 FVX538 Reference Manual Chapter LAN Configuration Using the Firewall as a Dhcp serverConfiguring the LAN Setup Options ProSafe VPN Firewall 200 FVX538 Reference Manual Configuring Multi Home LAN IPs ProSafe VPN Firewall 200 FVX538 Reference Manual Managing Groups and Hosts LAN Groups Creating the Network DatabaseProSafe VPN Firewall 200 FVX538 Reference Manual ProSafe VPN Firewall 200 FVX538 Reference Manual Setting Up Address Reservation Configuring and Enabling the DMZ Port Check the Do you want to enable DMA Port? radio boxProSafe VPN Firewall 200 FVX538 Reference Manual Configuring Static Routes Static RoutesRouting Information Protocol RIP ProSafe VPN Firewall 200 FVX538 Reference Manual Enabling Trend Micro Antivirus Enforcement Static Route ExampleProSafe VPN Firewall 200 FVX538 Reference Manual Click Apply to submit your changes ProSafe VPN Firewall 200 FVX538 Reference Manual About Firewall Protection and Content Filtering Using Rules to Block or Allow Specific Kinds of TrafficServices-Based Rules Outbound Rules Service BlockingServices menu see Adding Customized Services on Outbound RulesInbound Rules Port Forwarding Inbound Rules Inbound Rules Setting LAN WAN Rules Order of Precedence for RulesProSafe VPN Firewall 200 FVX538 Reference Manual LAN WAN Outbound Services Rules Setting DMZ WAN Rules LAN WAN Inbound Services RulesProSafe VPN Firewall 200 FVX538 Reference Manual Setting LAN DMZ Rules LAN DMZ Outbound Services Rules LAN DMZ Inbound Services Rules Attack ChecksPptp Inbound Rules Examples LAN WAN Inbound Rule Hosting a Local Public Web ServerProSafe VPN Firewall 200 FVX538 Reference Manual ProSafe VPN Firewall 200 FVX538 Reference Manual LAN WAN or DMZ WAN Inbound Rule Specifying an Exposed Host Outbound Rules Example LAN WAN Outbound Rule Blocking Instant MessengerAdding Customized Services ProSafe VPN Firewall 200 FVX538 Reference Manual Setting Quality of Service QoS Priorities Setting a Schedule to Block or Allow Specific Traffic Setting Block Sites Content Filtering ProSafe VPN Firewall 200 FVX538 Reference Manual Enabling Source MAC Filtering Port Triggering ProSafe VPN Firewall 200 FVX538 Reference Manual Outgoing Trigger Port Range fields Mail Notifications of Event Logs and Alerts ProSafe VPN Firewall 200 FVX538 Reference Manual SysLog Facility Message Levels Numerical Code SeverityInformational Informational messages Administrator Tips Firewall Log Field DescriptionsProSafe VPN Firewall 200 FVX538 Reference Manual Dual WAN Port Systems IP Addressing for VPNs in Dual WAN Port SystemsRollover Mode Setup Screen Load Balancing Setup Screen Setting up a VPN Connection using the VPN Wizard Creating a VPN Tunnel to a Gateway ProSafe VPN Firewall 200 FVX538 Reference Manual ProSafe VPN Firewall 200 FVX538 Reference Manual Creating a VPN Tunnel Connection to a VPN Client ProSafe VPN Firewall 200 FVX538 Reference Manual ProSafe VPN Firewall 200 FVX538 Reference Manual VPN Tunnel Policies IKE PolicyManaging IKE Policies IKE Policy TableVPN Policy Managing VPN PoliciesVPN Tunnel Connection Status VPN Policy TableConfiguring the FVX538 Creating a VPN Gateway Connection Between FVX538 and FVS338ProSafe VPN Firewall 200 FVX538 Reference Manual ProSafe VPN Firewall 200 FVX538 Reference Manual ProSafe VPN Firewall 200 FVX538 Reference Manual ProSafe VPN Firewall 200 FVX538 Reference Manual Configuring the FVS338 Testing the Connection Creating a VPN Client Connection VPN Client to FVX538ProSafe VPN Firewall 200 FVX538 Reference Manual Configuring the VPN Client Fvxlocal.com Home11.fvxremote.com ProSafe VPN Firewall 200 FVX538 Reference Manual Testing the Connection Certificate Authorities Generating a Self Certificate Request Generate Self Certificate Request, enter the required dataProSafe VPN Firewall 200 FVX538 Reference Manual Uploading a Trusted Certificate Managing your Certificate Revocation List CRLExtended Authentication Xauth Configuration UploadConfiguring Xauth for VPN Clients ProSafe VPN Firewall 200 FVX538 Reference Manual User Database Configuration Radius Client Configuration Enter the Primary Radius Server IP address Manually Assigning IP Addresses to Remote Users ModeConfig Mode Config OperationConfiguring the VPN Firewall ProSafe VPN Firewall 200 FVX538 Reference Manual ProSafe VPN Firewall 200 FVX538 Reference Manual Configuring the ProSafe VPN Client for ModeConfig ProSafe VPN Firewall 200 FVX538 Reference Manual ProSafe VPN Firewall 200 FVX538 Reference Manual ProSafe VPN Firewall 200 FVX538 Reference Manual ProSafe VPN Firewall 200 FVX538 Reference Manual ProSafe VPN Firewall 200 FVX538 Reference Manual Performance Management Bandwidth CapacityVPN Firewall Features That Reduce Traffic Service BlockingProSafe VPN Firewall 200 FVX538 Reference Manual Block Sites Source MAC FilteringVPN Firewall Features That Increase Traffic Port ForwardingPort Triggering Using QoS to Shift the Traffic Mix DMZ PortVPN Tunnels Administration Changing Passwords and SettingsTools for Traffic Management ProSafe VPN Firewall 200 FVX538 Reference Manual Enabling Remote Management Access Check Allow Remote Management radio boxUsing a Snmp Manager Https//134.177.0.1238080ProSafe VPN Firewall 200 FVX538 Reference Manual Settings Backup and Firmware Upgrade Backup and Restore Settings Click defaultRouter Upgrade Setting the Time Zone To upgrade router softwareMonitoring the Router Enabling the Traffic MeterProSafe VPN Firewall 200 FVX538 Reference Manual Setting Login Failures and Attacks Notification Monitoring Attached Devices Known PCs and Devices IP AddressViewing Port Triggering Status Port Triggering Status dataViewing Router Configuration and System Status Router Status FieldsMonitoring WAN Ports Status Monitoring VPN Tunnel Connection Status VPN Logs VPN Status dataPerforming Diagnostics Dhcp LogDiagnostics Diagnostics ProSafe VPN Firewall 200 FVX538 Reference Manual Power LED Not On Basic FunctionsTroubleshooting the Web Configuration Interface LEDs Never Turn OffLAN or Internet Port LEDs Not On ProSafe VPN Firewall 200 FVX538 Reference Manual Troubleshooting the ISP Connection Troubleshooting a TCP/IP Network Using a Ping Utility Testing the LAN Path to Your FirewallTesting the Path from Your PC to a Remote Device Ping -n 10 IP addressRestoring the Default Configuration and Password Problems with Date and TimeProSafe VPN Firewall 200 FVX538 Reference Manual Appendix a Default Settings and Technical Specifications Table A-1. VPN firewall Default Configuration SettingsTable A-2. VPN firewall Technical Specifications Feature Default BehaviorElectromagnetic Emissions ProSafe VPN Firewall 200 FVX538 Reference Manual Appendix B Related Documents ProSafe VPN Firewall 200 FVX538 Reference Manual Appendix C Network Planning for Dual WAN Ports What You Will Need to Do Before You BeginFigure C-1 InternetComputer Network Configuration Requirements Internet Configuration RequirementsCabling and Computer Hardware Requirements Where Do I Get the Internet Configuration Parameters? Internet Connection Information Form Overview of the Planning Process Inbound TrafficVirtual Private Networks VPNs Ports Dual WAN Ports Load BalancingInbound Traffic Requirements for exposed hosts in dual WAN port systemsAlways change at the IP addresses Virtual Private Networks VPNs Reference Manual Road Warrior Example Dual WAN Ports, Before Rollover But a fully-qualified WAN1 or WAN2 VPN Road Warrior DualVPN Gateway-to-Gateway Single Gateway WAN Ports Road Warrior Example Dual WAN Ports, Load BalancingGateway-to-Gateway Example Single WAN Ports WAN A2to establish or re Gateway-to-Gateway Example Dual WAN Ports, Load Balancing NAT Router Remote tunnel Remote PC or WAN2 Index Index-2 Index-3 Index-4 Index-5 Index-6 Index-7 Index-8 Index-9 Index-10
Related manuals
Manual 2 pages 62.01 Kb Manual 3 pages 5.38 Kb
Top Page Image Contents