NETGEAR DG834GSP appendix Step-By-Step Configuration, Use of a Fully Qualified Domain Name Fqdn

Page 8

Reference Manual for the ADSL Modem Wireless Router DG834GSP

The Use of a Fully Qualified Domain Name (FQDN)

Many ISPs (Internet Service Providers) provide connectivity to their customers using dynamic instead of static IP addressing. This means that a user’s IP address does not remain constant over time which presents a challenge for gateways attempting to establish VPN connectivity.

A Dynamic DNS (DDNS) service allows a user whose public IP address is dynamically assigned to be located by a host or domain name. It provides a central public database where information (such as email addresses, host names and IP addresses) can be stored and retrieved. Now, a gateway can be configured to use a 3rd party service in lieu of a permanent and unchanging IP address to establish bi-directional VPN connectivity.

To use DDNS, you must register with a DDNS service provider. Example DDNS Service Providers include:

DynDNS: www.dyndns.org

TZO.com: netgear.tzo.com

ngDDNS: ngddns.iego.net

In this example, Gateway A is configured using an example FQDN provided by a DDNS Service provider. In this case we established the hostname dg834g.dyndns.org for gateway A using the DynDNS service. Gateway B will use the DDNS Service Provider when establishing a VPN tunnel.

In order to establish VPN connectivity Gateway A must be configured to use Dynamic DNS, and Gateway B must be configured to use a DNS hostname to find Gateway A provided by a DDNS Service Provider. Again, the following step-by-step procedures assume that you have already registered with a DDNS Service Provider and have the configuration information necessary to set up the gateways.

Step-By-Step Configuration

1.Log in to the DG834GSP labeled Gateway A as in the illustration.

Out of the box, the DG834GSP is set for its default LAN address of http://10.1.1.1 with its default user name of admin and default password of password. For this example we will assume you have set the local LAN address as 10.5.6.1 for Gateway A and have set your own password.

2.Click on the Dynamic DNS link on the left side of the Settings management GUI. This will take you to the Dynamic DNS Menu.

B-8

NETGEAR VPN Configuration

v1.0, June 2007

Page 7 Page 9
Image 8
Page 7 Page 9
Contents Appendix B Netgear VPN Configuration Configuration ProfileSee How to Set Up a Gateway-to Step-ByClick VPN Policies under Advanced VPN to invoke this screen Reference Manual for the Adsl Modem Wireless Router DG834GSP Click IKE Policies under VPN to invoke this screen DG834GSP with Fqdn to FVL328 PC/Client-to-Gateway Step-By-Step Configuration Use of a Fully Qualified Domain Name FqdnCheck the box Use a Dynamic DNS Service Figure B-6Figure B-8 Figure B-9 Device LAN IP Address LAN Subnet Mask Figure B-11 Configuration Summary Telecommuter Example Reference Manual for the Adsl Modem Wireless Router DG834GSP Main Mode Fully Qualified Domain Name Subnet address255.255.255.0 Single address 3600Click Apply when done to get the VPN Policies screen Reference Manual for the Adsl Modem Wireless Router DG834GSP Figure B-15 Select the Connect using Secure Gateway Tunnel check box Figure B-16Figure B-17 Figure B-18 Configure the VPN Client Authentication Proposal Figure B-19Authentication Method menu, select Pre-Shared key Figure B-20Check the Encapsulation Protocol ESP checkbox Check the VPN ConnectionFigure B-22 Type ping -t 10.1.1.1, and then click OK Monitoring the VPN Tunnel Telecommuter Example Viewing the PC Client’s Connection Monitor and Log ViewerViewing the VPN Router’s VPN Status and Log Information Figure B-26Figure B-27 Reference Manual for the Adsl Modem Wireless Router DG834GSP Reference Manual for the Adsl Modem Wireless Router DG834GSP
Top Page Image Contents