NETGEAR DGFV338 Manually Assigning IP Addresses to Remote Users ModeConfig, Mode Config Operation

Page 140

DGFV338 ProSafe Wireless ADSL Modem VPN Firewall Router Reference Manual

9.Click Reset to cancel any changes and revert to the previous settings.

10.Click Apply to save the settings.

Note: Selection of the Authentication Protocol, usually PAP or CHAP, is configured on the individual IKE policy screens.

Manually Assigning IP Addresses to Remote Users (ModeConfig)

To simply the process of connecting remote VPN clients to the DGFV338, the ModeConfig module can be used to assign IP addresses to remote users, including a network access IP address, subnet mask, and name server addresses from the router. Remote users are given IP addresses available in secured network space so that remote users appear as seamless extensions of the network.

In the following example, we configured the ProSafe DGFV338 using ModeConfig, and then configured a PC running ProSafe VPN Client software using these IP addresses.

NETGEAR ProSafe Wireless ADSL Modem VPN Firewall Router

WAN IP address: 172.21.4.1

LAN IP address/subnet: 192.168.2.1/255.255.255.0

NETGEAR ProSafe VPN Client software IP address: 192.168.1.2

Mode Config Operation

After IKE Phase 1 is complete, the VPN connection initiator (remote user/client) asks for IP configuration parameters such as IP address, subnet mask and name server addresses. The Mode Config module will allocate an IP address from the configured IP address pool and will activate a temporary IPSec policy using the template security proposal information configured in the Mode Config record.

Note: After configuring a Mode Config record, you must go to the IKE Policies menu and configure an IKE policy using the newly-created Mode Config record as the Remote Host Configuration Record. The VPN Policies menu does not need to be

edited.

5-32

Virtual Private Networking

v1.0, April 2007

Page 139 Page 141
Image 140
Page 139 Page 141
Contents NETGEAR, Inc Placement and Range Guidelines Technical SupportTrademarks Statement of ConditionsFCC Statement FCC Requirements for Operation in the United StatesEurope EU Declaration of Conformity Português Voluntary Control Council for Interference Vcci Statement Bestätigung des Herstellers/ImporteursCertificate of the Manufacturer/Importer Additional Copyrights TermsViii MD5 Product and Publication Details DGFV338Contents Chapter Wireless Configuration Chapter Virtual Private Networking Chapter LAN Configuration Appendix a Default Settings and Technical Specifications Xvi About This Manual Conventions, Format and ScopeHow to Use This Manual How to Print this ManualXix Page Key Features of the Netgear ProSafe DGFV338 Chapter IntroductionPowerful, True Firewall with Content Filtering Full Routing on Both the Adsl and 10/100 WAN PortAutosensing Ethernet Connections with Auto Uplink SecurityVirtual Private Networking VPN Easy Installation and Management Extensive Protocol SupportMaintenance and Support System RequirementsPackage Contents Hardware DescriptionObject Descriptions Nos LEDs Activity DescriptionRouter Rear Panel Router Login Factory Defaults Enter http//192.168.1.1 as the URLPlacement of your Netgear ProSafe DGFV338 Chapter Basic Installation and Configuration Using Adsl Microfilters optional Logging in and Configuring your Internet Connection Configuring Your Internet Connection using Auto Detect V1.0, April Manually Configuring your Adsl Connection Internet Service ConnectionsEnter your Internet IP Address Manually Configuring your Ethernet Connection V1.0, April Enter your Internet IP Address V1.0, April V1.0, April V1.0, April Configuring the WAN Mode Use Dedicated WAN port V1.0, April Configuring Dynamic DNS If Needed On the InternetV1.0, April DynDNS Service Screen Programming the Traffic Meter Traffic Meter AdslTraffic Meter Parameters Parameter DescriptionV1.0, April Chapter Wireless Configuration Implementing Wireless SecurityLUHOHVVDWD 6HFXULW\2SWLRQV Understanding Wireless Settings Wireless LANs Wireless Access PointV1.0, April Access Control List Wireless Advanced Options Advanced Wireless Router SettingsWEP and WPA/WPA2 Wireless Security Check List Form WPA-PSK or WPA2-PSK Pre-Shared KeyConfiguring Your Wireless Settings Configuring WEP V1.0, April Configuring WPA-PSK Configuring WPA2-PSK Configuring WPA-PSK and WPA2-PSK Configuring WPA with Radius Configuring WPA2 with Radius Configuring WPA and WPA2 with Radius Restricting Wireless Access by MAC Address V1.0, April V1.0, April Firewall Protection and Content Filtering Overview Using Rules to Block or Allow Specific Kinds of TrafficAbout Service Based Rules Outbound Rules Service Blocking V1.0, April V1.0, April V1.0, April Inbound Rules Port Forwarding Outbound Rule Example Blocking Instant MessengerV1.0, April V1.0, April V1.0, April V1.0, April Inbound Rule Example a Local Public Web Server Inbound Rule Example One-to-One NAT Mapping V1.0, April Inbound Rule Example Exposed Host Considerations for Inbound Rules Customized Services Order of Precedence for RulesV1.0, April Quality of Service QoS Priorities Outbound Rules Add ScreenAttack Checks WAN Security ChecksManaging Groups and Hosts V1.0, April V1.0, April Blocking Internet Sites Groups and HostsV1.0, April V1.0, April Enabling Source MAC Filtering Setting up Port Triggering V1.0, April Port triggering Setting a Schedule to Block or Allow Specific Traffic Event Logs and Alerts V1.0, April V1.0, April Security and Administrator Management V1.0, April Dual WAN Port Systems IP addressing requirements for VPNs in dual WAN port systemsSetting up a VPN Connection using the VPN Wizard V1.0, April V1.0, April VPN Tunnel Policies IKE PolicyManaging IKE Policies IKE Policy TableVPN Policy Managing VPN PoliciesVPN Tunnel Connection Status VPN Policy TableConfiguring the ProSafe DGFV338 Creating a VPN Connection Between FVX538 and DGFV338V1.0, April V1.0, April V1.0, April V1.0, April Configuring the FVX538 Creating a VPN Client Connection VPN Client to DGFV338 Testing the ConnectionConfiguring the DGFV338 V1.0, April Configuring the VPN Client Todgfv Left frame, select Security Policy Todgfv Testing the Connection Certificate Authorities Generating a Self Certificate Request Generate Self Certificate Request, enter the required dataV1.0, April Uploading a Trusted Certificate Managing your Certificate Revocation List CRLExtended Authentication Xauth Configuration UploadConfiguring Xauth for VPN Clients V1.0, April User Database Configuration Radius Client Configuration Enter the Primary Radius Server IP address Manually Assigning IP Addresses to Remote Users ModeConfig Mode Config OperationConfiguring the ProSafe DGFV338 V1.0, April V1.0, April Configuring the ProSafe VPN Client for ModeConfig V1.0, April V1.0, April V1.0, April V1.0, April Wireless Firewall Features That Reduce Traffic Performance ManagementService Blocking Block Sites Port Forwarding Wireless Firewall Features That Increase TrafficSource MAC Filtering V1.0, April VPN Tunnels Using QoS to Shift the Traffic MixPort Triggering Tools for Traffic Management Administrator and Guest Access AuthorizationChanging the Passwords and Login Time-out Enabling Remote Management Access Under Allow Remote Management, check the Yes radio box Command Line Interface Https//172.21.4.18080Event Alerts Traffic Limits ReachedMonitoring Router StatusRouter Status WAN Ports Internet Traffic V1.0, April LAN Ports and Attached Devices Known PCs and DevicesDhcp Log Known PCs and Devices tablePort Triggering Status data Firewall SecurityPort Triggering Status V1.0, April VPN Tunnels Using a Snmp Manager VPN Status DataV1.0, April Diagnostics Diagnostics Backup and Restore Settings Configuration File ManagementSettings Backup and Firmware Upgrade Click default Router Upgrade Setting the Time Zone To upgrade router softwareV1.0, April Chapter LAN Configuration Using the Firewall as a Dhcp serverConfiguring the LAN Setup Options Security and Firewall ProtectionUsing Address Reservation Configuring Multi Home LAN IPs V1.0, April Gateway IP and DNS server IPs Configuring Static Routes Adding or Editing a Static RouteRouting Information Protocol RIP V1.0, April Enabling Universal Plug and Play UPnP Static Route ExampleUPnP Portmap Table settings Settings DescriptionV1.0, April Power LED Not On Basic FunctionsLAN or Internet Port LEDs Not On Troubleshooting the Web Configuration InterfaceLEDs Never Turn Off Troubleshooting the ISP Connection V1.0, April Troubleshooting a TCP/IP Network Using a Ping Utility Testing the LAN Path to Your FirewallTesting the Path from Your PC to a Remote Device Ping -n 10 IP addressRestoring the Default Configuration and Password Problems with Date and TimeV1.0, April Default Factory Settings Table A-1. Default Configuration SettingsFeature Default Behavior Technical Specifications Table A-2. Technical SpecificationsSpecification Description Electromagnetic Emissions Appendix B Related Documents V1.0, April Index NumericsIndex-2 Index-3 Index-4 Index-5 Index-6 Index-7 Index-8
Related manuals
Manual 10 pages 13.59 Kb
Top Page Image Contents