NETGEAR, Inc
EU Regulatory Compliance Statement
Technical Support
Trademarks
Statement of Conditions
Additional Copyrights
Bestätigung des Herstellers/Importeurs
Certificate of the Manufacturer/Importer
Voluntary Control Council for Interference Vcci Statement
MD5
Model Number
Product and Publication Details
V1.1, August
Contents
Chapter LAN Configuration
Chapter Virtual Private Networking
Chapter VPN Firewall and Network Management
Appendix C Related Documents Index
Xii Contents
Conventions, Formats and Scope
About This Manual
Revision History
How to Print This Manual
Part Number Version Date Description
Settings screen see Manually Configuring Your Internet
Xvi About This Manual
Chapter Introduction
Key Features
Advanced VPN Support for IPsec
Powerful, True Firewall with Content Filtering
Autosensing Ethernet Connections with Auto Uplink
Security Features
Extensive Protocol Support
Easy Installation and Management
Package Contents
LED Descriptions
VPN Firewall Front and Rear Panels
Object Activity Description One WAN Port Active
LAN IP Address User Name Password
Default IP Address, Login Name, and Password
Qualified Web Browsers
Understanding the Connection Steps
Connecting the VPN Firewall to the Internet
Logging into the VPN Firewall
Navigating the Menus
Configuring the Internet Connection to Your ISP
Connection Data Required Method
Internet connection methods
Manually Configuring Your Internet Connection
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
Configuring the WAN Mode
Classical Routing
Network Address Translation
Configuring Dynamic DNS
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
Configuring the Advanced Broadband Options
Additional WAN Related Configuration
Choosing the VPN Firewall Dhcp Options
Chapter LAN Configuration
Configuring the LAN Setup Options
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
Managing Groups and Hosts LAN Groups
Group and individual control over PCs
Creating the Network Database
Viewing the Network Database
Adding Devices to the Network Database
Changing Group Names in the LAN Groups Database
Setting Up Dhcp Address Reservation
Configuring Multi Home LAN IP Addresses
Configuring and Enabling the DMZ Port
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
Configuring Static Routes
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
Static Route Example
Configuring Routing Information Protocol RIP
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
About Firewall Protection and Content Filtering
Firewall Protection and Content Filtering
Using Rules to Block or Allow Specific Kinds of Traffic
Outbound Rules Service Blocking
Services-Based Rules
Outbound Rules
Or Allow Specific Traffic on
Profile
Inbound Rules Port Forwarding
Block always
Inbound Rules
Inbound Rules
Viewing Rules and Order of Precedence for Rules
Configuring LAN WAN Rules
LAN WAN Outbound Services Rules
LAN WAN Inbound Services Rules
Configuring DMZ WAN Rules
Configuring LAN DMZ Rules
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
LAN WAN Inbound Rule Hosting a Local Public Web Server
Inbound Rules Examples
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
LAN WAN or DMZ WAN Inbound Rule Specifying an Exposed Host
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
Outbound Rules Example
Configuring Other Firewall Features
LAN WAN Outbound Rule Blocking Instant Messenger
WAN Security Checks
Attack Checks
LAN Security Checks
Setting Session Limits
Managing the Application Level Gateway for SIP Sessions
Adding Customized Services
Creating Services, QoS Profiles, and Bandwidth Profiles
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
Modifying a Service
Specifying Quality of Service QoS Priorities
Creating Bandwidth Profiles
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
Setting a Schedule to Block or Allow Specific Traffic
Blocking Internet Sites Content Filtering
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
Configuring Source MAC Filtering
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
Configuring IP/MAC Address Binding
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
Configuring Port Triggering
Outgoing Trigger Port Range fields
Incoming Response Port Range fields
Configuring UPnP Universal Plug and Play
Email Notifications of Event Logs and Alerts
Administrator Tips
Chapter Virtual Private Networking
Using the VPN Wizard for Client and Gateway Configurations
Creating Gateway to Gateway VPN Tunnels with the Wizard
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
Creating a Client to Gateway VPN Tunnel
Use the VPN Wizard Configure the Gateway for a Client Tunnel
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
Leave Virtual Adapter disabled
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
Netgear VPN Client Status and Log Information
Testing the Connections and Viewing Status Information
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
System Tray Icon Status
VPN Firewall VPN Connection Status and Logs
Managing VPN Policies
Configuring IKE Policies
IKE Policies Screen
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
Manually Adding or Editing an IKE Policy
General
Add IKE Policy Settings
Mode Config Record
Description or Subfield and Description
Remote
Local
IKE SA Parameters
Group 5 1536 bit
Group 1 768 bit
Information, see Configuring Radius Clients for Xauth
VPN Policies Screen
Configuring VPN Policies
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
Manually Adding or Editing a VPN Policy
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
Add VPN Policy Settings
Manual Policy Parameters
Traffic Selection
Auto Policy Parameters
Group 768 bit
Managing Certificates
Group 1536 bit
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
Viewing and Loading CA Certificates
Understanding the Certificates Screen
Understanding and Viewing Active Self Certificates
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
Obtaining a Self Certificate from a Certificate Authority
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
Managing your Certificate Revocation List CRL
Configuring Xauth for VPN Clients
Configuring Extended Authentication Xauth
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
Configuring the User Database for Xauth
Configuring Radius Clients for Xauth
Enter the primary Radius Server IP Address
Mode Config Operation
Assigning IP Addresses to Remote Users ModeConfig
Configuring the Mode Config Screen
Configuring Mode Config Operation on the VPN Firewall
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
Configuring an IKE Policy for Mode Config Operation
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
Configuring the ProSafe VPN Client for ModeConfig
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
Enable Replay Detection should be checked
Configuring Keepalives
Configuring Keepalives and Dead Peer Detection
Testing the Mode Config Connection
Configuring Dead Peer Detection
Click the Yes radio button to Enable Dead Peer Detection
Configuring NetBIOS Bridging with VPN
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
Bandwidth Capacity
Performance Management
Service Blocking
VPN Firewall Features That Reduce Traffic
Blocking Sites
Source MAC Filtering
VPN Firewall Features That Increase Traffic
Port Forwarding
Port Triggering
DMZ Port
Using QoS to Shift the Traffic Mix
VPN Tunnels
Tools for Traffic Management
Changing Passwords and Settings
Local Authentication Settings section of the screen
Adding External Users
Authentication Protocols
Configuring an External Server for Authentication
Authentication Description Protocol
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
Enabling Remote Management Access
Check Allow Remote Management radio box
Using an Snmp Manager
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
Managing the Configuration File
Backing Up Settings
Reverting to Factory Default Settings
Restoring Settings
Upgrading the Firmware
Configuring Date and Time Service
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
Activating Notification of Events and Alerts
Monitoring System Performance
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
Viewing the Logs
Firewall Log Field Descriptions
Enabling the Traffic Meter
Field Description
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
Router Status Fields
Viewing the VPN Firewall Configuration and System Status
Monitoring VPN Firewall Statistics
Monitoring Broadband Port Status
Monitoring Attached Devices
Known PCs and Devices options
Monitoring VPN Tunnel Connection Status
IPsec Connection Status Fields
Viewing the VPN Logs
Viewing Port Triggering Status
Viewing the Dhcp Log
Port Triggering Status Data
To view the most recent entries, click refresh
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
Basic Functions
Chapter Troubleshooting
LEDs Never Turn Off
Power LED Not On
LAN or Internet Port LEDs Not On
Troubleshooting the Web Configuration Interface
Troubleshooting the ISP Connection
Testing the LAN Path to Your VPN Firewall
Troubleshooting a TCP/IP Network Using a Ping Utility
Ping -n 10 IP address
Testing the Path from Your PC to a Remote Device
Problems with Date and Time
Restoring the Default Configuration and Password
Using the Diagnostics Utilities
Through VPN tunnel
Diagnostics
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
Local Network LAN
Table A-1. VPN firewall Default Configuration Settings
Feature Default Behavior Router Login
Internet Connection
Physical Specifications
Table A-2. VPN firewall Technical Specifications
Feature Default Behavior Management
Power Adapter
Interface Specifications
Feature Specifications Environmental Specifications
Electromagnetic Emissions
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
What are the benefits of Two-Factor Authentication?
Why do I need Two-Factor Authentication?
What is Two-Factor Authentication
Netgear Two-Factor Authentication Solutions
Figure B-1
Figure B-3
Document Link
Appendix C Related Documents
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
Numerics
Index
Index-2
Index-3
Index-4
Index-5
Index-6
Index-7
Index-8
Index-9
Index-10
