NETGEAR FVS318N-100NAS Assign IPv4 Addresses to Remote Users (Mode Config)

Virtual Private Networking Using IPSec and L2TP Connections

237

ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N

3. Click Apply to save your settings.

Note: You can select the RADIUS authentication protocol (PAP or CHAP)

on the Edit IKE Policy screen or Add IKE Policy screen (see

Configure XAUTH for VPN Clients on page 234).

Assign IPv4 Addresses to Remote Users (Mode Config)

To simplify the process of connecting remote VPN clients to the wireless VPN firewall, use

the Mode Config feature to automatically assign IPv4 addresses to remote users, including a

network access IP address, subnet mask, WINS server, and DNS address. Remote users

are given IP addresses available in a secured network space so that remote users appear as

seamless extensions of the network.

Primary Server NAS

Identifier The primary Network Access Server (NAS) identifier that needs to be present

in a RADIUS request.

Note: The wireless VPN firewall functions as an NAS, allowing network

access to external users after verification of their authentication information.

In a RADIUS transaction, the NAS needs to provide some NAS identifier

information to the RADIUS server. Depending on the configuration of the

RADIUS server, the wireless VPN firewall’s IP address might be sufficient as

an identifier, or the server might require a name, which you need to enter in

this field.

Backup RADIUS Server

To enable and configure the backup RADIUS server, select the Yes radio button, and then enter the

settings for the three fields to the right. The default setting is that the No radio button is selected.

Backup Server IP Address The IPv4 address of the backup RADIUS server.

Secret Phrase A shared secret phrase to authenticate the transactions between the client

and the backup RADIUS server. The same secret phrase needs to be

configured on both the client and the server.

Backup Server NAS

Identifier The backup Network Access Server (NAS) identifier that needs to be present

in a RADIUS request.

Note: See the note earlier in this table for the Primary Server NAS Identifier.

Connection Configuration

Time out period The period in seconds that the wireless VPN firewall waits for a response from

a RADIUS server. The default setting is 30 seconds.

Maximum Retry Counts The maximum number of times that the wireless VPN firewall attempts to

connect to a RADIUS server. The default setting is 4 retry counts.

Table 55. RADIUS Client screen settings (continued)

Setting Description