317

ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N

Generate a CSR and Obtain a Self-Signed Certificate from a CA

To use a self-signed certificate, you first need to request the digital certificate from a CA, and then download and activate the digital certificate on the wireless VPN firewall. To request a self-signed certificate from a CA, you need to generate a certificate signing request (CSR) for and on the wireless VPN firewall. The CSR is a file that contains information about your company and about the device that holds the certificate. Refer to the CA for guidelines about the information that you need to include in your CSR.

To generate a new CSR file, obtain a digital certificate from a CA, and upload it to the wireless VPN firewall:

1.Select VPN > Certificates. The Certificates screen displays. The following figure shows the middle section of the screen with the Active Self Certificates section, Generate Self Certificate Request section, and Self Certificate Requests section. (The Self Certificate Requests table contains an example certificate.)

Figure 193. Certificates, screen 2 of 3

Manage Users, Authentication, and VPN Certificates

Page 317

Image 317

Contents

FVS318N Technical Support ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318NTrademarks Statement of Conditions ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N Contents LAN Configuration Firewall Protection Virtual Private Networking Using SSL Connections Network and System Management Appendix a Default Settings and Technical Specifications Introduction Introduction Key Features and CapabilitiesWireless Features Advanced VPN Support for Both IPSec and SSL Powerful, True Firewall Extensive Protocol Support Security FeaturesAutosensing Ethernet Connections with Auto Uplink Easy Installation and Management Hardware Features Package Contents Wireless LED Right LAN LEDs Right WAN LED Power Left LAN LEDsGreen, one for each port Active WAN LED WAN Port Activity Description LAN PortsDMZ LED Rear Panel Bottom Panel with Product Label Choose a Location for the Wireless VPN Firewall  To log in to the wireless VPN firewall Log In to the Wireless VPN Firewall ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N Web Management Interface Menu Layout ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N IPv6 Requirements for Entering IP AddressesIPv4  Complete these four tasks Internet and WAN Configuration TasksTasks to Set Up an IPv4 Internet Connection to Your ISP IPv4 and IPv6 Internet and Broadband Settings Configure the IPv4 Internet Connection and WAN SettingsTasks to Set Up an IPv6 Internet Connection to Your ISP Configure the IPv4 Routing Mode Configure the IPv4 WAN Mode To configure the IPv4 routing mode Network Address Translation Click Apply to save your settings ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N Pptp Connection Method Manual Data Input Required  To manually configure the IPv4 broadband ISP settings Manually Configure an IPv4 Internet Connection Step Pptp and PPPoE settingsSetting Description Has assigned one. You can leave this field blank Get Automatically from ISP radio button DNS server settingsIdentifier check box Configure Dynamic DNS  To configure Ddns Ddns service settings Configure the IPv6 Internet Connection and WAN Settings  To configure the IPv6 routing mode Configure the IPv6 Routing Mode Use a DHCPv6 Server to Configure an IPv6 Internet Connection ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N Configure a Static IPv6 Internet Connection Setting Description Configure a PPPoE IPv6 Internet Connection ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N Stateless DHCPv6 Server With Prefix Delegation on WAN Port Status on Options and Other Tasks on Configure 6to4 Automatic Tunneling  To configure an Isatap tunnel Configure Isatap Automatic TunnelingSelect the Enable Automatic Tunneling check box  To edit an Isatap tunnel Add Isatap Tunnel screen settings View the Tunnel Status and IPv6 Addresses Configure Stateless IP/ICMP Translation To delete one or more tunnels  To view the status of the tunnels and IPv6 addresses  To configure advanced WAN options Configure Advanced WAN Options and Other Tasks To configure Siit Setting Description MTU Size Broadband Advanced Options screen settings Router’s MAC Address Setting Speed DescriptionDefault Address radio button Verify the Connection Additional WAN-Related Configuration TasksWhat to Do Next Manage IPv4 Virtual LANs and Dhcp Options LAN Configuration Port-Based VLANs LAN Configuration Assign and Manage Vlan Profiles Explained in Configure the IPv4 Internet Connection and WAN Vlan Dhcp Options DNS Proxy Dhcp ServerDhcp Relay  To add a Vlan profile Configure a Vlan ProfileLdap Server ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N Setting Description Vlan Profile Add Vlan Profile screen settingsIP Setup Port Membership VLAN, the default start IP address is Inter Vlan Routing DNS Proxy  To enable, disable, or delete one or more Vlan profiles Configure Vlan MAC Addresses and LAN Advanced Settings To configure a Vlan to have a unique MAC address  To edit a Vlan profile ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N  To edit a secondary LAN IP address  To add a secondary LAN IPv4 address  To delete one or more secondary LAN IP addresses Manage IPv4 Groups and Hosts IPv4 LAN Groups Manage the Network Database Add Computers or Devices to the Network Database Add Known PCs and Devices section settingsAlso Set Up Dhcp Address Reservation on Edit Computers or Devices in the Network Database  To edit the names of any of the eight available groups Change Group Names in the Network DatabaseDeleting Computers or Devices from the Network Database Set Up Dhcp Address Reservation Stateless DHCPv6 Server Manage the IPv6 LANDHCPv6 Server Options Stateful DHCPv6 Server Stateless DHCPv6 Server With Prefix Delegation Configure the IPv6 LAN Setting Description IPv6 LAN Setup LAN Setup screen settings for IPv6DHCPv6 Prefix delegation check box is selected. The stateless Settings IPv6 screen see Configure a Static IPv6 Internet IPv6 screen see Configure a Static IPv6 Internet ConnectionIPv6 LAN Address Pools  To add an IPv6 LAN address pool  To delete one or more IPv6 LAN address pools LAN IPv6 Config screen settings To edit an IPv6 LAN address pool  To add an IPv6 prefix IPv6 LAN Prefixes for Prefix Delegation To edit a prefix  To delete one or more prefixes Flags in the Radvd DHCPv6 Server Provides Radvd Provides DHCPv6 and Radvd interaction in the LAN Radvd screen settings for the LAN MTU Advertisement Prefixes for the LAN To add an advertisement prefix for the LAN SLA ID Add Advertisement Prefix screen settings for the LAN To edit an advertisement prefix  To delete one or more advertisement prefixes DMZ Enable and Configure the DMZ Port for IPv4 and IPv6 Traffic DMZ Port for IPv4 Traffic  To enable and configure the DMZ port for IPv4 traffic Setting Description DMZ Port Setup DMZ Setup screen settings for IPv4 Dhcp for DMZ Connected Computers DMZ Port for IPv6 Traffic ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N Configure the IPv6 Router Advertisement Daemon DMZ Setup screen settings for IPv6DHCPv6 for DMZ Connected Computers Advertisement Prefixes for the DMZ on  To add an IPv6 DMZ address pool IPv6 screen see Configure a Static IPv6 InternetIPv6 DMZ Address Pools  To delete one or more IPv6 DMZ address pools DMZ IPv6 Config screen settings To edit an IPv6 DMZ address pool DHCPv6 and Radvd interaction in the DMZ Radvd screen settings for the DMZ  To add an advertisement prefix for the DMZ Advertisement Prefixes for the DMZ Add Advertisement Prefix screen settings for the DMZ  To add an IPv4 static route to the Static Route table Configure Static IPv4 RoutesManage Static IPv4 Routing Add Static Route screen settings for IPv4  To enable and configure RIP Configure the Routing Information Protocol To edit an IPv4 static route  To delete one or more routes 101 RIP Configuration screen settings 102 Authentication for RIP-2B/2M 103 Manage Static IPv6 RoutingIPv4 Static Route Example 104 Add IPv6 Static Routing screen settings 105  To edit an IPv6 static route 106 Overview of the Wireless Features 107 Wireless Equipment Placement and Range GuidelinesWireless Configuration and Security  To configure the basic radio settings Configure the Basic Radio SettingsRadio Settings screen settings Setting Descriptions Channel Guidelines following this table Physical and Technical Specifications on109 110 Operating Frequency Channel Guidelines 111 Wireless Data Security Options 112 Wireless Security Profiles 113 Network authenticationData encryption WPA Radius settings Before You Change the SSID, WEP, and WPA SettingsWPA2 Radius settings 114  To add a wireless profile Configure and Enable Wireless ProfilesWireless Profiles screen settings 115 116 Add Wireless Profiles screen settingsSetting Description Wireless Profile Configuration Security Options on 117 Vlan Profile on 118 119 Setting Description WEP Index and Keys  To edit a wireless profile Restrict Wireless Access by MAC Address To delete one or more wireless profiles  To enable or disable one or more wireless profiles 121  To allow or restrict access based on MAC addresses 122 View the Status of a Wireless Profile To view the status of a specific wireless profile Wireless Profile Statistics Configure Wi-Fi Protected Setup123 Connected Clients 124 125 Configure Advanced Radio Settings To configure advanced radio settings 126 Advanced Wireless screen settings 127 Test Basic Wireless Connectivity To test for wireless connectivity 128 About Firewall Protection 129 Administrator TipsFirewall Protection 130 Outbound Rules Service BlockingNumber of supported firewall rule configurations Outbound rules overview Setting Description Outbound Rules131 Set a Schedule to Block or Allow Specific Traffic on 132 NAT IP Inbound Rules Port Forwarding133 134 135 Setting Description Inbound Rules Manage the Network Database on page 68. Groups are 136 137 Order of Precedence for Rules 138 Configure LAN WAN Rules 139 IPv4 LAN WAN Outbound Rules Create LAN WAN Outbound Service Rules To create a new IPv4 LAN WAN outbound rule 140 141 142 IPv6 LAN WAN Outbound Rules To create a new IPv6 LAN WAN outbound rule IPv4 LAN WAN Inbound Service Rules Create LAN WAN Inbound Service Rules To create a new IPv4 LAN WAN inbound rule 143 144 IPv6 LAN WAN Inbound Rules To create a new IPv6 LAN WAN inbound rule 145 Configure DMZ WAN Rules 146 147 IPv4 DMZ WAN Outbound Service Rules Create DMZ WAN Outbound Service Rules To create a new IPv4 DMZ WAN outbound rule 148 149 IPv6 DMZ WAN Outbound Service Rules To create a new IPv6 DMZ WAN outbound rule IPv4 DMZ WAN Inbound Service Rules Create DMZ WAN Inbound Service Rules To create a new IPv4 DMZ WAN inbound rule 150 151 152 IPv6 DMZ WAN Inbound Service Rules To create a new IPv6 DMZ WAN inbound rule 153 Configure LAN DMZ Rules 154 IPv4 LAN DMZ Outbound Service Rules Create LAN DMZ Outbound Service Rules To create a new IPv4 LAN DMZ outbound rule 155 156 IPv6 LAN DMZ Outbound Service Rules To create a new IPv6 LAN DMZ outbound rule IPv4 LAN DMZ Inbound Service Rules Create LAN DMZ Inbound Service Rules To create a new IPv4 LAN DMZ inbound rule 157 158 IPv6 LAN DMZ Inbound Service Rules To create a new IPv6 LAN DMZ inbound rule Examples of Inbound Firewall Rules Examples of Firewall RulesIPv4 LAN WAN Inbound Rule Host a Local Public Web Server 159 160 161 162 163 164 Examples of Outbound Firewall RulesIPv4 LAN WAN Outbound Rule Block Instant Messenger 165 166 Configure Other Firewall FeaturesAttack Checks Attack Checks screen settings for IPv4  To enable IPv4 attack checks for your network environmentSetting Description WAN Security Checks IPv4 Attack Checks 168 Setting Description LAN Security ChecksVPN Pass through Pptp L2TP 169 Setting Description Jumbo FramesIPv6 Attack Checks Session Limit screen settings  To enable and configure session limitsSetting Description Session Limit Set Limits for IPv4 Sessions Session Timeout  To enable ALG for SIPManage the Application Level Gateway for SIP Sessions 171 172 Services, Bandwidth Profiles, and QoS ProfilesAdd Customized Services Services screen settings  To add a customized service173 ICMPv6  To delete one or more services  To edit a serviceService Profiles on 174 175  To add and enable a bandwidth profileCreate Bandwidth Profiles 176 Add Bandwidth Profile screen settings  To edit a bandwidth profile Preconfigured Quality of Service Profiles To delete one or more bandwidth profiles 177 178 Configure Content Filtering 179  To enable and configure content filtering 180 181  To apply keyword blocking to LAN groups To build your list of trusted domains 182 Set a Schedule to Block or Allow Specific Traffic To set a schedule 183 Enable Source MAC Filtering 184 Set Up IP/MAC Bindings 185 IPv4/MAC Bindings 186 IP/MAC Binding screen settings for IPv4  To edit an IP/MAC binding IPv6/MAC Bindings To remove one or more IP/MAC bindings from the table 187 188 IP/MAC Binding screen settings for IPv6 189 190 Configure Port Triggering To add a port triggering rule 191 Port Triggering screen settings To edit a port triggering rule  To configure UPnP Configure Universal Plug and Play To display the status of the port triggering rules 192 193 194 Virtual Private Networking Using IPSec and L2TP Connections 195 Virtual Private Networking Using IPSec and L2TP Connections 196 197 Setting Description About VPN WizardConnection Name and Remote IP Type End Point Information a 198 Setting Description Secure Connection Remote Accessibility 199 Create an IPv6 Gateway-to-Gateway VPN Tunnel with the Wizard 200 201 202 203 Create an IPv4 Client-to-Gateway VPN Tunnel with the Wizard 204 205 IPSec VPN Wizard settings for a client-to-gateway tunnel Component Enter the information that you collected Example Information required to configure the VPN client206 207 208 209 Setting Description Advanced features VPN client advanced authentication settings210 NAT-T 211 212  To create new authentication settingsType vpnclient 213 VPN client authentication settingsEnter IKE 214 215  To create an IPSec configurationType netgearplatform ESP VPN client IPSec configuration settings216 217  To specify the global parameters 218 Test the Netgear VPN Client Connection 219 Click Gateway-Tunnel, and press Ctrl+O 220 View the Wireless VPN Firewall IPSec VPN Connection StatusNetgear VPN Client Status and Log Information  To display the IPSec VPN log View the Wireless VPN Firewall IPSec VPN LogIPSec VPN Connection Status screen information 221 222 Manage IPSec VPN PoliciesManage IKE Policies IKE Policies Screen  To access the IKE Policies screenIKE Policies screen information for IPv4 and IPv6 223  To delete one or more IKE polices Manually Add or Edit an IKE Policy To manually add an IKE policy for IPv4 or IPv6 224 225 Setting Description Mode Config Record Add IKE Policy screen settings226 General 227 Setting Description LocalRemote IKE SA Parameters Group 1 768 bit 228Group 5 1536 bit Dead Peer 229 Setting Description Extended Authentication To edit an IKE policy 230 Manage VPN PoliciesVPN Policies Screen 231 VPN Policies screen information for IPv4 and IPv6 Manually Add or Edit a VPN Policy  To enable or disable one or more VPN policies To delete one or more VPN polices  To manually add a VPN policy 233 234 Setting Description General Add New VPN Policy screen settings for IPv4 and IPv6Configure Keep-Alives 235 Manual Policy Parameters Setting Description Traffic Selection236 Auto Policy Parameters 237 238 Configure Extended Authentication Xauth To edit a VPN policy 239 Configure Xauth for VPN Clients To enable and configure Xauth Radius Client and Server Configuration User Database ConfigurationExtended authentication settings for IPv4 and IPv6 240 Radius Client screen settings  To configure primary and backup Radius serversSetting Description Primary Radius Server 241 242 Backup Radius ServerConnection Configuration 243 Assign IPv4 Addresses to Remote Users Mode ConfigMode Config Operation 244  To configure Mode Config on the wireless VPN firewall 245 Add Mode Config Record screen settingsSetting Description Client Pool Traffic Tunnel Security Level 246 247 248 249 Select Group 2 1024 bit Setting Description IKE SA Parameters250 Screen see User Database Configuration on Configure the ProSafe VPN Client for Mode Config Operation251 Radius Chap 252 253 Type GWModeConfig 254 VPN client authentication settings Mode Config 255 Type TunnelModeConfigVPN client advanced authentication settings Mode Config 192.168.1.1 VPN client IPSec configuration settings Mode Config256 257 Configure the Mode Config Global Parameters 258 Test the Mode Config Connection Modify or Delete a Mode Config Record Configure Keep-Alives and Dead Peer Detection To edit a Mode Config record  To delete one or more Mode Config records 260 Configure Keep-Alives  To configure DPD on a configured IKE policy Configure Dead Peer DetectionKeep-alive settings 261 262 Configure NetBIOS Bridging with IPSec VPNDead Peer Detection settings 263 Configure the L2TP Server To enable NetBIOS bridging on a configured VPN tunnel 264 L2TP Server screen settings L2TP Active Users screen information View the Active L2TP Users265 L2TP IP 266 SSL VPN Portal Options 267 Overview of the SSL Configuration ProcessVirtual Private Networking Using SSL Connections 268 Create the Portal Layout 269  To create a new SSL VPN portal layout 270 Portal URL 271 Add Portal Layout screen settingsSetting Description Portal Layout and Theme Name  To edit a portal layout Configure Domains, Groups, and Users To delete one or more portal layouts 272 Add Servers and Port Numbers Configure Applications for Port Forwarding To add a server and a port number 273 Port forwarding applications/TCP port numbers Add a New Host Name274 TCP Application Port Number  To add servers and host names for client name resolution Configure the SSL VPN ClientFully Qualified Domain Name. The full server name 275 276 Configure the Client IP Address Range To define the client IP address range Setting Description Client IP Address Range SSL VPN Client screen settings for IPv4 and IPv6277 Routes for VPN Tunnel Clients on 278 Add Routes for VPN Tunnel Clients To add an SSL VPN tunnel client route Add New Network Resources Use Network Resource Objects to Simplify Policies To define a network resource 279  To delete one or more network resources Edit Network Resources to Specify Addresses To edit network resources 280 281 Resources screen settings to edit a resourceSetting Description Add Resource Addresses 282 Configure User, Group, and Global Policies 283 View Policies To view the existing SSL VPN policies 284 Add an IPv4 or IPv6 SSL VPN Policy To add an SSL VPN policy 285 Add SSL VPN Policy screen for IPv4 Setting Description Policy For Add SSL VPN Policy screen settings286 Add SSL VPN Policies 287  To edit an SSL VPN policy Access the New SSL Portal Login Screen To delete one or more SSL VPN policies 288 289 Portal Layouts screen for IPv6 290 291  To view the status of current SSL VPN tunnels View the SSL VPN Connection Status and SSL VPN Log To display the SSL VPN log 292 293 294 Wireless VPN Firewall’s Authentication Process and Options Manage Users, Authentication, and VPN Certificates External authentication protocols and methodsAuthentication Description Protocol or Method 295 Configure Domains Configure Authentication Domains, Groups, and UsersCreate Domains  To create a domain 297 Add Domain screen settings Radius Client Server Configuration298  To delete one or more domains Windows login account name in email format . For example299 Display name in the DN format . For example Edit Domains Configure Groups To edit a domain 300 301 Create Groups To create a VPN group 302 Add Group screen settings To delete one or more groups Edit Groups Configure User Accounts To edit a VPN group 303 304  To create a user account 305 Add Users screen settingsConfigure Extended Authentication Xauth on Configure Login Policies Set User Login Policies To configure user login policies  To delete one or more user accounts 307 Configure Login Restrictions Based on IPv4 Addresses To restrict logging in based on IPv4 addresses Defined addresses settings for IPv4 Configure Login Restrictions Based on IPv6 Addresses To delete one or more IPv4 addresses  To restrict logging in based on IPv6 addresses 309 Defined addresses settings for IPv6  To delete one or more IPv6 addresses Configure Login Restrictions Based on Web Browser To restrict logging in based on the user’s browser 310 Internet Explorer Opera Netscape Navigator Change Passwords and Other User Settings To delete one or more browsers 311 312  To modify user settings, including passwordsEdit User screen settings 313 Manage Digital Certificates for VPN Connections 314 VPN Certificates Screen 315 Manage VPN CA Certificates To view and upload trusted certificates 316 Manage VPN Self-Signed Certificates To delete one or more digital certificates 317 512 1024 2048 Generate self-signed certificate request settings318 319 View and Manage Self-Signed Certificates Manage the VPN Certificate Revocation List To delete one or more SCRs  To delete one or more self-signed certificates 321  To delete one or more CRLs 322 Performance ManagementBandwidth Capacity 323 Features That Reduce TrafficNetwork and System Management 324 Content Filtering 325 Features That Increase TrafficSource MAC Filtering 326 DMZ Port Port TriggeringExposed Hosts VPN and L2TP Tunnels Monitoring Tools for Traffic Management Use QoS and Bandwidth Assignment to Shift the Traffic MixSet QoS Priorities Assign Bandwidth Profiles 329 Change Passwords and Administrator and Guest SettingsSystem Management 330 331 Configure Remote Management Access 332 Remote Management screen for IPv4 333 Remote Management screen settings for IPv4 and IPv6Setting Description Secure Http Management Telnet Management About Remote Access334  To access the CLI Use the Command-Line InterfaceUse a Simple Network Management Protocol Manager 335 336  To configure the Snmp settings 337  To edit an Snmp configurationSnmp screen settings  To edit the SNMPv3 default users  To delete one or more Snmp configurationsEdit User screen settings for SNMPv3 users 338 339  To configure the Snmp system informationSnmp SysConfiguration screen settings Setting Description SysName Manage the Configuration FileDefault name is FVS318N 340 Restore Settings Back Up Settings To back up settings 341 342 Revert to Factory Default Settings 343 Update the Firmware To download a firmware version and upgrade the firmware Time Zone screen settings Configure Date and Time Service To set time, date, and NTP servers 344 Http//support.ntp.org/bin/view/Servers/WebHome 345 346 Enable the WAN Traffic Meter To configure and monitor traffic limits on the WAN port 347 Monitor System Access and Performance 348 Setting Description Enable Traffic MeterTraffic Counter Alerts, and Event Notifications on  To configure and activate logs Configure Logging, Alerts, and Event NotificationsSetting Description When Limit is reached 349 350 Setting Description Log Options Firewall Logs & E-mail screen settings351 Routing Logs Send e-mail logs by Schedule Setting Description Enable E-mail Logs352 353 How to Send Syslogs over a VPN Tunnel between SitesSetting Description Enable SysLogs  To change the remote IP address in the VPN policy Configure Gateway 1 at Site354 Type of Address Gateway 1 at Site Gateway 2 at Site  To change the local IP address in the VPN policy Configure Gateway 2 at Site To specify the syslog server that is connected to Gateway 355 View the System Status View Status ScreensRouter Status Screen  To view the Router Status screen 357 Router Status screen information 358 Router Statistics Screen To view the Router Statistics screen Router Statistics screen information Detailed Status Screen359 Router Statistics 360 WAN Configuration LAN Port ConfigurationWAN Settings on Detailed Status screen information 362 Wireless Configuration Enable Wireless Profiles on Description Wireless Profile InformationTunnel Status Screen 363  To view the active IPSec VPN connections View the VPN Connection Status and L2TP Users To view the active SSL VPN connections 364 365 View the VPN Logs To view the active L2TP tunnel users 366  To view the status of the port triggering featureView the Port Triggering Status IPv4 WAN Port Status View the WAN Port Status To view the IPv4 status of the WAN port Port Triggering Status screen information IPv4 Internet Connection on Connection Status screen information for an IPv4 connection368  To view the IPv6 status of the WAN port IPv6 WAN Port StatusConnection Status screen information for an IPv6 connection 369 View the Attached Devices View the Attached Devices and the Dhcp Log To view the attached devices on the LAN Groups screen 370 371 View the Dhcp Log To review the most recent entries in the Dhcp log 372 373 Diagnostics Utilities To display the Diagnostics screen 374 Look Up a DNS Address Send a Ping PacketTrace a Route Capture Packets in Real Time Display the Routing Tables To display the routing table  To capture packets in real time 377 Reboot the Wireless VPN Firewall Remotely To reboot the wireless VPN firewall 378 Troubleshooting Troubleshooting Power LED Not OnBasic Functioning Test LED Never Turns Off 380 Troubleshoot the Web Management InterfaceLAN or WAN Port LEDs Not On 381 When You Enter a URL or IP Address, a Time-Out Error Occurs 382 Troubleshoot the ISP Connection To check the WAN IP address 383 Troubleshooting the IPv6 Connection 384 MAC OS 385 Test the LAN Path to Your Wireless VPN Firewall Troubleshoot a TCP/IP Network Using a Ping UtilityPing 386 387 Test the Path from Your Computer to a Remote DevicePing -n 10 IP address 388 Restore the Default Configuration and Password 389 Address Problems with Date and TimeAccess the Knowledge Base and Documentation Feature Login settings Default Behavior Factory Default SettingsWAN settings 390 Feature Default Behavior Default Settings and Technical SpecificationsIPv4 LAN, DMZ, and routing settings IPv6 LAN and DMZ settings SIP ALG Firewall and security settings392 393 Wireless radio and access point settings SHA-1 3943DES SSL VPN settings Radius settingsUser, group, and domain settings 395 Wireless VPN firewall physical and technical specifications Physical and Technical SpecificationsAdministrative and monitoring settings 396 397 Wireless VPN firewall SSL VPN specifications Wireless VPN firewall IPSec VPN specificationsSetting Specification 398 399 Wireless VPN firewall wireless specifications 400 Why Do I Need Two-Factor Authentication?What Are the Benefits of Two-Factor Authentication? What Is Two-Factor Authentication? Netgear Two-Factor Authentication SolutionsTwo-Factor Authentication  To use WiKID for end users 402 403 404 Regulatory Compliance InformationFCC Requirements for Operation in the United States 405 Notification of Compliance WiredEuropean Union 406 Additional CopyrightsAES Terms MD5 407 Language Statement Edoc in Languages of the European Community408 409 Notification of Compliance Wireless 410 FCC Caution Important Note Radiation Exposure Statement Industry CanadaInterference Reduction Table 411 412 Index 295 413 DMZ Dhcp 414DMZ Radvd 227 415 416 SSL VPN 417 418 419 420 421 422 164 423 IKE policies 424 425

NETGEAR FVS318N manual 317

Models: FVS318N

ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N

Figure 193. Certificates, screen 2 of 3

Manage Users, Authentication, and VPN Certificates

317