Features That Increase Traffic, 325 | NETGEAR FVS318N manual

ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N

Source MAC Filtering

If you want to reduce outgoing traffic by preventing Internet access by certain computers on the LAN, you can use the source MAC filtering feature to drop the traffic received from the computers with the specified MAC addresses. By default, this feature is disabled; all traffic received from computers with any MAC address is allowed. See Enable Source MAC Filtering on page 183 for the procedure about how to use this feature.

Features That Increase Traffic

The following features of the wireless VPN firewall tend to increase the traffic load on the WAN side:

•LAN WAN inbound rules (also referred to as port forwarding)

•DMZ WAN inbound rules (also referred to as port forwarding)

•Port triggering

•Enabling the DMZ port

•Configuring exposed hosts

•Configuring VPN tunnels

LAN WAN Inbound Rules and DMZ WAN Inbound Rules (Port Forwarding)

The LAN WAN Rules screen and the DMZ WAN Rules screen list all existing rules for inbound traffic (from WAN to LAN and from WAN to the DMZ). Any inbound rule that you create allows additional incoming traffic and therefore increases the traffic load on the WAN side.

ON the LAN WAN screen, if you have not defined any rules, only the default rule is listed. The default LAN WAN inbound rule blocks all access from outside except responses to requests from the LAN side.

WARNING:

Incorrect configuration of inbound firewall rules can cause serious connection problems.

Each rule lets you specify the desired action for the connections covered by the rule:

•BLOCK always

•BLOCK by schedule, otherwise allow

•ALLOW always

•ALLOW by schedule, otherwise block

The following section summarizes the various criteria that you can apply to inbound rules and that might increase traffic. For more information about inbound rules, see Inbound Rules (Port Forwarding) on page 133. For detailed procedures about how to configure inbound

Network and System Management

325

Image 325

NETGEAR FVS318N manual Features That Increase Traffic, Source MAC Filtering, 325

Contents

FVS318N Technical Support ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318NTrademarks Statement of Conditions ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N Contents LAN Configuration Firewall Protection Virtual Private Networking Using SSL Connections Network and System Management Appendix a Default Settings and Technical Specifications Introduction Wireless Features Key Features and CapabilitiesIntroduction Advanced VPN Support for Both IPSec and SSL Powerful, True Firewall Autosensing Ethernet Connections with Auto Uplink Security FeaturesExtensive Protocol Support Easy Installation and Management Hardware Features Package Contents Wireless LED Right LAN LEDs Right WAN LED Power Left LAN LEDsGreen, one for each port Active WAN LED DMZ LED Activity Description LAN PortsWAN Port Rear Panel Bottom Panel with Product Label Choose a Location for the Wireless VPN Firewall  To log in to the wireless VPN firewall Log In to the Wireless VPN Firewall ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N Web Management Interface Menu Layout ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N IPv4 Requirements for Entering IP AddressesIPv6 Tasks to Set Up an IPv4 Internet Connection to Your ISP Internet and WAN Configuration Tasks Complete these four tasks Tasks to Set Up an IPv6 Internet Connection to Your ISP Configure the IPv4 Internet Connection and WAN SettingsIPv4 and IPv6 Internet and Broadband Settings Configure the IPv4 Routing Mode Configure the IPv4 WAN Mode To configure the IPv4 routing mode Network Address Translation Click Apply to save your settings ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N Pptp Connection Method Manual Data Input Required  To manually configure the IPv4 broadband ISP settings Manually Configure an IPv4 Internet Connection Setting Description Pptp and PPPoE settingsStep Has assigned one. You can leave this field blank Identifier check box DNS server settingsGet Automatically from ISP radio button Configure Dynamic DNS  To configure Ddns Ddns service settings Configure the IPv6 Internet Connection and WAN Settings  To configure the IPv6 routing mode Configure the IPv6 Routing Mode Use a DHCPv6 Server to Configure an IPv6 Internet Connection ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N Configure a Static IPv6 Internet Connection Setting Description Configure a PPPoE IPv6 Internet Connection ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N Stateless DHCPv6 Server With Prefix Delegation on WAN Port Status on Options and Other Tasks on Configure 6to4 Automatic Tunneling Select the Enable Automatic Tunneling check box Configure Isatap Automatic Tunneling To configure an Isatap tunnel  To edit an Isatap tunnel Add Isatap Tunnel screen settings View the Tunnel Status and IPv6 Addresses Configure Stateless IP/ICMP Translation To delete one or more tunnels  To view the status of the tunnels and IPv6 addresses  To configure Siit Configure Advanced WAN Options and Other Tasks To configure advanced WAN options Setting Description MTU Size Broadband Advanced Options screen settings Default Address radio button Setting Speed DescriptionRouter’s MAC Address What to Do Next Additional WAN-Related Configuration TasksVerify the Connection Manage IPv4 Virtual LANs and Dhcp Options LAN Configuration Port-Based VLANs LAN Configuration Assign and Manage Vlan Profiles Explained in Configure the IPv4 Internet Connection and WAN Vlan Dhcp Options Dhcp Relay Dhcp ServerDNS Proxy Ldap Server Configure a Vlan Profile To add a Vlan profile ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N Setting Description Vlan Profile Add Vlan Profile screen settingsIP Setup Port Membership VLAN, the default start IP address is Inter Vlan Routing DNS Proxy  To enable, disable, or delete one or more Vlan profiles Configure Vlan MAC Addresses and LAN Advanced Settings To configure a Vlan to have a unique MAC address  To edit a Vlan profile ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N  To edit a secondary LAN IP address  To add a secondary LAN IPv4 address  To delete one or more secondary LAN IP addresses Manage IPv4 Groups and Hosts IPv4 LAN Groups Manage the Network Database Also Set Up Dhcp Address Reservation on Add Known PCs and Devices section settingsAdd Computers or Devices to the Network Database Edit Computers or Devices in the Network Database Deleting Computers or Devices from the Network Database Change Group Names in the Network Database To edit the names of any of the eight available groups Set Up Dhcp Address Reservation DHCPv6 Server Options Manage the IPv6 LANStateless DHCPv6 Server Stateful DHCPv6 Server Stateless DHCPv6 Server With Prefix Delegation Configure the IPv6 LAN Setting Description IPv6 LAN Setup LAN Setup screen settings for IPv6DHCPv6 Prefix delegation check box is selected. The stateless Settings IPv6 screen see Configure a Static IPv6 Internet IPv6 screen see Configure a Static IPv6 Internet ConnectionIPv6 LAN Address Pools  To add an IPv6 LAN address pool  To edit an IPv6 LAN address pool LAN IPv6 Config screen settings To delete one or more IPv6 LAN address pools  To add an IPv6 prefix IPv6 LAN Prefixes for Prefix Delegation To edit a prefix  To delete one or more prefixes Flags in the Radvd DHCPv6 Server Provides Radvd Provides DHCPv6 and Radvd interaction in the LAN Radvd screen settings for the LAN  To add an advertisement prefix for the LAN Advertisement Prefixes for the LANMTU  To edit an advertisement prefix Add Advertisement Prefix screen settings for the LANSLA ID  To delete one or more advertisement prefixes DMZ Enable and Configure the DMZ Port for IPv4 and IPv6 Traffic DMZ Port for IPv4 Traffic  To enable and configure the DMZ port for IPv4 traffic Setting Description DMZ Port Setup DMZ Setup screen settings for IPv4 Dhcp for DMZ Connected Computers DMZ Port for IPv6 Traffic ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N Configure the IPv6 Router Advertisement Daemon DMZ Setup screen settings for IPv6DHCPv6 for DMZ Connected Computers Advertisement Prefixes for the DMZ on IPv6 DMZ Address Pools IPv6 screen see Configure a Static IPv6 Internet To add an IPv6 DMZ address pool  To edit an IPv6 DMZ address pool DMZ IPv6 Config screen settings To delete one or more IPv6 DMZ address pools DHCPv6 and Radvd interaction in the DMZ Radvd screen settings for the DMZ  To add an advertisement prefix for the DMZ Advertisement Prefixes for the DMZ Add Advertisement Prefix screen settings for the DMZ Manage Static IPv4 Routing Configure Static IPv4 Routes To add an IPv4 static route to the Static Route table Add Static Route screen settings for IPv4  To enable and configure RIP Configure the Routing Information Protocol To edit an IPv4 static route  To delete one or more routes 101 RIP Configuration screen settings 102 Authentication for RIP-2B/2M IPv4 Static Route Example Manage Static IPv6 Routing103 104 Add IPv6 Static Routing screen settings 105  To edit an IPv6 static route 106 Overview of the Wireless Features Wireless Configuration and Security Wireless Equipment Placement and Range Guidelines107  To configure the basic radio settings Configure the Basic Radio SettingsRadio Settings screen settings Setting Descriptions 109 Physical and Technical Specifications onChannel Guidelines following this table 110 Operating Frequency Channel Guidelines 111 Wireless Data Security Options 112 Wireless Security Profiles Data encryption Network authentication113 WPA Radius settings Before You Change the SSID, WEP, and WPA SettingsWPA2 Radius settings 114  To add a wireless profile Configure and Enable Wireless ProfilesWireless Profiles screen settings 115 Setting Description Wireless Profile Configuration Add Wireless Profiles screen settings116 Security Options on 117 Vlan Profile on 118 119 Setting Description WEP Index and Keys  To edit a wireless profile Restrict Wireless Access by MAC Address To delete one or more wireless profiles  To enable or disable one or more wireless profiles 121  To allow or restrict access based on MAC addresses  To view the status of a specific wireless profile View the Status of a Wireless Profile122 Wireless Profile Statistics Configure Wi-Fi Protected Setup123 Connected Clients 124  To configure advanced radio settings Configure Advanced Radio Settings125 126 Advanced Wireless screen settings  To test for wireless connectivity Test Basic Wireless Connectivity127 128 About Firewall Protection Firewall Protection Administrator Tips129 Number of supported firewall rule configurations Outbound Rules Service Blocking130 Outbound rules overview Setting Description Outbound Rules131 Set a Schedule to Block or Allow Specific Traffic on 132 133 Inbound Rules Port ForwardingNAT IP 134 135 Setting Description Inbound Rules Manage the Network Database on page 68. Groups are 136 137 Order of Precedence for Rules 138 Configure LAN WAN Rules 139 IPv4 LAN WAN Outbound Rules Create LAN WAN Outbound Service Rules To create a new IPv4 LAN WAN outbound rule 140 141  To create a new IPv6 LAN WAN outbound rule IPv6 LAN WAN Outbound Rules142 IPv4 LAN WAN Inbound Service Rules Create LAN WAN Inbound Service Rules To create a new IPv4 LAN WAN inbound rule 143  To create a new IPv6 LAN WAN inbound rule IPv6 LAN WAN Inbound Rules144 145 Configure DMZ WAN Rules 146 147 IPv4 DMZ WAN Outbound Service Rules Create DMZ WAN Outbound Service Rules To create a new IPv4 DMZ WAN outbound rule 148  To create a new IPv6 DMZ WAN outbound rule IPv6 DMZ WAN Outbound Service Rules149 IPv4 DMZ WAN Inbound Service Rules Create DMZ WAN Inbound Service Rules To create a new IPv4 DMZ WAN inbound rule 150 151  To create a new IPv6 DMZ WAN inbound rule IPv6 DMZ WAN Inbound Service Rules152 153 Configure LAN DMZ Rules 154 IPv4 LAN DMZ Outbound Service Rules Create LAN DMZ Outbound Service Rules To create a new IPv4 LAN DMZ outbound rule 155  To create a new IPv6 LAN DMZ outbound rule IPv6 LAN DMZ Outbound Service Rules156 IPv4 LAN DMZ Inbound Service Rules Create LAN DMZ Inbound Service Rules To create a new IPv4 LAN DMZ inbound rule 157  To create a new IPv6 LAN DMZ inbound rule IPv6 LAN DMZ Inbound Service Rules158 Examples of Inbound Firewall Rules Examples of Firewall RulesIPv4 LAN WAN Inbound Rule Host a Local Public Web Server 159 160 161 162 163 IPv4 LAN WAN Outbound Rule Block Instant Messenger Examples of Outbound Firewall Rules164 165 Attack Checks Configure Other Firewall Features166 Attack Checks screen settings for IPv4  To enable IPv4 attack checks for your network environmentSetting Description WAN Security Checks IPv4 Attack Checks 168 Setting Description LAN Security ChecksVPN Pass through Pptp L2TP IPv6 Attack Checks Setting Description Jumbo Frames169 Session Limit screen settings  To enable and configure session limitsSetting Description Session Limit Set Limits for IPv4 Sessions Session Timeout  To enable ALG for SIPManage the Application Level Gateway for SIP Sessions 171 Add Customized Services Services, Bandwidth Profiles, and QoS Profiles172 Services screen settings  To add a customized service173 ICMPv6  To delete one or more services  To edit a serviceService Profiles on 174 Create Bandwidth Profiles  To add and enable a bandwidth profile175 176 Add Bandwidth Profile screen settings  To edit a bandwidth profile Preconfigured Quality of Service Profiles To delete one or more bandwidth profiles 177 178 Configure Content Filtering 179  To enable and configure content filtering 180  To build your list of trusted domains  To apply keyword blocking to LAN groups181  To set a schedule Set a Schedule to Block or Allow Specific Traffic182 183 Enable Source MAC Filtering 184 Set Up IP/MAC Bindings 185 IPv4/MAC Bindings 186 IP/MAC Binding screen settings for IPv4  To edit an IP/MAC binding IPv6/MAC Bindings To remove one or more IP/MAC bindings from the table 187 188 IP/MAC Binding screen settings for IPv6 189  To add a port triggering rule Configure Port Triggering190  To edit a port triggering rule Port Triggering screen settings191  To configure UPnP Configure Universal Plug and Play To display the status of the port triggering rules 192 193 194 Virtual Private Networking Using IPSec and L2TP Connections 195 Virtual Private Networking Using IPSec and L2TP Connections 196 197 Setting Description About VPN WizardConnection Name and Remote IP Type End Point Information a 198 Setting Description Secure Connection Remote Accessibility 199 Create an IPv6 Gateway-to-Gateway VPN Tunnel with the Wizard 200 201 202 203 Create an IPv4 Client-to-Gateway VPN Tunnel with the Wizard 204 205 IPSec VPN Wizard settings for a client-to-gateway tunnel 206 Information required to configure the VPN clientComponent Enter the information that you collected Example 207 208 209 Setting Description Advanced features VPN client advanced authentication settings210 NAT-T 211 Type vpnclient  To create new authentication settings212 213 VPN client authentication settingsEnter IKE 214 Type netgearplatform  To create an IPSec configuration215 216 VPN client IPSec configuration settingsESP 217  To specify the global parameters 218 Test the Netgear VPN Client Connection 219 Click Gateway-Tunnel, and press Ctrl+O Netgear VPN Client Status and Log Information View the Wireless VPN Firewall IPSec VPN Connection Status220  To display the IPSec VPN log View the Wireless VPN Firewall IPSec VPN LogIPSec VPN Connection Status screen information 221 Manage IKE Policies Manage IPSec VPN Policies222 IKE Policies Screen  To access the IKE Policies screenIKE Policies screen information for IPv4 and IPv6 223  To delete one or more IKE polices Manually Add or Edit an IKE Policy To manually add an IKE policy for IPv4 or IPv6 224 225 Setting Description Mode Config Record Add IKE Policy screen settings226 General 227 Setting Description LocalRemote IKE SA Parameters Group 1 768 bit 228Group 5 1536 bit Dead Peer  To edit an IKE policy Setting Description Extended Authentication229 VPN Policies Screen Manage VPN Policies230 231 VPN Policies screen information for IPv4 and IPv6 Manually Add or Edit a VPN Policy  To enable or disable one or more VPN policies To delete one or more VPN polices  To manually add a VPN policy 233 234 Setting Description General Add New VPN Policy screen settings for IPv4 and IPv6Configure Keep-Alives 235 236 Setting Description Traffic SelectionManual Policy Parameters Auto Policy Parameters 237  To edit a VPN policy Configure Extended Authentication Xauth238  To enable and configure Xauth Configure Xauth for VPN Clients239 Radius Client and Server Configuration User Database ConfigurationExtended authentication settings for IPv4 and IPv6 240 Radius Client screen settings  To configure primary and backup Radius serversSetting Description Primary Radius Server 241 Connection Configuration Backup Radius Server242 Mode Config Operation Assign IPv4 Addresses to Remote Users Mode Config243 244  To configure Mode Config on the wireless VPN firewall Setting Description Client Pool Add Mode Config Record screen settings245 Traffic Tunnel Security Level 246 247 248 249 250 Setting Description IKE SA ParametersSelect Group 2 1024 bit Screen see User Database Configuration on Configure the ProSafe VPN Client for Mode Config Operation251 Radius Chap 252 253 Type GWModeConfig 254 VPN client authentication settings Mode Config VPN client advanced authentication settings Mode Config Type TunnelModeConfig255 256 VPN client IPSec configuration settings Mode Config192.168.1.1 257 Configure the Mode Config Global Parameters 258 Test the Mode Config Connection Modify or Delete a Mode Config Record Configure Keep-Alives and Dead Peer Detection To edit a Mode Config record  To delete one or more Mode Config records 260 Configure Keep-Alives  To configure DPD on a configured IKE policy Configure Dead Peer DetectionKeep-alive settings 261 Dead Peer Detection settings Configure NetBIOS Bridging with IPSec VPN262  To enable NetBIOS bridging on a configured VPN tunnel Configure the L2TP Server263 264 L2TP Server screen settings L2TP Active Users screen information View the Active L2TP Users265 L2TP IP 266 SSL VPN Portal Options Virtual Private Networking Using SSL Connections Overview of the SSL Configuration Process267 268 Create the Portal Layout 269  To create a new SSL VPN portal layout 270 Portal URL Setting Description Portal Layout and Theme Name Add Portal Layout screen settings271  To edit a portal layout Configure Domains, Groups, and Users To delete one or more portal layouts 272 Add Servers and Port Numbers Configure Applications for Port Forwarding To add a server and a port number 273 Port forwarding applications/TCP port numbers Add a New Host Name274 TCP Application Port Number  To add servers and host names for client name resolution Configure the SSL VPN ClientFully Qualified Domain Name. The full server name 275  To define the client IP address range Configure the Client IP Address Range276 Setting Description Client IP Address Range SSL VPN Client screen settings for IPv4 and IPv6277 Routes for VPN Tunnel Clients on  To add an SSL VPN tunnel client route Add Routes for VPN Tunnel Clients278 Add New Network Resources Use Network Resource Objects to Simplify Policies To define a network resource 279  To delete one or more network resources Edit Network Resources to Specify Addresses To edit network resources 280 Setting Description Add Resource Addresses Resources screen settings to edit a resource281 282 Configure User, Group, and Global Policies  To view the existing SSL VPN policies View Policies283  To add an SSL VPN policy Add an IPv4 or IPv6 SSL VPN Policy284 285 Add SSL VPN Policy screen for IPv4 Setting Description Policy For Add SSL VPN Policy screen settings286 Add SSL VPN Policies 287  To edit an SSL VPN policy Access the New SSL Portal Login Screen To delete one or more SSL VPN policies 288 289 Portal Layouts screen for IPv6 290 291  To view the status of current SSL VPN tunnels View the SSL VPN Connection Status and SSL VPN Log To display the SSL VPN log 292 293 294 Wireless VPN Firewall’s Authentication Process and Options Manage Users, Authentication, and VPN Certificates External authentication protocols and methodsAuthentication Description Protocol or Method 295 Configure Domains Configure Authentication Domains, Groups, and UsersCreate Domains  To create a domain 297 Add Domain screen settings 298 Server ConfigurationRadius Client  To delete one or more domains Windows login account name in email format . For example299 Display name in the DN format . For example Edit Domains Configure Groups To edit a domain 300  To create a VPN group Create Groups301  To delete one or more groups Add Group screen settings302 Edit Groups Configure User Accounts To edit a VPN group 303 304  To create a user account Configure Extended Authentication Xauth on Add Users screen settings305 Configure Login Policies Set User Login Policies To configure user login policies  To delete one or more user accounts  To restrict logging in based on IPv4 addresses Configure Login Restrictions Based on IPv4 Addresses307 Defined addresses settings for IPv4 Configure Login Restrictions Based on IPv6 Addresses To delete one or more IPv4 addresses  To restrict logging in based on IPv6 addresses 309 Defined addresses settings for IPv6  To delete one or more IPv6 addresses Configure Login Restrictions Based on Web Browser To restrict logging in based on the user’s browser 310 Internet Explorer Opera Netscape Navigator Change Passwords and Other User Settings To delete one or more browsers 311 Edit User screen settings  To modify user settings, including passwords312 313 Manage Digital Certificates for VPN Connections 314 VPN Certificates Screen  To view and upload trusted certificates Manage VPN CA Certificates315  To delete one or more digital certificates Manage VPN Self-Signed Certificates316 317 318 Generate self-signed certificate request settings512 1024 2048 319 View and Manage Self-Signed Certificates Manage the VPN Certificate Revocation List To delete one or more SCRs  To delete one or more self-signed certificates 321  To delete one or more CRLs Bandwidth Capacity Performance Management322 Network and System Management Features That Reduce Traffic323 324 Content Filtering Source MAC Filtering Features That Increase Traffic325 326 DMZ Port Port TriggeringExposed Hosts VPN and L2TP Tunnels Monitoring Tools for Traffic Management Use QoS and Bandwidth Assignment to Shift the Traffic MixSet QoS Priorities Assign Bandwidth Profiles System Management Change Passwords and Administrator and Guest Settings329 330 331 Configure Remote Management Access 332 Remote Management screen for IPv4 Setting Description Secure Http Management Remote Management screen settings for IPv4 and IPv6333 334 About Remote AccessTelnet Management  To access the CLI Use the Command-Line InterfaceUse a Simple Network Management Protocol Manager 335 336  To configure the Snmp settings Snmp screen settings  To edit an Snmp configuration337  To edit the SNMPv3 default users  To delete one or more Snmp configurationsEdit User screen settings for SNMPv3 users 338 Snmp SysConfiguration screen settings  To configure the Snmp system information339 Setting Description SysName Manage the Configuration FileDefault name is FVS318N 340 Restore Settings Back Up Settings To back up settings 341 342 Revert to Factory Default Settings  To download a firmware version and upgrade the firmware Update the Firmware343 Time Zone screen settings Configure Date and Time Service To set time, date, and NTP servers 344 Http//support.ntp.org/bin/view/Servers/WebHome 345  To configure and monitor traffic limits on the WAN port Enable the WAN Traffic Meter346 347 Monitor System Access and Performance 348 Setting Description Enable Traffic MeterTraffic Counter Alerts, and Event Notifications on  To configure and activate logs Configure Logging, Alerts, and Event NotificationsSetting Description When Limit is reached 349 350 Setting Description Log Options Firewall Logs & E-mail screen settings351 Routing Logs 352 Setting Description Enable E-mail LogsSend e-mail logs by Schedule Setting Description Enable SysLogs How to Send Syslogs over a VPN Tunnel between Sites353  To change the remote IP address in the VPN policy Configure Gateway 1 at Site354 Type of Address Gateway 1 at Site Gateway 2 at Site  To change the local IP address in the VPN policy Configure Gateway 2 at Site To specify the syslog server that is connected to Gateway 355 View the System Status View Status ScreensRouter Status Screen  To view the Router Status screen 357 Router Status screen information  To view the Router Statistics screen Router Statistics Screen358 Router Statistics screen information Detailed Status Screen359 Router Statistics 360 WAN Configuration LAN Port ConfigurationWAN Settings on Detailed Status screen information 362 Wireless Configuration Enable Wireless Profiles on Description Wireless Profile InformationTunnel Status Screen 363  To view the active IPSec VPN connections View the VPN Connection Status and L2TP Users To view the active SSL VPN connections 364  To view the active L2TP tunnel users View the VPN Logs365 View the Port Triggering Status  To view the status of the port triggering feature366 IPv4 WAN Port Status View the WAN Port Status To view the IPv4 status of the WAN port Port Triggering Status screen information 368 Connection Status screen information for an IPv4 connectionIPv4 Internet Connection on  To view the IPv6 status of the WAN port IPv6 WAN Port StatusConnection Status screen information for an IPv6 connection 369 View the Attached Devices View the Attached Devices and the Dhcp Log To view the attached devices on the LAN Groups screen 370  To review the most recent entries in the Dhcp log View the Dhcp Log371 372  To display the Diagnostics screen Diagnostics Utilities373 374 Trace a Route Send a Ping PacketLook Up a DNS Address Capture Packets in Real Time Display the Routing Tables To display the routing table  To capture packets in real time  To reboot the wireless VPN firewall Reboot the Wireless VPN Firewall Remotely377 378 Troubleshooting Troubleshooting Power LED Not OnBasic Functioning Test LED Never Turns Off LAN or WAN Port LEDs Not On Troubleshoot the Web Management Interface380 381 When You Enter a URL or IP Address, a Time-Out Error Occurs  To check the WAN IP address Troubleshoot the ISP Connection382 383 Troubleshooting the IPv6 Connection 384 MAC OS 385 Test the LAN Path to Your Wireless VPN Firewall Troubleshoot a TCP/IP Network Using a Ping UtilityPing 386 Ping -n 10 IP address Test the Path from Your Computer to a Remote Device387 388 Restore the Default Configuration and Password Access the Knowledge Base and Documentation Address Problems with Date and Time389 Feature Login settings Default Behavior Factory Default SettingsWAN settings 390 Feature Default Behavior Default Settings and Technical SpecificationsIPv4 LAN, DMZ, and routing settings IPv6 LAN and DMZ settings 392 Firewall and security settingsSIP ALG 393 Wireless radio and access point settings 3DES 394SHA-1 SSL VPN settings Radius settingsUser, group, and domain settings 395 Wireless VPN firewall physical and technical specifications Physical and Technical SpecificationsAdministrative and monitoring settings 396 397 Wireless VPN firewall SSL VPN specifications Wireless VPN firewall IPSec VPN specificationsSetting Specification 398 399 Wireless VPN firewall wireless specifications What Are the Benefits of Two-Factor Authentication? Why Do I Need Two-Factor Authentication?400 What Is Two-Factor Authentication? Netgear Two-Factor Authentication SolutionsTwo-Factor Authentication  To use WiKID for end users 402 403 FCC Requirements for Operation in the United States Regulatory Compliance Information404 European Union Notification of Compliance Wired405 406 Additional CopyrightsAES Terms MD5 407 408 Edoc in Languages of the European CommunityLanguage Statement 409 Notification of Compliance Wireless 410 FCC Caution Important Note Radiation Exposure Statement Industry CanadaInterference Reduction Table 411 412 Index 295 413 DMZ Radvd 414DMZ Dhcp 227 415 416 SSL VPN 417 418 419 420 421 422 164 423 IKE policies 424 425