Reference Manual for the ProSafe VPN Firewall FVS318v3

 

 

 

Table 6-1.

IKE Policy Configuration fields

 

 

 

Field

 

Description

 

 

 

Remote

 

These parameters apply to the target remote FVS318v3, VPN gateway, or

 

 

VPN client.

Remote Identity Type

Use this field to identify the remote FVS318v3. You can choose one of the

 

 

following four options from the drop-down list:

 

 

• By its Internet (WAN) port IP address.

 

 

• By its Fully Qualified Domain Name (FQDN) — your domain name.

 

 

• By a Fully Qualified User Name — your name, E-mail address, or

 

 

other ID.

 

 

• By DER ASN.1 DN — the binary DER encoding of your ASN.1 X.500

 

 

Distinguished Name.

Remote Identity Data

This field lets you identify the target remote FVS318v3 by name.

 

 

IKE SA Parameters

These parameters determine the properties of the IKE Security

 

 

Association.

 

 

Encryption Algorithm

Choose the encryption algorithm for this IKE policy:

 

 

• DES is the default

 

 

• 3DES is more secure

Authentication Algorithm

If you enable Authentication Header (AH), this menu lets you to select from

 

 

these authentication algorithms:

 

 

• MD5 — the default

 

 

SHA-1 — more secure

 

 

Authentication Method

You may select Pre-Shared Key or RSA Signature.

 

 

Pre-Shared Key

Specify the key according to the requirements of the Authentication

 

 

Algorithm you selected.

 

 

• For MD5, the key length should be 16 bytes.

 

 

• For SHA-1, the key length should be 20 bytes.

RSA Signature

RSA Signature requires a certificate.

 

 

Diffie-Hellman (D-H) Group

The DH Group setting determines the bit size used in the key exchange.

 

 

This must match the value used on the remote VPN gateway or client.

 

 

 

SA Life Time

 

The amount of time in seconds before the Security Association expires;

 

 

over an hour (3600) is common.

 

 

 

VPN Policy Configuration for Auto Key Negotiation

An already defined IKE policy is required for VPN - Auto Policy configuration. From the VPN Policies section of the main menu, you can navigate to the VPN - Auto Policy configuration menu.

Advanced Virtual Private Networking

6-5

January 2005

Page 92 Page 94
Page 93
Image 93
NETGEAR FVS318v3 manual VPN Policy Configuration for Auto Key Negotiation, Field Description Remote
Page 92 Page 94

FVS318v3 specifications

The NETGEAR FVS318v3 is a powerful dual WAN gigabit VPN firewall designed to provide robust security and reliable connectivity for small to medium-sized businesses. It offers an array of features and technologies that make it an outstanding choice for organizations requiring secure network access and improved bandwidth management.

One of the standout features of the FVS318v3 is its dual WAN capability. This allows users to connect two separate internet connections, which enhances redundancy and ensures continuous network availability. In the event that one WAN connection fails, the device automatically switches to the backup connection, minimizing downtime and maintaining productivity.

The firewall offers advanced security features, including a stateful packet inspection (SPI) firewall and NAT (Network Address Translation), which helps protect the network from unauthorized access and external threats. Additionally, the FVS318v3 supports IPsec and SSL VPN protocols, providing secure remote access for employees working from home or on the go. With support for up to 15 SSL VPN clients and 20 IPsec VPN tunnels, it is suitable for businesses that require flexible and secure remote connectivity.

In terms of performance, the FVS318v3 boasts a high-speed gigabit throughput, ensuring fast data transmission and minimal latency. This is particularly important for businesses that rely on cloud-based applications, video conferencing, and other bandwidth-intensive activities. Furthermore, the device is equipped with advanced QoS (Quality of Service) features that allow administrators to prioritize traffic, ensuring that critical applications receive the bandwidth they need during peak usage times.

Another noteworthy characteristic of the NETGEAR FVS318v3 is its user-friendly interface, which simplifies network management and configuration. Administrators can easily set up policies, monitor traffic, and manage connected devices through an intuitive web-based interface. It also offers support for 802.1Q VLAN tagging, allowing for network segmentation and improved security management.

In conclusion, the NETGEAR FVS318v3 is a versatile and feature-rich solution that delivers exceptional security and reliability for businesses. Its dual WAN functionality, advanced VPN capabilities, high-speed performance, and ease of use make it an excellent choice for organizations looking to safeguard their networks while ensuring seamless connectivity for employees.
Top Page Image Contents