Netgear FVS318v3 – Cable/DSL ProSafe VPN Firewall with 8-Port Switch Reference Manual

Basic Virtual Private Networking

4-31

The Log shows the details of recent VPN activity, including the building of the VPN tunnel. If 
there is a problem with the VPN tunnel, refer to the log for information about what might be 
the cause of the problem. 

•

Click Refresh to see the most recent entries. 

•

Click Clear Log to delete all log entries. 

3. Click VPN Status (

) to get the Current VPN Tunnels (SAs) screen (

).

This page lists the following data for each active VPN Tunnel. 

•

SPI. Each SA has a unique SPI (Security Parameter Index) for traffic in each direction. 
For Manual key exchange, the SPI is specified in the Policy definition. For Automatic key 
exchange, the SPI is generated by the IKE protocol. 

•

Policy Name. The name of the VPN policy associated with this SA. 

•

Remote Endpoint. The IP address on the remote VPN Endpoint. 

•

Action. The action will be either a Drop or a Connect button. 

•

SLifeTime (Secs). The remaining Soft Lifetime for this SA in seconds. When the Soft 
Lifetime becomes zero, the SA (Security Association) will re-negotiated. 

•

HLifeTime (Secs). The remaining Hard Lifetime for this SA in seconds. When the Hard 
Lifetime becomes zero, the SA (Security Association) will be terminated. (It will be re-
established if required.) 

Sometimes a VPN tunnel must be deactivated for testing purposes. There are two ways to 
deactivate a VPN tunnel:
•

Policy table on VPN Policies page

•

VPN Status page

To use the VPN Policies page to deactivate a VPN tunnel, perform the following steps:

1. Log in to the VPN Firewall.