Netgear FVS318Gv2 – ProSAFE VPN Firewall Series User Manual
Configure VPN Tunnels
40
NETGEAR ProSAFE VPN Client
•
Transport. The mode in which traffic is destined for a security gateway that functions
as a host. (For example, you could use transport mode for SNMP commands.)
Transport mode encrypts only the payload, not the IP header.
as a host. (For example, you could use transport mode for SNMP commands.)
Transport mode encrypts only the payload, not the IP header.
12.
To use Perfect Forward Secrecy (PFS), do the following:
a. Leave the PFS check box selected.
b. Specify the key length to be used during the IPSec configuration phase.
c. Select a group.
The default group is DH2 (1024). NETGEAR routers use Diffie-Hellman Group 2
(1024 bit).
(1024 bit).
13.
Select Configuration > Save or press Ctrl + S.
Your settings are saved.
Configure the Parameter Settings
The parameters are generic settings that apply to all VPN tunnels that you create. The default
parameters work well for most VPN configurations. You can modify the parameters for your
specific network. The following table describes the parameter settings.
parameters work well for most VPN configurations. You can modify the parameters for your
specific network. The following table describes the parameter settings.
To specify the parameters:
1.
On the client computer desktop, double-click the VPN Client shortcut
.
The VPN Configuration page displays.
2.
In the VPN Tunnel Tree, click the parameters name.
3.
Specify the lifetime in seconds for authentication and encryption.
For a typical NETGEAR VPN gateway, specify the following default lifetimes in seconds:
•
Authentication (IKE) Default. The default lifetime value is 3600 seconds. Change this
setting to 28800 seconds to match the configuration of the VPN router.