Netgear FVS318Gv2 – ProSAFE VPN Firewall Series Reference Manual
Virtual Private Networking Using IPSec and L2TP Connections
256
NETGEAR ProSAFE VPN Firewall FVS318G v2
6.
Click the Apply button.
Your changes are saved.
To edit a VPN policy:
1.
Log in to the unit:
a. In the address field of any of the qualified web browsers, enter https://192.168.1.1.
a. In the address field of any of the qualified web browsers, enter https://192.168.1.1.
The NETGEAR Configuration Manager Login screen displays.
b. In the Username field, enter admin and in the Password / Passcode field, enter
password.
Use lowercase letters. If you changed the password, enter your personalized
password. Leave the domain as it is (geardomain).
password. Leave the domain as it is (geardomain).
c. Click the Login button.
The Router Status screen displays. After five minutes of inactivity, which is the default
login time-out, you are automatically logged out.
login time-out, you are automatically logged out.
2.
Select VPN > IPSec VPN > VPN Policies.
The VPN Policies screen displays the IPv4 settings.
3.
Specify the IP version for which you want to edit a VPN policy:
•
IPv4. In the upper right of the screen, the IPv4 radio button is already selected by
default. Go to
default. Go to
•
IPv6. Select the IPv6 radio button. The VPN Policies screen for IPv6 displays.
4.
In the List of VPN Policies table, to the right of the VPN policy that you want to edit, click the
Edit table button.
Integrity Algorithm
From the list, select the algorithm to be used in the VPN header for the
authentication process:
authentication process:
•
SHA-1. Hash algorithm that produces a 160-bit digest. This is the default
setting.
setting.
•
MD5. Hash algorithm that produces a 128-bit digest.
PFS Key Group
Select this check box to enable Perfect Forward Secrecy (PFS), and select a
Diffie-Hellman (DH) group from the list. The DH group sets the strength of the
algorithm in bits. The higher the group, the more secure the exchange. From the
list, select the strength:
Diffie-Hellman (DH) group from the list. The DH group sets the strength of the
algorithm in bits. The higher the group, the more secure the exchange. From the
list, select the strength:
•
Group 1 (768 bit).
•
Group 2 (1024 bit). This is the default setting.
•
Group 5 (1536 bit).
Select IKE Policy
Select an existing IKE policy that defines the characteristics of the Phase-1
negotiation. To display the selected IKE policy, click the View Selected button.
negotiation. To display the selected IKE policy, click the View Selected button.
Table 53. Add New VPN Policy screen settings for IPv4 and IPv6 (continued)
Setting
Description