User ManualTable of ContentsNETGEAR ProSAFE VPN Client1Contents31. Introduction6VPN Client Features7VPN Client Licenses for Lite and Professional9Linux Appliance Support10References and Useful Websites102. Install the Software12Install the VPN Client Software13Launch the VPN Client13Use the VPN Client Lite Evaluation Version14View the Remaining Days in the Evaluation Period15Buy a License When the Evaluation Period Expires15License Number Concepts16Activate the VPN Client License16Troubleshoot Software Activation17Software Upgrade Concepts17Uninstall the VPN Client Software183. Overview of the User Interface20User Interface Components21VPN Configuration Panel21System Tray Icon and System Tray Menu22System Tray Pop-Up Window23Connection Panel23Keyboard Shortcuts254. Configure VPN Tunnels26VPN Tunnel Overview27Configure IKE Authentication Settings28Configure Advanced Authentication Settings30Configure XAUTH32Configure a Redundant Gateway34Configure Mode Config Settings35Configure Hybrid Mode36Configure IPSec Settings37Configure the Parameter Settings40Open and Close VPN Tunnels415. Advanced Settings43Control How VPN Tunnels Are Opened44Open a Tunnel Automatically44Open a Tunnel Before Windows Logon45Open a Tunnel by Double-Clicking on a Desktop Icon46Automatically Open a Web Page When a VPN Tunnel Opens48Configure Alternate DNS and WINS Servers49Configure Scripts50Configure Remote Sharing51USB Mode52Enable a New USB Drive with a VPN Configuration52Configure Tunnels to Open Automatically with a USB Drive55Manage Certificates56Import a PEM Certificate57Import a P12 Certificate58View and Assign Certificates60View Certificate Details62Use Certificates from USB Tokens and Smart Cards63Open a Tunnel with Certificates from a USB Token or Smart Card64Troubleshoot Certificates64Manage VPN Configuration Files65Import a VPN Configuration65Export a VPN Configuration66Merge VPN Configurations67Access Control Overview68Configure Access Control69Remove Access Control69Hide User Interface Features70Hide Links on the System Tray Menu70Disable the Systray Pop-Up Screens72Hide the Connection Panel73Configure VPN Client Startup Mode and Network Interface Detection73Change the Language74Edit a Software Language756. VPN Client Software Setup and Network Deployment77Software Setup and Deployment Concepts78Software Setup File Example78Software Setup Command Requirements79Examples of Options That You Can Include in a Software Setup File79Software Setup Command Reference80Customize VPN Client Display and Access for End Users85Display the Configuration Panel After Startup85Display the Connection Panel After Startup86Display the System Tray Menu Only After Startup86Require a Password to Access the Configuration Panel86Limit Usage to the System Tray Menu and Require a Password to Access Other Screens87Configure Which Items of the System Tray Menu Are Visible87VPN Client Silent Software Setup Deployment to End Users88Create a Silent VPN Client Software Setup89Deploy a VPN Client Software Setup from a CD89Deploy a VPN Client Software Setup from a Shortcut90Deploy a VPN Client Software Setup Using a Batch Script91Deploy a VPN Client Software Setup from a Network Drive92Deliver a VPN Configuration to an End User93Embed a VPN Configuration in a VPN Client Software Setup Deployment94Export and Deploy a VPN Configuration95Command-Line Interface Command Reference96Customize the VPN Client Using CLI Commands99Open or Close a VPN Tunnel99Close All Active Tunnels and Close the VPN Client100Import, Export, Add, or Replace the VPN Configuration100Customize How the VPN Client Handles Readers and Certificates101Customize the vpnsetup.ini File101Customize the vpnconf.ini File1047. Troubleshoot the VPN Client108VPN Client Troubleshooting Overview109Resolve Firewall Interference109View and Control VPN Client Log Messages109Enable the VPN Console Debugging Mode110VPN Console Log Errors111PAYLOAD_MALFORMED error111INVALID_COOKIE error111no keystate111received remote ID other than expected112NO_PROPOSAL_CHOSEN error112NO_PROPOSAL_CHOSEN error113INVALID_ID_INFORMATION error113No Response to a Phase 1 Request114The Console Shows Only SEND and RECV114No Response to Phase 2 Requests114View VPN Gateway Logs115A VPN Tunnel Is Up but You Cannot Ping the Remote Endpoint116A. Configure a NETGEAR VPN Gateway118VPN Gateway Overview119Use the Router’s VPN Wizard to Configure a VPN Gateway120Edit a VPN Policy122Edit an IKE Policy123Manually Configure a NETGEAR Router as a VPN Gateway124Set Up an IKE Policy in the Router124Set Up a VPN Policy in the Router125Configure a VPN Client to Match the VPN Gateway Settings128Size: 2.16 MBPages: 129Language: EnglishOpen manual
Reference ManualTable of ContentsNETGEAR ProSAFE VPN Firewall FVS318G v21Contents31. Introduction8What Is the NETGEAR ProSAFE VPN Firewall FVS318G v2?9Key Features and Capabilities9Advanced VPN Support for IPSec10A Powerful, True Firewall10Security Features10Autosensing Ethernet Connections with Auto Uplink10Extensive Protocol Support11Easy Installation and Management11Maintenance and Support12Package Contents12Hardware Features13Front Panel13Rear Panel16Bottom Panel with Product Label17Choose a Location for the VPN Firewall17Wall-Mount the VPN Firewall with the Mounting Kit18Log In to the VPN Firewall19Web Management Interface Menu Layout21Requirements for Entering IP Addresses22IPv4 Addresses23IPv6 Addresses232. IPv4 and IPv6 Internet and Broadband Settings24Internet and WAN Configuration Tasks25IPv4 Internet Connections25IPv6 Internet Connections25Configure the IPv4 Internet Connection and WAN Settings26Configure the IPv4 WAN Mode26Let the VPN Firewall Automatically Detect and Configure an IPv4 Internet Connection28Manually Configure an IPv4 Internet Connection31Configure Dynamic DNS35Configure the IPv6 Internet Connection and WAN Settings38Configure the IPv6 Routing Mode39Use a DHCPv6 Server to Configure an IPv6 Internet Connection40Configure a Static IPv6 Internet Connection42Configure a PPPoE IPv6 Internet Connection44Configure 6to4 Automatic Tunneling47Configure ISATAP Automatic Tunneling48View the Tunnel Status and IPv6 Addresses51Configure Stateless IP/ICMP Translation51Configure Advanced WAN Options and Other Tasks52Additional WAN-Related Configuration Tasks55Verify the Connection55What to Do Next553. LAN Configuration56Manage IPv4 Virtual LANs and DHCP Options57Port-Based VLANs57Assign and Manage VLAN Profiles58VLAN DHCP Options60Configure a VLAN Profile61Configure VLAN MAC Addresses and LAN Advanced Settings68Configure IPv4 Multihome LAN IP Addresses on the Default VLAN69Manage IPv4 Groups and Hosts (IPv4 LAN Groups)71Manage the Network Database73Change Group Names in the Network Database77Set Up DHCP Address Reservation78Manage the IPv6 LAN78DHCPv6 Server Options79Configure the IPv6 LAN80Configure the IPv6 Router Advertisement Daemon and Advertisement Prefixes for the LAN88Configure IPv6 Multihome LAN IP Addresses on the Default VLAN93Enable and Configure the DMZ Port for IPv4 and IPv6 Traffic96DMZ Port for IPv4 Traffic96DMZ Port for IPv6 Traffic100Configure the IPv6 Router Advertisement Daemon and Advertisement Prefixes for the DMZ106Manage Static IPv4 Routing111Configure Static IPv4 Routes111Configure the Routing Information Protocol114IPv4 Static Route Example116Manage Static IPv6 Routing117Configure Quality of Service1204. Firewall Protection125About Firewall Protection126Administrator Tips126Overview of Rules to Block or Allow Specific Kinds of Traffic127Outbound Rules128Inbound Rules130Order of Precedence for Rules134Configure LAN WAN Rules134Create LAN WAN Outbound Service Rules137Create LAN WAN Inbound Service Rules141Configure DMZ WAN Rules144Create DMZ WAN Outbound Service Rules147Create DMZ WAN Inbound Service Rules150Configure LAN DMZ Rules153Create LAN DMZ Outbound Service Rules156Create LAN DMZ Inbound Service Rules158Examples of Firewall Rules161Examples of Inbound Firewall Rules161Examples of Outbound Firewall Rules167Configure Other Firewall Features169Attack Checks169Set Limits for IPv4 Sessions173Manage the Application Level Gateway for SIP Sessions175Services, Bandwidth Profiles, and QoS Profiles176Add Customized Services176Create Bandwidth Profiles180Preconfigured Quality of Service Profiles183Configure Service Groups184Configure IP Groups187Configure Content Filtering189Set a Schedule to Block or Allow Specific Traffic195Enable Source MAC Filtering196Set Up IP/MAC Bindings199Configure Port Triggering206Configure Universal Plug and Play2105. Virtual Private Networking Using IPSec and L2TP Connections212Use the IPSec VPN Wizard for Client and Gateway Configurations213Create an IPv4 Gateway-to-Gateway VPN Tunnel with the Wizard213Create an IPv6 Gateway-to-Gateway VPN Tunnel with the Wizard217Create an IPv4 Client-to-Gateway VPN Tunnel with the Wizard220Test the Connection and View Connection and Status Information234Test the NETGEAR VPN Client Connection234NETGEAR VPN Client Status and Log Information235View the VPN Firewall IPSec VPN Connection Status236View the VPN Firewall IPSec VPN Log237Manage IPSec VPN Policies238Manage IKE Policies238Manage VPN Policies247Configure Extended Authentication (XAUTH)257Configure XAUTH for VPN Clients257User Database Configuration259RADIUS Client and Server Configuration259Assign IPv4 Addresses to Remote Users261Mode Config Operation261Configure Mode Config Operation on the VPN Firewall262Configure the ProSafe VPN Client for Mode Config Operation268Test the Mode Config Connection274Modify or Delete a Mode Config Record275Configure Keep-Alives and Dead Peer Detection276Configure Keep-Alives277Configure Dead Peer Detection278Configure NetBIOS Bridging with IPSec VPN280Configure the L2TP Server281View the Active L2TP Users2836. Manage Users, Authentication, and VPN Certificates285The VPN Firewall’s Authentication Process and Options286Configure Authentication Domains, Groups, and Users287Configure Domains287Configure Groups292Configure User Accounts295Set User Login Policies299Change Passwords and Other User Settings306Manage Digital Certificates for VPN Connections308VPN Certificates309Manage VPN CA Certificates309Manage VPN Self-Signed Certificates311Manage the VPN Certificate Revocation List3167. Network and System Management319Performance Management320Bandwidth Capacity320Features That Reduce Traffic320Features That Increase Traffic322Use QoS and Bandwidth Assignment to Shift the Traffic Mix325Monitoring Tools for Traffic Management326System Management326Change Passwords and Administrator and Guest Settings326Configure Remote Management Access328Use the Command-Line Interface331Use a Simple Network Management Protocol Manager331Manage the Configuration File338Update the Firmware343Configure Date and Time Service3458. Monitor System Access and Performance348Enable the WAN Traffic Meter349Configure Logging, Alerts, and Event Notifications353How to Send Syslogs over a VPN Tunnel Between Sites357View the Status361View the System Status361View the VPN Connection Status and L2TP Users370View the VPN Logs372View the Port Triggering Status372View the WAN Port Status373View the Attached Devices and the DHCP Log376Diagnostics Utilities379Send a Ping Packet381Trace a Route381Look Up a DNS Address382Display the Routing Tables383Capture Packets in Real Time384Reboot the VPN Firewall Remotely3859. Troubleshooting386Basic Functioning387Power LED Not On387Test LED Never Turns Off387LAN or WAN Port LEDs Not On388Troubleshoot the Web Management Interface388When You Enter a URL or IP Address, a Time-Out Error Occurs389Troubleshoot the ISP Connection389Troubleshooting the IPv6 Connection391Troubleshoot a TCP/IP Network Using a Ping Utility395Test the LAN Path to Your VPN Firewall395Test the Path from Your Computer to a Remote Device396Restore the Default Configuration and Password397Address Problems with Date and Time398Access the Knowledge Base and Documentation398A. Default Settings and Technical Specifications399Factory Default Settings400Physical and Technical Specifications405B. Two-Factor Authentication407Why Do I Need Two-Factor Authentication?408What Are the Benefits of Two-Factor Authentication?408What Is Two-Factor Authentication?408NETGEAR Two-Factor Authentication Solutions409Index411Size: 9.5 MBPages: 422Language: EnglishOpen manual
