Manuale UtenteSommarioNETGEAR ProSAFE VPN Client1Contents31. Introduction6VPN Client Features7VPN Client Licenses for Lite and Professional9Linux Appliance Support10References and Useful Websites102. Install the Software12Install the VPN Client Software13Launch the VPN Client13Use the VPN Client Lite Evaluation Version14View the Remaining Days in the Evaluation Period15Buy a License When the Evaluation Period Expires15License Number Concepts16Activate the VPN Client License16Troubleshoot Software Activation17Software Upgrade Concepts17Uninstall the VPN Client Software183. Overview of the User Interface20User Interface Components21VPN Configuration Panel21System Tray Icon and System Tray Menu22System Tray Pop-Up Window23Connection Panel23Keyboard Shortcuts254. Configure VPN Tunnels26VPN Tunnel Overview27Configure IKE Authentication Settings28Configure Advanced Authentication Settings30Configure XAUTH32Configure a Redundant Gateway34Configure Mode Config Settings35Configure Hybrid Mode36Configure IPSec Settings37Configure the Parameter Settings40Open and Close VPN Tunnels415. Advanced Settings43Control How VPN Tunnels Are Opened44Open a Tunnel Automatically44Open a Tunnel Before Windows Logon45Open a Tunnel by Double-Clicking on a Desktop Icon46Automatically Open a Web Page When a VPN Tunnel Opens48Configure Alternate DNS and WINS Servers49Configure Scripts50Configure Remote Sharing51USB Mode52Enable a New USB Drive with a VPN Configuration52Configure Tunnels to Open Automatically with a USB Drive55Manage Certificates56Import a PEM Certificate57Import a P12 Certificate58View and Assign Certificates60View Certificate Details62Use Certificates from USB Tokens and Smart Cards63Open a Tunnel with Certificates from a USB Token or Smart Card64Troubleshoot Certificates64Manage VPN Configuration Files65Import a VPN Configuration65Export a VPN Configuration66Merge VPN Configurations67Access Control Overview68Configure Access Control69Remove Access Control69Hide User Interface Features70Hide Links on the System Tray Menu70Disable the Systray Pop-Up Screens72Hide the Connection Panel73Configure VPN Client Startup Mode and Network Interface Detection73Change the Language74Edit a Software Language756. VPN Client Software Setup and Network Deployment77Software Setup and Deployment Concepts78Software Setup File Example78Software Setup Command Requirements79Examples of Options That You Can Include in a Software Setup File79Software Setup Command Reference80Customize VPN Client Display and Access for End Users85Display the Configuration Panel After Startup85Display the Connection Panel After Startup86Display the System Tray Menu Only After Startup86Require a Password to Access the Configuration Panel86Limit Usage to the System Tray Menu and Require a Password to Access Other Screens87Configure Which Items of the System Tray Menu Are Visible87VPN Client Silent Software Setup Deployment to End Users88Create a Silent VPN Client Software Setup89Deploy a VPN Client Software Setup from a CD89Deploy a VPN Client Software Setup from a Shortcut90Deploy a VPN Client Software Setup Using a Batch Script91Deploy a VPN Client Software Setup from a Network Drive92Deliver a VPN Configuration to an End User93Embed a VPN Configuration in a VPN Client Software Setup Deployment94Export and Deploy a VPN Configuration95Command-Line Interface Command Reference96Customize the VPN Client Using CLI Commands99Open or Close a VPN Tunnel99Close All Active Tunnels and Close the VPN Client100Import, Export, Add, or Replace the VPN Configuration100Customize How the VPN Client Handles Readers and Certificates101Customize the vpnsetup.ini File101Customize the vpnconf.ini File1047. Troubleshoot the VPN Client108VPN Client Troubleshooting Overview109Resolve Firewall Interference109View and Control VPN Client Log Messages109Enable the VPN Console Debugging Mode110VPN Console Log Errors111PAYLOAD_MALFORMED error111INVALID_COOKIE error111no keystate111received remote ID other than expected112NO_PROPOSAL_CHOSEN error112NO_PROPOSAL_CHOSEN error113INVALID_ID_INFORMATION error113No Response to a Phase 1 Request114The Console Shows Only SEND and RECV114No Response to Phase 2 Requests114View VPN Gateway Logs115A VPN Tunnel Is Up but You Cannot Ping the Remote Endpoint116A. Configure a NETGEAR VPN Gateway118VPN Gateway Overview119Use the Router’s VPN Wizard to Configure a VPN Gateway120Edit a VPN Policy122Edit an IKE Policy123Manually Configure a NETGEAR Router as a VPN Gateway124Set Up an IKE Policy in the Router124Set Up a VPN Policy in the Router125Configure a VPN Client to Match the VPN Gateway Settings128Dimensioni: 2,16 MBPagine: 129Language: EnglishApri il manuale
Manuale Di RiferimentoSommarioProSAFE Dual WAN Gigabit SSL VPN Firewall1Contents31. Get an Overview of the Features and Hardware and Log In12What Is the ProSAFE Dual WAN Gigabit SSL VPN Firewall?13Key Features and Capabilities13Two WAN Ports for Increased Reliability and Load Balancing14Advanced VPN Support for Both IPSec and SSL15A Powerful, True Firewall with Content Filtering15Security Features16Autosensing Ethernet Connections with Auto Uplink16Extensive Protocol Support16Easy Installation and Management17Maintenance and Support17Package Contents18Hardware Features18Front Panel18Back Panel20Bottom Panel with Product Label21Choose a Location for the VPN Firewall21Rack-Mount the VPN Firewall with the Mounting Kit22Login Requirements22Browser Requirements22Web Management Interface Overview23Requirements for Entering IP Addresses24Log In to the VPN Firewall as an Administrator24Change the Password for the Default Administrator Account262. Configure the IPv4 Internet and WAN Settings28Roadmap to Setting Up IPv4 Internet Connections to Your ISPs29Configure the IPv4 Internet Connection and WAN Settings30Manage the IPv4 WAN Routing Mode30Let the VPN Firewall Automatically Detect and Configure an IPv4 Internet Connection32Manually Configure a Static IPv4 Internet Connection36Manually Configure a PPPoE IPv4 Internet Connection39Manually Configure a PPTP IPv4 Internet Connection44Configure Load Balancing or Auto-Rollover for IPv4 Interfaces48Load Balancing and Auto-Rollover for IPv4 WAN Interfaces48Configure Load Balancing Mode and Optional Protocol Binding for IPv4 Interfaces49Configure the Auto-Rollover Mode and Failure Detection Method for IPv4 Interfaces56Manage Secondary IPv4 WAN Addresses59Secondary IPv4 WAN Addresses60Add a Secondary WAN Address to a WAN IPv4 Interface60Remove One or More Secondary WAN Addresses62Manage Dynamic DNS Connections63Dynamic DNS63Configure Dynamic DNS63Managing Advanced WAN Options66Change the Maximum Transmission Unit Size66Change the Port Speed and Duplex Settings68Change the Advertised MAC Address of the VPN Firewall70Set the WAN Connection Type and Corresponding Speeds72Manage WAN QoS and WAN QoS Profiles74WAN QoS74Add a Rate Control WAN QoS Profile75Add a Priority Queue WAN QoS Profile78Enable WAN QoS and Select the WAN QoS Type80Change a QoS Profile82Enable, Disable, or Remove One or More WAN QoS Profiles83Additional WAN-Related Configuration Tasks84What to Do Next843. Configure the IPv6 Internet and WAN Settings85Roadmap to Setting Up an IPv6 Internet Connection to Your ISP86Configure the IPv6 Internet Connection and WAN Settings87IPv6 Network87Manage the IPv6 Routing Mode88Use a DHCPv6 Server to Configure an IPv6 Internet Connection Automatically90Manually Configure a Static IPv6 Internet Connection94Manually Configure a PPPoE IPv6 Internet Connection97Manage Tunneling for IPv6 Traffic101Manage 6to4 Automatic Tunneling101Manage ISATAP Automatic Tunneling103View the Tunnel Status and Tunnel IPv6 Addresses107Configure Stateless IP/ICMP Translation108Stateless IP/ICMP Translation108Configure Stateless IP/ICMP Translation108Configure Auto-Rollover for IPv6 Interfaces109Auto-Rollover for IPv6 WAN Interfaces110Configure Auto-Rollover Mode for IPv6 WAN Interfaces110Configure the Failure Detection Method for IPv6 WAN Interfaces112Additional WAN-Related Configuration Tasks114What to Do Next1144. Configure the IPv4 LAN Settings115Manage IPv4 Virtual LANs and DHCP Options116IPv4 LANs and VLANs116Port-Based VLANs117Assign VLAN Profiles117VLAN DHCP119Manage VLAN Profiles120Configure Unique VLAN MAC Addresses127Disable the Broadcast of ARP Packets for the Default VLAN128Manage IPv4 Multihome LAN IP Addresses on the Default VLAN129IPv4 Multihome LAN IP Addresses129Add a Secondary LAN IPv4 Address130Change a Secondary LAN IPv4 Address131Remove One or More Secondary LAN IPv4 Addresses132Manage IPv4 LAN Groups and Hosts133Network Database133DHCP Address Reservation134Manage the Network Database134Change Group Names in the Network Database140Manage the DMZ Port for IPv4 Traffic141IPv4 DMZ141Enable and Configure the DMZ Port for IPv4 Traffic142Manage Static IPv4 Routing145Static IPv4 Routes145Add a Static IPv4 Route146Change a Static IPv4 Route148Remove One or More Static IPv4 Routes148Configure the Routing Information Protocol149IPv4 Static Route Example1525. Configure the IPv6 LAN Settings153Manage the IPv6 LAN154IPv6 LANs154DHCPv6 LAN Server Concepts and Configuration Roadmap154Configure a Stateless DHCPv6 Server Without Prefix Delegation for the LAN156Manage a Stateless DHCPv6 Server with Prefix Delegation for the LAN159Manage a Stateful DHCPv6 Server and IPv6 Address Pools for the LAN166Manage the IPv6 Router Advertisement Daemon for the LAN172Manage IPv6 Multihome LAN IP Addresses181IPv6 Multihome LAN IP Addresses181Add a Secondary LAN IPv6 Address182Change a Secondary LAN IPv6 Address183Remove One or More Secondary LAN IPv6 Addresses184Manage the DMZ Port for IPv6 Traffic185IPv6 DMZ185Manage a Stateless DHCPv6 Server with Prefix Delegation for the DMZ186Manage a Stateful DHCPv6 Server and IPv6 Address Pools for the DMZ198Manage Static IPv6 Routing205Add a Static IPv6 Route205Change a Static IPv6 Route207Remove One or More Static IPv6 Routes2086. Customize Firewall Protection209Firewall Protection210Overview of Rules to Block or Allow Specific Kinds of Traffic211Firewall Rules211Outbound Rules — Service Blocking213Settings for Outbound Rules213Inbound Rules — Port Forwarding216Settings for Inbound Rules218Change the Default Outbound Policy for LAN WAN Traffic221Change the Default LAN WAN Outbound Policy for IPv4 Traffic221Change the Default LAN WAN Outbound Policy for IPv6 Traffic223Add LAN WAN Rules224Add LAN WAN Outbound Service Rules224Add LAN WAN Inbound Service Rules229Add DMZ WAN Rules234Add DMZ WAN Outbound Service Rules234Add DMZ WAN Inbound Service Rules238Add LAN DMZ Rules243Add LAN DMZ Outbound Service Rules243Add LAN DMZ Inbound Service Rules247Manage Existing Firewall Rules251Examples of Firewall Rules253Examples of Inbound Firewall Rules254Examples of Outbound Firewall Rules262Configure Other Firewall Features266Manage Protection Against Common Network Attacks267Manage VPN Pass-Through270Set Limits for IPv4 Sessions273Manage Time-Out Periods for TCP, UDP, and ICMP Sessions275Manage Multicast Pass-Through277Manage the Application Level Gateway for SIP Sessions279Manage Firewall Objects280Firewall Objects281Manage Customized Services281Manage Service Groups285Manage IP Address Groups289Define a Schedule293Manage Quality of Service Profiles for IPv4 Firewall Rules294Default Quality of Service Priorities for IPv6 Firewall Rules299Manage Bandwidth Profiles for IPv4 Traffic3007. Protect Your Network306Manage Content Filtering307Content Filtering Overview307Enable Content Filtering and Select Web Components308Manage Keywords and Domain Names That Must Be Blocked310Manage Domain Names That You Trust311Manage Keyword Blocking for LAN Groups312Enable Source MAC Filtering313Manage IP/MAC Bindings315IP/MAC Binding Overview315Manage IP/MAC Bindings for IPv4 Traffic316Manage IP/MAC Bindings for IPv6 Traffic321Manage Port Triggering326Port Triggering Overview326Add a Port Triggering Rule327Change a Port Triggering Rule329Remove One or More Port Triggering Rules329Display the Status of Active Port Triggering Rules330Enable Universal Plug and Play3318. Set Up Virtual Private Networking With IPSec Connections334Dual WAN Port Systems335Use the IPSec VPN Wizard for Client and Gateway Configurations336IPSec VPN Wizard Overview336View the IPSec VPN Wizard Default Values337Create an IPv4 Gateway-to-Gateway VPN Tunnel with the Wizard338Create an IPv6 Gateway-to-Gateway VPN Tunnel with the Wizard342Create an IPv4 Client-to-Gateway VPN Tunnel with the Wizard346Test the Connection and View Connection and Status Information362Test the NETGEAR ProSAFE VPN Client VPN Tunnel Connection363NETGEAR ProSAFE VPN Client Status and Log Information364View the VPN Firewall IPSec VPN Connection Status and Terminate or Establish Tunnels365View the VPN Firewall IPSec VPN Log366Manage IPSec VPN Policies Manually367Manage IKE Policies368Manage VPN Policies380Configure Extended Authentication (XAUTH)390Extended Authentication Overview391Enable and Configure Extended Authentication for VPN Clients391RADIUS394Configure the RADIUS Servers for the VPN Firewall’s RADIUS Client394Assign IPv4 Addresses to Remote Users396Mode Config Overview396Configure Mode Config Operation on the VPN Firewall397Configure the NETGEAR ProSAFE VPN Client for Mode Config Operation404Test the Mode Config Connection410Change a Mode Config Record412Remove One or More Mode Config Records413Manage Keep-Alives and Dead Peer Detection413Keep-Alive and Dead Peer Detection Overview414Configure Keep-Alives414Configure Dead Peer Detection416Configure NetBIOS Bridging with IPSec VPN418Manage the PPTP Server419PPTP Servers Overview419Enable and Configure the PPTP Server420View the Active PPTP Users and Disconnect Active Users422Manage the L2TP Server423L2TP Servers Overview423Enable and Configure the L2TP Server423View the Active L2TP Users and Disconnect Active Users4259. Set Up Virtual Private Networking with SSL Connections427SSL VPN Portals Overview428SSL VPN Capabilities428SSL Tunnels428SSL Port Forwarding428Build and Access an SSL Portal429Build an SSL Portal Using the SSL VPN Wizard429SSL VPN Wizard Overview430Build an SSL Portal with the SSL VPN Wizard431Access a Custom SSL VPN Portal442View SSL VPN Connection and Status Information446View the VPN Firewall SSL VPN Connection Status and Disconnect Active Users446View the VPN Firewall SSL VPN Log447Manually Set Up or Change an SSL Portal448Manual SSL Configuration Overview448Manage the Portal Layout450Configure Applications for SSL VPN Port Forwarding455Configure the SSL VPN Client461Manage Network Resource Objects to Simplify Policies469Configure User, Group, and Global Policies47510. Manage Users, Authentication, and VPN Certificates488VPN Firewall’s Authentication489Configure Authentication Domains, Groups, and User Accounts490Manage Authentication Domains490Manage Authentication Groups496Manage User Accounts500Manage User Login Policies506Change Passwords and Automatic Logout Period513Manage Digital Certificates for VPN Connections514VPN Certificates Overview515Manage VPN CA Certificates516Manage VPN Self-Signed Certificates518Manage the VPN Certificate Revocation List52411. Optimize Performance and Manage Your System528Performance Management529Bandwidth Capacity Overview529Features That Reduce Traffic530Features That Increase Traffic532Use QoS and Bandwidth Assignment to Shift the Traffic Mix535Monitoring Tools for Traffic Management535System Management536Set Up Remote Management Access536Use the Command-Line Interface539Use a Simple Network Management Protocol Manager540Manage the Configuration File548Revert to Factory Default Settings553Configure Date and Time Service55612. Monitor System Access and Performance559Configure and Enable the WAN IPv4 Traffic Meter560Manage the LAN IPv4 Traffic Meter562Configure and Enable the Traffic Meter for a LAN IPv4 Address Account563View Traffic Meter Statistics for a LAN Account566Change the Traffic Meter for a LAN Account567Remove One or More LAN Traffic Meter Accounts568Manage Logging, Alerts, and Event Notifications569Logging, Alert, and Event Notification569Configure and Activate Logs569Enable and Schedule Emailing of Logs571Enable the Syslogs573View the Routing Logs, System Logs, and Other Event Logs575View the DNS Logs576View the NTP Logs577Send Syslogs over a VPN Tunnel Between Sites578View the Status and Statistics of the VPN Firewall and Its Traffic583View the System Status584View the VPN Connection Status, L2TP Users, and PPTP Users594View the VPN Logs595View the Port Triggering Status595View the WAN Port Status and Terminate or Establish the Internet Connection596Display Internet Traffic by Type of Traffic600View the Attached Devices601View the DHCP Log60313. Diagnostics and Troubleshooting605Use the Diagnostics Utilities606Diagnostic Utility606Send a Ping Packet606Trace a Route608Look Up a DNS Address610Display the Routing Tables610Capture Packets in Real Time611Reboot the VPN Firewall Remotely613Schedule the VPN Firewall to Reboot613Troubleshoot Basic Functioning614Troubleshoot the Web Management Interface615When You Enter a URL or IP Address, a Time-Out Error Occurs616Troubleshoot the ISP Connection617Check the WAN IP Address617Force Your Modem or Router to Recognize the VPN Firewall618Other ISP Troubleshooting Suggestions618Troubleshoot the IPv6 Connection619Troubleshoot a TCP/IP Network Using a Ping Utility622Test the LAN Path to Your VPN Firewall622Test the Path from Your Computer to a Remote Device623Troubleshoot Problems with Date and Time623Access Documentation from the Web Management Interface624A. Network Planning for Multiple WAN Ports626What to Consider Before You Begin627Planning Overview627Cabling and Computer Hardware Requirements628Computer Network Configuration Requirements628Internet Configuration Requirements629Overview of the Planning Process630Planning for Inbound Traffic632Inbound Traffic to a Single WAN Port System633Inbound Traffic to a Dual WAN Port System633Planning for Virtual Private Networks634VPN Telecommuter - Client-to-Gateway636VPN Gateway-to-Gateway638VPN Telecommuter - Client-to-Gateway Through a NAT Router640B. System Logs and Error Messages643Log Message Terms644System Log Messages644NTP645Login and Logout645System Startup646Reboot646Firewall Restart646IPSec Restart647Unicast, Multicast, and Broadcast Logs647WAN Status648Resolved DNS Names652VPN Log Messages652Traffic Meter Logs658Routing Logs658LAN to WAN Logs659LAN to DMZ Logs659DMZ to WAN Logs659WAN to LAN Logs659DMZ to LAN Logs660WAN to DMZ Logs660Other Event Logs660Session Limit Logs660Source MAC Filter Logs661Bandwidth Limit Logs661DHCP Logs662C. Two-Factor Authentication663Why Do I Need Two-Factor Authentication?664What Are the Benefits of Two-Factor Authentication?664What Is Two-Factor Authentication?664NETGEAR Two-Factor Authentication Solutions665D. Default Settings and Technical Specifications668Factory Default Settings669Physical and Technical Specifications674Index677Dimensioni: 10,8 MBPagine: 691Language: EnglishApri il manuale
Manuale Di RiferimentoSommarioProSAFE Dual WAN Gigabit Firewall with SSL & IPsec VPN1Contents31. Introduction6Command Syntax and Conventions7Command Conventions7Description of a Command8Common Parameters9Four Categories of Commands9Configuration Commands: Four Main Modes10Configuration Commands: Save Commands13Commands That Require Saving13Commands That Do Not Require Saving13Global Commands14Examples of Three Basic Types of Commands14Command Autocompletion and Command Abbreviation15Access the CLI162. Overview of the Configuration Commands17Network Settings Configuration Commands18Security Settings Configuration Commands21System Administrative and Monitoring Settings Configuration Commands25VPN Settings Configuration Commands263. Net Mode Configuration Commands29General WAN Commands30IPv4 WAN Commands34IPv6 WAN Commands50IPv6 Tunnel Commands54Dynamic DNS Command57IPv4 LAN Commands59IPv6 LAN Commands70IPv4 DMZ Setup Command81IPv6 DMZ Setup Commands83WAN QoS Commands90IPv4 Routing Commands103IPv6 Routing Commands1074. Security Mode Configuration Commands110Security Services Commands111Security Schedules Command120IPv4 Add Firewall Rule and Edit Firewall Rule Commands122IPv4 General Firewall Commands164IPv6 Firewall Commands165Attack Check and IGMP Passthrough Commands172Session Limit, Time-Out, and Advanced Commands177Address Filter and IP/MAC Binding Commands181Port Triggering Commands185UPnP Command188Bandwidth Profile Commands189Content Filtering Commands1925. System Mode Configuration Commands198Remote Management Commands199SNMP Commands203Time Zone Command208WAN Traffic Meter Command213Firewall Logs and Email Alerts Commands216System Reboot Command2236. VPN Mode Configuration Commands224IPSec VPN Wizard Command225IPSec IKE Policy Commands228IPSec VPN Policy Commands234IPSec VPN Mode Config Commands246SSL VPN Wizard Command249SSL VPN Portal Layout Commands254SSL VPN Authentication Domain Commands257SSL VPN Authentication Group Commands261SSL VPN User Commands262SSL VPN Port Forwarding Commands268SSL VPN Client and Client Route Commands271SSL VPN Resource Commands275SSL VPN Policy Commands278RADIUS Server Command285PPTP Server Command287L2TP Server Command2887. Overview of the Show Commands290Network Settings Show Commands291Security Settings Show Commands293Administrative and Monitoring Settings Show Commands294VPN Settings Show Commands2958. Show Commands297Network Settings Show Commands298WAN IPv4 and WAN IPv6 Show Commands298IPv6 Mode, IPv6 Tunnel, and SIIT Show Commands302LAN DHCP Show Commands303Dynamic DNS Show Command304IPv4 LAN Show Commands305IPv6 LAN Show Commands308DMZ Show Commands310Routing Show Commands312Network Statistics Show Command313Security Settings Show Commands313Services Show Commands314Schedules Show Command315Firewall Rules Show Commands315Attack Checks and IGMP Show Commands317Session Limits Show Commands319Advanced Firewall Show Command319Address Filter Show Commands320Port Triggering Show Commands321UPnP Show Commands322Bandwidth Profiles Show Command322Content Filtering Show Commands323Administrative and Monitoring Settings Show Commands324Remote Management Show Command325SNMP Show Commands325Time Show Command327Firmware Version Show Command327Status Show Command327WAN Traffic Meter Show Command330Logging Configuration Show Commands331Logs Show Commands333Reboot Show Command334VPN Settings Show Commands334IPSec VPN Show Commands334SSL VPN Show Commands336SSL VPN User Show Commands339RADIUS Server Show Command342PPTP Server Show Commands342L2TP Server Show Commands3439. Utility Commands344Overview Util Commands345Firmware Backup, Restore, and Upgrade Commands345Diagnostic Commands347Command List349Dimensioni: 1,43 MBPagine: 356Language: EnglishApri il manuale
