사용자 설명서차례Reference Manual for the ProSafe VPN Firewall FVS1141Product and Publication Details3Contents5Chapter 1 About This Manual13Audience, Scope, Conventions, and Formats13How to Use This Manual14How to Print this Manual15Chapter 2 Introduction17Key Features of the VPN Firewall17A Powerful, True Firewall with Content Filtering18Security18Autosensing Ethernet Connections with Auto Uplink19Extensive Protocol Support19Easy Installation and Management20Maintenance and Support20Package Contents21The FVS114 Front Panel21The FVS114 Rear Panel22NETGEAR-Related Products23NETGEAR Product Registration, Support, and Documentation23Chapter 3 Connecting the Firewall to the Internet25Prepare to Install Your FVS114 ProSafe VPN Firewall25First, Connect the FVS11425Now, Configure the FVS114 for Internet Access28Troubleshooting Tips30Overview of How to Access the FVS114 VPN Firewall31How to Log On to the FVS114 After Configuration Settings Have Been Applied32How to Bypass the Configuration Assistant33Using the Smart Setup Wizard34How to Manually Configure Your Internet Connection35Chapter 4 Firewall Protection and Content Filtering39Firewall Protection and Content Filtering Overview39Block Sites40Using Rules to Block or Allow Specific Kinds of Traffic41Inbound Rules (Port Forwarding)44Inbound Rule Example: A Local Public Web Server44Inbound Rule Example: Allowing a Videoconference from Restricted Addresses45Considerations for Inbound Rules46Outbound Rules (Service Blocking)46Outbound Rule Example: Blocking Instant Messenger47Order of Precedence for Rules48Services49Using a Schedule to Block or Allow Specific Traffic51Time Zone52Getting E-Mail Notifications of Event Logs and Alerts53Viewing Logs of Web Access or Attempted Web Access55Syslog56Chapter 5 Basic Virtual Private Networking57Overview of VPN Configuration58Client-to-Gateway VPN Tunnels58Gateway-to-Gateway VPN Tunnels58Planning a VPN59VPN Tunnel Configuration61How to Set Up a Client-to-Gateway VPN Configuration61Step 1: Configuring the Client-to-Gateway VPN Tunnel on the FVS11462Step 2: Configuring the NETGEAR ProSafe VPN Client on the Remote PC65Monitoring the Progress and Status of the VPN Client Connection72Transferring a Security Policy to Another Client73Exporting a Security Policy73Importing a Security Policy74How to Set Up a Gateway-to-Gateway VPN Configuration76Procedure to Configure a Gateway-to-Gateway VPN Tunnel77VPN Tunnel Control82Activating a VPN Tunnel82Start Using a VPN Tunnel to Activate It82Using the VPN Status Page to Activate a VPN Tunnel82Activate the VPN Tunnel by Pinging the Remote Endpoint83Verifying the Status of a VPN Tunnel85Deactivating a VPN Tunnel86Using the Policy Table on the VPN Policies Page to Deactivate a VPN Tunnel86Using the VPN Status Page to Deactivate a VPN Tunnel87Deleting a VPN Tunnel88Chapter 6 Advanced Virtual Private Networking89Overview of FVS114 Policy-Based VPN Configuration89Using Policies to Manage VPN Traffic90Using Automatic Key Management90IKE Policies’ Automatic Key and Authentication Management91VPN Policy Configuration for Auto Key Negotiation93VPN Policy Configuration for Manual Key Exchange97Using Digital Certificates for IKE Auto-Policy Authentication101Certificate Revocation List (CRL)102Walk-Through of Configuration Scenarios on the FVS114102VPN Consortium Scenario 1: Gateway-to-Gateway with Preshared Secrets103FVS114 Scenario 1: FVS114 to Gateway B IKE and VPN Policies104How to Check VPN Connections109Testing the Gateway A FVS114 LAN and the Gateway B LAN109FVS114 Scenario 2: FVS114 to FVS114 with RSA Certificates110Chapter 7 Maintenance117Viewing VPN Firewall Status Information117Viewing a List of Attached Devices121Upgrading the Firewall Software121Configuration File Management122Backing Up the Configuration123Restoring the Configuration123Erasing the Configuration123Changing the Administrator Password124Diagnostics124Chapter 8 Advanced Configuration127WAN Setup127Default DMZ Server128Respond to Ping on Internet WAN Port129How to Configure Dynamic DNS129Using the LAN IP Setup Options131Configuring LAN TCP/IP Setup Parameters131Using the Firewall as a DHCP server133Using Address Reservation133Configuring Static Routes134Static Route Example136Enabling Remote Management Access136UPnP139Chapter 9 Troubleshooting141Basic Functioning141Power LED Not On141LEDs Never Turn Off142LAN or Internet Port LEDs Not On142Troubleshooting the Web Configuration Interface143Troubleshooting the ISP Connection144Troubleshooting a TCP/IP Network Using a Ping Utility145Testing the LAN Path to Your Firewall145Testing the Path from Your PC to a Remote Device146Restoring the Default Configuration and Password147Problems with Date and Time147Appendix A Technical Specifications149Appendix B Network, Routing, and Firewall Basics151Related Publications151Basic Router Concepts151What is a Router?152Routing Information Protocol152IP Addresses and the Internet152Netmask154Subnet Addressing155Private IP Addresses157Single IP Address Operation Using NAT158MAC Addresses and Address Resolution Protocol159Related Documents159Domain Name Server159IP Configuration by DHCP160Internet Security and Firewalls160What is a Firewall?161Stateful Packet Inspection161Denial of Service Attack161Ethernet Cabling161Category 5 Cable Quality162Inside Twisted Pair Cables163Uplink Switches, Crossover Cables, and MDI/MDIX Switching164Appendix C Virtual Private Networking167What is a VPN?167What Is IPSec and How Does It Work?168IPSec Security Features168IPSec Components168Encapsulating Security Payload (ESP)169Authentication Header (AH)170IKE Security Association170Mode171Key Management172Understand the Process Before You Begin172VPN Process Overview173Network Interfaces and Addresses173Interface Addressing173Firewalls174VPN Tunnel Between Gateways174VPNC IKE Security Parameters176VPNC IKE Phase I Parameters176VPNC IKE Phase II Parameters177Testing and Troubleshooting177Additional Reading177Appendix D Preparing Your Network179Preparing Your Computers for TCP/IP Networking179Configuring Windows 95, 98, and Me for TCP/IP Networking180Install or Verify Windows Networking Components180Enabling DHCP to Automatically Configure TCP/IP Settings182Selecting Windows’ Internet Access Method184Verifying TCP/IP Properties184Configuring Windows NT4, 2000 or XP for IP Networking185Install or Verify Windows Networking Components185Enabling DHCP to Automatically Configure TCP/IP Settings186DHCP Configuration of TCP/IP in Windows XP186DHCP Configuration of TCP/IP in Windows 2000188DHCP Configuration of TCP/IP in Windows NT4191Verifying TCP/IP Properties for Windows XP, 2000, and NT4193Configuring the Macintosh for TCP/IP Networking194MacOS 8.6 or 9.x194MacOS X194Verifying TCP/IP Properties for Macintosh Computers195Verifying the Readiness of Your Internet Account196Are Login Protocols Used?196What Is Your Configuration Information?196Obtaining ISP Configuration Information for Windows Computers197Obtaining ISP Configuration Information for Macintosh Computers198Restarting the Network199Glossary201List of Glossary Terms201Numeric201A201B202C203D203E204G205I205L206M207P207Q208R209S209T209U210W210크기: 4.57메가바이트페이지: 212Language: English매뉴얼 열기