用户手册目录Chapter 1 About This Manual15Audience, Scope, Conventions, and Formats15How to Use This Manual16How to Print this Manual17Chapter 2 Introduction19Key Features of the VPN Firewall19Dual WAN Ports for Increased Reliability or Outbound Load Balancing20A Powerful, True Firewall with Content Filtering20Security21Autosensing Ethernet Connections with Auto Uplink21Extensive Protocol Support22Easy Installation and Management22Maintenance and Support23Package Contents23The Router’s Front Panel24The Router’s Rear Panel25The Router’s IP Address, Login Name, and Password26Logging into the Router27Default Factory Settings28NETGEAR Related Products29Chapter 3 Network Planning31Overview of the Planning Process31Inbound Traffic31Virtual Private Networks (VPNs)31The Rollover Case for Firewalls With Dual WAN Ports32The Load Balancing Case for Firewalls With Dual WAN Ports32Inbound Traffic33Inbound Traffic to Single WAN Port (Reference Case)33Inbound Traffic to Dual WAN Port Systems33Inbound Traffic: Dual WAN Ports for Improved Reliability34Inbound Traffic: Dual WAN Ports for Load Balancing34Virtual Private Networks (VPNs)35VPN Road Warrior (Client-to-Gateway)36VPN Road Warrior: Single Gateway WAN Port (Reference Case)36VPN Road Warrior: Dual Gateway WAN Ports for Improved Reliability37VPN Road Warrior: Dual Gateway WAN Ports for Load Balancing38VPN Gateway-to-Gateway39VPN Gateway-to-Gateway: Single Gateway WAN Ports (Reference Case)39VPN Gateway-to-Gateway: Dual Gateway WAN Ports for Improved Reliability40VPN Gateway-to-Gateway: Dual Gateway WAN Ports for Load Balancing41VPN Telecommuter (Client-to-Gateway Through a NAT Router)42VPN Telecommuter: Single Gateway WAN Port (Reference Case)42VPN Telecommuter: Dual Gateway WAN Ports for Improved Reliability43VPN Telecommuter: Dual Gateway WAN Ports for Load Balancing44Chapter 4 Connecting the FVS124G to the Internet45What You Will Need to Do Before You Begin45Cabling and Computer Hardware Requirements47Computer Network Configuration Requirements47Internet Configuration Requirements48Where Do I Get the Internet Configuration Parameters?48Record Your Internet Connection Information49Connecting the FVS124G ProSafe VPN Firewall 25 with 4 Gigabit LAN and Dual WAN Ports50Step 1: Physically Connect the VPN Firewall to Your Network (Required)51Step 2: Log in to the VPN Firewall (Required)51Step 3: Configure the Internet Connections to Your ISPs (Required)52Manually Configuring Your Internet Connection56Programming the Traffic Meter (if Desired)57Step 4: Configure the WAN Mode (Required for Dual WAN)59Rollover Setup60Load Balancing (and Protocol Binding) Setup61Step 5: Configure Dynamic DNS (If Needed)64Step 6: Configure the WAN Options (If Needed)67Chapter 5 LAN Configuration69Using the LAN IP Setup Options69Configuring LAN TCP/IP Setup Parameters70Using the Firewall as a DHCP server72Using Address Reservation73Multi Home LAN IPs74Configuring Static Routes74Chapter 6 Firewall Protection and Content Filtering77Firewall Protection and Content Filtering Overview77Using Rules to Block or Allow Specific Kinds of Traffic77Services-Based Rules80Inbound Rules (Port Forwarding)81Outbound Rules (Service Blocking)88Customized Services92Quality of Service (QoS) Priorities94Managing Groups and Hosts96Using a Schedule to Block or Allow Specific Traffic98Time Zone100Block Sites100Source MAC Filtering103Port Triggering104Getting E-Mail Notifications of Event Logs and Alerts106Syslog109Viewing Logs of Web Access or Attempted Web Access109Administrator Information111Chapter 7 Virtual Private Networking113Dual WAN Port Systems113Rollover vs. Load Balancing Mode113Fully Qualified Domain Names114Creating a VPN Connection: Between FVX538 and FVS124G117Configuring the FVX538117Configuring the FVS124G121Testing the Connection123Creating a VPN Connection: Netgear VPN Client to FVS124G123Configuring the FVS124G124Configuring the VPN Client124Testing the Connection132Chapter 8 Router and Network Management135Performance Management135Bandwidth Capacity135VPN Firewall Features That Reduce Traffic136Service Blocking136Block Sites138Source MAC Filtering138VPN Firewall Features That Increase Traffic138Port Forwarding139Port Triggering140VPN Tunnels141Using QoS to Shift the Traffic Mix141Tools for Traffic Management141Administrator and Guest Access Authorization142Changing the Passwords and Login Timeout142Enabling Remote Management Access143Command Line Interface144Event Alerts145WAN Port Rollover145Traffic Limits Reached145Login Failures and Attacks146Monitoring148Viewing VPN Firewall Status and Time Information148Firewall Status148Time Information150WAN Ports152WAN Port Connection Status152Dynamic DNS Status153Internet Traffic Information153LAN Ports and Attached Devices154Known PCs and Devices154DHCP Log156Port Triggering Status156Firewall157VPN Tunnels160SNMP161Diagnostics161Configuration File Management163Restoring and Backing Up the Configuration164Upgrading the Firewall Software164Erasing the Configuration (Factory Defaults Reset)165Chapter 9 Troubleshooting167Basic Functioning167Power LED Not On167LEDs Never Turn Off168LAN or Internet Port LEDs Not On168Troubleshooting the Web Configuration Interface169Troubleshooting the ISP Connection170Troubleshooting a TCP/IP Network Using a Ping Utility171Testing the LAN Path to Your Firewall171Testing the Path from Your PC to a Remote Device172Restoring the Default Configuration and Password173Problems with Date and Time173Appendix A Technical Specifications175Appendix B Network, Routing, Firewall, and Basics177Related Publications177Basic Router Concepts177What is a Router?178Routing Information Protocol178IP Addresses and the Internet178Netmask180Subnet Addressing181Private IP Addresses183Single IP Address Operation Using NAT184MAC Addresses and Address Resolution Protocol185Related Documents185Domain Name Server186IP Configuration by DHCP186Internet Security and Firewalls186What is a Firewall?187Stateful Packet Inspection187Denial of Service Attack187Ethernet Cabling187Category 5 Cable Quality188Inside Twisted Pair Cables189Uplink Switches, Crossover Cables, and MDI/MDIX Switching190Appendix C Preparing Your Network193Preparing Your Computers for TCP/IP Networking193Configuring Windows 95, 98, and Me for TCP/IP Networking194Install or Verify Windows Networking Components194Enabling DHCP to Automatically Configure TCP/IP Settings196Selecting Windows’ Internet Access Method198Verifying TCP/IP Properties198Configuring Windows NT4, 2000 or XP for IP Networking199Install or Verify Windows Networking Components199Enabling DHCP to Automatically Configure TCP/IP Settings200DHCP Configuration of TCP/IP in Windows XP200DHCP Configuration of TCP/IP in Windows 2000202DHCP Configuration of TCP/IP in Windows NT4205Verifying TCP/IP Properties for Windows XP, 2000, and NT4207Configuring the Macintosh for TCP/IP Networking208MacOS 8.6 or 9.x208MacOS X208Verifying TCP/IP Properties for Macintosh Computers209Verifying the Readiness of Your Internet Account210Are Login Protocols Used?210What Is Your Configuration Information?210Obtaining ISP Configuration Information for Windows Computers211Obtaining ISP Configuration Information for Macintosh Computers212Restarting the Network213Appendix D Virtual Private Networking215What is a VPN?215What Is IPSec and How Does It Work?216IPSec Security Features216IPSec Components216Encapsulating Security Payload (ESP)217Authentication Header (AH)218IKE Security Association218Mode219Key Management220Understand the Process Before You Begin220VPN Process Overview221Network Interfaces and Addresses221Interface Addressing221Firewalls222Setting Up a VPN Tunnel Between Gateways222VPNC IKE Security Parameters224VPNC IKE Phase I Parameters224VPNC IKE Phase II Parameters225Testing and Troubleshooting225Additional Reading225Glossary227List of Glossary Terms227Numeric227A228B228C229D229E230G231I231L232M233P234Q235R235S235T236U236W236文件大小: 6.8 MB页数: 238Language: English打开用户手册