Netgear N600 Wireless Router User Manual
Here you can view all the pages of manual Netgear N600 Wireless Router User Manual. The Netgear manuals for Router are available online for free. You can easily download all the documents as PDF.
Page 111
![Page 111
Virtual Private Networking111
N600 Wireless Dual Band Gigabit ADSL2+ Modem Router DGND3700
3.
Click VPN Status. The Current VPN Tunnels (SAs) screen displays:
4. Click Drop for the VPN tunnel that you want to deactivate.
Delete a VPN Tunnel
To delete a VPN tunnel:
1. On the main menu, select VPN Policies to display the VPN Policies screen. In the
Policy Table, select the radio button for the VPN tunnel to be deleted, \
and then click
Delete.
Set Up VPN Tunnels in Special Circumstances
When the VPN...](http://img.usermanuals.tech/thumb/55/72196/w300_n600-wireless-router-user-manual-1494929941_d-110.png "Page 111
Virtual Private Networking111
N600 Wireless Dual Band Gigabit ADSL2+ Modem Router DGND3700
3.
Click VPN Status. The Current VPN Tunnels (SAs) screen displays:
4. Click Drop for the VPN tunnel that you want to deactivate.
Delete a VPN Tunnel
To delete a VPN tunnel:
1. On the main menu, select VPN Policies to display the VPN Policies screen. In the
Policy Table, select the radio button for the VPN tunnel to be deleted, \
and then click
Delete.
Set Up VPN Tunnels in Special Circumstances
When the VPN...")
Virtual Private Networking111 N600 Wireless Dual Band Gigabit ADSL2+ Modem Router DGND3700 3. Click VPN Status. The Current VPN Tunnels (SAs) screen displays: 4. Click Drop for the VPN tunnel that you want to deactivate. Delete a VPN Tunnel To delete a VPN tunnel: 1. On the main menu, select VPN Policies to display the VPN Policies screen. In the Policy Table, select the radio button for the VPN tunnel to be deleted, \ and then click Delete. Set Up VPN Tunnels in Special Circumstances When the VPN...
Page 112
![Page 112
Virtual Private Networking112
N600 Wireless Dual Band Gigabit ADSL2+ Modem Router DGND3700
parameters. You have more control over the process; however, the process\
is more
complex, and there are more opportunities for errors or configuration mi\
smatches
between your N600 Wireless Dual Band Gigabit ADSL2+ Modem Router DGND370\
0 and
the corresponding VPN endpoint gateway or client workstation.
Use Auto Policy to Configure VPN Tunnels
You need to configure matching VPN settings on both VPN...](http://img.usermanuals.tech/thumb/55/72196/w300_n600-wireless-router-user-manual-1494929941_d-111.png "Page 112
Virtual Private Networking112
N600 Wireless Dual Band Gigabit ADSL2+ Modem Router DGND3700
parameters. You have more control over the process; however, the process\
is more
complex, and there are more opportunities for errors or configuration mi\
smatches
between your N600 Wireless Dual Band Gigabit ADSL2+ Modem Router DGND370\
0 and
the corresponding VPN endpoint gateway or client workstation.
Use Auto Policy to Configure VPN Tunnels
You need to configure matching VPN settings on both VPN...")
Virtual Private Networking112 N600 Wireless Dual Band Gigabit ADSL2+ Modem Router DGND3700 parameters. You have more control over the process; however, the process\ is more complex, and there are more opportunities for errors or configuration mi\ smatches between your N600 Wireless Dual Band Gigabit ADSL2+ Modem Router DGND370\ 0 and the corresponding VPN endpoint gateway or client workstation. Use Auto Policy to Configure VPN Tunnels You need to configure matching VPN settings on both VPN...
Page 113
![Page 113
Virtual Private Networking113
N600 Wireless Dual Band Gigabit ADSL2+ Modem Router DGND3700
The DGND3700 VPN tunnel network connection fields are defined in the fol\
lowing table.
Table 19. VPN - Auto Policy screen settings
Fields and SettingsDescription
General Policy NameEnter a unique name. This name is not supplied to the remote VPN
endpoint. It is used only to help you manage the policies.
Remote VPN
Endpoint •
The remote VPN endpoint has to have this VPN’s gateway address
entered as its...](http://img.usermanuals.tech/thumb/55/72196/w300_n600-wireless-router-user-manual-1494929941_d-112.png "Page 113
Virtual Private Networking113
N600 Wireless Dual Band Gigabit ADSL2+ Modem Router DGND3700
The DGND3700 VPN tunnel network connection fields are defined in the fol\
lowing table.
Table 19. VPN - Auto Policy screen settings
Fields and SettingsDescription
General Policy NameEnter a unique name. This name is not supplied to the remote VPN
endpoint. It is used only to help you manage the policies.
Remote VPN
Endpoint •
The remote VPN endpoint has to have this VPN’s gateway address
entered as its...")
Virtual Private Networking113 N600 Wireless Dual Band Gigabit ADSL2+ Modem Router DGND3700 The DGND3700 VPN tunnel network connection fields are defined in the fol\ lowing table. Table 19. VPN - Auto Policy screen settings Fields and SettingsDescription General Policy NameEnter a unique name. This name is not supplied to the remote VPN endpoint. It is used only to help you manage the policies. Remote VPN Endpoint • The remote VPN endpoint has to have this VPN’s gateway address entered as its...
Page 114
Virtual Private Networking114 N600 Wireless Dual Band Gigabit ADSL2+ Modem Router DGND3700 IKE DirectionThis setting is used when the router determines if the IKE policy matches the current traffic. Select an option. • Responder only . Incoming connections are allowed, but outgoing connections are blocked. • Initiator and Responder . Both incoming and outgoing connections are allowed. Exchange Mode Ensure that the remote VPN endpoint is set to use Main Mode. Diffie-Hellman (DH) Group The...
Page 115
![Page 115
Virtual Private Networking115
N600 Wireless Dual Band Gigabit ADSL2+ Modem Router DGND3700
Parameters
(Continued)
SA Life Time
The time interval before the SA (security association) expires. (It i\
s
automatically reestablished as required.) While using a short time
period (or data amount) increases security, it also degrades
performance. It is common to use periods over an hour (3600 seconds)
for the SA life-time. This setting applies to both IKE and IPSec SAs.
Enable IPSec PFS
(Perfect Forward...](http://img.usermanuals.tech/thumb/55/72196/w300_n600-wireless-router-user-manual-1494929941_d-114.png "Page 115
Virtual Private Networking115
N600 Wireless Dual Band Gigabit ADSL2+ Modem Router DGND3700
Parameters
(Continued)
SA Life Time
The time interval before the SA (security association) expires. (It i\
s
automatically reestablished as required.) While using a short time
period (or data amount) increases security, it also degrades
performance. It is common to use periods over an hour (3600 seconds)
for the SA life-time. This setting applies to both IKE and IPSec SAs.
Enable IPSec PFS
(Perfect Forward...")
Virtual Private Networking115 N600 Wireless Dual Band Gigabit ADSL2+ Modem Router DGND3700 Parameters (Continued) SA Life Time The time interval before the SA (security association) expires. (It i\ s automatically reestablished as required.) While using a short time period (or data amount) increases security, it also degrades performance. It is common to use periods over an hour (3600 seconds) for the SA life-time. This setting applies to both IKE and IPSec SAs. Enable IPSec PFS (Perfect Forward...
Page 116
Virtual Private Networking116 N600 Wireless Dual Band Gigabit ADSL2+ Modem Router DGND3700 Example of Using Auto Policy VPN Tunnel Internet Gateway A Gateway B 22.23.24.25 14.15.16.17 IP: 192.168.0.1 IP:192.168.3.1 Figure 46. The following settings are assumed for this example: Table 20. Gateway-to-gateway VPN tunnel configuration worksheet ParameterValue to Be EnteredField Selection Connection Name GtoGN/A Pre-Shared Key 12345678N/A Secure Association N/AMain ModeManual Keys Perfect Forward secrecy...
Page 117
Virtual Private Networking117 N600 Wireless Dual Band Gigabit ADSL2+ Modem Router DGND3700 The VPN - Auto Policy screen displays: 2. Enter these policy settings: Auto Policy FieldDescription General Policy Name GtoG Remote VPN Endpoint Address Type Fixed Remote VPN Endpoint Address Data 22.23.24.25 Local LAN Use the default settings. Remote LAN IP Address Select Subnet address from the drop-down list. Start IP Address 192.168.3.1 Subnet Mask 255.255.255.0
Page 118
![Page 118
Virtual Private Networking118
N600 Wireless Dual Band Gigabit ADSL2+ Modem Router DGND3700
3.
Click Apply . The VPN Policies screen displays:
4. Repeat these steps for the N600 Wireless Dual Band Gigabit ADSL2+ Modem \
Router
DGND3700 on LAN B. Pay special attention to the following network settin\
gs:
• General, Remote Address Data (for example, 14.15.16.17)
• Remote LAN, Start IP Address
- IP Address (for example, 192.168.0.1)
- Subnet Mask (for example, 255.255.255.0)
-...](http://img.usermanuals.tech/thumb/55/72196/w300_n600-wireless-router-user-manual-1494929941_d-117.png "Page 118
Virtual Private Networking118
N600 Wireless Dual Band Gigabit ADSL2+ Modem Router DGND3700
3.
Click Apply . The VPN Policies screen displays:
4. Repeat these steps for the N600 Wireless Dual Band Gigabit ADSL2+ Modem \
Router
DGND3700 on LAN B. Pay special attention to the following network settin\
gs:
• General, Remote Address Data (for example, 14.15.16.17)
• Remote LAN, Start IP Address
- IP Address (for example, 192.168.0.1)
- Subnet Mask (for example, 255.255.255.0)
-...")
Virtual Private Networking118 N600 Wireless Dual Band Gigabit ADSL2+ Modem Router DGND3700 3. Click Apply . The VPN Policies screen displays: 4. Repeat these steps for the N600 Wireless Dual Band Gigabit ADSL2+ Modem \ Router DGND3700 on LAN B. Pay special attention to the following network settin\ gs: • General, Remote Address Data (for example, 14.15.16.17) • Remote LAN, Start IP Address - IP Address (for example, 192.168.0.1) - Subnet Mask (for example, 255.255.255.0) -...
Page 119
Virtual Private Networking119 N600 Wireless Dual Band Gigabit ADSL2+ Modem Router DGND3700 a. From the main menu, select VPN Status to display the VPN Status/Log screen. Then click VPN Status to display the Current VPN Tunnels (SAs) screen: b. Click Connect for the VPN tunnel that you want to activate. Review the VPN Status/Log screen (Figure a on page 104) to verify that the tunnel is connected. Use Manual Policy to Configure VPN Tunnels As an alternative to IKE, you can use manual keying, in...
Page 120
![Page 120
Virtual Private Networking120
N600 Wireless Dual Band Gigabit ADSL2+ Modem Router DGND3700
On the main menu, select
VPN Policies, and then click the Add Manual Policy radio button
to display the VPN - Manual Policy screen:
The following table explains the fields in the VPN - Manual Policy scree\
n.
Table 21. VPN Manual Policy fields and settings
Fields and SettingsDescription
General
The N600 Wireless Dual
Band Gigabit ADSL2+
Modem Router
DGND3700 VPN tunnel
network connection
fields....](http://img.usermanuals.tech/thumb/55/72196/w300_n600-wireless-router-user-manual-1494929941_d-119.png "Page 120
Virtual Private Networking120
N600 Wireless Dual Band Gigabit ADSL2+ Modem Router DGND3700
On the main menu, select
VPN Policies, and then click the Add Manual Policy radio button
to display the VPN - Manual Policy screen:
The following table explains the fields in the VPN - Manual Policy scree\
n.
Table 21. VPN Manual Policy fields and settings
Fields and SettingsDescription
General
The N600 Wireless Dual
Band Gigabit ADSL2+
Modem Router
DGND3700 VPN tunnel
network connection
fields....")
Virtual Private Networking120 N600 Wireless Dual Band Gigabit ADSL2+ Modem Router DGND3700 On the main menu, select VPN Policies, and then click the Add Manual Policy radio button to display the VPN - Manual Policy screen: The following table explains the fields in the VPN - Manual Policy scree\ n. Table 21. VPN Manual Policy fields and settings Fields and SettingsDescription General The N600 Wireless Dual Band Gigabit ADSL2+ Modem Router DGND3700 VPN tunnel network connection fields....