Home > Netgear > Router > Netgear Netgar VPN FIrewall FVS336Gv2 Reference Manual

Netgear Netgar VPN FIrewall FVS336Gv2 Reference Manual

Add to Favourites
    Download as PDF

    Here you can view all the pages of manual Netgear Netgar VPN FIrewall FVS336Gv2 Reference Manual. The Netgear manuals for Router are available online for free. You can easily download all the documents as PDF.

    Overview View all the pages Comments

    Page 401

    Page 401 Set Up Virtual Private Networking With IPSec Connections 399 ProSAFE Dual WAN Gigabit WAN SSL VPN Firewall FVS336Gv2 13. Enter the settings as described in the following table. Note:The IKE policy settings that are described in the following table are specifically for a Mode Config configuration. For information about general IKE policy settings, see Manually Add an IKE Policy on page 368. SettingDescription Mode Config Record Do you want to use Mode Config Record?Select the Ye s radio button.... 
    Set Up Virtual Private Networking With IPSec Connections 
399  ProSAFE Dual WAN Gigabit WAN SSL VPN Firewall FVS336Gv2
13. Enter the settings as described in the following table.
Note:The IKE policy settings that are described in the following table are 
specifically for a Mode Config configuration. For information about 
general IKE policy settings, see 
Manually Add an IKE Policy on 
page 368. 
SettingDescription
Mode Config Record
Do you want to use 
Mode Config Record?Select the Ye s radio button....

    Page 402

    Page 402 Set Up Virtual Private Networking With IPSec Connections 400 ProSAFE Dual WAN Gigabit WAN SSL VPN Firewall FVS336Gv2 General Policy Name A descriptive name of the IKE policy for identification and management purposes. This example uses ModeConfigAME_Sales. Note:The name is not supplied to the remote VPN endpoint. Direction / Type Responder is automatically selected when you select the Mode Config record in the Mode Config Record section. This ensures that the VPN firewall responds to an IKE request... 
    Set Up Virtual Private Networking With IPSec Connections 
400 ProSAFE Dual WAN Gigabit WAN SSL VPN Firewall FVS336Gv2 
General
Policy Name A descriptive name of the IKE policy for identification and management purposes. 
This example uses ModeConfigAME_Sales.
Note:The name is not supplied to the remote VPN endpoint.
Direction / Type Responder is automatically selected when you select the Mode Config record in 
the Mode Config Record section. This ensures that the VPN firewall responds to 
an IKE request...

    Page 403

    Page 403 Set Up Virtual Private Networking With IPSec Connections 401 ProSAFE Dual WAN Gigabit WAN SSL VPN Firewall FVS336Gv2 14. Click the Apply button. Your settings are saved. The IKE policy that includes the Mode Config record is added to the List of IKE Policies table. You can associate the IKE policy with a VPN policy. Enable Dead Peer DetectionSelect a radio button to specify whether Dead Peer Detection (DPD) is enabled: • No. This feature is disabled. This is the default setting. • Ye s. This feature... 
    Set Up Virtual Private Networking With IPSec Connections 
401  ProSAFE Dual WAN Gigabit WAN SSL VPN Firewall FVS336Gv2
14. Click the Apply button.
Your settings are saved. The IKE policy that includes the Mode Config record is added to 
the List of IKE Policies table. You can associate the IKE policy with a VPN policy.
Enable Dead Peer 
DetectionSelect a radio button to specify whether Dead Peer Detection (DPD) is enabled:
• No. This feature is disabled. This is the default setting.
• Ye s. This feature...

    Page 404

    Page 404 Set Up Virtual Private Networking With IPSec Connections 402 ProSAFE Dual WAN Gigabit WAN SSL VPN Firewall FVS336Gv2 Configure the NETGEAR ProSAFE VPN Client for Mode Config Operation Note:In this section, the NETGEAR ProSAFE VPN Client is referred to as the VPN client. When the Mode Config feature is enabled, the following information is negotiated between the VPN client and the VPN firewall during the authentication phase: •Virtual IP address of the VPN client •DNS server address (optional) •WINS... 
    Set Up Virtual Private Networking With IPSec Connections 
402 ProSAFE Dual WAN Gigabit WAN SSL VPN Firewall FVS336Gv2 
Configure the NETGEAR ProSAFE VPN Client for Mode Config 
Operation
Note:In this section, the NETGEAR ProSAFE VPN Client is referred to as 
the VPN client.
When the Mode Config feature is enabled, the following information is negotiated between 
the VPN client and the VPN firewall during the authentication phase:
•Virtual IP address of the VPN client
•DNS server address (optional)
•WINS...

    Page 405

    Page 405 Set Up Virtual Private Networking With IPSec Connections 403 ProSAFE Dual WAN Gigabit WAN SSL VPN Firewall FVS336Gv2 2. In the tree list pane of the Configuration Panel screen, right-click VPN Configuration, and select New Phase 1. 3. Change the name of the authentication phase (the default is Gateway): a.Right-click the authentication phase name. b. Select Rename. c. Type GW_ModeConfig. d. Click anywhere in the tree list pane. Note:This is the name for the authentication phase that is used only for... 
    Set Up Virtual Private Networking With IPSec Connections 
403  ProSAFE Dual WAN Gigabit WAN SSL VPN Firewall FVS336Gv2
2. In the tree list pane of the Configuration Panel screen, right-click VPN Configuration, and 
select New Phase 1.
3. Change the name of the authentication phase (the default is Gateway):
a.Right-click the authentication phase name.
b. Select Rename.
c. Type GW_ModeConfig.
d. Click anywhere in the tree list pane.
Note:This is the name for the authentication phase that is used only for...

    Page 406

    Page 406 Set Up Virtual Private Networking With IPSec Connections 404 ProSAFE Dual WAN Gigabit WAN SSL VPN Firewall FVS336Gv2 4. Specify the settings that are described in the following table. 5. Click the Save button. Your settings are saved. 6. In the Authentication pane, click the Advanced tab. SettingDescription Interface From the menu, select Any. Remote Gateway Enter the remote IP address or DNS name of the VPN firewall. For example, enter 192.168.15.175. Preshared Key Select the Preshared Key radio... 
    Set Up Virtual Private Networking With IPSec Connections 
404 ProSAFE Dual WAN Gigabit WAN SSL VPN Firewall FVS336Gv2 
4. Specify the settings that are described in the following table.
5. Click the Save button.
Your settings are saved.
6. In the Authentication pane, click the Advanced tab.
SettingDescription
Interface From the menu, select Any.
Remote Gateway Enter the remote IP address or DNS name of the VPN firewall. For example, enter 
192.168.15.175.
Preshared Key Select the Preshared Key radio...

    Page 407

    Page 407 Set Up Virtual Private Networking With IPSec Connections 405 ProSAFE Dual WAN Gigabit WAN SSL VPN Firewall FVS336Gv2 7. Specify the settings that are described in the following table. 8. Click the Save button. Your settings are saved. Continue the Mode Config configuration of the VPN client with the IPSec configuration. SettingDescription Advanced features Mode Config Select this check box to enable Mode Config. Aggressive Mode Select this check box to enable aggressive mode as the mode of negotiation... 
    Set Up Virtual Private Networking With IPSec Connections 
405  ProSAFE Dual WAN Gigabit WAN SSL VPN Firewall FVS336Gv2
7. Specify the settings that are described in the following table.
8. Click the Save button.
Your settings are saved. Continue the Mode Config configuration of the VPN client with 
the IPSec configuration.
SettingDescription
Advanced features
Mode Config Select this check box to enable Mode Config.
Aggressive Mode Select this check box to enable aggressive mode as the mode of negotiation...

    Page 408

    Page 408 Set Up Virtual Private Networking With IPSec Connections 406 ProSAFE Dual WAN Gigabit WAN SSL VPN Firewall FVS336Gv2 9. In the tree list pane of the Configuration Panel screen, right-click the GW_ModeConfig authentication phase name and select New Phase 2. 10. Change the name of the IPSec configuration (the default is Tunnel): a.Right-click the IPSec configuration name. b. Select Rename. c. Type Tunnel_ModeConfig. d. Click anywhere in the tree list pane. Note:This is the name for the IPSec... 
    Set Up Virtual Private Networking With IPSec Connections 
406 ProSAFE Dual WAN Gigabit WAN SSL VPN Firewall FVS336Gv2 
9. In the tree list pane of the Configuration Panel screen, right-click the GW_ModeConfig 
authentication phase name and select New Phase 2.
10. Change the name of the IPSec configuration (the default is Tunnel):
a.Right-click the IPSec configuration name.
b. Select Rename.
c. Type Tunnel_ModeConfig.
d. Click anywhere in the tree list pane.
Note:This is the name for the IPSec...

    Page 409

    Page 409 Set Up Virtual Private Networking With IPSec Connections 407 ProSAFE Dual WAN Gigabit WAN SSL VPN Firewall FVS336Gv2 12. Click the Save button. Your settings are saved. Continue the Mode Config configuration of the VPN client with the global parameters. 13. Click Global Parameters in the left column of the Configuration Panel screen. The Global Parameters pane displays in the Configuration Panel screen: Remote LAN address The address that you must enter depends on whether you specified a local IP... 
    Set Up Virtual Private Networking With IPSec Connections 
407  ProSAFE Dual WAN Gigabit WAN SSL VPN Firewall FVS336Gv2
12. Click the Save button. 
Your settings are saved. Continue the Mode Config configuration of the VPN client with 
the global parameters.
13. Click Global Parameters in the left column of the Configuration Panel screen. The Global 
Parameters pane displays in the Configuration Panel screen:
Remote LAN address The address that you must enter depends on whether you specified a local IP...

    Page 410

    Page 410 Set Up Virtual Private Networking With IPSec Connections 408 ProSAFE Dual WAN Gigabit WAN SSL VPN Firewall FVS336Gv2 14. Specify the following default lifetimes in seconds to match the configuration on the VPN firewall: •Authentication (IKE), Default. Enter 3600 seconds. Note:The default setting is 28800 seconds (eight hours). However, for a Mode Config configuration, NETGEAR recommends 3600 seconds (one hour). •Encryption (IPSec), Default. Enter 3600 seconds. 15. Select the Dead Peer Detection... 
    Set Up Virtual Private Networking With IPSec Connections 
408 ProSAFE Dual WAN Gigabit WAN SSL VPN Firewall FVS336Gv2 
14. Specify the following default lifetimes in seconds to match the configuration on the VPN 
firewall:
•Authentication (IKE), Default. Enter 3600 seconds. 
Note:The default setting is 28800 seconds (eight hours). However, for a 
Mode Config configuration, NETGEAR recommends 3600 seconds 
(one hour).
•Encryption (IPSec), Default. Enter 3600 seconds.
15. Select the Dead Peer Detection...
    Start reading Netgear Netgar VPN FIrewall FVS336Gv2 Reference Manual

    Related Manuals for Netgear Netgar VPN FIrewall FVS336Gv2 Reference Manual

    All Netgear manuals