1. Home
    2. /
  2. Manuals
    3. /
  3. NETGEAR
    4. /
  4. DG834G
    5. /
  5. 25
Page 121 / 268 Scroll up to view Page 116 - 120
Reference Manual for the Model Wireless ADSL Firewall Router DG834G
Virtual Private Networking (Advanced Feature)
8-15
202-10006-05, June 2005
In the Network Security Policy list on the left side of the Security Policy Editor window,
click on My Identity.
Figure 8-12:
Security Policy Editor My Identity
Choose None in the Select Certificate menu.
Select IP Address in the ID Type menu. If you are using a virtual fixed IP address, enter
this address in the Internal Network IP Address box. Otherwise, leave this box empty.
In the Internet Interface box, select the adapter you use to access the Internet. Select PPP
Adapter in the Name menu if you have a dial-up Internet account. Select your Ethernet
adapter if you have a dedicated Cable or DSL line. You may also choose Any if you will
be switching between adapters or if you have only one adapter.
Click the Pre-Shared Key button. In the Pre-Shared Key dialog box, click the Enter Key
button. Enter the DG834G's Pre-Shared Key and click OK. In this example,
12345678
is
entered. This field is case sensitive.
Figure 8-13:
Security Policy Editor Pre-Shared Key
Page 122 / 268
Reference Manual for the Model Wireless ADSL Firewall Router DG834G
8-16
Virtual Private Networking (Advanced Feature)
202-10006-05, June 2005
5.
Configure the VPN Client Authentication Proposal.
In this step, you will provide the type of encryption (DES or 3DES) to be used for this
connection. This selection must match your selection in the DG834G configuration.
In the Network Security Policy list on the left side of the Security Policy Editor window,
expand the Security Policy heading by double clicking its name or clicking on the “+”
symbol.
Expand the Authentication subheading by double clicking its name or clicking on the “+”
symbol. Then select Proposal 1 below Authentication.
Figure 8-14:
Security Policy Editor Authentication
In the Authentication Method menu, select Pre-Shared key.
In the Encrypt Alg menu, select the type of encryption to correspond with what was
configured for the Encryption Protocol in the DG834G in
Table 8-3 on page 8-8
. In this
example, use Triple DES.
In the Hash Alg menu, select SHA-1.
In the SA Life menu, select Unspecified.
In the Key Group menu, select Diffie-Hellman Group 2.
6.
Configure the VPN Client Key Exchange Proposal.
In this step, you will provide the type of encryption (DES or 3DES) to be used for this
connection. This selection must match your selection in the DG834G configuration.
Page 123 / 268
Reference Manual for the Model Wireless ADSL Firewall Router DG834G
Virtual Private Networking (Advanced Feature)
8-17
202-10006-05, June 2005
Expand the Key Exchange subheading by double clicking its name or clicking on the “+”
symbol. Then select Proposal 1 below Key Exchange.
Figure 8-15:
Security Policy Editor Key Exchange
In the SA Life menu, select Unspecified.
In the Compression menu, select None.
Check the Encapsulation Protocol (ESP) checkbox.
In the Encrypt Alg menu, select the type of encryption to correspond with what was
configured for the Encryption Protocol in the DG834G in
Table 8-3 on page 8-8
. In this
example, use Triple DES.
In the Hash Alg menu, select SHA-1.
In the Encapsulation menu, select Tunnel.
Leave the Authentication Protocol (AH) checkbox unchecked.
7.
Save the VPN Client Settings.
From the File menu at the top of the Security Policy Editor window, select Save.
After you have configured and saved the VPN client information, your PC will automatically
open the VPN connection when you attempt to access any IP addresses in the range of the
remote VPN router’s LAN.
Page 124 / 268
Reference Manual for the Model Wireless ADSL Firewall Router DG834G
8-18
Virtual Private Networking (Advanced Feature)
202-10006-05, June 2005
8.
Check the VPN Connection.
To check the VPN Connection, you can initiate a request from the remote PC to the DG834G’s
network by using the “Connect” option in the NETGEAR ProSafe menu bar. The NETGEAR
ProSafe client will report the results of the attempt to connect. Since the remote PC has a
dynamically assigned WAN IP address, it must initiate the request.
To perform a ping test using our example, start from the remote PC:
a.
Establish an Internet connection from the PC.
b.
On the Windows taskbar, click the Start button, and then click Run.
c.
Type
ping -t 192.168.3.1
, and then click OK.
Figure 8-16:
Running a Ping test to the LAN from the PC
This will cause a continuous ping to be sent to the first DG834G. After between several
seconds and two minutes, the ping response should change from “timed out” to “reply.”
Figure 8-17:
Ping test results
Once the connection is established, you can open the browser of the PC and enter the LAN IP
address of the remote DG834G. After a short wait, you should see the login screen of the Router
(unless another PC already has the DG834G management interface open).
Page 125 / 268
Reference Manual for the Model Wireless ADSL Firewall Router DG834G
Virtual Private Networking (Advanced Feature)
8-19
202-10006-05, June 2005
Information on the progress and status of the VPN client connection can be viewed by opening the
NETGEAR ProSafe Log Viewer.
1.
To launch this function, click on the Windows Start button, then select Programs, then
NETGEAR ProSafe VPN Client, then Log Viewer.
2.
The Log Viewer screen for a successful connection is shown below:
Figure 8-18:
Log Viewer screen
3.
The Connection Monitor screen for this connection is shown below:
Figure 8-19:
Connection Monitor screen
In this example you can see the following:
The DG834G has a public IP WAN address of 22.23.24.25.
Note:
Use the active VPN tunnel information and pings to determine whether a failed
connection is due to the VPN tunnel or some reason outside the VPN tunnel.

Rate

3.5 / 5 based on 2 votes.

Popular NETGEAR Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top