Page 236 / 268
Scroll up to view Page 231 - 235
Reference Manual for the Model Wireless ADSL Firewall Router DG834G
F-2
NETGEAR VPN Configuration
202-10006-05, June 2005
Figure F-1:
Addressing and Subnet Used for Examples
Step-By-Step Configuration
1.
Configure the DG834G as in the Gateway-to-Gateway procedures using the VPN Wizard (see
“How to Set Up a Gateway-to-Gateway VPN Configuration“ on page 8-20
), being certain to
use appropriate network addresses for the environment.
The LAN Addresses used in this example are as follows.
•
DG834G
WAN IP = 14.15.16.17
LAN IP = 10.5.6.1
LAN Subnet Mask = 255.255.255.0
•
FVL328
WAN IP = 22.23.24.25
LAN IP = 172.23.9.1
LAN Subnet Mask = 255.255.255.0
a.
In Step 1, enter
toFVL328
for the Connection Name.
b.
In Step 2, enter
22.23.24.25
for the remote WAN's IP address.
c.
In Step 3, enter the following:
•
IP Address =
172.23.9.1
•
Subnet Mask =
255.255.255.0
Note:
Product updates are available on the NETGEAR, Inc. web site at
.
Gateway A
22.23.24.25
14.15.16.17
10.5.6.0/24
172.23.9.0/24
172.23.9.1
10.5.6.1
WAN IP
WAN IP
LAN IP
LAN IP
Gateway B
VPNC Example
Network Interface Addressing
DG834G
FVL328
Page 237 / 268
Reference Manual for the Model Wireless ADSL Firewall Router DG834G
NETGEAR VPN Configuration
F-3
202-10006-05, June 2005
Figure F-2:
Viewing and editing the VPN parameters of the DG834G at gateway A
toFVL328
10.5.6.1
172.23.9.1
toFVL328
22.23.24.25
10
5
6
172
23
9
Click VPN Policies under
Advanced - VPN to invoke
this screen
Page 238 / 268
Reference Manual for the Model Wireless ADSL Firewall Router DG834G
F-4
NETGEAR VPN Configuration
202-10006-05, June 2005
2.
Configure the FVL328 as in the Gateway-to-Gateway procedures for the VPN Wizard (see
“How to Set Up a Gateway-to-Gateway VPN Configuration“ on page 8-20
), being certain to
use appropriate network addresses for the environment.
a.
In Step 1, enter
toDG834
for the Connection Name
b.
In Step 2, enter
14.15.16.17
for the remote WAN's IP address
c.
In Step 3, enter the following:
•
IP Address =
10.5.6.1
•
Subnet Mask =
255.255.255.0
Page 239 / 268
Reference Manual for the Model Wireless ADSL Firewall Router DG834G
NETGEAR VPN Configuration
F-5
202-10006-05, June 2005
Figure F-3:
Viewing and editing the VPN parameters of the FVL328 at gateway B
toDG834
toDG834
toDG834
toDG834
toDG834
22.23.24.25
14.15.16.17
14.15.16.17
22.23.24.25
14.15.16.17
172.23.9.1
10.5.6.1
172
23
9
10
5
6
1
Click IKE Policies under
VPN to invoke this screen
Click VPN Policies under
VPN to invoke this screen
Page 240 / 268
Reference Manual for the Model Wireless ADSL Firewall Router DG834G
F-6
NETGEAR VPN Configuration
202-10006-05, June 2005
3.
Test the VPN tunnel by pinging the remote network from a PC attached to the DG834G.
a.
Open the command prompt (Start -> Run -> cmd)
b.
ping 172.23.9.1
Figure F-4:
ping 172.23.9.1
Note:
The pings may fail the first time. If this happens, try the pings a second time.
DG834G with FQDN to FVL328
This appendix is a case study on how to configure a VPN tunnel from a NETGEAR DG834G to a
FVL328 using a Fully Qualified Domain Name (FQDN) to resolve the public address of one or
both routers. This case study follows the VPN Consortium interoperability profile guidelines
(found at
).
Configuration Profile
The configuration in this document follows the addressing and configuration mechanics defined
by the VPN Consortium. Gather all the necessary information before you begin the configuration
process. Verify whether the firmware is up to date, all of the addresses that will be necessary, and
all of the parameters that need to be set on both sides. Check that there are no firewall restrictions.