Page 96 / 157
Scroll up to view Page 91 - 95
Wireless ADSL2+ Modem Router DG834Gv5 User Manual
6-18
Virtual Private Networking
v1.0, March 2010
While the connection is being established, the
Connection Name
field in this screen displays
SA
before the name of the connection. When the connection is successful, the
SA
changes to the
yellow key symbol shown in the previous figure.
Setting Up a Gateway-to-Gateway VPN Configuration
Follow this procedure to configure a gateway-to-gateway VPN tunnel using the VPN Wizard.
Note:
While your PC is connected to a remote LAN through a VPN, you might not have
normal Internet access. If this is the case, you must close the VPN connection to
have normal Internet access.
Note:
This section describes how to use the VPN Wizard to set up the VPN tunnel using
the VPNC default parameters listed in
Table 6-2 on page 6-4
. If you have special
requirements not covered by these VPNC-recommended parameters, refer to
“Setting Up VPN Tunnels in Special Circumstances” on page 6-32
for information
about how to set up the VPN tunnel.
Figure 6-19
Page 97 / 157
Wireless ADSL2+ Modem Router DG834Gv5 User Manual
Virtual Private Networking
6-19
v1.0, March 2010
Set the LAN IPs on each DG834G v5 to different subnets and configure each properly for the
Internet. The examples below assume the following settings:
To configure a gateway-to-gateway VPN tunnel using the VPN Wizard:
Table 6-4.
VPN Tunnel Configuration Worksheet
Connection Name:
GtoG
Pre-Shared Key:
12345678
Secure Association -- Main Mode or Manual Keys:
Main
Perfect Forward Secrecy -- Enabled or Disabled:
Disabled
Encryption Protocol -- DES or 3DES:
3DES
Authentication Protocol -- MD5 or SHA-1:
SHA-1
Diffie-Hellman (DH) Group -- Group 1 or Group 2:
Group 2
Key Life in seconds:
28800 (8 hours)
IKE Life Time in seconds:
3600 (1 hour)
VPN Endpoint
Local IPSec ID
LAN IP Address
Subnet Mask
FQDN or Gateway IP
(WAN IP Address)
DG834G v5_A
GW_A
192.168.0.1
255.255.255.0
14.15.16.17
DG834G v5_B
GW_B
192.168.3.1
255.255.255.0
22.23.24.25
Note:
The LAN IP address ranges of each VPN endpoint must be different. The
connection will fail if both are using the NETGEAR default address range of
192.168.0.x.
Page 98 / 157
Wireless ADSL2+ Modem Router DG834Gv5 User Manual
6-20
Virtual Private Networking
v1.0, March 2010
1.
Log in to the DG834G v5 on LAN A at its default LAN address of
with its
default user name of
admin
and password of
password
. Select VPN Wizard on the main
menu. The VPN Wizard screen displays:
2.
Click
Next
to proceed, and the Step 1 of 3 screen displays:
Figure 6-20
Figure 6-21
Enter the new connection name:
(for example, GtoG).
Enter the pre-shared key:
(for example, 12345678).
Select the radio button:
A remote VPN Gateway.
Page 99 / 157
Wireless ADSL2+ Modem Router DG834Gv5 User Manual
Virtual Private Networking
6-21
v1.0, March 2010
3.
Fill in the connection name and pre-shared key fields. Select the radio button for the type of
target end point, and then click
Next
to proceed. The Step 2 of 3 screen displays:
4.
Fill in the IP address or FQDN for the target VPN endpoint WAN connection, and then click
Next
. The Step 3 of 3 screen displays:
5.
Fill in the
IP Address
and
Subnet Mask
fields for the target endpoint that can use this tunnel,
and then click
Next
.
Figure 6-22
Figure 6-23
Enter the WAN IP address of the
remote VPN gateway: (for example,
22.23.24.25)
Enter the LAN IP settings of the remote
VPN gateway:
•
IP Address (for example, 192.168.3.1)
•
Subnet Mask (for example, 255.255.255.0)
Page 100 / 157
Wireless ADSL2+ Modem Router DG834Gv5 User Manual
6-22
Virtual Private Networking
v1.0, March 2010
The VPN Wizard Summary screen displays:
To view the VPNC-recommended authentication and encryption settings used by the VPN
Wizard, click the
here
link (see
Figure 6-24
). You can click
Back
to return to the Summary
screen.
Figure 6-24
Figure 6-25
19216811.live