Page 141 / 157 Scroll up to view Page 136 - 140
Wireless ADSL2+ Modem Router DG834Gv5 User Manual
NETGEAR VPN Configuration
B-9
v1.0, March 2010
a.
From the main menu, select Dynamic DNS to display the Dynamic DNS Setup screen:
b.
Select the
DynDNS.org
radio button. The Dynamic DNS screen displays:
c.
Configure the appropriate account and host name settings, and then click
Apply
.
In the
Host and Domain Name
field enter
fvl328.dyndns.org
.
In the
User Name
field enter the account user name.
In the
Password
field enter the account password.
Figure B-9
Figure B-10
Page 142 / 157
Wireless ADSL2+ Modem Router DG834Gv5 User Manual
B-10
NETGEAR VPN Configuration
v1.0, March 2010
d.
Click
Show Status
. The resulting screen should show
Update OK: good
:
4.
Configure the DG834G v5 as in the gateway-to-gateway procedures using the VPN Wizard
(see
“Setting Up a Gateway-to-Gateway VPN Configuration” on page 6-18
), being certain to
use appropriate network addresses for the environment.
The LAN addresses used in this example are as follows:1
a.
Enter
toFVL328
for the connection name.
b.
Enter
fvl328.dyndns.org
for the remote WAN's IP address.
c.
Enter the following:
IP Address:
172.23.9.1
Subnet Mask:
255.255.255.0
5.
Configure the FVL328 as in the gateway-to-gateway procedures for the VPN Wizard (see
“Setting Up a Gateway-to-Gateway VPN Configuration” on page 6-18
), being certain to use
appropriate network addresses for the environment.
a.
Enter
toDG834
for the Connection Name.
b.
Enter
dg834g.dyndns.org
for the remote WAN's IP address.
c.
Enter the following:
IP Address:
10.5.6.1
Subnet Mask:
255.255.255.0
Figure B-11
Device
LAN IP Address
LAN Subnet Mask
DG834G v5
10.5.6.1
255.255.255.0
FVL328
172.23.6.1
255.255.255.0
Page 143 / 157
Wireless ADSL2+ Modem Router DG834Gv5 User Manual
NETGEAR VPN Configuration
B-11
v1.0, March 2010
6.
Test the VPN tunnel by pinging the remote network from a PC attached to the DG834G v5.
a.
Open the command prompt (Start -> Run -> cmd)
b.
Type
ping 172.23.9.1
Configuration Summary (Telecommuter Example)
The configuration in this section follows the addressing and configuration mechanics defined by
the VPN Consortium. Gather all the necessary information before you begin the configuration
process. Verify whether the firmware is up to date, all of the addresses that will be necessary, and
all of the parameters that need to be set on both sides. Assure that there are no firewall restrictions.
Figure B-12
Note:
The pings might fail the first time. If this happens, try the pings a second
time.
Table B-3. Configuration Summary (Telecommuter Example)
VPN Consortium Scenario:
Scenario 1
Type of VPN:
PC/client-to-gateway, with client behind NAT router
Security Scheme:
IKE with Pre-shared Secret/Key (not certificate-based)
IP Addressing:
Gateway
Fully Qualified Domain Name (FQDN)
Client
Dynamic
Page 144 / 157
Wireless ADSL2+ Modem Router DG834Gv5 User Manual
B-12
NETGEAR VPN Configuration
v1.0, March 2010
Setting Up the Client-to-Gateway VPN Configuration
(Telecommuter Example)
Setting up a VPN between a remote PC running the NETGEAR ProSafe VPN Client and a
network gateway involves two steps:
Step 1: Configuring the Client-to-Gateway VPN Tunnel on the VPN Router at the Employer’s
Main Office
.
Step 2: Configuring the NETGEAR ProSafe VPN Client on the Remote PC at the
Telecommuter’s Home Office
configures the NETGEAR ProSafe VPN Client endpoint.
Step 1: Configuring the Client-to-Gateway VPN Tunnel on the
VPN Router at the Employer’s Main Office
Follow this procedure to configure a client-to-gateway VPN tunnel by filling out the VPN Auto
Policy screen.
1.
Log in to the VPN router at its LAN address of http://192.168.0.1 with its default user name of
admin
, and password of
password
. Select
VPN Policies
to display the VPN Policies screen.
Click
Add Auto Policy
to proceed and enter the information.
Figure B-13
Page 145 / 157
Wireless ADSL2+ Modem Router DG834Gv5 User Manual
NETGEAR VPN Configuration
B-13
v1.0, March 2010
Figure B-14
Fully Qualified Domain Name
toDG834G.com
(in this example)
Fully Qualified Domain Name
fromDG834G.com
(in this example)
fromDG834G
(in the example)
Dynamic IP address
Subnet address
Single address
192.168.0.1
(in this example)
255.255.255.0
192.168.2.3
(in this example)
IKE Keep Alive
is optional; must match
Remote LAN IP Address
when enabled
(remote PC must respond to pings)
Main Mode
3DES
12345678
(in this example)
3600
(Remote NAT router must have
Address Reservation
set and
VPN Passthrough
enabled)

Rate

3.5 / 5 based on 2 votes.

Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top