1. Home
    2. /
  2. Manuals
    3. /
  3. NETGEAR
    4. /
  4. DGND3300v2
    5. /
  5. 17
Page 81 / 177 Scroll up to view Page 76 - 80
Chapter 6.
Virtual Private Networking
|
81
N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual
To configure a client-to-gateway VPN tunnel using the VPN Wizard:
1.
Log in to the N300 wireless modem router. On the main menu under Advanced - VPN,
select
VPN Wizard
.
2.
Click
Next
to proceed.
3.
Fill in the Connection Name and pre-shared key fields.
The connection name is for convenience and does not affect how the VPN tunnel
functions.
Authentication Protocol
N/A
MD5
SHA-1
Diffie-Hellman (DH) Group
N/A
Group 1
Group 2
Key Life in seconds
28800 (8 hours)
N/A
IKE Life Time in seconds
3600 (1 hour)
N/A
VPN Endpoint
Local IPSecID
LAN IP Address
Subnet Mask
FQDN or Gateway
IP (WAN IP
Address)
Client
toGateway
N/A
N/A
Dynamic
Gateway
toClient
192.168.3.1
255.255.255.0
22.23.24.25
Table 3.
VPN Tunnel Configuration Worksheet
Parameter
Value to Be Entered
Field Selection
Downloaded from
www.Manualslib.com
manuals search engine
Page 82 / 177
82
|
Chapter 6.
Virtual Private Networking
N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual
4.
Select the radio button for the type of target end point, and click
Next
.
5.
Enter the remote IP address, and click
Next
.
The Summary screen displays:
Note:
To view the VPNC-recommended authentication and encryption
settings used by the VPN Wizard, click the
here
link.
Downloaded from
www.Manualslib.com
manuals search engine
Page 83 / 177
Chapter 6.
Virtual Private Networking
|
83
N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual
6.
Click
Done
on the Summary screen. The VPN Policies screen displays, showing that the
new tunnel is enabled:
To view or modify the tunnel settings, select its radio button and click
Edit
.
Note:
See
Using Auto Policy to Configure VPN Tunnels
on page
101 for
information about how to enable the IKE keep-alive capability on an existing
VPN tunnel.
Step 2: Configure the NETGEAR ProSafe VPN Client
This section describes how to configure the NETGEAR ProSafe VPN client on a remote PC.
These instructions assume that the PC running the client has a dynamically assigned IP
address.
The PC must have the NETGEAR ProSafe VPN Client program installed that supports
IPSec. Go to the NETGEAR website (
) for information about how to
purchase the NETGEAR ProSafe VPN Client.
Note:
Before installing the NETGEAR ProSafe VPN Client software, be
sure to turn off any virus protection or firewall software you might be
running on your PC. You might need to insert your Windows CD to
complete the installation.
1.
Install the NETGEAR ProSafe VPN client on the remote PC, and then reboot.
a.
Install the IPSec component. You might have the option to install either the VPN
adapter or the IPSec component or both. The VPN adapter is not necessary.
If you do not have a modem or dial-up adapter installed in your PC, you might see the
warning message stating “The NETGEAR ProSafe VPN Component requires at least
one dial-up adapter be installed.” You can disregard this message.
b.
Reboot the remote PC.
The ProSafe icon (
) is in the system tray.
c.
Double-click the ProSafe icon to open the Security Policy Editor.
2.
Add a new connection.
Downloaded from
www.Manualslib.com
manuals search engine
Page 84 / 177
84
|
Chapter 6.
Virtual Private Networking
N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual
a.
Run the NETGEAR ProSafe Security Policy Editor program, and, using the
Table
3
on
page
80, create a VPN connection.
b.
From the Edit menu of the Security Policy Editor, select
Add
, and then click
Connection
.
A New Connection listing appears in the list of policies.
c.
Rename the new connection so that it matches the Connection Name field in the
VPN Settings screen of the N300 wireless modem router on LAN A. Choose
connection names that make sense to the people using and administering the VPN.
Note:
In this example, the connection name used on the client side of the
VPN tunnel is
togw_a,
and it does not have to match the
RoadWarrior connection name used on the gateway side of the VPN
tunnel because connection names are irrelevant to how the VPN
tunnel functions.
d.
Enter the following settings:
Connection Security. Select
Secure
.
ID Type. Select
IP Subnet
.
Subnet. In this example, type
192.168.3.1
as the network address of the N300
wireless modem router.
Mask. Enter
255.255.255.0
as the LAN subnet mask of the N300 wireless modem
router.
Protocol. Select
All
to allow all traffic through the VPN tunnel.
e.
Select the
Connect using Secure Gateway Tunnel
check box.
f.
In the ID Type drop-down list, select
IP Address
.
Downloaded from
www.Manualslib.com
manuals search engine
Page 85 / 177
Chapter 6.
Virtual Private Networking
|
85
N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual
g.
Enter the public WAN IP address of the N300 wireless modem router in the field
directly below the ID Type drop-down list. In this example, 22.23.24.25 is used.
The resulting connection settings are shown in
Figure
52
on page
85.
3.
Configure the security policy in the NETGEAR ProSafe VPN Client software:
a.
In the Network Security Policy list, expand the new connection by double-clicking its
name or clicking the
+
symbol. My Identity and Security Policy subheadings appear
below the connection name.
b.
Click the
Security Policy
subheading to view the Security Policy settings.
Figure 52.
Security Policy settings, Client-to-Gateway A
c.
In the Select Phase 1 Negotiation Mode section of the screen, select the
Main Mode
radio button.
4.
Configure the VPN client identity.
In this step, you provide information about the remote VPN client PC. You must provide
the pre-shared key that you configured in the N300 wireless modem router and either a
fixed IP address or a fixed virtual IP address of the VPN client PC.
Downloaded from
www.Manualslib.com
manuals search engine

Rate

3.5 / 5 based on 2 votes.

Popular NETGEAR Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top