NETGEAR DGND3700 Router Manual PDF (Setup & Configuration Guide)

Page 91 / 185 Scroll up to view Page 86 - 90

Virtual Private Networking

91

N600 Wireless Dual Band Gigabit ADSL2+ Modem Router DGND3700

The following worksheet identifies the parameters used in this procedure. For a blank

worksheet, see

Plan a VPN

on page 88.

Table 17.

VPN tunnel configuration worksheet

Parameter

Value to Be Entered

Field Selection

Connection Name

RoadWarrior

N/A

Pre-Shared Key

12345678

N/A

Secure Association

N/A

Main Mode

Manual Keys

Perfect Forward secrecy

N/A

Enabled

Disabled

Encryption Protocol

N/A

DES

3DES

Authentication Protocol

N/A

MD5

SHA-1

Diffie-Hellman (DH) Group

N/A

Group 1

Group 2

Key Life in seconds

28800 (8 hours)

N/A

IKE Life Time in seconds

3600 (1 hour)

N/A

VPN Endpoint

Local IPSecID

LAN IP Address

Subnet Mask

FQDN or Gateway

IP (WAN IP

Address)

Client

toGateway

N/A

Dynamic

Gateway

toClient

192.168.3.1

255.255.255.0

22.23.24.25



To configure a client-to-gateway VPN tunnel using the VPN Wizard:

1.

Log in to the wireless modem router. On the main menu under Advanced - VPN, select

VPN Wizard

.

Downloaded from

www.Manualslib.com

manuals search engine

Page 92 / 185

Virtual Private Networking

92

N600 Wireless Dual Band Gigabit ADSL2+ Modem Router DGND3700

2.

Click

3.

Fill in the

Connection Name

and

pre-shared key

fields.

The connection name is for convenience and does not affect how the VPN tunnel

functions.

4.

Select the radio button for the type of target end point, and click

5.

Enter the remote IP address, and click

Downloaded from

www.Manualslib.com

manuals search engine

Page 93 / 185

Virtual Private Networking

93

N600 Wireless Dual Band Gigabit ADSL2+ Modem Router DGND3700

The Summary screen displays:

Note:

To view the VPNC-recommended authentication and encryption

settings used by the VPN Wizard, click the

here

link.

6.

Click

Done

on the Summary screen. The VPN Policies screen displays, showing that the

new tunnel is enabled:

To view or modify the tunnel settings, select its radio button and click

Edit

.

Note:

See

Use Auto Policy to Configure VPN Tunnels

on page 112 for

information about how to enable the IKE keep-alive capability on an existing

VPN tunnel.

Step 2: Configure the NETGEAR ProSafe VPN Client

This section describes how to configure the NETGEAR ProSafe VPN client on a remote PC.

These instructions assume that the PC running the client has a dynamically assigned IP

address.

Downloaded from

www.Manualslib.com

manuals search engine

Page 94 / 185

Virtual Private Networking

94

N600 Wireless Dual Band Gigabit ADSL2+ Modem Router DGND3700

The PC has to have the NETGEAR ProSafe VPN Client program installed, which supports

IPSec. Go to the NETGEAR website (

http://www.netgear.com

) for information about how to

purchase the NETGEAR ProSafe VPN client.

Note:

Before installing the NETGEAR ProSafe VPN Client software, be

sure to turn off any virus protection or firewall software you might be

running on your PC. You might need to insert your Windows CD to

complete the installation.



To configure the NETGEAR ProSafe VPN client:

1.

Install the NETGEAR ProSafe VPN client on the remote PC, and then reboot.

a.

Install the IPSec component. You might have the option to install either the VPN

adapter or the IPSec component or both. The VPN adapter is not necessary.

If you do not have a modem or dial-up adapter installed in your PC, you might see the

warning message stating, “The NETGEAR ProSafe VPN Component requires at least

one dial-up adapter be installed.” You can disregard this message.

b.

Reboot the remote PC.

The ProSafe icon (

) is in the system tray.

c.

Double-click the ProSafe icon to open the Security Policy Editor.

2.

Add a new connection.

a.

Run the NETGEAR ProSafe Security Policy Editor program, and, using

Table 17

on

page 91, create a VPN connection.

b.

From the Edit menu of the Security Policy Editor, select

Add

, and then click

Connection

.

A New Connection listing appears in the list of policies.

Downloaded from

www.Manualslib.com

manuals search engine

Page 95 / 185

Virtual Private Networking

95

N600 Wireless Dual Band Gigabit ADSL2+ Modem Router DGND3700

c.

Rename the new connection so that it matches the

Connection Name

field in the

VPN Settings screen of the wireless modem router on LAN A. Choose connection

names that make sense to the people using and administering the VPN.

Note:

In this example, the connection name used on the client side of the

VPN tunnel is togw_a, and it does not have to match the

RoadWarrior connection name used on the gateway side of the VPN

tunnel because connection names are irrelevant to how the VPN

tunnel functions.

d.

Enter the following settings:

•

Connection Security

. Select

Secure

.

•

ID Type

. Select

IP Subnet

.

•

Subnet

. In this example, type

192.168.3.1

as the network address of the wireless

modem router.

•

Mask

. Enter

255.255.255.0

as the LAN subnet mask of the wireless modem

router.

•

Protocol

. Select

All

to allow all traffic through the VPN tunnel.

e.

Select the

Connect using Secure Gateway Tunnel

check box.

f.

In the

ID Type

drop-down list, select

IP Address

.

g.

Enter the public WAN IP address of the wireless modem router in the field directly

below the

ID Type

drop-down list. In this example,

22.23.24.25

is used.

The resulting connection settings are shown in the figure that follows.

3.

Configure the security policy in the NETGEAR ProSafe VPN Client software:

a.

In the Network Security Policy list, expand the new connection by double-clicking its

name or clicking the

+

symbol. My Identity and Security Policy subheadings appear

below the connection name.

Downloaded from

www.Manualslib.com

manuals search engine

Rate

Popular NETGEAR Models

Famous Router IPs

Famous Router Companies

Bookmark Our Site

Share