Page 171 / 185 Scroll up to view Page 166 - 170
NETGEAR VPN Configuration
171
N600 Wireless Dual Band Gigabit ADSL2+ Modem Router DGND3700
a.
In the Network Security Policy list, expand the new connection by double-clicking its
name or clicking the
+
symbol. My Identity and Security Policy appear below the
connection name.
b.
Click
Security Policy
to show the Security Policy screen.
c.
In the Select Phase 1 Negotiation Mode group, select the
Main Mode
radio button.
4.
Configure the VPN client identity.
In this step, you provide information about the remote VPN client PC. You have to provide
the pre-shared key that you configured in the wireless modem router and either a fixed IP
address or a fixed virtual IP address of the VPN client PC.
a.
In the Network Security Policy list on the left side of the Security Policy Editor window,
click
My Identity
.
b.
In the Select Certificate list, select
None
.
c.
In the ID Type list, select
Domain Name
, and enter
toGW_A.com
(in this example).
Downloaded from
www.Manualslib.com
manuals search engine
Page 172 / 185
NETGEAR VPN Configuration
172
N600 Wireless Dual Band Gigabit ADSL2+ Modem Router DGND3700
d.
In the Virtual Adapter list, select
Disabled
.
e.
In the Internet Interface section, in the Name list, select
Intel PRO/100VE Network
Connection
(in this example; your Ethernet adapter might be different), and then in
the IP Addr field, enter
192.168.2.3
(in this example).
f.
Click the
Pre-Shared Key
button.
g.
In the Pre-Shared Key screen, click
Enter Key
. Enter the N600 Wireless Dual Band
Gigabit ADSL2+ Modem Router DGND3700’s pre-shared key and click
OK
. In this
example, 12345678
is entered, though the screen shows asterisks. This field is
case-sensitive.
5.
Configure the VPN Client Authentication Proposal.
In this step, you provide the type of encryption (DES or 3DES) to be used for this
connection. This selection has to match your selection in the VPN router configuration.
a.
In the Network Security Policy list on the left side of the Security Policy Editor window,
expand the Security Policy heading by double-clicking its name or clicking the +
symbol.
b.
Expand the Authentication subheading by double-clicking its name or clicking the +
symbol. Then select
Proposal 1
below Authentication.
c.
In the Authentication Method drop-down list, select
Pre-Shared Key
.
d.
In the Encrypt Alg drop-down list, select the type of encryption. In this example, use
Triple DES
.
e.
In the Hash Alg drop-down list, select
SHA-1
.
f.
In the SA Life drop-down list, select
Unspecified
.
g.
In the Key Group drop-down list, select
Diffie-Hellman Group 2
.
Downloaded from
www.Manualslib.com
manuals search engine
Page 173 / 185
NETGEAR VPN Configuration
173
N600 Wireless Dual Band Gigabit ADSL2+ Modem Router DGND3700
6.
Configure the VPN Client Key Exchange Proposal.
In this step, you provide the type of encryption (DES or 3DES) to be used for this
connection. This selection has to match your selection in the VPN router configuration.
a.
Expand the Key Exchange subheading by double-clicking its name or clicking the
+
symbol. Then select
Proposal 1
below Key Exchange.
b.
In the SA Life drop-down list, select
Unspecified
.
c.
In the Compression drop-down list, select
None
.
d.
Select the
Encapsulation Protocol (ESP)
check box.
e.
In the Encrypt Alg drop-down list, select the type of encryption. In this example, use
Triple DES
.
f.
In the Hash Alg drop-down list, select
SHA-1
.
g.
In the Encapsulation drop-down list, select
Tunnel
.
h.
Leave the
Authentication Protocol (AH)
check box cleared.
7.
Save the VPN client settings.
From the File menu at the top of the Security Policy Editor window, select
Save
.
After you have configured and saved the VPN client information, your PC automatically
opens the VPN connection when you attempt to access any IP addresses in the range of
the remote VPN router’s LAN.
8.
Check the VPN connection.
Downloaded from
www.Manualslib.com
manuals search engine
Page 174 / 185
NETGEAR VPN Configuration
174
N600 Wireless Dual Band Gigabit ADSL2+ Modem Router DGND3700
To check the VPN connection, you can initiate a request from the remote PC to the VPN
router’s network by using the Connect option in the wireless modem router screen:
Right-click the system
tray icon to open the
pop-up menu.
My Connections\DGD3300v2
Since the remote PC has a dynamically assigned WAN IP address, it has to initiate the
request.
a.
Right-click the system tray icon to open the pop-up menu.
b.
Select
Connect
to open the My Connections list.
c.
Select
toDGND3300v2
.
The wireless modem router reports the results of the attempt to connect. Once the
connection is established, you can access resources of the network connected to the
VPN router.
Right-click the system
tray icon to open the
pop-up menu.
My Connections\DGD3300v2
To perform a ping test using this example, start from the remote PC:
a.
Establish an Internet connection from the PC.
b.
On the Windows taskbar, click the
Start
button, and then select
Run
.
c.
Type
ping -t 192.168.0.1
, and then click
OK
.
Downloaded from
www.Manualslib.com
manuals search engine
Page 175 / 185
NETGEAR VPN Configuration
175
N600 Wireless Dual Band Gigabit ADSL2+ Modem Router DGND3700
This causes a continuous ping to be sent to the VPN router. Within 2 minutes, the ping
response should change from
timed out
to
reply
.
Once the connection is established, you can open the browser on the PC and enter the LAN
IP address of the VPN router. After a short wait, you should see the login screen of the VPN
router (unless another PC already has the VPN router management interface open).
Note:
You can use the VPN router diagnostics to test the VPN connection
from the VPN router to the client PC. To do this, on the wireless
modem router main menu, select
Diagnostics
.
Monitoring the VPN Tunnel (Telecommuter Example)
To view information about the progress and status of the VPN client connection, open the Log
Viewer. In Windows, click
Start
, and select
Programs > N600 Wireless Dual Band Gigabit
ADSL2+ Modem Router DGND3700 > Log Viewer
.
Note:
Use the active VPN tunnel information and pings to determine
whether a failed connection is due to the VPN tunnel or some
reason outside the VPN tunnel.
The Connection Monitor screen displays:
While the connection is being established, the connection name listed in this screen shows
SA before the name of the connection. When the connection is successful, the SA changes
to the yellow key symbol.
Downloaded from
www.Manualslib.com
manuals search engine

Rate

4.5 / 5 based on 2 votes.

Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top