NETGEAR FVG318 Router Manual PDF (Setup & Configuration Guide)

Page 96 / 176 Scroll up to view Page 91 - 95

ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual

5-18

Basic Virtual Private Networking

v1.0, September 2007

To import an existing Security Policy:

1.

Invoke the NETGEAR ProSafe VPN Client and select

Import Security Policy

from the

File

pull-down menu.

2.

Select the security policy to import.

In this example, the security policy file is named

FVS318v3_clientpolicy_direct.spd

and

located on the Desktop.

The security policy is now imported. In this example, the connection name is

Scenario_1

Figure 5-20

Figure 5-21

Page 97 / 176

ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual

Basic Virtual Private Networking

5-19

v1.0, September 2007

Setting Up a Gateway-to-Gateway VPN Configuration

The following procedure will show how to set the LAN IPs on each FVG318 to different subnets

and configure each properly for the Internet.

•

The LAN IP address ranges of each VPN endpoint must be different. The connection will fail

if both are using the NETGEAR default address range of 192.168.0.x.

•

In this example, LAN A uses 192.168.0.1 and LAN B uses 192.168.3.1.

To configure a gateway-to-gateway VPN tunnel using the VPN Wizard.

1.

Log in to the FVG318 on LAN A at its default LAN address of

http://192.168.0.1

with its

default user name of

admin

and password of

password

.

2.

Select

VPN > VPN Wizard

from the main menu. The VPN Wizard screen will display.

3.

Select the Gateway radio box in the About VPN Wizard section.

4.

In the Connection Name and Remote IP Type section, enter the Connection Name and the pre-

shared key.

Note:

This section uses the VPN Wizard to set up the VPN tunnel using the VPNC

default parameters listed in

Table 5-1 on page 5-4

. If you have special requirements

not covered by these VPNC-recommended parameters, refer to

Chapter 6,

“Advanced Virtual Private Networking

” to set up the VPN tunnel.

Figure 5-22

FVG318 VPN Firewall

Page 98 / 176

ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual

5-20

Basic Virtual Private Networking

v1.0, September 2007

5.

In the End Point Information section, enter the Remote WANs IP Address or Internet Name

and the Local WAN’s IP Address or Internet Name. Both local and remote ends must be

defined as either IP addresses or Internet Names (FQDNs).

6.

In the Security Connection Remote Accessibility section, enter the remote LAN IP address

and Subnet Mask at the target endpoint that can use this tunnel.

You can view the VPNC recommended authentication and encryption settings used by the

VPN Wizard by clicking the VPN Wizard Default Values link.

Note:

The Local IP Address field can be left as the default address unless you are

using a different IP Address or FQDN.

Figure 5-23

Note:

The IP Address range on the remote LAN must be different from the IP

Address range on the local LAN.

Enter the new Connection

Name: (

GtoG

in this example)

Enter the pre-shared key:

(

12345678

in this example)

Select the radio button:

A remote VPN Gateway

Enter the WAN IP address of

the remote VPN gateway:

(

22.23.24.25

in this example)

Enter the LAN IP settings of the

remote VPN gateway. For

example:

•

IP Address (

192.168.3.1

)

•

Subnet Mask

(

255.255.255.0

)

Page 99 / 176

ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual

Basic Virtual Private Networking

5-21

v1.0, September 2007

7.

Click

Apply

to complete the configuration procedure. The IKE Policies menu will display the

local and remote WAN connection points as shown below.

8.

Click the VPN Policy to display the VPN Policies showing that the new tunnel is enabled.

Figure 5-24

Figure 5-25

Figure 5-26

Page 100 / 176

ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual

5-22

Basic Virtual Private Networking

v1.0, September 2007

To configure a gateway-to-gateway VPN tunnel using the VPN Wizard on LAN B:.

1.

Log in to the FVG318 on LAN B at its default LAN address of

http://192.168.0.1

with its

default user name of

admin

and password of

password

.

2.

Repeat the VPN Wizard process for the FVG318 on LAN B. Pay special attention and use the

following network settings as appropriate.

•

WAN IP of the remote VPN gateway (for example,

14.15.16.17

)

•

LAN IP settings of the remote VPN gateway:

–

IP Address (for example,

192.168.0.1

)

–

Subnet Mask (for example,

255.255.255.0

)

–

Preshared Key (for example,

12345678

)

3.

Use the VPN Status screen to activate the VPN tunnel by performing the following steps:

a.

Open the FVG318, open

VPN > Connection Status

to get the IPSec Connection Status

screen (

Figure 5-27

).

b.

Click

Connect

for the VPN tunnel you want to activate.

c.

Look at the VPN Logs by selecting

Monitoring < VPN Logs

to verify that the tunnel is

connected.

Note: The VPN Status screen is only one of three ways to active a VPN tunnel. See

“Activating a VPN Tunnel” on page 5-23

for information on the other ways.

Figure 5-27

Rate

Popular NETGEAR Models

Famous Router IPs

Famous Router Companies

Bookmark Our Site

Share