1. Home
    2. /
  2. Manuals
    3. /
  3. NETGEAR
    4. /
  4. FVL328
    5. /
  5. 42
Page 206 / 234 Scroll up to view Page 201 - 205
Model FVL328 ProSafe High-Speed VPN Firewall Reference Manual Revision 2
G-12
NETGEAR VPN Client to NETGEAR FVL328 or FWAG114 VPN Router
May 2004, 202-10030-02
Expand the Security Policy heading, then expand the Authentication (Phase 1)
heading, and click on Proposal 1.
For this example, ensure that the following settings are configured:
In the Encrypt Alg menu, select
Triple DES
.
In the Hash Alg, select
SHA-1
.
In the SA Life, select Unspecified.
In the Key Group menu, select
Diffie-Hellman Group 2
.
Figure G-11:
Connection Security Policy Key Exchange (Phase 2)
b.
Configure the Key Exchange (Phase 2).
Expand the Key Exchange (Phase 2) heading, and click on Proposal 1.
For this example, ensure that the following settings are configured:
In the SA Life menu, select
Unspecified
.
In the Compression menu, select
None
.
Check the
Encapsulation Protocol (ESP)
check box.
In the Encrypt Alg menu, select
Triple DES
.
In the Hash Alg, select
SHA-1
.
In the Encapsulation menu, select
Tunnel
.
Page 207 / 234
Model FVL328 ProSafe High-Speed VPN Firewall Reference Manual Revision 2
NETGEAR VPN Client to NETGEAR FVL328 or FWAG114 VPN Router
G-13
May 2004, 202-10030-02
6.
Configure the Global Policy Settings.
a.
From the Options menu at the top of the Security Policy Editor window, select
Global
Policy Settings
.
Figure G-12:
Security Policy Editor Global Policy Options
b.
Increase the Retransmit Interval period to
45
seconds.
c.
Select the Allow to Specify Internal Network Address check box and click
OK
.
7.
Save the VPN Client Settings.
From the File menu at the top of the Security Policy Editor window, select Save.
After you have configured and saved the VPN client information, your PC will automatically
open the VPN connection when you attempt to access any IP addresses in the range of the
remote VPN router’s LAN.
Note:
Whenever you make changes to a Security Policy, save them first, then deactivate
the security policy, reload the security policy, and finally activate the security policy.
This ensures that your new settings will take effect.
Page 208 / 234
Model FVL328 ProSafe High-Speed VPN Firewall Reference Manual Revision 2
G-14
NETGEAR VPN Client to NETGEAR FVL328 or FWAG114 VPN Router
May 2004, 202-10030-02
Testing the VPN Connection
You can test the VPN connection in several ways:
From the client PC to the FVL328
From the FVL328 to the client PC
These procedures are explained below.
From the Client PC to the FVL328
To check the VPN Connection, you can initiate a request from the remote PC to the FVL328 by
using the “Connect” option of the FVL328 Firewall popup menu.
Figure G-13:
Connecting the PC to the FVL328 over the VPN tunnel
1.
Open the popup menu by right-clicking on the system tray icon.
2.
Select
Connect
to open the My Connections list.
3.
Choose
FVL328
.
The FVL328 Firewall will report the results of the attempt to connect.
Note:
Virus protection or firewall software can interfere with VPN communications. Be
sure such software is not running on the remote PC with the FVL328 Firewall and that
the firewall features of the FVL328 are not set in such a way as to prevent VPN
communications.
Right-mouse-click on the
system tray icon to open the
popup menu.
Page 209 / 234
Model FVL328 ProSafe High-Speed VPN Firewall Reference Manual Revision 2
NETGEAR VPN Client to NETGEAR FVL328 or FWAG114 VPN Router
G-15
May 2004, 202-10030-02
Once the connection is established, you can access resources of the network connected to the
FVL328.
Another method is to ping from the remote PC to the LAN IP address of the FVL328. To perform
a ping test using our example, start from the remote PC:
1.
Establish an Internet connection from the PC.
2.
On the Windows taskbar, click the Start button, and then click Run.
3.
Type
ping -t 192.168.0.1
and click OK.
This will cause a continuous ping to be sent to the first FVL328. After a period of up to two
minutes, the ping response should change from “timed out” to “reply.”
To test the connection to a computer connected to the FVL328, simply ping the IP address of
that computer.
Once connected, you can open a browser on the remote PC and enter the LAN IP Address of the
FVL328, which is http://192.168.0.1 in this example. After a short wait, you should see the login
screen of the FVL328.
From the FVL328 to the Client PC
You can use the FVL328 Diagnostic utilities to test the VPN connection from the FVL328 to the
client PC. Run ping tests from the Diagnostics link of the FVL328 main menu.
Monitoring the PC VPN Connection
Information on the progress and status of the VPN client connection can be viewed by opening the
FVL328 Firewall Connection Monitor or Log Viewer. To launch these functions, click on the
Windows Start button, then select Programs, then FVL328 Prosafe High Speed VPN Firewall,
then either the Connection Monitor or Log Viewer.
Page 210 / 234
Model FVL328 ProSafe High-Speed VPN Firewall Reference Manual Revision 2
G-16
NETGEAR VPN Client to NETGEAR FVL328 or FWAG114 VPN Router
May 2004, 202-10030-02
The Log Viewer screen for a successful connection is shown below:
Figure G-14:
Log Viewer screen
A sample Connection Monitor screen for a different connection is shown below:
Figure G-15:
Connection Monitor screen
In this example the following connection options apply:
The FVL328 has a public IP WAN address of 66.120.188.153
The FVL328 has a LAN IP address of 192.168.0.1
The VPN client PC is behind a home NAT router and has a dynamically assigned address
of 192.168.0.3
While the connection is being established, the Connection Name field in this menu will say “SA”
before the name of the connection. When the connection is successful, the “SA” will change to the
yellow key symbol shown in the illustration above.

Rate

4 / 5 based on 1 vote.

Popular NETGEAR Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top