Page 121 / 238
Scroll up to view Page 116 - 120
Reference Manual for the ProSafe VPN Firewall 25 with 4 Gigabit LAN and Dual WAN Ports
Virtual Private Networking
7-9
202-10085-01, March 2005
14.
You can view the VPN parameters by selecting 'to_fvs' and clicking Edit. It should not be
necessary to make any changes.
Figure 7-10:
FVX538-to-FVS124G VPN screen
Configuring the FVS124G
1.
Select the VPN Wizard
2.
Give the client connection a name, such as
to_fvx
.
3.
Enter a value for the pre-shared key.
Page 122 / 238
Reference Manual for the ProSafe VPN Firewall 25 with 4 Gigabit LAN and Dual WAN Ports
7-10
Virtual Private Networking
202-10085-01, March 2005
4.
Select 'a remote VPN gateway'.
Figure 7-11:
VPN Wizard start page
5.
Click Next.
6.
Enter the WAN IP address of the remote FVX538.
Figure 7-12:
WAN IP address of remote FVX538
7.
Click Next.
Page 123 / 238
Reference Manual for the ProSafe VPN Firewall 25 with 4 Gigabit LAN and Dual WAN Ports
Virtual Private Networking
7-11
202-10085-01, March 2005
8.
Enter the LAN IP address and subnet mask of the remote FVX538.
Figure 7-13:
LAN IP address and subnet mask of remote FVX538
9.
Click Next.
10.
Click Done to create the 'to_fvx' IKE and VPN policies.
Testing the Connection
1.
From a PC on either firewall's LAN, try to ping a PC on the other firewall's LAN. Establishing
the VPN connection may take several seconds.
2.
For additional status and troubleshooting information, view the VPN log and status menu in
the FVX538 or FVS124G.
Creating a VPN Connection: Netgear VPN Client to FVS124G
This section describes how to configure a VPN connection between a Windows PC and the
FVS124G VPN Firewall.
Using the FVS124G's VPN Wizard, we will create a single set of policies (IKE and VPN) that will
allow up to 50 remote PCs to connect from locations in which their IP addresses are unknown in
advance. The PCs may be directly connected to the Internet or may be behind NAT routers. If more
PCs are to be connected, an additional policy or policies must be created.
Each PC will use Netgear's VPN Client. Since the PC's IP address is assumed to be unknown, the
PC must always be the Initiator of the connection.
Page 124 / 238
Reference Manual for the ProSafe VPN Firewall 25 with 4 Gigabit LAN and Dual WAN Ports
7-12
Virtual Private Networking
202-10085-01, March 2005
This procedure was developed and tested using:
•
Netgear FVS124G ProSafe VPN Firewall 25 with 4 Gigabit LAN and Dual WAN Ports with
version 1.0 firmware
•
Netgear VPN Client version 10.3.5 (Build 6)
•
NAT router: Netgear FR114P with version 1.5_09 firmware
Configuring the FVS124G
1.
Select the VPN Wizard
2.
Give the client connection a name, such as
home
.
3.
Enter a value for the pre-shared key.
4.
Select 'a remote VPN client'.
Figure 7-14:
VPN Wizard
5.
Click Next to go to the summary page.
6.
Click Done to create the 'home' IKE and VPN policies.
Configuring the VPN Client
1.
Right-click on the VPN client icon
in your Windows toolbar and select the Security Policy
Editor.
Page 125 / 238
Reference Manual for the ProSafe VPN Firewall 25 with 4 Gigabit LAN and Dual WAN Ports
Virtual Private Networking
7-13
202-10085-01, March 2005
2.
In the upper left of the Policy Editor window, click the New Document icon to open a New
Connection.
Figure 7-15:
New Client Connection screen
19216811.live