1. Home
    2. /
  2. Manuals
    3. /
  3. NETGEAR
    4. /
  4. FVS124G
    5. /
  5. 29
Page 141 / 238 Scroll up to view Page 136 - 140
Reference Manual for the ProSafe VPN Firewall 25 with 4 Gigabit LAN and Dual WAN Ports
Router and Network Management
8-7
202-10085-01, March 2005
After a PC has finished using a Port Triggering application, there is a time-out period
before the application can be used by another PC. This is required because the firewall
cannot be sure when the application has terminated.
See
“Port Triggering” on page 6-28
for the procedure on how to use this feature.
VPN Tunnels
The VPN firewall permits up to 200 VPN tunnels at a time. Each tunnel requires extensive
processing for encryption and authentication.
See
Chapter 7, “Virtual Private Networking
” for the procedure on how to use this feature.
Using QoS to Shift the Traffic Mix
The QoS priority settings determine the priority and, in turn, the quality of service for the traffic
passing through the firewall. The QoS is set individually for each service.
You can accept the default priority defined by the service itself by observing its QoS setting.
You can override its default setting to give the service higher or lower priority than it
otherwise would have.
You will not change the WAN bandwidth used by changing any QoS priority settings. But you will
change the mix of traffic through the WAN ports by granting some services a higher priority than
others. The quality of a service is impacted by its QoS setting, however.
See
“Quality of Service (QoS) Priorities” on page 6-18
for the procedure on how to use this
feature.
Tools for Traffic Management
The FVS124G ProSafe VPN Firewall 25 with 4 Gigabit LAN and Dual WAN Ports includes
several tools that can be used to monitor the traffic conditions of the firewall and control who has
access to the Internet and the types of traffic they are allowed to have. See
“Monitoring” on
page 8-14
for a discussion of the tools.
Page 142 / 238
Reference Manual for the ProSafe VPN Firewall 25 with 4 Gigabit LAN and Dual WAN Ports
8-8
Router and Network Management
202-10085-01, March 2005
Administrator and Guest Access Authorization
You can change the administrator and guest passwords, administrator login timeout, and enable
remote management. Administrator access is read/write and guest access is read-only.
Changing the Passwords and Login Timeout
The default passwords for the firewall’s Web Configuration Manager is
password
. Netgear
recommends that you change this password to a more secure password.
From the main menu of the browser interface, under the Management heading, select Set Password
to bring up this menu.
Figure 8-1:
Set Password menu
To change the password, first enter the old password, and then enter the new password twice. Click
Apply. To change the login idle timeout, change the number of minutes and click Apply.
Note:
If you make the administrator login timeout value too large, you will have to wait a long
time before you are able to log back into the router if your previous login was disrupted (i.e., you
did not click
Logout
on the Main Menu bar to log out).
The password and timeout value you enter will be changed back to
password
and
5
minutes,
respectively, after a factory defaults reset.
Change administrator password
Change administrator login timeout
Change guest read-only password
Page 143 / 238
Reference Manual for the ProSafe VPN Firewall 25 with 4 Gigabit LAN and Dual WAN Ports
Router and Network Management
8-9
202-10085-01, March 2005
Enabling Remote Management Access
Using the Remote Management page, you can allow an administrator on the Internet to configure,
upgrade, and check the status of your FVS124G VPN Firewall. You must be logged in locally to
enable remote management (see
“Step 2: Log in to the VPN Firewall (Required)” on page 4-7
).
Figure 8-2
shows the
Remote Management
screen that is invoked by clicking
Remote
Management
under
Management
on the Main Menu bar.
Figure 8-2:
Remote Management screen
To configure your firewall for Remote Management:
1.
Select the Turn Remote Management On check box.
2.
Specify what external addresses will be allowed to access the firewall’s remote management.
Note:
For enhanced security, restrict access to as few external IP addresses as practical.
Note:
Be sure to change the firewall's default configuration password to a very secure
password. The ideal password should contain no dictionary words from any language,
and should be a mixture of letters (both upper and lower case), numbers, and symbols.
Your password can be up to 30 characters. See
“Changing the Passwords and Login
Timeout” on page 8-8
for the procedure on how to do this.
Page 144 / 238
Reference Manual for the ProSafe VPN Firewall 25 with 4 Gigabit LAN and Dual WAN Ports
8-10
Router and Network Management
202-10085-01, March 2005
a.
To allow access from any IP address on the Internet, select Everyone.
b.
To allow access from a range of IP addresses on the Internet, select IP address range.
Enter a beginning and ending IP address to define the allowed range.
c.
To allow access from a single IP address on the Internet, select Only this PC.
Enter the IP address that will be allowed access.
3.
Specify the Port Number that will be used for accessing the management interface.
Web browser access normally uses the standard HTTP service port 80. For greater security,
you can change the remote management web interface to a custom port by entering that
number in the box provided. Choose a number between 1024 and 65535, but do not use the
number of any common service port. The default is 8080, which is a common alternate for
HTTP.
4.
Click Apply to have your changes take effect.
5.
When accessing your firewall from the Internet, the Secure Sockets Layer (SSL) will be
enabled. You will enter
https://
and type your firewall's WAN IP address into your browser,
followed by a colon (:) and the custom port number. For example, if your WAN IP address is
134.177.0.123 and you use port number 8080, type the following in your browser:
The router’s remote login URL is
https://IP_address:port_number
or
https://FullyQualifiedDomainName:port_number
.
If you do not use the SSL
https://address
, but rather use
http://address
, the FVS124G will
automatically attempt to redirect to
https://address.
Note:
The first time you remotely connect the FVS124G with a browser via SSL, you may get
a message regarding the SSL certificate. If you are using a Windows computer with Internet
Explorer 5.5 or higher, simply click Yes to accept the certificate.
Tip:
If you are using a dynamic DNS service such as TZO, you can always identify the IP
address of your FVS124G by running
TRACERT
from the Windows Start menu Run option. For
example,
tracert yourFVS124G.mynetgear.ne
t and you will see the IP address your ISP
assigned to the FVS124G.
Command Line Interface
Note:
The command line interface is not supported at this time. Check the Netgear Web site for
the latest status.
Page 145 / 238
Reference Manual for the ProSafe VPN Firewall 25 with 4 Gigabit LAN and Dual WAN Ports
Router and Network Management
8-11
202-10085-01, March 2005
You can access the command line interface (CLI) either by using telnet or by connecting a terminal
to the console port on the front of the unit.
To access the CLI from a communications terminal when the FVS124G VPN Firewall is still set to
its factory defaults (or use your own settings if you have changed them), do the following:
1.
From the command line prompt, enter the following command:
2.
Enter
admin
and
password
when prompted for the login and password information (or enter
guest
and
password
to log in as a read-only guest).
Note
: No password protection exists when using the console port to access the unit.
Any configuration changes made via the CLI are not preserved after a reboot or power cycle unless
the user issues the CLI save command after making the changes.
Event Alerts
You can be alerted to important events such as WAN port rollover, WAN traffic limits reached, and
login failures and attacks.
WAN Port Rollover
You can request an email alert when the WAN port rolls over if the WAN mode is configured for
rollover.
Traffic Limits Reached
Figure 8-3
shows the
Internet Traffic
screen that is invoked by clicking
Internet Traffic
under
WAN Setup
on the Main Menu bar. The WAN1 and WAN2 ports are programmed separately. A
WAN port shuts down once its traffic limit is reached when this feature is enabled.

Rate

4 / 5 based on 1 vote.

Popular NETGEAR Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top