1. Home
    2. /
  2. Manuals
    3. /
  3. NETGEAR
    4. /
  4. FVS318N
    5. /
  5. 40
Page 196 / 414 Scroll up to view Page 191 - 195
Virtual Private Networking Using IPSec and L2TP Connections
196
ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N
Figure 111.
3.
Complete the settings as explained in the following table:
Table 42.
IPSec VPN Wizard settings for an IPv6 gateway-to-gateway tunnel
Setting
Description
About VPN Wizard
This VPN tunnel will connect
to the following peers
Select the
Gateway
radio button. The local WAN port’s IP address or
Internet name displays in the End Point Information section of the screen.
Connection Name and Remote IP Type
What is the new Connection
Name?
Enter a descriptive name for the connection. This name is used to help you
to manage the VPN settings; the name is not supplied to the remote VPN
endpoint.
What is the pre-shared key?
Enter a pre-shared key. The key needs to be entered both here and on the
remote VPN gateway. This key needs to have a minimum length of
8 characters and should not exceed 49 characters.
End Point Information
a
What is the Remote WAN’s IP
Address or Internet Name?
Enter the IPv6 address or Internet name (FQDN) of the WAN interface on
the remote VPN tunnel endpoint.
What is the Local WAN’s IP
Address or Internet Name?
When you select the Gateway radio button in the About VPN Wizard
section of the screen, the IPv6 address of the wireless VPN firewall’s active
WAN interface is automatically entered.
Page 197 / 414
Virtual Private Networking Using IPSec and L2TP Connections
197
ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N
Tip:
To ensure that tunnels stay active, after completing the wizard, manually
edit the VPN policy to enable keep-alives, which periodically sends ping
packets to the host on the peer side of the network to keep the tunnel
alive. For more information, see
Configure Keep-Alives
on page 254.
Tip:
For DHCP WAN configurations, first set up the tunnel with IP addresses.
After you have validated the connection, you can use the wizard to
create new policies using the FQDN for the WAN addresses.
4.
Click
Apply
to save your settings. The IPSec VPN policy is now added to the List of VPN
Policies table on the VPN Policies screen for IPv6. By default, the VPN policy is enabled.
Figure 112.
5.
Configure a VPN policy on the remote gateway that allows connection to the wireless VPN
firewall.
6.
Activate the IPSec VPN connection:
a.
Select
VPN > Connection Status
.
The Connection Status submenu tabs display with
the IPSec VPN Connection Status screen in view:
Secure Connection Remote Accessibility
What is the remote LAN IP
Address?
Enter the LAN IPv6 address of the remote gateway.
Note:
The remote LAN IPv6 address needs to be different from the local
LAN IPv6 address. For example, if the local LAN IPv6 address is FEC0::1,
then the remote LAN IPv6 address could be FEC0:1::1 but could not be
FEC0::1. If this information is incorrect, the tunnel fails to connect.
IPv6 Prefix Length
Enter the prefix length for the remote gateway.
a. Both local and remote endpoints should be defined as either FQDNs or IP addresses. A combination of
an IP address and an FQDN is not supported.
Table 42.
IPSec VPN Wizard settings for an IPv6 gateway-to-gateway tunnel (continued)
Setting
Description
Page 198 / 414
Virtual Private Networking Using IPSec and L2TP Connections
198
ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N
Figure 113.
b.
Locate the policy in the table, and click the
Connect
table button. The IPSec VPN
connection becomes active.
Note:
When using FQDNs, if the Dynamic DNS service is slow to update
its servers when your DHCP WAN address changes, the VPN tunnel
will fail because the FQDNs do not resolve to your new address. If
you have the option to configure the update interval, set it to an
appropriately short time.
Create an IPv4 Client-to-Gateway VPN Tunnel with the Wizard
Figure 114.
To configure a VPN client tunnel, follow the steps in the following sections:
Use the VPN Wizard to Configure the Gateway for a Client Tunnel
on page 199.
Use the NETGEAR VPN Client Wizard to Create a Secure Connection
on page 201
or
Manually Create a Secure Connection Using the NETGEAR VPN Client
on page 206.
Page 199 / 414
Virtual Private Networking Using IPSec and L2TP Connections
199
ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N
Use the VPN Wizard to Configure the Gateway for a Client Tunnel
To set up a client-to-gateway VPN tunnel using the VPN Wizard:
1.
Select
VPN > IPSec VPN > VPN Wizard
.
In the upper right of the screen, the IPv4 radio
button is selected by default. The VPN Wizard screen displays the IPv4 settings. (The
following figure contains an example.)
Figure 115.
To display the wizard default settings, click the
VPN Wizard default values
option arrow
in the upper right of the screen. A pop-up screen displays (see
Figure 106
on page 192),
showing the wizard default values. After you have completed the wizard, you can modify
these settings for the tunnel policy that you have set up.
Page 200 / 414
Virtual Private Networking Using IPSec and L2TP Connections
200
ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N
2.
Complete the settings as explained in the following table:
3.
Click
Apply
to save your settings. The IPSec VPN policy is now added to the List of VPN
Policies table on the VPN Policies screen for IPv4. By default, the VPN policy is enabled.
Table 43.
IPSec VPN Wizard settings for a client-to-gateway tunnel
Setting
Description
About VPN Wizard
This VPN tunnel will connect
to the following peers
Select the
VPN Client
radio button. The default remote FQDN (remote.com)
and the default local FQDN (local.com) display in the End Point Information
section of the screen.
Connection Name and Remote IP Type
What is the new Connection
Name?
Enter a descriptive name for the connection. This name is used to help you to
manage the VPN settings; the name is not supplied to the VPN client.
What is the pre-shared key?
Enter a pre-shared key. The key needs to be entered both here and on the
remote VPN gateway, or the remote VPN client. This key needs to have a
minimum length of 8 characters and cannot exceed 49 characters.
End Point Information
a
a. Both local and remote endpoints should be defined as either FQDNs or IP addresses. A combination of
an IP address and an FQDN is not supported.
What is the Remote
Identifier Information?
When you select the Client radio button in the About VPN Wizard section of
the screen, the default remote FQDN (remote.com) is automatically entered.
Use the default remote FQDN, or enter another FQDN.
Note:
The remote ID on the wireless VPN firewall is the local ID on the VPN
client. It might be less confusing to configure an FQDN such as client.com as
the remote ID on the wireless VPN firewall and then enter client.com as the
local ID on the VPN client.
What is the Local Identifier
Information?
When you select the Client radio button in the About VPN Wizard section of
the screen, the default local FQDN (local.com) is automatically entered. Use
the default local FQDN, or enter another FQDN.
Note:
The local ID on the wireless VPN firewall is the remote ID on the VPN
client. It might be less confusing to configure an FQDN such as router.com
as the local ID on the wireless VPN firewall and then enter router.com as the
remote ID on the VPN client.
Secure Connection Remote Accessibility
What is the remote LAN IP
Address?
These fields are masked out for VPN client connections.
What is the remote LAN
Subnet Mask?

Rate

4.5 / 5 based on 2 votes.

Popular NETGEAR Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top