1. Home
    2. /
  2. Manuals
    3. /
  3. NETGEAR
    4. /
  4. FVS328
    5. /
  5. 42
Page 206 / 224 Scroll up to view Page 201 - 205
Model FVS328 ProSafe VPN Firewall with Dial Back-up Reference Manual
H-10
NETGEAR VPN Client to NETGEAR the FVS328
December 2003, M-10041-01
b.
Click
Pre-Shared Key
.
Figure H-8:
Connection Identity Pre-Shared Key
c.
Enter
hr5xb84l6aa9r6
which is
the same Pre-Shared Key entered in the FVS328.
d.
Click
OK
.
4.
Configure the Connection Identity Settings.
a.
In the Network Security Policy list, click the Security Policy subheading.
Figure H-9:
Security Policy
b.
For this example, ensure that the following settings are configured:
In the Select Phase 1 Negotiation Mode menu, select
Aggressive Mode
.
Select the
Enable Perfect Forward Secrecy (PFS)
check box.
In the PFS Key Group drop-down list,
Diffie-Hellman Group 2
.
Select the Enable Replay Detection check box.
In this example, enter this
pre-shared key in this field:
hr5xb84l6aa9r6
Page 207 / 224
Model FVS328 ProSafe VPN Firewall with Dial Back-up Reference Manual
NETGEAR VPN Client to NETGEAR the FVS328
H-11
December 2003, M-10041-01
5.
Configure the Connection Security Policy
In this step, you will provide the authentication (IKE Phase 1) settings, and the key exchange
(Phase 2) settings. The setting choices in this procedure follow the VPNC guidelines.
Figure H-10:
Connection Security Policy Authentication (Phase 1)
a.
Configure the Authentication (Phase 1) Settings.
Expand the Security Policy heading, then expand the Authentication (Phase 1)
heading, and click on Proposal 1.
For this example, ensure that the following settings are configured:
In the Encrypt Alg menu, select
Triple DES
.
In the Hash Alg, select
SHA-1
.
In the SA Life, select Unspecified.
In the Key Group menu, select
Diffie-Hellman Group 2
.
Page 208 / 224
Model FVS328 ProSafe VPN Firewall with Dial Back-up Reference Manual
H-12
NETGEAR VPN Client to NETGEAR the FVS328
December 2003, M-10041-01
Figure H-11:
Connection Security Policy Key Exchange (Phase 2)
b.
Configure the Key Exchange (Phase 2).
Expand the Key Exchange (Phase 2) heading, and click on Proposal 1.
For this example, ensure that the following settings are configured:
In the SA Life menu, select
Unspecified
.
In the Compression menu, select
None
.
Check the
Encapsulation Protocol (ESP)
check box.
In the Encrypt Alg menu, select
Triple DES
.
In the Hash Alg, select
SHA-1
.
In the Encapsulation menu, select
Tunnel
.
Page 209 / 224
Model FVS328 ProSafe VPN Firewall with Dial Back-up Reference Manual
NETGEAR VPN Client to NETGEAR the FVS328
H-13
December 2003, M-10041-01
6.
Configure the Global Policy Settings.
a.
From the Options menu at the top of the Security Policy Editor window, select
Global
Policy Settings
.
Figure H-12:
Security Policy Editor Global Policy Options
b.
Increase the Retransmit Interval period to
45
seconds.
c.
Select the Allow to Specify Internal Network Address check box and click
OK
.
7.
Save the VPN Client Settings.
From the File menu at the top of the Security Policy Editor window, select Save.
After you have configured and saved the VPN client information, your PC will automatically
open the VPN connection when you attempt to access any IP addresses in the range of the
remote VPN router’s LAN.
Note:
Whenever you make changes to a Security Policy, save them first, then deactivate
the security policy, reload the security policy, and finally activate the security policy.
This ensures that your new settings will take effect.
Page 210 / 224
Model FVS328 ProSafe VPN Firewall with Dial Back-up Reference Manual
H-14
NETGEAR VPN Client to NETGEAR the FVS328
December 2003, M-10041-01
Testing the VPN Connection
You can test the VPN connection in several ways:
From the client PC to the FVS328
From the FVS328 to the client PC
These procedures are explained below.
From the Client PC to the FVS328
To check the VPN Connection, you can initiate a request from the remote PC to the FVS328 by
using the “Connect” option of the FVS328 Firewall popup menu.
1.
Open the popup menu by right-clicking on the system tray icon.
2.
Select
Connect
to open the My Connections list.
3.
Choose
FVS328
.
The FVS328 Firewall will report the results of the attempt to connect.
Once the connection is established, you can access resources of the network connected to the
FVS328.
Another method is to ping from the remote PC to the LAN IP address of the FVS328. To perform
a ping test using our example, start from the remote PC:
1.
Establish an Internet connection from the PC.
2.
On the Windows taskbar, click the Start button, and then click Run.
3.
Type
ping -t 192.168.0.1
and click OK.
This will cause a continuous ping to be sent to the first FVS328. After a period of up to two
minutes, the ping response should change from “timed out” to “reply.”
Note:
Virus protection or firewall software can interfere with VPN communications. Be
sure such software is not running on the remote PC with the Netgear ProSafe VPN
Client and that the firewall features of the FVS328 are not set in such a way as to
prevent VPN communications.

Rate

3.5 / 5 based on 2 votes.

Popular NETGEAR Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top