NETGEAR FWG114P Router Manual PDF (Setup & Configuration Guide)

Page 151 / 296 Scroll up to view Page 146 - 150

Reference Manual for the ProSafe Wireless 802.11g

Firewall/Print Server Model FWG114P v2

Virtual Private Networking

8-39

201-10301-02, May 2005

1.

Install the Netgear VPN Client Software on the PC.

•

You may need to insert your Windows CD to complete the installation.

•

Reboot your PC after installing the client software.

2.

Configure the Connection Network Settings.

Figure 8-25:

Security Policy Editor New Connection

a.

Run the Security Policy Editor program and create a VPN Connection.

Figure 8-26:

Security Policy Editor Options menu

Note:

Before installing the Netgear VPN Client software, be sure to turn off any virus

protection or firewall software you may be running on your PC.

Page 152 / 296

Reference Manual for the ProSafe Wireless 802.11g

Firewall/Print Server Model FWG114P v2

8-40

Virtual Private Networking

201-10301-02, May 2005

Note

: If the configuration settings on this screen are not available for editing, go to the

Options menu, select Secure, and Specified Options to enable editing these settings.

From the Edit menu of the Security Policy Editor, click

Add

, then

Connection

. A “New

Connection” listing appears. Rename the “New Connection” to

FWG114P v2

.

b.

Ensure that the following settings are configured:

–

In the Connection Security box, Secure is selected.

–

In the Protocol menu, All is selected.

–

The Connect using Secure Gateway Tunnel check box is selected.

c.

In this example, select IP Subnet as the ID Type,

192.168.0.0

in the Subnet field (the

Subnet address is the LAN IP Address of the FWG114P v2 with 0 as the last number), and

255.255.255.0

in the Mask field, which is the LAN Subnet Mask of the FWG114P v2.

d.

In the ID Type menus, select

Domain Name

and

Gateway IP Address

. Enter

FWG114P

v2

in the Domain Name field. In this example,

66.120.188.153

would be used for the

Gateway IP Address, which is the static IP address for the FWG114P v2 WAN port.

3.

Configure the Connection Identity Settings.

a.

In the Network Security Policy list, click the My Identity subheading.

Figure 8-27:

My Identity

In this example, select Domain Name as the ID Type, and enter

VPNclient

. Also, accept

the default Internal Network IP Address of 0.0.0.0.

Figure 8-28:

My Identity Pre-Shared Key

Page 153 / 296

Reference Manual for the ProSafe Wireless 802.11g

Firewall/Print Server Model FWG114P v2

Virtual Private Networking

8-41

201-10301-02, May 2005

b.

Click

Pre-Shared Key

.

Figure 8-29:

Connection Identity Pre-Shared Key

c.

Enter

hr5xb84l6aa9r6,

which is

the same Pre-Shared Key entered in the FWG114P v2.

d.

Click

OK

.

4.

Configure the Connection Identity Settings.

a.

In the Network Security Policy list, click the Security Policy subheading.

Figure 8-30:

Security Policy

b.

For this example, ensure that the following settings are configured:

–

In the Select Phase 1 Negotiation Mode menu, select

Aggressive Mode

.

–

Select the

Enable Perfect Forward Secrecy (PFS)

check box.

–

In the PFS Key Group drop-down list,

Diffie-Hellman Group 2

.

–

Select the Enable Replay Detection check box.

In this example, enter this

pre-shared key in this field:

hr5xb84l6aa9r6

Page 154 / 296

Reference Manual for the ProSafe Wireless 802.11g

Firewall/Print Server Model FWG114P v2

8-42

Virtual Private Networking

201-10301-02, May 2005

5.

Configure the Connection Security Policy

In this step, you will provide the authentication (IKE Phase 1) settings, and the key exchange

(Phase 2) settings. The setting choices in this procedure follow the VPNC guidelines.

Figure 8-31:

Connection Security Policy Authentication (Phase 1)

a.

Configure the Authentication (Phase 1) Settings.

•

Expand the Security Policy heading, then expand the Authentication (Phase 1)

heading, and click on Proposal 1.

•

For this example, ensure that the following settings are configured:

–

In the Encrypt Alg menu, select

Triple DES

.

–

In the Hash Alg, select

SHA-1

.

–

In the SA Life, select Unspecified.

–

In the Key Group menu, select

Diffie-Hellman Group 2

.

Page 155 / 296

Reference Manual for the ProSafe Wireless 802.11g

Firewall/Print Server Model FWG114P v2

Virtual Private Networking

8-43

201-10301-02, May 2005

Figure 8-32:

Connection Security Policy Key Exchange (Phase 2)

b.

Configure the Key Exchange (Phase 2).

•

Expand the Key Exchange (Phase 2) heading, and click on Proposal 1.

•

For this example, ensure that the following settings are configured:

–

In the SA Life menu, select

Unspecified

.

–

In the Compression menu, select

None

.

–

Check the

Encapsulation Protocol (ESP)

check box.

–

In the Encrypt Alg menu, select

Triple DES

.

–

In the Hash Alg, select

SHA-1

.

–

In the Encapsulation menu, select

Tunnel

.

Rate

Popular NETGEAR Models

Famous Router IPs

Famous Router Companies

Bookmark Our Site

Share