1. Home
    2. /
  2. Manuals
    3. /
  3. NETGEAR
    4. /
  4. SRX5308
    5. /
  5. 44
Page 216 / 469 Scroll up to view Page 211 - 215
Virtual Private Networking Using IPSec
and
L2TP Connections
216
ProSAFE Gigabit Quad WAN SSL VPN Firewall SRX5308
Note:
Perform these tasks from a computer that has the NETGEAR
ProSafe VPN Client installed. The VPN Client supports IPv4 only; a
future release of the VPN Client might support IPv6.
To use the Configuration Wizard to set up a VPN connection between the VPN client
and the VPN firewall:
1.
Right-click the VPN client icon in your Windows system tray, and select
Configuration
Panel
. The Configuration Panel screen displays:
Figure 138.
2.
From the main menu on the Configuration Panel screen, select
Configuration > Wizard
.
The Choice of the remote equipment wizard screen (screen 1 of 3) displays:
Page 217 / 469
Virtual Private Networking Using IPSec
and
L2TP Connections
217
ProSAFE Gigabit Quad WAN SSL VPN Firewall SRX5308
Figure 139.
3.
Select the
A router or a VPN gateway
radio button, and click
Next
. The VPN tunnel
parameters wizard screen (screen 2 of 3) displays:
Figure 140.
4.
Specify the following VPN tunnel parameters:
IP or DNS public (external) address of the remote equipment
. Enter the remote IP
address or DNS name of the VPN firewall. For example, enter
192.168.15.175
.
Preshared key
. Enter the pre-shared key that you already specified on the VPN
firewall. For example, enter
I7!KL39dFG_8
.
IP private (internal) address of the remote network
. Enter the remote private IP
address of the VPN firewall. For example, enter
192.168.1.0
. This IP address enables
communication with the entire 192.168.1.x subnet.
5.
Click
Next
.
The Configuration Summary wizard screen (screen 3 of 3) displays:
Page 218 / 469
Virtual Private Networking Using IPSec
and
L2TP Connections
218
ProSAFE Gigabit Quad WAN SSL VPN Firewall SRX5308
Figure 141.
6.
This screen is a summary screen of the
new VPN configuration.
Click
Finish
.
7.
Specify the local and remote IDs:
a.
In the tree list pane of the Configuration Panel screen, click
Gateway
(the default
name given to the authentication phase). The Authentication pane displays in the
Configuration Panel screen, with the Authentication tab selected by default.
b.
Click the
Advanced
tab in the Authentication pane. The Advanced pane displays:
Figure 142.
Page 219 / 469
Virtual Private Networking Using IPSec
and
L2TP Connections
219
ProSAFE Gigabit Quad WAN SSL VPN Firewall SRX5308
c.
Specify the settings that are described in the following table.
8.
Configure the global parameters:
a.
Click
Global Parameters
in the left column
of the Configuration Panel screen.
The
Global Parameters pane displays in the
Configuration Panel screen:
Table 48.
VPN client advanced authentication settings
Setting
Description
Advanced features
Aggressive Mode
Select this check box to enable aggressive mode as the mode of negotiation
with the VPN firewall.
NAT-T
Select
Automatic
from the drop-down list to enable the VPN client and VPN
firewall to negotiate NAT-T.
Local and Remote ID
Local ID
As the type of ID, select
DNS
from the Local ID drop-down list because you
specified FQDN in the VPN firewall configuration.
As the value of the ID, enter
remote.com
as the local ID for the VPN client.
Note:
The remote ID on the VPN firewall is the local ID on the VPN client. It
might be less confusing to configure an FQDN such as client.com as the
remote ID on the VPN firewall and then enter client.com as the local ID on
the VPN client.
Remote ID
As the type of ID, select
DNS
from the Remote ID drop-down list because
you specified an FQDN in the VPN firewall configuration.
As the value of the ID, enter
local.com
as the remote ID for the VPN firewall.
Note:
The local ID on the VPN firewall is the remote ID on the VPN client. It
might be less confusing to configure an FQDN such as router.com as the
local ID on the VPN firewall and then enter router.com as the remote ID on
the VPN client.
Page 220 / 469
Virtual Private Networking Using IPSec
and
L2TP Connections
220
ProSAFE Gigabit Quad WAN SSL VPN Firewall SRX5308
Figure 143.
b.
Specify the default lifetimes in seconds:
Authentication (IKE)
,
Default
. The default lifetime value is 3600 seconds.
Change this setting to
28800
seconds to match the configuration of the VPN
firewall.
Encryption (IPSec)
,
Default
. The default lifetime value is 1200 seconds. Change
this setting to
3600
seconds to match the configuration of the VPN firewall.
9.
Click
Apply
to use the new settings immediately, and click
Save
to keep the settings for
future use.
The VPN client configuration is now complete.
Instead of using the wizard on the VPN client, you can also manually configure the VPN
client, which is described in the following section.
Manually Create a Secure Connection Using the NETGEAR VPN Client
Note:
Perform these tasks from a computer that has the NETGEAR
ProSafe VPN Client installed.
To manually configure a VPN connection between the VPN client and the VPN firewall,
create authentication settings (phase 1 settings), create an associated IPSec configuration
(phase 2 settings), and specify the global parameters.

Rate

3.5 / 5 based on 2 votes.

Popular NETGEAR Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top