NETGEAR SRX5308 Router Manual PDF (Setup & Configuration Guide)

Page 461 / 469 Scroll up to view Page 456 - 460

461

ProSAFE Gigabit Quad WAN SSL VPN Firewall SRX5308

J

Java, blocking

187

K

keep-alives, VPN tunnels

242

,

266

keyword blocking

187

kit, rack-mounting

21

knowledge base

403

L

L2TP (Layer 2 Tunneling Protocol) server

272

L2TP Access Concentrator (LAC)

272

L2TP users

312

LAC (L2TP Access Concentrator)

272

LAN

address pools (IPv6)

106

,

121

bandwidth capacity

329

default port MAC addresses

374

default settings

406

groups, assigning and managing

98

–

101

IPv4 settings, configuring

86

IPv6 settings, configuring

104

Known PCs and Devices table

98

network database

96

–

100

port status, viewing

374

prefix delegation (IPv6)

103

,

107

secondary IPv4 addresses

94

–

96

secondary IPv6 addresses

113

–

114

testing the LAN path

400

LAN groups, keyword blocking

189

LAN LEDs

18

,

394

LAN ports, described

17

LAN profiles, QoS

184

–

186

LAN security checks

171

LAN traffic meter (or counter)

359

Layer 2 Tunneling Protocol (L2TP) server

272

LDAP (Lightweight Directory Access Protocol)

described

303

domain authentication

306

server, DHCP

92

,

118

VLANs

88

lease and rebind time, DHCPv6

106

,

121

LEDs

explanation of

18

–

19

troubleshooting

393

–

394

lifetime, router

DMZ, configuring for

125

LAN, configuring for

111

Lightweight Directory Access Protocol.

See

LDAP.

limits

IPv4 sessions

173

LAN traffic volume

360

WAN traffic volume

357

link-local addresses, IPv6

102

link-local advertisements, IPv6

DMZ, configuring for

122

LAN, configuring for

109

load balancing mode

bandwidth capacity

329

configuring

41

–

42

DDNS

50

described

40

VPN IPSec

202

local area network.

See

LAN.

local IPv6 tunnels

DMZ, configuring for

126

LAN, configuring for

112

local user database

305

location of the VPN firewall

20

lock, security

19

log messages (system logs and error messages)

DHCP

447

other events

446

routing

444

system

432

understanding

431

logging

configuring

362

–

366

terms in log messages

431

login attempts

363

login default settings

405

login policies, user

313

–

318

login time-out

changing

318

,

336

default

23

logs, configuring

363

looking up DNS address

390

M

MAC addresses

blocked or permitted, adding

191

configuring

40

,

60

,

64

,

74

defaults, LAN and WAN ports

374

–

376

format

74

,

191

IP bindings

192

–

196

spoofing

397

VLANs, unique

93

main navigation menu (web management interface)

24

managed RA flags

DMZ, configuring for

125

LAN, configuring for

111

Page 462 / 469

462

ProSAFE Gigabit Quad WAN SSL VPN Firewall SRX5308

management default settings

410

maximum transmission unit (MTU)

default

73

IPv6 DMZ packets

125

IPv6 LAN packets

111

MCHAP (Microsoft CHAP)

270

,

273

,

305

MD5

IKE polices

235

Mode Config setting

253

RIP-2

130

self-signed certificate requests

324

SNMPv3 users settings

346

VPN policies

244

Media Access Control.

See

MAC addresses.

membership, ports, VLAN

377

menu (web management interface)

24

Message-Digest algorithm 5.

See

MD5.

metering

LAN traffic

359

WAN traffic

356

metric

static IPv4 routes

128

static IPv6 routes

133

MIAS (Microsoft Internet Authentication Service)

described

303

MIAS-CHAP and MIAS-PAP

306

Microsoft CHAP (MCHAP)

270

,

273

,

305

Microsoft Point-to-Point Encryption (MPPE)

271

Mode Config operation

configuring

250

–

257

record

234

monitoring default settings

410

MPPE (Microsoft Point-to-Point Encryption)

271

MTU (maximum transmission unit)

default

73

IPv6 DMZ packets

125

IPv6 LAN packets

111

multicast pass-through

174

multihome LAN addresses

IPv4, configuring

94

–

96

IPv6, configuring

113

–

114

multiple WAN ports

auto-rollover and load balancing

418

–

421

FQDNs

50

,

202

–

203

,

421

network, planning

413

overview

13

N

names, changing

DDNS host and domain

52

ISP login

35

known PCs and devices

98

LAN groups

100

PPTP and PPPoE accounts

36

NAS (Network Access Server)

249

NAT (Network Address Translation)

configuring

29

described

15

firewall, use with

135

mapping, one-to-one

described

30

rule example

165

status, viewing

375

navigation menu (web management interface)

24

NBMA (nonbroadcast multiple access)

110

,

124

NDP (Neighbor Discovery Protocol)

109

,

122

NetBIOS, VPN tunnels

242

,

268

Network Access Server (NAS)

249

Network Address Translation.

See

NAT.

network configuration requirements

415

network planning for multiple WAN ports

413

network resources, SSL VPN, configuring

288

–

291

Network Time Protocol (NTP)

modes and servers, settings

354

troubleshooting

403

networks

database

96

–

100

,

386

diagnostic tools

388

newsgroup

187

nonbroadcast multiple access (NBMA)

110

,

124

NT domain

303

,

306

NTP (Network Time Protocol)

modes and servers, settings

354

troubleshooting

403

O

one-time passcode (OTP)

450

–

452

online documentation

403

online games, DMZ port

115

option arrows (web management interface)

24

Oray.net

49

–

52

order of precedence, firewall rules

144

other event log messages

446

OTP (one-time passcode)

450

–

452

outbound rules

default

136

examples

168

–

169

IPv4

DMZ-to-WAN rules

154

LAN-to-DMZ rules

160

LAN-to-WAN rules

147

Page 463 / 469

463

ProSAFE Gigabit Quad WAN SSL VPN Firewall SRX5308

IPv6

DMZ-to-WAN rules

155

LAN-to-DMZ rules

161

LAN-to-WAN rules

148

order of precedence

144

overview

137

QoS profile, ToS

139

reducing traffic

330

scheduling

189

service blocking

137

settings

137

–

139

outbound traffic, bandwidth

182

P

package contents, VPN firewall

17

packets

accepted and dropped

363

capturing

391

matching and marking

79

–

80

transmitted, received, and collided

372

PAP (Password Authentication Protocol)

270

,

273

,

302

–

306

See also

MIAS (Microsoft Internet Authentication Ser-

vice)

RADIUS authentication

WiKID

pass-through, multicast

174

passwords

changing

318

,

336

default

22

restoring

401

Perfect Forward Secrecy (PFS)

245

,

252

performance management

329

permanent addresses

IPv4 address

33

,

38

IPv6 address

59

PFS (Perfect Forward Secrecy)

245

,

252

physical specifications

410

pinging

auto-rollover

IPv4

45

IPv6

69

checking connections

389

responding on Internet ports

171

responding on LAN ports

171

troubleshooting TCP/IP

400

using the ping utility

389

pinouts, console port

19

placement of the VPN firewall

20

plug and play (UPnP), configuring

199

Point-to-Point Tunneling Protocol (PPTP)

server settings

269

settings

33

,

36

policies

IKE

exchange mode

232

,

234

ISAKMP identifier

232

,

235

managing

231

Mode Config operation

234

,

253

XAUTH

237

IPSec VPN

automatically generated

238

groups, configuring

307

managing

231

manually generated

238

SSL VPN

managing

291

settings

294

policy hierarchy

291

pools, Mode Config operation

252

port filtering

reducing traffic

330

rules

136

port forwarding

firewall rules

136

,

140

increasing traffic

140

reducing traffic

332

port membership, VLANs

90

port numbers

customized services

177

port triggering

197

SSL VPN port forwarding

283

port ranges

port triggering

198

SSL VPN policies

295

–

296

SSL VPN resources

291

port speed

74

port triggering

configuring

197

–

199

increasing traffic

334

status monitoring

199

,

381

port VLAN identifier (PVID)

85

portals, SSL VPN

accessing

297

configuring

277

–

281

options for

276

ports

front panel and rear panel

17

–

20

VLAN membership, viewing

377

Power LED

18

,

393

power receptacle

20

power specifications

410

PPP connection

276

Page 464 / 469

464

ProSAFE Gigabit Quad WAN SSL VPN Firewall SRX5308

PPPoE (PPP over Ethernet)

described

16

IPv4 settings

33

,

37

IPv6 settings

62

PPTP (Point-to-Point Tunneling Protocol)

server settings

269

settings

33

,

36

users

312

precedence, firewall rules

144

preference, router (IPv6)

DMZ, configuring for

125

LAN, configuring for

111

prefix delegation (IPv6)

LAN DHCPv6 server

103

,

107

WAN DHCPv6 client

55

,

57

prefix length, IPv6

DMZ address

120

DMZ advertisements

126

DMZ DHCPv6 address pools

122

IPSec VPN policies

243

ISP address

59

LAN address

105

LAN advertisements

112

LAN DHCPv6 address pools

107

LAN prefix delegation

108

secondary LAN IP address

114

SSL VPN policies

295

static routes

133

prefix lifetimes, IPv6

DMZ advertisements

126

LAN advertisements

112

prefixes, IPv6

6to4 tunnel

64

DMZ advertisements

126

ISATAP tunnel

66

LAN advertisements

112

pre-shared key

client-to-gateway VPN tunnel

213

gateway-to-gateway VPN tunnel

205

,

210

IKE policy settings

236

primary WAN mode

bandwidth capacity

329

IPv4, described

40

IPv6, described

68

priority queue control profiles

LAN QoS

185

WAN QoS

76

–

78

,

80

–

81

privacy algorithm and password, SNMPv3 users

346

private addresses, IPv6

65

profiles

bandwidth

181

–

183

QoS, firewall rules

184

QoS, WAN interfaces

76

VLANs

86

–

92

protection from common attacks

170

–

172

protocol binding, configuring

41

–

44

protocols

compatibilities

410

RIP

15

service numbers

177

traffic volume by protocol

358

PSK.

See

pre-shared key.

public web server, hosting (rule example)

164

PVID (port VLAN identifier)

85

Q

QoS (Quality of Service)

LAN profiles

184

–

186

profiles

184

shifting traffic mix

335

WAN profiles

76

–

82

question mark icon (web management interface)

25

queues, priority

LAN traffic

185

WAN traffic

76

–

78

,

80

–

81

R

rack-mounting kit

21

RADIUS authentication

CHAP and PAP

domain authentication

305

XAUTH

237

,

246

–

247

described

302

MSCHAP(v2), domain authentication

305

RADIUS servers

configuring

248

–

249

edge devices

247

RADVD (Router Advertisement Deamon)

DMZ, configuring for

122

LAN, configuring for

109

RAs (router advertisements)

DMZ, configuring for

124

LAN, configuring for

110

rate control profile, WAN traffic

76

–

80

rate-limiting, forwarded traffic

75

read-only and read-write access

311

rebooting

with different firmware

351

with same firmware

391

reducing traffic

330

–

332

relay gateway

91

,

117

Remote Authentication Dial In User Service

See

RADIUS authentication.

See

RADIUS servers.

remote management access

338

Page 465 / 469

465

ProSAFE Gigabit Quad WAN SSL VPN Firewall SRX5308

remote users, assigning addresses (Mode Config)

250

requirements, hardware

415

reserved IPv4 addresses, configuring

101

Reset button

20

resources, SSL VPN, configuring

288

–

291

restarting traffic meter (or counter)

LAN traffic

360

WAN traffic

357

restoring configuration file

349

retry interval, DNS lookup or ping

75

IPv4

47

IPv6

70

RFC 1349

184

RFC 1700

177

RFC 2865

247

RIP (Routing Information Protocol), configuring

129

–

131

Road Warrior (client-to-gateway)

422

round-robin load balancing

42

Router Advertisement Deamon (RADVD)

DMZ, configuring for

122

LAN, configuring for

109

router advertisements (RAs) and router lifetime (IPv6)

DMZ, configuring for

124

LAN, configuring for

110

Routing Information Protocol (RIP), configuring

129

–

131

routing log messages, explanation

444

routing logs

363

routing modes

IPv4

29

IPv6 (IPv4-only and IPv4/IPv6)

53

routing table

adding static IPv4 routes

127

adding static IPv6 routes

132

displaying

390

RSA signatures

236

rules

See

inbound rules.

See

outbound rules.

S

SA (security association)

IKE policies

232

,

235

IPSec VPN Wizard

203

Mode Config operation

252

VPN connection status

230

VPN policies

243

,

244

sample firewall rules

164

–

169

scheduling firewall rules

189

secondary LAN addresses

IPv4, configuring

94

–

96

IPv6, configuring

113

–

114

Secure Hash Algorithm 1.

See

SHA-1.

secure HTTP management

340

security association.

See

SA.

security checks, LAN

171

security level, SNMPv3 users

346

security lock

19

Security Parameters Index (SPI)

243

server preference, DHCPv6

106

,

120

service blocking

reducing traffic

330

rules, firewall

136

,

137

service numbers, common protocols

177

Session Initiation Protocol (SIP)

176

session limits

configuring

173

logging dropped packets

363

severities, syslog

365

SHA-1

IKE policies

235

Mode Config operation

253

self certificate requests

324

SNMPv3 user settings

346

VPN policies

244

shared bandwidth allocation, WAN traffic

79

shutting down

391

signature key length

324

SIIT (Stateless IP/ICMP Translation)

67

Simple Network Management Protocol (SNMP)

configuring

342

–

347

described

16

single WAN port mode

bandwidth capacity

329

IPv4, described

40

IPv6, described

68

SIP (Session Initiation Protocol)

176

sit0-WAN1 (6to4 tunnel)

64

SLA ID (site level aggregation identifier)

DMZ advertisements

126

LAN advertisements

112

sniffer

394

SNMP (Simple Network Management Protocol)

configuring

342

–

347

described

16

software, downloading and upgrading

350

–

352

source MAC filtering

configuring MAC addresses

190

logging matched packets

363

reducing traffic

332

specifications, physical and technical

410

speed, ports

74

SPI (Security Parameters Index)

243

Rate

Popular NETGEAR Models

Famous Router IPs

Famous Router Companies

Bookmark Our Site

Share