Reference Manual
Page 1
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual NETGEAR, Inc. 350 East Plumeria Drive San Jose, CA 95134 202-10521-02 v1.1 August 2010
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual NETGEAR, Inc. 350 East Plumeria Drive San Jose, CA 95134 202-10521-02 v1.1 August 2010
Reference Manual
Page 2
... trademarks or trademarks of their respective holders. Compliance is verified by testing to radio communications. All rights reserved. NETGEAR does not assume any liability that to the use or application of the product(s) or circuit layout(s) described herein... support@netgear.com North American NETGEAR website: http://www.netgear.com Trademarks NETGEAR and the NETGEAR logo are registered trademarks of NETGEAR, Inc. However, there is compliant with your Support information card. EU Regulatory Compliance Statement The ProSafe Gigabit 8 Port VPN Firewall FVS318G is no...
... trademarks or trademarks of their respective holders. Compliance is verified by testing to radio communications. All rights reserved. NETGEAR does not assume any liability that to the use or application of the product(s) or circuit layout(s) described herein... support@netgear.com North American NETGEAR website: http://www.netgear.com Trademarks NETGEAR and the NETGEAR logo are registered trademarks of NETGEAR, Inc. However, there is compliant with your Support information card. EU Regulatory Compliance Statement The ProSafe Gigabit 8 Port VPN Firewall FVS318G is no...
Reference Manual
Page 3
[email protected], Worcester, UK. All rights reserved. This software is provided "as is hereby certified that the ProSafe Gigabit 8 Port VPN Firewall FVS318G has been suppressed in accordance with the regulations may become the cause of conditions, and the following disclaimer. 2. Das Bundesamt für Zulassungen...the distribution. 3. Bestätigung des Herstellers/Importeurs Es wird hiermit bestätigt, daß das ProSafe Gigabit 8 Port VPN Firewall FVS318G gemäß der im BMPT-AmtsblVfg 243/ 1991 und Vfg 46/1992 aufgeführten Bestimmungen entstört ist. Lesen...
[email protected], Worcester, UK. All rights reserved. This software is provided "as is hereby certified that the ProSafe Gigabit 8 Port VPN Firewall FVS318G has been suppressed in accordance with the regulations may become the cause of conditions, and the following disclaimer. 2. Das Bundesamt für Zulassungen...the distribution. 3. Bestätigung des Herstellers/Importeurs Es wird hiermit bestätigt, daß das ProSafe Gigabit 8 Port VPN Firewall FVS318G gemäß der im BMPT-AmtsblVfg 243/ 1991 und Vfg 46/1992 aufgeführten Bestimmungen entstört ist. Lesen...
Reference Manual
Page 5
... and Publication Details Model Number: Publication Date: Product Family: Product Name: Home or Business Product: Language: Publication Part Number: Publication Version Number FVS318G August 2010 VPN Firewall ProSafe Gigabit 8 Port VPN Firewall FVS318G Business English 202-10521-02 1.1 v v1.1, August 2010 PPP Zlib Copyright (c) 1989 Carnegie Mellon University. Redistribution and use in source and...
... and Publication Details Model Number: Publication Date: Product Family: Product Name: Home or Business Product: Language: Publication Part Number: Publication Version Number FVS318G August 2010 VPN Firewall ProSafe Gigabit 8 Port VPN Firewall FVS318G Business English 202-10521-02 1.1 v v1.1, August 2010 PPP Zlib Copyright (c) 1989 Carnegie Mellon University. Redistribution and use in source and...
Reference Manual
Page 7
Contents ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual About This Manual Conventions, Formats and Scope xiii How to Print This Manual xiv Chapter 1 Introduction Key Features ...1-1 Advanced VPN Support for IPsec 1-2 A Powerful, True Firewall with Content Filtering 1-2 Security Features ...1-3 Autosensing Ethernet Connections with Auto Uplink 1-3 Extensive Protocol Support 1-4 Easy Installation and Management 1-4 Maintenance...
Contents ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual About This Manual Conventions, Formats and Scope xiii How to Print This Manual xiv Chapter 1 Introduction Key Features ...1-1 Advanced VPN Support for IPsec 1-2 A Powerful, True Firewall with Content Filtering 1-2 Security Features ...1-3 Autosensing Ethernet Connections with Auto Uplink 1-3 Extensive Protocol Support 1-4 Easy Installation and Management 1-4 Maintenance...
Reference Manual
Page 8
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Chapter 3 LAN Configuration Choosing the VPN Firewall DHCP Options 3-1 Configuring the LAN Setup Options 3-2 Managing Groups and Hosts (LAN Groups 3-5 Creating the Network Database 3-6 Viewing the Network Database 3-7 Adding Devices to ...
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Chapter 3 LAN Configuration Choosing the VPN Firewall DHCP Options 3-1 Configuring the LAN Setup Options 3-2 Managing Groups and Hosts (LAN Groups 3-5 Creating the Network Database 3-6 Viewing the Network Database 3-7 Adding Devices to ...
Reference Manual
Page 9
... and Gateway Configurations 5-1 Creating Gateway to Gateway VPN Tunnels with the Wizard 5-2 Creating a Client to Gateway VPN Tunnel 5-5 Testing the Connections and Viewing Status Information 5-11 NETGEAR VPN Client Status and Log Information 5-11 VPN Firewall VPN Connection Status and Logs 5-14 Managing VPN Policies 5-15 Configuring IKE Policies 5-15 Configuring VPN Policies 5-23 Managing Certificates 5-30 Understanding...
... and Gateway Configurations 5-1 Creating Gateway to Gateway VPN Tunnels with the Wizard 5-2 Creating a Client to Gateway VPN Tunnel 5-5 Testing the Connections and Viewing Status Information 5-11 NETGEAR VPN Client Status and Log Information 5-11 VPN Firewall VPN Connection Status and Logs 5-14 Managing VPN Policies 5-15 Configuring IKE Policies 5-15 Configuring VPN Policies 5-23 Managing Certificates 5-30 Understanding...
Reference Manual
Page 10
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Configuring NetBIOS Bridging with VPN 5-55 Chapter 6 VPN Firewall and Network Management Performance Management 6-1 Bandwidth Capacity 6-1 VPN Firewall Features That Reduce Traffic 6-2 VPN Firewall Features That Increase Traffic 6-4 Using QoS to Shift the Traffic Mix 6-7 Tools for Traffic Management 6-8 Configuring Users, Administrative Settings, and Remote Management 6-8 Changing Passwords ...
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Configuring NetBIOS Bridging with VPN 5-55 Chapter 6 VPN Firewall and Network Management Performance Management 6-1 Bandwidth Capacity 6-1 VPN Firewall Features That Reduce Traffic 6-2 VPN Firewall Features That Increase Traffic 6-4 Using QoS to Shift the Traffic Mix 6-7 Tools for Traffic Management 6-8 Configuring Users, Administrative Settings, and Remote Management 6-8 Changing Passwords ...
Reference Manual
Page 11
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Troubleshooting the Web Configuration Interface 7-3 Troubleshooting the ISP Connection 7-4 Troubleshooting a TCP/IP Network Using a Ping Utility 7-5 Testing the LAN Path to Your VPN Firewall 7-5 Testing the Path from Your PC to a Remote Device 7-6 Restoring the Default Configuration and...need Two-Factor Authentication B-1 What are the benefits of Two-Factor Authentication B-1 What is Two-Factor Authentication B-2 NETGEAR Two-Factor Authentication Solutions B-2 Appendix C Related Documents Index Contents xi v1.1, August 2010
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Troubleshooting the Web Configuration Interface 7-3 Troubleshooting the ISP Connection 7-4 Troubleshooting a TCP/IP Network Using a Ping Utility 7-5 Testing the LAN Path to Your VPN Firewall 7-5 Testing the Path from Your PC to a Remote Device 7-6 Restoring the Default Configuration and...need Two-Factor Authentication B-1 What are the benefits of Two-Factor Authentication B-1 What is Two-Factor Authentication B-2 NETGEAR Two-Factor Authentication Solutions B-2 Appendix C Related Documents Index Contents xi v1.1, August 2010
Reference Manual
Page 13
..., file and server names, extensions User input, IP addresses, GUI screen text Command prompt, CLI text, code URL links • Formats. About This Manual The NETGEAR® ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual describes how to install, configure and troubleshoot the ProSafe Gigabit 8 Port...
..., file and server names, extensions User input, IP addresses, GUI screen text Command prompt, CLI text, code URL links • Formats. About This Manual The NETGEAR® ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual describes how to install, configure and troubleshoot the ProSafe Gigabit 8 Port...
Reference Manual
Page 14
Product Version Manual Publication Date ProSafe Gigabit 8 Port VPN Firewall FVS318G August 2010 For more information about network, Internet, firewall, and VPN technologies, see the links to the NETGEAR website in order to these specifications. website at http://www.adobe.com. This manual ... Adobe Acrobat reader installed in Appendix C, "Related Documents." Note: Product updates are available on the NETGEAR, Inc. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • Scope. How to LAN and firewall configuration 2009 xiv About This Manual v1.1, August ...
Product Version Manual Publication Date ProSafe Gigabit 8 Port VPN Firewall FVS318G August 2010 For more information about network, Internet, firewall, and VPN technologies, see the links to the NETGEAR website in order to these specifications. website at http://www.adobe.com. This manual ... Adobe Acrobat reader installed in Appendix C, "Related Documents." Note: Product updates are available on the NETGEAR, Inc. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • Scope. How to LAN and firewall configuration 2009 xiv About This Manual v1.1, August ...
Reference Manual
Page 15
... the Application Level Gateway for SIP Sessions" * "Configuring UPnP (Universal Plug and Play)" • Made the following changes to Attack Check screen. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual 202-10521-02 1.0 202-10521-02 1.1 About This Manual April 2010 Added the following section to Chapter...
... the Application Level Gateway for SIP Sessions" * "Configuring UPnP (Universal Plug and Play)" • Made the following changes to Attack Check screen. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual 202-10521-02 1.0 202-10521-02 1.1 About This Manual April 2010 Added the following section to Chapter...
Reference Manual
Page 16
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual xvi About This Manual v1.1, August 2010
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual xvi About This Manual v1.1, August 2010
Reference Manual
Page 17
...instant alerts-both via email. Network administrators can be installed and configured within minutes. Chapter 1 Introduction The ProSafe Gigabit 8 Port VPN Firewall FVS318G with eight 10/100/1000 Mbps Gigabit Ethernet LAN ports and one 10/100/1000 Mbps Gigabit Ethernet WAN port connects your network...10/100/1000 Mbps Ethernet WAN port for connection to 253 internal LAN users. • Advanced VPN support for Stateful Packet Inspection, Denial of -day, website addresses and address keywords. The FVS318G is a plug-and-play device that protects your local area network (LAN) to the Internet...
...instant alerts-both via email. Network administrators can be installed and configured within minutes. Chapter 1 Introduction The ProSafe Gigabit 8 Port VPN Firewall FVS318G with eight 10/100/1000 Mbps Gigabit Ethernet LAN ports and one 10/100/1000 Mbps Gigabit Ethernet WAN port connects your network...10/100/1000 Mbps Ethernet WAN port for connection to 253 internal LAN users. • Advanced VPN support for Stateful Packet Inspection, Denial of -day, website addresses and address keywords. The FVS318G is a plug-and-play device that protects your local area network (LAN) to the Internet...
Reference Manual
Page 18
... inspection to your LAN. • Block Sites. The FVS318G will log security events such as Ping of the NETGEAR ProSafe VPN Client software (VPN01L) • Supports 5 concurrent IPsec VPN tunnels. You can configure the VPN firewall to email the log to other IPsec gateways and ...secure connection to you specify as off-limits. • Logs security incidents. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • SNMP Manageable, optimized for the NETGEAR ProSafe Network Management Software (NMS100). • Easy, Web-based setup for installation and management. •...
... inspection to your LAN. • Block Sites. The FVS318G will log security events such as Ping of the NETGEAR ProSafe VPN Client software (VPN01L) • Supports 5 concurrent IPsec VPN tunnels. You can configure the VPN firewall to email the log to other IPsec gateways and ...secure connection to you specify as off-limits. • Logs security incidents. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • SNMP Manageable, optimized for the NETGEAR ProSafe Network Management Software (NMS100). • Easy, Web-based setup for installation and management. •...
Reference Manual
Page 19
...on the LAN. • Port Forwarding with Auto Uplink With its URL keyword filtering feature, the FVS318G prevents objectionable content from the local network. The VPN firewall incorporates Auto UplinkTM technology. NAT opens a temporary path to make the right connection. The LAN... traffic to Internet content by NAT. This feature also eliminates the need to the correct configuration. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • Keyword Filtering. Autosensing Ethernet Connections with NAT. Each Ethernet port will then configure itself to worry about...
...on the LAN. • Port Forwarding with Auto Uplink With its URL keyword filtering feature, the FVS318G prevents objectionable content from the local network. The VPN firewall incorporates Auto UplinkTM technology. NAT opens a temporary path to make the right connection. The LAN... traffic to Internet content by NAT. This feature also eliminates the need to the correct configuration. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • Keyword Filtering. Autosensing Ethernet Connections with NAT. Each Ethernet port will then configure itself to worry about...
Reference Manual
Page 20
...hosts to attached PCs on your PC. • Quality of Service (QoS). The VPN firewall includes the NETGEAR VPN Wizard to easily configure VPN tunnels according to ensure the VPN tunnels are specified, the VPN firewall provides its own address as EnterNet or WinPOET on your local network. •...further information about TCP/IP, see the "TCP/IP Networking Basics" document that you can install, configure, and operate the FVS318G within minutes after connecting it to share an Internet account using the Dynamic Host Configuration Protocol (DHCP). This feature greatly simplifies ...
...hosts to attached PCs on your PC. • Quality of Service (QoS). The VPN firewall includes the NETGEAR VPN Wizard to easily configure VPN tunnels according to ensure the VPN tunnels are specified, the VPN firewall provides its own address as EnterNet or WinPOET on your local network. •...further information about TCP/IP, see the "TCP/IP Networking Basics" document that you can install, configure, and operate the FVS318G within minutes after connecting it to share an Internet account using the Dynamic Host Configuration Protocol (DHCP). This feature greatly simplifies ...
Reference Manual
Page 21
... to help you change the system variables for repair. Maintenance and Support NETGEAR offers the following items: • FVS318G ProSafe Gigabit 8 Port VPN Firewall FVS318G • AC power cable • Rubber feet • Category 5 (Cat5) Ethernet cable • ProSafe Gigabit 8 Port VPN Firewall FVS318G Installation Guide • Resource CD, including: • Application Notes and other helpful...
... to help you change the system variables for repair. Maintenance and Support NETGEAR offers the following items: • FVS318G ProSafe Gigabit 8 Port VPN Firewall FVS318G • AC power cable • Rubber feet • Category 5 (Cat5) Ethernet cable • ProSafe Gigabit 8 Port VPN Firewall FVS318G Installation Guide • Resource CD, including: • Application Notes and other helpful...
Reference Manual
Page 22
... as a DMZ port. Power 2. DMZ On (Green) The port has detected a link with a connected Ethernet device. Table 1-1. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual VPN Firewall Front and Rear Panels The FVS318G front panel includes eight LAN ports, one WAN port, and four groups of port) 4. LED Descriptions Object Activity Description 1. Power is...
... as a DMZ port. Power 2. DMZ On (Green) The port has detected a link with a connected Ethernet device. Table 1-1. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual VPN Firewall Front and Rear Panels The FVS318G front panel includes eight LAN ports, one WAN port, and four groups of port) 4. LED Descriptions Object Activity Description 1. Power is...
Reference Manual
Page 23
... will be restored. 3. Introduction 1-7 v1.1, August 2010 LED Descriptions (continued) Object Activity One WAN Port 6. The rear panel of the FVS318G includes a cable lock receptacle, a Factory Defaults button, and a DC power connection. 1 23 Figure 1-2 Viewed from left side of port... On (Amber) Off Description The WAN port is operating at 1,000 Mbps. Cable security lock receptacle. 2. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Table 1-1. The port is connected. Active (left to factory default settings. Speed (right side of port) On (Green...
... will be restored. 3. Introduction 1-7 v1.1, August 2010 LED Descriptions (continued) Object Activity One WAN Port 6. The rear panel of the FVS318G includes a cable lock receptacle, a Factory Defaults button, and a DC power connection. 1 23 Figure 1-2 Viewed from left side of port... On (Amber) Off Description The WAN port is operating at 1,000 Mbps. Cable security lock receptacle. 2. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Table 1-1. The port is connected. Active (left to factory default settings. Speed (right side of port) On (Green...