Reference Manual
Page 2
NETGEAR does not assume any liability that the ProSafe VPN Firewall 50 has been suppressed in accordance with ...of their respective holders. Trademarks NETGEAR, the NETGEAR logo and ProSafe are registered trademarks of Netgear, Inc. Bestätigung des Herstellers/Importeurs Es wird hiermit bestätigt, daß das ProSafe VPN Firewall 50 gemäß...Statement of Conditions In the interest of the product(s) or circuit layout(s) described herein. © 2006 by NETGEAR, Inc. However, there is no guarantee that to which can radiate radio frequency energy and, if not...
NETGEAR does not assume any liability that the ProSafe VPN Firewall 50 has been suppressed in accordance with ...of their respective holders. Trademarks NETGEAR, the NETGEAR logo and ProSafe are registered trademarks of Netgear, Inc. Bestätigung des Herstellers/Importeurs Es wird hiermit bestätigt, daß das ProSafe VPN Firewall 50 gemäß...Statement of Conditions In the interest of the product(s) or circuit layout(s) described herein. © 2006 by NETGEAR, Inc. However, there is no guarantee that to which can radiate radio frequency energy and, if not...
Reference Manual
Page 7
... Contents ...1-5 Router Hardware Components 1-5 Router Front Panel 1-6 Router Rear Panel 1-7 Rack Mounting Hardware 1-8 Factory Default Login ...1-8 Chapter 2 Connecting the FVS338 to the Internet Connecting the VPN Firewall to Your Network 2-1 Logging in to the VPN Firewall 2-1 Configuring your Internet Connection 2-2 Setting the Router's MAC Address (Advanced Options 2-7 vii v1.0, September 2006
... Contents ...1-5 Router Hardware Components 1-5 Router Front Panel 1-6 Router Rear Panel 1-7 Rack Mounting Hardware 1-8 Factory Default Login ...1-8 Chapter 2 Connecting the FVS338 to the Internet Connecting the VPN Firewall to Your Network 2-1 Logging in to the VPN Firewall 2-1 Configuring your Internet Connection 2-2 Setting the Router's MAC Address (Advanced Options 2-7 vii v1.0, September 2006
Reference Manual
Page 8
... (if Desired 2-12 Configuring the WAN Mode 2-15 Configuring Dynamic DNS (If Needed 2-16 Chapter 3 LAN Configuration Configuring Your LAN (Local Area Network 3-1 Using the VPN Firewall as a DHCP Server 3-1 Configuring Multi-Home LAN IPs 3-4 Managing Groups and Hosts 3-5 Creating the Network Database 3-5 Setting Up Address Reservation 3-8 Configuring Static Routes 3-8 Static...
... (if Desired 2-12 Configuring the WAN Mode 2-15 Configuring Dynamic DNS (If Needed 2-16 Chapter 3 LAN Configuration Configuring Your LAN (Local Area Network 3-1 Using the VPN Firewall as a DHCP Server 3-1 Configuring Multi-Home LAN IPs 3-4 Managing Groups and Hosts 3-5 Creating the Network Database 3-5 Setting Up Address Reservation 3-8 Configuring Static Routes 3-8 Static...
Reference Manual
Page 9
... Chapter 5 Virtual Private Networking Dual WAN Port Systems 5-1 Setting up a VPN Connection using the VPN Wizard 5-2 Creating a VPN Tunnel to a Gateway 5-2 Creating a VPN Tunnel Connection to a VPN Client 5-3 IKE Policies ...5-4 IKE Policy Operation 5-4 IKE Policy Table ...5-5 VPN Policies ...5-5 VPN Policy Operation 5-6 VPN Policy Table ...5-6 VPN Tunnel Connection Status 5-7 Creating a VPN Gateway Connection: Between FVS338 and FVX538 5-8 Configuring the FVS338 5-8 Configuring...
... Chapter 5 Virtual Private Networking Dual WAN Port Systems 5-1 Setting up a VPN Connection using the VPN Wizard 5-2 Creating a VPN Tunnel to a Gateway 5-2 Creating a VPN Tunnel Connection to a VPN Client 5-3 IKE Policies ...5-4 IKE Policy Operation 5-4 IKE Policy Table ...5-5 VPN Policies ...5-5 VPN Policy Operation 5-6 VPN Policy Table ...5-6 VPN Tunnel Connection Status 5-7 Creating a VPN Gateway Connection: Between FVS338 and FVX538 5-8 Configuring the FVS338 5-8 Configuring...
Reference Manual
Page 10
... ...5-34 Managing your Certificate Revocation List (CRL 5-37 Chapter 6 Router and Network Management Performance Management 6-1 VPN Firewall Features That Reduce Traffic 6-1 Service Blocking 6-2 Block Sites ...6-3 Source MAC Filtering 6-4 VPN Firewall Features That Increase Traffic 6-4 Port Forwarding 6-4 Port Triggering 6-6 VPN Tunnels ...6-6 Using QoS to Shift the Traffic Mix 6-7 Tools for Traffic Management 6-7 Administration ...6-7 Changing...
... ...5-34 Managing your Certificate Revocation List (CRL 5-37 Chapter 6 Router and Network Management Performance Management 6-1 VPN Firewall Features That Reduce Traffic 6-1 Service Blocking 6-2 Block Sites ...6-3 Source MAC Filtering 6-4 VPN Firewall Features That Increase Traffic 6-4 Port Forwarding 6-4 Port Triggering 6-6 VPN Tunnels ...6-6 Using QoS to Shift the Traffic Mix 6-7 Tools for Traffic Management 6-7 Administration ...6-7 Changing...
Reference Manual
Page 13
...equipment. This manual uses the following formats to highlight special messages: Note: This format is used to install, configure and troubleshoot the ProSafe VPN Firewall 50. Tip: This format is used to take heed of this type of this manual are described in this manual is a safety... warning. About This Manual The NETGEAR® ProSafe™ VPN Firewall 50 FVS338 Reference Manual describes how to highlight a procedure that will save time or resources. Warning: Ignoring this notice may...
...equipment. This manual uses the following formats to highlight special messages: Note: This format is used to install, configure and troubleshoot the ProSafe VPN Firewall 50. Tip: This format is used to take heed of this type of this manual are described in this manual is a safety... warning. About This Manual The NETGEAR® ProSafe™ VPN Firewall 50 FVS338 Reference Manual describes how to highlight a procedure that will save time or resources. Warning: Ignoring this notice may...
Reference Manual
Page 14
...options, according to access the full NETGEAR, Inc. Your computer must have the free Adobe Acrobat reader installed in the HTML version of contents or index to navigate directly to where the topic is written for the VPN firewall according to these specifications: Product... Version Manual Publication Date ProSafe VPN Firewall 50 September 2006 For more information about network, Internet, firewall, and VPN technologies, see the links to the NETGEAR website in the manual. •A button ...
...options, according to access the full NETGEAR, Inc. Your computer must have the free Adobe Acrobat reader installed in the HTML version of contents or index to navigate directly to where the topic is written for the VPN firewall according to these specifications: Product... Version Manual Publication Date ProSafe VPN Firewall 50 September 2006 For more information about network, Internet, firewall, and VPN technologies, see the links to the NETGEAR website in the manual. •A button ...
Reference Manual
Page 15
FVS338 ProSafe VPN Firewall 50 Reference Manual • Click the PDF of This Chapter link at the top left of paper, you can save paper and printer ink ...
FVS338 ProSafe VPN Firewall 50 Reference Manual • Click the PDF of This Chapter link at the top left of paper, you can save paper and printer ink ...
Reference Manual
Page 16
FVS338 ProSafe VPN Firewall 50 Reference Manual xvi v1.0, September 2006
FVS338 ProSafe VPN Firewall 50 Reference Manual xvi v1.0, September 2006
Reference Manual
Page 17
.... • SNMP for manageability. • Front panel LEDs for easy monitoring of Service (DoS) attack protection and multi-NAT support.The VPN firewall supports multiple Web content filtering options, plus browsing activity reporting and instant alerts-both, via e-mail. Chapter 1 Introduction The ProSafe... VPN Firewall 50 with 8 port switch connects your network from attacks and intrusions. The FVS338 is a plug-and-play device that ...
.... • SNMP for manageability. • Front panel LEDs for easy monitoring of Service (DoS) attack protection and multi-NAT support.The VPN firewall supports multiple Web content filtering options, plus browsing activity reporting and instant alerts-both, via e-mail. Chapter 1 Introduction The ProSafe... VPN Firewall 50 with 8 port switch connects your network from attacks and intrusions. The FVS338 is a plug-and-play device that ...
Reference Manual
Page 18
...designed to maintain security, as described in this section. • PCs Hidden by screening for keywords within Web addresses. Security The VPN firewall is equipped with Content Filtering Unlike simple Internet sharing NAT routers, the FVS338 is a true firewall, using stateful packet inspection ... objectionable Internet sites. The firewall allows you specify as blocked incoming traffic, port scans, attacks, and administrator logins. FVS338 ProSafe VPN Firewall 50 Reference Manual Full Routing on Both the Broadband and Serial WAN Ports You can install, configure, and operate the FVS338...
...designed to maintain security, as described in this section. • PCs Hidden by screening for keywords within Web addresses. Security The VPN firewall is equipped with Content Filtering Unlike simple Internet sharing NAT routers, the FVS338 is a true firewall, using stateful packet inspection ... objectionable Internet sites. The firewall allows you specify as blocked incoming traffic, port scans, attacks, and administrator logins. FVS338 ProSafe VPN Firewall 50 Reference Manual Full Routing on Both the Broadband and Serial WAN Ports You can install, configure, and operate the FVS338...
Reference Manual
Page 19
...is enabled and no DNS addresses are autosensing and capable of ports. • Exposed Host (Software DMZ). Extensive Protocol Support The VPN firewall supports the Transmission Control Protocol/Internet Protocol (TCP/IP) and Routing Information Protocol (RIP). • IP Address Sharing by ...NAT prevents Internet locations from the LAN. • PPP over a DSL connection by NAT. Introduction 1-3 v1.0, September 2006 The VPN firewall dynamically assigns network configuration information, including IP, gateway, and domain name server (DNS) addresses, to attached PCs on the service...
...is enabled and no DNS addresses are autosensing and capable of ports. • Exposed Host (Software DMZ). Extensive Protocol Support The VPN firewall supports the Transmission Control Protocol/Internet Protocol (TCP/IP) and Routing Information Protocol (RIP). • IP Address Sharing by ...NAT prevents Internet locations from the LAN. • PPP over a DSL connection by NAT. Introduction 1-3 v1.0, September 2006 The VPN firewall dynamically assigns network configuration information, including IP, gateway, and domain name server (DNS) addresses, to attached PCs on the service...
Reference Manual
Page 20
... malicious code. - Easy Installation and Management You can have the firewall enforce its use. The VPN firewall includes the NETGEAR VPN Wizard to easily configure VPN tunnels according to the recommendations of growing businesses and feature easy installation, automatic transparent updates, and damage...installed the Trend Micro Client/Server/Messaging Suite for SMB on your NETGEAR VPN Firewall to enforce antivirus policies - Browser-based configuration allows you can install, configure, and operate the ProSafe VPN Firewall 50 within minutes after connecting it to the network. The...
... malicious code. - Easy Installation and Management You can have the firewall enforce its use. The VPN firewall includes the NETGEAR VPN Wizard to easily configure VPN tunnels according to the recommendations of growing businesses and feature easy installation, automatic transparent updates, and damage...installed the Trend Micro Client/Server/Messaging Suite for SMB on your NETGEAR VPN Firewall to enforce antivirus policies - Browser-based configuration allows you can install, configure, and operate the ProSafe VPN Firewall 50 within minutes after connecting it to the network. The...
Reference Manual
Page 21
... range of the FVS338, including instructions for installing the FVS338 using the rack mounting hardware. Maintenance and Support NETGEAR offers the following items: • ProSafe VPN Firewall 50. • AC power adapter. • Category 5 Ethernet cable. • Resource CD, ...including: - The firewall allows you can limit remote management access to help you maximize your NETGEAR dealer. FVS338 ProSafe VPN Firewall 50 Reference Manual • Remote management. Trend Micro software evaluation. • Warranty and Support Information Card. Router Hardware...
... range of the FVS338, including instructions for installing the FVS338 using the rack mounting hardware. Maintenance and Support NETGEAR offers the following items: • ProSafe VPN Firewall 50. • AC power adapter. • Category 5 Ethernet cable. • Resource CD, ...including: - The firewall allows you can limit remote management access to help you maximize your NETGEAR dealer. FVS338 ProSafe VPN Firewall 50 Reference Manual • Remote management. Trend Micro software evaluation. • Warranty and Support Information Card. Router Hardware...
Reference Manual
Page 22
... reset button. Table 1-1. The system has booted successfully. The WAN port has detected a link with a connected Ethernet device. FVS338 ProSafe VPN Firewall 50 Reference Manual Router Front Panel The ProSafe VPN Firewall 50 front panel shown below describes each item on the front panel and its operation. The serial port has successfully...
... reset button. Table 1-1. The system has booted successfully. The WAN port has detected a link with a connected Ethernet device. FVS338 ProSafe VPN Firewall 50 Reference Manual Router Front Panel The ProSafe VPN Firewall 50 front panel shown below describes each item on the front panel and its operation. The serial port has successfully...
Reference Manual
Page 23
The LAN port is operating at 10 Mbps. FVS338 ProSafe VPN Firewall 50 Reference Manual Table 1-1. MODEM FACTORY DEFAULTS LOCAL 8 7 6 5 4 3 2 1 INTERNET 12VDC 1.2A Figure 1-2 Viewed from left to right, the rear panel contains the following elements: .../MDIX. • On/Off switch • DC power in (12 VDC, 1.2A) Introduction 1-7 v1.0, September 2006 Router Rear Panel The rear panel of the ProSafe VPN Firewall 50 (Figure 1-2) contains the On/Off switch and AC power connection. serves as the WAN1 Internet port.
The LAN port is operating at 10 Mbps. FVS338 ProSafe VPN Firewall 50 Reference Manual Table 1-1. MODEM FACTORY DEFAULTS LOCAL 8 7 6 5 4 3 2 1 INTERNET 12VDC 1.2A Figure 1-2 Viewed from left to right, the rear panel contains the following elements: .../MDIX. • On/Off switch • DC power in (12 VDC, 1.2A) Introduction 1-7 v1.0, September 2006 Router Rear Panel The rear panel of the ProSafe VPN Firewall 50 (Figure 1-2) contains the On/Off switch and AC power connection. serves as the WAN1 Internet port.
Reference Manual
Page 24
FVS338 ProSafe VPN Firewall 50 Reference Manual Rack Mounting Hardware The FVS338 can be mounted either on the bottom of the FVS338's enclosure if you forget the following ...
FVS338 ProSafe VPN Firewall 50 Reference Manual Rack Mounting Hardware The FVS338 can be mounted either on the bottom of the FVS338's enclosure if you forget the following ...
Reference Manual
Page 25
FVS338 ProSafe VPN Firewall 50 Reference Manual To log in to the FVS338 once it is connected: 1. Once the login screen displays (Figure 1-5), enter the following: • admin for User Name • password for Password Introduction 1-9 v1.0, September 2006 Enter http://192.168.1.1 as the URL. Figure 1-5 3. Open a Web browser. 2.
FVS338 ProSafe VPN Firewall 50 Reference Manual To log in to the FVS338 once it is connected: 1. Once the login screen displays (Figure 1-5), enter the following: • admin for User Name • password for Password Introduction 1-9 v1.0, September 2006 Enter http://192.168.1.1 as the URL. Figure 1-5 3. Open a Web browser. 2.
Reference Manual
Page 26
FVS338 ProSafe VPN Firewall 50 Reference Manual 1-10 v1.0, September 2006 Introduction
FVS338 ProSafe VPN Firewall 50 Reference Manual 1-10 v1.0, September 2006 Introduction
Reference Manual
Page 27
... port speed, and uplink bandwidth. Optionally, you can also change your password and enable remote management at this time if desired. 4. Connecting the VPN Firewall to set up and configure your Resource CD.) 2. Setting up . 5. However, these are ready to Your Network To physically connect your Resource... them is also available on your firewall. Configure your ISPs. Connect the firewall physically to your router and wait for connecting the VPN firewall. You can enable each WAN port to respond to go out. You can also program the WAN traffic meters at this phase...
... port speed, and uplink bandwidth. Optionally, you can also change your password and enable remote management at this time if desired. 4. Connecting the VPN Firewall to set up and configure your Resource CD.) 2. Setting up . 5. However, these are ready to Your Network To physically connect your Resource... them is also available on your firewall. Configure your ISPs. Connect the firewall physically to your router and wait for connecting the VPN firewall. You can enable each WAN port to respond to go out. You can also program the WAN traffic meters at this phase...