Client-to-Box VPN configuration using ProSafe Client Lite software (Supports Windows 7)
Page 4
... ➍ ➎ ➍ Router's LAN Network IP Address: The first segment in the "Local" box. Make note of VPN Policies. but may change depending on the setup of your router. ➎ Router's LAN Network Mask: The second segment in the "Local" box. In our screenshot described as... 192.168.1.0 - NOTE: The values you will be referenced with the same circled numbers while configuring the ProSafe VPN Lite Client software. Version 1.2 but may change depending on the setup of your router. In our screenshot described as 255.255.255.0 -
... ➍ ➎ ➍ Router's LAN Network IP Address: The first segment in the "Local" box. Make note of VPN Policies. but may change depending on the setup of your router. ➎ Router's LAN Network Mask: The second segment in the "Local" box. In our screenshot described as... 192.168.1.0 - NOTE: The values you will be referenced with the same circled numbers while configuring the ProSafe VPN Lite Client software. Version 1.2 but may change depending on the setup of your router. In our screenshot described as 255.255.255.0 -
UTM9S Installation Guide
Page 1
...WAN port should be sure to an active WAN connection such as multiple WAN settings, VPN, firewall, and custom scanning. Select Wizards > SetupWizard to https://192.168.1.1. 2. ...Manual for Basic Configuration The Setup Wizard will be lit. Log in the Support > Documentation page. Start the Setup Wizard. Verify the Package Contents • ProSecure™ UTM9S appliance. • Installation ...the basic network and scanning setup. Kensington lock 8. If not, ensure that the Ethernet cable from the NETGEAR support site: http://support.netgear.com. USB port (future ...
...WAN port should be sure to an active WAN connection such as multiple WAN settings, VPN, firewall, and custom scanning. Select Wizards > SetupWizard to https://192.168.1.1. 2. ...Manual for Basic Configuration The Setup Wizard will be lit. Log in the Support > Documentation page. Start the Setup Wizard. Verify the Package Contents • ProSecure™ UTM9S appliance. • Installation ...the basic network and scanning setup. Kensington lock 8. If not, ensure that the Ethernet cable from the NETGEAR support site: http://support.netgear.com. USB port (future ...
UTM9S User Manual
Page 4
... Key Features and Capabilities 14 Multiple WAN Port Models for Increased Reliability or Outbound Load Balancing 15 Wireless Features 15 DSL Features 15 Advanced VPN Support for Both IPSec and SSL 16 A Powerful, True Firewall 16 Stream Scanning for Content Filtering 16 Security Features 17 Autosensing Ethernet Connections..., and UTM25 30 Rear Panel UTM50 and UTM150 31 Rear Panel UTM9S 31 Bottom Panels with Product Labels 32 Choose a Location for the UTM 35 Use the Rack-Mounting Kit 36 Chapter 2 Using the Setup Wizard to Provision the UTM in Your Network Steps for Initial Connection...
... Key Features and Capabilities 14 Multiple WAN Port Models for Increased Reliability or Outbound Load Balancing 15 Wireless Features 15 DSL Features 15 Advanced VPN Support for Both IPSec and SSL 16 A Powerful, True Firewall 16 Stream Scanning for Content Filtering 16 Security Features 17 Autosensing Ethernet Connections..., and UTM25 30 Rear Panel UTM50 and UTM150 31 Rear Panel UTM9S 31 Bottom Panels with Product Labels 32 Choose a Location for the UTM 35 Use the Rack-Mounting Kit 36 Chapter 2 Using the Setup Wizard to Provision the UTM in Your Network Steps for Initial Connection...
UTM9S User Manual
Page 14
...) for either 2.4-GHz or 5-GHz wireless modes. • xDLS module (UTM9S only) for ADSL and VDSL. • Advanced IPSec VPN and SSL VPN support. • Depending on the model, bundled with a one-user license of the NETGEAR ProSafe VPN Client software (VPN01L). • Advanced Stateful Packet Inspection (SPI) firewall with... 15 minutes. • Multiple antispam technologies to provide extensive protection against unwanted mail. • Easy, web-based wizard setup for installation and management. • SNMP manageable. • Front panel LEDs for secure and simple remote connections.
...) for either 2.4-GHz or 5-GHz wireless modes. • xDLS module (UTM9S only) for ADSL and VDSL. • Advanced IPSec VPN and SSL VPN support. • Depending on the model, bundled with a one-user license of the NETGEAR ProSafe VPN Client software (VPN01L). • Advanced Stateful Packet Inspection (SPI) firewall with... 15 minutes. • Multiple antispam technologies to provide extensive protection against unwanted mail. • Easy, web-based wizard setup for installation and management. • SNMP manageable. • Front panel LEDs for secure and simple remote connections.
UTM9S User Manual
Page 38
... Safari 3 or later with the UTM's web management interface, SSL VPN users should choose a browser that supports JavaScript, Java, cookies, SSL, and ActiveX to take advantage of the full suite of applications. The NETGEAR Configuration Manager Login screen displays in Your Network 38 Note: The UTM... factory default IP address is required only for the SSL VPN portal, not for the web management interface. Using the Setup Wizard to Provision the UTM in the...
... Safari 3 or later with the UTM's web management interface, SSL VPN users should choose a browser that supports JavaScript, Java, cookies, SSL, and ActiveX to take advantage of the full suite of applications. The NETGEAR Configuration Manager Login screen displays in Your Network 38 Note: The UTM... factory default IP address is required only for the SSL VPN portal, not for the web management interface. Using the Setup Wizard to Provision the UTM in the...
UTM9S User Manual
Page 45
... Appliance Table 4. DHCP Relay Select the DHCP Relay radio button to use the UTM as part of Johnson, you would enter: cn=Johnson,dc=Netgear,dc=net The port number for a DHCP server somewhere else on your network. Enable LDAP information Select the Enable LDAP information check box to enable...or name of the ISP but not for which the UTM serves as the primary DNS server IP address. Using the Setup Wizard to search the Netgear.net domain for SSL VPN and UTM authentication, but without the DNS proxy IP address. Secondary DNS This setting is optional. WINS Server This ...
... Appliance Table 4. DHCP Relay Select the DHCP Relay radio button to use the UTM as part of Johnson, you would enter: cn=Johnson,dc=Netgear,dc=net The port number for a DHCP server somewhere else on your network. Enable LDAP information Select the Enable LDAP information check box to enable...or name of the ISP but not for which the UTM serves as the primary DNS server IP address. Using the Setup Wizard to search the Netgear.net domain for SSL VPN and UTM authentication, but without the DNS proxy IP address. Secondary DNS This setting is optional. WINS Server This ...
UTM9S User Manual
Page 65
ProSecure Unified Threat Management (UTM) Appliance The UTM is ready for Client Configurations Using the Setup Wizard to Provision the UTM in Your Network 65 However, the following sections describe important tasks that you might want to address before you deploy the UTM in your network: • Configure the WAN Mode (required for the multiple WAN port models). • Configure Authentication Domains, Groups, and Users • Manage Digital Certificates for VPN Connections • Use the IPSec VPN Wizard for Client and Gateway Configurations • Use the SSL VPN Wizard for use.
ProSecure Unified Threat Management (UTM) Appliance The UTM is ready for Client Configurations Using the Setup Wizard to Provision the UTM in Your Network 65 However, the following sections describe important tasks that you might want to address before you deploy the UTM in your network: • Configure the WAN Mode (required for the multiple WAN port models). • Configure Authentication Domains, Groups, and Users • Manage Digital Certificates for VPN Connections • Use the IPSec VPN Wizard for Client and Gateway Configurations • Use the SSL VPN Wizard for use.
UTM9S User Manual
Page 239
...Threat Management (UTM) Appliance Table 54. The following section provides wizard and NETGEAR ProSafe VPN Client software configuration procedures for Client and Gateway Configurations You can use the IPSec VPN Wizard to match or mirror each other precisely, which can be reestablished using...and WAN IP address Rollover modea Load balancing mode VPN Gateway-to-Gateway (gateway to gateway) Fixed Dynamic FQDN required FQDN required FQDN Allowed (optional) FQDN required VPN Telecommuter Fixed (client to gateway through the setup procedure with the Wizard Figure 136. Create Gateway-...
...Threat Management (UTM) Appliance Table 54. The following section provides wizard and NETGEAR ProSafe VPN Client software configuration procedures for Client and Gateway Configurations You can use the IPSec VPN Wizard to match or mirror each other precisely, which can be reestablished using...and WAN IP address Rollover modea Load balancing mode VPN Gateway-to-Gateway (gateway to gateway) Fixed Dynamic FQDN required FQDN required FQDN Allowed (optional) FQDN required VPN Telecommuter Fixed (client to gateway through the setup procedure with the Wizard Figure 136. Create Gateway-...
UTM9S User Manual
Page 262
... is established and populated in the List of the Add VPN Policy screen (see Figure 167 on page 272) are specified in the VPN policy. The VPN tunnel is given the same name as the VPN tunnel connection name during the VPN Wizard setup identifies both the VPN policy and IKE policy. It is important to remember...
... is established and populated in the List of the Add VPN Policy screen (see Figure 167 on page 272) are specified in the VPN policy. The VPN tunnel is given the same name as the VPN tunnel connection name during the VPN Wizard setup identifies both the VPN policy and IKE policy. It is important to remember...
UTM9S User Manual
Page 616
... products 609-613 compressed files email filtering 185 FTP filtering 221 web filtering 204, 226 configuration settings, factory defaults 599 using the Setup Wizard 42 configuration file, managing 403-405 configuration manager (web management interface) login 38, 345 menu 41 connection requirements 37 connection ... settings 599 configuration, restoring 498 content filtering settings 176 domains, for authentication 378 factory 405, 498 IPSec VPN Wizard 240 login time-out 39 MTU 91, 527 NETGEAR certificate 215 password 39, 498 PVID 94 ReadyNAS user name and password 416 user name 39 616
... products 609-613 compressed files email filtering 185 FTP filtering 221 web filtering 204, 226 configuration settings, factory defaults 599 using the Setup Wizard 42 configuration file, managing 403-405 configuration manager (web management interface) login 38, 345 menu 41 connection requirements 37 connection ... settings 599 configuration, restoring 498 content filtering settings 176 domains, for authentication 378 factory 405, 498 IPSec VPN Wizard 240 login time-out 39 MTU 91, 527 NETGEAR certificate 215 password 39, 498 PVID 94 ReadyNAS user name and password 416 user name 39 616
UTM9S User Manual
Page 618
...edge device 277, 278 eDonkey 52, 196 EICAR test file 62 electronic licensing 64 email notification server configuring manually 422 settings, using the Setup Wizard 53 spam protection 186 traffic statistics 435 whitelist and blacklist 187 See also spam. See auto-rollover mode. See also outbound rules.... Flash objects 200, 204 forum, ProSecure 2 FQDNs DDNS requirements 87, 523 dual WAN ports, planning 238, 556, 563 SSL VPN, port forwarding 324 VPN tunnels 238 fragmentation length, radio 550 frequencies and channels defaults 603 selecting 533 front panel LEDs 27-30 ports 22-27 FTP action...
...edge device 277, 278 eDonkey 52, 196 EICAR test file 62 electronic licensing 64 email notification server configuring manually 422 settings, using the Setup Wizard 53 spam protection 186 traffic statistics 435 whitelist and blacklist 187 See also spam. See auto-rollover mode. See also outbound rules.... Flash objects 200, 204 forum, ProSecure 2 FQDNs DDNS requirements 87, 523 dual WAN ports, planning 238, 556, 563 SSL VPN, port forwarding 324 VPN tunnels 238 fragmentation length, radio 550 frequencies and channels defaults 603 selecting 533 front panel LEDs 27-30 ports 22-27 FTP action...
UTM9S User Manual
Page 620
... DSL settings 511 WAN settings 49, 74 L2TP server 304 LAN, multihome 104-105 MAC binding 166 port forwarding, SSL VPN 329 PPTP server 301 reserved 111 secondary addresses DSL 521 LAN 104 WAN 85 static or permanent addresses DSL settings 511 requirements...bandwidth 162 increasing traffic overview 393-396 port forwarding 127 infected clients, identifying 466 infrastructure mode, wireless access point 534 initial configuration, Setup Wizard 42 initial connection 37 Installation Guide 37 installation, verifying 61 instant messaging applications blocked applications, recent 5 and top 5 437 blocking...
... DSL settings 511 WAN settings 49, 74 L2TP server 304 LAN, multihome 104-105 MAC binding 166 port forwarding, SSL VPN 329 PPTP server 301 reserved 111 secondary addresses DSL 521 LAN 104 WAN 85 static or permanent addresses DSL settings 511 requirements...bandwidth 162 increasing traffic overview 393-396 port forwarding 127 infected clients, identifying 466 infrastructure mode, wireless access point 534 initial configuration, Setup Wizard 42 initial connection 37 Installation Guide 37 installation, verifying 61 instant messaging applications blocked applications, recent 5 and top 5 437 blocking...
UTM9S User Manual
Page 621
...373 LLC (Logical Link Control) encapsulation 504 load balancing mode multiple WAN port models bandwidth capacity 390 configuring 81-82 DDNS 87 description 76 VPN IPSec 238 UTM9S with DSL configuring 517-519 DDNS 524 description 512 local area network. local user database 311, 354, 355 location, placement of 27-... Known PCs and Devices table 108-109 network database 106-107 port status, viewing 447 secondary IP addresses 104 security checks 147 settings, using the Setup Wizard 43 testing the LAN path 496 LAN LEDs 28-29, 493 LAN ports 14, 22-25 Layer 2 Tunneling Protocol (L2TP) server settings...
...373 LLC (Logical Link Control) encapsulation 504 load balancing mode multiple WAN port models bandwidth capacity 390 configuring 81-82 DDNS 87 description 76 VPN IPSec 238 UTM9S with DSL configuring 517-519 DDNS 524 description 512 local area network. local user database 311, 354, 355 location, placement of 27-... Known PCs and Devices table 108-109 network database 106-107 port status, viewing 447 secondary IP addresses 104 security checks 147 settings, using the Setup Wizard 43 testing the LAN path 496 LAN LEDs 28-29, 493 LAN ports 14, 22-25 Layer 2 Tunneling Protocol (L2TP) server settings...
UTM9S User Manual
Page 626
...Session Initiation Protocol) 151 size email messages 54, 181 FTP file or object 220 web file or object 56, 199 slots front panel (UTM9S) 26 status, viewing 448-449 SMTP (Simple Mail Transfer Protocol) action, infected email 54 antivirus settings 181 content filtering and blocking 183...Session Initiation Protocol (SIP) 151 session limits configuring 150 logging dropped packets 433 Setup Wizard, initial configuration 42 severities, syslog 426 SHA-1 IKE policies 267 ModeConfig 284 self-signed certificate requests 385 VPN policies 275 shared key, WEP 542 short preamble, radio 551 shutting down 489 ...
...Session Initiation Protocol) 151 size email messages 54, 181 FTP file or object 220 web file or object 56, 199 slots front panel (UTM9S) 26 status, viewing 448-449 SMTP (Simple Mail Transfer Protocol) action, infected email 54 antivirus settings 181 content filtering and blocking 183...Session Initiation Protocol (SIP) 151 session limits configuring 150 logging dropped packets 433 Setup Wizard, initial configuration 42 severities, syslog 426 SHA-1 IKE policies 267 ModeConfig 284 self-signed certificate requests 385 VPN policies 275 shared key, WEP 542 short preamble, radio 551 shutting down 489 ...
UTM9S User Manual
Page 627
...-based client 306 authentication 311, 355 cache control 309, 327 client IP address range and routes 316, 331-333 domain settings, using SSL VPN Wizard 310 encryption for LDAP 313, 357 FQDNs, port forwarding 324 logs 322, 426, 461-463 manual configuration steps 323 network resources 334 ... tabs (web management interface) 41 support online 499 technical 2 suspicious files, sending to NETGEAR 500 SYN flood 147 synchronization interval, DC agent 373 syslog server 426 system date and time settings, using the Setup Wizard 49, 412 details, viewing 447 log messages 583 logs 425, 460-462 reports 480...
...-based client 306 authentication 311, 355 cache control 309, 327 client IP address range and routes 316, 331-333 domain settings, using SSL VPN Wizard 310 encryption for LDAP 313, 357 FQDNs, port forwarding 324 logs 322, 426, 461-463 manual configuration steps 323 network resources 334 ... tabs (web management interface) 41 support online 499 technical 2 suspicious files, sending to NETGEAR 500 SYN flood 147 synchronization interval, DC agent 373 syslog server 426 system date and time settings, using the Setup Wizard 49, 412 details, viewing 447 log messages 583 logs 425, 460-462 reports 480...
UTM9S User Manual
Page 628
...sniffer 493 date and time settings 499 defaults 494 ISP connection 494 LEDs 492-493 NTP 499 remote management 400 remotely 499 testing your setup 497 time-out error 494 web management interface 493 trusted certificates 216, 382-383 trusted hosts, specifying 218-219 two-factor authentication. ProSecure...169 user name default 39 ReadyNAS server 416 user policies, precedence 336 user portal 321 User Portal Login link 346 user types 362 users active VPN users 451 administrative (admin) login 345 settings 397 anonymous 225, 362, 417 assigned groups 364 authenticated 224, 362 logging out 348 login ...
...sniffer 493 date and time settings 499 defaults 494 ISP connection 494 LEDs 492-493 NTP 499 remote management 400 remotely 499 testing your setup 497 time-out error 494 web management interface 493 trusted certificates 216, 382-383 trusted hosts, specifying 218-219 two-factor authentication. ProSecure...169 user name default 39 ReadyNAS server 416 user policies, precedence 336 user portal 321 User Portal Login link 346 user types 362 users active VPN users 451 administrative (admin) login 345 settings 397 anonymous 225, 362, 417 assigned groups 364 authenticated 224, 362 logging out 348 login ...
UTM9S User Manual
Page 630
... WAN LEDs 28-29, 493 WAN mode status, viewing 448 WAN ports 14, 22-25 WAN settings autodetecting 47, 69 using the Setup Wizard 55 web statistics 435 weight 601 weighted load balancing 82, 518 WEP (wired equivalent privacy) configuring 540-542 types of encryption 535...settings, configuring 531 advanced settings, configuring 549 statistics 444 wireless security 534-542 wireless specifications (UTM9S) 603 Wizards Setup Wizard 42 IPSec VPN. See SSL VPN Wizard. 630 web reports 477 web security settings, using the Setup Wizard 46 WAN status 70, 456 WAN traffic meter (or counter) 419 warning, SSL...
... WAN LEDs 28-29, 493 WAN mode status, viewing 448 WAN ports 14, 22-25 WAN settings autodetecting 47, 69 using the Setup Wizard 55 web statistics 435 weight 601 weighted load balancing 82, 518 WEP (wired equivalent privacy) configuring 540-542 types of encryption 535...settings, configuring 531 advanced settings, configuring 549 statistics 444 wireless security 534-542 wireless specifications (UTM9S) 603 Wizards Setup Wizard 42 IPSec VPN. See SSL VPN Wizard. 630 web reports 477 web security settings, using the Setup Wizard 46 WAN status 70, 456 WAN traffic meter (or counter) 419 warning, SSL...