|
|
Table of Contents
ProSafe Dual WAN Gigabit Firewall with SSL & IPsec VPN FVS336G Reference Manual
Conventions, Formats, and Scope
Dual WAN Ports for Increased Reliability or Outbound Load Balancing
Advanced VPN Support for Both IPsec and SSL
A Powerful, True Firewall with Content Filtering
Autosensing Ethernet Connections with Auto Uplink
Easy Installation and Management
Default IP Address, Login Name, and Password Location
Chapter 2 Connecting the FVS336G to the Internet
Understanding the Connection Steps
Logging into the VPN Firewall Router
Configuring the Internet Connections
Automatically Detecting and Connecting
Manually Configuring the Internet Connection
Configuring the WAN Mode (Required for Dual WAN)
Configuring Auto-Rollover Mode
Configuring Dynamic DNS (Optional)
Configuring the Advanced WAN Options (Optional)
Additional WAN Related Configuration
Using the VPN Firewall as a DHCP server
Configuring the LAN Setup Options
Managing Groups and Hosts (LAN Groups)
Viewing the LAN Groups Database
Changing Group Names in the LAN Groups Database
Configuring DHCP Address Reservation
Configuring Multi Home LAN IP Addresses
Configuring Routing Information Protocol (RIP)
Chapter 4 Firewall Protection and Content Filtering
About Firewall Protection and Content Filtering
Using Rules to Block or Allow Specific Kinds of Traffic
Outbound Rules (Service Blocking)
Inbound Rules (Port Forwarding)
Setting the Default Outbound Policy
Creating a LAN WAN Outbound Services Rule
Creating a LAN WAN Inbound Services Rule
LAN WAN Inbound Rule: Hosting A Local Public Web Server
LAN WAN Inbound Rule: Allowing Videoconference from Restricted Addresses
LAN WAN Inbound Rule: Setting Up One-to-One NAT Mapping
LAN WAN Inbound Rule: Specifying an Exposed Host
LAN WAN Outbound Rule: Blocking Instant Messenger
Setting Quality of Service (QoS) Priorities
Setting a Schedule to Block or Allow Specific Traffic
Setting Block Sites (Content Filtering)
E-Mail Notifications of Event Logs and Alerts
Chapter 5 Virtual Private Networking Using IPsec
Considerations for Dual WAN Port Systems
Configuring an IPsec VPN Connection using the VPN Wizard
Creating a VPN Tunnel to a Gateway
Creating a VPN Tunnel Connection to a VPN Client
Creating a VPN Client Connection: VPN Client to FVS336G
Manually Assigning IP Addresses to Remote Users (ModeConfig)
Configuring the ProSafe VPN Client for ModeConfig
Extended Authentication (XAUTH) Configuration
Configuring XAUTH for VPN Clients
Chapter 6 Virtual Private Networking Using SSL Connections
Understanding the Portal Options
Configuring Domains, Groups, and Users
Configuring Applications for Port Forwarding
Configuring the SSL VPN Client
Configuring the Client IP Address Range
Adding Routes for VPN Tunnel Clients
Replacing and Deleting Client Routes
Using Network Resource Objects to Simplify Policies
Configuring User, Group, and Global Policies
Chapter 7 Managing Users, Authentication, and Certificates
Adding Authentication Domains, Groups, and Users
Viewing and Loading CA Certificates
Viewing Active Self Certificates
Obtaining a Self Certificate from a Certificate Authority
Managing your Certificate Revocation List (CRL)
Chapter 8 Router and Network Management
Features That Increase Traffic
Using QoS to Shift the Traffic Mix
Changing Passwords and Administrator Settings
Enabling Remote Management Access
Settings Backup and Firmware Upgrade
Configuring Date and Time Service
Chapter 9 Monitoring System Performance
Activating Notification of Events and Alerts
Viewing Router Configuration and System Status
Monitoring the Status of WAN Ports
Viewing Port Triggering Status
Monitoring VPN Tunnel Connection Status
Troubleshooting the Web Configuration Interface
Troubleshooting the ISP Connection
Troubleshooting a TCP/IP Network Using a Ping Utility
Testing the LAN Path to Your VPN Firewall
Testing the Path from Your PC to a Remote Device
Restoring the Default Configuration and Password
Appendix A Default Settings and Technical Specifications
Appendix C Network Planning for Dual WAN Ports
What You Will Need to Do Before You Begin
Cabling and Computer Hardware Requirements
Computer Network Configuration Requirements
Internet Configuration Requirements
Where Do I Get the Internet Configuration Parameters?
Internet Connection Information Form
Overview of the Planning Process
Virtual Private Networks (VPNs)
The Roll-over Case for Firewalls With Dual WAN Ports
The Load Balancing Case for Firewalls With Dual WAN Ports
Inbound Traffic to Single WAN Port (Reference Case)
Inbound Traffic to Dual WAN Port Systems
Inbound Traffic: Dual WAN Ports for Improved Reliability
Inbound Traffic: Dual WAN Ports for Load Balancing
Virtual Private Networks (VPNs)
VPN Road Warrior (Client-to-Gateway)
VPN Road Warrior: Single Gateway WAN Port (Reference Case)
VPN Road Warrior: Dual Gateway WAN Ports for Improved Reliability
VPN Road Warrior: Dual Gateway WAN Ports for Load Balancing
VPN Gateway-to-Gateway: Single Gateway WAN Ports (Reference Case)
VPN Gateway-to-Gateway: Dual Gateway WAN Ports for Improved Reliability
VPN Gateway-to-Gateway: Dual Gateway WAN Ports for Load Balancing
VPN Telecommuter (Client-to-Gateway Through a NAT Router)
VPN Telecommuter: Single Gateway WAN Port (Reference Case)
VPN Telecommuter: Dual Gateway WAN Ports for Improved Reliability
|
NETGEAR, Inc. http://www.netgear.com |
|
|