Manuel d’utilisation NETGEAR ProSafe FVX538 FVX538 FVX538

222 pages 7.72 mb

Télécharger

Aller à la page of 222

Prev Next

Summary

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 1

August 2006 202-10062-04 v1.0 NETGEAR , Inc. 4500 Great America Parkway Santa Clara, CA 95054 USA ProSafe VPN Firewall 200 FVX538 Reference Manual ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 2

ii 1.0, August 20 06 © 2006 by NETGEAR, Inc. All rights reserved. T rademarks NETGEAR and the NETGEAR l ogo are registered trademarks and ProSaf e is a trademark of NETGEAR, Inc. Microsoft, W indows, and W indow s NT are registered trademar ks of Microsoft Corpo ration. Other brand and product names are registered tradem arks or trad emarks of the ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 3

1.0, August 20 06 iii Federal Of fice for T elecommuni cations Ap provals has been notified of the placing of this equipment on the market and has been granted the right to test the series for complianc e with the regulations. V olunt ary Control Council for Interfe rence (VCCI) St atement This equipment is in the secon d category (information equi ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 4

1.0, August 2006 iv Open SSL Copyright (c) 1998-2000 The OpenSSL Project. All rights reserved. Redistribution and use in source and bina ry forms, with or without modification, are permitte d provided that the follo wing conditions * are me t: 1. Redistributions of source co de must retain the above copyrigh t notice, this list of co nditions and t ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 5

1.0, August 20 06 v MD5 Copyright (C) 1990, RSA Data Se curity , Inc. All rights reserved. License to copy and u se this software is granted provided that it is id entified as the "RSA Data Security , Inc. MD5 Message-Digest Algo ri thm" in all material mentioning or referencing this software or this function. License is also gr anted to ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 6

1.0, August 2006 vi Product and Publication Det ails Model Number: FVX538 Publication Date: August 2006 Product Family: VPN Firewall Product Name: ProSafe VPN Firewall 200 Home or Business Prod uct: Business Language: Engl ish Publication Part Numb er: 202-10062-04 Publication V ersion Number 1.0 ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 7

vii v1.0, August 2006 Content s About This Manual Conventions, Formats and Scope ................ ............ ................. ................ ................ ...... xiii How to Use This Manual ........ ................ ................ ................ ................. ............ ............. xiv How to Print this Manual ........... ...... ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 8

viii v1.0, Augus t 2006 Programming the T r affic Meter (if Desired) ..... ................ ............. ................ ............ 2-7 Configuring the W AN Mode (Required for Dual W AN) .......... .... ............. ... ... ... ... .......... 2-10 Setting Up Auto-Rollover Mode .... ...... ....... ...... ... ....... ...... ....... ...... ...... ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 9

ix v1.0, August 2006 Inbound Rules Examples ... ................ .......... ...... ............. ................. ............ .......... 4-16 LAN W AN Inbound Rule: Hosting A Local P ublic Web Server ..... ................... 4-16 LAN W AN Inbound Rule: Allowing Videocon fe rence from Restricted Addresses 4-17 LAN W AN or DMZ W AN Inbound Rule: S ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 10

x v1.0, Augus t 2006 Configuring the VPN Client .......... ... ... .... ... ... ... ... .... ... ............. ... ... .... ... ... ... ... .... ... ... 5-22 T e sting the Connection .............. ................ ............. ................ ............. ................ ... 5-26 Certificate Authorities ..... .... ......... ................. . ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 11

xi v1.0, August 2006 Router Upgrade .................. ................ ................ ............. ................ ................ 6-15 Setting the T i me Zone ........ ... .... ... ... ... .... ... ... ... ............. ... .... ... ... ... .... ... ... ... ............. 6-16 Monitoring the Router ..... .... ... ............. ... ... .... .. ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 12

xii v1.0, Augus t 2006 Internet Configuration Requir ements ........... ................ ............. ................ ............. . C-3 Where Do I Get the Internet Configuration Parameters? .... ................ ................ .... C-4 Internet Connection Informat ion Form ............... ............. ................. ................ ..... ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 13

xiii v1.0, August 2006 About This Manual The NETGEAR ® Pr oSafe™ VPN Fir ewall 200 describes how to install, configure and troubleshoot the ProSafe VPN Firewall 200. The info rmation in this manual is intended for readers with intermediate comput er and Internet skills. Conventions, Format s and Scope The conventions, formats, and scope of this ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 14

ProSafe VPN Firewall 200 FVX538 Reference Ma nual xiv v1.0, Augus t 2006 • Scope. This manual is written for the VPN firewall according to the follo wing specifications: For more information about networ k, Internet, firewall, and VPN technologies, see the links to the NETGEAR website in Appendix B, “Related Documents .” How to Use This Manua ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 15

ProSafe VPN Firewall 200 FVX538 Reference Manual xv v1.0, August 2006 • Click the PDF of This Chapter link at the top left of any page in the chapter you want to print. The PDF version of the chapter you were viewing opens in a browser window . • Click the print icon in the upper left of your browser window . – Printing a PDF version of the C ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 16

ProSafe VPN Firewall 200 FVX538 Reference Ma nual xvi v1.0, Augus t 2006 ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 17

Introduction 1-1 v1.0, August 2006 Chapter 1 Introduction The ProSafe VPN Firewall 200 wi th eight 10/100 ports and one 1 /100/1000 port conn ects your local area network (LAN) to the In ternet through an external access device such as a cable mo dem or DSL modem. The FVX538 is a complete se curity solution that protects your network from attacks a ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 18

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 1-2 Introduction v1.0, Augus t 2006 • Login capability . • Front panel LEDs for easy mo nitoring of status and activity . • Flash memory for firmware upgrade. • One U Rack mountable. Dual W AN Port s for Increased Re liability or Outbound Load Balancing The FVX538 has two broadb an d W AN po ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 19

ProSafe VPN Firewall 200 FVX538 Reference Manual Introduction 1-3 v1.0, August 2006 • Keyword Filtering. W ith its URL keyword filtering feature, the FVX538 prevents objectionable content from reaching your PCs. The firewall allows you to control access to Internet content by screening for keywords within W eb addresses. Y ou can configure the fi ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 20

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 1-4 Introduction v1.0, Augus t 2006 • IP Address Sharing by NA T . The VPN firewall allows several networked PCs to share an Internet account using only a single IP addr ess, which may be statically or dynamically assigned by your In ternet service provider (ISP). This technique, kn own as NA T , ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 21

ProSafe VPN Firewall 200 FVX538 Reference Manual Introduction 1-5 v1.0, August 2006 • Browser -Based Management. Browser-based configuration a llows you to easily configure your firewall from almost any t ype of personal comput er , such as W indows, Macintosh, or Linux. A user -friendly Setup W i zard is provide d and online help documen tation ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 22

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 1-6 Introduction v1.0, Augus t 2006 • 19-inch rack mounting ha rdware and rubber feet. • Category 5 (Cat5) Ethernet ca ble. • Installation Guide, FVX538 Pr oSafe VPN Fir ewall 200 • Resour ce CD , including: – Application Notes and ot her helpful information. – ProSafe VPN Client Softwa ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 23

ProSafe VPN Firewall 200 FVX538 Reference Manual Introduction 1-7 v1.0, August 2006 3. W AN Ports and LEDs T wo RJ -45 W AN ports N-way automatic speed negoti ation, Auto MDI/MDIX. Link/Act LED On (Green) Blinking (Green) Off The W AN port has de tected a link with a co nne cted Ethernet device. Data is being transmitted or received by the W AN por ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 24

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 1-8 Introduction v1.0, Augus t 2006 Router Rear Panel The rear panel of the ProSafe VPN Firewall 200 ( Figu re 1-2 ) contains the On/Of f switch and AC power connection. V i ewed from left to right, the rear panel contains the following elements: 1. AC power in 2. On/Off switch 6. Co nsole Port DB9 ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 25

ProSafe VPN Firewall 200 FVX538 Reference Manual Introduction 1-9 v1.0, August 2006 Rack Mounting Hardware The FVX538 can be mounted either on a desktop (using included rubber feet) or in a 19-inch rack (using the included rack moun ting hardware illustrated in Figure 1-3 ). The Router’ s IP Address, Login Name, and Password Check the label on th ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 26

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 1-10 Introduction v1.0, Augus t 2006 Default Log In Settings T o log in to the FVX5 38 once it is connected: 1. Open a W eb brows er . 2. Enter http://192.168.1 .1 as the URL. 3. Once the login screen displays ( Figure 1-5 ), enter the foll owing information: • admin for User Name • pa s s w o r ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 27

ProSafe VPN Firewall 200 FVX538 Reference Manual Introduction 1-11 v1.0, August 2006 ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 28

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 1-12 Introduction v1.0, Augus t 2006 ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 29

Connecting the FV X538 to the Internet 2-1 v1.0, August 2006 Chapter 2 Connecting the FVX538 to the Internet T ypically , six steps are required to complete th e basic connection of your firewall. Setting up VPN tunnels are covered in Chapter 5, “V irtual Priv ate Networking .” 1. Connect the fir ewall physi cally to your network . Connect the ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 30

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 2-2 Connecting the FVX538 to the Intern et v1.0, Augus t 2006 2. When prompted, en ter admin for the firewall user name and password for the firewall password, both in lower case letters. (The firewa ll user name and password are not the s ame as any user name or password you may use to log in to y ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 31

ProSafe VPN Firewall 200 FVX538 Reference Manual Connecting th e FVX53 8 to the Internet 2-3 v1.0, August 2006 2. Click Auto Detect at the bottom of the screen to automatic ally detect the type of Internet connection provided by your IS P . Auto Detect will probe for different connection methods and suggest one that your ISP will most likel y su pp ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 32

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 2-4 Connecting the FVX538 to the Intern et v1.0, Augus t 2006 If Auto Detect does not find a connection, you will be prompted to check the physical connection between your firewall and the cable or DSL line or to check your Router ’ s MAC address (see “Setting the Router ’ s MAC Addre ss” on ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 33

ProSafe VPN Firewall 200 FVX538 Reference Manual Connecting th e FVX53 8 to the Internet 2-5 v1.0, August 2006 The configure the WA N 2 I S P settings: 1. Repeat the above steps to set up the paramete rs for W AN2 ISP . S tart by selecting the W AN2 ISP Settings tab. Next click Auto Detect on the W AN2 ISP Settings screen and then confirm the conne ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 34

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 2-6 Connecting the FVX538 to the Intern et v1.0, Augus t 2006 – Account Name (also known as Host Name or Syst em Name): Enter the valid account name for the PP TP connection (usually your e mail “ID” assigned by your ISP). Some ISPs require entering yo ur full email address here. – Domain Na ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 35

ProSafe VPN Firewall 200 FVX538 Reference Manual Connecting th e FVX53 8 to the Internet 2-7 v1.0, August 2006 4. If your ISP has not assigned any Domain Name Servers (DNS) addresse s, select the Get dynamically from ISP radio box. If your ISP has a ssigned DNS addresses, select the Use these DNS Servers radio box. Ensure that you fill in valid DNS ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 36

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 2-8 Connecting the FVX538 to the Intern et v1.0, Augus t 2006 2. Click Apply to apply the settings. Click Reset to return to the previous settings. 3. Select the W AN2 T raffic Meter tab and repeat steps 1 through 3 to set the T raffic Meter the the W AN2 port. Figure 2-3 ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 37

ProSafe VPN Firewall 200 FVX538 Reference Manual Connecting th e FVX53 8 to the Internet 2-9 v1.0, August 2006 T able 2-2. T raffic Meter Sett ings Parameter Description Enable T raffic Meter Check this if you wish to record the volume of Internet traffic passing through the Router's W AN1 or W AN2 port. W AN1 or W AN2 can be selected by click ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 38

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 2-10 Connecting the FVX538 to the Intern et v1.0, Augus t 2006 Configuring the W AN Mode (Required for Dual W AN) The dual W AN ports of the ProSafe VPN Firewall 20 0 can be configured on a mutually exclusive basis for either auto-rollover (fo r increased system reliability) or load balancing (for m ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 39

ProSafe VPN Firewall 200 FVX538 Reference Manual Connectin g the FVX5 3 8 to the In te rnet 2-11 v1.0, August 2006 If your ISP has allocated many IP addresses to you, and you have assigned one of these addresses to each PC, you can choose Classical Rou ting. Or , you can use Classical Routing for routing private IP addresses with in a campus enviro ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 40

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 2-12 Connecting the FVX538 to the Intern et v1.0, Augus t 2006 • Ping to this IP addr ess – Enter a public IP address that will not reject the Ping request or will not consider the traf fic abuse. Querie s are sent to this server through the W AN interface being monitored. 5. Enter a T est Perio ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 41

ProSafe VPN Firewall 200 FVX538 Reference Manual Connectin g the FVX5 3 8 to the In te rnet 2-13 v1.0, August 2006 Setting Up Load Balancing T o use multiple ISP links simultane ously , select Load Balancing. In Load Balancing mode, both links will carry data for the protocols that are boun d to them. For example, if the HTTP protocol is bound to W ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 42

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 2-14 Connecting the FVX538 to the Intern et v1.0, Augus t 2006 a. Service – From the pull-down m enu, select the de sired Services or applications to be covered by this rule. If the desired service or application does not app ear in the list, you must define it using the Services menu (see “Serv ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 43

ProSafe VPN Firewall 200 FVX538 Reference Manual Connectin g the FVX5 3 8 to the In te rnet 2-15 v1.0, August 2006 3. Modify the parameters fo r the protocol binding service you selected . 4. Click Apply . The modified rule will be enabled and appear in the Protocol Binding table. 5. Click Reset to return to the previo usly configured settings. Con ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 44

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 2-16 Connecting the FVX538 to the Intern et v1.0, Augus t 2006 are provided for your convenience on the Dynamic DNS Configuration screen.) The VPN firewall firmware includes software that notifies dynamic DNS servers of changes in the W AN IP address, so that the services running on this network can ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 45

ProSafe VPN Firewall 200 FVX538 Reference Manual Connectin g the FVX5 3 8 to the In te rnet 2-17 v1.0, August 2006 2. Check the Dynamic DNS Service radio box you wa nt to enable. The fields corresponding to the selection you have chosen w ill be highlighted. Each DNS service provider requires its own parameters. 3. Access the W eb site of one of th ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 46

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 2-18 Connecting the FVX538 to the Intern et v1.0, Augus t 2006 d. If your dynamic DNS provider allows the use of wild cards in resolving your URL, you may check the Use wildcards radio box to activate this feature. For example, the wildcard feature will cause *.yourhost.dyndns.o rg to be aliased to ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 47

ProSafe VPN Firewall 200 FVX538 Reference Manual Connectin g the FVX5 3 8 to the In te rnet 2-19 v1.0, August 2006 • MTU Size – The normal MTU (Max imum T ransmit Unit) value for most Ethernet networks is 1500 Bytes, or 14 92 Bytes for PPPoE connectio ns. For so me ISPs you may have to reduce the MTU. But this is rarely required, and should not ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 48

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 2-20 Connecting the FVX538 to the Intern et v1.0, Augus t 2006 ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 49

LAN Configuration 3-1 v1.0, August 2006 Chapter 3 LAN Configuration This chapter describes how to configure the advan ced LAN features of your ProSafe VPN Firewall 200. These features can be found by selecting Network Config uratio n from the p rimary menu an d LAN Setup from the submenu of the browser interface. Using the Firewall as a DHCP server ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 50

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 3-2 LAN Configuration v1.0, Augus t 2006 Configuring the LAN Setup Options The LAN IP Setup menu allows conf iguratio n of LAN IP se rvices such as DHCP and allows you to configure a secondary or “multi-home” LAN IP setup in the LAN. The default values are suitable for most users and situations. ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 51

ProSafe VPN Firewall 200 FVX538 Reference Manual LAN Configuration 3-3 v1.0, August 2006 4. Check the Enable DHCP Server radio button. By default, the router will functi on as a DHCP (Dynamic Host Configuration Protoco l) serv er , providing TCP/IP configuration for all computers connected to the router 's LAN. If another device on your networ ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 52

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 3-4 LAN Configuration v1.0, Augus t 2006 6. Click Reset to discard any changes and revert to the previous configuration. Configuring Multi Home LAN IPs If you have comput ers o n you r LAN u si ng dif ferent IP address ranges (for example, 172. 16.2.0 or 10.0.0.0), then you can add “alia ses” to ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 53

ProSafe VPN Firewall 200 FVX538 Reference Manual LAN Configuration 3-5 v1.0, August 2006 . T o make changes to the selected entry: 1. Click Edit in the Action column adjacent to the selected entry . The Edit Secondary LAN IP Setup screen will display . 2. Modify the IP Addr ess and Subnet Mask field s and cli ck Apply . Figure 3-2 Note: Additional ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 54

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 3-6 LAN Configuration v1.0, Augus t 2006 3. Click Reset to discard any changes and reve rt to the previous settings. Managing Group s and Host s (LAN Group s) The Known PCs and Devices table on th e Groups and Ho sts screen contains a list of all known PCs and network devices, as well as hosts, that ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 55

ProSafe VPN Firewall 200 FVX538 Reference Manual LAN Configuration 3-7 v1.0, August 2006 – Y ou can assign PCs to Groups and apply rest rictions to each Group using the Firewall Rules screen (see “Using Rules to Block or Allow Spec ific Kinds of T raffic” on page 4-1 ). – Y ou can also select the Groups to be covered by th e Block Sites fea ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 56

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 3-8 LAN Configuration v1.0, Augus t 2006 4. Enter the IP Address tha t this comput er or device is assigned in the IP Address field. If the IP Address T ype is Reserved (DHCP Client), th e router will reserve the IP address for the associated MAC address. 5. Enter the MAC Address of the comp uter ? ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 57

ProSafe VPN Firewall 200 FVX538 Reference Manual LAN Configuration 3-9 v1.0, August 2006 4. Click Apply to save your new settings. The modi fied record wil l appear in the Know PCs and Devices table. T o edit the names of any of the eight available groups: 1. Click Edit Gr oup Names at the upper right of the Group s and Ho sts screen. The Network D ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 58

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 3-10 LAN Configuration v1.0, Augus t 2006 T o reserve an IP address, use the Groups and Hosts screen under the Network Configuration menu , LAN Groups submenu (see “Creating the Network Database ” on page 3-6 ). Configuring and Enabling the DMZ Port The De-Militarized Zone (DMZ) is a network wh ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 59

ProSafe VPN Firewall 200 FVX538 Reference Manual LAN Configuration 3-11 v1.0, August 2006 4. If desired, Enable the DHCP Server (Dynamic Host Configuration Protocol), which will provide TCP/IP configuration for all computers connecte d to the router ’ s DMZ network. Then configure the following items: a. S tarting IP Address – This box specifie ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 60

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 3-12 LAN Configuration v1.0, Augus t 2006 S t atic Routes S tatic Routes provide additional routing info rmation to your firewall. Under normal circumstances, the firewall has adequate routing info rmation after it has be en configured for Internet access, and you do not ne ed to configure additiona ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 61

ProSafe VPN Firewall 200 FVX538 Reference Manual LAN Configuration 3-13 v1.0, August 2006 4. Select Active to make this route ef fective. 5. Select Private if you want to limit access to the LAN only . The static route will not be advertised in RIP . 6. Enter the Destination IP Address to the host or network to w hich the route leads. 7. Enter the ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 62

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 3-14 LAN Configuration v1.0, Augus t 2006 • Out Only – The router broadcasts its routing ta ble periodically but does not acc ept RIP information from other routers. • In Only – The router accepts RIP information fro m other routers, but does not broadcast its routing table. 3. From the RIP ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 63

ProSafe VPN Firewall 200 FVX538 Reference Manual LAN Configuration 3-15 v1.0, August 2006 4. Authentication for RIP2B/2M r equired? If you selected RIP-2B or RIP-2M, check the YES radio box to enable the feature, and input the First K ey Parameters and Second Key Parameters MD-5 keys to authenti cate between routers. 5. Click Reset to discard any c ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 64

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 3-16 LAN Configuration v1.0, Augus t 2006 will not be allowed web access unless they have the T rend Micro OfficeScan client installed and updated with the latest virus definitions. T o enable T rend Micro: 1. Select Security from th e main menu and T rend Micr o from the submenu. The Tr end Micro s ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 65

ProSafe VPN Firewall 200 FVX538 Reference Manual LAN Configuration 3-17 v1.0, August 2006 3. Click Apply to su bmit your changes. Note: The Office Scan Server must also appear in the exclusion list! Note: Follow the instructions in the T rend Micro documentation to complete the installation and configuration of the T rend Micro Of ficeScan Server . ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 66

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 3-18 LAN Configuration v1.0, Augus t 2006 ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 67

Firewall Protection and Co nten t Filtering 4-1 v1.0, August 2006 Chapter 4 Firewall Protection and Content Filtering This chapter describes how to use the content filtering features of the ProSafe VPN Firewall 200 to protect your network. These features can be found by selecting Security from the main menu and selecting Block Sites from the submen ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 68

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 4-2 Firewall Protection and Content Filtering v1.0, Augus t 2006 A firewall has two default rules, one for inbound traf fic and one for outbound. The default rules of the FVX538 are: • Inbound : Block all access from outside except re sponses to requests from the LAN side. • Outbound : Allow all ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 69

ProSafe VPN Firewall 200 FVX538 Reference Manual Firewall Protection and Content Filter ing 4-3 v1.0, August 2006 T able 4-1. Outbound Rules Item Description Service Name Select the desired Service or appli cat ion to be covered by this rule. If the desire d service or application does not appear in the list, you must define it using the Services m ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 70

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 4-4 Firewall Protection and Content Filtering v1.0, Augus t 2006 Inbound Rules (Port Forwarding) Because the FVX538 uses Netw ork Address T ranslation (NA T), your netw ork presents only one IP address to the Internet an d outs id e us e r s cann ot directly address any of your local computers. Howe ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 71

ProSafe VPN Firewall 200 FVX538 Reference Manual Firewall Protection and Content Filter ing 4-5 v1.0, August 2006 T able 4-2. Inbound Rules Item Description Services Select the desired Service or appli cati on to be covered by this rule. If the desired service or application does not appear in the list, you must define it using the Services menu (s ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 72

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 4-6 Firewall Protection and Content Filtering v1.0, Augus t 2006 Remember that allowing inbound services opens holes in your VPN firewall. Only enable those ports that are necess ary fo r your network. It is also advisable to turn on the server application security and invoke the user password or pr ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 73

ProSafe VPN Firewall 200 FVX538 Reference Manual Firewall Protection and Content Filter ing 4-7 v1.0, August 2006 Order of Precedence for Rules As you define new rules, they are added to the tabl es in the Rules menu as the last item in the list, as shown in Figure 4-1 : For any traffic attempting to pass through the fire wall, the packet informa t ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 74

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 4-8 Firewall Protection and Content Filtering v1.0, Augus t 2006 2. Change the Default Outbound Policy by selecting Block Always from the dro p-down menu and click Apply .. T o make changes to an existing outb ound or inbound service rule: 1. In the Action column adjacent to the rule click: • Edit ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 75

ProSafe VPN Firewall 200 FVX538 Reference Manual Firewall Protection and Content Filter ing 4-9 v1.0, August 2006 LAN W AN Outbound Services Rules Y ou may define rules that will spec ify exceptions to the default rules. By adding custom rules, you can block or allow access based on the service or application, source or destination IP addresses, an ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 76

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 4-10 Firewall Protection and Content Filterin g v1.0, Augus t 2006 LAN W AN Inbound Services Rules This Inbound Services Rules tabl e lists all existing rules for in boun d traffic. If you have not defined any rules, no rules will be listed. By default, all inbound tr affic is blocked. Remember that ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 77

ProSafe VPN Firewall 200 FVX538 Reference Manual Firewall Protection and Content Filter ing 4-11 v1.0, August 2006 out from the DMZ to the Internet (Outbound) or coming in from the Internet to the DMZ (Inbound). The default outbound policy can be chang ed to block all outbound traffic and enable only specific services to pass through the router by ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 78

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 4-12 Firewall Protection and Content Filterin g v1.0, Augus t 2006 T o change the Default Outbound Policy: 1. Select Security from th e main menu, Firewall Rules from the submenu and then select the DMZ W AN Rules tab. The DMZ W AN Rules screen w ill display . 2. Click Add under th e Outbound Servic ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 79

ProSafe VPN Firewall 200 FVX538 Reference Manual Firewall Protection and Content Filter ing 4-13 v1.0, August 2006 T o make changes to an existing outb ound or inbound LAN DMZ serv ice rule: 1. In the Action column adjacent to the rule click: • Edit – to make any changes to the rule defi nition. The Outbound Service screen will display containi ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 80

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 4-14 Firewall Protection and Content Filterin g v1.0, Augus t 2006 2. Complete the Outboun d Service screen, and save the data (see “Outbound Rules (Service Blocking)” on page 4-2 ). 3. Click Reset to cancel your settings and retu rn to the previous settings. 4. Click Apply to save your changes ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 81

ProSafe VPN Firewall 200 FVX538 Reference Manual Firewall Protection and Content Filter ing 4-15 v1.0, August 2006 • LAN Security Ch ecks . A UDP flood is a form of denial of service attack that can be initiated when one machine sends a large nu mber of UDP packets to random ports on a remote host. As a result, the distant host will (1) check for ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 82

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 4-16 Firewall Protection and Content Filterin g v1.0, Augus t 2006 3. Click Apply to save your settings. Inbound Rules Examples LAN W AN Inbound Rule: Hosting A Local Publ ic Web Server If you host a public W eb server on your local network, you can define a rule to allow inbound W eb (HTTP) request ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 83

ProSafe VPN Firewall 200 FVX538 Reference Manual Firewall Protection and Content Filter ing 4-17 v1.0, August 2006 LAN W AN Inbound Rule: Allowing V ideoconference from Restricted Addresses If you want to allow incoming vi deoconferencing to be initiated from a restricted range of outside IP addresses, such as from a branch of fice, you ca n create ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 84

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 4-18 Firewall Protection and Content Filterin g v1.0, Augus t 2006 • W eb server PC on the firewall’ s LAN – LAN IP address: 192.168.1.2 – DMZ IP Address: 19 2.1 68.10.2 – Access to W eb server is (simulated) public IP address: 10.1.0.52 T o configure the FVX538 fo r additional IP addresse ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 85

ProSafe VPN Firewall 200 FVX538 Reference Manual Firewall Protection and Content Filter ing 4-19 v1.0, August 2006 6. In the Send to LAN Server field, enter th e local IP address of your W eb server PC. 7. From the Public Destination IP Address pull down menu, choose Other Public IP Address. 8. Enter one of your public Internet addresses that will ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 86

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 4-20 Firewall Protection and Content Filterin g v1.0, Augus t 2006 2. Place the rule below a ll other inbound rules. Outbound Rules Example Outbound rules let you prevent users from using applications such as Instant Messenger , Real Audio or other non-essential sites. LAN W AN Outbound Rule: Blocki ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 87

ProSafe VPN Firewall 200 FVX538 Reference Manual Firewall Protection and Content Filter ing 4-21 v1.0, August 2006 Adding Customized Services Services are functions performed by server computer s at the request of clie nt computers. Y ou can configure up to 125 custom services. For example, W eb servers serve W eb pages, time servers serve time and ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 88

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 4-22 Firewall Protection and Content Filterin g v1.0, Augus t 2006 T o add a customized serv ice: 1. Select Security from the main menu and Services from the submenu. The Services screen will display . 2. In the Add Custom Service table, enter a descriptive name for the service (this is for your con ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 89

ProSafe VPN Firewall 200 FVX538 Reference Manual Firewall Protection and Content Filter ing 4-23 v1.0, August 2006 T o edit the parameters of a service: 1. In the Custom Services T able , click the Edit icon adjacent to the serv ice you want to edit. The Edit Service screen will display . 2. Modify the parameters you wish to change. 3. Click Reset ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 90

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 4-24 Firewall Protection and Content Filterin g v1.0, Augus t 2006 Setting a Schedule to Block or Allow S pecific T raffic If you enabled Content Filtering in the Block Sites menu, or if you defined an outbound or inbound rule to use a schedule, you can set up a schedu le for when blocking occurs or ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 91

ProSafe VPN Firewall 200 FVX538 Reference Manual Firewall Protection and Content Filter ing 4-25 v1.0, August 2006 Setting Block Sites (Content Filtering) If you want to restrict internal LAN users from a ccess to certain sites on the Internet, you can use the VPN firewall’ s Content Filtering and W eb Compon ents filtering. By default , these fe ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 92

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 4-26 Firewall Protection and Content Filterin g v1.0, Augus t 2006 5. Build your list of b locked Keywor ds or Domain Names in the Blocked Keyword fields. After each entry , click Add. T he Keyword or Domain name will be added to the Blocked Keywords table. (Y ou can also edit an entry by clicking E ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 93

ProSafe VPN Firewall 200 FVX538 Reference Manual Firewall Protection and Content Filter ing 4-27 v1.0, August 2006 Enabling Source MAC Filtering Source MAC Filter allows you to filter out tr af fic coming from certain known machines or devices. • By default, the source MAC address filter is disabled. All the traf fic received from PCs with any MA ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 94

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 4-28 Firewall Protection and Content Filterin g v1.0, Augus t 2006 3. Build your list of Source MAC A ddresses to be block by entering the first MAC address in the MAC Address field in the form xx:xx:xx:xx:xx:xx wh ere x is a numeric (0 to 9) or an alphabet between and a and f (inclusi ve), for exam ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 95

ProSafe VPN Firewall 200 FVX538 Reference Manual Firewall Protection and Content Filter ing 4-29 v1.0, August 2006 • After a PC has finished using a Port T riggering application, there is a T ime-out period before the application can be used by anoth er PC. This is required because this Router cannot be sure when the application has terminated. T ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 96

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 4-30 Firewall Protection and Content Filterin g v1.0, Augus t 2006 3. From the Protocol pull-down menu, select either TCP or UDP protocol. 4. In the Outgoing (T rigger) Port Range fields: a. Enter the St a r t P o r t range (1 - 65534). b. Enter the End Port range (1 - 65534). 5. In the Incoming (Re ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 97

ProSafe VPN Firewall 200 FVX538 Reference Manual Firewall Protection and Content Filter ing 4-31 v1.0, August 2006 6. Click Add. The Port T riggering Rule will be added to the Port T riggering Rules table. T o edit or modify a rule: 1. Click Ed it in the Action column opposite th e rule you wish to edit. The Ed it Port T riggering Rule screen will ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 98

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 4-32 Firewall Protection and Content Filterin g v1.0, Augus t 2006 Y o u must have e-mail notification enabled to re cei ve the logs in an e-mail message. If you don't have e-mail notification enabled, you can view the logs on the Logs screen (see Figu re 4-22 on page 4- 34 ). Selecting all eve ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 99

ProSafe VPN Firewall 200 FVX538 Reference Manual Firewall Protection and Content Filter ing 4-33 v1.0, August 2006 3. Enter a Schedule for sending the logs. From the Unit pull-down menu, select: Never , Hourly , Daily , or W eekly . Then fill in the Day and T ime fields that correspond to your selection. 4. In the Security Logs section, check the n ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 100

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 4-34 Firewall Protection and Content Filterin g v1.0, Augus t 2006 T o view the Firewall logs: 1. Click on the Vi e w L o g icon opposite the Fir ewall Logs & E-mail tab. The Logs screen will display . 2. If the E-mail Logs options as been enabled, you can send a copy of the log by clicking send ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 101

ProSafe VPN Firewall 200 FVX538 Reference Manual Firewall Protection and Content Filter ing 4-35 v1.0, August 2006 Administrator Ti p s Consider the following operational items: 1. As an option, yo u can enable remote manageme nt if you have to ma nage distant sites from a central location (see “Enabling Remote Manage ment Access” on page 6-10 ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 102

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 4-36 Firewall Protection and Content Filterin g v1.0, Augus t 2006 ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 103

Virtual Private Networking 5-1 v1.0, August 2006 Chapter 5 V irtual Private Networking This chapter describes how to use the virtual private networking (VPN) features of the VPN firewall. VPN tunnels provide secure, encrypted communications between your local network and a remote network or comp uter . Dual W AN Port Systems The dual W AN ports in ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 104

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 5-2 Virtual Private Networking v1.0, Augus t 2006 Figure 5-1 shows the W AN Mode setup screen for Auto-Rollover Mo de using W AN port 1. It also shows the Protocol Bindings screen that displays if Load Ba lancing is selected. (When Load Balancing is selected, no W AN Failur e Detection Method fields ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 105

ProSafe VPN Firewall 200 FVX538 Reference Manual Virtual Private Networking 5-3 v1.0, August 2006 • Mandatory when the W AN ports are in load ba lancing mode and the IP addresses are dynamic ( Figure 5-3 on page 5-3 ) • Optional when the W AN ports are in loa d balancing mode if the IP addresses are static ( Figure 5-3 on page 5-3 ) See “Conf ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 106

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 5-4 Virtual Private Networking v1.0, Augus t 2006 determine the IPSec keys and VPN policies it set s up. It also will set the parameters for the network connection: Security Association, tr af fic selectors, authentic ation algorithm, and encryption. The parameters used by the VPN wizard are based o ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 107

ProSafe VPN Firewall 200 FVX538 Reference Manual Virtual Private Networking 5-5 v1.0, August 2006 7. Enter the Remote LAN IP Address and Subnet Mask of the remote gateway . The information entered here mu st match the Local LAN IP and Subnet Mask of the remote gateway; otherwise the secure tunnel will fail to connect.The IP address range used on th ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 108

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 5-6 Virtual Private Networking v1.0, Augus t 2006 Y o u can also view the status of your IKE Policie s by clicking the IKE Policies tab. The IKE Policies screen will di splay . Then view or edit the parameters of the “Of fsite” policy by clicking Edit in the Action column adjacent to the policy ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 109

ProSafe VPN Firewall 200 FVX538 Reference Manual Virtual Private Networking 5-7 v1.0, August 2006 Creating a VPN T unnel Co nnection to a VPN Client Y ou can set up multiple Gateway VPN tunnel po licies through the VPN W i zard. Multiple remote VPN Client policies can also be set up throug h th e VPN W izard by changing the default End Point Inform ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 110

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 5-8 Virtual Private Networking v1.0, Augus t 2006 3. Select a Connection Name . Enter an appropriate name for th e connection. This name is not supplied to the remote VPN Endpoint. It is used to help you manage th e VPN settings. 4. Enter a Pre-shar ed Ke y . The key must be entered b oth here and o ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 111

ProSafe VPN Firewall 200 FVX538 Reference Manual Virtual Private Networking 5-9 v1.0, August 2006 8. Click Apply . The VPN Policies screen will display showing that the Cli ent policy “home” has been added and enabled. Click Edit in the Action column adjacent to the “home” policy to view the “home” policy parameters. It should not be ne ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 112

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 5-10 Virtual Private Networking v1.0, Augus t 2006 . VPN T unnel Policies When you use the VPN W izard to set up a VPN t unnel, both a VPN Policy and an IKE Policy are established and populated in both Policy T ables. The name you selected as the VPN T unnel connection name during W izard setup iden ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 113

ProSafe VPN Firewall 200 FVX538 Reference Manual Virtual Private Networking 5-11 v1.0, August 2006 • “Manual” generate d VPN p olicies cannot use the IKE negotiation protocol. Managing IKE Policies IKE Policies are activated when: 1. The VPN Policy Selector dete rmines that some traf fic matche s an existing VPN Policy . If the VPN policy is ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 114

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 5-12 Virtual Private Networking v1.0, Augus t 2006 • Remote ID . The IKE/ISAKMP identify of the remote VPN Gateway . (The remote VPN must have this value as their “Local ID”.) • Encr . Encryption Algorithm used for the IKE SA. The default setti ng using the VPN W izard is 3DES. (This setting ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 115

ProSafe VPN Firewall 200 FVX538 Reference Manual Virtual Private Networking 5-13 v1.0, August 2006 3. The VPN tunnel is created according to the parameters in the SA (Security Association). 4. The remote VPN Endpoint must have a matc hing SA, or it will refuse the connection. VPN Policy T able Only one Client Policy may configured at a time (noted ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 116

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 5-14 Virtual Private Networking v1.0, Augus t 2006 • Tx (KBytes) . The amount of data tr ansmitted over this SA. • Tx (Packets). The number of packets transmitted over this SA. • St a t e . The current state of the SA. Phase 1 is “Authentic ation phase” and Phase 2 is “Key Exchange phase ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 117

ProSafe VPN Firewall 200 FVX538 Reference Manual Virtual Private Networking 5-15 v1.0, August 2006 6. Select the local W AN interface to bind this connec tion to the W AN port for the VPN tunnel. 7. Enter the W AN IP address of the remote FVS3 38 and then enter the W AN IP address of the local FVX538. (Both local and remo te ends must define the ad ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 118

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 5-16 Virtual Private Networking v1.0, Augus t 2006 T o view the VP N Policy parameters: 1. Click Ed it in the Action column adjacent to the “to_fvs” policy . The Edit VPN Polic y screen will display . (It should not be necessary to make any changes. 2. V iew the IKE Policy statistics associ ated ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 119

ProSafe VPN Firewall 200 FVX538 Reference Manual Virtual Private Networking 5-17 v1.0, August 2006 T o view the IKE Policy Conf igu rati on parameters: 1. Select the IKE Policies tab. The IKE Policies table will display . Figure 5-12 ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 120

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 5-18 Virtual Private Networking v1.0, Augus t 2006 2. Select “to_FVS” and click Edit . It shou ld not be necessary to make any changes) Figure 5-13 Note: When XAUTH i s enabled as an Edge Device, in coming VPN connections a re authenticated against the FV X538 User Database first; then, if confi ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 121

ProSafe VPN Firewall 200 FVX538 Reference Manual Virtual Private Networking 5-19 v1.0, August 2006 Configuring the FVS338 T o configure the FVS338 VPN W izard: 1. Select VPN from the main menu and VPN W izard from the submenu. The VPN W izard screen will display . 2. Check the Gateway radio box for the type of VPN tunnel conn ection. 3. Give the ne ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 122

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 5-20 Virtual Private Networking v1.0, Augus t 2006 8. Click Apply to create the “to_fvx” IKE and VPN policies. The VPN Policies screen will display . T esting the Connection T o test the VPN gateway tunnel: 1. From a PC on either LAN firewall, try to pi ng a PC on the LAN of the other firewall. ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 123

ProSafe VPN Firewall 200 FVX538 Reference Manual Virtual Private Networking 5-21 v1.0, August 2006 5. Check either the W AN1 or W AN 2 radio box to select the W AN interface tunnel. 6. Enter he remote W AN’ s IP Address or Intern et Name and then enter the local W AN’ s IP Address or Internet Name. In this example, we are using their FQDNs. (Bo ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 124

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 5-22 Virtual Private Networking v1.0, Augus t 2006 Configuring the VPN Client From a PC with the Netgear Prosafe VPN Client in stalled, you can configure a VPN client policy to connect to the FVX538. T o configure your VPN client: 1. Right-click on the VPN client icon in your W indows toolbar and se ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 125

ProSafe VPN Firewall 200 FVX538 Reference Manual Virtual Private Networking 5-23 v1.0, August 2006 . 7. In the left frame, click My Identity . 8. From the Select Certificate pull-down menu, select None . 9. From the ID T ype pull-down menu, select Domain Name. The value entered under Domain Name will be of the form “< name >< XY >.fvx ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 126

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 5-24 Virtual Private Networking v1.0, Augus t 2006 . 5. Before leaving the My Identity menu, click Pr e-Shar ed Key . 6. Click En ter K ey and then enter yo ur presh ared key , and click OK . This key will be shared by all users of the FVX538 policy “home”. 7. In the left frame, select Security ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 127

ProSafe VPN Firewall 200 FVX538 Reference Manual Virtual Private Networking 5-25 v1.0, August 2006 8. For the Phase 1 Negotiation Mode , check the Aggr essive Mode radio box. 9. PFS should be disabled, and Enable R eplay Detection should be enabled. 10. In the left frame, expand Authentication (Phase 1) and select Prop osal 1 . The Proposal 1 field ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 128

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 5-26 Virtual Private Networking v1.0, Augus t 2006 1 1. In the left frame, expand Key Exchange (Phase 2) and select Propos al 1 . The fields in this proposal should also mirror those in the following figure. No changes should be necessary . 12. In the upper left of th e window , c lick the di sk ico ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 129

ProSafe VPN Firewall 200 FVX538 Reference Manual Virtual Private Networking 5-27 v1.0, August 2006 2. For addit ional status and troubleshooting informa tion, right-click on the VPN cli ent icon Logs and Connection Status sc reens in the FVX538. Certificate Authorities Digital Self Certificates are used to authenticat e the identity of us ers and s ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 130

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 5-28 Virtual Private Networking v1.0, Augus t 2006 The Active Self Certificates table shows the Cer tificates issued to you by the various CAs (Certification Authorities), and availa ble for use. For each Certificate, the following data is listed: • Name . The name you used to id entify this Certi ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 131

ProSafe VPN Firewall 200 FVX538 Reference Manual Virtual Private Networking 5-29 v1.0, August 2006 . • Domain Name – If you have a Dom ain name, you can enter it here. Oth erwise, you should leave this field blank. • E-mail Addr ess – Enter your e-mail address in this field. 4. Click Generate . A new certificate request is created and added ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 132

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 5-30 Virtual Private Networking v1.0, Augus t 2006 6. Copy the contents of the Data to supply to CA text box i nto a file, in cluding all of the data contained in “----BEGIN CER TIFICA TE REQUEST ---” and “---END CER TIFICA TE REQUEST ---”Click Done. Y ou will return to the Certificate scree ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 133

ProSafe VPN Firewall 200 FVX538 Reference Manual Virtual Private Networking 5-31 v1.0, August 2006 • CA Identify – Th e offi cial name of the CA which issued this CRL. • Last Update – The date when this CRL was released. • Next Update – The date when the next CRL will be released. T o upload a Certificate Identify to the CRL: 1. From th ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 134

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 5-32 Virtual Private Networking v1.0, Augus t 2006 • IPSec Host. If you want authentication by the remo te gateway , enter a User Name and Password to be associated with this IKE policy . If this option is chosen, the remote gateway must specify the user name and password used for authenti cating ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 135

ProSafe VPN Firewall 200 FVX538 Reference Manual Virtual Private Networking 5-33 v1.0, August 2006 – RADIUS–CHAP or RADIUS–P AP (depending on the authentication mode accepted by the RADIUS server) to add a RADIUS server . If RADIUS–P AP is selected, the router will first check in the User Database to see if the user cred entials are availab ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 136

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 5-34 Virtual Private Networking v1.0, Augus t 2006 User Dat abase Configuration The User Database screen is used to configure an d administer users when Extended Authentication is enabled as an Edge Device. Whet her or not you us e an external RADIUS server , you may w ant some use rs to be a uthent ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 137

ProSafe VPN Firewall 200 FVX538 Reference Manual Virtual Private Networking 5-35 v1.0, August 2006 T o edit the user name or password: 1. Click Edit opposite the user ’ s name. The Edit User screen will display . 2. Make the required changes to the User Name or Password and click Apply to save your settings or Reset to cancel your changes and re ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 138

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 5-36 Virtual Private Networking v1.0, Augus t 2006 . 3. Enter the Primary RADIUS Server IP address . 4. Enter a Secr et Phrase . T ransactions between the client and the RADIUS server are authenticated using a shared secret phrase, so the same Secret Phrase mu st be configured on both client and ser ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 139

ProSafe VPN Firewall 200 FVX538 Reference Manual Virtual Private Networking 5-37 v1.0, August 2006 9. Click Reset to cancel any chan ges and revert to the previous settings. 10. Click Apply to save the settings. Manually Assigning IP Addresses to Remote Users (ModeConfig) T o simply the process of connecti ng remote VPN clients to the FVX538, the M ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 140

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 5-38 Virtual Private Networking v1.0, Augus t 2006 Configuring the VPN Firewall T wo menus must be configured—the Mode Config menu and the IKE Policies menu. T o configure the Mode Config menu: 1. From the main menu, select VPN , and then select Mode Config from the submenu. The Mode Config screen ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 141

ProSafe VPN Firewall 200 FVX538 Reference Manual Virtual Private Networking 5-39 v1.0, August 2006 T o configure an IKE Policy: 1. From the main menu, select VPN . The IKE Policies screen will display showing the curr ent policies in the List of IKE Policies Ta b l e . 2. Click Add to configure a new IKE Policy . The Add IKE Policy screen will disp ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 142

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 5-40 Virtual Private Networking v1.0, Augus t 2006 4. In the General section: a. Enter a description name in the Policy Name Field such as “salesperson”. This name will be used as part of the remote identif ier in the VPN client configuration. b. Set Direction/T ype to Responder . c. The Exchang ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 143

ProSafe VPN Firewall 200 FVX538 Reference Manual Virtual Private Networking 5-41 v1.0, August 2006 10. Click Apply . The new policy will appear in the IKE Pol icies T able (a sample policy is shown below) Configuring the ProSafe VP N Client for ModeConfig From a client PC running NETGEAR ProSafe VP N Client software, configure the remote VPN client ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 144

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 5-42 Virtual Private Networking v1.0, Augus t 2006 b. From the ID T ype pull-down menu, select IP Subnet. c. Enter the IP Subnet and Mask of the VPN firewall (this is the LAN network IP address of the gateway). d. Check the Connect using radio button and sel ect Secure Gateway T unnel from the pull- ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 145

ProSafe VPN Firewall 200 FVX538 Reference Manual Virtual Private Networking 5-43 v1.0, August 2006 d. Under V irtual Adapter pull-down menu, sel ect Preferred. The Internal Network IP Address should be 0.0.0.0. e. Select your Internet Interface ad apter from the Name pull-down menu. 3. On the left-side of the menu, select Security Policy . a. Under ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 146

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 5-44 Virtual Private Networking v1.0, Augus t 2006 5. Click on Key Exchange (Phase 2) on the left-sid e of the menu and select Proposal 1. Enter the values to match your configuration of the VPN firewall ModeConfig Record menu. (The SA Lifetime can be longer , such as 8 hours (28800 se conds)). 6. C ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 147

ProSafe VPN Firewall 200 FVX538 Reference Manual Virtual Private Networking 5-45 v1.0, August 2006 T o test the connection: 1. Right-click on the VPN client icon in th e W indows toolbar and select Connect. The connection policy you configured will appear; in this case “M y Connectionsm odecfg_test”. 2. Click on the connection. W ithin 30 seco ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 148

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 5-46 Virtual Private Networking v1.0, Augus t 2006 ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 149

Router and Network Ma nagement 6-1 v1.0, August 2006 Chapter 6 Router and Network Management This chapter describes how to use the network man ag ement features of your ProSa fe VPN Firewall 200. These features can be found by clic king on the appropriate heading in the Main Menu of the browser interface. The ProSafe VPN Firewall 200 offers many to ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 150

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 6-2 Router and Network Man a ge m en t v1.0, Augus t 2006 Using the dual W AN ports in load balancing mo de increases the bandwidth capacity of the W AN side of the VPN firewall. But there is no backup in case one of the W AN ports fail. In such an event and with one exception, the traf fic that wou ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 151

ProSafe VPN Firewall 200 FVX538 Reference Manual Router and Network Ma nagement 6-3 v1.0, August 2006 – Groups: The rule is ap plied to a Group (see “Managing Groups and Hosts (LAN Groups)” on page 3-6 to assign PCs to a Group using Network Database). • W AN Users – These settings determine whic h Internet locations are co vered by the ru ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 152

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 6-4 Router and Network Man a ge m en t v1.0, Augus t 2006 Schedule. If you have set firewall rules on the Rules screen, you can configure three dif ferent schedules (i.e., schedule 1, schedule 2, and schedu le 3) fo r when a rule is to be applied. Once a schedule is configured, it affects a ll Rules ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 153

ProSafe VPN Firewall 200 FVX538 Reference Manual Router and Network Ma nagement 6-5 v1.0, August 2006 VPN Firewall Features That Increase T raffic Features that tend to increase WAN-side loading are as follows: • Port forwarding • Port triggering • DMZ port • Exposed hos ts •V P N t u n n e l s Port Forwarding The firewall always blocks D ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 154

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 6-6 Router and Network Man a ge m en t v1.0, Augus t 2006 • Enable DNS Proxy – Enable thi s to allow incoming DNS queries. • Enable S tealth Mode – Enable this to set the fire wall to operate in stealth mode. As you define your firewall r ules, you can furt her refine their applic ation acco ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 155

ProSafe VPN Firewall 200 FVX538 Reference Manual Router and Network Ma nagement 6-7 v1.0, August 2006 • The remote system receives the PCs request a nd responds using the di fferent port numbers that you have no w op ened. • This Router matches the re sponse to the previous request and forwards the response to the PC. W ithout Port T riggering, ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 156

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 6-8 Router and Network Man a ge m en t v1.0, Augus t 2006 The QoS priority settings conform to t he IEEE 802 .1D-1998 (formerly 802.1p) standard for class of service tag. Y o u will not change the W AN bandwidth used by changing any QoS prior ity settings. But you wi ll change the mix of traf fic th ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 157

ProSafe VPN Firewall 200 FVX538 Reference Manual Router and Network Ma nagement 6-9 v1.0, August 2006 6. Click Apply to save this setti ng.. Note: If you make the administrato r login time-out value too large, you will have to wait a long time before you are able to log back into th e router if your previous login was disrupted (i.e., y ou did not ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 158

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 6-10 Router and Network Management v1.0, Augus t 2006 Enabling Remote Management Access Using the Remote Manage ment page, you can allo w an administrator on the In ternet to configure, upgrade, and check th e statu s of your VPN firewa ll. Y ou must be logged in locally to enable remote management ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 159

ProSafe VPN Firewall 200 FVX538 Reference Manual Router and Network M anageme nt 6-11 v1.0, August 2006 b. T o allow access from a range of IP addresses on the Internet, select IP address range. Enter a beginning and end ing IP address to defi ne the allowed range. c. T o allow access from a single IP address on the Internet, select Only this PC. E ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 160

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 6-12 Router and Network Management v1.0, Augus t 2006 The SNMP Configuration table list s the SNMP configurations by: • IP Address : The IP address of the SNMP manager . • Port : The trap port of the configuration. • Community : The trap community stri ng of the configuration. T o create a new ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 161

ProSafe VPN Firewall 200 FVX538 Reference Manual Router and Network M anageme nt 6-13 v1.0, August 2006 The SNMP System Info link displays the VPN firewall identif ication information available to t he SNMP Manager: System Contact, Sy stem Location, and S ystem name. T o modify the SNMP Syst em contact information: 1. Click the SNMP System Info lin ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 162

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 6-14 Router and Network Management v1.0, Augus t 2006 • Upgrade the VPN firewall firmwa re from a saved file on your hard disk to use a dif ferent firmware version. Backup and Restore Settings T o backup and restore settings: 1. Select Administration from the main menu and Settings Backup & Up ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 163

ProSafe VPN Firewall 200 FVX538 Reference Manual Router and Network M anageme nt 6-15 v1.0, August 2006 Router Upgrade Y o u can install a different version of the VPN firewall firmware from the Settings Back up and Firmwar e Upgrad e screen. T o view the current version of the firmware that yo ur VPN fire wall is running, select Monitoring from th ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 164

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 6-16 Router and Network Management v1.0, Augus t 2006 T o upgrade router software: 1. Select Administration from the main menu and Settings Backup and Firmwar e Upgrade from the submenu. The Settings Backup and Firmwar e Upgrade screen will display . 2. Click Br owse in the Router Upgr ade section. ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 165

ProSafe VPN Firewall 200 FVX538 Reference Manual Router and Network M anageme nt 6-17 v1.0, August 2006 • Use Custo m NTP Ser v er s : If you prefer to use a particular NTP server , enable this instead and enter the name or IP address of an NTP Server in the Server 1 N ame/IP Address field. If required, you can also enter the address of another N ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 166

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 6-18 Router and Network Management v1.0, Augus t 2006 • Internet T raffic S tatistics – Displays statistics on Internet Traf fic via the W AN port. If you have not enabled the T raf fic Meter , these statistics are not available. • T raffic by Protocol – Click this button to display Inte rne ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 167

ProSafe VPN Firewall 200 FVX538 Reference Manual Router and Network M anageme nt 6-19 v1.0, August 2006 Setting Login Failures and Att acks Notification Figure 6-8 shows the Firewall Logs & E-mail screen that is invoked by selecting Monitoring from the main menu and selecting Fir ewall Logs & E-mail from the submenu. Y o u can send a System ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 168

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 6-20 Router and Network Management v1.0, Augus t 2006 Monitoring Att ached Devices The Gr oups and Hosts menu contains a table of all IP devices that the VPN firewall has discovered on the local network. Select Network Configuration from the main menu and LAN Groups from the submenu. The Gr oups and ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 169

ProSafe VPN Firewall 200 FVX538 Reference Manual Router and Network M anageme nt 6-21 v1.0, August 2006 . The network database is an au tomatically-maintained list of al l known PCs and ne two r k devices. PCs and devices become known by the following methods: • DHCP Clien t Requ es ts – By default, the DHCP server in this Router is enabled, an ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 170

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 6-22 Router and Network Management v1.0, Augus t 2006 V iewing Port T riggering St atus Y o u can view the status of Port T riggering by selecting Security from th e main menu and Port T riggering from the submenu. When the Port T riggering screen display , click the St a t u s link. MAC Address The ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 171

ProSafe VPN Firewall 200 FVX538 Reference Manual Router and Network M anageme nt 6-23 v1.0, August 2006 V iewing Router Configuration and System S tat us The Router S tatus screen provides status and usage information. Select Monitoring from the main menu and Router S tatus from the submenu. The Router S tatus screen will display . Figure 6-1 1 T a ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 172

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 6-24 Router and Network Management v1.0, Augus t 2006 Monitoring W AN Port s St atus Y o u can monitor the status of both of th e W AN connections, the Dynamic DNS Server connections, and the DHCP Se rver connections. Select Network Configuration from the main menu and W AN Settings from the submenu ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 173

ProSafe VPN Firewall 200 FVX538 Reference Manual Router and Network M anageme nt 6-25 v1.0, August 2006 . Monitoring VPN T unnel Connection S tatus Y o u can view the status of the VPN tunnels by selecting VPN from the main menu and Connection S tatus from the submenu. The IPSec Connection S tatus screen will display . Figure 6-12 Figure 6-13 ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 174

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 6-26 Router and Network Management v1.0, Augus t 2006 VPN Logs The VPN Logs screen gives log details for recent VPN activity . Select Monitoring from the main menu and VPN Logs from the submenu to view the VPN Logs . Y ou can refresh the log display to view the most recent entries, or clear th e log ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 175

ProSafe VPN Firewall 200 FVX538 Reference Manual Router and Network M anageme nt 6-27 v1.0, August 2006 DHCP Log Y o u can view the DHCP log from the LAN Setup screen. Select Network Configuration from the main menu and LAN Setup from the submenu. When the LAN Setup screen displays, click the DHCP Log link. Performing Diagnostics Y ou can perform d ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 176

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 6-28 Router and Network Management v1.0, Augus t 2006 Figure 6-16 T able 6-5. Diagnostics Item Description Ping or T race an IP address Ping – Used to send a ping packet requ est to a specified IP address—most often, to test a connection. If the req uest times out (n o reply is received), it usu ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 177

ProSafe VPN Firewall 200 FVX538 Reference Manual Router and Network M anageme nt 6-29 v1.0, August 2006 Display the Routing T able This operation will display the internal rout ing table. This information is use d, most often, by T echnical Support. Reboot the Router Used to perform a remote reboot (re start). Y ou can use this if the Router seems ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 178

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 6-30 Router and Network Management v1.0, Augus t 2006 ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 179

Troubleshooting 7-1 v1.0, August 2006 Chapter 7 T roubleshooting This chapter provides troubleshooting tips and information for your ProS afe VPN Firewall 200. After each problem description, instructions ar e provided to help you diagnose and sol ve the problem. Basic Functions After you turn on power to th e firewall, the following seque nce of e ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 180

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 7-2 Troubleshooting v1.0, Augus t 2006 LEDs Never T urn Off When the firewall is turned on, the LEDs turns on for about 10 sec onds and then turn off. If all the LEDs stay on, there is a fault within the firewall. If all LEDs are still on one minute after power up: • Cycle the power to see if the ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 181

ProSafe VPN Firewall 200 FVX538 Reference Manual Troubleshooting 7- 3 v1.0, August 2006 • Make sure your PC’ s IP address is on the sam e subnet as the firewall. If you are using the recommended addressing sch em e, yo ur PC’ s address should be in the range of 192.168.0 .2 to 192.168.0 .254. • If your firewall’ s IP address ha s been cha ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 182

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 7-4 Troubleshooting v1.0, Augus t 2006 T roubleshooting the ISP Connection If your firewall is unable to a ccess the Internet, you should first determine whether the firewall is able to obtain a W AN IP address from the ISP . Un less you have been assigned a static IP address, your firewall must req ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 183

ProSafe VPN Firewall 200 FVX538 Reference Manual Troubleshooting 7- 5 v1.0, August 2006 – Configu re y our firewall to spoof your PC’ s MAC ad dre ss. This can be done in th e Basic Settings menu. Refer to “Manually Configuring Y our Internet Connection” on page 2-5 . If your firewall can obtain an IP address, but your PC is unable to load ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 184

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 7-6 Troubleshooting v1.0, Augus t 2006 • W rong ph ysical connections – Make sure the LAN port LED is on. If the LED is off, fol low the instructions in “LAN or Internet Port LEDs Not On” on page 7-2 . – Check that the corresponding Lin k LEDs are on for your network interface card and for ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 185

ProSafe VPN Firewall 200 FVX538 Reference Manual Troubleshooting 7- 7 v1.0, August 2006 Restoring the Default Co nfiguration and Password This section explains how to restore the fact ory default configuratio n settings, changing the firewall’ s administration password to password and the IP address to 192.168.1.1. Y o u can erase the current con ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 186

ProSafe VPN Firewall 200 FVX538 Reference Ma nual 7-8 Troubleshooting v1.0, Augus t 2006 ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 187

Default Settings and Technical Specifications A-1 v1.0, August 2006 Appendix A Default Settings and T echnical S pecifications Y o u can use the reset button located on the front of your device to reset all settings to their factory defaults. This is called a hard reset. • T o perform a hard reset, push and hold the reset button for approximately ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 188

ProSafe VPN Firewall 200 FVX538 Reference Ma nual A-2 Default Settings and Technical Specifications v1.0, Augus t 2006 T echnical specifications for the ProSafe VPN Fi rewall 200 are listed in t he following table. T ime Zone GMT T ime Zone Adjusted for Dayligh t Saving Ti m e Disabl ed SNMP Disabled Remote Manage ment Disabled Firewall Inbound (co ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 189

ProSafe VPN Firewall 200 FVX538 Reference Manual Default Settings and Technical Specifications A-3 v1.0, August 2006 Environmental S pecification s Operating temperature: 0 ° to 40 ° C (32º to 104º F ) Operating humidity: 90% maximum relati ve humidi ty , noncondensing Electromagnetic Emissions Meets requirements of: FCC Part 15 Class B VCCI Cl ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 190

ProSafe VPN Firewall 200 FVX538 Reference Ma nual A-4 Default Settings and Technical Specifications v1.0, Augus t 2006 ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 191

Related Documents B-1 v1.0, August 2006 Appendix B Related Document s This appendix provides links to reference documents yo u can use to gain a more com plete understanding of the techno logies used in your NETGE AR product. Document Link Internet Networki ng and TCP/IP Addressing: h ttp://documentat ion.netgear .com/r eference/enu/tcpip/index.htm ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 192

ProSafe VPN Firewall 200 FVX538 Reference Ma nual B-2 Related Documents v1.0, Augus t 2006 ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 193

Network Planning for Dual WAN Por ts C-1 v1.0, August 2006 Appendix C Network Planning for Dual W AN Port s This appendix describes the factor s to consider when p lanning a network using a firewall that h as dual W AN po rts. What Y ou W i ll Need to Do Before Y ou Begin The ProSafe VPN Firewall 200 is a powerful and vers atile soluti on for your ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 194

ProSafe VPN Firewall 200 FVX538 Reference Ma nual C-2 Network Plann ing for Dual WAN Ports v1.0, Augus t 2006 – Y ou can also add your ow n service protocols to the list (see “Services-Based Rules” on page 4-2 for information on how to do this). 3. Set up your acco unts a. Have active Internet servic es such a s that provided by cable or DSL ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 195

ProSafe VPN Firewall 200 FVX538 Reference Manual Network Planning for Dual WAN Por ts C-3 v1.0, August 2006 • There are a variety of W AN options you can choose when the factory default settings are not applicable to your inst allation. These include enabling a W AN port to respond to a ping and setting MTU size, port speed, and upload bandwidth. ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 196

ProSafe VPN Firewall 200 FVX538 Reference Ma nual C-4 Network Plann ing for Dual WAN Ports v1.0, Augus t 2006 • Fixed IP Address which is also known as S tatic IP Address Where Do I Get the Internet Configuration Parameters? There are several ways you can gather the required Internet connection information. • Y our ISPs provide all the inform a ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 197

ProSafe VPN Firewall 200 FVX538 Reference Manual Network Planning for Dual WAN Por ts C-5 v1.0, August 2006 Internet Connection Information Form Print this page. Fill in the configuration parameters from your Internet Service Provider (ISP). ISP Login Name: The login name and password are case sensitive and must be ente red exactly as given by your ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 198

ProSafe VPN Firewall 200 FVX538 Reference Ma nual C-6 Network Plann ing for Dual WAN Ports v1.0, Augus t 2006 Overview of the Planning Process The areas that require planning when using a firewall that has dual W AN ports include: • Inbound traffic (e.g., port forwar ding , po rt triggering, DMZ port) • V irtual private networks (VPNs) The two ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 199

ProSafe VPN Firewall 200 FVX538 Reference Manual Network Planning for Dual WAN Por ts C-7 v1.0, August 2006 The Roll-over Case for Firewalls With Dual W AN Port s Rollover ( Figure C-2 ) for the dual W AN port case is differ ent from the single gateway W AN port case when specifying the IP address. Only one W A N port is active at a time and when i ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 200

ProSafe VPN Firewall 200 FVX538 Reference Ma nual C-8 Network Plann ing for Dual WAN Ports v1.0, Augus t 2006 Inbound T raffic Incoming traf fic from the Internet is normally discarded by the firewall unless the traf fic is a response to one of your local computers or a servi ce that you have configured in the Inboun d Rules menu. Instead of discar ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 201

ProSafe VPN Firewall 200 FVX538 Reference Manual Network Planning for Dual WAN Por ts C-9 v1.0, August 2006 Inbound T raffic: Dual W AN Ports for Imp roved Reliability In the dual W AN port case with rollover ( Figure C-5 ), the W AN’ s IP address will always change at rollover . A fully-qualified domain name must be u sed that toggles be tween t ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 202

ProSafe VPN Firewall 200 FVX538 Reference Ma nual C-10 Network Planning for Dual WAN Ports v1.0, Augus t 2006 V irtual Private Networks (VPNs) When implementing virtual private network (VPN) tunnels, a mechanis m must be used for determining the IP addresses of the tunnel end po ints. The addressing of the firewall’ s dual W AN port depends on th ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 203

ProSafe VPN Firewall 200 FVX538 Reference Manual Network Planning for Dual WAN Por ts C-11 v1.0, August 2006 • Load Balancing Case for Dual Gateway W AN Ports Load balancing ( Fi gure C-8 ) for the dual gateway W AN port case is the same as the single gateway W AN port case when specifying the IP ad dress of the VPN tunnel end point. Each IP addr ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 204

ProSafe VPN Firewall 200 FVX538 Reference Ma nual C-12 Network Planning for Dual WAN Ports v1.0, Augus t 2006 VPN Road W arrior: Single Gateway W AN Port (Reference Case) In the case of the single W AN port on the gateway VPN firewall ( Figure C-9 ), the remote PC client initiates the VPN tunnel because the IP address of th e remote PC client is no ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 205

ProSafe VPN Firewall 200 FVX538 Reference Manual Network Planning for Dual WAN Por ts C-13 v1.0, August 2006 The IP addresses of the gateway W AN ports can be either fixed or dynamic, but a fully-qualified domain name must always be use d because the ac tive W AN port could be either W AN1 or W AN2 (i.e., the IP address of the active W AN port is n ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 206

ProSafe VPN Firewall 200 FVX538 Reference Ma nual C-14 Network Planning for Dual WAN Ports v1.0, Augus t 2006 The IP addresses of the gateway W AN ports can be either fixed or dynamic. If an IP address is dynamic, a fully-qu alified domain name m ust be used. If an IP address is fixed, a fully-qualified domain name is optional. VPN Gateway-to-Gatew ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 207

ProSafe VPN Firewall 200 FVX538 Reference Manual Network Planning for Dual WAN Por ts C-15 v1.0, August 2006 The IP address of the gateway W AN ports can be either fixed or dynamic. If an IP address is dynamic, a fully-qu alified domain name m ust be used. If an IP address is fixed, a fully-qualified domain name is optional. VPN Gateway-to-Gateway: ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 208

ProSafe VPN Firewall 200 FVX538 Reference Ma nual C-16 Network Planning for Dual WAN Ports v1.0, Augus t 2006 The IP addresses of the gateway W AN ports can be either fixed or dynamic, but a fully-qualified domain nam e must always be used beca use the active W AN ports could be eith er W AN_A1, W AN_A2, W AN_B1, or W AN_B2 (i.e., the IP addr ess o ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 209

ProSafe VPN Firewall 200 FVX538 Reference Manual Network Planning for Dual WAN Por ts C-17 v1.0, August 2006 VPN Gateway-to-Gateway: Dual Gateway W AN Ports for Loa d Balancing In the case of the dual W AN ports on the gateway VPN fire wall ( Figure C-16 ), either of the gateway W A N ports at one end can be programmed in advance to initiate the VP ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 210

ProSafe VPN Firewall 200 FVX538 Reference Ma nual C-18 Network Planning for Dual WAN Ports v1.0, Augus t 2006 VPN T elecommuter: Single Gateway W AN Port (Reference Case) In the case of the single W AN port on the gate way VPN firewall ( Fi gure C-17 ), the remote PC client at the NA T router initiates the VPN tunnel because the IP address of the r ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 211

ProSafe VPN Firewall 200 FVX538 Reference Manual Network Planning for Dual WAN Por ts C-19 v1.0, August 2006 The IP addresses of the gateway W AN ports can be either fixed or dynamic, but a fully-qualified domain name must always be use d because the ac tive W AN port could be either W AN1 or W AN2 (i.e., the IP address of the active W AN port is n ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 212

ProSafe VPN Firewall 200 FVX538 Reference Ma nual C-20 Network Planning for Dual WAN Ports v1.0, Augus t 2006 VPN T elecommuter: Dual Gateway W AN Port s for Load Balancing In the case of the dual W AN ports on the gateway VPN fire wall ( Figure C-20 ), the remote PC client initiates the VPN tunnel with the appropri ate gateway W AN port (i.e., por ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 213

Index-1 v1.0, August 2006 Index A access remote management 6-10 Active Self Certifica te s 5-27 Add DMZ W AN Outbound Services screen 4-12 Add LAN DMZ Inbound Service screen 4-14 Add LAN DMZ Outbound Service screen 4-13 Add LAN W AN Inbound Service 4-10 Add LAN W AN Outbound Service screen 4-9 Add Mode Config Record screen 5-38 Add Protocol Binding ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 214

ProSafe VPN Firewall 200 FVX538 Reference Ma nual Index-2 v1.0, Augus t 2006 Content Filt eri ng 4- 1 about 4- 25 Block Sites 4-25 enabling 4- 25 firewall protection, about 4-1 content filter ing 1-2 , 4-1 crossover cable 1-3 , 7-2 Customized Service editing 4-23 customized service adding 4-22 Customized Services adding 4-2 , 4-21 D Date setting 6- ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 215

ProSafe VPN Firewall 200 FVX538 Reference Manual Index-3 v1.0, August 2006 about protection 1-2 Dual W AN configuration of 2-10 Dual W AN Port inbound traffic C-8 load balancing, inbound traffic C-9 Dual W AN Port systems VPN T unnel addresses 5-1 Dual W AN Ports features of 1-2 network planning C-1 Dual W AN ports Auto-Rollover , configuration of ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 216

ProSafe VPN Firewall 200 FVX538 Reference Ma nual Index-4 v1.0, Augus t 2006 editing 3-9 Groups and Hosts screen 3-7 , 3-9 , 3-10 groups, managing 3-6 H hardware requirements C-3 Hosting A Local Public W eb Server example of 4-16 hosts, managing 3-6 I Iego.net 2-15 IGP 3-13 IKE Policies management of 5-1 1 IKE Polici es screen 5-9 IKE Policy about ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 217

ProSafe VPN Firewall 200 FVX538 Reference Manual Index-5 v1.0, August 2006 L L2TP 4-15 LAN configuration 3-1 using LAN IP setup optio ns 3-2 LAN DMZ Inbound Services adding rule 4-14 LAN DMZ Outbound Services adding rule 4-13 LAN DMZ Rules 4-12 LAN DMZ Rules scree n 4- 12 LAN DMZ service rule modifying 4-13 LAN Security Chec ks 4-15 LAN Setup scree ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 218

ProSafe VPN Firewall 200 FVX538 Reference Ma nual Index-6 v1.0, Augus t 2006 network configuration requirements C-3 Network Database about 3- 6 advantages of 3-6 fields 3- 7 Network Database Group Names screen 3-9 network planning Dual W AN Ports C-1 Network T ime Protocol. See NTP . newsgroup 4-25 NTP 6-16 troubleshooting 7-7 NTP Servers custom 6- ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 219

ProSafe VPN Firewall 200 FVX538 Reference Manual Index-7 v1.0, August 2006 priority definitions 4-23 shifting traf fic mix 6-7 SIP 2.0 support 1-1 Quality of Service . See QoS Quality of Service . See Qos. R rack mounting 1-9 rack mounting hardware 1-9 RADIUS Server configuring 5-35 RADIUS-CHAP 5-31 , 5-33 AUTH, using with 5-32 RADIUS-P AP 5-31 XAU ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 220

ProSafe VPN Firewall 200 FVX538 Reference Ma nual Index-8 v1.0, Augus t 2006 Add Protocol Binding 2-14 Service Based Rules 4-2 Service Blocking reducing traffic 6-2 service blocking 4-2 Outbound Rules 4-2 port filteri ng 4-2 service numbers common protocols 4-21 Services sc reen 4-21 , 4-22 Setting Up One-to-One NA T Mapping example of 4-17 Setting ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 221

ProSafe VPN Firewall 200 FVX538 Reference Manual Index-9 v1.0, August 2006 definitions 2-9 T rend Micro enabling 3- 15 Office Scan Server 3-16 Offic eS c an cl ient, exclusion list 3-16 requirements for use 3-15 T rend Micro integration 1-4 T rend Micro screen 3-16 T rend Micro security 1-4 troubleshooting 7-1 browsers 7-3 configuration setti ngs, ...
NETGEAR ProSafe FVX538 FVX538 FVX538 - page 222

ProSafe VPN Firewall 200 FVX538 Reference Ma nual Index-10 v1.0, Augus t 2006 VPNs C-6 , C-10 about C- 10 creating a VPN Ga teway connection 5-14 gateway-to-gateway C-14 , C-15 , C-17 road warrior C-1 1 , C-12 , C-13 telec ommuter C-18 , C-20 viewing VPN tunnel status 6-25 W WA N configuring Advanced options 2-18 configuring W AN Mode 2-10 W AN Fai ...

Fabricant NETGEAR Catégorie Network Card

Les documents que nous recevons du fabricant de l'appareilNETGEAR ProSafe FVX538 FVX538 FVX538 peuvent être divisés en plusieurs groupes. Ceux-ci sont, entre autres:
- dessins techniques NETGEAR
- manuels d’utilisations ProSafe FVX538 FVX538 FVX538
- fiches produit NETGEAR
- dépliants
- ou étiquettes-énergie NETGEAR ProSafe FVX538 FVX538 FVX538
Tous sont importants, mais les informations les plus importantes du point de vue de l'utilisation de l'appareil se trouvent dans le manuel d’utilisation NETGEAR ProSafe FVX538 FVX538 FVX538.

Un groupe de documents appelé manuels d’utilisation est également divisé en types plus spécifiques, tels que: Manuels d’installation NETGEAR ProSafe FVX538 FVX538 FVX538, manuels d’entretien, brefs manuels ou manuels de l’utilisateur NETGEAR ProSafe FVX538 FVX538 FVX538. Selon vos besoins, vous devriez chercher le document dont vous avez besoin. Sur notre site, vous pouvez voir le manuel le plus populaire d’utilisation du produit NETGEAR ProSafe FVX538 FVX538 FVX538.

Manuels d’utilsiation similaires

NETGEAR RangeMax Next Wireless Notebook Adapter WN511T WN511T

2 pages
NETGEAR WNDA3100-100NAS

58 pages
NETGEAR AX741

1 pages
NETGEAR WG111U Double 108 Mbps Wireless USB 2.0 Adapter WG111U WG111U

2 pages

Manuel d’utilisation complet de l’appareil NETGEAR ProSafe FVX538 FVX538 FVX538, quelle devrait-elle être?
Le manuel d’utilisation, également appelé le mode d’emploi, ou tout simplement le manuel, est un document technique destiné à aider à utiliser NETGEAR ProSafe FVX538 FVX538 FVX538 par les utilisateurs. Des manuels sont généralement écrits par un rédacteur technique, mais dans un langage accessible à tous les utilisateurs NETGEAR ProSafe FVX538 FVX538 FVX538.

Le manuel d’utilisation complet NETGEAR, devrait inclure plusieurs éléments de base. Certains d'entre eux sont moins importants, tels que: la couverture / page de titre ou pages d'auteur. Cependant, la partie restante, devrait nous fournir des informations importantes du point de vue de l'utilisateur.

1. Introduction et des conseils sur la façon d'utiliser le manuel NETGEAR ProSafe FVX538 FVX538 FVX538 - Au début de chaque manuel, nous devrions trouver des indices sur la façon d'utiliser le document. Il doit contenir des informations sur l'emplacement de la table des matières NETGEAR ProSafe FVX538 FVX538 FVX538, FAQ ou des problèmes les plus fréquents - les points qui sont les plus souvent recherchés par les utilisateurs de chaque manuel
2. Table des matières - index de tous les conseils pour lNETGEAR ProSafe FVX538 FVX538 FVX538 qui peuvent être trouvés dans le document courant
3. Conseils sur la façon d'utiliser les fonctions de base de l’appareil NETGEAR ProSafe FVX538 FVX538 FVX538 - qui devraient nous aider dans les premières étapes lors de l'utilisation NETGEAR ProSafe FVX538 FVX538 FVX538
4. Troubleshooting - séquence systématique des activités qui nous aideront à diagnostiquer et ensuite résoudre les principaux problèmes de NETGEAR ProSafe FVX538 FVX538 FVX538
5. FAQ - questions fréquemment posées
6. Détails du contact Informations sur l'endroit où chercher le contact avec le fabricant / service NETGEAR ProSafe FVX538 FVX538 FVX538 dans un pays donné, si le problème ne peut être résolu par nous-mêmes.

Avez-vous une question à propos de NETGEAR ProSafe FVX538 FVX538 FVX538?

Utiliser le formulaire ci-dessous

Si vous n’avez pas résolu votre problème avec NETGEAR ProSafe FVX538 FVX538 FVX538, avec l'aide du manuel que vous avez trouvé, posez une question en utilisant le formulaire ci-dessous. Si un utilisateur a eu un problème similaire avec NETGEAR ProSafe FVX538 FVX538 FVX538 il est probable qu’il a envie de partager la façon de le résoudre.

Manuel d’utilisation NETGEAR ProSafe FVX538 FVX538 FVX538

Summary

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 1

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 2

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 3

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 4

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 5

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 6

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 7

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 8

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 9

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 10

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 11

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 12

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 13

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 14

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 15

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 16

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 17

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 18

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 19

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 20

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 21

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 22

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 23

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 24

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 25

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 26

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 27

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 28

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 29

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 30

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 31

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 32

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 33

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 34

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 35

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 36

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 37

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 38

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 39

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 40

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 41

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 42

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 43

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 44

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 45

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 46

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 47

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 48

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 49

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 50

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 51

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 52

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 53

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 54

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 55

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 56

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 57

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 58

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 59

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 60

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 61

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 62

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 63

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 64

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 65

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 66

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 67

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 68

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 69

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 70

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 71

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 72

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 73

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 74

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 75

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 76

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 77

NETGEAR ProSafe FVX538 FVX538 FVX538 - page 78