background image

ProSafe VPN Firewall FVS318v3 Reference Manual

1-4

Introduction

v5.0, January 2012

Diagnostic functions

. The firewall incorporates built-in diagnostic functions such as Ping, 

DNS lookup, and remote reboot.

Remote management

. The firewall allows you to login to the Web Management Interface 

from a remote location on the Internet. For security, you can limit remote management access 
to a specified remote IP address or range of addresses, and you can choose a nonstandard port 
number.

Visual monitoring

. The VPN firewall’s front panel LEDs provide an easy way to monitor its 

status and activity.

Maintenance and Support

NETGEAR offers the following features to help you maximize your use of the VPN firewall:

Flash memory for firmware upgrade.

Free technical support seven days a week, 24 hours a day.

Package Contents

The product package should contain the following items:

ProSafe VPN Firewall .

AC power adapter.

Category 5 (Cat 5) Ethernet cable.

Installation Guide.

Resource CD

, including:

This guide.

Application Notes and other helpful information.

Registration and Warranty Card.

If any of the parts are incorrect, missing, or damaged, contact your NETGEAR dealer. Keep the 
carton, including the original packing materials, in case you need to return the firewall for repair.

Note: The FVS318v3 firmware is not backward compatible with earlier versions of the 
FVS318 firewall.

Summary of Contents for ProSafe FVS318v3

Page 1: ...202 10059 03 January 2012 v5 0 NETGEAR Inc 350 East Plumeria Drive San Jose CA 95134 USA ProSafe VPN Firewall FVS318v3 Reference Manual ...

Page 2: ...s encouraged to try to correct the interference by one or more of the following measures Reorient or relocate the receiving antenna Increase the separation between the equipment and receiver Connect the equipment into an outlet on a circuit different from that to which the receiver is connected Consult the dealer or an experienced radio TV technician for help EN 55 022 Declaration of Conformance T...

Page 3: ...eto and conforms to the standards set by the Voluntary Control Council for Interference by Data Processing Equipment and Electronic Office Machines aimed at preventing radio interference in such residential areas When used near a radio or TV receiver it may become the cause of radio interference Read instructions for correct handling Product and Publication Details Model Number FVS318v3 Publicatio...

Page 4: ...v5 0 January 2012 iv ...

Page 5: ...ement 1 3 Maintenance and Support 1 4 Package Contents 1 4 The FVS318v3 Front Panel 1 5 The FVS318v3 Rear Panel 1 6 NETGEAR Related Products 1 7 NETGEAR Product Registration Support and Documentation 1 7 Chapter 2 Connecting the Firewall to the Internet Prepare to Install Your ProSafe VPN Firewall 2 1 First Connect the FVS318v3 2 1 Now Configure the FVS318v3 for Internet Access 2 4 Troubleshooting...

Page 6: ...10 Services 3 10 Using a Schedule to Block or Allow Specific Traffic 3 13 Getting E Mail Notifications of Event Logs and Alerts 3 15 Viewing Logs of Web Access or Attempted Web Access 3 17 Chapter 4 Basic Virtual Private Networking Overview of VPN Configuration 4 2 Client to Gateway VPN Tunnels 4 2 Gateway to Gateway VPN Tunnels 4 2 Planning a VPN 4 3 VPN Tunnel Configuration 4 5 Setting Up a Clie...

Page 7: ...for Manual Key Exchange 5 9 Using Digital Certificates for IKE Auto Policy Authentication 5 13 Trusted Certificates 5 13 Certificate Revocation List CRL 5 14 VPN Configuration Scenarios for the FVS318v3 5 14 FVS318v3 Scenario 1 Gateway to Gateway with Preshared Secrets 5 15 FVS318v3 Scenario 2 FVS318v3 to FVS318v3 with RSA Certificates 5 21 Checking VPN Connections 5 26 Chapter 6 Maintenance Viewi...

Page 8: ...N Path to Your Firewall 8 5 Testing the Path from Your PC to a Remote Device 8 6 Restoring the Default Configuration and Password 8 6 Problems with Date and Time 8 7 Appendix A Technical Specifications and Factory Default Settings Appendix B Related Documents Appendix C Sample VPN Configurations with FVS318v3 Case Study Overview C 1 Gathering the Network Information C 1 Configuring the Gateways C ...

Page 9: ...e C 18 Configuring the VPN Tunnel C 19 Viewing and Editing the VPN Parameters C 21 Initiating and Checking the VPN Connections C 24 The FVS318v3 to VPN Client Case C 25 Client to Gateway VPN Tunnel Overview C 26 Configuring the VPN Tunnel C 26 Initiating and Checking the VPN Connections C 33 Index ...

Page 10: ...x v5 0 January 2012 ...

Page 11: ...s This manual uses the following typographical conventions Formats This manual uses the following formats to highlight special messages Italics Emphasis books CDs URL names Bold User input Fixed Screen text file and server names extensions commands IP addresses Note This format is used to highlight information of importance or special interest Tip This format is used to highlight a procedure that ...

Page 12: ... Printing a PDF Chapter Use the PDF of This Chapter link at the top left of any page Click the PDF of This Chapter link at the top left of any page in the chapter you want to print The PDF version of the chapter you were viewing opens in a browser window Click the print icon in the upper left of your browser window Printing a PDF version of the Complete Manual Use the Complete PDF Manual link at t...

Page 13: ... Revision History Part Number Version Number Description 202 10059 02 4 0 Documenation change only a Corrected VPN client screen captures and b deleted use of Schedules for Block Sites 202 10059 03 5 0 Documentation change only Web address keywords changed to 64 entries ...

Page 14: ...ProSafe VPN Firewall FVS318v3 Reference Manual xiv v5 0 January 2012 ...

Page 15: ...he VPN firewall provides you with multiple Web content filtering options plus browsing activity reporting and instant alerts both via e mail Parents and network administrators can establish restricted access policies based on time of day Web site addresses and address keywords and share high speed cable DSL Internet access for up to 253 personal computers In addition to NAT the built in firewall p...

Page 16: ... your PCs The firewall allows you to control access to Internet content by screening for keywords within Web addresses You can configure the firewall to log and report attempts to access objectionable Internet sites Security The VPN firewall is equipped with several features designed to maintain security as described in this section PCs Hidden by NAT NAT opens a temporary path to the Internet for ...

Page 17: ...n information including IP gateway and Domain Name Server DNS addresses to attached PCs on the LAN using the Dynamic Host Configuration Protocol DHCP This feature greatly simplifies configuration of PCs on your local network DNS Proxy When DHCP is enabled and no DNS addresses are specified the firewall provides its own address as a DNS server to the attached PCs The firewall obtains actual DNS add...

Page 18: ...nd activity Maintenance and Support NETGEAR offers the following features to help you maximize your use of the VPN firewall Flash memory for firmware upgrade Free technical support seven days a week 24 hours a day Package Contents The product package should contain the following items ProSafe VPN Firewall AC power adapter Category 5 Cat 5 Ethernet cable Installation Guide Resource CD including Thi...

Page 19: ... to the firewall TEST On Off The system is initializing The system is ready and running INTERNET 100 100 Mbps On Off The Internet WAN port is operating at 100 Mbps The Internet WAN port is operating at 10 Mbps LINK ACT Link Activity On Blinking The Internet port has detected a link with an attached device Data is being transmitted or received by the Internet port LOCAL 100 100 Mbps On Off The Loca...

Page 20: ...rt connections listed below Viewed from left to right the rear panel contains the following features Factory default reset push button Eight Ethernet LAN ports Internet Ethernet WAN port for connecting the firewall to a cable or DSL modem DC power input ON OFF switch Figure 1 2 FACTORY DEFAULTS Reset Button ON OFF Switch DC Power INTERNET Port LOCAL Ports ...

Reviews: