NETGEAR FVG318v2 - ProSafe 802.11g Wireless VPN Firewall Switch Скачать руководство пользователя страница 9

Страница: 9 / 9

Version 2.0

1. Create IKE and VPN policies on your router using VPN Wizard.

2. Delete the VPN Policy, leaving the IKE policy.

3. Create new record for Mode Config in the following way:

Note:

IP address ranges defined in: First, Second and Third Pool should be different then

router’s own LAN IP address range.

4. Modify your IKE Policy according to the following settings:

Содержание FVG318v2 - ProSafe 802.11g Wireless VPN Firewall Switch

Страница 1: ...as authentication method for VPN connections between Netgear ProSafe Routers and the ProSafe VPN Client This document describes how to use certificates as an authentication method when establishing a...

Страница 2: ...exclusive to other methods 1 OpenSSL http www openssl org 2 SimpleCA http www vpnc org SimpleCA 3 Microsoft s IIS For purpose of this document we used 1 OpenSSL which could be downloaded from the fol...

Страница 3: ...avoid using this parameter 3 From the guide linked above you need only to execute all the commands up to step 4 The certificate request step and beyond will be handled by the router 4 Next please gene...

Страница 4: ...CAkey cakey pem CAcreateserial out router1 crt router1 csr generated self certificate request router cacert crt CA certification cakey pem CA keys router1 crt signed certificate router 7 Load CA certi...

Страница 5: ...oSafe VPN Client following these steps First click on Request Certificate Then click on Yes when you get the file based request prompt For last input the settings like instructed in the screenshot Not...

Страница 6: ...A cacert crt CAkey cakey pem CAcreateserial out client1 crt client1 csr generated self certificate request client cacert crt CA certification cakey pem CA keys client1 crt signed certificate client 12...

Страница 7: ...same way that is instructed here and click on Edit Name Verify your settings are input correctly in this screen and click on OK Select the correct certificate leave the ID Type as Distinguished Name V...

Страница 8: ...h those in this screenshot For the Proposal 1 of the Authentication phase Phase 1 the Authentication Method should be RSA Signatures The Key Exchange Proposal should be correct by default but check it...

Страница 9: ...te the VPN Policy leaving the IKE policy 3 Create new record for Mode Config in the following way Note IP address ranges defined in First Second and Third Pool should be different then router s own LA...