NETGEAR FVX538v1 - ProSafe VPN Firewall Dual WAN Configuration Manual
Mode config of a vpn tunnel from prosafe client to fvx538v2 router
Hide thumbs
Also See for FVX538v1 - ProSafe VPN Firewall Dual WAN:
- Planning manual (26 pages) ,
- Setup manual (9 pages) ,
- Specifications (2 pages)
Advertisement
Quick Links
Mode Config of a VPN tunnel from ProSafe Client to FVX538v2 Router:
Mode Config is a feature included in some of the Netgear Routers which allows the IP addressing
of the remote client devices be handled and controlled by the VPN Router by using a Virtual
Adapter. This document will guide you on how to create IKE and Mode Config policies for your
FVX538v2, as well as how to configure the VPN Pro-Safe VPN client in order to allow a Virtual
Private Network to be established over the internet.
NOTE: This document assumes that your FVX538v2 is either receiving a public IP
address on the WAN interface or that the gateway device(s) have the correct port
forwarding or DMZ configured so that port 500 UDP is open for the FVX538v2, these
gateway devices must also allow VPN pass-through.
Advertisement
Related Manuals for NETGEAR FVX538v1 - ProSafe VPN Firewall Dual WAN
Summary of Contents for NETGEAR FVX538v1 - ProSafe VPN Firewall Dual WAN
- Page 1 Mode Config of a VPN tunnel from ProSafe Client to FVX538v2 Router: Mode Config is a feature included in some of the Netgear Routers which allows the IP addressing of the remote client devices be handled and controlled by the VPN Router by using a Virtual Adapter.
- Page 2 FVX538v2 – Mode Config: To configure it, go to the VPN section and then select Mode Config. For our example we’ll use the following settings: The first pool of IP addresses, 192.168.24.1 to 192.168.24.250, lists the addresses that the clients will acquire when they connect. Notice that you can add up to three pools, addresses from the second pool will be used when the addresses of the first pool are all in use.
- Page 3 FVX538v2 – IKE Policy: With the Mode Config policy created, go to VPN, Policies, IKE policies and create a new one. For our example, we’ll use the following settings. (Note: The pre-shared key could be any alphanumeric string)
- Page 4 Pro-Safe VPN Client - Configuration: Right click on “My Connections” and add a new connection. Use the same name you used to name the VPN policy in your VPN gateway. In this example the name will be “VPN”. Click on the name of the new created connection and fill the parameters accordingly, for this example we’ll use these: (NOTE: The Subnet and Mask must be those of the LAN side of your FVX538.
- Page 5 Click on “My Identity” and fill the fields accordingly, be sure to click on the Pre-Shared Key button and input your own pre shared key. Here are the settings used in our example: Click on “Security Policy” and verify the following settings:...
- Page 6 Next, expand “Security Policy” and “Authentication (Phase 1)” – Click on “Proposal 1” and verify the settings contained to match the ones of your policy. Functional settings in our example: Open the “Key Exchange (Phase 2)” category – Click on “Proposal 1” and verify the settings contained to match the ones of your policy.
- Page 7 For last, right click on the tray icon of the Netgear VPN client with your mouse, select connect and select the connection you just created. If your settings are correct you’ll receive a message confirming the connection.
-
Page 8: Verifying Connection
FVX538v2 – Verifying connection: If you wish to verify that the connection is established, which IP did you receive from the Mode Config pools and whether you can access the LAN side of the VPN router, open a command console and use the IPCONFIG command to see the IP address of the Virtual Adapter. You can also use the command PING towards the LAN address of your router to verify connectivity.