NETGEAR DGND3300v2 - RangeMax Dual Band Wireless-N Modem Router User Manual
  1. Manuals
  2. Brands
  3. NETGEAR Manuals
  4. Wireless Router
  5. DGND3300v2 - RangeMax Dual Band Wireless-N Modem...
  6. User manual

NETGEAR DGND3300v2 - RangeMax Dual Band Wireless-N Modem Router User Manual

N300 wireless dual band adsl2+ modem router
Hide thumbs Also See for DGND3300v2 - RangeMax Dual Band Wireless-N Modem Router:
Table of Contents

Advertisement

Quick Links

Download this manual See also: Setup Manual, Installation Manual
350 East Plumeria Drive
San Jose, CA 95134
USA
October 2010
202-10463-04
v1.0
N300 Wireless Dual Band
ADSL2+ Modem Router
DGND3300v2

User Manual

Advertisement

Table of Contents
loading

Related Manuals for NETGEAR DGND3300v2 - RangeMax Dual Band Wireless-N Modem Router

Summary of Contents for NETGEAR DGND3300v2 - RangeMax Dual Band Wireless-N Modem Router

  • Page 1: User Manual

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual 350 East Plumeria Drive San Jose, CA 95134 October 2010 202-10463-04 v1.0...

  • Page 2: Technical Support

    NETGEAR, Inc. Technical Support Thank you for choosing NETGEAR. To register your product, get the latest product updates, or get support online, visit us at http://support.netgear.com.

  • Page 3: Table Of Contents

    Table of Contents Chapter 1 Router Internet Setup Using the Setup Manual ........7 Logging In to Your N300 Wireless Modem Router .
  • Page 4 Step 1: Configure the Client-to-Gateway VPN Tunnel ....80 Step 2: Configure the NETGEAR ProSafe VPN Client....83 Setting Up a Gateway-to-Gateway VPN Configuration .
  • Page 5 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Activating a VPN Tunnel........94 Verifying the Status of a VPN Tunnel .
  • Page 6 Technical Specifications........150 Appendix C NETGEAR VPN Configuration Configuration Profile.

  • Page 7: Chapter 1 Router Internet Setup

    For first-time installation of your wireless N300 wireless modem router, refer to the Setup Manual. The Setup Manual explains how to launch the NETGEAR Smart Wizard on the Resource CD to step you through the procedure to connect your N300 wireless modem router and computers.

  • Page 8: Logging In To Your N300 Wireless Modem Router

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Logging In to Your N300 Wireless Modem Router You can log in to the N300 wireless modem router to view or change its settings. Links to the Knowledge Base and documentation are also available on the N300 wireless modem router main menu.

  • Page 9: Using The Setup Wizard

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Figure 2. Note: If the N300 wireless modem router is not configured (is in its factory default state) when you log in, the Setup Wizard displays. See Using the Setup Wizard on page 9.

  • Page 10: Viewing Or Manually Configuring Your Isp Settings

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Figure 4. Under Auto-Detect Connection Type, select Yes and then click Next to proceed. Enter your ISP settings, as needed. At the end of the Setup Wizard, click Test to verify your Internet connection. If you have trouble connecting to the Internet, see Troubleshooting in Appendix A.”...
  • Page 11 If no login is required, you can specify the MAC Address setting. Click Apply to save your settings. Click Test to test your Internet connection. If the NETGEAR website does not appear within one minute, see Troubleshooting in Appendix A.
  • Page 12 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual ISP does not require login ISP does require login Figure 6. Settings Description Does Your ISP Require a Login? • Yes • No These fields Account Name Enter the account name provided by your ISP. This might also be called appear only if (If required) the host name.
  • Page 13 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Settings Description Internet IP Address • Get Dynamically from ISP. Your ISP uses DHCP to assign your IP address. Your ISP automatically assigns these addresses. • Use Static IP Address. Enter the IP address that your ISP assigned. Also enter the IP subnet mask and the gateway IP address.

  • Page 14: Configuring Adsl Settings

    For information about how to install ADSL filters, see the Setup Manual. NETGEAR recommends that you use the Setup Wizard to automatically detect and configure your ADSL settings. This usually works fine. However, if you have technical experience and are sure of the multiplexing method and virtual circuit number for the virtual path identifier (VPI) and virtual channel identifier (VCI), you can specify those settings here.

  • Page 15: Chapter 2 Wireless Settings

    For a wireless connection, the SSID, also called the wireless network name, and the wireless security setting must be the same for the N300 wireless modem router and wireless computers or wireless adapters. NETGEAR strongly recommends that you use wireless security.

  • Page 16: Wireless Placement And Range Guidelines

    WPS button, or entering a PIN number. This generates a new SSID and implements WPA/WPA2 security. Note: NETGEAR’s Push 'N' Connect feature is based on the Wi-Fi Protected Setup (WPS) standard (for more information, see http://www.wi-fi.org). All other Wi-Fi-certified and WPS-capable products should be compatible with NETGEAR products that implement Push 'N' Connect.

  • Page 17: Wireless Security Options

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual • Put the antenna in a vertical position to provide the best side-to-side coverage. Put the antenna in a horizontal position to provide the best up-and-down coverage. • If you are using multiple access points, it is better if adjacent access points use different radio frequency channels to reduce interference.

  • Page 18: Manually Configuring Your Wireless Settings

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Note: NETGEAR recommends WPA2 security because it is the strongest, and WPA security as the next strongest. WEP security is the weakest of these alternatives, but you might need to use WEP security to be able to link with your older wireless devices.
  • Page 19 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Figure 9. The settings for this screen are explained in the following table. Settings Description Name (11N SSID) This is the wireless network name. Enter a 32-character (maximum) name in this field.

  • Page 20: Configuring Wep Wireless Security

    Security Options • Disable. You can use this setting to establish wireless connectivity before implementing wireless security. NETGEAR strongly recommends that you implement wireless security. • WEP (Wired Equivalent Privacy). Use encryption keys and data encryption for Configuring WEP data security.
  • Page 21 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Note: NETGEAR recommends WPA2 security because it is the strongest, and WPA security as the next strongest. WEP security is the weakest of these alternatives, but you might need to use WEP security to be able to link with your older wireless devices.

  • Page 22: Configuring Wpa, Wpa2, Or Mixed Wpa2 + Wpa Wireless Security

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Enter the encryption keys. You can manually or automatically program the four data encryption keys. These values must be identical on all computers and access points in your network: • Passphrase.
  • Page 23 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual To configure WPA or WPA2 in the N300 wireless modem router: Log in to the N300 wireless modem router at its default LAN address of http://192.168.0.1 or http://www.routerlogin.net with its default user name of admin and default password of password, or using whatever user name, password, and LAN address you have chosen for the N300 wireless modem router.

  • Page 24: Using Push 'N' Connect (Wps) To Configure Your Wireless Network

    WPS. • If your wireless network will include a combination of WPS-capable devices and non-WPS-capable devices, NETGEAR suggests that you set up your wireless network and security settings manually first, and use WPS only for adding additional WPS-capable devices. See Adding Both WPS and Non-WPS Clients on page 28.

  • Page 25: Using Pin Entry To Add A Wps Client

    Any wireless computer or wireless adapter that will connect to the N300 wireless modem router wirelessly is a client. The client must support a WPS PIN, and must have a WPS configuration utility, such as the NETGEAR Smart Wizard or Atheros Jumpstart. Chapter 2. Wireless Settings...
  • Page 26 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual The first time you add a WPS client, make sure that the Keep Existing Wireless Settings check box on the WPS Settings screen is cleared. This is the default setting for the N300 wireless modem router, and allows it to generate the SSID and WPA/WPA2 security settings when it implements WPS.

  • Page 27: Configuring Advanced Wps Settings

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Configuring Advanced WPS Settings From the main menu, select Advanced > Wireless Settings to display the following screen: Figure 14. The WPS settings show the N300 wireless modem router PIN and the Disable Router’s PIN and Keep Existing Wireless Settings check boxes.

  • Page 28: Adding More Wps Clients

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Adding More WPS Clients Note: Your wireless settings remain the same when you add another WPS-enabled client, as long as the Keep Existing Wireless Settings check box is selected in the Advanced Wireless Settings screen (select Wireless Settings under Advanced in the N300 wireless modem router main menu).

  • Page 29: Restricting Access To Your N300 Wireless Modem Router

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Note: To make sure that your new wireless settings remain in effect, verify that the Keep Existing Wireless Settings check box is selected in the WPS Settings screen. For information about how to view a list of all devices connected to your N300 wireless modem router (including wireless and Ethernet connected), see Viewing a List of Attached Devices...

  • Page 30: Wireless Guest Networks

    Menu Selection Guest Network Default SSID Wireless Screen Compatibility Up to 300 Mbps at 5 GHz & 54 Guest Network a/n NETGEAR-5G_a_n_Guest1 • 5GHz 802.11a Mbps at 2.4 GHz • 5GHz 802.11n (factory default setting) Guest Network b/g NETGEAR-2.4G_g_Guest1 • 2.4GHz 802.11g •...
  • Page 31 You can also change the guest name in the Guest Wireless Network Name (SSID) field. Note: NETGEAR strongly recommends that you change the default guest network name (SSID) from the default name to a different name. Note that the name is case-sensitive. For example, GuestNetwork is not the same as Guestnetwork.

  • Page 32: Live Parental Controls

    Live Parental Controls is an excellent solution for keeping your family safe online, but like all Web filtering tools, it is not perfect. NETGEAR reminds you there is no substitute for keeping the family computer in a common area and in plain sight where you can monitor the websites your kids are visiting, and taking caution when visiting websites requesting personal or financial information.
  • Page 33 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Flexible Settings You might have your own computer or you might be sharing a computer with other members in the family. Default and per-user settings allow you to customize configurations for different computing arrangements and personalize the settings for each person.

  • Page 34: Chapter 3 Security Settings

    Security Settings Keeping unwanted content out of your network This chapter describes how to use the content filtering and reporting features of the N300 wireless modem router to protect your network. This chapter includes the following sections: • Restricting Access by MAC Address on page 35 •...

  • Page 35: Changing The Built-In Password

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual NETGEAR recommends that you change this password to a more secure password. The ideal password should contain no dictionary words from any language, and should be a mixture of both uppercase and lowercase letters, numbers, and symbols. Your password can be up to 30 characters.
  • Page 36 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual From the main menu, under Advanced > Wireless Settings, and then click Setup Access List to display the Wireless Card Access List screen. Figure 17. The Wireless Station Access List screen displays a list of wireless PCs that are allowed to connect to the N300 wireless modem router based on their MAC addresses.

  • Page 37: Blocking Access To Internet Sites

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual If the wireless station is shown in the Available Wireless Stations list, click its radio button to select it, and then click Add. To manually specify the wireless station, in the Add New Station Manually section, enter the name of the wireless station and its MAC address.The MAC address is 12 hexadecimal digits and can usually be found on the bottom of the wireless device.

  • Page 38: Firewall Rules

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual To block by schedule, be sure to specify a time period in the Schedule screen. For information about scheduling, see Scheduling Blocking on page 45. Block all access to Internet browsing during a scheduled period by entering a dot (.) as the keyword, and then set a schedule in the Schedule screen.
  • Page 39 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Figure 20. • Outbound Services. This lists all existing rules for outbound traffic. If you have not defined any rules, only the default rule is listed. The default rule allows all outgoing traffic. •...
  • Page 40 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Figure 21. From the Service list, select the service that you want to add or edit. Enter the settings to specify the service as explained in the following table. Field Outbound Rules Inbound Rules Action...

  • Page 41: Port Forwarding

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Field Outbound Rules Inbound Rules WAN Servers These settings determine which Internet locations are covered by the rule, based on their destination (WAN) IP address. Select the option you want: •...

  • Page 42: Adding A Pre-Set Port Forwarding Rule

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual You can add a pre-set port forwarding rule or a custom rule. Adding a Pre-set Port Forwarding Rule From the Port Forwarding screen, click Add to display the following screen: Figure 23.

  • Page 43: Port Triggering

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Click Apply. The service appears in the list. Port Triggering Port triggering is an advanced feature that can be used to easily enable gaming and other Internet applications that would otherwise be blocked by the firewall. Using this feature requires that you know the port numbers that are used by the application.

  • Page 44: Blocking Access To Internet Services

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Figure 25. Specify the information for port triggering: • Service Name. Enter a name for the rule, up to 30 characters. • Service User. The PC on the LAN that can use the port triggering rule to create a dynamic inbound mapping to it.

  • Page 45: Scheduling Blocking

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual To block access to Internet services: From the main menu, select Security > Services. The Services screen displays. Figure 26. To add a service, click Add Custom Service. The following screen displays. Figure 27.

  • Page 46: Viewing Logs Of Web Access Or Attempted Web Access

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Figure 28. Configure the schedule for blocking keywords and services. a. Days. Select days on which you want to apply blocking by selecting the appropriate check boxes. Select Every Day to select the check boxes for all days. Click Apply. b.

  • Page 47: Configuring Email Alert And Web Access Log Notifications

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Figure 29. The following information is provided in the logs: Field Description Date and time The date and time the log entry was recorded. Source IP The IP address of the initiating device for this log entry. Target address The name or IP address of the website or newsgroup visited, or to which access was attempted.
  • Page 48 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Figure 30. To receive email logs and alerts from the N300 wireless modem router, select the Turn E-mail Notification On check box. a. In the Your Outgoing Mail Server field, enter the name of your ISP’s outgoing (SMTP) mail server (such as mail.myISP.com).

  • Page 49: Setting The Time

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Click Apply to save your settings. So that the log entries are correctly time-stamped and sent at the correct time, be sure to set the time as described in the next section. Setting the Time The N300 wireless modem router uses the Network Time Protocol (NTP) to obtain the current time and date from one of several network time servers on the Internet.

  • Page 50: Chapter 4 Network Maintenance

    The N300 wireless modem router’s firmware (routing software) is stored in flash memory. By default, when you log in to your N300 wireless modem router, it automatically checks the NETGEAR website for new firmware and alerts you if there is a newer version. Figure 31.

  • Page 51: Manually Check For Firmware Upgrades

    N300 wireless modem router after upgrading. Manually Check for Firmware Upgrades You can use the Router Upgrade screen to manually check the NETGEAR website for newer versions of firmware for your product. To manually check for new firmware and install it on your N300 wireless modem router: From the main menu, select Maintenance >...

  • Page 52: Viewing N300 Wireless Modem Router Status Information

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual If the firmware version on the NETGEAR website is newer than the firmware on your N300 wireless modem router, download the file to your computer. From the main menu, select Maintenance > Router Upgrade to display the following screen: Figure 33.
  • Page 53 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Figure 34. You can use the Show Statics and Connection Status buttons to view additional status information, as described in Connection Status on page 55 and Statistics on page 56. The following table explains Router Status screen fields.
  • Page 54 The 11N wireless network name (SSID) being used by the wireless port of the Port SSID) N300 wireless modem router. The default is NETGEAR-DualBand-N. Name (11G The 11G wireless network name (SSID) being used by the wireless port of the SSID) N300 wireless modem router.

  • Page 55: Connection Status

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Field Description Wireless 11G Channel Identifies the 11G channel of the wireless port being used. Click the link to the Port online document Wireless Networking Basics in Appendix E for the (continued) frequencies used on each channel.

  • Page 56: Statistics

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Item Description Negotiation Success or Failed. Authentication Success or Failed. Obtaining IP Address The IP address assigned to the WAN port by the ADSL Internet Service Provider. Obtaining Network The network mask assigned to the WAN port by the ADSL Internet Service Provider. Mask Statistics To view statistics, on the Router Status screen, click Show Statistics.

  • Page 57: Viewing A List Of Attached Devices

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Viewing a List of Attached Devices The Attached Devices table lists all IP devices that the N300 wireless modem router has discovered on the local network. From the main menu, under Maintenance, select Attached Devices to view the table.

  • Page 58: Backing Up And Restoring The Configuration

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Backing Up and Restoring the Configuration The Restore and Backup options in the Backup Settings screen let you save and retrieve a file containing your N300 wireless modem router’s configuration settings. To save your settings, click Backup.

  • Page 59: Enabling Remote Management Access

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Figure 39. You can use the Diagnostics screen to perform the following functions from the N300 wireless modem router: • Ping an IP address to test connectivity to see if you can reach a remote host. •...
  • Page 60 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Figure 40. Note: Be sure to change the N300 wireless modem router’s default configuration password to a very secure password. The ideal password should contain no dictionary words from any language, and should be a mixture of letters (both uppercase and lowercase), numbers, and symbols.

  • Page 61: Traffic Meter

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual • To allow access from a single IP address on the Internet, select Only This Computer. Enter the IP address that will be allowed access. Specify the port number for accessing the management interface. Normal Web browser access uses the standard HTTP service port 80.

  • Page 62: Figure 41

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Figure 41. a. To enable the traffic meter, select the Enable Traffic Meter check box. If you would like to record and restrict the volume of Internet traffic, select the Traffic volume control by radio button.
  • Page 63 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual • The Internet connection is disconnected and disabled. Under Internet Traffic Statistics, set up monitoring the data traffic. Click the Traffic Status button if you want a live update on Internet traffic status on your router.

  • Page 64: Chapter 5 Usb Storage

    USB Storage Network storage for sharing files and backing up data This chapter describes how to access and configure a USB storage drive attached to your N300 wireless modem router. USB port Figure 42. Note: The USB port on the N300 wireless modem router can be used only to connect USB storage devices like flash drives or hard drives.

  • Page 65: Usb Drive Requirements

    The N300 wireless modem router should work with USB 2.0 or 1.1-compliant external flash and hard drives. For the most up-to-date list of USB drives supported by the N300 wireless modem router, go to: http://kbserver.netgear.com/kb_web_files/n101300.asp When selecting a USB device, bear in mind the following: •...

  • Page 66: Sharing Photos With Friends And Family

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Sharing Photos with Friends and Family You can create your own central storage location for photos and multimedia. This eliminates the need to log in to (and pay for) an external photo sharing site. To share files with your friends and family: Insert the USB drive into the N300 wireless modem router USB port either directly or with a USB cable.

  • Page 67: Usb Storage Basic Settings

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Note: The password for admin is the same one that you use to access the N300 wireless modem router. By default it is password. Enable FTP through the Internet in the USB Storage (Advanced Settings) screen. See Configuring USB Storage Advanced Settings on page 69.

  • Page 68: Editing A Network Folder

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Note: If you logged in to the N300 wireless modem router before you connected your USB device, you might not see your USB device in the N300 wireless modem router screens until you log out and then log back in again.

  • Page 69: Configuring Usb Storage Advanced Settings

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Figure 45. You can use this screen to select a folder, to change the share name, or to change the read access or write access from All - no password to admin. The password for admin is the same one that is used to log in to the N300 wireless modem router main menu.
  • Page 70 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Figure 46. You can use this screen to specify access to the USB storage device. The following table explains the fields and buttons in the USB Storage (Advanced Settings) screen. Fields Description Network Device Name...

  • Page 71: Creating A Network Folder

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Fields Description Available Folder Name Full path of the used by the network folder. Network Folders Volume name Volume name from the storage device (either USB drive or HDD). Total/Free Space The current utilization of the storage device.

  • Page 72: Media Server Settings

    You can set this modem router as a ReadyDLNA media server to enable the playback of videos, movies, and pictures on DLNA/UPnP AV-compliant media players such as the Xbox360, Playstation, and NETGEAR’s Digital Entertainer Live. ReadyDLNA means that this device serves media in DLNA-compatible form to DLNA/UPnP AV-compliant media players.

  • Page 73: Connecting To The Usb Drive From A Remote Computer

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual From the main menu, select Advanced > USB Settings, and then click Approved Devices. The USB Drive Approved Settings screen displays: Figure 48. Select the USB device from the Available USB Devices list. Click Add.

  • Page 74: Accessing The Router's Usb Drive Remotely Using Ftp

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Record the IP address that is listed for the Internet port. This is the IP address you can use to connect to the router remotely. Accessing the Router’s USB Drive Remotely Using FTP You can connect to the router’s USB drive using a Web browser: Connect to the router by typing ftp:// and the Internet port IP address in the address field of Internet Explorer or Netscape®...
  • Page 75 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Note: If you have any questions about File and Printer Sharing, contact Microsoft for assistance. Configuring Windows 2000 and Windows XP Right-click the network connection for your local area network. File and Printer Sharing for Microsoft Networks should be listed.

  • Page 76: Chapter 6 Virtual Private Networking

    VPN communications paths are called tunnels. VPN tunnels provide secure, encrypted communications between your local network and a remote network or computer. See Appendix C, NETGEAR VPN Configuration, and click the link to Virtual Private Networking Basics on page 172 to learn more about VPNs.

  • Page 77: Client-To-Gateway Vpn Tunnels

    Internet Figure 50. VPN Tunnel between Networks A VPN between two or more NETGEAR VPN-enabled routers is a good way to connect branch or home offices and business partners over the Internet. VPN tunnels also enable access to network resources across the Internet. In this case, use gateways on each end of the tunnel to form the VPN tunnel end points.

  • Page 78: Planning A Vpn

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Planning a VPN When you set up a VPN, it is helpful to plan the network configuration and record the configuration parameters on a worksheet: Table 1. VPN Tunnel Configuration Worksheet Parameter Value to Be Entered Field Selection Connection Name...

  • Page 79: Vpn Tunnel Configuration

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual The typical automated Internet Key Exchange (IKE) setup (see Using Auto Policy to Configure VPN Tunnels on page 101) A manual keying setup in which you must specify each phase of the connection (see Using Manual Policy to Configure VPN Tunnels on page 109) Table 2.

  • Page 80: Setting Up A Client-To-Gateway Vpn Configuration

    Router DGND3300v2 and the corresponding VPN endpoint gateway or client workstation. Setting Up a Client-to-Gateway VPN Configuration Setting up a VPN between a remote PC running the NETGEAR ProSafe VPN client and a network gateway involves two steps, described in the following sections: •...
  • Page 81 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Table 3. VPN Tunnel Configuration Worksheet Parameter Value to Be Entered Field Selection Authentication Protocol SHA-1 Diffie-Hellman (DH) Group Group 1 Group 2 Key Life in seconds 28800 (8 hours) IKE Life Time in seconds 3600 (1 hour) VPN Endpoint...
  • Page 82 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Select the radio button for the type of target end point, and click Next. Enter the remote IP address, and click Next. The Summary screen displays: Note: To view the VPNC-recommended authentication and encryption settings used by the VPN Wizard, click the here link.

  • Page 83: Step 2: Configure The Netgear Prosafe Vpn Client

    VPN tunnel. Step 2: Configure the NETGEAR ProSafe VPN Client This section describes how to configure the NETGEAR ProSafe VPN client on a remote PC. These instructions assume that the PC running the client has a dynamically assigned IP address.
  • Page 84 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual a. Run the NETGEAR ProSafe Security Policy Editor program, and, using the Table 3 page 80, create a VPN connection. b. From the Edit menu of the Security Policy Editor, select Add, and then click Connection.
  • Page 85 Figure 52 on page 85. Configure the security policy in the NETGEAR ProSafe VPN Client software: a. In the Network Security Policy list, expand the new connection by double-clicking its name or clicking the + symbol. My Identity and Security Policy subheadings appear below the connection name.
  • Page 86 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual a. In the Network Security Policy list on the left side of the Security Policy Editor window, click My Identity. b. In the Select Certificate drop-down list, select None. c. In the ID Type drop-down list, select IP Address. If you are using a virtual fixed IP address, enter this address in the Internal Network IP Address field.
  • Page 87 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual a. In the Network Security Policy list on the left side of the Security Policy Editor window, expand the Security Policy heading by double-clicking its name or clicking the + symbol.
  • Page 88 Connect option in the NETGEAR ProSafe menu bar. The NETGEAR ProSafe client reports the results of the attempt to connect. Since the remote PC has a dynamically assigned WAN IP address, it must initiate the request.
  • Page 89 NETGEAR ProSafe Log Viewer. To launch this function, click the Windows Start button, then select Programs > NETGEAR ProSafe VPN Client > Log Viewer. The Log Viewer screen for a successful connection is shown in the following figure: Chapter 6.

  • Page 90: Setting Up A Gateway-To-Gateway Vpn Configuration

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Note: Use the active VPN tunnel information and pings to determine whether a failed connection is due to the VPN tunnel or some reason outside the VPN tunnel. The Connection Monitor screen for this connection is shown in the following figure: In this example you can see these settings: •...
  • Page 91 Gateway_B GW_B 192.168.3.1 255.255.255.0 22.23.24.25 Note: The LAN IP address ranges of each VPN endpoint must be different. The connection will fail if both are using the NETGEAR default address range of 192.168.0.x. Chapter 6. Virtual Private Networking | 91...
  • Page 92 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual To configure a gateway-to-gateway VPN tunnel using the VPN Wizard: Log in to Gateway A on LAN A. From the main menu, select VPN Wizard. Click Next, and the Step 1 of 3 screen displays. Fill in the Connection Name and pre-shared key fields.
  • Page 93 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual The VPN Wizard Summary screen displays: To view the VPNC-recommended authentication and encryption settings used by the VPN Wizard, click the here link. Click Done on the Summary screen. The VPN Policies screen displays, showing that the new tunnel is enabled. Note: Using Auto Policy to Configure VPN Tunnels on page 101 for...

  • Page 94: Vpn Tunnel Control

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Note: The VPN Status screen is only one of three ways to active a VPN tunnel. See Activating a VPN Tunnel on page 94 for information about the other ways. a.
  • Page 95 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual • Use the VPN Status screen. • Activate the VPN tunnel by pinging the remote endpoint. • Start using the VPN tunnel. Note: Using Auto Policy to Configure VPN Tunnels on page 101 for information about how to enable the IKE keep-alive capability on an existing VPN tunnel.
  • Page 96 DGND3300v2’s network by using the Connect option in the NETGEAR ProSafe menu bar. The NETGEAR ProSafe client reports the results of the attempt to connect. Since the remote PC has a dynamically assigned WAN IP address, it must initiate the request.

  • Page 97: Verifying The Status Of A Vpn Tunnel

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Once the connection is established, you can open a browser on the PC and enter the LAN IP address of the remote N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2. After a short wait, you should see the login screen of the N300 wireless modem router (unless another PC already has the N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 management interface open).

  • Page 98: Deactivating A Vpn Tunnel

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual This log shows the details of recent VPN activity, including the building of the VPN tunnel. If there is a problem with the VPN tunnel, refer to the log for information about what might be the cause of the problem.
  • Page 99 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Using the Policy Table on the VPN Policies Screen to Deactivate a VPN Tunnel To use the VPN Policies screen to deactivate a VPN tunnel: Log in to the N300 wireless modem router. On the main menu, select VPN Policies to display the VPN Policies screen.

  • Page 100: Deleting A Vpn Tunnel

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Click VPN Status. The Current VPN Tunnels (SAs) screen displays: Click Drop for the VPN tunnel that you want to deactivate. Deleting a VPN Tunnel To delete a VPN tunnel: Log in to the N300 wireless modem router.

  • Page 101: Using Auto Policy To Configure Vpn Tunnels

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual • Manual Policy. For a manual keying setup in which you must specify each phase of the connection, see Using Manual Policy to Configure VPN Tunnels on page 109. Manual policy does not use IKE.
  • Page 102 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual From the main menu, select VPN Policies, and then click the Add Auto Policy button to display the VPN - Auto Policy screen: 102 | Chapter 6. Virtual Private Networking...
  • Page 103 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual The DGND3300v2 VPN tunnel network connection fields are defined in the following table. Table 5. VPN - Auto Policy Screen Settings Fields and Settings Description General Policy Name Enter a unique name. This name is not supplied to the remote VPN endpoint.
  • Page 104 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Table 5. VPN - Auto Policy Screen Settings (Continued) Fields and Settings Description Direction This setting is used when the router determines if the IKE policy matches the current traffic. Select an option. •...
  • Page 105 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Table 5. VPN - Auto Policy Screen Settings (Continued) Fields and Settings Description Parameters SA Life Time The time interval before the SA (security association) expires. (It is (Continued) automatically reestablished as required.) While using a short time period (or data amount) increases security, it also degrades performance.

  • Page 106: Example Of Using Auto Policy

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Example of Using Auto Policy IP:192.168.3.1 IP: 192.168.0.1 VPN Tunnel 22.23.24.25 14.15.16.17 Gateway A Gateway B Internet Figure 54. The following settings are assumed for this example: Table 6. Gateway-to-Gateway VPN Tunnel Configuration Worksheet Parameter Value to Be Entered Field Selection Connection Name...
  • Page 107 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual The VPN Auto Policy screen displays: Enter these policy settings: Auto Policy Field Description General Policy Name GtoG Remote VPN Endpoint Fixed Address Type Remote VPN Endpoint 22.23.24.25 Address Data Local LAN Use the default settings.
  • Page 108 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Auto Policy Field Description Direction Initiator and Responder Exchange Mode Main Mode Diffie-Hellman (DH) Group Group 2 (1024 Bit) Local Identity Type Use the default setting. Remote Identity Type Use the default setting. Parameters Encryption Algorithm 3DES...

  • Page 109: Using Manual Policy To Configure Vpn Tunnels

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual a. From the main menu, select VPN Status to display the VPN Status/Log screen. Then click VPN Status to display the Current VPN Tunnels (SAs) screen: b. Click Connect for the VPN tunnel that you want to activate. Review the VPN Status/Log screen (Figure a on page 94) to verify that the tunnel is connected.
  • Page 110 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual On the main menu, select VPN Policies, and then click the Add Manual Policy radio button to display the VPN - Manual Policy screen: The following table explains the fields in the VPN - Manual Policy screen. Table 7.
  • Page 111 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Table 7. VPN Manual Policy Fields and Settings (Continued) Fields and Settings Description Local LAN IP Address Subnet Mask Enter the network mask. Single PC - no Select this option if there is no LAN (only a single PC) at the The remote VPN Subnet remote endpoint.

  • Page 112: Chapter 7 Advanced Settings (Part 1)

    Advanced Settings (Part 1) Configuring for unique situations This chapter describes advanced features of the N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2. This chapter includes the following sections: • Using the LAN Setup Options on page 112 • Using a Dynamic DNS Service on page 116 •...
  • Page 113 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Figure 55. If you make changes, you must click Apply for the changes to take effect. Note: If you change the LAN IP address of the N300 wireless modem router while connected through the browser, you will be disconnected.

  • Page 114: Using The N300 Wireless Modem Router As A Dhcp Server

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Settings Description LAN TCP/IP IP Address The LAN IP address of the N300 wireless modem router. Setup IP Subnet Mask The LAN subnet mask of the N300 wireless modem router. Combined with the IP address, the IP subnet mask allows a device to know which other addresses are local to it, and which must be reached through a gateway or N300 wireless...

  • Page 115: Address Reservation

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual the attached computers from a pool of addresses specified in this screen. Each pool address is tested before it is assigned to avoid duplicate addresses on the LAN. For most applications, the default DHCP and TCP/IP settings of the N300 wireless modem router are satisfactory.

  • Page 116: Using A Dynamic Dns Service

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Click Apply to enter the reserved address into the table. Note: The reserved address is not assigned until the next time the computer contacts the N300 wireless modem router’s DHCP server. Reboot the computer or access its IP configuration and force a DHCP release and renew.

  • Page 117: Configuring The Wan Setup Options

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Figure 56. Register for an account with one of the Dynamic DNS service providers whose names appear in the Service Provider list. For example, for DynDNS.org, select www.dyndns.org. Select the Use a Dynamic DNS Service check box. Select the name of your Dynamic DNS service provider.
  • Page 118 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Figure 57. The WAN Setup fields are described in the following table: Setting Description Connect Automatically, as Usually, this check box is selected, so that an Internet connection is made Required automatically whenever Internet-bound traffic is detected.

  • Page 119: Setting Up A Default Dmz Server

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Setting Up a Default DMZ Server The default DMZ server feature is helpful when using some online games and videoconferencing applications that are incompatible with Network Address Translation (NAT). The N300 wireless modem router is programmed to recognize some of these applications and to work correctly with them, but there are other applications that might not function well.

  • Page 120: Configuring Qos For Internet Access

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Configuring QoS for Internet Access To specify prioritization of traffic, you must add or create a policy for the type of traffic. To display the QoS Setup screen, from the main menu, select Advanced > QoS Setup. Figure 58.
  • Page 121 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Figure 59. Click Add Priority Rule. The QoS - Priority Rules screen displays. In the Priority Category list, either use the default selection of Applications, or select Online Gaming. A drop-down list of predefined applications or games is available. Figure 60.
  • Page 122 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual b. In the QoS Policy for field, enter a descriptive name for the new application or game. c. Select the connection type, either TCP, UDP, or both (TCP/UDP), and specify the port number or range of port numbers used by the application or game.

  • Page 123: Editing Or Deleting An Existing Qos Policy

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Figure 63. If the device to be prioritized appears in the MAC Device List, select it. The information from the MAC Device List is used to populate the policy name, MAC Address, and Device Name fields.
  • Page 124 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual • Your primary Internet access is through a cable modem to an ISP. • You have an ISDN router on your home network for connecting to the company where you are employed. This router’s address on your LAN is 192.168.0.100. •...

  • Page 125: Wireless Repeating (Also Called Wds)

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual In the Route Name field, type a name for this static route. (This is for identification purposes only.) Select the Private check box if you want to limit access to the LAN only. If Private is selected, the static route is not reported in RIP.

  • Page 126: Wireless Repeating Function

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual The following figure shows a wireless repeating scenario: Base Station AP Repeater AP Figure 66. To set up a wireless network using WDS, he following conditions must be met for both APs: •...

  • Page 127: Setting Up The Base Station

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Figure 67. The N300 wireless modem router supports two modes of the wireless repeating function, and allows you to control wireless client association: • Wireless Repeater. The N300 wireless modem router sends all traffic from its local wireless or wired computers to a remote AP.

  • Page 128: Setting Up A Repeater Unit

    Note: If you are using the N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 base station with a non-NETGEAR N300 wireless modem router as the repeater, you might need to change additional configuration settings. In particular, you should disable the DHCP server function on the wireless repeater AP.
  • Page 129 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Log in to the router that will be the repeater. Check the Wireless Settings screen, and verify that the wireless settings match the base unit exactly. The wireless security option must be set to WEP or None.

  • Page 130: Chapter 8 Advanced Settings (Part 2)

    Advanced Settings (Part 2) Fine-tuning your network This chapter describes features to help you manage your N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2. This chapter includes the following sections: • Common Connection Types on page 130 • Assessing Your Speed Requirements on page 131 •...

  • Page 131: Assessing Your Speed Requirements

    Powerline. For connecting rooms or floors that are blocked by obstructions or are distant vertically, consider networking over your building’s AC wiring. NETGEAR’s Powerline HD family of products delivers up to 200 Mbps to any outlet, while the older-generation XE family of products delivers 14 Mbps or 85 Mbps.

  • Page 132: Optimizing Your Network Bandwidth

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Network Connection Theoretical Raw Transfer Time 100 Mbps wired Ethernet 80 seconds 802.11n wireless 45 seconds 802.11g wireless 150 seconds 802.11b wireless 700 seconds 10 Mbps wired Ethernet 800 seconds Cable modem (3 Mbps) 2700 seconds Analog modem (56 kbps)

  • Page 133: Optimizing Wireless Performance

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual The previous figure shows a sample network using multiple networking technologies. In this network, the two PCs with Gigabit (1000 Mbps) Ethernet adapters have a gigabit connection through the GS605 switch to the storage server. This connection should allow for extremely fast backups or quick access to large files on the server.

  • Page 134: Changing The Mtu Size

    MTU setting than the other devices, the data packets must be split or “fragmented” to accommodate the one with the smallest MTU. The best MTU setting for NETGEAR equipment is often just the default value, and changing the value might fix one problem but cause another. Leave MTU unchanged unless one of these situations occurs: •...

  • Page 135: Universal Plug And Play

    The following table describes common MTU sizes and applications. Application 1500 The largest Ethernet packet size and the default value. This is the typical setting for non-PPPoE, non-VPN connections, and is the default value for NETGEAR routers, adapters, and switches. 1492 Used in PPPoE environments. 1472 Maximum size to use for pinging.
  • Page 136 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Figure 70. The available settings and information in this screen are: • Turn UPnP On. UPnP can be enabled or disabled for automatic device configuration. The default setting for UPnP is disabled. If this check box is not selected, the router does not allow any device to automatically control the resources, such as port forwarding (mapping) of the router.

  • Page 137: Appendix A Troubleshooting

    ADSL2+ Modem Router DGND3300v2. After each problem description, instructions are provided to help you diagnose and solve the problem. As a first step, review the Quick Tips. Tip: NETGEAR provides helpful articles, documentation, and the latest firmware updates at http://www.netgear.com/support. This chapter includes the following sections: •...

  • Page 138: Troubleshooting With The Leds

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Recommendation Instructions Make sure that the Ethernet cables are For each powered-on computer connected to the N300 wireless securely plugged in. modem router by an Ethernet cable, the corresponding numbered router LAN port LED is on. Make sure that the wireless settings in the •...
  • Page 139 • Check that you are using the power adapter supplied by NETGEAR for this product. If the error persists, you have a hardware problem and should contact Technical Support.

  • Page 140: Cannot Access The N300 Wireless Modem Router Menu

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Situation Recommended Action The Ethernet port LEDs are off. If the Ethernet port LEDs do not light when the Ethernet connection is made, check the following: • Make sure that the Ethernet cable connections are secure at the N300 wireless modem router and computer.

  • Page 141: Cannot Access The Internet

    IP address from your ISP. Checking the Configuration To check the router configuration to make sure that it is correct: Start your browser, and select an external site such as http://www.netgear.com. Access the main menu of the router at http://www.routerlogin.net. •...

  • Page 142: Troubleshooting A Network Using The Ping Utility

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual • Your ISP might require a login program. Ask your ISP whether they require PPP over Ethernet (PPPoE) or some other type of login. • If your ISP requires a login, the login name and password might be set incorrectly. •...

  • Page 143: Testing The Lan Path To Your Router

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Testing the LAN Path to Your Router You can ping the router from your computer to verify that the LAN path to your router is set up correctly. To ping the router from a running Windows PC: From the Windows toolbar, click the Start button, and then select Run.

  • Page 144: Problems With Date And Time

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual If the path is functioning correctly, replies like those shown in the previous section are displayed. If you do not receive replies: • Check that your computer has the IP address of your router listed as the default gateway. If the IP configuration of your computer is assigned by DHCP, this information is not visible in your computer’s Network Control Panel.

  • Page 145: Wireless Connectivity

    You can also manually configure the computer’s wireless settings. When you install a NETGEAR wireless card in your computer, a Smart Wizard is installed that can provide helpful information about your wireless network. You can find this program in your Windows Program menu or as an icon in your system tray.
  • Page 146 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual • Is your wireless signal obstructed by objects between the router and your computer? See Wireless Placement and Range Guidelines on page 16. If your wireless network appears and has good signal strength: •...

  • Page 147: Appendix B Default Configuration And Technical Specifications

    Default Configuration and Technical Specifications This appendix provides factory default settings and technical specifications for the N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2. Restoring the Factory Configuration Settings Note: This procedure erases your current configuration, including your wireless security. When you log in after resetting, you will be prompted to configure these settings.
  • Page 148 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Release the Restore Factory Settings button and wait for the router to reboot.The Power LED blinks red three times and then turns green when the default configuration settings have been restored. Feature Default Setting Router login...
  • Page 149 Outbound (communications going out Enabled (all) to the Internet) Source MAC filtering Disabled Wireless Wireless communication Enabled Name (11N SSID) NETGEAR-Dual Band-N Name (11G SSID) NETGEAR-2.4G Security Disabled Broadcast SSID Enabled Country/Region United States in North America, otherwise varies by region.

  • Page 150: Technical Specifications

    N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual Technical Specifications Feature General Network Protocol and Standards Compatibility Data and Routing Protocols TCP/IP, RIP-1, RIP-2, DHCP, PPPoE or PPPoA, RFC 1483 Bridged or Routed Ethernet, and RFC 1577 Classical IP over ATM Power Adapter North America 120V, 60 Hz, input...

  • Page 151: Appendix C Netgear Vpn Configuration

    Case study on how to set up a VPN This appendix is a case study on how to configure a secure IPSec VPN tunnel from a NETGEAR DGND3300v2 to a FVL328. This case study follows the VPN Consortium interoperability profile guidelines (found at http://www.vpnc.org/InteropProfiles/Interop-01.html).

  • Page 152: Step-By-Step Configuration

    In the Summary screen, click Done. On the Gateway B router menu, under VPN, select IKE Policies, and click the Edit button to display the IKE Policy Configuration screen: toGW_A 22.23.24.25 14.15.16.17 152 | Appendix C. NETGEAR VPN Configuration...

  • Page 153: N300 Wireless Modem Router With Fqdn To Gateway B

    N300 Wireless Modem Router with FQDN to Gateway B This section is a case study on how to configure a VPN tunnel from a NETGEAR N300 wireless modem router to a gateway using a fully qualified domain name (FQDN) to resolve the public address of one or both routers.
  • Page 154 In this example, Gateway A is configured using a sample FQDN provided by a DDNS service provider. In this case we established the hostname dgnd3300v2.dyndns.org for Gateway A using the DynDNS service. Gateway B uses the DDNS service provider when establishing a VPN tunnel. 154 | Appendix C. NETGEAR VPN Configuration...

  • Page 155: Step-By-Step Configuration

    In the User Name field, enter the account user name. • In the Password field, enter the account password. c. Click Apply. d. Click Show Status. The resulting screen should show Update OK: good: Appendix C. NETGEAR VPN Configuration | 155...
  • Page 156 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual On NETGEAR Gateway B, configure the Dynamic DNS settings. Assume a correctly configured DynDNS account. a. From the main menu, select Dynamic DNS. b. Select the DynDNS.org radio button. The Dynamic DNS screen displays: c.

  • Page 157: Configuration Summary (Telecommuter Example)

    If the pings fail the first time, try the pings a second time. Configuration Summary (Telecommuter Example) The configuration in this section follows the addressing and configuration mechanics defined by the VPN Consortium. Gather the necessary information before you begin configuration. Appendix C. NETGEAR VPN Configuration | 157...

  • Page 158: Setting Up Client-To-Gateway Vpn (Telecommuter Example)

    Figure 73. Telecommuter Example Setting Up Client-to-Gateway VPN (Telecommuter Example) Setting up a VPN between a remote PC running the NETGEAR ProSafe VPN client and a network gateway involves two steps, described in the following sections: • Step 1: Configure Gateway A (VPN Router at Main Office) on page 159.

  • Page 159: Step 1: Configure Gateway A (Vpn Router At Main Office)

    (in this example) Click Apply when you are finished to display the VPN Policies screen. To view or modify the tunnel settings, select the radio button next to the tunnel entry, and then click Edit. Appendix C. NETGEAR VPN Configuration | 159...

  • Page 160: Step 2: Configure Gateway B (Vpn Router At Regional Office)

    Before installing the software, be sure to turn off any virus protection or firewall software you might be running on your PC. Install the NETGEAR ProSafe VPN Client on the remote PC, and then reboot. a. You might need to insert your Windows CD to complete the installation.
  • Page 161 Configure the security policy in the N300 wireless modem router software. a. In the Network Security Policy list, expand the new connection by double-clicking its name or clicking the + symbol. My Identity and Security Policy appear below the connection name. Appendix C. NETGEAR VPN Configuration | 161...
  • Page 162 My Identity. b. In the Select Certificate list, select None. c. In the ID Type list, select Domain Name, and enter toGW_A.com (in this example). d. In the Virtual Adapter list, select Disabled. 162 | Appendix C. NETGEAR VPN Configuration...
  • Page 163 In the Hash Alg drop-down list, select SHA-1. f. In the SA Life drop-down list, select Unspecified. g. In the Key Group drop-down list, select Diffie-Hellman Group 2. Configure the VPN Client Key Exchange Proposal. Appendix C. NETGEAR VPN Configuration | 163...
  • Page 164 After you have configured and saved the VPN client information, your PC automatically opens the VPN connection when you attempt to access any IP addresses in the range of the remote VPN router’s LAN. Check the VPN connection. 164 | Appendix C. NETGEAR VPN Configuration...
  • Page 165 To perform a ping test using this example, start from the remote PC: a. Establish an Internet connection from the PC. b. On the Windows taskbar, click the Start button, and then select Run. c. Type ping -t 192.168.0.1, and then click OK. Appendix C. NETGEAR VPN Configuration | 165...

  • Page 166: Monitoring The Vpn Tunnel (Telecommuter Example)

    Note: Use the active VPN tunnel information and pings to determine whether a failed connection is due to the VPN tunnel or some reason outside the VPN tunnel. The Connection Monitor screen displays: 166 | Appendix C. NETGEAR VPN Configuration...

  • Page 167: Viewing The Vpn Router's Vpn Status And Log Information

    VPN Status screen: On the N300 wireless modem router main menu, select Router Status, and then click the VPN Status button. The VPN Status/Log screen displays: To view the VPN tunnels status, click VPN Status. Appendix C. NETGEAR VPN Configuration | 167...

  • Page 168: Appendix D Notification Of Compliance

    This transmitter must not be co-located or operating in conjunction with any other antenna or transmitter. FCC Declaration of Conformity We, NETGEAR, Inc., 350 East Plumeria Drive, Santa Clara, CA 95134, declare under our sole responsibility that the NETGEAR® N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 complies with Part 15 Subpart B of FCC CFR47 Rules.
  • Page 169 Canadian Department of Communications Radio Interference Regulations This digital apparatus, (NETGEAR® N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2), does not exceed the Class B limits for radio-noise emissions from digital apparatus as set out in the Radio Interference Regulations of the Canadian Department of Communications.
  • Page 170 Hereby, NETGEAR Inc., declares that this Radiolan is in compliance with the essential requirements and other relevant provisions of Directive 1999/5/EC. Español [Spanish] Por medio de la presente NETGEAR Inc. declara que el Radiolan cumple con los requisitos esenciales y cualesquiera otras disposiciones aplicables o exigibles de la Directiva 1999/5/CE.
  • Page 171 övriga relevanta bestämmelser som framgår av direktiv 1999/5/EG. Íslenska [Icelandic]Hér með lýsir NETGEAR Inc. yfir því að Radiolan er í samræmi við grunnkröfur og aðrar kröfur, sem gerðar eru í tilskipun 1999/5/EC. Norsk [Norwegian] NETGEAR Inc. erklærer herved at utstyret Radiolan er i samsvar med de grunnleggende krav og øvrige relevante krav i direktiv 1999/5/EF.

  • Page 172: Appendix E Related Documents

    Related Documents This appendix provides links to reference documents you can use to gain a more complete understanding of the technologies used in your NETGEAR product. Document Link TCP/IP Networking Basics http://documentation.netgear.com/reference/enu/tcpip/index.htm Wireless Networking Basics http://documentation.netgear.com/reference/enu/wireless/index.htm Preparing Your Network http://documentation.netgear.com/reference/enu/wsdhcp/index.htm Virtual Private Networking Basics http://documentation.netgear.com/reference/enu/vpn/index.htm...

  • Page 173: Index

    Index Numerics compliance, wireless configuration file 802.11 protocol mode configuring ADSL settings DMZ server Dynamic DNS access email alerts blocking firewall rules remote firmware upgrades restricting ISP settings restricting by MAC address LAN IP services viewing logs log notifications access points logs of web access account name MTU size...
  • Page 174 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual deleting editing configuration fragmentation threshold VPN tunnels fragmented data packets device name fully qualified domain name (FQDN), configuring VPN devices attached tunnels using DHCP server DHCP setting diagnostics gateway-to-gateway VPN tunnels Digital Living Network Alliance (DLNA) Gigabit Ethernet disabling...
  • Page 175 MTU size Quality of Service (QoS) multicasting multiple input, multiple output (MIMO) radio, wireless RADIUS server NAT (Network Address Translation) range, router NETGEAR ProSafe VPN Client ReadyDLNA network folders ReadyShare creating reducing interference editing reference documents Network Time Protocol (NTP)
  • Page 176 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual releasing connection status traffic control remote devices, testing path traffic counter remote management traffic meter renewing connection status traffic status repeater units troubleshooting requirements, speed trusted user reserved IP adresses restarting network restoring default factory settings Universal Plug and Play (UPnP)
  • Page 177 N300 Wireless Dual Band ADSL2+ Modem Router DGND3300v2 User Manual status WAN IP address, troubleshooting WAN setup warning DMZ servers protecting against unauthorized access reboot process unmount USB drive uploading firmware wireless repeating function WEP, configuring wireless access points wireless card, setting up wireless clients, adding wireless connection type Wireless Distribution System (WDS)

Table of Contents