NETGEAR ProSafe FVS336Gv2 Reference Manual page 386
Prosafe dual wan gigabit ssl vpn firewall
Hide thumbs
Also See for ProSafe FVS336Gv2:
- Installation manual (2 pages) ,
- Reference manual (203 pages) ,
- Datasheet (3 pages)
Table of Contents
Advertisement
ProSAFE Dual WAN Gigabit WAN SSL VPN Firewall FVS336Gv2
Setting
Enable Keepalive
Traffic Selection
Local IP
Remote IP
Manual Policy Parameters
Note:
These fields apply only when you select Manual Policy from the Policy Type menu. When you
specify the settings for the fields in this section, a security association (SA) is created.
SPI-Incoming
Set Up Virtual Private Networking With IPSec Connections
Description
Select a radio button to specify if keep-alive is enabled:
•
No. Keep-alive requests are disabled for the VPN tunnel. This is the default
setting.
•
Yes. Keep-alive requests are enabled for the VPN tunnel. Periodically, the
VPN firewall sends keep-alive requests (ping packets) to the remote
endpoint to keep the tunnel alive. You must specify the information in the
following fields:
-
Ping IP Address. The IP address that the VPN firewall pings. The
address must be of a host that can respond to ICMP ping requests.
-
Detection Period. The period in seconds between the keep-alive
requests. The default setting is 10 seconds.
-
Reconnect after failure counts. The maximum number of keep-alive
requests before the VPN firewall tears down the connection and then
attempts to reconnect to the remote endpoint. The default setting is 3
keep-alive requests.
Note:
For more information, see
on page 411.
From the menu, select the address or addresses that are part of the VPN tunnel
on the VPN firewall:
•
Any. All computers and devices on the network. You cannot select Any for
both the VPN firewall and the remote endpoint.
•
Single. A single IP address on the network. Enter the IP address in the
Start IP Address field.
•
Range. A range of IP addresses on the network. Enter the starting IP
address in the Start IP Address field and the ending IP address in the End
IP Address field.
•
Subnet. A subnet on the network. Enter the starting IP address in the Start
IP Address field. In addition, specify the following:
-
Subnet Mask. For IPv4 addresses on the IPv4 screen only, enter the
subnet mask.
-
IPv6 Prefix Length. For IPv6 addresses on the IPv6 screen only, enter
the prefix length.
From the menu, select the address or addresses that are part of the VPN tunnel
on the remote endpoint.
The selections for the Remote IP menu are the same as for the Local IP menu
(see the previous row in this table).
The security parameters index (SPI) for the inbound policy. Enter a hexadecimal
value between 3 and 8 characters (for example, 0x1234).
384
Manage Keep-Alives and Dead Peer Detection
Advertisement
Table of Contents
Troubleshooting
