Use The Command-Line Interface - NETGEAR SRX5308 Reference Manual

ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308
Note: For enhanced security, and if practical, restrict remote management
access to a single IP address or a small range of IP addresses.
Note: To maintain security, the VPN firewall rejects a login that uses
http://address rather than the SSL https://address.
Note: The first time that you remotely connect to the VPN firewall with a
browser through an SSL connection, you might get a warning
message regarding the SSL certificate. If you are using a Windows
computer with Internet Explorer 5.5 or later, simply click Yes to
accept the certificate.
Note: If you are unable to remotely connect to the VPN firewall after
enabling HTTPS remote management, check if other user policies,
such as the default user policy, are preventing access. For access to
the VPN firewall's web management interface, check if
administrative access through a WAN interface is granted (see
Configure Login Policies
Note: If you disable HTTPS remote management, all SSL VPN user
connections are also disabled.
Tip: If you are using a Dynamic DNS service such as TZO, you can identify
the WAN IP address of your VPN firewall by running tracert from the
Windows Run menu option. Trace the route to your registered FQDN.
For example, enter tracert VPN firewall.mynetgear.net, and
the WAN IP address that your ISP assigned to the VPN firewall is
displayed.

Use the Command-Line Interface

You can access the command-line interface (CLI) using the console port on the rear panel of
the VPN firewall (see Rear Panel
You can access the CLI from a communications terminal when the VPN firewall is still set to
its factory defaults (or use your own settings if you have changed them).
on page 231).
on page 16).
Network and System Management
255