Testing The Connection; Configuring Extended Authentication (Xauth) - NETGEAR ProSafe FVS336G Reference Manual

Dual wan gigabit firewall with ssl & ipsec vpn

Hide thumbs Also See for ProSafe FVS336G:

Reference manual (11 pages)

Datasheet (3 pages)

Installation manual (2 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

241

242

243

244

245

Table of Contents

ProSafe Dual WAN Gigabit Firewall with SSL & IPsec VPN FVS336G Reference Manual

Testing the Connection

1. From your PC, right-click on the VPN client icon in your Windows toolbar and choose

Connect..., then My Connections\to_FVG.

Within 30 seconds you should receive the message "Successfully connected to My

Connections\to_FVG" and the VPN client icon in the toolbar should say On:

2. For additional status and troubleshooting information, right-click on the VPN client icon Logs

and Connection Status screens in the FVS336G.

Configuring Extended Authentication (XAUTH)

When connecting many VPN clients to a VPN firewall, an administrator may want a unique user

authentication method beyond relying on a single common preshared key for all clients. Although

the administrator could configure a unique VPN policy for each user, it is more convenient for the

VPN firewall to authenticate users from a stored list of user accounts. XAUTH provides the

mechanism for requesting individual authentication information from the user, and a local User

Database or an external authentication server, such as a RADIUS server, provides a method for

storing the authentication information centrally in the local network.

XAUTH can be enabled when adding or editing an IKE Policy. Two types of XAUTH are

available:

•

Edge Device. If this is selected, the VPN firewall is used as a VPN concentrator where one or

more gateway tunnels terminate. If this option is chosen, you must specify the authentication

type to be used in verifying credentials of the remote VPN gateways: User Database,

RADIUS-PAP, or RADIUS-CHAP.

•

IPsec Host. If you want authentication by the remote gateway, enter a User Name and

Password to be associated with this IKE policy. If this option is chosen, the remote gateway

must specify the user name and password used for authenticating this gateway.

Note: If a RADIUS-PAP server is enabled for authentication, XAUTH will first check the

local User Database for the user credentials. If the user account is not present, the

VPN firewall will then connect to a RADIUS server.

Virtual Private Networking Using IPsec

v1.2, June 2008

5-19

Table of Contents

Show Quick Links

Hide quick links:

Table of Contents

Troubleshooting

This manual is also suitable for:

Fvs336g-100nas

Testing The Connection; Configuring Extended Authentication (Xauth) - NETGEAR ProSafe FVS336G Reference Manual

Testing the Connection

Configuring Extended Authentication (XAUTH)

Hide quick links:

Troubleshooting

Related Manuals for NETGEAR ProSafe FVS336G

Related Content for NETGEAR ProSafe FVS336G

This manual is also suitable for:

Table of Contents