Sign In
Upload
Manuals
Brands
Netgear Manuals
Firewall
ProSAFE SRX5308
Netgear ProSAFE SRX5308 Manuals
Manuals and User Guides for Netgear ProSAFE SRX5308. We have
7
Netgear ProSAFE SRX5308 manuals available for free PDF download: Reference Manual, Cli Reference Manual, Datasheet, Installation Manual
Netgear ProSAFE SRX5308 Reference Manual (469 pages)
Gigabit Quad WAN SSL VPN Firewall
Brand:
Netgear
| Category:
Firewall
| Size: 12 MB
Table of Contents
Table of Contents
4
Chapter 1 Introduction
11
What Is the Prosafe Gigabit Quad WAN SSL VPN Firewall SRX5308
12
Key Features and Capabilities
12
Quad-WAN Ports for Increased Reliability and Load Balancing
13
Advanced VPN Support for both Ipsec and SSL
14
A Powerful, True Firewall with Content Filtering
14
Security Features
15
Autosensing Ethernet Connections with Auto Uplink
15
Extensive Protocol Support
15
Easy Installation and Management
16
Maintenance and Support
17
Package Contents
17
Hardware Features
17
Front Panel
17
Rear Panel
19
Bottom Panel with Product Label
20
Choose a Location for the VPN Firewall
20
Use the Rack-Mounting Kit
21
Log in to the VPN Firewall
21
Web Management Interface Menu Layout
23
Requirements for Entering IP Addresses
25
Ipv4
25
Ipv6
25
Chapter 2 Ipv4 and Ipv6 Internet and WAN Settings
26
Internet and WAN Configuration Tasks
27
Roadmap to Setting up Ipv4 Internet Connections to Your Isps
27
Roadmap to Setting up Ipv6 Internet Connections to Your Isps
28
Configure the Ipv4 Internet Connection and WAN Settings
29
Configure the Ipv4 WAN Mode
29
Classical Routing
30
Let the VPN Firewall Automatically Detect and Configure an Ipv4 Internet Connection
31
Manually Configure an Ipv4 Internet Connection
34
Configure Load Balancing or Auto-Rollover for Ipv4 Interfaces
40
Configure Secondary WAN Addresses
47
Configure Dynamic DNS
49
Configure the Ipv6 Internet Connection and WAN Settings
52
Configure the Ipv6 Routing Mode
53
Use a Dhcpv6 Server to Configure an Ipv6 Internet Connection
55
Configure a Static Ipv6 Internet Connection
58
Configure a Pppoe Ipv6 Internet Connection
61
Configure 6To4 Automatic Tunneling
64
Configure ISATAP Automatic Tunneling
65
View the Tunnel Status and Ipv6 Addresses
67
Configure Stateless IP/ICMP Translation
67
Configure Auto-Rollover for Ipv6 Interfaces
68
Configure Advanced WAN Options and Other Tasks
71
Configure WAN Qos Profiles
76
Additional WAN-Related Configuration Tasks
82
Verify the Connection
82
What to Do Next
82
Chapter 3 LAN Configuration
83
Manage Ipv4 Virtual Lans and DHCP Options
84
Port-Based Vlans
85
Assign and Manage VLAN Profiles
86
VLAN DHCP Options
87
Configure a VLAN Profile
88
Configure VLAN MAC Addresses and LAN Advanced Settings
93
Configure Ipv4 Multihome LAN IP Addresses on the Default VLAN
94
The Following Is an Example of Correctly Configured IP Addresses
95
Primary WAN1 IP Address: 10.0.0.1 with Subnet
95
DMZ IP Address: 192.168.10.1 with Subnet
95
Primary LAN IP Address. 192.168.1.1 with Subnet 255.255.255.0
95
Manage Ipv4 Groups and Hosts (Ipv4 LAN Groups)
96
Manage the Network Database
97
Change Group Names in the Network Database
100
Set up DHCP Address Reservation
101
Manage the Ipv6 LAN
102
Dhcpv6 Server Options
103
Configure the Ipv6 LAN
104
Configure the Ipv6 Router Advertisement Daemon and
105
Ipv6 Lan Address Pools
106
Configure the Ipv6 Router Advertisement Daemon and Advertisement Prefixes for the LAN
109
Figure
110
Advertisement Prefixes for the Lan
111
Configure Ipv6 Multihome LAN IP Addresses on the Default VLAN
113
Enable and Configure the DMZ Port for Ipv4 and Ipv6 Traffic
114
DMZ Port for Ipv4 Traffic
115
DMZ Port for Ipv6 Traffic
118
Configure the Ipv6 Router Advertisement Daemon and Advertisement Prefixes for the DMZ
122
Manage Static Ipv4 Routing
127
Configure Static Ipv4 Routes
127
Configure the Routing Information Protocol
129
Ipv4 Static Route Example
131
Manage Static Ipv6 Routing
132
Chapter 4 Firewall Protection
134
About Firewall Protection
135
Administrator Tips
135
Overview of Rules to Block or Allow Specific Kinds of Traffic
136
Outbound Rules (Service Blocking)
137
Inbound Rules (Port Forwarding)
140
Order of Precedence for Rules
144
Configure LAN WAN Rules
145
Figure
146
Create LAN WAN Outbound Service Rules
147
Create LAN WAN Inbound Service Rules
149
Configure DMZ WAN Rules
152
Create DMZ WAN Outbound Service Rules
154
Create DMZ WAN Inbound Service Rules
156
Configure LAN DMZ Rules
158
Create LAN DMZ Outbound Service Rules
160
Create LAN DMZ Inbound Service Rules
162
Examples of Firewall Rules
164
Examples of Inbound Firewall Rules
164
Examples of Outbound Firewall Rules
168
Configure Other Firewall Features
170
Attack Checks
170
Set Limits for Ipv4 Sessions
173
Configure Multicast Pass-Through for Ipv4 Traffic
174
Manage the Application Level Gateway for SIP Sessions
176
Services, Bandwidth Profiles, and Qos Profiles
176
Add Customized Services
177
Create IP Groups
179
Create Bandwidth Profiles
181
Create Quality of Service Profiles for Ipv4 Firewall Rules
184
Quality of Service Priorities for Ipv6 Firewall Rules
186
Configure Content Filtering
186
Set a Schedule to Block or Allow Specific Traffic
189
Enable Source MAC Filtering
190
Set up IP/MAC Bindings
192
Configure Port Triggering
197
Configure Universal Plug and Play
199
Chapter 5 Virtual Private Networking Using Ipsec and L2TP Connections
201
Considerations for Dual WAN Port Systems
202
Use the Ipsec VPN Wizard for Client and Gateway Configurations
203
Create an Ipv4 Gateway-To-Gateway VPN Tunnel with the Wizard
204
Create an Ipv6 Gateway-To-Gateway VPN Tunnel with the Wizard
208
Create an Ipv4 Client-To-Gateway VPN Tunnel with the Wizard
212
Test the Connection and View Connection and Status Information
227
Test the NETGEAR VPN Client Connection
227
NETGEAR VPN Client Status and Log Information
229
View the VPN Firewall Ipsec VPN Connection Status
229
View the VPN Firewall Ipsec VPN Log
230
Manage Ipsec VPN Policies
231
Manage IKE Policies
231
Manage VPN Policies
238
Configure Extended Authentication (XAUTH)
245
Configure XAUTH for VPN Clients
246
User Database Configuration
247
RADIUS Client and Server Configuration
247
Assign Ipv4 Addresses to Remote Users (Mode Config)
250
Mode Config Operation
250
Configure Mode Config Operation on the VPN Firewall
250
Configure the Prosafe VPN Client for Mode Config Operation
257
Test the Mode Config Connection
264
Modify or Delete a Mode Config Record
265
Configure Keep-Alives and Dead Peer Detection
265
Configure Keep-Alives
266
Configure Dead Peer Detection
267
Configure Netbios Bridging with Ipsec VPN
268
Configure the PPTP Server
269
View the Active PPTP Users
271
Configure the L2TP Server
272
View the Active L2TP Users
273
Chapter 6 Virtual Private Networking Using SSL Connections
275
SSL VPN Portal Options
276
Overview of the SSL Configuration Process
276
Create the Portal Layout
277
Configure Domains, Groups, and Users
281
Configure Applications for Port Forwarding
282
Add Servers and Port Numbers
282
Add a New Host Name
283
Configure the SSL VPN Client
284
Configure the Client IP Address Range
285
Add Routes for VPN Tunnel Clients
287
Use Network Resource Objects to Simplify Policies
288
Add New Network Resources
288
Edit Network Resources to Specify Addresses
289
Configure User, Group, and Global Policies
291
View Policies
292
Add an Ipv4 or Ipv6 SSL VPN Policy
293
Access the New SSL Portal Login Screen
297
View the SSL VPN Connection Status and SSL VPN Log
299
Chapter 7 Manage Users, Authentication, and VPN Certificates
301
The VPN Firewall's Authentication Process and Options
302
Configure Authentication Domains, Groups, and Users
303
Configure Domains
303
Configure Groups
307
Create Groups
308
Configure User Accounts
310
Set User Login Policies
313
Change Passwords and Other User Settings
318
Manage Digital Certificates for VPN Connections
320
VPN Certificates Screen
321
Manage VPN CA Certificates
322
Manage VPN Self-Signed Certificates
323
Manage the VPN Certificate Revocation List
326
Chapter 8 Network and System Management
328
Performance Management
329
Bandwidth Capacity
329
Features that Reduce Traffic
330
Content Filtering
331
Features that Increase Traffic
332
Port Triggering
334
Exposed Hosts
334
Use Qos and Bandwidth Assignment to Shift the Traffic MIX
335
Monitoring Tools for Traffic Management
336
System Management
336
Change Passwords and Administrator and Guest Settings
336
Configure Remote Management Access
338
Use the Command-Line Interface
342
Use a Simple Network Management Protocol Manager
342
Manage the Configuration File
347
Back up Settings
348
Restore Settings
349
Upgrade the Firmware
350
Configure Date and Time Service
352
Chapter 9 Monitor System Access and Performance
355
Configure and Enable the WAN Traffic Meter
356
Configure and Enable the LAN Traffic Meter
359
Configure Logging, Alerts, and Event Notifications
362
How to Send Syslogs over a VPN Tunnel between Sites
367
View Status Screens
369
View the System Status
369
View the VPN Connection Status, L2TP Users, and PPTP Users
378
View the VPN Logs
380
View the Port Triggering Status
381
View the WAN Port Status
382
View the Attached Devices and the DHCP Log
385
Diagnostics Utilities
388
Send a Ping Packet
389
Trace a Route
390
Look up a DNS Address
390
Display the Routing Tables
390
Capture Packets in Real Time
391
Reboot the VPN Firewall Remotely
391
Advertisement
Netgear ProSAFE SRX5308 Reference Manual (384 pages)
Gigabit Quad WAN SSL VPN Firewall
Brand:
Netgear
| Category:
Firewall
| Size: 12 MB
Table of Contents
Technical Support
2
Table of Contents
3
About this Manual
11
Conventions, Formats, and Scope
11
How to Print this Manual
12
Revision History
12
Chapter 1 Introduction
13
What Is the Prosafe Gigabit Quad WAN SSL VPN Firewall
13
Key Features and Capabilities
14
Quad-WAN Ports for Increased Reliability and Outbound Load Balancing
15
Advanced VPN Support for both Ipsec and SSL
15
A Powerful, True Firewall with Content Filtering
16
Security Features
16
Autosensing Ethernet Connections with Auto Uplink
17
Extensive Protocol Support
17
Easy Installation and Management
18
Maintenance and Support
18
Package Contents
19
Hardware Features
19
Front Panel
19
Rear Panel
21
Bottom Panel with Product Label
22
Choosing a Location for the SRX5308
23
Using the Rack-Mounting Kit
23
Chapter 2 Connecting the VPN Firewall to the Internet
25
Understanding the Internet and WAN Configuration Tasks
25
Qualified Web Browsers
26
Logging in to the VPN Firewall
27
Understanding the Web Management Interface Menu Layout
29
Configuring the Internet Connections
31
Automatically Detecting and Connecting
31
Setting the VPN Firewall's MAC Address
35
Manually Configuring the Internet Connection
35
Configuring the WAN Mode
40
Configuring Network Address Translation
40
Configuring Classical Routing
41
Configuring the Auto-Rollover Mode and Failure Detection Method
42
Configuring Load Balancing and Optional Protocol Binding
45
Configuring Secondary WAN Addresses
49
Configuring Dynamic DNS
51
Configuring Advanced WAN Options
55
Additional WAN-Related Configuration Tasks
58
What to Do Next
59
Chapter 3 LAN Configuration
61
Managing Virtual Lans and DHCP Options
61
Understanding the VPN Firewall's Port-Based Vlans
62
Assigning and Managing VLAN Profiles
63
VLAN DHCP Options
64
Configuring a VLAN Profile
66
Configuring VLAN MAC Addresses and LAN Advanced Settings
71
Configuring Multi-Home LAN IP Addresses on the Default VLAN
72
Managing Groups and Hosts (LAN Groups)
74
Managing the Network Database
75
Changing Group Names in the Network Database
78
Setting up Address Reservation
79
Configuring and Enabling the DMZ Port
80
Managing Routing
84
Configuring Static Routes
85
Configuring Routing Information Protocol
87
Static Route Example
89
Chapter 4 Firewall Protection
91
About Firewall Protection
91
Administrator Tips
92
Using Rules to Block or Allow Specific Kinds of Traffic
92
Services-Based Rules
93
Order of Precedence for Rules
100
Setting LAN WAN Rules
101
Setting DMZ WAN Rules
104
Setting LAN DMZ Rules
108
Inbound Rules Examples
111
Outbound Rules Example
115
Configuring Other Firewall Features
116
Attack Checks
116
Setting Session Limits
119
Managing the Application Level Gateway for SIP Sessions
120
Creating Services, Qos Profiles, and Bandwidth Profiles
121
Adding Customized Services
121
Creating Quality of Service (Qos) Profiles
124
Creating Bandwidth Profiles
127
Setting a Schedule to Block or Allow Specific Traffic
130
Content Filtering (Blocking Internet Sites)
131
Understanding the VPN Firewall's Content Filtering
131
Enabling and Configuring Content Filtering
132
Enabling Source MAC Filtering
134
Setting up IP/MAC Bindings
136
Configuring Port Triggering
138
Configuring Universal Plug and Play
141
Chapter 5 Virtual Private Networking Using Ipsec Connections
143
Considerations for Multi-WAN Port Systems
143
Using the Ipsec VPN Wizard for Client and Gateway Configurations
145
Creating Gateway-To-Gateway VPN Tunnels with the Wizard
145
Creating a Client to Gateway VPN Tunnel
150
Testing the Connections and Viewing Status Information
158
Testing the VPN Connection
158
NETGEAR VPN Client Status and Log Information
159
Viewing the VPN Firewall Ipsec VPN Connection Status
161
Viewing the VPN Firewall Ipsec VPN Logs
162
Managing Ipsec VPN Policies
162
Configuring IKE Policies
163
Configuring VPN Policies
171
Configuring Extended Authentication (XAUTH)
179
Configuring XAUTH for VPN Clients
180
User Database Configuration
181
RADIUS Client Configuration
181
Assigning IP Addresses to Remote Users (Mode Config)
184
Mode Config Operation
184
Configuring Mode Config Operation on the VPN Firewall
184
Configuring the Prosafe VPN Client for Mode Config Operation
192
Testing the Mode Config Connection
197
Configuring Keepalives and Dead Peer Detection
197
Configuring Keepalives
198
Configuring Dead Peer Detection
199
Configuring Netbios Bridging with Ipsec VPN
201
Chapter 6 Virtual Private Networking
203
Understanding the SSL VPN Portal Options
203
Planning for an SSL VPN
204
Creating the Portal Layout
206
Configuring Domains, Groups, and Users
209
Configuring Applications for Port Forwarding
210
Adding Servers and Port Numbers
210
Adding a New Host Name
212
Configuring the SSL VPN Client
212
Configuring the Client IP Address Range
213
Adding Routes for VPN Tunnel Clients
215
Using Network Resource Objects to Simplify Policies
216
Adding New Network Resources
216
Editing Network Resources to Specify Addresses
217
Configuring User, Group, and Global Policies
219
Viewing Policies
220
Adding a Policy
221
Accessing the SSL Portal Login Screen
225
Viewing the SSL VPN Connection Status and SSL VPN Logs
227
Chapter 7 Managing Users, Authentication, and Certificates
229
Configuring VPN Authentication Domains, Groups, and Users
229
Configuring Domains
230
Configuring Groups for VPN Policies
234
Configuring User Accounts
237
Setting User Login Policies
239
Changing Passwords and Other User Settings
243
Managing Digital Certificates
245
Understanding the Certificates Screen
246
Managing CA Certificates
247
Managing Self Certificates
248
Managing the Certificate Revocation List
252
Chapter 8 Network and System Management
255
Performance Management
255
Bandwidth Capacity
255
Features that Reduce Traffic
256
Features that Increase Traffic
258
Using Qos and Bandwidth Assignment to Shift the Traffic MIX
261
Monitoring Tools for Traffic Management
262
System Management
262
Changing Passwords and Administrator Settings
262
Configuring Remote Management Access
264
Using the Command-Line Interface
268
Using a Simple Network Management Protocol Manager
268
Managing the Configuration File
271
Configuring Date and Time Service
275
Chapter 9 Monitoring System Access and Performance
277
Enabling the WAN Traffic Meter
277
Activating Notification of Events, Alerts, and Syslogs
281
Viewing Status and Log Screens
285
Viewing the System (Router) Status and Statistics
286
Viewing the VLAN Status
292
Viewing and Disconnecting Active Users
293
Viewing the VPN Tunnel Connection Status
294
Viewing the VPN Logs
295
Viewing the Port Triggering Status
297
Viewing the WAN Port Connection Status
297
Viewing the Attached Devices and DHCP Log
299
Using the Diagnostics Utilities
301
Sending a Ping Packet or Tracing a Route
302
Looking up a DNS Address
303
Displaying the Routing Table
304
Rebooting the VPN Firewall
304
Capturing Packets
304
NETGEAR ProSAFE SRX5308 Reference Manual (361 pages)
ProSafe Gigabit Quad WAN SSL VPN Firewall
Brand:
NETGEAR
| Category:
Firewall
| Size: 15 MB
Table of Contents
Revision History
2
Technical Support
2
Table of Contents
3
Chapter 1 Introduction
9
What Is the Prosafe Gigabit Quad WAN SSL VPN Firewall SRX5308
9
Key Features and Capabilities
10
Quad-WAN Ports for Increased Reliability and Outbound Load Balancing
10
Advanced VPN Support for both Ipsec and SSL
11
A Powerful, True Firewall with Content Filtering
11
Security Features
12
Autosensing Ethernet Connections with Auto Uplink
12
Extensive Protocol Support
12
Easy Installation and Management
13
Maintenance and Support
14
Package Contents
14
Hardware Features
14
Front Panel
14
Rear Panel
16
Bottom Panel with Product Label
17
Choose a Location for the VPN Firewall
17
Use the Rack-Mounting Kit
18
Chapter 2 Connecting the VPN Firewall to the Internet
19
Internet and WAN Configuration Tasks
19
Qualified Web Browsers
20
Log in to the VPN Firewall
20
Web Management Interface Menu Layout
23
Configure the Internet Connections
24
Automatically Detecting and Connecting
25
Set the VPN Firewall's MAC Address
28
Manually Configure the Internet Connection
28
Configure the WAN Mode
32
Configure Network Address Translation
33
Configure Classical Routing
33
Configure the Auto-Rollover Mode and Failure Detection Method
34
Configure Load Balancing and Optional Protocol Binding
36
Configure Secondary WAN Addresses
41
Configure Dynamic DNS
42
Configure WAN Qos Profiles
46
Configure Advanced WAN Options
51
Additional WAN-Related Configuration Tasks
54
What to Do Next
54
Chapter 3 LAN Configuration
55
Manage Virtual Lans and DHCP Options
55
Port-Based Vlans
56
Assign and Manage VLAN Profiles
57
VLAN DHCP Options
58
Configure a VLAN Profile
59
Configure VLAN MAC Addresses and LAN Advanced Settings
64
Configure Multi-Home LAN IP Addresses on the Default VLAN
65
Manage Groups and Hosts (LAN Groups)
67
Manage the Network Database
68
Change Group Names in the Network Database
71
Set up Address Reservation
72
Configure and Enable the DMZ Port
73
Manage Routing
76
Configure Static Routes
77
Configure Routing Information Protocol
79
Static Route Example
81
Chapter 4 Firewall Protection
82
About Firewall Protection
82
Administrator Tips
83
Use Rules to Block or Allow Specific Kinds of Traffic
83
Services-Based Rules
84
Order of Precedence for Rules
91
Set LAN WAN Rules
92
Set DMZ WAN Rules
96
Set LAN DMZ Rules
99
Inbound Rule Examples
102
Outbound Rules Example
106
Configure Other Firewall Features
107
Attack Checks
107
Set Session Limits
110
Manage the Application Level Gateway for SIP Sessions
112
Create Services, Qos Profiles, and Bandwidth Profiles
112
Add Customized Services
113
Create IP Groups
115
Create Quality of Service (Qos) Profiles
117
Create Bandwidth Profiles
119
Set a Schedule to Block or Allow Specific Traffic
122
Content Filtering
124
Enable and Configure Content Filtering
125
Enable Source MAC Filtering
127
Set up IP/MAC Bindings
129
Configure Port Triggering
131
Configure Universal Plug and Play
133
Chapter 5 Virtual Private Networking Using Ipsec Connections
135
Considerations for Multi-WAN Port Systems
135
Use the Ipsec VPN Wizard for Client and Gateway Configurations
137
Create Gateway-To-Gateway VPN Tunnels with the Wizard
137
Create a Client-To-Gateway VPN Tunnel
141
Test the Connection and View Connection and Status Information
156
Test the NETGEAR VPN Client Connection
156
NETGEAR VPN Client Status and Log Information
158
View the VPN Firewall Ipsec VPN Connection Status
158
View the VPN Firewall Ipsec VPN Logs
159
Manage Ipsec VPN Policies
160
Configure IKE Policies
160
Configure VPN Policies
167
Configure Extended Authentication (XAUTH)
174
Configure XAUTH for VPN Clients
175
User Database Configuration
176
RADIUS Client Configuration
176
Assign IP Addresses to Remote Users (Mode Config)
178
Mode Config Operation
178
Configure Mode Config Operation on the VPN Firewall
179
Configure the NETGEAR VPN Client for Mode Config Operation
185
Test the Mode Config Connection
192
Modify or Delete a Mode Config Record
193
Configure Keep-Alives and Dead Peer Detection
193
Configure Keep-Alives
194
Configure Dead Peer Detection
195
Configure Netbios Bridging with Ipsec VPN
196
Chapter 6 Virtual Private Networking Using SSL Connections
198
SSL VPN Portal Options
198
Overview of the SSL Configuration Process
199
Create the Portal Layout
200
Configure Domains, Groups, and Users
204
Configure Applications for Port Forwarding
204
Add Servers and Port Numbers
204
Add a New Host Name
206
Configure the SSL VPN Client
207
Configure the Client IP Address Range
207
Add Routes for VPN Tunnel Clients
209
Use Network Resource Objects to Simplify Policies
210
Add New Network Resources
210
Edit Network Resources to Specify Addresses
211
Configure User, Group, and Global Policies
212
View Policies
213
Add a Policy
214
Access the SSL Portal Login Screen
218
View the SSL VPN Connection Status and SSL VPN Logs
220
Chapter 7 Managing Users, Authentication, and Certificates
221
Configure VPN Authentication Domains, Groups, and Users
221
Configure Domains
221
Configure Groups for VPN Policies
226
Configure User Accounts
229
Set User Login Policies
231
Change Passwords and Other User Settings
235
Manage Digital Certificates
236
Certificates Screen
237
Manage CA Certificates
238
Manage Self-Signed Certificates
239
Manage the Certificate Revocation List
243
Chapter 8 Network and System Management
244
Performance Management
244
Bandwidth Capacity
244
Features that Reduce Traffic
245
Features that Increase Traffic
247
Port Triggering
248
Use Qos and Bandwidth Assignment to Shift the Traffic MIX
249
Monitoring Tools for Traffic Management
250
System Management
250
Change Passwords and Administrator Settings
250
Configure Remote Management Access
252
Use the Command-Line Interface
255
Use a Simple Network Management Protocol Manager
256
Manage the Configuration File
258
Configure Date and Time Service
262
Chapter 9 Monitoring System Access and Performance
265
Enable the WAN Traffic Meter
265
Enable the LAN Traffic Meter
268
Activate Notification of Events, Alerts, and Syslogs
271
View Status and Log Screens
276
View the System (Router) Status and Statistics
277
View the VLAN Status
282
View and Disconnect Active Users
283
View the VPN Tunnel Connection Status
284
View the VPN Logs
285
View the Port Triggering Status
287
View the WAN Port Connection Status
287
View the Attached Devices and DHCP Log
289
Use the Diagnostics Utilities
291
Send a Ping Packet or Trace a Route
291
Look up a DNS Address
292
Display the Routing Table
292
Reboot the VPN Firewall
293
Capture Packets
293
Advertisement
NETGEAR ProSAFE SRX5308 Reference Manual (357 pages)
Gigabit Quad WAN SSL VPN Firewall
Brand:
NETGEAR
| Category:
Firewall
| Size: 15 MB
Table of Contents
Revision History
2
Technical Support
2
Table of Contents
3
Chapter 1 Introduction
9
What Is the Prosafe Gigabit Quad WAN SSL VPN Firewall SRX5308
9
Key Features and Capabilities
10
Quad-WAN Ports for Increased Reliability and Outbound Load Balancing
10
Advanced VPN Support for both Ipsec and SSL
11
A Powerful, True Firewall with Content Filtering
11
Security Features
12
Autosensing Ethernet Connections with Auto Uplink
12
Extensive Protocol Support
12
Easy Installation and Management
13
Maintenance and Support
13
Package Contents
14
Hardware Features
14
Front Panel
14
Rear Panel
16
Bottom Panel with Product Label
17
Choose a Location for the VPN Firewall
17
Using the Rack-Mounting Kit
18
Chapter 2 Connecting the VPN Firewall to the Internet
19
Internet and WAN Configuration Tasks
19
Qualified Web Browsers
20
Log in to the VPN Firewall
20
Web Management Interface Menu Layout
23
Configure the Internet Connections
24
Automatically Detecting and Connecting
25
Set the VPN Firewall's MAC Address
28
Manually Configure the Internet Connection
28
Configure the WAN Mode
32
Configure Network Address Translation
33
Configure Classical Routing
33
Configure the Auto-Rollover Mode and Failure Detection Method
34
Configure Load Balancing and Optional Protocol Binding
36
Configure Secondary WAN Addresses
41
Configure Dynamic DNS
42
Configure WAN Qos Profiles
46
Configure Advanced WAN Options
51
Additional WAN-Related Configuration Tasks
54
What to Do Next
54
Chapter 3 LAN Configuration
55
Manage Virtual Lans and DHCP Options
55
Port-Based Vlans
56
Assign and Manage VLAN Profiles
57
VLAN DHCP Options
58
Configure a VLAN Profile
59
Configure VLAN MAC Addresses and LAN Advanced Settings
64
Configure Multi-Home LAN IP Addresses on the Default VLAN
65
Manage Groups and Hosts (LAN Groups)
67
Manage the Network Database
68
Change Group Names in the Network Database
71
Set up Address Reservation
72
Configure and Enable the DMZ Port
72
Manage Routing
75
Configure Static Routes
76
Configure Routing Information Protocol
78
Static Route Example
80
Chapter 4 Firewall Protection
81
About Firewall Protection
81
Administrator Tips
82
Use Rules to Block or Allow Specific Kinds of Traffic
82
Services-Based Rules
83
Order of Precedence for Rules
90
Set LAN WAN Rules
91
Set DMZ WAN Rules
95
Set LAN DMZ Rules
98
Lan Dmz Outbound Services Rules
99
Inbound Rules Examples
101
Outbound Rules Example
105
Configure Other Firewall Features
106
Attack Checks
106
Set Session Limits
109
Manage the Application Level Gateway for SIP Sessions
111
Create Services, Qos Profiles, and Bandwidth Profiles
111
Add Customized Services
112
Create IP Groups
114
Create Quality of Service (Qos) Profiles
116
Create Bandwidth Profiles
118
Set a Schedule to Block or Allow Specific Traffic
121
Content Filtering
123
Enable and Configure Content Filtering
124
Enable Source MAC Filtering
126
Set up IP/MAC Bindings
128
Configure Port Triggering
130
Configure Universal Plug and Play
132
Chapter 5 Virtual Private Networking Using Ipsec Connections
134
Considerations for Multi-WAN Port Systems
134
Use the Ipsec VPN Wizard for Client and Gateway Configurations
136
Create Gateway-To-Gateway VPN Tunnels with the Wizard
136
Create a Client to Gateway VPN Tunnel
140
Test the Connection and View Connection and Status Information
155
Test the NETGEAR VPN Client Connection
155
NETGEAR VPN Client Status and Log Information
156
View the VPN Firewall Ipsec VPN Connection Status
157
View the VPN Firewall Ipsec VPN Logs
158
Manage Ipsec VPN Policies
159
Configure IKE Policies
159
Configure VPN Policies
165
Configure Extended Authentication (XAUTH)
172
Configure XAUTH for VPN Clients
173
User Database Configuration
174
RADIUS Client Configuration
174
Assign IP Addresses to Remote Users (Mode Config)
176
Mode Config Operation
176
Configure Mode Config Operation on the VPN Firewall
177
Configure the NETGEAR VPN Client for Mode Config Operation
183
Test the Mode Config Connection
190
Modify or Delete a Mode Config Record
191
Configure Keep-Alives and Dead Peer Detection
191
Configure Keep-Alives
192
Configure Dead Peer Detection
193
Configure Netbios Bridging with Ipsec VPN
194
Chapter 6 Virtual Private Networking Using SSL Connections
196
SSL VPN Portal Options
196
Overview of the SSL Configuration Process
197
Create the Portal Layout
198
Configure Domains, Groups, and Users
202
Configure Applications for Port Forwarding
202
Add Servers and Port Numbers
202
Add a New Host Name
204
Configure the SSL VPN Client
205
Configure the Client IP Address Range
205
Add Routes for VPN Tunnel Clients
207
Use Network Resource Objects to Simplify Policies
208
Add New Network Resources
208
Edit Network Resources to Specify Addresses
209
Configure User, Group, and Global Policies
210
View Policies
211
Add a Policy
212
Access the SSL Portal Login Screen
216
View the SSL VPN Connection Status and SSL VPN Logs
218
Chapter 7 Managing Users, Authentication, and Certificates
219
Configure VPN Authentication Domains, Groups, and Users
219
Configure Domains
219
Configure Groups for VPN Policies
224
Configure User Accounts
227
Set User Login Policies
229
Change Passwords and Other User Settings
233
Manage Digital Certificates
234
Certificates Screen
235
Manage CA Certificates
236
Manage Self-Signed Certificates
237
Manage the Certificate Revocation List
241
Chapter 8 Network and System Management
242
Performance Management
242
Bandwidth Capacity
242
Features that Reduce Traffic
243
Features that Increase Traffic
245
Port Triggering
246
Use Qos and Bandwidth Assignment to Shift the Traffic MIX
247
Monitoring Tools for Traffic Management
248
System Management
248
Change Passwords and Administrator Settings
248
Configure Remote Management Access
250
Using the Command-Line Interface
253
Use a Simple Network Management Protocol Manager
254
Manage the Configuration File
256
Configure Date and Time Service
260
Chapter 9 Monitoring System Access and Performance
263
Enable the WAN Traffic Meter
263
Enable the LAN Traffic Meter
266
Activate Notification of Events, Alerts, and Syslogs
269
View Status and Log Screens
274
View the System (Router) Status and Statistics
275
View the VLAN Status
280
View and Disconnect Active Users
281
View the VPN Tunnel Connection Status
282
View the VPN Logs
283
View the Port Triggering Status
285
View the WAN Port Connection Status
285
View the Attached Devices and DHCP Log
287
Use the Diagnostics Utilities
289
Send a Ping Packet or Trace a Route
289
Look up a DNS Address
290
Display the Routing Table
290
Reboot the VPN Firewall
291
Capture Packets
291
Netgear ProSAFE SRX5308 Cli Reference Manual (328 pages)
Gigabit Quad WAN SSL VPN Firewall
Brand:
Netgear
| Category:
Firewall
| Size: 2 MB
Table of Contents
Revision History
2
Technical Support
2
Table of Contents
3
Chapter 1 Introduction
6
Command Syntax and Conventions
7
Command Conventions
7
Description of a Command
8
Common Parameters
9
The Four Categories of Commands
9
The Four Main Modes for Configuration Commands
10
Save Commands
12
Global Commands
13
The Three Basic Types of Commands
14
Command Autocompletion and Command Abbreviation
15
CLI Line-Editing Conventions
15
Access the CLI
16
Chapter 2 Overview of the Configuration Commands
17
Network Settings (Net Mode) Configuration Commands
17
Security Settings (Security Mode) Configuration Commands
20
Administrative and Monitoring Settings (System Mode) Configuration Commands
23
VPN Settings (VPN Mode) Configuration Commands
24
Chapter 3 Net Mode Configuration Commands
27
General WAN Commands
27
Ipv4 WAN Commands
31
Ipv6 WAN Commands
46
Ipv6 Tunnel Commands
50
Dynamic DNS Commands
53
Ipv4 LAN Commands
54
Ipv6 LAN Commands
66
Ipv4 DMZ Setup Commands
74
Ipv6 DMZ Setup Commands
76
WAN Qos Commands
80
Ipv4 Routing Commands
93
Ipv6 Routing Commands
98
Chapter 4 Security Mode Configuration Commands
101
Security Services Commands
101
Security Services Qos_Profile Add
103
Security Services Ip_Group Add
107
Security Schedules Commands
110
Ipv4 Add Firewall Rule and Edit Firewall Rule Commands
112
Security Firewall Ipv4 Add_Rule Lan_Wan Outbound
112
Security Firewall Ipv4 Add_Rule Lan_Wan Inbound
120
Security Firewall Ipv4 Add_Rule Dmz_Wan Outbound
129
Security Firewall Ipv4 Add_Rule Lan_Dmz Outbound
142
Security Firewall Ipv4 Add_Rule Lan_Dmz Inbound
148
Ipv4 General Firewall Commands
154
Ipv6 Firewall Commands
155
Security Firewall Ipv6 Configure
155
Attack Check Commands
162
Session Limit, Time-Out, and Advanced Commands
165
Security Firewall Session_Limit Configure
165
Security Firewall Session_Settings Configure
167
Address Filter and IP/MAC Binding Commands
168
Port Triggering Commands
173
Security Porttriggering_Rules Add
173
Upnp Command
176
Security Upnp Configure
176
Bandwidth Profile Commands
177
Content Filtering Commands
180
Security Content_Filter Content_Filtering Configure
180
Security Content_Filter Block_Group Enable
181
Security Content_Filter Block_Group Disable
182
Security Content_Filter Trusted_Domain Add
184
Chapter 5 System Mode Configuration Commands
186
Remote Management Commands
186
System Remote_Management Telnet Configure
188
SNMP Commands
191
System Snmp Sys Configure
191
Time Zone Command
192
System Time Configure
192
WAN Traffic Meter Command
198
Firewall Logs and Email Alerts Commands
201
System Logging Configure
201
System Logging Remote Configure
203
Chapter 6 VPN Mode Configuration Commands
207
Ipsec VPN Wizard Command
208
Ipsec IKE Policy Commands
210
Ipsec VPN Policy Commands
216
Ipsec VPN Mode Config Commands
228
SSL VPN Portal Layout Commands
231
SSL VPN Authentication Domain Commands
234
SSL VPN Authentication Group Commands
238
SSL VPN User Commands
239
SSL VPN Port Forwarding Commands
246
SSL VPN Client and Client Route Commands
248
SSL VPN Resource Commands
252
SSL VPN Policy Commands
256
RADIUS Server Command
263
Vpn Ipsec Radius Configure
263
PPTP Server Commands
265
Vpn Pptp Server Configure
265
L2TP Server Commands
266
Vpn L2Tp Server Configure
266
Chapter 7 Overview of the Show Commands
267
Network Settings (Net Mode) Show Commands
267
Security Settings (Security Mode) Show Commands
269
Administrative and Monitoring Settings (System Mode) Show Commands
270
VPN Settings (VPN Mode) Show Commands
271
Chapter 8 Show Commands
273
Network Settings (Net Mode) Show Commands
273
WAN Ipv4 and WAN Ipv6 Show Commands
273
Show Net Protocol_Binding Setup
276
Ipv6 Mode, Ipv6 Tunnel, and SIIT Show Commands
277
Show Net Qos Setup
277
Show Net Ipv6 Ipmode Setup
277
Show Net Ipv6_Tunnel Setup
277
LAN DHCP Show Commands
278
Show Net Ipv6_Tunnel Status
278
Show Net Siit Setup
278
Show Net Lan Dhcp Leased_Clients List
278
Show Net Lan Dhcp Logs
278
Dynamic DNS Show Commands
279
Ipv4 LAN Show Commands
280
Show Net Lan Ipv4 Setup
280
Show Net Lan Lan_Groups
282
Show Net Lan Ipv4 Multihoming
282
Show Net Lan Ipv4 Traffic_Meter Setup
282
Ipv6 LAN Show Commands
284
Show Net Lan Ipv6 Setup
284
Show Net Radvd Lan Setup
285
Show Net Lan Ipv6 Multihoming
285
DMZ Show Commands
286
Show Net Dmz Ipv4 Setup
286
Show Net Dmz Ipv6 Setup
286
Show Net Radvd Dmz Setup
287
Routing Show Commands
288
Network Statistics Show Commands
289
Security Settings (Security Mode) Show Commands
290
Services Show Command
290
Show Security Services Qos_Profile Setup
291
Show Security Services Ip_Group Ip_Setup
291
Schedules Show Command
292
Firewall Rules Show Command
292
Show Security Schedules Setup
292
Show Security Firewall Ipv4 Setup Lan_Wan
292
Show Security Firewall Ipv4 Setup Dmz_Wan
293
Show Security Firewall Ipv4 Setup Lan_Dmz
293
Attack Checks Show Commands
294
Session Limits Show Commands
295
Advanced Firewall Show Commands
296
Address Filter Show Commands
296
Port Triggering Show Commands
297
Upnp Show Commands
298
Bandwidth Profiles Show Command
298
Content Filtering Show Commands
299
Administrative and Monitoring Settings (System Mode) Show Commands
300
Remote Management Show Command
301
SNMP Show Commands
301
Time Show Command
302
Firmware Version Show Command
302
Status Show Command
303
Show System Status
303
WAN Traffic Meter Show Command
306
Logging Configuration Show Commands
307
Show System Logging Setup
307
Logs Show Commands
309
Show System Logging Remote Setup
309
Show System Logs
309
VPN Settings (VPN Mode) Show Commands
311
Ipsec VPN Show Commands
311
Show Vpn Ipsec Ikepolicy Setup
311
Show Vpn Ipsec Vpnpolicy Setup
311
Show Vpn Ipsec Vpnpolicy Status
312
Show Vpn Ipsec Mode_Config Setup
312
Show Vpn Ipsec Logs
312
SSL VPN Show Commands
313
Show Vpn Sslvpn Client
313
Show Vpn Sslvpn Logs
313
Show Vpn Sslvpn Policy
314
Show Vpn Sslvpn Portal_Layouts
314
Show Vpn Sslvpn Portforwarding Appconfig
314
SSL VPN User Show Commands
316
Show Vpn Sslvpn Users Users
317
RADIUS Server Show Command
319
PPTP Server Show Commands
320
L2TP Server Show Commands
320
Netgear ProSAFE SRX5308 Installation Manual (2 pages)
Gigabit Quad WAN SSL VPN Firewall
Brand:
Netgear
| Category:
Firewall
| Size: 0 MB
NETGEAR ProSAFE SRX5308 Datasheet (3 pages)
Quad WAN Gigabit SSL VPN Firewall
Brand:
NETGEAR
| Category:
Firewall
| Size: 0 MB
Advertisement
Related Products
Netgear SRXN3205 - ProSafe Wireless-N VPN Firewall Wireless Router
Netgear ProSafe FVS114
NETGEAR ProSafe FR328S
NETGEAR ProSafe VPN Firewall 50 FVS338 FVS338 FVS338
NETGEAR ProSafe VPN Firewall 200 FVX538
Netgear ProSafe FVS318v3
Netgear ProSAFE FVS336G v3
Netgear ProSAFE FVS318G v2
NETGEAR ProSafe Quad WAN FR538G
NETGEAR SRX5308 - ProSafe® Quad WAN Gigabit SSL VPN Firewall
Netgear Categories
Wireless Router
Switch
Network Router
Adapter
Wireless Access Point
More Netgear Manuals
Login
Sign In
OR
Sign in with Facebook
Sign in with Google
Upload manual
Upload from disk
Upload from URL