NETGEAR FVS318N Modem User Manual


 
Virtual Private Networking Using IPSec and L2TP Connections
229
ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N
5. Click Apply to save your settings. The IKE policy is added to the List of IKE Policies table.
To edit an IKE policy:
1. Select VPN > IPSec VPN. The IPSec VPN sub
menu tabs display with the IKE Policies
screen for IPv4 in view (see Figure 139 on p
age 223).
2. S
pecify the IP version for which you want to edit an IKE policy:
IP
v4. In the upper right of the screen, the IPv4 radio button is already selected by
default. Go to Step 3.
IP
v6. Select the IPv6 radio button. The IKE Policies screen for IPv6 displays.
3. In the List of IKE Policies t
able, click the Edit table button to the right of the IKE policy that
you want to edit. The Edit IKE Policy screen displays. This screen shows the same fields as
the Add IKE Policy screen (see Figure 140 on p
age 225).
Extended Authentication
XAUTH Configuration
Note: For more
information ab
out
XAUTH and its
authentication modes,
see Configure XAUTH
for VPN Clients on
page 239.
Select one of the following radio buttons to specify whether Extended
Authentication (XAUTH) is enabled, and, if enabled, which device is used to verify
user account information:
None. XAUT
H is disabled. This the default setting.
Edge Device. The wireless VPN firewall functions as a VPN concentrator on
which one or more gateway tunnels terminate. The authentication modes that
are available for this configuration are User Database, RADIUS PAP, or RADIUS
CHAP.
IPSec Host.
The wireless VPN firewall functions as a VPN client of the remote
gateway. In this configuration, the wireless VPN firewall is authenticated by a
remote gateway with a user name and password combination.
Authentication
Ty
pe
For an Edge Device configuration, from the drop-down list,
select one of the following authentication types:
Use
r Database. XAUTH occurs through the wireless VPN
firewall’s user database. You can add users on the Add
User screen (see User Database Configuration on
page 240).
Ra
dius PAP. XAUTH occurs through RADIUS Password
Authentication Protocol (PAP). The local user database is
first checked. If the user account is not present in the local
user database, the wireless VPN firewall connects to a
RADIUS server. For more information, see RADIUS Client
and Server Configuration on p
age 240.
Radius CHAP. XAUTH occurs through RADIUS Challenge
Handshake Authentication Protocol (CHAP). For more
information, see RADIUS Client and Server Configuration
on page 240.
Username The user name for XAUTH.
Password The password for XAUTH.
Table 52. Add IKE Policy screen settings (continued)
Setting Description