Home » Netgear Manuals » Bridges & Routers » Netgear N750-WiFi » Manual Viewer

Netgear N750-WiFi User Manual - Page 131

Enable PFS Perfect Forward Secrecy, Fully Qualified User Name

Add to My Manuals
Save this manual to your list of manuals

Page 131 highlights

N750 Wireless Dual Band Gigabit ADSL Modem Router DGND4000 - Direction/Type. This setting is used when determining if the IKE policy matches the current traffic. Select the desired option. - Responder only. Incoming connections are allowed, but outgoing connections are blocked. - Initiator and Responder. Both incoming and outgoing connections are allowed. - Exchange Mode. Currently, only Main Mode is supported. Ensure that the remote VPN endpoint is set to use Main Mode. - Diffie-Hellman (DH) Group. The Diffie-Hellman algorithm is used when the connection exchanges keys. The DH Group setting determines the bit size used in the exchange. This value must match the value used on the remote VPN gateway. - Local Identity Type. Select the desired option to match the Remote Identity Type setting on the remote VPN endpoint. - WAN IP Address. Your Internet IP address. - Fully Qualified Domain Name. Your domain name. - Fully Qualified User Name. Your name, email address, or other ID. - Local Identity Data. Enter the data for the selection. If WAN IP Address is selected, no input is required. - Remote Identity Type. Select the desired option to match the Local Identity Type setting on the remote VPN endpoint. - IP Address. The Internet IP address of the remote VPN endpoint. - Fully Qualified Domain Name. The domain name of the remote VPN endpoint. - Fully Qualified User Name. The name, email address, or other ID of the remote VPN endpoint. - Remote Identity Data. Enter the data for the selection. If IP Address is selected, no input is required. • Parameters. - Encryption Algorithm. The encryption algorithm used for both IKE and IPSec. This setting must match the setting used on the remote VPN gateway. - Authentication Algorithm. The authentication algorithm used for both IKE and IPSec. This setting must match the setting used on the remote VPN gateway. - Pre-shared Key. The key has to be entered both here and on the remote VPN gateway. - SA Life Time. This setting determines the time interval before the SA (security association) expires. (It is automatically reestablished as required.) While using a short time period (or data amount) increases security, it also degrades performance. It is common to use periods over an hour (3600 seconds) for the SA lifetime. This setting applies to both IKE and IPSec SAs. - Enable PFS (Perfect Forward Secrecy). If enabled, security is enhanced by ensuring that the key is changed at regular intervals. Also, even if one key is broken, subsequent keys are no easier to break. (Each key has no relationship to the previous key.) Advanced Settings 131

Section	Page
N750 WiFi DSL Modem Router Premium Edition	1
Contents	3
1. Hardware Setup	7
Unpack Your New Router	11
Hardware Features	12
Label	12
Back Panel	13
Front Panel	14
Position Your Wireless Router	17
ADSL Microfilters	18
One-Line ADSL Microfilter (Not Included)	18
Two-Line ADSL Microfilter (Included)	19
Summary	19
Cable Your N750 Wireless Modem Router	19
Verify the Cabling	20
2. Get Started with NETGEAR genie	21
Prepare to Set Up the Wireless Modem Router	22
Use Standard TCP/IP Properties for DHCP	22
Gather ISP Information	22
Wireless Devices and Security Settings	22
Types of Logins and Access	22
NETGEAR genie Setup	23
Use NETGEAR genie after Installation	24
Upgrade Wireless Modem Router Firmware	24
Wireless Modem Router Dashboard (BASIC Home Screen)	25
Add Wireless Devices or Computers to Your Network	26
Manual Method	26
Wi-Fi Protected Setup (WPS) Method	26
3. NETGEAR genie BASIC Settings	28
Internet Basic Settings	29
Internet Basic Settings Screen Fields	29
Attached Devices	30
Parental Controls	32
ReadySHARE USB Storage and Printer	33
USB Storage (Basic Settings)	33
ReadySHARE Printer	34
Basic Wireless Settings	34
Wireless Settings Screen Fields	36
Change WPA Security Option and Passphrase	37
Guest Networks	38
Guest Network Wireless Security Options	39
NETGEAR genie App	40
NETGEAR genie Mobile App	41
4. NETGEAR genie ADVANCED Home	42
Setup Wizard	43
WPS Wizard	45
VPN Wizard	46
Setup Menu	48
ADSL Setup	49
WAN Setup	50
Default DMZ Server	51
Change the MTU Size	51
LAN Setup	53
LAN Setup Screen Settings	54
Use the Wireless Modem Router as a DHCP Server	54
Address Reservation	55
Quality of Service Setup	56
5. USB Storage	61
USB Drive Requirements	62
ReadySHARE Access	62
File-Sharing Scenarios	63
USB Storage Basic Settings	64
Add or Edit a Network Folder	65
USB Storage Advanced Settings	66
Safely Remove a USB Drive	67
Media Server Settings	68
Specify Approved USB Devices	69
Connect to the USB Drive from a Remote Computer	70
Access the Wireless Modem Router’s USB Drive Remotely Using FTP	70
6. USB Printer Control	71
Control Center Configuration	73
USB Printer	73
Scan with a Multifunction Printer	74
7. Security	75
Keyword Blocking of HTTP Traffic	76
Firewall Rules	77
Add Custom Services to Allow or Block	79
Schedule for Firewall Rules	81
Security Event Email Notifications	82
8. Administration	83
Upgrade the Wireless Modem Router Firmware	84
View Wireless Modem Router Status	85
Router Information	85
Internet Port	85
Wireless Settings (2.4 GHz) and Wireless Settings (5 GHz)	87
Guest Network (2.4 GHz) and Guest Network (5 GHz)	88
View VPN Status	89
View Logs of Web Access or Attempted Web Access	89
Attached Devices	90
Manage the Configuration File	90
Back Up Settings	91
Restore Configuration Settings	91
Erase	91
Set Password	92
Password Recovery	92
Diagnostics	93
Time Machine	95
Set Up Time Machine	95
Access the Connected USB Hard Drive	96
Before You Back Up a Large Amount of Data	98
Change the Partition Scheme	100
9. Advanced Settings	101
Advanced Wireless Settings	102
Wireless Repeating Function (WDS)	105
Wireless Repeating Function	106
Set Up the Base Station	107
Set Up a Repeater Unit	108
Port Forwarding and Triggering	109
Remote Computer Access Basics	109
Port Triggering to Open Incoming Ports	110
Port Forwarding to Permit External Host Communications	112
How Port Forwarding Differs from Port Triggering	113
Set Up Port Forwarding to Local Servers	113
Add a Custom Service	115
Edit or Delete a Port Forwarding Entry	115
Set Up Port Triggering	116
Dynamic DNS	118
Static Routes	119
Remote Management	122
USB Settings	123
Universal Plug and Play	123
IPv6	125
Traffic Meter	125
Device Mode	127
VPN Policies	127
Add or Edit an Auto VPN Policy	129
Add or Edit a Manual VPN Policy	132
10. Troubleshooting	134
Quick Tips	135
Sequence to Restart Your Network	135
Check Ethernet Cable Connections	135
Wireless Settings	135
Network Settings	135
Troubleshoot with the LEDs	136
Power LED Is Off or Blinking	136
Power LED Stays Red	136
LEDs Never Turn Off	137
Internet or Ethernet Port LEDs Are Off	137
Wireless LEDs Are Off	137
The Push 'N' Connect (WPS) Button Blinks Green	137
Cannot Log In to the Router	138
Cannot Access the Internet	138
Troubleshoot PPPoE	140
Troubleshoot Internet Browsing	140
Changes Not Saved	141
Incorrect Date or Time	141
Wireless Connectivity	141
Wireless Signal Strength	142
Restore the Factory Settings and Password	142
Troubleshoot Your Network Using the Ping Utility	142
Test the LAN Path to Your Router	142
Test the Path from Your Computer to a Remote Device	143
A. Supplemental Information	145
Factory Settings	146
Technical Specifications	148

Match case Limit results 1 per page

Advanced Settings

131

N750 Wireless Dual Band Gigabit ADSL Modem Router DGND4000

Direction/Type

. This setting is used when determining if the IKE policy matches

the current traffic. Select the desired option.

Responder only

. Incoming connections are allowed, but outgoing connections

are blocked.

Initiator and Responder

. Both incoming and outgoing connections are allowed.

Exchange Mode

. Currently, only Main Mode is supported. Ensure that the remote

VPN endpoint is set to use Main Mode.

Diffie-Hellman (DH) Group

. The Diffie-Hellman algorithm is used when the

connection exchanges keys. The DH Group setting determines the bit size used

in the exchange. This value must match the value used on the remote VPN

gateway.

Local Identity Type

. Select the desired option to match the Remote Identity Type

setting on the remote VPN endpoint.

WAN IP Address

. Your Internet IP address.

Fully Qualified Domain Name

. Your domain name.

Fully Qualified User Name

. Your name, email address, or other ID.

Local Identity Data

. Enter the data for the selection. If WAN IP Address is

selected, no input is required.

Remote Identity Type

. Select the desired option to match the Local Identity Type

setting on the remote VPN endpoint.

IP Address

. The Internet IP address of the remote VPN endpoint.

Fully Qualified Domain Name

. The domain name of the remote VPN endpoint.

Fully Qualified User Name

. The name, email address, or other ID of the remote

VPN endpoint.

Remote Identity Data

. Enter the data for the selection. If IP Address is selected,

no input is required.

•

Parameters

Encryption Algorithm

. The encryption algorithm used for both IKE and IPSec.

This setting must match the setting used on the remote VPN gateway.

Authentication Algorithm

. The authentication algorithm used for both IKE and

IPSec. This setting must match the setting used on the remote VPN gateway.

Pre-shared Key

. The key has to be entered both here and on the remote VPN

gateway.

SA Life Time

. This setting determines the time interval before the SA (security

association) expires. (It is automatically reestablished as required.) While using a

short time period (or data amount) increases security, it also degrades

performance. It is common to use periods over an hour (3600 seconds) for the SA

lifetime. This setting applies to both IKE and IPSec SAs.

Enable PFS (Perfect Forward Secrecy)

. If enabled, security is enhanced by

ensuring that the key is changed at regular intervals. Also, even if one key is

broken, subsequent keys are no easier to break. (Each key has no relationship to

the previous key.)