Netgear FVS328 FVS328 Reference Manual - Page 105
Set up Certificate Revocation List CRL checking
UPC - 606449026528
View all Netgear FVS328 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 105 highlights
Model FVS328 ProSafe VPN Firewall with Dial Back-up Reference Manual Now, the traffic from devices within the range of the LAN subnet addresses on FVS328 Gateway A and Gateway B will be authenticated using the certificates and generated keys rather than via a shared key. 8. Set up Certificate Revocation List (CRL) checking. a. Get a copy of the CRL from the CA and save it as a text file. Note: The procedure for obtaining a CRL differs from a CA like Verisign and a CA such as a Windows 2000 certificate server, which an organization operates for providing certificates for its members. Follow the procedures of your CA. b. From the main menu VPN section, click the CRL link. c. Click Add to add a CRL. d. Click Browse to locate the CRL file. e. Click Upload. Now expired or revoked certificates will not be allowed to use the VPN tunnels managed by IKE policies which use this CA. Note: You must update the CRLs regularly in order to maintain the validity of the certificate-based VPN policies. Virtual Private Networking May 2004, 202-10031-01 7-31