Netgear SRXN3205 SRXN3205 Reference Manual - Page 109

ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Creating a VPN Client to SRXN3205 Connection This section describes how to configure a VPN connection between a Windows PC and the SRXN3205 firewall. Using the SRXN3205's VPN Wizard, we will create VPN client policies (IKE and VPN) that will allow remote PCs to connect from locations in which their IP addresses are unknown in advance. The PCs may be directly connected to the Internet or may be behind NAT routers. Each PC will use Netgear's ProSafe VPN Client software. Since the PC's IP address is assumed to be unknown, the PC must always be the initiator of the connection. This procedure was developed and tested using: • Netgear SRXN3205 ProSafe Wireless-N VPN Firewall • Netgear ProSafe VPN Client • NAT router: Netgear FVX538 Configuring the SRXN3205 1. Start/open the VPN Wizard. 2. Select the VPN Client radio button for type of VPN connection. 3. Give the client connection a name, such as "client". 4. Enter a value for the pre-shared key. 5. Enter the Remote Identifier Information. The default is srxn_remote.com. 6. Enter the Local Identifier information. The default is srxn_local.com 7. Click Apply to create the "client" VPN Client. The VPN Policies screen is displayed showing the VPN Client policy as enabled. 8. Click the IKE Policies tab to display the IKE Policies table and click Edit adjacent to the "client" policy to view the policy details. You can augment user authentication security by enabling the XAUTH server by selecting the Edge Device radio box and then adding users to the user database (see "Extended Authentication (XAUTH) Configuration" on page 6-22 and "User Database Configuration" on page 6-24, respectively). As an alternative to the local user database, you can also choose a RADIUS server. Virtual Private Networking Using IPsec 6-7 v1.0, October 2008