Netgear SRXN3205 SRXN3205 Reference Manual - Page 125
Configuring XAUTH for VPN Clients, VPN > IPsec VPN, IKE Policies, XAUTH, Extended Authentication
UPC - 606449057461
View all Netgear SRXN3205 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 125 highlights
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual Configuring XAUTH for VPN Clients Once the XAUTH has been enabled, you must establish user accounts in the User Database to be authenticated against XAUTH, or you must enable a RADIUS-CHAP or RADIUS-PAP server. Note: If you are modifying an existing IKE Policy to add XAUTH, if it is in use by a VPN policy, the VPN policy must be disabled before you can modify the IKE Policy. To enable and configure XAUTH: 1. Select VPN > IPsec VPN from the main/submenu. 2. Click the IKE Policies tab and the IKE Policies screen displays. Figure 6-12 3. You can add XAUTH to an existing IKE Policy by clicking Edit adjacent to the policy to be modified or you can create a new IKE Policy incorporating XAUTH by clicking Add. 4. In the Extended Authentication section check the Edge Device radio box to use this firewall as a VPN concentrator where one or more gateway tunnels terminate. You then must specify the authentication type to be used in verifying credentials of the remote VPN gateways. (Either the User Database or RADIUS Client must be configured when XAUTH is enabled.) 5. In the Extended Authentication section, choose the Authentication Type from the pulldown menu which will be used to verify user account information. Select • Edge Device to use this firewall as a VPN concentrator where one or more gateway tunnels terminate. When this option is chosen, you will need to specify the authentication type to be used in verifying credentials of the remote VPN gateways. - User Database to verify against the firewall's user database. Users must be added through the User Database screen (see "User Database Configuration" on page 6-24). Virtual Private Networking Using IPsec v1.0, October 2008 6-23