FVM318.
FVM318.book Page 1 Wednesday, September 18, 2002 5:20 PM Chapter 5 Managing Your Network This chapter describes how to perform network management tasks with your FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall. Network Management Information The FR328S provides a variety of status and usage information which is discussed below. Viewing Router Status and Usage Statistics From the Main Menu, under Maintenance, select Router Status to view the screen in Figure 5-1.
FVM318.book Page 2 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall The Router Status menu provides a limited amount of status and usage information. From the Main Menu of the browser interface, under Maintenance, select Router Status to view the status screen, shown in Figure 5-1. This screen shows the following parameters: Table 5-1. Menu 3.
FVM318.book Page 3 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Click on the “Show Statistics” button to display firewall usage statistics, as shown in Figure 5-2 below: Figure 5-2. Router Statistics screen This screen shows the following statistics:. Table 5-2. Router Statistics Fields Field Description WAN, LAN, or Serial Port The statistics for the WAN (Internet), LAN (local), and Serial ports.
FVM318.book Page 4 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Viewing Attached Devices The Attached Devices menu contains a table of all IP devices that the firewall has discovered on the local network.
FVM318.book Page 5 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Viewing, Selecting, and Saving Logged Information The firewall will log security-related events such as denied incoming service requests, hacker probes, and administrator logins. If you enabled content filtering in the Block Sites menu, the Logs page shows you when someone on your network tried to access a blocked site.
FVM318.book Page 6 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Log entries are described in Table 5-5 Table 5-5: Security Log entry descriptions Field Description Date and Time The date and time the log entry was recorded. Description or Action The type of event and what action was taken if any. Source IP The IP address of the initiating device for this log entry.
FVM318.book Page 7 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall • Router operation (start up, get time, etc.) • Known DoS attacks and Port Scans Saving Log Files on a Server You can choose to write the logs to a PC running a syslog program. To activate this feature, check the box under Syslog and enter the IP address of the server where the log file will be written.
FVM318.book Page 8 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Enabling Security Event E-mail Notification In order to receive logs and alerts by e-mail, you must provide your e-mail information in the E-Mail subheading: • Turn e-mail notification on Check this box if you wish to receive e-mail logs and alerts from the firewall.
FVM318.book Page 9 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall • Send logs according to this schedule Specifies how often to send the logs: Hourly, Daily, Weekly, or When Full. – Day for sending log Specifies which day of the week to send the log. Relevant when the log is sent weekly or daily. – Time for sending log Specifies the time of day to send the log. Relevant when the log is sent daily or weekly.
FVM318.book Page 10 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall 2. From the Maintenance heading of the Main Menu, select the Settings Backup menu as seen in Figure 5-7. Figure 5-7: Settings Backup menu 3. Click Backup to save a copy of the current settings. 4. Store the .cfg file on a computer on your network.
FVM318.book Page 11 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Procedure 5-6: Restore a Configuration from a File 1. Log in to the firewall at its default LAN address of http://192.168.0.1 with its default User Name of admin, default password of password, or using whatever User Name, Password and LAN address you have chosen for the firewall. 2.
FVM318.book Page 12 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Running Diagnostic Utilities and Rebooting the Router The FVM318 firewall has a diagnostics feature. You can use the diagnostics menu to perform the following functions from the firewall: • Ping an IP Address to test connectivity to see if you can reach a remote host.
FVM318.book Page 13 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Enabling Remote Management Using the Remote Management page, you can allow a user or users on the Internet to configure, upgrade and check the status of your NETGEAR Cable/DSL ProSafe VPN Firewall. Note: Be sure to change the router's default password to a very secure password.
FVM318.book Page 14 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall When accessing your router from the Internet, you will type your router's WAN IP address into your browser's Address (in IE) or Location (in Netscape) box, followed by a colon (:) and the custom port number. For example, if your external address is 134.177.0.123 and you use port number 8080, enter in your browser: http://134.177.0.
FVM318.book Page 15 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall 4. In the Router Upgrade menu, click the Browse to locate the binary (.BIN or .IMG) upgrade file. 5. Click Upload. Note: When uploading software to the firewall, it is important not to interrupt the Web browser by closing the window, clicking a link, or loading a new page. If the browser is interrupted, it may corrupt the software.
FVM318.
FVM318.book Page 1 Wednesday, September 18, 2002 5:20 PM Chapter 6 Wireless Configuration This chapter describes how to configure the wireless features of your DG824M Wireless ADSL Modem Gateway. Considerations For A Wireless Network In planning your wireless network, you should consider the level of security required. You should also select the physical placement of your router in order to maximize the network speed.
FVM318.book Page 2 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model DG824M Wireless ADSL Modem Gateway For best results, place your router: • • • • Near the center of the area in which your PCs will operate, In an elevated location such as a high shelf, Away from potential sources of interference, such as PCs, microwaves, and cordless phones, Away from large metal surfaces.
FVM318.book Page 3 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model DG824M Wireless ADSL Modem Gateway Wireless Network Settings In the Wireless Network section are the following parameters: • SSID (Service Set ID) Enter a value of up to 32 alphanumeric characters. The same SSID must be assigned to all wireless devices in your network. The default SSID is Wireless, but NETGEAR strongly recommends that you change your network’s SSID to a different value.
FVM318.book Page 4 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model DG824M Wireless ADSL Modem Gateway Using the Wireless Card Access List to Restrict Wireless Access by MAC Address By default, any wireless PC that is configured with the correct SSID will be allowed access to your network. For increased security, you can restrict access to the wireless network to only allow specific PCs based on their MAC addresses.
FVM318.book Page 5 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model DG824M Wireless ADSL Modem Gateway Configuring Wired Equivalent Privacy (WEP) In the Wireless Settings menu you can configure WEP data encryption using the following parameters: • • • Authentication Type Normally this can be left at the default value of "Automatic." If that fails, select the appropriate value - "Open System" or "Shared Key." Check your wireless card's documentation to see what method to use.
FVM318.
FVM318.book Page 1 Wednesday, September 18, 2002 5:20 PM Chapter 7 Advanced Configuration This chapter describes how to configure the advanced features of your FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall.
FVM318.book Page 2 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Incoming traffic from the Internet is normally discarded by the firewall unless the traffic is a response to one of your local computers or a service that you have configured in the Ports menu. Instead of discarding this traffic, you can have it forwarded to one computer on your network. This computer is called the Default DMZ Server.
FVM318.book Page 3 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall • IP Subnet Mask This is the LAN Subnet Mask of the firewall. Combined with the IP address, the IP Subnet Mask allows a device to know which other addresses are local to it, and which must be reached through a gateway or router. • RIP Direction RIP (Router Information Protocol) allows a router to exchange routing information with other routers.
FVM318.book Page 4 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall 2. Enter a new size between 64 and 1500. 3. Click Apply to save the new configuration. DHCP By default, the firewall will function as a DHCP (Dynamic Host Configuration Protocol) server, allowing it to assign IP, DNS server, and default gateway addresses to all computers connected to the router's LAN.
FVM318.book Page 5 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall • WINS Server, short for Windows Internet Naming Service Server, determines the IP address associated with a particular Windows computer. A WINS server records and reports a list of names and IP address of Windows PCs on its local network. If you connect to a remote network that contains a WINS server, enter the server’s IP address here.
FVM318.book Page 6 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Procedure 7-1: Configure LAN TCP/IP Setup 1. Log in to the firewall at its default LAN address of http://192.168.0.1 with its default User Name of admin, default password of password, or using whatever User Name, Password and LAN address you have chosen for the firewall. 2.
FVM318.book Page 7 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall The firewall contains a client that can connect to a dynamic DNS service provider. To use this feature, you must select a service provider and obtain an account with them.
FVM318.book Page 8 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Using Static Routes Static Routes provide additional routing information to your firewall. Under normal circumstances, the firewall has adequate routing information after it has been configured for Internet access, and you do not need to configure additional static routes.
FVM318.book Page 9 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Procedure 7-3: Configuring Static Routes 1. Log in to the firewall at its default LAN address of http://192.168.0.1 with its default User Name of admin, default password of password, or using whatever User Name, Password and LAN address you have chosen for the firewall. 2.
FVM318.book Page 10 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall 4. d. Select Private if you want to limit access to the LAN only. The static route will not be reported in RIP. e. Type the Destination IP Address of the final destination. f. Type the IP Subnet Mask for this destination. If the destination is a single host, type 255.255.255.255. g.
FVM318.book Page 1 Wednesday, September 18, 2002 5:20 PM Chapter 8 Troubleshooting This chapter gives information about troubleshooting your FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall. For the common problems listed, go to the section indicated. • Is the firewall on? • Have I connected the firewall correctly? Go to “Basic Functions“ on page 8-1. • I can’t access the firewall’s configuration with my browser. Go to “Troubleshooting the Web Configuration Interface“ on page 8-4.
FVM318.book Page 2 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall b. The Local port Link LEDs are lit for any local ports that are connected. c. The Internet Link port LED is lit. If a port’s Link LED is lit, a link has been established to the connected device. If a port is connected to a 100 Mbps device, verify that the port’s 100 LED is lit.
FVM318.book Page 3 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall • Make sure that the Ethernet cable connections are secure at the firewall and at the hub or PC. • Make sure that power is turned on to the connected hub or PC. • Be sure you are using the correct cable: — When connecting the firewall’s Internet port to a cable or DSL modem, use the cable that was supplied with the cable or DSL modem.
FVM318.book Page 4 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Troubleshooting the Web Configuration Interface If you are unable to access the firewall’s Web Configuration interface from a PC on your local network, check the following: • Check the Ethernet connection between the PC and the firewall as described in the previous section. • Make sure your PC’s IP address is on the same subnet as the firewall.
FVM318.book Page 5 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Troubleshooting the ISP Connection If your firewall is unable to access the Internet, you should first determine whether the firewall is able to obtain a WAN IP address from the ISP. Unless you have been assigned a static IP address, your firewall must request an IP address from the ISP.
FVM318.book Page 6 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall OR Configure your firewall to spoof your PC’s MAC address. This can be done in the Basic Settings menu. Refer to ““ on page 2-21. If your firewall can obtain an IP address, but your PC is unable to load any web pages from the Internet: • Your PC may not recognize any DNS server addresses.
FVM318.
FVM318.book Page 8 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall — If your ISP assigned a host name to your PC, enter that host name as the Account Name in the Basic Settings menu. — Your ISP could be rejecting the Ethernet MAC addresses of all but one of your PCs.
FVM318.book Page 9 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Problems with Date and Time The E-Mail menu in the Content Filtering section displays the current date and time of day. The FVM318 firewall uses the Network Time Protocol (NTP) to obtain the current time from one of several Network Time Servers on the Internet. Each entry in the log is stamped with the date and time of day.
FVM318.
FVM318.book Page 1 Wednesday, September 18, 2002 5:20 PM Appendix A Technical Specifications This appendix provides technical specifications for the FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall.
FVM318.
FVM318.book Page 1 Wednesday, September 18, 2002 5:20 PM Appendix B Network, Routing, Firewall, and Wireless Basics This chapter provides an overview of IP networks, routing, and wireless networking. Related Publications As you read this document, you may be directed to various RFC documents for further information. An RFC is a Request For Comment (RFC) published by the Internet Engineering Task Force (IETF), an open organization that defines the architecture and operation of the Internet.
FVM318.book Page 2 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall What is a Router? A router is a device that forwards traffic between networks based on network layer information in the data and on routing tables maintained by the router. In these routing tables, a router builds up a logical picture of the overall network by gathering and exchanging information with other routers in the network.
FVM318.book Page 3 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall 195.34.12.7 The latter version is easier to remember and easier to enter into your computer. In addition, the 32 bits of the address are subdivided into two parts. The first part of the address identifies the network, and the second part identifies the host node or station on the network.
FVM318.book Page 4 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall • Class B Class B addresses can have up to 65,354 hosts on a network. A Class B address uses a 16-bit network number and a 16-bit node number. Class B addresses are in this range: 128.1.x.x to 191.254.x.x. • Class C Class C addresses can have 254 hosts on a network. Class C addresses use 24 bits for the network address and eight bits for the node.
FVM318.book Page 5 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Equals: 11000000 10101000 10101010 00000000 (192.168.170.0) As a shorter alternative to dotted-decimal notation, the netmask may also be expressed in terms of the number of ones from the left. This number is appended to the IP address, following a backward slash ( / ), as “/n.” In the example, the address could be written as 192.168.170.
FVM318.book Page 6 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Although the preceding example uses the entire third octet for a subnet address, note that you are not restricted to octet boundaries in subnetting. To create more network numbers, you need only shift some bits from the host address to the network address. For instance, to partition a Class C network number (192.68.135.
FVM318.book Page 7 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Table 8-2. Netmask Formats 255.255.255.0 /24 255.255.255.128 /25 255.255.255.192 /26 255.255.255.224 /27 255.255.255.240 /28 255.255.255.248 /29 255.255.255.252 /30 255.255.255.254 /31 255.255.255.
FVM318.book Page 8 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Single IP Address Operation Using NAT In the past, if multiple PCs on a LAN needed to access the Internet simultaneously, you had to obtain a range of IP addresses from the ISP. This type of Internet account is more costly than a single-address account typically used by a single user with a modem, rather than a router.
FVM318.book Page 9 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall This scheme offers the additional benefit of firewall-like protection because the internal LAN addresses are not available to the Internet through the translated connection. All incoming inquiries are filtered out by the router. This filtering can prevent intruders from probing your system.
FVM318.book Page 10 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Domain Name Server Many of the resources on the Internet can be addressed by simple descriptive names such as www.NETGEAR.com. This addressing is very helpful at the application level, but the descriptive name must be translated to an IP address in order for a user to actually contact the resource.
FVM318.book Page 11 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Ethernet Cabling Although Ethernet networks originally used thick or thin coaxial cable, most installations currently use unshielded twisted pair (UTP) cabling. The UTP cable contains eight conductors, arranged in four twisted pairs, and terminated with an RJ45 type connector.
FVM318.book Page 12 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Cable Quality A twisted pair Ethernet network operating at 10 Mbits/second (10BASE-T) will often tolerate low quality cables, but at 100 Mbits/second (10BASE-Tx) the cable must be rated as Category 5, or "Cat 5", by the Electronic Industry Association (EIA). This rating will be printed on the cable jacket.
FVM318.book Page 13 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Stateful Packet Inspection Unlike simple Internet sharing routers, a firewall uses a process called stateful packet inspection to ensure secure firewall filtering to protect your network from attacks and intrusions.
FVM318.book Page 14 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Ad-hoc Mode (Peer-to-Peer Workgroup) In an ad hoc network, computers are brought together as needed; thus, there is no structure or fixed points to the network - each node can generally communicate with any other node. There is no Access Point involved in this configuration.
FVM318.book Page 15 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Authentication and WEP Encryption The absence of a physical connection between nodes makes the wireless links vulnerable to eavesdropping and information theft. To provide a certain level of security, the IEEE 802.11 standard has defined two types of authentication methods, Open System and Shared Key.
FVM318.book Page 16 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall The radio frequency channels used are listed in Table 8-2: Table 8-2. 802.11 Radio Frequency Channels Channel Center Frequency Frequency Spread 1 2412Mhz 2399.5Mhz - 2424.5Mhz 2 2417Mhz 2404.5Mhz - 2429.5Mhz 3 2422Mhz 2409.5Mhz - 2434.5Mhz 4 2427Mhz 2414.5Mhz - 2439.5Mhz 5 2432Mhz 2419.5Mhz - 2444.5Mhz 6 2437Mhz 2424.5Mhz - 2449.
FVM318.book Page 17 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Ethernet Cabling Although Ethernet networks originally used thick or thin coaxial cable, most installations currently use unshielded twisted pair (UTP) cabling. The UTP cable contains eight conductors, arranged in four twisted pairs, and terminated with an RJ45 type connector.
FVM318.book Page 18 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall • Crossover cable A crossover cable is a special cable in which the transmit and receive pairs are exchanged at one of the two cable connectors. Crossover cables are often unmarked as such, and must be identified by comparing the two connectors.
FVM318.book Page 1 Wednesday, September 18, 2002 5:20 PM Appendix C Preparing Your Network This appendix describes how to prepare your network to connect to the Internet through the FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall and how to verify the readiness of broadband Internet service from an Internet service provider (ISP).
FVM318.book Page 2 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall • All versions of UNIX or Linux include TCP/IP components. Follow the instructions provided with your operating system or networking software to install TCP/IP on your computer. In your IP network, each PC and the firewall must be assigned a unique IP addresses.
FVM318.book Page 3 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall You must have an Ethernet adapter, the TCP/IP protocol, and Client for Microsoft Networks. Note: It is not necessary to remove any other network components shown in the Network window in order to install the adapter, TCP/IP, or Client for Microsoft Networks. If you need to install a new adapter, follow these steps: a. Click the Add button. b.
FVM318.book Page 4 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall If you need Client for Microsoft Networks: 3. a. Click the Add button. b. Select Client, and then click Add. c. Select Microsoft. d. Select Client for Microsoft Networks, and then click OK. Restart your PC for the changes to take effect.
FVM318.book Page 5 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall 5. Uncheck all boxes in the LAN Internet Configuration screen and click Next. 6. Proceed to the end of the Wizard. Verifying TCP/IP Properties After your PC is configured and has rebooted, you can check the TCP/IP configuration using the utility winipcfg.exe: 1. On the Windows taskbar, click the Start button, and then click Run. 2.
FVM318.book Page 6 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall 5. Verify that ‘Client for Microsoft Networks’ and ‘Internet Protocol (TCP/IP)’ are present. If not, select Install and add them. 6. Select ‘Internet Protocol (TCP/IP)’, click Properties, and verify that “Obtain an IP address automatically is selected. 7. Click OK and close all Network and Dialup Connections windows. 8.
FVM318.book Page 7 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall The TCP/IP Control Panel opens: 2. From the “Connect via” box, select your Macintosh’s Ethernet interface. 3. From the “Configure” box, select Using DHCP Server. You can leave the DHCP Client ID box empty. 4. Close the TCP/IP Control Panel. 5. Repeat this for each Macintosh on your network. MacOS X 1.
FVM318.book Page 8 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Verifying TCP/IP Properties for Macintosh Computers After your Macintosh is configured and has rebooted, you can check the TCP/IP configuration by returning to the TCP/IP Control Panel. From the Apple menu, select Control Panels, then TCP/IP.
FVM318.book Page 9 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Verifying the Readiness of Your Internet Account For broadband access to the Internet, you need to contract with an Internet service provider (ISP) for a single-user Internet access account using a cable modem or DSL modem.
FVM318.book Page 10 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall • An IP address and subnet mask • A gateway IP address, which is the address of the ISP’s router • One or more domain name server (DNS) IP addresses • Host name and domain suffix For example, your account’s full server names may look like this: mail.xxx.yyy.com In this example, the domain suffix is xxx.yyy.com.
FVM318.book Page 11 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall If an IP address appears under Installed Gateways, write down the address. This is the ISP’s gateway address. Select the address and then click Remove to remove the gateway address. 6. Select the DNS Configuration tab. If any DNS server addresses are shown, write down the addresses. If any information appears in the Host or Domain information box, write it down.
FVM318.book Page 12 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall Restarting the Network Once you’ve set up your computers to work with the firewall, you must reset the network for the devices to be able to communicate correctly. Restart any computer that is connected to the firewall.
FVM318.book Page 1 Wednesday, September 18, 2002 5:20 PM Glossary 10BASE-T IEEE 802.3 specification for 10 Mbps Ethernet over twisted pair wiring. 100BASE-Tx IEEE 802.3 specification for 100 Mbps Ethernet over twisted pair wiring. 802.11b IEEE specification for wireless networking at 11 Mbps using direct-sequence spread-spectrum (DSSS) technology and operating in the unlicensed radio spectrum at 2.5GHz. Denial of Service attack DoS.
FVM318.book Page 2 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall 2 IETF Internet Engineering Task Force. An open international community of network designers, operators, vendors, and researchers concerned with the evolution of the Internet architecture and the smooth operation of the Internet.
FVM318.book Page 3 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall netmask A number that explains which part of an IP address comprises the network address and which part is the host address on that network. It can be expressed in dotted-decimal notation or as a number appended to the IP address. For example, a 28-bit mask starting from the MSB can be shown as 255.255.255.192 or as /28 appended to the IP address.
FVM318.book Page 4 Wednesday, September 18, 2002 5:20 PM Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall 4 VPN Virtual Private Network. A method for securely transporting data between two private networks by using a public network such as the Internet as a connection. WAN See wide area network. WEP Wired Equivalent Privacy. WEP is a data encryption protocol for 802.11b wireless networks.
FVM318.book Page 1 Wednesday, September 18, 2002 5:20 PM Index Numerics 802.
FVM318.
FVM318.
FVM318.book Page 4 Wednesday, September 18, 2002 5:20 PM Telstra 2-15 time of day 8-9 time zone 3-8 timeout, administrator login 3-3 time-stamping 3-8 troubleshooting 8-1 Trusted Host 3-5 typographical conventions 1-xiii U Uplink switch B-11 uplink switch B-17 USB C-9 W web proxy 3-3 WEP 6-5, B-15 WEP, Keys 6-5 Wi-Fi B-13 Windows, configuring for IP routing C-2, C-5 winipcfg utility C-5 WinPOET C-9 WINS 7-5 Wired Equivalent Privacy.
