Netgear STM150 User Manual Page 309
- Page / 704
- Table of contents
- BOOKMARKS
Rated. / 5. Based on customer reviews
Virtual Private Networking Using IPSec, PPTP, or L2TP Connections
309
ProSecure Unified Threat Management (UTM) Appliance
Configure XAUTH for VPN Clients
Once the XAUTH has been enabled, you need to establish user accounts in the user
database to be authenticated against XAUTH, or you need to enable a RADIUS-CHAP or
RADIUS-PAP server.
Note: You cannot modify an existing IKE policy to add XAUTH while the
IKE policy is in use by a VPN policy. The VPN policy needs to be
disabled before you can modify the IKE policy.
To enable and configure XAUTH:
1. Select VPN > IPSec VPN. The IPSec VPN submenu tabs display with the IKE Policies
screen in view (see Figure 179 on page 293).
2. In the List of IKE Policies table, click the Edit table button to the right of the IKE policy for
which you want to enable and configure XAUTH. The Edit IKE Policy screen displays. This
screen shows the same fields as the Add IKE Policy screen (see Figure 180 on page 295).
3. In the Extended Authentication section onscreen, complete the fields, select the radio
buttons, and make your selections from the drop-down lists as explained in the following
table:
4. Click Apply to save your settings.
Table 75. Extended authentication settings
Setting Description
Select one of the following radio buttons to specify whether Extended Authentication (XAUTH) is enabled,
and, if enabled, which device is used to verify user account information:
• None. XAUTH is disabled. This the default setting.
• Edge Device. The UTM functions as a VPN concentrator on which one or more gateway tunnels
terminate. The authentication modes that are available for this configuration are User Database,
RADIUS PAP, and RADIUS CHAP.
• IPSec Host. The UTM functions as a VPN client of the remote gateway. In this configuration the, UTM
is authenticated by a remote gateway with a user name and password combination.
Authentication
Type
For an Edge Device configuration, from the drop-down list, select one of the following
authentication types:
• User Database. XAUTH occurs through the UTM’s user database. You can add
users on the Add User screen (see User Database Configuration on page 310).
• Radius PAP. XAUTH occurs through RADIUS Password Authentication Protocol
(PAP). The local user database is first checked. If the user account is not present
in the local user database, the UTM connects to a RADIUS server. For more
information, see RADIUS Client and Server Configuration on page 310.
• Radius CHAP. XAUTH occurs through RADIUS Challenge Handshake
Authentication Protocol (CHAP). For more information, see RADIUS Client and
Server Configuration on page 310.
Username The user name for XAUTH.
Password The password for XAUTH.
- Trademarks 2
- ProSecure Product Updates 2
- ProSecure Forum 2
- Revision History 2
- Contents 5
- Chapter 4 LAN Configuration 6
- Chapter 5 Firewall Protection 7
- Introduction 15
- Key Features and Capabilities 16
- Outbound Load Balancing 17
- Wireless Features 18
- DSL Features 18
- A Powerful, True Firewall 19
- Security Features 20
- Extensive Protocol Support 21
- Maintenance and Support 22
- Model Comparison 22
- Package Contents 24
- Hardware Features 24
- Front Panel UTM5 and UTM10 25
- Front Panel UTM25 26
- Front Panel UTM50 26
- Front Panel UTM150 27
- Wireless Network Modules 29
- Rear Panel UTM50 and UTM150 34
- Rear Panel UTM9S and UTM25S 35
- Figure 12 36
- Figure 13 36
- Figure 14 37
- Figure 15 37
- Figure 16 38
- Figure 17 38
- Choose a Location for the UTM 39
- Use the Rack-Mounting Kit 40
- UTM in Your Network 41
- Log In to the UTM 42
- Figure 20 43
- Figure 21 44
- Figure 24 46
- To start the Setup Wizard: 47
- Figure 25 47
- Figure 26 48
- Figure 27 51
- Connection on page 75 54
- Figure 29 55
- Figure 30 57
- Figure 31 58
- Figure 32 60
- Figure 33 62
- Figure 34 63
- Firmware on page 454 64
- Register the UTM with NETGEAR 65
- Figure 36 66
- Electronic Licensing 67
- Verify Correct Installation 68
- What to Do Next 68
- Connections 71
- Figure 37 72
- Figure 38 73
- Figure 39 74
- Figure 40 75
- Figure 41 76
- Figure 42 77
- Figure 43 78
- Figure 44 79
- Figure 46 84
- (Multiple WAN Port Models) 85
- Figure 47 86
- Figure 48 87
- Figure 49 88
- Figure 50 90
- Figure 51 92
- Figure 52 93
- Figure 53 95
- Port-Based VLANs 99
- LAN Configuration 100
- VLAN DHCP Options 101
- DHCP Server 102
- DHCP Relay 102
- DNS Proxy 102
- Configure a VLAN Profile 103
- Figure 56 104
- To edit a VLAN profile: 108
- Figure 57 109
- Figure 58 110
- Manage the Network Database 112
- Figure 59 113
- Figure 60 115
- Set Up Address Reservation 116
- Figure 62 118
- Manage Routing 121
- Figure 64 122
- Figure 65 124
- Static Route Example 126
- Firewall Protection 127
- Administrator Tips 128
- . On the single WAN port 135
- Order of Precedence for Rules 138
- Configure LAN WAN Rules 139
- Figure 68 141
- Configure DMZ WAN Rules 142
- Figure 70 143
- Figure 71 144
- Configure LAN DMZ Rules 145
- Figure 73 146
- Figure 74 147
- Examples of Firewall Rules 148
- Figure 76 149
- Figure 77 150
- Figure 78 151
- Figure 79 152
- Outbound Rule Example 153
- VLAN Rules 154
- Figure 82 155
- To edit a VLAN rule: 156
- Figure 83 157
- Figure 84 159
- Set Session Limits 160
- VPN Scanning 161
- Traffic Meter Profiles 162
- Add Customized Services 163
- Figure 87 164
- Create Service Groups 165
- Figure 89 166
- Figure 90 166
- To edit a service group: 166
- Create IP Groups 167
- Figure 92 168
- To delete an IP group: 168
- To create a QoS profile: 169
- Figure 93 170
- Figure 94 170
- Create Bandwidth Profiles 171
- Figure 95 172
- Figure 96 173
- Create Traffic Meter Profiles 174
- Figure 97 175
- Figure 98 176
- To add a schedule: 177
- Figure 99 177
- Figure 100 178
- Enable Source MAC Filtering 179
- Figure 101 180
- Set Up IP/MAC Bindings 181
- Figure 102 182
- Configure Port Triggering 183
- Figure 103 184
- Figure 104 185
- Figure 105 186
- Configure Email Protection 194
- Figure 108 195
- Figure 109 196
- Email Content Filtering 199
- Figure 110 200
- Protect Against Email Spam 202
- Figure 111 204
- Figure 112 206
- Figure 113 208
- Figure 114 211
- Configure HTTPS Smart Block 212
- Figure 116 213
- Figure 117 214
- To change a profile: 215
- Figure 118 216
- Configure Web URL Filtering 224
- Figure 122 225
- How HTTPS Scanning Works 228
- Figure 124 229
- Figure 125 230
- Figure 126 231
- To specify trusted hosts: 235
- Figure 130 236
- Figure 131 237
- Configure FTP Scanning 238
- To configure the FTP filters: 239
- Configure Application Control 240
- Figure 134 242
- Figure 135 243
- Figure 138 249
- • File Extension 251
- • HTTPS Smart Block 251
- • URL Filtering 252
- • Web Category 252
- Application Access 258
- • Application 259
- Figure 148 263
- Virtual Private Networking 264
- Configurations 266
- Figure 152 267
- Figure 153 268
- Figure 154 270
- Figure 155 271
- Figure 156 271
- Figure 157 272
- Figure 158 275
- Figure 159 276
- Figure 160 277
- Figure 161 277
- Figure 162 278
- Figure 163 278
- Figure 164 280
- Figure 165 281
- Figure 166 281
- Figure 167 282
- Figure 168 283
- Figure 169 285
- Figure 170 286
- Information 287
- Figure 172 288
- Figure 173 288
- Figure 174 288
- Figure 175 288
- Figure 176 289
- Figure 177 289
- View the UTM IPSec VPN Log 290
- Figure 178 291
- Manage IKE Policies 292
- Figure 179 293
- Figure 180 295
- To edit an IKE policy: 299
- Manage VPN Policies 300
- Figure 181 301
- Figure 182 303
- To edit a VPN policy: 308
- User Database Configuration 310
- Mode Config Operation 312
- Figure 184 313
- Figure 185 314
- Config Records table 315
- Figure 186 316
- Figure 187 320
- Figure 188 321
- Figure 189 321
- Figure 190 322
- Figure 191 324
- Figure 192 325
- Figure 193 326
- Figure 194 326
- Figure 195 327
- Configure Keep-Alives 328
- Configure Dead Peer Detection 329
- Configure the PPTP Server 331
- Figure 199 332
- View the Active PPTP Users 333
- Configure the L2TP Server 334
- Figure 201 335
- View the Active L2TP Users 336
- Using SSL Connections 337
- Figure 203 338
- Figure 204 339
- Figure 205 342
- WARNING: 343
- Figure 206 347
- Figure 207 348
- Figure 208 350
- Figure 209 352
- Access the New SSL VPN Portal 353
- Figure 211 354
- Figure 212 355
- Figure 213 355
- Figure 214 356
- View the UTM SSL VPN Log 357
- Figure 216 359
- Figure 217 360
- To edit a portal layout: 362
- Add Servers and Port Numbers 363
- Add a Host Name 364
- Configure the SSL VPN Client 365
- Figure 219 366
- To change the LCP time-out: 368
- Figure 220 368
- Add New Network Resources 369
- To edit network resources: 370
- Figure 222 370
- Global Default Policy 372
- View Policies 373
- Add a Policy 373
- Figure 224 374
- To edit an SSL VPN policy: 376
- For More SSL VPN Information 377
- Certificates 378
- Login Portals 380
- Figure 225 381
- Figure 226 382
- Figure 227 383
- How an Active Directory Works 384
- Jamie Hanson display 386
- 5. Log in to the UTM 386
- Figure 230 387
- Configure Domains 388
- Figure 233 389
- Configure Groups 394
- Create and Delete Groups 395
- Edit Groups 396
- Configure Custom Groups 397
- Figure 236 398
- Figure 237 398
- Configure User Accounts 401
- Figure 238 402
- Figure 239 402
- Set User Login Policies 404
- Figure 241 405
- Figure 242 407
- Figure 243 408
- DC Agent 409
- Figure 244 411
- Figure 245 411
- To edit a DC agent: 412
- Figure 246 413
- Figure 247 414
- Figure 248 414
- Configure RADIUS VLANs 415
- Figure 250 416
- View and Log Out Active Users 417
- Figure 252 418
- VPN Certificates Screen 420
- Manage CA Certificates 421
- Figure 254 422
- Figure 256 425
- To delete one or more SCRs: 426
- To delete one or more CRLs: 427
- Network and System Management 428
- Features That Reduce Traffic 429
- Content Filtering 431
- Source MAC Filtering 432
- Port Triggering 434
- Configure the DMZ Port 434
- Configure Exposed Hosts 435
- Configure VPN Tunnels 435
- Assign QoS Profiles 435
- Assign Bandwidth Profiles 435
- System Management 436
- Figure 259 437
- Figure 260 438
- Figure 261 441
- Figure 262 443
- Table 109. SNMPv3 settings 443
- SNMPv3 settings (continued) 444
- Manage the Configuration File 445
- Back Up Settings 446
- Restore Settings 447
- Update the Firmware 448
- Figure 267 455
- Figure 268 457
- Settings 458
- Log Storage 459
- Connect to a ReadyNAS 459
- Figure 269 460
- Figure 270 461
- Monitor System Access and 462
- Performance 462
- Figure 271 463
- Figure 272 465
- Figure 273 467
- Figure 274 468
- Configure Gateway 1 at Site 1 471
- Configure Gateway 2 at Site 2 472
- Figure 275 474
- Figure 276 476
- To set the poll interval: 479
- Dashboard screen: 481
- Figure 280 484
- View Status Screens 486
- View the System Status Screen 487
- Network Status screen: 489
- Figure 284 490
- Figure 285 491
- Figure 286 493
- View the VLAN Status Screen 498
- View the Active VPN Users 499
- Figure 291 500
- Figure 292 501
- Figure 293 501
- Figure 294 502
- Figure 295 503
- Figure 296 503
- Figure 297 504
- View Attached Devices 505
- Figure 298 506
- Figure 299 506
- Query and Manage the Logs 507
- Overview of the Logs 508
- Query and Download Logs 509
- Log Management 514
- Query the Quarantined Logs 515
- Figure 303 517
- Figure 304 518
- Spam Reports for End Users 519
- Figure 306 520
- Figure 307 521
- Report Filtering Options 522
- Report screen.) 529
- Managing Saved Reports 530
- Use Diagnostics Utilities 531
- Send a Ping Packet 532
- Trace a Route 533
- Display the Routing Table 533
- Look Up a DNS Address 533
- Network Statistics Report 534
- Generate Network Statistics 535
- Reboot and Shut Down the UTM 536
- Basic Functioning 539
- LAN or WAN Port LEDs Not On 540
- Test the LAN Path to Your UTM 543
- Figure 316 545
- Problems with Date and Time 546
- Use Online Support 546
- Figure 317 547
- 3. Click Submit 548
- Documentation 548
- Configure the xDSL Settings 550
- Figure 319 551
- Figure 320 551
- Figure 321 552
- Table 140. xDSL settings 552
- Internet Connection 553
- Figure 323 554
- Figure 324 556
- Figure 325 557
- Figure 326 557
- Figure 327 557
- Figure 328 559
- Figure 329 560
- Configure the WAN Mode 561
- Configure Classical Routing 563
- Configure Auto-Rollover Mode 564
- Figure 331 565
- Configure Load Balancing 567
- Figure 333 568
- Figure 334 569
- To edit a protocol binding: 570
- Figure 335 571
- Configure Dynamic DNS 572
- To configure DDNS: 573
- Figure 336 573
- WAN Options 574
- Figure 338 575
- UTM9S and UTM25S 578
- Configuration Order 579
- Figure 339 581
- Figure 340 584
- Wireless Security Profiles 585
- To add a wireless profile: 588
- Figure 342 589
- To edit a wireless profile: 593
- Figure 343 594
- Figure 344 595
- Figure 345 597
- To configure WDS on a peer: 598
- Figure 346 598
- Figure 347 601
- Complete these steps: 604
- 2. Select WAN Mode 605
- Table 154. USB ISP settings 606
- Figure 350 607
- Configure the 3G/4G Settings 608
- Table 155. 3G/4G settings 609
- Overview of the WAN Modes 611
- To configure NAT: 612
- Figure 354 615
- Figure 355 616
- Figure 356 619
- Figure 357 620
- Accounts 622
- Inbound Traffic 627
- Figure 361 628
- Figure 362 628
- Virtual Private Networks 629
- Figure 364 630
- Figure 365 630
- Figure 366 631
- Figure 367 631
- Figure 368 632
- Figure 369 632
- VPN Gateway-to-Gateway 633
- Figure 371 634
- Figure 372 634
- Figure 373 635
- Figure 374 635
- Figure 375 636
- Figure 376 636
- Figure 377 637
- ReadyNAS Integration 638
- Figure 378 639
- 7. Click Install 640
- Figure 381 641
- Figure 382 641
- Figure 383 642
- Figure 384 643
- Two-Factor Authentication 644
- Figure 385 646
- Figure 386 646
- Figure 387 647
- Table 161. Log message terms 648
- System Log Messages 649
- Login/Logout 650
- Firewall Restart 651
- IPSec Restart 651
- WAN Status 651
- Load Balancing Mode 652
- PPP Logs 653
- • PPTP Idle-Timeout logs 654
- Traffic Metering Logs 655
- Invalid Packet Logging 656
- Service Logs 658
- Spam Logs 660
- Traffic Logs 661
- Malware Logs 661
- Email Filter Logs 661
- IPS Logs 662
- Anomaly Behavior Logs 662
- Routing Logs 663
- LAN-to-DMZ Logs 664
- DMZ-to-WAN Logs 664
- WAN-to-LAN Logs 664
- DMZ-to-LAN Logs 665
- WAN-to-DMZ Logs 665
- Default Settings 666
- UTM9S and UTM25S: 675
- NETGEAR Wired Products 677
- Additional Copyrights 679
- NETGEAR Dual Band - Wireless 681
- FCC Caution 683
- Interference Reduction Table 685
- Numerics 686
Related products and manuals for Routers Netgear STM150
Routers Netgear WNR2000 User Manual
(134 pages)
(134 pages)
Routers Netgear WN3000RP Installation Guide
(16 pages)
(16 pages)
Routers Netgear WGT624 User Manual
(152 pages)
(152 pages)
Routers Netgear WNR834Bv2 User Manual
(46 pages)
(46 pages)
Routers Netgear PROSAFE FVS338 User Manual
(178 pages)
(178 pages)
Routers Netgear EXPRESS EVA9100 User Manual
(95 pages)
(95 pages)
Routers Netgear WNDR4500 User Manual
(126 pages)
(126 pages)
Routers Netgear WGR614v10 User Manual
(122 pages)
(122 pages)
Routers Netgear WGR614v9 User Manual
(36 pages)
(36 pages)
Routers Netgear WGT624 User Manual
(148 pages)
(148 pages)
Routers Netgear UTM5 User Manual
(484 pages)
(484 pages)
Routers Netgear R7000-100PAS Datasheet
(6 pages)
(6 pages)
Routers Netgear R6250-100GRS Datasheet
(5 pages)
(5 pages)
Routers Netgear WNDRMAC-100NAS Datasheet
(2 pages)
(2 pages)
Routers Netgear RP114 Datasheet
(154 pages)
(154 pages)
Routers Netgear FVS124GNA Datasheet
(2 pages)
(2 pages)
Routers Netgear AC750 User Manual
(159 pages)
(159 pages)
Routers Netgear R6220 User Manual
(160 pages)
(160 pages)
Routers Netgear D6100 User Manual
(221 pages)
(221 pages)
© 2020, manymanuals.com. All rights reserved. | 0.675 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comments to this Manuals