2024年4月12日发(作者:)
NETGEAR VPN产品配置手册 2004
NETGEAR VPN产品
配置完全手册
NETGEAR 中国
2004年6月
- 1 -
NETGEAR VPN产品配置手册 2004
目 录
一.NETGEAR VPN防火墙产品介绍
....................................................................4
1.1 常用的VPN技术..................................................................................................................4
1.2 关于动态域名(Dynamic Domain Name Service)........................................................4
1.3 Netgear VPN设备的应用...................................................................................................4
二.Netgear VPN 设备配置指南
.......................................................................6
2.1 FVS318 to FVS318(网关到网关 IKE Main模式)............................................................7
2.1.1配置网关A静态的VPN(MAIN模式)......................................................................7
2.1.2配置网关B静态的VPN(MAIN模式)....................................................................11
2.2 Remote to FVS318(客户端到网关 IKE Main / Aggressive模式).........................15
2.2.1用Main模式建立Remot-to-LAN 的16
2.2.2 用Aggressive 模式建立Remote-to-LAN 的.21
2.3 Remote to FQDN FVS318 (IKE Main模式网关为动态IP地址)...................................28
2.3.1配置FVS318的动态VPN(Main模式)....................................................................28
2.3.2 配置远程客户端动态的VPN(Main模式)...............................................................32
2.4 FVL328 to FVL328(网关到网关 IKE Main模式)..........................................................33
2.4.1 配置网关A固定IP地址的VPN(MAIN模式)......................................................34
2.4.2配置网关B固定IP的VPN(Main模式).................................................................38
2.5 Remote to FVL328(客户端到网关 Aggressive模式)...............................................44
2.5.1配置FVL328的远程接入VPN(Aggressive模式)..................................................44
2.5.2 配置远程客户端的静态VPN(Aggressive模式)。..............................................49
2.6 Remote to FQDN FVL328(IKE Aggress模式网关为动态IP)........................................54
2.6.1配置FVL328的动态的(Aggressive模式)VPN。...................................................54
2.6.2配置远程客户端的动态的VPN(Aggressive模式).................................................57
2.7 FVS318 to FVL328(网关到网关 IKE Main模式).......................................................58
2.7.1配置FVS318的静态VPN(MAIN模式).......................................................................58
2.7.2 配置FVL328固定IP的VPN(Main模式)。..........................................................62
2.8 FQDN FVS318 to FVL328(网关到网关 IKE Main/Aggressive模式).......................68
2.8.1 IKE Main模式网关到网关的VPN配置.....................................................................68
2.8.2 IKE Aggressive模式网关到网关的VPN配置...........................................................74
三.常用VPN专业述语...............................................................................77
3.1 IPsec简介..............................................................................................................................77
3.2 Internet密钥交换协议(IKE).................................................................................................77
3.2.1 IKE 协商......................................................................................................................77
3.2.2 IKE协议.........................................................................................................................78
3.2.3 IKE 阶段1 - IKE安全协商...........................................................................................78
3.2.4 IKE 阶段2 - IPsec安全协商.........................................................................................78
3.2.4 IKE 参数.........................................................................................................................79
3.3 IKE认证方法(手工,PSK,证书).................................................................................82
3.3.1手工密钥.........................................................................................................................82
3.3.2 Pre-Shared密钥, 82
3.3.3证书.................................................................................................................................82
- 2 -
发布评论