User's Manual
Table Of Contents
- Reference Manual for the NETGEAR ProSafe VPN Client
- Contents
- Chapter 1 About This Manual
- Chapter 2 Introduction
- Chapter 3 Installation
- Chapter 4 Configuring L2TP Connections
- Chapter 5 Using the Security Policy Editor
- What is the Security Policy Editor?
- Basic Steps to Configure a Security Policy
- How to Secure All Connections
- How to Configure Global Policy Settings
- How to Configure Other Connections
- How to Add and Configure a Connection
- How to Enter a Preshared Key
- How to Configure a Gateway
- Configure My Identity
- Configure Security Policy Connection Options
- Configure Authentication (Phase 1)
- Configure Key Exchange (Phase 2)
- Edit a Distinguished Name
- Configure and Manage Connections
- Manage Proposals
- Manage Redundant Gateways
- Manage the Security Policy
- Chapter 6 Using the Certificate Manager
- What is the Certificate Manager?
- Obtain Certificates
- With Online (SCEP) Enrollment
- CAs that Support SCEP
- Retrieve a CA Certificate Online
- Configure a CA Certificate
- Use an HTTP Proxy Server for Online Certificate Requests and CRL Updates
- Import a CA Certificate
- Select a CSP
- Request a Personal Certificate
- Define How Often to Check for and Retrieve New Personal Certificates
- Retrieve a Personal Certificate Manually
- Manage Certificate Requests
- With Manual (File-Based) Enrollment
- Obtain Certificates Through Internet Explorer
- With Online (SCEP) Enrollment
- Manage Certificates
- Manage Certificate Revocation Lists (CRLs)
- Manage the Trust Policy
- Chapter 7 Using Sessions
- Chapter 8 Distributing Customized Profiles
- Chapter 9 Troubleshooting
- Appendix A Networks, Routing, and Firewall Basics
- Appendix B Virtual Private Networking
- Appendix C NETGEAR ProSafe VPN Client to NETGEAR FVS318 or FVM318 VPN Routers
- Appendix D NETGEAR VPN Client to NETGEAR FVL328 or FWAG114 VPN Router
- Glossary
- Index
Reference Manual for the NETGEAR ProSafe VPN Client
5-2 Using the Security Policy Editor
202-10015-01
Table 5-1. Summary of steps
How to Secure All Connections
You can create a single connection called All Connections in your security policy that secures all
IP communications between your computer and every other party.
1. In the Security Policy Editor, click Options>Secure>All Connections. A secure connection
called All Connections is added to the Network Security Policy list.
2. To route all secure communications from your computer through a specific, secure,
IPSec-compliant network gateway, such as a firewall or router, go to Configure a gateway.
3. Click Save.
Step Task
1 • Create one connection that secures all communications, with the option to direct all
connections to a specific gateway
or
• Create multiple connections and specify which ones to secure
2 Select options that apply to all connections in the security policy
3 Identify yourself (the user) through one of these methods:
Select the personal certificate
Let the client automatically select the personal certificate during IKE negotiation
Enter the specific preshared key
4 Select the Phase 1 mode:
Main Mode (high security)
Aggressive Mode (low security)
Manual keys (for troubleshooting only)
5 Add proposals, if needed, and select these options:
Encryption algorithm
Hash algorithm
SA life
Key (Diffie-Hellman) group
6 Add proposals, if needed, and select the options for Encapsulated Security Payload (ESP)
or Authentication header (AH)
7 Identify backup gateways on the network
8 For network administrators or installers only: Create and deploy a customized client
installation package, with the security policy you configured, to users