Five-in-one Wireless and Wired VPN Solutions
This comprehensive and affordable solution offers wired and wireless connectivity and businessclass protection for small office and remote/branch office users. It combines five functions in a single, compact package – stateful packet inspection (SPI) firewall, 802.11g wireless access point, IPsec virtual private network (VPN) appliance, NAT router, and eightport Fast Ethernet switch. Powerful and standards-based, it delivers both 10 and 100 Mbps connections for wired devices, plus 802.11b/g devices at speeds up to 108 Mbps. This complete solution offers high-performance features in a space-saving, easy-to-use design.
Heavy-duty Security
More than just a simple NAT router, the ProSafe FVG318 SPI firewall provides business-class protection, blocking unwanted users from accessing the network. Wi-Fi Protected Access 2 Enterprise (WPA2) shields wireless communication with the highest available level of industry-standard encryption and authentication. Comprehensive controls block or filter unwanted addresses, services, protocols, and URLs, fortifying your network. Up to eight simultaneous IPsec VPN security association connections protect links between business locations, encrypting all traffic as it traverses the Internet – perfect for telecommuters and remote offices. It is VPNC compliant.
Easy Usability
The FVG318 is easy to set up and use, with intuitive Smart Wizards™ that help connect to your ISP and establish VPN connections. SNMP support provides complete remote administration--perfect for corporate teleworkers, remote offices, and small businesses that can take advantage of centralized administration. Dynamic DNS capabilities facilitate remote access, cameras, games, and other hosted services for users with dynamic IP addresses.
Expandable
The FVG318 works as the foundation for a small network, or integrated into a large one. Support for DHCP (client and server) and PPPoE facilitates widespread deployment. It is optimized for NETGEAR’s ProSafe VPN Client Software VPN01L and VPN05L (single and 5-user license) and ProSafe Network Management Software NMS100. Compatible with other SNMP management applications, it also supports Windows®, Macintosh®, UNIX®, and Linux®, or any other TCP/IP based platforms. Access Point
A station that transmits and receives data (sometimes referred to as a transceiver). An access point connects users to other users within the network and also can serve as the point of interconnection between the wireless LAN and a fixed wire network. Each access point can serve multiple users within a defined network area; as people move beyond the range of one access point, they are automatically handed over to the next one. A small wireless LAN may only require a single access point; the number required increases as a function of the number of network users and the physical size of the network. Access points operate on Wi-Fi or on the more recently approved DECT standard. DHCP (Dynamic Host Configuration Protocol)
A protocol for assigning dynamic IP address automatically to devices when they connect to the network. Dynamic addressing simplifies network administration because the software keeps track of IP address rather than requiring an administrator to manage the task. This is particularly helpful for laptops or other "visiting" devices when they want to connect to the Internet. Multiple DHCP Hosts is a common problem to troubleshoot on your LAN. For instance if you have a LAN set up and running a DHCP Host and you add a Wi-Fi router solely for the purpose of wireless access, you've just set up a conflict because these devices by default have DHCP Host enabled. Firewall
A set of related programs, located at a network gateway server that protects the resources of a private network from users from other networks. Basically, a firewall, working closely with a router program, examines each network packet to determine whether to forward it toward its destination. A firewall also includes or works with a proxy server that makes network requests on behalf of workstation users. A firewall is often installed in a specially designated computer separate from the rest of the network so that no incoming request can get directly at private network resources. IP (Internet Protocol)
A protocol that specifies the way data is broken into packets and the way those packets are addressed for transmission. Unlike traditional telephone lines which create a straight path from caller to recipient; IP uses the best available path at any given moment to move data packets between point A & point B. The beauty of IP is that the sending end and receiving end communicate success in sending and receiving to insure all data packets are delivered. A really great concept of IP is that of self healing. If a route is broken and the data packets cannot be delivered an alternate route is automatically selected. Router
A networking device whose software and hardware are usually tailored to the tasks of routing and forwarding information. For example, on the Internet, information is directed to various paths by routers. VPN (Virtual Private Network)
Private data network that makes use of the internet, maintaining privacy through the use of a tunneling protocol and security procedures. This is often used in conjunction with VoIP as a more cost-effective alternative to a dedicated bandwidth connection. Wi-Fi
A trademark of the Wi-Fi Alliance for certified products based on the IEEE 802.11 standards. It is generally used to define wireless access to your network and the Internet. Most PCs today as well as many games consoles and other devices us this protocol to communicate with each other.
Wireless
- Standards: IEEE 802.11g, 54 Mbps, Super-G technology up to 108 Mbps
- Antenna: (1) 5dBi, detachable
Physical Interfaces
- SLAN ports: Eight (8) 10/100Mbps auto-sensing, Auto Uplink™ RJ-45 ports
- WAN port: 10/100 Mbps Ethernet RJ-45 port to connect to any broadband modem, such as DSL or cable
Security Features
- SPI Firewall: Stateful Packet Inspection (SPI) to prevent notorious denial-of-service (DoS) attacks, intrusion detection system (IDS) including logging, reporting and e-mail alerts, address, service and protocol, Web URL keyword filtering, prevent replay attack (reassembly attack), port/service blocking. Advanced features include block Java/URL/ActiveX based on extension, FTP/SMTP/RPC program filtering
- VPN Functionality: Eight (8) dedicated VPN tunnels, Manual key and Internet Key Exchange Security Association (IKE SA) assignment with pre-shared key and RSA/DSA signatures, key life and IKE lifetime time settings, perfect forward secrecy (Diffie-Hellman groups 1 and 2 and Oakley support), operating modes (main, aggressive, quick), fully qualified domain name (FQDN) support for dynamic IP address VPN connections.
- IPSec Support: IPSec-based 56-bit (DES), 168-bit (3DES), or 256-bit (AES) encryption algorithm, MD5 or SHA-1 hashing algorithm, AH/AH-ESP support, PKI features with X.509 v.3 certificate support, remote access VPN (client-to-site), site-to-site VPN, IPSec NAT traversal (VPN pass-through)
- Mode of operation: Many-to-one NAT (LAN to WAN), classical routing, unrestricted users per port
- IP Address Assignment: Static IP address assignment, internal DHCP server on LAN, DHCP client on WAN, PPPoE client support
Performance Features
- Throughput: Up to 19 Mbps WAN-to-LAN, up to 1.2 Mbps for 3DES
Management Features
- Administration Interface: SNMP (v2c) support, Web graphic user interface, Secure Sockets Layer (SSL)-enabled remote management, user name and password protected; secure remote management support authenticated through IP address or IP address range and password; configuration changes/upgrades through web GUI.
- Configuration and upgrades: Upload and download configuration settings, field upgradeable flash memory
Functions
- VPN Wizard to simplify configuration of the VPN, Smart Wizard to automatically detect ISP Address type (static, dynamic, PPPoE), port range forwarding, port triggering, exposed host (DMZ), enable/disable WAN ping, DNS Proxy, MAC Address cloning/spoofing, Network Time Protocol NTP support, keyword content filtering, email Alerts, DHCP server (info and display table), PPPoE login client support, WAN DHCP client, diagnostic tools (ping, trace route, other), port/service/MAC address blocking, Auto-Uplink on switch ports
Protocol Support
- Network: IP routing, TCP/IP, UDP, ICMP, PPPoE
- IP addressing: DHCP (client and server)
- Routing: RIPv1, RIPv2 (static routing, dynamic routing)
- VPN/Security: IPSec (ESP, AH), MD5, SHA-1, DES, 3DES, IKE, PKI, AES
User Support
- LAN: Up to 253 users
- WLAN: Up to 64 users
Maintenance
- Save/restore configuration, restore defaults, upgrades via web browser, display statistics
Five High-performance Network Functions in a Space-saving Design
Hardware Specs
- Processor: Atheros 2316 SOC 32bit MIPS
- Memory: 4MB flash, 16MB SDRAM
- Power requirements: 100-240VAC, 50-60Hz
- Power adapter: 12VDC, 1.0A; plug is localized to country of sale
- Dimensions: 252 mm x 180 mm x 40 mm (9.92 x 7.1 x 1.57 inches)
- Weight: 2.7 lbs (1.22 kg)
Environmental Specifications
- Operating temperature: 0 to 40°C (32 to 104ºF)
- Operating humidity: 90% maximum relative humidity, non-condensing
Warranty
- Firewall: NETGEAR Lifetime Warranty†
- Power adapter: NETGEAR 3-year Warranty
Package Contents
- ProSafe Wireless VPN Firewall (FVG318)
- One (1) detachable 5 dBi antenna
- Ethernet cable
- Power adapter
- User guide
- Resource CD
- Waranty/support information card
System Requirements
- Cable, DSL, Satellite or Wireless Broadband modem and Internet service
- Ethernet connectivity from Broadband modem
- Network card for each connected PC
- Network Software (e.g. Windows)
- Internet Explorer 5.0 or higher or Netscape Navigator7.2 or higher
- Compatible with IE 7.0 and Windows® Vista™
- Cable, DSL, Satellite or Wireless Broadband modem and Internet service
- Ethernet connectivity from Broadband modem
- Network card for each connected PC
- Network Software (e.g. Windows)
- Internet Explorer 5.0 or higher or Netscape Navigator7.2 or higher
- Compatible with IE 7.0 and Windows® Vista™
DHCP (Dynamic Host Configuration Protocol)
A protocol for assigning dynamic IP address automatically to devices when they connect to the network. Dynamic addressing simplifies network administration because the software keeps track of IP address rather than requiring an administrator to manage the task. This is particularly helpful for laptops or other "visiting" devices when they want to connect to the Internet. Multiple DHCP Hosts is a common problem to troubleshoot on your LAN. For instance if you have a LAN set up and running a DHCP Host and you add a Wi-Fi router solely for the purpose of wireless access, you've just set up a conflict because these devices by default have DHCP Host enabled. DSL (Digital Subscriber Line)
A generic name for digital lines that are provided by telephone companies to their local subscribers and that carry voice and high speed data simultaneously. DSL usually features higher download than upload capability since most home and small business use is surfing the web rather than uploading large files. Firewall
A set of related programs, located at a network gateway server that protects the resources of a private network from users from other networks. Basically, a firewall, working closely with a router program, examines each network packet to determine whether to forward it toward its destination. A firewall also includes or works with a proxy server that makes network requests on behalf of workstation users. A firewall is often installed in a specially designated computer separate from the rest of the network so that no incoming request can get directly at private network resources. IP (Internet Protocol)
A protocol that specifies the way data is broken into packets and the way those packets are addressed for transmission. Unlike traditional telephone lines which create a straight path from caller to recipient; IP uses the best available path at any given moment to move data packets between point A & point B. The beauty of IP is that the sending end and receiving end communicate success in sending and receiving to insure all data packets are delivered. A really great concept of IP is that of self healing. If a route is broken and the data packets cannot be delivered an alternate route is automatically selected. LAN (Local Area Network)
The components that make up the data transfer mechanism for your office. The components include the cabling, the switches or hubs, routers, gateways, WiFi and servers. Server
The central processor in a network. In our case the server supports the telephony functions in a VoIP network. It manages the connections between the phone lines and the telephones, voicemail, etc. VPN (Virtual Private Network)
Private data network that makes use of the internet, maintaining privacy through the use of a tunneling protocol and security procedures. This is often used in conjunction with VoIP as a more cost-effective alternative to a dedicated bandwidth connection.
|
