 |
 |
 |
|
| . | |
| .... Troubleshooting | |
| ....- Help | |
| .... | |
| . | |
| . | |
 |
|
| . | |
| .... Routers | |
| .... Web Servers | |
| .... Email Servers | |
| . | |
|
 |
Using TZO with your Netgear ProSafe VPN Router Model FVL328 |
Many Small Business users and home office users need a secure router that handles VPN. VPN routers are a more secure method of communicating on the Internet, creating an encrypted tunnel from one end to the other. DHCP is the main problem with VPN connections, since the initiating VPN client must know where the VPN "server" or endpoint router that it is connecting to. This is where DDNS (Dynamic DNS) is very handy. The TZO DDNS client software is currently embedded into the Netgear FVL328 VPN router. This tutorial explains how to configure your Netgear router with TZO, and setting the ports on the router to run a mail and web server on your local area network. |
|
| A hardware VPN router offers a simple, secure and easy to use and reliable way to share your broadband Internet connection with the rest of your network. These hardware routers are easier to set up than a PC acting as a NAT/Gateway, and they are often more reliable, since a PC has many points of failure, such as a hard disk, network card, power supply, RAM, etc, where the Netgear hardware router has a single point of failure. | |
| The router WAN (Wide Area Network - or Internet) IP address is typically the only USEABLE address on the router, and this is the IP address that gets published in the TZO Dynamic DNS system. Since this WAN IP is the incoming IP Address of the router, the router's PORTS need to be configured if you want to run a server. The router acts a a sort of firewall or NAT (Network Address Translator) and offers basic port filtering for security purposes. This port filtering also prevents you from running a web server, email server, or any other server like Internet Games, Netmeeting, etc. | |
| This
tutorial assumes you are running the latest firmware
of the FVL328 router - Version 1.4 Release 04, Dec
25, 2002. This firmware version includes the TZO
Client software within the router iteself, so you
don't need to download anything, you just need to
sign up for a TZO 30 day free trial or use an
existing TZO account within the router interface. You can sign up for a free 30 day trial of the TZO DDNS here at http://netgear.tzo.com |
|
| In the following tutorial, we give a basic overview of the Netgear Cable/DSL router setup, and then we assume that you have TZO Dynamic DNS and that it is running, and you have a web server and or email server set up for your domain. You can see other tutorials on the TZO Support page on running your own web server and email server, as well as other types of servers. | |
 |
|
| The ROUTER STATUS screen. In order to use the TZO DDNS features, you must have V1.4 Release 04 and higher firmware in your FVL328. | |
| When you set the Netgear router up, you should first configure your WAN and LAN settings using the setup wizard included in the router admin interface (not shown). Once you have configured your router, check the firmware to make sure you have V1.4 Release 04 or higher. The above screenshot shows the System name, Firmware version, and WAN and LAN information/status. Please note that you should see the Netgear Website to get the LATEST FIRMWARE. Now follow the steps below to get your TZO DDNS going, and start getting your ports open for your server(s). | |
| STEP 1) Advanced Section: You now need to set up DDNS (Dynamic DNS) using TZO. From the Router status screen as shown above, find the ADVANCED section in the bottom left, and click on the DYNAMIC DNS link. Once you do this, you will see the screenshot shown below: |
|
 |
|
| The Dynamic DNS screen of the Netgear Prosafe FVL328 router. In order to use the TZO DDNS features, you must have V1.4 Release 04 and higher firmware in your FVL328. Follow the numbers for the steps to sign up and try DDNS from TZO. | |
| STEP 2) Advanced Section: Signup for a
free TZO DDNS trial account: You now need to sign up for a free DDNS trial (Dynamic DNS) using TZO. Click the "CLICK HERE FOR A FREE TRIAL" link (1) and it brings you to the Netgear.tzo.com free trial signup page at TZO.COM as shown in the screenshot below. Enter your Email Address and your trial domain name. Click the Sign me up! button and TZO will send you an email with your trial information. Once you click the SIGN ME UP button, go back to the router Dynamic DNS settings page in the Netgear router and continue on with STEP 3. |
|
 |
|
| The TZO.COM Netgear signup screen. This launches your browser when you click on the SIGNUP FOR A FREE 30 DAY FREE TRIAL within the Netgear FVL328 router. | |
| STEP 3) Advanced Section/DDNS: Putting your TZO account information into the router: | |
| Once you signup at the TZO.COM Netgear signup page as shown above, you will receive an email with your TZO trial information. You now need to copy and paste the information from the TZO Trial email the DDNS section of the router. Below are 5 steps you need to get DDNS working in the router. Follow along in the screenshot below for more information. | |
| 1)
Signup with TZO trial as shown above. 2) Select the TZO Radio button as a selection under "Use a Dynamic DNS Service" 3) Type or Paste in the Domain name into the proper field. (just type the subdomain name as in Myname - the Netgear.net part will be put in for you) 4) Paste in the Email address into the proper field 5) Paste in the TZO Key into the PASSWORD field in the router 6) Click the Apply button to save your settings. |
|
| * Please note: Once you click apply, this saves your settings and logs your domain name in with the current WAN IP address of the router. Due to the fact that the DDNS interface is limited to .MYNETGEAR.NET domains, in order to use the Premier TZO service with this interface, you must speak with TZO support to "link" the premier domain name to your .MYNETGEAR.NET name in the router. | |
|
|
| The Dynamic DNS screen of the Netgear Prosafe FVL328 router. In order to use the TZO DDNS features, you must have V1.4 Release 04 and higher firmware in your FVL328. (Follow the numbers for the steps to sign up and try DDNS from TZO) | |
| After you have all of your TZO DDNS settings in the router and click the apply button, this should log your account in and set the IP. Try logging into the TZO control panel and look at the IP posted for your domain. The domain name MyName.Mynetgear.net has been updated with the IP of 89.189.89.189 - which is the IP address dynamically assigned by our cable modem ISP. | |
 |
|
| The Rules screen of the Netgear Prosafe FVL328 router. In order to use a SMTP and Web Server, we had to set rules to open these ports INBOUND. The SMTP server uses port 25, and the Web Server uses port 80. To use POP3 on this server, we would also add port 110 | |
| Once we get the router up and running and we can surf the web using one of the client PC's, we can start preparing the router to run a web server,ftp server and other servers. For information on running other types of servers, you need the Incoming PORT(s) of the desired service, and once you have the port(s), you can set the port as shown in the example above for Web (port 80) as well as SMTP (25). Once you decide what PC is going to run the web, smtpl server, you need to forward the proper port to the proper Internal IP address of the server. For example: | |
| - We have 2 PC's on the internal network, one at 192.168.0.2, and the other set at 192.168.0.3. SMTP and WEB are set to go to the PC on the LAN IP of 192.168.0.2 | |
| - We are not running any services on 192.168.0.3, so that is why we have no rules set for this IP. If you wish, you can move Web server ports to all on one PC, then you would set all ports to the same IP address. If you have trouble with the FORWARDING tab shown below, you can set ONE PC to be a DMZ Host (See the DMZ Host checkbox at the bottom of the screenshot above), which means that the router will totally expose ALL PORTS to this PC, offering NO Filtering at all. This would be a last resort for testing purposes, and is not recommended to leave a host exposed via DMZ. | |
| After you configure the ports to the proper IP Address, then click the apply button. The sets the router to forward the proper ports to your servers. To add other applications, you need to know the Service Port(s) and then you need to set the server up on your LAN and set the proper IP address. If you want to use Microsoft NetMeeting on the IP Address of 192.168.0.2, you would forward the ports 1503 and 1720 to 192.168.0.2 | |
| Once you set the ports up, run your server(s) and have your friend try out your domain name in your browser! It's that easy. For a great tutorial on opening ports in your Netgear routers, please try this link to the Netgear Knowledge Base | |
| If you have trouble with ports, and want more information, you can see http://www.PortDetective.com and you should also check out Shield's Up, a personal security Website at http://www.grc.com | |
| These websites can help determine what ports you have open on the router, and Port Detective can even help you find out if your ISP blocks these ports as well. For more information on the Netgear cable and DSL router, please see the Netgear website at http://www.Netgear.com | |
© Copyright
1998-2006, Tzolkin Corporation. All rights
reserved.