1. Home
    2. /
  2. Manuals
    3. /
  3. NETGEAR
    4. /
  4. D6300
    5. /
  5. 16
Page 76 / 142 Scroll up to view Page 71 - 75
76
7
7.
Security
Keep unwanted content out of your network
This chapter explains how to use the basic firewall features of the WiFi modem router to prevent
objectionable content from reaching the computers and other devices connected to your
network.
This chapter includes the following sections:
Keyword Blocking of HTTP Traffic
Firewall Rules
Add Custom Services to Allow or Block
Schedule for Firewall Rules
Security Event Email Notifications
Page 77 / 142
Security
77
D6300 WiFi DSL Modem Router
Keyword Blocking of HTTP Traffic
Use keyword blocking to prevent certain types of HTTP traffic from accessing your network.
The blocking can be always or according to a schedule.
1.
Select
ADVANCED > Security >
Block Sites
to display the following screen:
2.
Select one of the keyword blocking options:
Per Schedule
. Turn on keyword blocking according to the Schedule screen settings.
Always
. Turn on keyword blocking all the time, independent of the Schedule screen.
3.
In the keyword field, enter a keyword or domain, click
Add Keyword,
and click
Apply
.
The keyword list supports up to 32 entries. Here are some sample entries:
Specify .com if you want to allow only sites with domain suffixes such as .edu or .gov.
Enter a period (
.
) to block all Internet browsing access.
To delete a keyword or domain:
1.
Select the keyword you want to delete from the list.
2.
Click
Delete Keyword,
and then
Apply
to save your changes.
To specify a trusted computer:
You can exempt one trusted computer from blocking and logging. The computer you exempt
has to have a fixed IP address.
1.
In the Trusted IP Address field, enter the IP address.
2.
Click
Apply
to save your changes.
Page 78 / 142
Security
78
D6300 WiFi DSL Modem Router
Firewall Rules
Services are functions performed by server computers at the request of client computers. For
example, web servers serve web pages, time servers serve time and date information, and
game hosts serve data about other players’ moves. When a computer on the Internet sends a
request for service to a server computer, the requested service is identified by a service or
port number. This number appears as the destination port number in the transmitted IP
packets. For example, a packet that is sent with the destination port number 80 is an HTTP
(web server) request.
The service numbers for many common protocols are defined by the Internet Engineering
Task Force (IETF at
) and published in RFC1700, “Assigned Numbers.”
Service numbers for other applications are typically chosen from the range 1024–65535 by
the authors of the application. Although the WiFi modem router already holds a list of many
service port numbers, you are not limited to these choices. You can often determine port
number information by contacting the publisher of the application, by asking user groups or
newsgroups, or by searching.
The Firewall Rules screen lets you block or allow specific Internet traffic services by
computers on your network. This process is called service blocking or port filtering.
Note:
This feature is for advanced administrators only. Incorrect
configuration can cause serious problems.
To create firewall rules:
1.
Select
ADVANCED > Security > Firewall Rules
to display the following screen:
Page 79 / 142
Security
79
D6300 WiFi DSL Modem Router
The Firewall Rules screen lists all firewall rules that have been changed from their default
settings. The default rules allow all outgoing traffic and block all incoming traffic.
To change the firewall rules for outbound traffic, you need to edit them from the
Outbound Services screen as described in
Step 2
.
To change the firewall rules for inbound traffic, you need to edit them from the Port
Forwarding/Port Triggering screen as described in
Port Forwarding and Triggering
on
page 102.
The Outbound Services and Inbound Services screens list the available services you can
allow or block. You can also define your own custom services to allow or block with the
Add Service screen as described in
Add Custom Services to Allow or Block
on page 80.
Once you add your own custom services, they are available on the Outbound Services
and Inbound Services screens.
You can also specify whether these services are always allowed or blocked, or allowed or
blocked per schedule as described in
Schedule for Firewall Rules
on page 82.
2.
Outbound Services
. To allow or block an outbound service, click
Add
to display the
following screen:
Use the Outbound Services screen to define a new outbound firewall rule, or edit an
existing rule. The outbound firewall rules are used to block or allow access by computers
on your network to services or applications on the Internet.
a.
Service
. Select the service or application to be covered by this rule. If the service or
application you want does not appear in the list, you have to define it as described in
Add Custom Services to Allow or Block
on page 80.
b.
Action
. Select the action you want for traffic covered by this rule:
BLOCK always
. Always block the traffic covered by this rule.
BLOCK by schedule, otherwise Allow
. Allow the traffic covered by this rule,
unless it is blocked according to the schedule specified on the Schedule screen in
Schedule for Firewall Rules
on page 82.
ALLOW always
. Always allow the traffic covered by this rule (this selection is the
default setting).
Page 80 / 142
Security
80
D6300 WiFi DSL Modem Router
ALLOW by schedule, otherwise Block
. Block the traffic covered by this rule,
unless it is blocked according to the schedule specified on the Schedule screen in
Schedule for Firewall Rules
on page 82.
ALLOW rules are useful only when the traffic is already covered by a BLOCK rule.
You would use these rules when you want to allow a subset of traffic that is currently
blocked by another rule.
c.
LAN Users
. These settings determine which computers on your network are
affected by this rule, based on their source (LAN) IP address. Select the option you
want:
Any
. All local IP addresses are covered by this choice.
Address range
. You have to fill in the Start and End fields when this option is
selected.
Single address
. Enter the required address in the Start field.
d.
WAN Servers
. These settings determine which Internet locations are covered by the
rule, based on their destination (WAN) IP address. Select the option you want:
Any
. All Internet IP addresses are covered by this choice.
Address range
. You have to fill in the Start and End fields when this option is
selected.
Single address
. Enter the required address in the Start field.
e.
Log
. This setting determines whether traffic covered by this rule is logged. Select the
action you want:
Always
. This choice always logs traffic that is covered by this rule, whether it
matches or not. (This feature is useful when you are debugging your rules.)
Never
. This choice never logs traffic covered by this rule, whether it matches or
not.
f.
Click
Apply
to have your changes take effect, or click
Cancel
to return to the
previous screen.
3.
Inbound Services
. To allow or block an inbound service, click
here
to set up inbound
firewall rules for gaming or other applications. You are redirected to the Port Forwarding/Port
Triggering screen as described in
Port Forwarding and Triggering
on page 102.
4.
Click
Apply
to enable your Firewall Rules selections.
Add Custom Services to Allow or Block
You can define your own incoming and outgoing custom services to allow or block. Once you
add your own custom services, they are available on the Outbound Services screen (as
described in
Firewall Rules
on page 78) and the Inbound Services screen (as described in
Port Forwarding and Triggering
on page 102).

Rate

4.5 / 5 based on 2 votes.

Popular NETGEAR Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top