NETGEAR FVS318N Router Manual PDF (Setup & Configuration Guide)

Page 141 / 414 Scroll up to view Page 136 - 140

Firewall Protection

141

ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N

3.

Enter the settings as explained in

Table 33

on page 132. In addition to selections from the

Service, Action, and Log drop-down lists, you need to make selections from the following

drop-down lists:

•

WAN Destination IP Address

•

LAN Users (This drop-down list is available only when the WAN mode is Classical

Routing. When the WAN mode is NAT, your network presents only one IP address to

the Internet.)

•

WAN Users

Unless your selection from the Action drop-down list is BLOCK always, you also need to

make selections from the following drop-down lists:

•

Select Schedule

•

Send to Lan Server

•

Bandwidth Profile

The following configuration is optional:

•

Translate to Port Number

4.

Click

Apply

to save your changes. The new rule is now added to the Inbound Services

table.

IPv6 LAN WAN Inbound Rules



To create a new IPv6 LAN WAN inbound rule:

1.

In the upper right of the LAN WAN Rules screen, select the

IPv6

radio button. The screen

displays the IPv6 settings (see

Figure 62

on page 136).

2.

Click the

Add

table button under the Inbound Services table. The Add LAN WAN Inbound

Service screen for IPv6 displays:

Figure 66.

Page 142 / 414

Firewall Protection

142

ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N

3.

Enter the settings as explained in

Table 33

on page 132. In addition to selections from the

Service, Action, and Log drop-down lists, you need to make selections from the following

drop-down lists:

•

LAN Users

•

WAN Users

Unless your selection from the Action drop-down list is BLOCK always, you also need to

make a selection from the following drop-down list:

•

Select Schedule

4.

Click

Apply

to save your changes. The new rule is now added to the Inbound Services

table.

Configure DMZ WAN Rules

The firewall rules for traffic between the DMZ and the Internet are configured on the DMZ

WAN Rules screen. The default outbound policy is to block all traffic from and to the Internet.

You can then apply firewall rules to allow specific types of traffic either going out from the

DMZ to the Internet (outbound) or coming in from the Internet to the DMZ (inbound).

There is no drop-down list that lets you set the default outbound policy as there is on the LAN

WAN Rules screen. You can change the default outbound policy by enabling all outbound

traffic and then blocking only specific services from passing through the wireless VPN

firewall. You do so by adding outbound services rules (see

Create DMZ WAN Outbound

Service Rules

on page 145).



To access the DMZ WAN Rules screen for IPv4 or to make changes to existing IPv4

rules:

Select

Security > Firewall > DMZ WAN Rules

.

In the upper right of the screen, the IPv4

radio button is selected by default. The DMZ WAN Rules screen displays the IPv4 settings.

(The following figure contains examples.)

Page 143 / 414

Firewall Protection

143

ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N

Figure 67.

To make changes to an existing outbound or inbound service rule, in the Action column to the

right of to the rule, click one of the following table buttons:

•

Up

. Moves the rule up one position in the table rank.

•

Down

. Moves the rule down one position in the table rank.

•

Edit

.

Allows you to make any changes to the definition of an existing rule. Depending on

your selection, one of the following screens displays:

-

Edit DMZ WAN Outbound Service screen for IPv4 (identical to

Figure 69

on

page 145)

-

Edit DMZ WAN Inbound Service screen for IPv4 (identical to

Figure 71

on page 148)



To access the DMZ WAN Rules screen for IPv6 or to make changes to existing IPv6

rules:

1.

Select

Security > Firewall > DMZ WAN Rules

. The Firewall submenu tabs display with

the DMZ WAN Rules screen for IPv4 in view.

2.

In the upper right of the screen, select the

IPv6

radio button. The DMZ WAN Rules screen

displays the IPv6 settings. (The following figure contains examples.)

Page 144 / 414

Firewall Protection

144

ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N

Figure 68.

To make changes to an existing outbound or inbound service rule, in the Action column to the

right of to the rule, click one of the following table buttons:

•

Up

. Moves the rule up one position in the table rank.

•

Down

. Moves the rule down one position in the table rank.

•

Edit

.

Allows you to make any changes to the definition of an existing rule. Depending on

your selection, one of the following screens displays:

-

Edit DMZ WAN Outbound Service screen for IPv6 (identical to

Figure 70

on

page 146)

-

Edit DMZ WAN Inbound Service screen for IPv6 (identical to

Figure 72

on page 149)



To enable, disable, or delete one or more IPv4 or IPv6 rules:

1.

select the check box to the left of each rule that you want to enable, disable, or delete,

or click the

Select All

table button to select all rules.

2.

Click one of the following table buttons:

•

Enable

.

Enables the rule or rules. The ! status icon changes from a gray circle to a

green circle, indicating that the selected rule or rules are enabled. (By default, when a

rule is added to the table, it is automatically enabled.)

•

Disable

.

Disables the rule or rules. The ! status icon changes from a green circle to a

gray circle, indicating that the selected rule or rules are disabled.

•

Delete

.

Deletes the selected rule or rules.

Page 145 / 414

Firewall Protection

145

ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N

Create DMZ WAN Outbound Service Rules

You can change the default outbound policy or define rules that specify exceptions to the

default outbound policy. By adding custom rules, you can block or allow access based on the

service or application, source or destination IP addresses, and time of day. An outbound rule

can block or allow traffic between the DMZ and any external WAN IP address according to

the schedule created on the Schedule screen.

IPv4 DMZ WAN Outbound Service Rules



To create a new IPv4 DMZ WAN outbound rule:

1.

In the upper right of the DMZ WAN Rules screen, select the

IPv4

radio button. The screen

displays the IPv4 settings (see

Figure 67

on page 143).

2.

Click the

Add

table button under the Outbound Services table. The Add DMZ WAN

Outbound Service screen for IPv4 displays:

Figure 69.

3.

Enter the settings as explained in

Table 32

on page 128. In addition to selections from the

Service, Action, and Log drop-down lists, you need to make selections from the following

drop-down lists:

•

DMZ Users

•

WAN Users

Rate

Popular NETGEAR Models

Famous Router IPs

Famous Router Companies

Bookmark Our Site

Share