NETGEAR FVS318N Router Manual PDF (Setup & Configuration Guide)

Page 146 / 414 Scroll up to view Page 141 - 145

Firewall Protection

146

ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N

Unless your selection from the Action drop-down list is BLOCK always, you also need to

make selections from the following drop-down lists:

•

Select Schedule

•

QoS Priority

•

NAT IP (This drop-down list is available only when the WAN mode is NAT. If you

select Single Address, the IP address specified should fall under the WAN subnet.)

4.

Click

Apply

. The new rule is now added to the Outbound Services table. The rule is

automatically enabled.

IPv6 DMZ WAN Outbound Service Rules



To create a new IPv6 DMZ WAN outbound rule:

1.

In the upper right of the DMZ WAN Rules screen, select the

IPv6

radio button. The screen

displays the IPv6 settings (see

Figure 68

on page 144).

2.

Click the

Add

table button under the Outbound Services table. The Add DMZ WAN

Outbound Service screen for IPv6 displays:

Figure 70.

3.

Enter the settings as explained in

Table 32

on page 128. In addition to selections from the

Service, Action, and Log drop-down lists, you need to make selections from the following

drop-down lists:

•

DMZ Users

•

WAN Users

Page 147 / 414

Firewall Protection

147

ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N

Unless your selection from the Action drop-down list is BLOCK always, you also need to

make selections from the following drop-down lists:

•

Select Schedule

•

QoS Priority

4.

Click

Apply

.

The new rule is now added to the Outbound Services table. The rule is

automatically enabled.

Create DMZ WAN Inbound Service Rules

The Inbound Services table lists all existing rules for inbound traffic. If you have not defined

any rules, no rules are listed. By default, all inbound traffic (from the Internet to the DMZ) is

blocked.

Inbound rules that are configured on the LAN WAN Rules screen take precedence over

inbound rules that are configured on the DMZ WAN Rules screen. As a result, if an inbound

packet matches an inbound rule on the LAN WAN Rules screen, it is not matched against the

inbound rules on the DMZ WAN Rules screen.

IPv4 DMZ WAN Inbound Service Rules



To create a new IPv4 DMZ WAN inbound rule:

1.

In the upper right of the DMZ WAN Rules screen, select the

IPv4

radio button. The screen

displays the IPv4 settings (see

Figure 67

on page 143).

2.

Click the

Add

table button under the Inbound Services table. The Add DMZ WAN Inbound

Service screen for IPv4 displays:

Page 148 / 414

Firewall Protection

148

ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N

Figure 71.

3.

Enter the settings as explained in

Table 33

on page 132. In addition to selections from the

Service, Action, and Log drop-down lists, you need to make selections from the following

drop-down lists:

•

WAN Destination IP Address

•

DMZ Users (This drop-down list is available only when the WAN mode is Classical

Routing. When the WAN mode is NAT, your network presents only one IP address to

the Internet.)

•

WAN Users

Unless your selection from the Action drop-down list is BLOCK always, you also need to

make selections from the following drop-down lists:

•

Select Schedule

•

Send to DMZ Server

The following configuration is optional:

•

Translate to Port Number

4.

Click

Apply

to save your changes. The new rule is now added to the Inbound Services

table.

Page 149 / 414

Firewall Protection

149

ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N

IPv6 DMZ WAN Inbound Service Rules



To create a new IPv6 DMZ WAN inbound rule:

1.

In the upper right of the DMZ WAN Rules screen, select the

IPv6

radio button. The screen

displays the IPv6 settings (see

Figure 68

on page 144).

2.

Click the

Add

table button under the Inbound Services table. The Add DMZ WAN Inbound

Service screen for IPv6 displays:

Figure 72.

3.

Enter the settings as explained in

Table 33

on page 132. In addition to selections from the

Service, Action, and Log drop-down lists, you need to make selections from the following

drop-down lists:

•

DMZ Users

•

WAN Users

Unless your selection from the Action drop-down list is BLOCK always, you also need to

make selections from the following drop-down list:

•

Select Schedule

4.

Click

Apply

to save your changes. The new rule is now added to the Inbound Services

table.

Page 150 / 414

Firewall Protection

150

ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N

Configure LAN DMZ Rules

The LAN DMZ Rules screen allows you to create rules that define the movement of traffic

between the LAN and the DMZ. The default outbound and inbound policies are to block all

traffic between the local LAN and DMZ network. You can then apply firewall rules to allow

specific types of traffic either going out from the LAN to the DMZ (outbound) or coming in

from the DMZ to the LAN (inbound).

There is no drop-down list that lets you set the default outbound policy as there is on the LAN

WAN Rules screen. You can change the default outbound policy by allowing all outbound

traffic and then blocking specific services from passing through the wireless VPN firewall. You

do so by adding outbound service rules (see

Create LAN DMZ Outbound Service Rules

on

page 152).



To access the LAN DMZ Rules screen for IPv4 or to make changes to existing IPv4

rules:

Select

Security > Firewall > LAN DMZ Rules

.

In the upper right of the screen, the IPv4 radio

button is selected by default. The LAN DMZ Rules screen displays the IPv4 settings. (The

following figure contains examples.)

Figure 73.

To make changes to an existing outbound or inbound service rule, in the Action column to the

right of to the rule, click one of the following table buttons:

•

Up

. Moves the rule up one position in the table rank.

•

Down

. Moves the rule down one position in the table rank.

•

Edit

.

Allows you to make any changes to the rule definition of an existing rule. Depending

on your selection, one of the following screens displays:

-

Edit LAN DMZ Outbound Service screen for IPv4 (identical to

Figure 75

on page 152)

-

Edit LAN DMZ Inbound Service screen for IPv4 (identical to

Figure 77

on page 154)

Rate

Popular NETGEAR Models

Famous Router IPs

Famous Router Companies

Bookmark Our Site

Share