NETGEAR FVS328 Router Manual PDF (Setup & Configuration Guide)

Page 111 / 224 Scroll up to view Page 106 - 110

Model FVS328 ProSafe VPN Firewall with Dial Back-up Reference Manual

Managing Your Network

8-9

December 2003, M-10041-01

Changing the Include in Log Settings

You can choose to log additional information. Those optional selections are as follows:

•

Known DoS attacks and Port Scans

•

Attempted access to blocked sites

•

All Web sites and news groups visited

•

All Incoming TCP/UDP/ICMP traffic

•

All Outgoing TCP/UDP/ICMP traffic

•

Other IP traffic — if selected, all other traffic (IP packets which are not TCP, UDP, or ICMP)

is logged

•

Router operation (start up, get time, etc.) — if selected, Router operations, such as starting up

and getting the time from the Internet Time Server, are logged.

•

Connection to the Web-based interface of this Router

•

Other connections and traffic to this Router — if selected, this will log traffic sent to this

Router (rather than through this Router to the Internet).

•

Allow duplicate log entries — if selected, events or packets that fall within more than one (1)

category above will have a log entry for each category in which they belong. This will

generate a large number of log entries.

If not selected, then events or packets will only be logged once. Usually, you should not allow

duplicate log entries.

Enabling the Syslog Feature

You can choose to write the logs to a computer running a SYSLOG program. To use this feature,

check the box under Syslog and enter the IP address of the server where the log file will be written.

Then click Apply to activate the Syslog feature.

For a detailed description of the log files, see

Appendix B, “Firewall Log Formats”

.

Page 112 / 224

Model FVS328 ProSafe VPN Firewall with Dial Back-up Reference Manual

8-10

Managing Your Network

December 2003, M-10041-01

Enabling Security Event E-mail Notification

In order to receive logs and alerts by e-mail, you must provide your e-mail information in the

E-mail menu:

Figure 8-7:

E-mail notification menu

To enable E-mail notification, configure the following fields:

•

Turn e-mail notification on

Select this check box if you want to receive e-mail logs and alerts from the firewall.

•

Your outgoing mail server

Enter the name or IP address of your ISP’s outgoing (SMTP) mail server (such as

mail.myISP.com

). You may be able to find this information in the configuration menu of your

e-mail program. If you leave this box blank, log and alert messages will not be sent via e-mail.

•

Send to this e-mail address

Enter the e-mail address to which logs and alerts will be sent. This e-mail address will also be

used as the From address. If you leave this box blank, log and alert messages will not be sent

via e-mail.

Page 113 / 224

Model FVS328 ProSafe VPN Firewall with Dial Back-up Reference Manual

Managing Your Network

8-11

December 2003, M-10041-01

You can specify that logs are automatically sent to the specified e-mail address with these options:

•

Send alert immediately

Select this check box if you want immediate notification of a significant security event, such

as a known attack, abnormal TCP flag, or attempted access to a blocked site.

•

Send logs according to this schedule

Specify how often to send the logs: None, Hourly, Daily, Weekly, or When Full.

–

Day for sending log

Specify which day of the week to send the log. Relevant when the log is sent weekly or

daily.

–

Time for sending log

Specify the time of day to send the log. Relevant when the log is sent daily or weekly.

If the Weekly, Daily or Hourly option is selected and the log fills up before the specified

period, the log is automatically e-mailed to the specified e-mail address. After the log is sent,

the log is cleared from the firewall’s memory. If the firewall cannot e-mail the log file, the log

buffer may fill up. In this case, the firewall overwrites the log and discards its contents.

Backing Up, Restoring, or Erasing Your Settings

The configuration settings of the FVS328 Firewall are stored in a configuration file in the firewall.

This file can be backed up to your computer, restored, or reverted to factory default settings. The

procedures below explain how to do these tasks.

How to Back Up the FVS328 Configuration to a File

1.

Log in to the firewall at its default LAN address of

http://192.168.0.1

with its default User

Name of

admin

, default password of

password

, or using whatever password and LAN

address you have chosen for the firewall.

Page 114 / 224

Model FVS328 ProSafe VPN Firewall with Dial Back-up Reference Manual

8-12

Managing Your Network

December 2003, M-10041-01

2.

From the Maintenance heading of the main menu, select the Settings Backup menu as seen

below.

Figure 8-8:

Settings Backup menu

3.

Click Backup to save a copy of the current settings.

4.

Store the

.cfg

file on a computer on your network.

How to Restore a Configuration from a File

1.

Log in to the firewall at its default LAN address of

http://192.168.0.1

with its default user

name of

admin

, default password of

password

, or using whatever Password and LAN

address you have chosen for the firewall.

2.

From the Maintenance heading of the main menu, select the Settings Backup menu as seen in

Figure 8-8

.

3.

Under Restore saved settings from file, enter the full path to the file on your network or click

the Browse button to browse to the file.

4.

When you have located the

.cfg

file, click the Restore button to upload the file to the firewall.

5.

The firewall will then reboot automatically.

Page 115 / 224

Model FVS328 ProSafe VPN Firewall with Dial Back-up Reference Manual

Managing Your Network

8-13

December 2003, M-10041-01

How to Erase the Configuration

It is sometimes desirable to restore the firewall to the factory default settings. This can be done by

using the Erase function.

1.

To erase the configuration, from the Settings Backup menu, click the Erase button under

Revert to factory default settings.

2.

The firewall will then reboot automatically.

After an erase, the firewall's password will be

password

, the LAN IP address will be

192.168.0.1, and the router's DHCP client will be enabled.

Note:

To restore the factory default configuration settings without knowing the login password

or IP address, you must use the Default Reset button on the rear panel of the firewall. See

“How to Use the Default Reset Button” on page 9-7

.

Running Diagnostic Utilities and Rebooting the Router

The FVS328 Firewall has a diagnostics feature. You can use the diagnostics menu to perform the

following functions from the firewall:

•

Ping an IP Address to test connectivity to see if you can reach a remote host.

•

Perform a DNS Lookup to test if an Internet name resolves to an IP address to verify that the

DNS server configuration is working.

•

Display the Routing Table to identify what other routers the router is communicating with.

•

Reboot the Router to enable new network configurations to take effect or to clear problems

with the router’s network connection.

From the main menu of the browser interface, under the Maintenance heading, select the

Diagnostics link to display the menu shown below. Then select the function you want to activate.

Rate

Popular NETGEAR Models

Famous Router IPs

Famous Router Companies

Bookmark Our Site

Share