Firewall Protection and Content Filtering
4-1
v1.0, March 2009
Chapter 4
Firewall Protection and Content Filtering
This chapter describes how to use the content filtering features of the ProSafe VPN Firewall 200 to
protect your network.
This chapter includes the following sections:
•
“About Firewall Protection and Content Filtering” on page 4-1
•
“Using Rules to Block or Allow Specific Kinds of Traffic” on page 4-2
•
“Setting a Schedule to Block or Allow Specific Traffic” on page 4-28
•
“Setting Block Sites (Content Filtering)” on page 4-29
•
“Enabling Source MAC Filtering” on page 4-31
•
“IP/MAC Binding” on page 4-33
•
“Port Triggering” on page 4-35
•
“Bandwidth Limiting” on page 4-37
•
“E-Mail Notifications of Event Logs and Alerts” on page 4-39
•
“Administrator Tips” on page 4-43
About Firewall Protection and Content Filtering
The ProSafe VPN Firewall 200 provides you with Web content filtering options, plus browsing
activity reporting and instant alerts via e-mail. Parents and network administrators can establish
restricted access policies based on time-of-day, Web addresses and Web address keywords. You
can also block Internet access by applications and services, such as chat or games.
A firewall is a special category of router that protects one network (the “trusted” network, such as
your LAN) from another (the untrusted network, such as the Internet), while allowing
communication between the two. You can further segment keyword blocking to certain known
groups (see
“Managing Groups and Hosts (LAN Groups)” on page 3-6
to set up LAN Groups).
A firewall incorporates the functions of a NAT (Network Address Translation) router, while
adding features for dealing with a hacker intrusion or attack, and for controlling the types of traffic
that can flow between the two networks. Unlike simple Internet sharing NAT routers, a firewall
uses a process called stateful packet inspection to protect your network from attacks and