NETGEAR Wireless-N 300 Router WNR2000v2 User Manual

Safeguarding Your Network

2-24

v1.0, January 2010

1.

Select

Guest Network

from the Setup menu. The Guest Network Settings screen appears

2.

Select any of the following Wireless settings:

–

Enable Guest Network

– When this check box is selected, the guest network is enabled,

and guests can connect to your network using the SSID of this profile.

–

Enable SSID Broadcast

– If selected, the Wireless Access Point broadcasts its name

(SSID) to all Wireless Stations. Stations with no SSID can adopt the correct SSID for

connections to this Access Point.

–

Allow Guest to access MY Local Network

– If selected any user who connects to this

SSID can access local networks associated with the router like users in the primary SSID.

3.

Select a Security option from the list. For a description of each Security option, see

Table 2-1

on page 2-3

.

4.

Click

Apply

to save your selections.

Figure 2-14

3-1

v1.0, January 2010

Chapter 3

Restricting Access From Your Network

This chapter describes how to use the content filtering and reporting features of the Wireless-N

300 Router Model WNR2000v2 to protect your network.

This chapter includes the following sections:

•

“Content Filtering Overview

”

•

“Blocking Access to Internet Sites

”

•

“Blocking Access to Internet Services” on page 3-3

•

“Scheduling Blocking” on page 3-5

•

“Viewing Logs of Web Access or Attempted Web Access” on page 3-6

•

“Configuring E-mail Alert and Web Access Log Notifications” on page 3-7

•

“Setting the Time Zone” on page 3-9

Content Filtering Overview

The Wireless-N 300 Router Model WNR2000v2 provides you with Web content filtering options,

plus browser activity reporting and instant alerts through e-mail. Parents and network

administrators can establish restricted access policies based on time of day, Web addresses, and

Web address keywords. You can also block Internet access by applications and services, such as

chat rooms or games.

Blocking Access to Internet Sites

The WNR2000v2 router allows you to restrict access based on Web addresses and Web address

keywords. Up to 255 entries are supported in the Keyword list.

Keyword application examples:

•

If the keyword

XXX

is specified, the URL www.zzzyyqq.com/xxx.html is blocked.

•

If the keyword

.com

is specified, only websites with other domain suffixes (such as .edu, .org,

or .gov) can be viewed.

NETGEAR Wireless-N 300 Router WNR2000v2 User Manual

Restricting Access From Your Network

3-2

v1.0, January 2010

To block access to Internet sites:

1.

Select

Block Sites

under Content Filtering in the main menu. The Block Sites screen displays.

2.

Enable keyword blocking by selecting either

Per Schedule

or

Always

.

To block by schedule, be sure to specify a time period in the Schedule screen. For information

about scheduling, see

“Scheduling Blocking” on page 3-5

.

Block all access to Internet browsing during a scheduled period by entering a dot (

.

) as the

keyword, and then set a schedule in the Schedule screen.

3.

Add a keyword or domain by entering it in the keyword field and clicking

Add Keyword

. The

keyword or domain name then appears the

Block sites containing these keywords or domain

names

list.

Delete a keyword or domain name by selecting it from the list and clicking

Delete Keyword

.

4.

You can specify one trusted user, which is a computer that is exempt from blocking and

logging. Specify a trusted user by entering that computer’s IP address in the

Trusted IP

Address

fields.

Figure 3-1

NETGEAR Wireless-N 300 Router WNR2000v2 User Manual

Restricting Access From Your Network

3-3

v1.0, January 2010

Since the trusted user is identified by IP address, you should configure that computer with a

fixed IP address.

5.

Click

Apply

to save all your settings in the Block Sites screen.

Blocking Access to Internet Services

The WNR2000v2 router allows you to block the use of certain Internet services by computers on

your network. This is called service blocking or port filtering. Services are functions performed by

server computers at the request of client computers. For example, Web servers serve Web pages,

time servers serve time and date information, and game hosts serve data about other players’

moves. When a computer on your network sends a request for service to a server computer on the

Internet, the requested service is identified by a service or port number. This number appears as the

destination port number in the transmitted IP packets. For example, a packet that is sent with

destination port number 80 is an HTTP (Web server) request.

To block access to Internet services:

1.

Select

Block Services

under Content Filtering in the main menu. The Block Services screen

displays.

2.

Enable service blocking by selecting either

Per Schedule

or

Always

, and then click

Apply

.

To block by schedule, be sure to specify a time period in the Schedule screen. For information

about scheduling, see

“Scheduling Blocking” on page 3-5

.

Figure 3-2

NETGEAR Wireless-N 300 Router WNR2000v2 User Manual

Restricting Access From Your Network

3-4

v1.0, January 2010

3.

Specify a service for blocking by clicking

Add

. The Block Services Setup screen displays.

4.

From the

Service Type

list, select the application or service to be allowed or blocked. The list

already displays several common services, but you are not limited to these choices. To add any

additional services or applications that do not already appear, select

User Defined

. To define a

service, first you must determine which port number or range of numbers is used by the

application. The service port numbers for many common protocols are defined by the Internet

Engineering Task Force (IETF) and published in RFC1700, “Assigned Numbers.” Service

numbers for other applications are typically chosen from the range 1024 to 65535 by the

authors of the application. You can often determine port number information by contacting the

publisher of the application, by asking user groups or newsgroups, or by searching.

–

Enter the starting port and ending port numbers. If the application uses a single port

number, enter that number in both fields.

–

If you know that the application uses either TCP or UDP, select the appropriate protocol. If

you are not sure, select

Both

.

5.

Select the radio button for the IP address configuration you want to block, and then enter the

IP addresses in the appropriate fields.

6.

Click

Add

to enable your Block Services Setup selections.

Figure 3-3