Inbound Rules (Port Forwarding) - NETGEAR FVG318 Reference Manual

Prosafe 802.11g wireless vpn firewall

Hide thumbs Also See for FVG318:

Reference manual (204 pages)

Configuration manual (11 pages)

Features manual (11 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

Table of Contents

ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual

An example of the menu for defining or editing a rule is shown in

•

Service. From this list, select the application or service to be allowed or blocked. The list

already displays many common services, but you are not limited to these choices. Use the

Services menu to add any additional services or applications that do not already appear.

•

Action. Choose how you would like this type of traffic to be handled. You can block or allow

always, or you can choose to block or allow according to the schedule you have defined in the

Schedule menu.

•

Source Address. Specify traffic originating on the LAN (outbound) or the WAN (inbound),

and choose whether you would like the traffic to be restricted by source IP address. You can

select Any, a Single address, or a Range. If you select a range of addresses, enter the range in

the start and finish boxes. If you select a single address, enter it in the start box.

•

Destination Address.The Destination Address will be assumed to be from the opposite (LAN

or WAN) of the Source Address. As with the Source Address, you can select Any, a Single

address, or a Range unless NAT is enabled and the destination is the LAN. In that case, you

must enter a Single LAN address in the start box.

•

Log. You can select whether the traffic will be logged. The choices are:

–

Never — no log entries will be made for this service.

–

Match — traffic of this type that matches the parameters and action will be logged.

Inbound Rules (Port Forwarding)

Because the FVG318 uses Network Address Translation (NAT), your network presents only one

IP address to the Internet, and outside users cannot directly address any of your local computers.

However, by defining an inbound rule you can make a local server (for example, a Web server or

game server) visible and available to the Internet. The rule tells the firewall to direct inbound

traffic for a particular service to one local server based on the destination port number. This is also

known as port forwarding.

Note: Some residential broadband ISP accounts do not allow you to run any server

processes (such as a Web or FTP server) from your location. Your ISP may

periodically check for servers and may suspend your account if it discovers any

active services at your location. If you are unsure, refer to the Acceptable Use

Policy of your ISP.

Remember that allowing inbound services opens holes in your VPN firewall. Only enable those

ports that are necessary for your network. Following are two application examples of inbound

rules:

4-6

Firewall Protection and Content Filtering

v1.0, September 2007

Figure

4-3. The parameters are:

Table of Contents

Troubleshooting

This manual is also suitable for:

Fvg318na Fvg318v1 - prosafe 802.11g wireless vpn firewall switch Fvg318v2 - prosafe 802.11g wireless vpn firewall switch

Inbound Rules (Port Forwarding) - NETGEAR FVG318 Reference Manual

Inbound Rules (Port Forwarding)

Troubleshooting

Related Manuals for NETGEAR FVG318

Related Content for NETGEAR FVG318

This manual is also suitable for:

Table of Contents