Features That Increase Traffic - NETGEAR SRX5308 - ProSafe® Quad WAN Gigabit SSL VPN Firewall Reference Manual
Gigabit quad wan ssl vpn firewall
Hide thumbs
Also See for SRX5308 - ProSafe® Quad WAN Gigabit SSL VPN Firewall:
- Configuration manual (8 pages) ,
- Use manual (9 pages) ,
- Network setup manual (8 pages)
Table of Contents
Advertisement
ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308 Reference Manual
Content Filtering
If you want to reduce traffic by preventing access to certain sites on the Internet, you can use the
VPN firewall's content filtering feature. By default, this feature is disabled; all requested traffic
from any website is allowed.
•
Web object blocking. You can block the following Web component types: embedded objects
(ActiveX, Java, Flash), proxies, and cookies.
•
Keyword and file extension blocking. You can specify words that, should they appear in the
website name (URL), file extension, or newsgroup name, cause that site, file, or newsgroup to
be blocked by the VPN firewall.
•
URL blocking. You can specify URLs that are blocked by the VPN firewall.
For more information, see
Source MAC Filtering
If you want to reduce outgoing traffic by preventing Internet access by certain PCs on the LAN,
you can use the source MAC filtering feature to drop the traffic received from the PCs with the
specified MAC addresses. By default, this feature is disabled; all traffic received from PCs with
any MAC address is allowed. See
procedure on how to use this feature.
Features That Increase Traffic
The following features of the VPN firewall tend to increase the traffic load on the WAN side:
•
LAN WAN inbound rules (also referred to as port forwarding)
•
DMZ WAN inbound rules (also referred to as port forwarding)
•
Port triggering
•
Enabling the DMZ port
•
Configuring exposed hosts
•
Configuring VPN tunnels
LAN WAN Inbound Rules and DMZ WAN Inbound Rules (Port Forwarding)
The LAN WAN Rules screen and the DMZ WAN Rules screen list all existing rules for inbound
traffic (from WAN to LAN and from WAN to the DMZ). If you have not defined any rules, only
the default rule is listed. The default rule blocks all access from outside except responses to
requests from the LAN side. Any inbound rule that you create allows additional incoming traffic
and therefore increases the traffic load on the WAN side.
8-4
"Content Filtering (Blocking Internet Sites)" on page
"Enabling Source MAC Filtering" on page 4-44
v1.0, April 2010
4-41.
for the
Network and System Management
Advertisement
Table of Contents
Troubleshooting
