Port Triggering - NETGEAR ProSafe FVS318N Reference Manual

ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N
• LAN users. You can specify which computers on your network are affected by an
inbound rule. There are several options:
- Any. The rule applies to all computers and devices on your LAN.
- Single address. The rule applies to the address of a particular computer.
- Address range. The rule applies to a range of addresses.
- Groups. The rule is applied to a group of computers. (You can configure groups for
LAN WAN outbound rules but not for DMZ WAN outbound rules.) The Known PCs
and Devices table is an automatically maintained list of all known computers and
network devices and is generally referred to as the network database, which is
described in Manage the Network Database
devices are entered into the network database by various methods, which are
described in Manage IPv4 Groups and Hosts (IPv4 LAN Groups)
• WAN users. You can specify which Internet locations are covered by an inbound rule,
based on their IP address:
- Any. The rule applies to all Internet IP address.
- Single address. The rule applies to a single Internet IP address.
- Address range. The rule applies to a range of Internet IP addresses.
• Schedule. You can configure three different schedules to specify when a rule is applied.
Once a schedule is configured, it affects all rules that use this schedule. You specify the
days of the week and time of day for each schedule. For more information, see
Schedule to Block or Allow Specific Traffic
• Bandwidth profile. You can define bandwidth profiles and then apply them to inbound
LAN WAN rules to limit traffic. (You cannot apply bandwidth profiles to DMZ WAN rules.)
For information about how to define bandwidth profiles, see
page 171.

Port Triggering

Port triggering allows some applications running on a LAN network to be available to external
applications that would otherwise be partially blocked by the firewall. Using the port-triggering
feature requires that you know the port numbers used by the application. Without port
triggering, the response from the external application would be treated as a new connection
request rather than a response to a request from the LAN network. As such, it would be
handled in accordance with the inbound port-forwarding rules, and most likely would be
blocked.
For the procedure on how to configure port triggering, see
page 185.
DMZ Port
The demilitarized zone (DMZ) is a network that, by default, has fewer firewall restrictions
when compared to the LAN. The DMZ can be used to host servers (such as a web server,
FTP server, or email server) and provide public access to them. The eighth LAN port on the
wireless VPN firewall (the rightmost LAN port) can be dedicated as a hardware DMZ port to
on page 178.
Network and System Management
318
on page 65. Computers and network
on page 64.
Create Bandwidth Profiles
Configure Port Triggering
Set a
on
on