NETGEAR SRX5308 Reference Manual page 85

ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308
WARNING!
Allowing inbound services opens security holes in your VPN
firewall. Enable only those ports that are necessary for your
network.
The following table describes the fields that define the rules for outbound traffic and that are
common to most Outbound Service screens (see
page 97, and Figure 49
The steps to configure outbound rules are described in the following sections:
• Set LAN WAN Rules
• Set DMZ WAN Rules
• Set LAN DMZ Rules
Table 18. Outbound rules overview
Setting Description
Service The service or application to be covered by this rule. If the service or application does
not appear in the list, you need to define it using the Services screen (see
Customized Services
Action The action for outgoing connections covered by this rule:
• BLOCK always
• BLOCK by schedule, otherwise allow
• ALLOW always
• ALLOW by schedule, otherwise block
Note:
default rule.
Note:
That is, you wish to allow a subset of traffic that is currently blocked by another rule.
Select Schedule The time schedule (that is, Schedule1, Schedule2, or Schedule3) that is used by this
rule.
• This drop-down list is activated only when BLOCK by schedule, otherwise allow or
ALLOW by schedule, otherwise block is selected as the action.
• Use the Schedule screen to configure the time schedules (see
Block or Allow Specific Traffic
on page 100).
on page 113).
Any outbound traffic that is not blocked by rules you create is allowed by the
ALLOW rules are useful only if the traffic is already covered by a BLOCK rule.
Firewall Protection
85
Figure 43 on page 94,
on page 122).
Figure 46 on
Add
Set a Schedule to