NETGEAR ProSafe FVS114 Reference Manual page 43

Vpn firewall

Hide thumbs Also See for ProSafe FVS114:

Installation manual (2 pages)

Specifications (2 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

Table of Contents

An example of the menu for defining or editing a rule is shown in

•

Service. From this list, select the application or service to be allowed or blocked. The list

already displays many common services, but you are not limited to these choices. Use the

Services menu to add any additional services or applications that do not already appear.

•

Action. Choose how you would like this type of traffic to be handled. You can block or allow

always, or you can choose to block or allow according to the schedule you have defined in the

Schedule menu.

•

Source Address. Specify traffic originating on the LAN (outbound) or the WAN (inbound),

and choose whether you would like the traffic to be restricted by source IP address. You can

select Any, a Single address, or a Range. If you select a range of addresses, enter the range in

the start and finish boxes. If you select a single address, enter it in the start box.

•

Destination Address.The Destination Address will be assumed to be from the opposite (LAN

or WAN) of the Source Address. As with the Source Address, you can select Any, a Single

address, or a Range unless NAT is enabled and the destination is the LAN. In that case, you

must enter a Single LAN address in the start box.

•

Log. You can select whether the traffic will be logged. The choices are:

–

Never — no log entries will be made for this service.

–

Match — traffic of this type that matches the parameters and action will be logged.

•

Options. These options determine how certain types of packets are handled by the Router.

Enable or disable each option as required.

–

Enable VPN Passthrough (IPSec, PPTP, L2TP) — The IPSec, PPTP, and L2TP protocols

are used to establish a secure connection, and are widely used by VPN (Virtual Private

Networking) programs. If this setting is disbled, PCs only your LAN will not be able to

use thes VPN programs.

–

Drop fragmented IP packets — If enabled, fragmented IP packets are discarded, forcing

re-transmission of these packets. In some situations, this could prevent successful

commnunication.

–

Block TCP flood — A TCP flood is excessively large number of TCP connection

requests. This is usually a DoS (Denial of Service) attack. This setting should be normally

be enabled.

–

Block UDP flood — A UDP flood is excessively large number of UDP packets. This is

usually a DoS (Denial of Service) attack. This setting should be normally be enabled.

Firewall Protection and Content Filtering

Reference Manual for the ProSafe VPN Firewall FVS114

202-10098-01, April 2005

Figure

4-3. The parameters are:

4-5

Table of Contents

Troubleshooting

This manual is also suitable for:

Fvs114na

NETGEAR ProSafe FVS114 Reference Manual page 43

Troubleshooting

Related Manuals for NETGEAR ProSafe FVS114

Related Products for NETGEAR ProSafe FVS114

This manual is also suitable for:

Table of Contents