NETGEAR SRX5308 - ProSafe® Quad WAN Gigabit SSL VPN Firewall Reference Manual page 260
Gigabit quad wan ssl vpn firewall
Hide thumbs
Also See for SRX5308 - ProSafe® Quad WAN Gigabit SSL VPN Firewall:
- Configuration manual (8 pages) ,
- Use manual (9 pages) ,
- Network setup manual (8 pages)
Table of Contents
Advertisement
ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308 Reference Manual
•
WAN users. You can specify which Internet locations are covered by an inbound rule, based
on their IP address:
–
Any. The rule applies to all Internet IP addresses.
–
Single address. The rule applies to a single Internet IP address.
–
Address range. The rule applies to a range of Internet IP addresses.
•
Schedule. You can configure three different schedules to specify when a rule is applied. Once
a schedule is configured, it affects all rules that use this schedule. You specify the days of the
week and time of day for each schedule. For more information, see
Block or Allow Specific Traffic" on page
•
QoS profile. You can define QoS profiles and then apply them to inbound rules to regulate the
priority of traffic. For information about how to define QoS profiles, see
Service (QoS) Profiles" on page
•
Bandwidth profile. You can define bandwidth profiles and then apply them to inbound rules
to limit traffic. For information about how to define bandwidth profiles, see
Bandwidth Profiles" on page
Port Triggering
Port triggering allows some applications running on a LAN network to be available to external
applications that would otherwise be partially blocked by the firewall. Using the port triggering
feature requires that you know the port numbers used by the application. Without port triggering,
the response from the external application would be treated as a new connection request rather
than a response to a requests from the LAN network. As such, it would be handled in accordance
with the inbound port forwarding rules, and most likely would be blocked.
For the procedure on how to configure port triggering, see
page
4-48.
Configuring the DMZ Port
The demilitarized zone (DMZ) is a network that, by default, has fewer firewall restrictions when
compared to the LAN. The DMZ can be used to host servers (such as a Web server, FTP server, or
email server) and provide public access to them. The fourth LAN port on the VPN firewall (the
rightmost LAN port) can be dedicated as a hardware DMZ port to safely provide services to the
Internet without compromising security on your LAN. By default, the DMZ port and both inbound
and outbound DMZ traffic are disabled. Enabling the DMZ port and allowing traffic to and from
the DMZ increases the traffic through the WAN ports.
8-6
4-40.
4-34.
4-37.
v1.0, April 2010
"Setting a Schedule to
"Creating Quality of
"Creating
"Configuring Port Triggering" on
Network and System Management
Advertisement
Table of Contents
Troubleshooting
