Firewall Protection
127
NETGEAR ProSAFE VPN Firewall FVS318G v2
Overview of Rules to Block or Allow Specific Kinds of
Traffic
Firewall rules are used to block or allow specific traffic passing through from one side to the
other. You can configure up to 800 firewall rules on the VPN firewall (see the following table).
Inbound rules (WAN to LAN) restrict access by outsiders to private resources, selectively
allowing only specific outside users to access specific resources. Outbound rules (LAN to
WAN) determine what outside resources local users can access.
A firewall is configured with two
default rules, o
ne for inbound traffic and one for outbound.
The default rules of the VPN firewall are as follows:
• Inbound. Block all access from outside except responses to requests from the LAN side.
• Outbound. Allo
w all access from the LAN side to the outside.
The firewall rules for blocking and allowing traffic on the VPN firewall can be app
lied to LAN
WAN traffic, DMZ WAN traffic, and LAN DMZ traffic.
The rules to block or allow traffic are based on the traffic’s category of service:
• Outbound rules (se
rvice blocking). Outbound traffic is allowed unless you configure
the firewall to block specific or all outbound traffic.
• Inbound rules (port forwarding). Inbo
und traffic is blocked unless the traffic is in
response to a request from the LAN side. You can configure the firewall to allow specific
or all inbound traffic.
• Cus
tomized services. Y
ou can add additional services to the list of services in the
factory defaults list. You can then define rules for these added services to either allow or
block that traffic (see Add Customized Services on page 176).
• Quality of Service (QoS) priorities. Each service is assigned its own native priority that
imp
acts its quality of performance and tolerance for jitter or delays. You can change the
QoS priority, which changes the traffic mix through the system (see Preconfigured Quality
of Service Profiles on pag
e 183).
• Bandwidth profiles.
After you configure a bandwidth profile (see Create Bandwidth
Profiles on page 180
), you can assign it to a rule.
This section contains the following topics:
• Outbound Rules
Table 28. Number of supported firewall rule configurations
Traffic Rule Maximum Number of
Outbound Rules
Maximum Number of
Inbound Rules
Maximum Number of
Supported Rules
LAN WAN 300 300 600
DMZ WAN
5050100
LAN DMZ 50 50 100
Total Rules 400 400 800
To Next Page
Loading...
