Manualshelf

Quick Reference Guide

ManualsBrandsNetgear ManualsPC ComponentsNetgear FVS338
61626364656667686970
ProSafe VPN Firewall 50 FVS338 Reference Manual
4-4 Firewall Protection and Content Filtering
v1.0, January 2010
Inbound Rules (Port Forwarding)
Because the VPN firewall uses Network Address Translation (NAT), your network presents only
one IP address to the Internet and outside users cannot directly address any of your local
computers. However, by defining an inbound rule you can make a local server (for example, a Web
LAN Users These settings determine which computers on your network are affected by this rule.
Select the desired options:
Any – All PCs and devices on your LAN.
Single address - Enter the required address and the rule will be applied to that
particular PC.
Address range – If this option is selected, you must enter the start and finish fields.
Groups – Select the Group you wish this rule to apply to. You can use the Network
Database screen to assign PCs to Groups. See “Managing Groups and Hosts” on
page 3-6.
WAN Users These settings determine which Internet locations are covered by the rule, based on
their IP address. Select the desired option:
Any – All Internet IP address are covered by this rule.
Single address – Enter the required address in the start fields.
Address range – If this option is selected, you must enter the start and finish fields.
QoS Priority Specifies the priority of a service which, in turn, determines the quality of that service for
the traffic passing through the firewall. By default, the priority shown is that of the
selected service. The user can change it accordingly. If the user does not make a
selection (leaves it as Normal-Service), then the native priority of the service will be
applied to the policy. See “Specifying Quality of Service (QoS) Priorities” on page 4-22.
Log This determines whether packets covered by this rule are logged. Select the desired
action:
Always – always log traffic considered by this rule, whether it matches or not. This is
useful when debugging your rules.
Never – never log traffic considered by this rule, whether it matches or not.
Bandwidth
Profile
Specifies the name of a bandwidth limiting profile. Using a bandwidth profile, bandwidth
consumed by different connections can be limited. If multiple connections correspond to
the same firewall rule, they will share the same bandwidth limiting. See “Creating
Bandwidth Profiles” on page 4-23.
NAT IP Specifies whether the source IP address of the outgoing packets should be the WAN
interface address or a specified address, which should belong to the WAN subnet.
NAT Single IP Is
On (interface)
Specifies to which WAN interface the NAT IP address belongs. All outgoing packets will
be routed through the specified WAN interface only.
Table 4-1. Outbound Rules (continued)
Item Description