Netgear Netgar VPN FIrewall FVS336Gv2 Reference Manual
Have a look at the manual Netgear Netgar VPN FIrewall FVS336Gv2 Reference Manual online for free. It’s possible to download the document as PDF or print. UserManuals.tech offer 137 Netgear manuals and user’s guides for free. Share the user manual or guide on Facebook, Twitter or Google+.
Customize Firewall Protection 230 ProSAFE Dual WAN Gigabit WAN SSL VPN Firewall FVS336Gv2 7. Under the Inbound Services table, click the Add button. The Add LAN WAN Inbound Service screen for IPv4 displays. 8. Make your selections from the menus and enter the settings. For more information about the menus and settings, see Settings for Inbound Rules on page 217. The following table lists the menus that apply to an IPv4 LAN WAN inbound rule. Menus that apply to all IPv4 LAN WAN inbound rulesMenus that apply only when your selection from the Action menu is not BLOCK always Service Select Schedule Note:This menu is available only when the selection from the Action menu includes by schedule. Action Send to Lan Server WAN Destination IP Address Translate to Port Number LAN Users Note:This menu is available only when the WAN mode is Classical Routing. When the WAN mode is NAT, your network presents only one IP address to the Internet.QoS Profile
Customize Firewall Protection 231 ProSAFE Dual WAN Gigabit WAN SSL VPN Firewall FVS336Gv2 9. Click the Apply button. Your settings are saved. The new rule is added to the Inbound Services table on the LAN WAN Rules screen. Add an IPv6 LAN WAN Inbound Rule The following procedure describes how to add an IPv6 LAN WAN inbound rule. To add an IPv6 LAN WAN inbound rule: 1. On your computer, launch an Internet browser. 2. In the address field of your browser, enter the IP address that was assigned to the VPN firewall during the installation process. The VPN firewall factory default IP address is 192.168.1.1. The NETGEAR Configuration Manager Login screen displays. 3. In the Username field, type your user name and in the Password / Passcode field, type your password. For the default administrative account, the default user name is admin and the default password is password. 4. If you changed the default domain or were assigned a domain, from the Domain menu, select the domain. If you did not change the domain or were not assigned a domain, leave the menu selection at geardomain. 5. Click the Login button. The Router Status screen displays. 6. Select Security > Firewall. The Firewall submenu tabs display with the LAN WAN Rules screen in view, displaying the IPv4 settings. 7. In the upper right, select the IPv6 radio button. The LAN WAN Rules screen displays the IPv6 settings. WAN Users Bandwidth Profile Log Menus that apply to all IPv4 LAN WAN inbound rulesMenus that apply only when your selection from the Action menu is not BLOCK always
Customize Firewall Protection 232 ProSAFE Dual WAN Gigabit WAN SSL VPN Firewall FVS336Gv2 8. Under the Inbound Services table, click the Add button. The Add LAN WAN Inbound Service screen for IPv6 displays. 9. Make your selections from the menus and enter the settings. For more information about the menus and settings, see Settings for Inbound Rules on page 217. The following table lists the menus that apply to an IPv6 LAN WAN inbound rule. Menus that apply to all IPv6 LAN WAN inbound rulesMenus that apply only when your selection from the Action menu is not BLOCK always Service Select Schedule Note:This menu is available only when the selection from the Action menu includes by schedule. Action
Customize Firewall Protection 233 ProSAFE Dual WAN Gigabit WAN SSL VPN Firewall FVS336Gv2 10. Click the Apply button. Your settings are saved. The new rule is added to the Inbound Services table on the LAN WAN Rules screen. Add DMZ WAN Rules The following sections provide information about managing DMZ WAN rules: •Add DMZ WAN Outbound Service Rules •Add LAN WAN Inbound Service Rules Add DMZ WAN Outbound Service Rules For DMZ WAN traffic, the default outbound policy is to block all traffic to the Internet. You can change the default policy by adding DMZ WAN firewall rules that allow specific types of traffic to go out from the DMZ to the Internet. Alternately, you can allow all outbound traffic and then block only specific services from passing through the VPN firewall. You can allow or block access based on the service or application, source or destination IP addresses, and time of day. The following sections provide information about adding DMZ WAN outbound service rules: •Add an IPv4 DMZ WAN Outbound Rule •Add an IPv6 DMZ WAN Outbound Rule Add an IPv4 DMZ WAN Outbound Rule The following procedure describes how to add an IPv4 DMZ WAN outbound rule. To add an IPv4 DMZ WAN outbound rule: 1. On your computer, launch an Internet browser. 2. In the address field of your browser, enter the IP address that was assigned to the VPN firewall during the installation process. The VPN firewall factory default IP address is 192.168.1.1. The NETGEAR Configuration Manager Login screen displays. LAN Users WAN Users Log Menus that apply to all IPv6 LAN WAN inbound rulesMenus that apply only when your selection from the Action menu is not BLOCK always
Customize Firewall Protection 234 ProSAFE Dual WAN Gigabit WAN SSL VPN Firewall FVS336Gv2 3. In the Username field, type your user name and in the Password / Passcode field, type your password. For the default administrative account, the default user name is admin and the default password is password. 4. If you changed the default domain or were assigned a domain, from the Domain menu, select the domain. If you did not change the domain or were not assigned a domain, leave the menu selection at geardomain. 5. Click the Login button. The Router Status screen displays. 6. Select Security > Firewall > DMZ WAN Rules. The DMZ WAN Rule screen displays the IPv4 settings. The following figure shows some examples. 7. Under the Outbound Services table, click the Add button. The Add DMZ WAN Outbound Service screen for IPv4 displays.
Customize Firewall Protection 235 ProSAFE Dual WAN Gigabit WAN SSL VPN Firewall FVS336Gv2 8. Make your selections from the menus and enter the settings. For more information about the menus and settings, see Settings for Outbound Rules on page 212. The following table lists the menus that apply to an IPv4 DMZ WAN outbound rule. 9. Click the Apply button. Your settings are saved. The new rule is added to the Outbound Services table on the DMZ WAN Rules screen. Add an IPv6 DMZ WAN Outbound Rule The following procedure describes how to add an IPv64 DMZ WAN outbound rule. To add an IPv6 DMZ WAN outbound rule: 1. On your computer, launch an Internet browser. Menus that apply to all IPv4 DMZ WAN outbound rulesMenus that apply only when your selection from the Action menu is not BLOCK always Service Select Schedule Note:This menu is available only when the selection from the Action menu includes by schedule. Action QoS Profile DMZ Users NAT IP Note:This menu is available only when the WAN mode is NAT. WAN Users Log
Customize Firewall Protection 236 ProSAFE Dual WAN Gigabit WAN SSL VPN Firewall FVS336Gv2 2. In the address field of your browser, enter the IP address that was assigned to the VPN firewall during the installation process. The VPN firewall factory default IP address is 192.168.1.1. The NETGEAR Configuration Manager Login screen displays. 3. In the Username field, type your user name and in the Password / Passcode field, type your password. For the default administrative account, the default user name is admin and the default password is password. 4. If you changed the default domain or were assigned a domain, from the Domain menu, select the domain. If you did not change the domain or were not assigned a domain, leave the menu selection at geardomain. 5. Click the Login button. The Router Status screen displays. 6. Select Security > Firewall > DMZ WAN Rules. The DMZ WAN Rules screen displays the IPv4 settings. 7. In the upper right, select the IPv6 radio button. The DMZ WAN Rules screen displays the IPv6 settings. 8. Under the Outbound Services table, click the Add button. The Add DMZ WAN Outbound Service screen for IPv6 displays.
Customize Firewall Protection 237 ProSAFE Dual WAN Gigabit WAN SSL VPN Firewall FVS336Gv2 9. Make your selections from the menus and enter the settings. For more information about the menus and settings, see Settings for Outbound Rules on page 212. The following table lists the menus that apply to an IPv6 DMZ WAN outbound rule. 10. Click the Apply button. Your settings are saved. The new rule is added to the Outbound Services table on the DMZ WAN Rules screen. Add DMZ WAN Inbound Service Rules For DMZ WAN traffic, the default inbound policy is to block all traffic from the Internet. You can change the default policy by adding DMZ WAN firewall rules that allow specific types of traffic to come in from the Internet to the DMZ (inbound). You can allow access based on the service or application, source or destination IP addresses, and time of day. Menus that apply to all IPv6 DMZ WAN outbound rulesMenus that apply only when your selection from the Action menu is not BLOCK always Service Select Schedule Note:This menu is available only when the selection from the Action menu includes by schedule. Action QoS Priority DMZ Users WAN Users Log
Customize Firewall Protection 238 ProSAFE Dual WAN Gigabit WAN SSL VPN Firewall FVS336Gv2 Note:Inbound LAN WAN rules take precedence over inbound DMZ WAN rules. When an inbound packet matches an inbound LAN WAN rule, the VPN firewall does not match the packet against inbound DMZ WAN rules. WARNING: Make sure that you first configure the IPv4 WAN routing mode (see Manage the IPv4 WAN Routing Mode on page 30) before you configure custom firewall rules. If you change the IPv4 WAN routing mode, all DMZ WAN inbound rules revert to default settings. The following sections provide information about adding DMZ WAN inbound service rules: •Add an IPv4 DMZ WAN Inbound Rule •Add an IPv6 DMZ WAN Inbound Rule Add an IPv4 DMZ WAN Inbound Rule The following procedure describes how to add an IPv4 DMZ WAN inbound rule. To add an IPv4 DMZ WAN inbound rule: 1. On your computer, launch an Internet browser. 2. In the address field of your browser, enter the IP address that was assigned to the VPN firewall during the installation process. The VPN firewall factory default IP address is 192.168.1.1. The NETGEAR Configuration Manager Login screen displays. 3. In the Username field, type your user name and in the Password / Passcode field, type your password. For the default administrative account, the default user name is admin and the default password is password. 4. If you changed the default domain or were assigned a domain, from the Domain menu, select the domain. If you did not change the domain or were not assigned a domain, leave the menu selection at geardomain. 5. Click the Login button. The Router Status screen displays. 6. Select Security > Firewall > DMZ WAN Rules. The DMZ WAN Rules screen displays the IPv4 settings.
Customize Firewall Protection 239 ProSAFE Dual WAN Gigabit WAN SSL VPN Firewall FVS336Gv2 7. Under the Inbound Services table, click the Add button. The Add DMZ WAN Inbound Service screen for IPv4 displays. 8. Make your selections from the menus and enter the settings. For more information about the menus and settings, see Settings for Inbound Rules on page 217.