Netgear FVS318v3 – Cable/DSL ProSafe VPN Firewall with 8-Port Switch Reference Manual
ProSafe VPN Firewall FVS318v3 Reference Manual
3-10
Firewall Protection and Content Filtering
v5.0, January 2012
The Default DMZ Server feature is helpful when using some online games and videoconferencing
applications that are incompatible with NAT. The firewall is programmed to recognize some of
these applications and to work properly with them, but there are other applications that may not
function well. In some cases, one local PC can run the application properly if that PC’s IP address
is entered as the Default DMZ Server.
applications that are incompatible with NAT. The firewall is programmed to recognize some of
these applications and to work properly with them, but there are other applications that may not
function well. In some cases, one local PC can run the application properly if that PC’s IP address
is entered as the Default DMZ Server.
To assign a computer or server to be a Default DMZ server:
1. Click Default DMZ Server.
2. Type the IP address for that server.
3. Click Apply.
Respond to Ping on Internet WAN Port
If you want the firewall to respond to a ping from the Internet, click the Respond to Ping on
Internet WAN Port check box. This should only be used as a diagnostic tool, since it allows your
firewall to be discovered. Don't check this box unless you have a specific reason to do so.
Internet WAN Port check box. This should only be used as a diagnostic tool, since it allows your
firewall to be discovered. Don't check this box unless you have a specific reason to do so.
Services
Services are functions performed by server computers at the request of client computers. For
example, Web servers serve Web pages, time servers serve time and date information, and game
hosts serve data about other players’ moves. When a computer on the Internet sends a request for
example, Web servers serve Web pages, time servers serve time and date information, and game
hosts serve data about other players’ moves. When a computer on the Internet sends a request for
Note: For security, NETGEAR strongly recommends that you avoid using the Default
DMZ Server feature. When a computer is designated as the Default DMZ Server,
it loses much of the protection of the firewall, and is exposed to many exploits
from the Internet. If compromised, the computer can be used to attack your
network.
it loses much of the protection of the firewall, and is exposed to many exploits
from the Internet. If compromised, the computer can be used to attack your
network.
Note: In this application, the use of the term “DMZ” has become common, although it is
a misnomer. In traditional firewalls, a DMZ is actually a separate physical
network port. A true DMZ port is for connecting servers that require greater
access from the outside, and will therefore be provided with a different level of
security by the firewall. A better term for our application is Exposed Host.
network port. A true DMZ port is for connecting servers that require greater
access from the outside, and will therefore be provided with a different level of
security by the firewall. A better term for our application is Exposed Host.