Netgear FVS318Gv2 – ProSAFE VPN Firewall Series Reference Manual
Firewall Protection
167
NETGEAR ProSAFE VPN Firewall FVS318G v2
WARNING:
For security, NETGEAR strongly recommends that you avoid
creating an exposed host. When a computer is designated as the
exposed host, it loses much of the protection of the firewall and is
exposed to many exploits from the Internet. If compromised, the
computer can be used to attack your network.
creating an exposed host. When a computer is designated as the
exposed host, it loses much of the protection of the firewall and is
exposed to many exploits from the Internet. If compromised, the
computer can be used to attack your network.
IPv6 LAN WAN Inbound Rule: Restrict RTelnet from a Single WAN User to a
Single LAN User
If you want to restrict incoming RTelnet sessions from a single IPv6 WAN user to a single
IPv6 LAN user, specify the initiating IPv6 WAN address and the receiving IPv6 LAN address.
See the example in the following figure.
IPv6 LAN user, specify the initiating IPv6 WAN address and the receiving IPv6 LAN address.
See the example in the following figure.
Figure 13. Example of inbound firewall rule
Examples of Outbound Firewall Rules
Outbound rules let you prevent users from using applications such as Instant Messenger,
Real Audio, or other nonessential sites.
Real Audio, or other nonessential sites.
IPv4 LAN WAN Outbound Rule: Block Instant Messenger
If you want to block Instant Messenger usage by employees during working hours, you can
create an outbound rule to block such an application from any internal IP address to any
external address according to the schedule that you create on the Schedule screen. The
schedule should specify working hours.
create an outbound rule to block such an application from any internal IP address to any
external address according to the schedule that you create on the Schedule screen. The
schedule should specify working hours.