Netgear WGU624 Guide D’Exploitation
Reference Manual for the Double 108 Mbps Wireless Firewall Router WGU624
2-4
Introduction
M-10153-01
Security
The WGU624 wireless router is equipped with several features designed to maintain security, as
described in this section.
described in this section.
•
PCs Hidden by NAT
NAT opens a temporary path to the Internet for requests originating from the local network.
Requests originating from outside the LAN are discarded, preventing users outside the LAN
from finding and directly accessing the PCs on the LAN.
Requests originating from outside the LAN are discarded, preventing users outside the LAN
from finding and directly accessing the PCs on the LAN.
•
DMZ Hardware Port
A Demilitarized Zone (DMZ) is used by a company that wants to host its own Internet services
without sacrificing unauthorized access to its private network.
without sacrificing unauthorized access to its private network.
The DMZ sits between the Internet and an internal network's line of defense, usually some
combination of firewalls and bastion hosts. Typically, the DMZ contains devices accessible to
Internet traffic, such as Web (HTTP) servers, FTP servers, SMTP (e-mail) servers and DNS
servers.
combination of firewalls and bastion hosts. Typically, the DMZ contains devices accessible to
Internet traffic, such as Web (HTTP) servers, FTP servers, SMTP (e-mail) servers and DNS
servers.
•
Port Forwarding with NAT
Although NAT prevents Internet locations from directly accessing the PCs on the LAN, the
router allows you to direct incoming traffic to specific PCs based on the service port number
of the incoming request, or to one designated “DMZ” host computer. You can specify
forwarding of single ports or ranges of ports.
router allows you to direct incoming traffic to specific PCs based on the service port number
of the incoming request, or to one designated “DMZ” host computer. You can specify
forwarding of single ports or ranges of ports.
Autosensing Ethernet Connections with Auto Uplink
With its internal 8-port 10/100 switch, the WGU624 can connect to either a 10 Mbps standard
Ethernet network or a 100 Mbps Fast Ethernet network. Both the LAN and WAN interfaces are
autosensing and capable of full-duplex or half-duplex operation.
Ethernet network or a 100 Mbps Fast Ethernet network. Both the LAN and WAN interfaces are
autosensing and capable of full-duplex or half-duplex operation.
The router incorporates Auto Uplink
TM
technology. Each Ethernet port automatically senses
whether the Ethernet cable plugged into the port should have a ‘normal’ connection such as to a
PC or an ‘uplink’ connection such as to a switch or hub. That port then configures itself to the
correct configuration. This feature also eliminates the need to worry about crossover cables, as
Auto Uplink accommodates either type of cable to make the right connection.
PC or an ‘uplink’ connection such as to a switch or hub. That port then configures itself to the
correct configuration. This feature also eliminates the need to worry about crossover cables, as
Auto Uplink accommodates either type of cable to make the right connection.