Netgear FVL328 참조 매뉴얼
Model FVL328 ProSafe High-Speed VPN Firewall Reference Manual Revision 2
5-10
Protecting Your Network
May 2004, 202-10030-02
Figure 5-6: Inbound rule example:
VPN IPSec when NAT is off
In the example shown in
, VPN IPSec connections are allowed for any internal LAN IP
address.
Outbound Rules (Service Blocking or Port Filtering)
The FVL328 allows you to block the use of certain Internet services by computers on your
network. This is called service blocking or port filtering. You can define an outbound rule to block
Internet access from a local computer based on:
network. This is called service blocking or port filtering. You can define an outbound rule to block
Internet access from a local computer based on:
•
IP address of the local computer (source address)
•
IP address of the Internet site being contacted (destination address)
•
Time of day
•
Type of service being requested (service port number)
Outbound Rule Example: Blocking Instant Messaging
If you want to block Instant Messenger usage by employees during working hours, you can create
an outbound rule to block that application from any internal IP address to any external address
according to the schedule that you have created in the Schedule menu. You can also have the router
log any attempt to use Instant Messenger during that blocked period.
an outbound rule to block that application from any internal IP address to any external address
according to the schedule that you have created in the Schedule menu. You can also have the router
log any attempt to use Instant Messenger during that blocked period.