Netgear FVS336Gv2 – ProSafe Dual WAN Gigabit Firewall with SSL & IPSec VPN 참조 매뉴얼
Optimize Performance and Manage Your System
528
ProSAFE Dual WAN Gigabit WAN SSL VPN Firewall FVS336Gv2
Features That Reduce Traffic
The following sections provide information about features of the VPN firewall that you can
change in such a way that the traffic load on the WAN side decreases:
change in such a way that the traffic load on the WAN side decreases:
•
•
•
LAN WAN Outbound Rules and DMZ WAN Outbound Rules — Service Blocking
You can control specific outbound traffic (from LAN to WAN and from the DMZ to WAN). Any
outbound rule that you create restricts outgoing traffic and therefore decreases the traffic load
on the WAN side.
outbound rule that you create restricts outgoing traffic and therefore decreases the traffic load
on the WAN side.
If you have not defined any LAN WAN outbound rules, only the default rule applies, which
allows all outgoing traffic.
allows all outgoing traffic.
WARNING:
Incorrect configuration of outbound firewall rules can cause
serious connection problems.
serious connection problems.
Each of the following rules lets you specify the desired action for the connections that are
covered by the rule:
covered by the rule:
•
BLOCK always
•
BLOCK by schedule, otherwise allow
•
ALLOW always
•
ALLOW by schedule, otherwise block
This section summarizes the various criteria that you can apply to outbound rules in order to
reduce traffic. For more information about outbound rules, see
reduce traffic. For more information about outbound rules, see
212. For detailed information about how to configure outbound rules, see
233.
When you define outbound firewall rules, you can further refine their application according to
the following criteria:
the following criteria:
•
Services. You can specify the services or applications to be covered by an outbound
rule. If the desired service or application does not display in the list, you must define it
(see
rule. If the desired service or application does not display in the list, you must define it
(see
•
LAN users (or DMZ users). You can specify which computers on your network are
affected by an outbound rule. You have several options:
affected by an outbound rule. You have several options:
-
Any. The rule applies to all computers and devices on your LAN or DMZ.
-
Single address. The rule applies to the address of a particular computer.