Netgear FVS318Gv2 – ProSAFE VPN Firewall Series Manual De Referência
Network and System Management
321
NETGEAR ProSAFE VPN Firewall FVS318G v2
WARNING:
Incorrect configuration of outbound firewall rules can cause
serious connection problems.
serious connection problems.
Each rule lets you specify the desired action for the connections that are covered by the rule:
•
BLOCK always
•
BLOCK by schedule, otherwise allow
•
ALLOW always
•
ALLOW by schedule, otherwise block
The following sections summarize the various criteria that you can apply to outbound rules to
reduce traffic.
reduce traffic.
•
For more information about outbound rules, see
•
For detailed procedures about how to configure outbound rules, see
on page 134 and
When you define outbound firewall rules, you can further refine their application according to
the following criteria:
the following criteria:
•
Services. You can specify the services or applications to be covered by an outbound
rule. If the desired service or application does not display in the list, you must define it
using the Services screen. For more information, see
rule. If the desired service or application does not display in the list, you must define it
using the Services screen. For more information, see
on page 128 and
•
LAN users (or DMZ users). You can specify which computers on your network are
affected by an outbound rule. Several options are available:
affected by an outbound rule. Several options are available:
-
Any. The rule applies to all computers and devices on your LAN.
-
Single address. The rule applies to the address of a particular computer.
-
Address range. The rule applies to a range of addresses.
-
Groups. The rule applies to a group of computers. You can configure groups for LAN
WAN outbound rules but not for DMZ WAN outbound rules as follows:
WAN outbound rules but not for DMZ WAN outbound rules as follows:
•
The Known PCs and Devices table is an automatically maintained list of all known
computers and network devices and is generally referred to as the network
database. For more information, see
computers and network devices and is generally referred to as the network
database. For more information, see
•
Computers and network devices are entered into the network database by various
methods. For more information, see
methods. For more information, see
•
WAN users. You can specify which Internet locations are covered by an outbound rule,
based on their IP address:
based on their IP address:
-
Any. The rule applies to all Internet IP address.
-
Single address. The rule applies to a single Internet IP address.
-
Address range. The rule applies to a range of Internet IP addresses.