Netgear FVS318N – Prosafe Wireless N VPN Firewall 参考手册
Firewall Protection
172
ProSAFE Wireless-N 8-Port Gigabit VPN Firewall FVS318N
4.
Click Apply to save your settings.
Manage the Application Level Gateway for SIP Sessions
The application level gateway (ALG) facilitates multimedia sessions such as voice over IP
(VoIP) sessions that use the Session Initiation Protocol (SIP) across the firewall and provides
support for multiple SIP clients. SIP support for the ALG, which is an IPv4 feature, is disabled
by default.
(VoIP) sessions that use the Session Initiation Protocol (SIP) across the firewall and provides
support for multiple SIP clients. SIP support for the ALG, which is an IPv4 feature, is disabled
by default.
To enable ALG for SIP:
1.
Select Security > Firewall > Advanced. The Advanced screen displays:
Figure 92.
2.
Select the Enable SIP ALG check box.
3.
Click Apply to save your settings.
User Limit
Enter a number to indicate the user limit. Note the following:
•
If the User Limit Parameter is set to Percentage of Max Sessions, the number
specifies the maximum number of sessions that are allowed from a
single-source device as a percentage of the total session connection capacity
of the wireless VPN firewall. (The session limit is per-device based.)
specifies the maximum number of sessions that are allowed from a
single-source device as a percentage of the total session connection capacity
of the wireless VPN firewall. (The session limit is per-device based.)
•
If the User Limit Parameter is set to Number of Sessions, the number specifies
an absolute value.
an absolute value.
Note:
Some protocols such as FTP and RSTP create two sessions per connection,
which should be considered when you configure a session limit.
Total Number of
Packets Dropped due
to Session Limit
Packets Dropped due
to Session Limit
This is a nonconfigurable counter that displays the total number of dropped packets
when the session limit is reached.
when the session limit is reached.
Session Timeout
TCP Timeout
For each protocol, specify a time-out in seconds. A session expires if no data for
the session is received during the time-out period. The default time-out periods are
1800 seconds for TCP sessions, 120 seconds for UDP sessions, and 60
the session is received during the time-out period. The default time-out periods are
1800 seconds for TCP sessions, 120 seconds for UDP sessions, and 60
seconds
for ICMP sessions.
UDP Timeout
ICMP Timeout
Table 36. Session Limit screen settings (continued)
Setting
Description