Netgear 11100158 用户手册
Introduction
8
ProSafe Wireless - 802.11 b/g/n VPN Firewall FVS318N
Security Features
The FVS318N is equipped with several features designed to maintain security, as described
in this section.
in this section.
•
PCs Hidden by NAT. NAT opens a temporary path to the Internet for requests originating
from the local network. Requests originating from outside the LAN are discarded,
preventing users outside the LAN from finding and directly accessing the PCs on the
LAN.
from the local network. Requests originating from outside the LAN are discarded,
preventing users outside the LAN from finding and directly accessing the PCs on the
LAN.
•
Port Forwarding with NAT. Although NAT prevents Internet locations from directly
accessing the PCs on the LAN, the VPN firewall allows you to direct incoming traffic to
specific PCs based on the service port number of the incoming request. You can specify
forwarding of single ports or ranges of ports.
specific PCs based on the service port number of the incoming request. You can specify
forwarding of single ports or ranges of ports.
•
DMZ port. Incoming traffic from the Internet is normally discarded by the VPN firewall
unless the traffic is a response to one of your local computers or a service for which you
have configured an inbound rule. Instead of discarding this traffic, you can have it
forwarded to one computer on your network.
have configured an inbound rule. Instead of discarding this traffic, you can have it
forwarded to one computer on your network.
Autosensing Ethernet Connections with Auto Uplink
With its internal 8-port 10/100/1000 Mbps switch and 10/100/1000 WAN port, the FVS318N
can connect to either a 10 Mbps standard Ethernet network, a 100 Mbps Fast Ethernet
network, or a 1000 Mbps Gigabit Ethernet network. The LAN and WAN interfaces are
autosensing and capable of full-duplex or half-duplex operation.
can connect to either a 10 Mbps standard Ethernet network, a 100 Mbps Fast Ethernet
network, or a 1000 Mbps Gigabit Ethernet network. The LAN and WAN interfaces are
autosensing and capable of full-duplex or half-duplex operation.
The VPN firewall incorporates Auto Uplink
TM
technology. Each Ethernet port will automatically
sense whether the Ethernet cable plugged into the port should have a ‘normal’ connection
such as to a PC or an “uplink” connection such as to a switch or hub. That port will then
configure itself to the correct configuration. This feature also eliminates the need to worry
about crossover cables, as Auto Uplink will accommodate either type of cable to make the
right connection.
such as to a PC or an “uplink” connection such as to a switch or hub. That port will then
configure itself to the correct configuration. This feature also eliminates the need to worry
about crossover cables, as Auto Uplink will accommodate either type of cable to make the
right connection.
Extensive Protocol Support
The FVS318N supports the Transmission Control Protocol/Internet Protocol (TCP/IP) and
Routing Information Protocol (RIP). For further information about TCP/IP, see the
Routing Information Protocol (RIP). For further information about TCP/IP, see the
“TCP/IP
Networking Basics
” document that you can access from the link in
“Related Documents” in
Appendix
C
.
•
IP Address Sharing by NAT. The VPN firewall allows several networked PCs to share
an Internet account using only a single IP address, which may be statically or dynamically
assigned by your Internet service provider (ISP). This technique, known as NAT, allows
the use of an inexpensive single-user ISP account.
assigned by your Internet service provider (ISP). This technique, known as NAT, allows
the use of an inexpensive single-user ISP account.
•
Automatic Configuration of Attached PCs by DHCP. The VPN firewall dynamically
assigns network configuration information, including IP, gateway, and domain name
server (DNS) addresses, to attached PCs on the LAN using the Dynamic Host
server (DNS) addresses, to attached PCs on the LAN using the Dynamic Host