FVS318G User Manual
Page 15
The FVS318G allows Internet access for up to NAT, the built-in firewall protects you from attacks and intrusions. The VPN firewall provides you can establish restricted access policies ...VPN Firewall Router The VPN firewall provides the following features: • Easy, Web-based setup for Denial of Gigabit Ethernet LAN and WAN ports ensures extremely high data transfer speeds. Chapter 1 Introduction The ProSafe VPN Firewall connects your network from hackers. The FVS318G is a complete security solution that rely on Network Address Translation (NAT) for security, the FVS318G...
The FVS318G allows Internet access for up to NAT, the built-in firewall protects you from attacks and intrusions. The VPN firewall provides you can establish restricted access policies ...VPN Firewall Router The VPN firewall provides the following features: • Easy, Web-based setup for Denial of Gigabit Ethernet LAN and WAN ports ensures extremely high data transfer speeds. Chapter 1 Introduction The ProSafe VPN Firewall connects your network from hackers. The FVS318G is a complete security solution that rely on Network Address Translation (NAT) for security, the FVS318G...
FVS318G User Manual
Page 16
... ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • Built-in eight-port 10/100/1000 Mbps Gigabit Ethernet LAN switch for extremely fast data transfer between a central office and telecommuters. Its firewall ...VPN firewall supports IPsec virtual private network (VPN) connections. You can configure the firewall to log and report attempts to access objectionable Internet sites. • Permits scheduling of VPN client software on the remote computer. • IPsec VPN with Content Filtering Unlike simple Internet sharing NAT routers, the FVS318G is a true firewall...
... ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • Built-in eight-port 10/100/1000 Mbps Gigabit Ethernet LAN switch for extremely fast data transfer between a central office and telecommuters. Its firewall ...VPN firewall supports IPsec virtual private network (VPN) connections. You can configure the firewall to log and report attempts to access objectionable Internet sites. • Permits scheduling of VPN client software on the remote computer. • IPsec VPN with Content Filtering Unlike simple Internet sharing NAT routers, the FVS318G is a true firewall...
FVS318G User Manual
Page 17
... its internal 8-port 10/100/1000 Mbps switch and 10/100/1000 WAN port, the FVS318G can connect to either type of cable to make the right connection. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • Logs security events such as NAT, allows the use of an inexpensive single-user ISP account. • Automatic Configuration of...
... its internal 8-port 10/100/1000 Mbps switch and 10/100/1000 WAN port, the FVS318G can connect to either type of cable to make the right connection. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • Logs security events such as NAT, allows the use of an inexpensive single-user ISP account. • Automatic Configuration of...
FVS318G User Manual
Page 23
...the WAN traffic meters at : http:// kbserver.netgear.com. 2. Connect the cables and restart your password and enable remote management at this time. Select NAT or classical Routing. See "Configuring Dynamic DNS ...VPN Firewall Router Router" on page 2-2. 3. See "Configuring the Internet Connections" on page 2-11. 5. Chapter 2 Connecting the FVS318G to the Internet The initial Internet configuration of the ProSafe VPN Firewall is on the NETGEAR website at this time if desired. Configure the WAN mode. Configure your VPN firewall. 1. See "Logging into the VPN Firewall Router Router...
...the WAN traffic meters at : http:// kbserver.netgear.com. 2. Connect the cables and restart your password and enable remote management at this time. Select NAT or classical Routing. See "Configuring Dynamic DNS ...VPN Firewall Router Router" on page 2-2. 3. See "Configuring the Internet Connections" on page 2-11. 5. Chapter 2 Connecting the FVS318G to the Internet The initial Internet configuration of the ProSafe VPN Firewall is on the NETGEAR website at this time if desired. Configure the WAN mode. Configure your VPN firewall. 1. See "Logging into the VPN Firewall Router Router...
FVS318G User Manual
Page 33
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual 10. The VPN firewall will attempt to connect to the previous settings.) 12. From the Internet, there is made, NETGEAR's Web site appears. Configuring the WAN Mode You must choose either NAT or classical routing, as explained in the fields. 11. Click Apply to save any changes to the WAN ISP Settings...
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual 10. The VPN firewall will attempt to connect to the previous settings.) 12. From the Internet, there is made, NETGEAR's Web site appears. Configuring the WAN Mode You must choose either NAT or classical routing, as explained in the fields. 11. Click Apply to save any changes to the WAN ISP Settings...
FVS318G User Manual
Page 34
This one-to each PC on page 1-5). 2-12 Connecting the FVS318G to specific PCs on your LAN. Classical Routing In classical routing mode, the VPN firewall performs routing, but without NAT. If your ISP has allocated a number of these addresses to -one...Router Status page (see "Monitoring VPN Tunnel Connection Status" on page 9-14) or look at the LEDs on the front panel (see "Front Panel Features" on your LAN must have assigned one of static IP addresses to you, and you have a valid static Internet IP address. The WAN Mode screen displays. ProSafe Gigabit 8 Port VPN Firewall FVS318G...
This one-to each PC on page 1-5). 2-12 Connecting the FVS318G to specific PCs on your LAN. Classical Routing In classical routing mode, the VPN firewall performs routing, but without NAT. If your ISP has allocated a number of these addresses to -one...Router Status page (see "Monitoring VPN Tunnel Connection Status" on page 9-14) or look at the LEDs on the front panel (see "Front Panel Features" on your LAN must have assigned one of static IP addresses to you, and you have a valid static Internet IP address. The WAN Mode screen displays. ProSafe Gigabit 8 Port VPN Firewall FVS318G...
FVS318G User Manual
Page 54
... local users can flow between the two networks. Block all access from outside . Allow all access from the LAN side to the other. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual A firewall incorporates the functions of a NAT (Network Address Translation) router, while adding features for dealing with a hacker intrusion or attack, and for controlling the types of the...
... local users can flow between the two networks. Block all access from outside . Allow all access from the LAN side to the other. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual A firewall incorporates the functions of a NAT (Network Address Translation) router, while adding features for dealing with a hacker intrusion or attack, and for controlling the types of the...
FVS318G User Manual
Page 56
... Using a bandwidth profile, bandwidth consumed by this rule, whether it accordingly. If multiple connections correspond to enable the NAT IP setting. 4-4 Firewall Protection and Content Filtering 1.1 November, 2009 If this rule. See "Managing Groups and Hosts (LAN Groups)" on ...by schedule, otherwise Allow" or "ALLOW by this option is useful when debugging your LAN. • Single address - ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Table 4-1. This determines whether packets covered by schedule, otherwise Block" is selected, the address entered next to...
... Using a bandwidth profile, bandwidth consumed by this rule, whether it accordingly. If multiple connections correspond to enable the NAT IP setting. 4-4 Firewall Protection and Content Filtering 1.1 November, 2009 If this rule. See "Managing Groups and Hosts (LAN Groups)" on ...by schedule, otherwise Allow" or "ALLOW by this option is useful when debugging your LAN. • Single address - ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Table 4-1. This determines whether packets covered by schedule, otherwise Block" is selected, the address entered next to...
FVS318G User Manual
Page 57
... ISP (DHCP enabled), the IP address may change periodically as port forwarding. Firewall Protection and Content Filtering 4-5 1.1 November, 2009 Inbound Rules (Port Forwarding) When the FVS318G uses Network Address Translation (NAT), your network presents only one local server based on the destination port number...the server using the server's local LAN address. Whether or not DHCP is also known as the DHCP lease expires. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Note: See "Configuring Source MAC Filtering" on page 4-24 for yet another way to allow certain types...
... ISP (DHCP enabled), the IP address may change periodically as port forwarding. Firewall Protection and Content Filtering 4-5 1.1 November, 2009 Inbound Rules (Port Forwarding) When the FVS318G uses Network Address Translation (NAT), your network presents only one local server based on the destination port number...the server using the server's local LAN address. Whether or not DHCP is also known as the DHCP lease expires. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Note: See "Configuring Source MAC Filtering" on page 4-24 for yet another way to allow certain types...
FVS318G User Manual
Page 58
...public IP address. WAN Destination IP Specifies the destination IP address applicable to LAN Server This field appears only with Classical Routing (not NAT). Select the desired option: • Any - Action (Filter) Select the desired action for packets covered by this rule: •..."ALLOW by the rule, based on their IP addresses. If this rule will have the destination port number modified to Groups. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Table 4-2. Use the LAN Groups screen (under Network Configuration) to assign PCs to the port number configured here. ...
...public IP address. WAN Destination IP Specifies the destination IP address applicable to LAN Server This field appears only with Classical Routing (not NAT). Select the desired option: • Any - Action (Filter) Select the desired action for packets covered by this rule: •..."ALLOW by the rule, based on their IP addresses. If this rule will have the destination port number modified to Groups. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Table 4-2. Use the LAN Groups screen (under Network Configuration) to assign PCs to the port number configured here. ...
FVS318G User Manual
Page 66
The other addresses are available to map to your LAN. One of the VPN firewall. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Figure 4-5 LAN WAN Inbound Rule: Setting Up One-to-One NAT Mapping If you arrange with your ISP to have more than one public IP address for your use, you can use the additional public IP...
The other addresses are available to map to your LAN. One of the VPN firewall. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Figure 4-5 LAN WAN Inbound Rule: Setting Up One-to-One NAT Mapping If you arrange with your ISP to have more than one public IP address for your use, you can use the additional public IP...
FVS318G User Manual
Page 67
... host an additional public IP address (10.1.0.5) and to associate this example: • VPN firewall FVS318G - WAN1 primary public IP address: 10.1.0.1 - We also instruct the VPN firewall to translate the incoming HTTP port number (port 80) to support multiple public IP addresses... 4-6, we have configured multi-NAT to a different port number (port 8080). LAN IP address 192.168.1.1 • Web server PC on the WAN side, type http://10.1.0.5. Firewall Protection and Content Filtering 1.1 November, 2009 4-15 ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual In the example...
... host an additional public IP address (10.1.0.5) and to associate this example: • VPN firewall FVS318G - WAN1 primary public IP address: 10.1.0.1 - We also instruct the VPN firewall to translate the incoming HTTP port number (port 80) to support multiple public IP addresses... 4-6, we have configured multi-NAT to a different port number (port 8080). LAN IP address 192.168.1.1 • Web server PC on the WAN side, type http://10.1.0.5. Firewall Protection and Content Filtering 1.1 November, 2009 4-15 ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual In the example...
FVS318G User Manual
Page 73
... to compromise or infect computers. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • VPN Pass through-When the FVS318G is allowed. A malicious applet can be used to access a blocked site, they will be routed through NAT and then encrypted per the VPN policy. all packets going to infect computers that is not blocked by NETGEAR" message. For example, if...
... to compromise or infect computers. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual • VPN Pass through-When the FVS318G is allowed. A malicious applet can be used to access a blocked site, they will be routed through NAT and then encrypted per the VPN policy. all packets going to infect computers that is not blocked by NETGEAR" message. For example, if...
FVS318G User Manual
Page 79
A valid MAC address is in NAT mode. For example: 01:23:45:ab:cd... ceases to them available to function correctly that you know the port numbers used by the firewall when the router is six colonseparated pairs of ports. The remote system receives the PC's request and responds using...requires that sent the request. To add a manual binding entry, enter the following data in accordance with the PC. 3. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual 4. The VPN firewall records this connection, opens the additional incoming port or ports associated with this entry...
A valid MAC address is in NAT mode. For example: 01:23:45:ab:cd... ceases to them available to function correctly that you know the port numbers used by the firewall when the router is six colonseparated pairs of ports. The remote system receives the PC's request and responds using...requires that sent the request. To add a manual binding entry, enter the following data in accordance with the PC. 3. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual 4. The VPN firewall records this connection, opens the additional incoming port or ports associated with this entry...
FVS318G User Manual
Page 176
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual K keepalive, VPN 5-27 Keep Connected Idle Timeout 2-9 Keyword Blocking4-22 applying4-24 Known PCs and Devices list of 3-7 L LAN configuration 3-1 using LAN IP setup options 3-2 LAN Groups ... Policies menu, configuring 5-22 menu, configuring 5-22 testing Client 5-26 MTU Size 2-15 multi home LAN IPs 3-5 about 3-10 multi-NAT4-15 N NAS Identifier 5-20 NAT firewall, use with4-2 multi-NAT4-15 one-to-one mapping example4-14 NAT configuring 2-11 one-to-one mapping 2-11 v1.1 November, 2009
ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual K keepalive, VPN 5-27 Keep Connected Idle Timeout 2-9 Keyword Blocking4-22 applying4-24 Known PCs and Devices list of 3-7 L LAN configuration 3-1 using LAN IP setup options 3-2 LAN Groups ... Policies menu, configuring 5-22 menu, configuring 5-22 testing Client 5-26 MTU Size 2-15 multi home LAN IPs 3-5 about 3-10 multi-NAT4-15 N NAS Identifier 5-20 NAT firewall, use with4-2 multi-NAT4-15 one-to-one mapping example4-14 NAT configuring 2-11 one-to-one mapping 2-11 v1.1 November, 2009
FVS318G User Manual
Page 177
... Port Triggering screen4-28 Port Forwarding increasing traffic 7-5 Port Speed 2-16 Port Triggering increasing traffic 7-7 PPPoE 2-6, 2-8 Internet connection 2-9 PPTP 2-6, 2-8 PPP over VPN 5-29 Network Access Server. See NAT.Network Database table 3-7 Network Database Group Names screen 3-9 Network Time Protocol. See NTP. See QoS. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual NetBIOS bridging over Ethernet. See NAS.
... Port Triggering screen4-28 Port Forwarding increasing traffic 7-5 Port Speed 2-16 Port Triggering increasing traffic 7-7 PPPoE 2-6, 2-8 Internet connection 2-9 PPTP 2-6, 2-8 PPP over VPN 5-29 Network Access Server. See NAT.Network Database table 3-7 Network Database Group Names screen 3-9 Network Time Protocol. See NTP. See QoS. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual NetBIOS bridging over Ethernet. See NAS.
FVS318G User Manual
Page 179
Setting Up One-to-One NAT Mapping example of4-14 sniffer 8-3 SNMP about 3-11 configuring 3-11 metric 3-12... WiKID 6-8 TZO.com 2-12 U UDP flood special rule 7-6 UDP flood 4-20 User Database 5-19 T tab, menu 2-4 V VPN firewall v1.1 November, 2009 Index-7 See QoStracert use with4-2 Static 3-11 static IP address configuring 2-10 detecting 2-6 static routes about 7-13... Address DHCP Address Pool 3-4 stateful packet inspection. See SPI. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Settings Backup and Firmware Upgrade 7-16 Simple Network Management Protocol. See SNMP.
Setting Up One-to-One NAT Mapping example of4-14 sniffer 8-3 SNMP about 3-11 configuring 3-11 metric 3-12... WiKID 6-8 TZO.com 2-12 U UDP flood special rule 7-6 UDP flood 4-20 User Database 5-19 T tab, menu 2-4 V VPN firewall v1.1 November, 2009 Index-7 See QoStracert use with4-2 Static 3-11 static IP address configuring 2-10 detecting 2-6 static routes about 7-13... Address DHCP Address Pool 3-4 stateful packet inspection. See SPI. ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual Settings Backup and Firmware Upgrade 7-16 Simple Network Management Protocol. See SNMP.