FVS124G Product datasheet
Page 2
... Navigator 4.7 or higher Ethernet cable - Warranty/Support Information card NETGEAR Related Products - SPI Firewall: Stateful Packet Inspection (SPI) to automatically detect ISP Address type (static, dynamic, PPPoE), Port Range Forwarding, Port Triggering, Exposed Host (DMZ), Enable/Disable WAN Ping, DNS Proxy..., UDP, ICMP, PPPoE - Information is localized to -one Multi-Network Address Translation (NAT), classical routing, unrestricted users per port - D-FVS124G-0 • Management Features: - LAN: Up to 253 users • Functions: VPN Wizard to change without notice. configuration...
... Navigator 4.7 or higher Ethernet cable - Warranty/Support Information card NETGEAR Related Products - SPI Firewall: Stateful Packet Inspection (SPI) to automatically detect ISP Address type (static, dynamic, PPPoE), Port Range Forwarding, Port Triggering, Exposed Host (DMZ), Enable/Disable WAN Ping, DNS Proxy..., UDP, ICMP, PPPoE - Information is localized to -one Multi-Network Address Translation (NAT), classical routing, unrestricted users per port - D-FVS124G-0 • Management Features: - LAN: Up to 253 users • Functions: VPN Wizard to change without notice. configuration...
FVS124G Reference Manual
Page 9
...Domain Names 7-2 -3 202-10085-01, March 2005 Reference Manual for the ProSafe VPN Firewall 25 with 4 Gigabit LAN and Dual WAN Ports Load Balancing (and Protocol Binding) Setup 4-17 Step 5: Configure Dynamic DNS (If Needed 4-20 Step 6: Configure the WAN Options (If Needed...Firewall Protection and Content Filtering Overview 6-1 Using Rules to Block or Allow Specific Kinds of Traffic 6-1 Services-Based Rules 6-4 Inbound Rules (Port Forwarding 6-5 Outbound Rules (Service Blocking 6-12 Customized Services 6-16 Quality of Service (QoS) Priorities 6-18 Managing Groups and Hosts 6-20 ...
...Domain Names 7-2 -3 202-10085-01, March 2005 Reference Manual for the ProSafe VPN Firewall 25 with 4 Gigabit LAN and Dual WAN Ports Load Balancing (and Protocol Binding) Setup 4-17 Step 5: Configure Dynamic DNS (If Needed 4-20 Step 6: Configure the WAN Options (If Needed...Firewall Protection and Content Filtering Overview 6-1 Using Rules to Block or Allow Specific Kinds of Traffic 6-1 Services-Based Rules 6-4 Inbound Rules (Port Forwarding 6-5 Outbound Rules (Service Blocking 6-12 Customized Services 6-16 Quality of Service (QoS) Priorities 6-18 Managing Groups and Hosts 6-20 ...
FVS124G Reference Manual
Page 10
... Creating a VPN Connection: Netgear VPN Client to FVS124G 7-11 Configuring the FVS124G 7-12 Configuring the VPN Client 7-12 Testing the Connection 7-20 Chapter 8 Router and Network Management Performance Management 8-1 Bandwidth Capacity 8-1 VPN Firewall Features That Reduce Traffic 8-2 Service Blocking 8-2 Block Sites ...8-4 Source MAC Filtering 8-4 VPN Firewall Features That Increase Traffic 8-4 Port Forwarding 8-5 Port Triggering 8-6 VPN Tunnels...
... Creating a VPN Connection: Netgear VPN Client to FVS124G 7-11 Configuring the FVS124G 7-12 Configuring the VPN Client 7-12 Testing the Connection 7-20 Chapter 8 Router and Network Management Performance Management 8-1 Bandwidth Capacity 8-1 VPN Firewall Features That Reduce Traffic 8-2 Service Blocking 8-2 Block Sites ...8-4 Source MAC Filtering 8-4 VPN Firewall Features That Increase Traffic 8-4 Port Forwarding 8-5 Port Triggering 8-6 VPN Tunnels...
FVS124G Reference Manual
Page 16
online knowledge base for browsing forwards or backwards through the manual one page at a time •A button that displays the table of contents and an button. Reference Manual for the ProSafe VPN Firewall 25 with 4 Gigabit LAN and Dual WAN Ports How to Use This Manual The HTML version of ...this manual includes the following: • Buttons, and , for the product model. • Links to access the full NETGEAR, Inc. Double-click on a link in the table of contents...
online knowledge base for browsing forwards or backwards through the manual one page at a time •A button that displays the table of contents and an button. Reference Manual for the ProSafe VPN Firewall 25 with 4 Gigabit LAN and Dual WAN Ports How to Use This Manual The HTML version of ...this manual includes the following: • Buttons, and , for the product model. • Links to access the full NETGEAR, Inc. Double-click on a link in the table of contents...
FVS124G Reference Manual
Page 20
...firmware upgrade. The firewall balances users between the two lines for maximum bandwidth efficiency. The FVS124G will log security events such as blocked incoming traffic, port scans, attacks, and administrator logins. You can also configure the firewall to send immediate ... factors to consider when implementing the following capabilities with dual WAN port gateways: • Inbound traffic (e.g., port forwarding, port triggering) • Virtual private networks A Powerful, True Firewall with 4 Gigabit LAN and Dual WAN Ports • Front panel LEDs for easy monitoring of Death, SYN...
...firmware upgrade. The firewall balances users between the two lines for maximum bandwidth efficiency. The FVS124G will log security events such as blocked incoming traffic, port scans, attacks, and administrator logins. You can also configure the firewall to send immediate ... factors to consider when implementing the following capabilities with dual WAN port gateways: • Inbound traffic (e.g., port forwarding, port triggering) • Virtual private networks A Powerful, True Firewall with 4 Gigabit LAN and Dual WAN Ports • Front panel LEDs for easy monitoring of Death, SYN...
FVS124G Reference Manual
Page 21
...are discarded, preventing users outside the LAN from finding and directly accessing the PCs on the LAN. • Port Forwarding with NAT Although NAT prevents Internet locations from reaching your own rules regarding permitted users, services, protocols, schedules, and destinations. That...Dual WAN Ports • With its internal 4-port 10/100/1000 switch, the FVS124G can configure the firewall to log and report attempts to specific PCs based on the service port number of ports. • Powerful Firewall Rules Both inbound and outbound traffic can specify forwarding of single ports or ...
...are discarded, preventing users outside the LAN from finding and directly accessing the PCs on the LAN. • Port Forwarding with NAT Although NAT prevents Internet locations from reaching your own rules regarding permitted users, services, protocols, schedules, and destinations. That...Dual WAN Ports • With its internal 4-port 10/100/1000 switch, the FVS124G can configure the firewall to log and report attempts to specific PCs based on the service port number of ports. • Powerful Firewall Rules Both inbound and outbound traffic can specify forwarding of single ports or ...
FVS124G Reference Manual
Page 22
... (DNS) addresses, to attached PCs on your PC. The firewall obtains actual DNS addresses from the ISP during connection setup and forwards DNS requests from almost any type of ISP account. 2-4 Introduction 202-10085-01, March 2005 A user-friendly Setup Wizard is ...to the attached PCs. Easy Installation and Management You can install, configure, and operate the FVS124G ProSafe VPN Firewall 25 with 4 Gigabit LAN and Dual WAN Ports Extensive Protocol Support The FVS124G VPN Firewall supports the Transmission Control Protocol/Internet Protocol (TCP/ IP) and Routing Information ...
... (DNS) addresses, to attached PCs on your PC. The firewall obtains actual DNS addresses from the ISP during connection setup and forwards DNS requests from almost any type of ISP account. 2-4 Introduction 202-10085-01, March 2005 A user-friendly Setup Wizard is ...to the attached PCs. Easy Installation and Management You can install, configure, and operate the FVS124G ProSafe VPN Firewall 25 with 4 Gigabit LAN and Dual WAN Ports Extensive Protocol Support The FVS124G VPN Firewall supports the Transmission Control Protocol/Internet Protocol (TCP/ IP) and Routing Information ...
FVS124G Reference Manual
Page 31
Overview of the Planning Process The areas that require planning when using a firewall that has dual WAN ports include: • Inbound traffic (e.g., port forwarding, port triggering) • Virtual private networks (VPNs) The two WAN ports can be configured on your LAN rather than being discarded. The mechanism for making the IP address public depends on whether...
Overview of the Planning Process The areas that require planning when using a firewall that has dual WAN ports include: • Inbound traffic (e.g., port forwarding, port triggering) • Virtual private networks (VPNs) The two WAN ports can be configured on your LAN rather than being discarded. The mechanism for making the IP address public depends on whether...
FVS124G Reference Manual
Page 33
...a service that you can have configured in dual WAN port systems Configuration and WAN IP address Single WAN Port (reference case) Inbound traffic • Port forwarding • Port triggering Fixed Dynamic Allowed (FQDN optional) FQDN required Dual WAN Port Cases Rollover FQDN required FQDN required Load Balancing Allowed (...can send incoming traffic to the exposed host when this feature is supported and enabled. Router WAN IP netgear.dyndns.org IP address of WAN port: FQDN is required for dynamic IP address and is optional for exposed hosts in the Inbound Rules menu....
...a service that you can have configured in dual WAN port systems Configuration and WAN IP address Single WAN Port (reference case) Inbound traffic • Port forwarding • Port triggering Fixed Dynamic Allowed (FQDN optional) FQDN required Dual WAN Port Cases Rollover FQDN required FQDN required Load Balancing Allowed (...can send incoming traffic to the exposed host when this feature is supported and enabled. Router WAN IP netgear.dyndns.org IP address of WAN port: FQDN is required for dynamic IP address and is optional for exposed hosts in the Inbound Rules menu....
FVS124G Reference Manual
Page 79
... an existing outbound service rule: a. The new rule will be listed. The Outbound Service screen will be displayed (see "Inbound Rules (Port Forwarding)" on page 6-12) with 4 Gigabit LAN and Dual WAN Ports Note: This feature is selected. The Inbound Service screen will be displayed (see "Outbound Rules (Service Blocking)" on page 6-5). Click...
... an existing outbound service rule: a. The new rule will be listed. The Outbound Service screen will be displayed (see "Inbound Rules (Port Forwarding)" on page 6-12) with 4 Gigabit LAN and Dual WAN Ports Note: This feature is selected. The Inbound Service screen will be displayed (see "Outbound Rules (Service Blocking)" on page 6-5). Click...
FVS124G Reference Manual
Page 80
...rule. This can be prompted for the new position. - These added services can be displayed (see "Inbound Rules (Port Forwarding)" on page 6-5) with 4 Gigabit LAN and Dual WAN Ports b. to make any filtering, specially used as a diagnostic tool. Select the appropriate checkbox to enable them to either ...you to enable check on the traffic's category of services in response to the list of service. • Inbound rules (port forwarding)-Inbound traffic is normally blocked by the firewall unless the traffic is configured to disallow it. • Customized services-Additional services...
...rule. This can be prompted for the new position. - These added services can be displayed (see "Inbound Rules (Port Forwarding)" on page 6-5) with 4 Gigabit LAN and Dual WAN Ports b. to make any filtering, specially used as a diagnostic tool. Select the appropriate checkbox to enable them to either ...you to enable check on the traffic's category of services in response to the list of service. • Inbound rules (port forwarding)-Inbound traffic is normally blocked by the firewall unless the traffic is configured to disallow it. • Customized services-Additional services...
FVS124G Reference Manual
Page 81
...; Quality of service (QoS) priorities-Each service at its quality of performance and tolerance for jitter or delays. Inbound Rules (Port Forwarding) Because the FVS124G uses Network Address Translation (NAT), your local computers. The rule tells the firewall to direct inbound traffic for a particular service to change ... another way to allow certain types of your network presents only one IP address to the Internet. This is also known as port forwarding. Firewall Protection and Content Filtering 6-5 202-10085-01, March 2005 Figure 6-2: Add Inbound Service Rules screen Note: See...
...; Quality of service (QoS) priorities-Each service at its quality of performance and tolerance for jitter or delays. Inbound Rules (Port Forwarding) Because the FVS124G uses Network Address Translation (NAT), your local computers. The rule tells the firewall to direct inbound traffic for a particular service to change ... another way to allow certain types of your network presents only one IP address to the Internet. This is also known as port forwarding. Firewall Protection and Content Filtering 6-5 202-10085-01, March 2005 Figure 6-2: Add Inbound Service Rules screen Note: See...
FVS124G Reference Manual
Page 86
Reference Manual for the ProSafe VPN Firewall 25 with 4 Gigabit LAN and Dual WAN Ports 5. Click Apply. Figure 6-6: Rule example: one-to-one of your web server PC. 7. Select Action "ALLOW always". 6. Your rule will be used by clients on ... and Content Filtering 202-10085-01, March 2005 For Public Destination IP Address, choose "Other Public IP Address." 8. This rule is different from a normal inbound port forwarding rule in that will now appear in the Inbound Services table of your public Internet addresses that the Destination box contains an IP Address other...
Reference Manual for the ProSafe VPN Firewall 25 with 4 Gigabit LAN and Dual WAN Ports 5. Click Apply. Figure 6-6: Rule example: one-to-one of your web server PC. 7. Select Action "ALLOW always". 6. Your rule will be used by clients on ... and Content Filtering 202-10085-01, March 2005 For Public Destination IP Address, choose "Other Public IP Address." 8. This rule is different from a normal inbound port forwarding rule in that will now appear in the Inbound Services table of your public Internet addresses that the Destination box contains an IP Address other...
FVS124G Reference Manual
Page 104
... Router records this connection, opens the additional INCOMING port or ports associated with 4 Gigabit LAN and Dual WAN Ports Table 6-5. As such, it would otherwise be added. Now the traffic from which the traffic should be entered with the Port Forwarding rules. • Only 1 PC can be partially... blocked by clicking on Delete button. Each time one MAC Address entry can use a Port Triggering application at any time. 6-28 Firewall Protection and Content ...
... Router records this connection, opens the additional INCOMING port or ports associated with 4 Gigabit LAN and Dual WAN Ports Table 6-5. As such, it would otherwise be added. Now the traffic from which the traffic should be entered with the Port Forwarding rules. • Only 1 PC can be partially... blocked by clicking on Delete button. Each time one MAC Address entry can use a Port Triggering application at any time. 6-28 Firewall Protection and Content ...
FVS124G Reference Manual
Page 105
Figure 6-17: Port Triggering screens Firewall Protection and Content Filtering 202-10085-01, March 2005 6-29 Note: For additional ways of allowing inbound traffic, see "Inbound Rules (Port Forwarding)" on page 6-5. Reference Manual for the ProSafe VPN Firewall 25 with 4 Gigabit LAN and Dual WAN Ports • After a PC has finished using a Port Triggering application, there is required because this Router cannot be used by another PC. This is a Time-out period before the application can be sure when the application has terminated.
Figure 6-17: Port Triggering screens Firewall Protection and Content Filtering 202-10085-01, March 2005 6-29 Note: For additional ways of allowing inbound traffic, see "Inbound Rules (Port Forwarding)" on page 6-5. Reference Manual for the ProSafe VPN Firewall 25 with 4 Gigabit LAN and Dual WAN Ports • After a PC has finished using a Port Triggering application, there is required because this Router cannot be used by another PC. This is a Time-out period before the application can be sure when the application has terminated.
FVS124G Reference Manual
Page 106
... order to the outgoing request. Generally, there is enabled or disabled. An outgoing connection using one of these ports will be forwarded to access a blocked site. an existing Rule: • Click Edit or Delete as denied incoming service requests, hacker probes, and administrator... to receive logs and alerts by the remote system when it generates an outgoing request. • Incoming (Response) Port Range - enter a suitable name for other function such as Port Forwarding. • Name - If you can also log when someone on your settings on this rule. Indicates if the...
... order to the outgoing request. Generally, there is enabled or disabled. An outgoing connection using one of these ports will be forwarded to access a blocked site. an existing Rule: • Click Edit or Delete as denied incoming service requests, hacker probes, and administrator... to receive logs and alerts by the remote system when it generates an outgoing request. • Incoming (Response) Port Range - enter a suitable name for other function such as Port Forwarding. • Name - If you can also log when someone on your settings on this rule. Indicates if the...
FVS124G Reference Manual
Page 138
...default, this feature. You can apply the keywords to one or more groups. Sites on the Trusted Domains list are as follows: • Port forwarding • Port triggering • Exposed hosts 8-4 Router and Network Management 202-10085-01, March 2005 all requested traffic from the PCs with the specified MAC...the groups for which keyword blocking has not been enabled. Reference Manual for the ProSafe VPN Firewall 25 with 4 Gigabit LAN and Dual WAN Ports See "Using a Schedule to Block or Allow Specific Traffic" on page 6-22 for the procedure on how to use this feature. Requests...
...default, this feature. You can apply the keywords to one or more groups. Sites on the Trusted Domains list are as follows: • Port forwarding • Port triggering • Exposed hosts 8-4 Router and Network Management 202-10085-01, March 2005 all requested traffic from the PCs with the specified MAC...the groups for which keyword blocking has not been enabled. Reference Manual for the ProSafe VPN Firewall 25 with 4 Gigabit LAN and Dual WAN Ports See "Using a Schedule to Block or Allow Specific Traffic" on page 6-22 for the procedure on how to use this feature. Requests...
FVS124G Reference Manual
Page 139
...; ALLOW by this to LAN). The default rule blocks all existing rules for the ProSafe VPN Firewall 25 with 4 Gigabit LAN and Dual WAN Ports • VPN tunnels Port Forwarding The firewall always blocks DoS (Denial of UDP sessions created from one LAN machine. • TCP Flooding-Enable this field. As you define...
...; ALLOW by this to LAN). The default rule blocks all existing rules for the ProSafe VPN Firewall 25 with 4 Gigabit LAN and Dual WAN Ports • VPN tunnels Port Forwarding The firewall always blocks DoS (Denial of UDP sessions created from one LAN machine. • TCP Flooding-Enable this field. As you define...
FVS124G Reference Manual
Page 140
... applies to all Internet IP address. - As such, it using a port number defined in the Port Triggering table. • This Router records this connection, opens the additional INCOMING port or ports associated with this feature requires that would be handled in accordance with the Port Forwarding rules. - Address range: The rule is to be applied on...
... applies to all Internet IP address. - As such, it using a port number defined in the Port Triggering table. • This Router records this connection, opens the additional INCOMING port or ports associated with this feature requires that would be handled in accordance with the Port Forwarding rules. - Address range: The rule is to be applied on...
FVS124G Reference Manual
Page 185
.... The destination IP address for Management of the message so that associates the IP address with 4 Gigabit LAN and Dual WAN Ports This scheme offers the additional benefit of the destination device to its own MAC address directly to resolve MAC addresses. For more information.... Reference Manual for example, a Web server) on your system. All incoming inquiries are filtered out by the manufacturer. However, using port forwarding, you must convert the IP address of firewall-like protection because the internal LAN addresses are held in the table. Each device on ...
.... The destination IP address for Management of the message so that associates the IP address with 4 Gigabit LAN and Dual WAN Ports This scheme offers the additional benefit of the destination device to its own MAC address directly to resolve MAC addresses. For more information.... Reference Manual for example, a Web server) on your system. All incoming inquiries are filtered out by the manufacturer. However, using port forwarding, you must convert the IP address of firewall-like protection because the internal LAN addresses are held in the table. Each device on ...