FVS338 Reference Manual
Page 10
... Certificates ...5-33 Managing your Certificate Revocation List (CRL 5-36 Chapter 6 Router and Network Management Performance Management 6-1 VPN Firewall Features That Reduce Traffic 6-1 Service Blocking 6-1 Block Sites ...6-3 Source MAC Filtering 6-4 VPN Firewall Features That Increase Traffic 6-4 Port Forwarding 6-4 Port Triggering 6-6 VPN Tunnels ...6-6 Using QoS to Shift the Traffic Mix 6-6 Tools for Traffic Management 6-7 Administration ...6-7 Changing Passwords and Settings 6-7 RADIUS Server External...
... Certificates ...5-33 Managing your Certificate Revocation List (CRL 5-36 Chapter 6 Router and Network Management Performance Management 6-1 VPN Firewall Features That Reduce Traffic 6-1 Service Blocking 6-1 Block Sites ...6-3 Source MAC Filtering 6-4 VPN Firewall Features That Increase Traffic 6-4 Port Forwarding 6-4 Port Triggering 6-6 VPN Tunnels ...6-6 Using QoS to Shift the Traffic Mix 6-6 Tools for Traffic Management 6-7 Administration ...6-7 Changing Passwords and Settings 6-7 RADIUS Server External...
FVS338 Reference Manual
Page 16
... via the serial port on the firewall. FVS338 ProSafe VPN Firewall 50 Reference Manual • Built in 8-port 10/100 Mbps switch. • Extensive Protocol Support. • Login capability. • SNMP for manageability. • Front panel LEDs for easy monitoring of Death, SYN Flood, LAND Attack, and IP Spoofing. • Blocks unwanted traffic from the Internet to your...
... via the serial port on the firewall. FVS338 ProSafe VPN Firewall 50 Reference Manual • Built in 8-port 10/100 Mbps switch. • Extensive Protocol Support. • Login capability. • SNMP for manageability. • Front panel LEDs for easy monitoring of Death, SYN Flood, LAND Attack, and IP Spoofing. • Blocks unwanted traffic from the Internet to your...
FVS338 Reference Manual
Page 35
... menu, select Monitoring, and then select Traffic Meter from the secondary menu. Select the Dialup Traffic Meter tab and repeat steps 1 through 3 to the previous settings. 3. Click Apply to apply the settings or click Cancel to return to set the Traffic Meter the the Dialup port (if required). FVS338 ProSafe VPN Firewall 50 Reference Manual Programming the Traffic Meter (if...
... menu, select Monitoring, and then select Traffic Meter from the secondary menu. Select the Dialup Traffic Meter tab and repeat steps 1 through 3 to the previous settings. 3. Click Apply to apply the settings or click Cancel to return to set the Traffic Meter the the Dialup port (if required). FVS338 ProSafe VPN Firewall 50 Reference Manual Programming the Traffic Meter (if...
FVS338 Reference Manual
Page 106
...traffic matches an existing VPN Policy. The VPN Policy Selector determines that : • "Auto" generated VPN policies must use the IKE negotiation protocol. • "Manual" generated VPN policies cannot use . 2. If the VPN policy is used in the VPN Policy are accessed which specify which IKE Policy to Monitoring...performs negotiations between the two VPN Gateways, and provides automatic management of the Keys used . • If none of type "Auto", then the Auto Policy Parameters defined in IPSec. FVS338 ProSafe VPN Firewall 50 Reference Manual To view FVS338 VPN logs, go to use the...
...traffic matches an existing VPN Policy. The VPN Policy Selector determines that : • "Auto" generated VPN policies must use the IKE negotiation protocol. • "Manual" generated VPN policies cannot use . 2. If the VPN policy is used in the VPN Policy are accessed which specify which IKE Policy to Monitoring...performs negotiations between the two VPN Gateways, and provides automatic management of the Keys used . • If none of type "Auto", then the Auto Policy Parameters defined in IPSec. FVS338 ProSafe VPN Firewall 50 Reference Manual To view FVS338 VPN logs, go to use the...
FVS338 Reference Manual
Page 129
... following sections: • "Performance Management" on page 6-1 • "Administration" on page 6-7 • "Monitoring the Router" on page 6-18 Performance Management Performance management consists of controlling the traffic through when there is for outbound traffic. VPN Firewall Features That Reduce Traffic Features of your ProSafe VPN Firewall 50. Outbound Services lists all outgoing traffic. Warning: This feature is a bottleneck and either reducing unnecessary...
... following sections: • "Performance Management" on page 6-1 • "Administration" on page 6-7 • "Monitoring the Router" on page 6-18 Performance Management Performance management consists of controlling the traffic through when there is for outbound traffic. VPN Firewall Features That Reduce Traffic Features of your ProSafe VPN Firewall 50. Outbound Services lists all outgoing traffic. Warning: This feature is a bottleneck and either reducing unnecessary...
FVS338 Reference Manual
Page 135
...for the procedure on page 6-23 for guests. Netgear recommends that can be used by its QoS setting, however. The quality of traffic they are allowed to a more secure password. To modify User or Admin settings: Router and Network Management 6-7 v1.0, March 2009 But... password for a discussion of traffic through the WAN ports by granting some services a higher priority than others. FVS338 ProSafe VPN Firewall 50 Reference Manual You will change this feature. You can change the WAN bandwidth used to monitor the traffic conditions of the firewall and control who has access...
...for the procedure on page 6-23 for guests. Netgear recommends that can be used by its QoS setting, however. The quality of traffic they are allowed to a more secure password. To modify User or Admin settings: Router and Network Management 6-7 v1.0, March 2009 But... password for a discussion of traffic through the WAN ports by granting some services a higher priority than others. FVS338 ProSafe VPN Firewall 50 Reference Manual You will change this feature. You can change the WAN bandwidth used to monitor the traffic conditions of the firewall and control who has access...
FVS338 Reference Manual
Page 146
... server, enable this is enabled, then the RTC (Real-Time Clock) is updated regularly by contacting a Default Netgear NTP Server on the Internet. • Use Custom NTP Servers: If you can also enter the address of...traffic limits reached, and login failures and attacks. If required, you prefer to your region, check the Automatically Adjust for Daylight Savings Time radio box. 4. Figure 6-6 Monitoring the Router You can also view status information about the firewall, WAN ports, LAN ports, and VPN tunnels. 6-18 v1.0, March 2009 Router and Network Management FVS338 ProSafe VPN Firewall 50...
... server, enable this is enabled, then the RTC (Real-Time Clock) is updated regularly by contacting a Default Netgear NTP Server on the Internet. • Use Custom NTP Servers: If you can also enter the address of...traffic limits reached, and login failures and attacks. If required, you prefer to your region, check the Automatically Adjust for Daylight Savings Time radio box. 4. Figure 6-6 Monitoring the Router You can also view status information about the firewall, WAN ports, LAN ports, and VPN tunnels. 6-18 v1.0, March 2009 Router and Network Management FVS338 ProSafe VPN Firewall 50...
FVS338 Reference Manual
Page 147
... main menu and Traffic Meter from the submenu. FVS338 ProSafe VPN Firewall 50 Reference Manual Enabling the Traffic Meter To monitor traffic limits on Internet Traffic via the WAN port. If you have not enabled the Traffic Meter, these statistics are programmed separately.) A WAN port shuts down once traffic limit reached. Traffic Counter settings Internet Traffic Statistics Figure 6-7 • Traffic by Protocol - Traffic counters are updated...
... main menu and Traffic Meter from the submenu. FVS338 ProSafe VPN Firewall 50 Reference Manual Enabling the Traffic Meter To monitor traffic limits on Internet Traffic via the WAN port. If you have not enabled the Traffic Meter, these statistics are programmed separately.) A WAN port shuts down once traffic limit reached. Traffic Counter settings Internet Traffic Statistics Figure 6-7 • Traffic by Protocol - Traffic counters are updated...
FVS338 Reference Manual
Page 177
FVS338 ProSafe VPN Firewall 50 Reference Manual PPTP Idle-Timeout Logs. Nov 29 11:20:45 [FVS338] [pppd] Sent 520 bytes, received 80 bytes. Message 1:... Message 9: Data sent and received at the LAN side during idle mode, initiate traffic from CLI. Command to be disconnected. System Logs: WAN Status, PPE, PPTP Idle-Timeout Message Explanation Nov...connection process Remote message: Login incorrect: Message from CLI: monitor/firewallLogs/logger/loggerConfig keywordLog 1 System Logs and Error Messages B-7 v1.0, March 2009 Nov 29 11:20:45 [FVS338] [pppd] Connect time 1.7 minutes. Message 4: Server side...
FVS338 ProSafe VPN Firewall 50 Reference Manual PPTP Idle-Timeout Logs. Nov 29 11:20:45 [FVS338] [pppd] Sent 520 bytes, received 80 bytes. Message 1:... Message 9: Data sent and received at the LAN side during idle mode, initiate traffic from CLI. Command to be disconnected. System Logs: WAN Status, PPE, PPTP Idle-Timeout Message Explanation Nov...connection process Remote message: Login incorrect: Message from CLI: monitor/firewallLogs/logger/loggerConfig keywordLog 1 System Logs and Error Messages B-7 v1.0, March 2009 Nov 29 11:20:45 [FVS338] [pppd] Connect time 1.7 minutes. Message 4: Server side...
FVS338 Reference Manual
Page 179
FVS338 ProSafe VPN Firewall 50 Reference Manual Traffic Metering Logs Table B-12. To start the traffic, restart the Traffic Limit Counter. System Logs: Unicast Message Explanation Recommended Action Nov 24 11:52:55 [FVS338] [kernel] UCAST IN=SELF OUT=WAN SRC=192.168.10.1 DST=192.168.10.10... B-13. None ICMP Redirect Logs Table B-14. System Logs: Traffic Metering Message Explanation Recommended Action Jan 23 19:03:44 [TRAFFIC_METER] TRAFFIC_METER: Monthly Limit of the router, enter this command: monitor/firewallLogs/logger/loggerConfig logIcmpRedirect 1 And to WAN1 that in "When Limit...
FVS338 ProSafe VPN Firewall 50 Reference Manual Traffic Metering Logs Table B-12. To start the traffic, restart the Traffic Limit Counter. System Logs: Unicast Message Explanation Recommended Action Nov 24 11:52:55 [FVS338] [kernel] UCAST IN=SELF OUT=WAN SRC=192.168.10.1 DST=192.168.10.10... B-13. None ICMP Redirect Logs Table B-14. System Logs: Traffic Metering Message Explanation Recommended Action Jan 23 19:03:44 [TRAFFIC_METER] TRAFFIC_METER: Monthly Limit of the router, enter this command: monitor/firewallLogs/logger/loggerConfig logIcmpRedirect 1 And to WAN1 that in "When Limit...
FVS338 Reference Manual
Page 193
... and restore settings configuration of 6-15 Bandwidth Profile screen 4-29 Block Sites 6-3 Content Filtering 4-20 reducing traffic 6-3 Block Sites screen Content Filtering 4-21 Block TCP Flood Attack Checks 4-10 block traffic with schedule 4-20 Broadband Status monitoring 6-24 Broadband Traffic Meter screen 6-19 C CA VPN gateway, use with 5-16 CA Certificates about 5-32 Certificate Authority.
... and restore settings configuration of 6-15 Bandwidth Profile screen 4-29 Block Sites 6-3 Content Filtering 4-20 reducing traffic 6-3 Block Sites screen Content Filtering 4-21 Block TCP Flood Attack Checks 4-10 block traffic with schedule 4-20 Broadband Status monitoring 6-24 Broadband Traffic Meter screen 6-19 C CA VPN gateway, use with 5-16 CA Certificates about 5-32 Certificate Authority.
FVS338 Reference Manual
Page 194
... server 3-1 Enable DNS Proxy 3-4 Encapsulating Security Payload. F filtering traffic by MAC address Source MAC filtering 4-23 firewall v1.0, March 2009 See Keyword Blocking DOS protection download firmware steps to 6-16 Dual WAN Port systems VPN Tunnel addresses 5-2 Dynamic DNS configuration of Service. See ESP. FVS338 ProSafe VPN Firewall 50 Reference Manual D date troubleshooting 7-7 Daylight Savings Time setting 6-18...
... server 3-1 Enable DNS Proxy 3-4 Encapsulating Security Payload. F filtering traffic by MAC address Source MAC filtering 4-23 firewall v1.0, March 2009 See Keyword Blocking DOS protection download firmware steps to 6-16 Dual WAN Port systems VPN Tunnel addresses 5-2 Dynamic DNS configuration of Service. See ESP. FVS338 ProSafe VPN Firewall 50 Reference Manual D date troubleshooting 7-7 Daylight Savings Time setting 6-18...
FVS338 Reference Manual
Page 10
... ProSafe VPN Client for ModeConfig 5-30 Certificates ...5-33 Trusted Certificates (CA Certificates 5-33 Self Certificates ...5-34 Managing your Certificate Revocation List (CRL 5-37 Chapter 6 Router and Network Management Performance Management 6-1 VPN Firewall Features That Reduce Traffic 6-1 Service Blocking 6-2 Block Sites ...6-3 Source MAC Filtering 6-4 VPN Firewall Features That Increase Traffic 6-4 Port Forwarding 6-4 Port Triggering 6-6 VPN Tunnels ...6-6 Using QoS to Shift the Traffic...
... ProSafe VPN Client for ModeConfig 5-30 Certificates ...5-33 Trusted Certificates (CA Certificates 5-33 Self Certificates ...5-34 Managing your Certificate Revocation List (CRL 5-37 Chapter 6 Router and Network Management Performance Management 6-1 VPN Firewall Features That Reduce Traffic 6-1 Service Blocking 6-2 Block Sites ...6-3 Source MAC Filtering 6-4 VPN Firewall Features That Increase Traffic 6-4 Port Forwarding 6-4 Port Triggering 6-6 VPN Tunnels ...6-6 Using QoS to Shift the Traffic...
FVS338 Reference Manual
Page 17
... cable/DSL Internet access for easy monitoring of Service (DoS) attack protection and multi-NAT support.The VPN firewall supports multiple Web content filtering options, plus browsing activity reporting and instant alerts-both, via e-mail. The FVS338 is a plug-and-play device that...for increased system reliability. • Support for up to 50 VPN tunnels. • Support for up to a broadband WAN device, such as a cable modem or DSL modem. Introduction 1-1 v1.0, March 2008 Chapter 1 Introduction The ProSafe VPN Firewall 50 with 8 port switch connects your network from attacks and ...
... cable/DSL Internet access for easy monitoring of Service (DoS) attack protection and multi-NAT support.The VPN firewall supports multiple Web content filtering options, plus browsing activity reporting and instant alerts-both, via e-mail. The FVS338 is a plug-and-play device that...for increased system reliability. • Support for up to 50 VPN tunnels. • Support for up to a broadband WAN device, such as a cable modem or DSL modem. Introduction 1-1 v1.0, March 2008 Chapter 1 Introduction The ProSafe VPN Firewall 50 with 8 port switch connects your network from attacks and ...
FVS338 Reference Manual
Page 36
...FVS338 to Internet addresses called IP addresses. FVS338 ProSafe VPN Firewall 50 Reference Manual 4. to the Internet v1.0, March 2008 The Broadband Traffic Meter screen will result in connectivity problems. 5. Click Test to try and connect to check on the Broadband Status link or the Current IP Address link to the NETGEAR.... To enable the traffic meter: Step 1.From the primary menu, select Monitoring, and then select Traffic Meter from ISP radio box. Programming the Traffic Meter (if Desired) The traffic meter is useful when an ISP charges by traffic volume over a period...
...FVS338 to Internet addresses called IP addresses. FVS338 ProSafe VPN Firewall 50 Reference Manual 4. to the Internet v1.0, March 2008 The Broadband Traffic Meter screen will result in connectivity problems. 5. Click Test to try and connect to check on the Broadband Status link or the Current IP Address link to the NETGEAR.... To enable the traffic meter: Step 1.From the primary menu, select Monitoring, and then select Traffic Meter from ISP radio box. Programming the Traffic Meter (if Desired) The traffic meter is useful when an ISP charges by traffic volume over a period...
FVS338 Reference Manual
Page 133
... the Main Menu of the browser interface. The ProSafe VPN Firewall 50 offers many tools for managing the network traffic to help the network manager accomplish these goals. Chapter 6 Router and Network Management This chapter describes how to use the network management features of controlling the traffic through the VPN firewall so that can be found by clicking on...
... the Main Menu of the browser interface. The ProSafe VPN Firewall 50 offers many tools for managing the network traffic to help the network manager accomplish these goals. Chapter 6 Router and Network Management This chapter describes how to use the network management features of controlling the traffic through the VPN firewall so that can be found by clicking on...
FVS338 Reference Manual
Page 139
... Router and Network Management 6-7 v1.0, March 2008 See "Specifying Quality of Service (QoS) Priorities" on page 4-20 for the procedure on page 6-22 for a discussion of the tools. Netgear recommends that can change the WAN bandwidth used to monitor the traffic conditions of the firewall ... can be used by changing any QoS priority settings. FVS338 ProSafe VPN Firewall 50 Reference Manual Using QoS to Shift the Traffic Mix The QoS priority settings determine the priority and, in turn, the quality of service for the traffic passing through the WAN ports by granting some services a...
... Router and Network Management 6-7 v1.0, March 2008 See "Specifying Quality of Service (QoS) Priorities" on page 4-20 for the procedure on page 6-22 for a discussion of the tools. Netgear recommends that can change the WAN bandwidth used to monitor the traffic conditions of the firewall ... can be used by changing any QoS priority settings. FVS338 ProSafe VPN Firewall 50 Reference Manual Using QoS to Shift the Traffic Mix The QoS priority settings determine the priority and, in turn, the quality of service for the traffic passing through the WAN ports by granting some services a...
FVS338 Reference Manual
Page 149
...another NTP server in your previous settings. Figure 6-5 Monitoring the Router You can also view status information about the firewall, WAN ports, LAN ports, and VPN tunnels. Select a NTP Server option by checking one ... in the Server 1 Name/IP Address field. FVS338 ProSafe VPN Firewall 50 Reference Manual 3. Click Apply to save your settings or click Cancel to revert to the Default Netgear NTP servers. 5. If supported in the Server ... such as WAN port rollover, WAN traffic limits reached, and login failures and attacks. Router and Network Management v1.0, March 2008 6-17
...another NTP server in your previous settings. Figure 6-5 Monitoring the Router You can also view status information about the firewall, WAN ports, LAN ports, and VPN tunnels. Select a NTP Server option by checking one ... in the Server 1 Name/IP Address field. FVS338 ProSafe VPN Firewall 50 Reference Manual 3. Click Apply to save your settings or click Cancel to revert to the Default Netgear NTP servers. 5. If supported in the Server ... such as WAN port rollover, WAN traffic limits reached, and login failures and attacks. Router and Network Management v1.0, March 2008 6-17
FVS338 Reference Manual
Page 150
An e-mail can be displayed in MBytes scale and the counter starts only when traffic passed is at least 1 MB 6-18 v1.0, March 2008 Router and Network Management Click this button to display Internet Traffic details. FVS338 ProSafe VPN Firewall 50 Reference Manual Enabling the Traffic Meter To monitor traffic limits on Internet Traffic via the WAN port. Displays statistics on each of...
An e-mail can be displayed in MBytes scale and the counter starts only when traffic passed is at least 1 MB 6-18 v1.0, March 2008 Router and Network Management Click this button to display Internet Traffic details. FVS338 ProSafe VPN Firewall 50 Reference Manual Enabling the Traffic Meter To monitor traffic limits on Internet Traffic via the WAN port. Displays statistics on each of...
FVS338 Reference Manual
Page 177
... goes down . FVS338 ProSafe VPN Firewall 50 Reference Manual Table B-8. Message 3: This is a message shows that both the WANs are up and the traffic is up . This section describes the logs generated when the WAN mode is active and secondary acts as a backup. The device monitors the status of the... Load Balancing Message Explanation Recommended Action Dec 1 12:11:27 [FVS338] [wand] [LBFO] Restarting WAN1_ Dec 1 12:11:31 [FVS338] [wand] [LBFO] Restarting WAN2_ Dec 1 12:11:35 [FVS338] [wand] [LBFO] WAN1(UP), WAN2(UP)_ Dec 1 12:24:12 [FVS338] [wand] [LBFO] WAN1(UP), WAN2(DOWN)_ Dec 1...
... goes down . FVS338 ProSafe VPN Firewall 50 Reference Manual Table B-8. Message 3: This is a message shows that both the WANs are up and the traffic is up . This section describes the logs generated when the WAN mode is active and secondary acts as a backup. The device monitors the status of the... Load Balancing Message Explanation Recommended Action Dec 1 12:11:27 [FVS338] [wand] [LBFO] Restarting WAN1_ Dec 1 12:11:31 [FVS338] [wand] [LBFO] Restarting WAN2_ Dec 1 12:11:35 [FVS338] [wand] [LBFO] WAN1(UP), WAN2(UP)_ Dec 1 12:24:12 [FVS338] [wand] [LBFO] WAN1(UP), WAN2(DOWN)_ Dec 1...