NETGEAR WNR1000v3h2 manual Understanding Your Firewall

Page 40

N150 Wireless Router User Manual

Tip: Before saving your configuration file, change the administrator password to the default, password. Then change it again after you have saved the configuration file. If you save the file with a new password, and then you later forget the new password, you will have to reset the router back to the factory defaults and log in using the default password of password. This means you will have to re-enter all the router configuration settings.

Understanding Your Firewall

Your N150 Wireless Router contains a true firewall to protect your network from attacks and intrusions. A firewall is a device that protects one network from another while allowing communication between the two. Using a process called Stateful Packet Inspection, the firewall analyzes all inbound and outbound traffic to determine whether or not it will be allowed to pass through.

By default, the firewall allows any outbound traffic and prohibits any inbound traffic except for responses to your outbound traffic. However, you can modify the firewall’s rules to achieve the following behavior:

Blocking sites. Block access from your network to certain Web locations based on Web addresses and Web address keywords. This feature is described in Blocking Access to Internet Sites on page 41.

Blocking services. Block the use of certain Internet services by specific computers on your network. This feature is described in Blocking Access to Internet Services on page 42.

Scheduled blocking. Block sites and services according to a daily schedule. This feature is described in Scheduling Blocking on page 44.

Allow inbound access to your server. To allow inbound access to resources on your local network (for example, a Web server or remote desktop program), you can open the needed services by configuring port forwarding as described in Allowing Inbound Connections to Your Network on page 57.

Allow certain games and applications to function correctly. Some games and applications need to allow additional inbound traffic in order to function. Port triggering can dynamically allow additional service connections, as described in Configuring Port Triggering on page 64. Another feature to solve application conflicts with the firewall is Universal Plug and Play (UPnP), described in Using Universal Plug and Play on page 66.

40 Chapter 2: Safeguarding Your Network

Image 40
Contents N150 Wireless Router WNR1000v3h2 Technical Support TrademarksStatement of Conditions Revision HistoryTable of Contents Customizing Your Network Settings Troubleshooting Using the Setup Manual Configuring Basic ConnectivityLogging In To Your Wireless Router Configuring Basic Connectivity Selecting a Language for Your Screen Display Configuring Basic Connectivity Viewing and Configuring Basic Internet Settings Configuring Your Internet Settings Using the Setup WizardYour Internet Connection Does Not Require a Login No login required Your Internet Connection Does Require a Login Login required Configuring Basic Connectivity Setting Up and Testing Basic Wireless Connectivity Configuring Basic Connectivity Click Setup Access List Safeguarding Your Network Safeguarding Your NetworkChoosing Appropriate Wireless Security To configure the wireless network, you can Wireless Security Options Other Features That Enhance SecurityRecording Basic Wireless Settings Setup Information If WEP Authentication is used, circle one Shared Key or AutoChanging Wireless Security Settings Viewing Basic Wireless SettingsSafeguarding Your Network Configuring WEP Wireless Security Safeguarding Your Network Configuring WPA-PSK and WPA2-PSK Wireless Security Viewing Advanced Wireless Settings Using Push N Connect Wi-Fi Protected Setup Push Button Configuration Using the Physical Push ButtonUsing the Router’s Security PIN Security PIN EntryConfiguring the WPS Settings Using the Wireless Client’s Security PINAdding Additional WPS-Enabled Clients Restricting Wireless Access by MAC Address Adding Additional Non-WPS-Enabled ClientsSelect the Turn Access Control On check box Adding Guest Networks To add a guest network, do the followingChanging the Administrator Password Backing Up Your Configuration Understanding Your Firewall Blocking Access to Internet Sites Content Filtering OverviewRestricting Access From Your Network Blocking Access to Internet Services To block access to Internet services Blocking Services by IP Address Range Scheduling BlockingViewing Logs of Web Access or Attempted Web Access Log Entry DescriptionsConfiguring E-mail Alert and Web Access Log Notifications Setting the Time Zone Using the LAN IP Setup Options Customizing Your Network SettingsConfiguring a Device Name Configuring LAN TCP/IP Setup ParametersUsing the Router as a Dhcp Server Using Address ReservationUsing a Dynamic DNS Service To reserve an IP addressTo edit or delete a reserved address entry Click Edit or DeleteTo configure for a Dynamic DNS service Configuring the WAN Setup OptionsSelect the Use a Dynamic DNS Service check box Setting Up a Default DMZ Server Disabling Port Scan and DoS ProtectionConfiguring Static Routes Setting the MTU SizeConfiguring NAT Filtering Responding to a Ping on the Internet WAN PortTo add or edit a static route Customizing Your Network Settings Fine-Tuning Your Network Allowing Inbound Connections to Your NetworkFine-Tuning Your Network How Port Triggering Changes the Communication Process Web server then sends this reply message to your routerHow Port Forwarding Changes the Communication Process Configuring Port Forwarding to Local Servers How Port Forwarding Differs from Port TriggeringAdding a Custom Service To configure port forwarding to a local serverClick Edit Service or Delete Service to make changes Editing or Deleting a Port Forwarding EntryApplication Example Making a Local Web Server Public To edit or delete a port forwarding entryConfiguring Port Triggering Clear the Disable Port Triggering check box Using Universal Plug and Play To turn on Universal Plug and PlayOptimizing Wireless Performance Choose your settings Identify critical wireless linksReduce interference Quality of Service Using WMM for Wireless Multimedia ApplicationsUsing WMM QoS for Wireless Multimedia Applications QoS for Applications and Online Gaming Configuring QoS for Internet AccessTo create a QoS policy for applications and online games Click Setup QoS Rule and then click Add Priority Rule QoS for a Router LAN PortQoS for a MAC Address Changing the MTU Size Click Setup QoS RuleEditing or Deleting an Existing QoS Policy Overview of Home and Small Office Networking Technologies Common MTU SizesAssessing Your Speed Requirements Theoretical Transfer Time for 1 Gigabyte Network Connection Theoretical Raw Transfer TimeUsing Network Monitoring Tools Using Network Monitoring ToolsViewing Wireless Router Status Information Wireless Router Status FieldsDhcp Click Connection Status to display the connection status Connection Status Settings Router StatisticsViewing a List of Attached Devices Rx B/sBacking Up and Restoring the Configuration Managing the Configuration FileDo not interrupt the reboot process Checking for New Firmware in the Router Upgrade Screen Erasing the ConfigurationUpdating the Router Firmware Using Network Monitoring Tools Updating Manually to New Router Firmware To configure your router for remote management Enabling Remote Management AccessSelect the Turn Remote Management On check box Using Network Monitoring Tools Traffic Meter To monitor traffic on your router, do the followingUsing Network Monitoring Tools Quick Tips TroubleshootingBe sure to restart your network in this sequence Make sure that the Ethernet cables are securely plugged Troubleshooting Basic FunctionsCheck the Test light to verify correct router operation Power light is not on Power light blinks green slowly and continuouslyPower light stays amber Internet light stays amberLogin Problems Internet or LAN port lights are not onChecking the Internet Service Connection Obtaining an Internet IP AddressTroubleshooting PPPoE Troubleshooting Internet BrowsingTroubleshooting Your Network Using the Ping Utility Testing the LAN Path to Your RouterTesting the Path from Your Computer to a Remote Device Request timed outProblems with Date and Time Problems with Wireless Adapter ConnectionsRestoring the Default Configuration and Password These procedures erase all current configuration settingsWNR1000v3h2 Router Default Configuration Settings Default Configuration SettingsAppendix a Technical Specifications Wireless Communication General Specifications WNR1000v3h2 Router General SpecificationsReference Documents Appendix B Related DocumentsRegulatory Compliance Information FCC Requirements for Operation in the United StatesFCC Caution Europe EU Declaration of ConformityEdoc in Languages of the European Community Pertinentes de la directive 1999/5/CE Interference Reduction Table Interference Reduction TableIndex IndexIndex PIN 32, 34 ping 54 Setup Manual