NETGEAR DGFV338 manual Using QoS to Shift the Traffic Mix, Port Triggering, VPN Tunnels

Page 154

DGFV338 ProSafe Wireless ADSL Modem VPN Firewall Router Reference Manual

See “Using Rules to Block or Allow Specific Kinds of Traffic” on page 4-1 for the procedure on how to use this feature.

Port Triggering

Port triggering allows some applications to function correctly that would otherwise be partially blocked by the firewall. Using this feature requires that you know the port numbers used by the Application.

Once configured, operation is as follows:

A PC makes an outgoing connection using a port number defined in the Port Triggering table.

This Router records this connection, opens the additional INCOMING port or ports associated with this entry in the Port Triggering table, and associates them with the PC.

The remote system receives the PCs request and responds using the different port numbers that you have now opened.

This Router matches the response to the previous request and forwards the response to the PC. Without Port Triggering, this response would be treated as a new connection request rather than a response. As such, it would be handled in accordance with the Port Forwarding rules.

Only one PC can use a Port Triggering application at any time.

After a PC has finished using a Port Triggering application, there is a time-out period before the application can be used by another PC. This is required because the firewall cannot be sure when the application has terminated.

See “Setting up Port Triggering” on page 4-28for the procedure on how to use this feature.

VPN Tunnels

The wireless firewall permits up to 50 VPN tunnels at a time. Each tunnel requires extensive processing for encryption and authentication.

See Chapter 5, “Virtual Private Networking” for the procedure on how to use this feature.

Using QoS to Shift the Traffic Mix

The QoS priority settings determine the priority and, in turn, the quality of service for the traffic passing through the firewall. The QoS is set individually for each service.

You can accept the default priority defined by the service itself by not changing its QoS setting.

6-6

Router and Network Management

v1.0, April 2007

Page 153 Page 155
Image 154
Page 153 Page 155
Contents NETGEAR, Inc Trademarks Placement and Range GuidelinesTechnical Support Statement of ConditionsFCC Statement FCC Requirements for Operation in the United StatesEurope EU Declaration of Conformity Português Certificate of the Manufacturer/Importer Bestätigung des Herstellers/ImporteursVoluntary Control Council for Interference Vcci Statement Additional Copyrights TermsViii MD5 Product and Publication Details DGFV338Contents Chapter Wireless Configuration Chapter Virtual Private Networking Chapter LAN Configuration Appendix a Default Settings and Technical Specifications Xvi About This Manual Conventions, Format and ScopeHow to Use This Manual How to Print this ManualXix Page Key Features of the Netgear ProSafe DGFV338 Chapter IntroductionPowerful, True Firewall with Content Filtering Full Routing on Both the Adsl and 10/100 WAN PortVirtual Private Networking VPN SecurityAutosensing Ethernet Connections with Auto Uplink Easy Installation and Management Extensive Protocol SupportMaintenance and Support System RequirementsPackage Contents Hardware DescriptionObject Descriptions Nos LEDs Activity DescriptionRouter Rear Panel Router Login Factory Defaults Enter http//192.168.1.1 as the URLPlacement of your Netgear ProSafe DGFV338 Chapter Basic Installation and Configuration Using Adsl Microfilters optional Logging in and Configuring your Internet Connection Configuring Your Internet Connection using Auto Detect V1.0, April Manually Configuring your Adsl Connection Internet Service ConnectionsEnter your Internet IP Address Manually Configuring your Ethernet Connection V1.0, April Enter your Internet IP Address V1.0, April V1.0, April V1.0, April Configuring the WAN Mode Use Dedicated WAN port V1.0, April Configuring Dynamic DNS If Needed On the InternetV1.0, April DynDNS Service Screen Programming the Traffic Meter Traffic Meter AdslTraffic Meter Parameters Parameter DescriptionV1.0, April Chapter Wireless Configuration Implementing Wireless SecurityLUHOHVVDWD 6HFXULW\2SWLRQV Understanding Wireless Settings Wireless LANs Wireless Access PointV1.0, April Access Control List Wireless Advanced Options Advanced Wireless Router SettingsWEP and WPA/WPA2 Wireless Security Check List Form WPA-PSK or WPA2-PSK Pre-Shared KeyConfiguring Your Wireless Settings Configuring WEP V1.0, April Configuring WPA-PSK Configuring WPA2-PSK Configuring WPA-PSK and WPA2-PSK Configuring WPA with Radius Configuring WPA2 with Radius Configuring WPA and WPA2 with Radius Restricting Wireless Access by MAC Address V1.0, April V1.0, April Firewall Protection and Content Filtering Overview Using Rules to Block or Allow Specific Kinds of TrafficAbout Service Based Rules Outbound Rules Service Blocking V1.0, April V1.0, April V1.0, April Inbound Rules Port Forwarding Outbound Rule Example Blocking Instant MessengerV1.0, April V1.0, April V1.0, April V1.0, April Inbound Rule Example a Local Public Web Server Inbound Rule Example One-to-One NAT Mapping V1.0, April Inbound Rule Example Exposed Host Considerations for Inbound Rules Customized Services Order of Precedence for RulesV1.0, April Quality of Service QoS Priorities Outbound Rules Add ScreenAttack Checks WAN Security ChecksManaging Groups and Hosts V1.0, April V1.0, April Blocking Internet Sites Groups and HostsV1.0, April V1.0, April Enabling Source MAC Filtering Setting up Port Triggering V1.0, April Port triggering Setting a Schedule to Block or Allow Specific Traffic Event Logs and Alerts V1.0, April V1.0, April Security and Administrator Management V1.0, April Dual WAN Port Systems IP addressing requirements for VPNs in dual WAN port systemsSetting up a VPN Connection using the VPN Wizard V1.0, April V1.0, April VPN Tunnel Policies IKE PolicyManaging IKE Policies IKE Policy TableVPN Policy Managing VPN PoliciesVPN Tunnel Connection Status VPN Policy TableConfiguring the ProSafe DGFV338 Creating a VPN Connection Between FVX538 and DGFV338V1.0, April V1.0, April V1.0, April V1.0, April Configuring the FVX538 Configuring the DGFV338 Testing the ConnectionCreating a VPN Client Connection VPN Client to DGFV338 V1.0, April Configuring the VPN Client Todgfv Left frame, select Security Policy Todgfv Testing the Connection Certificate Authorities Generating a Self Certificate Request Generate Self Certificate Request, enter the required dataV1.0, April Uploading a Trusted Certificate Managing your Certificate Revocation List CRLExtended Authentication Xauth Configuration UploadConfiguring Xauth for VPN Clients V1.0, April User Database Configuration Radius Client Configuration Enter the Primary Radius Server IP address Manually Assigning IP Addresses to Remote Users ModeConfig Mode Config OperationConfiguring the ProSafe DGFV338 V1.0, April V1.0, April Configuring the ProSafe VPN Client for ModeConfig V1.0, April V1.0, April V1.0, April V1.0, April Wireless Firewall Features That Reduce Traffic Performance ManagementService Blocking Block Sites Source MAC Filtering Wireless Firewall Features That Increase TrafficPort Forwarding V1.0, April Port Triggering Using QoS to Shift the Traffic MixVPN Tunnels Changing the Passwords and Login Time-out Administrator and Guest Access AuthorizationTools for Traffic Management Enabling Remote Management Access Under Allow Remote Management, check the Yes radio box Command Line Interface Https//172.21.4.18080Event Alerts Traffic Limits ReachedMonitoring Router StatusRouter Status WAN Ports Internet Traffic V1.0, April LAN Ports and Attached Devices Known PCs and DevicesDhcp Log Known PCs and Devices tablePort Triggering Status Firewall SecurityPort Triggering Status data V1.0, April VPN Tunnels Using a Snmp Manager VPN Status DataV1.0, April Diagnostics Diagnostics Settings Backup and Firmware Upgrade Configuration File ManagementBackup and Restore Settings Click default Router Upgrade Setting the Time Zone To upgrade router softwareV1.0, April Chapter LAN Configuration Using the Firewall as a Dhcp serverConfiguring the LAN Setup Options Security and Firewall ProtectionUsing Address Reservation Configuring Multi Home LAN IPs V1.0, April Gateway IP and DNS server IPs Configuring Static Routes Adding or Editing a Static RouteRouting Information Protocol RIP V1.0, April Enabling Universal Plug and Play UPnP Static Route ExampleUPnP Portmap Table settings Settings DescriptionV1.0, April Power LED Not On Basic FunctionsLEDs Never Turn Off Troubleshooting the Web Configuration InterfaceLAN or Internet Port LEDs Not On Troubleshooting the ISP Connection V1.0, April Troubleshooting a TCP/IP Network Using a Ping Utility Testing the LAN Path to Your FirewallTesting the Path from Your PC to a Remote Device Ping -n 10 IP addressRestoring the Default Configuration and Password Problems with Date and TimeV1.0, April Default Factory Settings Table A-1. Default Configuration SettingsFeature Default Behavior Technical Specifications Table A-2. Technical SpecificationsSpecification Description Electromagnetic Emissions Appendix B Related Documents V1.0, April Index NumericsIndex-2 Index-3 Index-4 Index-5 Index-6 Index-7 Index-8
Related manuals
Manual 10 pages 13.59 Kb
Top Page Image Contents