NETGEAR DGFV338 manual V1.0, April

Page 97

DGFV338 ProSafe Wireless ADSL Modem VPN Firewall Router Reference Manual

connections to a specific IP address are blocked by a firewall rule, the requests can be routed through a proxy that is not blocked by the rule, rendering the restriction ineffective. Enabling this feature blocks proxy servers.

Java – Blocks java applets from being downloaded from pages that contain them. Java applets are small programs embedded in web pages that enable dynamic functionality of the page. A malicious applet can be used to compromise or infect computers. Enabling this setting blocks Java applets from being downloaded.

ActiveX – Similar to Java applets, ActiveX controls install on a Windows computer running Internet Explorer. A malicious ActiveX control can be used to compromise or infect computers. Enabling this setting blocks ActiveX applets from being downloaded.

Cookies – Cookies are used to store session information by websites that usually require login. However, several websites use cookies to store tracking information and browsing habits. Enabling this option filters out cookies from being created by a website.

Note: Many websites require that cookies be accepted in order for the site to be accessed properly. Blocking cookies may cause many websites to not

function properly.

Keyword (and domain name) Blocking – You can specify up to 32 words that, should they appear in the Web site name (URL) or in a newsgroup name, will cause the site or newsgroup to be blocked by the wireless firewall.

You can apply the keywords to one or more groups in the Apply Keyword Blocking to: fields. Requests from the PCs in the groups for which keyword blocking has been enabled will be blocked. Blocking does not occur for the PCs that are in the groups for which keyword blocking has not been enabled.

If you enter a domain name in the Trusted Domains box, keyword filtering will be bypassed. For example, if you entered www.netgear.com, keyword filtering will be bypassed for this domain; however, Web Components filtering still applies.

Keyword application examples:

If the keyword “XXX” is specified, the URL http://www.badstuff.com/xxx.html is blocked, as is the newsgroup alt.pictures.XXX.

If the keyword “.com” is specified, only Web sites with other domain suffixes (such as .edu or

.gov) can be viewed.

If you wish to block all Internet browsing access, enter the keyword “.”.

Security and Firewall Protection

4-25

v1.0, April 2007

Page 96 Page 98
Image 97
Page 96 Page 98
Contents NETGEAR, Inc Technical Support Placement and Range GuidelinesTrademarks Statement of ConditionsFCC Requirements for Operation in the United States FCC StatementEurope EU Declaration of Conformity Português Certificate of the Manufacturer/Importer Bestätigung des Herstellers/ImporteursVoluntary Control Council for Interference Vcci Statement Terms Additional CopyrightsViii MD5 DGFV338 Product and Publication DetailsContents Chapter Wireless Configuration Chapter Virtual Private Networking Chapter LAN Configuration Appendix a Default Settings and Technical Specifications Xvi Conventions, Format and Scope About This ManualHow to Print this Manual How to Use This ManualXix Page Chapter Introduction Key Features of the Netgear ProSafe DGFV338Full Routing on Both the Adsl and 10/100 WAN Port Powerful, True Firewall with Content FilteringVirtual Private Networking VPN SecurityAutosensing Ethernet Connections with Auto Uplink Extensive Protocol Support Easy Installation and ManagementSystem Requirements Maintenance and SupportHardware Description Package ContentsNos LEDs Activity Description Object DescriptionsRouter Rear Panel Enter http//192.168.1.1 as the URL Router Login Factory DefaultsPlacement of your Netgear ProSafe DGFV338 Chapter Basic Installation and Configuration Using Adsl Microfilters optional Logging in and Configuring your Internet Connection Configuring Your Internet Connection using Auto Detect V1.0, April Internet Service Connections Manually Configuring your Adsl ConnectionEnter your Internet IP Address Manually Configuring your Ethernet Connection V1.0, April Enter your Internet IP Address V1.0, April V1.0, April V1.0, April Configuring the WAN Mode Use Dedicated WAN port V1.0, April On the Internet Configuring Dynamic DNS If NeededV1.0, April DynDNS Service Screen Traffic Meter Adsl Programming the Traffic MeterParameter Description Traffic Meter ParametersV1.0, April Implementing Wireless Security Chapter Wireless ConfigurationLUHOHVVDWD 6HFXULW\2SWLRQV Understanding Wireless Settings Wireless Access Point Wireless LANsV1.0, April Access Control List Advanced Wireless Router Settings Wireless Advanced OptionsWPA-PSK or WPA2-PSK Pre-Shared Key WEP and WPA/WPA2 Wireless Security Check List FormConfiguring Your Wireless Settings Configuring WEP V1.0, April Configuring WPA-PSK Configuring WPA2-PSK Configuring WPA-PSK and WPA2-PSK Configuring WPA with Radius Configuring WPA2 with Radius Configuring WPA and WPA2 with Radius Restricting Wireless Access by MAC Address V1.0, April V1.0, April Using Rules to Block or Allow Specific Kinds of Traffic Firewall Protection and Content Filtering OverviewAbout Service Based Rules Outbound Rules Service Blocking V1.0, April V1.0, April V1.0, April Outbound Rule Example Blocking Instant Messenger Inbound Rules Port ForwardingV1.0, April V1.0, April V1.0, April V1.0, April Inbound Rule Example a Local Public Web Server Inbound Rule Example One-to-One NAT Mapping V1.0, April Inbound Rule Example Exposed Host Considerations for Inbound Rules Order of Precedence for Rules Customized ServicesV1.0, April Outbound Rules Add Screen Quality of Service QoS PrioritiesWAN Security Checks Attack ChecksManaging Groups and Hosts V1.0, April V1.0, April Groups and Hosts Blocking Internet SitesV1.0, April V1.0, April Enabling Source MAC Filtering Setting up Port Triggering V1.0, April Port triggering Setting a Schedule to Block or Allow Specific Traffic Event Logs and Alerts V1.0, April V1.0, April Security and Administrator Management V1.0, April IP addressing requirements for VPNs in dual WAN port systems Dual WAN Port SystemsSetting up a VPN Connection using the VPN Wizard V1.0, April V1.0, April IKE Policy VPN Tunnel PoliciesIKE Policy Table Managing IKE PoliciesManaging VPN Policies VPN PolicyVPN Policy Table VPN Tunnel Connection StatusCreating a VPN Connection Between FVX538 and DGFV338 Configuring the ProSafe DGFV338V1.0, April V1.0, April V1.0, April V1.0, April Configuring the FVX538 Configuring the DGFV338 Testing the ConnectionCreating a VPN Client Connection VPN Client to DGFV338 V1.0, April Configuring the VPN Client Todgfv Left frame, select Security Policy Todgfv Testing the Connection Certificate Authorities Generate Self Certificate Request, enter the required data Generating a Self Certificate RequestV1.0, April Managing your Certificate Revocation List CRL Uploading a Trusted CertificateUpload Extended Authentication Xauth ConfigurationConfiguring Xauth for VPN Clients V1.0, April User Database Configuration Radius Client Configuration Enter the Primary Radius Server IP address Mode Config Operation Manually Assigning IP Addresses to Remote Users ModeConfigConfiguring the ProSafe DGFV338 V1.0, April V1.0, April Configuring the ProSafe VPN Client for ModeConfig V1.0, April V1.0, April V1.0, April V1.0, April Performance Management Wireless Firewall Features That Reduce TrafficService Blocking Block Sites Source MAC Filtering Wireless Firewall Features That Increase TrafficPort Forwarding V1.0, April Port Triggering Using QoS to Shift the Traffic MixVPN Tunnels Changing the Passwords and Login Time-out Administrator and Guest Access AuthorizationTools for Traffic Management Enabling Remote Management Access Under Allow Remote Management, check the Yes radio box Https//172.21.4.18080 Command Line InterfaceTraffic Limits Reached Event AlertsRouter Status MonitoringRouter Status WAN Ports Internet Traffic V1.0, April Known PCs and Devices LAN Ports and Attached DevicesKnown PCs and Devices table Dhcp LogPort Triggering Status Firewall SecurityPort Triggering Status data V1.0, April VPN Tunnels VPN Status Data Using a Snmp ManagerV1.0, April Diagnostics Diagnostics Settings Backup and Firmware Upgrade Configuration File ManagementBackup and Restore Settings Click default Router Upgrade To upgrade router software Setting the Time ZoneV1.0, April Using the Firewall as a Dhcp server Chapter LAN ConfigurationSecurity and Firewall Protection Configuring the LAN Setup OptionsUsing Address Reservation Configuring Multi Home LAN IPs V1.0, April Gateway IP and DNS server IPs Adding or Editing a Static Route Configuring Static RoutesRouting Information Protocol RIP V1.0, April Static Route Example Enabling Universal Plug and Play UPnPSettings Description UPnP Portmap Table settingsV1.0, April Basic Functions Power LED Not OnLEDs Never Turn Off Troubleshooting the Web Configuration InterfaceLAN or Internet Port LEDs Not On Troubleshooting the ISP Connection V1.0, April Testing the LAN Path to Your Firewall Troubleshooting a TCP/IP Network Using a Ping UtilityPing -n 10 IP address Testing the Path from Your PC to a Remote DeviceProblems with Date and Time Restoring the Default Configuration and PasswordV1.0, April Table A-1. Default Configuration Settings Default Factory SettingsFeature Default Behavior Table A-2. Technical Specifications Technical SpecificationsSpecification Description Electromagnetic Emissions Appendix B Related Documents V1.0, April Numerics IndexIndex-2 Index-3 Index-4 Index-5 Index-6 Index-7 Index-8
Related manuals
Manual 10 pages 13.59 Kb
Top Page Image Contents