Reference Manual for the ProSafe VPN Firewall 25 with 4 Gigabit LAN and Dual WAN Ports

Test Period—DNS query is sent periodically after every test period. The minimum test period is 30 seconds.

Maximum Failures—The WAN interface is considered down after the configured number of DNS queries have failed to elicit a DNS reply from the configured DNS server. The minimum number of failed DNS queries is four.

The minimum time for a WAN interface to be classified as having failed is two minutes (i.e., 30 second minimum test period times a minimum of four tests). All traffic then stops on that WAN port. Traffic that is not bound by protocol to the failed WAN port is then sent to the working WAN port. If the total traffic on the working WAN port exceeds its bandwidth, then congestion occurs.

Once a WAN interface fails, an alert will be generated (see “Getting E-Mail Notifications of Event Logs and Alerts” on page 6-30). You must then get the failed WAN interface restored before it can carry traffic again by reapplying the WAN Mode menu shown in Figure 4-10.

2.Click Add in the appropriate WAN interface section of the WAN Mode Load Balancing screen to invoke the WAN Mode Protocol Bonding screen (if protocol binding is needed). Fill out the screen using the following parameter definitions:

Service—Select the desired Services or applications to be covered by this rule. If the desired service or application does not appear in the list, you must define it using the Services menu (see “Services-Based Rules” on page 6-4).

Source Network—These settings determine which computers on your network are affected by this rule. Select the desired options:

Any—All PCs and devices on your LAN.

Single address—Enter the required address and the rule will be applied to that particular PC.

Address range —If this option is selected, you must enter the start and finish fields.

Groups—Select the Group you wish this rule to apply to. You can use the Network Database screen to assign PCs to Groups.

Destination Network—These settings determine which Internet locations are covered by the rule, based on their IP address. Select the desired option:

Any—All Internet IP address are covered by this rule.

Single address—Enter the required address in the start fields.

Address range—If this option is selected, you must enter the start and finish fields.

Connecting the FVS124G to the Internet

4-19

202-10085-01, March 2005

Page 63
Image 63
NETGEAR manual Connecting the FVS124G to the Internet