NETGEAR FVS318N-100NAS Content Filtering, Source MAC Filtering

Network and System Management

316

ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N

•WAN users. You can specify which Internet locations are covered by an outbound rule,

based on their IP address:

-Any. The rule applies to all Internet IP address.

-Single address. The rule applies to a single Internet IP address.

-Address range. The rule applies to a range of Internet IP addresses.

•Schedule. You can configure three different schedules to specify when a rule is applied.

Once a schedule is configured, it affects all rules that use this schedule. You specify the

days of the week and time of day for each schedule. For more information, see Set a

Schedule to Block or Allow Specific Traffic on page 178.

•QoS profile. You can apply QoS profiles to outbound rules to regulate the priority of

traffic. For information about QoS profiles, see Preconfigured Quality of Service Profiles

on page 173.

•Bandwidth profile. You can define bandwidth profiles and then apply them outbound

LAN WAN rules to limit traffic. (You cannot apply bandwidth profiles to DMZ WAN rules.)

For information about how to define bandwidth profiles, see Create Bandwidth Profiles on

page 171.

Content Filtering

If you want to reduce traffic by preventing access to certain sites on the Internet, you can use

the wireless VPN firewall’s content-filtering feature. By default, this feature is disabled; all

requested traffic from any website is allowed with the exception of web content categories

that are mentioned in Configure Content Filtering on page 174.

The wireless VPN firewall provides the following methods to filter web content in order to

reduce traffic:

•Keyword blocking. You can specify words that, should they appear in the website name

(URL) or newsgroup name, cause that site or newsgroup to be blocked by the wireless

VPN firewall.

•Web object blocking. You can block the following web component types: embedded

objects (ActiveX and Java), proxies, and cookies.

To further narrow down the content filtering, you can configure groups to which the

content-filtering rules apply and trusted domains for which the content-filtering rules do not

apply.

Source MAC Filtering

If you want to reduce outgoing traffic by preventing Internet access by certain computers on

the LAN, you can use the source MAC filtering feature to drop the traffic received from the

computers with the specified MAC addresses. By default, this feature is disabled; all traffic

received from computers with any MAC address is allowed. See Enable Source MAC

Filtering on page 179 for the procedure on how to use this feature.