NETGEAR FVS318N-100NAS Use QoS and Bandwidth Assignment to Shift the Traffic Mix

Network and System Management

319

ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N

safely provide services to the Internet without compromising security on your LAN. By

default, the DMZ port and both inbound and outbound DMZ traffic are disabled. Enabling the

DMZ port and allowing traffic to and from the DMZ increases the traffic through the WAN

ports.

For information about how to enable the DMZ port, see Enable and Configure the DMZ Port

for IPv4 and IPv6 Traffic on page 82. For the procedures about how to configure DMZ traffic

rules, see Configure DMZ WAN Rules on page 142.

Specifying an exposed host allows you to set up a computer or server that is available to

anyone on the Internet for services that you have not yet defined. For an example of how to

set up an exposed host, see IPv4 LAN WAN or IPv4 DMZ WAN Inbound Rule: Specifying an

Exposed Host on page 159.

The wireless VPN firewall supports site-to-site IPSec VPN tunnels, dedicated SSL VPN

tunnels, and L2TP tunnels. Each tunnel requires extensive processing for encryption and

authentication, thereby increasing traffic through the WAN ports.

For information about IPSec VPN tunnels, see Chapter 6, Virtual Private Networking

Using IPSec and L2TP Connections. For information about SSL VPN tunnels, see Chapter 7,

Virtual Private Networking Using SSL Connections.

Use QoS and Bandwidth Assignment to Shift the Traffic Mix

By setting the QoS priority and assigning bandwidth profiles to firewall rules, you can shift the

traffic mix to aim for optimum performance of the wireless VPN firewall.

The QoS priority settings determine the quality of service for the traffic passing through the

wireless VPN firewall. You can assign a QoS priority to LAN WAN and DMZ WAN outbound

firewall rules. The QoS is set individually for each firewall rule. You can change the mix of

traffic through the WAN ports by granting some services a higher priority than others:

•You can accept the default priority defined by the service itself by not changing its QoS

priority.

•You can change the priority to a higher or lower value than its default setting to give the

service higher or lower priority than it otherwise would have.

For more information about QoS profiles, see Preconfigured Quality of Service Profiles on

page 173.