NETGEAR FVS318N Outbound Rules (Service Blocking)

Firewall Protection

130

ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N

A firewall has two default rules, one for inbound traffic and one for outbound. The default

rules of the wireless VPN firewall are:

•Inbound. Block all access from outside except responses to requests from the LAN side.

•Outbound. Allow all access from the LAN side to the outside.

The firewall rules for blocking and allowing traffic on the wireless VPN firewall can be applied

to LAN WAN traffic, DMZ WAN traffic, and LAN DMZ traffic.

The rules to block or allow traffic are based on the traffic’s category of service:

•Outbound rules (service blocking). Outbound traffic is allowed unless you configure

the firewall to block specific or all outbound traffic.

•Inbound rules (port forwarding). Inbound traffic is blocked unless the traffic is in

response to a request from the LAN side. You can configure the firewall to allow specific

or all inbound traffic.

•Customized services. You can add additional services to the list of services in the

factory defaults list. You can then define rules for these added services to either allow or

block that traffic (see Add Customized Services on page 172).

•Quality of Service (QoS) priorities. Each service has its own native priority that impacts

its quality of performance and tolerance for jitter or delays. You can change the QoS

priority, which changes the traffic mix through the system (see Preconfigured Quality of

Service Profiles on page 177).

•Bandwidth profiles. After you have a configured a bandwidth profile (see Create

Bandwidth Profiles on page 175), you can assign it to a rule.

Outbound Rules (Service Blocking)

The wireless VPN firewall allows you to block the use of certain Internet services by

computers on your network. This is called service blocking or port filtering.

Note: See Enable Source MAC Filtering on page 183 for yet another way

to block outbound traffic from selected computers that would

otherwise be allowed by the firewall.

Table 32. Number of supported firewall rule configurations

Traffic Rule Maximum Number of

Outbound Rules Maximum Number of

Inbound Rules Maximum Number of

Supported Rules

LAN WAN 300 300 600

DMZ WAN5050100

LAN DMZ5050100

Total Rules 400 400 800