Outbound Rules Service Blocking | NETGEAR UTM10EW-100NAS specs

ProSecure Unified Threat Management UTM10 or UTM25 Reference Manual

•Quality of Service (QoS) priorities. Each service has its own native priority that impacts its quality of performance and tolerance for jitter or delays. You can change the QoS priority, which changes the traffic mix through the system (see “Creating Quality of Service (QoS) Profiles” on page 5-33).

Outbound Rules (Service Blocking)

The UTM allows you to block the use of certain Internet services by PCs on your network. This is called service blocking or port filtering.

Note: See “Enabling Source MAC Filtering” on page 5-40 for yet another way to block outbound traffic from selected PCs that would otherwise be allowed by the firewall.

Warning: Allowing inbound services opens security holes in your UTM. Only enable those ports that are necessary for your network.

Table 5-2 on page 5-5describes the fields that define the rules for outbound traffic and that are common to most Outbound Service screens (see Figure 5-3 on page 5-13, Figure 5-6 on page 5-16, and Figure 5-9 on page 5-19).

The steps to configure outbound rules are described in the following sections:

•“Setting LAN WAN Rules” on page 5-11

•“Setting DMZ WAN Rules” on page 5-14

•“Setting LAN DMZ Rules” on page 5-18.

5-4	Firewall Protection

v1.0, September 2009

Image 118

NETGEAR UTM10EW-100NAS, UTM25-100NAS, UTM25EW-100NAS manual Outbound Rules Service Blocking

Contents

NETGEAR, Inc EU Regulatory Compliance Statement TrademarksStatement of Conditions Bestätigung des Herstellers/Importeurs AES Voluntary Control Council for Interference Vcci StatementAdditional Copyrights Terms MD5 Publication Date September Product Family Product and Publication DetailsModel Number Product Name V1.0, September Contents Configuring Secondary WAN Addresses Classical Routing UTM10 and UTM25 Chapter LAN Configuration Chapter Content Filtering and Optimizing Scans Chapter Virtual Private Networking Using SSL Connections Using QoS and Bandwidth Assignment to Shift the Traffic Mix Features That Reduce TrafficFeatures That Increase Traffic Changing Passwords and Administrator Settings Configuring and Activating System, E-mail, and Syslog Logs Configuring Logging, Alerts, and Event NotificationsConfiguring the E-mail Notification Server Configuring and Activating Firewall Logs Restoring the Default Configuration and Password Testing the LAN Path to Your UTMTesting the Path from Your PC to a Remote Device Problems with Date and Time Appendix D Two Factor Authentication Xvi About This Manual Conventions, Formats, and Scope How to Print This Manual Revision History Chapter Introduction Key Features and Capabilities Advanced VPN Support for Both IPsec and SSL Powerful, True Firewall Stream Scanning for Content Filtering Security Features Autosensing Ethernet Connections with Auto Uplink Easy Installation and Management Extensive Protocol Support Maintenance and Support Service Registration Card with License Keys Package Contents Hardware Features Active Power LEDUSB port Left LAN LEDs Right WAN LEDs LEDs DMZ LED Object Activity Description LAN PortsWAN Ports Bottom Panel With Product Label Security lock Console port Reset button AC power ReceptacleRear Panel Receptacle 4shows the product label for the UTM10 Using the Rack-Mounting Kit Choosing a Location for the UTM Using the Setup Wizard to Provision the UTM in Your Network Understanding the Steps for Initial Connection Logging In to the UTM Qualified Web Browsers V1.0, September V1.0, September Understanding the Web Management Interface Menu Layout V1.0, September Using the Setup Wizard to Perform the Initial Configuration Setup Wizard of 10 LAN Settings Setup Wizard LAN Settings Dhcp Setting Description or Subfield and Description Setup Wizard of 10 WAN Settings Setting Description or Subfield and Description DNS Proxy Setting Description or Subfield and Description ISP Login Setup Wizard WAN SettingsISP Type Domain Name Server DNS Servers Internet IP AddressISP Get Automatically from ISP radio button Setup Wizard of 10 System Date and Time Setup Wizard System Date and Time Settings Adjust for Daylight Savings Time checkbox Setup Wizard of 10 Security Services Instant Messaging Setup Wizard Security Services SettingsWeb Peer-to-Peer P2P Setup Wizard Email Security Settings Setup Wizard of 10 Email SecuritySetting Description or Subfield and Description Action Setup Wizard of 10 Web Security Scan Exceptions Setup Wizard Web Security Settings See Performance Management on Setup Wizard of 10 Web Categories to Be Blocked Blocked Categories Scheduled Days Setup Wizard Content Filtering SettingsBlocked Categories Time of Day Setup Wizard Administrator Email Notification Settings Administrator Email Notification Settings Setup Wizard of 10 Security Subscription Update Settings Update Frequency Setup Wizard Security Subscription Update SettingsUpdate Settings Https Proxy Settings Testing Connectivity Verifying Proper InstallationSetup Wizard of 10 Saving the Configuration Testing Http Scanning Registering the UTM with Netgear Click Register What to Do Next V1.0, September Manually Configuring Internet and WAN Settings Understanding the Internet and WAN Configuration Tasks Configuring the Internet Connections Automatically Detecting and Connecting V1.0, September Connection Method Data Required Internet connection methodsPptp Setting the UTM’s MAC Address Manually Configuring the Internet Connection V1.0, September Pptp and PPPoE Settings Internet IP Address Settings DNS Server Settings Network Address Translation UTM10 and UTM25 Classical Routing UTM10 and UTM25 Configuring Auto-Rollover Mode UTM25 Only Auto-Rollover Mode Settings UTM25 Only Setting Description or Subfield and Description Port Mode WAN1 Configuring the Internet Connections onWAN2 V1.0, September Protocol Binding Settings UTM25 Only Using the Services menu see Services-Based Rules on Destination Configuring Secondary WAN Addresses V1.0, September Configuring Dynamic DNS Select Network Config Dynamic DNS from the menu V1.0, September DNS Service Settings WAN2 Dynamic DNS Status Configuring Advanced WAN Options Use Default Address radio button Advanced WAN SettingsSetting Description or Subfield and Description MTU Size Port Speed Additional WAN-Related Configuration Tasks Upload/Download Settings Chapter LAN Configuration Managing Virtual LANs and Dhcp Options Managing the UTM’s Port-Based VLANs V1.0, September Vlan Dhcp Options Dhcp Server Dhcp Relay DNS Proxy Ldap Server Configuring a Vlan ProfileEdit Add V1.0, September Port Membership Vlan Profile SettingsVlan ID Vlan Address Contiguous addresses in the IP address pool. Any Settings below Configuring Multi-Home LAN IPs on the Default Vlan Managing Groups and Hosts LAN Groups Managing the Network Database V1.0, September Setting Up Address Reservation on Add Known PCs and Devices SettingsAdding PCs or Devices to the Network Database Changing Group Names in the Network Database Editing PCs or Devices in the Network Database Setting Up Address Reservation Configuring and Enabling the DMZ Port V1.0, September DMZ Setup Settings Own LAN IP address as the primary DNS server IP address Managing Routing Configuring Static Routes Configuring Routing Information Protocol RIP Static Route Settings Select Network Configuration Routing from the menu Authentication for RIP-2B/2M RIP Configuration SettingsOut Only . Static Route Example V1.0, September Chapter Firewall Protection About Firewall Protection Administrator Tips Services-Based Rules Using Rules to Block or Allow Specific Kinds of TrafficNumber of Supported Firewall Rule Configurations Outbound Rules Service Blocking To Block or Allow Specific Traffic on Customized Services onOutbound Rules Overview Hosts LAN Groups on Inbound Rules Port Forwarding NAT IP V1.0, September Inbound Rules Overview By this rule. The options are Order of Precedence for Rules Setting LAN WAN Rules LAN WAN Outbound Services Rules LAN WAN Inbound Services Rules Setting DMZ WAN Rules V1.0, September DMZ WAN Outbound Services Rules DMZ WAN Inbound Services Rules Setting LAN DMZ Rules LAN DMZ Outbound Services Rules LAN DMZ Inbound Services Rules Attack Checks Attack Checks Settings VPN Pass through L2TP Setting Session Limits Session Timeout Session Limit SettingsManaging the Application Level Gateway for SIP Sessions Inbound Rules Examples LAN WAN Inbound Rule Hosting a Local Public Web Server V1.0, September V1.0, September LAN WAN or DMZ WAN Inbound Rule Specifying an Exposed Host Outbound Rules Example LAN WAN Outbound Rule Blocking Instant Messenger Creating Services, QoS Profiles, and Bandwidth Profiles Adding Customized Services V1.0, September Services Settings TCP Creating Quality of Service QoS Profiles V1.0, September QoS Profile Settings Default High Medium High Low Creating Bandwidth Profiles V1.0, September Bandwidth Profile Settings Setting a Schedule to Block or Allow Specific Traffic Enabling Source MAC Filtering V1.0, September Setting up IP/MAC Bindings Event Notifications on IP/MAC Binding SettingsIP/MAC Bindings Configuring Port Triggering V1.0, September 10. Port Triggering Settings Using the Intrusion Prevention System V1.0, September V1.0, September Attack Name Description or Subfield and Description Web 11. IPS Less Familiar Attack NamesMisc Content Filtering and Optimizing Scans About Content Filtering and Scans Default E-mail and Web Scan Settings Default E-mail and Web Scan Settings Configuring E-mail Protection Scan Type Default Scan Setting Default Action if applicable Customizing E-mail Protocol Scan Settings Customizing E-mail Anti-Virus and Notification Settings Notification Settings E-mail Anti-Virus and Notification SettingsPerformance see Performance Management on Email Alert Settings Mail TIME%, %PROTOCOL%, %FROM%, %TO%, %SUBJECT% Mail Content FilteringFILENAME%, %ACTION%, %VIRUSNAME% V1.0, September E-mail Filter Settings Filter by Password-Protected Attachments ZIP, RAR, etc Filter by File Name Password-Protected Attachments ZIP, RAR, etc. section aboveProtecting Against E-mail Spam Protected Attachments ZIP, RAR, etc. section above Setting Up the Whitelist and Blacklist V1.0, September Configuring the Real-time Blacklist Whitelist/Blacklist Settings V1.0, September Configuring Distributed Spam Analysis Distributed Spam Analysis Settings Low Medium-Low Anti-Spam Engine SettingsBlock spam email Configuring Web and Services Protection Customizing Web Protocol Scan Settings and Services Web Protocol, Instant Messaging, and Peer-to-Peer Settings Setting Description or Subfield and Description Web Configuring Web Malware Scans Malware Scan Settings Configuring Web Content Filtering Html Scan V1.0, September Content Filtering, screen 1 10 Content Filtering, screen 2 11 Content Filtering, screen 3 Full-Text Search Content Filtering SettingsPerformance Management on Block Web Objects Blocked Categories Scheduled Days URL Configuring Web URL FilteringNetgear V1.0, September Setting Description or Subfield and Description Whitelist URL Filtering SettingsBlacklist URL% Https Scan Settings V1.0, September V1.0, September 10. Https Settings Specifying Trusted Hosts 11. Trusted Hosts Settings Configuring FTP Scans Hosts 12. FTP Scan Settings Setting Web Access Exception Rules Setting Web Access Exceptions and Scanning ExclusionsBlock Files with the Following Extensions To set Web access exception rules 13. Add and Edit Block Scanning Exception Settings Groups and Hosts LAN Groups on Setting Scanning Exclusions 14. Add Scanning Exclusion Settings V1.0, September Chapter Virtual Private Networking Using IPsec Connections Considerations for Dual WAN Port Systems UTM25 Only IP Addressing for VPNs in Dual WAN Port Systems Creating Gateway-to-Gateway VPN Tunnels with the Wizard V1.0, September IPsec VPN Wizard Settings for a Gateway-to-Gateway Tunnel Connection Name and Remote IP Type Adding or Editing a VPN Policy on Secure Connection Remote AccessibilityEnd Point Information a V1.0, September Creating a Client to Gateway VPN Tunnel V1.0, September IPsec VPN Wizard Settings for a Client-to-Gateway Tunnel Fqdn V1.0, September V1.0, September Gateway Tunnel Security Policy Editor Remote Party SettingsOnly Connect Manually checkbox Status on Security Policy Editor My Identity Settings On page 7-9. In this example, the domain name is Security Policy Editor Security Policy Settings Testing the Connections and Viewing Status InformationTesting the VPN Connection Detection checkbox Netgear VPN Client Status and Log Information V1.0, September Viewing the UTM IPsec VPN Connection Status System Tray Icon Status Client policy is deactivated Viewing the UTM IPsec VPN Log IPsec VPN Connection Status Information Managing IPsec VPN Policies Managing IKE Policies IKE Policies Screen List of IKE Policies Information Manually Adding or Editing an IKE Policy V1.0, September Mode Config Record 10. Add IKE Policy SettingsGeneral Remote LocalIKE SA Parameters Group 5 1536 bit Configuring KeepalivesGroup 1 768 bit Dead Peer Extended Authentication Managing VPN Policies VPN Policies Screen 11. List of VPN Policies Information Remote Manually Adding or Editing a VPN Policy V1.0, September 12. Add VPN Policy Settings Description or Subfield and Description Traffic Selection Manual Policy Parameters Auto Policy Parameters Group 768 bit Configuring Extended Authentication XauthGroup 1536 bit Configuring Xauth for VPN Clients Radius Client Configuration User Database ConfigurationInformation, see Radius Client Configuration on V1.0, September Connection Configuration 14. Radius Client SettingsBackup Radius Server Primary Radius Server Mode Config Operation Assigning IP Addresses to Remote Users Mode ConfigConfiguring Mode Config Operation on the UTM V1.0, September 15. Add Mode Config Record Settings Client Pool Traffic Tunnel Security Level V1.0, September 16. Add IKE Policy Settings for a Mode Config Configuration Keepalives and Dead ConfiguringMenu, select Group 2 1024 bit Peer Detection on Configuring the ProSafe VPN Client for Mode Config Operation 192.168.1.0 Gateway Tunnel 18. Security Policy Editor My Identity, Mode Config Settings Menu Configuring Keepalives and Dead Peer Detection Testing the Mode Config Connection Configuring Keepalives Configuring Dead Peer Connection 20. Keepalive Settings 21. Dead Peer Detection Settings Configuring NetBIOS Bridging with IPsec VPN Chapter Virtual Private Networking Using SSL Connections Understanding the SSL VPN Portal Options Using the SSL VPN Wizard for Client Configurations SSL VPN Wizard of 6 Portal Settings Portal Layout and Theme Name SSL VPN Wizard Portal SettingsScreen as shown in -8 on SSL VPN Wizard of 6 Domain Settings SSL VPN Portal Pages to Display Domain Name SSL VPN Wizard Domain SettingsRadius Client SSL VPN Wizard of 6 User Settings SSL VPN Wizard User Settings SSL VPN Wizard of 6 Client IP Address Range and Routes Client IP Address Range SSL VPN Wizard Client IP Address Range and Routes SettingsAdd Routes for VPN Tunnel Clients SSL VPN Wizard Port Forwarding Settings SSL VPN Wizard of 6 Port Forwarding SSH Add New Host Name for Port Forwarding SSL VPN Wizard of 6 Verify and Save Your Settings Accessing the New SSL Portal Login Screen V1.0, September Viewing the UTM SSL VPN Connection Status Viewing the UTM SSL VPN Log Manually Configuring and Editing SSL Connections Creating the Portal Layout V1.0, September V1.0, September Add Portal Layout Settings Configuring Domains, Groups, and Users Configuring Applications for Port Forwarding Adding Servers and Port Numbers Port Forwarding Applications/TCP Port Numbers Adding a New Host NameTCP Application Port Number Configuring the SSL VPN Client Fully Qualified Domain Name. The full server name Configuring the Client IP Address Range Adding Routes for VPN Tunnel Clients Tunnel Clients on Using Network Resource Objects to Simplify Policies Adding New Network Resources Editing Network Resources to Specify Addresses Configuring User, Group, and Global Policies Add Resource Addresses Settings Viewing Policies Adding a Policy 10. Add Policy Settings Policy For Description or Subfield and Description Add SSL VPN Policies Network Resource Objects to Simplify Policies on 10. Add Policy Settings V1.0, September V1.0, September Managing Users, Authentication, and Certificates Configuring VPN Authentication Domains, Groups, and Users Configuring Domains Authentication Protocols and Methods Ldap Add Domain Settings Creating the Portal Layout on Configuring Groups for VPN Policies Creating and Deleting Groups VPN Group Settings Editing Groups Configuring User Accounts V1.0, September See Configuring Extended Authentication Xauth on Add User SettingsPolicies on Setting User Login Policies Configuring Login Policies Configuring Login Restrictions Based on IP Address Configuring Login Restrictions Based on Web Browser Add Defined Addresses Settings Internet Explorer Opera Netscape Navigator Changing Passwords and Other User Settings Enabled see Configuring Extended Authentication Xauth on Edit User SettingsManaging Digital Certificates V1.0, September Managing CA Certificates 11 Certificates, screen 1 Managing Self Certificates Generating a CSR and Obtaining a Self Certificate from a CA Setting 13 Certificates, screen 2 512 1024 2048 V1.0, September Managing the Certificate Revocation List Viewing and Managing Self Certificates 15Certificates, screen 3 Performance Management Bandwidth Capacity Features That Reduce Traffic Network and System Management 10-3 Content Filtering Features That Increase Traffic Source MAC Filtering 10-6 Network and System Management Configuring the DMZ Port Port Triggering Configuring VPN Tunnels Using QoS and Bandwidth Assignment to Shift the Traffic MixConfiguring Exposed Hosts Assigning QoS Profiles Monitoring Tools for Traffic Management Changing Passwords and Administrator SettingsSystem Management Assigning Bandwidth Profiles 10-10 Network and System Management Network and System Management 10-11 Configuring Remote Management Access Https//IPaddress or https//FullyQualifiedDomainName Using an Snmp Manager Setting Description or Subfield and Description Settings Managing the Configuration FileSnmp Settings Trusted Snmp Hosts Backup Settings Restore Settings Reverting to Factory Default Settings Updating the Firmware Viewing the Available Firmware Versions Upgrading the Firmware and Rebooting the UTM Rebooting Without Changing the Firmware Updating the Scan Signatures and Scan Engine Firmware 10-22 Network and System Management Configuring Automatic Update and Frequency Settings Signatures & Scan Engine Settings Configuring Date and Time Service System Date & Time Settings Network and System Management 10-25 10-26 Network and System Management Monitoring System Access and Performance Enabling the WAN Traffic Meter 11-2 Monitoring System Access and Performance Traffic Counter WAN Traffic Meter SettingsLogging, Alerts, and Event Notifications on Mail, and Syslog Logs on Configuring Logging, Alerts, and Event Notifications Configuring the E-mail Notification Server E-mail Notification Settings Configuring and Activating System, E-mail, and Syslog LogsServer requires authentication checkbox and enter Monitoring System Access and Performance 11-7 E-mail and Syslog Settings Email Logs to Administrator Send Logs via Syslog Configuring and Activating Update Failure and Attack Alerts Alerts Settings PROTOCOL%, %FROM%, %TO%, %SUBJECT%, %FILENAME% ACTION%, %VIRUSNAME% Configuring and Activating Firewall Logs Firewall Logs Settings Monitoring Real-Time Traffic, Security, and Statistics Dashboard, screen 1 Total Threats Settings onSpam to configure, see Protecting Against E-mail Spam on System on Threats Counts Total Traffic Bytes Category Most Recent 5 Description Top 5 Description Categories, see Using the IntrusionDashboard Most Recent 5 and Top 5 Information Prevention System on Dashboard Service Statistics Information Dashboard, screen 3 Viewing Status Screens Viewing System Status Setting Status System Status Status and System Information 11 System Status, screen 2 LAN Port NATDhcp Viewing VPN Tunnel Connection Status Viewing Active VPN Users11. System Status Interface Statistics 12. IPsec VPN Connection Status Information To view the status of the Port Triggering feature Viewing Port Triggering Status Viewing the WAN Ports Status 13. Port Triggering Status Information 11-28 Monitoring System Access and Performance Viewing Attached Devices and the Dhcp Log Configuring the Internet Connection onEdit Vlan Profile screen see Configuring a Vlan Profile on Viewing Attached Devices 11-30 Monitoring System Access and Performance Viewing the Dhcp Log Querying Logs and Generating Reports Querying the Logs Monitoring System Access and Performance 11-33 15. Logs Query Settings This field is available for the following logs See Configuring and Activating Firewall Logs onFollowing protocols can be selected This field is available only for the Spam log Following categories can be selectedFollowing reasons can be selected This field is available only for the Malware log This field is available only for the Service log EMERG, ALERT, CRITICAL, ERROR, WARNING, NoticeThis field is available only for the Content filters log Example Using Logs to Identify Infected Clients Log Management Scheduling and Generating Reports Generating Reports Web Reports 16. Generate Report SettingsEmail Reports System Reports 17. Schedule Report Settings Scheduling Reports Email Reports Web Reports System Reports Using Diagnostics UtilitiesReport List Using the Network Diagnostic Tools Sending a Ping Packet Displaying the Routing Table Tracing a RouteLooking up a DNS Address Using the Realtime Traffic Diagnostics Tool 27 Diagnostics, screen 2 Gathering Important Log Information Generating Network Statistics Rebooting and Shutting Down the UTM Troubleshooting and Using Online Support Basic Functioning Power LED Not OnTest LED Never Turns Off Troubleshooting the Web Management Interface LAN or WAN Port LEDs Not On When You Enter a URL or IP Address a Time-out Error Occurs Troubleshooting the ISP Connection Troubleshooting a TCP/IP Network Using a Ping Utility Testing the LAN Path to Your UTM Testing the Path from Your PC to a Remote Device Restoring the Default Configuration and Password Problems with Date and Time Using Online Support Enabling Remote Troubleshooting Malware Analysis Settings Sending Suspicious Files to Netgear for Analysis Accessing the Knowledge Base and Documentation Internet Connection Table A-1. UTM Default Configuration SettingsFeature Default behavior Router Login Local Network LAN Table A-2. UTM Physical and Technical Specifications Interface Specifications Table A-3. UTM IPsec VPN SpecificationsFeature Specification Environmental Specifications Setting Specification Table A-4. UTM SSL VPN Specifications MD5, SHA-1, MAC-MD5/SHA-1, HMAC-MD5/SHA-1 Appendix B Network Planning for Dual WAN Ports UTM25 Only What to Consider Before You Begin WAN port Physical facility Internet Internet Configuration Requirements Computer Network Configuration RequirementsCabling and Computer Hardware Requirements Where Do I Get The Internet Configuration Information? Internet Connection Information Overview of the Planning Process Figure B-2 Inbound Traffic Inbound Traffic to a Single WAN Port System Inbound Traffic Dual WAN Ports for Improved Reliability Inbound Traffic to a Dual WAN Port SystemInbound Traffic Dual WAN Ports for Load Balancing To-Gateway Virtual Private Networks VPNsVPN Road Warrior Client To-Gateway Through a NAT Figure B-7 VPN Road Warrior Client-to-Gateway VPN Road Warrior Single Gateway WAN Port Reference Case Figure B-10 VPN Gateway-to-Gateway VPN Road Warrior Dual Gateway WAN Ports for Load Balancing Figure B-13 Figure B-15 VPN Telecommuter Client-to-Gateway Through a NAT Router VPN Telecommuter Single Gateway WAN Port Reference Case Figure B-18 VPN Telecommuter Dual Gateway WAN Ports for Load Balancing Figure B-20 Table C-1. Log Message Terms Term Description or Subfield and Description System Log Messages RebootTable C-3. System Logs Reboot System Startup Table C-4. System Logs Service Service LogsTable C-5. System Logs NTP Firewall Restart Login/LogoutIPsec Restart System Logs WAN Status, Auto Rollover Auto-Rollover ModeWAN Status ACTIVEWAN2 Load-Balancing Mode Table C-9. System Logs WAN Status, Load Balancing Table C-10. System Logs WAN Status, PPPoE Idle-Timeout PPP Logs Table C-11. System Logs WAN Status, Pptp Idle-Timeout Table C-12. System Logs WAN Status, PPP Authentication Unicast Logs Traffic Metering LogsIcmp Redirect Logs Table C-16. System Logs Multicast/Broadcast Invalid Packet LoggingMulticast/Broadcast Logs Table C-17. System Logs Invalid Packets Invalidmalformedpacketdrop SRC=192.168.20.10 Invalidbadchecksumdrop SRC=192.168.20.10Invalidbadhwchecksumdrop SRC=192.168.20.10 Invalidshortpacketdrop SRC=192.168.20.10 Content Filtering and Security Logs Web Filtering and Content Filtering Logs Table C-19. Content Filtering and Security Logs Spam Spam Logs Traffic Logs Table C-20. Content Filtering and Security Logs TrafficTable C-21. Content Filtering and Security Logs Virus Virus Logs IPS Logs Table C-23. Content Filtering and Security Logs IPSTable C-24. Content Filtering and Security Logs Port Scan Port Scan Logs LAN to DMZ Logs Routing LogsLAN to WAN Logs DMZ to WAN Logs DMZ to LAN Logs WAN to LAN LogsWAN to DMZ Logs V1.0, September Why do I need Two-Factor Authentication? What are the benefits of Two-Factor Authentication? Netgear Two-Factor Authentication Solutions What is Two-Factor Authentication Figure D-1 Figure D-3 Appendix E Related Documents Document Link V1.0, September Index Numerics Index-2 Index-3 Index-4 Index-5 Index-6 Index-7 Index-8 Index-9 Index-10 Index-11 Index-12 Index-13 Index-14 Index-15 Index-16