Manuals / NETGEAR / Computer Equipment / Network Hardware

NETGEAR UTM50-100NAS, UTM5-100NAS manual V1.0, January

Models: UTM5-100NAS UTM50-100NAS

1 484

Download 484 pages 53.33 Kb

Page 164

ProSecure Unified Threat Management (UTM) Appliance Reference Manual

Note: Traffic that passes on the UTM’s VLANs and on the secondary IP addresses that you have configured on the LAN Multi-homing screen (see “Configuring Multi- Home LAN IPs on the Default VLAN” on page 4-11) is also scanned by the IPS.

When you enable the IPS, the default IPS configuration goes into effect. The default IPS configuration is the configuration that the Advanced (IPS) screen returns to when you click the Reset button. To modify the default IPS configuration:

1.Select Network Security > IPS from the menu. The IPS submenu tabs appear, with the Global (IPS) screen in view (see Figure 5-30 on page 5-49).

2.From the IPS submenu tabs, click Advanced. The Advanced (IPS) screen displays see Figure 5-31 on page 5-51). This screen displays sections for the different categories of attacks such as Web, Mail, Databases, and so on.

3.In the Enabled column for each section, either select individual attacks by selecting the checkboxes to the left of the names, or select all attacks for that category by selecting the checkbox to the left of “All web attacks.”

4.In the Action column for each section, either select the actions for individual attacks by making selections from the pull-down menus to the right of the names, or select a global action for all attacks for that category by making a selection from the pull-down menu to the right of “All web attacks.” Some of the less familiar Web and miscellaneous attacks are explained in Table 5-11 on page 5-52.

The pull-down menus let you make one of the following actions:

•Alert. When an attack occurs, an alert is logged but the traffic that carries the attack is not dropped.

•Drop. The traffic that carries the attack is dropped and an alert is logged.

Note: To ensure that alerts are emailed to an administrator, you must configure the e-mail notification server (see “Configuring the E-mail Notification Server” on page 11-5) and the IPS alerts (see “Configuring and Activating Update Failure and Attack Alerts” on page 11-10).

5.Click Apply to save your settings.

5-50	Firewall Protection

v1.0, January 2010

Image 164

NETGEAR UTM50-100NAS, UTM5-100NAS manual V1.0, January

Contents

NETGEAR, Inc Trademarks Statement of ConditionsEU Regulatory Compliance Statement Bestätigung des Herstellers/ImporteursVoluntary Control Council for Interference Vcci Statement Additional CopyrightsAES TermsMD5 Product and Publication Details Model NumberPublication Date January Product Family Product NameV1.0, January Contents Chapter Manually Configuring Internet and WAN Settings Dual-WAN Port Models OnlyChapter LAN Configuration Chapter Content Filtering and Optimizing Scans Chapter Virtual Private Networking Using SSL Connections Features That Reduce Traffic Features That Increase TrafficUsing QoS and Bandwidth Assignment to Shift the Traffic Mix Changing Passwords and Administrator SettingsConfiguring Date and Time Service Configuring Logging, Alerts, and Event NotificationsConfiguring the E-mail Notification Server Configuring and Activating System, E-mail, and Syslog LogsTroubleshooting the ISP Connection Troubleshooting a TCP/IP Network Using a Ping UtilityTesting the LAN Path to Your UTM Testing the Path from Your PC to a Remote DeviceAppendix D Two Factor Authentication Xvi About This Manual Conventions, Formats, and ScopePart Number Version Date Description How to Print This ManualRevision History Chapter Introduction Key Features and Capabilities Advanced VPN Support for Both IPsec and SSL Powerful, True Firewall Stream Scanning for Content FilteringSecurity Features Autosensing Ethernet Connections with Auto UplinkEasy Installation and Management Extensive Protocol SupportDifferences Between the UTM Models Maintenance and SupportModel Comparison Service Registration Card with License Keys DeploymentPackage Contents Hardware Features Front PanelLED Descriptions Object Activity DescriptionLAN Ports DMZ LEDSecurity lock Console port Reset button AC power Receptacle Rear PanelBottom Panel With Product Label Receptacle4shows the product label for the UTM5 Choosing a Location for the UTM 6shows the product label for the UTM25Using the Rack-Mounting Kit V1.0, January Using the Setup Wizard to Provision the UTM in Your Network Understanding the Steps for Initial ConnectionLogging In to the UTM Qualified Web BrowsersV1.0, January V1.0, January Understanding the Web Management Interface Menu Layout V1.0, January Using the Setup Wizard to Perform the Initial Configuration Setup Wizard of 10 LAN Settings Setup Wizard LAN Settings DhcpSetting Description or Subfield and Description Setup Wizard of 10 WAN Settings Setting Description or Subfield and Description DNS ProxyISP Type Setup Wizard WAN SettingsSetting Description or Subfield and Description ISP Login Internet IP Address ISPDomain Name Server DNS Servers Get Automatically from ISP radio buttonSetup Wizard of 10 System Date and Time Setup Wizard System Date and Time Settings Adjust for Daylight Savings Time checkboxSetup Wizard of 10 Services Setup Wizard Services Settings WebInstant Messaging Peer-to-Peer P2PSetting Description or Subfield and Description Action Setup Wizard of 10 Email SecuritySetup Wizard Email Security Settings Setup Wizard of 10 Web Security Scan ExceptionsSetup Wizard Web Security Settings See Performance Management onSetup Wizard of 10 Web Categories to Be Blocked Blocked Categories Time of Day Setup Wizard Content Filtering SettingsBlocked Categories Scheduled Days Administrator Email Notification Settings Setup Wizard of 10 Email NotificationSetup Wizard Administrator Email Notification Settings Setup Wizard of 10 Signatures & Engine Setup Wizard of 10 Saving the Configuration Setup Wizard Signatures & Engine SettingsUpdate Settings Update FrequencyVerifying Proper Installation Testing ConnectivityTesting Http Scanning Registering the UTM with NetgearClick Register What to Do Next Manually Configuring Internet and WAN Settings Understanding the Internet and WAN Configuration TasksConfiguring the Internet Connections Automatically Detecting and ConnectingV1.0, January Pptp Internet connection methodsConnection Method Data Required Setting the UTM’s MAC Address Manually Configuring the Internet ConnectionV1.0, January Pptp and PPPoE Settings Internet IP Address Settings DNS Server Settings Network Address Translation All Models Configuring Auto-Rollover Mode Dual-WAN Port Models Only Classical Routing All ModelsAuto-Rollover Mode Settings Dual-WAN Port Models Only Setting Description or Subfield and Description Port ModeWAN2 Configuring the Internet Connections onWAN1 V1.0, January Protocol Binding Settings Dual-WAN Port Models Only Using the Services menu see Services-Based Rules onDestination Configuring Secondary WAN Addresses V1.0, January Configuring Dynamic DNS Select Network Config Dynamic DNS from the menuV1.0, January DNS Service Settings WAN2 Dynamic DNS StatusConfiguring Advanced WAN Options Advanced WAN Settings Setting Description or Subfield and Description MTU SizeUse Default Address radio button Port SpeedAdditional WAN-Related Configuration Tasks Upload/Download SettingsChapter LAN Configuration Managing Virtual LANs and Dhcp OptionsManaging the UTM’s Port-Based VLANs V1.0, January Vlan Dhcp Options Dhcp ServerDhcp Relay DNS ProxyConfiguring a Vlan Profile Ldap ServerV1.0, January Vlan Profile Settings Vlan IDPort Membership VlanEnable Dhcp Starting IP Inter Vlan Routing Configuring Multi-Home LAN IPs on the Default Vlan Managing Groups and Hosts LAN Groups Managing the Network Database V1.0, January Adding PCs or Devices to the Network Database Add Known PCs and Devices SettingsSetting Up Address Reservation on Changing Group Names in the Network Database Editing PCs or Devices in the Network DatabaseSetting Up Address Reservation Configuring and Enabling the DMZ Port V1.0, January DMZ Setup Settings Own LAN IP address as the primary DNS server IP address Managing Routing Configuring Static Routes Configuring Routing Information Protocol RIP Static Route SettingsSelect Network Configuration Routing from the menu Out Only . RIP Configuration SettingsAuthentication for RIP-2B/2M Static Route Example V1.0, January Chapter Firewall Protection About Firewall ProtectionAdministrator Tips Number of Supported Firewall Rule Configurations Using Rules to Block or Allow Specific Kinds of TrafficServices-Based Rules Outbound Rules Service Blocking Customized Services on Outbound Rules OverviewTo Block or Allow Specific Traffic on Hosts LAN Groups onInbound Rules Port Forwarding NAT IPV1.0, January Inbound Rules Overview Hosts LAN Groups on Useful when debugging your rules Order of Precedence for Rules Setting LAN WAN Rules LAN WAN Outbound Services Rules LAN WAN Inbound Services Rules Setting DMZ WAN Rules V1.0, January DMZ WAN Outbound Services Rules DMZ WAN Inbound Services Rules Setting LAN DMZ Rules LAN DMZ Outbound Services Rules LAN DMZ Inbound Services Rules Inbound Rules Examples LAN WAN Inbound Rule Hosting a Local Public Web ServerV1.0, January V1.0, January LAN WAN or DMZ WAN Inbound Rule Specifying an Exposed Host Outbound Rules Example LAN WAN Outbound Rule Blocking Instant MessengerConfiguring Other Firewall Features Attack ChecksAttack Checks Settings VPN Pass through L2TPSetting Session Limits Managing the Application Level Gateway for SIP Sessions Session Limit SettingsSession Timeout Creating Services, QoS Profiles, and Bandwidth Profiles Adding Customized ServicesV1.0, January Services Settings TCPCreating Quality of Service QoS Profiles V1.0, January QoS Profile Settings Default High Medium High LowCreating Bandwidth Profiles V1.0, January Bandwidth Profile Settings Setting a Schedule to Block or Allow Specific Traffic Enabling Source MAC Filtering V1.0, January Setting up IP/MAC Bindings IP/MAC Bindings IP/MAC Binding SettingsEvent Notifications on Configuring Port Triggering V1.0, January 10. Port Triggering Settings Using the Intrusion Prevention System V1.0, January V1.0, January Misc 11. IPS Less Familiar Attack NamesAttack Name Description or Subfield and Description Web Content Filtering and Optimizing Scans About Content Filtering and ScansDefault E-mail and Web Scan Settings Default E-mail and Web Scan SettingsConfiguring E-mail Protection Scan Type Default Scan Setting Default Action if applicableCustomizing E-mail Protocol Scan Settings Customizing E-mail Anti-Virus and Notification Settings Performance see Performance Management on E-mail Anti-Virus and Notification SettingsNotification Settings Email Alert Settings MailFILENAME%, %ACTION%, %VIRUSNAME% Mail Content FilteringTIME%, %PROTOCOL%, %FROM%, %TO%, %SUBJECT% V1.0, January E-mail Filter Settings Filter by Password-Protected Attachments ZIP, RAR, etcPassword-Protected Attachments ZIP, RAR, etc. section above Protecting Against E-mail SpamFilter by File Name Protected Attachments ZIP, RAR, etc. section aboveSetting Up the Whitelist and Blacklist V1.0, January Configuring the Real-time Blacklist Whitelist/Blacklist SettingsV1.0, January Configuring Distributed Spam Analysis Distributed Spam Analysis Settings Block spam email Anti-Spam Engine SettingsLow Medium-Low Configuring Web and Services Protection Customizing Web Protocol Scan Settings and ServicesWeb Protocol, Instant Messaging, and Peer-to-Peer Settings Setting Description or Subfield and Description WebConfiguring Web Malware Scans Malware Scan Settings Configuring Web Content Filtering Html ScanV1.0, January Content Filtering, screen 1 10 Content Filtering, screen 2 11 Content Filtering, screen 3 Content Filtering Settings Performance Management onFull-Text Search Block Web ObjectsBlocked Categories Scheduled Days Netgear Configuring Web URL FilteringURL V1.0, January Blacklist URL Filtering SettingsSetting Description or Subfield and Description Whitelist URL% Https Scan Settings V1.0, January V1.0, January 10. Https Settings Specifying Trusted HostsV1.0, January Configuring FTP Scans 11. Trusted Hosts Settings12. FTP Scan Settings Block Files with the Following Extensions Setting Web Access Exceptions and Scanning ExclusionsSetting Web Access Exception Rules To set Web access exception rules 13. Add and Edit Block Scanning Exception Settings Groups and Hosts LAN Groups onSetting Scanning Exclusions 14. Add Scanning Exclusion Settings V1.0, January Chapter Virtual Private Networking Using IPsec Connections UTM IP Addressing for VPNs in Dual WAN Port SystemsIP Addressing for VPNs in Dual WAN Port Systems Creating Gateway-to-Gateway VPN Tunnels with the Wizard V1.0, January IPsec VPN Wizard Settings for a Gateway-to-Gateway Tunnel Connection Name and Remote IP TypeEnd Point Information a Secure Connection Remote AccessibilityManually Adding or Editing a VPN Policy on V1.0, January Creating a Client to Gateway VPN Tunnel V1.0, January IPsec VPN Wizard Settings for a Client-to-Gateway Tunnel FqdnV1.0, January V1.0, January Security Policy Editor Remote Party Settings Only Connect Manually checkboxGateway Tunnel Status onSecurity Policy Editor My Identity Settings On page 7-10. In this example, the domain name is Testing the Connections and Viewing Status Information Testing the VPN ConnectionSecurity Policy Editor Security Policy Settings Detection checkboxNetgear VPN Client Status and Log Information V1.0, January System Tray Icon Status Viewing the UTM IPsec VPN Connection StatusStatus Indications for the VPN Client System Tray Icon Viewing the UTM IPsec VPN Log IPsec VPN Connection Status InformationManaging IPsec VPN Policies Managing IKE Policies IKE Policies ScreenList of IKE Policies Information Manually Adding or Editing an IKE Policy V1.0, January General 10. Add IKE Policy SettingsDescription or Subfield and Description Mode Config Record IKE SA Parameters LocalRemote Configuring Group 1 768 bitGroup 5 1536 bit Keepalives and DeadScreen see User Database Configuration on Configuration onManaging VPN Policies VPN Policies Screen11. List of VPN Policies Information RemoteManually Adding or Editing a VPN Policy V1.0, January 12. Add VPN Policy Settings Configuring KeepalivesDescription or Subfield and Description General Dead PeerTraffic Selection Manual Policy ParametersAuto Policy Parameters Group 1536 bit Configuring Extended Authentication XauthGroup 768 bit Configuring Xauth for VPN Clients Information, see Radius Client Configuration on User Database ConfigurationRadius Client Configuration V1.0, January 14. Radius Client Settings Backup Radius ServerConnection Configuration Primary Radius ServerConfiguring Mode Config Operation on the UTM Assigning IP Addresses to Remote Users Mode ConfigMode Config Operation V1.0, January 15. Add Mode Config Record Settings Description or Subfield and Description Client PoolTraffic Tunnel Security Level V1.0, January 16. Add IKE Policy Settings for a Mode Config Configuration Description or Subfield and Description Remote Menu, select Group 2 1024 bitConfiguring the ProSafe VPN Client for Mode Config Operation 192.168.1.0 Mask Gateway Tunnel 18. Security Policy Editor My Identity, Mode Config Settings Menu Configuring Keepalives and Dead Peer Detection Testing the Mode Config ConnectionConfiguring Keepalives Configuring Dead Peer Connection 20. Keepalive Settings21. Dead Peer Detection Settings Configuring NetBIOS Bridging with IPsec VPN V1.0, January Chapter Virtual Private Networking Using SSL Connections Understanding the SSL VPN Portal OptionsUsing the SSL VPN Wizard for Client Configurations SSL VPN Wizard of 6 Portal Settings Screen as shown in -8 on SSL VPN Wizard Portal SettingsPortal Layout and Theme Name SSL VPN Wizard of 6 Domain Settings SSL VPN Portal Pages to DisplayRadius Client SSL VPN Wizard Domain SettingsDomain Name SSL VPN Wizard of 6 User Settings SSL VPN Wizard User Settings SSL VPN Wizard of 6 Client IP Address Range and Routes Add Routes for VPN Tunnel Clients SSL VPN Wizard Client IP Address Range and Routes SettingsClient IP Address Range SSL VPN Wizard Port Forwarding Settings SSL VPN Wizard of 6 Port ForwardingSSH Add New Host Name for Port ForwardingSSL VPN Wizard of 6 Verify and Save Your Settings Accessing the New SSL Portal Login Screen V1.0, January Viewing the UTM SSL VPN Connection Status Viewing the UTM SSL VPN LogManually Configuring and Editing SSL Connections Creating the Portal Layout V1.0, January V1.0, January Add Portal Layout Settings RevalidateConfiguring Domains, Groups, and Users Configuring Applications for Port ForwardingAdding Servers and Port Numbers TCP Application Port Number Adding a New Host NamePort Forwarding Applications/TCP Port Numbers Configuring the SSL VPN Client Fully Qualified Domain Name. The full server nameConfiguring the Client IP Address Range Adding Routes for VPN Tunnel Clients Tunnel Clients onUsing Network Resource Objects to Simplify Policies Adding New Network Resources Editing Network Resources to Specify Addresses Configuring User, Group, and Global Policies Add Resource Addresses SettingsViewing Policies Adding a Policy 10. Add Policy Settings Policy ForDescription or Subfield and Description Add SSL VPN Policies Network Resource Objects to Simplify Policies on10. Add Policy Settings V1.0, January V1.0, January Managing Users, Authentication, and Certificates Configuring VPN Authentication Domains, Groups, and UsersConfiguring Domains Authentication Protocols and MethodsLdap Add Domain Settings Creating the Portal Layout on Configuring Groups for VPN Policies Creating and Deleting Groups VPN Group Settings Editing GroupsConfiguring User Accounts V1.0, January Policies on Add User SettingsSee Configuring Extended Authentication Xauth on Setting User Login Policies Configuring Login PoliciesConfiguring Login Restrictions Based on IP Address Configuring Login Restrictions Based on Web Browser Add Defined Addresses SettingsInternet Explorer Opera Netscape Navigator Changing Passwords and Other User Settings Managing Digital Certificates Edit User SettingsEnabled see Configuring Extended Authentication Xauth on V1.0, January Managing CA Certificates 11 Certificates, screen 1Managing Self Certificates Generating a CSR and Obtaining a Self Certificate from a CA Generate Self Certificate Request Settings Setting512 1024 2048 V1.0, January Managing the Certificate Revocation List Viewing and Managing Self Certificates15Certificates, screen 3 Performance Management Bandwidth CapacityFeatures That Reduce Traffic Network and System Management 10-3 Content Filtering Features That Increase Traffic Source MAC Filtering10-6 Network and System Management Configuring the DMZ Port Port TriggeringUsing QoS and Bandwidth Assignment to Shift the Traffic Mix Configuring Exposed HostsConfiguring VPN Tunnels Assigning QoS ProfilesChanging Passwords and Administrator Settings System ManagementMonitoring Tools for Traffic Management Assigning Bandwidth Profiles10-10 Network and System Management Network and System Management 10-11 Configuring Remote Management Access Https//IPaddress or https//FullyQualifiedDomainName Using an Snmp Manager Managing the Configuration File Snmp SettingsSetting Description or Subfield and Description Settings Trusted Snmp HostsBackup Settings Restore Settings Reverting to Factory Default Settings Updating the FirmwareViewing the Available Firmware Versions Upgrading the Firmware and Rebooting the UTM Rebooting Without Changing the Firmware Updating the Scan Signatures and Scan Engine Firmware10-22 Network and System Management Configuring Automatic Update and Frequency Settings Signatures & Scan Engine SettingsConfiguring Date and Time Service System Date & Time SettingsNetwork and System Management 10-25 10-26 Network and System Management Monitoring System Access and Performance Enabling the WAN Traffic Meter11-2 Monitoring System Access and Performance Logging, Alerts, and Event Notifications on WAN Traffic Meter SettingsTraffic Counter System, E-mail, and Syslog Logs on Configuring Logging, Alerts, and Event Notifications Configuring the E-mail Notification ServerServer requires authentication checkbox and enter Configuring and Activating System, E-mail, and Syslog LogsE-mail Notification Settings Monitoring System Access and Performance 11-7 E-mail and Syslog Settings Email Logs to AdministratorSend Logs via Syslog Configuring and Activating Update Failure and Attack Alerts Alerts Settings PROTOCOL%, %FROM%, %TO%, %SUBJECT%, %FILENAME% ACTION%, %VIRUSNAME%Configuring and Activating Firewall Logs Firewall Logs Settings Monitoring Real-Time Traffic, Security, and StatisticsDashboard, screen 1 Settings on Spam to configure, see Protecting Against E-mail Spam onTotal Threats System onThreats Counts Total Traffic BytesCategories, see Using the Intrusion Dashboard Most Recent 5 and Top 5 InformationCategory Most Recent 5 Description Top 5 Description Prevention System onDashboard Service Statistics Information Dashboard, screen 3Viewing Status Screens Viewing System StatusSetting Status System Status Status and System Information11 System Status, screen 2 Dhcp NATLAN Port 11. System Status Interface Statistics Viewing Active VPN UsersViewing VPN Tunnel Connection Status 12. IPsec VPN Connection Status Information To view the status of the Port Triggering feature Viewing Port Triggering StatusViewing the WAN Ports Status 13. Port Triggering Status Information11-28 Monitoring System Access and Performance Models see Manually Configuring the Internet Connection on Edit Vlan Profile screen see Configuring a Vlan Profile onViewing Attached Devices and the Dhcp Log Viewing Attached Devices11-30 Monitoring System Access and Performance Viewing the Dhcp Log Querying Logs and Generating Reports Querying the LogsMonitoring System Access and Performance 11-33 15. Logs Query Settings Following protocols can be selected See Configuring and Activating Firewall Logs onThis field is available for the following logs Following categories can be selected Following reasons can be selectedThis field is available only for the Spam log This field is available only for the Malware logThis field is available only for the Content filters log EMERG, ALERT, CRITICAL, ERROR, WARNING, NoticeThis field is available only for the Service log Example Using Logs to Identify Infected Clients Log ManagementScheduling and Generating Reports Generating Reports 16. Generate Report Settings Email ReportsWeb Reports System Reports17. Schedule Report Settings Scheduling ReportsReport List Using Diagnostics UtilitiesEmail Reports Web Reports System Reports Using the Network Diagnostic Tools Sending a Ping PacketLooking up a DNS Address Tracing a RouteDisplaying the Routing Table Using the Realtime Traffic Diagnostics Tool 27 Diagnostics, screen 2Gathering Important Log Information Generating Network StatisticsRebooting and Shutting Down the UTM Troubleshooting and Using Online Support Test LED Never Turns Off Power LED Not OnBasic Functioning Troubleshooting the Web Management Interface LAN or WAN Port LEDs Not OnWhen You Enter a URL or IP Address a Time-out Error Occurs Troubleshooting the ISP Connection 12-6 Troubleshooting and Using Online Support Troubleshooting a TCP/IP Network Using a Ping Utility Testing the LAN Path to Your UTMTesting the Path from Your PC to a Remote Device Ping -n 10 IP addressRestoring the Default Configuration and Password Enabling Remote Troubleshooting Problems with Date and TimeUsing Online Support Sending Suspicious Files to Netgear for Analysis Accessing the Knowledge Base and Documentation Malware Analysis SettingsTable A-1. UTM Default Configuration Settings Feature Default behavior Router LoginInternet Connection Local Network LANTable A-2. UTM Physical and Technical Specifications Table A-3. UTM IPsec VPN Specifications Feature Specification Environmental SpecificationsInterface Specifications Setting SpecificationTable A-4. UTM SSL VPN Specifications MD5, SHA-1, MAC-MD5/SHA-1, HMAC-MD5/SHA-1What to Consider Before You Begin WAN port Physical facility InternetCabling and Computer Hardware Requirements Computer Network Configuration RequirementsInternet Configuration Requirements Where Do I Get The Internet Configuration Information? Internet Connection InformationOverview of the Planning Process Figure B-2 Inbound Traffic Inbound Traffic to a Single WAN Port SystemInbound Traffic Dual WAN Ports for Load Balancing Inbound Traffic to a Dual WAN Port SystemInbound Traffic Dual WAN Ports for Improved Reliability Virtual Private Networks VPNs VPN Road Warrior ClientTo-Gateway To-Gateway Through a NATFigure B-7 VPN Road Warrior Client-to-Gateway VPN Road Warrior Single Gateway WAN Port Reference CaseFigure B-10 VPN Gateway-to-Gateway VPN Road Warrior Dual Gateway WAN Ports for Load BalancingFigure B-13 Figure B-15 VPN Telecommuter Client-to-Gateway Through a NAT Router VPN Telecommuter Single Gateway WAN Port Reference CaseFigure B-18 VPN Telecommuter Dual Gateway WAN Ports for Load Balancing Figure B-20Table C-1. Log Message Terms Term Description or Subfield and DescriptionReboot Table C-3. System Logs RebootSystem Log Messages System StartupTable C-5. System Logs NTP Service LogsTable C-4. System Logs Service IPsec Restart Login/LogoutFirewall Restart Auto-Rollover Mode WAN StatusSystem Logs WAN Status, Auto Rollover ACTIVEWAN2Load-Balancing Mode Table C-9. System Logs WAN Status, Load BalancingTable C-10. System Logs WAN Status, PPPoE Idle-Timeout PPP LogsTable C-11. System Logs WAN Status, Pptp Idle-Timeout Table C-12. System Logs WAN Status, PPP AuthenticationIcmp Redirect Logs Traffic Metering LogsUnicast Logs Invalid Packet Logging Multicast/Broadcast LogsTable C-16. System Logs Multicast/Broadcast Table C-17. System Logs Invalid PacketsInvalidbadchecksumdrop SRC=192.168.20.10 Invalidbadhwchecksumdrop SRC=192.168.20.10Invalidmalformedpacketdrop SRC=192.168.20.10 Invalidshortpacketdrop SRC=192.168.20.10Content Filtering and Security Logs Web Filtering and Content Filtering LogsTable C-19. Content Filtering and Security Logs Spam Spam LogsTable C-20. Content Filtering and Security Logs Traffic Table C-21. Content Filtering and Security Logs VirusTraffic Logs Virus LogsTable C-23. Content Filtering and Security Logs IPS Table C-24. Content Filtering and Security Logs Port ScanIPS Logs Port Scan LogsRouting Logs LAN to WAN LogsLAN to DMZ Logs DMZ to WAN LogsWAN to DMZ Logs WAN to LAN LogsDMZ to LAN Logs V1.0, January Why do I need Two-Factor Authentication? What are the benefits of Two-Factor Authentication?Netgear Two-Factor Authentication Solutions What is Two-Factor AuthenticationFigure D-1 Figure D-3 Appendix E Related Documents Document LinkV1.0, January Index NumericsIndex-2 Index-3 Index-4 Index-5 Index-6 Index-7 Index-8 Index-9 Index-10 Index-11 Index-12 Index-13 Index-14 Index-15 Index-16