Adding Routes for VPN Tunnel Clients | NETGEAR UTM5-100NAS guide

ProSecure Unified Threat Management (UTM) Appliance Reference Manual

3.Select the checkbox and complete the fields as explained Table 8-8.

Table 8-8.Client IP Address Range Settings

Item	Description (or Subfield and Description)

Client IP Address Range

Enable Full Tunnel Support	Select this checkbox to enable full tunnel support. If you leave this
	checkbox deselected (which is the default setting), split tunnel support is
	enabled, and you must add client routes (see “Adding Routes for VPN
	Tunnel Clients” on page 8-27).
	Note: When full tunnel support is enabled, client routes are not operable.
DNS Suffix	A DNS suffix to be appended to incomplete DNS search strings. This is
	an option.

Primary DNS Server	The IP address of the primary DNS server that is assigned to the VPN
	tunnel clients. This is an option.
	Note: If you do not assign a DNS server, the DNS settings remain
	unchanged in the VPN client after a VPN tunnel has been established.
Secondary DNS Server	The IP address of the secondary DNS server that is assigned to the VPN
	tunnel clients. This is an option.

Client Address Range Begin	The first IP address of the IP address range that you want to assign to
	the VPN tunnel clients.

Client Address Range End	The last IP address of the IP address range that you want to assign to
	the VPN tunnel clients.

4.Click Apply to save your settings. VPN tunnel clients are now able to connect to the UTM and receive a virtual IP address in the client address range.

Adding Routes for VPN Tunnel Clients

The VPN tunnel clients assume that the following networks are located across the VPN over SSL tunnel:

•The subnet that contains the client IP address (that is, PPP interface), as determined by the class of the address (Class A, B, or C).

•Subnets that are specified in the Configured Client Routes table on the SSL VPN Client screen.

If the assigned client IP address range is in a different subnet than the local network, or if the local network has multiple subnets, or if you select split mode tunnel operation, you must define client routes.

Virtual Private Networking Using SSL Connections

8-27

v1.0, January 2010

Image 299

NETGEAR UTM5-100NAS, UTM50-100NAS manual Adding Routes for VPN Tunnel Clients, Tunnel Clients on

Contents

NETGEAR, Inc Bestätigung des Herstellers/Importeurs TrademarksStatement of Conditions EU Regulatory Compliance Statement Terms Voluntary Control Council for Interference Vcci StatementAdditional Copyrights AES MD5 Product Name Product and Publication DetailsModel Number Publication Date January Product Family V1.0, January Contents Dual-WAN Port Models Only Chapter Manually Configuring Internet and WAN Settings Chapter LAN Configuration Chapter Content Filtering and Optimizing Scans Chapter Virtual Private Networking Using SSL Connections Changing Passwords and Administrator Settings Features That Reduce TrafficFeatures That Increase Traffic Using QoS and Bandwidth Assignment to Shift the Traffic Mix Configuring and Activating System, E-mail, and Syslog Logs Configuring Date and Time ServiceConfiguring Logging, Alerts, and Event Notifications Configuring the E-mail Notification Server Testing the Path from Your PC to a Remote Device Troubleshooting the ISP ConnectionTroubleshooting a TCP/IP Network Using a Ping Utility Testing the LAN Path to Your UTM Appendix D Two Factor Authentication Xvi Conventions, Formats, and Scope About This Manual Part Number Version Date Description How to Print This ManualRevision History Chapter Introduction Key Features and Capabilities Advanced VPN Support for Both IPsec and SSL Stream Scanning for Content Filtering Powerful, True Firewall Autosensing Ethernet Connections with Auto Uplink Security Features Extensive Protocol Support Easy Installation and Management Differences Between the UTM Models Maintenance and SupportModel Comparison Deployment Service Registration Card with License Keys Package Contents Front Panel Hardware Features DMZ LED LED DescriptionsObject Activity Description LAN Ports Receptacle Security lock Console port Reset button AC power ReceptacleRear Panel Bottom Panel With Product Label 4shows the product label for the UTM5 6shows the product label for the UTM25 Choosing a Location for the UTM Using the Rack-Mounting Kit V1.0, January Understanding the Steps for Initial Connection Using the Setup Wizard to Provision the UTM in Your Network Qualified Web Browsers Logging In to the UTM V1.0, January V1.0, January Understanding the Web Management Interface Menu Layout V1.0, January Using the Setup Wizard to Perform the Initial Configuration Setup Wizard of 10 LAN Settings Dhcp Setup Wizard LAN Settings Setting Description or Subfield and Description Setting Description or Subfield and Description DNS Proxy Setup Wizard of 10 WAN Settings ISP Type Setup Wizard WAN SettingsSetting Description or Subfield and Description ISP Login Get Automatically from ISP radio button Internet IP AddressISP Domain Name Server DNS Servers Setup Wizard of 10 System Date and Time Adjust for Daylight Savings Time checkbox Setup Wizard System Date and Time Settings Setup Wizard of 10 Services Peer-to-Peer P2P Setup Wizard Services SettingsWeb Instant Messaging Setting Description or Subfield and Description Action Setup Wizard of 10 Email SecuritySetup Wizard Email Security Settings Scan Exceptions Setup Wizard of 10 Web Security See Performance Management on Setup Wizard Web Security Settings Setup Wizard of 10 Web Categories to Be Blocked Blocked Categories Time of Day Setup Wizard Content Filtering SettingsBlocked Categories Scheduled Days Administrator Email Notification Settings Setup Wizard of 10 Email NotificationSetup Wizard Administrator Email Notification Settings Setup Wizard of 10 Signatures & Engine Update Frequency Setup Wizard of 10 Saving the ConfigurationSetup Wizard Signatures & Engine Settings Update Settings Registering the UTM with Netgear Verifying Proper InstallationTesting Connectivity Testing Http Scanning Click Register What to Do Next Understanding the Internet and WAN Configuration Tasks Manually Configuring Internet and WAN Settings Automatically Detecting and Connecting Configuring the Internet Connections V1.0, January Pptp Internet connection methodsConnection Method Data Required Manually Configuring the Internet Connection Setting the UTM’s MAC Address V1.0, January Pptp and PPPoE Settings Internet IP Address Settings DNS Server Settings Network Address Translation All Models Classical Routing All Models Configuring Auto-Rollover Mode Dual-WAN Port Models Only Setting Description or Subfield and Description Port Mode Auto-Rollover Mode Settings Dual-WAN Port Models Only WAN2 Configuring the Internet Connections onWAN1 V1.0, January Using the Services menu see Services-Based Rules on Protocol Binding Settings Dual-WAN Port Models Only Destination Configuring Secondary WAN Addresses V1.0, January Select Network Config Dynamic DNS from the menu Configuring Dynamic DNS V1.0, January WAN2 Dynamic DNS Status DNS Service Settings Configuring Advanced WAN Options Port Speed Advanced WAN SettingsSetting Description or Subfield and Description MTU Size Use Default Address radio button Upload/Download Settings Additional WAN-Related Configuration Tasks Managing Virtual LANs and Dhcp Options Chapter LAN Configuration Managing the UTM’s Port-Based VLANs V1.0, January Dhcp Server Vlan Dhcp Options DNS Proxy Dhcp Relay Ldap Server Configuring a Vlan Profile V1.0, January Vlan Vlan Profile SettingsVlan ID Port Membership Enable Dhcp Starting IP Inter Vlan Routing Configuring Multi-Home LAN IPs on the Default Vlan Managing Groups and Hosts LAN Groups Managing the Network Database V1.0, January Adding PCs or Devices to the Network Database Add Known PCs and Devices SettingsSetting Up Address Reservation on Editing PCs or Devices in the Network Database Changing Group Names in the Network Database Setting Up Address Reservation Configuring and Enabling the DMZ Port V1.0, January DMZ Setup Settings Own LAN IP address as the primary DNS server IP address Managing Routing Configuring Static Routes Static Route Settings Configuring Routing Information Protocol RIP Select Network Configuration Routing from the menu Out Only . RIP Configuration SettingsAuthentication for RIP-2B/2M Static Route Example V1.0, January About Firewall Protection Chapter Firewall Protection Administrator Tips Number of Supported Firewall Rule Configurations Using Rules to Block or Allow Specific Kinds of TrafficServices-Based Rules Outbound Rules Service Blocking Hosts LAN Groups on Customized Services onOutbound Rules Overview To Block or Allow Specific Traffic on NAT IP Inbound Rules Port Forwarding V1.0, January Inbound Rules Overview Hosts LAN Groups on Useful when debugging your rules Order of Precedence for Rules Setting LAN WAN Rules LAN WAN Outbound Services Rules LAN WAN Inbound Services Rules Setting DMZ WAN Rules V1.0, January DMZ WAN Outbound Services Rules DMZ WAN Inbound Services Rules Setting LAN DMZ Rules LAN DMZ Outbound Services Rules LAN DMZ Inbound Services Rules LAN WAN Inbound Rule Hosting a Local Public Web Server Inbound Rules Examples V1.0, January V1.0, January LAN WAN or DMZ WAN Inbound Rule Specifying an Exposed Host LAN WAN Outbound Rule Blocking Instant Messenger Outbound Rules Example Attack Checks Configuring Other Firewall Features Attack Checks Settings L2TP VPN Pass through Setting Session Limits Managing the Application Level Gateway for SIP Sessions Session Limit SettingsSession Timeout Adding Customized Services Creating Services, QoS Profiles, and Bandwidth Profiles V1.0, January TCP Services Settings Creating Quality of Service QoS Profiles V1.0, January Default High Medium High Low QoS Profile Settings Creating Bandwidth Profiles V1.0, January Bandwidth Profile Settings Setting a Schedule to Block or Allow Specific Traffic Enabling Source MAC Filtering V1.0, January Setting up IP/MAC Bindings IP/MAC Bindings IP/MAC Binding SettingsEvent Notifications on Configuring Port Triggering V1.0, January 10. Port Triggering Settings Using the Intrusion Prevention System V1.0, January V1.0, January Misc 11. IPS Less Familiar Attack NamesAttack Name Description or Subfield and Description Web About Content Filtering and Scans Content Filtering and Optimizing Scans Default E-mail and Web Scan Settings Default E-mail and Web Scan Settings Scan Type Default Scan Setting Default Action if applicable Configuring E-mail Protection Customizing E-mail Protocol Scan Settings Customizing E-mail Anti-Virus and Notification Settings Performance see Performance Management on E-mail Anti-Virus and Notification SettingsNotification Settings Mail Email Alert Settings FILENAME%, %ACTION%, %VIRUSNAME% Mail Content FilteringTIME%, %PROTOCOL%, %FROM%, %TO%, %SUBJECT% V1.0, January Filter by Password-Protected Attachments ZIP, RAR, etc E-mail Filter Settings Protected Attachments ZIP, RAR, etc. section above Password-Protected Attachments ZIP, RAR, etc. section aboveProtecting Against E-mail Spam Filter by File Name Setting Up the Whitelist and Blacklist V1.0, January Whitelist/Blacklist Settings Configuring the Real-time Blacklist V1.0, January Configuring Distributed Spam Analysis Distributed Spam Analysis Settings Block spam email Anti-Spam Engine SettingsLow Medium-Low Customizing Web Protocol Scan Settings and Services Configuring Web and Services Protection Setting Description or Subfield and Description Web Web Protocol, Instant Messaging, and Peer-to-Peer Settings Configuring Web Malware Scans Malware Scan Settings Html Scan Configuring Web Content Filtering V1.0, January Content Filtering, screen 1 10 Content Filtering, screen 2 11 Content Filtering, screen 3 Block Web Objects Content Filtering SettingsPerformance Management on Full-Text Search Blocked Categories Scheduled Days Netgear Configuring Web URL FilteringURL V1.0, January Blacklist URL Filtering SettingsSetting Description or Subfield and Description Whitelist URL% Https Scan Settings V1.0, January V1.0, January Specifying Trusted Hosts 10. Https Settings V1.0, January 11. Trusted Hosts Settings Configuring FTP Scans 12. FTP Scan Settings Block Files with the Following Extensions Setting Web Access Exceptions and Scanning ExclusionsSetting Web Access Exception Rules To set Web access exception rules Groups and Hosts LAN Groups on 13. Add and Edit Block Scanning Exception Settings Setting Scanning Exclusions 14. Add Scanning Exclusion Settings V1.0, January Chapter Virtual Private Networking Using IPsec Connections IP Addressing for VPNs in Dual WAN Port Systems UTM IP Addressing for VPNs in Dual WAN Port Systems Creating Gateway-to-Gateway VPN Tunnels with the Wizard V1.0, January Connection Name and Remote IP Type IPsec VPN Wizard Settings for a Gateway-to-Gateway Tunnel End Point Information a Secure Connection Remote AccessibilityManually Adding or Editing a VPN Policy on V1.0, January Creating a Client to Gateway VPN Tunnel V1.0, January Fqdn IPsec VPN Wizard Settings for a Client-to-Gateway Tunnel V1.0, January V1.0, January Status on Security Policy Editor Remote Party SettingsOnly Connect Manually checkbox Gateway Tunnel Security Policy Editor My Identity Settings On page 7-10. In this example, the domain name is Detection checkbox Testing the Connections and Viewing Status InformationTesting the VPN Connection Security Policy Editor Security Policy Settings Netgear VPN Client Status and Log Information V1.0, January System Tray Icon Status Viewing the UTM IPsec VPN Connection StatusStatus Indications for the VPN Client System Tray Icon IPsec VPN Connection Status Information Viewing the UTM IPsec VPN Log Managing IPsec VPN Policies IKE Policies Screen Managing IKE Policies List of IKE Policies Information Manually Adding or Editing an IKE Policy V1.0, January General 10. Add IKE Policy SettingsDescription or Subfield and Description Mode Config Record IKE SA Parameters LocalRemote Keepalives and Dead ConfiguringGroup 1 768 bit Group 5 1536 bit Configuration on Screen see User Database Configuration on VPN Policies Screen Managing VPN Policies Remote 11. List of VPN Policies Information Manually Adding or Editing a VPN Policy V1.0, January Dead Peer 12. Add VPN Policy SettingsConfiguring Keepalives Description or Subfield and Description General Manual Policy Parameters Traffic Selection Auto Policy Parameters Group 1536 bit Configuring Extended Authentication XauthGroup 768 bit Configuring Xauth for VPN Clients Information, see Radius Client Configuration on User Database ConfigurationRadius Client Configuration V1.0, January Primary Radius Server 14. Radius Client SettingsBackup Radius Server Connection Configuration Configuring Mode Config Operation on the UTM Assigning IP Addresses to Remote Users Mode ConfigMode Config Operation V1.0, January Description or Subfield and Description Client Pool 15. Add Mode Config Record Settings Traffic Tunnel Security Level V1.0, January 16. Add IKE Policy Settings for a Mode Config Configuration Menu, select Group 2 1024 bit Description or Subfield and Description Remote Configuring the ProSafe VPN Client for Mode Config Operation 192.168.1.0 Mask Gateway Tunnel 18. Security Policy Editor My Identity, Mode Config Settings Menu Testing the Mode Config Connection Configuring Keepalives and Dead Peer Detection Configuring Keepalives 20. Keepalive Settings Configuring Dead Peer Connection 21. Dead Peer Detection Settings Configuring NetBIOS Bridging with IPsec VPN V1.0, January Understanding the SSL VPN Portal Options Chapter Virtual Private Networking Using SSL Connections Using the SSL VPN Wizard for Client Configurations SSL VPN Wizard of 6 Portal Settings Screen as shown in -8 on SSL VPN Wizard Portal SettingsPortal Layout and Theme Name SSL VPN Portal Pages to Display SSL VPN Wizard of 6 Domain Settings Radius Client SSL VPN Wizard Domain SettingsDomain Name SSL VPN Wizard of 6 User Settings SSL VPN Wizard User Settings SSL VPN Wizard of 6 Client IP Address Range and Routes Add Routes for VPN Tunnel Clients SSL VPN Wizard Client IP Address Range and Routes SettingsClient IP Address Range SSL VPN Wizard of 6 Port Forwarding SSL VPN Wizard Port Forwarding Settings Add New Host Name for Port Forwarding SSH SSL VPN Wizard of 6 Verify and Save Your Settings Accessing the New SSL Portal Login Screen V1.0, January Viewing the UTM SSL VPN Log Viewing the UTM SSL VPN Connection Status Manually Configuring and Editing SSL Connections Creating the Portal Layout V1.0, January V1.0, January Revalidate Add Portal Layout Settings Configuring Applications for Port Forwarding Configuring Domains, Groups, and Users Adding Servers and Port Numbers TCP Application Port Number Adding a New Host NamePort Forwarding Applications/TCP Port Numbers Fully Qualified Domain Name. The full server name Configuring the SSL VPN Client Configuring the Client IP Address Range Tunnel Clients on Adding Routes for VPN Tunnel Clients Using Network Resource Objects to Simplify Policies Adding New Network Resources Editing Network Resources to Specify Addresses Add Resource Addresses Settings Configuring User, Group, and Global Policies Viewing Policies Adding a Policy Policy For 10. Add Policy Settings Network Resource Objects to Simplify Policies on Description or Subfield and Description Add SSL VPN Policies 10. Add Policy Settings V1.0, January V1.0, January Configuring VPN Authentication Domains, Groups, and Users Managing Users, Authentication, and Certificates Authentication Protocols and Methods Configuring Domains Ldap Add Domain Settings Creating the Portal Layout on Configuring Groups for VPN Policies Creating and Deleting Groups Editing Groups VPN Group Settings Configuring User Accounts V1.0, January Policies on Add User SettingsSee Configuring Extended Authentication Xauth on Configuring Login Policies Setting User Login Policies Configuring Login Restrictions Based on IP Address Add Defined Addresses Settings Configuring Login Restrictions Based on Web Browser Internet Explorer Opera Netscape Navigator Changing Passwords and Other User Settings Managing Digital Certificates Edit User SettingsEnabled see Configuring Extended Authentication Xauth on V1.0, January 11 Certificates, screen 1 Managing CA Certificates Managing Self Certificates Generating a CSR and Obtaining a Self Certificate from a CA Setting Generate Self Certificate Request Settings 512 1024 2048 V1.0, January Viewing and Managing Self Certificates Managing the Certificate Revocation List 15Certificates, screen 3 Bandwidth Capacity Performance Management Features That Reduce Traffic Network and System Management 10-3 Content Filtering Source MAC Filtering Features That Increase Traffic 10-6 Network and System Management Port Triggering Configuring the DMZ Port Assigning QoS Profiles Using QoS and Bandwidth Assignment to Shift the Traffic MixConfiguring Exposed Hosts Configuring VPN Tunnels Assigning Bandwidth Profiles Changing Passwords and Administrator SettingsSystem Management Monitoring Tools for Traffic Management 10-10 Network and System Management Network and System Management 10-11 Configuring Remote Management Access Https//IPaddress or https//FullyQualifiedDomainName Using an Snmp Manager Trusted Snmp Hosts Managing the Configuration FileSnmp Settings Setting Description or Subfield and Description Settings Backup Settings Restore Settings Updating the Firmware Reverting to Factory Default Settings Viewing the Available Firmware Versions Upgrading the Firmware and Rebooting the UTM Updating the Scan Signatures and Scan Engine Firmware Rebooting Without Changing the Firmware 10-22 Network and System Management Signatures & Scan Engine Settings Configuring Automatic Update and Frequency Settings System Date & Time Settings Configuring Date and Time Service Network and System Management 10-25 10-26 Network and System Management Enabling the WAN Traffic Meter Monitoring System Access and Performance 11-2 Monitoring System Access and Performance Logging, Alerts, and Event Notifications on WAN Traffic Meter SettingsTraffic Counter System, E-mail, and Syslog Logs on Configuring the E-mail Notification Server Configuring Logging, Alerts, and Event Notifications Server requires authentication checkbox and enter Configuring and Activating System, E-mail, and Syslog LogsE-mail Notification Settings Monitoring System Access and Performance 11-7 Email Logs to Administrator E-mail and Syslog Settings Send Logs via Syslog Configuring and Activating Update Failure and Attack Alerts Alerts Settings ACTION%, %VIRUSNAME% PROTOCOL%, %FROM%, %TO%, %SUBJECT%, %FILENAME% Configuring and Activating Firewall Logs Monitoring Real-Time Traffic, Security, and Statistics Firewall Logs Settings Dashboard, screen 1 System on Settings onSpam to configure, see Protecting Against E-mail Spam on Total Threats Total Traffic Bytes Threats Counts Prevention System on Categories, see Using the IntrusionDashboard Most Recent 5 and Top 5 Information Category Most Recent 5 Description Top 5 Description Dashboard, screen 3 Dashboard Service Statistics Information Viewing System Status Viewing Status Screens System Status Status and System Information Setting Status 11 System Status, screen 2 Dhcp NATLAN Port 11. System Status Interface Statistics Viewing Active VPN UsersViewing VPN Tunnel Connection Status 12. IPsec VPN Connection Status Information Viewing Port Triggering Status To view the status of the Port Triggering feature 13. Port Triggering Status Information Viewing the WAN Ports Status 11-28 Monitoring System Access and Performance Viewing Attached Devices Models see Manually Configuring the Internet Connection onEdit Vlan Profile screen see Configuring a Vlan Profile on Viewing Attached Devices and the Dhcp Log 11-30 Monitoring System Access and Performance Viewing the Dhcp Log Querying the Logs Querying Logs and Generating Reports Monitoring System Access and Performance 11-33 15. Logs Query Settings Following protocols can be selected See Configuring and Activating Firewall Logs onThis field is available for the following logs This field is available only for the Malware log Following categories can be selectedFollowing reasons can be selected This field is available only for the Spam log This field is available only for the Content filters log EMERG, ALERT, CRITICAL, ERROR, WARNING, NoticeThis field is available only for the Service log Log Management Example Using Logs to Identify Infected Clients Scheduling and Generating Reports Generating Reports System Reports 16. Generate Report SettingsEmail Reports Web Reports Scheduling Reports 17. Schedule Report Settings Report List Using Diagnostics UtilitiesEmail Reports Web Reports System Reports Sending a Ping Packet Using the Network Diagnostic Tools Looking up a DNS Address Tracing a RouteDisplaying the Routing Table 27 Diagnostics, screen 2 Using the Realtime Traffic Diagnostics Tool Generating Network Statistics Gathering Important Log Information Rebooting and Shutting Down the UTM Troubleshooting and Using Online Support Test LED Never Turns Off Power LED Not OnBasic Functioning LAN or WAN Port LEDs Not On Troubleshooting the Web Management Interface When You Enter a URL or IP Address a Time-out Error Occurs Troubleshooting the ISP Connection 12-6 Troubleshooting and Using Online Support Testing the LAN Path to Your UTM Troubleshooting a TCP/IP Network Using a Ping Utility Ping -n 10 IP address Testing the Path from Your PC to a Remote Device Restoring the Default Configuration and Password Enabling Remote Troubleshooting Problems with Date and TimeUsing Online Support Sending Suspicious Files to Netgear for Analysis Malware Analysis Settings Accessing the Knowledge Base and Documentation Local Network LAN Table A-1. UTM Default Configuration SettingsFeature Default behavior Router Login Internet Connection Table A-2. UTM Physical and Technical Specifications Setting Specification Table A-3. UTM IPsec VPN SpecificationsFeature Specification Environmental Specifications Interface Specifications MD5, SHA-1, MAC-MD5/SHA-1, HMAC-MD5/SHA-1 Table A-4. UTM SSL VPN Specifications What to Consider Before You Begin Internet WAN port Physical facility Cabling and Computer Hardware Requirements Computer Network Configuration RequirementsInternet Configuration Requirements Internet Connection Information Where Do I Get The Internet Configuration Information? Overview of the Planning Process Figure B-2 Inbound Traffic to a Single WAN Port System Inbound Traffic Inbound Traffic Dual WAN Ports for Load Balancing Inbound Traffic to a Dual WAN Port SystemInbound Traffic Dual WAN Ports for Improved Reliability To-Gateway Through a NAT Virtual Private Networks VPNsVPN Road Warrior Client To-Gateway Figure B-7 VPN Road Warrior Single Gateway WAN Port Reference Case VPN Road Warrior Client-to-Gateway Figure B-10 VPN Road Warrior Dual Gateway WAN Ports for Load Balancing VPN Gateway-to-Gateway Figure B-13 Figure B-15 VPN Telecommuter Single Gateway WAN Port Reference Case VPN Telecommuter Client-to-Gateway Through a NAT Router Figure B-18 Figure B-20 VPN Telecommuter Dual Gateway WAN Ports for Load Balancing Term Description or Subfield and Description Table C-1. Log Message Terms System Startup RebootTable C-3. System Logs Reboot System Log Messages Table C-5. System Logs NTP Service LogsTable C-4. System Logs Service IPsec Restart Login/LogoutFirewall Restart ACTIVEWAN2 Auto-Rollover ModeWAN Status System Logs WAN Status, Auto Rollover Table C-9. System Logs WAN Status, Load Balancing Load-Balancing Mode PPP Logs Table C-10. System Logs WAN Status, PPPoE Idle-Timeout Table C-12. System Logs WAN Status, PPP Authentication Table C-11. System Logs WAN Status, Pptp Idle-Timeout Icmp Redirect Logs Traffic Metering LogsUnicast Logs Table C-17. System Logs Invalid Packets Invalid Packet LoggingMulticast/Broadcast Logs Table C-16. System Logs Multicast/Broadcast Invalidshortpacketdrop SRC=192.168.20.10 Invalidbadchecksumdrop SRC=192.168.20.10Invalidbadhwchecksumdrop SRC=192.168.20.10 Invalidmalformedpacketdrop SRC=192.168.20.10 Web Filtering and Content Filtering Logs Content Filtering and Security Logs Spam Logs Table C-19. Content Filtering and Security Logs Spam Virus Logs Table C-20. Content Filtering and Security Logs TrafficTable C-21. Content Filtering and Security Logs Virus Traffic Logs Port Scan Logs Table C-23. Content Filtering and Security Logs IPSTable C-24. Content Filtering and Security Logs Port Scan IPS Logs DMZ to WAN Logs Routing LogsLAN to WAN Logs LAN to DMZ Logs WAN to DMZ Logs WAN to LAN LogsDMZ to LAN Logs V1.0, January What are the benefits of Two-Factor Authentication? Why do I need Two-Factor Authentication? What is Two-Factor Authentication Netgear Two-Factor Authentication Solutions Figure D-1 Figure D-3 Document Link Appendix E Related Documents V1.0, January Numerics Index Index-2 Index-3 Index-4 Index-5 Index-6 Index-7 Index-8 Index-9 Index-10 Index-11 Index-12 Index-13 Index-14 Index-15 Index-16