Home » Netgear Manuals » Modems » Netgear DG834GUv5 » Manual Viewer

Netgear DG834GUv5 Reference Manual - Page 63

Firewall Rules, rules, you can block or allow access based on the service or application

Add to My Manuals
Save this manual to your list of manuals

Page 63 highlights

DG834G Reference Manual You can specify one trusted user, which is a computer that will be exempt from blocking and logging. Since the trusted user will be identified by an IP address, you should configure that computer with a fixed IP address. 7. Click Apply to save your settings. Firewall Rules Firewall rules are used to block or allow specific traffic passing through from one side of the router to the other. Inbound rules (WAN to LAN) restrict access by outsiders to private resources, selectively allowing only specific outside users to access specific resources. Outbound rules (LAN to WAN) determine what outside resources local users can have access to. A firewall has two default rules, one for inbound traffic and one for outbound. The default rules of the DG834G are: • Inbound: Block all access from outside except responses to requests from the LAN side. • Outbound: Allow all access from the LAN side to the outside. You can define additional rules that will specify exceptions to the default rules. By adding custom rules, you can block or allow access based on the service or application, source or destination IP addresses, and time of day. You can also choose to log traffic that matches or does not match the rule you have defined. You can change the order of precedence of rules so that the rule that applies most often will take effect first. See "Order of Precedence for Rules" on page 5-12 for more details. Protecting Your Network 5-5 v3.0, September 2005

Section	Page
DG834G Reference Manual	1
Product and Publication Details	3
Chapter 1 About This Manual	11
Audience, Scope, Conventions, and Formats	11
How to Print this Manual	12
Chapter 2 Introduction	15
About the ADSL Modem Router	15
Key Features	16
A Powerful, True Firewall	16
802.11 Standards-based Wireless Networking	17
Easy Installation and Management	17
Protocol Support	18
Virtual Private Networking (VPN)	19
Auto Sensing and Auto Uplink™ LAN Ethernet Connections	19
Content Filtering	20
Trend Micro Home Network Security	20
What’s in the Box?	21
The Router’s Front Panel	22
The Router’s Rear Panel	23
Chapter 3 Connecting the Router to the Internet	25
What You Need Before You Begin	25
Internet Configuration Requirements	25
Two Setup Methods: 1) Smart Wizard Setup 2) Manual Setup	26
Smart Wizard Setup	26
Manual Setup	27
Understanding ADSL Microfilters	27
ADSL Microfilter	27
ADSL Microfilter with Built-In Splitter	28
Computers Set to DHCP	28
Manually Setting Up Your ADSL Modem Router	28
Auto-Detecting Your Internet Connection Type	34
Wizard-Detected PPPoE Login Account Setup	34
Wizard-Detected PPPoA Login Account Setup	34
Wizard-Detected Dynamic IP Account Setup	35
Wizard-Detected IP Over ATM Account Setup	35
Wizard-Detected Fixed IP (Static) Account Setup	36
Testing Your Internet Connection	36
Manually Configuring Your Internet Connection	38
How to Perform Manual Configuration	38
Internet Connection Requires Login and Uses PPPoE	39
Internet Connection Requires Login and Uses PPPoA	40
Internet Connection Does Note Require A Login	41
ADSL Settings	42
Chapter 4 Wireless Configuration	43
Considerations for a Wireless Network	43
Observe Performance, Placement, and Range Guidelines	43
Implement Appropriate Wireless Security	44
Understanding Wireless Settings	46
How to Set Up and Test Basic Wireless Connectivity	49
How to Restricting Wireless Access to Your Network	50
Restricting Access to Your Network by Turning Off Wireless Connectivity	51
Restricting Wireless Access Based on the Wireless Network Name (SSID)	51
Restricting Wireless Access Based on the Wireless Station Access List	51
Choosing WEP Authentication and Security Encryption Methods	53
Authentication Type Selection	54
Encryption Choices	54
How to Configure WEP	55
How to Configure WPA-PSK	56
How to Configure WPA-802.1x	57
Chapter 5 Protecting Your Network	59
Protecting Access to Your 54 Mbps Wireless ADSL Modem Router Model DG834G	59
How to Change the Built-In Password	59
Changing the Administrator Login Timeout	60
Configuring Basic Firewall Services	60
Blocking Keywords, Sites, and Services	61
How to Block Keywords and Sites	61
Firewall Rules	63
Inbound Rules (Port Forwarding)	64
Inbound Rule Example: A Local Public Web Server	65
Outbound Rules (Service Blocking)	68
Order of Precedence for Rules	70
Services	70
How to Define Services	71
Setting Times and Scheduling Firewall Services	72
How to Set Your Time Zone	72
How to Schedule Firewall Services	73
Trend Micro Home Network Security	73
Security Service Settings	74
Parental Controls Settings	76
To enable Parental Controls:	76
To select Parental Controls Mode:	76
To configure General mode:	77
To configure Per-User mode:	77
Parental Controls Logs	78
Blocking criteria for potentially offensive categories	78
Chapter 6 Managing Your Network	81
Backing Up, Restoring, or Erasing Your Settings	81
How to Back Up the Configuration to a File	81
How to Restore the Configuration from a File	82
How to Erase the Configuration	82
Upgrading the ADSL Modem Router’s Firmware	82
How to Upgrade the ADSL Modem Router Firmware	83
Network Management Information	83
Viewing ADSL Modem Router Status and Usage Statistics	84
Viewing Attached Devices	89
Viewing, Selecting, and Saving Logged Information	89
Examples of Log Messages	92
Enabling Security Event E-mail Notification	93
Running Diagnostic Utilities and Rebooting the ADSL Modem Router	94
Enabling Remote Management	95
Configuring Remote Management	95
Chapter 7 Advanced Configuration	97
Configuring Advanced Security	97
Setting Up A Default DMZ Server	98
How to Configure a Default DMZ Server	98
Connect Automatically, as Required	99
Disable Port Scan and DOS Protection	99
Respond to Ping on Internet WAN Port	100
MTU Size	100
Configuring LAN IP Settings	100
DHCP	102
Use Router as DHCP server	103
Reserved IP addresses	103
How to Configure LAN TCP/IP Settings	104
Configuring Dynamic DNS	105
How to Configure Dynamic DNS	105
Using Static Routes	107
Static Route Example	107
How to Configure Static Routes	108
Universal Plug and Play (UPnP)	109
Chapter 8 Virtual Private Networking	111
Overview of VPN Configuration	112
Client-to-Gateway VPN Tunnels	112
Gateway-to-Gateway VPN Tunnels	113
Planning a VPN	113
VPN Tunnel Configuration	115
How to Set Up a Client-to-Gateway VPN Configuration	116
Step 1: Configuring the Client-to-Gateway VPN Tunnel on the DG834G	117
Step 2: Configuring the NETGEAR ProSafe VPN Client on the Remote PC	122
How to Set Up a Gateway-to-Gateway VPN Configuration	130
VPN Tunnel Control	137
Activating a VPN Tunnel	137
Verifying the Status of a VPN Tunnel	140
Deactivating a VPN Tunnel	142
Deleting a VPN Tunnel	145
How to Set Up VPN Tunnels in Special Circumstances	145
Using Auto Policy to Configure VPN Tunnels	146
Using Manual Policy to Configure VPN Tunnels	158
Chapter 9 Troubleshooting	161
Basic Functioning	161
Power LED Not On	162
Test LED Never Turns On or Test LED Stays On	162
LAN or WAN Port LEDs Not On	162
Troubleshooting the Web Configuration Interface	163
Troubleshooting the ISP Connection	164
ADSL link	164
WAN LED Blinking Yellow	164
WAN LED Off	164
Obtaining a WAN IP Address	165
Troubleshooting PPPoE or PPPoA	166
Troubleshooting Internet Browsing	166
Troubleshooting a TCP/IP Network Using the Ping Utility	167
Testing the LAN Path to Your Router	167
Testing the Path from Your Computer to a Remote Device	168
Restoring the Default Configuration and Password	169
Using the Reset button	169
Problems with Date and Time	169
Appendix A Technical Specifications	171
Appendix B Related Documents	173
Appendix C NETGEAR VPN Configuration	175
DG834G to FVL328	175
Configuration Profile	175
Step-By-Step Configuration	176
DG834G with FQDN to FVL328	181
Configuration Profile	181
The Use of a Fully Qualified Domain Name (FQDN)	182
Step-By-Step Configuration	183
Configuration Summary (Telecommuter Example)	188
Setting Up the Client-to-Gateway VPN Configuration (Telecommuter Example)	189
Step 1: Configuring the Client-to-Gateway VPN Tunnel on the VPN Router at the Employer’s Main Office	190
Step 2: Configuring the NETGEAR ProSafe VPN Client on the Remote PC at the Telecommuter’s Home Office	192
Monitoring the VPN Tunnel (Telecommuter Example)	200
Viewing the PC Client’s Connection Monitor and Log Viewer	200

Match case Limit results 1 per page

DG834G Reference Manual

Protecting Your Network

5-5

v3.0, September 2005

You can specify one trusted user, which is a computer that will be exempt from blocking and

logging. Since the trusted user will be identified by an IP address, you should configure that

computer with a fixed IP address.

Click Apply to save your settings.

Firewall Rules

Firewall rules are used to block or allow specific traffic passing through from one side of the router

to the other. Inbound rules (WAN to LAN) restrict access by outsiders to private resources,

selectively allowing only specific outside users to access specific resources. Outbound rules (LAN

to WAN) determine what outside resources local users can have access to.

A firewall has two default rules, one for inbound traffic and one for outbound. The default rules of

the DG834G are:

•

Inbound: Block all access from outside except responses to requests from the LAN side.

•

Outbound: Allow all access from the LAN side to the outside.

You can define additional rules that will specify exceptions to the default rules. By adding custom

rules, you can block or allow access based on the service or application, source or destination IP

addresses, and time of day. You can also choose to log traffic that matches or does not match the

rule you have defined.

You can change the order of precedence of rules so that the rule that applies most often will take

effect first. See

“Order of Precedence for Rules” on page 5-12

for more details.