NETGEAR DGN3500-100NAS Router User Manual


 
RangeMax Wireless-N DSL Gigabit Modem Router DGN3500 User Manual
3-10 Protecting Your Network
v1.0, November 2009
Considerations for Inbound Rules
If your external IP address is assigned dynamically by your ISP, the IP address might change
periodically as the DHCP lease expires. Consider using the Dynamic DNS screen so that
external users can always find your network.
If the IP address of the local server computer is assigned by DHCP, it might change when the
computer is rebooted. To avoid this, use the Reserved IP address feature in the LAN IP Setup
screen to keep the computer’s IP address constant.
Local computers must access the local server using the computer’s local LAN address
(192.168.0.11 in the example in the previous figure). Attempts by local computers to access
the server using the external WAN IP address will fail.
Outbound Rules (Service Blocking)
The modem router allows you to block the use of certain Internet services by computers on your
network. This is called service blocking or port filtering. You can define an outbound rule to block
Internet access from a local computer based on the following:
IP address of the local computer (source address)
IP address of the Internet site being contacted (destination address)
Time of day
Type of service being requested (service port number)
Following is an application example of outbound rules.
Outbound Rule Example: Blocking Instant Messenger
If you want to block Instant Messenger usage by employees during working hours, you can create
an outbound rule to block that application from any internal IP address to any external address
according to the schedule that you create in the Schedule screen.You can specify that the modem
router logs any attempt to use Instant Messenger during this blocked period. You can also open or
close AOL or MSN Instant Messenger ports: see the Firewall Rules screen in the “Order of
Precedence for Rules” section on page 3-12.