NETGEAR UTM5EW-100NAS Router User Manual


 
Firewall Protection
154
ProSecure Unified Threat Management (UTM) Appliance
Configure Other Firewall Features
VLAN Rules
Attack Checks, VPN Pass-through, and Multicast Pass-through
Set Session Limits
Manage the Application Level Gateway for SIP Sessions and VPN Scanning
You can configure global VLAN rules, configure attack checks, set session limits, and
manage the application level gateway (ALG) for SIP sessions.
VLAN Rules
The VLAN Rules screen allows you to specify inter-VLAN firewall rules (that is, firewall rules
for VLANs that are created on the UTM) when inter-VLAN routing is not enabled (see
Configure a VLAN Profile on page 103). For example, you can create one VLAN with IP
address 192.168.1.0 and a second VLAN with IP address 192.168.2.0. You can then specify
a VLAN firewall rule to allow access from all 192.168.1.* IP addresses to a web server with IP
address 192.168.2.10 on the second VLAN and block all other traffic between the two
VLANs.
To create a VLAN rule:
1. Select Network Security > Firewall > VLAN Rules. The VLAN Rules screen displays.
(The following figure shows one rule in the VLAN Services table as an example.)
Figure 81.
2. Under the VLAN Services table, click the Add table button. The Add VLAN-VLAN Service
screen displays: