ProSafe Gigabit 8 Port VPN Firewall FVS318G Reference Manual
6-2 VPN Firewall and Network Management
v1.1, August 2010
VPN Firewall Features That Reduce Traffic
You can adjust the following features of the VPN firewall in such a way that the traffic load on the
WAN side decreases:
• LAN WAN outbound rules (also referred to as service blocking)
• DMZ WAN outbound rules (also referred to as service blocking)
• Content filtering (blocking sites)
• Source MAC filtering
Service Blocking
You can control specific outbound traffic (for example, from LAN to WAN and from DMZ to
WAN). The LAN WAN Rules screen and the DMZ WAN Rules screen list all existing rules for
outbound traffic. If you have not defined any rules, only the default rule will be listed. The default
rule allows all outgoing traffic. (See “Using Rules to Block or Allow Specific Kinds of Traffic” on
page 4-2 for the procedure on how to use this feature.)
Each rule lets you specify the desired action for the connections covered by the rule:
• BLOCK always
• BLOCK by schedule, otherwise Allow
• ALLOW always
• ALLOW by schedule, otherwise Block
As you define your firewall rules, you can further refine their application according to the
following criteria:
• LAN Users. These settings determine which computers on your network are affected by this
rule. Select the desired options:
– Any. All PCs and devices on your LAN.
– Single address. The rule will be applied to the address of a particular PC.
– Address range. The rule is applied to a range of addresses.
– Groups. The rule is applied to a group (see “Managing Groups and Hosts (LAN Groups)”
on page 3-5to assign PCs to a group using Network Database).
Warning: This feature is for advanced administrators only! Incorrect configuration will
cause serious problems.