Network and System Management
331
ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N
You can also change the administrator login policies:
• Disable lo
gin. Deny login access.
Note: You obviously do not want to deny login access to yourself if you are
logged in as an administrator.
• Deny login access from a WAN interface. By default, the administrator cannot log in from
a WAN interface. You can change this setting to allow login access from a WAN interface.
• Den
y or allow login access from specific IP addresses. By default, the administrator can
log in from any IP address.
Note: For enhanced security, restrict access to as few external IP
addresses as practical.
• Deny or allow login access from specific browsers. By default, the administrator can log in
from any browser.
In general, these policy settings work well for a
n administrator. However, you can change the
administrator login policies as explained in Set User Login Policies on
page 306.
Configure Remote Management Access
An administrator can configure, upgrade, and check the status of the wireless VPN firewall
over the Internet through a Secure Sockets Layer (SSL) VPN connection.
Note: When remote management is enabled and administrative access
through a WAN interface is granted (see
Configure Login Policies on
page 306), the wireless VPN firewall’s web management interface is
accessible to anyone who knows its IP address and default
p
assword. Because a malicious WAN user can reconfigure the
wireless VPN firewall and misuse it in many ways, NETGEAR highly
recommends that you change the admin and guest default
passwords before continuing (see Change Passwords and
Administrator and Guest Settings on page 329).