Netgear FVS318v3 Prosafe VPN Router [Page 2 of 3]

Misc Links

Ads

Age of Valor - Ultima Online Free Shard
AoS/SE/ML/Custom - advanced code, dedicated staff, peerless bosses, non overpowered customs + much much more

Latest Forum Topics

Possibly shutting down forum in near future
Posted by Red Squirrel
on Jan 21 2012, 5:19:43 pm

How to solve "ZoneMinder Console - Stopped"
Posted by Red Squirrel
on Jan 14 2012, 12:28:31 am

had fun on last day of 2011
Posted by rovingcowboy
on Jan 01 2012, 5:30:47 pm

Merry Christmas!
Posted by rovingcowboy
on Jan 01 2012, 5:11:32 pm

How to solve SMF directory not writable
Posted by Red Squirrel
on Oct 15 2011, 12:03:38 am

Netgear FVS318v3 Prosafe VPN Router
Everything you ever wanted for your network + more
By Red Squirrel

Security is a very big issue for any network, and not only is it important to be able to block malicious activity, but it's good to be aware when something is being blocked.

Logging
This router includes some nice logging features to let you know, and can even mail you immediately when a DoS attack or port scan is detected. You can choose what to include in the log by checking the checkboxes. You can also have it sent to a syslog server if you want.

Block Sites
You can also block sites based on keywords, while this features is very simplistic and not meant to replace a system such as Websense or Novell BorderManager, it will do the job for a home based network, to keep horny kids off porn sites, or if you want to block malicious ads like Casalemedia and tribalfusion popups, which make it past Firefox somehow. (Note: this may not stop the popup itself from loading as the code won't be blocked if it's on the trusted site, but it should stop any remote stuff from the blocked sites from loading in the popup)

Note: This feature does not work for https sites, and has a 32 word limit, so for more advanced blocking you're better off enforcing a proxy and disallowing outbound connections to port 80 and 443.

Rules
By default for outbound connections, nothing is blocked, while everything is blocked from coming in. By using services (we'll look at that after) you can create rules for denying access to outbound ports/IPs, and allowing inbound ports/IPs. (port forwarding, basically). This piggy backs on the services. So Let's say you want to forward port 80 to 10.1.1.10 well you choose the HTTP service to be allowed inbound and pick the IP it is sent to.

Services
The services menu enables you to create custom services, so when forwarding, you are not limited to the pre-made services. This is very similar to how rules are managed on a SonicWall.

Schedule
In the rule menu, when creating a rule you can choose to block by schedule or allow by schedule. This is where you setup a schedule. Unfortunatly you can't have separate schedules for separate rules, but perhaps something that will come with a later firmware. But this is still good for if there's some services such as an ftp server that you only use for work. So you can setup your schedule to cover your work hours only, so services you use from work will be enabled during that time, and that time only, increasing security, as you don't have to worry about it being accessible while you are sleeping, for example. You can also set the router to sync with a time server.

E-Mail
You can choose to set email notifications on, if you want to be emailed for certain events such as regular log emails, or immediate alerts on if you are under attack.

Virtual Private Network
In simple terms, VPN enables you to establish a secure, encrypted connection to this router from the internet, or from another router. A VPN link is almost as if the two networks were physically connected together, hence Virtual Private Network. This router supports various types of VPN such as site to site VPN. I'm not a VPN expert so in order to not give out any wrong information I'll simply give you screenshots of the VPN options.

VPN Wizard
IKE Policies
VPN Policies
CAs
Certificates
CRL
VPN Status

On the next page we'll take a look at the maintenance category and what it has to offer.

15850 Hits

Pages: [1] [2] [3]

23 Comments

Latest comments (newest first)

Posted by Onykage on January 01th 2006 (01:24)
lmao

werdem
spacer

Posted by Red Squirrel on January 01th 2006 (00:28)
Hmm or I can turn it into a really expensive looking hub, and a passive hub at that. A network admin's worse nightmare.
spacer

Posted by Onykage on January 01th 2006 (00:25)
lol.. that works too.=) Or. if you wanted to indevor into a really tight mod, use its guts on the inside of a nix router box, basically using it a switch that is directly wired into the ethernet of the server.

That sounds like such a good idea. I think Im going to stew on that some.
spacer

Posted by Red Squirrel on January 01th 2006 (18:36)
Hmm honestly never realized heat could be an issue, and given this problem is so on and off, it makes sense that heat would be the cause. I have a spare 80mm fan I'd have to try out some modding. Or I can go with my original plan of turning it into an ethernet cable tester.
spacer

Posted by Onykage on January 01th 2006 (13:12)
well, I have a solution to your problems.

First off, this particular model is a heatpump. The industrial grade versions come with 2x 40mm 25cfm fans. Outside of being loud, it is a solid machine. I personally own one, and Ive never had a problem out of it.

Now to fix the Fvs318 you will need to install some fans. I noticed alot of the problems that you guys are mentioning when i first installed this particular model over a year ago. Cooling it off is your fix. Once you get past that, it really is a sweet router for the money.

unfortunatly I dont quite know where I put the pics for the mod I did on the Netgear FVS318. But, I will try to dig them up and get them posted on here in the next week orso.

Lastly, the VPN problems mentioned,.. Im not pointing fingers or tring to pee in anyone's cheerios but, if your in the buisness of web-enterprise and you use consumer grade equipment, then the only person at fault is yourself. If by now you havnt figured it out, in the computer world, if you didnt pay for it, then you can NOT depend on it. The 318 is a small buisness/consumer grade model. I would personally recomend a cysco or medium grade intel model to be used in comercial and industrial environments.

goodluck, and i'll try to get those pics posted for those of you who are still tring to make your 318 work properly.
spacer

View all comments
Post comment

Top Articles	Latest Articles
- What are .bin files for? (28283 reads) - Text searching in linux with grep (22864 reads) - SPFDisk (Special Fdisk) Partition Manager (17120 reads) - Creating your own content management system with php (16869 reads) - PSP User's Guide (16611 reads)	- How to Use MDADM Linux Raid (14868 reads) - What is Cloud Computing? (14903 reads) - Dynamic Forum Signatures (version 2) (15270 reads) - Successfully Hacking your iPhone or iTouch (15974 reads) - Ultima Online Newbie Guide (16426 reads)