NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
FVS336Gv2 Firewall config to block local LAN Internet Access.
I am having problems configuring my FVS336Gv2 firewall. Currently all local network devices are able to connect with the Internet with no problem. Mostly personal computers accessing the Internet for web access, email, etc.
My goal is to block Internet access to some local network devices according to a Schedule based on their LAN Users group. The Outbound Policy looked like the easiest approach. I created an outbound policy that Block By Schedule and Allow otherwise for a specific LAN User (group). Activated and found that the device that should have been blocked was able to function normally. I know this would have only blocked one direction but that should have achieved my goal.
Eventually I tried to block ALL traffic by changing the Default Outbound Policy to Block Always and I created an Inbound Policy that was set to Any Service, Block All, Any WAN user. Again all local network devices connected to the Internet with NO connectivity issues.
In short the firewall was NOT preventing any devices from connecting to the internet. I feel that I must be overlooking something simple. It would appear that the firewall will NOT block ANY traffic originating from the LAN.
Any thought would be appreciated. As mentioned I am working with a FVS336Gv2, Version 4.3.1-18. all Vlan ports are set to Default and only one active WAN.
1 Reply
UPDATE: Since my last post I have updated the router with the latest firmware (4.3.3-5) and set the Default Outbound Policy to Block Always with no rules active. All local devices are still able to connect over the Internet. The firewall appears to block NOTHING. My basic setup is pretty simple. A variety of network devices (computers, nas, etc.) connect through the firewall/router to the Internet. No Tunnels or VPN connections.
My ISP does not support IPV6 so I have it disabled. All Lan ports are using the Default VLAN configuration. If I was Not trying to Block traffic I would be very happy with the Router/Firewall opperation. It's like there is one option to Activate the Firewall that I am overlooking?
Thanks in advance for any suggestions.
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
