NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

firewall

8 Topics

Bridge 2 Networks with SRX5308 Help
Hello, Here is what I am trying to accomplish. Building A - 192.168.0.x Building B - 192.168.1.x I have a ubiquiti wifi antenna that is connecting both buildings for the SOLE purpose of building B, accessing building A's NAS Drive, 192.168.0.10 I have been told a bunch of how to scenarios, but i cant get it working right as in segmenting each network separate so both DHCP servers do not conflict. I want both networks to remain independant, only a handful of PC's at building B to access the Nas Drive at building A. (A VPN was not able to accomplish this fast enough, even with Gigabit Internet, SMD doesn't like VPN's). So i was told on the srx5308 to plug one of the antenna's into one of the Quad WAN Ports, lets say Wan2.. Give it a /29 IP Address. Then do the same on the other building (which has a non-netgear firewall).. but for now lets concentrate on the setup in building B with the Srx5308. This is what i was told: On the SRX5308 plug the bridge into one of the spare WAN ports and assign a small subnet (e.g. 172.16.10.1/29). Page 127 of the manual tells you how to setup static routes. Problem is, the srx5308 won't let me do this unless i put in a gateway and dns servers on the Wan2 port as far as i can tell. Also do i turn on DHCP on that /29 range or leave it solo and static the IPs in it.. Fwiw, i had this working buy just plugging everything in and using IP ALias's on the windows machines, but the dhcp servers on both ends could obviously not coexist.. I need to keep the network separate but have this one tunnel to get to that nas drive thru the antenna connection (the buildings are approx 900 ft away, the antennas work very very well). Appreciate any assistance.
Solved
SuBDivisions23
Aug 11, 2025 Place Business Pro Routers
160Views
0likes
24Comments
FVS318v3 slow speeds as Router fast as Hub what settings can I change (internally on netgear)
My FVS 318 v3 is only 7 & 8 Mbps as a Router but it speeds up to (94 & 67 Mbps when modem cable is moved from WAN to a LAN port. what inside the Netgear is slowing down speed. No Port Fwrd, no Rules, no VPN, just basic AUTO setup.
itdept_2
Jul 29, 2025 Place Business Pro Routers
28Views
0likes
2Comments
SRX5308 checksum on updated .cfg
I have an ISP that (too-) frequently changes the IP address of client systems. I often need to update the incoming firewall rules. This can be done by manually changing each rule for each remote system, but since the config files are saved in ASCII format, I'd like to edit that file and re-upload it to the firewall. But after doing so, re-uploading the file to the fire wall yields a checksum error on the 5308. Is there a way to: 1) regenerate the .cfg file's checksum 2) clear the checksum so the firewall's firmware knows to regenerate it? 3) is there a tool that will recalculate the checksum on an existing flat file? 4) have the firewall rules use a hostname instead of a fixed IP address? Updating many entries via the web interface is error-prone and time consuming. Is there a later firewall similar to the 5308 that has such a checksum-updating ability already implemented? Finally, I suppose an existing utility such as expect(1) could interactively update configs via the CLI interface, but I was hoping this might be an already-addressed issue. Thanks, John
secondjohn
May 23, 2025 Place Business Pro Routers
10Views
0likes
0Comments
ProSafe Firewall FVS336Gv3 firmware upgrade question
Hi all, I have a quick question regarding upgrading the firmware on a FVS336Gv3. It is currently running on 4.3.3-8 and I want to upgrade it to the latest 4.3.5-3, will the settings already in the device be retained or will they get wiped from the firmware upgrade? Thanks.
sedcom_pm
Jul 25, 2017 Place Business Pro Routers
3.2KViews
0likes
2Comments
FVS336Gv3 multi-NAT inbound firewall rules not working
I have about 30 Netgear FVS338 and a few FVS336Gv2 routers in use. I use them to firewall and provide multi-NAT between industrial machines and the WAN. The configuration has changed on the Gv3 models and I can't get a response from behind the firewall or from the router diagnostics page when using the WAN address. In the examples below the WAN is 10.62. Figure 1. Two different devices showing two different configuration options. Figures 2 and 3. I know the first one is wrong - it would only allow connection from that address. Have I set up the second one correctly to NAT WAN address 10.62.31.55 to LAN address 10.3.110.215? Q1: Is Figure 3 set up correctly? Q2: Why is it forcing me to create an address range? On the older routers I had the option of just one address. Q3: Is anyone aware of any problems with this router?
Solved
transistor
Oct 09, 2016 Place Business Pro Routers
5.7KViews
0likes
3Comments
FVS318G V2 DNS traffic getting through
Hi. I'm having an Issue with an FVS318G V2. I have only ping and port 8000 open for a specific address and all other traffic Is blocked but DNS requests are managing to get through. Is this even possible ? Could a virus/malware somehow pull this off and bypass the firewall ?
Reprovo
Oct 01, 2016 Place Business Pro Routers
3.3KViews
0likes
2Comments
IPSEC Site to Site FVS336 to FVS318
Hi Netgear Community, I want to set up a Site to Site connection between FVS336 and FVS318 at our costumer s office. At there site the FVS318 is behind a firewall. They forward ESP, AH and Port 500 UDP to the device. Is there any possibility to check the ports (like telnet)? Both routers were configured by wizard. I just changed the mode to aggressive and the SA lifetime to 86400. The local subnets are 10.9.8.x and 192.168.4.x. Thank you a lot for any suggestions.
vpnbeginner
Sep 01, 2015 Place Business Pro Routers
4KViews
0likes
1Comment
FVS336Gv2 Firewall config to block local LAN Internet Access.
I am having problems configuring my FVS336Gv2 firewall. Currently all local network devices are able to connect with the Internet with no problem. Mostly personal computers accessing the Internet for web access, email, etc. My goal is to block Internet access to some local network devices according to a Schedule based on their LAN Users group. The Outbound Policy looked like the easiest approach. I created an outbound policy that Block By Schedule and Allow otherwise for a specific LAN User (group). Activated and found that the device that should have been blocked was able to function normally. I know this would have only blocked one direction but that should have achieved my goal. Eventually I tried to block ALL traffic by changing the Default Outbound Policy to Block Always and I created an Inbound Policy that was set to Any Service, Block All, Any WAN user. Again all local network devices connected to the Internet with NO connectivity issues. In short the firewall was NOT preventing any devices from connecting to the internet. I feel that I must be overlooking something simple. It would appear that the firewall will NOT block ANY traffic originating from the LAN. Any thought would be appreciated. As mentioned I am working with a FVS336Gv2, Version 4.3.1-18. all Vlan ports are set to Default and only one active WAN.
Dusty2400
Aug 16, 2015 Place Business Pro Routers
4.9KViews
0likes
1Comment