Until recently I used a Netgear DG434v4 (DGteam firmware), but I have recently bought a Billion 7800NXL to replace it.
I am very impressed by synch speed on my long line ADSL connection, and by stability overall.
But I am very confused by the firewall which is important to me as I run several servers. So basically I need Soho not domestic firewall facilities.
In particular:
1. I am finding it difficult to understand how to restrict incoming access to port forwarded services to a range of WAN IPs. On the DGTeam, I just defined a service (with separate port address translation if required) and referred to it in an incoming firewall rule defining permissions and restrictions in that rule.
2. The solutions proposed in this forum were helpful but worried me further - it appears you do this by restricting the outbound return leg of such connections? But the outbound firewall should not normally see those packets if the firewall is stateful? Is the firewall a stateful or am I just confused?
3. I cannot find a way of say 'log all inbound connections across the LAN interface', as it appears to do this I would have to put a global allow rule under inbound connections, which then could not be over-ruled by block rules, as there is no action rule on inbound connections. Which is not what I want. Also when I do this using internal IP ranges I seem to get the return leg from outbound connections as well, which is not 'stateful', and when using the external WAN ip it does not seem to catch many packets at all.
I may simply be misunderstanding, or I may have bought the wrong model (some posts for the 7800n seem to suggest it works better, and maybe this has been corrected in the 8800 series?).
All and any help would be greatly appreciated.
Mike