Firewall Tab

36

Viewing Your Firewall Summary

The Firewall Summary page provides summary information and links to the most commonly used security-

related features of your system.

To access the Firewall Summary page:

•

Open a Web browser and access the gateway user interface by entering

•

Click the

Firewall

tab to open the View Firewall Summary page.

Figure 15. View Firewall Summary Page

The Firewall Settings panel displays the Current Settings for your firewall.

•

Default.

Unsolicited inbound traffic is not allowed to pass through the firewall.

•

Custom.

Applications are associated with computers on your network.

An access list shows the computers (Devices) on your network and the names of the Allowed Applications

for each computer. When you allow application traffic, external users on the Internet can have limited

access to your home network. This access might be required to allow some programs (such as game

servers or instant messaging software) to operate properly.

For example, a remote game player on the Internet might need to contact the game server program that you

have installed on your home network in order to play against you. Normally, the firewall blocks this

communication. By changing the firewall settings, this communication is permitted to pass through a

“pinhole” in the firewall. This function may be referred to as “port-mapping” or “port-forwarding” in your

software program documentation.

Firewall Tab

37

Click

VIEW DETAILS

to access the Firewall Details page, which shows a list of all the devices that have

applications configured in the firewall and the details of these configurations.

Figure 16. View Firewall Details Page

If you have the Firewall Monitor enhanced service, the Firewall Monitor panel shows a brief summary of the

number of attacks that were blocked for the current day and week. Click

VIEW DETAILS

to access the Monitor

the Firewall page.

Hosting an Application

When you host an application on your network for Internet users to access, you must configure the 2Wire

gateway firewall to pass through specific application data to a selected computer.

To host an application:

•

Open a Web browser and access the gateway user interface by entering

•

Click the

Firewall

tab.

Firewall Tab

38

•

Click the Firewall Settings

link under the tab to open the Edit Firewall Settings page.

Figure 17. Edit Firewall Settings Page

1.

From the

Select a computer

pull-down menu, select the computer that you wish to host the application.

2.

Click the

Allow individual application(s)

radio button.

3.

In the Applications panel, select an application.

4.

Click the

ADD >

button. The application you selected now appears in the Hosted Applications pane.

5.

Click

DONE

.

To stop hosting an application:

1.

In the Hosted Applications panel, select the application you wish to stop hosting.

2.

Click the

< REMOVE

button.

3.

Click

DONE

.

Firewall Tab

39

Updating the Application Profile List

If the application you want to host does not appear in the Application Profile list, you may need to update

the application list. If an update is available, the

UPDATE APPLICATION LIST

button appears above the list of

application profiles. If the application that you want to host is not included in the updated application list,

you may need to add your own application profile.

Adding an Application Profile

If you wish to host an application that is not included in the Application Profile list, you can add an

application using the Add Application Profile page.

An application profile configures your system’s firewall to pass through application-specific data. This

feature is typically used if the application for which you would like to pass through data to a given computer

is new or has been recently updated to a new version.

To create a new application profile:

•

Open a Web browser and access the gateway user interface by entering

•

Click the

Firewall

tab.

•

Click the Firewall Settings

link under the tab to open the Edit Firewall Settings page.

•

In the Applications panel, click the

Add a new user-defined application

link to open the Edit Application

page.

Figure 18. Edit Application Page

Firewall Tab

40

1.

In the

Application Name

field, enter a name for the application profile. You can enter any name you like,

although it’s recommended that you use the name of the application (for example, Redwing Game

Server).

2.

In the Definition panel, create a definition for your application.

A definition consists of a series of protocol-specific ports that are to be allowed through the firewall.

This information should be contained in the documentation provided by the company that produces the

application.

a.

In the

Protocol

field, select the

TCP

or

UDP

radio button. If the application you are adding requires

both, you must create a separate definition for each.

b.

In the

Port (or Range)

field, enter the port or port range the application uses.

For example, some applications may require only one port to be opened (such as TCP port 500);

others may require that all TCP ports from 600 to 1000 be opened.

c.

In the

Protocol Timeout (seconds)

field, you may optionally enter a value for the amount of time that

can pass before the application “times out.” You can also leave the field blank, in which case the

system uses the default values (86,400 seconds for the TCP protocol; 600 seconds for the UDP

protocol).

d.

In the

Map to Host Port

field, enter a value that will map the port range you established in step b to

the local computer. For example, if you set the value to 4000 and the range being opened is 100 to

108, the forwarded data to the first value in the range will be sent to 4000. Subsequent ports will

be mapped accordingly; 101 will be sent to 4001, 102 will be sent to 4002, etc.

e.

From the

Application Type

drop-down menu, select the application type. If you do not know the

application type, select None (Default).

3.

Click

ADD DEFINTION

to add the values to the profile definition list.

4.

Click

DONE

.

Repeat these steps for each port or range of ports required for the application profile.

To edit or delete an application profile:

•

Open a Web browser and access the 2Wire gateway user interface by entering

•

Click the

Firewall

tab.

•

Click the Firewall Settings

link under the tab to open the Edit Firewall Settings page.