1. Home
    2. /
  2. Manuals
    3. /
  3. 2Wire
    4. /
  4. 3801HGV
    5. /
  5. 18
Page 86 / 128 Scroll up to view Page 81 - 85
Configuring Firewall Settings
78
HomePortal 3801HGV Gateway User Guide
Configuring Firewall Settings
14.
Modify the information as per your requirement.
15.
Click
Add to List
. The configuration changes appear in the
Definition List
section of the
same page.
16.
Repeat step 8 to 15 for each port or range of ports required for the application profile.
Page 87 / 128
Configuring Firewall Settings
79
HomePortal 3801HGV Gateway User Guide
Configuring Firewall Settings
Deleting User-defined Applications
To delete a user defined application:
1.
Click
Edit or delete user-defined application
in the
Edit firewall settings for this computer
section. This lets you delete an existing profile. The
Edit or Delete a User-Defined
Application
page appears.
2.
Select the application you want to delete from the
User defined applications
list box.
3.
Click
Delete
. The configuration successful prompt confirms the deletion. You cannot view
the deleted application in the
User defined applications
list box.
Allowing all Applications
To allow all applications through firewall:
1.
On the
Allow device application traffic to pass through firewall
page,
select
Allow all
applications (DMZplus mode)
radio button. This will enable DMZplus mode.
DMZplus is used for hosting applications when hosted applications do not function
properly. When in DMZplus mode, the designated computer appears as if it is directly
connected to the Internet, has all unassigned TCP and UDP ports opened and pointed to it,
Page 88 / 128
Disabling Attack Detection
80
HomePortal 3801HGV Gateway User Guide
Configuring Firewall Settings
and can receive unsolicited network traffic from the Internet.The DMZplus mode
configuration page appears:
2.
Click
Save
.
3.
Confirm that the computer you selected is configured for DHCP
. If it is not, configure it for
DHCP
.
4.
Restart the computer. When the computer restarts, it receives a special IP address from
the system and all unassigned TCP and UDP ports are forwarded to it.
m
Use the DMZplus mode with caution. A computer in the DMZplus mode is less secure
because all available ports are open and all incoming Internet traffic is directed to this
computer.
Disabling Attack Detection
Objective
To disable a specific port in the attack detection section.
By default, attack detection is enabled on these ports by the firewall. However, some applications
and devices may require the use of specific data ports listed here. The gateway allows users to
open the necessary ports through the firewall.
Page 89 / 128
Disabling Attack Detection
81
HomePortal 3801HGV Gateway User Guide
Configuring Firewall Settings
Steps
1.
Navigate to
Settings
>
Firewall
>
Advanced Configuration
. The
Advanced Configuration
page to configure
Attack Detection
appears.
2.
Clear the
Excessive Session Detection
check box.
When disabled, the firewall does not detect applications on the local network that are
creating excessive sessions to the Internet. This activity is due to a virus infected
computer and on detection, the gateway displays a HURL warning page.
3.
Clear the
TCP/UDP Port Scan
check box.
When disabled, the firewall does not detect UDP and TCP port scans, and communicates
the port scan packets to the computer.
A port scan is a series of messages sent by an external entity attempting to break into a
computer to learn which computer network services associated with UDP and TCP ports
are provided by the computer.
4.
Clear the
Invalid Source/Destination IP address
check box.
When disabled, the firewall does not verify IP addresses for: Broadcast or multicast IP
addresses, TCP destination IP address is not unicast, IP source and destination address
are the same, Invalid IP source received from private/home network.
5.
Clear the
Packet Flood (SYN/UDP/ICMP/Other)
check box.
When disabled, the firewall does not check for SYN, UDP
, ICMP
, and other types of packet
floods on the local and Internet facing interfaces.
6.
Clear the
Invalid TCP Flag Attacks (NULL/XMAS/Other)
check box.
When disabled, the firewall does not scan inbound and outbound packets for invalid TCP
Flag settings, and communicates the packet that could result in NULL/XMAS/Other type of
attacks.
7.
Clear the
Invalid ICMP Detection
check box.
When disabled, the firewall does not check for invalid ICMP/code types, and
communicates the associated packets to the computer.
8.
Clear the
Miscellaneous
check box.
When disabled, the firewall does not scan any other type of inbound and outbound packets,
other than the ones listed in the
Attack Detection
section.
9.
Click
Save
. The ports listed in the
Attack Detection
section are disabled.
Page 90 / 128
Controlling Inbound and Outbound Traffic
82
HomePortal 3801HGV Gateway User Guide
Configuring Firewall Settings
Controlling Inbound and Outbound Traffic
Objective
To control inbound and outbound protocol control services, so that the firewall blocks or passes the
traffic from/to the network to/from the Internet.
Steps
1.
Navigate to
Settings
>
Firewall
>
Advanced Configuration
. The
Advanced configuration
page to configure the outbound and inbound protocols appears:
2.
Select or clear any check box in the
Outbound Protocol Control
section. If you select any of
the check boxes in the
Outbound Protocol Control
section, the firewall allows the traffic
from the network to pass through the firewall to the Internet.
3.
Select or clear any check box in the
Inbound Protocol Control
section. If you select any of
the check boxes in the
Inbound Protocol Control
section, the firewall allows the
corresponding protocol to pass from the Internet to the network.
4.
Click
Save
. This saves the configuration changes done to the inbound and outbound
protocol control.
Note
Allowing inbound traffic does not mean that the firewall automatically allows this type of
traffic to pass through the firewall to the network. Even if a particular protocol/application
type is allowed, the firewall still checks and blocks all unsolicited traffic from the Internet
unless the firewall is configured to pass the traffic by hosting an application profile.

Rate

4 / 5 based on 1 vote.

Popular 2Wire Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top