Actiontec MI424-WR-Rev-F Router Manual PDF (Setup & Configuration Guide)

Page 111 / 211 Scroll up to view Page 106 - 110

FiOS Router User Manual

111

6.5

DMZ Host

The DMZ (De-Militarized Zone) host feature allows one device on the network to

operate outside the firewall. Designate a DMZ host:

To use an Internet service, such as an online game or video-conferencing

•

program, not present in the Port Forwarding list and for which no port range

information is available.

To expose one computer to all services without restriction or security.

•

Warning:

A DMZ host is not protected by the firewall and may be vulnerable

to attack. Designating a DMZ host may also put other computers in the

local network at risk. When designating a DMZ host, consider the security

implications and protect it if necessary.

To designate a local computer as a DMZ host:

Select

1.

DMZ Host

from the left side of any Security screen. The “DMZ Host”

screen appears.

Click in the “DMZ Host IP Address” check box, then enter the IP address of

2.

the computer to be designated as a DMZ host. Note that only one network

computer can be a DMZ host at any time.

Click

3.

Apply

.

Click in the “DMZ Host IP Address” check box again to disable the DMZ host.

Page 112 / 211

Conﬁguring Security Settings

6.6

Port Triggering

6

112

6.6

Port Triggering

Port triggering can be used for dynamic port forwarding configuration. By

setting port triggering rules, inbound traffic is allowed to arrive at a specific

network host using ports different than those used for the outbound traffic. The

outbound traffic triggers which ports inbound traffic is directed.

For example, a gaming server is accessed using UDP protocol on port 2222. The

gaming server responds by connecting the user using UDP on port 3333 when

starting gaming sessions. In this case, port triggering must be used, since it

conflicts with the following default firewall settings:

The firewall blocks inbound traffic by default.

•

The server replies to the FiOS Router’s IP, and the connection is not sent back

•

to the host, since it is not part of a session.

To resolve the conflict, a port triggering entry must be defined, which allows

inbound traffic on UDP port 3333 only after a network host generated traffic to

UDP port 2222. This results in accepting the inbound traffic from the gaming

server, and sending it back to the network host which originated the outgoing

traffic to UDP port 2222.

To use port triggering:

Select

1.

Port Triggering

from the left side of any Security screen. The “Port

Triggering” screen appears.

Select either “User Defined” or “Show All Services” from the drop-down list

2.

next to “Add.”

Page 113 / 211

FiOS Router User Manual

113

If Show All Services is selected in step 2, select a Service from the list. The

3.

service is added to the Port Triggering screen as an active protocol.

If User Defined is selected in step 2, the “Edit Port Triggering Rule” screen

4.

appears. Enter a service name in the appropriate text box, then configure its

inbound and outbound trigger ports by clicking the appropriate links.

6.7

Remote Administration

The FiOS Router can be accessed and controlled not only from within the local

network, but also from the Internet using remote adminstration.

To access, select

Remote Administration

from the left side of any Security

screen. The “Remote Administration” screen appears.

6.7a

Telnet

Telnet is used to create a command-line session and gain access to all system

settings and parameters using a text-based terminal. Select the Telnet port to be

used by clicking in the appropriate check box, then click

Apply

.

Page 114 / 211

Conﬁguring Security Settings

6.7

Remote Administration

6

114

6.7b

Web Management

Web Management is used to obtain access to the FiOS Router’s GUI and gain

access to all settings and parameters, using a web browser. Both secure (HTTPS)

and non-secure (HTTP) access is available. Select the port to be used by clicking

in the appropriate text box, then click

Apply

.

Note:

Telnet and Web Management remote administration access may be used

to modify or disable firewall settings. Local IP addresses and other settings can

also be changed, making it difficult or impossible to access the FiOS Router

from the local network. Therefore, remote adminstration access to Telnet or Web

Management services should be activated only when absolutely necessary.

6.7c

Diagnostic Tools

Diagnostic Tools are used for troubleshooting and remote system management

by a user or the ISP.

Note:

Encrypted remote administration is performed using a secure SSL

connection, and requires an SSL certificate. When accessing the FiOS Router

for the first time using encrypted remote administration, a warning appears

regarding certificate authentication because the FiOS Router’s SSL certificate is

self-generated. When encountering this message under these circumstances,

ignore it and continue. Even though this message appears, the self-generated

certificate is safe and provides a secure SSL connection.

Page 115 / 211

FiOS Router User Manual

115

6.8

Static NAT

Static NAT allows devices behind a firewall and configured with private IP

addresses appear to have public IP addresses on the Internet. This allows an

internal host, such as a web server, to have an unregistered (private) IP address

and still be accessible over the Internet. To configure static NAT:

Select

1.

Static NAT

from any Security screen. The “Static NAT” screen appears.

Click

2.

Add

. The “Add NAT/NAPT Rule” screen appears.

Select a source address from the “Specify Address” drop-down list in the

3.

“Local Host” row, or enter a IP address in the text box to the right.

Enter the public IP address in the “Public IP Address” text boxes.

4.

Select the WAN connection type from the “WAN Connection Type” drop-

5.

down list.

If using port forwarding, activate the “Enable Port Forwarding…” check box,

6.

then select a protocol from the “Protocol” drop-down menu.

Repeat these steps to add more static IP addresses from the network.

Rate

Popular Actiontec Models

Famous Router IPs

Famous Router Companies

Bookmark Our Site

Share