1. Home
    2. /
  2. Manuals
    3. /
  3. Billion
    4. /
  4. 400G
    5. /
  5. 11
Page 51 / 88 Scroll up to view Page 46 - 50
Billion 400G
Router
Chapter 4: Configuration
48
Packet Filter
This function is only available when the Firewall is enabled and one of these four security levels is chosen (All
blocked, High, Medium and Low).
The preset port filter rules in the Packet Filter must be modified according to the
level of Firewall, which is selected.
See
Table1: Predefined Port Filter
for more detailed information.
Page 52 / 88
Billion 400G
Router
Chapter 4: Configuration
49
Example:
Predefined Port Filters Rules
The predefined port filter rules for High, Medium and Low security levels are listed. See Table 1.
Note:
Firewall
For
Blocked/User-defined
,
you
must
define
and
create
the
port
filter
rules
yourself.
No predefined
rules
are
configured
for
these
modes.
Table 1: Predefined Port Filter
Application
Protocol
Port Number
Firewall - Low
Firewall - Medium
Firewall – High
Start
End
Inbound
Outbound
Inbound
Outbound
Inbound
Outbound
HTTP(80)
TCP(6)
80
80
NO
YES
NO
YES
NO
YES
DNS (53)
UDP(17)
53
53
NO
YES
NO
YES
NO
YES
DNS (53)
TCP(6)
53
53
NO
YES
NO
YES
NO
YES
FTP(21)
TCP(6)
21
21
NO
YES
NO
YES
NO
NO
Telnet(23)
TCP(6)
23
23
NO
YES
NO
YES
NO
NO
SMTP(25)
TCP(6)
25
25
NO
YES
NO
YES
NO
YES
POP3(110)
TCP(6)
110
110
NO
YES
NO
YES
NO
YES
NEWS(NNTP)
(Network
News
Transfer
Protocol)
TCP(6)
119
119
NO
YES
NO
YES
NO
NO
RealAudio/
RealVideo
(7070)
UDP(17)
7070
7070
YES
YES
YES
YES
NO
NO
PING
ICMP(1)
N/A
N/A
NO
YES
NO
YES
NO
YES
H.323(1720)
TCP(6)
1720
1720
YES
YES
NO
YES
NO
NO
T.120(1503)
TCP(6)
1503
1503
YES
YES
NO
YES
NO
NO
SSH(22)
TCP(6)
22
22
NO
YES
NO
YES
NO
NO
NTP /SNTP
UDP(17)
123
123
NO
YES
NO
YES
NO
YES
HTTP/HTTP
Proxy
(8080)
TCP(6)
8080
8080
NO
YES
NO
NO
NO
NO
HTTPS(443)
TCP(6)
443
443
NO
YES
NO
YES
N/A
N/A
ICQ (5190)
TCP(6)
5190
5190
YES
YES
N/A
N/A
N/A
N/A
Page 53 / 88
Billion 400G
Router
Chapter 4: Configuration
50
MSN (1863)
TCP(6)
1863
1863
YES
YES
N/A
N/A
N/A
N/A
MSN (7001)
UDP(17)
7001
7001
YES
YES
N/A
N/A
N/A
N/A
MSN
VEDIO
(9000)
TCP(6)
9000
9000
NO
YES
N/A
N/A
N/A
N/A
Inbound:
Internet to LAN ;
Outbound:
LAN to Internet.
YES:
Allowed ;
NO:
Blocked ;
N/A:
Not Applicable
Packet Filter – Add TCP/UDP Filter
Rule Name:
Users-define description to identify this entry or click “
Select” drop-down menu
to select existing
predefined rules. The maximum name length is 32 characters.
Time Schedule:
It is self-defined time period.
You may specify a time schedule for your prioritization policy. For
setup and detail, refer to
Time Schedule
section
Source IP Address(es) / Destination IP Address(es):
This is the Address-Filter used to allow or block traffic
to/from particular IP address(es).
Selecting the
Subnet Mask
of the IP address range you wish to allow/block the
traffic to or form; set IP address and Subnet Mask to
0.0.0.0
to inactive the Address-Filter rule.
Tip:
To block access, to/from a single IP address, enter that IP address as the
Host IP Address
and use a
Host
Subnet Mask
of “255.255.255.255”.
Source Port:
This Port or Port Range defines the port allowed to be used by the Remote/WAN to connect to the
application. Default is set from range
0 ~ 65535.
It is recommended that this option only be configured by advanced
users.
Destination Port:
This is the Port or Port Ranges that define the application.
Type:
It is the packet protocol type used by the application, select
TCP
,
UDP
or both
TCP/UDP
.
Protocol Number:
Insert the port number.
Inbound / Outbound:
Select
Allow
or
Block
the access to the Internet (
“Outbound”
) or from the Internet
(
“Inbound”
).
Click
Add
button to apply your changes
.
Page 54 / 88
Billion 400G
Router
Chapter 4: Configuration
51
Packet Filter – Add Raw IP Filter
Go to “Type” drop-down menu, select “Use Protocol Number”.
Rule Name Helper:
Specifies a
user-defined
description
identifying
this
entry
or click the drop-down menu
to
select existing predefined rules.
Time Schedule:
T
his
is
the
user-defined
time
period
applicable
to
the
rule. You
may
specify
a
time schedule
for
your
prioritization
policy.
For
setup
and
detail,
refer
to
Time
Schedule
section.
Protocol Number:
Insert the port number, i.e. GRE 47.
Inbound / Outbound:
Select
Allow
or
Block
the access to the Internet (
“Outbound”
) or from the Internet
(
“Inbound”
).
Click
Add
button to apply your changes.
Page 55 / 88
Billion 400G
Router
Chapter 4: Configuration
52
Example: Configuring your firewall to allow a publicly accessible web server on your LAN
The predefined port filter rule for HTTP (TCP port 80) is the same no matter whether the firewall is set to a high,
medium or low security level. To setup a web server located on the local network when the firewall is enabled, you
have to configure the Port Filters setting for HTTP.
As you can see from the diagram below, when the firewall is enabled with one of the three presets
(Low/Medium/High), inbound HTTP access is not allowed which means remote access through HTTP to your router
is not allowed.
Note:
Inbound indicates accessing from Internet to LAN and Outbound is from LAN to the Internet.

Rate

3.5 / 5 based on 2 votes.

Popular Billion Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top