Page 61 / 88
Scroll up to view Page 56 - 60
Billion 400G
Router
Chapter 4: Configuration
58
URL Filter
URL (Uniform Resource Locator – e.g. an address in the form of
or
)
filter rules allow you to prevent users on your network from accessing particular websites by their URL. There are no
pre-defined URL filter rules; you can add filter rules to meet your requirements.
Enable/Disable:
To enable or disable URL Filter feature.
Block Mode:
A list of the modes that you can choose to check the URL filter rules. The default is set to
Always On.
²
Disabled:
No action will be performed by the Block Mode.
²
Always On:
Action is enabled. URL filter rules will be monitoring and checking at all hours of the day.
²
TimeSlot1 ~ TimeSlot16:
T
hese
are
user-defined
time
periods. You
may
specify
the
time period
during
which
the
URL
filter
rules
apply,
i.e.
during
working
hours.
For
setup
and
details, refer
to
Time
Schedule
section.
Keywords Filtering:
Allows blocking by specific keywords within a particular URL rather than having to specify a
complete URL (e.g. to block any image called “advertisement.gif”). When enabled, your specified keywords list will
be checked to see if any keywords are present in URLs accessed to determine if the connection attempt should be
blocked. Please note that the URL filter blocks web browser (HTTP) connection attempts using port 80 only.
For example
, if the URL is
, it will be dropped as the keyword “abcde” occurs in the
URL.
Domains Filtering:
This function checks the whole URL not the IP address, in URLs accessed against your list of
domains to block or allow.
If it is matched, the URL request will be sent (Trusted) or dropped (Forbidden).
For this
function to be activated, both check-boxes must be checked.
Here is the checking procedure:
1.
The
router
checks
the
domain
in
the
URL
to
determine
if
it
is
in
the
trusted
list.
If
it
is,
then
the
connection
attempt
is
sent
to
correct
the
remote
web
server.
Page 62 / 88
Billion 400G
Router
Chapter 4: Configuration
59
2.
If
not,
the
router
checks
if
the
domain
is
listed
in
the
forbidden
list.
If
it
is,
then
the connection
attempt
will
be
dropped.
3.
If the packet does not match either of the above two items, it is sent to the remote web server.
4.
Please be note that the completed URL, “www” + domain name shall be specified. For example to block
traffic to
www.google.com.au
, enter “
www.google
” or “
www.google.com
”
In the example below, the URL request for
www.abc.com
will be sent to the remote web server because it is listed in
the trusted list, whilst the URL request for
www.google
or
www.google.com
will be dropped, because
www.google
is
in the forbidden list.
Example:
Andy
wishes
to
disable
all
WEB
traffic
except
for
ones
listed
in
the
trusted
domain,
which would
prevent
Bobby
from
accessing
other
web
sites. Andy
selects
both
check
boxes
in
Domain Filtering
and
thinks
that
this
will
stop
Bobby.
But
Bobby
knows
this
function,
Domain
Filtering
,
ONLY disables
all
WEB
traffic
except
for
Trusted
Domain,
BUT
not
connections
using
IP
addresses.
In
this situation,
the
Block
surfing
by
IP
address
function
can
be
handy
and
helpful
to
Andy.
Now,
Andy
can prevent
Bobby
from
accessing
sites,
both
by
IP
and
by
domain
name.
Restrict URL Features:
This function enhances the restriction to your URL rules.
²
Block Java Applet:
This
function
can
block
Web
content
that
includes
a
Java
Applet.
This
is
to prevent
someone
who
wants
to
damage
your
system
via
standard
HTTP
protocol.
²
Block surfing by IP address:
This
prevents
someone
who
uses
the
IP
address
as
URL
from skipping
the
Domains
Filtering
function.
This
is
only
Activate
if
Domain
Filtering
is
enabled.
Page 63 / 88
Billion 400G
Router
Chapter 4: Configuration
60
IM / P2P Blocking
IM,
short
for
Instant
Messaging,
is
required
to
use
client
program
software
that
allows
users
to communicate,
exchanging
text
message,
with
other
IM
users,
in
real
time,
over
the
Internet.
A
P2P application,
known
as
Peer-to-Peer,
is
a
group
of
computer
users
who
share
files
to
specific
groups
of people
across
the
Internet.
Both
Instant
Messaging
and
Peer-to-Peer
applications
make
communication faster
and
easier,
but
your
network
can
become
increasingly
insecure
at
the
same
time.
This
router’s
IM and
P2P
blocking
system
helps
users
to
restrict
LAN
computers
from
access
to
the
commonly
used
IM, Yahoo
and
MSN,
and
P2P,
BitTorrent
and
eDonkey,
applications
over
the
Internet.
Instant Message Blocking:
The default is set to
Disabled.
²
Disabled:
The
Instant
Messaging
blocking
function
is
not
activated.
No
blocking
will
be performed.
²
Always On:
The
Instant
Messaging
blocking
function
is
activated.
Blocking
is
enabled.
²
TimeSlot1 ~ TimeSlot16:
T
hese
are
user-defined
time
periods. You
may
specify
the
time period
during
which
the
URL
filter
rules
apply,
i.e.
during
working
hours.
For
setup
and
details, refer
to
Time
Schedule
section.
Yahoo/MSN Messenger:
Select
this
box
to
block
either
Yahoo
and/or
MSN
Messenger.
Be
sure
that you
have
enabled
the
Instant
Message
Blocking
first.
Peer to Peer Blocking:
The default is set to
Disabled.
²
Disabled:
The
Instant
Messaging
blocking
function
is
not
active.
No
connections
will
be
blocked
²
Always On:
The
Instant
Messaging
blocking
function
is
activated.
Blocking
is
enabled.
²
TimeSlot1 ~ TimeSlot16:
T
hese
are
user-defined
time
periods. You
may
specify
the
time period
during
which
the
URL
filter
rules
apply,
i.e.
during
working
hours.
For
setup
and
details, refer
to
Time
Schedule
section.
BitTorrent
/
eDonkey:
Select
this
box
to
block
either
Bit
Torrent
and/or
eDonkey.
To
be
sure
you have
first
enabled
the
Peer
to
Peer
Blocking
function.
Page 64 / 88
Billion 400G
Router
Chapter 4: Configuration
61
Firewall Log
Firewall Log display log information of any unexpected action with your firewall settings.
Check the
Enable
box to activate the logs.
Log information can be seen in the
Status – Event Log
after enabling.
QoS - Quality of Service
The
QoS
function
helps
you
to
control
your
network
traffic
for
each
LAN
(Ethernet and/or
Wireless) application
that accesses
the
WAN
(Internet).
It
allows
you
to
control
the
quality
and
speed
of throughput
for
each
application,
when
the
system
is
running
with
a
fully
loaded
upstream
channel.
Here are the items within the
QoS
section:
Prioritization
and
Outbound / Inbound IP Throttling
(bandwidth
management).
Prioritization
There are three priority settings to be provided in the Router:
²
High
²
Normal
(The default is normal priority for all of traffic without setting)
²
Low
And the balances of utilization for each priority are High (60%), Normal (30%) and Low (10%).
To delete the application, you can choose the Delete option and then click Edit/Delete.
Page 65 / 88
Billion 400G
Router
Chapter 4: Configuration
62
Name
:
A
user-defined
description
identifying
this
new
policy/application.
Time Schedule
:
The
details
of
when
this
rule
of
your
prioritization
policy
is
active
.
Priority
: The priority given to each policy/application. The default setting is High; you may adjust this setting to fit
your requirements.
Protocol
: The name of supported protocol.
Source IP Address Range
: The source IP address or range of packets to be monitored.
Source Port
: The source port of packets to be monitored.
Destination IP address Range
: The destination IP address or range of packets to be monitored.
Destination Port
: The destination port of packets to be monitored.
DSCP Marking
:
Differentiated
Services
Code
Point
(DSCP),
it
is
the
first
6
bits
in
the
ToS
byte.
DSCP Marking
allows
users
to
assign
specific
application
traffic
to
be
executed
in
priority
by
the
backbone routers,
based
on
the
DSCP
value. See
Table
4.
The
DSCP
Mapping
Table:
Note:
To
be
sure
all
the
routers
on
the
backbones
network
have
the
capability
of
executing
and
checking
DSCP
so
as
to
provide
a
QoS
network.
Table 4: DSCP Mapping Table
DSCP Mapping Table
(Wireless) ADSL Router
Standard DSCP
Disabled
None
Best Effort
Best Effort (000000)
Premium
Express Forwarding (101110)
Gold service (L)
Class 1, Gold (001010)
Gold service (M)
Class 1, Silver (001100)
Gold service (H)
Class 1, Bronze (001110)
Silver service (L)
Class 2, Gold (010010)
Silver service (M)
Class 2, Silver (010100)
Silver service (H)
Class 2, Bronze (010110)
Bronze service (L)
Class 3, Gold (011010)
Bronze service (M)
Class 3, Silver (011100)
Bronze service (H)
Class 3, Bronze (011110)