Billion BiPAC 7300W Router Manual PDF (Setup & Configuration Guide)

Page 96 / 139 Scroll up to view Page 91 - 95

93

When using Virtual Servers (port mapping) your PCs are exposed to the

ports specified opened in your firewall packet filter settings.

5.3.4 Firewall

Firewall and Access Control

Your router includes a full SPI (Stateful Packet Inspection) firewall for controlling Internet

access from your LAN, as well as helping to prevent attacks from hackers. In addition to this,

when using NAT (Network Address Translation) the router acts as a “natural” Internet firewall,

since all PCs on your LAN use private IP addresses that cannot be directly accessed from

the Internet. See the

WAN

configuration section for more details on NAT.

Firewall

: Prevents access from outside your network.

NAT natural firewall

: This masks LAN users’ IP addresses, which are invisible to outside

users on the Internet, making it much more difficult for a hacker to target a machine on your

network. This natural firewall is on when the NAT function is enabled.

Page 97 / 139

94

Firewall Security and Policy (General Settings)

: Inbound direction of Packet Filter rules

prevent unauthorized computers or applications accessing your local network from the

Internet.

Intrusion Detection

: Enable Intrusion Detection to detect, prevent, and log malicious

attacks.

MAC Filter rules

: Prevents unauthorized computers accessing the Internet.

URL Filter

: Blocks PCs on your local network from unwanted websites.

A detailed explanation of each of the following five items appears in the

Firewall

section

below:

Packet Filter

,

MAC Address Filter, Intrusion detection, Block WAN PING

and

URL Filter.

Page 98 / 139

95

5.3.4.1 Packet Filter

Packet filtering enables you to configure your router to block specified internal/external

users (

IP address

) from Internet access, or you can disable specific service requests (

Port

number

) to /from Internet. This configuration program allows you to set up to 6 different filter

rules for different users based on their IP addresses or their network Port number. The

relationship among all filters is

“or”

operation, which means that the router checks these

different filter rules one by one, starting from the first rule. As long as one of the rules is

satisfied, the specified action will be taken.

Rule Name:

Users-define description to identify this entry. The maximum name length is

32 characters, and then can choose application that they want from listbox.

Internal IP Address / External IP Address:

This is the Address-Filter used to allow or

block traffic to/from particular IP address(es). Input the range you want to filter out. If you

leave empty or 0.0.0.0, it means any IP address.

Protocol:

Specify the packet type (TCP, UDP, ICMP, etc.) that the rule applies to.

Select

TCP

if you wish to search for the connection-based application service on the remote

server using the port number. Or select

UDP

if you want to search for the connectionless

application service on the remote server using the port number.

Action:

If a packet matches this filter rule,

Forward (allows the packets to pass)

or

Drop (disallow the packets to pass)

this packet.

Internal Port:

This Port or Port Range defines the ports allowed to be used by the

Remote/WAN to connect to the application. Default is set from range

0 ~ 65535.

It is

recommended that this option be configured by an advanced user.

External Port:

This is the Port or Port Range that defines the application.

Page 99 / 139

96

Direction:

Determine whether the rule is for outgoing packets or for incoming packets.

Time Schedule:

It is self-defined time period. You may specify a time schedule for your

prioritization policy. For setup and detail, refer to

Time Schedule

section.

Log:

Choose “log” if you wish to generate logs when the filer rule is applied to a packet.

Add:

Click this button to add a new packet filter rule and the added rule will appear at the

bottom table.

Edit:

Check the Rule No. you wish to edit, and then click “Edit”.

Delete: Check the Rule No. you wish to delete, and then click “Delete”.

Reorder:

Be aware that packet filtering parameters appear in priority order i.e. the first

one takes precedence over all other rules. There is a sort function next to the Rule Name

column, you can move the rule to higher or lower priority by clicking the Order arrow, and

press “Reorder” to save the new priority.

Click

Add

to add the item configured and the corresponding information will be listed below

just as the following.

Press

Edit

radio button, the item you want to re-edit will be displayed in the editing area, edit

then press

Edit/Delete

to confirm your modification. If you want to delete the rule, check

Delete, then press

Edit/Delete

to delete the rule.

If the DHCP server option is enabled, you must be very careful in assigning

IP addresses of a filtered private IP range to avoid conflicts because you do

not know which PC in the LAN is assigned which IP address. The easiest

and safest way is that the filtered IP address is assigned to a specific PC

that is not allowed to access an outside resource such as the Internet. You

configure the filtered IP address manually for this PC, but it stays in the

same subnet with the router.

Attention

Page 100 / 139

97

5.3.4.2 MAC Filter

A MAC (Media Access Control) address is the unique network hardware identifier for each

PC on your network’s interface (i.e. its Network Interface Card or Ethernet card). Using your

router’s MAC Address Filter function, you can configure to block specific machines from

accessing your LAN.

There are no pre-defined MAC address filter rules; you can add the filter rules to meet your

requirements.

The format of MAC address could be: xx:xx:xx:xx:xx:xx or xx-xx-xx-xx-xx-xx.

Filter Action

Action:

Select an action for MAC Filter. This feature is disabled by default. Check Allow

or Block to activate the filter.

Parameters

MAC Address:

Enter the Ethernet MAC addresses you wish to have the filter rule applies

to.

Time Schedule:

A self defined time period. You may specify a time schedule for your

prioritization policy. For setup and detail, refer to Time Schedule section.

For Add, Edit, Delete, see the

Packet filter.

Rate

Popular Billion Models

Famous Router IPs

Famous Router Companies

Bookmark Our Site

Share