Page 56 / 96 Scroll up to view Page 51 - 55
4.3.4.1 Packet Filter
Packet filtering enables you to configure your router to block specified internal/external
users (
IP address
) from Internet access, or you can disable specific service requests (
Port
number
) to /from Internet. This configuration program allows you to set up to 6 different filter
rules for different users based on their IP addresses or their network Port number. The
relationship among all filters is
“or”
operation, which means that the router checks these
different filter rules one by one, starting from the first rule. As long as one of the rules is
satisfied, the specified action is taken.
Add:
Click this button to add a new packet filter rule and the next figure appears.
Edit:
Check the Rule No. you wish to edit, and then click “Edit”.
Delete:
Check the Rule No. you wish to delete, and then click “Delete”.
54
Page 57 / 96
Application:
User can choose they want.
~
Outgoing
~
Incoming:
Determine whether the rule is for outgoing packets or for
incoming packets.
Active:
Choose “Yes” to enable the rule, or choose “No” to disable the rule.
Packet Type:
Specify the packet type (TCP, UDP, ICMP or any) that the rule applies to.
Select
TCP
if you wish to search for the connection-based application service on the remote
server using the port number. Or select
UDP
if you want to search for the connectionless
application service on the remote server using the port number.
Log:
Choose “Yes” if you wish to generate logs when the filer rule is applied to a packet.
Action When Matched:
If a packet matches this filter rule,
Forward
or
Drop
this packet.
Source IP Address:
Enter the incoming or outgoing packet’s source IP address(es).
Source Port:
Check the TCP or UDP packet’s source port number(s).
Destination IP Address:
Enter the incoming or outgoing packet’s destination IP
address(es).
Destination Port:
Check the TCP or UDP packet’s destination port number(s).
55
Page 58 / 96
Schedule time:
User can setup the time to use the packet filter.
Attention
If the DHCP server option is enabled, you must be very careful in assigning
IP addresses of a filtered private IP range to avoid conflicts because you do
not know which PC in the LAN is assigned which IP address. The easiest
and safest way is that the filtered IP address is assigned to a specific PC
that is not allowed to access an outside resource such as the Internet. You
configure the filtered IP address manually for this PC, but it stays in the
same subnet with the router.
4.3.4.2 MAC Address Filter
A MAC (Media Access Control) address is the unique network hardware identifier for each
PC on your network’s interface (i.e. its Network Interface Card or Ethernet card). Using your
router’s MAC Address Filter function, you can configure the switch to only accept traffic from
specified machines, or else to block specific machines from accessing your LAN.
There are no pre-defined MAC address filter rules; you can add the filter rules to meet your
requirements.
56
Page 59 / 96
Active:
Select
Yes
from the drop down list box to enable MAC address filtering.
Action When Matched:
Select “Drop” or “Forward”.
Log:
Choose “Yes” if you wish to generate logs when the filer rule is applied to a packet.
MAC Address:
Enter the MAC addresses you wish to manage.
57
Page 60 / 96
4.3.4.3 Intrusion Detection
Check “Enable” if you wish to detect intruders accessing your computer without permission.
The router automatically detects and blocks a DoS (Denial of Service) attack if a user
enables this function. This kind of attack is not to access confidential data on the network;
instead, it aims to disrupt specific equipment or the entire network. If this happens, users are
not able to access network resources.
58

Rate

4 / 5 based on 1 vote.

Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top