Billion BiPAC-7700N-R2 Router Manual PDF (Setup & Configuration Guide)

Page 81 / 168 Scroll up to view Page 76 - 80

78

Security

IP Filtering

IP filtering enables you to configure your router to block specified internal/external users (

IP address

)

from Internet access, or you can disable specific service requests (

Port number

) to /from Internet.

The relationship among all filters is

“or”

operation, which means that the router checks these

different filter rules one by one, starting from the first rule. As long as one of the rules is satisfied, the

specified action will be taken.

L

Outgoing

In this outgoing IP filter, by default, all outgoing traffic from LAN is

allowed

, but some IP traffic can

be

Blocked

by setting up rules.

If you want all the outgoing traffic from LAN to be blocked by default, only the rules set below can be

allowed, then please press

change the default policy.

Click

Add

to add new rules.

Page 82 / 168

79

Filter name:

a user-defined filter name or you can select from the drop-down menu the application,

and leave the automatically generated name as the Filter name.

IP Version:

IP Version

，

here IPv4.

Protocol:

Specify the packet type (TCP/UDP, TCP, UDP, ICMP) that the rule applies to.

Source IP Address / Destination IP Address:

This is the Address-Filter used to allow or block

traffic to/from particular IP address (es). Input the IP or IP/prefix (such as

single IP:

192.168.1.135/32. Subnet: 192.168.1.128/30

) you want to filter out. If you leave empty, it means any

IP address.

Source Port:

This Port defines the ports allowed to be used by the Remote/WAN to connect to the

application. Default is set from range

1 ~ 65535.

It is recommended that this option be configured by

an advanced user.

Destination Port:

This is the Port that defines the application. Default is set from range

1 ~ 65535.

For example, if there is an outgoing rule set as follows, then the 80 application between source IP

and destination IP will be blocked.

Page 83 / 168

80

L

Incomig

In this Incoming IP filter, all incoming IP traffic is

blocked

when firewall is enabled on a WAN or LAN

interface. But you can set up some rules to allow some IP traffic go through.

You can

change the default policy

to change the default IP incoming policy.

Click

Add

to add the new rules.

Filter name:

a user-defined filter name or you can select from the drop-down menu the application,

and leave the automatically generated name as the Filter name.

IP Version:

IP Version

，

here IPv4.

Page 84 / 168

81

Protocol:

Specify the packet type (TCP/UDP, TCP, UDP, ICMP) that the rule applies to.

Source IP Address / Destination IP Address:

This is the Address-Filter used to allow or block

traffic to/from particular IP address (es). Input the IP or IP/prefix ((such as

single IP:

192.168.1.135/32. Subnet: 192.168.1.128/30

) you want to filter out. If you leave empty, it means any

IP address.

Source Port:

This Port defines the ports allowed to be used by the Remote/WAN to connect to the

application. Default is set from range

1 ~ 65535.

It is recommended that this option be configured by

an advanced user.

Desitination Port:

This is the Port that defines the application. Default is set from range

1 ~ 65535.

WAN Interface and LAN Interface:

select one or more WAN/LAN interface displayed below to

apply this rule. Note: only the WAN interfaces in Routing mode and with firewall enabled will be

displayed.

Page 85 / 168

82

MAC Filtering

MAC Filtering is only effective on ATM PVCs configured in

Bridge

mode.

FORWARDED

means that all MAC layer frames will be

forwarded

except those matching with any

of the specified rules in the following table.

BLOCKED

means that all MAC layer frames will be

blocked

except those matching with any of the

specified rules in the following table.

By default, all MAC frames of the interface in Bridge Mode will be

forwarded

, you can check

Change

checkbox and then press

Change Policy

to change the settings to the interface.

For example, from above, the interface atm0.2 is of bridge mode, and all the MAC layer frames will

be forwarded, but you can set some rules to let someone matched the rules to blocked.

Click

Add

to add rules.

Protocol type:

select from the drop-down menu the protocol that applies to this rule.

Destination /Source MAC Address:

enter the destination/source address.

Frame Direction:

select the frame direction this rule applies, both LAN and WAN: LAN <=>WAN,

only LAN to WAN: LAN=>WAN, only WAN to LAN: WAN=>LAN.

WAN Interfaces:

select the interfaces configured in Bridge mode.

Rate

Popular Billion Models

Famous Router IPs

Famous Router Companies

Bookmark Our Site

Share