DrayTek Vigor 2830 Router Manual PDF (Setup & Configuration Guide)

Page 156 / 357 Scroll up to view Page 151 - 155

Vigor2830 Series User’s Guide

144

4.4.2 General Setup

General Setup allows you to adjust settings of IP Filter and common options.

Here you can

enable or disable the

Call Filter

or

Data Filter

. Under some circumstance, your filter set can

be linked to work in a serial manner. So here you assign the

Start Filter Set

only. Also you

can configure the

Log Flag

settings,

Apply IP filter to VPN incoming packets

, and

Accept

incoming fragmented UDP packets

.

Click

Firewall

and click

General Setup

to open the general setup page.

General Setup Page

Such page allows you to enable / disable Call Filter and Data Filter, determine general rule for

filtering the incoming and outgoing data.

Call Filter

Check

Enable

to activate the Call Filter function. Assign a

start filter set for the Call Filter.

Data Filter

Check

Enable

to activate the Data Filter function. Assign a

start filter set for the Data Filter.

Accept large incoming…

Some on-line games (for example: Half Life) will use lots of

fragmented UDP packets to transfer game data. Instinctively

as a secure firewall, Vigor router will reject these fragmented

packets to prevent attack unless you enable “

Accept large

incoming fragmented UDP or ICMP Packets

”. By checking

this box, you can play these kinds of on-line games. If

security concern is in higher priority, you cannot enable

“

Accept large incoming fragmented UDP or ICMP

Packets

”.

Enable Strict Security

Firewall

Check the box to enable such function.

All the packets, while transmitting through Vigor router, will

be filtered by firewall settings configured by Vigor router if

such feature is enabled. If the firewall system does not have

any response (pass or block) for these packets, such as no

response coming from web content filter, then the router’s

Page 157 / 357

Vigor2830 Series User’s Guide

145

firewall will block the packets directly.

Default Rule Page

Such page allows you to choose filtering profiles including QoS, Load-Balance policy, WCF,

APP Enforcement, URL Content Filter, AI/AV, AS, for data transmission via Vigor router.

Filter

Select

Pass

or

Block

for the packets that do not match with

the filter rules.

Sessions Control

The number typed here is the total sessions of the packets that

do not match the filter rule configured in this page. The

default setting is 60000.

Quality of Service

Choose one of the QoS rules to be applied as firewall rule.

For detailed information of setting QoS, please refer to the

related section later.

Load-Balance Policy

Choose the WAN interface for applying Load-Balance Policy.

Page 158 / 357

Vigor2830 Series User’s Guide

146

User Management

Such item is available only when

Rule-Based

is selected in

User

Management>>General Setup

. The general firewall

rule will be applied to the user/user group/all users specified

here.

Note:

When there is no user profile or group profile

existed,

Create New User

or

Create New Group

item

will appear for you to click to create a new one.

APP Enforcement

Select an

APP Enforcement

profile for global IM/P2P

application blocking. If there is no profile for you to selelct,

please choose

[Create New]

from the drop down list in this

page to create a new profile. All the hosts in LAN must

follow the standard configured in the

APP Enforcement

profile selected here. For detailed information, refer to the

section of

APP Enforcement

profile setup. For

troubleshooting needs, you can specify to record information

for IM/P2P by checking the Log box. It will be sent to Syslog

server. Please refer to section

Syslog/Mail Alert

for more

detailed information.

URL Content Filter

Select one of the

URL Content Filter

profile settings

(created in

CSM>> URL Content Filter

) for applying with

this router. Please set at least one profile for choosing in

CSM>> URL Content Filter

web page first. Or choose

[Create New]

from the drop down list in this page to create a

new profile. For troubleshooting needs, you can specify to

record information for

URL Content Filter

by checking the

Log box. It will be sent to Syslog server. Please refer to

section

Syslog/Mail Alert

for more detailed information.

Web Content Filter

Select one of the

Web Content Filter

profile settings

(created in

CSM>> Web Content Filter

) for applying with

this router. Please set at least one profile for anti-virus in

CSM>> Web Content Filter

web page first. Or choose

[Create New]

from the drop down list in this page to create a

new profile. For troubleshooting needs, you can specify to

record information for

Web Content Filter

by checking the

Log box. It will be sent to Syslog server. Please refer to

section

Syslog/Mail Alert

for more detailed information.

Advance Setting

Click

Edit

to open the following window. However, it is

strongly recommended

to use the default settings here.

Page 159 / 357

Vigor2830 Series User’s Guide

147

Codepage

- This function is used to compare the characters

among different languages. Choose correct codepage can help

the system obtaining correct ASCII after decoding data from

URL and enhance the correctness of URL Content Filter. The

default value for this setting is ANSI 1252 Latin I. If you do

not choose any codepage, no decoding job of URL will be

processed. Please use the drop-down list to choose a

codepage.

If you do not have any idea of choosing suitable codepage,

please open Syslog. From Codepage Information of Setup

dialog, you will see the recommended codepage listed on the

dialog box.

Window size

– It determines the size of TCP protocol

(0~65535). The more the value is, the better the performance

will be. However, if the network is not stable, small value

will be proper.

Session timeout

– Setting timeout for sessions can make the

best utilization of network resources.

Page 160 / 357

Vigor2830 Series User’s Guide

148

4.4.3 Filter Setup

Click

Firewall

and click

Filter Setup

to open the setup page.

To edit or add a filter, click on the set number to edit the individual set. The following page

will be shown. Each filter set contains up to 7 rules. Click on the rule number button to edit

each rule. Check

Active

to enable the rule.

Filter Rule

Click a button numbered (1 ~ 7) to edit the filter rule. Click the

button will open Edit Filter Rule web page. For the detailed

information, refer to the following page.

Active

Enable or disable the filter rule.

Comment

Enter filter set comments/description. Maximum length is

23–character long.

Move Up/Down

Use

Up

or

Down

link to move the order of the filter rules.

Next Filter Set

Set the link to the next filter set to be executed after the current

filter run. Do not make a loop with many filter sets.

To edit

Filter Rule

, click the

Filter Rule

index button to enter the

Filter Rule

setup page.

Rate

Popular DrayTek Models

Famous Router IPs

Famous Router Companies

Bookmark Our Site

Share