Vigor2800 Series User’s Guide

55

IP spoofing. A Land attack occurs when an attacker sends spoofed

SYN packets with the identical source and destination addresses, as

well as the port number to victims.

Block Unknown

Protocol

Check the box to activate the Block Unknown Protocol function.

Individual IP packet has a protocol field in the datagram header to

indicate the protocol type running over the upper layer. However,

the protocol types greater than 100 are reserved and undefined at

this time. Therefore, the router should have ability to detect and

reject this kind of packets.

Warning Messages

We provide Syslog function for user to retrieve message from Vigor

router. The user, as a Syslog Server, shall receive the report sending

from Vigor router which is a Syslog Client.

All the warning messages related to

DoS defense

will be sent to user

and user can review it through Syslog daemon. Look for the

keyword

DoS

in the message, followed by a name to indicate what

kind of attacks is detected.

3.4.7 URL Content Filter

Based on the list of user defined keywords, the

URL Content Filter

facility in Vigor router

inspects the URL string in every outgoing HTTP request. No matter the URL string is found

full or partial matched with a keyword, the Vigor router will block the associated HTTP

connection.

For example, if you add key words such as “sex”, Vigor router will limit web access to web

sites or web pages such as “www.sex.com”, ”www.backdoor.net/images/sex/p_386.html”.

Or you may simply specify the full or partial URL such as “www.sex.com” or “sex.com”.

Also the Vigor router will discard any request that tries to retrieve the malicious code.

Click

Firewall

and click

URL Content Filter

to open the setup page.

Vigor2800 Series User’s Guide

56

Enable URL Access

Control

Check the box to activate URL Access Control.

Black List (block those

matching keyword)

Click this button to restrict accessing into the corresponding

webpage with the keywords listed on the box below.

White List (pass those

matching keyword)

Click this button to allow accessing into the corresponding

webpage with the keywords listed on the box below.

Keyword

The Vigor router provides 8 frames for users to define keywords

and each frame supports multiple keywords. The keyword could be

a noun, a partial noun, or a complete URL string. Multiple

keywords within a frame are separated by space, comma, or

semicolon. In addition, the maximal length of each frame is

32-character long. After specifying keywords, the Vigor router will

decline the connection request to the website whose URL string

matched to any user-defined keyword. It should be noticed that the

more simplified the blocking keyword list, the more efficiently the

Vigor router perform.

Prevent web access

from IP address

Check the box to deny any web surfing activity using IP address,

such as http://202.6.3.2. The reason for this is to prevent someone

dodges the URL Access Control.

You must clear your browser cache first so that the URL content

filtering facility operates properly on a web page that you visited

before.

Vigor2800 Series User’s Guide

57

Enable Restrict Web

Feature

Check the box to activate the function.

Java

-

Check the checkbox to activate the Block Java object

function. The Vigor router will discard the Java objects from the

Internet.

ActiveX

-

Check the box to activate the Block ActiveX object

function. Any ActiveX object from the Internet will be refused.

Compressed file

-

Check the box to activate the Block Compressed

file function to prevent someone from downloading any

compressed file. The following list shows the types of compressed

files that can be blocked by the Vigor router.

.

zip, rar, .arj, .ace, .cab, .sit

Executable file

-

Check the box to reject any downloading

behavior of the executable file from the Internet.

.exe, .com, .scr, .pif, .bas, .bat, .inf, .reg

Cookie

-

Check the box to filter out the cookie transmission from

inside to outside world to protect the local user's privacy.

Proxy

-

Check the box to reject any proxy transmission. To control

efficiently the limited-bandwidth usage, it will be of great value to

provide the blocking mechanism that filters out the multimedia

files downloading from web pages. Accordingly, files with the

following extensions will be blocked by the Vigor router.

.mov

.mp3

.rm

.ra

.au

.wmv

.wav

.asf

.mpg

.mpeg

.avi

.ram

Enable Excepting

Subnets

Four entries are available for users to specify some specific IP

addresses or subnets so that they can be free from the

URL Access

Control

. To enable an entry, click on the empty checkbox, named as

ACT

, in front of the appropriate entry.

Time Schedule

Specify what time should perform the URL content filtering

facility.

Vigor2800 Series User’s Guide

58

3.4.8 Web Content Filter

Click

Firewall

and click

Web Content Filter

to open the setup page.

For this section, please refer to

Web Content Filter

user’s guide.

Vigor2800 Series User’s Guide

59

3.4.9 Bind IP to MAC

This function is used to bind the IP and MAC address in LAN to have a strengthen control in

network. When this function is enabled, all the assigned IP and MAC address binding

together cannot be changed. If you modified the binding IP or MAC address, it might cause

you not access into the Internet.

Click

Firewall

and click

Bind IP to MAC

to open the setup page.

Enable

Click this radio button to invoke this function.

However, IP/MAC

which is not listed in IP Bind List also can connect to Internet.

Disable

Click this radio button to disable this function. All the settings on

this page will be invalid.

Strict Bind

Click this radio button to block the connection of the IP/MAC

which is not listed in IP Bind List.

ARP Table

This table is theLAN ARP table of this router. The information

for IP and MAC will be displayed in this field. Each pair of IP

and MAC address listed in ARP table can be selected and added

to IP Bind List by clicking

Add

below

.

Add and Edit

IP Address

–

Type the IP address that will be used for the

specified MAC address.

Mac Address

–

Type the MAC address that is used to bind with

the assigned IP address.

Refresh

It is used to refresh the ARP table. When there is one new PC

added to the LAN, you can click this link to obtain the newly

ARP table information.

IP Bind List

It displays a list for the IP bind to MAC information.