DrayTek VigorPro 5300 Router Manual PDF (Setup & Configuration Guide)

Page 91 / 304 Scroll up to view Page 86 - 90

VigorPro5300 Series User’s Guide

83

Window size

– It determines the size of TCP protocol

(0~65535). The more the value is, the better the performance will

be. However, if the network is not stable, small value will be

proper.

Session timeout

/Queue timeout

–Setting timeout for sessions

can make the best utilization of network resources. However,

Queue timeout is configured for TCP protocol only; session

timeout is configured for the data flow which matched with the

firewall rule.

Max. Queue length

- When the network connection is not

stable, you can set large number for this setting to get better

performance. Yet large value will consume large resource.

Retransmission queue length

– Type the number here as a base

for the router to verify if the retransmitted data is the same as the

old one.

Strict Security

Checking

For the sake of security, you might want the router executing

strict security checking for data transmission. The router

performance will be affected if you invoke strict security

checking.

Anti-Virus

– Check this box to execute the critical checking for

virus.

Anti-Spam

– Check this box to execute the critical checking for

e-mails.

In sequence

– Check this box to execute the critical checking for

all the files in sequence.

Page 92 / 304

VigorPro5300 Series User’s Guide

84

3.6.3 Filter Setup

Click

Firewall

and click

Filter Setup

to open the setup page.

To edit or add a filter, click on the set number to edit the individual set. The following page

will be shown. Each filter set contains up to 7 rules. Click on the rule number button to edit

each rule. Check

Active

to enable the rule.

Filter Rule

Click a button numbered (1 ~ 7) to edit the filter rule. Click the

button will open Edit Filter Rule web page. For the detailed

information, refer to the following page.

Active

Enable or disable the filter rule.

Comment

Enter filter set comments/description. Maximum length is

23–character long.

Move Up/Down

Use

Up

or

Down

link to move the order of the filter rules.

Next Filter Set

Set the link to the next filter set to be executed after the current

filter run. Do not make a loop with many filter sets.

To edit

Filter Rule

, click the

Filter Rule

index button to enter the

Filter Rule

setup page.

Page 93 / 304

VigorPro5300 Series User’s Guide

85

Check to enable the

Filter Rule

Check this box to enable the filter rule.

Comments

Enter filter set comments/description. Maximum length is 14-

character long.

Index (1-15)

Set PCs on LAN to work at certain time interval only. You may

choose up to 4 schedules out of the 15 schedules pre-defined in

Applications >> Schedule

setup. The default setting of this filed is

blank and the function will always work.

Direction

Set the direction of packet flow (LAN->WAN/WAN->LAN). It is

for

Data Filter

only. For the

Call Filter

, this setting is not

available since

Call Filter

is only applied to outgoing traffic.

Source/Destination IP

Click

Edit

to access into the following dialog to choose the

source/destination IP or IP ranges.

Page 94 / 304

VigorPro5300 Series User’s Guide

86

To set the IP address manually, please choose

Any Address/Single

Address/Range Address/Subnet Address

as the Address Type

and type them in this dialog. In addition, if you want to use the IP

range from defined groups or objects, please choose

Group and

Objects

as the Address Type.

From the

IP Group

drop down list, choose the one that you want

to apply. Or use the

IP Object

drop down list to choose the object

that you want.

Service Type

Click

Edit

to access into the following dialog to choose a suitable

service type.

To set the service type manually, please choose

User defined

as

the Service Type and type them in this dialog. In addition, if you

want to use the service type from defined groups or objects, please

Page 95 / 304

VigorPro5300 Series User’s Guide

87

choose

Group and Objects

as the Service Type.

Protocol -

Specify the protocol(s) which this filter rule will apply to.

Source/Destination Port -

(=)

– when the first and last value are the same, it indicates one

port; when the first and last values are different, it indicates a range

for the port and available for this service type.

(!=)

– when the first and last value are the same,

it indicates all

the ports except the port defined here; when the first and

last

values are different, it indicates that all the ports except the range

defined here are available for this service type.

(>)

–

the port number greater than this value is available.

(<)

–

the port number less than this value is available for this

profile.

Service Group/Object

- Use the drop down list to choose the one

that you want.

Fragments

Specify the action for fragmented packets. And it is used for

Data

Filter

only.

Don’t care -

No action will be taken towards fragmented packets.

Unfragmented -

Apply the rule to unfragmented packets.

Fragmented -

Apply the rule to fragmented packets.

Too Short -

Apply the rule only to packets that are too short to

contain a complete header.

Filter

Specifies the action to be taken when packets match the rule.

Block Immediately -

Packets matching the rule will be dropped

immediately.

Pass Immediately -

Packets matching the rule will be passed

immediately.

Block If No Further Match -

A packet matching the rule, and that

does not match further rules, will be dropped.

Pass If No Further Match -

A packet matching the rule, and that

does not match further rules, will be passed through.

Branch to other Filter

Set

If the packet matches the filter rule, the next filter rule will branch

to the specified filter set. Select next filter rule to branch from the

drop-down menu. Be aware that the router will apply the

specified filter rule for ever and will not return to previous filter

rule any more.

IM/P2P Filter

Select a CSM profile for global IM/P2P application blocking. All

the hosts in LAN must follow the standard configured in the CSM

profile selected here. For detailed information, refer to the section

of CSM profile setup. For troubleshooting needs, you can specify to

record information for IM/P2P by checking the Log box. It will be

sent to Syslog server. Please refer to section 3.14.4

Syslog/Mail

Alert

for more detailed information.

URL Content Filter

Select one of the

URL Content Filter

profile settings (created in

CSM>> URL Content Filter Profile

) for applying with this router.

Please set at least one profile for choosing in

CSM>> URL

Content Filter

Profile

web page first. For troubleshooting needs,

you can specify to record information for

URL Content Filter

by

Rate

Popular DrayTek Models

Famous Router IPs

Famous Router Companies

Bookmark Our Site

Share