DrayTek VigorPro 5300 Router Manual PDF (Setup & Configuration Guide)

Page 101 / 304 Scroll up to view Page 96 - 100

VigorPro5300 Series User’s Guide

93

reject this kind of packets.

Warning Messages

We provide Syslog function for user to retrieve message from Vigor

router. The user, as a Syslog Server, shall receive the report sending

from Vigor router which is a Syslog Client.

All the warning messages related to

DoS defense

will be sent to user

and user can review it through Syslog daemon. Look for the

keyword

DoS

in the message, followed by a name to indicate what

kind of attacks is detected.

Page 102 / 304

VigorPro5300 Series User’s Guide

94

3.7 Defense Configuration

This menu allows you to set profiles for, activate, and upgrade the service of

Anti-Intrusion/Anti-Virus/Anti-Spam in your system.

3.7.1 Anti-Intrusion

Anti-Intrusion allows you to prevent the intrusion from hackers while accessing into Internet.

It can detect the intrusion and execute basic defense.

There are more than 200 basic rules for anti-intrusion and anti-virus for this router. To

acquire more rules for anti-intrusion, it is suggested for you to register your router by

entering www.vigorpro.com. When you finished the registration, you can get and activate a

wide range of anti-intrusion rules from the website. In addition, you will be allowed to

download/update new rules (if they are released) from the websites lately (during the valid

time of the license key you purchased) after completing the registration.

You are allowed to use trial version with anti-intrusion and anti-virus features for 30 days

after you register for the router. And you will be noticed with an e-mail while it is going to

expire.

3.7.1.1 Basic Setup

Basic Setup

page lets you to enable the anti-intrusion service and choose the suitable level

for the detection.

Page 103 / 304

VigorPro5300 Series User’s Guide

95

Anti-Intrusion Control

Setup

This field will display the signature version of this router.

The default signature version is “

basic

”. In this version, you

can modify the settings for Anti-Intrusion rules in

Defense

Configuration>>Anti-Intrusion >>Advanced Setup

page.

However, if you restart/reset the router, all the modified

configurations for the rules will not be available and return to

the default settings. Except “

basic

”, the modified

configurations for other signature versions are available all

the time after you saved them

in

Defense

Configuration>>Anti-Intrusion >>Advanced Setup

page.

Enable Anti-Intrusion

Service

Check this box to enable the anti-intrusion function.

High Security

Click this radio button to activate the anti-intrusion service

with overall detecting conditions. That is, the router will

detect and block the incoming/outgoing packets which match

all the severity rules, including high, medium and low. The

degree of severity for each rule is defined in Advance Setup.

Medium Security

Click this radio button to activate the anti-intrusion service

with medium detecting conditions. That is, the router will

detect and block the incoming/outgoing packets which match

the highest and medium severity rules. The degree of severity

for each rule is defined in Advance Setup.

Low Security

Click this radio button to activate the anti-intrusion service

with minimum detecting conditions. That is, the router will

detect and block the incoming/outgoing packets which match

the highest severity rules. The degree of severity for each rule

is defined in

Advanced Setup

.

Enable Pass processing

Click this radio button to detect if there is any intrusion

occurrence for your reference. The system will not do any

advanced action for such condition.

Enable Disallow processing

Click this radio button to block the incoming/outgoing packets

with possible intrusion actions transmitting through the router.

Page 104 / 304

VigorPro5300 Series User’s Guide

96

Enable Reset procession

Click this radio button to break down the communication

between your computer and specific link which might have

intrusion actions.

3.7.1.2 Advanced Setup

This page lists all the available types and allows you to adjust the rule setting for each type.

The rules will be applied by the options chosen in the page of

Defense

Configuration>>Anti-Intrusion>>Basic Setup

for Anti-Intrusion.

SID/Name

To find the specific type of anti-intrusion, you can type its

SID number or name in this field if you know, and then click

Search

. The system will locate that type for you.

Search

It can help the user to find out specific anti-intrusion rule

quickly.

Type links

Click any anti-intrusion type link to access into next page for

configuring the rules settings. Here we provide several rules

for each type. The factory types and rules for anti-intrusion are

shown in this page. If you want to acquire more types and

rules, please go to www.vigorpro.com and finish the

registration work. Later, the wide range of anti-intrusion types

will be added into this page.

After you click any one of type links, you can access into the rules setup page for activating

rules. We take the type of BO as an example. Below is the rules setup page for BO type.

For the detailed information about the full name, meaning of each rule and/or type, you can

click the name link list on the Anti-Intrusion Rules Setup page to connect VigorPro webpage

for viewing.

Page 105 / 304

VigorPro5300 Series User’s Guide

97

Enable

Check to enable this rule. If you uncheck this box, the

corresponding settings for the rule will not be executed.

SID

The number for each anti-intrusion rule is displayed in this

field.

Name

A brief description name for the anti-intrusion rule is shown in

this field. Click the name link to access into VigorPro website

for checking the detailed information for the specified anti-

intrusion.

Severity

It means the degree of the influence for this type to the

computer, machine, network and environment.

H: representing that this type will cause severest affection

which must crash/destroy your computer.

M: representing that this type will cause severer affection

which might crash your computer.

L: representing that this type will cause small affection which

might not crash your computer.

Log

In order to show the detection log with such rule on the

window of Draytek Syslog, you have to check the log box

here and enable the

SysLog Access Setup

from

System

Maintenance >> Syslog/Mail Alert

.

Action

Pass -

Click this radio button to detect if there is any intrusion

occurrence for your reference. The system will not do any

advanced action for such condition.

Disallow -

Click this radio button to block the

incoming/outgoing packets with possible intrusion actions

transmitting through the router.

Reset -

Click this radio button to break down the

communication between your computer and specific link

which might have intrusion actions.

Default -

Click this radio button to execute the anti-intrusion

detection according to the setting that you set in Basic Setup.

Page

Type the page number in this field (if there is more than one

page of anti-virus detail view displayed on this page). Then

Rate

Popular DrayTek Models

Famous Router IPs

Famous Router Companies

Bookmark Our Site

Share