EE BrightBox Router Manual PDF (Setup & Configuration Guide)

Home

/

Manuals

/

EE

/

BrightBox

/

32

Page 156 / 207 Scroll up to view Page 151 - 155

EE Bright Box User Manual

156

Description of Intrusion Detection settings:

The table below contains a description of the settings on the Intrusion Detection page :

Section

Description

SPI and Anti-DoS firewall

protection

This option allows you to configure the SPI and Anti

Denial of Service protection on the router firewall.

By default the SPI firewall and Anti-DoS setting is

enabled to protect your router and network

Select ‘Enable’ to switch on SPI (Stateful Packet

Inspection) firewall and Anti Denial of Service

settings on the router. Selecting this option will tick

all of the individual SPI service rules.

Select ‘Disable’ to switch off the SPI and Anti Denial

of Service protection on the router. Selecting this

option will untick all of the individual SPI service

rules.

TCP Connection

This option enables or disables the SPI firewall for all

TCP (Transmission Control Protocol) traffic.

UDP Session

This option enables or disables the SPI firewall for all

UDP (User Datagram Protocol) traffic.

FTP Service

This option enables or disables the SPI firewall for all

FTP (File Transfer Protocol) traffic.

H.323 Service

This option enables or disables the SPI firewall for all

Page 157 / 207

EE Bright Box User Manual

157

H323 traffic for videoconferencing or Netmeeting.

TFTP Service

This option enables or disables the SPI firewall for all

TFTP (Trivial FTP) traffic.

SIP Service

This option enables or disables the SPI firewall for all

SIP (Session Initiation Protocol) traffic for

videoconferencing or VoIP.

RTSP Service

This option enables or disables the SPI firewall for all

RTSP (Real Time Streaming Protocol) traffic.

L2TP Service

This option enables or disables the SPI firewall for all

L2TP (Layer 2 Tunnelling Protocol) traffic.

PPTP Service

This option enables or disables the SPI firewall for all

PPTP (Point to Point Tunnelling Protocol) traffic.

IPSec Service

This option enables or disables the SPI firewall for all

IPSec (Internet Protocol Security) traffic.

Discard Ping to WAN

Interface

This option allows you to configure whether the

router will discard ICMP ping traffic from the WAN.

This is enabled by default.

If you select ‘Disable’, then an ICMP ping response

from the router will occur if pinged from the WAN,

making the WAN IP address of the router visible and

potentially vulnerable.

DMZ

The Bright Box Wireless Router stops Internet traffic getting to your internal network unless

traffic is initiated by a computer or device on your network or you've set up port forwarding

or port trigger rules.

If you think your router is stopping a particular application (for example an online game or

video conferencing) from working correctly, you can temporarily add the computer or device’s

IP address into the 'Demilitarized Zone' (DMZ) as a test. This will mean that many of the

router firewall features are bypassed for this computer while the DMZ is active.

Before setting up the DMZ, it is a good idea to reserve an IP address for the device you wish

to put inside the DMZ. You can do this in the Advanced Set-Up > DHCP admin page, under

the address reservation section. See

how to reserve an IP address

on page 124 for further

information.

Please be aware that the DMZ should only be used for testing or diagnostic purposes, as

it will make the computer inside the DMZ potentially vulnerable to external attack or hacking.

Use the Port Forwarding or Port Triggering functions to create specific port rules to allow

traffic through the router firewall.

To access the DMZ configuration page:

1.

Login to the router’s admin pages.

2.

Click on the Advanced Set-Up tab and click Accept on the ‘Please proceed with

caution’ page.

3.

Click on Firewall in the left hand navigation menu to expand the Firewall menu

4.

Click on DMZ in the left hand navigation menu:

Page 158 / 207

EE Bright Box User Manual

158

Description of DMZ settings

The table below contains a description of the settings on the DMZ page:

Section

Description

No.

This field is the index for the router DMZ entry.

Public IP Address

This field is used to configure the public (Internet) IP

address of the DMZ entry. Index number 1 cannot be

configured, but will always reflect the current

Internet IP address assigned to the router.

Index numbers 2 – 8 allow you to configure manual

public IP addresses for the DMZ. These entries must

be unique, and not match another entry in the list.

They are suitable if you have multiple static IP

addresses and are not supported for EE Broadband

users.

Client IP Address

This field is used to configure the IP address of the

device or computer on your local network that you

are putting inside the DMZ, to allow incoming and

outgoing traffic to be unimpeded by the firewall.

It is recommended that you create a reserved IP

address in the DHCP page for any computer you

Page 159 / 207

EE Bright Box User Manual

159

want to put in the DMZ.

How to add a computer to the De-militarized zone (DMZ)

If you think your Bright Box Wireless Router is stopping a particular application from working

correctly, you can temporarily add the computer or device into the 'Demilitarized Zone' (DMZ)

as a test. While this is safer than completely disabling your firewall, we suggest that you don't

leave your computer unprotected in the DMZ.

To add a computer to the DMZ:

1.

Login to the router’s admin pages.

2.

Click on the Advanced Set-Up tab and click Accept on the ‘Please proceed with

caution’ page.

3.

Click on Firewall in the left hand navigation menu to expand the Firewall menu

4.

Click on DMZ in the left hand navigation menu:

5.

In the ‘Enable DMZ’ option, select ‘Enable’

Page 160 / 207

EE Bright Box User Manual

160

6.

In the ‘client device IP address’ field for Index 1, enter the IP address of the computer you

wish to add to the DMZ. In this example we will add 192.168.1.10:

7.

Click Save Settings:

8.

The computer will now be in the router’s DMZ.

Ensure that when you have completed any troubleshooting with a computer inside the

DMZ, you disable the DMZ. You can do this by navigating to the DMZ page and selecting the

‘Disable’ option and clicking Save Settings:

QOS

By default all types of Internet traffic on the Bright Box router are given the same priority as

any other type. QoS, or Quality of Service is a feature of the Bright Box router that allows you

to give priority to certain types of Internet traffic for applications on your network (i.e. VoIP

or online gaming) or to prioritise traffic from a particular computer or device on your home

network.

To configure QoS, you must define the types of traffic that you want to prioritise, either from

a pre-defined list or custom port numbers. You can also prioritise individual devices on your

network by MAC address, IP address or by the connected Ethernet ports or wireless SSID’s.

Rate

https://19216811.live/ee-brightbox-manual/1 3.5 / 5 based on 2 votes.

Popular EE Models

Famous Router IPs

Famous Router Companies

Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share

Top