Page 61 / 122 Scroll up to view Page 56 - 60
(Wireless) ADSL VPN Firewall Router with 3DES Accelerator
Chapter 4: Configuration
55
Any remote user who is attempting to perform this action may result in
blocking all the accesses to configure and manage of the device from the
Internet.
General Settings
You can choose not to enable Firewall, to add all filter rules by yourself, or enable the
Firewall using preset filter rules and modify the port filter rules as required. The Packet Filter
is divided into two sections: Port Filters and Address Filters, used to filter packets based-on
Applications (Port) or IP addresses.
There are four options when you enable the Firewall, they are:
All blocked/User-defined: no pre-defined port or address filter rules by default, meaning
that all inbound (Internet to LAN) and outbound (LAN to Internet) packets will be blocked.
Users have to add their own filter rules for further access to the Internet.
High/Medium/Low security level: the pre-defined port filter rules for High, Medium and
Low security are displayed in Port Filters of Packet Filter.
Select either
High, Medium
or
Low
security level
to enable the Firewall. The only
difference between these three security levels is the preset port filter rules in the Packet
Filter. Firewall functionality is the same for all levels; it is only the list of preset port filters that
changes between each setting.
If you choose of the preset security levels and then add custom filters, you may temporarily
disable the firewall and recover your custom filter settings by re-selecting the same security
level.
The “
Block WAN Request
” is a stand-alone function and not relate to whether security
enable or disable. Mostly it is for preventing any scan tools from WAN site by hacker.
Page 62 / 122
(Wireless) ADSL VPN Firewall Router with 3DES Accelerator
Chapter 4: Configuration
56
Packet Filter
Page 63 / 122
(Wireless) ADSL VPN Firewall Router with 3DES Accelerator
Chapter 4: Configuration
57
Port Filters
The pre-defined port filter rules for High, Medium and Low security levels are listed. See
Table 1.
Table 1: Pre-defined Port Filter
Port Number
Firewall - High
Firewall - Medium
Firewall - Low
Application
Protocol
Start
End
Inbound
Outbound
Inbound Outbound
Inbound
Outbound
HTTP(80)
TCP(6)
80
80
NO
YES
NO
YES
NO
YES
DNS (53)
UDP(17)
53
53
NO
YES
NO
YES
YES
YES
DNS (53)
TCP(6)
53
53
NO
YES
NO
YES
YES
YES
FTP(21)
TCP(6)
21
21
NO
NO
NO
YES
NO
YES
Telnet(23)
TCP(6)
23
23
NO
NO
NO
YES
NO
YES
SMTP(25)
TCP(6)
25
25
NO
YES
NO
YES
NO
YES
POP3(110)
TCP(6)
110
110
NO
YES
NO
YES
NO
YES
NEWS(119)
TCP(6)
119
119
NO
NO
NO
YES
NO
YES
RealAudio
(7070)
UDP(17)
7070
7070
NO
NO
YES
YES
YES
YES
PING
ICMP(1)
N/A
N/A
NO
YES
NO
YES
NO
YES
H.323(1720)
TCP(6)
1720
1720
NO
NO
NO
YES
YES
YES
T.120(1503)
TCP(6)
1503
1503
NO
NO
NO
YES
YES
YES
SSH(22)
TCP(6)
22
22
NO
NO
NO
YES
YES
YES
NTP(123)
UDP(17)
123
123
NO
YES
NO
YES
NO
YES
HTTPS(443)
TCP(6)
443
443
NO
NO
NO
YES
NO
YES
ICQ (5190)
TCP(6)
5190
5190
NO
NO
NO
NO
YES
YES
Inbound:
Internet to LAN
Outbound:
LAN to Internet.
Page 64 / 122
(Wireless) ADSL VPN Firewall Router with 3DES Accelerator
Chapter 4: Configuration
58
Address Filters
Address Filters are used to block traffic to/from particular IP addresses. They can be used to
block IP addresses either on the Internet or on your local network. There are no pre-defined
address filter rules; you can add the filter rules to meet your requirements. There are two
kinds of address filters, one is inbound, and the other is outbound. The rules can be set to
prevent unauthorized users (hosts or network) to access the Internet from LAN (outbound)
and/or access LAN from the Internet (inbound).
Host IP Address:
This is the IP address you wish to block access to or from.
Host Subnet Mask:
This is the subnet mask for the IP address range you wish to block.
Direction:
Whether you want to block access to the Internet (
“outbound”
), from the
Internet (
“inbound”
) or both to and from the Internet (
“both”
).
Tip:
To block access to/from a single IP address, enter that IP address as the
Host IP
Address
and use a
Host Subnet Mask
of “255.255.255.255”.
Page 65 / 122
(Wireless) ADSL VPN Firewall Router with 3DES Accelerator
Chapter 4: Configuration
59
Example: Configuring your firewall to allow for a publicly accessible web server
on your LAN
The pre-defined port filter rule for HTTP (TCP port 80) is the same no matter whether the
firewall is set to a high, medium or low security level. To setup a web server located on the local
network when the firewall is enabled, you have to configure the Port Filters setting for HTTP.
As you can see from the diagram below, when the firewall is enabled with one of the three
presets (Low/Medium/High), inbound HTTP access is not allowed.
Configuring Packet Filter
1.
Click Packet Filter - you will get the following page:
Click Port Filters

Rate

4.5 / 5 based on 2 votes.

Popular Hamlet Models

Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top