1. Home
    2. /
  2. Manuals
    3. /
  3. Huawei
    4. /
  4. HG8247H
    5. /
  5. 67
Page 331 / 358 Scroll up to view Page 326 - 330
Table 5-8
Parameters related to the DoS
Parameter
Description
Prevent SYN Flooding Attack
Indicates whether to enable the prevent SYN
flooding attack.
In the attack, several source hosts send SYN
packets to a destination host. After receiving
the SYN ACK packets from the destination
host, the source hosts do not respond. In this
case, the destination host establishes many
connection queues for the source hosts and
maintains these queues all the time because
no ACK response is received. As a result,
many resources are used and the destination
host fails to provide normal services for
normal connections.
Prevent ICMP Echo Attack
Indicates whether to enable the prevent ICMP
echo attack.
In the attack, many ICMP echo packets are
sent to a destination host within a short time.
As a result, the network is congested or the
resources of the host are exhausted.
Prevent ICMP Redirect Attack
Indicates whether to enable the prevent ICMP
redirect attack.
In the attack, many ICMP redirect packets are
sent to a destination host within a short time.
As a result, the network is congested or the
resources of the host are exhausted.
5.5.4 ONT Access Control Configuration
1.
In the navigation tree on the left, choose
Security
>
ONT Access Control
Configuration
. In the pane on the right, configure the rule of ONT access control, as shown
in
Figure 5-20
.
Figure 5-20
ONT Access Control Configuration
EchoLife HG8240/HG8245/HG8247 GPON Terminal
Service Manual
5 Web Page Reference
Issue 04 (2011-01-12)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
5-23
Page 332 / 358
2.
Click
Apply
to apply the configuration.
5.6 Route
This topic describes how to configure the default route and static route through the Web page.
5.6.1 Default Route Configuration
5.6.2 Static Route Configuration
5.6.1 Default Route Configuration
1.
In the navigation tree on the left, choose
Route
>
Default Route Configuration
. In the
pane on the right, select or deselect the
Default Route
option button to enable or disable
the default route of the system, as shown in
Figure 5-21
.
Figure 5-21
Default Route Configuration
NOTE
If an ONT fails to find a matching routing entry after receiving a packet, the WAN interface specified
by the default route configuration sends the packet to a network device. Before the default route of
the system is enabled, the WAN interface must obtain the IP address. Therefore, the parameters of
the WAN interface must be correctly set. For details, see
5.2.1 WAN Configuration
.
2.
Click
Apply
to apply the configuration.
5.6.2 Static Route Configuration
1.
In the navigation tree on the left, choose
Route
>
Static Route Configuration
. In the pane
on the right, click
New
. In the dialog box that is displayed, set the parameters related to the
static route, as shown in
Figure 5-22
.
5 Web Page Reference
EchoLife HG8240/HG8245/HG8247 GPON Terminal
Service Manual
5-24
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
Issue 04 (2011-01-12)
Page 333 / 358
Figure 5-22
Static Route Configuration
2.
Click
Apply
to apply the configuration.
Table 5-9
describes the parameters related to the static route.
Table 5-9
Parameters related to the static route
Parameter
Description
Destination Network
Address
Indicates the destination IP address of the static route.
Subnet Mask
Indicates the subnet mask of the static route.
Gateway IP Address
Indicates the gateway IP address of the static route.
Interface
Indicates the WAN interface that the route travels through.
5.7 Forward Rules
This topic describes how to configure the DMZ, port mapping, and port trigger through the Web
page.
5.7.1 DMZ Configuration
5.7.2 PortMapping Configuration
5.7.3 PortTrigger Configuration
5.7.1 DMZ Configuration
1.
In the navigation tree on the left, choose
Forward Rules
>
DMZ Configuration
. In the
pane on the right, click
New
. In the dialog box that is displayed, set the parameters related
to the DMZ, as shown in
Figure 5-23
.
EchoLife HG8240/HG8245/HG8247 GPON Terminal
Service Manual
5 Web Page Reference
Issue 04 (2011-01-12)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
5-25
Page 334 / 358
Figure 5-23
DMZ Configuration
2.
Click
Apply
to apply the configuration.
The demilitarized zone (DMZ) is a technology that enables the ONT to forward all received
packets through a specified internal server. The technology enables a computer in the LAN to
be completely exposed to all users on the Internet or enables the mutual communication without
restrictions between a host with a specified IP address and other users or other servers on the
Internet. In this way, many applications can run on the host with the specified IP address. The
host with the specified IP address receives all connections and files that can be identified.
CAUTION
If the LAN-side device does not provide website service or other network services, do not set
the device to a DMZ host because all ports of a DMZ host are opened to the Internet.
Table 5-10
describes the parameters related to the DMZ.
Table 5-10
Parameters related to the DMZ
Parameter
Description
Interface Name
Indicates the name of the WAN interface. If the WAN interface
is not in the port mapping table, the application requests from
the WAN connection are directly forwarded to the host in the
DMZ.
Host Address
Indicates the IP address of the DMZ host.
Enable DMZ
Indicates whether to enable the DMZ.
5.7.2 PortMapping Configuration
1.
In the navigation tree on the left, choose
Forward Rules
>
PortMapping
Configuration
. In the pane on the right, click
New
. In the dialog box that is displayed, set
the parameters related to port mapping, as shown in
Figure 5-24
.
5 Web Page Reference
EchoLife HG8240/HG8245/HG8247 GPON Terminal
Service Manual
5-26
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
Issue 04 (2011-01-12)
Page 335 / 358
Figure 5-24
PortMapping Configuration
2.
Click
Apply
to apply the configuration.
Port mapping indicates that the Intranet server is allowed to be open to the Extranet (for example,
the Intranet provides the Extranet with a WWW server or FTP server). Port mapping is to map
the Intranet host IP address and port ID to Extranet IP address and corresponding port ID so that
users from Extranets can access the Intranet server. With port mapping, the users cannot see the
Intranet IP address and they see the Extranet IP address.
Table 5-11
describes the parameters related to port mapping.
Table 5-11
Parameters related to port mapping
Parameter
Description
Interface
Indicates the name of the WAN interface where port mapping is
enabled.
Protocol
Indicates the protocol type of port mapping packet, which may
be TCP, UDP, or TCP/UDP.
External Start Port
Indicates the destination start port of the external data packet.
External End Port
Indicates the destination end port of the external data packet.
Internal Start Port
Indicates the internal destination start port of the port mapping
packet.
Internal End Port
Indicates the internal destination end port of the port mapping
packet.
External Source Start Port
Indicates the source start port of the external data packet.
External Source End Port
Indicates the source end port of the external data packet.
Internal Host
Indicates the IP address of the host to which the port is mapped.
External Source IP
Address
Indicates the source IP address of the external data packet.
EchoLife HG8240/HG8245/HG8247 GPON Terminal
Service Manual
5 Web Page Reference
Issue 04 (2011-01-12)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
5-27

Rate

4.5 / 5 based on 2 votes.

Popular Huawei Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top