Mitrastar HGW-2501GN-R2 Router Manual PDF (Setup & Configuration Guide)

Page 101 / 160 Scroll up to view Page 96 - 100

Chapter 15

Firewall

101

15.2.1

Rules Edit Screen

Use this screen to configure firewall rules. In the

Rules

screen, select an index number and click

a

rule’s

Edit

icon.

Figure 54

Firewall > Rules: Edit

Table 51

Firewall > Rules: Edit

LABEL

DESCRIPTION

Active

Select this option to enable this firewall rule.

Rule Name

If you want to select an exiting service, choose

Select a Service

and find the service

to which this rule applies to in the drop-down list box.

If you want to manually configure a service that is not in the list, choose

Custom

Service

. Enter the name of the service and select its protocol in the

Protocol

field.

If you select

ICMP

as your protocol, select the ICMP type in the

ICMP (Type-code)

field below.

Source IP Address

Enter the source IP address.

Source Subnet Mask

Enter the source subnet mask.

Source Port

Enter a single source port or a port range.

Page 102 / 160

Chapter 15

Firewall

102

15.3

DoS Screen

Use the

DoS

screen to enable DoS protection. Click

Security > Firewall > DoS

.

Figure 55

Security > Firewall > DoS

Table 52

Security > Firewall > Dos

LABEL

DESCRIPTION

Denial of

Services

Enable this to protect against DoS attacks. The Router will drop sessions that surpass

maximum thresholds.

Apply

Click this to save your changes.

Undo

Click this to restore your previously saved settings.

Advanced

Click this to go to a screen to specify maximum thresholds at which the Router will start

dropping sessions.

Destination IP

Address

Enter the destination IP address.

Destination Subnet

Mask

Enter the

destination subnet mask.

Destination Port

Enter a single destination port or a port range.

Action for Matched

Packets

select whether to discard (

Drop

), deny

and send an ICMP destination-unreachable

message to the sender of (

Reject

) or allow the passage of (

Permit

) packets that

match this rule.

Table 51

Firewall > Rules: Edit (continued)

LABEL

DESCRIPTION

Page 103 / 160

Chapter 15

Firewall

103

15.3.1

The DoS Advanced Screen

Click

Security > Firewall > DoS > Advanced

to display the following screen.

Figure 56

Firewall > DoS > Advanced

Table 53

Firewall > DoS > Advanced

LABEL

DESCRIPTION

TCP SYN-Request

Count

This is the rate of new TCP half-open sessions per second that causes the firewall to

start deleting half-open sessions. When the rate of new connection attempts rises

above this number, the Router deletes half-open sessions as required to

accommodate new connection attempts.

UDP Packet Count

This is the rate of new UDP half-open sessions per second that causes the firewall

to start deleting half-open sessions. When the rate of new connection attempts

rises above this number, the Router deletes half-open sessions as required to

accommodate new connection attempts.

ICMP Echo-Request

Count

This is the rate of new ICMP Echo-Request half-open sessions per second that

causes the firewall to start deleting half-open sessions. When the rate of new

connection attempts rises above this number, the Router deletes half-open

sessions as required to accommodate new connection attempts.

ICMP Redirect

Select

Enable

to monitor for and block ICMP redirect attacks.

An ICMP redirect attack is one where forged ICMP redirect messages can force the

client device to route packets for certain connections through an attacker’s host.

DoS Log(Log Level:

DEBUG)

Select

Enable

to log DoS attacks.

Page 104 / 160

16

Chapter

Chapter 16

Parental Control

104

C

HAPTER

16

Chapter 16

Parental Control

16.1

The Parental Control Screen

Parental control allows you to block web sites with the specific URL. You can also define time

periods and days during which the Router performs parental control on a specific user

.

Use the

Parental Control

screen to enable parental control, view the parental control rules and

schedules. Click

Security > Parental Control

.

Figure 57

Security > Parental Control

Table 54

Security > Parental Control

LABEL

DESCRIPTION

Parental Control

Select

Enable

to activate parental control.

Add new PCP

Click this if you want to configure a new parental control rule.

Status

This indicates whether the rule is active or not.

A yellow bulb signifies that this rule is active. A gray bulb signifies that this rule is not

active.

PCP Name

This shows the name of the rule.

Home Network

User

This shows the MAC address of the LAN user’s computer to which this rule applies.

Internet Access

Schedule

This shows the days and time on which parental control is enabled.

Network Service

This shows whether the network service is configured. If not,

None

will be shown.

Page 105 / 160

Chapter 16

Parental Control

105

Website Blocked

This shows whether the website block is configured. If not,

None

will be shown.

Modify

Click the

Edit

icon to go to the screen where you can edit the rule.

Click the

Delete

icon to delete an existing rule.

Table 54

Security > Parental Control (continued)

LABEL

DESCRIPTION

Rate

Popular Mitrastar Models

Famous Router IPs

Famous Router Companies

Bookmark Our Site

Share