103
10 INTERNET SECURITY
DMS-CTC-20101206-0033 v1.0
10.2 Firewall
Introduction
The MediaAccess Gateway comes with an integrated firewall that helps you protect your network from attacks from the
Internet. This firewall has a number of predefined levels to allow you to adjusted the firewall to your needs.
The Firewall is disabled by default. This means that
all
traffic passing through the MediaAccess Gateway (from and to the
Internet) is allowed.
Predefined security levels
The MediaAccess Gateway has a number of predefined security levels. The following levels are available:
BlockAll
:
All traffic from and to the Internet is blocked. Game and Application Sharing is not allowed by the firewall.
Standard
:
All outgoing connections are allowed. All incoming connections are blocked, except for inbound connections assigned to
a local host via Game and Application Sharing. This is the
default firewall level
.
Disabled
:
All in- and outgoing traffic is allowed to pass through your MediaAccess Gateway, including Game and Application
Sharing.
Changing the security level
Proceed as follows:
1
Browse to the
MediaAccess Gateway GUI
.
For more information, see
“Accessing the MediaAccess Gateway GUI” on page 37
.
2
On the
Toolbox
menu, click
Firewall
.
3
The
Firewall
page appears. In the upper-right corner, click
Configure
.
4
Under
Security Settings
, select the security level of your choice and click
Apply
.
Creating your own security level
Proceed as follows:
1
In the
Toolbox
menu click
Firewall
.
2
In the
Firewall
section, go to the
Configure
page.
3
In the
Pick a task
list, click
Create a new Security Level
.
4
In the
Name
box, type a name for the new security level and select an existing security level to clone from.
5
Click
Apply
.
6
A page with the firewall settings of your newly created security level appears. Click
Edit
.
7
Enter the following information:
The
Name
of the firewall rule.
Although BlockAll will block all connections, some mandatory types of traffic such as DNS will still be relayed
between LAN and WAN by the MediaAccess Gateway.
The firewall levels only have impact on traffic passing through your MediaAccess Gateway. This means that the
handling of traffic directly appointed from and to MediaAccess Gateway is independent of the selected firewall level.
Protocol checks will be performed on all accepted connections, irrespective of the chosen level.
Once you create a security level, you can not delete it anymore. It will always available in the list of available security
levels.