ZoneAlarm Z100G Router Manual PDF (Setup & Configuration Guide)

Page 151 / 428 Scroll up to view Page 146 - 150

Troubleshooting Wireless Connectivity

Chapter 7: Configuring a Wireless Network

137

Note:

Reducing the RTS Threshold and the Fragmentation Threshold too much can

have a negative impact on

performance.

Note:

Setting an RTS Threshold value equal to the Fragmentation Threshold value

effectively disables RTS.

I am not getting the full speed. What should I do?

•

The actual speed is always less then the theoretical speed, and degrades with

distance.

•

Read the section about reception problems. Better reception means better speed.

•

Check that all your wireless stations support the wireless standard you are using

(802.11g or 802.11g Super), and that this standard is enabled in the station

software. Transmission speed is determined by the slowest station associated

with the access point. For a list of wireless stations that support 802.11g Super,

see www.super-ag.com.

Page 152 / 428

Page 153 / 428

Overview

Chapter 8: Using Bridges

139

Chapter 8

This chapter describes how to connect multiple network segments at the data-link layer,

using a bridge.

This chapter includes the following topics:

Overview

..................................................................................................

139

Workflow

..................................................................................................

140

Adding and Editing Bridges

.....................................................................

141

Adding Internal Networks to Bridges

.......................................................

145

Deleting Bridges

.......................................................................................

150

Overview

The ZoneAlarm router allows you to connect the LAN and the WLAN network segments

at the data-link layer, by configuring a bridge between them. A bridge allows you to

choose whether to enable the firewall between the LAN and WLAN:

•

If you enable the firewall, the WLAN and LAN will be assigned separate,

isolated IP networks, and the gateway will operate as a regular firewall between

the LAN and WLAN, inspecting traffic and dropping or blocking unauthorized

or unsafe traffic according to the defined firewall policy.

•

If you disable the firewall between the LAN and WLAN, they will appear as a

single unified network; that is, the two network segments will share the same IP

address range, and traffic will flow freely between them. Only traffic from the

LAN and WLAN to the Internet will be inspected by the firewall.

The ZoneAlarm router allows you to configure anti-spoofing for the bridged network

segments. When anti-spoofing is configured for a segment, only IP addresses within a

specific IP address range can be sent from that network segment. For example, if you

configure anti-spoofing for the LAN network segment, the following things happens:

Using Bridges

Page 154 / 428

Workflow

140

Check Point ZoneAlarm User Guide

•

If a host with an IP address

outside of the allowed IP address range

tries to

connect from the LAN network segment, the connection will be blocked and

logged as “Spoofed IP”.

•

If a host with an IP address within the bridge IP address range tries to connect

from a network segment

other than the LAN segment

, the connection will be

blocked and logged as “Spoofed IP”.

Multiple Bridges and Spanning Tree Protocol

When using multiple bridges, you can enable fault tolerance and optimal packet routing, by

configuring Spanning Tree Protocol (STP - IEEE 802.1d). When STP is enabled, each

bridge communicates with its neighboring bridges or switches to discover how they are

interconnected. This information is then used to eliminate loops, while providing optimal

routing of packets. STP also uses this information to provide fault tolerance, by re-

computing the topology in the event that a bridge or a network link fails.

Note:

The ZoneAlarm router license allows configuring one bridge; however, STP

can be used in situations where multiple bridge devices exist on the same network.

Workflow

To use a bridge

1.

Add a bridge.

See

Adding and Editing Bridges

on page 141.

2.

Add the LAN and WLAN networks to the bridge.

See

Adding Internal Networks to Bridges

on page 145.

3.

If you enabled the firewall between networks on this bridge, add security rules

and VStream Antivirus rules as needed.

For information on adding security rules, see

Adding and Editing Rules

on page 176.

For information on adding VStream Antivirus rules, see

Adding and Editing Vstream

Antivirus Rules

on page 252.

Page 155 / 428

Adding and Editing Bridges

Chapter 8: Using Bridges

141

Adding and Editing Bridges

To add or edit a bridge

1.

Click

Network

in the main menu, and click the

My Network

tab.

The

My Network

page appears.

2.

Do one of the following:

•

To add a bridge, click

Add Bridge

.

•

To edit a bridge, click

Edit

in the desired bridge's row.

Rate

Popular ZoneAlarm Models

Famous Router IPs

Famous Router Companies

Bookmark Our Site

Share