Cisco Systems RV016, RV042G manual Configuring the General Firewall Settings

Page 99

7

Firewall

Use the Firewall module to configure the firewall features, create access rules, and set content filters to control your users’ Internet activities. Refer to these topics:

Configuring the General Firewall Settings, page 99

Managing Access Rules, page 104

Configuring Firewall Access Rules, page 103

Using Content Filters to Control Internet Access, page110

Configuring the General Firewall Settings

The default firewall settings should be sufficient for most small businesses. However, you can use the Firewall > General page to disable the firewall or to specify the types of attacks that you want to block. You also can restrict potentially risky website features such as Java and cookies.

To open this page: Click Firewall > General in the navigation tree.

Cisco Small Business RV0xx Series Routers Administration Guide

99

Image 99
Contents Administration Guide Cisco Systems, Inc. All rights reserved 78-19576-01 B0 Introduction Viewing System Summary Information SetupOther Hardware Features Placement TipsFirewall DhcpSystem Management Port ManagementLogging System Statistics 153 VPN 122Appendix F Bandwidth Management 186 Appendix G Specifications 189Appendix H Where to Go From Here 199 Appendix E IPSec NAT Traversal 183RV042 and RV042G RV082 RV016 RV0xx Series Router FeaturesModel PortsRV082 Ports and Status Lights IntroductionRV042 and RV042G Ports RV042 and RV042G Status LightsPort Description PortsLight Description Status LightsFeature Description Other Hardware FeaturesParameter Default Value Default SettingsPlacement Tips Desktop PlacementRV042 and RV042G 58 mm apart RV082 and RV016 94 mm apart Wall MountingRack Mounting RV082 or RV016 RV016 Internet 1 Port Connecting the EquipmentRV042 and RV042G Internet Port RV082 Internet PortGetting Started with the Configuration Troubleshooting Tips Navigation Features of the User InterfaceHelp Setup WizardsSaving the Settings Pop-Up WindowsViewing System Summary Information System Information Cisco ProtectLink WebViewing System Summary Information Configuration Port StatisticsPort Information Window Viewing System Summary Information WAN information WAN StatusDMZ information Firewall Setting StatusVPN Setting Status Log Setting StatusSetup Setting Up the Network SetupHost Name and Domain Name IP Mode LAN Setting device IP address and subnetsChanging the device IP address Enabling multiple subnets IPv4 only Setup WAN Setting Internet connection DMZ Setting Setup Editing a WAN Connection Page Page Page IPv4 IPv6 Editing a DMZ ConnectionPage Changing the Administrator Username and Password Setup To open this page Click Setup Time in the navigation tree Setting the System TimeSetting Up a DMZ Host Setting Up Port Forwarding and Port Triggering Port Range ForwardingPort Range Forwarding, Port Triggering, Setup Adding a service Port Triggering To open this page Click Setup UPnP in the navigation tree Setting Up Universal Plug and Play UPnPSetup Adding a service Setting Up One-to-One NAT Setup Cloning a MAC Address for the Router Editing the MAC Address Clone Settings Assigning a Dynamic DNS Host Name to a WAN Interface Editing the Dynamic DNS Setup Configuring Dynamic Routing, Configuring Static Routing, Setting Up Advanced RoutingConfiguring Dynamic Routing Dynamic Routing for IPv4Data None, RIPv1, RIPv2 Broadcast, or RIPv2 Multicast Configuring Static Routing Dynamic Routing for IPv6Prefix Length Pv6 only Enter the prefix length Setting Up Advanced Routing IPv6 Transition To Go From Here Dhcp Setting Up the Dhcp Server or Dhcp RelayDhcp Dynamic IP used for Dhcp Server only DNS used for Dhcp Server onlyWins used for Dhcp Server, IPv4 Only Assigning static IP addresses by adding devices from a list About Static IP Addresses for IPv4 OnlyAssigning static IP addresses by entering devices manually Using the Static IP List to Block Devices DNS Local Database Viewing the Dhcp Status Information Dhcp ServerClient Table Router Advertisement IPv6 Dhcp System Management Setting Up Dual WAN and Multi-WAN ConnectionsSystem Management Mode Cisco RV042, RV042G, and RV082Mode Cisco RV016 Interface Setting Editing the Dual WAN and Multi-WAN Settings Network Service DetectionMax Bandwidth Provided by ISP Page Adding a service Page Appendix F, Bandwidth Management Managing the Bandwidth SettingsMax Bandwidth Provided by ISP Bandwidth Management TypeManaging the Bandwidth Settings Adding a service Setting Up Snmp Enabling Device Discovery with Bonjour Enabling Device Discovery with Bonjour Using Built-In Diagnostic Tools To open this page Click System Management DiagnosticDNS Name Lookup Ping Restoring the Factory Default Settings Upgrading the Firmware Restarting the Router Restoring the Settings from a Configuration File Backing Up and Restoring the SettingsCopying a Startup File or Mirror File Backing Up Configuration Files and Mirror FilesBacking Up and Restoring the Settings Port Management Configuring the Port SettingsPort Management Summary Viewing the Status Information for a PortStatistics Firewall Configuring the General Firewall SettingsFirewall Restrict Web Features Firewall About Access Rules Configuring Firewall Access RulesManaging Access Rules To delete all custom rules Click Restore to Default Rules Services IPv4 and IPv6 Configuring Access RulesSchedule IPv4 Only Adding a service Page Forbidden Domains, Website Blocking by Keywords, Schedule, Using Content Filters to Control Internet AccessWebsite Blocking by Keywords Forbidden DomainsSchedule Getting Started with Cisco ProtectLink Web Cisco ProtectLink WebCisco ProtectLink Web Specifying the Global Settings for Approved URLs and Clients To delete an entry Click the Delete icon Approved URL ConfigurationApproved Clients Configuration Approved URLs and Approved ClientsWeb Protection Enabling Web Protection for URL FilteringURL Filtering Web Reputation Business Hour SettingURL Overflow Control Updating the ProtectLink LicenseLicense Information LicenseIntroduction to VPNs VPNGateway-to-Gateway VPN Tunnel Between RV0xx Series Routers Remote Access Client To GatewayConfiguration tasks Site to Site VPN Gateway To GatewayRouter QuickVPN, page125 and Remote Access with PPTP, page125Remote Access with Pptp Remote Access with Cisco QuickVPNTo open this page Click VPN Summary in the navigation tree Viewing the Summary Information for VPNTunnel Status GroupVPN Status Up a Remote Access Tunnel for VPN Clients Client To Gateway,VPN Clients Status Setting Up a Gateway to Gateway Site to Site VPN Add a New Tunnel Local Group Setup and Remote Group SetupVPN IPSec Setup Required fields for Manual mode Preshared Key, page 135 and Advanced settings for IKE withRequired fields for IKE with Preshared Key Advanced settings for IKE with Preshared Key VPN VPN RV0xx Local Group Setup Remote Client Setup for Single User Tunnel Type VPN IPSec Setup Required fields for IKE with Preshared Key Advanced settings for IKE with Preshared Key VPN Users, Certificate Management, page148 Managing VPN Users and CertificatesCertificate Management UsersSetting Up VPN Passthrough Setting Up Pptp Server Pptp Server IP Address RangeConnection List Syslog section, Mail section, Setting Up the System Log and AlertsLogging System Statistics Log Setting, Buttons,Syslog section Mail sectionLog Setting Buttons Viewing the System Log Logging System Statistics Wizard Basic Setup, Access Rule Setup, page160Basic Setup Access Rule SetupWizard Indication Message Term DefinitionBeacon interval Dtim Delivery TrafficGlossary Term Definition Threshold Radvd RouterAdvertisement Daemon Request to Send RTSRIPng RIP next generation Static routingVlan Virtual LAN Your computer cannot connect to the Internet Firmware upgrade has failedRouter does not have a coaxial port for the cable connection TroubleshootingIntroduction Cisco QuickVPN for WindowsCisco QuickVPN Client Installation and Configuration Using the Cisco QuickVPN SoftwareCisco QuickVPN for Windows Using the Cisco QuickVPN Software Topology Options Hub and Spoke VPN Hub and Spoke TopologyMesh VPN Mesh TopologyOther Design Considerations WAN SetupGateway To Gateway Tunnel with a Dynamic IP Address LAN SetupConfiguring a VPN Tunnel on a Cisco RV0xx Series Router Settings on the Site a Router Example Sites with Static WAN IP AddressesField Value MD5 Encryption PhaseEncryption Field ValuesExample Site with a Dynamic WAN IP Address Authentication Field Value IPSec Setup Keying Mode IKE with Preshared Key Phase Overview IPSec NAT TraversalIPSec NAT Traversal Configuration of Router aConfiguration of Router B Creation of New Services Click the System Management tabClick Add to List Bandwidth Management Creation of New Bandwidth Management RulesClick Save Security SpecificationsRV042 PerformanceSpecifications NetworkQoS RV042G ManagementEnvironmental Operating System Linux VPN Cisco RV082 IKE Cisco RV016 Dhcp DNS NAT DMZ Built-in Pptp server supporting 10 Pptp clients Support Product DocumentationCisco Small Business
Related manuals
Manual 2 pages 47.87 Kb