Billion Electric Company 6404VP Example Predefined Port Filters Rules, Application, Protocol

Page 48
Example: Predefined Port Filters Rules

VoIP/(802.11g) Broadband Firewall Router

Example: Predefined Port Filters Rules

The predefined port filter rules for High, Medium and Low security levels are listed. See Table 1.

Note: Firewall – All Blocked/User-defined, you must define and create the port filter rules yourself. No predefined rule is being preconfigured.

Table 1: Predefined Port Filter

Application

Protocol

Port Number

Firewall - Low

Firewall - Medium

Firewall – High

 

 

 

 

 

 

 

 

 

Start

End

Inbound
Outbound

Inbound

Outbound

 

Inbound

Outbound

 

 

 

 

 

 

 

 

 

 

 

 

 

HTTP(80)

TCP(6)

80

80

NO

YES

NO

YES

 

NO

YES

 

 

 

 

 

 

 

 

 

 

 

DNS (53)

UDP(17)

53

53

NO

YES

NO

YES

NO

YES

 

 

 

 

 

 

 

 

 

 

 

DNS (53)

TCP(6)

53

53

NO

YES

NO

YES

NO

YES

 

 

 

 

 

 

 

 

 

 

 

FTP(21)

TCP(6)

21

21

NO

YES

NO

YES

NO

NO

 

 

 

 

 

 

 

 

 

 

 

Telnet(23)

TCP(6)

23

23

NO

YES

NO

YES

NO

NO

 

 

 

 

 

 

 

 

 

 

 

SMTP(25)

TCP(6)

25

25

NO

YES

NO

YES

NO

YES

 

 

 

 

 

 

 

 

 

 

 

POP3(110)

TCP(6)

110

110

NO

YES

NO

YES

NO

YES

 

 

 

 

 

 

 

 

 

 

 

NEWS(NNTP)

TCP(6)

119

119

NO

YES

NO

YES

 

NO

NO

(Network News

Transfer Protocol)

 

 

 

 

 

 

 

 

 

 

RealAudio/

UDP(17)

7070

7070

YES

YES

YES

YES

 

NO

NO

RealVideo

(7070)

 

 

 

 

 

 

 

 

 

 

PING

ICMP(1)

N/A

N/A

NO

YES

NO

YES

 

NO

YES

 

 

 

 

 

 

 

 

 

 

 

H.323(1720)

TCP(6)

1720

1720

YES

YES

NO

YES

NO

NO

 

 

 

 

 

 

 

 

 

 

 

T.120(1503)

TCP(6)

1503

1503

YES

YES

NO

YES

NO

NO

 

 

 

 

 

 

 

 

 

 

 

SSH(22)

TCP(6)

22

22

NO

YES

NO

YES

NO

NO

 

 

 

 

 

 

 

 

 

 

 

NTP/SNTP

UDP(17)

123

123

NO

YES

NO

YES

NO

YES

 

 

 

 

 

 

 

 

 

 

 

HTTP/HTTP

TCP(6)

8080

8080

NO

YES

NO

NO

 

NO

NO

Proxy

(8080)

 

 

 

 

 

 

 

 

 

 

HTTPS(443)

TCP(6)

443

443

NO

YES

NO

YES

 

N/A

N/A

 

 

 

 

 

 

 

 

 

 

 

ICQ (5190)

TCP(6)

5190

5190

YES

YES

N/A

N/A

N/A

N/A

 

 

 

 

 

 

 

 

 

 

 

MSN (1863)

TCP(6)

1863

1863

YES

YES

N/A

N/A

N/A

N/A

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

47

Chapter 4: Configuration

Page 47 Page 49
Image 48
Page 47 Page 49
Contents BiPAC 6404VP / 6404VGP VoIP/802.11g Broadband Firewall RouterUser’s Manual Version Release 5.08aTable of Contents Firewall and Access Control QoS Quality of ServiceCHAPTER 5 TROUBLESHOOTING VoIP Voice over Internet ProtocolFeatures Chapter 1 IntroductionIntroduction to your Router 802.11g Wireless AP with WPA SupportQuality of Service QoS Dynamic Host Configuration Protocol DHCP client and serverNetwork Address Translation NAT SOHO Firewall Security with DoS and SPIFirmware Upgradeable Rich Management InterfacesChapter 2 Installing the Router Important note for using this routerPackage Contents Do not use the same power source for this router as other equipmentThe Front LEDs RJ-45 connectorWireless Router Only RJ-11 connectorThe Rear Ports Port Power Switch PWR RESETWAN LAN Phone 1XCabling Chapter 3 Basic Installation Chapter 3 Basic InstallationConnecting Your Router ATA Mode Broadband Router ModeConfiguring PCs in Windows in Window XP 2. Double-click Local Area Connection. See Figure4. Select Internet Protocol TCP/IP and click Properties. See Figure Configuring PCs in Windows 2. Double-click Local Area “LAN” Connection. See Figure4. Select Internet Protocol TCP/IP and click Properties See Figure Configuring PC in Windows 95/98/ME 5. Then select the DNS Configuration tab. See Figure3. Click Properties Configuring PC in Windows NT4.0 2. Select TCP/IP Protocol and click Properties. See FigureFactory Default Settings Web Interface Username and PasswordDevice LAN IP settings ISP setting in WAN siteInformation from your ISP DHCP Obtain an IP Address Automatically Static IP Fixed IP AddressPPPoE Configuring with your Web Browser Chapter 4 Configuration ATA / Router Mode ConfigurationSave Config to FLASH StatusWireless Association Table Wireless Router Only StatusARP Table Routing TableDHCP Table RIP Routing TableLeased Table Expired TableEmail Status VoIP StatusError Log Event LogDiagnostic NAT SessionsUPnP Portmap ATA / Router Mode Functions LAN NAT DHCP Server Device IP WAN System Firewall QoS Virtual ServerTime Schedule Advanced VoIP RouterConfiguration LAN Local Area NetworkEthernet Primary IP AddressIP Alias → Active PC in LAN Ethernet Client Filter Default setting is set to DisableEthernet Client Filter Active PC in LAN displays a list of individual Ethernet device’s IP Address & MAC Address which connecting to the router Wireless Wireless Router Only ParametersWireless Distribution System WDS Wireless Security Wireless Router Only WPA-PSK TKIP / WPA-PSK AES Pre-Shared KeyPage Wireless Client / MAC Address Filter Wireless Router Only Wireless Client Filter Default setting is set to Disable→Associated Wireless Clients DHCP Server System Time ZoneRemote Access Firmware Upgrade Backup / Restore Restart Router User Management Firewall and Access Control General Settings Packet Filter Example Predefined Port Filters Rules Table 1 Predefined Port FilterApplication ProtocolUDP17 Packet Filter - Add TCP/UDP Filter Packet Filter - Add Raw IP Filter Page Click Delete Click Add TCP/UDP FilterExample Configuring Packet Filter5. The new port filter rule for HTTP is shown below Intrusion Detection Block DurationTable 2 Hacker attack types recognized by the IDS Intrusion NameDetect Parameter Ascend KillURL Filter Always Ondropped Instant Message Blocking The default is set to Disabled Peer to Peer Blocking The default is set to DisabledIM / P2P Blocking Firewall Log Log information can be seen in the Status - Event Log after enablingVoIP Voice over Internet Protocol VoIP Broadband Firewall RouterSetting for Phone Port WizardVoice QoS Authentication Username Same as Phone Number User-defined ProfilesNOTE User defined profiles are limited to 8 only SIP Device Parameters How to register to SIP Server Advanced - ParametersAdvanced - PSTN Environment Adjustment Note ONHOOK means hung upLogin Account Configuration Phone PortFor examples Volume ControlCodec Preference Speed DialPSTN Dial Plan PSTN Dial Plan Examples 3 Dial at Timeout4 Dial at Timeout no Prefix 1 Dial with PrefixChapter 4 Configuration VoIP Dial Plan Dial Plan Rules List Prefix ProcessingDial-Plan Examples DescriptionSpecial Dial Plan Examples ## xxLocalcheap.com is the default VoIP provider I set on phone port 1. When I call out any number start with 1 or 2 or 3 and plus rest of the phone number for local call, 03 is always prepended in front of these number. If 23295 are dialed, 03-2-32935 is the actual phone number called out via localcheap.com provider Mobilecheap.com is the default VoIP provider I set on phone port 2. When I call out 123-39-45678 for a mobile call, 123 is replaced with 09. Therefore, 09-39-45678 is the actual phone number called out via Mobilecheap.com provider Ring & Tone Country Specific Ring & ToneRing Parameters Tone ParametersSpecial Dial Codes OptionFlash-hook QoS Quality of Service Click ClearPrioritization HighTable 4 DSCP Mapping Table DSCP Mapping TableWireless Router Device Standard DSCPOutbound IP Throttling LAN to WAN Inbound IP Throttling WAN to LAN VoIP Normal PCs Restricted PC Connection DiagramInformation and Settings Example QoS for your NetworkAdvanced setting by using IP throttling Mission-critical applicationVoice application Restricted ApplicationChapter 4 Configuration Virtual Server “Port Forwarding” Add Virtual Server Internal IPExample IP AddressEdit DMZ Host Edit One-to-One NAT Network Address Translation Global IP AddressSelect the Apply button to apply your changes Table 5 Well-known and registered Ports Example List of some well-known and registered port numbersPort Number ProtocolTime Schedule Click Edit Configuration of Time ScheduleEdit a Time Slot Delete a Time SlotAdvanced Management and IGMP Static RouteDynamic DNS Check Email Device Management Embedded Web Server 2 Management IP accountsUniversal Plug and Play UPnP SNMP V1 andSNMP SNMP Version SNMPv2c and SNMPv3From RFC1650 EtherLike-MIB From RFC 1493 Bridge MIBFrom RFC 1471 PPP/LCP MIB From RFC 1472 PPP/Security MIBSave Configuration to Flash LogoutIGMP Chapter 5 Troubleshooting Problems starting up the routerProblems with the LAN Interface ProblemAPPENDIX A Product Support and Contact Information Contact Billion WORLDWIDE
Top Page Image Contents