Paradyne 1754 manual Configuring Intrusion Detection Settings

Page 61

1752 and 1754 SHDSL Router User’s Guide

a. Transport Type. Select a transport type from the drop-down list, depending on whether you are adding a trigger for a TCP or a UDP application.

b. Port Number Start. Type the start of the trigger port range that the primary session uses.

c. Port Number End. Type the end of the trigger port range that the primary session uses.

d. Allow Multiple Hosts. Select allow if you want a secondary session to be initiated to or from different remote hosts. Select block if you want a secondary session to be initiated only to or from the same remote host.

e. Max Activity Interval. Type the maximum interval time (in milliseconds) between the use of secondary port sessions.

f. Enable Session Chaining. Select Allow or Block depending on whether you want to allow multi-level TCP session chaining.

g. Enable UDP Session Chaining. Select Allow or Block depending on whether you want to allow multi-level UDP and TCP session chaining. Set Enable Session Chaining to Allow to enable it.

h. Binary Address Replacement. Select Allow or Block depending on whether you want to use binary address replacement on an existing trigger.

i. Address Translation Type. Specify what type of address replacement is set on a trigger. Set Binary Address Replacement to Allow to enable it.

3.Once you have configured the trigger, click on . The Firewall Trigger Configuration page is displayed, containing details of the trigger that you have just configured.

4.Each trigger displayed in the Firewall Trigger Configuration page has a Delete hyperlink assigned to it. To delete a trigger, click on this link, then at the confirmation page, click on the Delete button. The Firewall Trigger Configuration page is displayed with details of the deleted trigger removed. There are two hyperlinks on the page:

a. To add a new trigger, click on New Trigger.

b. To display the Security Interface Configuration page, click on Return to Interface List.

Configuring Intrusion Detection Settings

Intrusion Detection settings allow you to protect your network from intrusions such as denial of service (DOS) attacks, port scanning, and web spoofing. This section assumes that you have followed the instructions in the Enabling Security section and the Enabling Firewall and/or Intrusion Detection section.

To configure Intrusion Detection settings:

1.Go to the Policies, Triggers and Intrusion Detection section of the Security Interface Configuration page. Click on Configure Intrusion Detection. The Firewall Configure Intrusion Detection page is displayed:

1752-A2-GB20-00

June 2005

61

Page 60 Page 62
Image 61
Page 60 Page 62
Contents 1754 Shdsl Routers Warranty, Sales, Service, and Training Information Important Safety Instructions EMI Notices JapanUnited States EMI Notice Canada EMI NoticeActa Customer Information Contents Configuring the Router Using EmWeb Diagnostic and Troubleshooting Series Overview FeaturesApplications SpecificationsLED Front Panel LED and Rear Panel description Hardware Setup and StartupRestore Factory Defaults/Reboot Button DSL Connectors DescriptionParts check Hardware Connection Model RJ45 RJ11 Switch Internet Windows XP Configuring Windows PCsJune Windows Me WindowsSelect Network Protocol dialog box appears Windows 95Windows NT Mac OS Configuring Apple PCsMac OS 8.x or About EmWeb pages Accessing EmWebStatus Pages Physical port connection status System status1754 Shdsl Router User’s Guide 1754 Shdsl Router User’s Guide Wire Pair DSL Pair to Use Illustration 1754 Shdsl Router User’s Guide Bridge/Router Interfaces Event Log System informationWAN Connection Setup pagesEditing a WAN service Creating a WAN serviceDeleting a WAN service LAN SetupCreating a virtual interface routed services only LAN connections Configuring primary and secondary LAN connectionsCreating virtual interfaces Enabling/disabling the Dhcp server Dhcp ServerCreating a Dhcp server subnet Editing a Dhcp Subnet Creating a Fixed Host Enabling/disabling Dhcp relay Dhcp RelayEditing/deleting entries in the Dhcp relay list Configuring DNS serversDNS Client DNS RelayConfiguring the DNS relay list Synchronize Client with NTP Server Sntp ClientConfigure Sntp Client Mode Configure SNTP-NTP ServerSetting the System Clock System Pages Quick SetupBackup/Restore Firmware UpdateSave configuration Restoring your configurationRestart Router Editing or Deleting a Login Account AuthenticationSecurity Advanced PagesEnabling Firewall and/or Intrusion Detection Enabling SecurityNAT Configuring security interfacesConfiguring NAT Global Addresses Configuring NAT1754 Shdsl Router User’s Guide Configuring NAT Reserved Mapping Configuring Firewall Policies Configuring validators Configuring Triggers Configuring Intrusion Detection Settings 1754 Shdsl Router User’s Guide Editing a route IP RoutesCreating an IP V4 Route Deleting a routeBridge Global Bridge Configuration Spanning bridge configuration Vlan configurationPvid Interface ConfigurationPriority map configuration Default value 1754 Shdsl Router User’s Guide Vlan ID Edit Tagged PortsCreate a new Vlan Edit untagged Ports1754 Shdsl Router User’s Guide VPN Status VPNField Description Field Description SPI Create a new IPSec selector Edit IPSec ConfigCreate IPSec Interface Create IPSec SA Conexantconexantconexant Des Snmp Ports Wire Mode DSL Pair to Use Illustration Diagnostic and Troubleshooting
Top Page Image Contents