SMC Networks AR4505GW manual Stateful Packet Inspection

Page 85

ADVANCED SETUP

Stateful Packet Inspection

This is called a “stateful” packet inspection because it examines the contents of the packet to determine the state of the communications; i.e., it ensures that the stated destination computer has previously requested the current communication. This is a way of ensuring that all communications are initiated by the recipient computer and are taking place only with sources that are known and trusted from previous interactions. In addition to being more rigorous in their inspection of packets, stateful inspection firewalls also close off ports until connection to the specific port is requested.

When particular types of traffic are checked, only the particular type of traffic initiated from the internal LAN will be allowed. For example, if the user only checks “FTP Service” in the Stateful Packet Inspection section, all incoming traffic will be blocked except for FTP connections initiated from the local LAN.

Stateful Packet Inspection allows you to select different application types that are using dynamic port numbers. If you wish to use the Stateful Packet Inspection (SPI) to block packets, click on the Yes radio button in the “Enable SPI and Anti-DoS firewall protection” field and then check the inspection type that you need, such as Packet Fragmentation, TCP Connection, UDP Session, FTP Service, H.323 Service, or TFTP Service.

When hackers attempt to enter your network, we can alert you by e-mail

If the mail server needs to authenticate your identification before sending out any e-mail, please fill related information in POP3 server, username and password fields. Otherwise leave the three fields blank.

4-47

Page 84 Page 86
Image 85
Page 84 Page 86
Contents Ozenda 11g Wireless Adsl Firewall Router Ozenda 11g Wireless Adsl Firewall Router Table of Contents Configuring the Adsl Router Iii Table of Contents About the Adsl Router Features and BenefitsInternet Access Wireless and Wired LANApplications Virtual Server Shared IP AddressDMZ Host Support SecurityIntroduction Package Contents Chapter InstallationHardware Description System RequirementsRear Panel Front Panel LED IndicatorsConnect the System ISP SettingsConnect the Adsl Line Installing a Full-Rate Connection Phone Line ConfigurationInstalling without a Splitter Installing a Splitterless ConnectionAttach to Your Network Using Ethernet Cabling Connect the Power AdapterConfiguring Client PC TCP/IP Configuration Windows 98/Me Configuring Client PC Internet Explorer Disable Http ProxyConfiguring Client PC Obtain IP Settings from Your Adsl Router Windows NT Windows NT Disable Http Proxy Windows NT Windows Windows Configuring Client PC Windows XP Disable Http Proxy Configuring Your Macintosh Computer Internet Explorer Uncheck all check boxes and click OK Configuring Client PC Chapter Configuring the Adsl Router Navigating the Management Interface Making Configuration ChangesChannel and Ssid Setup WizardParameter Setting VPI/VCI ConfirmParameter Description Parameter Setting Country or ISP Not Listed Enter the Bridging settings provided by your ISP ISP use Bridging Parameter SettingEnter the RFC1483 Bridging settings provided by your ISP ISP use 1483 Bridging Parameter SettingISP use PPPoE Parameter Setting ISP use PPPoA Parameter Setting Enter the 1483 Routing settings provided by your ISP ISP use 1483 Routing Parameter SettingMenu Description Advanced SetupTools System Time SettingsPassword Settings Remote Management DNS WAN ATM PVC Clone MAC Address LAN Wireless Channel and Ssid Security WEP WPA 802.1X NAS-ID Address Mapping NATVirtual Server Special Applications NAT Mapping Table Static Route RouteRIP This method provides very little security as it Routing Table Firewall Access Control Configuring the Adsl Router MAC Filter URL Blocking Schedule Rule Configuring the Adsl Router Intrusion Detection Intrusion Detection Feature Configuring the Adsl Router Stateful Packet Inspection Connection Policy Parameter Defaults DescriptionHigh DoS Criteria and Port Scan CriteriaDMZ Community SnmpTrap Parameters AdslStatus Following items are included on the Adsl status Statistics Tools Configuration ToolsReset Firmware UpgradeInformation StatusWindows 98/ME Finding the MAC address of a Network CardWindows NT4/2000/XP MacintoshAppendix a Troubleshooting Troubleshooting Troubleshooting Chart Troubleshooting Chart Symptom Action Wiring Conventions SpecificationsEthernet Cable RJ-45 Port Connection Figure B-1. RJ-45 Ethernet Connector Pin NumbersPin Assignments Straight-Through WiringCrossover Wiring Adsl Cable Figure B-2. RJ-11 Connector Pin NumbersFigure B-3. RJ-11 Pinouts Adsl Features Physical Characteristics PortsATM Features Management FeaturesLAN Features Security FeaturesApplications Modulation TypeModulation Rate-Output Power dBm 802.11g 6Mbps 15 dBm Dimensions Temperature IECWeight Input PowerIeee Standards SafetyStandards Conformance Electromagnetic Compatibility Internet StandardsSpecifications Page June 2004 Revision R01 F0.25
Top Page Image Contents