SMC Networks SMCWHSG44-G manual Icmp TCP UDP

Page 79

2.8.Configuring Advanced Settings

2.8.1.Filters and Firewall

2.8.1.1.Packet Filters

Fig. 100. Packet Filters Settings.

You can specify rules for the firewall component of the Router to check outgoing packets. Packets that meet the rules can be permitted or denied. The protocol field, source IP address field, destination IP address field, and destination port field of a packet's IP header are inspected to see if it meets a rule. A packet that meets a rule can be dropped (Block) or accepted (Accept) as specified in the Action setting of the rule. Packets that do not meet any rules can be dropped (Discard) or accepted (Pass) as specified in the Policy setting.

A rule is composed of 5 parts:

What to do if a packet meets this rule (Action)

Protocol type

All

ICMP

TCP

UDP

Source IP address range (Source IP Address AND Source Subnet Mask)

Destination IP address range (Destination IP Address AND Destination Subnet Mask)

Port ranges

A source (destination) IP address range is determined by performing an AND operation on the source (destination) IP address field and the source (destination) subnet mask field. For example, if the source IP address field is 192.168.0.1 and the source subnet mask field is 255.255.255.0, the resultant source IP address range is 192.168.0.0 to 192.168.0.255.

Up to 5 port ranges can be specified in a rule, and these ranges must be separated by commas. For example, “21,80,85-89,140,200-230” in the destination port field signifies 5 port ranges.

78

Page 78 Page 80
Image 79
Page 78 Page 80
Contents SMCWHSG44-G Page Trademarks CopyrightLimited Warranty Page FCC Radiation Exposure Statement Federal Communication Commission Interference StatementIndustry Canada Class B EC Conformance Declaration Power Cord Safety Safety ComplianceSchuko Page Wichtige Sicherheitshinweise Germany Schuko Page Table of Contents System Page SMCWHSG44-G SMCWHS-POS Introduction User Authentication, Authorization, and Accounting AAA Overview FeaturesIeee 802.11b/g Compliant Wireless Operation Internet Connection Sharing Network Security Firmware Tools LED Definition Package ChecklistRear Panel POE enabled LAN Port Position Selecting a Power Supply MethodMounting the SMCWHSG44-G on a Wall Changing the TCP/IP Settings of the Managing Computer Preparing for ConfigurationEntering the Password Configuring the SMCWHSG44-GHome Setup Wizard Selecting an Operational ModePage Router with a Static-IP DSL/Cable Connection Router with a DHCP-Based DSL/Cable ConnectionRouter with Multiple DSL/Cable Connections Setup Wizard Configuring Ieee 802.11 Settings Setup Wizard Configuring Dhcp Server SettingsWeb Redirection Configuring User Authentication SettingsAuthentication protocol Local Authentication SeverPage Account Table List How to Setup the Mini-POS Ticket PrinterIeee Radius Settings Allowable Authentication Modes Configuring Radius SettingsDeploying the SMCWHSG44-G Setting up Client ComputersTo establish a wireless link to an AP Configuring Ieee 802.11-Related SettingsConfiguring TCP/IP-Related Settings Page Authentication Success Menu Structure OverviewLogout Page Home and Refresh Commands Save, Save & Restart, and Cancel CommandsStatus Associated Wireless Clients Account Table Authenticated UsersManaged LAN Devices Session ListSystem Specifying Operational ModeManaging Firmware Changing PasswordTo upgrade firmware of the SMCWHSG44-G by Http Backing up and Restoring Configuration Settings by HttpUpgrading Firmware by Http Upgrading Firmware by Tftp To upgrade firmware of the SMCWHSG44-G by TftpTo back up configuration of the SMCWHSG44-G by Tftp Backing up and Restoring Configuration Settings by TftpTo restore configuration of the SMCWHSG44-G by Tftp Configuring TCP/IP Related Settings Address Resetting Configuration to Factory DefaultsTime Zone Router with a DHCP-Based DSL/Cable Connection Router with a Static-IP DSL/Cable Connection DNS DNS Proxy NAT Basic Host Address ResolutionVirtual Server Mappings To expose preset internal serversDhcp Server Ii. Static Dhcp Mappings Dhcp Server BasicLoad Balancing Dhcp RelayTo always assign an IP address to a specific Dhcp client Configuring Ieee 802.11-Related Settings Wireless Basic Zero Client ReconfigurationWireless Distribution System To enable a WDS link Wireless Distribution System SettingsNetwork Topology Containing a Loop SecurityPage MAC-Address-Based Access Control Settings MAC-Address-Based Access ControlTo grant wireless clients access to the wireless network To deny wireless clients access to the wireless networkIeee 802.1x/RADIUS Ieee 802.1x/RADIUS Settings Configuring Authentication Settings AAA Basic Default Authentication Failure Warning To specify an uncontrolled computer by MAC address Unrestricted ClientsRadius Basic Walled GardenRobustness Log-On Page Customization Settings Authentication Session ControlAuthentication Success Page Customization Settings Ddns Advertisement Links SettingsIcmp TCP UDP Firewall VlanTo set a rule for packet filtering Management Basic URL FiltersTo block Http traffic to an unwelcome Web site System Log UPnPSnmp Access RulesLAN Device Management Unrestricted Host MAC Address SettingsTo specify a LAN device to manage Example for LAN Device ManagementAppendix a Default SettingsLED Definitions TCP/IP Setting Problems Page Other Problems Wireless Settings ProblemsAppendix C Distances and Data Rates Standards Network ConfigurationTransmission output Power Configuration and ManagementKeypad Ad Hoc Access PointAuthentication Basic Service Set BSSEncryption Dynamic Host Configuration Protocol DhcpExtended Service Set ESS Extensible Authentication Protocol EAPLocal Area Network LAN Inter Access Point Protocol IappPower over Ethernet PoE InfrastructureSession Key Service Set Identifier SsidWireless Distribution System WDS Wi-Fi Protected AccessWPA Pre-shared Key PSK Wired Equivalent Privacy WEPPage For Technical SUPPORT, Call
Top Page Image Contents