SMC Networks SMC7904BRB2 manual Stateful Packet Inspection

Page 89

CONFIGURATION PARAMETERS

Stateful Packet Inspection

This is called a “stateful” packet inspection because it examines the contents of the packet to determine the state of the communications; i.e., it ensures that the stated destination computer has previously requested the current communication. This is a way of ensuring that all communications are initiated by the recipient computer and are taking place only with sources that are known and trusted from previous interactions. In addition to being more rigorous in their inspection of packets, stateful inspection firewalls also close off ports until connection to the specific port is requested.

When particular types of traffic are checked, only the particular type of traffic initiated from the internal LAN will be allowed. For example, if the user only checks “FTP Service” in the Stateful Packet Inspection section, all incoming traffic will be blocked except for FTP connections initiated from the local LAN.

Stateful Packet Inspection allows you to select different application types that are using dynamic port numbers. If you wish to use the Stateful Packet Inspection (SPI) to block packets, click on the Yes radio button in the “Enable SPI and Anti-DoS firewall protection” field and then check the inspection type that you need, such as Packet Fragmentation, TCP Connection, UDP Session, FTP Service, H.323 Service, or TFTP Service.

When hackers attempt to enter your network, we can alert you by e-mail

Enter your email address. Specify your SMTP and POP3 servers, user name, and password.

4-51

Page 88 Page 90
Image 89
Page 88 Page 90
Contents Page Page Router with built-in ADSL2/2+ Modem Trademarks Limited Warranty Limited Warranty Federal Communication Commission Interference Statement CompliancesEC Conformance Declaration Safety Compliance Wichtige Sicherheitshinweise Germany Compliances Table of Contents Configuring the BarricadeTM Vii Viii About the Barricade Features and BenefitsInternet Access Wired LANApplications Shared IP AddressDMZ Host Support Virtual ServerSecurity Virtual Private Network VPNIntroduction Package Contents Chapter InstallationHardware Description System RequirementsSMC7904BRA2 Rear Panel SMC7904BRB2 Rear Panel SMC7904BRA2 Front Panel LED Indicators SMC7904BRA2SMC7904BRB2 Front Panel LED Indicators SMC7904BRB2Connect the Adsl Line ISP SettingsConnect the System Connect the Power Adapter Attach to Your Network Using Ethernet CablingConnection Illustration Installation TCP/IP Configuration Configuring Client PCProperties WindowsDial-Up Connections Accessories/ Command Prompt Disable Http ProxyObtain IP Settings from Your Barricade Configuring Client PC Windows XP Obtain IP Settings from Your Barricade System Preferences Configuring Your Macintosh ComputerInternet Explorer Uncheck all check boxes and click OK Configuring Client PC Chapter Configuring Barricadetm Navigating the Management Interface Making Configuration Changes Time Zone Setup WizardParameter Setting Parameter Setting Country or ISP Not Listed Parameter Description PPPoEPPPoA Your ISP Bridging DhcpBridging Static Routing Bridging Routing Dhcp ISP ConfirmSetup Wizard Menu Description Configuration parametersDdns System Time SettingsPassword Settings Remote Management WAN ATM PVC Bridging ATM InterfacePPPoA Routing PPPoE IP Over RFC1483 bridged Clone MAC Address DNS LAN IP LANVlan Vlan Profile NAT Address Mapping Virtual Server Special Application NAT Mapping Table Static Route RoutingRIP This method provides very little security as it Routing Table Firewall Access Control Configuring the Barricadetm MAC Filter URL Blocking Schedule Rule Configuring the Barricadetm Intrusion Detection Intrusion Detection Feature Configuring the Barricadetm Stateful Packet Inspection Connection Policy Parameter Defaults DescriptionHigh DoS Criteria and Port Scan CriteriaDMZ Snmp Community Trap Upnp QOS Traffic Mapping Traffic Statistics Adsl Parameters AdslAdsl Status Error Interleaved Path Ddns Ping Utility ToolsTrace Route Utility Configuration Tools Firmware Upgrade Reset Status Configuring the Barricadetm Following items are included on the Status screen Windows NT4/2000/XP Finding the MAC address of a Network CardMacintosh LinuxAppendix a Troubleshooting Hosts on the attached LAN. However, if you manually Troubleshooting Chart Troubleshooting Ethernet Cable SpecificationsWiring Conventions RJ-45 Port Connection Figure B-1. RJ-45 Ethernet Connector Pin NumbersPin Assignments Straight-Through WiringCrossover Wiring Adsl Cable Figure B-2. RJ-11 Connector Pin NumbersFigure B-3. RJ-11 Pinouts Adsl Features Physical Characteristics PortsATM Features Management FeaturesLAN Features Security FeaturesTemperature IEC Weight 500 g Input Power 12 V 1 a Ieee Standards
Related manuals
Manual 2 pages 37.56 Kb
Top Page Image Contents