NetComm NB712 manual Automatic Firewall Security

Page 49

Automatic Firewall Security

Select Automatic Firewall Security. This level enables basic firewall security as well as all DoS protection and the SPI filter function. Press Finish to finish setting up the firewall.

The screen will display the parameters, which will be written to EPROM. Check the parameters.

Press restart to restart the router or press Continue to setup another function.

NB712 /

NB714 User Guide

49

YML829

Rev1

 

Image 49
Contents Page Contents NB714 User Guide Package Contents FeaturesIntroduction Routing SpecificationBridging SecurityATM QoS IndicatorsAAL5 Encapsulation WAN InterfacePhysical/Electrical ApplicationMemory Product InformationFirewall Packet Filtering Types of FirewallThere are three types of firewall Circuit Gateway Denial of Service AttackApplication Gateway SYN Flood Ping of deathIcmp Flood UDP FloodFrame Specification Vlan Virtual Local Area NetworkVID uniquely identifies the Vlan to which the frame belongs ApplicationsFront Panel Getting to know the routerLED status LAN 1,2,3,4 Rear PanelCheck the Terminal Access Program Connecting your G.SHDSL Modem RouterDetermine Connection Setting Check the Ethernet Adapter in PCBridge EoA Route EoA IPoA PPPoA PPPoE Install the Shdsl RouterCross-over Ethernet cables can be used Port router with network topologyConfiguration via Web Browser Router, which will lose any previous configuration System error or disconnection Basic SetupClick Basic for basic installation LAN Parameters Bridge ModeEnter Host Name Enter VPI Enter VCI Click LLC Click Next WAN1 ParametersRouting Mode Dhcp Client Click Next to setup WAN1 parametersLAN IP Type IP type Dhcp ServerIP Address Subnet MaskDNS Server Trigger Dhcp ServiceRelay Dhcp relayAAL5 Encap PPPoE or PPPoAProtocol For more information, refer to the section on NAT/DMZPassword Confirm PasswordUsername Idle TimeEprom Gateway IPoA or EoAEprom Advanced Setup Link Type Annex TypeData rate Data RateMargin range is from 0 to Shdsl SNR marginMargin, the better the line connection Reconnect for better line connectionWAN UBR Unspecified Bit Rate QoS Quality of ServiceCBR Constant Bit Rate PCR Peak Cell Rate in kbpsBridge Eprom Vlan Packets PvidRoute RIP ModeAuto RIP Summary Press ModifyRIP Version Authentication requiredPoison Reverse NAT/DMZ Multi-NAT Multi-DMZVirtual Start IP Address Count Global Start IP AddressVirtual Server Basic Firewall Security FirewallAutomatic Firewall Security Click Advanced Firewall Security and then press Finish Advanced Firewall SecuritySYN Attack Connections and will be unresponsivePing of death attack attempts to crash your system by Addresses originating from your networkDescription DirectionSrc. IP Address Dest. IP AddressFiltering rule will be configured as follow Filtering Rule for Smtp connectionFiltering Result Update Filtering RuleRule Order When the rule is ordered as ABC10.0.0.0 172.16.6.0 Permit 10.1.99.0 172.16.0.0 Deny Any IP QoS NB714 User Guide Administration Security NB712 / NB714 User Guide MIB SnmpCommunity Snmp statusVersion Community Click on Time Sync Time SyncTime Server Sntp serviceTime Zone Utility System Info Backup Configuration Restore Configuration10.2 Config Tool Lose all the configured parametersUpgrade To logout the router, press logout LogoutRestart You can monitor the following StatusCO side LAN-to-LAN connection with bridge ModeLAN Parameters Enter IP 192.168.1.1 Enter Subnet Mask WAN1 ParametersEnter Gateway 192.168.1.1 Enter Host Name Enter VPI Enter VCI EncapHost Name Enter Soho CPE SideVCI32 EncapLLC Dhcp Service LAN to LAN Connection with Routing ModeClick Route and CO Side then press Next IP Address 192.168.20.1 Subnet Mask 255.255.255.0 Host NameWAN Parameters Click Next to setup the IP parametersIP Address 192.168.10.1 Subnet Mask 255.255.255.0 Host Name Click Route and CPE Side then press Next192.168.30.2 Serial Console Useradmin PasswordTelnet Baudrate 9600 Data Bits Parity Check Stop Bits Flow-controlOperation Interface Window structure To choose another parameters Menu Driven Interface CommandsCtrl + C To quit the configuring item Ctrl + Q For help Menu Tree 14.7 Configuration Done via utility command Ping Packet internet groper command AdminUtility Exit Quit systemStatus System ShowConfig ScriptAdministration RebootWrite PingUser Profile Edit Community Entry List Show SnmpSupervisor Password and ID Sntp Move the cursor to service and press enterMove the cursor to sntp and press enter Move the cursor to timeserver1 and press enterMove the cursor to list and review the setting Utility SetupExit ModeShdsl 14.16.3 WAN After enter add menu, the screen will prompt as follow BridgeMove the cursor to vlan and press enter VlanFollow the following steps to configure 802.11q Vlan 14.16.6 802.11Q VlanFor each VLAN, Vlan ID is a unique number among 1~4095 You can review the list of RIP parameters via list command Generic command can setup RIP mode and auto summery modeRoute Screen will display the followingIP share 14.16.8 LANYou can configure NAT parameters in nat menu 14.16.10 NATMapping After key in enter, the screen will prompt as below 14.16.11 PATfirewall security level can configure via level command You can enable the demilitarized zone via active command14.16.12 DMZ FirewallActive DoS Protection IPQoS Dhcp You can view the Dhcp configuration via list commandDNS proxy DefaultHost name RJ-45 Network Ports Appendix a Cable Information10Mbps 100MbpsStraight-Through Cabling Straight and crossover cable configurationCross-Over Cabling No connection Shdsl Line Connector Console CableRxD O TxDContact Information Appendix B Registration and Warranty InformationProduct Warranty