Multitech RF820-AP, RF830-AP manual From Host/Networks, Services, To Host/Networks, Action

Page 57

Chapter 5 – Configuration Using Web Management Software

Packet Filters > Packet Filter Rules

Important Note about the Order of Rules:

The order of the rules in the table is essential for the correct functioning of the firewall. By clicking the Move button, the order of execution can be changed. In front of rule to be moved, enter the line number that indicates where the rule should be placed. Confirm by clicking OK.

By default, new rules are created at the end of the table.

From (Host/Networks)

Select the host/network from which the information packet must originate for the filter rule to match. The Any option, which matches all IP addresses regardless of whether they are officially assigned or private addresses, may also be specified. The networks/host must be pre-defined in the Networks section. Example: network1 or host1 or Any

Services

Select the service that is to be matched with the filter rule. These services must be pre-defined in the Services section. The default entry Any selects all combinations of protocols and parameters (e.g., ports). Example: SMTP, ANY

To (Host/Networks)

Select the host/networks to which the packet is to be sent in order for the filter rule to match. The Any option, which matches all IP addresses regardless of whether they are officially assigned or private addresses, may also be specified. The networks/host must be pre-defined in the Networks section. Example: network2, or host 2 or Any

Action

Select the action that packet filter executes if the rule matches any traffic traversing the RouteFinder firewall. There are four types of actions:

•Accept – Allows/accepts all packets that match this rule.

•Reject – Blocks all packets that match this rule. The host sending the packet will be informed that the packet has been rejected.

•Drop – Drops all packets that match this rule, but the host is not informed. It will appear to the host that the destination address is not responding; in other words, it is a silent drop.

•Log – Packets matching the rule will be logged. Source address, destination address, and service will be logged. The logged messages are routed to the Remote Syslog Server if enabled in the Administration section.

Multi-Tech Systems, Inc. RouteFinder SOHO RF820/RF820-AP & RF830/RF830-AP User Guide (S000399E)

57

Image 57

Contents RouteFinder→ Soho Revision Date Description Warranty TrademarksPatents World HeadquartersContents Introduction Description Key FeaturesFeature Details RouteFinder Documentation RouteFinder Ship Kit ContentsRF820/RF820-AP Front Panel RF830/RF830-AP Front Panel Telecom Warnings for the ModemLEDs DescriptionConnector Back PanelsRF820 RF820-AP RF830 RF830-AP Typical Applications Specifications Specifications RF820 and RF820-AP RF830 and RF830-APVPN Specifications for 802.11b/g Interface SpecificationsRF8230AP and RF830AP Cabling Your RouteFinder InstallationRF820 RF820-APRF830-AP RF830Establish TCP/IP Communication Setting up a Workstation and Starting RouteFinderClick the Properties button To Set a Fixed IP AddressOpen a Web Browser Menu Bar Sub Other Options Screen Name Input Area Navigating the ScreensMenu Bar Network Setup WirelessSub-Menus Table of Menus and Sub-MenusConfiguring RouteFinder Start the RouteFinder ConfigurationAbout IPSec RouteFinder Initial Configuration Using the Wizard Setup Screen to Configure Your RouteFinderScreen Notes Wizard SetupISP Settings WAN 1 Dhcp Client ChoiceWAN 1 Static IP Choice WAN 1 PPPoE Choice MTU Important Note About Save and Restart Save to Flash MemoryRestart Administration Configuration Using Web Management SoftwareAdministration System Setup Administration System SetupAuto Reboot Timer Configure Email NotificationEmail Address Administrative Access Administration Administrative AccessAdministration Administrative Access Screen NoteAdministrative Access Http Port Change PasswordOld Password, New Password, Confirmation Web Interface Inactivity Time OutAdministration Remote Syslog Administration System LogsAdministration System Logs Administration Remote Syslog Remote SyslogSntp Configuration Administration Sntp ClientAdministration Sntp Client General ConfigurationDaylight Configuration Administration Sntp Client Time Zone ConfigurationDaylight Saving Start Time Daylight Saving End TimeAdministration Tools Administration ToolsReset Modem Administration Factory DefaultsReset to Factory Defaults Administration Tools Administration Factory DefaultsNetworks & Services Networks & Services Network ConfigurationNetworks & Services Network Configuration Network Configuration Fields RF830/RF830-AP Network Configuration ScreenHow to Confirm Your Entries Important Network NotesNetworks & Services Services Networks & Services Service ConfigurationThis is an example of screen with the TCP protocol selected Editing and Deleting User-Added Services Service ConfigurationTCP, UDP, and TCP& UDP AH and ESPNetwork Setup Network Setup IP SettingsNetwork Setup IP Settings Default Gateway WAN Choice Dhcp Client DefaultWAN Choice Static IP WAN 1 & WAN 2 WAN 2 is for the RF830/RF830-AP onlyWAN Choice PPPoE Wlan Settings Network Setup Wireless LANSecurity Selection Disable Network Setup Wireless LAN Wlan SecurityWlan Security Select SecurityNetwork Setup Wireless LAN Wlan Security WEP Key WEP Key to IndexWPA-PSK/WPA2-PSK Key Group Key Rekeying Access Control List Network Setup Wireless LAN Wlan Client FilterNetwork Setup Advanced IP Settings PPP Client for Cellular/Analog Modem Backup Network Setup PPP Cellular/Analog BackupNetwork Setup PPP Cellular/Analog Backup Screen Note This screen applies to the RF820/RF820-AP onlyModem Initialization Strings Signal Strength only for Cellular ModemsSIM Initialization String only for Cellular Modems PPP Keep-Alive ParametersLoad Balancing Weight Configuration Network Setup Load BalancingLoad Balancing Keep Alive URL Configuration Network Setup Load BalancingNetwork Setup Dynamic DNS Network Setup Dynamic DNSDdns Failover for the RF830/RF830-AP only Custom DNS Use WildcardCheck IP Check IP ServerNetwork Setup IP Masquerading Network Setup Static RoutesNetwork Setup Snat Network Setup SnatService Network Setup Dnat Network Setup DnatAdd Dnat Definition WAN IPPacket Filter Packet Filter Rules Packet FiltersFrom Host/Networks ServicesTo Host/Networks ActionPacket Filters Advanced Filters Packet Filters Advanced FiltersPacket Filter Packet Filter Log Packet Filter IcmpIcmp Forwarding Icmp on FirewallVPN IPSec VPN Virtual Private NetworkVPN IPSec Add a New ConnectionAdd IKE Connection Add an IKE ConnectionVPN IPSec Add IKE Connection Key Life NetBIOS BroadcastNumber of Retries Left Next HopAdd a Manual Connection Add Manual ConnectionVPN IPSec Add Manual Connection Fqdn Pptp Status Pptp SettingsEncryption Strength Select Remote AddressUser Authentication Authentication TypeAuthentication Type Select Radius Proxy Http Proxy ProxyHttp Status Http Allowed NetworksProxy Custom Filters DNS Proxy Proxy DNS ProxyProxy DNS Proxy LAN StatusDhcp Server LAN Subnet Settings Dhcp Server LAN Subnet SettingsDhcp Server Dhcp Server on LANDhcp Server Wlan Subnet Settings and Wlan Fixed Addresses Add Fixed AddressAdd Fixed Address Utilities Firmware Upgrade Utilities BackupUtilities Backup Utilities Firmware Upgrade BackupStatistics & Logs System Information Statistics & LogsStatistics & Logs System Information RF820/RF820-AP Screen RF830/RF830-AP ScreenLog Access to Administrative Access Port All Access Requests to Firewall Violating Security PolicyStatistics & Logs Network Interface Details Statistics & Logs Packet Filter LogStatistics & Logs IPSec Live Log Statistics & Logs Pptp Live LogStatistics & Logs Dhcp Server Live Log Statistics & Logs Wlan Client Live Log Statistics & Logs PPP Cellular/Analog LogStatistics & Logs Log Traces Statistics & Logs Log TracesSystem Diagnostics as a Troubleshooting Tool TroubleshootingProblem #4 Frequently Asked Questions If all else fails in the installation, what can I do? How do I access the Router’s setup pages with a Mac?How will I be notified of new router firmware upgrades? Which modems are compatible with the router?Appendix a Table of Commonly Supported Subnet Addresses Network Number Hosts Available Broadcast Address Antenna Electrical Characteristics Appendix B Antenna for Wireless RouteFinderAntenna MechanicalWeee Appendix C Waste Electrical Electronic Equipment DirectiveAES GlossaryIKE Isdn TA Ping PptpSsid WEP TkipWPA-PSK Wlan Wireless Local Area NetworkData Encryption Standard DES Definition IndexNetwork Setup PPP Cellular/Analog Modem Stats & Logs Dhcp Server Live Log