Siemens E-110-I user manual Firewall, IP Filters and Blocked Protocols, Firewall Configuration

Page 62

SIEMENS ADSL E-110_E-110-I user manual

Firewall, IP Filters and Blocked Protocols

Firewall Configuration

Configuration Manager provides built-in firewall functions, enabling you to protect the system against denial of service (DoS) attacks and other types of malicious accesses to your LAN. You can also specify how to monitor attempted attacks, and who should be automatically notified.

1.Select Services > FireWall. The FireWall Configuration page displays.

2.Configure any of the following settings:

Field

Description

Blacklist Status

If you want the device to maintain and use a blacklist, click Enable. Click

 

Disable if you do not want to maintain a list.

 

 

Blacklist Period(min)

Specifies the number of minutes that a computer's IP address will

 

remain on the blacklist.

 

 

Attack Protection

Click Enable to use the built-in firewall protections that prevent the

 

following common types of attacks:

 

IP Spoofing: Sending packets over the WAN interface using an

 

internal LAN IP address as the source address.

 

Tear Drop: Sending packets that contain overlapping fragments.

 

Smurf and Fraggle: Sending packets that use the WAN or LAN IP

 

broadcast address as the source address.

 

Land Attack: Sending packets that use the same address as the

 

source and destination address.

 

Ping of Death: Illegal IP packet length.

 

 

DOS Protection

Click Enable to use the following denial of service protections:

 

SYN DoS

 

ICMP DoS

 

Per-host DoS protection

 

 

56

Rev:01_040220

Page 61 Page 63
Image 62
Page 61 Page 63
Contents Siemens Adsl E-110/E-110-I For Using Safety NotesFor Installation For ServiceContent IiiRIP Configuration Advanced Configuration via Web browserNAT Configuration Administration TasksContents Appendix SpecificationPage Features Before You UseUnpacking Configuration and ManagementSystem Requirements Physical Outlook LED Indicators Front Panel System MessagesOverview Front Panel9V 1A Rear PanelRear PanelEthernet Analog Pstn installation InstallationConnecting the Adsl Router Choosing a place for the Adsl RouterIsdn installation Isdn NTUSB driver installation Install the USB driverUninstall the USB driver Click Start Programs Siemens DSL Modem UninstallFor Windows ConfigurationConfigure TCP/IP on Client PC Page Rev01040220 Page For Windows 98 and Windows 98 SE Your network interface card When returning to Network window, click OK Rev01040220 Page For Windows ME For Windows NT Page Page Page For Windows Page Page For Windows XP Click Internet ProtocolTCP/IP and then click OKFor Macintosh OS 8.6 For Macintosh OS From the Apple Menu, select System Preferences…Close the Network window Renew IP Address on Client PC For Windows ME For Windows Click Connect and Save Quick Configuration via Web browserInternet Access Advanced Configuration via Web browser Main Menu Commonly Used Buttons and IconsViewing Basic System Information Quick Configuration Rebooting the device using Configuration Manager Committing Changes to Permanent StorageSub-Menus DSLNAT Advanced Configuration Configuring IP RoutesPart 1. Creating IP address pools Dhcp ConfigurationConfiguring Dhcp Server Part 2. Enabling Dhcp Server Mode Viewing Current Dhcp Address Assignments Part 3. Configuring your PCs as Dhcp clientsModifying Address Pools Select Lan Dhcp ServerPart 1. Defining the Dhcp relay interfaces Configuring Dhcp RelayPart 2. Enabling Dhcp relay mode These private IP addresses Are translated to NAT ConfigurationViewing Your NAT Configuration FieldDescription Page Field Description Viewing NAT Rules and Rule StatisticsViewing Current NAT Translations Adding NAT Rules Rdr rule Allowing external access to a LAN computer Basic rule Performing 11 translations Bimap rule Performing two-way translations Page Select a Send Mode and a Receive Mode RIP ConfigurationConfiguring the RIP Viewing RIP Statistics Firewall Configuration Firewall, IP Filters and Blocked ProtocolsMax Icmp Conn Mail ID of Admin 1/2/3Field Description Max Half open TCP Conn Max Single Host ConnConfiguring IP Filter Global Settings IP Filter ConfigurationViewing Your IP Filter Configuration Action Creating IP Filter RulesField Description Rule ID DirectionLog Tag Field Description Log OptionSecurity Level Start/End TimeIcmp Type Field Description Dest PortTCP Flag Icmp CodeIP filter rule examples Specify Protocol eq TCPViewing IP Filter Statistics To Block Specific Protocols Managing Current IP Filter SessionsChanging Your Login Password Administration TasksUser Configuration Changing the System Date and TimeAdding a New User Image UpgradeSelect Admin Local Image Upgrade View System Alarms DiagnosticsPort Settings View DSL Parameters Page Connection Modes Bridge ModePart 1 Configuring the Adsl Router Creating an ATM VCC interfaceMux Type Creating an EoA interfaceField Description VC Interface Max Proto per AAL5Select Bridge LAN Config Enable Bridging functionLAN configuration Part 2 Check your connection status PPP Connection ModePart 3 Configuring the PC Commit your changesInterface Sec Type Select Public Creating a PPP interfaceSelect the ATM VC you created, e.g. aal5-0 Password Service NameLogin Name Field Description Status Select Start or StartOnDataRouter Connection Mode Creating a IPoA interface Internet Access TroubleshootingProblem Troubleshooting Suggestion LEDs Configuration Manager ProgramProblem Troubleshooting Suggestion Upgrading Error Message Possible cause ActionGlossary UDP User Datagram Protocol PVC Permanent Virtual CircuitRIP Routing Information Protocol Virtual ServerAppendix Specification SoftwareRegulatory Approvals and Compliance Power Requirement and Operation Environment RequirementHardware Physical
Top Page Image Contents