Siemens E-110-I Field Description Dest Port, TCP Flag, Icmp Type, Icmp Code, IP Frag Pkt

Page 67

 

 

Chapter 4: Advanced Configuration

 

 

 

 

 

Field

Description

 

 

Dest Port

Port number criteria for the destination computer(s) (i.e., the port number of the

 

 

 

type of computer to which the packet is being sent).

 

 

This field will be dimmed (unavailable for entry) unless you have selected TCP or

 

 

UDP as the protocol.

 

 

See the description of Src IP Address for the selection options.

 

 

 

 

 

TCP Flag

Specifies whether the rule should apply only to TCP packets that contain the

 

 

synchronous (SYN) flag, only to those that contain the non-synchronous

 

 

(NOT-SYN) flag, or to all TCP packets (All). This field will be dimmed (unavailable

 

 

for entry) unless you selected TCP as the Protocol.

 

 

 

 

 

ICMP Type

Specifies whether the value in the type field in ICMP packet headers will be used

 

 

as a criteria. The code value can be any decimal value from 0 to 255. You can

 

 

specify that the value must equal (eq) or not equal (neq) the specified value, or

 

 

you can select any to enable the rule to be invoked on all ICMP packets. This field

 

 

will be dimmed (unavailable for entry) unless you specify ICMP as the Protocol.

 

 

 

 

 

ICMP Code

Specifies whether the value in the code field in ICMP packet headers will be used

 

 

as a criteria. The code value can be any decimal value from 0 to 255. You can

 

 

specify that the value must equal (eq) or not equal (neq) the specified value, or

 

 

you can select any to enable the rule to be invoked on all ICMP packets. This field

 

 

will be dimmed (unavailable for entry) unless you specify ICMP as the Protocol.

 

 

 

 

 

IP Frag Pkt

Determines how the rule applies to IP packets that contain fragments. You can

 

 

choose from the following options:

 

 

Yes: The rule will be applied only to packets that contain fragments.

 

 

No: The rule will be applied only to packets that do not contain fragments.

 

 

Ignore: (Default) The rule will be applied to packets whether or not they contain

 

 

fragments, assuming that they match the other criteria.

 

 

 

 

 

IP Option Pkt

Determines whether the rule should apply to IP packets that have options

 

 

specified in their packet headers.

 

 

Yes: The rule will be applied only to packets that contain header options.

 

 

No: The rule will be applied only to packets that do not contain header options.

 

 

Ignore: (Default) The rule will be applied to packets whether or not they contain

 

 

header options, assuming that they match the other criteria.

 

 

 

 

 

Packet Size

Specifies that the IP Filter rule will take affect only on packets whose size in bytes

 

 

matches this criteria. (lt = less than, gt = greater than, lteq = less than or equal

 

 

to, etc.)

 

 

 

 

 

TOD Rule Status

The Time of Day Rule Status determines how the Start Time/End Time settings

 

 

are used.

 

 

Enable: (Default) The rule is in effect for the specified time period.

 

 

Disable: The rule is not in effect for the specified time period, but is effective at

 

 

all other times.

 

 

 

 

3.When you are done selecting criteria, ensure that Enable is selected and then click [Apply].

If the security level of the rule matches the globally configured setting, a green ball in the Oper. Status column for that rule, indicating that the rule is now in effect. A red ball will display when the rule is disabled or if its security level is different than the globally configured level.

4.Ensure that the Security Level and Private/Public/DMZ Default Action settings on the IP Filter Configuration page are configured as needed, then click [Apply].

A page gives a receipt for the changes.

5.Select Admin > Commit & Reboot and click [Save] to save your changes to permanent storage.

Rev:01_040220

61

Page 66 Page 68
Image 67
Page 66 Page 68
Contents Siemens Adsl E-110/E-110-I For Service Safety NotesFor Installation For UsingIii ContentAdministration Tasks Advanced Configuration via Web browserNAT Configuration RIP ConfigurationAppendix Specification ContentsPage Before You Use FeaturesSystem Requirements Configuration and ManagementUnpacking Front Panel LED Indicators Front Panel System MessagesOverview Physical OutlookEthernet Rear PanelRear Panel9V 1A Choosing a place for the Adsl Router InstallationConnecting the Adsl Router Analog Pstn installationIsdn NT Isdn installationInstall the USB driver USB driver installationClick Start Programs Siemens DSL Modem Uninstall Uninstall the USB driverConfigure TCP/IP on Client PC ConfigurationFor Windows Page Rev01040220 Page For Windows 98 and Windows 98 SE Your network interface card When returning to Network window, click OK Rev01040220 Page For Windows ME For Windows NT Page Page Page For Windows Page Page Click Internet ProtocolTCP/IP and then click OK For Windows XPFor Macintosh OS 8.6 From the Apple Menu, select System Preferences… For Macintosh OSClose the Network window Renew IP Address on Client PC For Windows ME For Windows Internet Access Quick Configuration via Web browserClick Connect and Save Advanced Configuration via Web browser Commonly Used Buttons and Icons Main MenuViewing Basic System Information Quick Configuration Committing Changes to Permanent Storage Rebooting the device using Configuration ManagerDSL Sub-MenusNAT Configuring IP Routes Advanced ConfigurationConfiguring Dhcp Server Dhcp ConfigurationPart 1. Creating IP address pools Part 2. Enabling Dhcp Server Mode Select Lan Dhcp Server Part 3. Configuring your PCs as Dhcp clientsModifying Address Pools Viewing Current Dhcp Address AssignmentsPart 2. Enabling Dhcp relay mode Configuring Dhcp RelayPart 1. Defining the Dhcp relay interfaces Viewing Your NAT Configuration NAT ConfigurationThese private IP addresses Are translated to FieldDescription Page Viewing Current NAT Translations Viewing NAT Rules and Rule StatisticsField Description Adding NAT Rules Rdr rule Allowing external access to a LAN computer Basic rule Performing 11 translations Bimap rule Performing two-way translations Page Configuring the RIP RIP ConfigurationSelect a Send Mode and a Receive Mode Viewing RIP Statistics Firewall, IP Filters and Blocked Protocols Firewall ConfigurationMax Single Host Conn Mail ID of Admin 1/2/3Field Description Max Half open TCP Conn Max Icmp ConnViewing Your IP Filter Configuration IP Filter ConfigurationConfiguring IP Filter Global Settings Direction Creating IP Filter RulesField Description Rule ID ActionStart/End Time Field Description Log OptionSecurity Level Log TagIcmp Code Field Description Dest PortTCP Flag Icmp TypeSpecify Protocol eq TCP IP filter rule examplesViewing IP Filter Statistics Managing Current IP Filter Sessions To Block Specific ProtocolsChanging the System Date and Time Administration TasksUser Configuration Changing Your Login PasswordSelect Admin Local Image Upgrade Image UpgradeAdding a New User Diagnostics View System AlarmsPort Settings View DSL Parameters Page Creating an ATM VCC interface Bridge ModePart 1 Configuring the Adsl Router Connection ModesMax Proto per AAL5 Creating an EoA interfaceField Description VC Interface Mux TypeLAN configuration Enable Bridging functionSelect Bridge LAN Config Commit your changes PPP Connection ModePart 3 Configuring the PC Part 2 Check your connection statusSelect the ATM VC you created, e.g. aal5-0 Creating a PPP interfaceInterface Sec Type Select Public Field Description Status Select Start or StartOnData Service NameLogin Name PasswordRouter Connection Mode Creating a IPoA interface Configuration Manager Program TroubleshootingProblem Troubleshooting Suggestion LEDs Internet AccessUpgrading Error Message Possible cause Action Problem Troubleshooting SuggestionGlossary Virtual Server PVC Permanent Virtual CircuitRIP Routing Information Protocol UDP User Datagram ProtocolSoftware Appendix SpecificationPhysical Power Requirement and Operation Environment RequirementHardware Regulatory Approvals and Compliance
Top Page Image Contents