Siemens E-110-I user manual IP filter rule examples, Specify Protocol eq TCP

Page 68

SIEMENS ADSL E-110_E-110-I user manual

IP filter rule examples

Example 1. Blocking a specific computer on your LAN from using accessing Web servers on the Internet:

1.Add a new rule for outgoing packets on the ppp-0 interface from any incoming interface (this would include the eth-0, for example).

2.Specify a source IP address of the computer you want to block.

3.Specify Protocol eq TCP and enable the Apply Stateful Inspectation setting.

4.Specify Dest Port eq 80, which is the well-known port number for Web servers.

5.Enable the rule by clicking the radio button at the top of the page.

6.Click [Apply] to create the rule.

7.On the IP Filter Configuration page, set the Security Level to the same level you chose for the rule, and set both the Private Default Action and the Public Default Action to Accept.

8.Click [Apply].

Example 2. Blocking Telnet accesses to the device:

1.Add a new rule for packets incoming on the ppp-0 interface.

2.Specify Protocol eq TCP

3.Specify Dest Port eq 23, the well-known port number used for the Telnet protocol.

4.Enable the rule by clicking the radio button at the top of the page.

5.Click [Apply]. to create the rule.

62

Rev:01_040220

Page 67 Page 69
Image 68
Page 67 Page 69
Contents Siemens Adsl E-110/E-110-I Safety Notes For InstallationFor Using For ServiceContent IiiAdvanced Configuration via Web browser NAT ConfigurationRIP Configuration Administration TasksContents Appendix SpecificationPage Features Before You UseUnpacking Configuration and ManagementSystem Requirements LED Indicators Front Panel System Messages OverviewPhysical Outlook Front Panel9V 1A Rear PanelRear PanelEthernet Installation Connecting the Adsl RouterAnalog Pstn installation Choosing a place for the Adsl RouterIsdn installation Isdn NTUSB driver installation Install the USB driverUninstall the USB driver Click Start Programs Siemens DSL Modem UninstallFor Windows ConfigurationConfigure TCP/IP on Client PC Page Rev01040220 Page For Windows 98 and Windows 98 SE Your network interface card When returning to Network window, click OK Rev01040220 Page For Windows ME For Windows NT Page Page Page For Windows Page Page For Windows XP Click Internet ProtocolTCP/IP and then click OKFor Macintosh OS 8.6 For Macintosh OS From the Apple Menu, select System Preferences…Close the Network window Renew IP Address on Client PC For Windows ME For Windows Click Connect and Save Quick Configuration via Web browserInternet Access Advanced Configuration via Web browser Main Menu Commonly Used Buttons and IconsViewing Basic System Information Quick Configuration Rebooting the device using Configuration Manager Committing Changes to Permanent StorageSub-Menus DSLNAT Advanced Configuration Configuring IP RoutesPart 1. Creating IP address pools Dhcp ConfigurationConfiguring Dhcp Server Part 2. Enabling Dhcp Server Mode Part 3. Configuring your PCs as Dhcp clients Modifying Address PoolsViewing Current Dhcp Address Assignments Select Lan Dhcp ServerPart 1. Defining the Dhcp relay interfaces Configuring Dhcp RelayPart 2. Enabling Dhcp relay mode These private IP addresses Are translated to NAT ConfigurationViewing Your NAT Configuration FieldDescription Page Field Description Viewing NAT Rules and Rule StatisticsViewing Current NAT Translations Adding NAT Rules Rdr rule Allowing external access to a LAN computer Basic rule Performing 11 translations Bimap rule Performing two-way translations Page Select a Send Mode and a Receive Mode RIP ConfigurationConfiguring the RIP Viewing RIP Statistics Firewall Configuration Firewall, IP Filters and Blocked ProtocolsMail ID of Admin 1/2/3 Field Description Max Half open TCP ConnMax Icmp Conn Max Single Host ConnConfiguring IP Filter Global Settings IP Filter ConfigurationViewing Your IP Filter Configuration Creating IP Filter Rules Field Description Rule IDAction DirectionField Description Log Option Security LevelLog Tag Start/End TimeField Description Dest Port TCP FlagIcmp Type Icmp CodeIP filter rule examples Specify Protocol eq TCPViewing IP Filter Statistics To Block Specific Protocols Managing Current IP Filter SessionsAdministration Tasks User ConfigurationChanging Your Login Password Changing the System Date and TimeAdding a New User Image UpgradeSelect Admin Local Image Upgrade View System Alarms DiagnosticsPort Settings View DSL Parameters Page Bridge Mode Part 1 Configuring the Adsl RouterConnection Modes Creating an ATM VCC interfaceCreating an EoA interface Field Description VC InterfaceMux Type Max Proto per AAL5Select Bridge LAN Config Enable Bridging functionLAN configuration PPP Connection Mode Part 3 Configuring the PCPart 2 Check your connection status Commit your changesInterface Sec Type Select Public Creating a PPP interfaceSelect the ATM VC you created, e.g. aal5-0 Service Name Login NamePassword Field Description Status Select Start or StartOnDataRouter Connection Mode Creating a IPoA interface Troubleshooting Problem Troubleshooting Suggestion LEDsInternet Access Configuration Manager ProgramProblem Troubleshooting Suggestion Upgrading Error Message Possible cause ActionGlossary PVC Permanent Virtual Circuit RIP Routing Information ProtocolUDP User Datagram Protocol Virtual ServerAppendix Specification SoftwarePower Requirement and Operation Environment Requirement HardwareRegulatory Approvals and Compliance Physical
Top Page Image Contents