DSL-604+ ADSL Ethernet Router User’s Guide
Advanced Filter & Firewall
One of the most important elements of any network security implementation is the firewall. Packet filtering is a basic firewall security measure and should be used on any network that is exposed to security risk. A packet filter system examines data packets and scrutinizes them in order to control network access. Filtering rules determine whether packets are passed through the Router from either side of the gateway. The rules are created and controlled by the network administrator and can be precisely defined. These rules are used to block access to the LAN from outside the network and/or to deny access to the WAN from within the network. The Router uses filtering rules to examine data packet headers for specific information. Packets passing through the Router that do not meet the criteria specified by the rule set are dropped.
In order to improve network security without severely limiting network efficiency, it is important to carefully plan the sets of access rules. Effective implementation of packet filtering requires detailed knowledge of network services and communication protocols. An overly complicated filtering scheme can adversely affect Router performance, while an inadequate set of rules may needlessly compromise security.
Filtering rules can be precisely defined based upon source and destination IP address, as well as port and protocol information.
Figure 4- 13. Filter & Firewall Main Menu
The Existing Entry number tells you how many routes are currently configured. The Valid Entry number tells you the number of routes that are enabled. Filtering can be universally enabled or disabled with the
37