D-Link DI-304M manual Restricting Unauthorized Internet Services

Page 73

DI-304/DI-304M ISDN Remote Router

!= : If the End Port is empty, the port number is not equal

to the value of the Start Port. Otherwise, this port number is not between the Start Port and the End Port (including the Start Port and End Port).

>: Specify the port number is larger than the Start Port

(includes the Start Port).

<: Specify the port number is less than the Start Port (includes the Start Port).

Keep State – When checked, protocol information about the TCP/UDP/ICMP communication sessions will be kept by the IP Filter/Firewall (the Firewall Protocol option requires that TCP or UDP or TCP/UDP or ICMP be selected for this to operate correctly).

Source Route – When Checked, the IP options of source routing will be applied for the rule.

Fragments – Specify a fragmented packets action.

Don't Care - Specify no fragment options in the filter rule.

Unfragmented - Apply the rule to unfragmented packets.

Fragmented - Apply the rule to fragmented packets.

Too Short - Apply the rule only to packets that are too short to contain a complete header.

Restricting Unauthorized Internet Services

This section will show a simple example to restrict access of WWW from certain locations. In this example, we assume the IP address of the access-restricted user is 192.168.1.10. The filter rule is created in the Data Filter set and is shown as below.

65

Page 72 Page 74
Image 73
Page 72 Page 74
Contents DI-304/DI-304M Isdn Router User’s Guide CE Mark Warning FCC WarningHardware Link Offices for Registration and Warranty ServiceSoftware Page Wichtige Sicherheitshinweise Table of Contents Virtual TA Application Appendix C IP Protocol and Port Numbers Introduction Product FeaturesBuilt-in Switch Ease of InstallationIsdn Basic Rate Interface BRI Standard Phone Jacks Just for DI-304MFirmware Upgrade Tftp Server Dhcp Support Dynamic Host Configuration ProtocolRemote Access Server RAS Networking CompatibilityApplications for your DI-304/DI-304M Network Address Translation NAT What This Manual CoversLAN-to-LAN Enterprise Connections Remote Dial-In ServerOther Resources What This Manual Doesn’t CoverPacking List Additional Installation Requirements Before You Start Installation & SetupOrdering Your Isdn Line Dhcp Server Enabled Factory Default Settings Default IP Network SettingsWeb Configurator DI-304/DI-304M Front PanelDI-304 DI-304M DI-304/DI-304M Rear Panel Connecting the Power Adapter Hardware InstallationConnecting to the Ethernet Connecting to a DSL/Cable Modem Connecting to an Isdn BRI LineSetting Up a Management PC T-Interface ModelClick the Add button. The Select Network Component Checking the Network IP ConfigurationConfiguring the TCP/IP Protocol Checking TCP/IP Settings DI-304/DI-304M Isdn Remote Router Installing the Router Tools Using the Smart Start WizardDI-304/DI-304M Isdn Remote Router DI-304/DI-304M Isdn Remote Router DI-304/DI-304M Isdn Remote Router Connecting to the Web Configurator via a Web Browser Using the Web ConfiguratorBasic Setup Setup First Overview of the Web ConfiguratorQuick Setup System Management Advanced SetupDI-304/DI-304M Isdn Remote Router Changing the Administrator Password Basic Configuration and Internet AccessConfiguring Ethernet TCP/IP Address and Dhcp Server For IP Routing Usage Default Disable Router IP Network Configuration For NAT UsageDhcp Server Configuration Configuring the Isdn Interface Isdn Dial-up Internet Access Internet Access SetupDialing to a Single ISP PPP/MP Setup ISP Access SetupDialing to Dual ISPs IP Address Assignment Method IpcpDSL/Cable Modem Internet Access SetupIP Address Assignment Method Icpc PPPoE Setup Using PPPoE with a DSL ModemIsdn Dial Backup Setup Pptp Setup Using Pptp with a DSL ModemUsing a Static IP with a DSL/Cable Modem Configuring Isdn Dial Backup Access ControlIsdn Dial Backup Setup There are three options DI-304/DI-304M Isdn Remote Router Remote Dial-In Access Remote AccessIP Address Assignment for Dial-In Users Creating an Access Account for a Dial-in UserCallback Function LAN-to-LAN Access Activating the Remote Dial-In Capability Dial-In Service Enable Start IP Address Branch OfficeHead Office Creating a LAN-to-LAN Dialer Profile Dial-In Service Enable Start IP AddressDI-304/DI-304M Isdn Remote Router Dial-Out Settings Common SettingsDial-In Settings TCP/IP Network Settings Branch Office DI-304/DI-304M Isdn Remote Router Enabling the Remote Activation Function Advanced SetupDial Retry and Dial Delay Interval Call Control SetupPPP/MP Dial-Out Setup Basic SetupBandwidth On Demand BOD Setup Call Schedule Setup NAT Setup DMZ Host Setup Open Ports Setup Well-known Port Number List IP Filter/Firewall Setup Static Route SetupAn Overview of the Firewall General Setup DI-304/DI-304M Isdn Remote Router DI-304/DI-304M Isdn Remote Router Editing the Filter Rules Check to enable the Filter Rule Enable the filter ruleDI-304/DI-304M Isdn Remote Router Restricting Unauthorized Internet Services Virtual TA Application Quick Setup Virtual TA Remote Capi SetupVirtual TA Concepts Configuring a Virtual TA Client/Server Installing a Virtual TA ClientVirtual TA User Profiles Virtual TA ServerCreating a User Profile System Management Configuring the MSN NumberIsdn Status Online StatusLAN Status Time SetupWAN Status Management Setup Snmp Setup Management Port SetupISDN/PPPoE/PPTP Diagnostics Diagnostic ToolsTriggered Dial-out Packet Header Broadband AccessView Routing Table View Dhcp Assigned IP Addresses View ARP Cache TableView NAT Active Sessions Table View NAT Port Redirection Running TableSysLog Setting Reboot System Firmware Upgrade DI-304/DI-304M Isdn Remote Router Using the Telnet Terminal Commands Appendix a Troubleshooting and FAQsRecall Commands Command HelpQuitting the Telnet Terminal Viewing Call LogsDetailed Isdn log example Viewing Isdn LogsViewing PPP Logs Viewing WAN LogsWhat is the default IP address of the router? FAQsWhy does the router dial out very often? Why cant I connect to the Web Configurator?IP Addresses Appendix B Basic IP ConceptsIP Network Classes Subnet Mask IP Protocol Numbers Appendix C IP Protocol and Port NumbersIP Port Numbers General Appendix D Technical SpecificationsCTR-3 PPP/MP IndexOffices Norway Link Norway Registration Card
Top Page Image Contents