D-Link DIR-825 manual Firewall Settings, Enable SPI NAT Endpoint Filtering, Enable DMZ

Page 50

Section 3 - Configuration

Firewall Settings

A firewall protects your network from the outside world. The DIR-825 offers a firewall type functionality. The SPI feature helps prevent cyber attacks. Sometimes you may want a computer exposed to the outside world for certain types of applications. If you choose to expose a computer, you can enable DMZ. DMZ is short for Demilitarized Zone.This option will expose the chosen computer completely to the outside world.

Enable SPI:

NAT Endpoint

Filtering:

Anti-Spoof Check:

Enable DMZ:

DMZ IP Address:

SPI (Stateful Packet Inspection, also known as dynamic packet filtering) helps to prevent cyber attacks by tracking more state per session. It validates that the traffic passing through the session conforms to the protocol.

Select one of the following for TCP and UDP ports:

Endpoint Independent - Any incoming traffic sent to an open port will be forwarded to the application that opened the port. The port will close if idle for 5 minutes.

Address Restricted - Incoming traffic must match the IP address of the outgoing connection.

Address + Port Restriction - Incoming traffic must match the IP address and port of the outgoing connection.

Enable this feature to protect your network from certain kinds of “spoofing” attacks.

If an application has trouble working from behind the router, you can expose one computer to the Internet and run the application on that computer.

Note: Placing a computer in the DMZ may expose that computer to a variety of security risks. Use of this option is only recommended as a last resort.

Specify the IP address of the computer on the LAN that you want to have unrestricted Internet communication. If this computer obtains it’s IP address automatically using DHCP, be sure to make a static reservation on the Setup > Network Settings page so that the IP address of the DMZ machine does not change.

D-Link DIR-825 User Manual

46

Image 50

Contents Page Trademarks PrefaceManual Revisions Revision Date DescriptionTable of Contents Wireless Security RegistrationProductPackageOverviewContents Browser Requirements System RequirementsComputer with the following Utility RequirementsIntroduction Total PerformanceFeatures Hardware Overview ConnectionsInternet LED Power LEDLEDs Status LEDInstallation Before you BeginWireless Installation Considerations Connect to Cable/DSL/Satellite Modem Connect to Another Router Installation Click Install Router Getting StartedConfiguration Web-based Configuration UtilitySetup Wizard Click Launch Internet Connection Setup Wizard to beginConfiguration Configuration Configuration Manual Internet Connection Setup Click Manual Internet Connection Setup to beginPrimary Dynamic CableHost Name ServerConnection Internet SetupPPPoE DSL Pptp ManualPage Reconnect Mode Select either Always-on,On-Demand, or Manual L2TPPage Static assigned by ISP Wireless Settings Manual Wireless Settings 802.11n/g 2.4GHzPage 802.11n/a 5GHz Page Network Settings Router SettingsDhcp Server Settings Dhcp Reservation Virtual Server Configuration Port Forwarding Application Rules QoS Engine SpeedPage Network Filters Access Control Access Control WizardAccess Control Wizard Access Control Wizard Website Filters Add Website Select Allow or Deny Filtering RuleInbound Filters Enable DMZ Firewall SettingsEnable SPI NAT Endpoint Filtering Routing Advanced Wireless Settings Transmit Power Set the transmit power of the antennas802.11n/a 5GHz Wish Settings Page Wi-Fi Protected Setup WPS Reset PIN toStation Device WizardAdvanced Network Settings Enable UPnP WAN PingSchedule Security ModeGuest Zone Administrator Settings Time Settings SysLog SysLog Server SysLog ServerEmail Settings Authentication authenticationSystem Settings Update Firmware Check Email Notification of Newer FirmwareDdns System Check Schedules Device Information Log Statistics Internet Sessions Wireless WishSupport Wireless Security What is WPA?Wireless Security Setup Wizard Security Add Wireless Device with WPS Wizard Configure WPA-Personal PSK Next to Security Mode, select WPA-PersonalConfigure WPA-Enterprise Radius Next to Security Mode, select WPA-EnterpriseSecurity Connect to a Wireless Network Using Windows VistaConfigure Wireless Security Connecting to a Wireless Network Connect Using WCN 2.0 in Windows Vista Using Windows XP Configure WPA-PSK Connecting to a Wireless Network Troubleshooting Why can’t I access the web-based configuration utility?What can I do if I forgot my password? Troubleshooting Troubleshooting Wireless Basics What is Wireless? Wireless Local Area Network WlanSmall Office and Home Office Wireless Personal Area Network WpanHome Centralize your router or Access Point Eliminate InterferenceWireless Modes SecurityNetworking Basics Check your IP addressStatically Assign an IP address StepTechnical Specifications Contacting Technical Support For customers within the United StatesWarranty Limited WarrantySubmitting a Claim Limited Software WarrantyNon-Applicability of Warranty What Is Not Covered Disclaimer of Other WarrantiesTrademarks Limitation of LiabilityGoverning Law Copyright StatementFCC Caution CE Mark WarningFCC Statement FCC Radiation Exposure StatementRèglement d’Industry Canada ICC NoticeIC Radiation Exposure Statement Registration