321 Studios OL-7141-04 manual Firewall Configuration, Primary DNS Field, Secondary DNS Field

Page 27

Chapter 1 Cisco SDM Express

Firewall Configuration

Primary DNS Field

Enter the IP address of the primary Domain Name Server (DNS) that the router will use. Your network administrator or service provider will provide you with the IP address.

The primary DNS server is the server that the router contacts first when attempting to resolve an IP address.

Note If you enter a hostname to identify a Cisco Network Services server in the Enter the CNS Server IP Address /Hostname field, you must enter the IP address of a DNS server in the Primary DNS field.

Secondary DNS Field

Enter the IP address of the secondary domain name Server that the router will use, if one is available. Your network administrator or service provider will provide you with the IP address.

The secondary DNS server is the server that the router contacts if the primary server is not available.

Firewall Configuration

The Firewall Configuration window gives you the option of letting

Cisco SDM Express configure a firewall on your WAN and LAN interfaces. You can apply a firewall during initial setup, or you can use Cisco SDM Express to apply it after giving the router its initial configuration.

If you let Cisco SDM Express configure the firewall, you can modify the firewall configuration later using the Cisco SDM Firewall Policy configuration feature.

Note	•	This feature is available if the Cisco IOS release running on your router
		supports the Firewall feature set.
	•	The Firewall Configuration window does not appear if you did not configure
		a WAN interface.

		Cisco SDM Express
		Cisco SDM Express
	OL-7141-04			1-21
	OL-7141-04			1-21

Image 27

Contents Cisco SDM Express User’s Guide Cisco SDM Express User’s Guide N T E N T S Contents Cisco SDM Express Edit Mode Contents A P T E R WelcomeDomain Name Field Basic ConfigurationUsername and Password Fields Hostname FieldEnable Secret Password Field Router ProvisioningSDM Express CNS Server Provision From USB TokenUSB Token or USB Flash Secure Device ProvisioningProvision From USB Flash File Selection Size Wireless Interface ConfigurationLAN Interface Configuration NameSubnet Mask Field Wireless Parameters FieldsInterface/Bridge-to-Interface List IP Address FieldStarting IP Address Field Dhcp Server ConfigurationEnable Dhcp server on the LAN interface Check Box Refresh, Apply Changes, Discard Changes ButtonsEnding IP Address Field Primary Domain Name Server FieldSecondary Domain Name Server Field Address Type List Enable PPPoE Check BoxInternet WAN Ethernet Interface Use these DNS values for Dhcp clients Check BoxUsername Field Authentication Type Check BoxPassword Field Confirm Password FieldStatus Icon and Enable or Disable Button Internet WAN Autodetect EncapsulationInternet WAN User Specified Encapsulation Encapsulation List Virtual Path Identifier FieldVirtual Circuit Identifier Field IP Address for Remote Connection in Central Office Field Enable or Disable Button WAN Interface SelectionAdd Connection, Edit, Delete Buttons Serial Connection Interface ListRefresh Button IP Address and Subnet Mask Fields Frame Relay Configuration Settings LinkUse Ietf Frame Relay Encapsulation Check Box Frame Relay Configuration SettingsDlci Field LMI Type FieldCNS Server Information Internet WAN Advanced OptionsFirewall Configuration Primary DNS FieldSecondary DNS Field Security Settings Disable Services that Involve Security Risks Check Box Disable Snmp Services on Your Router Check BoxEnhance Security on Router Access Check Box Encrypt Passwords Check BoxSummary Cisco Network Services Supplementary HelpCisco Router and Security Device Manager Disable Snmp Security SettingsDisable PAD Service Disable Finger ServiceDisable TCP Small Servers Service Disable IP Bootp Server Service Disable UDP Small Servers ServiceDisable CDP Disable IP Identification ServiceEnable Password Encryption Service Disable IP Source RouteEnable TCP Keepalives for Inbound Telnet Sessions Enable Netflow SwitchingEnable TCP Keepalives for Outbound Telnet Sessions Enable Sequence Numbers and Time Stamps on DebugsEnable IP CEF Set Scheduler Allocate Set Scheduler IntervalSet TCP Synwait Time Enable Unicast RPF on Outside Interfaces Enable LoggingDisable IP Redirects Disable IP Gratuitous ARPsDisable IP Directed Broadcast Disable IP Proxy ARPDisable IP Unreachables Disable MOP ServiceSet Minimum Password Length to Less Than 6 Characters Disable IP Mask ReplySet Banner Set Authentication Failure Rate to Less Than 3 RetriesEnable SSH for Access to the Router Enable Telnet SettingsCisco SDM Express Buttons Help ButtonAbout Button Discard Changes Button Reconnecting to the Router After Initial ConfigurationExit Button Apply Changes ButtonTesting Your WAN Internet Connection Troubleshooting Tips SDP Troubleshooting TipsOverview IconsLAN Fields Firewall Fields Internet WAN FieldsEdit/Delete Buttons Username/Login Password/Password is Encrypted FieldsRefresh/Apply Changes/Discard Changes Buttons Encrypt password using MD5 hash algorithm CheckboxBridge/Do not bridge LAN interface with wireless Checkbox Edit a UsernameNo WAN Available WirelessWAN-Unable to Configure WAN Interface LAN interface configuration FieldsEnable Firewall/Disable Firewall Buttons Delete ConnectionFirewall Unable to Configure NAT Unable to configure Firewall WindowAdd or Edit Address Translation Rule Routing Select All Recommended by Cisco Checkbox Disable Services that Involve Security Risks CheckboxSynchronize with my local PC clock Checkbox Encrypt Passwords CheckboxPing ToolsDestination Field Update SDM from Cisco.comTo clear the output of the ping command Source FieldUpdate SDM from Local PC Update SDM from CDCCO Login Date and Time Properties Synchronize CheckboxEdit Date and Time Fields Apply Button Reset to Factory DefaultsSave Running Config to PC Write down these steps and then reset the routerReconfiguring Your PC with a Static or a Dynamic IP Address Microsoft Windows NT Feature Not Available Cisco SDM Express Edit Mode Feature Not Available D E IN-2