DSL-G624T Wireless A DSL Router User’s Guide
Firewall
The Firewall Configuration menu allows the Router to enforce specific predefined policies intended to protect against certain common types of attacks. There are two general types of protection (DoS, Port Scan) that can be enabled on the Router, as well as filtering for specific packet types sometimes used by hackers.
You can choose to Enable or Disable protection against a customized basket of attack and scan types. To enable DoS Protection or Port Scan Protection, select the Enable radio button for the protection type and click in the selection boxes for the various types of protection listed under each.
|
|
|
| Service Filtering may |
|
|
|
|
| interfere with other |
|
|
|
|
| configurations such as |
|
|
|
|
| DHCP Relay or |
|
Note |
|
| |||
| Remote Management |
| |||
|
|
|
|
| |
|
|
|
| via Telnet. |
|
|
|
|
|
|
|
Firewall Configuration Menu
When DoS, Port Scan, or Service Filtering Protection is enabled, it will create a firewall policy to protect your network against the following:
Dos Protection | Port Scan Protection | Service Filtering |
|
|
|
SYN Flood check | FIN/URG/PSH attack | Ping from External Network |
ICMP Redirection check | Xmas Tree Scan | Telnet from External Network |
| Null Scan attack | FTP from External Network |
| SYN/RST attack | DNS from External Network |
| SYN/FIN Scan |
|
|
|
|
A DoS
Port scan protection is designed to block attempts to discover vulnerable ports or services that might be exploited in an attack from the WAN.
The Service Filtering options allow you to block FTP, Telnet response, Pings, etc, from the external network. Check the category you want to block to enable filtering of that type of packet.
When you have selected the desired Firewall policies, click the Apply button to enforce the policies. Remember to save any configuration changes.
60