Firewall Tab, Firewall Features | 2Wire None guide

Firewall Tab

This chapter describes the 2Wire gateway firewall features, and provides detailed instructions on how to modify the firewall settings.

Firewall Features

The 2Wire gateway has a professional-grade firewall to help prevent unauthorized users from accessing your local network. The 2Wire gateway firewall includes the following features:

Stateful packet inspection. Blocks common Denial of Service attacks (such as SYN/FIN flooding or Smurf), and detects and logs TCP and UDP port scans.

Stateless packet inspection. Filters specific NetBios traffic, suspicious packets and IP fragments; blocks packets sent from the private network to the Internet that have spoofed IP addresses.

Network Address Translation (NAT). Translates a local network’s IP address to an external address maintained by the 2Wire gateway, effectively “hiding” the existence of a home network to the Internet. The 2Wire gateway then uses this external address to communicate with the Internet on behalf of devices connected to the local network.

Port Address Translation (PAT). A function provided by some routers which allows hosts on a LAN to communicate with the rest of a network (such as the Internet) without revealing their own private IP address. All outbound packets have their IP address translated to the router’s external IP address. Replies come back to the router, which then translates them back into the private IP address of the original host for final delivery. During PAT, each computer on the LAN is translated to the same IP address, but with a different port number assignment.

Inbound and outbound port blocking. Blocks common inbound and outbound protocol types from passing information to or receiving information from the Internet.

39

Image 44

2Wire None manual Firewall Tab, Firewall Features

Contents

2Wire Gateway User Guide Page Contents Page Contents Introduction Networking Technology Overview System Tab Viewing Your System Summary Network at a Glance Panel System Area of the Network at a Glance Panel Broadband Link Area of the Network at a Glance Panel Enabling Enhanced Services Web Remote Access Setting a System Password Edit System Password Resetting the System Password Reset System Password Changing Your Time Zone Settings Viewing System Details View System Details Viewing Your Broadband Link Summary Connection Status Connection Speed Connection Information Connection Details View Broadband Link DetailsPage Broadband Link Tab MTU Test Connection Speed Using Broadband DiagnosticsMonitor Internet Connection Broadband Link Diagnostics Viewing Statistics View Broadband Link Statistics Page Using Advanced Settings Modifying DSL and ATM Settings Broadband Link Advanced Settings Enabling Hostname Override Modifying Broadband Connection SettingsModifying the Hardware Address Modifying the Broadband IP Modifying the Broadband DNS Viewing Your Home Network Summary Understanding the Local Devices Panel USB Monitoring Your Wireless Settings Understanding the Status at a Glance Panel Configure the Wireless Network Customizing Security Settings Configuring MAC Filtering Configuring Additional Settings Configuring Advanced Settings Setting up a Private Network Advanced Home Network Settings Setting Up a Public Routed Subinterface Setting Up a Public Proxied Subnet Showing a Device as Inactive Configuring the VoIP Phones VoIP Network TabPage Page Page Page Firewall Features Firewall Tab Viewing Your Firewall Summary View Firewall Summary Hosting an Application View Firewall Details Edit Firewall Settings Updating the Application Profile List Adding an Application Profile Edit Application Page Allowing all Applications DMZplus Select a Hosted Application Click Allow all applications DMZplus mode Viewing the Firewall Log View Firewall Log Configuring the Firewall Advanced Edit Advanced Firewall Settings Stealth Mode Enabling Advanced SecurityPage Block Ping Strict UDP Session Control Allowing Inbound and Outbound Traffic Disabling Attack DetectionPage Edit Advanced Firewall Settings Accessing the MDC Using the MDCPage Troubleshooting Pages System SummaryBroadband Link Pages Local Network Pages Remote Management Feature System Summary MDC System Summary Management and Diagnostic Console Broadband Link Summary MDC Broadband Link Summary Dslam Maximum size of the packets sent from a computer to Broadband Link Statistics MDC Broadband Link Statistics ATM Broadband Link Detailed DSL Statistics MDC Broadband Link Detailed DSL Statistics DSL Management and Diagnostic Console Broadband Link Configuration MDC Broadband Link Configuration Modifying Internet Connection and Authentication Settings Modifying DNS Information Modifying Internet Address SettingsModifying Hardware Address Local Network Status MDC Local Network Status Specifies whether a USB device is present Active on Local Network Statistics MDC Local Network Statistics USB Local Network Device List MDC Local Network Device List Local Network Wireless Settings MDC Local Network Wireless Settings Additional Settings Local Network Configuration Private Network Settings Public Routed Subinterface Settings Public Proxied Subnet SettingsDisplay Settings Enable Router Behind Router Alert Firewall Settings MDC Firewall Settings Hosting an Application Creating an Application Profile MDC Firewall Edit Application Allowing all applications NAT Sessions Firewall Detailed InformationPinholes Firewall Advanced Settings MDC Firewall Advanced Settings Enabling Full Logging Enabling Security FeaturesControlling Inbound and Outbound Traffic Voice Server Summary Voice Configure Server MDC Voice Configure ServerPage Page Page Troubleshooting DSL Diagnostics MDC Troubleshooting DSL Diagnostics Analyzing General Information Reviewing Training History INP Reviewing Bitloading Vxco Troubleshooting Event Log MDC Troubleshooting Event Log 102 Troubleshooting Network Tests MDC Troubleshooting Network Tests 104 Troubleshooting Upgrade History MDC Troubleshooting Upgrade History Troubleshooting Resets MDC Troubleshooting Resets 107 Advanced Syslog Settings MDC Advanced Syslog Settings Advanced Provisioning Info MDC Advanced Provisioning Information 109 110 Advanced Configure Time Services MDC Advanced Configure Time Services 112 Advanced Configure Services Routing Properties 115 Changing Timeout Parameters Enabling Broadband Status NotificationEnabling Missing DSL Filter Notification Enabling SIP Application Layer Gateway 117 Advanced Static Routes MDC Advanced Static Routes 119 Advanced DNS Resolve MDC Advanced DNS Name Table Advanced Traffic Shaping MDC Advanced Traffic Shaping Advanced Link Manager States MDC Advanced Link Manager States 123 124 Advanced Detailed Log MDC Advanced Detailed Log 125 Http ALG 127 SIP Glossary 130 131 132 133 Regulatory Information