Manuals / Avaya / Home Audio / Cassette Player

Avaya 38DHB0002UKDD manual Firewall Configuration, The Standard Firewall Tab

Models: 38DHB0002UKDD

1 144

Download 144 pages 17.45 Kb

Page 58

Firewall Configuration

Page 58 - Firewall Configuration

The Configuration Tree Functions

Firewall Configuration

A firewall is a means of restricting dialled access to and from a network, particularly at its interface with the Internet. The IPNC has a firewall with default settings that allow local users access to the outside world using most TCP/IP protocols, but stops any unsolicited access from the outside world to your subnet. When a permitted outgoing session starts it punches a hole in the firewall. This then allows traffic to flow in both directions. When the session ends the hole is sealed. A firewall can be specified for both User and Service profiles.

The Standard Firewall Tab

Use the following menu to set up the required firewall profile.

Name: The name of every firewall profile is made available in a drop-down list for Users and Services.

The Protocol radio buttons: A firewall can be configured to allow individual protocol sessions access as follows:

Drop: No sessions via selected protocol will be allowed through the firewall.

In: An incoming session can punch a hole in the firewall to allow traffic in both directions.

Out: An outgoing session can punch a hole in the firewall to allow traffic in both directions.

Bothway: Both incoming and outgoing sessions can punch a hole in the firewall to allow traffic in both directions

The protocols that can be managed in this way are:

File Transfer Protocol (FTP) - a TCP/IP application used for transferring files from one system to another

Telnet– used for remote access for diagnostic purposes.

Simple Mail Transfer Protocol (SMTP) – an email application.

Page 58 - The Configuration Tree Functions	INDeX IPNC Cassette Administration Manual
Firewall Configuration	38DHB0002UKDD – Issue 7 (22/11/02)

Image 58

Avaya 38DHB0002UKDD manual Firewall Configuration, The Standard Firewall Tab

Contents

38DHB0002UKDD – Issue 7 22/11/02 Administration ManualINDeX IPNC Cassette The Configuration Tree Functions ContentsSoftware Upgrading and Installation Installation into the INDeXAppendix A: General Information Making Your System Secure IntroductionUse of this Manual The IP Networking Cassette Introduction The IPNC Hardware INDeX Licence Key LIC-IPNC32The Boot Process The Start up ProcessOverview Installation into the INDeXModem Set-up Introduction Software Upgrading and InstallationInstalling Software Upgrade Upgrade StepsExplanation Upgrade Stepsoperationally. It is for upgrade purposes nadrciiold.binreboot Upgrade Stepsreboot ExplanationStep Upgrade StepsExplanation StepInstallation of a New System Static IP AddressingDynamic IP Addressing Installation Procedure The Manager Application IntroductionNote for New Installations Starting the Manager4.File/Offline/Open File Page 18 - Starting the Manager INDeX IPNC Cassette Administration Manual38DHB0002UKDD – Issue 7 22/11/02 The Manager Application38DHB0002UKDD – Issue 7 22/11/02 General Use of the ManagerINDeX IPNC Cassette Administration Manual The Manager Application38DHB0002UKDD – Issue 7 22/11/02 The Configuration FormsINDeX IPNC Cassette Administration Manual Page 20 - General Use of the ManagerChanging Operator Profile Passwords Operator ProfilesTo Create an Operator Profile Configuration Files INDeX IPNC Cassette Administration Manual Opening/Saving Configurations Files OverviewPage 24 - Configuration Files Configuration FilesClose The File MenuOpen SaveChange Working Directory Change PasswordSave As Preferences | EditOffline SendConfigOpen File 38DHB0002UKDD – Issue 7 22/11/02 RecvConfigINDeX IPNC Cassette Administration Manual Page 28 - The File MenuReboot AdvancedErase Config UpgradeLog Off Backup/RestoreFile/Import/Export Directory ExitThe Remote System BootpRemote Operation The Off-SiteManagerpasswords The Configuration Tree FunctionsThe System Configuration Menu IntroductionAddressing on the Local Subnet WARNINGSThe Configuration Tree Functions The System ConfigurationPage 34 - The System Configuration Menu Page 34 - The Configuration Tree FunctionsThe LAN1/2 Tab The Configuration Tree Functions The DNS TabPage 36 - The System Configuration Menu Page 36 - The Configuration Tree FunctionsThe Gatekeeper Tab Line Functions ISDN LinesINDeX IPNC Cassette Administration Manual Short Codes TabThe Configuration Tree Functions The Configuration Tree Functions - PageG.711 ALAW 64K The Voice over IP TabAutomatic Selection G.729a 8K CS-ACELPNational Prefix: Not applicable VPN LinesInternational Prefix: Not applicable 2. Using ShortCode to send digits as dialled The ShortCode FunctionExamples of System Codes To edit/add/delete a ShortCodeICON Interconnect Number: Not applicable Extension ConfigurationThe Unit Function Interconnect Class: CPUUser Configuration The User TabThe Source Numbers Tab The Dial In TabNormal Service ConfigurationIntranet The Service Tab The Configuration Tree Functions The Service form for WAN and IntranetPage 48 - Service Configuration Page 48 - The Configuration Tree FunctionsThe Bandwidth Tab The Configuration Tree Functions The IP TabPage 50 - Service Configuration Page 50 - The Configuration Tree FunctionsThe AutoConnect Tab The Quota TabThe PPP Tab The Fallback TabIncoming traffic does not keep link up Protocol Service Access ModesMode SpeedThe Configuration Tree Functions The Dial-InTabPage 54 - Service Configuration Page 54 - The Configuration Tree FunctionsThe RAS Tab RAS ConfigurationThe PPP Tab WAN Configuration INDeX IPNC Cassette Administration Manual Time Profile FunctionThe Configuration Tree Functions The Configuration Tree Functions - PageFirewall Configuration The Standard Firewall TabH323 – Not used The Configuration Tree Functions The Custom Firewall TabPage 60 - Firewall Configuration Page 60 - The Configuration Tree FunctionsExamples INDeX IPNC Cassette Administration Manual IP RoutingPage 62 - The Configuration Tree Functions 38DHB0002UKDD – Issue 7 22/11/02INDeX IPNC Cassette Administration Manual How Do I?Page 63 - Contents 38DHB0002UKDD – Issue 7 22/11/02IP Connectivity Part 1 IP ConnectivityIntroduction Voice over IPDial-upServices Remote AccessInternet Access using ISDN Dial-upServices Dial-inAccessStep TaskDescription StepDial-inAccess for PC Modem/ TA with Callback TaskStep TaskDescription Step 5optional - callbackDigital Services IP connectivity DPNSS/QSIG/PRI/BRIINDeX Environment T Type –DataCall Class of Service to 1,2,3. Make this RouteTask with.’.’Task On INDeX1Calling nodeStep TaskINDeX Environment S Type – Data Call StepDescription Section Two –IPNCConfigurationTask StepStep 7 optional TaskDescription StepHome Office / Small Office With IP Office Configure INDEX environment using the T Optional Step 8 optionalWAN with Lease Lines Quick WAN set-upThis configuration does not require a password Parameter Advanced WAN set-upTask ValueParameter TaskOnce these tasks are completed successfully ValueAdd the following routing entries Site Frame RelaySite Task LAN - with VPN ROUTERS TaskSite TaskSite LAN –TwoINDeX System - Single Site TaskDescription QoS over WAN between IPNC & 3rd Party RouterValue Part 2 Voice Over IP IntroductionT Type Step 1- INDeX environmentIPNC channel type TaskSubcriber numbers, Sequential groups, etc Configuration TaskS Type StepINDeX Net INDeX environment for Home Office /Small OfficeTask ConfigurationPart 1- IPNC installation and INDeX routing StepPage 94 - Part 2 Voice Over IP INDeX IPNC Cassette Administration Manual38DHB0002UKDD – Issue 7 22/11/02 How Do I?Description Part 2- IPNC and IP401 VPN line configurationConfiguration Task StepStep 2 - Test Index environment Configuration TaskDigital services Step 3 - Configure IP ConnectivityIP Connectivity Options LAN 10/100 EthernetConfiguration Step 4 - Test IP ConnectivityQoS interoperation with 3rd Party routers ValueVPN line Configuration Step 5 - Configure VPN LineVoIP Gateway Options Silence SuppressionConfiguration Task The VPN line number provides discriminatorVariable Bandwidth Requirements CalculationsValue Examples Function Step 6 - Test end-to-endVoice and DataMethod PPPLCP Config-Ack2 id=1 len=31 MagicNum=0003709c INDeX IPNC Cassette Administration Manual38DHB0002UKDD – Issue 7 22/11/02 Page 104 - Part 2 Voice Over IPPPP IPCP Config-Ack2id=14 len1=26 INDeX IPNC Cassette Administration Manual38DHB0002UKDD – Issue 7 22/11/02 PPP IPCP Config-Ack2id=2 len1=20Configuring VoIP INDeX to INDeX VoIP TrunkingWhere to go ? TaskWhere to go ? Home Office / Small OfficeTask Internet Access Appendix A: General InformationINDeX The Corporate IntranetINDeX Password authentication Data Routing Data RoutingExample 6.Select the Dial-Intab and enable dial-in Security YOU MUST CHANGE YOUR REMOTE ACCESS PASSWORD38DHB0002UKDD – Issue 7 22/11/02 Security Implementation - A Dial-InUserINDeX IPNC Cassette Administration Manual Page 116 - Security3.To set up the User profile, select User from the Configuration Tree and right-clickin the summary area. Select Add from the toolbox Bandwidth Requirements Voice-Over-IPImplementation Considerations Voice PrioritisationConfiguring data routing on the IPNC Appendix B ConceptsCallback Callback OptionRoute Type IP RoutingSystem-Hidden DHCP Option Dynamic IP parameter allocationNotes Voice Over IP Basics GatewayGatekeeper SoftPhoneIP Addresses & Subnets Appendix C: Overview of IP Routing–PC A to PC B INDeX IPNC Cassette Administration Manual Dynamic Host Configuration Protocol DHCPDomain Name System DNS 38DHB0002UKDD – Issue 7 22/11/02Boot Protocol BOOTP Address rangesFirewall Rules Generic ProtocolCondition Network Address Translation NATNAT status Erasing a Configuration from Flash Memory Erasing the ConfigurationAppendix D: Use Of The Serial Port IntroductionINDeX IPNC Cassette Administration Manual Erasing/Re-InstallingOperational SoftwareErasing/Re-InstallingOperational Software - Page 38DHB0002UKDD – Issue 7 22/11/02Troubleshooting Pin Connections Appendix E CablesDTE Cable End A 25 WayEnd A LAN CablePin Connections ColorEnd A LAN Crossover CablePin Connections ColorEnd A V.24/V.28 WAN CablePin Connections NameEnd A X.21 WAN CablePin Connections NameEnd A V.35 WAN CablePin Connections NameGlossary Internet Group Management Protocol IGMP Glossary ContHyperTerminal IP Header Compression IPHC - RFC 2507 and RFCGlossary Cont MAC AddressGlossary Cont INDeX IPNC Cassette Administration Manual38DHB0002UKDD – Issue 7 22/11/02 Router based firewallIndex Copyright 2002 Avaya All rights reserved