Billion 800VGT Router
Example: Predefined Port Filters Rules
The predefined port filter rules for High, Medium and Low security levels are listed. See Table 1.
Note: Firewall – For
Table 1: Predefined Port Filter
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| Port Number |
| Firewall - Low | Firewall - Medium | Firewall – High |
| |||||||
|
|
|
|
| |||||||||||
| Application | Protocol |
|
|
|
|
|
|
|
|
|
|
|
|
|
| Start |
| End |
| Inbound |
| Outbound | Inbound | Outbound | Inbound |
| Outbound |
| ||
|
|
|
| ||||||||||||
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| HTTP(80) | TCP(6) | 80 |
| 80 |
| NO |
| YES | NO | YES | NO |
| YES |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| DNS (53) | UDP(17) | 53 |
| 53 |
| NO |
| YES | NO | YES | NO |
| YES |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| DNS (53) | TCP(6) | 53 |
| 53 |
| NO |
| YES | NO | YES | NO |
| YES |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| FTP(21) | TCP(6) | 21 |
| 21 |
| NO |
| YES | NO | YES | NO |
| NO |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| Telnet(23) | TCP(6) | 23 |
| 23 |
| NO |
| YES | NO | YES | NO |
| NO |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| SMTP(25) | TCP(6) | 25 |
| 25 |
| NO |
| YES | NO | YES | NO |
| YES |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| POP3(110) | TCP(6) | 110 |
| 110 |
| NO |
| YES | NO | YES | NO |
| YES |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| NEWS(NNTP) |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| TCP(6) | 119 |
| 119 |
| NO |
| YES | NO | YES | NO |
| NO |
| |
| (Network News |
|
|
|
|
| |||||||||
| Transfer Protocol) |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| RealAudio/ |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| RealVideo | UDP(17) | 7070 |
| 7070 |
| YES |
| YES | YES | YES | NO |
| NO |
|
| (7070) |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| PING | ICMP(1) | N/A |
| N/A |
| NO |
| YES | NO | YES | NO |
| YES |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| H.323(1720) | TCP(6) | 1720 |
| 1720 |
| YES |
| YES | NO | YES | NO |
| NO |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| T.120(1503) | TCP(6) | 1503 |
| 1503 |
| YES |
| YES | NO | YES | NO |
| NO |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| SSH(22) | TCP(6) | 22 |
| 22 |
| NO |
| YES | NO | YES | NO |
| NO |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| NTP /SNTP | UDP(17) | 123 |
| 123 |
| NO |
| YES | NO | YES | NO |
| YES |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| HTTP/HTTP |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| Proxy | TCP(6) | 8080 |
| 8080 |
| NO |
| YES | NO | NO | NO |
| NO |
|
| (8080) |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| HTTPS(443) | TCP(6) | 443 |
| 443 |
| NO |
| YES | NO | YES | N/A |
| N/A |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| ICQ (5190) | TCP(6) | 5190 |
| 5190 |
| YES |
| YES | N/A | N/A | N/A |
| N/A |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| MSN (1863) | TCP(6) | 1863 |
| 1863 |
| YES |
| YES | N/A | N/A | N/A |
| N/A |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
MSN (7001) | UDP(17) | 7001 | 7001 | YES | YES | |
MSN | VIDEO | TCP(6) | 9000 | 9000 | NO | YES |
(9000) |
|
|
|
|
|
|
N/A
N/A
N/A
N/A
N/A
N/A
N/A
N/A
Inbound: Internet to LAN; Outbound: LAN to Internet.
YES: Allowed; NO: Blocked; N/A: Not Applicable
59
