port-scanning Threshold rate, the Vigor router will send out a

 

warning. By default, the Vigor router sets the threshold as 150

 

packets per second.

Block IP options

Check the box to activate the Block IP options function. The Vigor

 

router will ignore any IP packets with IP option field in the

 

datagram header. The reason for limitation is IP option appears to

 

be a vulnerability of the security for the LAN because it will carry

 

significant information, such as security, TCC (closed user group)

 

parameters, a series of Internet addresses, routing messages...etc.

 

An eavesdropper outside might learn the details of your private

 

networks.

Block Land

Check the box to enforce the Vigor router to defense the Land

 

attacks. The Land attack combines the SYN attack technology with

 

IP spoofing. A Land attack occurs when an attacker sends spoofed

 

SYN packets with the identical source and destination addresses,

 

as well as the port number to victims.

Block Smurf

Check the box to activate the Block Smurf function. The Vigor

 

router will ignore any broadcasting ICMP echo request.

Block trace router

Check the box to enforce the Vigor router not to forward any trace

 

route packets.

Block SYN fragment

Check the box to activate the Block SYN fragment function. The

 

Vigor router will drop any packets having SYN flag and more

 

fragment bit set.

Block Fraggle Attack

Check the box to activate the Block fraggle Attack function. Any

 

broadcast UDP packets received from the Internet is blocked.

 

Activating the DoS/DDoS defense functionality might block some

 

legal packets. For example, when you activate the fraggle attack

 

defense, all broadcast UDP packets coming from the Internet are

 

blocked. Therefore, the RIP packets from the Internet might be

 

dropped.

Block TCP flag scan

Check the box to activate the Block TCP flag scan function. Any

 

TCP packet with anomaly flag setting is dropped. Those scanning

 

activities include no flag scan, FIN without ACK scan, SYN FINscan,

 

Xmas scan and full Xmas scan.

Block Tear Drop

Check the box to activate the Block Tear Drop function. Many

 

machines may crash when receiving ICMP datagrams (packets) that

 

exceed the maximum length. To avoid this type of attack, the Vigor

 

router is designed to be capable of discarding any fragmented ICMP

 

packets with a length greater than 1024 octets.

Block Ping of Death

Check the box to activate the Block Ping of Death function. This

 

attack involves the perpetrator sending overlapping packets to the

 

target hosts so that those target hosts will hang once they

 

re-construct the packets. The Vigor routers will block any packets

 

realizing this attacking activity.

Block ICMP Fragment Check the box to activate the Block ICMP fragment function. Any ICMP packets with more fragment bit set are dropped.

Block Land

Check the box to enforce the Vigor router to defense the Land

 

attacks. The Land attack combines the SYN attack technology with

 

IP spoofing. A Land attack occurs when an attacker sends spoofed

Vigor2910 Series User’s Guide

75

Page 81
Image 81
Draytek 2910 manual Block IP options, Block Land, Block Smurf, Block trace router, Block SYN fragment, Block Fraggle Attack

2910 specifications

The DrayTek 2910 is a versatile and robust router designed primarily for small to medium-sized businesses, offering a wide array of features that cater to various networking needs. With its advanced capabilities, it delivers superior performance and flexibility for organizations that demand reliable internet connectivity.

One of the defining characteristics of the DrayTek 2910 is its dual WAN capabilities. This allows users to connect two different internet service providers, ensuring that the network remains operational even if one connection fails. The router can automatically switch between the WANs, providing seamless failover and load balancing. This feature is essential for businesses that require constant uptime and reliability.

The DrayTek 2910 is equipped with multiple Ethernet ports, enabling it to support various devices and create a robust local area network (LAN). The router includes VLAN support, which allows for the segmentation of the network into different virtual networks, enhancing security and performance by isolating sensitive data traffic.

Another notable aspect of the DrayTek 2910 is its comprehensive security features. It includes a built-in firewall, which protects the network from external threats and unauthorized access. The router supports various protocols, including VPN (Virtual Private Network), allowing secure remote access to the network. This capability is particularly beneficial for businesses with remote workers or those needing secure connections for branch offices.

DrayTek has also integrated advanced Quality of Service (QoS) features in the 2910, which prioritize bandwidth allocation to critical applications, ensuring that essential services receive the needed resources. This is crucial for maintaining the performance of VoIP (Voice over Internet Protocol) calls and video conferencing tools, which are increasingly vital in today’s business environment.

In terms of management, the DrayTek 2910 offers easy configuration through a user-friendly web interface, allowing administrators to set up and monitor the network with minimal effort. The device also supports TR-069 for remote management, enabling service providers to configure and monitor the router without requiring an on-site visit.

Overall, the DrayTek 2910 stands out for its blend of reliability, security, and performance, making it an excellent choice for businesses looking to enhance their networking capabilities while ensuring a secure and efficient operation. With its rich set of features and technologies, the DrayTek 2910 continues to be a preferred router for many organizations worldwide.