SpeedStream Router User Guide

machine that will be accessible to inbound traffic. - or -

Select Enable DMZ with this Host name; then select the host name from the drop-down list.

3.Select how long you want the settings to remain permanently, until the next reboot, or for a specified number of minutes.

4.To accept the settings, click Apply.

Custom IP Filter Rules

You can configure the SpeedStream Router firewall to perform IP filtering and stateful inspection of packets. The firewall supports a rules database to allow sophisticated access tailoring. A network conversation is first authorized by verifying the packet against the current rules database configured within the firewall. If the first packet of a conversation is allowed, then a dynamic state engine takes over and tracks that conversation. All protocols are tracked whether they are stream-based or not; i.e., ICMP, UDP, TCP, GRE.

The filtering rules database gives you control over the configurable firewall rules. Rules can be filter- based on any of the following:

Source and destination router interfaces

IP protocols

Direction of traffic flow

Source and destination network/host IP address

Protocol-specific attributes such as ICMP message types

Source and destination port ranges (for protocols that support them), and support for port comparison operators such as less than, greater than, and equal to.

Rules can specifically allow or deny packets to flow through the router. Default actions taken when no specific rule applies can also be configured.

Note You must have previously selected Custom Level in the Firewall - Simple Setup & Control window.

69

Page 79
Image 79
Efficient Networks 5100 Series manual Custom IP Filter Rules