NETGEAR DG824M Wireless Networking

Reference Manual for the Model DG824M Wireless ADSL Modem Gateway

Network and Routing Basics B-13

Stateful Packet Inspection

Unlike simple Internet sharing routers, a firewall uses a process called stat eful packe t inspect ion to

ensure secure firewall filtering to protect your network from attacks and intrusions. Since

user-level applications such as FTP and Web browsers can create complex patterns of network

traffic, it is necessary for the firewall to analyze groups of network connection "states." Using

Stateful Packet Inspection, an incoming pa cket is intercepted at the network layer an d t hen

analyzed for state-related information associated with all network connections. A central cache

within the firewall keeps track of the state information associated with all network connections.

All traffic passing through the firewall is analyzed against the state of these connectio ns in order to

determine whether or not it will be allowed to pass through or rejected.

Denial of Service Attack

A hacker may be able to prevent your network from operating or communicating by launching a

Denial of Service (DoS) attack. The method used for such an attack can be as simple as merely

flooding your site with more requests than it can handle. A more sophisticated attack may attempt

to exploit some weakness in the operating system used by your router or gatewa y. Some operating

systems can be disrupted by simply sending a packet with incorrect length information.

Wireless Networking

The DG824M gateway conforms to the Institute of Electrical and Electronics Engineers (IEEE)

802.11b standard for wireless LANs (WLANs). On an 802.11b wirel ess link, da ta is en coded usin g

direct-sequence spread-spectrum (DSSS) technology and is transmitted in the unlicensed radio

spectrum at 2.5GHz. The maximum data rate for the wireless link is 11 Mbps, but it will

automatically back down from 11 Mbps to 5.5, 2, and 1 Mbps when the radio signal is weak or

when interference is detected.

The 802.11b standard is also called Wireless Ethernet or Wi-Fi by the Wireless Ethernet

Compatibility Alliance (WECA, see http://www.wi-fi.net), an industry standard group promoting

interoperability among 802.11b devices.

Wireless Network Configuration

The 802.11b standard offers two methods for configuring a wireless network - ad hoc and

infrastructure.

Contents

Main Page Page Page Contents Page Page Page Page Page List of Procedures Page Preface About This Guide Audience Technical Support Typographical Conventions Special Message Formats Chapter 1 Introduction About the Gateway Key Features 802.11b Standards-based Wireless Networking A Powerful, True Firewall Content Filtering Auto Sensing and Auto Uplink LAN Ethernet Connections Protocol Support Easy Installation and Management Page Whats in the Box? Wireless ADSL Modem Gateway DG824M The Gateways Front Panel Reference Manual for the Model DG824M Wireless ADSL Modem Gateway Introduction 1-7 Table 1-1. LED Descriptions The Gateways Rear Panel Chapter 2 Connecting the Gateway to the Internet What You Will Need Before You Begin Cabling Requirements Computer Hardware Requirements LAN Configuration Requirements Internet Configuration Requirements Where Do I Get the Internet Configuration Parameters? Page Procedure 2-1: Record Your Internet Connection Information Connecting the DG824M Wireless ADSL Modem Gateway to Your LAN Procedure 2-2: Connecting the Gateway A B Page Connecting the DG824M to the Internet Procedure 2-3: Auto-Detecting Your Internet Connection Type Procedure 2-4: Wizard-Detected PPPoE Login Account Setup Procedure 2-5: Wizard-Detected PPPoA Login Account Setup Page Procedure 2-6: Wizard-Detected Dynamic IP Account Setup Procedure 2-7: Wizard-Detected Fixed IP (Static) Account Setup Testing Your Internet Connection Page Procedure 2-8: Manual Configuration Page Page Chapter 3 Wireless Configuration Considerations For A Wireless Network Implement Appropriate Security Observe Placement and Range Guidelines Wireless Settings Procedure 3-1: Configuring Basic Wireless Network Settings Using the Wireless Access by MAC Address Feature Procedure 3-2: Restricting Wireless Access by MAC Address Configuring Wired Equivalent Privacy (WEP) Configuring WEP (Wired Equivalent Privacy) Page Chapter 4 Protecting Your Network Protecting Access to Your DG824M Wireless ADSL Modem Gateway Procedure 4-1: Changing the Built-In Password backup so that the saved settings file includes the new password. Procedure 4-1: Changing the Administrator Login Timeout Configuring Basic Firewall Services Blocking Keywords, Sites, and Services communications services. Procedure 4-2: Block Keywords and Sites Page Rules Page Inbound Rules (Port Forwarding) Page Page Outbound Rules (Service Blocking) Page Order of Precedence for Rules Services Procedure 4-3: Define Services Setting Times and Scheduling Firewall Services Procedure 4-4: Setting Your Time Zone Page Procedure 4-5: Scheduling Firewall Services Chapter 5 Managing Your Network Backing Up, Restoring, or Erasing Your Settings Procedure 5-6: Backup the Configuration to a File Page Procedure 5-7: Restore a Configuration from a File Procedure 5-8: Erase the Configuration Upgrading the Gateways Firmware Procedure 5-1: Gateway Upgrade Network Management Information Viewing Gateway Status and Usage Statistics Reference Manual for the Model DG824M Wireless ADSL Modem Gateway 5-6 Managing Your Network This screen shows the following paramet ers: Table 5-1. Menu 3.2 - Gateway Status Fields This screen shows the following statistics :. Page Viewing Attached Devices Viewing, Selecting, and Saving Logged Information Page Examples of log messages Enabling Security Event E-mail Notification Page Running Diagnostic Utilities and Rebooting the Router Enabling Remote Management Procedure 5-2: Configure Remote Management Page Page Chapter 6 Advanced Configuration Configuring Advanced Security Setting Up A Default DMZ Server Procedure 6-1: Configuring A Default DMZ Server. Respond to Ping on Internet WAN Port Configuring LAN IP Settings LAN TCP/IP Setup Page Page Procedure 6-1: Configure LAN TCP/IP Setup Configuring Dynamic DNS Procedure 6-2: Configure Dynamic DNS Using Static Routes Static Route Example Procedure 6-3: Configuring Static Routes Page Page Chapter 7 Troubleshooting Basic Functioning Power LED Not On Test LED Never Turns On or Test LED Stays On LAN or WAN Port LEDs Not On Troubleshooting the Web Configuration Interface Troubleshooting the ISP Connection ADSL link Obtaining a WAN IP Address Troubleshooting PPPoE or PPPoA Troubleshooting Internet Browsing Troubleshooting a TCP/IP Network Using the Ping Utility Testing the LAN Path to Your Router Testing the Path from Your PC to a Remote Device Restoring the Default Configuration and Password Using the Default Reset button Problems with Date and Time Page Appendix A Technical Specifications Page Appendix B Network and Routing Basics Related Publications Basic Router Concepts What is a Router? Routing Information Protocol IP Addresses and the Internet Page Netmask Subnet Addressing Page Private IP Addresses Single IP Address Operation Using NAT MAC Addresses and Address Resolution Protocol Related Documents Domain Name Server IP Configuration by DHCP Ethernet Cabling Uplink Switches and Crossover Cables Cable Quality Internet Security and Firewalls What is a Firewall? Stateful Packet Inspection Denial of Service Attack Wireless Networking Wireless Network Configuration Extended Service Set Identification (ESSID) Authentication and WEP Encryption Wireless Channel Selection Page Appendix C Preparing Your Network Preparing Your Computers for TCP/IP Networking Configuring Windows 95, 98, and Me for TCP/IP Networking Install or Verify Windows Networking Components Page Enabling DHCP to Automatically Configure TCP/IP Settings in Windows 95B, 98, and Me Locate your Network Neighborhood icon. Page Selecting Windows Internet Access Method Verifying TCP/IP Properties Configuring Windows NT4, 2000 or XP for IP Networking Install or Verify Windows Networking Components DHCP Configuration of TCP/IP in Windows XP, 2000, or NT4 DHCP Configuration of TCP/IP in Windows XP Page DHCP Configuration of TCP/IP in Windows 2000 Page Page DHCP Configuration of TCP/IP in Windows NT4 Page Verifying TCP/IP Properties for Windows XP, 2000, and NT4 Configuring the Macintosh for TCP/IP Networking MacOS 8.6 or 9.x MacOS X Verifying TCP/IP Properties for Macintosh Computers Verifying the Readiness of Your Internet Account Are Login Protocols Used? What Is Your Configuration Information? Obtaining ISP Configuration Information for Windows Computers Obtaining ISP Configuration Information for Macintosh Computers Page Page Glossary Page Page Page Index Index 1 Numerics A B G H I L M R S T U W 4Index