NETGEAR RP114 Chapter 10 Configuring Filters

Configuring Filters 10-1

Chapter 10Configuring Filters

This chapterprovides information about configuring and using filters for your Model RP114Web

Safe Router.

Filtersare used to block certain packets, reduce traffic, and prevent securitybreaches. The router

uses packetfilters to determine whether to allow or deny passage of each data packet, based on

informationfound in the packet. A filter is defined by rules declaring what information is to be

checked andwhat action is to be taken (forward or discard) when a match is found. Twotypes of

packet filtersare supported by the router: IP protocol filters and generic or“device” filters. An IP

protocolfilter screens the packet based on IP address and port information contained in the packet.

A genericfilter looks for a specified pattern of bits at a specified location in the packet.

In the configuration of IP filters, it is necessary to specify ports and protocols by their assigned

numbersinstead of names. A comprehensive list of protocol and port numbers for common IP

trafficcan be found in IETF RFC1700, “Assigned Numbers.” Many common port numbers are

also listedon any Windows PC in a file called \windows\services.

TheModel RP114 router allow you to customize filter sets according to your needs.The following

sectionsdescribe how to configure the filter sets for your router.

Router Filter Structure

Youcan configure up to 12 filter sets, each with up to six rules. For IP packets, these rules involve

comparingthe protocol type of a data packet (for example, TCP, UDP), sourceor destination

address,or port number. Also, a generic filter may bedefined to merely test for a byte or pattern of

bytes in a particular location in the packet. W hen a rule is met (or not met), a user-specified ac tion

is taken. This action may be to forward the packet, drop the packet , or got o the next rule.

Contents

Main Page Page Page Contents Page Page Page Page Page Page Page Page Page About This Guide TechnicalSupport Related Publications Page Typographical Conventions Special Message Formats Page Chapter 1 Introduction About the Router Key Features Page Content Filtering Security Autosensing 10/100 Ethernet TCP/IP Easy Installation and Management Maintenance and Support Page Chapter 2 Setting Up the Hardware Package Contents Local Network Hardware Requirements Setting Up the Hardware 2-3 The Routers Front Panel Figure 2-1. RP114Front Panel Table2-1. LED Descriptions The Routers Rear Panel Connecting the Router Connecting to your Local Ethernet Network Connecting to Your InternetA ccessDevice Connecting the Power Adapter Verif ying Pow er Chapter 3 Preparing Your Network Preparing Your Personal Computers for IP Networking Configuring Windows 95 or later for IP Networking Page Configuring TCP/IP Properties Verifying TCP/IP Properties (Windows) Configuring the Macintosh for IP Networking VerifyingTCP/IP Properties (Macintosh) Your Internet Account Login Protocols Account Information Page Page Chapter 4 Basic Configuration of the Router Configuring for Internet Access Page Page Page Page Page Configuring for Content Filtering E-Mail Keyword Schedule Page Logs Page Page Chapter 5 Advanced Configuration of the Router System Settings System Tab Dynamic DNS Password LAN Setup DHCP 5-4 Advanced Configuration of the Router Table 5 -2 lists and describes the fieldsto use for setting up DHCP parameters.. LAN TCP/IP Table 5 -3 lists and describes the fields to use for setting up TCP/I Pp arameters for the LAN... Table5-2. DHCP Setup Fields Table5-3. LAN TCP/IP Setup Fields Advanced Configuration of the Router 5-5 Note: If you change the LAN IP addressof the routerwhile connected through the Table5-3. LAN TCP/IP Setup Fields (continued) Configuring for Port Forwarding to Local Servers Page Static Routes Advanced Configuration of the Router 5-9 Figure 5-4. Static Route Entryand Edit Menu Table 5 -5 lists and describes thefields for the IP Static Route Edit menu. Table5-5. Edit IP Static Route Fields Static Route Example Page Page Page 6-2 Maintenance This screen shows the following paramet ers: Table6-1. Menu 3.2 - System Status Fields Maintenance 6-3 Figure 6-2. Router Statistics screen This screenshows the following statistics:. Table6-2. Router Statistics Fields DHCP Table Software Upgrade Configuration File Management Restore and Backup the Configuration Erase the Configuration Page Chapter 7 Using the Manager Interface for Initial Router Configuration Connecting for Configuration Page Using the Manager Interface Login 7-4 Using the Manager Interface for Initial Router Configuration Navigating the Manager Table 7 -2 describes the top-level Manag er menus. Manager Menu Summary Table7-1. Manager Menu Commands Table7-2. Manager Menu Summary Using the Manager Interface for Initial Router Configuration 7-5 Table7-2. Manager Menu Summary (continued) General Setup Menu WAN Se tup LAN Setup Page 7-10 Using the Manager Interface for Initial Router Configuration Table7-5. Menu 3.2 - TCP/IP and DHCP Setup Fields Using the Manager Interface for Initial Router Configuration 7-11 Manager Password Setup Figure 7-5. Menu 23 - System Password 1. Selectoption 23, System Password, from the main menu. Menu 23 - System Passwordopens ( Figure7-5). Table7-5. Menu 3.2 - TCP/IP and DHCP Setup Fields (continued) Page Page Page Remote Node Setup Menu Page Using the Manager Interface to Configure the Router for Internet Access 8-5 Table8-1. Remote Node Profile Fields (continued) EditingIPOptions Using the Manager Interface to Configure the Router for Internet Access 8-7 Table 8 -2 lists and describes the fieldsfor Menu 11.3 - Remote Node Network Layer Options. Table8-2. Remote Node Network Layer Options Fields Editing Filter Sets Page Configuration for Local Servers Page Setting Static Routes Page 8-14 Using the Manager Interface to Configure the Router for Internet Access Figure 8-8. Menu 12.1 - Edit IP Static Route 3. Enter settings for the static route entry. Table 8 -5 lists and describes thefields for Menu 12.1 - Edit IP Static Route. Table8-5. Edit IP Static Route Fields Static Route Example Page Using the Manager Interface to Configure the Router for Internet Access 8-17 Dynamic DNS Figure 8-10. Menu 1.1 - Configure Dynamic DNS Table 8 -6 lists and describes thefields for Menu 1.1 - Configure Dynamic DNS. Table8-6. Dynamic DNS Configuration Fields Page Page 9-2 Using the Manager Interface for Advanced System Maintenance Figure 9-2. Menu 24.1 - System Maintenance - Status Using the Manager Interface for Advanced System Maintenance 9-3 Table 9 -1 lists the commands used in the System Maintenance- Status menu. Table9-1. System Maintenance Status Table9-2. System Maintenance Status Fields Log and Trace View Error Log Syslog Diagnostic Menu Using the Manager Interface for Advanced System Maintenance 9-7 Figure 9-3. Menu 24.4 - System Maintenance - Diagnostic Table9-5. System Maintenance - DiagnosticF ields Back Up and Restore Configuration Backing Up and Restoring the Configuration Using FTP Software Update Updating Router Software Using FTP Command Interpreter Mode Remote Management Chapter 10 Configuring Filters Router Filter Structure Configuring a Filter Set Page Page Configuring Filters 10-5 Figure 10-3. Menu 21.1.1 - TCP/IP Filter Rule Configuring a Filter Rule TCP/IP Filter Rule Configuring Filters 10-7 Table10-4. TCP/IP Filter Rule Fields 10-8 Configuring Filters Table10-4. TCP/IP Filter Rule Fields (continued) Configuring Filters 10-9 Generic Filter Rule Table10-5. Generic Filter Rule Fields Applying a Filter Set Default Filters Filter 1: NetBIOS_WAN Filter 2: NetBIOS_LAN Filter 3: TEL_FTP_WEB_WAN Page Chapter 11 Troubleshooting Basic Functioning PWR LED Not On Test LED Never Blinks or LED Stays On LNK/ACT LEDs Not On Troubleshooting the Web Configuration Interface Troubleshooting the ISP Connection Page Troubleshooting a TCP/IP Network Using a Ping Utility Testing the LAN Path to YourRouter Page Testing the Path fromYour PC to a Remote Device Troubleshooting the Manager Interface Restoring the Default Configuration and Password Using the Default Reset button Page Page Appendix B Network and Routing Basics Basic Router Concepts What is a Router? Routing Information Protocol IP Addresses and the Internet Page Netmask Subnet Addressing Page Private IP Addresses Single IP Address Operation Using NAT MAC Addresses and Address Resolution Protocol Domain Name Server IP Configuration by DHCP Ethernet Cabling Uplink Switches, Crossover Cables, and MDI/MDIX Switching Cable Quality Page Glossary Page Page Page Index Index 1 A B C F G H I K N O P R 4Index S T U