WAN and System Configuration 2-37

Stateful Inspection firewall

Stateful inspection firewall is a security feature that prevents unsolicited inbound access when NAT is disabled. You can configure UDP and TCP “no-activity” periods that will also apply to NAT time-outs if stateful inspection is enabled on the interface. Stateful Inspection parameters are active on a WAN interface only if enabled on your Gateway. Stateful inspection can be enabled on a profile whether NAT is enabled or not.

Stateful Inspection

 

UDP no-activity timeout (sec):

180

TCP no-activity timeout (sec):

14400

Add Exposed Address List...

 

Exposed Address Associations...

 

Return/Enter goes to new screen.

Return/Enter to configure Xposed IP addresses.

UDP no-activitytime-out:The time in seconds after which a UDP session will be terminated, if there is no traffic on the session.

TCP no-activitytime-out:The time in seconds after which an TCP session will be terminated, if there is no traffic on the session.

Exposed Addresses: The hosts specified in Exposed addresses will be allowed to receive inbound traffic even if there is no corresponding outbound traffic. This is active only if NAT is disabled on an WAN interface.

Page 55
Image 55
Netopia 4000-Series manual Stateful Inspection firewall