￿￿￿￿)LUHZDOO￿&RQILJXUDWLRQ

Creating a Firewall via IP Filtering

Firewall configuration (also known as IP filtering) allows you to specify a combination of parameters the IAD uses to selectively eliminate IP traffic.

Filtering executes on the WAN port that you select. There are two different sets of filters and each filter maintains its own statistics:

￿Input— Input packets are filtered after network address translation.

￿Output—Output packets are filtered before network address translation.

The maximum number of filters is 128. Packets pass through the appropriate set of filters in the order in which the filters display in the list shown on the user interface (Configure IP Router > Configure IP Filtering

>Display all filters of the chosen type). Each packet moves down the list of filters until it reaches the end or the attributes of an active filter match the packet.

When a match occurs, the packet is then processed according to the action field (Pass or Discard) of the first filter that matched the packet:

￿Pass—packet passed to the next level.

￿Discard—packet discarded. When output packets are dropped, RTCS_OK is returned from IP_route.

When you create a new filter, all fields are set to an inactive state. An inactive filter passes all IP packets—you must modify at least one field to narrow the range of packets to pass or change the action to discard all packets.

To create a set of filters to pass only certain types of packets, you need to create a default filter that discards all packets and then insert narrower filters before the default filter. For example, you need to add a filter to cover each range of packets.

To select only the packet ranges to discard no default filter needed, because the default action is to pass all packets. You only add filters that set the range to discard and set the actions of those filters to discard.

The order of the filters matters if you are mixing filters with different actions or if you want the overlapping filters to display accurate statistics.

NOTE For complete information on IP filtering, see Configuring IP Filtering, on page 109.

2000-A2-GB20-10

- 154 -

February 2004

Page 172 Page 174
Page 173
Image 173
Paradyne JetFusion Integrated Access Device manual Luhzdoo&Rqiljxudwlrq, Creating a Firewall via IP Filtering
Page 172 Page 174

JetFusion Integrated Access Device specifications

The Paradyne JetFusion Integrated Access Device represents a significant advancement in network access technology, designed to meet the growing demand for high-performance connectivity in both residential and business environments. This device seamlessly integrates multiple access technologies into a single platform, offering enhanced flexibility, efficiency, and scalability.

One of the standout features of the JetFusion is its capability to support a variety of broadband access methods, including DSL, fiber optics, and cable. This multi-access functionality allows service providers to optimize their networks by deploying the most effective technology based on the specific needs of their customers. The device intelligently manages these connections, ensuring that users experience consistent and reliable internet service.

The JetFusion is equipped with advanced Quality of Service (QoS) mechanisms, enabling it to prioritize traffic based on user requirements and application demands. This is particularly important in environments where bandwidth-intensive applications, such as video streaming and online gaming, are prevalent. With built-in QoS, the JetFusion ensures that critical applications receive the necessary bandwidth while maintaining overall network performance.

Another impressive characteristic of the JetFusion is its support for IPv6, which is increasingly vital as more devices connect to the internet. The device's compatibility with this next-generation protocol allows for a greater number of unique IP addresses, facilitating the growth of smart homes and IoT applications.

The JetFusion also integrates security features to protect sensitive data and maintain privacy. With robust encryption and firewall capabilities, the device provides a secure gateway for both home and office networks. This aspect is crucial in today’s digital landscape, where cyber threats are a significant concern.

Moreover, the device includes remote management capabilities. Network operators can monitor and manage the JetFusion through a centralized platform, leading to improved operational efficiency and faster troubleshooting. This level of control is essential for maintaining high service levels and ensuring customer satisfaction.

In conclusion, the Paradyne JetFusion Integrated Access Device stands out for its multi-access support, advanced QoS mechanisms, IPv6 compatibility, security features, and remote management capabilities. These characteristics make it an ideal solution for service providers aiming to deliver reliable, high-performance internet access to a diverse range of users. As demand for broadband connectivity continues to surge, the JetFusion is poised to play a pivotal role in the evolution of network access technology.
Top Page Image Contents