ParkerVision WR3000 - page 84

WR3000 4-Port Wireless DSL/Cable Router

®

86

11.2.3 Stateful Inspection Firewalls

Stateful inspection ﬁ rewalls restrict access by screening data packets against deﬁ ned access

rules. They make access control decisions based on IP address and protocol. They also

“inspect” the session data to assure the integrity of the connection and to adapt to dynamic

protocols. These ﬁ rewalls generally provide the best speed and transparency; however, they

may lack the granular application level access control or caching that some proxies support.

See section 11.5 for more information on Stateful Inspection.

Firewalls, of one type or another, have become an integral part of standard security solutions

for enterprises.

11.3 Introduction to ParkerVision’s Firewall

The WR3000 Wireless Router ﬁ rewall is a stateful inspection ﬁ rewall and is designed to

protect against Denial of Service attacks when activated (in SMT menu 21.2 or in the Web

Conﬁ guration Utility). The WR3000 Wireless Router’s purpose is to allow a private Local Area

Network (LAN) to be securely connected to the Internet. The WR3000 Wireless Router can be

used to prevent theft, destruction and modiﬁ cation of data, as well as log events, which may

be important to the security of your network. The WR3000 Wireless Router also has packet-

ﬁ ltering capabilities.

11.4 Denial of Service

Denials of Service (DoS) attacks are aimed at devices and networks with a connection to the

Internet. Their goal is not to steal information, but to disable a device or network so users no

longer have access to network resources. The WR3000 Wireless Router is pre-conﬁ gured to

automatically detect and thwart all known DoS attacks.

Contents

Main Wireless to the ParkerVision SIGNAL 2 COPYRIGHT FCC INTERFERENCE STATEMENT Page WR3000 6 INTRODUCTION Page Chapter 1: Getting to Know Your ParkerVision WR3000 Wireless Router Page Page Page Page Page Page Chapter 2: Introducing the Web Con guration Utility Page Page Chapter 3: Wizard Setup 3.2 Wizard Setup: General Setup General Setup contains administrative and system-related information. WIZARD parkervision.com 3.3 Wizard Setup: Wireless LAN Setup Set up your wireless LAN using the wizard screen below. Refer to the chapter on wireless LAN for more information. 3.4 Wizard Setup: ISP Parameters WIZARD Ethernet RR-Toshiba ISP Parameters for Internet Access Encapsulation Service Type User Name Password Login Server IP Address 0.0.0.0 3.4.1 Wizard Setup - Ethernet - Continued Point-to-Point Tunneling Protocol (PPTP) is a network protocol that enables transfers of data Refer to the appendix for more information on PPTP. 3.4.2 PPTP Encapsulation WIZARD Page 3.4.3 PPPoE Encapsulation - Continued PPoE Wizard Setup Screen WIZARD PPP over Ethernet User Name Back Next ISP Parameters for Internet Access Encapsulation Service Name Page Page 3.5.4 WAN MAC Address - Continued The following table describes the labels in the screen above. Page Page Chapter 4: System Screens SYSTEM 4.2 Con guring General Setup - Continued Dynamic DNS allows you to update your current dynamic IP address with one or many dynamic WR3000 4.4 Con guring Dynamic DNS To change your WR3000s DDNS screen appears as shown. , click , SYSTEM and then the SYSTEM 4.6 Con guring Time Setting To change your WR3000s time and date, click Time Setting , SYSTEM and then the The table below describes the labels in this screen. Chapter 5: LAN Screens Page Page Page Chapter 6: Wireless Con guration Page Page Page See the Wireless Security chapter for information on the other labels in this screen. your computer to match the WR3000 Wireless Routers new computer connected to the wireless LAN and you change settings. Page Page Page Page Chapter 7: Wireless Security Page 7.3 Con guring WEP Encryption In order to con gure and enable WEP encryption; click display the Wireless screen. to and then The following table describes the wireless LAN security labels in this screen. Page 7.4 MAC Filter - Continued MAC Filter Con guration Screen: The following table describes the labels in this menu. WIRELESS LAN MAC Address Page Page 7.8 Introduction to Local User Database the reauthentication timer on the RADIUS server has priority. . The screen appears as shown below. 802.1x tab 7.9 Con guring 802.1 x - Continued Page 7.11 Con guring RADIUS The descriptions for the labels in the screen above are shown on the next page. The screen appears as shown below. . WIRELESS LAN Page Page Chapter 8: WAN Con guration Screens WAN 8.2.1 Ethernet Encapsulation - Continued Service Type The screen varies according to the service type you select. You need a username and WIZARD 8.2.1 Ethernet Encapsulation Service Type - Continued 8.2.2 PPPoE Encapsulation LABEL how a personal computer (PC) interacts with a broadband modem (DSL, cable, wireless, etc.) 64 WIZARD User Name PPP over Ethernet Back Next ISP Parameters for Internet Access Encapsulation Service Name WIZARD 8.2.3 PPTP Encapsulation - Continued WIZARD 8.4 Con guring WAN IP - Continued Page WAN Page Chapter 9: Single User Account (SUA) / Network Address Translation (NAT) Page Page Page Page 9.2.1 Port Forwarding: Services and Port Numbers - Continued Services and Port Numbers to open the SUA Server screen. Refer to the table in the SU A/NAT and then and then the To change your WR3000 Wireless Routers address mapping settings, click ADVANCED, SUA/ NAT Address Mapping tab . The screen appears as shown. The table below describes the setting in the above screen. Address Mapping Rule SUA/NAT - Address Mapping Type One-to-One Local Start IP 0.0.0.0 0.0.0.0 Local End IP N/A Global Start IP Global End IP N/A Chapter 10: Static Route 10.2 Con guring IP Static Route Click to open the screen shown next. IP S TAT IC ROUT E Static Rout e 10.2.1 Con guring Route Entry Select a static route index number and click required information for each static route. STATIC ROUTE - EDIT Route Name Active Destination IP Address IP Subnet Mask Gateway IP Address Metric Private 2 Page Chapter 11: Introduction to Firewalls Page Page Page Page Page Chapter 12: Firewall Screens Page Page Page 12.5 Enabling Firewall - Continued Firewall Settings LL WA FIRE CONTENT FILTER 12.5.1 Con guring Content Filtering - Continued Firewall Filter and then the 12.5.2 Con guring Firewall Services Click the date/time you want to block them. CONTEN T ER LT FI 12.5.2 Con guring Firewall Services - Continued Creating/Editing A Firewall Rule - Continued 12.5.3 Prede ned Services 12.5.3 Prede ned Services - Continued Prede ned Services 12.5.3 Prede ned Services - Continued Prede ned Services Chapter 13: Remote Management Page 13.3 Con guring TELNET - Continued Telnet REMOTE MANAGEMENT REMOTE MANAGEMENT 13.5 Con guring WWW To change your WR3000 Wireless Routers World Wide Web settings, click WWW tab. The screen appears as shown. REMOTE MANAGEMENT Page 13.6.1 Supported MIBs The WR3000 Wireless Router will send traps to the SNMP manager when any one of the performance. 13.6.2 SNMP Traps following events occurs: SNMP Traps The following table maps the physical port and encapsulation to the interface type. 13.6.3 REMOTE MANAGEMENT: SNMP To change your WR3000 Wireless Routers SNMP settings, click ADVANCED . The screen appears as shown. SNMP tab , REMOTE MANAGEMENT and then the REMOTE MANAGEMENT REMOTE MANAGEMENT Page Chapter 14: UPnP Screen 14.3 Con guring UPnP - Continued UPnP Con guring UPnP Page Page Page Page Chapter 15: Logs Screens LOGS Page 15.2 Con guring Log Settings - Continued The table on the following page describes the labels in the screen above. LOGS 15.2 Con guring Log Settings - Continued Log Settings LOGS 15.3 Con guring Reports - Continued 15.3.1 Viewing Protocol/Port In the screen, select Protocol/Port from the Report Type drop-down list box to have the Protocol/Port Report LOGS # POP3(TCP:110) (Port:515) (Port:524) SMTP(TCP:25) HTTP(TCP:80 (Port:445) DNS(TCP/UDP:53) (Port:9100) (Port:139) (Port:4623) View Log Log Settings Reports Report Type: Protocol/Port Protocol/Port LOGS # 172.21.100.99 172.21.3.54 View Log Log Settings Reports Report Type: LAN IP Address IP Address Stop Collection Refresh Bytes 15.3.3 Reports Speci cations The following table lists detailed speci cations on the reports feature. Report Speci cations Page Chapter 16: Maintenance system up time and poll interval(s). The Poll Interval eld is con gurable. System Status: Show Statistics DHCP TABLE WIRELESS # 16.4.1 Channel Usage Channel Usage tab and then the MAINTENANCE completely avoid overlap. Click FIRMWARE UPLOAD Browse FIRMWARE UPLOAD FIRMWARE UPLOAD CONFIGURATION CONFIGURATION Page CONFIGURATION CONFIGURATION Page Chapter 17: Introducing the SMT Page Page 17.5 Navigating the SMT Interface After you enter the password, the SMT displays the main menu as shown on the next page. 17.5 Navigating the SMT Interface - Continued 17.5.1 System Management Terminal Interface Summary Main Menu Summary # # Chapter 18: General and WAN Setup Page Menu 1.1 Con gure Dynamic DNS 18.1.3 Procedure to Con gure Dynamic DNS - Continued Menu 1.1 Con gure Dynamic DNS - Continued The MAC address eld allows users to con gure the WAN ports MAC address by either 18.2 WAN Setup you change the setting or upload a different rom le. 18.2 WAN Setup - Continued The table below describes the elds in the menu on the previous page. Chapter 19: LAN Setup Page 19.2 TCP/IP Ethernet and DHCP Setup - Continued Follow the instructions in the table below to con gure the DHCP elds. DHCP Ethernet Setup Page Page 19.3.1 IP Alias Setup 19.4 Wireless LAN Setup 19.4 Wireless LAN Setup - Continued When you have completed this menu, press [ENTER] at the prompt Press ENTER to con rm or key. Dont enter Ox before the key to denote a ASCII key. Page 19.4.1 Con guring MAC Address Filter - Continued 1..32 1..32 Chapter 20: Internet Access This chapter describes how to con gure the WR3000 Wireless Router for Internet Access. 20.2 Internet Access Setup Internet Access Setup 20.2 Internet Access Setup - Continued Page Appendix A Troubleshooting description, some instructions are provided to help you to diagnose and to solve the problem. This appendix covers potential problems and possible remedies. After each problem Problems with the Password - Troubleshooting the Password Problems with the Ethernet Interface - Troubleshooting the Ethernet Interface Problems with the WAN Interface - Troubleshooting the WAN Interface Problems with Internet Access - Troubleshooting Internet Access Problems with Telnet - Troubleshooting Telnet Problems with the WLAN Interface - Troubleshooting the WLAN Interface Appendix B Setting Up Your Computers IP Address Page Page Page Page Page Page Page Page Page Appendix C PPoE Page Appendix D PPTP