Chapter 3 Configuration

NEWS(119)

TCP(6)

119

119

NO

NO

NO

YES

NO

YES

RealAudio

UDP(17)

7070

7070

NO

NO

YES

YES

YES

YES

(7070)

 

 

 

 

 

 

 

 

 

PING

ICMP(1)

N/A

N/A

NO

YES

NO

YES

NO

YES

H.323(1720)

TCP(6)

1720

1720

NO

NO

NO

YES

YES

YES

T.120(1503)

TCP(6)

1503

1503

NO

NO

NO

YES

YES

YES

SSH(22)

TCP(6)

22

22

NO

NO

NO

YES

YES

YES

NTP(123)

UDP(17)

123

123

NO

YES

NO

YES

NO

YES

HTTPS(443)

TCP(6)

443

443

NO

NO

NO

YES

NO

YES

ICQ (5190)

TCP(6)

5190

5190

NO

NO

NO

NO

YES

YES

Note: Inbound: Internet to LAN, Outbound: LAN to Internet

3.6.3.4.2.2 Address Filters

There are no pre-defined address filter rules; you can add the filter rules to meet your requirements. There are two kinds of address filters, one is inbound, the other is outbound. The rules can be set to prevent unauthorized users (hosts or network) to access the Internet from LAN (outbound) and/or access LAN from the Internet (inbound).

3.6.3.4.2.3 Packet filter example

The following provides an example of configuring a web server in LAN when the firewall policy is set to High, Medium or Low security level.

The pre-defined port filter rule for HTTP is the same no matter if it is a high, medium or low security level. The default setting is allowed for outbound access, not allowed for inbound access. To setup a Web server located on the local network, when the firewall policy is set, you have to configure the Port Filters setting first.

When the firewall policy is set, the port filters screenshot is as below, the inbound HTTP access is not allowed.

37