Click Customize, Destination Interface, Flags Enable | RCA 605, 608

Chapter 5

Expert Configuration

Creating a firewall rule Proceed as follows to create a new security level and to add rules:

1Select one of the six security levels.

2Click Customize.

3Type name and description for the new security level and click Apply.

4Click New to add a rule.

5Fill in all the fields.

Index:

The index of the firewall rule. The firewall hierarchically goes through the rules, starting from rule 1. When no rule is hit, the firewall will block the traffic because of his default behaviour.

Name:

The name of the rule.

Source Interface:

The source interface. (e.g. _lan1, _wan1, _dmz1,...)

Source IP - Select:

The name of the source IP expression.

You can also type an IP address.

Destination Interface:

The destination interface (e.g. _lan1, _wan1, _dmz1,...)

Destination IP- Select:

The name of the destination IP expression.

You can also type an IP address.

Service:

The service or protocol. (e.g. smtp, http, telnet,...)

Flags:

Enable:

To enable the rule or not.

Log:

To log the actions concerning this rule. You can see the result in

Firewall > Log.

Action:

Accept:

The connection is accepted.

Deny:

Send to the sender that the packet could not be delivered.

Drop:

The packet is silently discarded.

Reset:

Reset of the connection.

Count:

Counts the number of connections that match the rule description. Contrary to other actions this action does not stop further parsing of the firewall rules database.

The results are shown in the Hits column.

6Click Apply.

E-DOC-CTC-20051017-0151 v1.0	173

Image 183

RCA 605 Click Customize, Destination Interface, Destination IP- Select, Flags Enable, Firewall Log Action Accept, Deny

Contents

SpeedTouch 605/608/608 WL/620 Page SpeedTouch 605/608 608 WL/620 Copyright TrademarksDocument Information Contents Basic Configuration Expert Configuration IP Router 121 Software Keys Contents About this User’s Guide Terminology Documentation and software updates About this User’s Guide Getting to know your SpeedTouch SpeedTouch LED Behaviour Indicator Description Name Colour State DSL Indicator Description Name LED Status Access Method Can be used to Accessing your SpeedTouch To access the SpeedTouch via the Web interface Access via the Web Interface Access via CLI To access the SpeedTouch via the Command Line Interface CLIFor more information, see Quote site command on To start a Telnet session Select All Programs Accessories Command Prompt Open a Command Prompt window Access via FTP Use Command Common FTP commands Ftp quote site ip iplist To access the SpeedTouch remotely To enable remote access To disable remote accessRemote Assistance Chapter Wired Ethernet Wireless Ethernet Local Network Setup For more information, see Device settings on Wired Ethernet Introduction Wireless client requirements Wireless Ethernet Wireless Basics Chapter Connecting Wireless Clients for the First Time Wireless default settingsWireless Security on Click Connect Anyway First-time association example Name Ssid Wireless Security WPA-PSK Wi-Fi Protected Access Pre-Shared Key Search for wireless devices taskSecurity disabled default WEP Wired-Equivalent Privacy Registering clients via Web pages Connecting Additional Wireless ClientsSecurity issues Registering wireless clients Click Configure Registering clients via the association button Wireless Distribution System WDS Extending the Range of Your Wirelstess Network Chapter Chapter Internet Gateway Internet Connectivity Dial-In ClientsSpeedTouch Web Pages See 3.1 SpeedTouch Web Pages on page 31 to proceed If your computer runs You can use SpeedTouch Web Pages Introduction Starting an Internet sessionMonitoring your Internet connection Terminating an Internet session Internet Gateway Device Control Agent Internet connection status Terminating an Internet session Basic and Expert Mode SpeedTouch documentation Basic Configuration Menu Language Bar Navigation Bar Notification Area Tasks Navigation Menu items Collapsing and expanding the menu Menu Language Bar Navigation Bar Notification Area Tasks Home SpeedTouch homeSpeedTouch Broadband Connection Toolbox Office Network SpeedTouch Information Configuration Event Logs Update Information SpeedTouch Easy Setup Click Yes, restart my SpeedTouch. The SpeedTouch restarts RestartRestarting your SpeedTouch Configuration Restoring a previously saved configuration Back up & RestoreAccessing the Backup & Restore Saving your current configuration Resetting the SpeedTouch factory defaults Reset to Factory Defaults Event Logs Indicator Description Updating the SpeedTouch system software Update DSL Connection Internet Services Broadband ConnectionBroadband Connection menu Connectivity Check Pick a task list, click Check connectivity to the InternetClick Check Connectivity DSL Connection Internet Services Internet Service Settings Accessing the Internet Service Settings OverviewBroadband Connection menu, click Internet Services Toolbox Username Password Enabling Remote AssistanceTerminating remote assistance Game & Application Sharing Chapter Defined Games & Applications Accessing the Defined Games & Applications Game or Application Name you can Accessing the Game or Application Definition OverviewConfigure Under Game or Application Definition Adding a Port Translation rule Creating a new game or application New Game or Application Web Site Filtering Allow is selected under Action for Unknown Sites Deny access to a specific Web siteAllow access to a specific Web site Redirect a Web site Proceed as follows Click Redirect in the Action list Configure content based filtering settingsUnder Content Based Filtering you can Redirecting all Web sites Click Standard Accessing this page Proceed as followsWeb Filtering Activation Web Filtering Activation Standard license activation Icon Description Content LevelAccessing the Content Level Toolbox menu, click Web Site Filtering Click Configure New Content Level Accessing the New Content LevelContent level creation Proceed as follows Chapter Standard FirewallHigh Medium Low DisabledDetails of a security level Creating a new security level Editing a security level Proceed as follows Destination Interface and IP Address range Source Interface and IP Address range Intrusion Detection Dynamic DNS On the Dynamic DNS page, click Configure User Privileges User Management Chapter Edit User Editing a user account Proceed as followsToolbox menu, click User Management Change Default User Changing the default userChange Default User page appears Add User Office Network DevicesInterfaces Devices See 4.6.2 Device Settings on page 84 for more information Connection Sharing Device SettingsAccessing the device settings Overview Office Network menu, click Devices Chapter Assigning the public IP address to a device Assign Public IP Wireless Device Settings Accessing the wirelessDevice settings Access Point Settings Accessing the AccessPoint settings Encryption Allow multicast from Broadband NetworkBroadcast Network Name Allow New Devices Select Use WPA-PSK Encryption 64 bit, Hexadecimal128 bit, Alphanumeric 128 bit, Hexadecimal New stations are allowed via registration Access control on the SpeedTouchFor more information, see Allowing new wireless on New stations are allowed automatically Information, see 4.6.4 Wireless Device Settings on Establishing a WDS connection Configuring WDSClick Configure Pick a task list, click Configure WDS Pick a task list, click Scan for wireless Access Points Interfaces Assigning a new IP address to the SpeedTouch Interface Settings Dhcp Pool Accessing the Dhcp Pool Dhcp PoolOffice Network menu, click Interfaces Components of the Dhcp Pool Chapter Connections Expert ConfigurationClick IP Router 100 101 SpeedTouch Services Easy SetupDiagnostics System Update Easy Setup If result is Then Diagnostics DSL Line Info Configuration SystemSee 5.2.6 System Update on page 110 for more information System Information Software Release Board Name Serial Number Product Code Product Name Connections If the status is Then Diagnostics Messages Configuration SyslogFacility Severity 109 System Update System configuration System UpgradeSee Upload system files on page 110 for more information Manage configuration files Switchtoanothersystem software version Upload system software Proceed as followsSystem software version SpeedTouch Services View detailed SpeedTouch service informationEdit SpeedTouch service properties Service properties Edit SpeedTouch service properties Type Indicates a SpeedTouch service that Sntp Client Manual Sntp Modify ping test properties 9 SLA Delete the entry see Add/delete a traceroute test Modify traceroute test properties Traceroute tests and results Add/delete a traceroute testModify traceroute test Properties Add-on IP Router IP Addresses Add/change an IP addressSelect Obtain an IP address automatically Interface Expressions Properties table Interface ServiceExpressions Related expression Adding an IP related expression Service Adding a service related expression TCP Ack class Classification Label ServiceIndex Name Adding an IP route To add an IP route IP Routing 5 RIP Configuration Interfaces Neighbours 6 NAT Type MappingCreating a NAT template Group IP QoS Configuration Queues Meter Wfq WFQ queue WeightDiscard Priority Mark rate PropagateAckFilter Drop rate Mark action # marked# compliant Drop action Bridged Ethernet Routed PPPoERouted PPPoA Routed PPPoI Connection Service Name 1 ATMPhonebook QoS Book Interfaces Identifiers VPI and VCI Upper layer protocol Routed PPPoE Creating a Routed PPPoE connection entryRouting Other On-Demand ModeManually Always-On Introduction Creating a Routed PPPoA connection entry Routed PPPoA 142 143 Creating a Routed Routed PPPoIAvailability Introduction 145 146 Vlan Bridged Ethernet 148 Vlan interface configuration Routed Ethernet Generated IP routes Routed IPoACreating a new Routed IPoA Ethernet Interface PPTP-to-PPP Relay Virtual LAN Managed Switch WirelessLocal Networking Activate trust client DhcpActivate server Activate verify first Used Client IDAddress Pool Secondary DNS Server Primary DNS Server Relay Interfaces Relay Config Bound InitRequesting Selecting 2 DNS Configuration Hostname Table Overview Managed Ethernet Switch Managed Switch 162 Wireless Framebursting Interoperability ModeRate Only stations with correct Network name Ssid can connect Channel Selection list, click auto Network Name broadcast Interoperability Mode Security Mode settings Access Control settings Enable/disable the wireless interfaceClear wireless interface enabled Select Wireless interface enabled Select Security Level 2 WPA-PSK WPA Personal Select Security Level 1 WEPBits, Alphanumeric Bits, Hexadecimal Select Security Level 2 WPA Scan for Other Networks Expressions on PolicyLog Policy Buttons Click Destination Interface Flags EnableReset Click Customize 174 2 Log VPN Remote Gateway Address Known as the starting page when ConfigurationProcedure LAN to LAN Configuration procedure VPN ClientSelect VPN VPN Client SpeedTouch as VPN Server Configuration procedure VPN ServerSelect VPN VPN Server Certificates Advanced Browse to Expert mode VPN Debug Logging Browse again to Expert mode VPN Debug LoggingDebug SIP PBX General Location Service Call Logging Call Screening 184 HowtoactivateaSoftware module Software Keys 186 Troubleshooting Performance General SpeedTouch TroubleshootingSpeedTouch does not work SpeedTouch unreachable Poor SpeedTouch LANLEDdoesnotlightup Make sure that Wired Ethernet Troubleshooting Not able to connect wireless clients Wireless Ethernet Troubleshooting Message Due to Upgrade Troubleshooting UPnP on Windows XP Systems Adding IGD Discovery and Control Software reset Hardware reset Resetting your SpeedTouch 195 196 Page Need more help?