Firewall | Sagem 1500WG specs

4 - Configuring the SAGEM F@st™ 1500 ADSL router

4.8Firewall

The SAGEM F@st™ 1500 ADSL Router’s firewall inspects packets at the application layer, maintains TCP and UDP session information including time-outs and the number of active sessions, and provides the ability to detect and prevent certain types of network attacks.

Network attacks that deny access to a network device are called Denial-of-Service (DoS) attacks. DoS attacks are aimed at devices and networks with a connection to the Internet. Their goal is not to steal information, but to disable a device or network so users no longer have access to network resources.

The SAGEM F@st™ 1500 ADSL Router protects against the following DoS attacks: IP Spoofing, Land Attack, Ping of Death, IP with zero length, Smurf Attack, UDP port loopback, Snork Attack, TCP null scan, and TCP SYN flooding. (See section 4.8.5 for details).

The firewall does not significantly affect system performance, so we advise leaving it enabled to protect your network. Select Enable and click the “Apply” to open the Firewall submenus.

In this menu is included the following sub-menus:

¾Access Control (see section 4.8.1),

¾MAC Filter (see section 4.8.2),

¾URL Blocking (see section 4.8.3),

¾Schedule Rule (see section 4.8.4),

¾Intrusion Detection (see section 4.8.5),

¾DMZ (see section 4.8.6).

SAGEM F@st™ 1500 Reference Manual - 288053220-04 Reproduction and communication prohibited without the written permission of E Page 4-37

Image 83

Sagem 1500WG manual Firewall

Contents

288 053 Reference ManualPage Contents Configuring the Sagem F@st 1500 Adsl router Appendix C Cables Appendix a Troubleshooting Appendix B Safety warningsAppendix D Technical specifications Appendix E Default configuration Front Panel List of figures Introduction About the Sagem F@stTM 1500WG Adsl Router Features and BenefitsWireless and Wired LAN Internet Access Security Shared IP AddressVirtual Server DMZ Host Support Composition of the supply Prerequisites Introduction Description and Physical installation Hardware Description Description and physical installation Status Description Front panel Ports / Button Description ResetPower Rear panel Environment Physical Installation Installation instructionsPower supply source Maintenance Desktop Installation Connect the Adsl Line Settings and Connecting ISP settingsInstall the Sagem F@stTM 1500 Adsl Router Installing a Full-Rate Connection Phone Line Configuration Installing without a splitter Installing a Splitterless Connection Connect the Power Adapter Attach to Your Network Using Ethernet Cabling Powering up the Sagem F@st 1500 Adsl router Description and physical installation Configuring Client Computer IP Address 192.168.2.1 Subnet Mask 255.255.255.0 TCP/IP ConfigurationMac Millennium Edition is similar, but not identical, to Windows Configuring your Windows computer On Windows 98 / Me TCP/IP Configuration Setting Internet Explorer Disable Http Proxy Configuring Client Computer Obtain IP Settings from Sagem F@stTM 1500 Adsl Router On Windows NT On the Windows desktop, click Start/Settings/Control Panel Configuring Client Computer TCP/IP Configuration Setting Configuring Client Computer On Windows Disable Http Proxy Obtain IP Settings from Sagem F@stTM 1500 Adsl Router Configuring Client Computer On Windows XP Disable Http Proxy Obtain IP Settings from Sagem F@st1500 Adsl Router Configuring Client Computer Configuring your Mac computer Disable Http Proxy Configuring Client Computer Configuring the Sagem F@st 1500 Adsl router Sagem F@st Configuring the Sagem F@st 1500 Adsl router Sagem F@st 1500WG Navigating the Management Interface Setup Wizard Advanced Setup Making Configuration Changes Status Information LAN / WirelessDescription Additional PPP Setting Setup Wizard menu Essid Broadcast Wireless ModeChannel and Ssid Parameter Description Parameter Description 3 WEP Access Control System Time Settings Password Settings You will be asked to confirm your decision Configuration toolsChoose a function and click Next Reset Firmware Upgrade WAN menu Bridging ATM PVC CBR Clone MAC LAN Domain Name VlanParameter Description IP Address Pool Start IP End IP Add Vlan Edit Enter those addresses on this page, and click Apply 2 DNS Wireless Channel Wireless ModeSsid Broadcast Access Control Security 4 WEP 5 WPA Configuring the Sagem F@st 1500 Adsl router Parameter Description 802.1X Authentication Session Idle timeoutRe-Authentication Re-Type Password NAT Address Mapping Virtual Server Special Application NAT Mapping Table Firewall Access Control Configuring the Sagem F@st 1500 Adsl router MAC Filter URL Blocking Click Add Schedule Rule Schedule Rule Stateful Packet Inspection Intrusion Detection FeatureIntrusion Detection Configuring the Sagem F@st 1500 Adsl router Connection Policy DoS Criteria and Port Scan Criteria 6 DMZ Static Route Route 2 RIP Version Operation ModeParameter Description General RIP Parameters Table of current Interface RIP parameter Interface Routing TableParameter Description Flags Netmask Please complete the Minimum Bandwith Allocation Parameter Description Enable or disable QoS module function10 QoS Diffserv Forwarding Groups Traffic Mapping Parameter Description Traffic statistics Adsl Advanced Monitoring Index Loss of Signal Defect Parameter Operation Mode DescriptionFast Path CRC Error Interleaved Path CRC Error Remote Management Snmp Snmp Setting Snmp Trap UPnP Ddns Macintosh Finding the MAC address of a Network CardWindows 98/ME Windows NT4/2000/XP Configuring the Sagem F@st 1500 Adsl router Appendix a Troubleshooting Management Problems Troubleshooting ChartSymptom Action LED Indicators Network Connection Problems Symptom Action LED Indicators Wireless Problems Appendix a Troubleshooting Appendix B Safety warnings LAN Ports Safety warningsSafety levels on the mains adapter unit Safety levels on the Sagem F@st 1500 unit Radio specific to Sagem F@st 1500WG SafetyCE declaration of conformity Appendix B Safety warnings Appendix C Cables 3 RJ-45 Port Connection SpecificationsWiring Conventions Ethernet cable General Straight-Through WiringCrossover Wiring Pin Assignments Line Standard Telephone cable RJ11 Cable Types and SpecificationsCable Type Connector Adsl Cable Pin Signal Name Wire Color Figure C.2 RJ-11 Connector Pin Numbers Appendix C Cables Appendix D Technical specifications Input Power Mechanical Characteristics DisplaysElectrical Characteristics Adsl Features Security Features Soft Component FeaturesATM Features Management Features Radio Features Operating Channels Ieee 802.11g compliant RF Output Power Modulation Rate-Output Power dBmModulation Rate-Output Power dBm Operating Channels Ieee 802.11b compliant Modulation Rate-Receiver Sensitivity Typical dBm Environmental characteristics Internet Standards Appendix E Default configuration LAN characteristics Function Mode State/Value Default user name and password for Http accessDefault language for Http User Interface Default configuration on the local area network side Advanced functions Function Mode State/Value Default configuration on the wide area network sideDefault configuration for advanced functions WAN characteristics Function Mode State/Value Appendix E Default configuration Page ENetworks Division