Firewall, IP Filters and Blocked Protocols | Siemens E-110-I

SIEMENS ADSL E-110_E-110-I user manual

Firewall, IP Filters and Blocked Protocols

Firewall Configuration

Configuration Manager provides built-in firewall functions, enabling you to protect the system against denial of service (DoS) attacks and other types of malicious accesses to your LAN. You can also specify how to monitor attempted attacks, and who should be automatically notified.

1.Select Services > FireWall. The FireWall Configuration page displays.

2.Configure any of the following settings:

Field	Description
Blacklist Status	If you want the device to maintain and use a blacklist, click Enable. Click
	Disable if you do not want to maintain a list.

Blacklist Period(min)	Specifies the number of minutes that a computer's IP address will
	remain on the blacklist.

Attack Protection	Click Enable to use the built-in firewall protections that prevent the
	following common types of attacks:
	IP Spoofing: Sending packets over the WAN interface using an
	internal LAN IP address as the source address.
	Tear Drop: Sending packets that contain overlapping fragments.
	Smurf and Fraggle: Sending packets that use the WAN or LAN IP
	broadcast address as the source address.
	Land Attack: Sending packets that use the same address as the
	source and destination address.
	Ping of Death: Illegal IP packet length.

DOS Protection	Click Enable to use the following denial of service protections:
	SYN DoS
	ICMP DoS
	Per-host DoS protection

56	Rev:01_040220

Image 62

Siemens E-110-I user manual Firewall, IP Filters and Blocked Protocols, Firewall Configuration

Contents

Siemens Adsl E-110/E-110-I For Using Safety NotesFor Installation For Service Content Iii RIP Configuration Advanced Configuration via Web browserNAT Configuration Administration Tasks Contents Appendix SpecificationPage Features Before You Use Unpacking Configuration and ManagementSystem Requirements Physical Outlook LED Indicators Front Panel System MessagesOverview Front Panel 9V 1A Rear PanelRear PanelEthernet Analog Pstn installation InstallationConnecting the Adsl Router Choosing a place for the Adsl Router Isdn installation Isdn NT USB driver installation Install the USB driver Uninstall the USB driver Click Start Programs Siemens DSL Modem Uninstall For Windows ConfigurationConfigure TCP/IP on Client PC Page Rev01040220 Page For Windows 98 and Windows 98 SE Your network interface card When returning to Network window, click OK Rev01040220 Page For Windows ME For Windows NT Page Page Page For Windows Page Page For Windows XP Click Internet ProtocolTCP/IP and then click OK For Macintosh OS 8.6 For Macintosh OS From the Apple Menu, select System Preferences… Close the Network window Renew IP Address on Client PC For Windows ME For Windows Click Connect and Save Quick Configuration via Web browserInternet Access Advanced Configuration via Web browser Main Menu Commonly Used Buttons and Icons Viewing Basic System Information Quick Configuration Rebooting the device using Configuration Manager Committing Changes to Permanent Storage Sub-Menus DSL NAT Advanced Configuration Configuring IP Routes Part 1. Creating IP address pools Dhcp ConfigurationConfiguring Dhcp Server Part 2. Enabling Dhcp Server Mode Viewing Current Dhcp Address Assignments Part 3. Configuring your PCs as Dhcp clientsModifying Address Pools Select Lan Dhcp Server Part 1. Defining the Dhcp relay interfaces Configuring Dhcp RelayPart 2. Enabling Dhcp relay mode These private IP addresses Are translated to NAT ConfigurationViewing Your NAT Configuration FieldDescription Page Field Description Viewing NAT Rules and Rule StatisticsViewing Current NAT Translations Adding NAT Rules Rdr rule Allowing external access to a LAN computer Basic rule Performing 11 translations Bimap rule Performing two-way translations Page Select a Send Mode and a Receive Mode RIP ConfigurationConfiguring the RIP Viewing RIP Statistics Firewall Configuration Firewall, IP Filters and Blocked Protocols Max Icmp Conn Mail ID of Admin 1/2/3Field Description Max Half open TCP Conn Max Single Host Conn Configuring IP Filter Global Settings IP Filter ConfigurationViewing Your IP Filter Configuration Action Creating IP Filter RulesField Description Rule ID Direction Log Tag Field Description Log OptionSecurity Level Start/End Time Icmp Type Field Description Dest PortTCP Flag Icmp Code IP filter rule examples Specify Protocol eq TCP Viewing IP Filter Statistics To Block Specific Protocols Managing Current IP Filter Sessions Changing Your Login Password Administration TasksUser Configuration Changing the System Date and Time Adding a New User Image UpgradeSelect Admin Local Image Upgrade View System Alarms Diagnostics Port Settings View DSL Parameters Page Connection Modes Bridge ModePart 1 Configuring the Adsl Router Creating an ATM VCC interface Mux Type Creating an EoA interfaceField Description VC Interface Max Proto per AAL5 Select Bridge LAN Config Enable Bridging functionLAN configuration Part 2 Check your connection status PPP Connection ModePart 3 Configuring the PC Commit your changes Interface Sec Type Select Public Creating a PPP interfaceSelect the ATM VC you created, e.g. aal5-0 Password Service NameLogin Name Field Description Status Select Start or StartOnData Router Connection Mode Creating a IPoA interface Internet Access TroubleshootingProblem Troubleshooting Suggestion LEDs Configuration Manager Program Problem Troubleshooting Suggestion Upgrading Error Message Possible cause Action Glossary UDP User Datagram Protocol PVC Permanent Virtual CircuitRIP Routing Information Protocol Virtual Server Appendix Specification Software Regulatory Approvals and Compliance Power Requirement and Operation Environment RequirementHardware Physical