Manuals / SMC Networks / Computer Equipment / Network Router

SMC Networks SMC7404BRA EU manual 4-43, Parameter, Defaults, Description, Stateful Packet

Models: SMC7404BRA EU

1 130

Download 130 pages 9.51 Kb

Page 68

			FIREWALL

	Parameter	Defaults	Description
Stateful Packet			This option allows you to select different
Inspection			application types that are using dynamic port
			numbers. If you wish to use Stateful Packet
			Inspection (SPI) for blocking packets, click on
			the “Yes” radio button in the “Enable SPI and
			Anti-DoS firewall protection” field and then
			check the inspection type that you need, such as
			Packet Fragmentation, TCP Connection, UDP
			Session, FTP Service, H.323 Service, and TFTP
			Service.
			It is called a “stateful” packet inspection because
			it examines the contents of the packet to
			determine what the state of the communication
			is, i.e. it ensures that the stated destination
			computer has previously requested the current
			communication. This is a way of ensuring that all
			communications are initiated by the recipient
			computer and are taking place only with sources
			that are known and trusted from previous
			interactions. In addition to being more rigorous
			in their inspection of packets, stateful inspection
			firewalls also close off ports until connection to
			the specific port is requested.
			When particular types of traffic are checked, only
			the particular type of traffic initiated from the
			Internal LAN will be allowed. For example, if the
			user only checks “FTP Service” in the Stateful
			Packet Inspection section, all incoming traffic
			will be blocked except FTP connections initiated
			from the local LAN.
Hacker Prevention
Feature
	Discard Ping	Discard	Prevents a PING on the Gateway’s WAN port
	from WAN		from being routed to the network.

4-43

Image 68

SMC Networks SMC7404BRA EU manual 4-43, Parameter, Defaults, Description, Stateful Packet

Contents

Broadband Router with built-in ADSL Modem User GuidePage Part No 750.9701, UK Pub No 150000035400A From SMC’s line of award-winning connectivity solutions DecemberBroadband Router with built-in ADSL Modem FCC - Part COMPLIANCESFCC - Class B COMPLIANCES Industry Canada - Class BAustralia AS/NZS 3548 1995 - Class B EC Conformance Declaration - Class B COMPLIANCESCOMPLIANCES TABLE OF CONTENTS 2 Installation3 Configuring Client PCs 4 Configuring the Barricade5 Configuring Client TCP/IP TABLE OF CONTENTS6 Configuring Printer Services TABLE OF CONTENTS About the Barricade Features and BenefitsCHAPTER INTRODUCTION VPN pass-through IPSec-ESP Tunnel mode, L2TP, PPTP Applications Wired LANInternet Access Shared IP AddressVirtual Private Network VPN DMZ Host SupportSecurity CHAPTER INSTALLATION Package ContentsSystem Requirements Hardware Description DescriptionLEDs Verify StatusCondition StatusConnect the System Phone Line Configuration Installing a Full-rate ConnectionFigure 2-1. Installing With a Splitter Connect the ADSL LineAttach to Your Network Using Ethernet Cabling Installing a Splitterless ConnectionFigure 2-2. Installing Without a Splitter Connect the Power Adapter TCP/IP Configuration CHAPTER 3 CONFIGURING CLIENT PCSCONFIGURING CLIENT PCS CHAPTER CONFIGURING THE BARRICADE Navigating the Web Browser Interface Making Configuration ChangesSetup Wizard Time ZoneCONFIGURING THE BARRICADE Internet SharingDescription Parameter SettingParameter CONFIGURING THE BARRICADE FinishParameter DescriptionDescription PPPoE & PPPoAParameter Description FinishParameter network, it will forward the packets to the Default SETUP WIZARDParameter DescriptionMultiple Protocol over ATM Mode 4-10Parameter DescriptionFinish 4-11Parameter DescriptionDescription 4-12Parameter Advanced Setup ADVANCED SETUPNavigating the Web Browser Interface 4-13The following table briefly describes the “Advanced Setup” menu items 4-14Menu Description4-15 Making Configuration ChangesMAKING CONFIGURATION CHANGES 4-16 System SettingsCONFIGURING THE BARRICADE 4-17 Password SettingsSYSTEM SETTINGS Remote Management 4-18SYSTEM SETTINGS 4-19PPPoE PPP over Ethernet 4-20Parameter Description4-21 ParameterDescription identifies the data channel within that virtual paththen it is automatically forwarded to the default router i.e 4-22Parameter DescriptionDescription 4-23Parameter Description 4-24Parameter Description 4-25Parameter CONFIGURING THE BARRICADE 4-26Address Mapping 4-274-28 CONFIGURING THE BARRICADEVirtual Server The more common TCP service ports include 4-294-30 Routing SystemStatic Route Description 4-31Parameter Authentication Required 4-32Parameter Description Routing Table4-33 Firewall 4-34FIREWALL Access Control4-35 The following items are on the “Access Control” screen 4-36FIREWALL Access Control Add PC4-37 4-38 CONFIGURING THE BARRICADEURL Blocking You may filter Internet access for local clients based on rules Schedule Rule4-39 1. Click “Add Schedule Rule.”4-40 3. Click “OK” and then click “APPLY” to save your settingsCONFIGURING THE BARRICADE FIREWALL Intrusion Detection4-41 Enable SPI and limits the access of the incoming traffic at theWAN port. When the SPI feature is turned on The Intrusion Detection feature of the BarricadeDefaults 4-43Parameter DescriptionDefaults state structure remains active. When the timeout4-44 ParameterParameter Defaults Description 4-45The length of time for which an H.323 session Maximum number of allowed incomplete TCPCONFIGURING THE BARRICADE 4-46SNMP SNMPCommunity 4-47A community string password specified for trap Trap4-48 ParameterADSL ADSL4-49 Parameter4-50 CONFIGURING THE BARRICADEStatus Maximum fluctuation in the output power ADSL4-51 ParameterDescription 4-52Parameter 4-53 ToolsConfiguration Tools 4-54 Firmware UpgradeCONFIGURING THE BARRICADE Reset 4-55Status 4-564-57 The following items are included on this screenParameter DescriptionCONFIGURING THE BARRICADE 4-58Windows 95/98/Me CHAPTER 5 CONFIGURING CLIENT TCP/IP2. In “Control Panel” double-click the “Network” icon TCP/IP Configuration Setting WINDOWS 95/98/MEDisable HTTP Proxy Internet ExplorerNetscape Obtain IP Settings from Your ADSL RouterWINDOWS 95/98/ME Windows NT WINDOWS NT 11. Windows may copy some You need to verify that the “HTTP Proxy” feature of your Web browser is disabled. This is so that your browser can view the Barricade’s HTML configuration pages. Determine which browser you use and refer to “Internet Explorer” on page 5-4 or “Netscape” on page WINDOWS NT4. Type “EXIT” and press ENTER to close the “Command Prompt” window Your computer is now configured to connect to the BarricadeCONFIGURING CLIENT TCP/IP 5-10Windows 5-113. The connection status screen will open. Click “Properties.” WINDOWS5-12 4. Double-click “Internet Protocol TCP/IP.”5-13 Disable HTTP ProxyObtain IP Settings from Your Barricade 4. Type “EXIT” and press ENTER to close the “Command Prompt” window Your computer is now configured to connect to the BarricadeCONFIGURING CLIENT TCP/IP 5-14Windows XP 5-151. Click “start/Control Panel.” 2. In “Control Panel” click “Network and Internet Connections.”5-16 5. Double-click “Internet Protocol TCP/IP.”Disable HTTP Proxy Obtain IP Settings from Your Barricade5-17 WINDOWS XPType “EXIT” and press ENTER to close the “Command Prompt” window Your computer is now configured to connect to the BarricadeCONFIGURING CLIENT TCP/IP 5-185-19 Configuring Your Macintosh ComputerCONFIGURING YOUR MACINTOSH COMPUTER 3. If “Using DHCP Server” is already selected in the “Configure” field, your computer is already configured for DHCP. Close the TCP/IP dialog box, and skip to “Disable HTTP Proxy” on page 5-21.” 5-20Internet Explorer Disable HTTP Proxy5-21 5-22 3. Select “Direct Connection to the Internet” and click “OK.”Obtain IP Settings from Your Barricade 5-23CONFIGURING CLIENT TCP/IP 5-24Skip this section if you are using Unix CHAPTER CONFIGURING PRINTER SERVICESInstall the Printer Port Monitor INSTALL THE PRINTER PORT MONITOR CONFIGURING PRINTER SERVICES Configure the Print Server Configure the Network Printer in Windows 95/98/Me/20004. Select the monitored port. The default port name is “SMC100.” Click the “Configure Port” button 2. Follow the prompts to add a local printer to your system Configure the Network Printer in Windows NTCONFIGURE THE PRINT SERVER Configure the Network Printer in Unix Systems CONFIGURE THE PRINT SERVER APPENDIX A TROUBLESHOOTING Page Page TROUBLESHOOTING APPENDIX B CABLES Ethernet CableRJ-45 Port Ethernet Connection Pin AssignmentsStraight-Through Wiring Crossover WiringADSL Cable Connection Signal Name Not usedNot used Figure B-3. RJ-11 PinoutsCABLES APPENDIX C SPECIFICATIONS Page LIMITED WARRANTY SMCs Limited Warranty StatementLIMITED WARRANTY LIMITED WARRANTY Full Installation ManualFirmware and Drivers Contact SMC