4-45, Parameter Defaults Description | SMC Networks SMC7404BRA EU

FIREWALL

Parameter Defaults Description

H.323 data channel idle timeout

DoS Detect Criteria

Total incomplete

TCP/UDP sessions HIGH

180 sec	The length of time for which an H.323 session
	will be managed if there is no activity.

300 sessions Defines the rate of new unestablished sessions that will cause the software to start deleting half-open sessions.

Total	250 sessions	Defines the rate of new unestablished sessions
incomplete		that will cause the software to stop deleting
TCP/UDP		half-open sessions.
sessions LOW
Incomplete	250 sessions	Maximum number of allowed incomplete TCP/
TCP/UDP		UDP sessions per min.
sessions (per
min) HIGH

Incomplete

TCP/UDP sessions (per min) LOW

Maximum incomplete

TCP/UDP sessions number from same host

Incomplete

TCP/UDP sessions detect sensitive time period

200 sessions Set this to 0 as no minimum setting is required and setting it to anything higher will adversly affect performance.

10Maximum number of incomplete TCP/UDP sessions from the same host.

300 msec Length of time before an incomplete TCP/UDP session is detected as incomplete.

Maximum	30	Maximum number of half-open fragmentation
half-open		packets from the same host.
fragmentation
packet number
from same host
Half-open	10000 msec	Length of time before a half-open fragmentation
fragmentation		session is detected as half-open.
detect sensitive
time period
Flooding cracker	300 sec	Length of time from detecting a flood attack to
block time		blocking of the attack.

4-45

Image 70

SMC Networks SMC7404BRA EU manual 4-45, Parameter Defaults Description, The length of time for which an H.323 session

Contents

Broadband Router with built-in ADSL Modem User GuidePage From SMC’s line of award-winning connectivity solutions December Part No 750.9701, UK Pub No 150000035400A FCC - Class B COMPLIANCESFCC - Part Australia AS/NZS 3548 1995 - Class B Industry Canada - Class BCOMPLIANCES EC Conformance Declaration - Class B COMPLIANCES 3 Configuring Client PCs TABLE OF CONTENTS2 Installation 4 Configuring the Barricade 5 Configuring Client TCP/IP TABLE OF CONTENTS 6 Configuring Printer Services TABLE OF CONTENTS CHAPTER INTRODUCTION Features and BenefitsAbout the Barricade VPN pass-through IPSec-ESP Tunnel mode, L2TP, PPTP Internet Access ApplicationsWired LAN Shared IP Address Security DMZ Host SupportVirtual Private Network VPN CHAPTER INSTALLATION Package Contents System Requirements Hardware Description Description Condition LEDsVerify Status Status Connect the System Figure 2-1. Installing With a Splitter Phone Line ConfigurationInstalling a Full-rate Connection Connect the ADSL Line Figure 2-2. Installing Without a Splitter Installing a Splitterless ConnectionAttach to Your Network Using Ethernet Cabling Connect the Power Adapter TCP/IP Configuration CHAPTER 3 CONFIGURING CLIENT PCS CONFIGURING CLIENT PCS CHAPTER CONFIGURING THE BARRICADE Navigating the Web Browser Interface Making Configuration Changes Setup Wizard Time Zone Internet Sharing Parameter Setting Parameter Finish PPPoE & PPPoA Parameter SETUP WIZARD network, it will forward the packets to the DefaultGateway usually your ISP will supply this address Multiple Protocol over ATM Mode 4-10 4-11 4-12 ADVANCED SETUP Advanced Setup4-13 4-14 The following table briefly describes the “Advanced Setup” menu itemsMenu MAKING CONFIGURATION CHANGES Making Configuration Changes4-15 System Settings 4-16 SYSTEM SETTINGS Password Settings4-17 Remote Management 4-18 4-19 PPPoE PPP over Ethernet 4-20 4-21 identifies the data channel within that virtual path 4-22 then it is automatically forwarded to the default router i.e1483 Bridging Bridging is a standardized layer 2 technology 4-23 4-24 4-25 4-26 Address Mapping 4-27 Virtual Server 4-28 The more common TCP service ports include 4-29 Static Route Routing System4-30 4-31 Authentication Required 4-32 4-33 Routing TableParameter Description Firewall 4-34 4-35 Access ControlFIREWALL The following items are on the “Access Control” screen 4-36 Access Control Add PC 4-37 URL Blocking 4-38 4-39 You may filter Internet access for local clients based on rulesSchedule Rule 1. Click “Add Schedule Rule.” 3. Click “OK” and then click “APPLY” to save your settings 4-40 Intrusion Detection 4-41 WAN port. When the SPI feature is turned on Enable SPI andlimits the access of the incoming traffic at the The Intrusion Detection feature of the Barricade 4-43 Stateful Packet If an IPX RIP request packet is not replied to by state structure remains active. When the timeout4-44 the router, it will stay in the input queue and not The length of time for which an H.323 session Parameter Defaults Description4-45 Maximum number of allowed incomplete TCP 4-46 Community SNMPSNMP 4-47 4-48 A community string password specified for trapTrap management. Enter a word, something other than ADSL ADSL4-49 Status 4-50 4-51 Maximum fluctuation in the output powerInterleaved Path FEC Correction 4-52 Configuration Tools Tools4-53 Firmware Upgrade 4-54 Reset 4-55 Status 4-56 The following items are included on this screen 4-57STATUS 4-58 Windows 95/98/Me CHAPTER 5 CONFIGURING CLIENT TCP/IP 2. In “Control Panel” double-click the “Network” icon TCP/IP Configuration Setting WINDOWS 95/98/ME Disable HTTP Proxy Internet Explorer Obtain IP Settings from Your ADSL Router Netscape Windows NT WINDOWS NT 11. Windows may copy some You need to verify that the “HTTP Proxy” feature of your Web browser is disabled. This is so that your browser can view the Barricade’s HTML configuration pages. Determine which browser you use and refer to “Internet Explorer” on page 5-4 or “Netscape” on page Your computer is now configured to connect to the Barricade 4. Type “EXIT” and press ENTER to close the “Command Prompt” window5-10 3. The connection status screen will open. Click “Properties.” Windows5-11 WINDOWS 5-12 4. Double-click “Internet Protocol TCP/IP.” 5-13 5-14 1. Click “start/Control Panel.” Windows XP5-15 2. In “Control Panel” click “Network and Internet Connections.” 5-16 5. Double-click “Internet Protocol TCP/IP.” 5-17 Type “EXIT” and press ENTER to close the “Command Prompt” window 5-18 CONFIGURING YOUR MACINTOSH COMPUTER Configuring Your Macintosh Computer5-19 3. If “Using DHCP Server” is already selected in the “Configure” field, your computer is already configured for DHCP. Close the TCP/IP dialog box, and skip to “Disable HTTP Proxy” on page 5-21.” 5-20 5-21 5-22 3. Select “Direct Connection to the Internet” and click “OK.” 5-23 5-24 Install the Printer Port Monitor CHAPTER CONFIGURING PRINTER SERVICESSkip this section if you are using Unix INSTALL THE PRINTER PORT MONITOR CONFIGURING PRINTER SERVICES Configure the Print Server Configure the Network Printer in Windows 95/98/Me/2000 4. Select the monitored port. The default port name is “SMC100.” Click the “Configure Port” button Configure the Network Printer in Windows NT Configure the Network Printer in Unix Systems CONFIGURE THE PRINT SERVER APPENDIX A TROUBLESHOOTING Page Page TROUBLESHOOTING APPENDIX B CABLES Ethernet Cable RJ-45 Port Ethernet Connection Pin Assignments Straight-Through Wiring Crossover Wiring ADSL Cable Connection Not used Signal NameFigure B-3. RJ-11 Pinouts CABLES APPENDIX C SPECIFICATIONS Page LIMITED WARRANTY SMCs Limited Warranty Statement LIMITED WARRANTY Contact SMC Full Installation ManualFirmware and Drivers Statement of Conditions