SMC Networks SMC7804WBRA S, 4-49

A

DVANCED

S

ETUP

4-49

•DoS Criteria and Port Scan Criteria

Set up DoS and port scan criteria in the spaces provided (as shown below).

Note: The firewall does not significantly affect system performance, so

we advise enabling the prevention features to protect your

network.

Parameter Defaults Description

Total incomplete

TCP/UDP sessions

HIGH

300

sessions

Defines the rate of new unestablished sessions

that will cause the software to start deleting

half-open sessions.

Total incomplete

TCP/UDP sessions

LOW

250

sessions Defines the rate of new unestablished sessions

that will cause the software to stop deleting half-

open sessions.

Incomplete

TCP/UDP sessions

(per min) HIGH

250

sessions Maximum number of allowed incomplete

TCP/UDP sessions per minute.

Incomplete

TCP/UDP sessions

(per min) LOW

200

sessions Minimum number of allowed incomplete

TCP/UDP sessions per minute.

Maximum incomplete

TCP/UDP sessions

number from same

host

10 Maximum number of incomplete TCP/UDP

sessions from the same host.

Incomplete

TCP/UDP sessions

detect sensitive time

period

300

msec Length of time before an incomplete

TCP/UDP session is detected as incomplete.

Maximum half-open

fragmentation packet

number from same

host

30 Maximum number of half-open fragmentation

packets from the same host.

Half-open

fragmentation detect

sensitive time period

10000

msec Length of time before a half-open

fragmentation session is detected as half-open.

Flooding cracker

block time

300

second Length of time from detecting a flood attack to

blocking the attack.

Contents

Main Page Page L IMITED W ARRANTY L IMITED W ARRANTY ii OMPLIANCES Federal Communication Commission Interference Statement IMPORTANT STATEMENT FCC Radiation Exposure Statement FCC - Part 68 iv Industry Canada - Class B v Australia AS/NZS 3548 (1995) - Class B EC Conformance Declaration vi Safety Compliance Wichtige Sicherheitshinweise (Germany) T vii ABLE C C viii 4 Configuring the Barricade . . . . . . . . . . . . . . . . . . . . . . 4-1 Page Page 1-1 HAPTER 1 I NTRODUCTION About the Barricade Features and Benefits 1-2 Applications 1-3 1-4 2-1 HAPTER 2 I NSTALLATION Package Contents 2-2 System Requirements Hardware Description H D 2-3 Figure 2-1. Rear Panel 2-4 LED Indicators Figure 2-2. Front Panel ISP S 2-5 ISP Settings Connect the System Connect the ADSL Line 2-6 Phone Line Configuration S 2-7 2-8 Connect the Power Adapter Page TCP/IP Configuration Windows 98/Me 98/M 3-3 Page Page Page Windows NT 4.0 C PC 3-8 Page Page 2000 3-11 Windows 2000 Page Page Windows XP Page Configuring Your Macintosh Computer Page Page Page Navigating the Management Interface Setup Wizard Page W 4-5 Confirm Page Page Page Page Page Page Page S 4-13 Advanced Setup The advanced management interface contains 13 main menu items as described in the following table. Page Page Page Page Page Page B 4-20 PPPoE Enter the PPPoE (Point-to-Point over Ethernet) parameters here. S 4-21 ATM Enter ATM (Asynchronous Transfer Mode) function parameters here. Page Page Page Page B 4-26 Page B 4-28 S 4-29 B 4-30 802.1X If 802.1X is used in your network, then you should enable this function for the Barricade. Page Page S 4-33 Page Page Page S 4-37 RIP B 4-38 S 4-39 Routing Table Page Page Page Page Page S 4-45 Page S 4-47 B 4-48 S 4-49 Page Page Page Page Page S 4-55 The following items are included on this information page: B 4-56 Page Page Page Page Page Page S 4-63 The following items are included on the Status page: Finding the MAC address of a Network Card A-1 A T ROUBLESHOOTING A-2 A-3 A-4 B-1 B ABLES Ethernet Cable Specifications Wiring Conventions Page E C B-3 Pin Assignments Page ADSL Cable B-6 Figure B-3. RJ-11 Pinouts C-1 C S PECIFICATIONS C-2 C-3 C-4 C-5