SMC Networks SMC7904WBRA2 P, 4-65

C

ONFIGURATION

P

ARAMETERS

4-65

•DoS Criteria and Port Scan Criteria

Set up DoS and port scan criteria in the spaces provided (as shown below).

Note: The firewall does not significantly affect system performance, so

we advise enabling the prevention features, and leaving them at the

default settings to protect your network.

Parameter Defaults Description

Total incomplete

TCP/UDP sessions

HIGH

300

sessions

Defines the rate of new unestablished sessions

that will cause the software to start deleting

half-open sessions.

Total incomplete

TCP/UDP sessions

LOW

250

sessions Defines the rate of new unestablished sessions

that will cause the software to stop deleting half-

open sessions.

Incomplete

TCP/UDP sessions

(per min) HIGH

250

sessions Maximum number of allowed incomplete

TCP/UDP sessions per minute.

Incomplete

TCP/UDP sessions

(per min) LOW

200

sessions Minimum number of allowed incomplete

TCP/UDP sessions per minute.

Maximum incomplete

TCP/UDP sessions

number from same

host

10 Maximum number of incomplete TCP/UDP

sessions from the same host.

Incomplete

TCP/UDP sessions

detect sensitive time

period

300

msec Length of time before an incomplete

TCP/UDP session is detected as incomplete.

Maximum half-open

fragmentation packet

number from same

host

30 Maximum number of half-open fragmentation

packets from the same host.

Half-open

fragmentation detect

sensitive time period

10000

msec Length of time before a half-open

fragmentation session is detected as half-open.

Flooding cracker

block time

300

second Length of time from detecting a flood attack to

blocking the attack.

Contents

Main Page Page Page L W IMITED v ARRANTY L W IMITED ARRANTY vi OMPLIANCES EC Conformance Declaration CSA Statement OMPLIANCES viii Safety Compliance Wichtige Sicherheitshinweise (Germany) T C OF ABLE C x Configuring the ADSL Router . . . . . . . . . . . . . . . . . . .4-1 Page HAPTER 1-1 1 I NTRODUCTION About the Barricade Features and Benefits 1-2 Applications A 1-3 HAPTER 2-1 2 I NSTALLATION Package Contents 2-2 System Requirements Hardware Description H D 2-3 2-4 LED Indicators The power and port LED indicators on the top are illustrated by the following figure and table. Figure 2-2. Top View ISP S ISP Settings Connect the System Connecting the ADSL Line Page Page Page TCP/IP Configuration Windows 98/Me 98/M 3-3 Page Page Page Windows NT 4.0 C PC 3-8 Page Page 2000 3-11 Windows 2000 Page Page Windows XP Page Configuring Your Macintosh Computer Page Page Page Navigating the Management Interface Page Setup Wizard Page Page Page ADSL R 4-8 Page Page Page Page Page Page Page Page P 4-17 Configuration Parameters Page Page Page Page Page P 4-23 ATM PVC Enter the ATM (Asynchronous Transfer Mode) virtual connection parameters here. Page P 4-25 PPPoA ADSL R 4-26 1483 Routing P 4-27 PPPoE ADSL R 4-28 IP over RFC 1483 bridged Page Page Page Page P 4-33 Page P 4-35 Page Page Page Page ADSL R 4-40 P 4-41 802.1X If 802.1X is used in your network, then you should enable this function for the Barricade. Page P 4-43 ADSL R 4-44 Page Page P 4-47 Page Page Page P 4-51 ADSL R 4-52 P 4-53 Routing Table Page Page Page Page Page Page Page P 4-61 Page P 4-63 ADSL R 4-64 P 4-65 Page Page ADSL R 4-68 Page Page Page Page Page Page P 4-75 Page Page Page Page Page Page Page Page Page Finding the MAC address of a Network Card A-1 A T ROUBLESHOOTING A-2 A-3 A-4 B-1 B ABLES Ethernet Cable Specifications Wiring Conventions Page E C B-3 Pin Assignments Page C-1 C S PECIFICATIONS C-2 C-3 C-4 C-5