Manuals / TRENDnet / Computer Equipment / Network Router

TRENDnet BRF114 Security Screen, Firewall, Enable DoS, Threshold, Options, Respond to, Icmp

Models: BRF114

1 83

Download 83 pages 15.15 Kb

Page 72

Security

TW100-BRF114 User’s Guide

Security

This screen allows you to set Firewall and other security-related options.

Figure 43: Security Screen

Data - Security Screen

Firewall

Enable DoS	If enabled, DoS (Denial of Service) attacks will be detected and
Firewall	blocked. The default is enabled. It is strongly recommended that this
	setting be left enabled.
	Note:
	• A DoS attack does not attempt to steal data or damage your PCs,
	but overloads your Internet connection so you can not use it - the
	service is unavailable.
	• This device uses "Stateful Inspection" technology. This system
	can detect situations where individual TCP/IP packets are valid,
	but collectively they become a DoS attack.

Threshold	This setting affects the number of "half-open" connections allowed.
	• A "half-open" connection arises when a remote client contacts the
	Server with a connection request, but then does not reply to the
	Server's response.
	• While the optimum number of "half-open" connections allowed
	(the "Threshold") depends on many factors, the most important
	factor is the available bandwidth of your Internet connection.
	• Select the setting to match the bandwidth of your Internet connec-
	tion.

Options
Respond to	The ICMP protocol is used by the "ping" and "traceroute" programs,
ICMP	and by network monitoring and diagnostic programs.
	• If checked, the Firewall Router will repond to ICMP packets
	received from the Internet.
	• If not checked, ICMP packets from the Internet will be ignored.
	Disabling this option provides a slight increase in security.

68

Image 72

TRENDnet BRF114 manual Security Screen, Firewall, Enable DoS, Threshold, Options, Respond to, Icmp

Contents

Page Page Table of Contents TW100-BRF114 FeaturesPackage Contents CHAPTER 2 INSTALLATIONAPPENDIX A TROUBLESHOOTING General ProblemsInternet Access APPENDIX B SPECIFICATIONSTW100-BRF114 Features Internet Access FeaturesIntroduction ChapterLAN Features Configuration & ManagementSecurity Features Advanced Internet FunctionsPackage Contents Physical Details Front-mounted LEDsPower Green Status Red On - Corresponding LAN hub port is using 100BaseTRear Panel Reset ButtonTo Clear All Data and restore the factory default values Power portInstallation ProcedureRequirements This Chapter covers the physical installation of the TW100-BRF1144. Power Up 3. Connect WAN Cable5. Check the LEDs Setup OverviewThis Chapter provides Setup details of the TW100-BRF114 ChapterConfiguration Program PreparationUsing your Web Browser If you cant connectSetup Wizard Common Connection TypesType DetailsOther Modems e.g. Broadband Wireless Big Pond Cable AustraliaSingTel RAS TypeHome Screen Navigation & Data InputFigure 5 Home Screen LAN Screen CancelFigure 6 LAN Screen TCP/IPDHCP Using the TW100-BRF114 s DHCP ServerUsing another DHCP Server To Configure your PCs to use DHCPPassword Screen Figure 7 Password ScreenFigure 8 Password Dialog PC Configuration TCP/IP Settings - OverviewWindows Clients ChapterChecking TCP/IP Settings - Windows 9x/ME Using DHCPUsing Specify an IP Address Figure 9 Network ConfigurationPC Configuration Figure 11 Gateway Tab Win 95/98/MEFigure 12 DNS Tab Win 95/98/ME Checking TCP/IP Settings - Windows NT4.0 Figure 13 Windows NT4.0 - TCP/IPTW100-BRF114 User’s Guide Obtain an IP address from a DHCP Server Specify an IP AddressFigure 14 Windows NT4.0 - IP Address Figure 15 - Windows NT4.0 - Add Gateway PC Configuration Figure 16 Windows NT4.0 - DNSChecking TCP/IP Settings - Windows Figure 17 Network Configuration Win1. Select Control Panel - Network and Dial-up Connection Figure 18 TCP/IP Properties Win Checking TCP/IP Settings - Windows XP Figure 19 Network Configuration Windows XP1. Select Control Panel - Network Connection Using DHCP Using a fixed IP Address Use the following IP AddressFigure 20 TCP/IP Properties Windows XP Checking TCP/IP Settings - Windows Vista PC Configuration Internet Access 1. Select Start Menu - Settings - Control Panel - Internet Options2. Select Set up or change your Internet Connection 3. Select Set up a Connection or NetworkClick Save, then OK. Configuration is now complete Macintosh Clients Linux ClientsOther Unix Systems Ensure you are logged in as root before attempting any changesOperation and Status OperationStatus Screen This indicates the current connection method, as set in the SetupConnection Status - PPPoE Broadband ModemInternet Connection Internet IP AddressFigure 22 PPPoE Status Screen ConnectionPhysical Address IP AddressConnection Log Messages MessageDescription Connection Status - PPTP Figure 23 PPTP Status ScreenConnection Physical AddressConnection Status - Telstra Big Pond Figure 24 Telstra Big Pond Status ScreenConnection Physical AddressConnection Details - SingTel RAS Default GatewayDisconnect Clear LogConnection Details - Fixed/Dynamic IP Address Default GatewayButtons Release/RenewDNS IP Address DHCP ClientButtons Release/RenewInternet Features Advanced Internet ScreenChapter OverviewCommunication Applications Special ApplicationsCommunication Applications Select an ApplicationUsing a Special Application Data - Special Applications ScreenFigure 28 Special Applications Screen Checkbox Name Incoming Ports Outgoing PortsPage URL Filter Screen Figure 29 URL Filter ScreenFilter Strings Current EntriesDynamic DNS Domain Name Server Dynamic DNS ScreenThe Service works as follows DDNS ServicePassword DDNS DataUser Name Domain NameMAC Address MAC Address ScreenDefault CancelVirtual Servers IP Address seen by Internet UsersFigure 32 Virtual Servers Virtual Servers Screen EnableFigure 33 Virtual Servers Screen ServersDefining your own Virtual Servers DefaultsDisable All UpdateConnecting to the Virtual Servers Other Features and Settings Access ControlUpgrade ChapterAccess Control Access Control ScreenOverview If required, you can also define your own ServicesInternet Access ServicesEdit Service List GroupGroup Members Screen Edit Service ListPCs not assigned to any group will be in the Default group PCs deleted from any other Group will be added to the Default groupDefault Schedule Screen Figure 36 Default Schedule ScreenEnter the start using a 24 hr clock Enter the finish time using a 24 hr clockServices Screen Figure 37 Access Control - ServicesAvailable Services Available ServicesAccess Control Log Date/TimeName Source IP addressRemote Management Enable RemoteFigure 38 Remote Management Screen Remote ManagementPC Database PC Database ScreenFigure 39 PC Database Known PCsAdministration Other Features and SettingsDelete RefreshPC Database Admin Figure 40 PC Database AdminKnown PCs PC PropertiesUpdate Selected MAC AddressButtons Add as NewUpgrade Firmware To perform the Firmware UpgradeFigure 41 Upgrade Firmware Screen Options Backup DNSFigure 42 Options Screen IP AddressSecurity Enable DoSFigure 43 Security Screen FirewallAllow IPsec Allow PPTPAllow L2TP Logs Enable LogsAccess Control Adjust for DaylightE-Mail Logs Send E-mail alertE-mail Logs SendRouting Routing ScreenUsing this Screen Open Routing and Remote AccessEnable RIP Figure 45 Routing ScreenStatic Routing Static RoutingConfiguring Other Routers on your LAN UpdateDelete Clear FormStatic Routing - Example For Router As Default RouteFor Router Bs Default Route For the TW100-BRF114 s Routing TableTroubleshooting General ProblemsAppendix A This Appendix covers the most likely problems and their solutionsInternet Access Problem 1 When I enter a URL or IP address I get a time out errorAppendix B Specifications TW100-BRF114Regulatory Approvals Appendix B - Specifications