TRENDnet S4W1CA manual Firewall, Discard PING from WAN side, Client Filtering

2-5 Firewall

The Broadband Router provides extensive firewall protection by restricting connection parameters to limit the risk of hacker attacks and by defending against a wide array of common hacker attacks.

The Broadband Router provides packet filtering rules by restricting service ports, IP address or MAC address. However, for applications that require unrestricted access to the Internet, you may configure a specific client/server as a demilitarized zone (DMZ).

2-5-1 Discard PING from WAN side

When "Discard Ping from WAN side" is checked, it is causes the public WAN IP address on the Broadband Router to ignore ping commands. Pinging public WAN IP addresses is a common method used by hackers to test whether the WAN IP address is valid.

2-5-2 Client Filtering

To block certain client PCs from accessing the Internet:

You can filter Internet access for local clients based on IP addresses, application types, (i.e., HTTP port), and time of day.

For example, this screen shows that clients in the address range 192.168.0.50-99 are permanently restricted from using FTP (Port 21), while clients in the address range 192.168.0.110-119 are blocked from browsing the Internet (port 80) from Monday to Friday and from 0:00AM to 11:00 PM.

Example:

2-5-3 MAC Address Control

MAC Address Control allows you to block certain client PCs from accessing the Internet based on MAC addresses.