Security, Firewall – Motorola SBG940 User Manual
Page 21
Configuration: Basic Gateway TCP/IP Wireless USB
SBG940 User Guide
13
Security
The SBG940 provides:
•
A
to protect the SBG940 LAN from undesired attacks over the Internet
•
For wireless transmissions, data encryption and network access control
Network Address Translation (
) provides some security because the IP addresses of SBG940 LAN computers
are not visible on the Internet.
This diagram does not necessarily correspond to the network cabling. A full discussion of network security is
beyond the scope of this document.
SBG940 security measures shown in a logical network diagram
Firewall
The SBG940 firewall protects the SBG940 LAN from undesired attacks and other intrusions from the Internet. It
provides an advanced integrated
firewall supporting intrusion detection, session tracking, and
denial-of-service attack prevention. The firewall:
•
Maintains state data for every
network and transport layers
•
Monitors all incoming and outgoing
, applies the firewall policy to each one, and screens for improper
packets and intrusion attempts
•
Provides comprehensive logging for all:
—
User authentications
—
Rejected internal and external connection requests
—
Session creation and termination
—
Outside attacks (intrusion detection)
You can configure the firewall filters to set rules for port usage. For information about choosing a predefined
firewall policy template, see “
SBG940
Computer
Computer
Wired Ethernet LAN
Wireless LAN
Laptop
Computer
PDA
:
Encryption, MAC access control,
or closed network operation
Internet
computer