11 firewall, 1 firewall security level, 2 packet filtering – Planet Technology G.SHDSL.bis Bridge Router GRT-504 User Manual

Page 146: Firewall, Firewall security level, Packet filtering

Advertising
background image

GRT-504 4-Wire G.SHDSL.bis Firewall Router User’s Manual

7.12.11 Firewall

7.12.11.1

Firewall security level


The product supports advanced firewall. To setup the advanced firewall, you can use firewall to
configure.

>> Level

Configure firewall security level

pkt_filter

Configure packet filter

dos_protect

Configure DoS protect


There are three level of firewall, which you can setup in this product.

Level one, basic, only enables the NAT firewall and the remote management security. The NAT
firewall will take effect if NAT function is enabled. The remote management security is default to
block any WAN side connection to the device. Non-empty legal IP pool in ADMIN will block all
remote management connection except those IPs specified in the pool.

Level two, automatic, enables basic firewall security, all DoS protection, and the SPI filter
function.

Level three, advanced, is an advanced level of firewall where user can determine the security
level for special purpose, environment, and applications by configuring the DoS protection and
defining an extra packet filter with higher priority than the default SPI filter. Note that, an improper
filter policy may degrade the capability of the firewall and/or even block the normal network traffic.

The firewall security level can configure via level command.

7.12.11.2

Packet Filtering


Packet filtering function can be configured by pkt_filter command. Move the cursor to pkt_filter
and press enter.

>> active

Trigger packet filtering function

drop_flag

Drop fragmented packets

Add

Add packet filtering rule

Delete

Delete packet filtering rule

Modify

Modify packet filtering rule

Exchange

Exchange the filtering rules

list

Show packet filtering table


Command Description

Active

Enable packet filtering function

Drop_flag

Enable drop fragmented packets function

Add

Add packet filtering rule

Delete

Delete packet filtering rule

Modify

Modify packet filtering rules

Exchange

Exchange the filtering rules

List

Show all the packet filtering table


Add the packet filtering rule via add command.

145

Advertising
Popular Brands
Popular manuals