Kerio Tech Firewall6 User Manual

Chapter 2

Introduction

10

access to a specific port (it can temporarily open the port demanded by the server). FTP

in the active mode, Real Audio or PPTP are just a few examples.

Network Configuration

WinRoute has a built-in DHCP server, which sets TCP/IP parameters for each workstation

within your local network. Parameters for all workstations can be set centrally from a sin-

gle point. This reduces the amount of time needed to set up the network and minimizes

the risk of making a mistake during this process.

DNS forwarder module enables easy DNS configuration and faster responses to DNS re-

quests. It is a simple type of caching nameserver that relays requests to another DNS

server. Responses are stored in its cache. This significantly speeds up responses to fre-

quent requests. Combined with the DHCP server and the system’s hosts file, the DNS

forwarder can be also used as a dynamic DNS server for the local domain.

Remote Administration

All settings are performed in the Kerio Administration Console, an independent adminis-

tration console used to manage all Kerio’s server products. It can be run either on the

workstation with WinRoute or on another host within the local network or the Internet.

Communication between WinRoute and the administration console is encrypted and thus

protected from being tapped or misused.

Various Operating Systems Within The Local Network

WinRoute works with standard TCP/IP protocols. From the point of view of workstations

within the local network it acts as a standard router and no special client applications

are required. Therefore, any operating system with TCP/IP, such as Windows, Unix/Linux,

Mac OS etc., can be run within the LAN.

Additional Features

HTTP and FTP filtering

WinRoute can monitor all HTTP and FTP communication and block objects that do not

match given criteria. The settings can be global or defined specifically for each user.

Antivirus control

WinRoute can perform antivirus check of transmitted files. For this purpose, either the

built-in McAfee antivirus or an external antivirus program (e.g. NOD32, AVG, etc.) are

available. Antivirus check can be applied to HTTP, FTP, SMTP and POP3 protocols.

Transparent support for Active Directory

If WinRoute is employed in a network using the Active Directory domain, it is not nec-

essary to create local accounts or import users from the domain as Active Directory di-

rectory accounts can be used in WinRoute. This option simplifies administration of user

accounts, especially for greater number of users.