Universal plug-and-play (upnp), 2 universal plug-and-play (upnp) – Kerio Tech Firewall6 User Manual

Chapter 18

Other settings

236

If this option is not enabled, the route will be valid only until the operating system is

restarted or until removed manually in the Administration Console or using the route

command.

Removing routes from the Routing Table

Using the Remove button in the WinRoute admin console, records can be removed from the

routing table. The following rules are used for route removal:

•

Static routes in the Static Routes folder are managed by WinRoute. Removal of any of

the static routes would remove the route from the system routing table immediately

and permanently (after clicking on the Apply button).

•

Dynamic (system) route will be removed as well, regardless whether it was added in

the Administration Console or by the route command. However, it is not possible to

remove any route to a network which is connected to an interface.

•

Persistent route of the operating system will be removed from the routing table only

after restart of the operating system. Upon reboot of the operating system, it will be

restored automatically. There are many methods that can be used to create persistent

routes (the methods vary according to operating system — in some systems, the route

-p

or the route command called from an execution script can be used, etc.). It is not

possible to find out how a particular persistent route was created and how it might be

removed for good.

18.2 Universal Plug-and-Play (UPnP)

WinRoute supports UPnP protocol (Universal Plug-and-Play). This protocol enables client appli-

cations (i.e. Microsoft MSN Messenger) to detect the firewall and make a request for mapping of

appropriate ports from the Internet for the particular host in the local network. Such mapping

is always temporary — it is either applied until ports are released by the application (using

UPnP messages) or until expiration of the certain timeout.

The required port must not collide with any existing mapped port or any traffic rule allowing

access to the firewall from the Internet. Otherwise, the UPnP port mapping request will be

denied.

Configuration of the UPnP support

To configure UPnP go to the Security Settings folder in Configuration → Advanced Options.

Figure 18.3

IPnP settings (the Security Settings tab under Configuration → Advanced Options)