Netopia Router PN Series User Manual

7-26

Reference Guide

Basic Firewall’s filters play the following roles.

Input filters 1 and 2: These block WAN-originated OpenWindows and
X-Windows sessions. Service origination requests for these protocols
use ports 2000 and 6000, respectively. Since these are greater than
1023, OpenWindows and X-Windows traffic would otherwise be
allowed by input filter 4. Input filters 1 and 2 must precede input filter
4; otherwise they would have no effect as filter 4 would have already
passed OpenWindows and X-Windows traffic.

Setting

Input filter

1

Input filter

2

Input filter

3

Input filter

4

Input filter

5

Output

filter 1

Enabled

Yes

Yes

Yes

Yes

Yes

Yes

Forward

No

No

Yes

Yes

Yes

Yes

Source IP
address

0.0.0.0

0.0.0.0

0.0.0.0

0.0.0.0

0.0.0.0

0.0.0.0

Source IP
address mask

0.0.0.0

0.0.0.0

0.0.0.0

0.0.0.0

0.0.0.0

0.0.0.0

Dest. IP
address

0.0.0.0

0.0.0.0

0.0.0.0

0.0.0.0

0.0.0.0

0.0.0.0

Dest. IP
address mask

0.0.0.0

0.0.0.0

0.0.0.0

0.0.0.0

0.0.0.0

0.0.0.0

Protocol type

TCP

TCP

ICMP

TCP

UDP

0

Source port
comparison

No

Compare

No

Compare

N/A

No

Compare

No

Compare

N/A

Source port ID

0

0

N/A

0

0

N/A

Dest. port
comparison

Equal

Equal

N/A

Greater

Than

Greater

Than

N/A

Dest. port ID

2000

6000

N/A

1023

1023

N/A