Firewall screens, Protection level – ARRIS SBG6700 User Guide User Manual

Gateway Configuration Screen Definitions

SURFboard® SBG6700-AC Wireless Cable Modem Gateway • User Guide

66

365-095-25781 x.1

Firewall Screens

You can configure firewall filters and alert notifications for your home network. The SBG6700-AC firewall
protects the SBG6700-AC LAN from unwanted attacks and other intrusions on the Internet. Firewall
protection also provides the following benefits:

•

Advanced, integrated stateful-inspection firewall supporting intrusion detection, session tracking,
and denial-of-service attack prevention.

•

Maintains state data for every TCP/IP session on the OSI network and transport layers.

•

Monitors all incoming and outgoing packets, applies the firewall policy to each one, and screens for
improper packets and intrusion attempts.

•

Generates comprehensive notifications for the following:
ο User authentications
ο Rejected internal and external connection requests
ο Session creation and termination
ο Outside attacks (intrusion detection)

Protection Level

The Firewall Protection Level screen has various settings related to blocking or exclusively allowing
different types of data through the SBG6700-AC from the WAN to the LAN. There are three security
firewall protection levels which correspond to how many services are allowed:

•

Off - No security, highest risk

•

Low - Minimum security, higher risk

•

Medium - Common configuration, modest risk

•

High - Safest configuration, highest security

Firewall protection enables the Stateful Packet Inspection (SPI) firewall features. Block Fragmented IP
packets prevent all fragmented IP packets from passing through the firewall. Port Scan Detection
detects and blocks port scan activity originating on both the LAN and WAN. IP Flood Detection detects
and blocks packet floods originating on both the LAN and WAN.
You can block Java Applets, Cookies, ActiveX controls, pop up windows, and Proxies.