Version 6.6 543 Mediant 800 MSBR
User's Manual 41. Firewall and ACL
41 Firewall and ACL
The Firewall and ACL menu allows you to configure various security applications. The
device's security suite includes comprehensive and robust security services: Stateful
Packet Inspection Firewall, user authentication protocols and password protection
mechanisms. These features together allow users to connect their computers to the
Internet and simultaneously be protected from the security threats of the Internet. The
device's firewall has been pre-configured to provide optimum security (see the figure
below).
Figure 41-1: Device's Firewall (Example)
The device's firewall provides both security and flexibility. It provides a managed,
professional level of network security while enabling the safe use of interactive
applications, such as Internet gaming and video-conferencing. Additional features,
including surfing restrictions and access control, can also be easily configured locally by
the user through a user-friendly Web-based interface, or remotely by a service provider.
The firewall supports advanced filtering, designed to allow comprehensive control over the
firewall's behavior. You can define specific input and output rules, control the order of
logically similar sets of rules and make a distinction between rules that apply to WAN and
LAN network devices.
The Firewall and ACL menu includes the following items:
Port Forwarding: allows you to enable access from the Internet to specified services
provided by computers in the network and special Internet applications (see
'Configuring Port Forwarding' on page
543).
Web Restrictions: allows you to block LAN access to specified hosts or Web sites on
the Internet (see 'Configuring Website Restrictions' on page
545).
NAT: allows you to manually control the translation of network addresses and ports
(see 'Configuring NAT' on page
546).
Access Lists: allows you to define firewall settings and rules (see 'Configuring the
Access List' on page
548).
Advanced Filtering: allows you to assign Access List rules to the device's LAN/WAN
interfaces (see 'Configuring Advanced Filtering' on page
550).
41.1 Configuring Port Forwarding
By default, the device blocks all external users from connecting to or communicating with
your network. Therefore, the system is safe from hackers who may try to intrude on the
network and damage it. However, you may want to expose your network to the Internet in
certain limited and controlled ways to enable some applications to work from the LAN
(game, voice and chat applications, for example) and to enable Internet-access to servers
in the home network. The Port Forwarding feature supports both of these functionalities.
To Next Page
Loading...
Need help?
General
