Firewall; Basics For Firewall - Draytek Vigor2950 Series User Manual

Dual-wan ssl vpn appliance

Hide thumbs Also See for Vigor2950 Series:

User manual (217 pages)

Quick start manual (28 pages)

User manual (221 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

241

242

243

244

245

246

247

Table of Contents

Protocol

WAN Interface

WAN IP

Private IP

Subnet Mask

While the broadband users demand more bandwidth for multimedia, interactive applications,

or distance learning, security has been always the most concerned. The firewall of the Vigor

router helps to protect your local network against attack from unauthorized outsiders. It also

restricts users in the local network from accessing the Internet. Furthermore, it can filter out

specific packets that trigger the router to build an unwanted outgoing connection.

The users on the LAN are provided with secured protection by the following firewall

facilities:

User-configurable IP filter (Call Filter/ Data Filter).

Stateful Packet Inspection (SPI): tracks packets and denies unsolicited incoming data

Selectable Denial of Service (DoS) /Distributed DoS (DDoS) attacks protection

URL Content Filter

Depending on whether there is an existing Internet connection, or in other words "the WAN

link status is up or down", the IP filter architecture categorizes traffic into two: Call Filter

and Data Filter.

Call Filter - When there is no existing Internet connection, Call Filter is applied to all

traffic, all of which should be outgoing. It will check packets according to the filter

rules. If legal, the packet will pass. Then the router shall "initiate a call" to build the

Internet connection and send the packet to Internet.

Data Filter - When there is an existing Internet connection, Data Filter is applied to

incoming and outgoing traffic. It will check packets according to the filter rules. If legal,

the packet will pass the router.

Vigor2950 Series User's Guide

Specify the transport layer protocol. It could be TCP, UDP, or

ALL for selection.

Specify the WAN interface that will be used for this entry.

Select an IP address (the selections provided here are set in IP

Alias List of Network >>WAN interface). Local host can use this

IP to connect to Internet.

If you want to choose any on of the Public IP settings, you must

specify some IP addresses in the IP Alias List of the Static/DHCP

Configuration page first. If you did not type in any IP address in

the IP Alias List, the Public IP setting will be empty in this field.

When you click Apply, a message will appear to inform you.

Assign an IP address (e.g., 192.168.1.10) or a subnet to be

compared with the Public IP address for incoming packets.

Select a value of subnet mask for private IP address.

Table of Contents

This manual is also suitable for:

Vigor2950g Vigor2950i Vigor2950gi

Firewall; Basics For Firewall - Draytek Vigor2950 Series User Manual

Related Manuals for Draytek Vigor2950 Series

Related Content for Draytek Vigor2950 Series

This manual is also suitable for:

Table of Contents