ZyXEL Communications P-324 User's Guide Page 209
- Page / 442
- Table of contents
- BOOKMARKS
Rated. / 5. Based on customer reviews
P-2602HWNLI User’s Guide
Chapter 13 Firewalls 209
Any protocol that operates in this way must be supported on a case-by-case basis. You can use
the web configurator’s Custom Ports feature to do this.
13.6 Guidelines for Enhancing Security with Your Firewall
• Change the default password.
• Limit who can telnet into your router.
• Don't enable any local service (such as SNMP or NTP) that you don't use. Any enabled
service could present a potential security risk. A determined hacker might be able to find
creative ways to misuse the enabled services to access the firewall or the network.
• For local services that are enabled, protect against misuse. Protect by configuring the
services to communicate only with specific peers, and protect by configuring rules to
block packets for the services at specific interfaces.
• Protect against IP spoofing by making sure the firewall is active.
• Keep the firewall in a secured (locked) room.
13.6.1 Security In General
You can never be too careful! Factors outside your firewall, filtering or NAT can cause
security breaches. Below are some generalizations about what you can do to minimize them.
• Encourage your company or organization to develop a comprehensive security plan.
Good network administration takes into account what hackers can do and prepares
against attacks. The best defense against hackers and crackers is information. Educate all
employees about the importance of security and how to minimize risk. Produce lists like
this one!
• DSL or cable modem connections are “always-on” connections and are particularly
vulnerable because they provide more opportunities for hackers to crack your system.
Turn your computer off when not in use.
• Never give out a password or any sensitive information to an unsolicited telephone call or
e-mail.
• Never e-mail sensitive information such as passwords, credit card information, etc.,
without encrypting the information first.
• Never submit sensitive information via a web page unless the web site uses secure
connections. You can identify a secure connection by looking for a small “key” icon on
the bottom of your browser (Internet Explorer 3.02 or better or Netscape 3.0 or better). If
a web site uses a secure connection, it is safe to submit information. Secure web
transactions are quite difficult to crack.
• Never reveal your IP address or other system networking information to people outside
your company. Be careful of files e-mailed to you from strangers. One common way of
getting BackOrifice on a system is to include it as a Trojan horse with other files.
• Change your passwords regularly. Also, use passwords that are not easy to figure out. The
most difficult passwords to crack are those with upper and lower case letters, numbers
and a symbol such as % or #.
- Copyright 3
- Certifications 4
- Certifications 5 5
- Safety Warnings 6
- ZyXEL Limited Warranty 7
- Customer Support 8
- Customer Support 9 9
- P-2602HWNLI User’s Guide 10
- 10 Customer Support 10
- Table of Contents 11
- Chapter 7 13
- Chapter 8 13
- Chapter 9 14
- Chapter 10 14
- Chapter 11 15
- Chapter 12 16
- Chapter 13 16
- Chapter 14 17
- Chapter 18 19
- Chapter 19 19
- Appendix I 24
- List of Figures 25
- List of Tables 31
- 36 List of Tables 36
- About This User's Guide 37
- Related Documentation 37
- User Guide Feedback 37
- Syntax Conventions 37
- Graphics Icons Key 38
- CHAPTER 1 39
- 1.2 Features 40
- Table 3 IEEE 802.11g 45
- 1.3 Applications 46
- 1.3.5 LAN to LAN Application 48
- 1.3.6 Lights 49
- Table 4 Lights 50
- 1.4.2 Telephone Microfilters 51
- CHAPTER 2 53
- Figure 9 Password Screen 54
- 2.1.2 The RESET Button 55
- 2.2.1 Title Bar 56
- 2.2.2 Navigation Panel 57
- 2.2.3 Main Window 59
- 2.2.4 Status Bar 59
- CHAPTER 3 61
- Figure 14 Wizard Welcome 62
- 3.2.1 Manual Configuration 63
- Figure 27 Wireless LAN 72
- CHAPTER 4 77
- 78 Chapter 4 VoIP Wizard 78
- Figure 33 Wizard: Welcome 78
- Chapter 4 VoIP Wizard 79 79
- Figure 36 VoIP Wizard Fail 79
- 80 Chapter 4 VoIP Wizard 80
- CHAPTER 5 81
- Figure 38 Select a Mode 83
- Figure 39 Wizard: Welcome 83
- CHAPTER 6 87
- 6.1.2 Multiplexing 88
- 6.1.3 VPI and VCI 88
- 6.1.4 IP Address Assignment 88
- 6.2 PPPoE Encapsulation 89
- 6.3 Metric 90
- 6.4 Traffic Shaping 90
- 6.4.1 ATM Traffic Classes 91
- 6.6 Internet Access Setup 92
- Chapter 6 WAN Setup 93 93
- 94 Chapter 6 WAN Setup 94
- Chapter 6 WAN Setup 95 95
- 96 Chapter 6 WAN Setup 96
- 6.8 More Connections Edit 97
- 98 Chapter 6 WAN Setup 98
- Chapter 6 WAN Setup 99 99
- 6.10 Configuring WAN Backup 100
- Chapter 6 WAN Setup 101 101
- Figure 49 WAN Backup Setup 101
- Table 25 WAN Backup Setup 101
- Check WAN IP Address 102
- CHAPTER 7 103
- Figure 50 Status Screen 104
- Table 26 Status Screen 104
- 104 Chapter 7 Status Screens 104
- Chapter 7 Status Screens 105 105
- 106 Chapter 7 Status Screens 106
- 7.2 Client List 107
- 108 Chapter 7 Status Screens 108
- Figure 51 Client List 108
- Table 27 Client List 108
- 7.3 Any IP Table 109
- 7.4 WLAN Status 109
- 7.4.1 Bandwidth Status 110
- 7.4.2 VPN Status 111
- 7.5 Packet Statistics 112
- Chapter 7 Status Screens 113 113
- Figure 56 Packet Statistics 113
- Table 31 Packet Statistics 113
- 7.6 VoIP Statistics 114
- Chapter 7 Status Screens 115 115
- Table 32 VoIP Statistics 115
- 116 Chapter 7 Status Screens 116
- CHAPTER 8 117
- 8.1.2 DHCP Setup 118
- 8.1.3 DNS Server Address 118
- 8.2 LAN TCP/IP 119
- 8.2.2 RIP Setup 120
- 8.2.3 Multicast 121
- 8.2.4 Any IP 121
- 8.2.4.1 How Any IP Works 122
- 8.3 Configuring LAN IP 123
- 124 Chapter 8 LAN Setup 124
- Table 34 Advanced LAN Setup 124
- 8.4 DHCP Setup 125
- 8.5 LAN Client List 126
- Chapter 8 LAN Setup 127 127
- Figure 63 LAN Client List 127
- Table 36 LAN Client List 127
- 8.6 LAN IP Alias 128
- Chapter 8 LAN Setup 129 129
- Figure 65 LAN IP Alias 129
- Table 37 LAN IP Alias 129
- 130 Chapter 8 LAN Setup 130
- CHAPTER 9 131
- 9.2.2 MAC Address Filter 132
- 9.2.3 User Authentication 132
- 9.2.4 Encryption 132
- Chapter 9 Wireless LAN 133 133
- 134 Chapter 9 Wireless LAN 134
- 9.4.1 WEP Encryption 135
- 9.4.2 WPA-PSK/WPA2-PSK 136
- Chapter 9 Wireless LAN 137 137
- 9.4.3 WPA/WPA2 138
- Chapter 9 Wireless LAN 139 139
- Table 42 Wireless: WPA/WPA2 139
- 140 Chapter 9 Wireless LAN 140
- Chapter 9 Wireless LAN 141 141
- Figure 70 Advanced 141
- 9.5 OTIST 142
- 9.5.1.2 Wireless Client 143
- 9.5.2 Starting OTIST 144
- 9.6 MAC Filter 145
- 146 Chapter 9 Wireless LAN 146
- Table 45 MAC Address Filter 146
- 9.7 WMM QoS 147
- 9.8 QoS Screen 148
- Chapter 9 Wireless LAN 149 149
- Figure 79 Wireless LAN: QoS 149
- Table 47 Wireless LAN: QoS 149
- 150 Chapter 9 Wireless LAN 150
- Chapter 9 Wireless LAN 151 151
- 152 Chapter 9 Wireless LAN 152
- CHAPTER 10 153
- 10.1.2 What NAT Does 154
- 10.1.3 How NAT Works 154
- 10.1.4 NAT Application 155
- 10.1.5 NAT Mapping Types 155
- Table 50 NAT Mapping Types 156
- 10.3 NAT General Setup 157
- 10.4 Port Forwarding 158
- Figure 85 Port Forwarding 160
- Table 52 Port Forwarding 160
- 10.6 Address Mapping 161
- CHAPTER 11 165
- 11.2.2 SIP Call Progression 166
- 11.2.3 SIP Servers 166
- 11.2.3.1 SIP User Agent 167
- 11.2.3.2 SIP Proxy Server 167
- 11.2.3.3 SIP Redirect Server 168
- 11.3 SIP Settings Screen 169
- 170 Chapter 11 Voice 170
- 11.4 SIP ALG 171
- 11.5 Voice Coding 171
- 11.8 Custom Tones (IVR) 172
- Chapter 11 Voice 173 173
- 174 Chapter 11 Voice 174
- Chapter 11 Voice 175 175
- 176 Chapter 11 Voice 176
- 11.10.2 VLAN 177
- 11.10.3 SIP QoS Screen 177
- 11.11 Phone 178
- 11.12 PSTN Line 178
- 11.13 ISDN Line 179
- 11.14 Analog Phone Screen 179
- 180 Chapter 11 Voice 180
- Chapter 11 Voice 181 181
- 11.16 ISDN Phone Screen 182
- Chapter 11 Voice 183 183
- Figure 98 Phone > Common 183
- Table 64 Phone > Common 183
- 11.18.1 The Flash Key 184
- Chapter 11 Voice 185 185
- 11.18.3.1 USA Call Hold 186
- 11.18.3.2 USA Call Waiting 186
- 11.18.3.3 USA Call Transfer 186
- 11.18.3.5 USA Call Return 187
- 11.20 Phone Region Screen 188
- 11.21 Speed Dial 189
- 11.22 Speed Dial Screen 190
- Chapter 11 Voice 191 191
- 192 Chapter 11 Voice 192
- 11.24 PSTN Line Screen 193
- 11.25 ISDN Line Screen 194
- Chapter 11 Voice 195 195
- 196 Chapter 11 Voice 196
- CHAPTER 12 197
- 12.5 Auto Firmware Upgrade 198
- CHAPTER 13 199
- 200 Chapter 13 Firewalls 200
- 13.4 Denial of Service 201
- 13.4.2 Types of DoS Attacks 202
- Chapter 13 Firewalls 203 203
- Figure 106 SYN Flood 203
- 13.4.2.1 ICMP Vulnerability 204
- 13.5 Stateful Inspection 205
- 206 Chapter 13 Firewalls 206
- 13.5.3 TCP Security 207
- 13.5.4 UDP/ICMP Security 208
- 13.5.5 Upper Layer Protocols 208
- 13.6.1 Security In General 209
- 210 Chapter 13 Firewalls 210
- CHAPTER 14 211
- 14.3 Rule Logic Overview 212
- 14.4 Connection Direction 213
- 14.5 Triangle Route 214
- Figure 111 IP Alias 216
- Table 76 Firewall: General 217
- 14.7 Firewall Rules Summary 218
- 14.7.2 Customized Services 222
- 14.8 Example Firewall Rule 223
- 10.0.0.15 on the LAN 226
- 14.9 Predefined Services 227
- 14.10 Firewall Threshold 227
- 14.10.2 Half-Open Sessions 228
- CHAPTER 15 231
- CHAPTER 16 235
- 16.1.4 VPN Applications 236
- 16.2 IPSec Architecture 237
- 16.3 Encapsulation 237
- 16.4 IPSec and NAT 238
- Table 85 VPN and NAT 239
- CHAPTER 17 241
- 17.3 My IP Address 242
- 17.4 Secure Gateway Address 243
- 17.5 VPN Setup Screen 243
- 244 Chapter 17 VPN Screens 244
- Figure 130 VPN Setup 244
- Table 87 VPN Setup 244
- 17.6 Keep Alive 245
- 246 Chapter 17 VPN Screens 246
- Table 88 VPN and NAT 246
- 17.8 Remote DNS Server 247
- 17.9 ID Type and Content 247
- 248 Chapter 17 VPN Screens 248
- 17.10 Pre-Shared Key 249
- 17.11 Editing VPN Policies 249
- 250 Chapter 17 VPN Screens 250
- Table 93 Edit VPN Policies 250
- Chapter 17 VPN Screens 251 251
- 252 Chapter 17 VPN Screens 252
- Chapter 17 VPN Screens 253 253
- 17.12 IKE Phases 254
- 17.12.1 Negotiation Mode 255
- 256 Chapter 17 VPN Screens 256
- Chapter 17 VPN Screens 257 257
- 258 Chapter 17 VPN Screens 258
- 17.14 Manual Key Setup 259
- 17.15 Configuring Manual Key 259
- 260 Chapter 17 VPN Screens 260
- Figure 136 VPN: Manual Key 260
- Table 95 VPN: Manual Key 260
- Chapter 17 VPN Screens 261 261
- 17.16 Viewing SA Monitor 262
- Chapter 17 VPN Screens 263 263
- Figure 137 VPN: SA Monitor 263
- Table 96 VPN: SA Monitor 263
- 264 Chapter 17 VPN Screens 264
- Chapter 17 VPN Screens 265 265
- 266 Chapter 17 VPN Screens 266
- Chapter 17 VPN Screens 267 267
- 268 Chapter 17 VPN Screens 268
- CHAPTER 18 269
- 270 Chapter 18 Static Route 270
- Figure 142 Static Route 270
- Table 100 Static Route 270
- 18.2.1 Static Route Edit 271
- 272 Chapter 18 Static Route 272
- CHAPTER 19 273
- 19.5 Scheduler 274
- 19.8 Configuring Summary 278
- 19.9.1 Rule Configuration 280
- 19.10 Bandwidth Monitor 283
- CHAPTER 20 285
- Figure 149 Dynamic DNS 286
- Table 111 Dynamic DNS 286
- Device and the DDNS server 287
- CHAPTER 21 289
- 21.2 WWW 290
- 21.3 Telnet 291
- 21.4 Configuring Telnet 292
- 21.5 Configuring FTP 293
- 21.6 SNMP 294
- 21.6.1 Supported MIBs 295
- 21.6.2 SNMP Traps 295
- 21.6.3 Configuring SNMP 296
- 21.7 Configuring DNS 297
- 21.8 Configuring ICMP 298
- CHAPTER 22 301
- 22.2 UPnP and ZyXEL 302
- Installing UPnP in Windows Me 303
- Components selection box 304
- Figure 168 System Tray Icon 310
- Network 311
- CHAPTER 23 313
- 314 Chapter 23 System 314
- 23.2 Time Setting 315
- 316 Chapter 23 System 316
- Chapter 23 System 317 317
- 318 Chapter 23 System 318
- CHAPTER 24 319
- 320 Chapter 24 Logs 320
- Figure 175 View Log 320
- Table 122 View Log 320
- Chapter 24 Logs 321 321
- Figure 176 Log Settings 321
- Table 123 Log Settings 321
- 322 Chapter 24 Logs 322
- 24.4 SMTP Error Messages 323
- 24.5 Log Descriptions 324
- Chapter 24 Logs 325 325
- Table 126 System Error Logs 325
- 326 Chapter 24 Logs 326
- Table 128 TCP Reset Logs 326
- Chapter 24 Logs 327 327
- Table 130 ICMP Logs 327
- Table 131 CDR Logs 327
- Table 132 PPP Logs 327
- Chapter 24 Logs 329 329
- Table 136 802.1X Logs 329
- 330 Chapter 24 Logs 330
- Table 137 ACL Setting Notes 330
- Table 138 ICMP Notes 330
- Chapter 24 Logs 331 331
- Table 139 Syslog Logs 331
- Table 140 SIP Logs 331
- 332 Chapter 24 Logs 332
- Table 141 RTP Logs 332
- CHAPTER 25 333
- 334 Chapter 25 Tools 334
- Chapter 25 Tools 335 335
- Figure 178 Firmware Upgrade 335
- Table 145 Firmware Upgrade 335
- 25.5 Backup and Restore 336
- 25.5.1 Backup Configuration 337
- 338 Chapter 25 Tools 338
- Chapter 25 Tools 339 339
- 25.6 Restart 340
- Chapter 25 Tools 343 343
- 25.9.3 TFTP File Upload 344
- Chapter 25 Tools 345 345
- 346 Chapter 25 Tools 346
- CHAPTER 26 347
- 348 Chapter 26 Diagnostic 348
- Chapter 26 Diagnostic 349 349
- CHAPTER 27 351
- 27.3 Problems with the WAN 352
- Figure 193 Pop-up Blocker 354
- Figure 194 Internet Options 355
- Figure 195 Internet Options 356
- 27.4.1.2 JavaScripts 357
- 3 Scroll down to Scripting 358
- 27.4.1.3 Java Permissions 359
- 27.4.1.3.1 JAVA (Sun) 360
- 27.5 Telephone Problems 361
- APPENDIX A 363
- Power Adapter Specifications 366
- APPENDIX B 369
- Installing Components 370
- Configuring 371
- Windows 2000/NT/XP 372
- Macintosh OS 8/9 376
- Macintosh OS X 378
- Verifying Settings 379
- APPENDIX C 381
- Subnet Masks 382
- Subnetting 382
- Example: Two Subnets 383
- 384 Appendix C IP Subnetting 384
- Table 164 Subnet 1 384
- Table 165 Subnet 2 384
- Example: Four Subnets 385
- Example Eight Subnets 386
- Appendix C IP Subnetting 387 387
- 388 Appendix C IP Subnetting 388
- APPENDIX D 389
- 390 Appendix D About ADSL 390
- APPENDIX E 391
- APPENDIX F 393
- 394 Appendix F Wireless LANs 394
- Appendix F Wireless LANs 395 395
- Fragmentation Threshold 396
- Preamble Type 397
- IEEE 802.11g Wireless LAN 397
- Wireless Security Overview 398
- IEEE 802.1x 398
- Types of RADIUS Messages 399
- Types of Authentication 400
- Dynamic WEP Key Exchange 401
- WPA and WPA2 402
- User Authentication 403
- 404 Appendix F Wireless LANs 404
- Security Parameters Summary 405
- 406 Appendix F Wireless LANs 406
- APPENDIX G 407
- APPENDIX H 411
- Example Internal SPTGEN Menus 414
- Table 180 Menu 3 415
- Table 182 Menu 12 419
- Command Examples 426
- APPENDIX I 427
- 428 Appendix I Commands 428
- Filter Rule 429
- Filter Set 429
- Packet Filtering Vs. Firewall 430
- Packet Filtering 430
- When To Use Filtering 430
- Firewall 430
- When To Use The Firewall 430
- Filter Commands 431
- WAN Call Schedules 432
- Appendix I Commands 433 433
- 434 Appendix I Commands 434
- Index 435 435
- 436 Index 436
- Index 437 437
- 438 Index 438
- Index 439 439
- 440 Index 440
- Index 441 441
- 442 Index 442
Related products and manuals for Routers ZyXEL Communications P-324
Routers ZyXEL Communications ZyAIR User's Guide
(407 pages)
(407 pages)
Routers ZyXEL Communications ZW50 User's Guide
(366 pages)
(366 pages)
© 2020, manymanuals.com. All rights reserved. | 2.350 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comments to this Manuals