Manualshelf

Specifications

ManualsBrandsAVM ManualsSoftwareAccess Server englisch
61626364656667686970
Examples of IP Filter Profiles
AVM Access Server – 5 AVM Access Server Concepts and Functional Principles 63
The profiles “Incoming Internet profile (upper, stateful)” and “Incoming
Internet profile (lower, stateful)” should be used only if IP masquerad-
ing is not activated. The “Outgoing Internet filter profile” can be used
in any case.
You can also customize the filter profiles to suit your needs. In filtering
services, you can also distinguish between inbound and outbound
connection set-up by matching the flags in the TCP header. For further
details, please see “Further Reading” from page 115.
For standard Internet access, the profiles provided can be used without
modification. They contain filter rules to protect your network reliably
against outside access, while allowing users in the LAN to access Inter-
net services.
In the incoming Internet profiles a number of rules have the status
“Inactive” while others have the status “Active”. All those rules that
prevent connections to your LAN from outside are active. The rules pre-
configured with the status “Inactive” are provided in case you want to
permit access from the Internet to services in your LAN, such as your
local FTP, web or e-mail server. If you want to provide such services,
you must first edit this Internet filter profile to activate the
corresponding rules, then select the profile in your Internet settings.
The rules in the filter profiles are listed with explanations in the follow-
ing tables below.
In reading the tables, please bear in mind the following points:
The rules in all profiles have been created with general conditions
for “Source IP address” and “Destination IP address”. The rules
match packets from any source (i.e., the source network in each
rule is specified as 0.0.0.0 / 0) and addressed to any destination
(i.e., the destination network is also specified as 0.0.0.0 / 0). For
the sake of easier reading, this information has not been repeated
for each rule in the tables.
The log setting for all rules is “No log”. This information has also
been omitted in the tables below.