Operation Manual

ManualsBrandsAVM ManualscomputerISDN MultiProtocol Router for Windows 2000 ADSL

Examples for IP Filter Profiles

61 NT/MPRI – 4 Special NT/MPRI Settings

Disabled Telnet

Connection Setup

Accept Enable this rule to allow access

to your station via Telnet (for

example, if UNIX computers

are to be administered remote-

ly).

Disabled SSH

Connection Setup

Accept Enable this rule to allow access

to your station via SSH (Secure

SHell) (for example, if UNIX sta-

tions are to be administered

remotely).

Disabled TCP/UDP “echo” Port Accept This allows the function “trace-

route” (UNIX) or “tracert” (Win-

dows XP, Windows 2000, Win-

dows NT, Windows 95, DOS) to

be used on your network from

outside. These functions trace

the route a packet must follow

to reach your network from out-

side. No security risk is en-

tailed. It is common to enable

the use of this function for out-

side use, so that an outside us-

er can establish that a web

server addressed is not cur-

rently accessible (because the

route is missing, the server is

deactivated, etc.).

Enabled RIP Packets Deny This ensures that the NT/MPRI

only knows the routes that you

have set up. RIP information

from the Internet is not for-

warded. This prevents “man in

the middle attacks” on this

router: smuggling in routing in-

formation to corrupt your

routes.

Enabled NetBIOS Packets Deny This ensures that no access to

your Windows XP/2000/NT re-

sources (drives, printers, etc.)

is possible from the outside.

Status Service/Source/

Destination

Action/Log Explanation

ntmpri-e.book Seite 61 Donnerstag, 28. Februar 2002 11:26 11