User manual
ADSL Bridge/Router User's Manual
66
Configuring IP Filter Global Settings
The IP Filter Configuration page enables you to configure several
global IP Filter settings, and displays a table showing all existing
IP Filter rules. The global settings that you can configure are:
Security Level: When High is selected, only those rules
that are assigned a security value of High will be in
effect. The same is true for the Medium and Low
settings. When None is selected, IP Filtering is disabled.
Private/Public/DMZ Default Action: This setting
specifies a default action to be taken (
Accept
or
Deny
)
on private, public, or DMZ-type device interfaces when
they receive packets that
do not
match any of the
filtering rules.
•
Public – The interface connects to the Internet. e.g.,
PPP, EoA, and IPoA interfaces. Typically, the global
setting for public interfaces is Deny, so that all
accesses to your LAN initiated from external
computers are denied (discarded at the public
interface), except for those allowed by a specific IP
Filter rule.
•
Private – Typically, the global setting for private
interfaces is
Accept
, so that LAN computers have
access to the ADSL/Ethernet routers' Internet
connection.
•
DMZ – Refers to computers that are available for
both public and in-network accesses (such as a
company's public Web server). Packets received on
a DMZ interface—a whether from a LAN or external
source—are subject to a set of protections that is in
between public and private interfaces. The global
setting for DMZ-type interfaces may be set to
Deny
so that all attempts to access these servers are
denied by default; the administrator may then
configure IP Filter rules to allow accesses of certain
types.
Creating IP Filter Rules
1. On the main IP Filter page, click
Add
. The IP Filter Rule
−
Add page displays: