Manualshelf

User's Manual

ManualsBrandsMitraStar Technology ManualsElectronicsTD-LTE OUTDOOR CPE
111112113114115116117118119120
Chapter 12 Firewall
B222s User’s Guide
112
Each field is described in t he following t able.
12.6 Firewall Technical Reference
This sect ion provides som e t echnical background inform ation about t he t opics covered in t his
chapt er.
12.6.1 Guidelines For Enhancing Security With Your Firewall
1 Change t he default password via web configurat or.
2 Think about access control befor e you connect t o t he net work in any way.
3 Lim it who can access your LTE Device.
4 Don't enable any local service ( such as Telnet or FTP) t hat you don't use. Any enabled service could
present a pot ent ial security risk. A det erm ined hacker m ight be able to find creat ive ways to m isuse
the enabled services to access t he firewall or t he net work.
5 For local services t hat are enabled, pr ot ect against m isuse. Prot ect by configuring t he ser vices to
com municate only wit h specific peers, and protect by configuring rules t o block packets for t he
services at specific int erfaces.
6 Keep t he firewall in a secured (locked) room .
12.6.2 Security Considerations
Note: I ncorrectly configuring t he firewall m ay block valid access or introduce securit y
risks to the LTE Device and your protected net work. Use caution when creat ing or
delet ing firewall rules and t est your rules after you configure t hem .
Consider t hese securit y ram ifications before creat ing a rule:
1 Does t his rule stop LAN users from accessing crit ical r esources on t he I nt ernet ? For exam ple, if I RC
is blocked, are t here users t hat require t his service?
2 I s it possible t o m odify t he rule t o be m ore specific? For exam ple, if I RC is blocked for all users, will
a rule t hat blocks j ust cert ain users be m ore effect ive?
Table 45 Security > Firewall > DoS
LABEL DESCRIPTION
DoS Prot ect ion
Blocking
DoS ( Denial of Service) att acks can flood your I nt ernet connect ion w it h invalid packets
and connection request s, using so m uch bandwidt h and so m any resources t hat I nt ernet
access becom es unavailable.
Select En able to enable prot ect ion against DoS at t acks or D isa ble to disable it .
Apply Click Apply to save t he DoS Pr ot ect ion set t ings.
Cancel Click Ca nce l t o rest ore your previously saved set t ings.