- NetComm Modem Router User Guide
Table Of Contents
- Contents
- Overview
- NB5 Package Contents Note
- Minimum System Requirements
- Front Indicators
- Back Panel
- Resetting Factory Defaults
- Do I need a Micro filter?
- Default Settings
- Quick Start Guide
- Connecting your NB5 ADSL Modem via ETHERNET
- Connecting your NB5 ADSL Modem via USB
- Setting up your ADSL Router
- Log into your ADSL Router
- Quick Start Menu
- Connecting your ADSL Router
- Step 1: Connecting the ADSL Router to Your Computer/Notebook
- Step 1.1 Connecting to the Ethernet/USB
- Step 1.2 Connecting to the ADSL Line
- Step 1.3 Connecting to the Power Outlet
- Step 1.4 Powering On
- Step 2: Configuring Your Ethernet Network Card / Installing Your USB Device
- 2.1 Configuring Your Ethernet Network Card
- 2.2 Installing the USB Device Driver
- Step 3: Configuring Your Internet Browser
- Step 4: Connecting to the Internet
- Firewall Configuration
- Introduction to Firewalls
- Network Address Translation and Port Mapping
- Dedicated Firewalls
- Advanced Configuration of your ADSL Router
- Log into your ADSL Router
- Advanced Configuration of your ADSL Router-Login Settings
- Advanced Menus
- Introduction to Setup and Advanced Menus
- Configuring the ADSL Connection
- The Setup Menu
- WAN Setup
- PPPoE Connection
- PPPoA Connection Setup
- DHCP Connection Setup
- Static Connection Setup
- Bridged Connection Setup
- CLIP [Classical IP over ATM] Connection Setup
- LAN Setup
- DHCP Configuration
- Management IP
- The Advanced Menu
- UPnP
- SNMP
- IP QoS
- LAN Clients
- MAC Filter Control
- Enable/Disable MAC Filtering
- Create MAC Filter Rules
- Edit or Delete MAC Filter Rules
- Hidden MAC Filter Rules
- Multicasting
- Static Routing
- Dynamic Routing
- Port Forwarding
- Access Control
- IP Filters
- DMZ Configuration
- Tools Menu
- System Commands
- User Management
- Update Firmware
- Ping Test
- Modem Test
- Reboot
- Log Out
- Status Menu
- Network Statistics
- Connection Status
- DHCP Clients
- Modem Status
- Product Information
- System Log
- Appendix A: Troubleshooting
- The ADSL Router is not functional
- I can't connect to the ADSL Router.
- The DSL Link LED continues to blink but does not go solid
- The DSL Link LED is always off
- Appendix B: ADSL Router terms
- What is a firewall?
- What is NAT?
- What is a DMZ?
- What is a Gateway?
- Appendix C: Features
- ADSL/ATM Support
- Encapsulation Support
- Network Support
- Management Support
- Security Support
- External Connectors:
- Appendix D: Cable Connections
- RJ-45 Network Ports
- Twisted pair cables
- Straight and crossover cable configuration
- RJ11 connector and cable
- 605 to RJ-11 adapter
- USB cable
- 9 Pin (RS-232 ) Serial Cable
- Appendix E: Registering your NetComm Product
- Contact Information
- Legal & Regulatory Information
- Product Warranty
Firewall
YML717 Rev1 NetComm NB5 Ethernet/USB Modem Router
www.netcomm.com.au 31
Firewall Configuration
Introduction to Firewalls
The NB5 is equipped with advanced Firewall features to provide security from malicious attack,
hacking or eavesdropping across the Internet. The following information is provided as an introduc-
tion to firewalling and to the techniques that can be used to selectively enable services across the
firewall while still maintaining security.
Network Address Translation and Port Mapping
The NB5 is a NAT router. NAT stands for Network Address Translation, a process which converts
private IP addresses of a computer on the internal private network to one or more public IP ad-
dresses for the Internet. NAT changes the packet headers to the new address and keeps track of each
session; when packets come back from the Internet, it performs the reverse conversion to the IP
address of the client machine.
NAT acts as a firewall by keeping internal IP addresses hidden from the Internet. Web applications
operate through 'open ports' on devices attached to the Internet by initiating a query which opens a
'communication session' with the host through the open port. The presence of the NAT device
prevents this process from occurring, as the NAT only admits incoming packets that have been
elicited by an outgoing request; other packets are discarded.
However this causes connectivity problems, as any requests originating from applications on the
other side of the NAT device - such as requests generated by network gaming and conferencing
applications - will not be able to locate a port, and therefore a host, with which to communicate, as
their requests are discarded by the NAT. Hence the terms 'opening', 'forwarding' and 'mapping' ports:
these processes add information to the NAT table which allows it to direct incoming requests from
selected applications to the appropriate port.
So Port Mapping tells the NAT router: 'when a request arrives which is intended for TCP port 1357,
don't discard it, but direct it to such-and-such a port'. The port-mapping process invokes advanced
routing functionality to 'bind' the Port Mapping request to the LAN client from which it originated.
This process is automated by the NB5 interface, and is covered in the Port Forwarding section
below.
Dedicated Firewalls
The Firewall function is technically different to NAT in that its sole purpose is to separate, or
'firewall', the internal network from the Internet. It does this by a variety of means, including SPI, or
Stateful Packet Inspection. SPI checks incoming packets against outgoing requests and blocks
packets which have not been requested.