Manualshelf

User's Manual

ManualsBrandsSHANGHAI UTT TECHNOLOGIES ManualsElectronicsRouter
421422423424425426427428429430
UTT Technologies Appendix B FAQ
http://www.uttglobal.com Page 409
Ɣ Undefined User: An undefined users IP address and MAC address both are
different from any IP/MAC binding. The undefined users are all the users except
legal and illegal users.
2)
User authorization (i.e., the packet is processed by the firewall access control function
module
)
When receiving a packet initiated from LAN, the Device will analyze the packet by
extracting its source MAC address, source IP address, destination IP address,
protocol type (TCP, UDP or ICMP), port number, content, and the date and time at
which the packet was received, and then compare them with each rule in the order in
which the rules are listed in the Access Control List.
The first rule that matches the
packet will be applied to the packet, and the Device will forward or drop it according to this
rules action. Note that after a match is found, no further rules will be checked; and if
no match is found, the Device will drop the packet to ensure security.
Note that if a schedule is referenced in an access control rule, you need judge
whether the schedule is in effect or not at first. If the schedule has expired, it will be of
no effect. In this case, if the access control rule still needs a time restriction, you
should reconfigure the schedule.
E. Configuration Procedure
From the above analysis, we can see that if you want to configure the network access
privileges for the LAN users, you need follow these steps:
1˅ At first, you need assign network access privileges to each LAN user: determine
whether a user can access and pass through the Device, and assign specific Internet
access privileges to the user.
2˅
Divide the LAN users into several address groups: the users with the same Internet
access privileges are divided into the same address group.
3˅ Configure TCP/IP properties for each LAN users host, and record each hosts MAC
address.
4˅ Go to the Security > IP/MAC Binding page to create IP/MAC bindings. Note that if
you want to block the undefined LAN users from accessing the Device and Internet,
you should unselect the Allow Undefined LAN PCs check box.
5˅ Go to the Security > Address Group page to create address groups.
6˅ Go to the Security > Service Group page to create service groups.
7˅ Go to the System > Time page to synchronize the system clock.
8˅ If you want to create the access control rules based on schedules, go to the Security >
Schedule page to create schedules.