Manualshelf

User Guide

ManualsBrandsSonicWALL ManualsOtherINTERNET SECURITY APPLIANCE
71727374757677787980
Page 78 SonicWALL Internet Security Appliance User’s Guide
LAN Out
If the LAN Out check box is selected, users on your LAN are able to access that service on
the Internet. Otherwise, they are blocked from accessing that service. By default, LAN Out
check boxes are selected.
DMZ In (Optional)
If a DMZ In check box is selected, users on the Internet can access that service on the
DMZ. Otherwise, they are blocked from accessing that service on the DMZ. By default, DMZ
In check boxes are selected. The DMZ IN column does not appear in the Web
Management Interface for the SonicWALL SOHO3 and SonicWALL TELE3, which do not
have a separate DMZ port.
Note: If an Alert Icon appears next to a LAN Out, LAN In, or DMZ In check box, a rule
in the Rules window modifies that service.
Public LAN Server
A Public LAN Server is a LAN server designated to receive inbound traffic for a specific
service, such as Web or e-mail. You can define a Public LAN Server by entering the
server's IP address in the Public LAN Server field for the appropriate service. If you do
not have a Public LAN Server for a service, enter "0.0.0.0" in the field. See Creating a
Public LAN Server on the following page for more information.
Windows Networking (NetBIOS) Broadcast Pass Through
Computers running Microsoft Windows
®
communicate with one another through NetBIOS
broadcast packets. By default, the SonicWALL blocks these broadcasts. If you select the
Windows Networking check box, your SonicWALL allows NetBIOS broadcasts from LAN
to DMZ or from LAN to WAN. Then, LAN users are able to view machines on the DMZ and
on the WAN in their Windows Network Neighborhood.
Detection Prevention
Enable Stealth Mode
By default, the SonicWALL responds to incoming connection requests as either "blocked"
or "open". If you enable Stealth Mode, your SonicWALL does not respond to blocked
inbound connection requests. Stealth Mode makes your SonicWALL essentially invisible
to hackers.
Randomize IP ID
A Randomize IP ID check box is available to prevent hackers using various detection
tools from detecting the presence of a SonicWALL appliance. IP packets are given random
IP IDs which makes it more difficult for hackers to “fingerprint” the SonicWALL appliance.
Use this check box for additional security from hackers.
integrated_manual.book Page 78 Friday, October 12, 2001 2:56 PM