Home » Cisco Manuals » Bridges & Routers » Cisco 3825 » Manual Viewer

Cisco 3825 User Guide - Page 52

Block Java and ActiveX Scripts, Block Port Scan Detection - web protection

UPC - 746320981505

Add to My Manuals
Save this manual to your list of manuals

Page 52 highlights

Configure Security Section Filters Block WAN Requests 52 Field Description Filter Proxy Enables/disables filter proxy. If local users have access to WAN proxy servers, they may be able to circumvent the content filters and access Internet sites blocked by the device. If you select the Filter Proxy feature, it will block access to any WAN proxy servers. Block Pop-Up Windows Enables/disables popup windows. Some commonly used applications employ popup windows as part of the application. If you disable popup windows, it may interfere with some of these applications. Block Web Page Cookies Enables/disables cookie blocking. This feature filters the unsolicited delivery of cookies to devices from the Internet to devices in your private local network. Cookies are computer files that contain personal information or web surfing behavior data. Block Java and ActiveX Scripts Enables/disables java applets and ActiveX scripts. This feature helps to protect the devices in your private network from irritating or malicious Java applets that are sent, unsolicited, to devices in your private network from the Internet. These applets run automatically when they are received by a PC. Java is a programming language for websites. If you select the Filter Java Applets feature, you may not have access to Internet sites created using this programming language. This feature also helps to protect the devices in your private network from irritating or malicious ActiveX controls that are sent, unsolicited, to devices in your private network from the Internet. These ActiveX controls run automatically when they are received by a PC. Block fragmented IP packets Enables/disables filtering of fragmented IP packets. This feature helps protect your private local network from Internet based denial of service attacks. Block Port Scan Detection Enables/disables the gateway from responding to Internet based port scans. This feature is designed to protect your private local network from Internet based hackers who attempt to gain unsolicited access your network by detecting open IP ports on your gateway. Block IP Flood Detection (checked - factory default) Blocks malicious devices that are attempting to flood devices or networks with illegal broadcast packets. Also referred to as "broadcast storm." Block Anonymous Internet Requests (checked - factory default) Enable this feature to keep your network from being "pinged" or detected by other Internet users. The Block Anonymous Internet Requests feature also hides your network ports. Both make it more difficult for outside users to enter your network. 4021196 Rev A

Section	Page
Cisco Model DPC3825 and EPC3825 8x4 DOCSIS 3.0 Wireless Residential Gateway User Guide	1
IMPORTANT SAFETY INSTRUCTIONS	2
Notice to Installers	2
Notice à l’attention des installateurs de réseaux câblés	2
Mitteilung für CATV-Techniker	3
Aviso a los instaladores de sistemas CATV	3
IMPORTANT SAFETY INSTRUCTIONS	4
Power Source Warning	4
Ground the Product	4
Protect the Product from Lightning	5
Verify the Power Source from the On/Off Power Light	5
Eliminate AC Mains Overloads	5
Provide Ventilation and Select a Location	5
Protect from Exposure to Moisture and Foreign Objects	5
Service Warnings	5
Check Product Safety	6
Protect the Product When Moving It	6
United States FCC Compliance	7
Declaration of Conformity	7
Canada EMI Regulation	7
Dynamic Frequency Selection (DFS) Dual Band Frequencies	8
Radiation Exposure Statements	8
US	8
Canada	8
EU	8
Australia	8
CE Compliance	8
Declaration of Conformity with Regard to the EU Directive 1999/5/EC (R&TTE Directive)	9
National Restrictions	10
France	10
Italy	10
Latvia	10
Antennas	11
Introduction	12
Benefits and Features	12
What's In the Carton?	14
Front Panel Description	15
Back Panel Description	16
What Are the System Requirements for Internet Service?	18
Minimum System Requirements for a PC	18
Minimum System Requirements for Macintosh	18
System Requirements for an Ethernet Connection	18
How Do I Subscribe to High-Speed Internet Service?	19
I Do Not Have a High-Speed Internet Access Account	19
I Already Have an Existing High-Speed Internet Access Account	19
Where Is the Best Location for My DOCSIS Residential Gateway?	20
How Do I Mount the Modem on a Wall? (Optional)	21
Before You Begin	21
Location and Dimensions of the Wall-Mounting Slots	22
Mounting the Residential Gateway on a Wall	23
How Do I Connect My Gateway for Internet Service?	24
Connecting and Installing Internet Devices	24
To connect devices	24
Connecting the Residential Gateway for High-Speed Data Service	24
How Do I Configure My DOCSIS Residential Gateway?	26
Logging in to the Gateway for the First Time	26
Setup > Quick Setup	28
Configuring Quick Settings	29
Setup > Lan Setup	31
Configuring Your Network Settings	31
Setup > DDNS	33
Configure Wireless Settings	35
Wireless > Basic Settings	35
Wi-Fi Protected Setup (WPS)	35
Wireless Configuration Wi-Fi Protected Setup Example	36
Wireless Configuration Wi-Fi Protected Setup Page Description	36
Wireless Configuration Manual Page Example	37
	37
Wireless Basic Settings Page Description	37
Wireless > Wireless Security	39
Wireless Security Page Description	40
Wireless > MAC Filter	43
	43
Wireless MAC Filter Page Description	43
Wireless > Advanced Settings	44
Wireless Advanced Settings Page Description	45
Wireless > WDS Settings	48
Wireless WDS Settings Page Description	48
Wireless > QoS	49
Wireless QoS Page Description	49
Configure Security	51
Security > Firewall	51
Security > VPN Passthrough	53
Security > VPN	54
Security VPN Tunnel Page Description	55
View Log	59
Control Access to the Gateway	60
Access Restrictions > IP Address Filtering	60
Access Restrictions > MAC Address Filtering	60
Function Keys	61
Access Restrictions > Basic Rules	62
To use keyword and domain blocking	64
Block Access to Websites	64
Access Restrictions > Time of Day Rules	65
Access Restrictions Time of Day Rules Page Description	65
Access Restrictions > User Setup	66
Access Restrictions User Setup Page Description	67
Access Restrictions > Local Log	68
Configure Applications and Gaming	69
Overview	69
Applications & Gaming > Port Filtering	69
Applications and Gaming Port Filtering Page Description	69
Applications & Gaming > Port Range Forwarding	70
Applications and Gaming Port Range Forward Page Description	71
Applications & Gaming > Port Range Triggering	72
Applications and Gaming Port Range Triggering Page Description	72
Applications & Gaming > DMZ	73
Applications and Gaming DMZ Page Description	74
Manage the Gateway	75
Administration > Management	75
Administration Management Page Description	75
Administration > Reporting	79
View Log	80
Administration > Diagnostics	81
Administration > Backup & Restore	82
Administration > Factory Defaults	83
Restore Factory Defaults	83
Monitor Gateway Status	84
Status > Gateway	84
Status > Local Network	85
Status > Wireless	87
Status Wireless Page Description	88
Status > DOCSIS WAN	89
DOCSIS WAN Page Description	89
Frequently Asked Questions	91
Q. How Do I Configure TCP/IP Protocol?	91
Configuring TCP/IP on Windows 2000 Systems	91
Configuring TCP/IP on Windows XP Systems	91
Configuring TCP/IP on Macintosh Systems	92
Q. How Do I Renew the IP Address on My PC?	92
Renewing the IP Address on Windows 95, 98, 98SE, and ME Systems	93
Renewing the IP Address on Windows NT, 2000, or XP Systems	93
Q. What if I don't subscribe to cable TV?	93
Q. How do I arrange for installation?	93
Q. How does the residential gateway connect to my computer?	94
Q. After my residential gateway is connected, how do I access the Internet?	94
Q. Can I watch TV and surf the Internet at the same time?	94
Common Troubleshooting Issues	94
I don't understand the front panel status indicators	94
The residential gateway does not register an Ethernet connection	94
The residential gateway does not register an Ethernet connection after connecting to a hub	94
The residential gateway does not register a cable connection	94
Tips for Improved Performance	95
Check and Correct	95
Front Panel LED Status Indicator Functions	96
Initial Power Up, Calibration, and Registration (AC Power applied)	96
Normal Operations (AC Power applied)	98
Special Conditions	99
Notices	100
Trademarks	100
Disclaimer	100
Documentation Copyright Notice	100
Software and Firmware Use	100
For Information	101

Match case Limit results 1 per page

4021196 Rev A

Configure Security

Section

Field Description

Filters

Filter Proxy

Enables/disables filter proxy. If local users have access to WAN proxy servers, they

may be able to circumvent the content filters and access Internet sites blocked by

the device. If you select the Filter Proxy feature, it will block access to any WAN

proxy servers.

Block Pop-Up Windows

Enables/disables popup windows. Some commonly used applications employ

popup windows as part of the application. If you disable popup windows, it may

interfere with some of these applications.

Block Web Page Cookies

Enables/disables cookie blocking. This feature filters the unsolicited delivery of

cookies to devices from the Internet to devices in your private local network.

Cookies are computer files that contain personal information or web surfing

behavior data.

Block Java and ActiveX Scripts

Enables/disables java applets and ActiveX scripts. This feature helps to protect the

devices in your private network from irritating or malicious Java applets that are

sent, unsolicited, to devices in your private network from the Internet. These

applets run automatically when they are received by a PC.

Java is a programming language for websites. If you select the Filter Java Applets

feature, you may not have access to Internet sites created using this programming

language.

This feature also helps to protect the devices in your private network from irritating

or malicious ActiveX controls that are sent, unsolicited, to devices in your private

network from the Internet. These ActiveX controls run automatically when they are

received by a PC.

Block fragmented IP packets

Enables/disables filtering of fragmented IP packets. This feature helps protect your

private local network from Internet based denial of service attacks.

Block Port Scan Detection

Enables/disables the gateway from responding to Internet based port scans. This

feature is designed to protect your private local network from Internet based

hackers who attempt to gain unsolicited access your network by detecting open IP

ports on your gateway.

Block IP Flood Detection

(checked – factory default)

Blocks malicious devices that are attempting to flood devices or networks with

illegal broadcast packets. Also referred to as “broadcast storm.”

Block WAN

Requests

Block Anonymous Internet Requests

(checked – factory default)

Enable this feature to keep your network from being "pinged" or detected by other

Internet users. The Block Anonymous Internet Requests feature also hides your

network ports. Both make it more difficult for outside users to enter your network.