Home » ZyXEL Manuals » Networking » ZyXEL NBG5615 » Manual Viewer

ZyXEL NBG5615 User Guide - Page 157

General Screen, 18.3 Services Screen

Add to My Manuals
Save this manual to your list of manuals

Page 157 highlights

Chapter 18 Firewall 4 Don't enable any local service (such as NTP) that you don't use. Any enabled service could present a potential security risk. A determined hacker might be able to find creative ways to misuse the enabled services to access the firewall or the network. 5 For local services that are enabled, protect against misuse. Protect by configuring the services to communicate only with specific peers, and protect by configuring rules to block packets for the services at specific interfaces. 6 Protect against IP spoofing by making sure the firewall is active. 7 Keep the firewall in a secured (locked) room. 18.2 General Screen Use this screen to enable or disable the NBG5615's firewall, and set up firewall logs. Click Security > Firewall to open the General screen. Figure 94 Security > Firewall > General l The following table describes the labels in this screen. Table 63 Security > Firewall > General LABEL DESCRIPTION Enable Firewall Select this check box to activate the firewall. The NBG5615 performs access control and protects against Denial of Service (DoS) attacks when the firewall is activated. Apply Click Apply to save the settings. Cancel Click Cancel to start configuring this screen again. 18.3 Services Screen If an outside user attempts to probe an unsupported port on your NBG5615, an ICMP response packet is automatically returned. This allows the outside user to know the NBG5615 exists. Use this screen to prevent the ICMP response packet from being sent. This keeps outsiders from discovering your NBG5615 when unsupported ports are probed. You can also use this screen to enable service blocking, enter/delete/modify the services you want to block and the date/time you want to block them. Click Security > Firewall > Services. The screen appears as shown next. NBG5615 User's Guide 157

Section	Page
NBG5615	1
Contents Overview	3
Table of Contents	5
User’s Guide	13
Introduction	15
1.1 Overview	15
1.2 Applications	15
1.3 Ways to Manage the NBG5615	16
1.4 Good Habits for Managing the NBG5615	16
1.5 Resetting the NBG5615	16
1.5.1 How to Use the RESET Button	16
1.6 The WPS Button	16
1.7 LEDs	18
1.8 Wall Mounting	19
ZyXEL NetUSB Share Center Utility	21
2.1 Overview	21
2.1.1 Quick Setup	21
2.1.2 Installing ZyXEL NetUSB Share Center Utility	21
2.2 The ZyXEL NetUSB Share Center Utility	22
2.2.1 The Menus	23
2.2.2 The ZyXEL NetUSB Share Center Configuration Window	24
2.2.3 The Auto-Connect Printer List Window	25
2.2.4 Exit the ZyXEL NetUSB Share Center Utility	26
Connection Wizard	27
3.1 Overview	27
3.2 Accessing the Wizard	27
3.3 Connect to Internet	28
3.3.1 Connection Type: IPoE	29
3.3.2 Connection Type: PPPoE	30
3.3.3 Connection Type: PPTP	32
3.4 Router Password	33
3.5 Wireless Security	34
3.5.1 Wireless Security: No Security	34
3.5.2 Wireless Security: WPA2-PSK	35
Introducing the Web Configurator	39
4.1 Overview	39
4.2 Accessing the Web Configurator	39
4.2.1 Login Screen	39
4.2.2 Password Screen	40
NBG5615 Modes	43
5.1 Overview	43
5.1.1 Web Configurator Modes	43
5.1.2 Device Modes	43
Easy Mode	45
6.1 Overview	45
6.2 What You Can Do	46
6.3 What You Need to Know	46
6.4 Navigation Panel	46
6.5 Network Map	47
6.6 Control Panel	48
6.6.1 Game Engine	49
6.6.2 Power Saving	49
6.6.3 Content Filter	50
6.6.4 Bandwidth MGMT	51
6.6.5 Firewall	52
6.6.6 Wireless Security	52
6.6.7 WPS	53
6.7 Status Screen in Easy Mode	54
Router Mode	57
7.1 Overview	57
7.2 Router Mode Status Screen	57
7.2.1 Navigation Panel	60
Access Point Mode	65
8.1 Overview	65
8.2 What You Can Do	65
8.3 What You Need to Know	65
8.3.1 Setting your NBG5615 to AP Mode	66
8.3.2 Accessing the Web Configurator in Access Point Mode	66
8.3.3 Configuring your WLAN and Maintenance Settings	67
8.4 AP Mode Status Screen	67
8.4.1 Navigation Panel	69
8.5 LAN Screen	69
Tutorials	73
9.1 Overview	73
9.2 Set Up a Wireless Network with WPS	73
9.2.1 Push Button Configuration (PBC)	73
9.2.2 PIN Configuration	74
9.3 Configure Wireless Security without WPS	75
9.3.1 Configure Your Notebook	77
9.4 Using Multiple SSIDs on the NBG5615	79
9.4.1 Configuring Security Settings of Multiple SSIDs	80
9.5 Automatically Connecting to a USB Printer	84
Technical Reference	87
Monitor	89
10.1 Overview	89
10.2 What You Can Do	89
10.3 The Log Screen	89
10.3.1 View Log	89
10.4 DHCP Table	90
10.5 Packet Statistics	91
10.6 WLAN Station Status	92
WAN	95
11.1 Overview	95
11.2 What You Can Do	95
11.3 What You Need To Know	95
11.3.1 Configuring Your Internet Connection	96
11.4 Internet Connection	97
11.4.1 IPoE Encapsulation	97
11.4.2 PPPoE Encapsulation	99
11.4.3 PPTP Encapsulation	101
11.5 Advanced WAN Screen	104
Wireless LAN	105
12.1 Overview	105
12.1.1 What You Can Do	106
12.1.2 What You Should Know	106
12.2 General Wireless LAN Screen	110
12.3 Wireless Security	112
12.3.1 No Security	112
12.3.2 WEP Encryption	113
12.3.3 WPA-PSK/WPA2-PSK	115
12.3.4 WPA/WPA2	116
12.4 More AP Screen	118
12.4.1 More AP Edit	119
12.5 MAC Filter Screen	121
12.6 Wireless LAN Advanced Screen	123
12.7 Quality of Service (QoS) Screen	123
12.8 WPS Screen	124
12.9 WPS Station Screen	126
12.10 Scheduling Screen	126
LAN	129
13.1 Overview	129
13.2 What You Can Do	129
13.3 What You Need To Know	129
13.3.1 IP Pool Setup	130
13.3.2 LAN TCP/IP	130
13.3.3 IP Alias	130
13.4 LAN IP Screen	130
13.5 IP Alias Screen	131
DHCP Server	133
14.1 Overview	133
14.1.1 What You Can Do	133
14.1.2 What You Need To Know	133
14.2 DHCP Server General Screen	133
14.3 DHCP Server Advanced Screen	134
14.4 DHCP Client List Screen	136
NAT	139
15.1 Overview	139
15.1.1 What You Can Do	139
15.1.2 What You Need To Know	140
15.2 General	141
15.3 Port Forwarding Screen	142
15.3.1 Port Forwarding Edit Screen	144
15.4 Port Trigger Screen	145
15.5 Technical Reference	146
15.5.1 NATPort Forwarding: Services and Port Numbers	146
15.5.2 NAT Port Forwarding Example	146
15.5.3 Trigger Port Forwarding	147
15.5.4 Trigger Port Forwarding Example	147
15.5.5 Two Points To Remember About Trigger Ports	148
DDNS	149
16.1 Overview	149
16.1.1 What You Need To Know	149
16.2 General	149
Static Route	151
17.1 Overview	151
17.2 IP Static Route Screen	151
17.2.1 Add/Edit Static Route	152
Firewall	155
18.1 Overview	155
18.1.1 What You Can Do	155
18.1.2 What You Need To Know	155
18.2 General Screen	157
18.3 Services Screen	157
Content Filtering	161
19.1 Overview	161
19.1.1 What You Need To Know	161
19.2 Content Filter	161
19.3 Technical Reference	163
19.3.1 Customizing Keyword Blocking URL Checking	163
Bandwidth Management	165
20.1 Overview	165
20.2 What You Can Do	165
20.3 What You Need To Know	166
20.4 General Screen	166
20.5 Advanced Screen	166
20.5.1 Rule Configuration: Application Rule Configuration	168
20.5.2 Rule Configuration: User Defined Service Rule Configuration	169
20.5.3 Predefined Bandwidth Management Services	171
Remote Management	173
21.1 Overview	173
21.2 What You Can Do in this Chapter	173
21.3 What You Need to Know	173
21.3.1 Remote Management and NAT	174
21.3.2 System Timeout	174
21.4 WWW Screen	174
21.5 Telnet Screen	175
21.6 Wake On LAN Screen	175
Universal Plug-and-Play (UPnP)	177
22.1 Overview	177
22.2 What You Need to Know	177
22.2.1 NAT Traversal	177
22.2.2 Cautions with UPnP	177
22.3 UPnP Screen	178
22.4 Technical Reference	178
22.4.1 Using UPnP in Windows XP Example	178
22.4.2 Web Configurator Easy Access	180
USB Media Sharing	183
23.1 Overview	183
23.2 What You Can Do	184
23.3 What You Need To Know	184
23.4 Before You Begin	185
23.5 DLNA Screen	186
23.6 SAMBA Screen	186
23.7 FTP Screen	188
23.8 Example of Accessing Your Shared Files From a Computer	189
23.8.1 Use Windows Explorer to Share Files	189
23.8.2 Use FTP to Share Files	191
Maintenance	193
24.1 Overview	193
24.2 What You Can Do	193
24.3 General Screen	193
24.4 Password Screen	194
24.5 Time Setting Screen	195
24.6 Firmware Upgrade Screen	196
24.7 Configuration Backup/Restore Screen	198
24.8 Restart Screen	199
24.9 Language Screen	199
24.10 System Operation Mode Overview	200
24.11 Sys OP Mode Screen	201
Troubleshooting	203
25.1 Overview	203
25.2 Power, Hardware Connections, and LEDs	203
25.3 NBG5615 Access and Login	204
25.4 Internet Access	205
25.5 Resetting the NBG5615 to Its Factory Defaults	207
25.6 Wireless Connections	207
25.7 USB Device Problems	209
25.8 ZyXEL Share Center Utility Problems	209
Pop-up Windows, JavaScript and Java Permissions	211
Setting Up Your Computer’s IP Address	221
Common Services	249
Legal Information	253

Match case Limit results 1 per page

Chapter 18 Firewall

NBG5615 User’s Guide

157

Don't enable any local service (such as NTP) that you don't use. Any enabled service could present

a potential security risk. A determined hacker might be able to find creative ways to misuse the

enabled services to access the firewall or the network.

For local services that are enabled, protect against misuse. Protect by configuring the services to

communicate only with specific peers, and protect by configuring rules to block packets for the

services at specific interfaces.

Protect against IP spoofing by making sure the firewall is active.

Keep the firewall in a secured (locked) room.

18.2

General Screen

Use this screen to enable or disable the NBG5615’s firewall, and set up firewall logs. Click

Security

Firewall

to open the

General

screen.

Figure 94

Security > Firewall > General l

The following table describes the labels in this screen.

18.3

Services Screen

If an outside user attempts to probe an unsupported port on your NBG5615, an ICMP response

packet is automatically returned. This allows the outside user to know the NBG5615 exists. Use this

screen to prevent the ICMP response packet from being sent. This keeps outsiders from discovering

your NBG5615 when unsupported ports are probed.

You can also use this screen to enable service blocking, enter/delete/modify the services you want

to block and the date/time you want to block them.

Click

Security

Firewall

Services

. The screen appears as shown next.

Table 63

Security > Firewall > General

LABEL

DESCRIPTION

Enable Firewall

Select this check box to activate the firewall. The NBG5615 performs access control and

protects against Denial of Service (DoS) attacks when the firewall is activated.

Apply

Click

Apply

to save the settings.

Cancel

Click

Cancel

to start configuring this screen again.