Symantec 16-00-00091 Installation Guide - Page 67

Expert Level Connection fields Expert Level - Advanced Features section fields Allow IDENT Port Port 113 (IDENT) normally contains the Host Name/Company Name information. By default the Symantec Firewall/VPN has all ports stealth. This makes your computer(s) invisible to those outside. Some servers (like a certain E-Mail or MIRC servers) use the IDENT port of the system accessing them. Enabling this setting makes Port 113 Closed, not Stealth (it is NOT Open). Only enable if you are having problems accessing a server. NAT Function Disabling NAT turns the Symantec Firewall/VPN into a bridge or pure router. This is useful if you already have a NAT device on your network and are using the Symantec Firewall/VPN as a PPPoE "dial-up" device only. You must have routing entries made on the routing table or be using RIP2 for proper communication with NAT disabled. RIP V2 Lets you enable RIP2 functionality of the unit. RIP2 is a dynamic routing protocol used to direct traffic over routed networks. Log Level Choosing Debug will give more detailed information in the status log that is useful for Symantec support. It also throws all WAN side packets into the LAN for easy port scanning. Keep this setting at user level unless needed as Debug mode can cause collisions under heavy traffic loads. IPsec Type IPsec pass through is implemented automatically by the Symantec Firewall/VPN. Keep at 2 SPI unless instructed by Symantec support. None lets you use your VPN client in Exposed Host (DMZ) mode if having problems connecting from behind the Symantec Firewall/VPN. Language You can choose one of the available languages for the user interface by checking the check box next to the language. 4-27