- 32 -
SECURITY
(IN
ROUTER
AND
WISP
MODE)
The
Intellinet
CPE
Access
Point
is
equipped
with
a
Firewall
that
protects
local
network
users
from
hacker
attacks
from
the
Internet
whenever
router
or
WISP
mode
is
used.
IN
these
modes
there
are
two
layers
of
security.
First,
NAT
itself.
A
NAT
router
by
design
provides
protection
for
local
network
users
in
that
it
will
not
forward
a
request
made
from
the
Internet
to
a
specific
service
port,
unless
that
request
is
a
response
to
an
inquiry
made
from
a
local
client.
Second,
the
Intellinet
CPE
Access
Point
provides
additional
features
such
as
IP,
Port
or
MAC
address
filtering,
which
allow
a
more
direct
control
of
who
can
access
the
device
and
services,
and
who
cannot.
Default
Rules
:
Specify
the
default
behavior.
Everything
that
isn’t
covered
by
any
of
the
security
rules
is
either
being
dropped
or
accepted
(default)
–
depending
on
how
you
set
this
value
up.
Accept
is
the
correct
choice
in
the
vast
majority
of
the
cases.
IP/Port
Filtering
:
You
can
create
specific
rules
for
IP
addresses
and
ports.
MAC
Filtering
:
You
can
create
specific
rules
for
individual
MAC
addreses.
URL
Filtering
:
Block
or
allow
access
to
web
pages.
DoS
Protection:
Provides
additional
security
against
DoS
(Dial
of
Service)
attacks.
There
are
several
parameters
that
can
be
activated
or
deactivated.
Note
that
the
default
values
are
such,
that
remote
access
to
local
services
is
prohibited
–
that
includes
Ping,
WEB,
Telnet,
SNMP,
FTP
and
Samba
access
.
Unless
you
have
good
reasons,
it’s
best
to
leave
these
options
set
to
Disable
.