System Configuration 3-9
Select
Stateful Inspection Options
and press Return. The Stateful Inspection Parameters screen appears.
•
Max. TCP Sequence Number Difference
: Enter a value in this field. This value represents the maximum
sequence number difference allowed between subsequent TCP packets. If this number is exceeded, the
packet is dropped. The acceptable range is 0 – 65535. A value of 0 (zero) disables this check.
•
Enable default mapping to router
: This is disabled by default. Toggling this option to
Yes
will allow the
router to respond to traffic received on this inter face, for example, ICMP Echo requests.
Note:
If Stateful Inspection is enabled on a base connection profile (for example, for PPP, RFC1483
bridged/routed, or PPPoE),
Enable default mapping to router
must be
yes
to allow inbound VPN terminations.
(for example. for PPTP/ATMP client access to the router)
•
Deny Fragmented Packets
: Toggling this option to
Yes
causes the router to discard fragmented packets on
this inter face.
•
You can apply these parameters to your Exposed Address lists by selecting your
Exposed Address List
from the pop-up menu,
Stateful Inspection Parameters
Max. TCP Sequence Number Difference: 0
Enable default mapping to router: No
Deny Fragmented Packets: No
Exposed Address List...
Enter max. allowed TCP sequence number difference (1 - 65535), 0 to disable.
Summary of Contents for 3300-ENT Series
Page 10: ...x Firmware User Guide...
Page 16: ...1 6 Firmware User Guide...
Page 44: ...2 28 Firmware User Guide...
Page 96: ...3 52 Firmware User Guide...
Page 192: ...6 26 Firmware User Guide...
Page 264: ...9 14 Firmware User Guide...
Page 314: ...10 50 Firmware User Guide...
Page 324: ...11 10 Firmware User Guide...
Page 334: ...Index 6...