PC Programming Manual References
27.7 Router Configuration—Firewall—[2-1] One Touch Security
8.6.14 Firewall—Other Security Settings
Description
The following additional filtering settings are available.
Other Security Settings
Description
Private IP Address Filtering
Block private IP addresses
ICMP Echo Request Packet Filtering
Block ICMP echo requests
ICMP Redirect Settings
Settings for sending and receiving ICMP
redirect packets.
NET BIOS Packet Filtering
Block external sharing packets from NetBIOS.
Private IP Address Filtering
•
This setting is a filter for private IP addresses. It blocks private IP addresses in both directions.
•
If the WAN interface is connected to an edge, communication using the WAN’s private IP addresses
is not allowed. Therefore, if this feature is enabled, the following types of packets will be discarded.
1.
Packets travelling from the LAN to the WAN whose destination IP address is a private IP address
2.
Packets travelling from the WAN to the LAN whose source IP address is a private IP address
However, if the WAN interface’s IP address is a private IP address, this feature will be automatically
disabled. Also, communication over an IPsec VPN is exempt from this filter.
ICMP Echo Request Packet Filtering
•
This setting determines whether the PBX responds to ICMP echo requests on either the WAN interface
or LAN interface.
ICMP Redirect Settings
•
Depending on the settings, the PBX will send ICMP redirect packets and notify the sender of changes
to the route.
•
Depending on the settings, the PBX will receive ICMP redirect packets and will update its routing table
based on the content of the received packet.
NET BIOS Packet Filtering
•
This setting filters packets so that Windows services such as DCE and RPC, NetBIOS, Direct Hosting,
SMB, etc., are limited to the LAN and do not travel onto the WAN.
In particular, it is necessary to filter RPC packets, since several vulnerabilities have been found in the
Windows RPC interface.
•
By using a filter rule to discard packets for these ports travelling from the LAN to the WAN, traffic for
external Windows sharing features (NetBIOS) will be blocked.
Conditions
•
For details about which security settings should be enabled, consult the network administrator.
PC Programming Manual References
27.7 Router Configuration—Firewall—[2-1] One Touch Security
388
Installation Manual
8.6.14 Firewall—Other Security Settings
Summary of Contents for KX-NS1000
Page 40: ...40 Installation Manual 1 4 Data Security ...
Page 76: ...76 Installation Manual 2 3 3 System Capacity ...
Page 108: ...108 Installation Manual 3 1 3 Using CTI Applications ...
Page 267: ...the priority Installation Manual 267 5 8 3 Setting LLDP Parameters ...
Page 312: ...312 Installation Manual 5 12 Automatic Configuration of Mailboxes ...
Page 318: ...318 Installation Manual 6 2 Methods of Stacking PBXs ...
Page 332: ...332 Installation Manual 7 1 6 Troubleshooting by Error Log ...
Page 400: ...400 Installation Manual 8 6 26 WAN Port Mirroring ...
Page 414: ...414 Installation Manual 9 3 7 PCMPR Software File Version 004 1xxxx ...