20
4.6 Firewall
4.6.1 Block WAN Ping
This page allows you to prevent the hackers from testing the services of the Router. "Discard
ping from WAN side", "Drop Port Scan Packets" and "Discard NetBios Packets" cause the
Router to not respond to the hacker scan packets from the public WAN IP address.
Some applications need to communication with the security port(113). When you enable the
"Drop Port Scan Packets", enable the "Allow to Scan Security Port" is recommended.
4.6.2 Client Filtering
You can filter Internet access for local clients based on IP addresses, application types, (i.e.,
HTTP port), and time of day.
For example, this screen shows that clients in the address range 192.168.1.50-99 are perma-
nently restricted from using FTP (Port 21), while clients in the address range 192.168.1.110-
119 are blocked from browsing the Internet from Monday through Friday.