CHAPTER 4.
Error! Use the Home tab to apply
제목
1,
장
제목
1 to the text that you want to appear here.
4-8
© SAMSUNG Electronics Co., Ltd.
IP-ToS Process
This function checks the Type of Service (ToS) field of the IP header and processes it
according to priority of the corresponding routing in the data server. This function
reproduces the ToS field flowing into the data server, performs the routing process first of
all, and heightens the process priority in the next HOP.
4.3.3 Security
NAT/PT (In/Out/Exclusive/Redirect)
The security function supports the conversion function between the private IP address and
public IP address in the network where security is required.
The Inbound, Outbound, Exclusive, and Redirect functions are supported.
In bound: This function performs the forwarding process for the packet flowing from
the WAN to the IP and port of the LAN specified in the NAT/PT conversion table.
Outbound: This function converts the IP address of the transmitter into the global IP
address according to the NAT/PT conversion table for transmitting the packet from the
LAN to the WAN.
Exclusive: This function is used for the IP address that is not applied by the
NAT/PT conversion.
Redirect: When the DNS server IP in the data server management sector is changed,
each IP terminal uses the pre-DNS IP and this function changes the DNS IP by
registering the post-DNS IP into the Redirect table.
Firewall
Access filtering
This function prevents the access to disallowed IP addresses to control the access for
the resource non-disclosed to the outside and to control the external resource for which
the membership in the LAN may access.
DMZ function
This function is used for connecting the web server and mail server, which are firewall-
protected LAN networks but need to be freely accessed from the outside, to the subnet
separated from the LAN network where the firewall blocking is not applied. In this
way, the access from the outside can be smoother with the access control service
through the firewall.
Port Forwarding
This function is almost the same as the DMZ function but is used for connecting to a
specific network without a separately divided DMZ port.
This function is used for the Extra network services as well as the DMZ function.
The Extra network is configured for a party out of the office to access the Intranet in
the office via the Internet. In this network, the user should take care of the security on
the Intranet.