Chapter 18 IPv6 Firewall
EMG2926-Q10A User’s Guide
131
The following table describes the labels on this screen.
Table 65
Configuration > Security > IPv6 Firewall
LABEL
DESCRIPTION
Enable IPv6 Simple Security
Enable IPv6 Simple
Security
Select this option to activate IPv6 simple security functions on the EMG2926-Q10A.
IPv6 simple security is a packet inspection mechanism. It checks the source IP address,
destination IP address, IP protocol type, and connection state of network traffic and
maintains a connection tracking table. IPv6 simple security allows any outgoing
packets, and blocks all incoming packets except reply packets.
Apply
Click
Apply
to save your settings.
ICMPv6
Internet Control Message Protocol for IPv6 (ICMPv6 or ICMP for IPv6) is defined in RFC
4443. ICMPv6 has a preceding Next Header value of 58, which is different from the
value used to identify ICMP for IPv4. ICMPv6 is an integral part of IPv6. IPv6 nodes use
ICMPv6 to report errors encountered in packet processing and to perform other
diagnostic functions such as ping.
Respond to Ping on
The EMG2926-Q10A will not respond to any incoming Ping requests when
Disable
is
selected. Select
LAN
to reply to incoming LAN Ping requests. Select
WAN
to reply to
incoming WAN Ping requests. Otherwise select
LAN&WAN
to reply to all incoming LAN
and WAN Ping requests.
Apply
Click
Apply
to save your settings.
Enable Firewall Rule
Enable Firewall Rule Select this check box to activate the firewall rules that you have defined (see
Add
Firewall Rule
below).
Apply
Click
Apply
to save your settings.
Add Firewall Rule
Service Name
Enter a name that identifies or describes the firewall rule.
MAC Address
Enter the MAC address of the computer to which the firewall rule applies.
Dest_IP_Address
Enter the IPv6 address of the computer to which traffic for the application or service
enters.
The EMG2926-Q10A applies the firewall rule to traffic destined for this computer.
Source_IP_Address
Enter the IPv6 address of the computer that initializes traffic for the application or
service.
The EMG2926-Q10A will apply the firewall rule to traffic initiating from this computer.
Protocol
Select the protocol (
TCP
,
UDP
or
ICMP
) used to transport the packets for which you
want the firewall rule to apply.
Dest Port Range
Enter the port number/range of the destination that defines the traffic type. For
example, TCP port 80 defines web traffic.
Source Port Range
Enter the port number/range of the source that defines the traffic type. For example,
TCP port 80 defines web traffic.
Add Rule
Click
Add Rule
to save the firewall rule.
Firewall Rule
#
This is your firewall rule number. The order of your rules is important, as rules are
applied in order.
ServiceName
This is a name that identifies or describes the firewall rule.
MACaddress
This is the MAC address of the computer to which the firewall rule applies.
DestIP
This is the IP address of the computer to which traffic for the application or service
enters.
SourceIP
This is the IP address of the computer where traffic for the application or service is
initialized.