C-Com PAMSPAN 3000 Скачать руководство пользователя страница 55

Страница: 55 / 64

PAMSPAN 3000 User Manual

-40-

been removed. There are two hyperlinks on the page:

a. To add a new trigger, click on

New Trigger

b. To display the Security Interface Configuration page, click on

Return to Interface List

Configuring Intrusion Detection Settings

Intrusion Detection settings allow you to protect your network from intrusions such as

denial of service (DOS) attacks, port scanning and web spoofing. This section assumes

that you have followed the instructions in

Enabling Security

Section

and

Enabling Firewall

and/or Intrusion Detection

Section

To configure Intrusion Detection settings:

Go to the

Policies, Triggers and Intrusion Detection

section of the

Security Interface

Configuration

page. Click on

Configure Intrusion Detection.

The

Firewall Configure

Intrusion Detection

page is displayed:

The values displayed in EmWeb Firewall Configure Intrusion Detection page are the

default values.

2 .

Configure Intrusion Detection as follows:

Use Blacklist; select true or false depending on whether you want external hosts to be

blacklisted if the Firewall detects an intrusion from that host. Click on the Clear

Blacklist button at the bottom of the page to clear blacklisting of an external host.

The Security Interface Configuration page is displayed.

Use Victim Protection; select true or false depending on whether you want to protect a

victim from an attempted web spoofing attack.

DOS Attack Block Duration; type the length of time (in seconds) that the Firewall

blocks suspicious hosts for once a DOS attack attempt has been detected.

Содержание PAMSPAN 3000

Страница 1: ...PAMSPAN 3000 User Manual Ver 1 0 First Edition August 2004 RECYCLABLE...

Страница 2: ...Assigning static Internet information to your PCs 11 3 Configure the PAMSPAN 3000 from EmWeb 1 3 1 Accessing EmWeb 1 3 2 About EmWeb pages 1 3 2 1 About the Status Page 2 3 2 3 About the Quick Start p...

Страница 3: ...0 User Manual 2 3 2 4 10 DNS Relay 26 3 2 4 11 SNTP Client 27 3 2 4 12 Security 30 3 2 4 13 Ports 41 3 2 4 14 Search for Service 46 4 Diagnostic and Troubleshooting 47 Appendix A Advanced DSL port att...

Страница 4: ...r pair shortages exist within the public telephone network and its flexibility makes it ideal for applications such as web hosting video conferencing and heavy two way data traffic needed in the busin...

Страница 5: ...PAMSPAN 3000 User Manual 2 1 3 Application a Connect to the G SHDSL IP DSLAM b connect to another PAMSPAN3000 set as CO side...

Страница 6: ...25 RFC1577 IPoA RFC2364 PPP over ATM CHAP and PAP supported RFC2516 PPPoE PPP over Ethernet over ATM VC multiplexing and SNAP LLC PPP Support PPP RFC 1661 PPP over AAL5 RFC 2364 PPPoE PPP over Etherne...

Страница 7: ...el LED Figure 2 2 2 wire PAMSPAN3000 Front Panel LED 1 Power Power Indicator 2 DSL 1 DSL loop1 3 DSL 2 DSL loop 2 On CPE 4 CPE Off CO 5 Ethernet Link On Ethernet Link connected Figure 2 3 Rear Panel i...

Страница 8: ...tlook of Dip Switch As the following figure shown position 1 to 3 is assigned to Rate configuration and position 4 is for CO or CPE selection Rate Configuration Transmission Rate can be manually confi...

Страница 9: ...Press the reset default button 3 Power on the Modem and watch the Front Panel of the Modem 4 While the CPE LED LED blinks very quickly please release the button If you press the button to long recall...

Страница 10: ...talled 3 Connect the power supply to PAMSPAN3000 by plugging the round DC connector into the DC jack on the rear panel Plug the power supply into the wall Verify that the Power LED is illuminated or n...

Страница 11: ...on the icon corresponding to your network interface card NIC and select Properties Often this icon is labeled Local Area Connection The Local Area Connection dialog box displays with a list of curren...

Страница 12: ...al Area Connection Properties dialog box select Internet Protocol TCP IP and then click 11 In the Internet Protocol TCP IP Properties dialog box click the radio button labeled Obtain an IP address aut...

Страница 13: ...ck the radio button labeled Server assigned name server address 13 Click twice to confirm and save your changes and then close the Control Panel Windows 95 98 PCs First check for the IP protocol and i...

Страница 14: ...y assigns this information In some cases however you may want to assign Internet information to some or all of your PCs directly often called statically rather than allowing the PAMSPAN 3000 to assign...

Страница 15: ...es Instead of enabling dynamic assignment of the IP addresses for the computer DNS server and default gateway click the radio buttons that enable you to enter the information manually Note Your PCs mu...

Страница 16: ...enter your username and password to access the pages The default User name Password as follows User Name admin Password admin 3 Click on You are now ready to configure PAMSPAN 3000 using EmWeb The fi...

Страница 17: ...ch web page depends on the specific configuration that you are using The following sections give you a general overview of the setup and configuration details 3 2 1 About the Status Page The Status ho...

Страница 18: ...The Advanced Diagnostics section displays Connection Authentication details this displays details about your current ISP login settings It also provides a Login Settings hyperlink that allows you to c...

Страница 19: ...or delete your WAN configuration DNS Client Settings this allows you to create modify or delete your DNS Client configuration LAN Status This section displays the following status information about y...

Страница 20: ...e all of the following depending on the interface type and configuration the interface connection details port configuration service parameters PAMSPAN 3000 has default interfaces defined These defaul...

Страница 21: ...s a If you want your ISP server to automatically recognize your own host name type a Special DHCP host name b If you want LAN DHCP clients to use a specific domain name type a Domain Name for Clients...

Страница 22: ...following confirmation message appears near the top of the page Settings successfully changed 3 2 3 About System configuration From the left hand menu click on System The following sub headings are d...

Страница 23: ...enable temporary remote access to your Router using Network Address Translation NAT Note In order to configure remote access you first need to enable the firewall and create an external to internal fi...

Страница 24: ...ow much of the file in bytes and as a percentage has been written to Flash ROM 4 Once the file has been written to Flash the Firmware Update page is refreshed The page confirms completion of the updat...

Страница 25: ...box and type the network path of the file that you wish to restore If you do not know the path details click on and locate the file using the Choose file box 3 Click on The page is refreshed with a Co...

Страница 26: ...following sub headings are displayed Save config allows you to save your current configuration to Flash memory Authentication allows you to create edit and delete user accounts LAN connections allows...

Страница 27: ...on to save your current configuration in the device After a short time the configuration is saved and the following confirmation message is displayed Saved information model to file flashfs im conf 3...

Страница 28: ...you have just created Editing deleting a login account 1 The Authentication page table contains an Edit user hyperlink for each user account entry Click on a link The following page is displayed This...

Страница 29: ...ith the existing primary LAN interface From the Configuration menu click on LAN connections The following page is displayed Configuring primary and secondary LAN connections 1 The Default LAN Port sec...

Страница 30: ...interfaces 1 Click on the Create a new virtual interface hyperlink at the bottom of the LAN connections page On the Create virtual interface page type the IP address and netmask of the virtual interf...

Страница 31: ...and configure WAN connections for Your Router You can also create virtual interfaces on routed services From the Configuration menu click on WAN connections The WAN connections page is displayed Creat...

Страница 32: ...1483 routed service you can choose from the following advanced editing links Edit Service Edit PPPoE Edit Atm Channel 3 Click on Change The edit page is displayed and changes are applied to the servic...

Страница 33: ...erface page type the IP address and netmask of the virtual interface and then click on the 3 The WAN connections page is displayed If you click on the Virtual I f link the Virtual interface page displ...

Страница 34: ...out existing routes Whether the route is valid or invalid Destination IP address Gateway address Netmask address Whether the route is advertised via RIP true or false Editing a route 1 To edit the des...

Страница 35: ...Create IP v4 Route form in order to configure the route 3 When you have typed the details click on The Edit Routes page is displayed The table now contains details of the route that you have just cre...

Страница 36: ...bled by default If to disable the DHCP server click on Note If DHCP relay is enabled DHCP server will be disabled by default You can not enable DHCP server unless you disable DHCP relay Creating a DHC...

Страница 37: ...ver addresses or set your System to give out its own IP address as the DNS Server address d Set your Router to give out its own IP address as the default Gateway address 3 Once you have entered new co...

Страница 38: ...name Type a value that matches the selected option name in the Option value text box Click on 4 The Edit DHCP server subnet page is displayed and details of you new option are displayed under the sub...

Страница 39: ...fixed mapping click on the IP address MAC address or max lease time type a new entry and click To delete a fixed mapping check the Delete box for a specific mapping and click 3 2 4 8 DHCP Relay This...

Страница 40: ...ction Editing deleting entries in the DHCP relay list 1 To edit an entry click on an IP address and type a new entry then click on 2 To delete an entry check the Delete box for a specific IP address a...

Страница 41: ...search domains 1 Type a search string in the Domain search order text box 2 Click The search string is displayed in the Domain search order table You can add a maximum of six search strings Each searc...

Страница 42: ...Edit DHCP server list section To edit an entry click on an IP address and type a new entry then click on To delete an entry check the Delete Box for a IP address then click on 3 2 4 11 SNTP Client Th...

Страница 43: ...le the mode uses a unicast server and the IP address or hostname in the SNTP server association list is used to synchronize the client time with the server The SNTP client attempts to contact the spec...

Страница 44: ...he SNTP Syncroniztion mode 2 select a time zone Click on the local timezone drop down list and select a time zone And then click on to validate your setting 3 Enter SNTP transmit packet timeout value...

Страница 45: ...urity interfaces configure triggers NAT EmWeb allows you to enable NAT between interfaces configure global addresses s configure reserved mapping Firewall EmWeb allows you to enable Firewall and Firew...

Страница 46: ...a security interface before you can enable Firewall and or Intrusion Detection Once you have created a security interface 1 Click on the Firewall Enabled and or Intrusion Detection Enabled radio butt...

Страница 47: ...displayed 2 Click on the Name drop down list and select the LAN service that you want to base your security interface on 3 Click on the Interface Type drop down list and specify what kind of interfac...

Страница 48: ...s you that you can enable NAT to internal interfaces If you also had a DMZ interface configured this column would also include an Enable NAT to DMZ interfaces button 4 To enable NAT between the extern...

Страница 49: ...erface type Use Subnet Configuration there are two ways to specify a range of IP addresses You can either Use Subnet Mask specify the subnet mask address of the IP address or Use IP Address Range spec...

Страница 50: ...type and port number Before you can configure reserved mapping you need to configure NAT See Configuring NAT Section If you want to set up a reserved mapping on your existing NAT enabled interfaces 1...

Страница 51: ...yed and contains details of each Firewall policy You can now configure the policies to include portfilters and validators See Configuring portfilters Section and Configuring validators Section A portf...

Страница 52: ...e Transport Type text box for example for IGMP enter protocol number 2 Then use the Direction drop down lists to specify whether you want to allow block inbound traffic and allow block outbound traffi...

Страница 53: ...direction of traffic that you want the validator to filter 5 Click on The Configure Validators page is displayed containing details of the host validator that you have just added 6 Each portfilter di...

Страница 54: ...ulti level TCP session chaining g Enable UDP Session Chaining select Allow or Block depending on whether you want to allow multi level UDP and TCP session chaining You must set Enable Session Chaining...

Страница 55: ...Interface Configuration page Click on Configure Intrusion Detection The Firewall Configure Intrusion Detection page is displayed The values displayed in EmWeb Firewall Configure Intrusion Detection p...

Страница 56: ...Echo Storm DOS attack h Maximum ICMP Count type in the maximum number of ICMP packets per second that are allowed by the Firewall before an ICMP Flood DOS is detected 3 Once you have configured Intrus...

Страница 57: ...Configuration page click on View advanced attributes The Shdsl Port Configuration page is displayed Shdsl is the default port name of SHDSL created in PAMSPAN3000 where stands for ATM port You can co...

Страница 58: ...p down list only fixed mode is valid value and selectable 2 If to configure the transmission rate for CO and CPE set as fixed mode already users should unplug the RJ 11 loop cable first and then confi...

Страница 59: ...Ethernet port on your Router 10 You can carry out advanced configuration of your Ethernet port attributes From the Ethernet Port Configuration page click on View advanced attributes The Advanced Ether...

Страница 60: ...on Usb ethernet The Ethernet Port Configuration page is displayed 13 You can carry out advanced configuration of your Usb ethernet port attributes From the Usb ethernet Port Configuration page click o...

Страница 61: ...ck to the default advanced configuration settings Click on the Return to basic attribute list to return to the Usb ethernet Port Configuration page 3 2 4 14 Search for Service This option allows users...

Страница 62: ...adapter Ethernet LED start to become blink yellow while RJ 45 line has just plugged it will turn to yellow No blink while connection is established If your Ethernet LED no light make sure the RJ 45 yo...

Страница 63: ...se EOC will occupy 8K 2312kbps Framer sync Out_Of_Sync Framer data unsync In_Sync Framer data sync Framer Type Framer is a device used to align synchronize to an embedded framing pattern in a serial b...

Страница 64: ...all Access Control CAC mode Cbr_CPS Total allocated CBR bandwidth in cells per second this is used by CAC RvbrPCR_CPS Bandwidth allocated for rt VBR PCR RbrPCR_CPS Bandwidth allocated for VBR PCR VbrP...

Результаты поиска

Содержание PAMSPAN 3000

Отзывы:

Похожие инструкции для PAMSPAN 3000

Бренды по названию

Популярные бренды

C-Com PAMSPAN 3000, Руководство пользователя

Результаты поиска

Содержание PAMSPAN 3000

Отзывы:

Похожие инструкции для PAMSPAN 3000

Бренды по названию

Популярные бренды