Operating Instructions
64
Data Entry Field
Easy Security Settings
It is possible to easily set up firewalls, which appear frequently, and
are very important in terms of security. The default settings are
oriented to the highest possible level. Only change them if essential.
•
Access by private IP
addresses are
rejected in both
directions.
Display when saving log: P-P
When the source of an incoming (from WAN side) and destination of
an outgoing (to WAN side) packet is a private address, access to this
product is prohibited. In factory default settings Access by private IP
addresses are rejected in both directions and Log Output are both
checked.
•
Access by NetBIOS/
File sharing/Printer
sharing/PC remote
access are rejected in
both directions.
Display when saving log: SHR
Prohibits the access in both ways of packets sent/received when files
or printers are shared on Windows. In factory default settings Access
by NetBIOS/File sharing/Printer sharing/PC remote access are
rejected in both directions and Log Output are both checked.
Access Control
•
Setup pages
Settings to limit access to this product from the WAN side.
Display when saving log: W-C
It is possible to select either Administrator Only or Restricted Access
for access to Setup from the WAN side. In factory default settings
Restricted Access and Log Output are both checked.
•
Camera Portal
Display when saving log: W-P
It is possible to select either None, Administrator Only or Restricted
Access for access to Camera Portal from the WAN side. In factory
default settings None and Log Output are both checked.
Stealth Mode
•
Stealth Mode can
hide this product from
WAN (Internet).
Display when saving log: STL
It is possible to set this product to not respond to Pings etc. from the
WAN (Internet) side. Therefore it can escape the attacker's existence
verification produced by Pings etc. It will also not respond to UDP/
TCP port scans. In factory default settings Stealth Mode can hide
this product from WAN (Internet) and Log Output are both checked.
•
Regard Ident packet
as an exception
Display when saving log: STL (Ident)
When clients try to send/receive E-mail, There is E-mail server that
authenticates E-mails to/from clients. This authentication uses
recognition protocol, which uses TCP port number 113. The
authentication level is relatively low so there are not many cases
where clients are unable to send/receive E-mails. In factory default
settings Regard the Ident Packet as an Exception and Log Output
are both checked.
Intrusion Detection
When using the intrusion detection function, check the field under
each heading.
•
Stateful packet
inspection (Dynamic
packet filtering) is
enabled
Display when saving log: SPI
If a packet being received from the WAN side is inspected, and
judged to be a corrupt packet, it is intercepted. By comparing the
packet to static filtering (packet filtering through header information),
Internet data can be sent more safely. In factory default settings
Stateful packet inspection (Dynamic packet filtering) is enabled and
Log Output are both checked.
Содержание BB-HGW700A - Network Camera Router
Страница 138: ...Operating Instructions 138 ...
Страница 139: ...Operating Instructions 139 Index ...
Страница 141: ...Operating Instructions 141 ...