manualshive.com logo in svg

SMC Networks Barricade SMC7008ABR, Руководство пользователя

Поделиться
Скачать
SMC Networks Barricade SMC7008ABR Скачать руководство пользователя страница 27

7008ABR – Manual 

 

27

 

 

 

Intrusion Detection

 

The Intrusion Detection feature of the Barricade limits the access of the incoming traffic from 

the WAN port. When the SPI feature is turned on, all the incoming packets will be blocked 

unless certain types of traffic types are checked by the users. When the user checks certain 

types of traffic, only the particular type of traffic initiated from the Internal LAN will be 

allowed. For example, if the user only checks “FTP service” from the Stateful Packet 
Inspection page, all the incoming traffic will be blocked except the FTP connection initiated 

from the local LAN. 

 

o

 

Stateful Packet Inspection

 

This option allows you to select different application types that are using dynamic 

port numbers. If you need to use the Stateful Packet Inspection (SPI) for blocking 
packets, click on the “Yes” radio button in the “Enable SPI and Anti-DoS firewall 

protection” field and then check the inspection type that you need, such as Packet 

Fragmentation, TCP Connection, UDP Session, FTP Service, H.323 Service and TFTP 

Service. 

 

o

 

Hacker Prevention Feature

 

The Barricade firewall inspects packets at the application layer, and maintains TCP 

and UDP session information, including timeouts and number of active sessions, 

provides the ability to detect and prevent certain types of network attacks such as 

DoS attacks. Network attacks that deny access to a network device are called denial-

of-service (DoS) attacks. Denials of Service (DoS) attacks are aimed at devices and 

networks with a connection to the Internet. Their goal is not to steal information, but 
to disable a device or network so users no longer have access to the network 

resource. 

 

By using the above inspected information and timeout/threshold criteria, the 

Barricade provides the following DoS attack preventions: Ping of Death (Ping flood) 

attack, SYN flood attack, IP fragment attack (Teardrop Attack), Brute-force attack, 
Land Attack, IP Spoofing attack, IP with zero length, TCP null scan (Port Scan 

Attack), UDP port loopback, Snork Attack etc. 

 

NOTE

: The firewall does not significantly affect system performance, so we advise 

enabling the prevention features to protect your network users. 
 

Содержание Barricade SMC7008ABR

Страница 1: ...Cable DSL Broadband Router Built in 8 Port 10 100Mbps Switch and Integrated Print Server USER GUIDE SMC7008ABR ...

Страница 2: ...different from that to which the receiver is connected EC Conformance Declaration Class B SMC contact for these products in Europe is SMC Networks Europe Edificio Conata II Calle Fructuós Gelabert 6 8 2o 4a 08970 Sant Joan Despí Barcelona Spain This information technology equipment complies with the requirements of the Council Directive 89 336 EEC on the Approximation of the laws of the Member Sta...

Страница 3: ...short interruptions and voltage variations immunity test according to EN 61000 4 11 1994 95 Reduction 10ms 30 Reduction 500ms 95 Reduction 5000ms LVD EN60950 A1 1992 A2 1993 A3 1993 A4 1995 A11 1997 COMPLIANCES Safety Compliance Underwriters Laboratories Compliance Statement Important Before making connections make sure you have the correct cord set Check it read the label on the cable against the...

Страница 4: ...langen Dies könnte einen Brand bzw elektrischen Schlag auslösen 1 Öffnen sie niemals das Gerät Das Gerät darf aus Gründen der elektrischen Sicherheit nur von authorisiertem Servicepersonal geöffnet werden 2 Wenn folgende Situationen auftreten ist das Gerät vom Stromnetz zu trennen und von einer qualifizierten Servicestelle zu überprüfen a Netzkabel oder Netzstecker sind beschädigt b Flüssigkeit is...

Страница 5: ...ing Windows 2000 Configuring Windows XP Configuring a Macintosh Computer CHAPTER 5 Configuring the Barricade 13 Browser Configuration Disable Proxy Connection Accessing the Barricade Management CHAPTER 6 Navigating the Web based Administration 15 Making Configuration Changes Setup Wizard Advanced Setup Chapter 7 Setting up the Print Server 32 Install the SMC Printer Port Monitor Configure the Prin...

Страница 6: ... Easy setup through a web browser on any operating system that supports TCP IP Compatible with all popular Internet applications 1 1 Package Contents Before installing the Barricade Broadband Router verify that you have the items listed under Package Contents Also be sure that you have the necessary cabling If any of the items are missing or damaged contact your local SMC distributor Barricade Bro...

Страница 7: ...ion detected No LAN connection detected Transmitting or receiving traffic 10 100 Mbps LAN port operating at 100 Mbps LAN port operating at 10 Mbps N A FDX COL Full Duplex connection Half Duplex Connection Data Collision Resetting the Barricade The Reset button is located on the front panel of the Barricade Broadband Router This Reset button works 2 different ways depending on how long you hold the...

Страница 8: ...ports on the front of the Barricade to your computer s network adapter 2 Connect the WAN Connect an Ethernet cable from your cable or DSL modem or the Barricade s WAN port on the back on the router 3 Power on Connect the power cable to the Barricade Once you have completed connecting all of the hardware simply insert the Barricade CD ROM and the 3 Click EZ Installation Wizard will automatically co...

Страница 9: ...XP Apple Macintosh For installation information on Windows NT please see your Windows Manual 4 1 Configuring Windows 95 98 Me 1 Access your Network settings by clicking Start then choose Settings and then select Control Panel 2 In the Control Panel locate and double click the Network icon 3 Highlight the TCP IP line that has been assigned to your network card on the Configuration tab of the Networ...

Страница 10: ...or additional files Check for the files at c windows options cabs or insert your Windows CD ROM into your CDROM drive and check the correct file location ex D win98 D win9x etc if D is the letter of your CD ROM drive 9 Windows may prompt you to restart the PC If so click the Yes button If Windows does not prompt you to restart your computer do so anyways to insure your settings 4 2 Configuring Win...

Страница 11: ... Reboot your PC 4 3 Configuring Windows XP The following instructions assume you are running Windows XP with the default interface If you are using the Classic interface where the icons and menus look like previous Windows versions please follow the instructions for Windows 2000 outlined above 1 Access your Network settings by clicking Start choose Control Panel select Network and Internet Connect...

Страница 12: ...ps and screenshots were created using Mac OS 8 5 Mac OS 7 x and above are all very similar but may not be identical to Mac OS 8 5 1 Pull down the Apple Menu Click Control Panel and select TCP IP 2 In the TCP IP dialog box make sure that Ethernet is selected in the Connect Via field If Using DHCP Server is already selected in the Configure field your computer is already configured for DHCP Close th...

Страница 13: ...onfigured through the options preference section of your browser 5 2 Disable Proxy Connection You will also need to verify that the HTTP Proxy feature of your web browser is disabled This is so that your web browser will be able to view the Barricade configuration pages The following steps are for Internet Explorer and for Netscape Determine which browser you use and follow the appropriate steps I...

Страница 14: ...e to be ONLINE to configure the Barricade Router 2 In the Address Bar type http 192 168 2 1 3 When the Barricades Login screen loads up click the Login button to access the router NOTE The Barricade does not ship with a default password 4 Once you have logged into the Barricade web based admin screens you have 2 options which are outlined in Chapter 6 Navigating the Web based Administration ...

Страница 15: ... server setup virtual DMZ hosts as well as other advanced functions 6 1 Making Configuration Changes Configurable parameters have a dialog box or a drop down list Once a configuration change has been made on a page be sure to click the Apply or Next button at the bottom of the page to enable the new setting Note To ensure proper screen refresh after a command entry be sure that Internet Explorer 5...

Страница 16: ... events 6 1 2 Step Two Broadband Type Select the type of broadband connection you have Cable Modem Your ISP may have given you a host name If so enter it into this field Fixed IP xDSL Some xDSL Internet Service Providers may assign a fixed static IP address for your gateway If you have been provided with this information choose this option and enter the assigned IP address subnet mask gateway IP a...

Страница 17: ... for which the Internet connection is maintained during inactivity If the connection is inactive for longer than the Maximum Idle Time it will be dropped Enable the Auto reconnect option to automatically re establish the connection as soon as you attempt to access the Internet again 6 1 2 Step Three Finish Configuration Once you have configured your type of ISP connection simply click the Finish b...

Страница 18: ...ne Use this option to the time zone for the Barricade This information is used for log entries and client access control Password Settings Use this menu to restrict access based on a password By default there is no password For security you should assign one before exposing the Barricade to the Internet NOTE Passwords can contain from 3 12 alphanumeric characters and are not case sensitive Remote ...

Страница 19: ...Internet service and do not change it unless required by your ISP If your ISP used the MAC address of an Ethernet card as an identifier when first setting up your broadband account connect only the PC with the registered MAC address to the Barricade and click the Clone MAC Address button This will replace the current Barricade MAC address with the already registered Ethernet card MAC address If yo...

Страница 20: ... period of time for which the Internet connection is maintained during inactivity If the connection is inactive for longer than the Maximum Idle Time it will be dropped Enable the Auto reconnect option to automatically re establish the connection when an application attempts to access the Internet again PPTP Point to Point Tunneling Protocol PPTP allows the secure remote access over the Internet b...

Страница 21: ...b server or FTP server DNS Domain Name Servers map numerical IP addresses to the equivalent domain name e g www smc com Your ISP should provide the IP address of one or more domain name servers Enter those addresses on this screen Dial up The Barricade can support an External dial up or ISDN modem connection This option also supports an auto failover mode so if your default connection i e Cable DS...

Страница 22: ...rks this may be set to Forever which means there is no time limit on the IP address lease IP Address Pool A dynamic IP start address may be specified by the user e g 192 168 2 100 default value Once this start IP address has been assigned IP addresses running from 192 168 2 100 to 192 168 2 199 will be part of the dynamic IP address pool IP addresses from 192 168 2 2 to 192 168 2 99 and 192 168 2 ...

Страница 23: ...ces such as web or FTP at your local site via public IP addresses can be automatically redirected to local servers configured with private IP addresses In other words depending on the requested service TCP UDP port number the Barricade redirects the external service request to the appropriate internal server and port The WAN interface should have a fixed IP address to properly utilize this functio...

Страница 24: ...ollowing screen to specify the additional public ports to be opened for each application Specify the port normally associated with an application in the Trigger Port field select the protocol type as TCP or UDP and then enter the public ports associated with the trigger port to open them for inbound traffic 6 2 5 Firewall The firewall does not significantly affect system performance so we advise e...

Страница 25: ...e Enable radio button of the Enable or disable Firewall module function field be sure press the APPLY button Access Control Using this option allows you to specify different privileges for the client PCs Note Click on Add PC and define the appropriate settings for client o URL Blocking Rules o Time Date Schedule Rules MAC Filtering The MAC Filtering feature of the Barricade allows you to control a...

Страница 26: ...w somesite com This feature is ideal way to limit questionable content from your being accessed at either your home or business network Schedule Rule The Schedule Rule feature allows you to configure specific rules based on Time and Date These rules can then be used to configure more specific Access Control Rules ...

Страница 27: ...CP Connection UDP Session FTP Service H 323 Service and TFTP Service o Hacker Prevention Feature The Barricade firewall inspects packets at the application layer and maintains TCP and UDP session information including timeouts and number of active sessions provides the ability to detect and prevent certain types of network attacks such as DoS attacks Network attacks that deny access to a network d...

Страница 28: ...of a DMZ host to this screen Adding a client to the DMZ Demilitarized Zone may expose your local network to a variety of security risks so only use this option as a last resort 6 2 6 DDNS Dynamic DNS The Barricade has an integrated Dynamic DNS feature that provides users on the Internet a method to tie their domain name s to computers or servers DDNS allows your domain name to follow your IP addre...

Страница 29: ...tore To restore settings from a saved backup configuration file o Restore to factory defaults Restores the Barricade settings back to the factory default original settings Firmware Upgrade This tool permits easy downloading of the latest Firmware Download the upgrade file from the SMC website www smc com and save it to your hard drive Browse for the file and then click Apply Check the Status page ...

Страница 30: ...splays system IP settings as well as DHCP and Firewall status 3 INFORMATION Displays the number of attached clients the firmware versions the physical MAC address for each media interface as well as the hardware version and serial number 4 Security Log Displays illegal attempts to access your network a Save Click on this button to save a security log file b Clear Click on this button to delete the...

Страница 31: ...7008ABR Manual 31 For additional information on the 7008ABR please visit www smc com ...

Страница 32: ...int Server on page 6 4 7 1 Install the Printer Port Monitor For Windows 95 98 ME NT 2000 XP clients you need to install the port monitor program as described in this section 1 Insert the installation CD ROM into your CD ROM drive Under the Print Server directory run the setup exe program to launch the SMC Port Server Monitor installation program 2 Click Next to begin the install process 3 Select t...

Страница 33: ...ur computer you will need to add the Barricade print server to your system as described in section 7 2 Configure the Print Server 7 2 Configure the Print Server The Barricade s print server supports Microsoft Windows 95 98 ME NT 2000 XP If you are using Windows 95 98 ME NT 2000 XP first install the port monitor as described in the previous section before adding the Barricade s print server to your...

Страница 34: ...and you have re installed your printer using the Barricade software you will need to configure this new printer as the default printer 7 3 Configure LPR port on Windows 2000 XP The Barricade Printer function can also be used with the LPR port on Windows XP and Windows 2000 machines Below is an outline on how to configure the LPR port on a Windows 2000 machine however the same steps will apply for ...

Страница 35: ...Printer port If you are using default settings on the router you can use the following information Printer Name or IP Address 192 168 2 1 Port Name IP_192 168 2 1 Note this is the IP that you use to admin your router with for example 192 168 2 1 If you have changed this IP address then please use the new one that you have assigned to your router 11 Click the Next button to continue 12 On the next ...

Страница 36: ...MP Status Enabled option is unchecked This should be the same information that was configured in Step 7 15 Once you have verified all of these settings click the OK button to save these settings and close the Configure Standard TCP IP Port Monitor window 16 Click Next to continue and view a summary of the configuration that you have just completed 17 Click the Finish button to complete the configu...

Страница 37: ...l your printer information that you just configured To complete the installation click the Finish button Once you have completed the printer installation you will need to configure some properties on your printer To do so please follow the steps listed below 1 If you closed out the Printers window please re open it from the control panel 2 Locate the printer that you just installed and right mouse...

Страница 38: ...7008ABR Manual 38 4 Click on the Ports tab and verify that you have the TCP IP port that you just created selected and the Enable bidirectional support and Enable printer pooling options are unchecked ...

Страница 39: ... and click on the Print Test Page button This will verify that you have successfully setup your LPR printing port and now you can print through the SMC Barricade Router 7 4 Confirm printer Connection On the status page of the web based login you can confirm the printer connection to the Barricade ...

Страница 40: ...the information that is displayed 4 If you computer is setup for DHCP then your TCP IP configuration should be similar to the information displayed IP Address 192 168 2 X x is number between 100 and 199 Subnet 255 255 255 0 Gateway 192 168 2 1 If you have any other IP address information listed see below If you have an IP address that starts with 169 254 XXX XXX then see section A 2 If you have an...

Страница 41: ...onfirmed your computer is configured for DHCP then please follow the steps below 1 Open a DOS window as described above 2 Type ipconfig release without the quotes 3 Then type ipconfig renew without the quotes Once you are able to get a valid IP address from the Barricade Router then you can now access the web based Administration pages If you still are not getting an IP address from the Barricade ...

Страница 42: ...for 2 mins 2 Confirm that your Barricade router is configured for a Dynamic IP configuration 3 Plug the power back into your Modem 4 Wait for your Modem to sync up to the network and then click on the status page of the router to confirm you are online The reason this process works is because certain broadband connections require a MAC address to gain network access This MAC address can be changed...

Страница 43: ...CP DNS Firewall Client privileges hacker prevention and logging Virtual Private Network PPTP L2TP IPSec pass through Backup Internet Connection Dial on demand via secondary WAN port Print server Universal Plug and Play Dynamic DNS Service Indicator Panel Power WAN Link Activity Link Act Link Activity 10 100M on is 100Mpbs off is 10Mbps FDX COL full duplex collision Dimensions 24 92 x 11 63 x 3 66 ...

Страница 44: ... 2516 NAT RFC 1631 PPP RFC 1661 HTML RFC 1866 HTTP RFC 1945 CHAP RFC 1944 DHCP RFC 2131 PPTP RFC 2637 Temperature Operating 32 to 104 F 0 to 40 C Storage 40 to 158 F 40 to 70 C Humidity 5 to 95 non condensing Compliances CE Mark Emissions FCC Class B Industry Canada Class B EN55022 CISPR 22 Class B Immunity EN 61000 3 2 3 EN 61000 4 2 3 4 5 6 8 11 Safety UL 1950 EN60950 TÜV CSA 22 2 No 950 ...

Страница 45: ... 8000 Fax 949 679 1481 From Europe 8 00 AM 5 30 PM UK Time 44 0 118 974 8700 Fax 44 0 118 974 8701 INTERNET E mail addresses techsupport smc com european techsupport smc europe com Driver updates http www smc com index cfm action tech_support_drivers_downloads World Wide Web http www smc com http www smc europe com ...

Страница 46: ...rn Europe 44 0 118 974 8700 Fax 44 0 118 974 8701 Eastern Europe 34 93 477 4920 Fax 34 93 477 3774 Sub Saharian Africa 27 11 314 1133 Fax 27 11 314 9133 North Africa 34 93 477 4920 Fax 34 93 477 3774 Russia 7 095 290 29 96 Fax 7 095 290 29 96 PRC 86 10 6235 4958 Fax 86 10 6235 4962 Taiwan 886 2 2659 9669 Fax 886 2 2659 9666 Asia Pacific 65 238 6556 Fax 65 238 6466 Korea 82 2 553 0860 Fax 82 2 553 ...

Отзывы:

Нет отзывов

Бренды по названию

Популярные бренды

Загрузить еще бренды