beautypg.com

5 dmz, 6 advanced, 5 dmz 10.6 advanced – AirLive WH-9100MESH User Manual

Page 56

background image

This is done by mapping virtual servers to private IP addressed, according to the specific TCP port

application. As the planning table below shows, we have identified a Telnet (port23) virtual server for

private IP 192.168.15.56, a SMTP Mail (Port 25) virtual server for private IP 192.168.15.33, and Web

(port 80) virtual server for private IP 192.168.15.64. For example, all Internet requests to the gateway

for SMTP Mail services (port25) to the WAN IP address will redirected to the Private Network computer

specified by the server IP 192.168.15.33.

Service Port

Server IP

23 192.168.15.56

25 192.168.15.33

80 192.168.15.64

It is Recommend that IP address of virtual server computer hosted on the Private Network be manually

(statically) assigned to coincide with a static server mapping to that specific IP address. Virtual servers

should not rely on the dynamic IP assignment of the DHCP server function which could create

unmapped IP address assignments.

Protocol – Selection of UDP, TCP, or Both (TCP and UDP) allows these specified network protocols to

pass through during the TCP port communication with each virtual server IP address.

10.5 DMZ

Click the entry on the left hand

navigation panel for Firewall – DMZ.

The Demilitarize Zone (DMA) host

allows one computer on the Private

Network to be to tall expose to the

wired network or Internet for

unrestricted two-way communication.

This configuration is typically used when a computer is operation proprietary client software or 2-way

communication such as video-teleconferencing, where multiple TCP port assignments are required for

communication. To assign a PC the DMA host status, fill in the Private IP address which is identified as

the exposed host and click the Apply button. However, any Internet user who knows the WAN IP

address of the gateway can connect to the DMZ host since the firewall feature is disabled for this

device, causing a potential security risk to data residing on the that host.

Again, it is recommended that IP addressed of DMA host computers on the Private Network be

manually (statically) assigned to coincide with a static DMZ host mapping to that specific IP address.

DMZ hosts should not rely on the dynamic IP assignment of DHCP server function which could create

incorrectly mapped IP address assignments to non-DMZ hosts.

10.6 Advanced

As advanced firewall functions, you can enable/disable

y

Block Ping to WAN

y

Web-based management from WAN port

y

SNMP management from WAN port

AirLive WH-9100-MESH User’s Manual

55

See also other documents in the category AirLive Accessories for video: