beautypg.com

Dscp settings, Firewall > general, General – Cisco 4-Port SSL/IPSec VPN Router RVL200 User Manual

Page 38: Chapter 4, Advanced configuration

background image

Chapter 4

Advanced Configuration

0

4-Port SSL/IPSec VPN Router

based QoS in Layer 3, the Router can use the priority bits

in the Type of Service (ToS) octet to prioritize traffic. If

priority bits are used, the ToS octet may contain three bits

for IP Precedence or six bits for DSCP service.

QoS > DSCP Settings

DSCP Settings

DSCP to Queue

DSCP

This is the DSCP value in the incoming packet.

Queue

Select the traffic forwarding queue number to

which the DSCP priority is mapped. You can designate

up to four traffic priority queues configured on the Queue

Settings screen.
To reset this screen to the factory default queue settings,

click Restore Defaults. The defaults are for DSCP values

0-15, for DSCP values 16-31, and for DSCP values

32-63.
Click Save Settings to save your changes, or click Cancel

Changes to undo them.

Firewall > General

Enable or disable a variety of firewall, security, and web

features.

Firewall > General

General

Firewall

The firewall is enabled by default. If you disable

it, then the SPI, DoS, and Block WAN Request features,

Access Rules, and Content Filters will also be disabled, and

the Remote Management feature will be enabled.

SPI (Stateful Packet Inspection)

This option is enabled

by default. The Router’s firewall uses Stateful Packet

Inspection to review the information that passes through

the firewall. It inspects all packets based on the established

connection, prior to passing the packets for processing

through a higher protocol layer.

DoS (Denial of Service)

This option is enabled by default.

It protects internal networks from Internet attacks, such

as SYN Flooding, Smurf, LAND, Ping of Death, IP Spoofing,

and reassembly attacks.

Block WAN Request

This option is enabled by default.

Using this feature, the Router drops both unaccepted TCP

request and ICMP packets from the WAN side. Hackers will

not find the Router by pinging the WAN IP address.

Remote Management/SSL VPN

This option is disabled

by default. If you want to use SSL or manage this Router

through a WAN connection, first change the password

on the Setup > Password screen (this prevents any

user from accessing the Router or using SSL with the

default password). Then select Enable for the Remote

Management/SSL VPN setting.

NOTE:

SSL VPN has higher priority than Port

Forwarding when HTTPS is enabled.

HTTPS

If Remote Management/SSL VPN is enabled,

HTTPS is enabled by default. If Remote Management/SSL

VPN is disabled, HTTPS is disabled by default.