beautypg.com

Ip filter, Figure 25. ip filter configuration – D-Link DSL-500G User Manual

Page 48

background image

DSL-500G ADSL Router User’s Guide

Host IP Address: The IP address of the computer that sent the packet(s) that caused the violation

Reason: A short description of the type of violation. If the packet violated an IP Filter rule, the custom

text from the Log Tag field will display.

IPF Rule ID: If the packet violated an IP Filter rule, this field will display the ID assigned to the rule.

The IP filter feature enables you to create rules that control the forwarding of incoming and outgoing data
between your LAN and the Internet and within your LAN. This topic explains how to create IP filter rules.

IP Filter

The IP Filter Configuration page displays global settings that you can modify, and the IP Filter rule table, which
shows all currently established rules.

Figure 24. IP Filter Configuration

The IP Filter Configuration page enables you to configure the following IP filter global settings.

Security Level: This setting determines which IP Filter rules take effect, based on the security level

specified in each rule. For example, when High is selected, only those rules that are assigned a security
value of High will be in effect. The same is true for the Medium and Low settings. When None is
selected, IP Filtering is disabled.

Private/Public/DMZ Default Action: This setting specifies a default action to be taken (Accept or

Deny) on private, public, or DMZ-type device interfaces when they receive packets that do not match
any of the filtering rules. You can specify a different default action for each interface type. (You specify
an interface's type when you create the interface; see the PPP configuration page, for example.)

• A public interface typically connects to the Internet. PPP, EoA, and IPoA interfaces are

typically public. Packets received on a public interface are subject to the most restrictive set of
firewall protections defined in the software. Typically, the global setting for public interfaces
is Deny, so that all accesses to your LAN initiated from external computers are denied
(discarded at the public interface), except for those allowed by a specific IP Filter rule.

38

See also other documents in the category D-Link Hardware: