NetComm NB1300 Plus 4W Network Router User Manual


 
Rev. 1 - YML709 www.netcomm.com.au
NB1300Plus4 Wireless ADSL Modem Page 47
Security
Configuring Groups
The NB1300Plus4W's inbuilt firewall works by using groups and policies. Groups are used to
define certain settings. These settings are used when creating firewall rules, or policies.
Firewall Databases
The IP Group section allows you to add IP address information to the group database. You can
add a single IP, an IP range and a Subnet range. In this example, we are adding an IP entry named
"mailserver" with an IP address of 192.168.1.137. Note that if you are adding single IPs, it must
be entered in both the IP address 1 and 2 fields. Click on Add/Modify to add the entry to the
database.
Once you've finished adding or modifying entries to this section, click on the firewall link at the
top of the screen to return to the main firewall configuration screen.
The Service Group is used to set port information to the group database. As you can see, the
most common ports have already been entered into the database. To add new entries, simply
enter their relevant details into the input fields near the bottom of the screen. In this example, we
are adding a "PPTP" port, which uses the TCP protcol and port number 1723. You'll need to
click on the Add/Modify button to add it to the database.
The Time Window Group allows you to create periods of time which can be used in a firewall
policy. To add a new entry, simply give it a name and then specify the time period using the
drop down box. In this example, we are creating an entry called "Monday9to5" which is the time
period of 9am to 5pm on Monday.
The FTP Group is a pre-defined group used to filter certain FTP commands. The example
shown is an entry called DenyMKD, where the MKD command is selected, and the action is set
to deny. Also, make sure you click on the "Add modify entry" button to save the entry to the
group database.
The SMTP Group pre-defined group used to filter certain SMTP commands. In this example,
we are creating an entry called "allow all" which has all the commands selected and the action is
set to allow. You'll need to click on "Add modify entry" button to save the entry.
The HTTP group allows you to block either URLs, keywords in a URL or certain special
applications in that URL. In this example, we are creating a "DenyYahoo" entry, which will
block access to the www.yahoo.com.au website.
Remember if you've added or changed any entries, you must save them to flash by clicking on
Save Firewall Configuration at the bottom of the Firewall Configuration screen. Then you'll need
to press Save Settings and Reboot on the side menu, then clicking "Save & Reboot".