The following describes how to configure and manage an ADSL Modem using the Globespan chip.
ADSL Modem built-in firewall.
1. Firewall settings
Go to the Management page of the ADSL Modem and click "service> FireWall". Then we can set the FireWall in detail on the page.
Blacklist Status: Blacklist Status. If you want ADSLModem to work with the blacklist, you can select Enable. Otherwise, select Disable.
Blacklist Period (min): within the specified time (in minutes), the IP address of the specified computer will be in the Blacklist.
Attack Protection: Select Enable to Enable
DoS Protection: Click Enable to obtain service Protection for SYN DoS, ICMP DoS, and Per-host DoS.
Max Half Open TCP Conn: Set the percentage of the current IP connection opened when the status is not fully Open. The number of available IP connections may be exhausted when the TCP connection is not fully open. If the percentage exceeds the upper limit, the incomplete open connection will be closed and a new connection will replace it.
Max ICMP Conn: Set the percentage of connections currently used for ICMP management. If the percentage exceeds the upper limit, the new connection will replace the old connection to start data transmission.
Max Single Host Conn: Set the percentage of computers that can use the current IP address to connect to a Single computer. When setting this percentage, consider the number of computers in the LAN.
Log Destination: Used to list attack firewall events on records. Records of these events can be sent to the system or specified administrator.
Email ID of Admin 1/2/3: Specifies the Administrator's email address. Used to receive reports of attacks on the firewall. The email report information sent includes the attack time, source IP address, target IP address, and protocol used by the attacked computer.
Ii. Manage the blacklist list
If you confirm that a data packet has attacked the firewall settings or some IP address filtering rules, the firewall will block the source IP address of the data packet for a specified period of time in the future, however, you must enable the blacklist list setting.
To view the list of blacklisted computers, click "blacklisted" at the bottom of the "firewall settings" page. The following information is displayed in the table:
Host IP Address: Record sending
The IP address of the computer that generates the attack data packet.
Reason: a brief description of the attack type.
IPF rule ID: If a data packet violates the IP filtering rules, the rule ID is displayed in this box.
Operation: If you want to unban an item from the blacklist before it is automatically removed, you can delete the entries in the list.