Chapter 2 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - How it works - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Chapter 2
Firewall
To safeguard your network from intruders, the CN3000 features a customizable stateful
firewall. The firewall operates on the traffic streaming through the Internet port. It can be
used to control both incoming and outgoing data.
The CN3000 features a number of predefined firewall rules to let you achieve the
required security level you need without going to the trouble of designing your own
rules. However, if necessary, you can create a completely custom set of firewall rules to
suite your particular networking requirements.
If the CN3000 is connected to a wired LAN, the firewall protects the wired LAN as well.
Blocking unauthorized access with the firewall.
Firewall presets
The easiest way to make use of the firewall is to use one of the preset settings. Three
levels of security are provided:
• High: Permits all outgoing traffic, except NetBIOS (TCP and UDP). Blocks all
• Medium: Same as High except that it permits incoming PPTP and IPSec
• Low: Permits all incoming and outgoing traffic, except for NetBIOS traffic. Use this
The following tables indicate how some common applications are affected by the preset
firewall settings.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 42 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
ftp
externally initiated connections.
connections.
option if you require active FTP sessions.
Integrated
Firewall
telnet
syn attack
Hacker