Table of Contents
Advertisement
Security settings
The Security page allows you to configure global security parameters for the router.
This page includes the following settings:
Enable PING from WAN
Computer hackers use what is known as Pinging to find potential victims on the Internet. By
pinging a specific IP address and receiving a response from the IP address, a hacker can
determine that something of interest might be there. The router can be set up so it does not
respond to an ICMP Ping from the outside. This is heightens the level of security of your router.
Enable MSS Clamping
A technique, which works with TCP under specific scenarios only, is so-called MSS clamping.
With this technique or rather hack, the TCP packet's Maximum Segment Size (MSS) is reduced
by tunnel endpoints so that the TCP connection automatically restricts itself to the maximum
available packet size. Obviously, this does not work for UDP or other protocols that have no
MSS. This approach is most applicable and used with PPPoE, but could be applied otherwise
as well; the approach also assumes that all the traffic goes through tunnel endpoints that do
MSS clamping — this is simple for single-homed access links, but could be a challenge
otherwise.
Enable UPnP (Universal Plug and Play)
Universal Plug and Play (UPnP) is a technology that offers seamless operation of voice
messaging, video messaging, games, and other applications that are UPnP compliant. Some
applications require the router's firewall to be configured in a specific way to operate properly.
This usually requires opening TCP and UDP ports, and in some instances, setting trigger ports.
An application that is UPnP compliant has the ability to communicate with the router, basically
90
Firewall configuration
Advertisement
Table of Contents
