Table of Contents
Advertisement
Item
Undo
Button
Back
Button
6.2.6
IPS
When the router is used to provide application server services over the Internet specific ports will need to remain open to
support those services. Open service ports always entail the risk of security breaches and in order to mitigate these risks it is
important to employ an Intrusion Prevention Systems (IPS) regime.
IPS are network security appliances that monitor network and/or system activities for malicious activity, log information
about this activity, attempt to block/stop it and report it. Enable the NTC-400 Series Router's IPS function to periodically
check some or all of the intrusion activities that it safeguards against. You can also enable the logging feature to record
intrusion events as they are detected.
6.2.6.1
IPS Scenario
As shown in the diagram above, the router serves as an e-mail server, Web Server and also provides TCP port 8080 for
remote administration. Remote users or unknown users can request those services from the Internet. With IPS enabled, the
router can detect incoming attack packets, including the TCP ports (25, 80, 110, 443 and 8080) with services. It will block the
attack packets and let the normal access to pass through the router.
6.2.6.2
IPS Settings
To enable the Intrusion Prevention System functionality:
1
Select Firewall from the Security submenu on the left and then open the IPS tab.
2
Go to the Configuration section of the IPS page:
NTC-400 Series
Notes
Click Undo to cancel the settings.
When the Back button is clicked the screen will return to the Packet
Filter Configuration page.
Table 179 – Application Filter Rule Configuration
Figure 298 – IPS Scenario
Description
© NetComm Wireless 2019
259 of 359
Advertisement
Table of Contents
