Security; Firewall - Motorola SBG1000 User Manual

Overview Installation Troubleshooting Contact

Security

The Motorola SBG1000 Wireless Cable Modem Gateway provides:
•
A

firewall

to protect the SBG LAN from undesired attacks over the Internet
•
Security measures to prevent eavesdropping of wireless data
Network Address Translation (NAT) provides some security because the IP addresses of SBG LAN computers are
not visible on the Internet.
The logical network diagram does not necessarily correspond to the network cabling. A full discussion of network
security is beyond the scope of this document.
SBG1000 security measures shown in a logical network diagram
DMZ computer
Computer
Wired Ethernet and/or HPNA LAN
Firewall
The SBG1000 firewall protects the SBG LAN from undesired attacks and other intrusions from the Internet. It
provides an advanced integrated
denial-of-service attack prevention. The firewall:
•
Maintains state data for every
•
Monitors all incoming and outgoing packets, applies the firewall
packets and intrusion attempts
•
Provides comprehensive logging for all:
— User authentications
— Rejected internal and external connection requests
— Session creation and termination
— Outside attacks (intrusion detection)
You can configure the firewall filters to set rules for port usage and to block specific IP domains and networks. For
information about choosing a default firewall policy, see
Home Print
Configuration: Basic Gateway TCP/IP Wireless Print Server USB
Internet
SBG
Firewall
Computer
stateful-inspection
TCP/IP session on the
X
15
Exit
FAQ
DMZ:
WEP shared key encryption
MAC access control list
Closed network
Computer Laptop
Wireless IEEE 802.11b LAN
firewall supporting intrusion detection, session tracking, and
OSI network and transport layers
policy to each one, and screens for improper
"Setting the Firewall Policy"
SBG1000 Wireless Cable Modem Gateway User Guide
Specifications Glossary License
PDA
on page 36.