Security |
 |
|
Services |
A firewall is a security mechanism to selectively block or allow certain types
of traffic in accordance with rules specified by network administrators. |
The Firewall Rules menu allows selection of a
Service while creating firewall rules. This page
allows creation of custom services against which firewall rules can be defined.
Once defined, the new service will appear in the Services list of the Firewall
Rules menu. |
Custom Services Table |
This table lists all the custom services. A custom service has the following
attributes: |
#: A numerical ID assigned to a service by the router. The router contains a
list of pre-defined services which can be viewed from the Firewall
Rules page (under the Security menu). Custom services will be assigned an ID succeeding the most recent
service in the list. |
Name: Name of the service for identification and
management purposes. |
Type: The layer 3 Protocol that the service uses.
Can be TCP, UDP or ICMP. |
Start Port: The first TCP or UDP port of a range
the service uses. If the service uses only one port, then the
Start Port will be same as the Finish Port. |
Finish Port: The last port in the range the service
uses. If the service uses only one port, then the
Finish Port will be same as the
Start Port. |
Priority: Priority given towards processing and
transmission of packets for that service. Priorities are defined
by “Type of Service in the Internet Protocol Suite” standards, RFC
1349 and can be one of the following: |
Normal-Service: No special priority given to the
traffic. The IP packets for services with this priority are marked with TOS
value of 0x00. |
Minimize-Cost: Used when data has to be transferred
over a link that has a lower 'cost'. The IP packets for services with this
priority are marked with TOS value of 0x02. |
Maximize-Reliability: Used when data needs to
travel to the destination over a reliable link and with little or no
retransmission. The IP packets for services with this priority are marked with
TOS value of 0x04. |
Maximize-Throughput: Used when the volume of data
transferred during an interval is important even if the latency over the link is
high. The IP packets for services with this priority are marked with TOS value
of 0x08. |
Minimize-Delay: Used when the time required
(latency) for the packet to reach the destination has to be low. The IP packets
for services with this priority are marked with TOS value of 0x10. |
Action/Edit: Click to make changes to the selected
entry. |
Select All: Select all the entries in the Custom
Services table. |
Delete: Delete selected entries from the Custom
Services table. |
Add Custom Service |
This page allows you to define a custom service. The service can then be used when creating a new firewall rule.
|
A service is defined by the following fields: |
Name: Name of the service for identification and
management purposes. |
Type: The layer 3 Protocol that the service uses.
Can be TCP, UDP or ICMP. |
ICMP Type: This field is enabled when the layer 3
protocol (in the Type field) is selected as ICMP. The ICMP type is a numeric
value that can range between 0 and 40. For a list of ICMP types, visit the
following URL: http://www.iana.org/assignments/icmp-parameters. |
Start Port: The first TCP or UDP port of a range,
the service uses. If the service uses only one port, then the
Start Port will be the same as the
Finish Port. |
Finish Port: The last port in the range the service
uses. If the service uses only one port, then the
Finish Port will be the same as the
Start Port. |
Priority:Priority given towards processing and transmission of packets for that service. Priorities are defined by "Type of Service (ToS) in the Internet Protocol Suite" standards, RFC 1349, and can be one of the following: |
v |
Normal-Service: No special priority given to the
traffic. The IP packets for services with this priority are marked with TOS
value of 0x00. |
v |
Minimize-Cost: Used when data has to be transferred
over a link that has a lower 'cost'. The IP packets for services with this
priority are marked with TOS value of 0x02. |
v |
Maximize-Reliability: Used when data needs to
travel to the destination over a reliable link and with little or no
retransmission. The IP packets for services with this priority are marked with
TOS value of 0x04. |
v |
Maximize-Throughput: Used when the volume of data
transferred during an interval is important even if the latency over the link is
high. The IP packets for services with this priority are marked with TOS value
of 0x08. |
v |
Minimize-Delay: Used when the time required
(latency) for the packet to reach the destination has to be low. The IP packets
for services with this priority are marked with TOS value of 0x10. |
|
The newly added custom service will be listed in the Custom Services table and
also when creating or modifying firewall rules. |
Edit Service |
This page allows you to modify a previously added custom service. The
following service fields can be modified: |
Name: Name of the service for identification and
management purposes. |
Type: The layer 3 protocol that the service uses.
Can be TCP, UDP or ICMP. |
ICMP Type: This field is enabled when the layer 3
protocol (in the
Type field) is selected as ICMP. The ICMP type is a
numeric value that can range between 0 and 40. For a list of ICMP types, visit
the following URL: http://www.iana.org/assignments/icmp-parameters. |
Start Port: The first TCP or UDP port of a range,
the service uses. If the service uses only one port, then the
Start Port will be the same as the
Finish Port. This field is enabled when the layer 3
protocol (in the
Type field) is either TCP or UDP. |
Finish Port: The last port in the range the service
uses. If the service uses only one port, then the
Finish Port will be the same as the
Start Port. This field is enabled when the layer 3
protocol (in the
Type field) is either TCP or UDP. |
Priority: Priority given towards processing and transmission of packets for that service. Priorities are defined by "Type of Service (ToS) in the Internet Protocol Suite" standards, RFC 1349, and can be one of the following: |
v |
Normal-Service: No special priority given to the
traffic. The IP packets for services with this priority are marked with TOS
value of 0x00. |
v |
Minimize-Cost: Used when data has to be transferred
over a link that has a lower 'cost'. The IP packets for services with this
priority are marked with TOS value of 0x02. |
v |
Maximize-Reliability: Used when data needs to
travel to the destination over a reliable link and with little or no
retransmission. The IP packets for services with this priority are marked with
TOS value of 0x04. |
v |
Maximize-Throughput: Used when the volume of data
transferred during an interval is important even if the latency over the link is
high. The IP packets for services with this priority are marked with TOS value
of 0x08. |
v |
Minimize-Delay: Used when the time required
(latency) for the packet to reach the destination has to be low. The IP packets
for services with this priority are marked with TOS value of 0x10. |
|
Click
Apply to submit your changes. |
Click
Reset to revert to the previous settings. |
|